SuSE Essential and Critical Security Patch Updates - Page 794

SuSE: 2009-015: Linux kernel Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The SUSE Linux Enterprise 9 kernel has been updated to fix lots of bugs The SUSE Linux Enterprise 9 kernel has been updated to fix lots of bugs and several security issues. and several security issues. Following security issues were fixed: CVE-2009-0028: The clone system call in the Linux kernel allows local users to send arbitrary signals to a parent process from an unprivileged child process by [More...]

LinuxSecurity.com Team
Apr 03, 2009

SuSE: 2009-016: Sun Java Security Update

The Sun JDK 5 was updated to Update18 and the Sun JDK 6 was updated The Sun JDK 5 was updated to Update18 and the Sun JDK 6 was updated to Update 13 to fix various bugs and security issues. to Update 13 to fix various bugs and security issues. CVE-2009-1093: LdapCtx in the LDAP service in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and e [More...]

LinuxSecurity.com Team
Apr 03, 2009

SuSE: 2009-014: acroread Security Update

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. Please find more details at Adobe's site: [More...]

LinuxSecurity.com Team
Mar 27, 2009

SuSE: Weekly Summary 2009:007

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]

LinuxSecurity.com Team
Mar 24, 2009

SuSE: 2009-013: dbus-1 Security Update

Joachim Breitner discovered that the default DBus system policy was Joachim Breitner discovered that the default DBus system policy was too permissive. In fact the default policy was to allow all calls on too permissive. In fact the default policy was to allow all calls on the bus. Many services expected that the default was to deny everything and therefore only installed rules that explicitly all [More...]

LinuxSecurity.com Team
Mar 17, 2009

SuSE: 2009-012: Mozilla Firefox Security Update

The Mozilla Firefox browser is updated to version 3.0.7 fixing various The Mozilla Firefox browser is updated to version 3.0.7 fixing various security and stability issues. security and stability issues. Updates are provided for openSUSE 11.0 and 11.1 currently, backports for other Mozilla Firefox browsers and Mozilla Suite programs will follow.

LinuxSecurity.com Team
Mar 16, 2009

SuSE: Weekly Summary 2009:006

LinuxSecurity.com Team
Mar 10, 2009

SuSE: Weekly Summary 2009:005

LinuxSecurity.com Team
Mar 02, 2009

SuSE: 2009-011: flash-player Security Update

Specially crafted swf files could cause a buffer overflow in Specially crafted swf files could cause a buffer overflow in flash-player. Attackers could potentially exploit that to execute flash-player. Attackers could potentially exploit that to execute code on the victim's machine (CVE-2009-0519, CVE-2009-0520, CVE-2009-0521). 2) Solution or Work-Around

LinuxSecurity.com Team
Feb 26, 2009

SuSE: 2009-010: Linux kernel Security Update

This update fixes several security issues and lots of bugs in the This update fixes several security issues and lots of bugs in the openSUSE 11.1 kernel. openSUSE 11.1 kernel. The Linux kernel on openSUSE 11.1 was updated to the stable version 2.6.27.19 and is also now at the same kernel as we are planning to ship with SUSE Linux Enterprise (Server/Desktop) 11.

LinuxSecurity.com Team
Feb 26, 2009

SuSE: Weekly Summary 2009:004

To avoid flooding mailing lists with SUSE Security Announcements To avoid flooding mailing lists with SUSE Security Announcements for minor for minor issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Security Announcements that are released for more severe vulnerabilities.

LinuxSecurity.com Team
Feb 17, 2009

SuSE: 2009-009: Mozilla Firefox Security Update

The Mozilla Firefox browser is updated to version 3.0.6 fixing various The Mozilla Firefox browser is updated to version 3.0.6 fixing various security and stability issues. security and stability issues. MFSA 2009-01 / CVE-2009-0352 / CVE-2009-0353: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these [More...]

LinuxSecurity.com Team
Feb 16, 2009

SuSE: Weekly Summary 2009:003

LinuxSecurity.com Team
Feb 02, 2009

SuSE: 2009-008: Linux kernel Security Update

The SUSE Linux Enterprise 10 Service Pack 2 kernel was updated to The SUSE Linux Enterprise 10 Service Pack 2 kernel was updated to version 2.6.16.60-0.34 to fix some security issues and various bugs. version 2.6.16.60-0.34 to fix some security issues and various bugs. The following security problems have been fixed: CVE-2008-5079: net/atm/svc.c in the ATM subsystem allowed local users to cause [More...]

LinuxSecurity.com Team
Jan 29, 2009

SuSE: 2009-007: IBM Java 5 Security Update

The IBM Java JRE 5 was brought to Service Release 9 fixing quite a The IBM Java JRE 5 was brought to Service Release 9 fixing quite a number of security issues and bugs. number of security issues and bugs. The update fixes the following security problems: CVE-2008-5350: A security vulnerability in the Java Runtime Environment (JRE) may allow an untrusted applet or application to list the contents [More...]

LinuxSecurity.com Team
Jan 29, 2009

SuSE: 2009-006: OpenSSL certificate verification problem Security Update

The OpenSSL certificate checking routines EVP_VerifyFinal can return The OpenSSL certificate checking routines EVP_VerifyFinal can return negative values and 0 on failure. In some places negative values negative values and 0 on failure. In some places negative values were not checked and considered successful verification. Prior to this update it was possible to bypass the certification chain chec [More...]

LinuxSecurity.com Team
Jan 23, 2009

SuSE: 2009-005: bind Security Update

The DNS daemon bind is used to resolve and lookup addresses on the inter- The DNS daemon bind is used to resolve and lookup addresses on the inter- net. net. Some month ago a vulnerability in the DNS protocol and its numbers was published that allowed easy spoofing of DNS entries. The only way to pro- tect against spoofing is to use DNSSEC. Unfortunately the bind code that verifys the certificatio [More...]

LinuxSecurity.com Team
Jan 22, 2009

SuSE: 2009-004: Linux kernel Security Update

The openSUSE 10.3 kernel was updated to fix various security problems The openSUSE 10.3 kernel was updated to fix various security problems and bugs. Following security bugs were fixed: and bugs. Following security bugs were fixed: CVE-2008-5079: net/atm/svc.c in the ATM subsystem allowed local users to cause a denial of service (kernel infinite loop) by making two calls to svc_listen for the sam [More...]

LinuxSecurity.com Team
Jan 21, 2009

SuSE: 2009-003: Linux kernel Security Update

This update fixes various security issues and several bugs in the This update fixes various security issues and several bugs in the openSUSE 11.0 kernel. openSUSE 11.0 kernel. The kernel was also updated to the stable version 2.6.25.20, including its bugfixes. Following security issues were fixed:

LinuxSecurity.com Team
Jan 20, 2009

SuSE: Weekly Summary 2009:002

LinuxSecurity.com Team
Jan 19, 2009