Malware Devil

Tuesday, June 8, 2021

Introducing the Detection of Multi-Accounting

With multi-accounting detection, you are better able to protect against account takeovers involving a single device. Also, you can now catch users who are abusing marketing incentives, such as coupons, new-account rewards or new customer referral bonuses.

The post Introducing the Detection of Multi-Accounting appeared first on Security Boulevard.

The post Introducing the Detection of Multi-Accounting appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/introducing-the-detection-of-multi-accounting/?utm_source=rss&utm_medium=rss&utm_campaign=introducing-the-detection-of-multi-accounting

A Look into Chuck Brooks’s Alarming Cybersecurity Stats

2020 will be remembered most as the year the world was swept up in the COVID pandemic. Dig a little deeper and you’ll find another alarming news story: 2020 was a record breaking year on the Cybersecurity front. There was more data lost in breaches and a higher number of cyber attacks than ever before.

The post A Look into Chuck Brooks’s Alarming Cybersecurity Stats appeared first on Security Boulevard.

The post A Look into Chuck Brooks’s Alarming Cybersecurity Stats appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/a-look-into-chuck-brookss-alarming-cybersecurity-stats/?utm_source=rss&utm_medium=rss&utm_campaign=a-look-into-chuck-brookss-alarming-cybersecurity-stats

Best Practices for Ransomware Defense

Ransomware has the potential to destroy business data, cause millions of dollars in revenue loss, ruin your business’ reputation and sully your brand. Such an attack erodes trust, and customers will leave en masse. Investing in security may seem expensive, but the true cost of a successful ransomware attack hugely outweighs this expense. Security is..

The post Best Practices for Ransomware Defense appeared first on Security Boulevard.

The post Best Practices for Ransomware Defense appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/best-practices-for-ransomware-defense/?utm_source=rss&utm_medium=rss&utm_campaign=best-practices-for-ransomware-defense

Choosing the Right AI Components in Your Security Tools

AI is a hot buzzword in cybersecurity, but just because a security tool is labeled “AI-enabled” or “AI-powered” doesn’t mean the technology will translate easily to your cybersecurity system. There is still a lot to learn about AI, said Anne Townsend, department manager with MITRE, during the RSA session “AI-Powered Or Is It Just Hype?”..

The post Choosing the Right AI Components in Your Security Tools appeared first on Security Boulevard.

The post Choosing the Right AI Components in Your Security Tools appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/choosing-the-right-ai-components-in-your-security-tools/?utm_source=rss&utm_medium=rss&utm_campaign=choosing-the-right-ai-components-in-your-security-tools

ISC Stormcast For Tuesday, June 8th, 2021 https://isc.sans.edu/podcastdetail.html?id=7532, (Tue, Jun 8th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Read More

The post ISC Stormcast For Tuesday, June 8th, 2021 https://isc.sans.edu/podcastdetail.html?id=7532, (Tue, Jun 8th) appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/isc-stormcast-for-tuesday-june-8th-2021-https-isc-sans-edu-podcastdetail-htmlid7532-tue-jun-8th/?utm_source=rss&utm_medium=rss&utm_campaign=isc-stormcast-for-tuesday-june-8th-2021-https-isc-sans-edu-podcastdetail-htmlid7532-tue-jun-8th

ESB-2021.1569.2 – UPDATE [Ubuntu] GNOME Autoar: Overwrite arbitrary files – Existing account

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.1569.2
USN-4937-1: GNOME Autoar vulnerability
8 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: GNOME Autoar
Publisher: Ubuntu
Operating System: Ubuntu
Impact/Access: Overwrite Arbitrary Files — Existing Account
Resolution: Patch/Upgrade
CVE Names: CVE-2021-28650

Reference: ESB-2021.0820
ESB-2021.0755

Original Bulletin:
https://ubuntu.com/security/notices/USN-4937-1
https://ubuntu.com/security/notices/USN-4937-2

Comment: This bulletin contains two (2) Ubuntu security advisories.

Revision History: June 8 2021: Vendor added regression update as a second advisory.
May 7 2021: Initial Release

– ————————–BEGIN INCLUDED TEXT——————–

USN-4937-1: GNOME Autoar vulnerability
06 May 2021

GNOME Autoar could be made to overwrite files.
Releases

o Ubuntu 20.10
o Ubuntu 20.04 LTS
o Ubuntu 18.04 LTS

Packages

o gnome-autoar – Archive integration support for GNOME

Details

Ondrej Holy discovered that GNOME Autoar could extract files outside of the
intended directory. If a user were tricked into extracting a specially
crafted archive, a remote attacker could create files in arbitrary
locations, possibly leading to code execution.

Update instructions

The problem can be corrected by updating your system to the following package
versions:

Ubuntu 20.10

o libgnome-autoar-gtk-0-0 – 0.2.4-2ubuntu0.3
o libgnome-autoar-0-0 – 0.2.4-2ubuntu0.3

Ubuntu 20.04

o libgnome-autoar-gtk-0-0 – 0.2.3-2ubuntu0.3
o libgnome-autoar-0-0 – 0.2.3-2ubuntu0.3

Ubuntu 18.04

o libgnome-autoar-gtk-0-0 – 0.2.3-1ubuntu0.3
o libgnome-autoar-0-0 – 0.2.3-1ubuntu0.3

After a standard system update you need to restart your session to make all
the necessary changes.

References

o CVE-2021-28650

– ——————————————————————————–

USN-4937-2: GNOME Autoar regression
07 June 2021

USN-4937-1 introduced a regression in GNOME Autoar.
Releases

o Ubuntu 21.04
o Ubuntu 20.10
o Ubuntu 20.04 LTS
o Ubuntu 18.04 LTS

Packages

o gnome-autoar – Archive integration support for GNOME

Details

USN-4937-1 fixed a vulnerability in GNOME Autoar. The update caused a
regression when extracting certain archives. This update fixes the problem.

Original advisory details:

Update instructions

The problem can be corrected by updating your system to the following package
versions:

Ubuntu 21.04

o libgnome-autoar-gtk-0-0 – 0.3.1-1ubuntu0.1
o libgnome-autoar-0-0 – 0.3.1-1ubuntu0.1

Ubuntu 20.10

o libgnome-autoar-gtk-0-0 – 0.2.4-2ubuntu0.4
o libgnome-autoar-0-0 – 0.2.4-2ubuntu0.4

Ubuntu 20.04

o libgnome-autoar-gtk-0-0 – 0.2.3-2ubuntu0.4
o libgnome-autoar-0-0 – 0.2.3-2ubuntu0.4

Ubuntu 18.04

o libgnome-autoar-gtk-0-0 – 0.2.3-1ubuntu0.4
o libgnome-autoar-0-0 – 0.2.3-1ubuntu0.4

After a standard system update you need to restart your session to make all
the necessary changes.

References

o https://launchpad.net/bugs/1929304

– ————————–END INCLUDED TEXT——————–

You have received this e-mail bulletin as a result of your organisation’s
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT’s members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation’s
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author’s website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
—–BEGIN PGP SIGNATURE—–
Comment: http://www.auscert.org.au/render.html?it=1967

iQIVAwUBYL67i+NLKJtyKPYoAQg6IxAAlOc4f6EvqPuPsZfWrEVJG66rn+MV87SU
VYSTyjK7DqiTccwqEsimLjuqB/+0cT9kEaz29DsBwDEOEfVFQdnpY9dFQy7vqvnd
skrkfy/wFh2kpprS+rRYr5mILXIt4mjWqBXNiYl7+MZotvDoXdopoojbOGHD8aem
aGzfPANnkipD6XMZyj8n5vVxLksjDEoTcjFofMF+OiCwVNCCpH6Stz6z6tvbNJgp
MTyvivJpBIZ+Vyj5+kAk9NZLmmFAxKv18lN6sDk8tMMNxlWZHkwJVK+EqWxAQlr+
W5KVguCpd8QDYY4tFvmgtbA8UIdUo399PFbjj3HxaYGAwceznEUFHEpx5tshS/Fp
EwEZgtvzGhvXrxdT+tqtbih9J6u/xHY3NlL2X16jGjlXT0zCX6Sq94zF9gc9b085
qm/cg8niQw4jHZUCGgqu104+5X6DIUv8gBOdGM15zThtmSSMc0EUsLCycBA+Xrl3
mGsb8W/K3tWY+AksCuoDmLRM7CXBPxIx+QP7SZ2s1JRpWGGMg8hYxF1Bxsg4MxAx
tt12K1GyKIYYlQBvYMjvlvQbCzPkEBrnThugATfXbbbs5Egn9k2P3OXTp2wJkGb3
oLqqDO/O5594x310CHR+m35qoM5uqMXf3Yrs7+U7S8ci+HG+AclPBD7BXyps3e7j
IrXs6KmHZGE=
=xWAF
—–END PGP SIGNATURE—–

The post ESB-2021.1569.2 – UPDATE [Ubuntu] GNOME Autoar: Overwrite arbitrary files – Existing account appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/esb-2021-1569-2-update-ubuntu-gnome-autoar-overwrite-arbitrary-files-existing-account/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-1569-2-update-ubuntu-gnome-autoar-overwrite-arbitrary-files-existing-account

ESB-2021.1834.2 – UPDATE [UNIX/Linux][Ubuntu] isc-dhcp: Denial of service – Remote/unauthenticated

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.1834.2
USN-4969-1: DHCP vulnerability
8 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: isc-dhcp
Publisher: Ubuntu
Operating System: Ubuntu
UNIX variants (UNIX, Linux, OSX)
Impact/Access: Denial of Service — Remote/Unauthenticated
Resolution: Patch/Upgrade
CVE Names: CVE-2021-25217

Original Bulletin:
https://ubuntu.com/security/notices/USN-4969-1
https://ubuntu.com/security/notices/USN-4969-2
https://ubuntu.com/security/notices/USN-4969-3

Comment: This bulletin contains three (3) Ubuntu security advisories.

Revision History: June 8 2021: Regression fix detailed in USN-4969-3
May 28 2021: Initial Release

– ————————–BEGIN INCLUDED TEXT——————–

USN-4969-1: DHCP vulnerability
27 May 2021

DHCP could be made to crash if it received specially crafted network
traffic.
Releases

o Ubuntu 21.04
o Ubuntu 20.10
o Ubuntu 20.04 LTS
o Ubuntu 18.04 LTS

Packages

o isc-dhcp – DHCP server and client

Details

Jon Franklin and Pawel Wieczorkiewicz discovered that DHCP incorrectly
handled lease file parsing. A remote attacker could possibly use this issue
to cause DHCP to crash, resulting in a denial of service.

Update instructions

The problem can be corrected by updating your system to the following package
versions:

Ubuntu 21.04

o isc-dhcp-server – 4.4.1-2.2ubuntu6.1
o isc-dhcp-client – 4.4.1-2.2ubuntu6.1

Ubuntu 20.10

o isc-dhcp-server – 4.4.1-2.1ubuntu10.1
o isc-dhcp-client – 4.4.1-2.1ubuntu10.1

Ubuntu 20.04

o isc-dhcp-server – 4.4.1-2.1ubuntu5.20.04.2
o isc-dhcp-client – 4.4.1-2.1ubuntu5.20.04.2

Ubuntu 18.04

o isc-dhcp-server – 4.3.5-3ubuntu7.3
o isc-dhcp-client – 4.3.5-3ubuntu7.3

In general, a standard system update will make all the necessary changes.

References

o CVE-2021-25217

Related notices

o USN-4969-2 : isc-dhcp-client, isc-dhcp-server, isc-dhcp

– ——————————————————————————

USN-4969-2: DHCP vulnerability
27 May 2021

DHCP could be made to crash if it received specially crafted network
traffic.
Releases

o Ubuntu 16.04 ESM
o Ubuntu 14.04 ESM

Packages

o isc-dhcp – DHCP server and client

Details

USN-4969-1 fixed a vulnerability in DHCP. This update provides
the corresponding update for Ubuntu 14.04 ESM and 16.04 ESM.

Original advisory details:

Update instructions

The problem can be corrected by updating your system to the following package
versions:

Ubuntu 16.04

o isc-dhcp-server – 4.3.3-5ubuntu12.10+esm1
Available with UA Infra or UA Desktop
o isc-dhcp-client – 4.3.3-5ubuntu12.10+esm1
Available with UA Infra or UA Desktop

Ubuntu 14.04

o isc-dhcp-server – 4.2.4-7ubuntu12.13+esm1
Available with UA Infra or UA Desktop
o isc-dhcp-client – 4.2.4-7ubuntu12.13+esm1
Available with UA Infra or UA Desktop

In general, a standard system update will make all the necessary changes.

References

o CVE-2021-25217

Related notices

o USN-4969-1 : isc-dhcp-client, isc-dhcp, isc-dhcp-server

– ——————————————————————————

USN-4969-3: DHCP regression
07 June 2021

USN-4969-1 introduced a regression in DHCP.
Releases

o Ubuntu 21.04

Packages

o isc-dhcp – DHCP server and client

Details

USN-4969-1 fixed a vulnerability in DHCP. The package for Ubuntu 21.04
introduced a regression causing it to reject certain valid configuration
files. This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

Update instructions

The problem can be corrected by updating your system to the following package
versions:

Ubuntu 21.04

o isc-dhcp-client – 4.4.1-2.2ubuntu6.2
o isc-dhcp-server – 4.4.1-2.2ubuntu6.2

In general, a standard system update will make all the necessary changes.

References

o https://launchpad.net/bugs/1930917

– ————————–END INCLUDED TEXT——————–

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
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=L1hJ
—–END PGP SIGNATURE—–

The post ESB-2021.1834.2 – UPDATE [UNIX/Linux][Ubuntu] isc-dhcp: Denial of service – Remote/unauthenticated appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/esb-2021-1834-2-update-unix-linuxubuntu-isc-dhcp-denial-of-service-remote-unauthenticated/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-1834-2-update-unix-linuxubuntu-isc-dhcp-denial-of-service-remote-unauthenticated

ESB-2021.1971 – [RedHat] thunderbird: Multiple vulnerabilities

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.1971
thunderbird security update
8 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: thunderbird
Publisher: Red Hat
Operating System: Red Hat
Impact/Access: Execute Arbitrary Code/Commands — Remote with User Interaction
Denial of Service — Remote with User Interaction
Access Confidential Data — Existing Account
Reduced Security — Remote with User Interaction
Resolution: Patch/Upgrade
CVE Names: CVE-2021-29967 CVE-2021-29957 CVE-2021-29956

Reference: ESB-2021.1968
ESB-2021.1896
ESB-2021.1674

Original Bulletin:
https://access.redhat.com/errata/RHSA-2021:2261
https://access.redhat.com/errata/RHSA-2021:2262
https://access.redhat.com/errata/RHSA-2021:2263
https://access.redhat.com/errata/RHSA-2021:2264

Comment: This bulletin contains four (4) Red Hat security advisories.

– ————————–BEGIN INCLUDED TEXT——————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: thunderbird security update
Advisory ID: RHSA-2021:2261-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2261
Issue date: 2021-06-07
CVE Names: CVE-2021-29956 CVE-2021-29957 CVE-2021-29967
=====================================================================

1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2
Extended Update Support.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v. 8.2) – aarch64, ppc64le, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 78.11.0.

Security Fix(es):

* Mozilla: Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11
(CVE-2021-29967)

* Mozilla: Thunderbird stored OpenPGP secret keys without master password
protection (CVE-2021-29956)

* Mozilla: Partial protection of inline OpenPGP message not indicated
(CVE-2021-29957)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

1961503 – CVE-2021-29957 Mozilla: Partial protection of inline OpenPGP message not indicated
1961504 – CVE-2021-29956 Mozilla: Thunderbird stored OpenPGP secret keys without master password protection
1966831 – CVE-2021-29967 Mozilla: Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v. 8.2):

Source:
thunderbird-78.11.0-1.el8_2.src.rpm

aarch64:
thunderbird-78.11.0-1.el8_2.aarch64.rpm
thunderbird-debuginfo-78.11.0-1.el8_2.aarch64.rpm
thunderbird-debugsource-78.11.0-1.el8_2.aarch64.rpm

ppc64le:
thunderbird-78.11.0-1.el8_2.ppc64le.rpm
thunderbird-debuginfo-78.11.0-1.el8_2.ppc64le.rpm
thunderbird-debugsource-78.11.0-1.el8_2.ppc64le.rpm

x86_64:
thunderbird-78.11.0-1.el8_2.x86_64.rpm
thunderbird-debuginfo-78.11.0-1.el8_2.x86_64.rpm
thunderbird-debugsource-78.11.0-1.el8_2.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-29956
https://access.redhat.com/security/cve/CVE-2021-29957
https://access.redhat.com/security/cve/CVE-2021-29967
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=Oab9
– —–END PGP SIGNATURE—–

– ——————————————————————————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: thunderbird security update
Advisory ID: RHSA-2021:2262-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2262
Issue date: 2021-06-07
CVE Names: CVE-2021-29956 CVE-2021-29957 CVE-2021-29967
=====================================================================

1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1
Extended Update Support.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream EUS (v. 8.1) – ppc64le, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 78.11.0.

Security Fix(es):

* Mozilla: Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11
(CVE-2021-29967)

* Mozilla: Thunderbird stored OpenPGP secret keys without master password
protection (CVE-2021-29956)

* Mozilla: Partial protection of inline OpenPGP message not indicated
(CVE-2021-29957)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

6. Package List:

Red Hat Enterprise Linux AppStream EUS (v. 8.1):

Source:
thunderbird-78.11.0-1.el8_1.src.rpm

ppc64le:
thunderbird-78.11.0-1.el8_1.ppc64le.rpm
thunderbird-debuginfo-78.11.0-1.el8_1.ppc64le.rpm
thunderbird-debugsource-78.11.0-1.el8_1.ppc64le.rpm

x86_64:
thunderbird-78.11.0-1.el8_1.x86_64.rpm
thunderbird-debuginfo-78.11.0-1.el8_1.x86_64.rpm
thunderbird-debugsource-78.11.0-1.el8_1.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/

iQIVAwUBYL38B9zjgjWX9erEAQg/vg//TSq6/HpiXaw5CE9u/tAWFWoEpMyHUMtQ
1rKsQ10OXS9PnKWGdmPp9Le5qrevaoo9jihe3jz3nYCkOsOeHzUvHpnRp3UuWc8V
2P0MhPa5iXK4okuzxGuHeNmYzeMhoGLnFFhafhx7kL0+lfib/KpiWRCSObSM8zJQ
bpITQWA47q/ReJ9PRnX8z5qYSDVHBS5MT7TIfPLYPGMxk3mPi18szNT12EY5riWq
xtYZEsRVI4E9/5izmU/ZwkclS0bdCQ73KkKjotcb302X8ImLqc7O9yHnEfNLYddI
cbXmKBIPDEg8rdBG1og+rn6O+I5JIA/Govi497AJ95oAG93Yws872VYXe8BXsUZ7
VfOBuEKYO6iSePG+8Z+gE0QOgiHOg7e+fN0M9qzSVoMEoolsUL/wapVxdyiLTa+0
iOg2U2dnA/dgAg0v4RTbGHkBa4U5w0PUzBh6UW4PaGHbM4wr7aVNXgQMrenOMnRe
4sEFRVyV8c+9rtTpyro/6CtkGjXfM5TseAZcIME7Xc9IQry2P3Bdb/eK5XzsOKuO
RFJ0sMjlPpx5bDHRx0V2qz5oMZgnKiZHmqlwU8ErflipstJnZ0xwOiWKwsRKBBKZ
ajvhWlbD/D1MuwfslDP1T4FhoCsbFVsIVtgqN8CkpHG/qLdJd6f/t6WV/QCkuKI3
GkxQDrygSa8=
=yrzW
– —–END PGP SIGNATURE—–

– ——————————————————————————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: thunderbird security update
Advisory ID: RHSA-2021:2263-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2263
Issue date: 2021-06-07
CVE Names: CVE-2021-29956 CVE-2021-29957 CVE-2021-29967
=====================================================================

1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 7.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) – x86_64
Red Hat Enterprise Linux Server Optional (v. 7) – ppc64le, x86_64
Red Hat Enterprise Linux Workstation (v. 7) – x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 78.11.0.

Security Fix(es):

* Mozilla: Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11
(CVE-2021-29967)

* Mozilla: Thunderbird stored OpenPGP secret keys without master password
protection (CVE-2021-29956)

* Mozilla: Partial protection of inline OpenPGP message not indicated
(CVE-2021-29957)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:
thunderbird-78.11.0-1.el7_9.src.rpm

x86_64:
thunderbird-78.11.0-1.el7_9.x86_64.rpm
thunderbird-debuginfo-78.11.0-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

Source:
thunderbird-78.11.0-1.el7_9.src.rpm

ppc64le:
thunderbird-78.11.0-1.el7_9.ppc64le.rpm
thunderbird-debuginfo-78.11.0-1.el7_9.ppc64le.rpm

x86_64:
thunderbird-78.11.0-1.el7_9.x86_64.rpm
thunderbird-debuginfo-78.11.0-1.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:
thunderbird-78.11.0-1.el7_9.src.rpm

x86_64:
thunderbird-78.11.0-1.el7_9.x86_64.rpm
thunderbird-debuginfo-78.11.0-1.el7_9.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=KYCi
– —–END PGP SIGNATURE—–

– ——————————————————————————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: thunderbird security update
Advisory ID: RHSA-2021:2264-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2264
Issue date: 2021-06-07
CVE Names: CVE-2021-29956 CVE-2021-29957 CVE-2021-29967
=====================================================================

1. Summary:

An update for thunderbird is now available for Red Hat Enterprise Linux 8.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) – aarch64, ppc64le, s390x, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 78.11.0.

Security Fix(es):

* Mozilla: Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11
(CVE-2021-29967)

* Mozilla: Thunderbird stored OpenPGP secret keys without master password
protection (CVE-2021-29956)

* Mozilla: Partial protection of inline OpenPGP message not indicated
(CVE-2021-29957)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
thunderbird-78.11.0-1.el8_4.src.rpm

aarch64:
thunderbird-78.11.0-1.el8_4.aarch64.rpm
thunderbird-debuginfo-78.11.0-1.el8_4.aarch64.rpm
thunderbird-debugsource-78.11.0-1.el8_4.aarch64.rpm

ppc64le:
thunderbird-78.11.0-1.el8_4.ppc64le.rpm
thunderbird-debuginfo-78.11.0-1.el8_4.ppc64le.rpm
thunderbird-debugsource-78.11.0-1.el8_4.ppc64le.rpm

s390x:
thunderbird-78.11.0-1.el8_4.s390x.rpm
thunderbird-debuginfo-78.11.0-1.el8_4.s390x.rpm
thunderbird-debugsource-78.11.0-1.el8_4.s390x.rpm

x86_64:
thunderbird-78.11.0-1.el8_4.x86_64.rpm
thunderbird-debuginfo-78.11.0-1.el8_4.x86_64.rpm
thunderbird-debugsource-78.11.0-1.el8_4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=Pw1N
– —–END PGP SIGNATURE—–

– ————————–END INCLUDED TEXT——————–

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
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=OhCQ
—–END PGP SIGNATURE—–

The post ESB-2021.1971 – [RedHat] thunderbird: Multiple vulnerabilities appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/esb-2021-1971-redhat-thunderbird-multiple-vulnerabilities/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-1971-redhat-thunderbird-multiple-vulnerabilities

ESB-2021.1972 – [RedHat] libwebp: Multiple vulnerabilities

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.1972
libwebp security update
8 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: libwebp
Publisher: Red Hat
Operating System: Red Hat
Impact/Access: Execute Arbitrary Code/Commands — Remote/Unauthenticated
Denial of Service — Remote/Unauthenticated
Access Confidential Data — Remote/Unauthenticated
Resolution: Patch/Upgrade
CVE Names: CVE-2020-36329 CVE-2020-36328 CVE-2018-25011

Reference: ESB-2021.1965
ESB-2021.1959
ESB-2021.1880

Original Bulletin:
https://access.redhat.com/errata/RHSA-2021:2260

– ————————–BEGIN INCLUDED TEXT——————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: libwebp security update
Advisory ID: RHSA-2021:2260-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2260
Issue date: 2021-06-07
CVE Names: CVE-2018-25011 CVE-2020-36328 CVE-2020-36329
=====================================================================

1. Summary:

An update for libwebp is now available for Red Hat Enterprise Linux 7.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Client (v. 7) – x86_64
Red Hat Enterprise Linux Client Optional (v. 7) – x86_64
Red Hat Enterprise Linux ComputeNode (v. 7) – x86_64
Red Hat Enterprise Linux ComputeNode Optional (v. 7) – x86_64
Red Hat Enterprise Linux Server (v. 7) – ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 7) – ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 7) – x86_64
Red Hat Enterprise Linux Workstation Optional (v. 7) – x86_64

3. Description:

The libwebp packages provide a library and tools for the WebP graphics
format. WebP is an image format with a lossy compression of digital
photographic images. WebP consists of a codec based on the VP8 format, and
a container based on the Resource Interchange File Format (RIFF).
Webmasters, web developers and browser developers can use WebP to compress,
archive, and distribute digital images more efficiently.

Security Fix(es):

* libwebp: heap-based buffer overflow in PutLE16() (CVE-2018-25011)

* libwebp: heap-based buffer overflow in WebPDecode*Into functions
(CVE-2020-36328)

* libwebp: use-after-free in EmitFancyRGB() in dec/io_dec.c
(CVE-2020-36329)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1956829 – CVE-2020-36328 libwebp: heap-based buffer overflow in WebPDecode*Into functions
1956843 – CVE-2020-36329 libwebp: use-after-free in EmitFancyRGB() in dec/io_dec.c
1956919 – CVE-2018-25011 libwebp: heap-based buffer overflow in PutLE16()

6. Package List:

Red Hat Enterprise Linux Client (v. 7):

Source:
libwebp-0.3.0-10.el7_9.src.rpm

x86_64:
libwebp-0.3.0-10.el7_9.i686.rpm
libwebp-0.3.0-10.el7_9.x86_64.rpm
libwebp-debuginfo-0.3.0-10.el7_9.i686.rpm
libwebp-debuginfo-0.3.0-10.el7_9.x86_64.rpm

Red Hat Enterprise Linux Client Optional (v. 7):

x86_64:
libwebp-debuginfo-0.3.0-10.el7_9.i686.rpm
libwebp-debuginfo-0.3.0-10.el7_9.x86_64.rpm
libwebp-devel-0.3.0-10.el7_9.i686.rpm
libwebp-devel-0.3.0-10.el7_9.x86_64.rpm
libwebp-java-0.3.0-10.el7_9.x86_64.rpm
libwebp-tools-0.3.0-10.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode (v. 7):

Source:
libwebp-0.3.0-10.el7_9.src.rpm

x86_64:
libwebp-0.3.0-10.el7_9.i686.rpm
libwebp-0.3.0-10.el7_9.x86_64.rpm
libwebp-debuginfo-0.3.0-10.el7_9.i686.rpm
libwebp-debuginfo-0.3.0-10.el7_9.x86_64.rpm

Red Hat Enterprise Linux ComputeNode Optional (v. 7):

Red Hat Enterprise Linux Server (v. 7):

Source:
libwebp-0.3.0-10.el7_9.src.rpm

ppc64:
libwebp-0.3.0-10.el7_9.ppc.rpm
libwebp-0.3.0-10.el7_9.ppc64.rpm
libwebp-debuginfo-0.3.0-10.el7_9.ppc.rpm
libwebp-debuginfo-0.3.0-10.el7_9.ppc64.rpm

ppc64le:
libwebp-0.3.0-10.el7_9.ppc64le.rpm
libwebp-debuginfo-0.3.0-10.el7_9.ppc64le.rpm

s390x:
libwebp-0.3.0-10.el7_9.s390.rpm
libwebp-0.3.0-10.el7_9.s390x.rpm
libwebp-debuginfo-0.3.0-10.el7_9.s390.rpm
libwebp-debuginfo-0.3.0-10.el7_9.s390x.rpm

x86_64:
libwebp-0.3.0-10.el7_9.i686.rpm
libwebp-0.3.0-10.el7_9.x86_64.rpm
libwebp-debuginfo-0.3.0-10.el7_9.i686.rpm
libwebp-debuginfo-0.3.0-10.el7_9.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 7):

ppc64:
libwebp-debuginfo-0.3.0-10.el7_9.ppc.rpm
libwebp-debuginfo-0.3.0-10.el7_9.ppc64.rpm
libwebp-devel-0.3.0-10.el7_9.ppc.rpm
libwebp-devel-0.3.0-10.el7_9.ppc64.rpm
libwebp-java-0.3.0-10.el7_9.ppc64.rpm
libwebp-tools-0.3.0-10.el7_9.ppc64.rpm

ppc64le:
libwebp-debuginfo-0.3.0-10.el7_9.ppc64le.rpm
libwebp-devel-0.3.0-10.el7_9.ppc64le.rpm
libwebp-java-0.3.0-10.el7_9.ppc64le.rpm
libwebp-tools-0.3.0-10.el7_9.ppc64le.rpm

s390x:
libwebp-debuginfo-0.3.0-10.el7_9.s390.rpm
libwebp-debuginfo-0.3.0-10.el7_9.s390x.rpm
libwebp-devel-0.3.0-10.el7_9.s390.rpm
libwebp-devel-0.3.0-10.el7_9.s390x.rpm
libwebp-java-0.3.0-10.el7_9.s390x.rpm
libwebp-tools-0.3.0-10.el7_9.s390x.rpm

Red Hat Enterprise Linux Workstation (v. 7):

Source:
libwebp-0.3.0-10.el7_9.src.rpm

x86_64:
libwebp-0.3.0-10.el7_9.i686.rpm
libwebp-0.3.0-10.el7_9.x86_64.rpm
libwebp-debuginfo-0.3.0-10.el7_9.i686.rpm
libwebp-debuginfo-0.3.0-10.el7_9.x86_64.rpm

Red Hat Enterprise Linux Workstation Optional (v. 7):

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2018-25011
https://access.redhat.com/security/cve/CVE-2020-36328
https://access.redhat.com/security/cve/CVE-2020-36329
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=kWSg
– —–END PGP SIGNATURE—–

– ————————–END INCLUDED TEXT——————–

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
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=HFXq
—–END PGP SIGNATURE—–

The post ESB-2021.1972 – [RedHat] libwebp: Multiple vulnerabilities appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/esb-2021-1972-redhat-libwebp-multiple-vulnerabilities/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-1972-redhat-libwebp-multiple-vulnerabilities

ESB-2021.1973 – [RedHat] nginx:1.18, rh-nginx116-nginx and rh-nginx118-nginx: Multiple vulnerabilities

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.1973
nginx:1.18, rh-nginx116-nginx and rh-nginx118-nginx security update
8 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: nginx:1.18
rh-nginx116-nginx
rh-nginx118-nginx
Publisher: Red Hat
Operating System: Red Hat
Impact/Access: Execute Arbitrary Code/Commands — Remote/Unauthenticated
Denial of Service — Remote/Unauthenticated
Access Confidential Data — Remote/Unauthenticated
Resolution: Patch/Upgrade
CVE Names: CVE-2021-23017

Reference: ESB-2021.1936
ESB-2021.1851

Original Bulletin:
https://access.redhat.com/errata/RHSA-2021:2258
https://access.redhat.com/errata/RHSA-2021:2259
https://access.redhat.com/errata/RHSA-2021:2278

Comment: This bulletin contains three (3) Red Hat security advisories.

– ————————–BEGIN INCLUDED TEXT——————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: rh-nginx118-nginx security update
Advisory ID: RHSA-2021:2258-01
Product: Red Hat Software Collections
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2258
Issue date: 2021-06-07
CVE Names: CVE-2021-23017
=====================================================================

1. Summary:

An update for rh-nginx118-nginx is now available for Red Hat Software
Collections.

2. Relevant releases/architectures:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) – ppc64le, s390x, x86_64
Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7) – ppc64le, s390x, x86_64
Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) – x86_64

3. Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a
focus on high concurrency, performance, and low memory usage.

Security Fix(es):

* nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a
pointer to a root domain name (CVE-2021-23017)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The rh-nginx118-nginx service must be restarted for this update to take
effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

1963121 – CVE-2021-23017 nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name

6. Package List:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):

Source:
rh-nginx118-nginx-1.18.0-3.el7.src.rpm

ppc64le:
rh-nginx118-nginx-1.18.0-3.el7.ppc64le.rpm
rh-nginx118-nginx-debuginfo-1.18.0-3.el7.ppc64le.rpm
rh-nginx118-nginx-mod-http-image-filter-1.18.0-3.el7.ppc64le.rpm
rh-nginx118-nginx-mod-http-perl-1.18.0-3.el7.ppc64le.rpm
rh-nginx118-nginx-mod-http-xslt-filter-1.18.0-3.el7.ppc64le.rpm
rh-nginx118-nginx-mod-mail-1.18.0-3.el7.ppc64le.rpm
rh-nginx118-nginx-mod-stream-1.18.0-3.el7.ppc64le.rpm

s390x:
rh-nginx118-nginx-1.18.0-3.el7.s390x.rpm
rh-nginx118-nginx-debuginfo-1.18.0-3.el7.s390x.rpm
rh-nginx118-nginx-mod-http-image-filter-1.18.0-3.el7.s390x.rpm
rh-nginx118-nginx-mod-http-perl-1.18.0-3.el7.s390x.rpm
rh-nginx118-nginx-mod-http-xslt-filter-1.18.0-3.el7.s390x.rpm
rh-nginx118-nginx-mod-mail-1.18.0-3.el7.s390x.rpm
rh-nginx118-nginx-mod-stream-1.18.0-3.el7.s390x.rpm

x86_64:
rh-nginx118-nginx-1.18.0-3.el7.x86_64.rpm
rh-nginx118-nginx-debuginfo-1.18.0-3.el7.x86_64.rpm
rh-nginx118-nginx-mod-http-image-filter-1.18.0-3.el7.x86_64.rpm
rh-nginx118-nginx-mod-http-perl-1.18.0-3.el7.x86_64.rpm
rh-nginx118-nginx-mod-http-xslt-filter-1.18.0-3.el7.x86_64.rpm
rh-nginx118-nginx-mod-mail-1.18.0-3.el7.x86_64.rpm
rh-nginx118-nginx-mod-stream-1.18.0-3.el7.x86_64.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7):

Source:
rh-nginx118-nginx-1.18.0-3.el7.src.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):

Source:
rh-nginx118-nginx-1.18.0-3.el7.src.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-23017
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=av6T
– —–END PGP SIGNATURE—–

– ——————————————————————————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: nginx:1.18 security update
Advisory ID: RHSA-2021:2259-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2259
Issue date: 2021-06-07
CVE Names: CVE-2021-23017
=====================================================================

1. Summary:

An update for the nginx:1.18 module is now available for Red Hat Enterprise
Linux 8.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) – aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a
focus on high concurrency, performance, and low memory usage.

Security Fix(es):

* nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a
pointer to a root domain name (CVE-2021-23017)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1963121 – CVE-2021-23017 nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
nginx-1.18.0-3.module+el8.4.0+11152+f736ed63.1.src.rpm

aarch64:
nginx-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-debugsource-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-http-image-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-http-image-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-http-perl-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-http-perl-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-http-xslt-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-http-xslt-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-mail-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-mail-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-stream-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm
nginx-mod-stream-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.aarch64.rpm

noarch:
nginx-all-modules-1.18.0-3.module+el8.4.0+11152+f736ed63.1.noarch.rpm
nginx-filesystem-1.18.0-3.module+el8.4.0+11152+f736ed63.1.noarch.rpm

ppc64le:
nginx-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-debugsource-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-http-image-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-http-image-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-http-perl-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-http-perl-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-http-xslt-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-http-xslt-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-mail-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-mail-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-stream-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm
nginx-mod-stream-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.ppc64le.rpm

s390x:
nginx-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-debugsource-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-http-image-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-http-image-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-http-perl-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-http-perl-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-http-xslt-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-http-xslt-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-mail-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-mail-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-stream-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm
nginx-mod-stream-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.s390x.rpm

x86_64:
nginx-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-debugsource-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-http-image-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-http-image-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-http-perl-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-http-perl-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-http-xslt-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-http-xslt-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-mail-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-mail-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-stream-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm
nginx-mod-stream-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-23017
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=gTXT
– —–END PGP SIGNATURE—–

– ——————————————————————————–

– —–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: rh-nginx116-nginx security update
Advisory ID: RHSA-2021:2278-01
Product: Red Hat Software Collections
Advisory URL: https://access.redhat.com/errata/RHSA-2021:2278
Issue date: 2021-06-07
CVE Names: CVE-2021-23017
=====================================================================

1. Summary:

An update for rh-nginx116-nginx is now available for Red Hat Software
Collections.

2. Relevant releases/architectures:

3. Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a
focus on high concurrency, performance, and low memory usage.

Security Fix(es):

* nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a
pointer to a root domain name (CVE-2021-23017)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

The rh-nginx116-nginx service must be restarted for this update to take
effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

1963121 – CVE-2021-23017 nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name

6. Package List:

Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):

Source:
rh-nginx116-nginx-1.16.1-6.el7.src.rpm

ppc64le:
rh-nginx116-nginx-1.16.1-6.el7.ppc64le.rpm
rh-nginx116-nginx-debuginfo-1.16.1-6.el7.ppc64le.rpm
rh-nginx116-nginx-mod-http-image-filter-1.16.1-6.el7.ppc64le.rpm
rh-nginx116-nginx-mod-http-perl-1.16.1-6.el7.ppc64le.rpm
rh-nginx116-nginx-mod-http-xslt-filter-1.16.1-6.el7.ppc64le.rpm
rh-nginx116-nginx-mod-mail-1.16.1-6.el7.ppc64le.rpm
rh-nginx116-nginx-mod-stream-1.16.1-6.el7.ppc64le.rpm

s390x:
rh-nginx116-nginx-1.16.1-6.el7.s390x.rpm
rh-nginx116-nginx-debuginfo-1.16.1-6.el7.s390x.rpm
rh-nginx116-nginx-mod-http-image-filter-1.16.1-6.el7.s390x.rpm
rh-nginx116-nginx-mod-http-perl-1.16.1-6.el7.s390x.rpm
rh-nginx116-nginx-mod-http-xslt-filter-1.16.1-6.el7.s390x.rpm
rh-nginx116-nginx-mod-mail-1.16.1-6.el7.s390x.rpm
rh-nginx116-nginx-mod-stream-1.16.1-6.el7.s390x.rpm

x86_64:
rh-nginx116-nginx-1.16.1-6.el7.x86_64.rpm
rh-nginx116-nginx-debuginfo-1.16.1-6.el7.x86_64.rpm
rh-nginx116-nginx-mod-http-image-filter-1.16.1-6.el7.x86_64.rpm
rh-nginx116-nginx-mod-http-perl-1.16.1-6.el7.x86_64.rpm
rh-nginx116-nginx-mod-http-xslt-filter-1.16.1-6.el7.x86_64.rpm
rh-nginx116-nginx-mod-mail-1.16.1-6.el7.x86_64.rpm
rh-nginx116-nginx-mod-stream-1.16.1-6.el7.x86_64.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7):

Source:
rh-nginx116-nginx-1.16.1-6.el7.src.rpm

Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):

Source:
rh-nginx116-nginx-1.16.1-6.el7.src.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2021-23017
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/
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=dc6n
– —–END PGP SIGNATURE—–

– ————————–END INCLUDED TEXT——————–

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

iQIVAwUBYL662uNLKJtyKPYoAQiutg//cdfTUtJ0HqrMoo/xfBJK/oUMg0TKPRgD
KhxI5cgIqt76sLJOwzgtzzRGQ63MKaQU+4WX8gdXU3h/tXv+Hf3ye5bbGhIfxGsH
HX0YSFXrjlklZSFU7TFQBhPPnvPnaWF4k4vlcSXYql3vvZYRaVNie0/9XfvixVWV
fqb4FBjE8nvben2RyMHPqCEMmDwqbHVXuUVMRftVy3eGOv6Y/R+QnzMeyafr2PfH
MBRT7StPIciNDDkzB8IcZuJ7BP4NR7hsJ5IzCIOd8uRPNJolyXRDaQfQFa2qa/L8
nEuNirOlgUtcdYaZS4BceqpHJdJmDaozdgPOrzBXYAh5iw4ghm1IQqIMFaoQ7hwL
+TIzb/QJsfNpBqZuOyKMwwrOp5+Ecc3hG6ereri+CzgeZzp8xwVmSWi3KI99ib8V
GEilVf9nPFpTsQQqul3xU02kVC863TZ1ANbdkGKC9reO5+YHIIDqAurg9tA4L8OT
zy5oOT0lNkt9jF0cLOd2mVWEDK3NAD190DoOIUAJ/IdGDyXlETyUEZAu4iiqW346
LgtzsyOHbkblaa4xK9dVG3kcNbogGcK+ykYXYNF56BirjGOlytL/6g7HKI3nxcwo
thlbQ7hQF5hGCY28kWcHVtJ4nwZ+uWe9lS6+Mdxv6o/wLNDirL5otqOyL4yE0y96
lJcdAHjrzWQ=
=4j7P
—–END PGP SIGNATURE—–

The post ESB-2021.1973 – [RedHat] nginx:1.18, rh-nginx116-nginx and rh-nginx118-nginx: Multiple vulnerabilities appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/esb-2021-1973-redhat-nginx1-18-rh-nginx116-nginx-and-rh-nginx118-nginx-multiple-vulnerabilities/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-1973-redhat-nginx1-18-rh-nginx116-nginx-and-rh-nginx118-nginx-multiple-vulnerabilities

ESB-2021.1974 – [Win][UNIX/Linux][Debian] nginx: Reduced security – Unknown/unspecified

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

===========================================================================
AUSCERT External Security Bulletin Redistribution

ESB-2021.1974
nginx security update
8 June 2021

===========================================================================

AusCERT Security Bulletin Summary
———————————

Product: nginx
Publisher: Debian
Operating System: Debian GNU/Linux
UNIX variants (UNIX, Linux, OSX)
Windows
Impact/Access: Reduced Security — Unknown/Unspecified
Resolution: Patch/Upgrade
CVE Names: CVE-2017-20005

Original Bulletin:
https://lists.debian.org/debian-lts-announce/2021/06/msg00009.html

Comment: This advisory references vulnerabilities in products which run on
platforms other than Debian. It is recommended that administrators
running nginx check for an updated version of the software for their
operating system.

– ————————–BEGIN INCLUDED TEXT——————–

– ————————————————————————-
Debian LTS Advisory DLA-2680-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Markus Koschany
June 07, 2021 https://wiki.debian.org/LTS
– ————————————————————————-

Package : nginx
Version : 1.10.3-1+deb9u7
CVE ID : CVE-2017-20005

Jamie Landeg-Jones and Manfred Paul discovered a buffer overflow vulnerability
in NGINX, a small, powerful, scalable web/proxy server.

NGINX has a buffer overflow for years that exceed four digits, as demonstrated
by a file with a modification date in 1969 that causes an integer overflow(or
a false modification date far in the future), when encountered by the autoindex
module.

For Debian 9 stretch, this problem has been fixed in version
1.10.3-1+deb9u7.

We recommend that you upgrade your nginx packages.

For the detailed security status of nginx please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/nginx

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

– —–BEGIN PGP SIGNATURE—–
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=WHAg
– —–END PGP SIGNATURE—–

– ————————–END INCLUDED TEXT——————–

Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
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=dRGo
—–END PGP SIGNATURE—–

The post ESB-2021.1974 – [Win][UNIX/Linux][Debian] nginx: Reduced security – Unknown/unspecified appeared first on Malware Devil.

https://malwaredevil.com/2021/06/08/esb-2021-1974-winunix-linuxdebian-nginx-reduced-security-unknown-unspecified/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2021-1974-winunix-linuxdebian-nginx-reduced-security-unknown-unspecified

Malware Devil

Malware Devil

Tuesday, June 8, 2021

Introducing the Detection of Multi-Accounting

A Look into Chuck Brooks’s Alarming Cybersecurity Stats

Best Practices for Ransomware Defense

Choosing the Right AI Components in Your Security Tools

ISC Stormcast For Tuesday, June 8th, 2021 https://isc.sans.edu/podcastdetail.html?id=7532, (Tue, Jun 8th)

ESB-2021.1569.2 – UPDATE [Ubuntu] GNOME Autoar: Overwrite arbitrary files – Existing account

ESB-2021.1834.2 – UPDATE [UNIX/Linux][Ubuntu] isc-dhcp: Denial of service – Remote/unauthenticated

ESB-2021.1971 – [RedHat] thunderbird: Multiple vulnerabilities

ESB-2021.1972 – [RedHat] libwebp: Multiple vulnerabilities

ESB-2021.1973 – [RedHat] nginx:1.18, rh-nginx116-nginx and rh-nginx118-nginx: Multiple vulnerabilities

ESB-2021.1974 – [Win][UNIX/Linux][Debian] nginx: Reduced security – Unknown/unspecified

Barbary Pirates and Russian Cybercrime

Blog Archive

About Me