Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2020:3971 - Security Advisory
Issued:
2020-09-29
Updated:
2020-09-29

RHSA-2020:3971 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Low: hunspell security update

Type/Severity

Security Advisory: Low

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for hunspell is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Hunspell is a spell checker and morphological analyzer library and program designed for languages with rich morphology and complex word compounding or character encoding.

Security Fix(es):

  • hunspell: out-of-bounds read in SuggestMgr::leftcommonsubstring in suggestmgr.cxx (CVE-2019-16707)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux Desktop 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 7 x86_64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Fixes

  • BZ - 1771026 - CVE-2019-16707 hunspell: out-of-bounds read in SuggestMgr::leftcommonsubstring in suggestmgr.cxx

CVEs

  • CVE-2019-16707

References

  • https://access.redhat.com/security/updates/classification/#low
  • https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
x86_64
hunspell-1.3.2-16.el7.i686.rpm SHA-256: 918d5ebd9f82693dc689a198fac6a0f41cc9874ea965fa380363839308aaf055
hunspell-1.3.2-16.el7.x86_64.rpm SHA-256: ad851567ad8d5c79b1f26a98c77f67e5630790c8cd08bc58583a34dac023cd4b
hunspell-debuginfo-1.3.2-16.el7.i686.rpm SHA-256: 7ef3c739b86ac47ceec4b4527f5ebabedb9625d47833f756e9996a30736d40db
hunspell-debuginfo-1.3.2-16.el7.x86_64.rpm SHA-256: 250ee00f425a97038fc384c2ed2dfa1f90e8f1a81d723bf2782fa63e5502b2b4
hunspell-devel-1.3.2-16.el7.i686.rpm SHA-256: 20d7e72976cb55ee52c5a897421a33563f30c9ea726639688b69516f810f94e2
hunspell-devel-1.3.2-16.el7.x86_64.rpm SHA-256: 2a10b386419c9f668d482025bb3a464db6a9147f414e468f747e67a7217f960d

Red Hat Enterprise Linux Workstation 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
x86_64
hunspell-1.3.2-16.el7.i686.rpm SHA-256: 918d5ebd9f82693dc689a198fac6a0f41cc9874ea965fa380363839308aaf055
hunspell-1.3.2-16.el7.x86_64.rpm SHA-256: ad851567ad8d5c79b1f26a98c77f67e5630790c8cd08bc58583a34dac023cd4b
hunspell-debuginfo-1.3.2-16.el7.i686.rpm SHA-256: 7ef3c739b86ac47ceec4b4527f5ebabedb9625d47833f756e9996a30736d40db
hunspell-debuginfo-1.3.2-16.el7.x86_64.rpm SHA-256: 250ee00f425a97038fc384c2ed2dfa1f90e8f1a81d723bf2782fa63e5502b2b4
hunspell-devel-1.3.2-16.el7.i686.rpm SHA-256: 20d7e72976cb55ee52c5a897421a33563f30c9ea726639688b69516f810f94e2
hunspell-devel-1.3.2-16.el7.x86_64.rpm SHA-256: 2a10b386419c9f668d482025bb3a464db6a9147f414e468f747e67a7217f960d

Red Hat Enterprise Linux Desktop 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
x86_64
hunspell-1.3.2-16.el7.i686.rpm SHA-256: 918d5ebd9f82693dc689a198fac6a0f41cc9874ea965fa380363839308aaf055
hunspell-1.3.2-16.el7.x86_64.rpm SHA-256: ad851567ad8d5c79b1f26a98c77f67e5630790c8cd08bc58583a34dac023cd4b
hunspell-debuginfo-1.3.2-16.el7.i686.rpm SHA-256: 7ef3c739b86ac47ceec4b4527f5ebabedb9625d47833f756e9996a30736d40db
hunspell-debuginfo-1.3.2-16.el7.i686.rpm SHA-256: 7ef3c739b86ac47ceec4b4527f5ebabedb9625d47833f756e9996a30736d40db
hunspell-debuginfo-1.3.2-16.el7.x86_64.rpm SHA-256: 250ee00f425a97038fc384c2ed2dfa1f90e8f1a81d723bf2782fa63e5502b2b4
hunspell-debuginfo-1.3.2-16.el7.x86_64.rpm SHA-256: 250ee00f425a97038fc384c2ed2dfa1f90e8f1a81d723bf2782fa63e5502b2b4
hunspell-devel-1.3.2-16.el7.i686.rpm SHA-256: 20d7e72976cb55ee52c5a897421a33563f30c9ea726639688b69516f810f94e2
hunspell-devel-1.3.2-16.el7.x86_64.rpm SHA-256: 2a10b386419c9f668d482025bb3a464db6a9147f414e468f747e67a7217f960d

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
s390x
hunspell-1.3.2-16.el7.s390.rpm SHA-256: 20756d319e3f3664dfffc5fdd4eaacd2cd1062e7f57b95d1dced9fa812219bf7
hunspell-1.3.2-16.el7.s390x.rpm SHA-256: 0acc968ead0fe64bf9e2f86ecc521f29d3871e16604c6cdbbe0f59706e0ddd16
hunspell-debuginfo-1.3.2-16.el7.s390.rpm SHA-256: 79c199929b379a3ea313d938786cac4d23369d97fd13c5eea26ab66cbb162d52
hunspell-debuginfo-1.3.2-16.el7.s390x.rpm SHA-256: 706b63749d349764fb8155253d19bcadd74ca38dac0a9547a43a785dcb052fe7
hunspell-devel-1.3.2-16.el7.s390.rpm SHA-256: 6f0b9d2e9cd40006939813f78b2e08516558f5d96af602c196ceb001da991e12
hunspell-devel-1.3.2-16.el7.s390x.rpm SHA-256: ca1b8f2e9cdc3b610c2a700e9b1c97a2c78098b1415174029696c15ddbf83b94

Red Hat Enterprise Linux for Power, big endian 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
ppc64
hunspell-1.3.2-16.el7.ppc.rpm SHA-256: 18338e83e6ef5e393966ceebadeb0e482236cc65c5da4b8209a43da15345932b
hunspell-1.3.2-16.el7.ppc64.rpm SHA-256: ad6706614c865f74854054dbcc6df5408315208d711a702323db26ba93103839
hunspell-debuginfo-1.3.2-16.el7.ppc.rpm SHA-256: 4e3ca20a87fd0a88fe568c134936c31a0e3259b45c8663d41d8eaf3f4ad18574
hunspell-debuginfo-1.3.2-16.el7.ppc64.rpm SHA-256: ef0bf3acb06b97aabfab6653d6eafc4546050d4df2e206523981c877aa04af5e
hunspell-devel-1.3.2-16.el7.ppc.rpm SHA-256: 87216405b20ac58b9c309b13e77ca9678275f509ab0907727055f85355dd6c4a
hunspell-devel-1.3.2-16.el7.ppc64.rpm SHA-256: a832a36406dc20177bc8fd099be3574438097a4eb2c300f9ce26277f4a7bba2e

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
x86_64
hunspell-1.3.2-16.el7.i686.rpm SHA-256: 918d5ebd9f82693dc689a198fac6a0f41cc9874ea965fa380363839308aaf055
hunspell-1.3.2-16.el7.x86_64.rpm SHA-256: ad851567ad8d5c79b1f26a98c77f67e5630790c8cd08bc58583a34dac023cd4b
hunspell-debuginfo-1.3.2-16.el7.i686.rpm SHA-256: 7ef3c739b86ac47ceec4b4527f5ebabedb9625d47833f756e9996a30736d40db
hunspell-debuginfo-1.3.2-16.el7.i686.rpm SHA-256: 7ef3c739b86ac47ceec4b4527f5ebabedb9625d47833f756e9996a30736d40db
hunspell-debuginfo-1.3.2-16.el7.x86_64.rpm SHA-256: 250ee00f425a97038fc384c2ed2dfa1f90e8f1a81d723bf2782fa63e5502b2b4
hunspell-debuginfo-1.3.2-16.el7.x86_64.rpm SHA-256: 250ee00f425a97038fc384c2ed2dfa1f90e8f1a81d723bf2782fa63e5502b2b4
hunspell-devel-1.3.2-16.el7.i686.rpm SHA-256: 20d7e72976cb55ee52c5a897421a33563f30c9ea726639688b69516f810f94e2
hunspell-devel-1.3.2-16.el7.x86_64.rpm SHA-256: 2a10b386419c9f668d482025bb3a464db6a9147f414e468f747e67a7217f960d

Red Hat Enterprise Linux for Power, little endian 7

SRPM
hunspell-1.3.2-16.el7.src.rpm SHA-256: 7a75ed734565b9eb2b9a6d9a93e435679be882bd57fe47e73d6f1ada56e52d34
ppc64le
hunspell-1.3.2-16.el7.ppc64le.rpm SHA-256: 0a3c55887adff1fd78dcece4c245ff582218e0a11b77452db248345fb89383ab
hunspell-debuginfo-1.3.2-16.el7.ppc64le.rpm SHA-256: 1450353cf98dcdcd24def2815cb8278780ebedd710381518d2e2fea589e1f24a
hunspell-devel-1.3.2-16.el7.ppc64le.rpm SHA-256: 12dfc211a19f645df9598ca2988d60bd3fce8a7389d88a025e20fc6ca57db94d

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter