SUSE-SU-2019:13999-1 Security update for various KMPs

This update rebuilds missing kernel modules KMP to use 'retpolines' mitigations for Spectre Variant 2 CVE-2017-5715. Rebuilt KMP packages: - cluster-network - drbd - gfs2 - iscsitarget - ocfs2 - ofed - oracleasm...

Updated imagemagick packages fix security vulnerabilities

Updated imagemagick package fixes security vulnerabilities: The OpenBlob function in blob.c in ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename CVE-2016-5118. Integer overflow in MagickCore/profile.c CVE-2016-5841. Buffer overread in...

Mandriva Linux Security Advisory : mozilla (MDVSA-2011:133-1)

Security issues were identified and fixed in mozilla firefox and thunderbird : As more information has come to light about the attack on the DigiNotar Certificate Authority we have improved the protections added in MFSA 2011-34. The main change is to add explicit distrust to the DigiNotar root...

Mandriva Security Advisory MDVSA-2009:290 (firefox)

The remote host is missing an update to firefox announced via advisory MDVSA-2009:290. OpenVAS Vulnerability Test $Id: mdksa2009290.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:290 firefox Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandriva Linux Security Advisory : firefox (MDVSA-2009:236)

Security issues were identified and fixed in firefox 3.0.x : Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.14 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vecto...

Debian Security Advisory DSA 1504-1 (kernel-source-2.6.8 (2.6.8-17sarge1))

The remote host is missing an update to kernel-source-2.6.8 2.6.8-17sarge1 announced via advisory DSA 1504-1. OpenVAS Vulnerability Test $Id: deb15041.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1504-1 kernel-source-2.6.8 2.6.8-17sarge1 Authors: Thomas...

Debian Security Advisory DSA 1503-1 (kernel-source-2.4.27 (2.4.27-10sarge6))

The remote host is missing an update to kernel-source-2.4.27 2.4.27-10sarge6 announced via advisory DSA 1503-1. OpenVAS Vulnerability Test $Id: deb15031.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1503-1 kernel-source-2.4.27 2.4.27-10sarge6 Authors:...

Mandrake Linux Security Advisory : wxPythonGTK (MDKSA-2005:144)

Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the 'YCbCr subsampling' value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which can cause a program that uses the TIFF library to crash. wxPythonGTK uses a...