Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

SUSE: 2012:0117-1 Important: Libxml2 Buffer Overflow Security Fix

suse
Calendar Grey January 24, 2012
Dist Suse Esm H88
SUSE Security Patch for libxml2 addresses severe buffer overflow vulnerability impacting various SUSE offerings. Take immediate action!
An update that fixes one vulnerability is now available

Summary

A heap-based buffer overflow during decoding of entity references with overly long names has been fixed. CVE-2011-3919 has been assigned. Security Issue reference: * CVE-2011-3919 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11 SP1: zypper in -t patch sdksp1-libxml2-5654 - SUSE Linux Enterprise Server 11 SP1 for VMware: zypper in -t patch slessp1-libxml2-5654 - SUSE Linux Enterprise Server 11 SP1: zypper in -t patch slessp1-libxml2-5654 - SUSE Linux Enterprise Desktop 11 SP1: zypper in -t patch sledsp1-libxml2-5654 To bring your system up-to-date, use "zypper patch". Package List:

Topics%20covered

Topics Covered

security advisory buffer overflow software update patch important SUSE libxml2

References

#739894

Cross- CVE-2011-3919

Affected Products:

SUSE Linux Enterprise Software Development Kit 11 SP1

SUSE Linux Enterprise Server 11 SP1 for VMware

SUSE Linux Enterprise Server 11 SP1

SUSE Linux Enterprise Server 10 SP4

SUSE Linux Enterprise Desktop 11 SP1

SUSE Linux Enterprise Desktop 10 SP4

https://www.suse.com/security/cve/CVE-2011-3919.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2012:0117-1
Rating: important

Topics%20covered

Topics Covered

security advisory buffer overflow software update patch important SUSE libxml2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here