192 matches found
SuSE 11.2 / 11.3 Security Update : xorg-x11 (SAT Patch Numbers 8723 / 8724)
This update fixes a stack-based buffer overflow in xorg-x11 in the function bdfReadCharacters. CVE-2013-6462 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information...
SuSE 11.2 / 11.3 Security Update : hplip (SAT Patch Numbers 8775 / 8777)
hplip was updated to fix three security issues : - Some local file overwrite problems via predictable /tmp filenames were fixed. CVE-2013-0200 - hplip used an insecure polkit DBUS API polkit-process subject race condition which could lead to local privilege escalation. CVE-2013-4325 - hplip uses...
SuSE 11.2 / 11.3 Security Update : curl (SAT Patch Numbers 8796 / 8797)
This update fixes the re-use of wrong HTTP NTLM connections in libcurl. CVE-2014-0015 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if NASLLEVE...
SuSE 11.2 / 11.3 Security Update : bind (SAT Patch Numbers 8834 / 8835)
This update fixes a DoS vulnerability in bind when handling malformed NSEC3-signed zones. CVE-2014-0591 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The...
SuSE 11.2 / 11.3 Security Update : puppet (SAT Patch Numbers 8811 / 8812)
This update for puppet fixes a remote code execution vulnerability in the 'resourcetype' service. CVE-2013-4761 Additionally, the update prevents puppet from executing initialization scripts that could trigger a system reboot when handling 'puppet resource service' calls. %NASLMINLEVEL 70300 C...
SuSE 11.2 / 11.3 Security Update : libxml2 (SAT Patch Numbers 8713 / 8714)
This update fixes a DoS vulnerability in libxml2. CVE-2013-2877 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. ...
SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 8779 / 8791 / 8792)
The SUSE Linux Enterprise 11 Service Pack 2 kernel was updated to 3.0.101 and also includes various other bug and security fixes. A new feature was added : - supported.conf: marked net/netfilter/xtset as supported bnc851066fate313309 The following security bugs have been fixed : - Array index err...
SuSE 11.2 / 11.3 Security Update : flash-player (SAT Patch Numbers 8773 / 8774)
This update fixes the following security issues with flash-player : - flash-player: security protection bypass bnc858822APSB14-02 - These updates resolve a vulnerability that could be used to bypass Flash Player security protections. CVE-2014-0491 - These updates resolve an address leak...
SuSE 11.2 / 11.3 Security Update : wireshark (SAT Patch Numbers 8708 / 8709)
wireshark was updated to security update version 1.8.12, fixing bugs and security issues. - The SIP dissector could go into an infinite loop. wnpa-sec-2013-66. CVE-2013-7112 - The NTLMSSP v2 dissector could crash. Discovered by Garming Sam. wnpa-sec-2013-68 CVE-2013-7114 Further bug fixes and...
SuSE 11.2 / 11.3 Security Update : PHP5 (SAT Patch Numbers 8683 / 8684)
This update fixes the following issues : - memory corruption in opensslparsex509. CVE-2013-6420 - Heap buffer over-read in DateInterval. CVE-2013-6712 - man-in-the-middle attacks by specially crafting certificates CVE-2013-4248 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
SuSE 11.2 Security Update : PHP5 (SAT Patch Number 8710)
This update fixes the following issues : - memory corruption in opensslparsex509. CVE-2013-6420 - man-in-the-middle attacks by specially crafting certificates CVE-2013-4248 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
SuSE 11.2 / 11.3 Security Update : xorg-x11-server (SAT Patch Numbers 8686 / 8687)
This update fixes the following security issue with xorg-x11-server : - integer underflow when handling trapezoids CVE-2013-6424. bnc853846 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. T...
SuSE 11.2 / 11.3 Security Update : Samba (SAT Patch Numbers 8655 / 8656)
This update fixes the following security issues with samba : - DCERPC fraglen not checked. CVE-2013-4408. bnc844720 - winbind pam security problem. CVE-2012-6150. bnc853347 - No access check verification on stream files CVE-2013-4475. And fixes the following non-security issues :. bnc848101 -...
SuSE 11.2 Security Update : pixman (SAT Patch Number 8701)
This update fixes the following security issue with pixman : - Integer underflow when handling trapezoids. bnc853824, CVE-2013-6425 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text...
SuSE 11.2 / 11.3 Security Update : curl (SAT Patch Numbers 8617 / 8621)
This update fixes the following security issues with curl : - ssl cert checks with unclear behaviour CVE-2013-4545. bnc849596 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself...
SuSE 11.2 / 11.3 Security Update : apache2-mod_nss (SAT Patch Numbers 8610 / 8611)
This update fixes the following security issues with apache2-modnss : - client certificate verification problematic CVE-2013-4566. bnc853039 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information...
SuSE 11.2 Security Update : libfreebl3 (SAT Patch Number 8648)
Mozilla NSS has been updated to the 3.15.3.1 security release. The update blacklists an intermediate CA that was abused to create man in the middle certificates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11...
SuSE 11.2 / 11.3 Security Update : flash-player (SAT Patch Numbers 8639 / 8640)
This update fixes the following security issues with flash-player : - flash-plugin: multiple code execution flaws APSB13-28. bnc854881 - These updates resolve a type confusion vulnerability that could lead to code execution. CVE-2013-5331 - These updates resolve a memory corruption vulnerability...
SuSE 11.2 / 11.3 Security Update : krb5 (SAT Patch Numbers 8533 / 8534)
This update for krb5 fixes the following security issue : - If a KDC serves multiple realms, certain requests could cause setupserverrealm to dereference a NULL pointer, crashing the KDC. CVE-2013-1418 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
SuSE 11.2 Security Update : Xen (SAT Patch Number 8577)
Xen has been updated to fix a security issue and a bug : - XSA-73: A lock order reversal between page allocation and grant table locks could lead to host crashes or even host code execution. CVE-2013-4494 A non-security bug has also been fixed : - It is possible to start a VM twice on the same no...