Your review has been sent successfully

Red Hat Updates

2710
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Warning Date

Severity Level

Warning Number

Target Sector

7 April, 2020

● High

2020-1105

All

Description:

Red hat has released security updates to address multiple vulnerabilities in the following products:

  • nodejs:10
  • telnet
    • Red Hat Enterprise Linux for x86_64 8 x86_64
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.1 x86_64
    • Red Hat Enterprise Linux for IBM z Systems 8 s390x
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.1 s390x
    • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.1 ppc64le
    • Red Hat Enterprise Linux for ARM 64 8 aarch64
    • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.1 aarch64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.1 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.1 x86_64
  • python-django
  • python-XStatic-jQuery
  • openstack-manila
    • Red Hat OpenStack 15 x86_64
    • Red Hat OpenStack for IBM Power 15 ppc64le telnet
    • Red Hat Enterprise Linux Server 6 x86_64
    • Red Hat Enterprise Linux Server 6 i386
    • Red Hat Enterprise Linux Workstation 6 x86_64
    • Red Hat Enterprise Linux Workstation 6 i386
    • Red Hat Enterprise Linux Desktop 6 x86_64
    • Red Hat Enterprise Linux Desktop 6 i386
    • Red Hat Enterprise Linux for IBM z Systems 6 s390x
    • Red Hat Enterprise Linux for Power, big endian 6 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
    • Red Hat Enterprise Linux Server 7 x86_64
    • Red Hat Enterprise Linux Workstation 7 x86_64
    • Red Hat Enterprise Linux Desktop 7 x86_64
    • Red Hat Enterprise Linux for IBM z Systems 7 s390x
    • Red Hat Enterprise Linux for Power, big endian 7 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
    • Red Hat Enterprise Linux for Power, little endian 7 ppc64le Ksh
    • Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64
    • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.6 s390x
    • Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.6 ppc64
    • Red Hat Enterprise Linux EUS Compute Node 7.6 x86_64
    • Red Hat Enterprise Linux Server - AUS 7.6 x86_64
    • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.6 ppc64le
    • Red Hat Enterprise Linux Server - TUS 7.6 x86_64
    • Red Hat Enterprise Linux for ARM 64 7 aarch64
    • Red Hat Enterprise Linux for Power 9 7 ppc64le
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.6 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64
    • Red Hat Enterprise Linux for IBM System z (Structure A) 7 s390x
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.0 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.0 x86_64 Ipmitool
    • Red Hat Enterprise Linux Server 6 x86_64
    • Red Hat Enterprise Linux Server 6 i386
    • Red Hat Enterprise Linux Workstation 6 x86_64
    • Red Hat Enterprise Linux Workstation 6 i386
    • Red Hat Enterprise Linux Desktop 6 x86_64
    • Red Hat Enterprise Linux Desktop 6 i386
    • Red Hat Enterprise Linux for IBM z Systems 6 s390x
    • Red Hat Enterprise Linux for Power, big endian 6 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
  • nodejs:10
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.0 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.0 x86_64
    • Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP2
    • Red Hat JBoss Core Services 1 for RHEL 7 x86_64
    • Red Hat JBoss Core Services 1 for RHEL 6 x86_64
    • Red Hat JBoss Core Services 1 for RHEL 6 i386
    • Red Hat JBoss Core Services Text-Only Advisories x86_64
  • Firefox
    • Red Hat Enterprise Linux Server 7 x86_64
    • Red Hat Enterprise Linux Workstation 7 x86_64
    • Red Hat Enterprise Linux Desktop 7 x86_64
    • Red Hat Enterprise Linux for IBM z Systems 7 s390x
    • Red Hat Enterprise Linux for Power, big endian 7 ppc64
    • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
    • Red Hat Enterprise Linux Server 6 x86_64
    • Red Hat Enterprise Linux Server 6 i386
    • Red Hat Enterprise Linux Workstation 6 x86_64
    • Red Hat Enterprise Linux Workstation 6 i386
    • Red Hat Enterprise Linux Desktop 6 x86_64
    • Red Hat Enterprise Linux Desktop 6 i386
    • Red Hat Enterprise Linux for IBM z Systems 6 s390x
    • Red Hat Enterprise Linux for Power, big endian 6 ppc64
    • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.0 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.0 x86_64
  • virt:rhel
    • Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 8.0 ppc64le
    • Red Hat Enterprise Linux Server - Update Services for SAP Solutions 8.0 x86_64

Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Execute arbitrary code remotely
  • Code Injection
  • Denial of Service (DoS)

Best practice and Recommendations:

The CERT team encourages users to apply the necessary updates according to the links below:

Last updated at 7 April, 2020

Rate the content

rate-icon
up icon