SuSE 11.1 Security Update : bind (SAT Patch Number 6388)

The following issue has been fixed : - Records with zero length rdata field could have crashed named or disclose portions of memory to clients. CVE-2012-1667 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11...

SuSE 11.1 Security Update : openssh (SAT Patch Number 6672)

This collective security update of openssh fixes multiple security issues : - memory exhaustion in gssapi due to integer overflow. bnc756370, CVE-2011-5000 - forced command option information leak bnc744643, CVE-2012-0814 Additionally, the following bug has been fixed : - server-side delay upon...

SuSE 11.1 Security Update : PostgreSQL (SAT Patch Number 6697)

This update provides PostgreSQL 8.3.20. As part of this update, the packaging scheme has been changed to accomodate an optional parallel installation of newer PostgreSQL versions. The changes in 8.3.20 are : - Prevent access to external files/URLs via XML entity references. xmlparse would attempt...

SuSE 11.1 Security Update : ecryptfs-utils (SAT Patch Number 6187)

ecryptfs-utils was updated to fix a security issue and some bugs. Security issue fixed: mount.ecryptfsprivate did not set correct group ownerships when it modifies mtab. CVE-2011-3145 Also some bugs that made this set of tools non-working were fixed. You need to manually hand setuid root...

SuSE 11.1 Security Update : libpython2_6-1_0, libpython2_6-1_0-32bit, libpython2_6-1_0-x86, python, etc (SAT Patch Number 6310)

This update to python 2.6.8 fixes the following bugs, among others : - XMLRPC Server DoS. CVE-2012-0845, bnc747125 - hash randomization issues. CVE-2012-1150, bnc751718 - insecure creation of .pypirc. CVE-2011-4944, bnc754447 - SimpleHTTPServer XSS. CVE-2011-1015, bnc752375 - functions can accept...

SuSE 11.1 Security Update : bash (SAT Patch Number 6541)

Parsing the /dev/fd prefix could have lead to a stack-based buffer overflow which could have been exploited by attackers to bypass security restrictions. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

SuSE 11.1 / 11.2 Security Update : zypper (SAT Patch Numbers 6527 / 6528)

The following issue has been fixed : - The zypper setuid wrapper linked against libzypp. This is not needed and added unnecessary attack vectors. CVE-2012-0420 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

SuSE 11.1 Security Update : flash-player (SAT Patch Number 6253)

Flash Player was updated to version 11.2.202.233, fixing a critical security problem. This update also fixes a problem with NVIDIA accelerated drivers and swapped blue/red colors, and also a printing regression introduced by a previous update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

SuSE 11.1 / 11.2 Security Update : gtk2 (SAT Patch Numbers 6389 / 6390)

The following issue has been fixed : - Specially crafted GIF and XBM files could have crashed gtk2 CVE-2012-2370 / CVE-2011-2485 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text...

SuSE 11.1 Security Update : ImageMagick (SAT Patch Number 6226)

This update of ImageMagick fixes multiple security vulnerabilities that could be exploited by attackers via specially crafted image files : - Integer overflow when processing EXIF directory entries with tags of e.g. format 5 EXIFFMTURATIONAL and a large components count. CVE-2012-0259 /...

SuSE 11.1 Security Update : flash-player (SAT Patch Number 6404)

Flash Player has been updated to 11.2.202.236 which fixes various bugs and critical security issues. The advisory published by Adobe can be found here: https://www.adobe.com/support/security/bulletins/apsb12-14.html These updates resolve - a memory corruption vulnerability that could lead to code...

SuSE 11.1 Security Update : nuts (SAT Patch Number 6379)

This update of nuts fixes a denial of service flaw that could have been exploited by remote attackers to cause an application crash of upsd. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information...

SuSE 11.1 Security Update : libexif (SAT Patch Number 6568)

Various overflows and other security related bugs in libexif were found by the Google Security team and fixed by the libexif developers. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The...

SuSE 11.1 Security Update : GnuTLS (SAT Patch Number 6448)

This update of GnuTLS fixes multiple vulnerabilities : - remote attackers could cause a denial of service heap memory corruption and application crash via an issue in the asn1getlengthder function. CVE-2012-1569 - crafted GenericBlockCipher structures allow remote attackers to cause a denial of...

SuSE 11.1 Security Update : PostgreSQL (SAT Patch Number 6023)

Security and bugfix release 8.3.18 : - Require execute permission on the trigger function for CREATE TRIGGER. CVE-2012-0866, bnc749299 - Convert newlines to spaces in names written in pgdump comments CVE-2012-0868, bnc749303. Please see the PostgreSQL release notes document for full changelog and...

SuSE 11.1 Security Update : RPM (SAT Patch Number 6186)

Multiple security vulnerabilities were reported in RPM which could be exploited via specially crafted RPM files to cause a denial of service application crash or potentially allow attackers to execute arbitrary code. Additionally, a non-security issue was fixed that could cause a division by zero...

SuSE 11.1 Security Update : libxml2 (SAT Patch Number 6365)

Specially crafted XML could have caused a denial of service via an out-of-bounds write application crash to applications that are linked against libxml2 CVE-2011-3102. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

SuSE 11.1 Security Update : php5 (SAT Patch Number 6627)

This update fixes two security issues of PHP5 : - Potential overflow in phpstreamscandir. CVE-2012-2688 - openbasedir bypass via SQLite extension. CVE-2012-3365 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11...

SuSE 11.1 Security Update : openssl (SAT Patch Number 6350)

This update of openssl fixes the following denial of service vulnerabilities : - Denial of Service via CBC mode handling. CVE-2012-2333 - A deadlock condition introduced by the previous memory leak fix due to entering a lock twice. This would only happen in multithreaded programs. In addition,...

SuSE 11.1 Security Update : libopenssl (SAT Patch Number 6521)

This update adds libopenssl098-hmac packages, that, when installed, will enforce FIPS 140-2 self-test being run upon first use of the library. If FIPS mode is enforced, these new packages are required in order to enable FIPS mode successfully. The update also imposes limits on the parameters of a...