64 matches found
SuSE9 Security Update : unace (YOU Patch Number 10239)
This update fixes several buffer overflows while extracting, testing, or listing an archive file CVE-2005-0160 as well as a buffer overflow while handling long command-line options. CVE-2005-0161 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell,...
SuSE9 Security Update : libtiff (YOU Patch Number 12702)
The following bugs have been fixed : - Specially crafted tiff files could cause a heap-based buffer overflow in the thunder-decoder. CVE-2011-1167 - Directories with a large number of files could cause an integer overflow in the tiffdump tool. CVE-2010-4665 %NASLMINLEVEL 70300 C Tenable Network...
SuSE9 Security Update : Tomcat (YOU Patch Number 12687)
Apache Tomcat Local bypass of security manger file permissions. CVE-2010-3718 - Apache Tomcat Manager XSS vulnerability. CVE-2011-0013 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...
SuSE9 Security Update : clamav (YOU Patch Number 12662)
clamav was updated to version 0.96.4 which fixes problems when scanning pdf files CVE-2010-3434 and also contains numerous other bug fixes. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...
SuSE9 Security Update : Perl (YOU Patch Number 12628)
perl Safe.pm module was affected by two problems where attackers could break out of such a safed execution CVE-2010-1447, CVE-2010-1168. This update fixes this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE9 Security Update : XFree86 (YOU Patch Number 12612)
X clients could cause a memory corruption in the X Render extension which crashes the X server CVE-2010-1166. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
SuSE9 Security Update : libpng (YOU Patch Number 12599)
Denial of service while decompressing a highly compressed huge ancillary chunk has been fixed in libpng. CVE-2010-0205 has been assigned. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc...
SuSE9 Security Update : squid (YOU Patch Number 12597)
The following vulnerabilities have been fixed in squid : - DoS via special crafted auth header. CVE-2009-2855 - DoS via invalid DoS header. CVE-2010-0308 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...
SuSE9 Security Update : pango (YOU Patch Number 12575)
A long glyph string can trigger a heap-based buffer overflow in pango. CVE-2009-1194 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid44591; scriptversion"1.10";...
SuSE9 Security Update : gzip (YOU Patch Number 12573)
The following bug has been fixed : - Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code. CVE-2010-0001 Only 64bit architectures are affected by this flaw. %NASLMINLEVEL 70300 C Tenable Network Security,...
SuSE9 Security Update : kdelibs3 (YOU Patch Number 12563)
A faulty implementation of the dtoa function can lead to a remotely exploitable array overrun in kdelibs3. This issue has been tracked as CVE-2009-0689. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...
SuSE9 Security Update : freeradius (YOU Patch Number 12507)
This update of freeradius fixes a remote denial-of-service bug in function raddecode which can be triggered by zero-length Tunnel-Password attributes to make radiusd crash. CVE-2009-3111 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE9 Security Update : SLES9-SP4: Security update for bind (YOU Patch Number 11717)
CVE-2007-2926, cryptographically weak query ids RT 16915. Applied fix extracted from 9.2.8-P1 version. - version update to 9.3.x because ISC will no longer maintain version 9.2.x %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE9 Security Update : squid (YOU Patch Number 12135)
A flaw in a previous previous security update could cause squid to crash under certain circumstances. CVE-2008-1612 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
SuSE9 Security Update : Python (YOU Patch Number 12316)
Integer overflows in the python imageop module and in the expandtabs method potentially allowed attackers to execute arbitrary code. CVE-2008-4864, CVE-2008-5031 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE9 Security Update : XFree86-server (YOU Patch Number 12058)
The previous XFree86 security update contained a flaw. Due to this some applications using the shared memory extension did not work properly anymore. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...
SuSE9 Security Update : libtiff (YOU Patch Number 12229)
A buffer underflow CVE-2008-2327 has been fixed in libtiff. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid41236; scriptversion"1.8";...
SuSE9 Security Update : nagios plugins (YOU Patch Number 11953)
fix possible buffer overflow during HTTP Location header parsing in checkhttp CVE-2007-5198 fix possible buffer overflow during snmpget parsing in checksnmp. CVE-2007-5623 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE9 Security Update : arc (YOU Patch Number 10496)
This updates fixes two bugs : - Eric Romang discovered that the ARC archive program under Unix creates a temporary file with insecure permissions which may lead to an attacker stealing sensitive information. CVE-2005-2945 - Joey Schulze discovered that the temporary file was created in an insecur...
SuSE9 Security Update : freeswan (YOU Patch Number 12445)
Two vulnerabilities in the freeswan ASN.1 parser when handling RDNs, UTCTIME and GENERALIZEDTIME strings could lead to remote crashes of the pluto daemon CVE-2009-2185. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...