264 matches found
SuSE 11.3 Security Update : libtasn1 (SAT Patch Number 10659)
The ASN.1 parsing library libtasn1 was updated to fix one memory handling issue : - A stack-based buffer overflow in libtasn1 allowed remote attackers to have unspecified impact via unknown vectors. CVE-2015-2806 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...
SuSE 11.3 Security Update : openldap2 (SAT Patch Number 10635)
openldap2 was updated to fix three security issues and one non-security bug. The following vulnerabilities were fixed : - A remote attacker could cause a denial of service slapd crash by unbinding immediately after a search request. bnc846389, CVE-2013-4449 - A remote attacker could cause a denia...
SuSE 11.3 Security Update : flash-player (SAT Patch Number 10680)
The Adobe flash-player package was updated to version 11.2.202.460 to fix several security issues : APSB15-09, CVE-2015-3044 / CVE-2015-3077 / CVE-2015-3078 / CVE-2015-3079 / CVE-2015-3080 / CVE-2015-3081 / CVE-2015-3082 / CVE-2015-3083 / CVE-2015-3084 / CVE-2015-3085 / CVE-2015-3086 /...
SuSE 11.3 Security Update : kvm (SAT Patch Number 10645)
This update for KVM fixes an issue in the virtio-blk driver which could result in incorrectly setting its WCE configuration. Under some circumstances, this misconfiguration could cause severe file system corruption, because cache flushes were not generated as they ought to have been. The update...
SuSE 11.3 Security Update : Mono (SAT Patch Number 10497)
Multiple SSL vulnerabilities were fixed in the Mono TLS implementation. - SKIP-TLS problem could be used to client impersonification. CVE-2015-2318 - A FREAK style SSL protocol downgrade problem was fixed. CVE-2015-2319 - The SSLv2 support was disabled. CVE-2015-2320 %NASLMINLEVEL 70300 C Tenable...
SuSE 11.3 Security Update : emacs (SAT Patch Number 10519)
Emacs has been updated to fix the following issues : - Several cases of insecure usage of temporary files. CVE-2014-3421 / CVE-2014-3422 / CVE-2014-3423 / CVE-2014-3424 - Use of vc-annotate for renamed files when using Git. bnc854683 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
SuSE 11.3 Security Update : java-1_7_0-openjdk (SAT Patch Number 10621)
OpenJDK was updated to version 2.5.5 - OpenJDK 7u79 to fix security issues and bugs. The following vulnerabilities have been fixed : - Deployment: unauthenticated remote attackers could execute arbitrary code via multiple protocols. CVE-2015-0458 - 2D: unauthenticated remote attackers could execu...
SuSE 11.3 Security Update : coreutils (SAT Patch Number 10620)
Coreutils was updated to fix one security issue and one non-security bug. The following vulnerability was fixed : - Commands such as date, touch or using parsedatetime could, when accepting untrusted input, allow an attacker to crash the application or, potentially, execute arbitrary code...
SuSE 11.3 Security Update : mutt (SAT Patch Number 10435)
The mutt mail client has been updated to fix a heap-based buffer overflow in muttsubstrdup. CVE-2014-9116 Additionally, a patch has been added to allow users to override the 'From' address when executing mutt in batch mode. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...
SuSE 11.3 Security Update : Xen (SAT Patch Number 10560)
The Virtualization service XEN was updated to fix various bugs and security issues. The following security issues have been fixed : - XSA-126: Unmediated PCI command register access in qemu could have lead to denial of service attacks against the host, if PCI cards are passed through to guests...
SuSE 11.3 Security Update : flash-player (SAT Patch Number 10615)
Adobe Flash Player was updated to version 11.2.202.457 to fix several security issues that could have lead to remote code execution. An exploit for CVE-2015-3043 was reported to exist in the wild. The following vulnerabilities have been fixed : - Memory corruption vulnerabilities that could have...
SuSE 11.3 Security Update : Mozilla Firefox (SAT Patch Number 10571)
Mozilla Firefox was updated to 31.6.0 ESR to fix five security issues. The following vulnerabilities have been fixed : - Miscellaneous memory safety hazards. MFSA 2015-30 / CVE-2015-0814 / CVE-2015-0815 - Use-after-free when using the Fluendo MP3 GStreamer plugin. MFSA 2015-31 / CVE-2015-0813 -...
SuSE 11.3 Security Update : apache2 (SAT Patch Number 10533)
The Apache2 webserver was updated to fix various issues. The following feature was added : - Provide support for the tunneling of web socket connections to a backend websockets server. FATE316880 The following security issues have been fixed : - The modheaders module in the Apache HTTP Server...
SuSE 11.3 Security Update : tcpdump (SAT Patch Number 10509)
When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network. The following vulnerabilities in protocol printers have been fixed : - IPv6 mobility printer remote DoS. CVE-2015-0261,...
SuSE 11.3 Security Update : xorg-x11-libs (SAT Patch Number 10487)
LibXFont was updated to fix security problems that could be used by local attackers to gain X server privileges root. The following security issues have been fixed : - The bdf parser reads a count for the number of properties defined in a font from the font file, and allocates arrays with entries...
SuSE 11.3 Security Update : GnuTLS (SAT Patch Number 10536)
GnuTLS was updated to fix two security issues : - A certificate algorithm consistency checking issue was fixed, where GnuTLS did not check whether the two signature algorithms match on certificate import. This problem is not deemed to be exploitable currently. CVE-2015-0294 - GNUTLS-SA-2015-1:...
SuSE 11.3 Security Update : libssh2_org (SAT Patch Number 10426)
The ssh client library libssh2org was updated to fix a security issue : - A malicious server could send a crafted SSHMSGKEXINIT packet, that could lead to a buffer overread and to a crash of the application using libssh2org. CVE-2015-1782 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
SuSE 11.3 Security Update : wireshark (SAT Patch Number 10444)
Wireshark was updated to version 1.10.13 fixing bugs and security issues : The following security issues have been fixed. - The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 bnc920696 - The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 bnc920697 - The TNEF dissector...
SuSE 11.3 Security Update : postgresql91 (SAT Patch Number 10389)
The PostgreSQL database server was updated to 9.1.15, fixing bugs and security issues : - Fix buffer overruns in tochar. CVE-2015-0241 - Fix buffer overrun in replacement printf functions. CVE-2015-0242 - Fix buffer overruns in contrib/pgcrypto. CVE-2015-0243 - Fix possible loss of frontend/backe...
SuSE 11.3 Security Update : MySQL (SAT Patch Number 10387)
The MySQL datebase server was updated to 5.5.42, fixing various bugs and security issues. More information can be found on : - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5- 42.html - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5- 41.html -...