SuSE Essential and Critical Security Patch Updates - Page 762

Find the information you need for your favorite open source distribution .

SuSE: 2009-047: TCP Denial of Service Security Update

SuSE: 2009-047: TCP Denial of Service Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Outpost24 AB researchers Robert E. Lee and Jack C. Louis have found Outpost24 AB researchers Robert E. Lee and Jack C. Louis have found TCP/IP denial of service vulnerabilities which allow remote attackers TCP/IP denial of service vulnerabilities which allow remote attackers to allocate resources (memory and socket slots) on a targeted system indefinitely and so may cause a denial of the services [More...]

SuSE: Weekly Summary 2009:015

SuSE: Weekly Summary 2009:015

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]

SuSE: Weekly Summary 2009:014

SuSE: Weekly Summary 2009:014

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]

SuSE: 2009-046: Linux kernel Security Update

SuSE: 2009-046: Linux kernel Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A single critical security issues was fixed in the SUSE Linux A single critical security issues was fixed in the SUSE Linux Enterprise 9 and 10 kernels, which allowed local users to gain root Enterprise 9 and 10 kernels, which allowed local users to gain root privileges. The issue is tracked by CVE-2009-2698 and is a missing check in the MSG_PROBE socket handling of IPv4 and IPv6 sockets.

SuSE: 2009-045: Linux kernel Security Update

SuSE: 2009-045: Linux kernel Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Linux kernel update fixes the following security issues: The Linux kernel update fixes the following security issues: CVE-2009-2692: A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. [SLES9, SLES10-SP2, SLE11, openSUSE] CVE-2009-1389: A crash on r8169 network cards when receiving

SuSE: 2009-044: subversion Security Update

SuSE: 2009-044: subversion Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Subversion is a revision control system, which is mainly used for Subversion is a revision control system, which is mainly used for code development. code development. The ibsvn_delta library is vulnerable to integer overflows while processing svndiff streams, this leads to overflows on the heap because of insufficient memory allocation.

SuSE: Weekly Summary 2009:013

SuSE: Weekly Summary 2009:013

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]

SuSE: 2009-043: Sun Java Security Update

SuSE: 2009-043: Sun Java Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Sun Java JRE /JDK 5 was updated to Update 20 fixing various The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java W [More...]

SuSE: 2009-042: Mozilla Firefox 3.0 Security Update

SuSE: 2009-042: Mozilla Firefox 3.0 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Mozilla Firefox Browser in SUSE Linux Enterprise 10 Service Pack 2 The Mozilla Firefox Browser in SUSE Linux Enterprise 10 Service Pack 2 was brought from the old 2.0.0.x release branch to the current 3.0.12 was brought from the old 2.0.0.x release branch to the current 3.0.12 release of the Firefox 3.0 release branch. It contains the following new security fixes: MFSA 2009-34 / CVE-2009-2462 [More...]

SuSE: 2009-041: flash-player Security Update

SuSE: 2009-041: flash-player Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The flash-player is a web-browser plugin that allows displaying The flash-player is a web-browser plugin that allows displaying animated web-content and remote access to client hardware (mic, animated web-content and remote access to client hardware (mic, web-cam, etc.). A specially crafted Shockwave-Flash (SWF) file could cause a buffer overflow in the flash-player plugin. This buffer overflow c [More...]

SuSE: 2009-040: bind Security Update

SuSE: 2009-040: bind Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Specially crafted zone update packets could trigger an exception in Specially crafted zone update packets could trigger an exception in bind causing it to exit. The attack works if BIND is master for a bind causing it to exit. The attack works if BIND is master for a zone even if zone updates are not configured (CVE-2009-0696). 2) Solution or Work-Around

SuSE: 2009-039: Mozilla Firefox 3.0.12 Security Update

SuSE: 2009-039: Mozilla Firefox 3.0.12 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The MozillaFirefox 3.0.12 release fixes various bugs and some critical The MozillaFirefox 3.0.12 release fixes various bugs and some critical security issues. security issues. MFSA 2009-34 / CVE-2009-2462 / CVE-2009-2463 / CVE-2009-2464 / CVE-2009-2465 / CVE-2009-2466: Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in Firefox and

SuSE: 2009-038: Linux Kernel Security Update

SuSE: 2009-038: Linux Kernel Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The SUSE Linux Enterprise 11 and openSUSE 11.1 kernel was updated to The SUSE Linux Enterprise 11 and openSUSE 11.1 kernel was updated to fix various bugs and several security issues. It was also updated to fix various bugs and several security issues. It was also updated to the stable release 2.6.27.25. Following security issues were fixed: CVE-2009-1961: A local denial of service problem in the [More...]

SuSE: 2009-037: dhcp-client Security Update

SuSE: 2009-037: dhcp-client Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The DHCP client (dhclient) could be crashed by a malicious DHCP The DHCP client (dhclient) could be crashed by a malicious DHCP server sending an overlong subnet field (CVE-2009-0692). server sending an overlong subnet field (CVE-2009-0692). In theory a malicious DHCP server could exploit the flaw to execute arbitrary code as root on machines using dhclient to obtain network settings. Newer distr [More...]

SuSE: Weekly Summary 2009:012

SuSE: Weekly Summary 2009:012

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]

SuSE: 2009-036: IBM Java 6 Security Update

SuSE: 2009-036: IBM Java 6 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

IBM Java 6 SR 5 was released fixing various bugs and critical security IBM Java 6 SR 5 was released fixing various bugs and critical security issues: issues: CVE-2009-1093: A vulnerability in the Java Runtime Environment (JRE) with initializing LDAP connections may be exploited by a remote client to cause a denial-of-service condition on the LDAP service.

SuSE: 2009-035: Acrobat Reader Security Update

SuSE: 2009-035: Acrobat Reader Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This update of the Adobe Acrobat Reader acroread to version 8.1.6 This update of the Adobe Acrobat Reader acroread to version 8.1.6 fixes the following vulnerabilities: fixes the following vulnerabilities: - CVE-2009-1855: stack overflow that could lead to code execution - CVE-2009-1856: integer overflow with potential to lead to arbitrarycode execution - CVE-2009-1857: memory corruption with pote [More...]

SuSE: 2009-034: Mozilla Firefox 3.0.11 Security Update

SuSE: 2009-034: Mozilla Firefox 3.0.11 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Mozilla Firefox browser was updated to version 3.0.11, fixing The Mozilla Firefox browser was updated to version 3.0.11, fixing various bugs and security issues: various bugs and security issues: * MFSA 2009-24/CVE-2009-1392/CVE-2009-1832/CVE-2009-1833 Crashes with evidence of memory corruption (rv:1.9.0.11)* MFSA 2009-25/CVE-2009-1834 (bmo#479413) URL spoofing with invalid unicode character [More...]

SuSE: 2009-033: Linux kernel Security Update

SuSE: 2009-033: Linux kernel Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This update of the Linux kernel for SUSE Linux Enterprise Server 9 This update of the Linux kernel for SUSE Linux Enterprise Server 9 SP4 contains various bug- and two security-fixes. SP4 contains various bug- and two security-fixes. The following security vulnerabilities have been fixed: CVE-2009-1072: nfsd in the Linux kernel did not drop the CAP_MKNOD capability before handling a user request [More...]

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved