Synopsis: Low: rest security update Advisory ID: SLSA-2015:2237-3 Issue Date: 2015-11-19 CVE Numbers: CVE-2015-2675 -- It was found that the OAuth implementation in librest, a helper library for RESTful services, incorrectly truncated the pointer returned by the rest_proxy_call_get_url call. An attacker could use this flaw to crash an application using the librest library. (CVE-2015-2675) After installing the update, all applications using librest must be restarted for the update to take effect. -- SL7 x86_64 rest-0.7.92-3.el7.i686.rpm rest-0.7.92-3.el7.x86_64.rpm rest-debuginfo-0.7.92-3.el7.i686.rpm rest-debuginfo-0.7.92-3.el7.x86_64.rpm rest-devel-0.7.92-3.el7.i686.rpm rest-devel-0.7.92-3.el7.x86_64.rpm - Scientific Linux Development Team