SuSE 10 Security Update : glibc (ZYPP Patch Number 9035)

This update for glibc fixes the following security issue : - A vulnerability was found and fixed in the GNU C Library, specifically in the function gethostbyname, that can lead to a local or remote buffer overflow. bsc913646. CVE-2015-0235 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 8647)

The following security issues have been fixed : - bnc828020: o Integer overflow in SdnToJewish. CVE-2013-4635 - bnc807707: o reading system files via untrusted SOAP input o soap.wsdlcachedir function did not honour PHP openbasedir. CVE-2013-1635 / CVE-2013-1643 - bnc829207: o heap corruption due ...

SuSE 10 Security Update : wireshark (ZYPP Patch Number 8659)

This wireshark version update to 1.6.16 includes several security and general bug fixes. http://www.wireshark.org/docs/relnotes/wireshark-1.6.16.html - The CAPWAP dissector could crash. Discovered by Laurent Butti. CVE-2013-4074 - The HTTP dissector could overrun the stack. Discovered by David...

SuSE 10 Security Update : ruby (ZYPP Patch Number 8639)

Ruby failed to check hostnames correctly when setting up a SSL client connection. CVE-2013-4073 was assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

SuSE 10 Security Update : java-1_4_2-ibm (ZYPP Patch Number 8652)

IBM Java 1.4.2 has been updated to SR13-FP18 to fix bugs and security issues. Please see also http://www.ibm.com/developerworks/java/jdk/alerts/ Also the following bug has been fixed : - mark files in jre/bin and bin/ as executable bnc823034 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...

SuSE 10 Security Update : java-1_5_0-ibm (ZYPP Patch Number 8653)

IBM Java 1.5.0 has been updated to SR16-FP3 to fix bugs and security issues. Please see also http://www.ibm.com/developerworks/java/jdk/alerts/ Also the following bug has been fixed : - add Europe/Busingen to tzmappings. bnc817062 - mark files in jre/bin and bin/ as executable bnc823034...

SuSE 10 Security Update : java-1_6_0-ibm (ZYPP Patch Number 8657)

IBM Java 1.6.0 has been updated to SR14 to fix bugs and security issues Please see also http://www.ibm.com/developerworks/java/jdk/alerts/ Also the following bug has been fixed : - add Europe/Busingen to tzmappings. bnc817062 - mark files in jre/bin and bin/ as executable bnc823034 %NASLMINLEVEL...

SuSE 10 Security Update : subversion (ZYPP Patch Number 8628)

This update of subversion fixes two potential DoS vulnerabilities bug821505, CVE-2013-1968 / CVE-2013-2112. - Server-side bugfixes : - fix FSFS repository corruption due to newline in filename issue 4340 - fix svnserve exiting when a client connection is aborted r1482759 - Other tool improvements...

SuSE 10 Security Update : flash-player (ZYPP Patch Number 8642)

Adobe flash-player has been updated to version 11.2.202.291 ABSP13-17 which fixes bugs and security issues. This update fixes the following security issues : - a heap buffer overflow vulnerability that could have lead to code execution. CVE-2013-3344 - a memory corruption vulnerability that could...

SuSE 10 Security Update : ibutils (ZYPP Patch Number 8641)

Various tmp races in ibdiagnet of ibutils have been fixed that could have been used by local attackers on machines where infiband was debugged to gain privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

SuSE 10 Security Update : krb5 (ZYPP Patch Number 8631)

This krb5 update fixes a security issue. - kpasswd UDP ping-pong bug825985 / CVE-2002-2443 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid68877;...

SuSE 10 Security Update : Mesa (ZYPP Patch Number 8604)

This update of Mesa fixes multiple integer overflows. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid67255; scriptversion"1.4";...

SuSE 10 Security Update : xorg-x11 (ZYPP Patch Number 8623)

This update of xorg-x11 fixes several security vulnerabilities. - Bug 815451- X.Org Security Advisory: May 23, 2013 - Bug 821664 - libX11 - Bug 821671 - libXv - Bug 821670 - libXt - Bug 821669 - libXrender - Bug 821668 - libXp - Bug 821667 - libXfixes - Bug 821665 - libXext - Bug 821663 - libFS,...

SuSE 10 Security Update : curl (ZYPP Patch Number 8614)

This update of curl fixes several security issues. - libcurl URL decode buffer boundary flaw bnc824517 / CVE-2013-2174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

SuSE 10 Security Update : compat-curl2 (ZYPP Patch Number 8621)

This update of compat-curl2 fixes a security vulnerability : - libcurl URL decode buffer boundary flaw bnc824517 / CVE-2013-2174 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

SuSE 10 Security Update : libcurl4 (ZYPP Patch Number 8618) (BEAST)

This update of curl fixes several security issues : - libcurl URL decode buffer boundary flaw. bnc824517 / CVE-2013-2174 - cookie domain tailmatch. bnc814655 / CVE-2013-1944 - curl sets SSLOPALL. bnc742306 / CVE-2011-3389 - When SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly...

SuSE 10 Security Update : openswan (ZYPP Patch Number 8627)

This openswan update fixes a remote buffer overflow issue. bnc824316 / CVE-2013-2053 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid67199; scriptversion"1.5";...

SuSE 10 Security Update : clamav (ZYPP Patch Number 8606)

This update contains clamav 0.97.8 which fixes security issues bnc816865 : - Fix heap corruption. CVE-2013-2020 - Fix overflow due to PDF key length computation. CVE-2013-2021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

SuSE 10 Security Update : gpg (ZYPP Patch Number 8575)

This update for gpg provides the following fixes : - Set proper file permissions when en/de-crypting files. bnc780943 - Fix an issue that could cause corruption of the public keys database. CVE-2012-6085, bnc798465 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this...

SuSE 10 Security Update : gpg2 (ZYPP Patch Number 8576)

This update for gpg2 provides the following fixes : - Set proper file permissions when en/de-crypting files. bnc780943 - Fix an issue that could cause corruption of the public keys database. CVE-2012-6085, 798465 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this...