RHSA-2015:0126Critical
Red Hat Security Advisory: rhev-hypervisor6 security update
🔗 CVE IDs covered (6)
📋 Description
CVE-2014-3511 — openssl: TLS protocol downgrade attack CVE-2014-3567 — openssl: Invalid TLS/SSL session tickets could cause memory leak leading to server crash CVE-2014-3611 — kernel: kvm: PIT timer race condition CVE-2014-3645 — kernel: kvm: vmx: invept vm exit not handled CVE-2014-3646 — kernel: kvm: vmx: invvpid vm exit not handled CVE-2015-0235 — glibc: __nss_hostname_digits_dots() heap-based buffer overflow
🔗 References (12)
- selfhttps://access.redhat.com/errata/RHSA-2015:0126
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1127504
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1144825
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1144835
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1144878
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1152563
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1152961
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1180044
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1183461
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1185720
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0126.json