79 matches found
SuSE 11.2 / 11.3 Security Update : IBM Java 6 (SAT Patch Numbers 8549 / 8550)
IBM Java 6 SR15 has been released and fixes lots of bugs and security issues. More information can be found on: http://www.ibm.com/developerworks/java/jdk/alerts/ %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 1...
SuSE 11.2 / 11.3 Security Update : jakarta-commons-fileupload (SAT Patch Numbers 8445 / 8446)
jakarta-commons-fileupload received a security fix : - A poison null byte flaw was found in the implementation of the DiskFileItem class. A remote attacker could able to supply a serialized instance of the DiskFileItem class, which would be deserialized on a server, could use this flaw to write...
SuSE 11.2 / 11.3 Security Update : CUPS (SAT Patch Numbers 8436 / 8437)
The following security issue has been fixed in the CUPS print daemon CVE-2012-5519: The patch adds better default protection against misuse of privileges by normal users who have been specifically allowed by root to do cupsd configuration changes The new ConfigurationChangeRestriction cupsd.conf...
SuSE 11.2 / 11.3 Security Update : libtiff (SAT Patch Numbers 8384 / 8385)
This tiff update fixes several security issues. - tiff: buffer overflows/use after free problem. bnc834477: CVE-2013-4232 / CVE-2013-4231 - libtiff gif2tiff: heap-based buffer overflow in readgifimage. bnc834779: CVE-2013-4243 - libtiff gif2tiff: OOB Write in LZW decompressor. bnc834788:...
SuSE 11.2 / 11.3 Security Update : Python (SAT Patch Numbers 8404 / 8405)
This python update fixes a certificate hostname issue. - python: SSL module does not handle certificates that contain hostnames with NULL bytes. bnc834601: CVE-2013-4238 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
SuSE 11.2 / 11.3 Security Update : gpg2 (SAT Patch Numbers 8426 / 8427)
This GnuPG update fixes two security issues : - GnuPG treated no-usage-permitted keys as all-usages-permitted. CVE-2013-4351 - An infinite recursion in the compressed packet parser was fixed. CVE-2013-4402 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package check...
SuSE 11.2 / 11.3 Security Update : kdelibs4 (SAT Patch Numbers 8401 / 8402)
This kdelibs4 update fixes several security issues related to khtml/konqueror. - Fix security issues and NULL pointer references in khtml/konqueror bnc787520 CVE-2012-4512 / CVE-2012-4513 / CVE-2012-4515 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks ...
SuSE 11.2 / 11.3 Security Update : icedtea-web (SAT Patch Numbers 8357 / 8358)
This icedtea-web update adds a missing fix for an off-by-one heap-based buffer overflow. - icedtea-web 1.4.1 fixes the missing patch for CVE-2012-4540. bnc840572: CVE-2013-4349 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...
SuSE 11.2 / 11.3 Security Update : flash-player (SAT Patch Numbers 8330 / 8331)
Adobe flash-player has been updated to version 11.2.202.310 ABSP13-21 which fixes several bugs and security issues. SUSE bnc839897 These updates resolve memory corruption vulnerabilities that could have lead to code execution. CVE-2013-3361 / CVE-2013-3362 / CVE-2013-3363 / CVE-2013-5324 Official...
SuSE 11.2 / 11.3 Security Update : Apache2 (SAT Patch Numbers 8137 / 8138)
This collective update for Apache provides the following fixes : - Make sure that input that has already arrived on the socket is not discarded during a non-blocking read read2 returns 0 and errno is set to -EAGAIN. bnc815621 - Close the connection just before an attempted re-negotiation if data...
SuSE 11.2 / 11.3 Security Update : tomcat6 (SAT Patch Numbers 8155 / 8156)
This update of tomcat6 fixes : - apache-tomcat-CVE-2012-3544.patch. bnc831119 - use chown --no-dereference to prevent symlink attacks on log bnc822177c7/prevents CVE-2013-1976 - Fix tomcat init scripts generating malformed classpath http://youtrack.jetbrains.com/issue/JT-18545 bnc804992 patch fro...
SuSE 11.2 / 11.3 Security Update : automake (SAT Patch Numbers 8196 / 8197)
This update of automake fixes a race condition in 'distcheck'. CVE-2012-3386 Also a bug where world writeable tarballs were generated during 'make dist' has been fixed. CVE-2009-4029 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
SuSE 11.2 / 11.3 Security Update : Mozilla Firefox (SAT Patch Numbers 8187 / 8191)
This update to Firefox 17.0.8esr bnc833389 addresses : - bmo855331, bmo844088, bmo858060, bmo870200, bmo874974, bmo861530, bmo854157, bmo893684, bmo878703, bmo862185, bmo879139, bmo888107, bmo880734. MFSA 2013-63 / CVE-2013-1701 / CVE-2013-1702 Miscellaneous memory safety hazards have been fixed...
SuSE 11.2 / 11.3 Security Update : PHP5 (SAT Patch Numbers 8087 / 8088)
The following security issues have been fixed : - bnc828020:. CVE-2013-4635 - Integer overflow in SdnToJewish - bnc829207:. CVE-2013-4113 - heap corruption due to badly formed xml %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
SuSE 11.2 / 11.3 Security Update : bind (SAT Patch Numbers 8160 / 8161)
A specially crafted query with malicious rdata could have caused a crash DoS in named. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if NASLLEV...
SuSE 11.2 / 11.3 Security Update : ruby (SAT Patch Numbers 8026 / 8027)
Ruby failed to check hostnames correctly when setting up a SSL client connection. CVE-2013-4073 was assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself i...
SuSE 11.2 / 11.3 Security Update : wireshark (SAT Patch Numbers 8044 / 8045)
This wireshark version update to 1.8.8 includes several security and general bug fixes. Version update to 1.8.8 bnc824900 : - vulnerabilities fixed : - The CAPWAP dissector could crash. wnpa-sec-2013-32. CVE-2013-4074 - The GMR-1 BCCH dissector could crash. wnpa-sec-2013-33. CVE-2013-4075 - The P...
SuSE 11.2 / 11.3 Security Update : nagios-nrpe, nagios-plugins-nrpe (SAT Patch Numbers 8032 / 8033)
Nagios NRPE was updated to add more blacklisting to avoid shell injection via nagios request packets. CVE-2013-1362 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is...
SuSE 11.3 Security Update : Linux kernel (SAT Patch Numbers 7991 / 7992 / 7994)
The SUSE Linux Enterprise 11 Service Pack 3 kernel has been updated to 3.0.82 and to fix various bugs and security issues. The following security issues have been fixed : - The chaseport function in drivers/usb/serial/ioti.c in the Linux kernel allowed local users to cause a denial of service NUL...
SuSE 11.2 / 11.3 Security Update : krb5 (SAT Patch Numbers 7962 / 7968)
This krb5 update fixes a security issue. - kpasswd UDP ping-pong bug825985 / CVE-2002-2443 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if...