Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2019.1858
Critical: firefox security update
24 May 2019
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: firefox
Publisher: Red Hat
Operating System: Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux WS/Desktop 6
Red Hat Enterprise Linux Server 7
Red Hat Enterprise Linux WS/Desktop 7
Red Hat Enterprise Linux Server 8
Red Hat Enterprise Linux WS/Desktop 8
Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction
Cross-site Scripting -- Remote with User Interaction
Denial of Service -- Remote with User Interaction
Provide Misleading Information -- Remote with User Interaction
Access Confidential Data -- Remote with User Interaction
Reduced Security -- Remote with User Interaction
Resolution: Patch/Upgrade
CVE Names: CVE-2019-11698 CVE-2019-11693 CVE-2019-11692
CVE-2019-11691 CVE-2019-9820 CVE-2019-9819
CVE-2019-9817 CVE-2019-9816 CVE-2019-9800
CVE-2019-9797 CVE-2019-7317 CVE-2019-5798
CVE-2018-18511
Reference: ASB-2019.0082
ASB-2019.0079
ASB-2019.0055
ESB-2019.1848
Original Bulletin:
https://access.redhat.com/errata/RHSA-2019:1267
https://access.redhat.com/errata/RHSA-2019:1265
https://access.redhat.com/errata/RHSA-2019:1269
Comment: This bulletin contains three (3) Red Hat security advisories.
- --------------------------BEGIN INCLUDED TEXT--------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Critical: firefox security update
Advisory ID: RHSA-2019:1267-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2019:1267
Issue date: 2019-05-23
CVE Names: CVE-2018-18511 CVE-2019-5798 CVE-2019-7317
CVE-2019-9797 CVE-2019-9800 CVE-2019-9816
CVE-2019-9817 CVE-2019-9819 CVE-2019-9820
CVE-2019-11691 CVE-2019-11692 CVE-2019-11693
CVE-2019-11698
=====================================================================
1. Summary:
An update for firefox is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Desktop Optional (v. 6) - x86_64
Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64
Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64
Red Hat Enterprise Linux Workstation Optional (v. 6) - x86_64
3. Description:
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance, and portability.
This update upgrades Firefox to version 60.7.0 ESR.
Security Fix(es):
* Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
(CVE-2019-9800)
* Mozilla: Cross-origin theft of images with createImageBitmap
(CVE-2019-9797)
* Mozilla: Type confusion with object groups and UnboxedObjects
(CVE-2019-9816)
* Mozilla: Stealing of cross-domain images using canvas (CVE-2019-9817)
* Mozilla: Compartment mismatch with fetch API (CVE-2019-9819)
* Mozilla: Use-after-free of ChromeEventHandler by DocShell (CVE-2019-9820)
* Mozilla: Use-after-free in XMLHttpRequest (CVE-2019-11691)
* Mozilla: Use-after-free removing listeners in the event listener manager
(CVE-2019-11692)
* Mozilla: Buffer overflow in WebGL bufferdata on Linux (CVE-2019-11693)
* mozilla: Cross-origin theft of images with ImageBitmapRenderingContext
(CVE-2018-18511)
* chromium-browser: Out of bounds read in Skia (CVE-2019-5798)
* Mozilla: Theft of user history data through drag and drop of hyperlinks
to and from bookmarks (CVE-2019-11698)
* libpng: use-after-free in png_image_free in png.c (CVE-2019-7317)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing the update, Firefox must be restarted for the changes to
take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1672409 - CVE-2019-7317 libpng: use-after-free in png_image_free in png.c
1676997 - CVE-2018-18511 mozilla: Cross-origin theft of images with ImageBitmapRenderingContext
1688200 - CVE-2019-5798 chromium-browser: Out of bounds read in Skia
1712617 - CVE-2019-11691 Mozilla: Use-after-free in XMLHttpRequest
1712618 - CVE-2019-11692 Mozilla: Use-after-free removing listeners in the event listener manager
1712619 - CVE-2019-11693 Mozilla: Buffer overflow in WebGL bufferdata on Linux
1712621 - CVE-2019-11698 Mozilla: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
1712622 - CVE-2019-9797 Mozilla: Cross-origin theft of images with createImageBitmap
1712623 - CVE-2019-9800 Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
1712625 - CVE-2019-9816 Mozilla: Type confusion with object groups and UnboxedObjects
1712626 - CVE-2019-9817 Mozilla: Stealing of cross-domain images using canvas
1712628 - CVE-2019-9819 Mozilla: Compartment mismatch with fetch API
1712629 - CVE-2019-9820 Mozilla: Use-after-free of ChromeEventHandler by DocShell
6. Package List:
Red Hat Enterprise Linux Desktop (v. 6):
Source:
firefox-60.7.0-1.el6_10.src.rpm
i386:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
x86_64:
firefox-60.7.0-1.el6_10.x86_64.rpm
firefox-debuginfo-60.7.0-1.el6_10.x86_64.rpm
Red Hat Enterprise Linux Desktop Optional (v. 6):
x86_64:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
Red Hat Enterprise Linux HPC Node Optional (v. 6):
Source:
firefox-60.7.0-1.el6_10.src.rpm
x86_64:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-60.7.0-1.el6_10.x86_64.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.x86_64.rpm
Red Hat Enterprise Linux Server (v. 6):
Source:
firefox-60.7.0-1.el6_10.src.rpm
i386:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
ppc64:
firefox-60.7.0-1.el6_10.ppc64.rpm
firefox-debuginfo-60.7.0-1.el6_10.ppc64.rpm
s390x:
firefox-60.7.0-1.el6_10.s390x.rpm
firefox-debuginfo-60.7.0-1.el6_10.s390x.rpm
x86_64:
firefox-60.7.0-1.el6_10.x86_64.rpm
firefox-debuginfo-60.7.0-1.el6_10.x86_64.rpm
Red Hat Enterprise Linux Server Optional (v. 6):
x86_64:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
Red Hat Enterprise Linux Workstation (v. 6):
Source:
firefox-60.7.0-1.el6_10.src.rpm
i386:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
x86_64:
firefox-60.7.0-1.el6_10.x86_64.rpm
firefox-debuginfo-60.7.0-1.el6_10.x86_64.rpm
Red Hat Enterprise Linux Workstation Optional (v. 6):
x86_64:
firefox-60.7.0-1.el6_10.i686.rpm
firefox-debuginfo-60.7.0-1.el6_10.i686.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2018-18511
https://access.redhat.com/security/cve/CVE-2019-5798
https://access.redhat.com/security/cve/CVE-2019-7317
https://access.redhat.com/security/cve/CVE-2019-9797
https://access.redhat.com/security/cve/CVE-2019-9800
https://access.redhat.com/security/cve/CVE-2019-9816
https://access.redhat.com/security/cve/CVE-2019-9817
https://access.redhat.com/security/cve/CVE-2019-9819
https://access.redhat.com/security/cve/CVE-2019-9820
https://access.redhat.com/security/cve/CVE-2019-11691
https://access.redhat.com/security/cve/CVE-2019-11692
https://access.redhat.com/security/cve/CVE-2019-11693
https://access.redhat.com/security/cve/CVE-2019-11698
https://access.redhat.com/security/updates/classification/#critical
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2019 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=PKHG
- -----END PGP SIGNATURE-----
- ---------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Critical: firefox security update
Advisory ID: RHSA-2019:1265-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2019:1265
Issue date: 2019-05-23
CVE Names: CVE-2018-18511 CVE-2019-5798 CVE-2019-7317
CVE-2019-9797 CVE-2019-9800 CVE-2019-9816
CVE-2019-9817 CVE-2019-9819 CVE-2019-9820
CVE-2019-11691 CVE-2019-11692 CVE-2019-11693
CVE-2019-11698
=====================================================================
1. Summary:
An update for firefox is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux Client (v. 7) - x86_64
Red Hat Enterprise Linux Client Optional (v. 7) - x86_64
Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 7) - x86_64
Red Hat Enterprise Linux Workstation (v. 7) - x86_64
Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64
Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - aarch64, ppc64le, s390x
3. Description:
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance, and portability.
This update upgrades Firefox to version 60.7.0 ESR.
Security Fix(es):
* Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
(CVE-2019-9800)
* Mozilla: Cross-origin theft of images with createImageBitmap
(CVE-2019-9797)
* Mozilla: Type confusion with object groups and UnboxedObjects
(CVE-2019-9816)
* Mozilla: Stealing of cross-domain images using canvas (CVE-2019-9817)
* Mozilla: Compartment mismatch with fetch API (CVE-2019-9819)
* Mozilla: Use-after-free of ChromeEventHandler by DocShell (CVE-2019-9820)
* Mozilla: Use-after-free in XMLHttpRequest (CVE-2019-11691)
* Mozilla: Use-after-free removing listeners in the event listener manager
(CVE-2019-11692)
* Mozilla: Buffer overflow in WebGL bufferdata on Linux (CVE-2019-11693)
* mozilla: Cross-origin theft of images with ImageBitmapRenderingContext
(CVE-2018-18511)
* chromium-browser: Out of bounds read in Skia (CVE-2019-5798)
* Mozilla: Theft of user history data through drag and drop of hyperlinks
to and from bookmarks (CVE-2019-11698)
* libpng: use-after-free in png_image_free in png.c (CVE-2019-7317)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing the update, Firefox must be restarted for the changes to
take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1672409 - CVE-2019-7317 libpng: use-after-free in png_image_free in png.c
1676997 - CVE-2018-18511 mozilla: Cross-origin theft of images with ImageBitmapRenderingContext
1688200 - CVE-2019-5798 chromium-browser: Out of bounds read in Skia
1712617 - CVE-2019-11691 Mozilla: Use-after-free in XMLHttpRequest
1712618 - CVE-2019-11692 Mozilla: Use-after-free removing listeners in the event listener manager
1712619 - CVE-2019-11693 Mozilla: Buffer overflow in WebGL bufferdata on Linux
1712621 - CVE-2019-11698 Mozilla: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
1712622 - CVE-2019-9797 Mozilla: Cross-origin theft of images with createImageBitmap
1712623 - CVE-2019-9800 Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
1712625 - CVE-2019-9816 Mozilla: Type confusion with object groups and UnboxedObjects
1712626 - CVE-2019-9817 Mozilla: Stealing of cross-domain images using canvas
1712628 - CVE-2019-9819 Mozilla: Compartment mismatch with fetch API
1712629 - CVE-2019-9820 Mozilla: Use-after-free of ChromeEventHandler by DocShell
6. Package List:
Red Hat Enterprise Linux Client (v. 7):
Source:
firefox-60.7.0-1.el7_6.src.rpm
x86_64:
firefox-60.7.0-1.el7_6.x86_64.rpm
firefox-debuginfo-60.7.0-1.el7_6.x86_64.rpm
Red Hat Enterprise Linux Client Optional (v. 7):
x86_64:
firefox-60.7.0-1.el7_6.i686.rpm
firefox-debuginfo-60.7.0-1.el7_6.i686.rpm
Red Hat Enterprise Linux Server (v. 7):
Source:
firefox-60.7.0-1.el7_6.src.rpm
ppc64:
firefox-60.7.0-1.el7_6.ppc64.rpm
firefox-debuginfo-60.7.0-1.el7_6.ppc64.rpm
ppc64le:
firefox-60.7.0-1.el7_6.ppc64le.rpm
firefox-debuginfo-60.7.0-1.el7_6.ppc64le.rpm
s390x:
firefox-60.7.0-1.el7_6.s390x.rpm
firefox-debuginfo-60.7.0-1.el7_6.s390x.rpm
x86_64:
firefox-60.7.0-1.el7_6.x86_64.rpm
firefox-debuginfo-60.7.0-1.el7_6.x86_64.rpm
Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7):
Source:
firefox-60.7.0-1.el7_6.src.rpm
aarch64:
firefox-60.7.0-1.el7_6.aarch64.rpm
firefox-debuginfo-60.7.0-1.el7_6.aarch64.rpm
ppc64le:
firefox-60.7.0-1.el7_6.ppc64le.rpm
firefox-debuginfo-60.7.0-1.el7_6.ppc64le.rpm
s390x:
firefox-60.7.0-1.el7_6.s390x.rpm
firefox-debuginfo-60.7.0-1.el7_6.s390x.rpm
Red Hat Enterprise Linux Server Optional (v. 7):
x86_64:
firefox-60.7.0-1.el7_6.i686.rpm
firefox-debuginfo-60.7.0-1.el7_6.i686.rpm
Red Hat Enterprise Linux Workstation (v. 7):
Source:
firefox-60.7.0-1.el7_6.src.rpm
x86_64:
firefox-60.7.0-1.el7_6.x86_64.rpm
firefox-debuginfo-60.7.0-1.el7_6.x86_64.rpm
Red Hat Enterprise Linux Workstation Optional (v. 7):
x86_64:
firefox-60.7.0-1.el7_6.i686.rpm
firefox-debuginfo-60.7.0-1.el7_6.i686.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2018-18511
https://access.redhat.com/security/cve/CVE-2019-5798
https://access.redhat.com/security/cve/CVE-2019-7317
https://access.redhat.com/security/cve/CVE-2019-9797
https://access.redhat.com/security/cve/CVE-2019-9800
https://access.redhat.com/security/cve/CVE-2019-9816
https://access.redhat.com/security/cve/CVE-2019-9817
https://access.redhat.com/security/cve/CVE-2019-9819
https://access.redhat.com/security/cve/CVE-2019-9820
https://access.redhat.com/security/cve/CVE-2019-11691
https://access.redhat.com/security/cve/CVE-2019-11692
https://access.redhat.com/security/cve/CVE-2019-11693
https://access.redhat.com/security/cve/CVE-2019-11698
https://access.redhat.com/security/updates/classification/#critical
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2019 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Lhyh
- -----END PGP SIGNATURE-----
- ---------------------------------------------------------------------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=====================================================================
Red Hat Security Advisory
Synopsis: Critical: firefox security update
Advisory ID: RHSA-2019:1269-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2019:1269
Issue date: 2019-05-23
CVE Names: CVE-2018-18511 CVE-2019-5798 CVE-2019-7317
CVE-2019-9797 CVE-2019-9800 CVE-2019-9816
CVE-2019-9817 CVE-2019-9819 CVE-2019-9820
CVE-2019-11691 CVE-2019-11692 CVE-2019-11693
CVE-2019-11698
=====================================================================
1. Summary:
An update for firefox is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64
3. Description:
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance, and portability.
This update upgrades Firefox to version 60.7.0 ESR.
Security Fix(es):
* Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
(CVE-2019-9800)
* Mozilla: Cross-origin theft of images with createImageBitmap
(CVE-2019-9797)
* Mozilla: Type confusion with object groups and UnboxedObjects
(CVE-2019-9816)
* Mozilla: Stealing of cross-domain images using canvas (CVE-2019-9817)
* Mozilla: Compartment mismatch with fetch API (CVE-2019-9819)
* Mozilla: Use-after-free of ChromeEventHandler by DocShell (CVE-2019-9820)
* Mozilla: Use-after-free in XMLHttpRequest (CVE-2019-11691)
* Mozilla: Use-after-free removing listeners in the event listener manager
(CVE-2019-11692)
* Mozilla: Buffer overflow in WebGL bufferdata on Linux (CVE-2019-11693)
* mozilla: Cross-origin theft of images with ImageBitmapRenderingContext
(CVE-2018-18511)
* chromium-browser: Out of bounds read in Skia (CVE-2019-5798)
* Mozilla: Theft of user history data through drag and drop of hyperlinks
to and from bookmarks (CVE-2019-11698)
* libpng: use-after-free in png_image_free in png.c (CVE-2019-7317)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
After installing the update, Firefox must be restarted for the changes to
take effect.
5. Bugs fixed (https://bugzilla.redhat.com/):
1672409 - CVE-2019-7317 libpng: use-after-free in png_image_free in png.c
1676997 - CVE-2018-18511 mozilla: Cross-origin theft of images with ImageBitmapRenderingContext
1688200 - CVE-2019-5798 chromium-browser: Out of bounds read in Skia
1712617 - CVE-2019-11691 Mozilla: Use-after-free in XMLHttpRequest
1712618 - CVE-2019-11692 Mozilla: Use-after-free removing listeners in the event listener manager
1712619 - CVE-2019-11693 Mozilla: Buffer overflow in WebGL bufferdata on Linux
1712621 - CVE-2019-11698 Mozilla: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
1712622 - CVE-2019-9797 Mozilla: Cross-origin theft of images with createImageBitmap
1712623 - CVE-2019-9800 Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
1712625 - CVE-2019-9816 Mozilla: Type confusion with object groups and UnboxedObjects
1712626 - CVE-2019-9817 Mozilla: Stealing of cross-domain images using canvas
1712628 - CVE-2019-9819 Mozilla: Compartment mismatch with fetch API
1712629 - CVE-2019-9820 Mozilla: Use-after-free of ChromeEventHandler by DocShell
6. Package List:
Red Hat Enterprise Linux AppStream (v. 8):
Source:
firefox-60.7.0-1.el8_0.src.rpm
aarch64:
firefox-60.7.0-1.el8_0.aarch64.rpm
firefox-debuginfo-60.7.0-1.el8_0.aarch64.rpm
firefox-debugsource-60.7.0-1.el8_0.aarch64.rpm
ppc64le:
firefox-60.7.0-1.el8_0.ppc64le.rpm
firefox-debuginfo-60.7.0-1.el8_0.ppc64le.rpm
firefox-debugsource-60.7.0-1.el8_0.ppc64le.rpm
s390x:
firefox-60.7.0-1.el8_0.s390x.rpm
firefox-debuginfo-60.7.0-1.el8_0.s390x.rpm
firefox-debugsource-60.7.0-1.el8_0.s390x.rpm
x86_64:
firefox-60.7.0-1.el8_0.x86_64.rpm
firefox-debuginfo-60.7.0-1.el8_0.x86_64.rpm
firefox-debugsource-60.7.0-1.el8_0.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2018-18511
https://access.redhat.com/security/cve/CVE-2019-5798
https://access.redhat.com/security/cve/CVE-2019-7317
https://access.redhat.com/security/cve/CVE-2019-9797
https://access.redhat.com/security/cve/CVE-2019-9800
https://access.redhat.com/security/cve/CVE-2019-9816
https://access.redhat.com/security/cve/CVE-2019-9817
https://access.redhat.com/security/cve/CVE-2019-9819
https://access.redhat.com/security/cve/CVE-2019-9820
https://access.redhat.com/security/cve/CVE-2019-11691
https://access.redhat.com/security/cve/CVE-2019-11692
https://access.redhat.com/security/cve/CVE-2019-11693
https://access.redhat.com/security/cve/CVE-2019-11698
https://access.redhat.com/security/updates/classification/#critical
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2019 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=AU8h
- -----END PGP SIGNATURE-----
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=81N2
-----END PGP SIGNATURE-----