Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
202
security advisoryimportant updateopenSUSEopenSUSE 15.x: 2023:0030-1 Important: tcl Security Update - Critical Fix
An update that contains security fixes can now be installed.. SUSE Security Update: Security update for tcl ______________________________________________________________________________ Announcement ID: SUSE-SU-2023:0030-1 Rating: important References: #1195773 Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for tcl fixes the following issues: - Fixed a race condition in test socket-13.1. - Removed the SQLite extension and use the packaged sqlite3 instead (bsc#1195773). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap15.4: zypper in -t patch openSUSE-SLE-15.4-2023-30=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2023-30=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-30=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2023-30=1 - SUSE Linux Enterprise Micro 5.3: zypper in -t patch SUSE-SLE-Micro-5.3-2023-30=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): tcl-8.6.12-150300.14.6.1 tcl-debuginfo-8.6.12-150300.14.6.1 tcl-debugsource-8.6.12-150300.14.6.1 tcl-devel-8.6.12-150300.14.6.1 - openSUSE Leap 15.4 (x86_64): tcl-32bit-8.6.12-150300.14.6.1 tcl-32bit-debuginfo-8.6.12-150300.14.6.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): tcl-8.6.12-150300.14.6.1 tcl-debuginfo-8.6.12-150300.14.6.1 tcl-debugsource-8.6.12-150300.14.6.1 tcl-devel-8.6.12-150300.14.6.1 - openSUSE Leap 15.3 (x86_64): tcl-32bit-8.6.12-150300.14.6.1 tcl-32bit-debuginfo-8.6.12-150300.14.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): tcl-8.6.12-150300.14.6.1 tcl-debuginfo-8.6.12-150300.14.6.1 tcl-debugsource-8.6.12-150300.14.6.1 tcl-devel-8.6.12-150300.14.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (x86_64): tcl-32bit-8.6.12-150300.14.6.1 tcl-32bit-debuginfo-8.6.12-150300.14.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): tcl-8.6.12-150300.14.6.1 tcl-debuginfo-8.6.12-150300.14.6.1 tcl-debugsource-8.6.12-150300.14.6.1 tcl-devel-8.6.12-150300.14.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64): tcl-32bit-8.6.12-150300.14.6.1 tcl-32bit-debuginfo-8.6.12-150300.14.6.1 - SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64): tcl-8.6.12-150300.14.6.1 tcl-debuginfo-8.6.12-150300.14.6.1 tcl-debugsource-8.6.12-150300.14.6.1 References: https://bugzilla.suse.com/1195773 . SUSE releases enhancements targeting key vulnerabilities in tcl. Implement the latest security updates to guarantee your systems are protected and reliable.. openSUSE Update,Tcl Security Advisory,SUSE Enterprise Storage. . Severity: Important. LinuxSecurity.com Team
Jan 05, 2023
•Important
OpenSUSE
100
security advisorysecurity updatesoftware patchSUSE Linux 12-SP5: SUSE-SU-2022:3653-1 Important Tcl Security Update
An update that contains security fixes can now be installed. . SUSE Security Update: Security update for tcl ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:3653-1 Rating: important References: #1195773 Affected Products: SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server for SAP Applications 12-SP5 SUSE Linux Enterprise Software Development Kit 12-SP5 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for tcl fixes the following issues: - Fixed a race condition in test socket-13.1. - Removed the SQLite extension and use the packaged sqlite3 instead (bsc#1195773). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2022-3653=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2022-3653=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): tcl-debuginfo-8.6.12-11.6.1 tcl-debugsource-8.6.12-11.6.1 tcl-devel-8.6.12-11.6.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): tcl-8.6.12-11.6.1 tcl-debuginfo-8.6.12-11.6.1 tcl-debugsource-8.6.12-11.6.1 - SUSE Linux Enterprise Server 12-SP5 (s390x x86_64): tcl-32bit-8.6.12-11.6.1 tcl-debuginfo-32bit-8.6.12-11.6.1 References: https://bugzilla.suse.com/1195773 . SUSE has issued a critical security update for Tcl addressing severe vulnerabilities. Timely application of this update is crucial for protecting your system.. SUSELinux,tcl update,security fix,software patch. . Severity: Important. LinuxSecurity.com Team
Oct 19, 2022
•Important
SuSE
98
security advisorymoderatedenial of serviceRHEL 5: RHSA-2013:0122-01 Moderate: Tcl DoS Issues Update
Updated tcl packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: tcl security and bug fix update Advisory ID: RHSA-2013:0122-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2013:0122.html Issue date: 2013-01-08 CVE Names: CVE-2007-4772 CVE-2007-6067 ==================================================================== 1. Summary: Updated tcl packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: Tcl (Tool Command Language) provides a powerful platform for creating integration applications that tie together diverse applications, protocols, devices, and frameworks. When paired with the Tk toolkit, Tcl provides a fast and powerful way to create cross-platform GUI applications. Two denial of service flaws were found in the Tcl regular expression handling engine. If Tcl or an application using Tcl processed a specially-crafted regular expression, it would lead to excessive CPU and memory consumption. (CVE-2007-4772, CVE-2007-6067) This update also fixes the following bug: * Due to a suboptimal implementation of threading in the current version of the Tcl language interpreter, an attempt to use threads incombination with fork in a Tcl script could cause the script to stop responding. At the moment, it is not possible to rewrite the source code or drop support for threading entirely. Consequent to this, this update provides a version of Tcl without threading support in addition to the standard version with this support. Users who need to use fork in their Tcl scripts and do not require threading can now switch to the version without threading support by using the alternatives command. (BZ#478961) All users of Tcl are advised to upgrade to these updated packages, which contain backported patches to correct these issues. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 316511 - CVE-2007-4772 postgresql DoS via infinite loop in regex NFA optimization code 400931 - CVE-2007-6067 postgresql: tempory DoS caused by slow regex NFA cleanup 478961 - [RHEL5] tcl threads support implementation can cause scripts to hang 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: tcl-8.4.13-6.el5.i386.rpm tcl-debuginfo-8.4.13-6.el5.i386.rpm tcl-html-8.4.13-6.el5.i386.rpm x86_64: tcl-8.4.13-6.el5.i386.rpm tcl-8.4.13-6.el5.x86_64.rpm tcl-debuginfo-8.4.13-6.el5.i386.rpm tcl-debuginfo-8.4.13-6.el5.x86_64.rpm tcl-html-8.4.13-6.el5.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: i386: tcl-debuginfo-8.4.13-6.el5.i386.rpm tcl-devel-8.4.13-6.el5.i386.rpm x86_64: tcl-debuginfo-8.4.13-6.el5.i386.rpm tcl-debuginfo-8.4.13-6.el5.x86_64.rpm tcl-devel-8.4.13-6.el5.i386.rpm tcl-devel-8.4.13-6.el5.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: tcl-8.4.13-6.el5.i386.rpm tcl-debuginfo-8.4.13-6.el5.i386.rpm tcl-devel-8.4.13-6.el5.i386.rpm tcl-html-8.4.13-6.el5.i386.rpm ia64: tcl-8.4.13-6.el5.ia64.rpm tcl-debuginfo-8.4.13-6.el5.ia64.rpm tcl-devel-8.4.13-6.el5.ia64.rpm tcl-html-8.4.13-6.el5.ia64.rpm ppc: tcl-8.4.13-6.el5.ppc.rpm tcl-8.4.13-6.el5.ppc64.rpm tcl-debuginfo-8.4.13-6.el5.ppc.rpm tcl-debuginfo-8.4.13-6.el5.ppc64.rpm tcl-devel-8.4.13-6.el5.ppc.rpm tcl-devel-8.4.13-6.el5.ppc64.rpm tcl-html-8.4.13-6.el5.ppc.rpm s390x: tcl-8.4.13-6.el5.s390.rpm tcl-8.4.13-6.el5.s390x.rpm tcl-debuginfo-8.4.13-6.el5.s390.rpm tcl-debuginfo-8.4.13-6.el5.s390x.rpm tcl-devel-8.4.13-6.el5.s390.rpm tcl-devel-8.4.13-6.el5.s390x.rpm tcl-html-8.4.13-6.el5.s390x.rpm x86_64: tcl-8.4.13-6.el5.i386.rpm tcl-8.4.13-6.el5.x86_64.rpm tcl-debuginfo-8.4.13-6.el5.i386.rpm tcl-debuginfo-8.4.13-6.el5.x86_64.rpm tcl-devel-8.4.13-6.el5.i386.rpm tcl-devel-8.4.13-6.el5.x86_64.rpm tcl-html-8.4.13-6.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2007-4772 https://access.redhat.com/security/cve/CVE-2007-6067 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. . Essential patch rollout for tcl modules targeting vulnerabilities and system flaws in Red Hat Enterprise Linux 5.. Tcl Packages Update, Red Hat Security Advisory, Denial of Service Fixes, Bug Fixes, Moderate Update. . LinuxSecurity.com Team
Jan 08, 2013
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!