Red Hat Security Advisory 2019-0857-01

Red Hat Security Advisory 2019-0857-01 – Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.2.7 serves as a replacement for Red Hat Single Sign-On 7.2.6, and includes bug fixes and enhancements.

Link: https://packetstormsecurity.com/files/152606/RHSA-2019-0857-01.txt

Linux Siemens R3964 Line Discipline Missing Lock

The Siemens R3964 line discipline code in drivers/tty/n_r3964.c has a few races around its ioctl handler; for example, the handler for R3964_ENABLE_SIGNALS just allocates and deletes elements in a linked list with zero locking. This code is reachable by an unprivileged user if the line discipline is enabled in the kernel config; Ubuntu 18.04, for example, ships this line discipline as a module.

Link: https://packetstormsecurity.com/files/152611/GS20190424002229.txt