CESA-2016:2974

An update for gstreamer-plugins-bad-free is now available for Red Hat Enterprise
Linux 6.

Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

 

GStreamer is a streaming media framework based on graphs of filters which

operate on media data. The gstreamer-plugins-bad-free package contains a

collection of plug-ins for GStreamer.

 

Security Fix(es):

 

* An integer overflow flaw, leading to a heap-based buffer overflow, was found

in GStreamer’s VMware VMnc video file format decoding plug-in. A remote attacker

could use this flaw to cause an application using GStreamer to crash or,

potentially, execute arbitrary code with the privileges of the user running the

application. (CVE-2016-9445)

 

* A memory corruption flaw was found in GStreamer’s Nintendo NSF music file

format decoding plug-in. A remote attacker could use this flaw to cause an

application using GStreamer to crash or, potentially, execute arbitrary code

with the privileges of the user running the application. (CVE-2016-9447)

 Bugs Fixed

Note: This updates removes the vulnerable Nintendo NSF plug-in.

 1395126 – CVE-2016-9447 gstreamer-plugins-bad-free: Memory corruption flaw in NSF decoder
1395767 – CVE-2016-9445 gstreamer-plugins-bad-free: Integer overflow when allocating render buffer in VMnc decoder

CESA-2016:2972

An update for vim is now available for Red Hat Enterprise Linux 6 and Red Hat
Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

Vim (Vi IMproved) is an updated and improved version of the vi editor.

Security Fix(es):

* A vulnerability was found in vim in how certain modeline options were treated.
An attacker could craft a file that, when opened in vim with modelines enabled,
could execute arbitrary commands with privileges of the user running vim.
(CVE-2016-1248)

Bugs Fixed

CESA-2016:2962

An update for kernel is now available for Red Hat Enterprise Linux 5.

Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

The kernel packages contain the Linux kernel, the core of any Linux operating
system.

Security Fix(es):

* A use-after-free vulnerability was found in the kernels socket recvmmsg
subsystem. This may allows remote attackers to corrupt memory and may allow
execution of arbitrary code. This corruption takes place during the error
handling routines within __sys_recvmmsg() function. (CVE-2016-7117, Important)

Bug Fix(es):

* Previously, guest virtual machines (VMs) on a Hyper-V server cluster got in
some cases rebooted during the graceful node failover test, because the host
kept sending heartbeat packets independently of guests responding to them. This
update fixes the bug by properly responding to all the heartbeat messages in the
queue, even if they are pending. As a result, guest VMs no longer get rebooted
under the described circumstances. (BZ#1391167)

Bugs Fixed

CESA-2016:2946

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat
Enterprise Linux 6, and Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of
Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.

Mozilla Firefox is an open source web browser.

This update upgrades Firefox to version 45.6.0 ESR.

Security Fix(es):

* Multiple flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or, potentially,
execute arbitrary code with the privileges of the user running Firefox.
(CVE-2016-9893, CVE-2016-9899, CVE-2016-9895, CVE-2016-9897, CVE-2016-9898,
CVE-2016-9900, CVE-2016-9901, CVE-2016-9902, CVE-2016-9904, CVE-2016-9905)

Red Hat would like to thank the Mozilla project for reporting these issues.
Upstream acknowledges Philipp, Wladimir Palant, Nils, Jann Horn, Aral, Andrew
Krasichkov, insertscript, Jan de Mooij, Iris Hsiao, Christian Holler, Carsten
Book, Timothy Nikkel, Christoph Diehl, Olli Pettay, Raymond Forbes, and Boris
Zbarsky as the original reporters.

Bugs Fixed

CESA-2016:2850

 

An update for thunderbird is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 45.5.1.

 

Security Fix(es)

 

* A flaw was found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2016-9079)
Red Hat would like to thank the Mozilla project for reporting this issue.

Bug Fixed

Bug 1400376 – (CVE-2016-9079) CVE-2016-9079
https://bugzilla.redhat.com/show_bug.cgi?id=1400376