Synopsis:          Important: procps security update

Advisory ID:       SLSA-2018:1777-1

Issue Date:        2018-05-31

CVE Numbers:       CVE-2018-1124

                   CVE-2018-1126

--



Security Fix(es):



* procps-ng, procps: Integer overflows leading to heap overflow in

file2strvec (CVE-2018-1124)



* procps-ng, procps: incorrect integer size in proc/alloc.* leading to

truncation / integer overflow issues (CVE-2018-1126)

--



SL6

  x86_64

    procps-3.2.8-45.el6_9.3.i686.rpm

    procps-3.2.8-45.el6_9.3.x86_64.rpm

    procps-debuginfo-3.2.8-45.el6_9.3.i686.rpm

    procps-debuginfo-3.2.8-45.el6_9.3.x86_64.rpm

    procps-devel-3.2.8-45.el6_9.3.i686.rpm

    procps-devel-3.2.8-45.el6_9.3.x86_64.rpm

  i386

    procps-3.2.8-45.el6_9.3.i686.rpm

    procps-debuginfo-3.2.8-45.el6_9.3.i686.rpm

    procps-devel-3.2.8-45.el6_9.3.i686.rpm



- Scientific Linux Development Team