[website] r1619 - in html/trunk/blfs/errata: 10.0 10.0-systemd

Sat, 05 Sep 2020 14:28:20 -0700 

Author: renodr
Date: Sat Sep  5 14:05:23 2020
New Revision: 1619

Log:
Errata: Add errata for BIND vulnerabilities
Errata: Add errata for cifs-utils vulnerability
Errata: Add errata for GnuTLS vulnerability

Modified:
   html/trunk/blfs/errata/10.0-systemd/index.html
   html/trunk/blfs/errata/10.0/index.html

Modified: html/trunk/blfs/errata/10.0-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/10.0-systemd/index.html      Thu Sep  3 13:25:08 
2020        (r1618)
+++ html/trunk/blfs/errata/10.0-systemd/index.html      Sat Sep  5 14:05:23 
2020        (r1619)
@@ -49,6 +49,20 @@
            input validation failures. To fix these vulnerabilities, update to
            Xorg-Server-1.20.9 using the instructions in
            <a 
href="../../view/systemd/x/xorg-server.html">Xorg-Server-1.20.9</a>.</li>
+       <li>After release, a null-pointer dereference vulnerability was 
+           discovered in GnuTLS. This results in a remotely-triggered
+           crash. To fix this, update to GnuTLS-3.6.15 or later using the
+           instructions in
+           <a 
href="../../view/systemd/postlfs/gnutls.html">GnuTLS-3.6.15.</a>.</li>
+       <li>After release, a shell command injection vulnerability was 
discovered
+           in cifs-utils. To fix this vulnerability, update to cifs-utils-6.11
+           or later using the instructions in
+           <a 
href="../../view/systemd/basicnet/cifsutils.html">cifs-utils-6.11</a>.</li>
+       <li>After release, several security vulnerabilities were identified in
+           BIND DNS Server. Each of these vulnerabilities may be exploited
+           remotely and without authentication. To fix these vulnerabilities,
+           update to BIND-9.16.6 or later using the instructions in
+           <a href="../../view/systemd/server/bind.html">BIND-9.16.6</a>.</li>
      </ul>
 
 <!--#include virtual="/common/footer.html" -->

Modified: html/trunk/blfs/errata/10.0/index.html
==============================================================================
--- html/trunk/blfs/errata/10.0/index.html      Thu Sep  3 13:25:08 2020        
(r1618)
+++ html/trunk/blfs/errata/10.0/index.html      Sat Sep  5 14:05:23 2020        
(r1619)
@@ -47,6 +47,20 @@
            input validation failures. To fix these vulnerabilities, update to
            Xorg-Server-1.20.9 using the instructions in
            <a 
href="../../view/svn/x/xorg-server.html">Xorg-Server-1.20.9</a>.</li>
+       <li>After release, a null-pointer dereference vulnerability was
+           discovered in GnuTLS. This results in a remotely-triggered
+           crash. To fix this, update to GnuTLS-3.6.15 or later using the
+           instructions in
+           <a 
href="../../view/svn/postlfs/gnutls.html">GnuTLS-3.6.15.</a>.</li>
+       <li>After release, a shell command injection vulnerability was 
discovered
+           in cifs-utils. To fix this vulnerability, update to cifs-utils-6.11
+           or later using the instructions in
+           <a 
href="../../view/svn/basicnet/cifsutils.html">cifs-utils-6.11</a>.</li>
+       <li>After release, several security vulnerabilities were identified in
+           BIND DNS Server. Each of these vulnerabilities may be exploited
+           remotely and without authentication. To fix these vulnerabilities, 
+           update to BIND-9.16.6 or later using the instructions in
+           <a href="../../view/svn/server/bind.html">BIND-9.16.6</a>.</li>
      </ul>
 
 <!--#include virtual="/common/footer.html" -->
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to