SuSE Essential and Critical Security Patch Updates - Page 771

SuSE: 2009-053: IBM Java 6 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The IBM Java 6 JRE/SDK was updated to Service Release 6, fixing The IBM Java 6 JRE/SDK was updated to Service Release 6, fixing various bugs and security issues. various bugs and security issues. Following security issues were fixed: CVE-2009-2676: A security vulnerability in the JNLPAppletLauncher might impact users of the Sun JDK and JRE. Non-current versions of the JNLPAppletLauncher might be [More...]

LinuxSecurity.com Team
Nov 04, 2009

SuSE: 2009-052: Mozilla Firefox Security Update

The Mozilla Firefox browser was updated to fix various bugs and The Mozilla Firefox browser was updated to fix various bugs and security issues. security issues. On all SUSE Linux Enterprise products it was updated to the stable version 3.5.4, on openSUSE 11.0 and 11.1 it was updated to the stable version 3.0.0.15.

LinuxSecurity.com Team
Nov 04, 2009

SuSE: 2009-051: Linux kernel Security Update

The SUSE Linux Enterprise 11 and openSUSE 11.1 kernel was updated to The SUSE Linux Enterprise 11 and openSUSE 11.1 kernel was updated to 2.6.27.37 fixing various bugs and security issues. 2.6.27.37 fixing various bugs and security issues. Following security issues were fixed: CVE-2009-2909: Unsigned check in the ax25 socket handler could allow local attackers to potentially crash the kernel or e [More...]

LinuxSecurity.com Team
Nov 02, 2009

SuSE: 2009-050: Apache and libapr Security Update

The Apache web server was updated to fix various security issues: The Apache web server was updated to fix various security issues: - the option IncludesNOEXEC could be bypassed via .htaccess (CVE-2009-1195) - the option IncludesNOEXEC could be bypassed via .htaccess (CVE-2009-1195) - mod_proxy could run into an infinite loop when used as reverse proxy(CVE-2009-1890) - mod_deflate continued to co [More...]

LinuxSecurity.com Team
Oct 26, 2009

SuSE: Weekly Summary 2009:017

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]

LinuxSecurity.com Team
Oct 26, 2009

SuSE: 2009-049: acroread, acroread_ja Security Update

Adobe Reader has been updated to fix numerous security Adobe Reader has been updated to fix numerous security vulnerabilities. Some of the vulnerabilities allowed attackers to vulnerabilities. Some of the vulnerabilities allowed attackers to potentially execute arbitrary code on the victim's system via specially crafted PDF files. 2) Solution or Work-Around

LinuxSecurity.com Team
Oct 26, 2009

SuSE: 2009-048: Mozilla Firefox Security Update

The Mozilla Firefox was updated to current stable versions on all The Mozilla Firefox was updated to current stable versions on all affected Linux products. affected Linux products. openSUSE 10.3,11.0 and 11.1: Firefox was updated to the current stable branch version 3.0.14. These updates were already released on September 21st.

LinuxSecurity.com Team
Oct 20, 2009

SuSE: Weekly Summary 2009:016

LinuxSecurity.com Team
Oct 13, 2009

SuSE: 2009-047: TCP Denial of Service Security Update

Outpost24 AB researchers Robert E. Lee and Jack C. Louis have found Outpost24 AB researchers Robert E. Lee and Jack C. Louis have found TCP/IP denial of service vulnerabilities which allow remote attackers TCP/IP denial of service vulnerabilities which allow remote attackers to allocate resources (memory and socket slots) on a targeted system indefinitely and so may cause a denial of the services [More...]

LinuxSecurity.com Team
Oct 02, 2009

SuSE: Weekly Summary 2009:015

LinuxSecurity.com Team
Sep 15, 2009

SuSE: Weekly Summary 2009:014

LinuxSecurity.com Team
Sep 01, 2009

SuSE: 2009-046: Linux kernel Security Update

A single critical security issues was fixed in the SUSE Linux A single critical security issues was fixed in the SUSE Linux Enterprise 9 and 10 kernels, which allowed local users to gain root Enterprise 9 and 10 kernels, which allowed local users to gain root privileges. The issue is tracked by CVE-2009-2698 and is a missing check in the MSG_PROBE socket handling of IPv4 and IPv6 sockets.

LinuxSecurity.com Team
Aug 28, 2009

SuSE: 2009-045: Linux kernel Security Update

The Linux kernel update fixes the following security issues: The Linux kernel update fixes the following security issues: CVE-2009-2692: A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. [SLES9, SLES10-SP2, SLE11, openSUSE] CVE-2009-1389: A crash on r8169 network cards when receiving

LinuxSecurity.com Team
Aug 20, 2009

SuSE: 2009-044: subversion Security Update

Subversion is a revision control system, which is mainly used for Subversion is a revision control system, which is mainly used for code development. code development. The ibsvn_delta library is vulnerable to integer overflows while processing svndiff streams, this leads to overflows on the heap because of insufficient memory allocation.

LinuxSecurity.com Team
Aug 14, 2009

SuSE: Weekly Summary 2009:013

LinuxSecurity.com Team
Aug 11, 2009

SuSE: 2009-043: Sun Java Security Update

The Sun Java JRE /JDK 5 was updated to Update 20 fixing various The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java W [More...]

LinuxSecurity.com Team
Aug 07, 2009

SuSE: 2009-042: Mozilla Firefox 3.0 Security Update

The Mozilla Firefox Browser in SUSE Linux Enterprise 10 Service Pack 2 The Mozilla Firefox Browser in SUSE Linux Enterprise 10 Service Pack 2 was brought from the old 2.0.0.x release branch to the current 3.0.12 was brought from the old 2.0.0.x release branch to the current 3.0.12 release of the Firefox 3.0 release branch. It contains the following new security fixes: MFSA 2009-34 / CVE-2009-2462 [More...]

LinuxSecurity.com Team
Aug 06, 2009

SuSE: 2009-041: flash-player (resent) Security Update

Note: This advisory was resent because the list of packages was Note: This advisory was resent because the list of packages was wrong. wrong. The flash-player is a web-browser plugin that allows displaying animated web-content and remote access to client hardware (mic, web-cam, etc.).

LinuxSecurity.com Team
Aug 05, 2009

SuSE: 2009-041: flash-player Security Update

The flash-player is a web-browser plugin that allows displaying The flash-player is a web-browser plugin that allows displaying animated web-content and remote access to client hardware (mic, animated web-content and remote access to client hardware (mic, web-cam, etc.). A specially crafted Shockwave-Flash (SWF) file could cause a buffer overflow in the flash-player plugin. This buffer overflow c [More...]

LinuxSecurity.com Team
Aug 05, 2009

SuSE: 2009-040: bind Security Update

Specially crafted zone update packets could trigger an exception in Specially crafted zone update packets could trigger an exception in bind causing it to exit. The attack works if BIND is master for a bind causing it to exit. The attack works if BIND is master for a zone even if zone updates are not configured (CVE-2009-0696). 2) Solution or Work-Around

LinuxSecurity.com Team
Jul 30, 2009