xorg-x11-Xvnc openSUSE 11.0 This update fixes multiple vulnerabilities reported by iDefense: - CVE-2008-2360 - RENDER Extension heap buffer overflow - CVE-2008-2361 - RENDER Extension crash - CVE-2008-2362 - RENDER Extension memory corruption - CVE-2008-1379 - MIT-SHM arbitrary memory read - CVE-2008-1377 - RECORD and Security extensions memory corruption xorg-x11-Xvnc-7.3-110.2.i586.rpm xorg-x11-Xvnc-7.3-110.2.ppc.rpm xorg-x11-Xvnc-7.3-110.2.x86_64.rpm xorg-x11-server-7.3-110.2.i586.rpm xorg-x11-server-7.3-110.2.ppc.rpm xorg-x11-server-7.3-110.2.x86_64.rpm xorg-x11-server-extra-7.3-110.2.i586.rpm xorg-x11-server-extra-7.3-110.2.ppc.rpm xorg-x11-server-extra-7.3-110.2.x86_64.rpm xorg-x11-server-sdk-7.3-110.2.i586.rpm xorg-x11-server-sdk-7.3-110.2.ppc.rpm xorg-x11-server-sdk-7.3-110.2.x86_64.rpm autoyast2 openSUSE 11.0 Cloning can fail when a lot of patterns are installed. autoyast2-2.16.19-0.1.noarch.rpm autoyast2-installation-2.16.19-0.1.noarch.rpm kdenetwork3-InstantMessenger openSUSE 11.0 Fixes for two crashes while getting user details in Kopete's GroupWise plugin kdenetwork3-InstantMessenger-3.5.9-39.2.i586.rpm kdenetwork3-InstantMessenger-3.5.9-39.2.ppc.rpm kdenetwork3-InstantMessenger-3.5.9-39.2.x86_64.rpm courier-authlib openSUSE 11.0 This update of courier-authlib fixes a bug that allowed SQL injections. (CVE-2008-2667) courier-authlib-0.60.2-40.2.i586.rpm courier-authlib-0.60.2-40.2.ppc.rpm courier-authlib-0.60.2-40.2.x86_64.rpm courier-authlib-devel-0.60.2-40.2.i586.rpm courier-authlib-devel-0.60.2-40.2.ppc.rpm courier-authlib-devel-0.60.2-40.2.x86_64.rpm courier-authlib-ldap-0.60.2-40.2.i586.rpm courier-authlib-ldap-0.60.2-40.2.ppc.rpm courier-authlib-ldap-0.60.2-40.2.x86_64.rpm courier-authlib-mysql-0.60.2-40.2.i586.rpm courier-authlib-mysql-0.60.2-40.2.ppc.rpm courier-authlib-mysql-0.60.2-40.2.x86_64.rpm courier-authlib-pgsql-0.60.2-40.2.i586.rpm courier-authlib-pgsql-0.60.2-40.2.ppc.rpm courier-authlib-pgsql-0.60.2-40.2.x86_64.rpm courier-authlib-pipe-0.60.2-40.2.i586.rpm courier-authlib-pipe-0.60.2-40.2.ppc.rpm courier-authlib-pipe-0.60.2-40.2.x86_64.rpm courier-authlib-userdb-0.60.2-40.2.i586.rpm courier-authlib-userdb-0.60.2-40.2.ppc.rpm courier-authlib-userdb-0.60.2-40.2.x86_64.rpm opera openSUSE 11.0 This patch brings Opera to security update level 9.50 Following security problems were fixed: CVE-2008-2714: Opera before 9.26 allows remote attackers to misrepresent web page addresses using "certain characters" that "cause the page address text to be misplaced." CVE-2008-2715: Unspecified vulnerability in Opera before 9.5 allows remote attackers to read cross-domain images via HTML CANVAS elements that use the images as patterns. CVE-2008-2716: Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks. It also contains lots of new features and other bugfixes, see the Changelog at: http://www.opera.com/docs/changelogs/linux/950/ opera-9.50-0.1.i586.rpm opera-9.50-0.1.ppc.rpm opera-9.50-0.1.x86_64.rpm insserv openSUSE 11.0 This update enables insserv to remove service even without LSB header. insserv-1.11.0-31.2.i586.rpm insserv-1.11.0-31.2.ppc.rpm insserv-1.11.0-31.2.x86_64.rpm suspend openSUSE 11.0 Resume from suspend to disk can fail in certain conditions, if encryption is enabled (not default). Other bugs fixed with this update: * if the suspend image was uncompressible, but compression was enabled (default), suspend to disk would fail * the whitelist for suspend to ram has been expanded with several new machines suspend-0.80.20080523-0.1.i586.rpm suspend-0.80.20080523-0.1.ppc.rpm suspend-0.80.20080523-0.1.x86_64.rpm aaa_base openSUSE 11.0 Better completion of the cd command even for the colon found in paths of OBS projects. aaa_base-11.0-79.2.i586.rpm aaa_base-11.0-79.2.ppc.rpm aaa_base-11.0-79.2.x86_64.rpm KDE4-fixes openSUSE 11.0 Bundle of fixes for critical bugs fixed since kdepim 4.1beta1: KDE PIM applications: - crash on deleting korganizer categories (kde#153740) - kmail folder selector crash - kmail mime type detection - korganizer multiple todo deletion crash - kmail composer invisible widgets (kde#162711) - kmail losing non-ascii chars on send (kde#162673) - kmail composer doesn't respect encoding (kde#162707) - korg select default type in reminder dlg (kde#158354) - kmail online imap filter mail eater - kmail crash in rfc2231 decoder - kmail crash due to bad debug code (kde#156319) - kmail save local subscriptions sooner (kde#163268) - kmail filter action crash (kde#156990) - kmail crash on inline forward of multiple mails (kde#163159) - kaddressbook contact picture display (kde#162897) - kalarm time display (kde#163408) KDE workspace: - add patch to fix windows disappearing after activating - composite effects (bnc#390675) - add patch to fix kwin per-window shortcuts (bnc#381356) - fix crash killing kwin_kill_helper (kde#156998) kde4-akregator-4.0.80-9.3.i586.rpm kde4-akregator-4.0.80-9.3.ppc.rpm kde4-akregator-4.0.80-9.3.x86_64.rpm kde4-kaddressbook-4.0.80-9.3.i586.rpm kde4-kaddressbook-4.0.80-9.3.ppc.rpm kde4-kaddressbook-4.0.80-9.3.x86_64.rpm kde4-kalarm-4.0.80-9.3.i586.rpm kde4-kalarm-4.0.80-9.3.ppc.rpm kde4-kalarm-4.0.80-9.3.x86_64.rpm kde4-kdm-4.0.4-24.2.i586.rpm kde4-kdm-4.0.4-24.2.ppc.rpm kde4-kdm-4.0.4-24.2.x86_64.rpm kde4-kmail-4.0.80-9.3.i586.rpm kde4-kmail-4.0.80-9.3.ppc.rpm kde4-kmail-4.0.80-9.3.x86_64.rpm kde4-kmobiletools-4.0.80-9.3.i586.rpm kde4-kmobiletools-4.0.80-9.3.ppc.rpm kde4-kmobiletools-4.0.80-9.3.x86_64.rpm kde4-knode-4.0.80-9.3.i586.rpm kde4-knode-4.0.80-9.3.ppc.rpm kde4-knode-4.0.80-9.3.x86_64.rpm kde4-knotes-4.0.80-9.3.i586.rpm kde4-knotes-4.0.80-9.3.ppc.rpm kde4-knotes-4.0.80-9.3.x86_64.rpm kde4-kontact-4.0.80-9.3.i586.rpm kde4-kontact-4.0.80-9.3.ppc.rpm kde4-kontact-4.0.80-9.3.x86_64.rpm kde4-korganizer-4.0.80-9.3.i586.rpm kde4-korganizer-4.0.80-9.3.ppc.rpm kde4-korganizer-4.0.80-9.3.x86_64.rpm kde4-korn-4.0.80-9.3.i586.rpm kde4-korn-4.0.80-9.3.ppc.rpm kde4-korn-4.0.80-9.3.x86_64.rpm kde4-kpilot-4.0.80-9.3.i586.rpm kde4-kpilot-4.0.80-9.3.ppc.rpm kde4-kpilot-4.0.80-9.3.x86_64.rpm kde4-ktimetracker-4.0.80-9.3.i586.rpm kde4-ktimetracker-4.0.80-9.3.ppc.rpm kde4-ktimetracker-4.0.80-9.3.x86_64.rpm kde4-ktnef-4.0.80-9.3.i586.rpm kde4-ktnef-4.0.80-9.3.ppc.rpm kde4-ktnef-4.0.80-9.3.x86_64.rpm kde4-kwin-4.0.4-24.2.i586.rpm kde4-kwin-4.0.4-24.2.ppc.rpm kde4-kwin-4.0.4-24.2.x86_64.rpm kdebase4-workspace-4.0.4-24.2.i586.rpm kdebase4-workspace-4.0.4-24.2.ppc.rpm kdebase4-workspace-4.0.4-24.2.x86_64.rpm kdebase4-workspace-devel-4.0.4-24.2.i586.rpm kdebase4-workspace-devel-4.0.4-24.2.ppc.rpm kdebase4-workspace-devel-4.0.4-24.2.x86_64.rpm kdebase4-workspace-ksysguardd-4.0.4-24.2.i586.rpm kdebase4-workspace-ksysguardd-4.0.4-24.2.ppc.rpm kdebase4-workspace-ksysguardd-4.0.4-24.2.x86_64.rpm kdepim4-4.0.80-9.3.i586.rpm kdepim4-4.0.80-9.3.ppc.rpm kdepim4-4.0.80-9.3.x86_64.rpm kdepim4-devel-4.0.80-9.3.i586.rpm kdepim4-devel-4.0.80-9.3.ppc.rpm kdepim4-devel-4.0.80-9.3.x86_64.rpm kdepim4-wizards-4.0.80-9.3.i586.rpm kdepim4-wizards-4.0.80-9.3.ppc.rpm kdepim4-wizards-4.0.80-9.3.x86_64.rpm libkdepim4-4.0.80-9.3.i586.rpm libkdepim4-4.0.80-9.3.ppc.rpm libkdepim4-4.0.80-9.3.x86_64.rpm libkdepim4-devel-4.0.80-9.3.i586.rpm libkdepim4-devel-4.0.80-9.3.ppc.rpm libkdepim4-devel-4.0.80-9.3.x86_64.rpm MozillaFirefox openSUSE 11.0 This patch updates Mozilla Firefox to the final 3.0 version. The dependend libraries mozilla-xulrunner190, mozilla-nspr and mozilla-nss were also brought to their release version. MozillaFirefox-3.0-0.1.i586.rpm MozillaFirefox-3.0-0.1.ppc.rpm MozillaFirefox-3.0-0.1.x86_64.rpm MozillaFirefox-translations-3.0-0.1.i586.rpm MozillaFirefox-translations-3.0-0.1.ppc.rpm MozillaFirefox-translations-3.0-0.1.x86_64.rpm mozilla-nspr-4.7.1-18.2.i586.rpm mozilla-nspr-4.7.1-18.2.ppc.rpm mozilla-nspr-4.7.1-18.2.x86_64.rpm mozilla-nspr-32bit-4.7.1-18.2.x86_64.rpm mozilla-nspr-devel-4.7.1-18.2.i586.rpm mozilla-nspr-devel-4.7.1-18.2.ppc.rpm mozilla-nspr-devel-4.7.1-18.2.x86_64.rpm mozilla-nss-3.12.0-23.2.i586.rpm mozilla-nss-3.12.0-23.2.ppc.rpm mozilla-nss-3.12.0-23.2.x86_64.rpm mozilla-nss-32bit-3.12.0-23.2.x86_64.rpm mozilla-nss-devel-3.12.0-23.2.i586.rpm mozilla-nss-devel-3.12.0-23.2.ppc.rpm mozilla-nss-devel-3.12.0-23.2.x86_64.rpm mozilla-nss-tools-3.12.0-23.2.i586.rpm mozilla-nss-tools-3.12.0-23.2.ppc.rpm mozilla-nss-tools-3.12.0-23.2.x86_64.rpm mozilla-xulrunner190-1.9.0-0.1.i586.rpm mozilla-xulrunner190-1.9.0-0.1.ppc.rpm mozilla-xulrunner190-1.9.0-0.1.x86_64.rpm mozilla-xulrunner190-devel-1.9.0-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0-0.1.x86_64.rpm mozilla-xulrunner190-translations-1.9.0-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0-0.1.x86_64.rpm NetworkManager-kde openSUSE 11.0 - Fix crash on rcnetwork restart - Fix scanning for wireless networks - Fix auto selection of the wireless network security mode - Notify the user if NetworkManager is not running - Allow shared key authentication - translation update - some minor bugfixes NetworkManager-kde-0.7r821737-0.1.i586.rpm NetworkManager-kde-0.7r821737-0.1.ppc.rpm NetworkManager-kde-0.7r821737-0.1.x86_64.rpm NetworkManager-kde-devel-0.7r821737-0.1.i586.rpm NetworkManager-kde-devel-0.7r821737-0.1.ppc.rpm NetworkManager-kde-devel-0.7r821737-0.1.x86_64.rpm NetworkManager-openvpn-kde-0.7r821737-0.1.i586.rpm NetworkManager-openvpn-kde-0.7r821737-0.1.ppc.rpm NetworkManager-openvpn-kde-0.7r821737-0.1.x86_64.rpm NetworkManager-vpnc-kde-0.7r821737-0.1.i586.rpm NetworkManager-vpnc-kde-0.7r821737-0.1.ppc.rpm NetworkManager-vpnc-kde-0.7r821737-0.1.x86_64.rpm timezone openSUSE 11.0 Timezone data update: DST was introduced in Pakistan (Asia/Karachi) and Marocco (Africa/Casablanca), Asia/Choibalsan offset was corrected. timezone-2008c-0.1.i586.rpm timezone-2008c-0.1.ppc.rpm timezone-2008c-0.1.x86_64.rpm clamav openSUSE 11.0 This update brings clamav to version 0.93.1. It fixes various bugs and one security issue: CVE-2008-2713: libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read. clamav-0.93.1-0.1.i586.rpm clamav-0.93.1-0.1.ppc.rpm clamav-0.93.1-0.1.x86_64.rpm clamav-db-0.93.1-0.1.i586.rpm clamav-db-0.93.1-0.1.ppc.rpm clamav-db-0.93.1-0.1.x86_64.rpm apache2-mod_php5 openSUSE 11.0 This update of php5 fixes: - possible stack-based buffer overflow CVE-2008-2050 - incomplete escapeshellcmd() CVE-2008-2051 - printf() integer overflow CVE-2008-1384 - insecure GENERATE_SEED macro CVE-2008-2107 - timezone update for DST in Pakistan apache2-mod_php5-5.2.6-0.1.i586.rpm apache2-mod_php5-5.2.6-0.1.ppc.rpm apache2-mod_php5-5.2.6-0.1.x86_64.rpm php5-5.2.6-0.1.i586.rpm php5-5.2.6-0.1.ppc.rpm php5-5.2.6-0.1.x86_64.rpm php5-bcmath-5.2.6-0.1.i586.rpm php5-bcmath-5.2.6-0.1.ppc.rpm php5-bcmath-5.2.6-0.1.x86_64.rpm php5-bz2-5.2.6-0.1.i586.rpm php5-bz2-5.2.6-0.1.ppc.rpm php5-bz2-5.2.6-0.1.x86_64.rpm php5-calendar-5.2.6-0.1.i586.rpm php5-calendar-5.2.6-0.1.ppc.rpm php5-calendar-5.2.6-0.1.x86_64.rpm php5-ctype-5.2.6-0.1.i586.rpm php5-ctype-5.2.6-0.1.ppc.rpm php5-ctype-5.2.6-0.1.x86_64.rpm php5-curl-5.2.6-0.1.i586.rpm php5-curl-5.2.6-0.1.ppc.rpm php5-curl-5.2.6-0.1.x86_64.rpm php5-dba-5.2.6-0.1.i586.rpm php5-dba-5.2.6-0.1.ppc.rpm php5-dba-5.2.6-0.1.x86_64.rpm php5-dbase-5.2.6-0.1.i586.rpm php5-dbase-5.2.6-0.1.ppc.rpm php5-dbase-5.2.6-0.1.x86_64.rpm php5-devel-5.2.6-0.1.i586.rpm php5-devel-5.2.6-0.1.ppc.rpm php5-devel-5.2.6-0.1.x86_64.rpm php5-dom-5.2.6-0.1.i586.rpm php5-dom-5.2.6-0.1.ppc.rpm php5-dom-5.2.6-0.1.x86_64.rpm php5-exif-5.2.6-0.1.i586.rpm php5-exif-5.2.6-0.1.ppc.rpm php5-exif-5.2.6-0.1.x86_64.rpm php5-fastcgi-5.2.6-0.1.i586.rpm php5-fastcgi-5.2.6-0.1.ppc.rpm php5-fastcgi-5.2.6-0.1.x86_64.rpm php5-ftp-5.2.6-0.1.i586.rpm php5-ftp-5.2.6-0.1.ppc.rpm php5-ftp-5.2.6-0.1.x86_64.rpm php5-gd-5.2.6-0.1.i586.rpm php5-gd-5.2.6-0.1.ppc.rpm php5-gd-5.2.6-0.1.x86_64.rpm php5-gettext-5.2.6-0.1.i586.rpm php5-gettext-5.2.6-0.1.ppc.rpm php5-gettext-5.2.6-0.1.x86_64.rpm php5-gmp-5.2.6-0.1.i586.rpm php5-gmp-5.2.6-0.1.ppc.rpm php5-gmp-5.2.6-0.1.x86_64.rpm php5-hash-5.2.6-0.1.i586.rpm php5-hash-5.2.6-0.1.ppc.rpm php5-hash-5.2.6-0.1.x86_64.rpm php5-iconv-5.2.6-0.1.i586.rpm php5-iconv-5.2.6-0.1.ppc.rpm php5-iconv-5.2.6-0.1.x86_64.rpm php5-imap-5.2.6-0.1.i586.rpm php5-imap-5.2.6-0.1.ppc.rpm php5-imap-5.2.6-0.1.x86_64.rpm php5-json-5.2.6-0.1.i586.rpm php5-json-5.2.6-0.1.ppc.rpm php5-json-5.2.6-0.1.x86_64.rpm php5-ldap-5.2.6-0.1.i586.rpm php5-ldap-5.2.6-0.1.ppc.rpm php5-ldap-5.2.6-0.1.x86_64.rpm php5-mbstring-5.2.6-0.1.i586.rpm php5-mbstring-5.2.6-0.1.ppc.rpm php5-mbstring-5.2.6-0.1.x86_64.rpm php5-mcrypt-5.2.6-0.1.i586.rpm php5-mcrypt-5.2.6-0.1.ppc.rpm php5-mcrypt-5.2.6-0.1.x86_64.rpm php5-mysql-5.2.6-0.1.i586.rpm php5-mysql-5.2.6-0.1.ppc.rpm php5-mysql-5.2.6-0.1.x86_64.rpm php5-ncurses-5.2.6-0.1.i586.rpm php5-ncurses-5.2.6-0.1.ppc.rpm php5-ncurses-5.2.6-0.1.x86_64.rpm php5-odbc-5.2.6-0.1.i586.rpm php5-odbc-5.2.6-0.1.ppc.rpm php5-odbc-5.2.6-0.1.x86_64.rpm php5-openssl-5.2.6-0.1.i586.rpm php5-openssl-5.2.6-0.1.ppc.rpm php5-openssl-5.2.6-0.1.x86_64.rpm php5-pcntl-5.2.6-0.1.i586.rpm php5-pcntl-5.2.6-0.1.ppc.rpm php5-pcntl-5.2.6-0.1.x86_64.rpm php5-pdo-5.2.6-0.1.i586.rpm php5-pdo-5.2.6-0.1.ppc.rpm php5-pdo-5.2.6-0.1.x86_64.rpm php5-pear-5.2.6-0.1.i586.rpm php5-pear-5.2.6-0.1.ppc.rpm php5-pear-5.2.6-0.1.x86_64.rpm php5-pgsql-5.2.6-0.1.i586.rpm php5-pgsql-5.2.6-0.1.ppc.rpm php5-pgsql-5.2.6-0.1.x86_64.rpm php5-posix-5.2.6-0.1.i586.rpm php5-posix-5.2.6-0.1.ppc.rpm php5-posix-5.2.6-0.1.x86_64.rpm php5-pspell-5.2.6-0.1.i586.rpm php5-pspell-5.2.6-0.1.ppc.rpm php5-pspell-5.2.6-0.1.x86_64.rpm php5-readline-5.2.6-0.1.i586.rpm php5-readline-5.2.6-0.1.ppc.rpm php5-readline-5.2.6-0.1.x86_64.rpm php5-shmop-5.2.6-0.1.i586.rpm php5-shmop-5.2.6-0.1.ppc.rpm php5-shmop-5.2.6-0.1.x86_64.rpm php5-snmp-5.2.6-0.1.i586.rpm php5-snmp-5.2.6-0.1.ppc.rpm php5-snmp-5.2.6-0.1.x86_64.rpm php5-soap-5.2.6-0.1.i586.rpm php5-soap-5.2.6-0.1.ppc.rpm php5-soap-5.2.6-0.1.x86_64.rpm php5-sockets-5.2.6-0.1.i586.rpm php5-sockets-5.2.6-0.1.ppc.rpm php5-sockets-5.2.6-0.1.x86_64.rpm php5-sqlite-5.2.6-0.1.i586.rpm php5-sqlite-5.2.6-0.1.ppc.rpm php5-sqlite-5.2.6-0.1.x86_64.rpm php5-suhosin-5.2.6-0.1.i586.rpm php5-suhosin-5.2.6-0.1.ppc.rpm php5-suhosin-5.2.6-0.1.x86_64.rpm php5-sysvmsg-5.2.6-0.1.i586.rpm php5-sysvmsg-5.2.6-0.1.ppc.rpm php5-sysvmsg-5.2.6-0.1.x86_64.rpm php5-sysvsem-5.2.6-0.1.i586.rpm php5-sysvsem-5.2.6-0.1.ppc.rpm php5-sysvsem-5.2.6-0.1.x86_64.rpm php5-sysvshm-5.2.6-0.1.i586.rpm php5-sysvshm-5.2.6-0.1.ppc.rpm php5-sysvshm-5.2.6-0.1.x86_64.rpm php5-tidy-5.2.6-0.1.i586.rpm php5-tidy-5.2.6-0.1.ppc.rpm php5-tidy-5.2.6-0.1.x86_64.rpm php5-tokenizer-5.2.6-0.1.i586.rpm php5-tokenizer-5.2.6-0.1.ppc.rpm php5-tokenizer-5.2.6-0.1.x86_64.rpm php5-wddx-5.2.6-0.1.i586.rpm php5-wddx-5.2.6-0.1.ppc.rpm php5-wddx-5.2.6-0.1.x86_64.rpm php5-xmlreader-5.2.6-0.1.i586.rpm php5-xmlreader-5.2.6-0.1.ppc.rpm php5-xmlreader-5.2.6-0.1.x86_64.rpm php5-xmlrpc-5.2.6-0.1.i586.rpm php5-xmlrpc-5.2.6-0.1.ppc.rpm php5-xmlrpc-5.2.6-0.1.x86_64.rpm php5-xmlwriter-5.2.6-0.1.i586.rpm php5-xmlwriter-5.2.6-0.1.ppc.rpm php5-xmlwriter-5.2.6-0.1.x86_64.rpm php5-xsl-5.2.6-0.1.i586.rpm php5-xsl-5.2.6-0.1.ppc.rpm php5-xsl-5.2.6-0.1.x86_64.rpm php5-zip-5.2.6-0.1.i586.rpm php5-zip-5.2.6-0.1.ppc.rpm php5-zip-5.2.6-0.1.x86_64.rpm php5-zlib-5.2.6-0.1.i586.rpm php5-zlib-5.2.6-0.1.ppc.rpm php5-zlib-5.2.6-0.1.x86_64.rpm nautilus openSUSE 11.0 A huge memory leak in thumbnailing code was making Nautilus lose a lot of memory. The patch submitted fixes it and is already submitted and approved upstream nautilus-2.22.2-30.3.i586.rpm nautilus-2.22.2-30.3.ppc.rpm nautilus-2.22.2-30.3.x86_64.rpm nautilus-32bit-2.22.2-30.3.x86_64.rpm nautilus-devel-2.22.2-30.3.i586.rpm nautilus-devel-2.22.2-30.3.ppc.rpm nautilus-devel-2.22.2-30.3.x86_64.rpm nautilus-lang-2.22.2-30.3.i586.rpm nautilus-lang-2.22.2-30.3.ppc.rpm nautilus-lang-2.22.2-30.3.x86_64.rpm compiz-kde4 openSUSE 11.0 This update removes the unnecessary dependency on libplasma, which causes a conflict when installing the KDE 4.1 packages from the OBS. compiz-kde4-0.7.4-31.2.i586.rpm compiz-kde4-0.7.4-31.2.ppc.rpm compiz-kde4-0.7.4-31.2.x86_64.rpm boost openSUSE 11.0 Trying to compile a simple program such as: int main() { return 0; } with g++ test.cpp -I/usr/include/python2.5 -lboost_python -lpython2.5 results in the following error: In file included from /usr/include/boost/python/class.hpp:29, from /usr/include/boost/python.hpp:18, from test.cpp:1: /usr/include/boost/python/detail/def_helper.hpp:192: error: declaration of 'typename boost::python::detail::keyword_extract<boost::tuples::tuple< const T1&, const T2&, const T3&, const T4&, boost::python::default_call_policies, boost::python::detail::keywords<0u>, const char*, void (boost::python::detail::not_specified::*)(), boost::tuples::null_type, boost::tuples::null_type> >::result_type boost::python::detail::def_helper<T1, T2, T3, T4>::keywords() const' /usr/include/boost/python/args_fwd.hpp:35: error: changes meaning of 'keywords' from 'struct boost::python::detail::keywords<0u>, because keywords<0> lacks qualification. boost-1.34.1-42.2.i586.rpm boost-1.34.1-42.2.ppc.rpm boost-1.34.1-42.2.x86_64.rpm boost-devel-1.34.1-42.2.i586.rpm boost-devel-1.34.1-42.2.ppc.rpm boost-devel-1.34.1-42.2.x86_64.rpm boost-doc-1.34.1-42.2.i586.rpm boost-doc-1.34.1-42.2.ppc.rpm boost-doc-1.34.1-42.2.x86_64.rpm libpng-devel openSUSE 11.0 Specially crafted png files could overwrite arbitrary memory. Attackers could potentially exploit that to execute arbitrary code (CVE-2008-1382). libpng-devel-1.2.26-14.2.i586.rpm libpng-devel-1.2.26-14.2.ppc.rpm libpng-devel-1.2.26-14.2.x86_64.rpm libpng-devel-32bit-1.2.26-14.2.x86_64.rpm libpng12-0-1.2.26-14.2.i586.rpm libpng12-0-1.2.26-14.2.ppc.rpm libpng12-0-1.2.26-14.2.x86_64.rpm libpng12-0-32bit-1.2.26-14.2.x86_64.rpm libpng12-0-64bit-1.2.26-14.2.ppc.rpm pcre openSUSE 11.0 Specially crafted regular expressions could lead to a buffer overflow in the pcre library. Applications using pcre to process regular expressions from untrusted sources could therefore potentially be exploited by attackers to execute arbitrary code (CVE-2008-2371). pcre-7.6-22.2.i586.rpm pcre-7.6-22.2.ppc.rpm pcre-7.6-22.2.x86_64.rpm pcre-32bit-7.6-22.2.x86_64.rpm pcre-64bit-7.6-22.2.ppc.rpm pcre-devel-7.6-22.2.i586.rpm pcre-devel-7.6-22.2.ppc.rpm pcre-devel-7.6-22.2.x86_64.rpm squid openSUSE 11.0 This update of squid fixes a denial-of-service bug that can occur while parsing ASN.1. squid-2.6.STABLE20-12.1.i586.rpm squid-2.6.STABLE20-12.1.ppc.rpm squid-2.6.STABLE20-12.1.x86_64.rpm tomcat6 openSUSE 11.0 This update of tomcat fixes a cross-site-scripting vulnerabilitiy in the host-manager. (CVE-2008-1947) tomcat6-6.0.16-6.2.noarch.rpm tomcat6-admin-webapps-6.0.16-6.2.noarch.rpm tomcat6-docs-webapp-6.0.16-6.2.noarch.rpm tomcat6-javadoc-6.0.16-6.2.noarch.rpm tomcat6-jsp-2_1-api-6.0.16-6.2.noarch.rpm tomcat6-lib-6.0.16-6.2.noarch.rpm tomcat6-servlet-2_5-api-6.0.16-6.2.noarch.rpm tomcat6-webapps-6.0.16-6.2.noarch.rpm freetype2 openSUSE 11.0 This update of freetype2 fixes several potential vulnerabilities reported by iDefense. freetype2-2.3.5-62.2.i586.rpm freetype2-2.3.5-62.2.ppc.rpm freetype2-2.3.5-62.2.x86_64.rpm freetype2-32bit-2.3.5-62.2.x86_64.rpm freetype2-64bit-2.3.5-62.2.ppc.rpm freetype2-devel-2.3.5-62.2.i586.rpm freetype2-devel-2.3.5-62.2.ppc.rpm freetype2-devel-2.3.5-62.2.x86_64.rpm freetype2-devel-32bit-2.3.5-62.2.x86_64.rpm vsftpd openSUSE 11.0 There were some issues with simultaneous ftp put of the same file name that lead to a corrupted file on the server. Also vsftpd died when there was no free data port available instead of retrying. Both issues are fixed. vsftpd-2.0.6-25.2.i586.rpm vsftpd-2.0.6-25.2.ppc.rpm vsftpd-2.0.6-25.2.x86_64.rpm nspluginwrapper openSUSE 11.0 This update fixes: - Focus problems in Adobe Reader 8 in openSUSE 11.0: https://bugzilla.novell.com/show_bug.cgi?id=353503 - Latest Flash Player wrapping in openSUSE 10.3: https://bugzilla.novell.com/show_bug.cgi?id=350752 - Broken plugin wrapping from root's home: https://bugzilla.novell.com/show_bug.cgi?id=384367 - False error messages in openSUSE 11.0: https://bugzilla.novell.com/show_bug.cgi?id=400194 - Plugin cache rebuild in openSUSE 10.3: https://bugzilla.novell.com/show_bug.cgi?id=304963 (it is only a partial fix, uninstall dragonegg as a work-around) nspluginwrapper-0.9.91.5.99.20071225-22.2.i586.rpm nspluginwrapper-0.9.91.5.99.20071225-22.2.ppc.rpm nspluginwrapper-0.9.91.5.99.20071225-22.2.x86_64.rpm storage-fixup openSUSE 11.0 This patch adds the "storage-fixup" package, which was not on the 11.0 media. The storage-fixup package fixes problems caused by wrong BIOS or hard drive firmware default settings on some machines, which lead to very frequent head unload actions and might cause unnecessary wear on the hard drive mechanics. storage-fixup-0.2-0.1.noarch.rpm storage-fixup-0.2-0.1.noarch.rpm storage-fixup-0.2-0.1.noarch.rpm MozillaFirefox openSUSE 11.0 This patch updates Mozilla Firefox to the final 3.0 version. The dependend libraries mozilla-xulrunner190, mozilla-nspr and mozilla-nss were also brought to their release version. MozillaFirefox-3.0-0.2.i586.rpm MozillaFirefox-3.0-0.2.ppc.rpm MozillaFirefox-3.0-0.2.x86_64.rpm MozillaFirefox-translations-3.0-0.2.i586.rpm MozillaFirefox-translations-3.0-0.2.ppc.rpm MozillaFirefox-translations-3.0-0.2.x86_64.rpm mozilla-nspr-4.7.1-18.2.i586.rpm mozilla-nspr-4.7.1-18.2.ppc.rpm mozilla-nspr-4.7.1-18.2.x86_64.rpm mozilla-nspr-32bit-4.7.1-18.2.x86_64.rpm mozilla-nspr-64bit-4.7.1-18.2.ppc.rpm mozilla-nspr-devel-4.7.1-18.2.i586.rpm mozilla-nspr-devel-4.7.1-18.2.ppc.rpm mozilla-nspr-devel-4.7.1-18.2.x86_64.rpm mozilla-nss-3.12.0-23.2.i586.rpm mozilla-nss-3.12.0-23.2.ppc.rpm mozilla-nss-3.12.0-23.2.x86_64.rpm mozilla-nss-32bit-3.12.0-23.2.x86_64.rpm mozilla-nss-64bit-3.12.0-23.2.ppc.rpm mozilla-nss-devel-3.12.0-23.2.i586.rpm mozilla-nss-devel-3.12.0-23.2.ppc.rpm mozilla-nss-devel-3.12.0-23.2.x86_64.rpm mozilla-nss-tools-3.12.0-23.2.i586.rpm mozilla-nss-tools-3.12.0-23.2.ppc.rpm mozilla-nss-tools-3.12.0-23.2.x86_64.rpm mozilla-xulrunner190-1.9.0-0.2.i586.rpm mozilla-xulrunner190-1.9.0-0.2.ppc.rpm mozilla-xulrunner190-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0-0.2.ppc.rpm mozilla-xulrunner190-devel-1.9.0-0.2.i586.rpm mozilla-xulrunner190-devel-1.9.0-0.2.ppc.rpm mozilla-xulrunner190-devel-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0-0.2.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0-0.2.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0-0.2.ppc.rpm mozilla-xulrunner190-translations-1.9.0-0.2.i586.rpm mozilla-xulrunner190-translations-1.9.0-0.2.ppc.rpm mozilla-xulrunner190-translations-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0-0.2.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0-0.2.ppc.rpm geronimo openSUSE 11.0 The geronimo start fails with java.lang.NoClassDefFoundError: org/apache/geronimo/system/main/Daemon exception. geronimo-1.1-236.2.noarch.rpm geronimo-jetty-servlet-container-1.1-236.2.noarch.rpm geronimo-tomcat-servlet-container-1.1-236.2.noarch.rpm libpoppler-devel openSUSE 11.0 This update fixes an code execution bug. (CVE-2008-2950) libpoppler-devel-0.8.2-1.2.i586.rpm libpoppler-devel-0.8.2-1.2.ppc.rpm libpoppler-devel-0.8.2-1.2.x86_64.rpm libpoppler-doc-0.8.2-1.2.i586.rpm libpoppler-glib-devel-0.8.2-1.2.i586.rpm libpoppler-glib3-0.8.2-1.2.i586.rpm libpoppler-glib3-0.8.2-1.2.ppc.rpm libpoppler-glib3-0.8.2-1.2.x86_64.rpm libpoppler-qt2-0.8.2-1.2.i586.rpm libpoppler-qt2-0.8.2-1.2.ppc.rpm libpoppler-qt2-0.8.2-1.2.x86_64.rpm libpoppler-qt3-devel-0.8.2-1.2.i586.rpm libpoppler-qt4-3-0.8.2-1.2.i586.rpm libpoppler-qt4-3-0.8.2-1.2.ppc.rpm libpoppler-qt4-3-0.8.2-1.2.x86_64.rpm libpoppler-qt4-devel-0.8.2-1.2.i586.rpm libpoppler3-0.8.2-1.2.i586.rpm libpoppler3-0.8.2-1.2.ppc.rpm libpoppler3-0.8.2-1.2.x86_64.rpm poppler-tools-0.8.2-1.2.i586.rpm poppler-tools-0.8.2-1.2.ppc.rpm poppler-tools-0.8.2-1.2.x86_64.rpm boost openSUSE 11.0 The boost libraries were compiled without -DNDEBUG and thus with asserts not deactivated, which might lead to program abortion. This update provides libraries compiled with -DNDEBUG. boost-1.34.1-42.4.i586.rpm boost-1.34.1-42.4.ppc.rpm boost-1.34.1-42.4.x86_64.rpm boost-64bit-1.34.1-42.4.ppc.rpm boost-devel-1.34.1-42.4.i586.rpm boost-devel-1.34.1-42.4.ppc.rpm boost-devel-1.34.1-42.4.x86_64.rpm boost-devel-64bit-1.34.1-42.4.ppc.rpm boost-doc-1.34.1-42.4.i586.rpm boost-doc-1.34.1-42.4.ppc.rpm boost-doc-1.34.1-42.4.x86_64.rpm yast2-qt-pkg openSUSE 11.0 After leaving the package selection, yast crashes because /etc/zypp/locks can't be opened for writing. yast2-qt-pkg-2.16.47-0.2.i586.rpm yast2-qt-pkg-2.16.47-0.2.ppc.rpm yast2-qt-pkg-2.16.47-0.2.x86_64.rpm licq openSUSE 11.0 Licq clients could no longer log in to the ICQ network due to a server change at July 1st 2008 licq-1.3.5.2-19.2.i586.rpm licq-1.3.5.2-19.2.ppc.rpm licq-1.3.5.2-19.2.x86_64.rpm licq-devel-1.3.5.2-19.2.i586.rpm licq-qt4-gui-1.3.5.2-19.2.i586.rpm yast2-gtk openSUSE 11.0 Solves crash when configuring network printer, issue resolving conflicts in package summary view and some small UI bugs. yast2-gtk-2.16.14-1.1.i586.rpm yast2-gtk-2.16.14-1.1.ppc.rpm yast2-gtk-2.16.14-1.1.x86_64.rpm xorg-x11 openSUSE 11.0 Apparently keyboard settings from $HOME/.Xmodmap are ignored. This update fixes this issue. xorg-x11-7.3-96.2.i586.rpm xorg-x11-7.3-96.2.ppc.rpm xorg-x11-7.3-96.2.x86_64.rpm mercurial openSUSE 11.0 This update of mercurial improves the input validation. Prior to this patch it was possible to touch files as root. (CVE-2008-2942) mercurial-1.0-30.2.i586.rpm mercurial-1.0-30.2.ppc.rpm mercurial-1.0-30.2.x86_64.rpm kernel openSUSE 11.0 The openSUSE 11.0 kernel was updated to 2.6.25.9. It fixes two security problems: CVE-2008-2372: A resource starvation issue within mmap was fixed, which could have been used by local attackers to hang the machine. CVE-2008-2826: A integer overflow in SCTP was fixed, which might have been used by remote attackers to crash the machine or potentially execute code. The update also has lots of other bugfixes that are listed in the RPM changelog. kernel-debug-2.6.25.9-0.2.i586.rpm 1 kernel-debug-2.6.25.9-0.2.x86_64.rpm 1 kernel-default-2.6.25.9-0.2.i586.rpm 1 kernel-default-2.6.25.9-0.2.ppc.rpm 1 kernel-default-2.6.25.9-0.2.x86_64.rpm 1 kernel-docs-2.6.25.9-0.2.noarch.rpm 1 kernel-pae-2.6.25.9-0.2.i586.rpm 1 kernel-rt-2.6.25.9-0.2.i586.rpm 1 kernel-rt-2.6.25.9-0.2.x86_64.rpm 1 kernel-source-2.6.25.9-0.2.i586.rpm 1 kernel-source-2.6.25.9-0.2.ppc.rpm 1 kernel-source-2.6.25.9-0.2.x86_64.rpm 1 kernel-syms-2.6.25.9-0.2.i586.rpm 1 kernel-syms-2.6.25.9-0.2.ppc.rpm 1 kernel-syms-2.6.25.9-0.2.x86_64.rpm 1 kernel-vanilla-2.6.25.9-0.2.i586.rpm 1 kernel-vanilla-2.6.25.9-0.2.ppc.rpm 1 kernel-vanilla-2.6.25.9-0.2.x86_64.rpm 1 kernel-xen-2.6.25.9-0.2.i586.rpm 1 kernel-xen-2.6.25.9-0.2.x86_64.rpm 1 glib2 openSUSE 11.0 This fixes a threading race condition in GObject class initialization. The symptoms included crashes in GtkFileChooser when used in Firefox. glib2-2.16.3-20.2.i586.rpm glib2-2.16.3-20.2.ppc.rpm glib2-2.16.3-20.2.x86_64.rpm glib2-branding-upstream-2.16.3-20.2.i586.rpm glib2-devel-2.16.3-20.2.i586.rpm glib2-devel-2.16.3-20.2.ppc.rpm glib2-devel-2.16.3-20.2.x86_64.rpm glib2-devel-64bit-2.16.3-20.2.ppc.rpm glib2-doc-2.16.3-20.2.i586.rpm glib2-doc-2.16.3-20.2.ppc.rpm glib2-doc-2.16.3-20.2.x86_64.rpm glib2-lang-2.16.3-20.2.i586.rpm glib2-lang-2.16.3-20.2.ppc.rpm glib2-lang-2.16.3-20.2.x86_64.rpm libgio-2_0-0-2.16.3-20.2.i586.rpm libgio-2_0-0-2.16.3-20.2.ppc.rpm libgio-2_0-0-2.16.3-20.2.x86_64.rpm libgio-2_0-0-32bit-2.16.3-20.2.x86_64.rpm libgio-2_0-0-64bit-2.16.3-20.2.ppc.rpm libgio-fam-2.16.3-20.2.i586.rpm libgio-fam-2.16.3-20.2.ppc.rpm libgio-fam-2.16.3-20.2.x86_64.rpm libglib-2_0-0-2.16.3-20.2.i586.rpm libglib-2_0-0-2.16.3-20.2.ppc.rpm libglib-2_0-0-2.16.3-20.2.x86_64.rpm libglib-2_0-0-32bit-2.16.3-20.2.x86_64.rpm libglib-2_0-0-64bit-2.16.3-20.2.ppc.rpm libgmodule-2_0-0-2.16.3-20.2.i586.rpm libgmodule-2_0-0-2.16.3-20.2.ppc.rpm libgmodule-2_0-0-2.16.3-20.2.x86_64.rpm libgmodule-2_0-0-32bit-2.16.3-20.2.x86_64.rpm libgmodule-2_0-0-64bit-2.16.3-20.2.ppc.rpm libgobject-2_0-0-2.16.3-20.2.i586.rpm libgobject-2_0-0-2.16.3-20.2.ppc.rpm libgobject-2_0-0-2.16.3-20.2.x86_64.rpm libgobject-2_0-0-32bit-2.16.3-20.2.x86_64.rpm libgobject-2_0-0-64bit-2.16.3-20.2.ppc.rpm libgthread-2_0-0-2.16.3-20.2.i586.rpm libgthread-2_0-0-2.16.3-20.2.ppc.rpm libgthread-2_0-0-2.16.3-20.2.x86_64.rpm libgthread-2_0-0-32bit-2.16.3-20.2.x86_64.rpm libgthread-2_0-0-64bit-2.16.3-20.2.ppc.rpm xorg-x11-fonts openSUSE 11.0 This patch fixes the font rendering, which occurs in some legacy applications (also 3rd party) like qiv. xorg-x11-fonts-7.3-70.2.noarch.rpm xorg-x11-fonts-core-7.3-70.2.noarch.rpm xorg-x11-Xvnc openSUSE 11.0 This patch fixes an X server crash when wacom driver is in use. xorg-x11-Xvnc-7.3-110.4.i586.rpm xorg-x11-Xvnc-7.3-110.4.ppc.rpm xorg-x11-Xvnc-7.3-110.4.x86_64.rpm xorg-x11-server-7.3-110.4.i586.rpm xorg-x11-server-7.3-110.4.ppc.rpm xorg-x11-server-7.3-110.4.x86_64.rpm xorg-x11-server-extra-7.3-110.4.i586.rpm xorg-x11-server-extra-7.3-110.4.ppc.rpm xorg-x11-server-extra-7.3-110.4.x86_64.rpm xorg-x11-server-sdk-7.3-110.4.i586.rpm xorg-x11-server-sdk-7.3-110.4.ppc.rpm xorg-x11-server-sdk-7.3-110.4.x86_64.rpm bind openSUSE 11.0 The transaction id and the UDP source port used for DNS queries by the bind nameserver were predicatable. Attackers could potentially exploit that weakness to manipulate the DNS cache ("DNS cache poisoning", CVE-2008-1447). bind-9.4.2-39.2.i586.rpm bind-9.4.2-39.2.ppc.rpm bind-9.4.2-39.2.x86_64.rpm bind-chrootenv-9.4.2-39.2.i586.rpm bind-chrootenv-9.4.2-39.2.ppc.rpm bind-chrootenv-9.4.2-39.2.x86_64.rpm bind-devel-9.4.2-39.2.i586.rpm bind-devel-9.4.2-39.2.ppc.rpm bind-devel-9.4.2-39.2.x86_64.rpm bind-devel-64bit-9.4.2-39.2.ppc.rpm bind-doc-9.4.2-39.2.i586.rpm bind-doc-9.4.2-39.2.ppc.rpm bind-doc-9.4.2-39.2.x86_64.rpm bind-libs-9.4.2-39.2.i586.rpm bind-libs-9.4.2-39.2.ppc.rpm bind-libs-9.4.2-39.2.x86_64.rpm bind-libs-32bit-9.4.2-39.2.x86_64.rpm bind-libs-64bit-9.4.2-39.2.ppc.rpm bind-utils-9.4.2-39.2.i586.rpm bind-utils-9.4.2-39.2.ppc.rpm bind-utils-9.4.2-39.2.x86_64.rpm clamav openSUSE 11.0 This update brings clamav to version 0.93.3. It lists CVE-2008-2713 as fixed, but this was fixed in 0.93.1 already, but not mentioned. The update contains stability and bugfixes. clamav-0.93.3-0.1.i586.rpm clamav-0.93.3-0.1.ppc.rpm clamav-0.93.3-0.1.x86_64.rpm clamav-db-0.93.3-0.1.i586.rpm clamav-db-0.93.3-0.1.ppc.rpm clamav-db-0.93.3-0.1.x86_64.rpm inn openSUSE 11.0 Version 5.10.0 of perl changed the perl_call_argv function, making the inn daemon crash. This update fixes the bug. inn-2.4.2-164.2.i586.rpm inn-2.4.2-164.2.ppc.rpm inn-2.4.2-164.2.x86_64.rpm inn-devel-2.4.2-164.2.i586.rpm inn-devel-2.4.2-164.2.ppc.rpm inn-devel-2.4.2-164.2.x86_64.rpm mininews-2.4.2-164.2.i586.rpm mininews-2.4.2-164.2.ppc.rpm mininews-2.4.2-164.2.x86_64.rpm mrtg openSUSE 11.0 Trying to use cfgmaker and similar tools ends with a perl error. mrtg-2.16.1-13.2.i586.rpm mrtg-2.16.1-13.2.ppc.rpm mrtg-2.16.1-13.2.x86_64.rpm libxcrypt openSUSE 11.0 libxcrypt accidently used the DES-Algorithm if MD5 was selected as password hash algorithm (CVE-2008-3188). libxcrypt-3.0-14.2.i586.rpm libxcrypt-3.0-14.2.ppc.rpm libxcrypt-3.0-14.2.x86_64.rpm libxcrypt-32bit-3.0-14.2.x86_64.rpm libxcrypt-64bit-3.0-14.2.ppc.rpm libxcrypt-devel-3.0-14.2.i586.rpm libxcrypt-devel-3.0-14.2.ppc.rpm libxcrypt-devel-3.0-14.2.x86_64.rpm libqt4 openSUSE 11.0 This update fixes the following issues: - postgresql support for postgresql 8.3 (bnc#403385) - input methods not working in KDE4 after login from kdm4 (bnc#398526) libqt4-4.4.0-12.2.i586.rpm libqt4-4.4.0-12.2.ppc.rpm libqt4-4.4.0-12.2.x86_64.rpm libqt4-32bit-4.4.0-12.2.x86_64.rpm libqt4-64bit-4.4.0-12.2.ppc.rpm libqt4-devel-4.4.0-12.2.i586.rpm libqt4-devel-4.4.0-12.2.ppc.rpm libqt4-devel-4.4.0-12.2.x86_64.rpm libqt4-qt3support-4.4.0-12.2.i586.rpm libqt4-qt3support-4.4.0-12.2.ppc.rpm libqt4-qt3support-4.4.0-12.2.x86_64.rpm libqt4-qt3support-32bit-4.4.0-12.2.x86_64.rpm libqt4-qt3support-64bit-4.4.0-12.2.ppc.rpm libqt4-sql-4.4.0-12.2.i586.rpm libqt4-sql-4.4.0-12.2.ppc.rpm libqt4-sql-4.4.0-12.2.x86_64.rpm libqt4-sql-32bit-4.4.0-12.2.x86_64.rpm libqt4-sql-64bit-4.4.0-12.2.ppc.rpm libqt4-sql-postgresql-4.4.0-5.2.i586.rpm libqt4-sql-postgresql-4.4.0-5.2.ppc.rpm libqt4-sql-postgresql-4.4.0-5.2.x86_64.rpm libqt4-sql-sqlite-4.4.0-12.2.i586.rpm libqt4-sql-sqlite-4.4.0-12.2.ppc.rpm libqt4-sql-sqlite-4.4.0-12.2.x86_64.rpm libqt4-x11-4.4.0-12.2.i586.rpm libqt4-x11-4.4.0-12.2.ppc.rpm libqt4-x11-4.4.0-12.2.x86_64.rpm libqt4-x11-32bit-4.4.0-12.2.x86_64.rpm libqt4-x11-64bit-4.4.0-12.2.ppc.rpm KDE4-fixes-2 openSUSE 11.0 This update fixes the following issues: - openSUSE packages identify themselves as "compiled from sources" in bugreports - ftp:/ protocol handler might overwrite files during rename (bnc#399296) - nsplugin support not automatically installed if available when manually installing kde4-konqueror - flash support not working in kde4-konqueror (bnc#398823) - fix potential kwin crash on closing a window - fix kwin crash when cancelling the application kill helper - fix screen blanker not appearing or not shutting down DPMS (bnc#401351) - fix plasma crash on removing news plasmoid (#bnc396497) kde4-dolphin-4.0.4-18.2.i586.rpm kde4-dolphin-4.0.4-18.2.ppc.rpm kde4-dolphin-4.0.4-18.2.x86_64.rpm kde4-kdepasswd-4.0.4-18.2.i586.rpm kde4-kdepasswd-4.0.4-18.2.ppc.rpm kde4-kdepasswd-4.0.4-18.2.x86_64.rpm kde4-kdialog-4.0.4-18.2.i586.rpm kde4-kdialog-4.0.4-18.2.ppc.rpm kde4-kdialog-4.0.4-18.2.x86_64.rpm kde4-kdm-4.0.4-24.4.i586.rpm kde4-kdm-4.0.4-24.4.ppc.rpm kde4-kdm-4.0.4-24.4.x86_64.rpm kde4-kdm-branding-upstream-4.0.4-24.4.i586.rpm kde4-keditbookmarks-4.0.4-18.2.i586.rpm kde4-keditbookmarks-4.0.4-18.2.ppc.rpm kde4-keditbookmarks-4.0.4-18.2.x86_64.rpm kde4-kfind-4.0.4-18.2.i586.rpm kde4-kfind-4.0.4-18.2.ppc.rpm kde4-kfind-4.0.4-18.2.x86_64.rpm kde4-kinfocenter-4.0.4-18.2.i586.rpm kde4-konqueror-4.0.4-18.2.i586.rpm kde4-konqueror-4.0.4-18.2.ppc.rpm kde4-konqueror-4.0.4-18.2.x86_64.rpm kde4-konsole-4.0.4-18.2.i586.rpm kde4-konsole-4.0.4-18.2.ppc.rpm kde4-konsole-4.0.4-18.2.x86_64.rpm kde4-kwin-4.0.4-24.4.i586.rpm kde4-kwin-4.0.4-24.4.ppc.rpm kde4-kwin-4.0.4-24.4.x86_64.rpm kde4-kwrite-4.0.4-18.2.i586.rpm kde4-kwrite-4.0.4-18.2.ppc.rpm kde4-kwrite-4.0.4-18.2.x86_64.rpm kdebase4-4.0.4-18.2.i586.rpm kdebase4-4.0.4-18.2.ppc.rpm kdebase4-4.0.4-18.2.x86_64.rpm kdebase4-libkonq-4.0.4-18.2.i586.rpm kdebase4-libkonq-4.0.4-18.2.ppc.rpm kdebase4-libkonq-4.0.4-18.2.x86_64.rpm kdebase4-nsplugin-4.0.4-18.2.i586.rpm kdebase4-nsplugin-4.0.4-18.2.ppc.rpm kdebase4-nsplugin-4.0.4-18.2.x86_64.rpm kdebase4-workspace-4.0.4-24.4.i586.rpm kdebase4-workspace-4.0.4-24.4.ppc.rpm kdebase4-workspace-4.0.4-24.4.x86_64.rpm kdebase4-workspace-branding-upstream-4.0.4-24.4.i586.rpm kdebase4-workspace-devel-4.0.4-24.4.i586.rpm kdebase4-workspace-devel-4.0.4-24.4.ppc.rpm kdebase4-workspace-devel-4.0.4-24.4.x86_64.rpm kdebase4-workspace-ksysguardd-4.0.4-24.4.i586.rpm kdebase4-workspace-ksysguardd-4.0.4-24.4.ppc.rpm kdebase4-workspace-ksysguardd-4.0.4-24.4.x86_64.rpm kdebase4-workspace-plasmoids-4.0.1-71.2.i586.rpm kdebase4-workspace-plasmoids-4.0.1-71.2.ppc.rpm kdebase4-workspace-plasmoids-4.0.1-71.2.x86_64.rpm kdelibs4-4.0.4-15.2.i586.rpm kdelibs4-4.0.4-15.2.ppc.rpm kdelibs4-4.0.4-15.2.x86_64.rpm kdelibs4-core-4.0.4-15.2.i586.rpm kdelibs4-core-4.0.4-15.2.ppc.rpm kdelibs4-core-4.0.4-15.2.x86_64.rpm kdelibs4-doc-4.0.4-15.2.i586.rpm kdelibs4-doc-4.0.4-15.2.ppc.rpm kdelibs4-doc-4.0.4-15.2.x86_64.rpm libkde4-4.0.4-15.2.i586.rpm libkde4-4.0.4-15.2.ppc.rpm libkde4-4.0.4-15.2.x86_64.rpm libkde4-32bit-4.0.4-15.2.x86_64.rpm libkde4-64bit-4.0.4-15.2.ppc.rpm libkde4-devel-4.0.4-15.2.i586.rpm libkde4-devel-4.0.4-15.2.ppc.rpm libkde4-devel-4.0.4-15.2.x86_64.rpm libkdecore4-4.0.4-15.2.i586.rpm libkdecore4-4.0.4-15.2.ppc.rpm libkdecore4-4.0.4-15.2.x86_64.rpm libkdecore4-32bit-4.0.4-15.2.x86_64.rpm libkdecore4-64bit-4.0.4-15.2.ppc.rpm libkdecore4-devel-4.0.4-15.2.i586.rpm libkdecore4-devel-4.0.4-15.2.ppc.rpm libkdecore4-devel-4.0.4-15.2.x86_64.rpm libkonq4-4.0.4-18.2.i586.rpm libkonq4-4.0.4-18.2.ppc.rpm libkonq4-4.0.4-18.2.x86_64.rpm libkonq4-32bit-4.0.4-18.2.x86_64.rpm libkonq4-64bit-4.0.4-18.2.ppc.rpm libkonq4-devel-4.0.4-18.2.i586.rpm libkonq4-devel-4.0.4-18.2.ppc.rpm libkonq4-devel-4.0.4-18.2.x86_64.rpm acpid openSUSE 11.0 Bluetooth is disabled by default. However, even hitting the hotkey combination FN-F5 (default for most ThinkPads) does not activate it. This patch fixes this. acpid-1.0.6-63.2.i586.rpm acpid-1.0.6-63.2.x86_64.rpm yast2-add-on-creator openSUSE 11.0 When reading saved configuration, YaST Add-On Creator did not read all saved values from the content file (e.g. ARCH). yast2-add-on-creator-2.16.13-0.1.noarch.rpm libvirt openSUSE 11.0 I have again updated my system with "zypper dup" and rebooted the server. I am running now with the kernel-xen version uname -a Linux server 2.6.25.5-1.1-xen #1 SMP 2008-06-07 01:55:22 +0200 x86_64 x86_64 x86_64 GNU/Linux I begin the process to create a Xen guest with "xm create" xm create -c /home/test/xen/os11.cfg Then I make a connect to the server with VNC screen and launch the "Virtual Machine Manager" to see the Guest Console. But now not as before the program starts quickly and then stops then. I see for only a moment the GUI of the Virtual Machine Manager. The output in the /var/log/messages System log shows me Jun 10 07:17:55 server kernel: /usr/share/virt[4156] trap divide error ip:7f326840a5ac sp:7fff7d135c70 error:0 in libvirt.so.0.4.0[7f32683e9000+5e000] Jun 10 07:18:09 server gconfd (root-4147): GConf server is not in use, shutting down. Jun 10 07:18:09 server gconfd (root-4147): Exiting I can repeat this problem each time. In this way the Virtual Machine Manager can not be used at all. libvirt-0.4.0-59.2.i586.rpm libvirt-0.4.0-59.2.x86_64.rpm libvirt-devel-0.4.0-59.2.i586.rpm libvirt-devel-0.4.0-59.2.x86_64.rpm libvirt-doc-0.4.0-59.2.i586.rpm libvirt-doc-0.4.0-59.2.x86_64.rpm libvirt-python-0.4.0-59.2.i586.rpm libvirt-python-0.4.0-59.2.x86_64.rpm imap openSUSE 11.0 Insufficient buffer length checks in the imap client library may crash applications that use the library to print formatted email addresses. The imap daemon itself is not affected but certain versions of e.g. the php imap module are (CVE-2008-5514). The client library could also crash when a rogue server unexpectedly closes the connection (CVE-2008-5006). imap-2006c1_suse-100.3.i586.rpm imap-2006c1_suse-100.3.ppc.rpm imap-2006c1_suse-100.3.x86_64.rpm imap-devel-2006c1_suse-100.3.i586.rpm imap-devel-2006c1_suse-100.3.ppc.rpm imap-devel-2006c1_suse-100.3.x86_64.rpm imap-lib-2006c1_suse-100.3.i586.rpm imap-lib-2006c1_suse-100.3.ppc.rpm imap-lib-2006c1_suse-100.3.x86_64.rpm strongswan openSUSE 11.0 This update provides a fix that explicitly enables version 1 linux kernel capabilities on version 2 systems, so the charon and pluto daemons don't exit because of failed try to set capabilities. strongswan-4.2.1-11.2.i586.rpm strongswan-doc-4.2.1-11.2.i586.rpm drbd openSUSE 11.0 The drbd kernel module failed to load and activate with recent kernel versions due to a kernel interface change. This update also fixes online resizing, DRBD/LVM/Xen interaction, and several additional bugs. drbd-8.2.6-0.1.i586.rpm drbd-8.2.6-0.1.ppc.rpm drbd-8.2.6-0.1.x86_64.rpm drbd-kmp-debug-8.2.6_2.6.25.9_0.2-0.1.i586.rpm drbd-kmp-debug-8.2.6_2.6.25.9_0.2-0.1.x86_64.rpm drbd-kmp-default-8.2.6_2.6.25.9_0.2-0.1.i586.rpm drbd-kmp-default-8.2.6_2.6.25.9_0.2-0.1.ppc.rpm drbd-kmp-default-8.2.6_2.6.25.9_0.2-0.1.x86_64.rpm drbd-kmp-pae-8.2.6_2.6.25.9_0.2-0.1.i586.rpm drbd-kmp-ppc64-8.2.6_2.6.25.9_0.2-0.1.ppc.rpm drbd-kmp-xen-8.2.6_2.6.25.9_0.2-0.1.i586.rpm drbd-kmp-xen-8.2.6_2.6.25.9_0.2-0.1.x86_64.rpm procinfo openSUSE 11.0 The update mode of procinfo fails to determine correct differences on systems without running timer IRQ. procinfo-18-170.2.i586.rpm procinfo-18-170.2.ppc.rpm procinfo-18-170.2.x86_64.rpm xorg-x11-Xvnc openSUSE 11.0 This update fixes intel driver crashes and other related issues by switching to EXA as acceleration method and greedy as MigrationHeuristic. xorg-x11-Xvnc-7.3-110.7.i586.rpm xorg-x11-Xvnc-7.3-110.7.ppc.rpm xorg-x11-Xvnc-7.3-110.7.x86_64.rpm xorg-x11-driver-video-7.3-138.3.i586.rpm xorg-x11-driver-video-7.3-138.3.ppc.rpm xorg-x11-driver-video-7.3-138.3.x86_64.rpm xorg-x11-driver-video-32bit-7.3-138.3.x86_64.rpm xorg-x11-driver-video-64bit-7.3-138.3.ppc.rpm xorg-x11-server-7.3-110.7.i586.rpm xorg-x11-server-7.3-110.7.ppc.rpm xorg-x11-server-7.3-110.7.x86_64.rpm xorg-x11-server-extra-7.3-110.7.i586.rpm xorg-x11-server-extra-7.3-110.7.ppc.rpm xorg-x11-server-extra-7.3-110.7.x86_64.rpm xorg-x11-server-sdk-7.3-110.7.i586.rpm xorg-x11-server-sdk-7.3-110.7.ppc.rpm xorg-x11-server-sdk-7.3-110.7.x86_64.rpm libpoppler-devel openSUSE 11.0 This patch fixes crash of claws-mail, evince, koffice, okular and others on PDF documents that use QuadPoints objects in annotations. libpoppler-devel-0.8.2-1.3.i586.rpm libpoppler-devel-0.8.2-1.3.ppc.rpm libpoppler-devel-0.8.2-1.3.x86_64.rpm libpoppler-doc-0.8.2-1.3.i586.rpm libpoppler-glib-devel-0.8.2-1.3.i586.rpm libpoppler-glib3-0.8.2-1.3.i586.rpm libpoppler-glib3-0.8.2-1.3.ppc.rpm libpoppler-glib3-0.8.2-1.3.x86_64.rpm libpoppler-qt2-0.8.2-1.3.i586.rpm libpoppler-qt2-0.8.2-1.3.ppc.rpm libpoppler-qt2-0.8.2-1.3.x86_64.rpm libpoppler-qt3-devel-0.8.2-1.3.i586.rpm libpoppler-qt4-3-0.8.2-1.3.i586.rpm libpoppler-qt4-3-0.8.2-1.3.ppc.rpm libpoppler-qt4-3-0.8.2-1.3.x86_64.rpm libpoppler-qt4-devel-0.8.2-1.3.i586.rpm libpoppler3-0.8.2-1.3.i586.rpm libpoppler3-0.8.2-1.3.ppc.rpm libpoppler3-0.8.2-1.3.x86_64.rpm poppler-tools-0.8.2-1.3.i586.rpm poppler-tools-0.8.2-1.3.ppc.rpm poppler-tools-0.8.2-1.3.x86_64.rpm SuSEfirewall2 openSUSE 11.0 SuSEfirewall2 was updated to fix following bugs: - some configuration options didn't allow to specify an empty protocol which made it impossible to properly configure e.g. the use of nf_conntrack_ftp - handling of certain ICMPv6 packages was broken which could cause e.g. hanging ssh connections SuSEfirewall2-3.6_SVNr195-9.2.noarch.rpm smart openSUSE 11.0 This update fixes the default channel configuration to match openSUSE 11.0. smart-0.52-90.2.i586.rpm smart-0.52-90.2.ppc.rpm smart-0.52-90.2.x86_64.rpm smart-gui-0.52-90.2.i586.rpm smart-gui-0.52-90.2.ppc.rpm smart-gui-0.52-90.2.x86_64.rpm smart-ksmarttray-0.52-90.2.i586.rpm smart-ksmarttray-0.52-90.2.ppc.rpm smart-ksmarttray-0.52-90.2.x86_64.rpm x11-input-wacom openSUSE 11.0 This update fixes problems with command 'xsetwacom list'. x11-input-wacom-0.7.9-50.2.i586.rpm x11-input-wacom-0.7.9-50.2.ppc.rpm x11-input-wacom-0.7.9-50.2.x86_64.rpm x11-input-wacom-devel-0.7.9-50.2.i586.rpm x11-input-wacom-devel-0.7.9-50.2.ppc.rpm x11-input-wacom-devel-0.7.9-50.2.x86_64.rpm x11-input-wacom-tools-0.7.9-50.2.i586.rpm x11-input-wacom-tools-0.7.9-50.2.ppc.rpm x11-input-wacom-tools-0.7.9-50.2.x86_64.rpm kernel openSUSE 11.0 The openSUSE 11.0 kernel was updated to 2.6.25.11. It fixes following security problems: CVE-2008-2812: Various tty / serial devices did not check functionpointers for NULL before calling them, leading to potential crashes or code execution. The devices affected are usually only accessible by the root user though. CVE-2008-2750: The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel allows remote attackers to cause a denial of service (kernel heap memory corruption and system crash) and possibly have unspecified other impact via a crafted PPPOL2TP packet that results in a large value for a certain length variable. No CVE yet: On x86_64 systems, a incorrect buffersize in LDT handling might lead to local untrusted attackers causing a crash of the machine or potentially execute code with kernel privileges. The update also has lots of other bugfixes that are listed in the RPM changelog. kernel-debug-2.6.25.11-0.1.i586.rpm 1 kernel-debug-2.6.25.11-0.1.x86_64.rpm 1 kernel-default-2.6.25.11-0.1.i586.rpm 1 kernel-default-2.6.25.11-0.1.ppc.rpm 1 kernel-default-2.6.25.11-0.1.x86_64.rpm 1 kernel-docs-2.6.25.11-0.1.noarch.rpm 1 kernel-pae-2.6.25.11-0.1.i586.rpm 1 kernel-rt-2.6.25.11-0.1.i586.rpm 1 kernel-rt-2.6.25.11-0.1.x86_64.rpm 1 kernel-source-2.6.25.11-0.1.i586.rpm 1 kernel-source-2.6.25.11-0.1.ppc.rpm 1 kernel-source-2.6.25.11-0.1.x86_64.rpm 1 kernel-syms-2.6.25.11-0.1.i586.rpm 1 kernel-syms-2.6.25.11-0.1.ppc.rpm 1 kernel-syms-2.6.25.11-0.1.x86_64.rpm 1 kernel-vanilla-2.6.25.11-0.1.i586.rpm 1 kernel-vanilla-2.6.25.11-0.1.ppc.rpm 1 kernel-vanilla-2.6.25.11-0.1.x86_64.rpm 1 kernel-xen-2.6.25.11-0.1.i586.rpm 1 kernel-xen-2.6.25.11-0.1.x86_64.rpm 1 desktop-data-openSUSE-extra-gnome openSUSE 11.0 Because of the default GNOME configuration, any GNOME application was setup to start esound daemon on demand, so when running an app as root (YAST), 2 incompatible daemons were run, which resulted in audio not working anymore for the user. These fixes in pulseaudio and gconf2-branding-openSUSE fix the issue by just autostarting pulseaudio the proper way. desktop-data-openSUSE-extra-gnome-11.0.1-22.2.noarch.rpm gconf2-branding-openSUSE-2.20-53.2.noarch.rpm libpulse-browse0-0.9.10-26.3.i586.rpm libpulse-browse0-0.9.10-26.3.ppc.rpm libpulse-browse0-0.9.10-26.3.x86_64.rpm libpulse-devel-0.9.10-26.3.i586.rpm libpulse-mainloop-glib0-0.9.10-26.3.i586.rpm libpulse-mainloop-glib0-0.9.10-26.3.ppc.rpm libpulse-mainloop-glib0-0.9.10-26.3.x86_64.rpm libpulse0-0.9.10-26.3.i586.rpm libpulse0-0.9.10-26.3.ppc.rpm libpulse0-0.9.10-26.3.x86_64.rpm libpulse0-32bit-0.9.10-26.3.x86_64.rpm libpulse0-64bit-0.9.10-26.3.ppc.rpm libpulsecore4-0.9.10-26.3.i586.rpm libpulsecore4-0.9.10-26.3.ppc.rpm libpulsecore4-0.9.10-26.3.x86_64.rpm pulseaudio-0.9.10-26.3.i586.rpm pulseaudio-0.9.10-26.3.ppc.rpm pulseaudio-0.9.10-26.3.x86_64.rpm pulseaudio-esound-compat-0.9.10-26.3.i586.rpm pulseaudio-esound-compat-0.9.10-26.3.ppc.rpm pulseaudio-esound-compat-0.9.10-26.3.x86_64.rpm pulseaudio-module-bluetooth-0.9.10-26.3.i586.rpm pulseaudio-module-bluetooth-0.9.10-26.3.ppc.rpm pulseaudio-module-bluetooth-0.9.10-26.3.x86_64.rpm pulseaudio-module-gconf-0.9.10-26.3.i586.rpm pulseaudio-module-gconf-0.9.10-26.3.ppc.rpm pulseaudio-module-gconf-0.9.10-26.3.x86_64.rpm pulseaudio-module-jack-0.9.10-26.3.i586.rpm pulseaudio-module-lirc-0.9.10-26.3.i586.rpm pulseaudio-module-lirc-0.9.10-26.3.ppc.rpm pulseaudio-module-lirc-0.9.10-26.3.x86_64.rpm pulseaudio-module-x11-0.9.10-26.3.i586.rpm pulseaudio-module-x11-0.9.10-26.3.ppc.rpm pulseaudio-module-x11-0.9.10-26.3.x86_64.rpm pulseaudio-module-zeroconf-0.9.10-26.3.i586.rpm pulseaudio-module-zeroconf-0.9.10-26.3.ppc.rpm pulseaudio-module-zeroconf-0.9.10-26.3.x86_64.rpm pulseaudio-utils-0.9.10-26.3.i586.rpm pulseaudio-utils-0.9.10-26.3.ppc.rpm pulseaudio-utils-0.9.10-26.3.x86_64.rpm flash-player openSUSE 11.0 An unspecified vulnerability in flash-player allowed attackers to take control of the victim's system by having the victim load a specially crafted SWF file (CVE-2008-5499). flash-player-9.0.152.0-0.1.i586.rpm acroread openSUSE 11.0 This update of acroread fixes an unknown error in a JavaScript method that can lead to remote code execution. (CVE-2008-2641) acroread-8.1.2_SU1-0.1.i586.rpm opera openSUSE 11.0 Opera 9.51 was released as security and bugfix update. Full details are on http://www.opera.com/docs/changelogs/linux/951/ CVE-2008-3078: Opera before 9.51 does not properly manage memory within functions supporting the CANVAS element, which allows remote attackers to read uninitialized memory contents by using JavaScript to read a canvas image. opera-9.51-7.1.i586.rpm opera-9.51-7.1.ppc.rpm opera-9.51-7.1.x86_64.rpm libsnmp15 openSUSE 11.0 This security update fixes a denial of service vulnerability and an authentication bypass (CVE-2008-2292, CVE-2008-0960). libsnmp15-5.4.1-77.2.i586.rpm libsnmp15-5.4.1-77.2.ppc.rpm libsnmp15-5.4.1-77.2.x86_64.rpm net-snmp-5.4.1-77.2.i586.rpm net-snmp-5.4.1-77.2.ppc.rpm net-snmp-5.4.1-77.2.x86_64.rpm net-snmp-32bit-5.4.1-77.2.x86_64.rpm net-snmp-64bit-5.4.1-77.2.ppc.rpm net-snmp-devel-5.4.1-77.2.i586.rpm net-snmp-devel-5.4.1-77.2.ppc.rpm net-snmp-devel-5.4.1-77.2.x86_64.rpm net-snmp-devel-64bit-5.4.1-77.2.ppc.rpm perl-SNMP-5.4.1-77.2.i586.rpm perl-SNMP-5.4.1-77.2.ppc.rpm perl-SNMP-5.4.1-77.2.x86_64.rpm snmp-mibs-5.4.1-77.2.i586.rpm snmp-mibs-5.4.1-77.2.ppc.rpm snmp-mibs-5.4.1-77.2.x86_64.rpm viewvc openSUSE 11.0 This update of viewvc fixes multiple vulnerabilities. - CVE-2008-1290: list CVS or SVN commits on "all-forbidden" files - CVE-2008-1291: directly access hidden CVSROOT folders - CVE-2008-1292: expose restricted content via the revision view, the log history, or the diff view viewvc-1.0.5-29.1.i586.rpm viewvc-1.0.5-29.1.ppc.rpm viewvc-1.0.5-29.1.x86_64.rpm MozillaFirefox openSUSE 11.0 This update brings Mozilla Firefox to version 3.0.1. It fixes various bugs and also following security problems: MFSA 2008-34 / CVE-2008-2785: An anonymous researcher, via TippingPoint's Zero Day Initiative program, reported a vulnerability in Mozilla CSS reference counting code. The vulnerability was caused by an insufficiently sized variable being used as a reference counter for CSS objects. By creating a very large number of references to a common CSS object, this counter could be overflowed which could cause a crash when the browser attempts to free the CSS object while still in use. An attacker could use this crash to run arbitrary code on the victim's computer MFSA 2008-35 / CVE-2008-2933: Security researcher Billy Rios reported that if Firefox is not already running, passing it a command-line URI with pipe symbols will open multiple tabs. This URI splitting could be used to launch privileged chrome: URIs from the command-line, a partial bypass of the fix for MFSA 2005-53 which blocks external applications from loading such URIs. This vulnerability could also be used by an attacker to launch a file: URI from the command line opening a malicious local file which could exfiltrate data from the local filesystem. Combined with a vulnerability which allows an attacker to inject code into a chrome document, the above issue could be used to run arbitrary code on a victim's computer. Such a chrome injection vulnerability was reported by Mozilla developers Ben Turner and Dan Veditz who showed that a XUL based SSL error page was not properly sanitizing inputs and could be used to run arbitrary code with chrome privileges. MFSA 2008-36 / CVE-2008-2934: Apple Security Researcher Drew Yao reported a vulnerability in Mozilla graphics code which handles GIF rendering in Mac OS X. He demonstrated that a GIF file could be specially crafted to cause the browser to free an uninitialized pointer. An attacker could use this vulnerability to crash the browser and potentially execute arbitrary code on the victim's computer. MozillaFirefox-3.0.1-0.1.i586.rpm MozillaFirefox-3.0.1-0.1.ppc.rpm MozillaFirefox-3.0.1-0.1.x86_64.rpm MozillaFirefox-translations-3.0.1-0.1.i586.rpm MozillaFirefox-translations-3.0.1-0.1.ppc.rpm MozillaFirefox-translations-3.0.1-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.1-0.1.i586.rpm mozilla-xulrunner190-1.9.0.1-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.1-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.1-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.1-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.1-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.1-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.1-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.1-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.1-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.1-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.1-0.1.ppc.rpm kde4-kdm openSUSE 11.0 This update fixes the following issues: * frequent crashes of knotify4 (bnc#387406) * fix huge documents and public_html icons to be blurry (bnc#396176) * fix kwin composite freeze with screensaver (bnc#408672) kde4-kdm-4.0.4-24.6.i586.rpm kde4-kdm-4.0.4-24.6.ppc.rpm kde4-kdm-4.0.4-24.6.x86_64.rpm kde4-kdm-branding-upstream-4.0.4-24.6.i586.rpm kde4-kwin-4.0.4-24.6.i586.rpm kde4-kwin-4.0.4-24.6.ppc.rpm kde4-kwin-4.0.4-24.6.x86_64.rpm kdebase4-runtime-4.0.4-20.2.i586.rpm kdebase4-runtime-4.0.4-20.2.ppc.rpm kdebase4-runtime-4.0.4-20.2.x86_64.rpm kdebase4-workspace-4.0.4-24.6.i586.rpm kdebase4-workspace-4.0.4-24.6.ppc.rpm kdebase4-workspace-4.0.4-24.6.x86_64.rpm kdebase4-workspace-branding-upstream-4.0.4-24.6.i586.rpm kdebase4-workspace-devel-4.0.4-24.6.i586.rpm kdebase4-workspace-devel-4.0.4-24.6.ppc.rpm kdebase4-workspace-devel-4.0.4-24.6.x86_64.rpm kdebase4-workspace-ksysguardd-4.0.4-24.6.i586.rpm kdebase4-workspace-ksysguardd-4.0.4-24.6.ppc.rpm kdebase4-workspace-ksysguardd-4.0.4-24.6.x86_64.rpm fileshareset openSUSE 11.0 This update fixes the following issues in kdebase3: * wacom pointer rotation does not work on xrandr 1.2 displays (bnc#385149) * suspend/hibernate buttons are not available in KDE3 (bnc#290917) * Avoid ksysguardd hang in (unused) openSLP lookups fileshareset-2.0-501.2.i586.rpm fileshareset-2.0-501.2.ppc.rpm fileshareset-2.0-501.2.x86_64.rpm kdebase3-3.5.9-65.2.i586.rpm kdebase3-3.5.9-65.2.ppc.rpm kdebase3-3.5.9-65.2.x86_64.rpm kdebase3-32bit-3.5.9-65.2.x86_64.rpm kdebase3-64bit-3.5.9-65.2.ppc.rpm kdebase3-beagle-3.5.9-65.2.i586.rpm kdebase3-beagle-3.5.9-65.2.ppc.rpm kdebase3-beagle-3.5.9-65.2.x86_64.rpm kdebase3-devel-3.5.9-65.2.i586.rpm kdebase3-devel-3.5.9-65.2.ppc.rpm kdebase3-devel-3.5.9-65.2.x86_64.rpm kdebase3-extra-3.5.9-65.2.i586.rpm kdebase3-extra-3.5.9-65.2.ppc.rpm kdebase3-extra-3.5.9-65.2.x86_64.rpm kdebase3-kdm-3.5.9-65.2.i586.rpm kdebase3-kdm-3.5.9-65.2.ppc.rpm kdebase3-kdm-3.5.9-65.2.x86_64.rpm kdebase3-nsplugin-3.5.9-65.2.i586.rpm kdebase3-nsplugin-3.5.9-65.2.ppc.rpm kdebase3-runtime-3.5.9-65.2.i586.rpm kdebase3-runtime-3.5.9-65.2.ppc.rpm kdebase3-runtime-3.5.9-65.2.x86_64.rpm kdebase3-runtime-32bit-3.5.9-65.2.x86_64.rpm kdebase3-runtime-64bit-3.5.9-65.2.ppc.rpm kdebase3-samba-3.5.9-65.2.i586.rpm kdebase3-samba-3.5.9-65.2.ppc.rpm kdebase3-samba-3.5.9-65.2.x86_64.rpm kdebase3-session-3.5.9-65.2.i586.rpm kdebase3-session-3.5.9-65.2.ppc.rpm kdebase3-session-3.5.9-65.2.x86_64.rpm misc-console-font-3.5.9-65.2.i586.rpm misc-console-font-3.5.9-65.2.ppc.rpm misc-console-font-3.5.9-65.2.x86_64.rpm xorg-x11-Xvnc openSUSE 11.0 This update fixes application crashes, caused by an overly-restrictive integer overflow check in EXA. xorg-x11-Xvnc-7.3-110.9.i586.rpm xorg-x11-Xvnc-7.3-110.9.ppc.rpm xorg-x11-Xvnc-7.3-110.9.x86_64.rpm xorg-x11-server-7.3-110.9.i586.rpm xorg-x11-server-7.3-110.9.ppc.rpm xorg-x11-server-7.3-110.9.x86_64.rpm xorg-x11-server-extra-7.3-110.9.i586.rpm xorg-x11-server-extra-7.3-110.9.ppc.rpm xorg-x11-server-extra-7.3-110.9.x86_64.rpm xorg-x11-server-sdk-7.3-110.9.i586.rpm xorg-x11-server-sdk-7.3-110.9.ppc.rpm xorg-x11-server-sdk-7.3-110.9.x86_64.rpm libexif openSUSE 11.0 This patch fixes EXIF related crashes in the EOG image browser (Novell Bugzilla 406299) and GIMP on EOS JPEG opening (Novell Bugzilla 404475 ). libexif-0.6.16.2-32.2.i586.rpm libexif-0.6.16.2-32.2.ppc.rpm libexif-0.6.16.2-32.2.x86_64.rpm libexif-32bit-0.6.16.2-32.2.x86_64.rpm libexif-64bit-0.6.16.2-32.2.ppc.rpm libexif-devel-0.6.16.2-32.2.i586.rpm libexif-devel-0.6.16.2-32.2.ppc.rpm libexif-devel-0.6.16.2-32.2.x86_64.rpm gnome-web-photo openSUSE 11.0 While thumbnailing web pages either in the file manager or in a beagle search, a crash could happen because of uninitialized data. gnome-web-photo-0.4-25.2.i586.rpm gnome-web-photo-0.4-25.2.ppc.rpm gnome-web-photo-0.4-25.2.x86_64.rpm fetchmsttfonts openSUSE 11.0 This update includes a script which will download and install the MS True Type Core fonts to your system and make them available to the applications. cabextract-1.2-94.1.i586.rpm cabextract-1.2-94.1.ppc.rpm cabextract-1.2-94.1.x86_64.rpm fetchmsttfonts-11.0-2.1.noarch.rpm fetchmsttfonts-11.0-2.1.noarch.rpm fetchmsttfonts-11.0-2.1.noarch.rpm ConsoleKit openSUSE 11.0 ConsoleKit allows anyone to shutdown/restart the machine due to missing PolicyKit support. ConsoleKit-0.2.10-14.2.i586.rpm ConsoleKit-0.2.10-14.2.ppc.rpm ConsoleKit-0.2.10-14.2.x86_64.rpm ConsoleKit-32bit-0.2.10-14.2.x86_64.rpm ConsoleKit-64bit-0.2.10-14.2.ppc.rpm ConsoleKit-devel-0.2.10-14.2.i586.rpm ConsoleKit-devel-0.2.10-14.2.ppc.rpm ConsoleKit-devel-0.2.10-14.2.x86_64.rpm ConsoleKit-x11-0.2.10-14.2.i586.rpm ConsoleKit-x11-0.2.10-14.2.ppc.rpm ConsoleKit-x11-0.2.10-14.2.x86_64.rpm inst-source-utils openSUSE 11.0 This patch includes the latest changes in all scripts to create the current products like openSUSE 11.0. inst-source-utils-2008.7.21-2.1.noarch.rpm moodle openSUSE 11.0 Moodle was prone to a Cross-Site scripting flaw which could potentially be exploited to compromise arbitrary accounts (CVE-2008-3326). moodle-1.9.0-24.2.noarch.rpm moodle-af-1.9.0-24.2.noarch.rpm moodle-ar-1.9.0-24.2.noarch.rpm moodle-be-1.9.0-24.2.noarch.rpm moodle-bg-1.9.0-24.2.noarch.rpm moodle-bs-1.9.0-24.2.noarch.rpm moodle-ca-1.9.0-24.2.noarch.rpm moodle-cs-1.9.0-24.2.noarch.rpm moodle-da-1.9.0-24.2.noarch.rpm moodle-de-1.9.0-24.2.noarch.rpm moodle-de_du-1.9.0-24.2.noarch.rpm moodle-el-1.9.0-24.2.noarch.rpm moodle-es-1.9.0-24.2.noarch.rpm moodle-et-1.9.0-24.2.noarch.rpm moodle-eu-1.9.0-24.2.noarch.rpm moodle-fa-1.9.0-24.2.noarch.rpm moodle-fi-1.9.0-24.2.noarch.rpm moodle-fr-1.9.0-24.2.noarch.rpm moodle-ga-1.9.0-24.2.noarch.rpm moodle-gl-1.9.0-24.2.noarch.rpm moodle-he-1.9.0-24.2.noarch.rpm moodle-hi-1.9.0-24.2.noarch.rpm moodle-hr-1.9.0-24.2.noarch.rpm moodle-hu-1.9.0-24.2.noarch.rpm moodle-id-1.9.0-24.2.noarch.rpm moodle-is-1.9.0-24.2.noarch.rpm moodle-it-1.9.0-24.2.noarch.rpm moodle-ja-1.9.0-24.2.noarch.rpm moodle-ka-1.9.0-24.2.noarch.rpm moodle-km-1.9.0-24.2.noarch.rpm moodle-kn-1.9.0-24.2.noarch.rpm moodle-ko-1.9.0-24.2.noarch.rpm moodle-lt-1.9.0-24.2.noarch.rpm moodle-lv-1.9.0-24.2.noarch.rpm moodle-mi_tn-1.9.0-24.2.noarch.rpm moodle-ms-1.9.0-24.2.noarch.rpm moodle-nl-1.9.0-24.2.noarch.rpm moodle-nn-1.9.0-24.2.noarch.rpm moodle-no-1.9.0-24.2.noarch.rpm moodle-pl-1.9.0-24.2.noarch.rpm moodle-pt-1.9.0-24.2.noarch.rpm moodle-ro-1.9.0-24.2.noarch.rpm moodle-ru-1.9.0-24.2.noarch.rpm moodle-sk-1.9.0-24.2.noarch.rpm moodle-sl-1.9.0-24.2.noarch.rpm moodle-so-1.9.0-24.2.noarch.rpm moodle-sq-1.9.0-24.2.noarch.rpm moodle-sr-1.9.0-24.2.noarch.rpm moodle-sv-1.9.0-24.2.noarch.rpm moodle-th-1.9.0-24.2.noarch.rpm moodle-tl-1.9.0-24.2.noarch.rpm moodle-tr-1.9.0-24.2.noarch.rpm moodle-uk-1.9.0-24.2.noarch.rpm moodle-vi-1.9.0-24.2.noarch.rpm moodle-zh_cn-1.9.0-24.2.noarch.rpm acl openSUSE 11.0 Fix getfacl/setfacl -R to fully recurse into a directory structure acl-2.2.47-6.1.i586.rpm acl-2.2.47-6.1.ppc.rpm acl-2.2.47-6.1.x86_64.rpm libacl-2.2.47-6.1.i586.rpm libacl-2.2.47-6.1.ppc.rpm libacl-2.2.47-6.1.x86_64.rpm libacl-32bit-2.2.47-6.1.x86_64.rpm libacl-64bit-2.2.47-6.1.ppc.rpm libacl-devel-2.2.47-6.1.i586.rpm libacl-devel-2.2.47-6.1.ppc.rpm libacl-devel-2.2.47-6.1.x86_64.rpm libacl-devel-64bit-2.2.47-6.1.ppc.rpm yast2-add-on-creator openSUSE 11.0 YaST Add-On Creator signs RPM packages after generating the metadata and thus it makes the RPM checksums invalid. yast2-add-on-creator-2.16.14-0.1.noarch.rpm xorg-x11-driver-video openSUSE 11.0 The previous intel driver update resulted in an overall performance regression by switching to EXA as acceleration method. This update switches back to XAA as aceleration method and fixes Xvideo when using XAA as acceleration method. xorg-x11-driver-video-7.3-138.5.i586.rpm xorg-x11-driver-video-7.3-138.5.ppc.rpm xorg-x11-driver-video-7.3-138.5.x86_64.rpm xorg-x11-driver-video-32bit-7.3-138.5.x86_64.rpm xorg-x11-driver-video-64bit-7.3-138.5.ppc.rpm esound openSUSE 11.0 After 11.0 was released, lots of users started complaining about problems when using PulseAudio. This set of fixes covers some of them, like blocking GNOME applications in some hardware, and a very obvious crash (for some people) in pavucontrol that was fixed in the 0.9.6 release, which was announced unfortunately after the freeze for openSUSE 11.0. esound-0.2.38-75.2.i586.rpm esound-0.2.38-75.2.ppc.rpm esound-0.2.38-75.2.x86_64.rpm libesd-devel-0.2.38-75.2.i586.rpm libesd-devel-0.2.38-75.2.ppc.rpm libesd-devel-0.2.38-75.2.x86_64.rpm libesd0-0.2.38-75.2.i586.rpm libesd0-0.2.38-75.2.ppc.rpm libesd0-0.2.38-75.2.x86_64.rpm libesd0-32bit-0.2.38-75.2.x86_64.rpm libesd0-64bit-0.2.38-75.2.ppc.rpm libgnome-2.22.0-30.2.i586.rpm libgnome-2.22.0-30.2.ppc.rpm libgnome-2.22.0-30.2.x86_64.rpm libgnome-32bit-2.22.0-30.2.x86_64.rpm libgnome-64bit-2.22.0-30.2.ppc.rpm libgnome-devel-2.22.0-30.2.i586.rpm libgnome-devel-2.22.0-30.2.ppc.rpm libgnome-devel-2.22.0-30.2.x86_64.rpm libgnome-doc-2.22.0-30.2.i586.rpm libgnome-doc-2.22.0-30.2.ppc.rpm libgnome-doc-2.22.0-30.2.x86_64.rpm libgnome-lang-2.22.0-30.2.i586.rpm libgnome-lang-2.22.0-30.2.ppc.rpm libgnome-lang-2.22.0-30.2.x86_64.rpm pavucontrol-0.9.6-4.1.i586.rpm pavucontrol-0.9.6-4.1.ppc.rpm pavucontrol-0.9.6-4.1.x86_64.rpm freeradius-server openSUSE 11.0 The new version of freeradius-server which comes with openSUSE 11.0 uses a new method to bind Port and IP-Address. However configuration is broken, port number is ignored and a random one is used everytime on start. freeradius-server-2.0.5-8.1.i586.rpm freeradius-server-devel-2.0.5-8.1.i586.rpm freeradius-server-dialupadmin-2.0.5-8.1.i586.rpm freeradius-server-doc-2.0.5-8.1.i586.rpm freeradius-server-libs-2.0.5-8.1.i586.rpm freeradius-server-utils-2.0.5-8.1.i586.rpm 64bit-openmotif22-libs openSUSE 11.0 Currently there's no 64 bit openmotiff22-libs found in the repos of opensuse 11.0. But as some software such as Gambit or Unigraphics can not run without 64bit version of LibXm.so.3 this (deprecated!) package is back. openmotif22-libs-2.2.4-149.1.i586.rpm openmotif22-libs-2.2.4-149.1.x86_64.rpm openmotif22-libs-32bit-2.2.4-149.1.x86_64.rpm opera openSUSE 11.0 Opera 9.63 fixes the following security problems: - Manipulating text input contents can allow execution of arbitrary code - HTML parsing flaw can cause Opera to execute arbitrary code. - Long hostnames in file: URLs can cause execution of arbitrary code. - Script injection in feed preview can reveal contents of unrelated news feeds. - Built-in XSLT templates can allow cross-site scripting. - Fixed an issue that could reveal random data. - SVG images embedded using <img> tags can no longer execute Java or plugin content. opera-9.63-1.1.i586.rpm opera-9.63-1.1.ppc.rpm opera-9.63-1.1.x86_64.rpm kerneloops openSUSE 11.0 kerneloops system service fails to start properly kerneloops-0.11-19.2.i586.rpm kerneloops-applet-0.11-19.2.i586.rpm pdns openSUSE 11.0 This update of pdns offers better spoofing resistance by not ignoring invalid queries. (CVE-2008-3337) pdns-2.9.21-143.3.i586.rpm pdns-2.9.21-143.3.ppc.rpm pdns-2.9.21-143.3.x86_64.rpm pdns-backend-ldap-2.9.21-143.3.i586.rpm pdns-backend-ldap-2.9.21-143.3.ppc.rpm pdns-backend-ldap-2.9.21-143.3.x86_64.rpm pdns-backend-mysql-2.9.21-143.3.i586.rpm pdns-backend-mysql-2.9.21-143.3.ppc.rpm pdns-backend-mysql-2.9.21-143.3.x86_64.rpm pdns-backend-postgresql-2.9.21-143.3.i586.rpm pdns-backend-postgresql-2.9.21-143.3.ppc.rpm pdns-backend-postgresql-2.9.21-143.3.x86_64.rpm pdns-backend-sqlite2-2.9.21-143.3.i586.rpm pdns-backend-sqlite2-2.9.21-143.3.ppc.rpm pdns-backend-sqlite2-2.9.21-143.3.x86_64.rpm pdns-backend-sqlite3-2.9.21-143.3.i586.rpm pdns-backend-sqlite3-2.9.21-143.3.ppc.rpm pdns-backend-sqlite3-2.9.21-143.3.x86_64.rpm dnsmasq openSUSE 11.0 This update of dnsmasq uses random UDP source ports and a random TRXID now. (CVE-2008-1447) dnsmasq-2.45-0.1.i586.rpm dnsmasq-2.45-0.1.ppc.rpm dnsmasq-2.45-0.1.x86_64.rpm postfix openSUSE 11.0 A (local) privilege escalation vulnerability as well as a mailbox ownership problem has been fixed in postfix. CVE-2008-2936 and CVE-2008-2937 have been assigned to this problem. postfix-2.5.1-28.3.i586.rpm postfix-2.5.1-28.3.ppc.rpm postfix-2.5.1-28.3.x86_64.rpm postfix-devel-2.5.1-28.3.i586.rpm postfix-devel-2.5.1-28.3.ppc.rpm postfix-devel-2.5.1-28.3.x86_64.rpm postfix-mysql-2.5.1-28.3.i586.rpm postfix-mysql-2.5.1-28.3.ppc.rpm postfix-mysql-2.5.1-28.3.x86_64.rpm postfix-postgresql-2.5.1-28.3.i586.rpm postfix-postgresql-2.5.1-28.3.ppc.rpm postfix-postgresql-2.5.1-28.3.x86_64.rpm yast2-gtk openSUSE 11.0 Configuring printer through Yast crashes when selecting the basic settings dialog yast2-gtk-2.16.14-1.2.i586.rpm yast2-gtk-2.16.14-1.2.ppc.rpm yast2-gtk-2.16.14-1.2.x86_64.rpm python openSUSE 11.0 This update of python fixes several security vulnerabilities. (CVE-2008-1679,CVE-2008-1887, CVE-2008-3143, CVE-2008-3142, CVE-2008-3144, CVE-2008-2315, CVE-2008-2316) python-2.5.2-26.2.i586.rpm python-2.5.2-26.2.ppc.rpm python-2.5.2-26.2.x86_64.rpm python-32bit-2.5.2-26.2.x86_64.rpm python-64bit-2.5.2-26.2.ppc.rpm python-curses-2.5.2-26.2.i586.rpm python-curses-2.5.2-26.2.ppc.rpm python-curses-2.5.2-26.2.x86_64.rpm python-demo-2.5.2-26.2.i586.rpm python-demo-2.5.2-26.2.ppc.rpm python-demo-2.5.2-26.2.x86_64.rpm python-devel-2.5.2-26.2.i586.rpm python-devel-2.5.2-26.2.ppc.rpm python-devel-2.5.2-26.2.x86_64.rpm python-gdbm-2.5.2-26.2.i586.rpm python-gdbm-2.5.2-26.2.ppc.rpm python-gdbm-2.5.2-26.2.x86_64.rpm python-idle-2.5.2-26.2.i586.rpm python-idle-2.5.2-26.2.ppc.rpm python-idle-2.5.2-26.2.x86_64.rpm python-tk-2.5.2-26.2.i586.rpm python-tk-2.5.2-26.2.ppc.rpm python-tk-2.5.2-26.2.x86_64.rpm python-xml-2.5.2-26.2.i586.rpm python-xml-2.5.2-26.2.ppc.rpm python-xml-2.5.2-26.2.x86_64.rpm NetworkManager-kde openSUSE 11.0 * Fix crash during reconnect after s2ram * Add tooltips again * Allow VPN disconnection * Fix disconnecting UMTS connections NetworkManager-kde-0.7r821737-0.3.i586.rpm NetworkManager-kde-0.7r821737-0.3.ppc.rpm NetworkManager-kde-0.7r821737-0.3.x86_64.rpm NetworkManager-kde-devel-0.7r821737-0.3.i586.rpm NetworkManager-kde-devel-0.7r821737-0.3.ppc.rpm NetworkManager-kde-devel-0.7r821737-0.3.x86_64.rpm NetworkManager-openvpn-kde-0.7r821737-0.3.i586.rpm NetworkManager-openvpn-kde-0.7r821737-0.3.ppc.rpm NetworkManager-openvpn-kde-0.7r821737-0.3.x86_64.rpm NetworkManager-vpnc-kde-0.7r821737-0.3.i586.rpm NetworkManager-vpnc-kde-0.7r821737-0.3.ppc.rpm NetworkManager-vpnc-kde-0.7r821737-0.3.x86_64.rpm libwsman-devel openSUSE 11.0 This update of openwsman fixes several security vulnerabilities found by the SuSE Security-Team: - remote buffer overflows while decoding the HTTP basic authentication header (CVE-2008-2234) - a possible SSL session replay attack affecting the client (depending on the configuration) (CVE-2008-2233) libwsman-devel-2.0.0-3.3.i586.rpm libwsman-devel-2.0.0-3.3.ppc.rpm libwsman-devel-2.0.0-3.3.x86_64.rpm libwsman1-2.0.0-3.3.i586.rpm libwsman1-2.0.0-3.3.ppc.rpm libwsman1-2.0.0-3.3.x86_64.rpm openwsman-client-2.0.0-3.3.i586.rpm openwsman-client-2.0.0-3.3.ppc.rpm openwsman-client-2.0.0-3.3.x86_64.rpm openwsman-python-2.0.0-3.3.i586.rpm openwsman-ruby-2.0.0-3.3.i586.rpm openwsman-server-2.0.0-3.3.i586.rpm openwsman-server-2.0.0-3.3.ppc.rpm openwsman-server-2.0.0-3.3.x86_64.rpm mailman openSUSE 11.0 This update of mailman fixes a cross-site-scripting bug (CVE-2008-0564) and a mistake in translation. mailman-2.1.9-159.2.i586.rpm mailman-2.1.9-159.2.ppc.rpm mailman-2.1.9-159.2.x86_64.rpm ruby openSUSE 11.0 This update of ruby fixes: - a possible information leakage (CVE-2008-1145) - a directory traversal bug (CVE-2008-1891) in WEBrick - various memory corruptions and integer overflows in array and string handling (CVE-2008-2662, CVE-2008-2663, CVE-2008-2664, CVE-2008-2725, CVE-2008-2726, CVE-2008-2727, CVE-2008-2728) ruby-1.8.6.p114-6.2.i586.rpm ruby-1.8.6.p114-6.2.ppc.rpm ruby-1.8.6.p114-6.2.x86_64.rpm ruby-devel-1.8.6.p114-6.2.i586.rpm ruby-devel-1.8.6.p114-6.2.ppc.rpm ruby-devel-1.8.6.p114-6.2.x86_64.rpm ruby-doc-html-1.8.6.p114-6.2.i586.rpm ruby-doc-html-1.8.6.p114-6.2.ppc.rpm ruby-doc-html-1.8.6.p114-6.2.x86_64.rpm ruby-doc-ri-1.8.6.p114-6.2.i586.rpm ruby-doc-ri-1.8.6.p114-6.2.ppc.rpm ruby-doc-ri-1.8.6.p114-6.2.x86_64.rpm ruby-examples-1.8.6.p114-6.2.i586.rpm ruby-examples-1.8.6.p114-6.2.ppc.rpm ruby-examples-1.8.6.p114-6.2.x86_64.rpm ruby-test-suite-1.8.6.p114-6.2.i586.rpm ruby-test-suite-1.8.6.p114-6.2.ppc.rpm ruby-test-suite-1.8.6.p114-6.2.x86_64.rpm ruby-tk-1.8.6.p114-6.2.i586.rpm ruby-tk-1.8.6.p114-6.2.ppc.rpm ruby-tk-1.8.6.p114-6.2.x86_64.rpm nfs-client openSUSE 11.0 Fix bugs with mount.nfs: mount would fail incorrectly if server does not listen on UDP mount would retry incorrectly if server reported "access denied" Fix excessive timeout problem with sm-notify if network not connected, sm-notify would slow the boot process excessively. Fix nfsstat to report on nfsv4 mounts as well as nfs mounts. nfs-client-1.1.2-9.2.i586.rpm nfs-client-1.1.2-9.2.ppc.rpm nfs-client-1.1.2-9.2.x86_64.rpm nfs-doc-1.1.2-9.2.i586.rpm nfs-doc-1.1.2-9.2.ppc.rpm nfs-doc-1.1.2-9.2.x86_64.rpm nfs-kernel-server-1.1.2-9.2.i586.rpm nfs-kernel-server-1.1.2-9.2.ppc.rpm nfs-kernel-server-1.1.2-9.2.x86_64.rpm release-notes-openSUSE openSUSE 11.0 Update of some YaST and desktop translation. release-notes-openSUSE-11.0.7-0.1.noarch.rpm translation-update-es-10.3-27.2.noarch.rpm yast2-trans-de-2.16.17-0.1.noarch.rpm yast2-trans-fi-2.16.17-0.1.noarch.rpm yast2-trans-pl-2.16.12-0.1.noarch.rpm yast2-trans-zh_TW-2.16.15-0.1.noarch.rpm NetworkManager openSUSE 11.0 Fix multiple issues with NetworkManager: UMTS dialup via NM does not set default route nor nameservers. Wireless Access is not working on Vienna Airport. NetworkManager / UMTS: cannot enter PIN code with Novatel XU870. NetworkManager uses the wrong config with YaST configured settings. NetworkManager leaves pppd running after restart. NetworkManager can't connect with Nortel VPN. Can not add new GSM/CDMA configurations. nm-applet DHCP animation looks odd. NetworkManager-0.7.0.r3685-7.2.i586.rpm NetworkManager-0.7.0.r3685-7.2.ppc.rpm NetworkManager-0.7.0.r3685-7.2.x86_64.rpm NetworkManager-devel-0.7.0.r3685-7.2.i586.rpm NetworkManager-devel-0.7.0.r3685-7.2.ppc.rpm NetworkManager-devel-0.7.0.r3685-7.2.x86_64.rpm NetworkManager-glib-0.7.0.r3685-7.2.i586.rpm NetworkManager-glib-0.7.0.r3685-7.2.ppc.rpm NetworkManager-glib-0.7.0.r3685-7.2.x86_64.rpm NetworkManager-gnome-0.7.0.r729-7.2.i586.rpm NetworkManager-gnome-0.7.0.r729-7.2.ppc.rpm NetworkManager-gnome-0.7.0.r729-7.2.x86_64.rpm opera openSUSE 11.0 This is a version upgrade for opera to version 9.52 to fix possible security vulnerabilities. opera-9.52-0.1.i586.rpm opera-9.52-0.1.ppc.rpm opera-9.52-0.1.x86_64.rpm libneon-devel openSUSE 11.0 This update of neon fixes a NULL pointer dereference in the digest authentication code. (CVE-2008-3746) libneon-devel-0.28.2-17.2.i586.rpm libneon-devel-0.28.2-17.2.ppc.rpm libneon-devel-0.28.2-17.2.x86_64.rpm libneon27-0.28.2-17.2.i586.rpm libneon27-0.28.2-17.2.ppc.rpm libneon27-0.28.2-17.2.x86_64.rpm libneon27-32bit-0.28.2-17.2.x86_64.rpm libneon27-64bit-0.28.2-17.2.ppc.rpm neon-0.28.2-17.2.i586.rpm neon-0.28.2-17.2.ppc.rpm neon-0.28.2-17.2.x86_64.rpm rxvt-unicode openSUSE 11.0 It was possible to open a terminal on :0 when the environment variable was not set. This could be exploited by local users to hijack X11 connections (CVE-2008-1142). rxvt-unicode-9.02-14.2.i586.rpm rxvt-unicode-9.02-14.2.ppc.rpm rxvt-unicode-9.02-14.2.x86_64.rpm perl openSUSE 11.0 Specially crafted regular expressions could crash perl (CVE-2008-1927). Insufficient symlink checks in the File::Path could result in wrong file permissions (CVE-2008-2827). Additionally problem in the CGI module was fixed that could result in an endless loop if uploads were cancelled. perl-5.10.0-37.4.i586.rpm perl-5.10.0-37.4.ppc.rpm perl-5.10.0-37.4.x86_64.rpm perl-32bit-5.10.0-37.4.x86_64.rpm perl-64bit-5.10.0-37.4.ppc.rpm perl-base-5.10.0-37.4.i586.rpm perl-base-5.10.0-37.4.ppc.rpm perl-base-5.10.0-37.4.x86_64.rpm perl-doc-5.10.0-37.4.i586.rpm perl-doc-5.10.0-37.4.ppc.rpm perl-doc-5.10.0-37.4.x86_64.rpm java-1_5_0-sun openSUSE 11.0 Sun Java was updated to 1.5.0u16 to fix following security vulnerabilities: CVE-2008-3115: Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and earlier, and 5.0 Update 6 through 15, does not properly prevent execution of applets on older JRE releases, which might allow remote attackers to exploit vulnerabilities in these older releases. CVE-2008-3114: Unspecified vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows context-dependent attackers to obtain sensitive information (the cache location) via an untrusted application, aka CR 6704074. CVE-2008-3113: Unspecified vulnerability in Sun Java Web Start in JDK and JRE 5.0 before Update 16 and SDK and JRE 1.4.x before 1.4.2_18 allows remote attackers to create or delete arbitrary files via an untrusted application, aka CR 6704077. CVE-2008-3112: Unspecified vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows remote attackers to create arbitrary files via an untrusted application, aka CR 6703909. CVE-2008-3111: Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 before Update 4, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allow context-dependent attackers to gain privileges via an untrusted application, as demonstrated by an application that grants itself privileges to (1) read local files, (2) write to local files, or (3) execute local programs, aka CR 6557220. CVE-2008-3108: Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 5.0 before Update 10, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allows context-dependent attackers to gain privileges via unspecified vectors related to font processing. CVE-2008-3107: Unspecified vulnerability in the Virtual Machine in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs. CVE-2008-3106: Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted (1) application or (2) applet, a different vulnerability than CVE-2008-3105. CVE-2008-3104: Multiple unspecified vulnerabilities in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allow remote attackers to violate the security model for an applet's outbound connections by connecting to localhost services running on the machine that loaded the applet. CVE-2008-3103: Unspecified vulnerability in the Java Management Extensions (JMX) management agent in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to "perform unauthorized operations" via unspecified vectors. java-1_5_0-sun-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-1.5.0_update16-1.1.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-alsa-1.5.0_update16-1.1.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-demo-1.5.0_update16-1.1.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-devel-1.5.0_update16-1.1.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update16-1.1.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-src-1.5.0_update16-1.1.i586.rpm java-1_5_0-sun-src-1.5.0_update16-1.1.x86_64.rpm java-1_6_0-sun openSUSE 11.0 This update brings the SUN JDK 6 to update level 7. CVE-2008-3115: Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and earlier, and 5.0 Update 6 through 15, does not properly prevent execution of applets on older JRE releases, which might allow remote attackers to exploit vulnerabilities in these older releases. CVE-2008-3114: Unspecified vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows context-dependent attackers to obtain sensitive information (the cache location) via an untrusted application, aka CR 6704074. CVE-2008-3112: Unspecified vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows remote attackers to create arbitrary files via an untrusted application, aka CR 6703909. CVE-2008-3111: Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 before Update 4, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allow context-dependent attackers to gain privileges via an untrusted application, as demonstrated by an application that grants itself privileges to (1) read local files, (2) write to local files, or (3) execute local programs, aka CR 6557220. CVE-2008-3110: Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to obtain sensitive information by using an applet to read information from another applet. CVE-2008-3109: Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs. CVE-2008-3107: Unspecified vulnerability in the Virtual Machine in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs. CVE-2008-3106: Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier allows remote attackers to access URLs via unknown vectors involving processing of XML data by an untrusted (1) application or (2) applet, a different vulnerability than CVE-2008-3105. CVE-2008-3105: Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to access URLs or cause a denial of service via unknown vectors involving "processing of XML data" by a trusted application. CVE-2008-3104: Multiple unspecified vulnerabilities in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allow remote attackers to violate the security model for an applet's outbound connections by connecting to localhost services running on the machine that loaded the applet. CVE-2008-3103: Unspecified vulnerability in the Java Management Extensions (JMX) management agent in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to "perform unauthorized operations" via unspecified vectors. java-1_6_0-sun-1.6.0.u7-1.1.i586.rpm java-1_6_0-sun-1.6.0.u7-1.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u7-1.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u7-1.1.x86_64.rpm java-1_6_0-sun-debuginfo-1.6.0.u7-1.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u7-1.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u7-1.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u7-1.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u7-1.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u7-1.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u7-1.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u7-1.1.i586.rpm wireshark openSUSE 11.0 Various vulnerabilities have been fixed in wireshark: CVE-2008-3137, CVE-2008-3138, CVE-2008-3139, CVE-2008-3140, CVE-2008-3141, CVE-2008-3145 and CVE-2008-3146. wireshark-1.0.0-17.2.i586.rpm wireshark-1.0.0-17.2.ppc.rpm wireshark-1.0.0-17.2.x86_64.rpm wireshark-devel-1.0.0-17.2.i586.rpm wireshark-devel-1.0.0-17.2.ppc.rpm wireshark-devel-1.0.0-17.2.x86_64.rpm evolution-data-server openSUSE 11.0 Trying to create an appointment hangs Evolution. This is because of a missing mutex of the server connection object. The groupWise server will not accept more than one request at a time from a connection and hence all the network requests must be serialized. (Novell Bugzilla 410329) This update fixes the problem. evolution-data-server-2.22.1.1-11.2.i586.rpm evolution-data-server-2.22.1.1-11.2.ppc.rpm evolution-data-server-2.22.1.1-11.2.x86_64.rpm evolution-data-server-32bit-2.22.1.1-11.2.x86_64.rpm evolution-data-server-64bit-2.22.1.1-11.2.ppc.rpm evolution-data-server-devel-2.22.1.1-11.2.i586.rpm evolution-data-server-devel-2.22.1.1-11.2.ppc.rpm evolution-data-server-devel-2.22.1.1-11.2.x86_64.rpm evolution-data-server-doc-2.22.1.1-11.2.i586.rpm evolution-data-server-doc-2.22.1.1-11.2.ppc.rpm evolution-data-server-doc-2.22.1.1-11.2.x86_64.rpm libpulse-browse0 openSUSE 11.0 PulseAudio wasn't checking if a stale PID file really corresponded to a pulseaudio daemon process. This patch adds code to check that so that it doesn't fail at startup if a stale pid file corresponds to a different process. libpulse-browse0-0.9.10-26.5.i586.rpm libpulse-browse0-0.9.10-26.5.ppc.rpm libpulse-browse0-0.9.10-26.5.x86_64.rpm libpulse-devel-0.9.10-26.5.i586.rpm libpulse-mainloop-glib0-0.9.10-26.5.i586.rpm libpulse-mainloop-glib0-0.9.10-26.5.ppc.rpm libpulse-mainloop-glib0-0.9.10-26.5.x86_64.rpm libpulse0-0.9.10-26.5.i586.rpm libpulse0-0.9.10-26.5.ppc.rpm libpulse0-0.9.10-26.5.x86_64.rpm libpulse0-32bit-0.9.10-26.5.x86_64.rpm libpulse0-64bit-0.9.10-26.5.ppc.rpm libpulsecore4-0.9.10-26.5.i586.rpm libpulsecore4-0.9.10-26.5.ppc.rpm libpulsecore4-0.9.10-26.5.x86_64.rpm pulseaudio-0.9.10-26.5.i586.rpm pulseaudio-0.9.10-26.5.ppc.rpm pulseaudio-0.9.10-26.5.x86_64.rpm pulseaudio-esound-compat-0.9.10-26.5.i586.rpm pulseaudio-esound-compat-0.9.10-26.5.ppc.rpm pulseaudio-esound-compat-0.9.10-26.5.x86_64.rpm pulseaudio-module-bluetooth-0.9.10-26.5.i586.rpm pulseaudio-module-bluetooth-0.9.10-26.5.ppc.rpm pulseaudio-module-bluetooth-0.9.10-26.5.x86_64.rpm pulseaudio-module-gconf-0.9.10-26.5.i586.rpm pulseaudio-module-gconf-0.9.10-26.5.ppc.rpm pulseaudio-module-gconf-0.9.10-26.5.x86_64.rpm pulseaudio-module-jack-0.9.10-26.5.i586.rpm pulseaudio-module-lirc-0.9.10-26.5.i586.rpm pulseaudio-module-lirc-0.9.10-26.5.ppc.rpm pulseaudio-module-lirc-0.9.10-26.5.x86_64.rpm pulseaudio-module-x11-0.9.10-26.5.i586.rpm pulseaudio-module-x11-0.9.10-26.5.ppc.rpm pulseaudio-module-x11-0.9.10-26.5.x86_64.rpm pulseaudio-module-zeroconf-0.9.10-26.5.i586.rpm pulseaudio-module-zeroconf-0.9.10-26.5.ppc.rpm pulseaudio-module-zeroconf-0.9.10-26.5.x86_64.rpm pulseaudio-utils-0.9.10-26.5.i586.rpm pulseaudio-utils-0.9.10-26.5.ppc.rpm pulseaudio-utils-0.9.10-26.5.x86_64.rpm samba openSUSE 11.0 This is an update to version 3.2.3 of Samba. This release includes several bugfixes and performance enhancements for Samba and its components. It is recommended for every user to update to this version. Among several other bugs the following list shows some detail: - Fix a race condition in winbind leading to a crash (bnc#406623). - Fix emptying the printing queue; (bnc#411493). - Fix the webinface SWAT; (bnc#391969). - Fixed a file permission problem. (CVE-2008-3789) bnc#420634 cifs-mount-3.2.3-0.1.i586.rpm cifs-mount-3.2.3-0.1.ppc.rpm cifs-mount-3.2.3-0.1.x86_64.rpm ldapsmb-1.34b-195.4.i586.rpm ldapsmb-1.34b-195.4.ppc.rpm ldapsmb-1.34b-195.4.x86_64.rpm libnetapi-devel-3.2.3-0.1.i586.rpm libnetapi-devel-3.2.3-0.1.ppc.rpm libnetapi-devel-3.2.3-0.1.x86_64.rpm libnetapi0-3.2.3-0.1.i586.rpm libnetapi0-3.2.3-0.1.ppc.rpm libnetapi0-3.2.3-0.1.x86_64.rpm libsmbclient-devel-3.2.3-0.1.i586.rpm libsmbclient-devel-3.2.3-0.1.ppc.rpm libsmbclient-devel-3.2.3-0.1.x86_64.rpm libsmbclient0-3.2.3-0.1.i586.rpm libsmbclient0-3.2.3-0.1.ppc.rpm libsmbclient0-3.2.3-0.1.x86_64.rpm libsmbclient0-32bit-3.2.3-0.1.x86_64.rpm libsmbclient0-64bit-3.2.3-0.1.ppc.rpm libsmbsharemodes-devel-3.2.3-0.1.i586.rpm libsmbsharemodes-devel-3.2.3-0.1.ppc.rpm libsmbsharemodes-devel-3.2.3-0.1.x86_64.rpm libsmbsharemodes0-3.2.3-0.1.i586.rpm libsmbsharemodes0-3.2.3-0.1.ppc.rpm libsmbsharemodes0-3.2.3-0.1.x86_64.rpm libtalloc-devel-3.2.3-0.1.i586.rpm libtalloc-devel-3.2.3-0.1.ppc.rpm libtalloc-devel-3.2.3-0.1.x86_64.rpm libtalloc1-3.2.3-0.1.i586.rpm libtalloc1-3.2.3-0.1.ppc.rpm libtalloc1-3.2.3-0.1.x86_64.rpm libtalloc1-32bit-3.2.3-0.1.x86_64.rpm libtalloc1-64bit-3.2.3-0.1.ppc.rpm libtdb-devel-3.2.3-0.1.i586.rpm libtdb-devel-3.2.3-0.1.ppc.rpm libtdb-devel-3.2.3-0.1.x86_64.rpm libtdb1-3.2.3-0.1.i586.rpm libtdb1-3.2.3-0.1.ppc.rpm libtdb1-3.2.3-0.1.x86_64.rpm libtdb1-32bit-3.2.3-0.1.x86_64.rpm libtdb1-64bit-3.2.3-0.1.ppc.rpm libwbclient-devel-3.2.3-0.1.i586.rpm libwbclient-devel-3.2.3-0.1.ppc.rpm libwbclient-devel-3.2.3-0.1.x86_64.rpm libwbclient0-3.2.3-0.1.i586.rpm libwbclient0-3.2.3-0.1.ppc.rpm libwbclient0-3.2.3-0.1.x86_64.rpm libwbclient0-32bit-3.2.3-0.1.x86_64.rpm libwbclient0-64bit-3.2.3-0.1.ppc.rpm samba-3.2.3-0.1.i586.rpm samba-3.2.3-0.1.ppc.rpm samba-3.2.3-0.1.x86_64.rpm samba-32bit-3.2.3-0.1.x86_64.rpm samba-64bit-3.2.3-0.1.ppc.rpm samba-client-3.2.3-0.1.i586.rpm samba-client-3.2.3-0.1.ppc.rpm samba-client-3.2.3-0.1.x86_64.rpm samba-client-32bit-3.2.3-0.1.x86_64.rpm samba-client-64bit-3.2.3-0.1.ppc.rpm samba-devel-3.2.3-0.1.i586.rpm samba-devel-3.2.3-0.1.ppc.rpm samba-devel-3.2.3-0.1.x86_64.rpm samba-doc-3.2.3-0.1.noarch.rpm samba-krb-printing-3.2.3-0.1.i586.rpm samba-krb-printing-3.2.3-0.1.ppc.rpm samba-krb-printing-3.2.3-0.1.x86_64.rpm samba-winbind-3.2.3-0.1.i586.rpm samba-winbind-3.2.3-0.1.ppc.rpm samba-winbind-3.2.3-0.1.x86_64.rpm samba-winbind-32bit-3.2.3-0.1.x86_64.rpm samba-winbind-64bit-3.2.3-0.1.ppc.rpm libtiff openSUSE 11.0 A buffer underflow (CVE-2008-2327) has been fixed in libtiff. libtiff-devel-3.8.2-108.2.i586.rpm libtiff-devel-3.8.2-108.2.ppc.rpm libtiff-devel-3.8.2-108.2.x86_64.rpm libtiff-devel-32bit-3.8.2-108.2.x86_64.rpm libtiff-devel-64bit-3.8.2-108.2.ppc.rpm libtiff3-3.8.2-108.2.i586.rpm libtiff3-3.8.2-108.2.ppc.rpm libtiff3-3.8.2-108.2.x86_64.rpm libtiff3-32bit-3.8.2-108.2.x86_64.rpm libtiff3-64bit-3.8.2-108.2.ppc.rpm tiff-3.8.2-108.2.i586.rpm tiff-3.8.2-108.2.ppc.rpm tiff-3.8.2-108.2.x86_64.rpm libxslt openSUSE 11.0 A heap overflow in the RC4 cryptographic routines in libxslt was fixed which could be used by attackers to potentially execute code. (CVE-2008-2935) libxslt-1.1.23-13.2.i586.rpm libxslt-1.1.23-13.2.ppc.rpm libxslt-1.1.23-13.2.x86_64.rpm libxslt-32bit-1.1.23-13.2.x86_64.rpm libxslt-64bit-1.1.23-13.2.ppc.rpm libxslt-devel-1.1.23-13.2.i586.rpm libxslt-devel-1.1.23-13.2.ppc.rpm libxslt-devel-1.1.23-13.2.x86_64.rpm libxslt-devel-32bit-1.1.23-13.2.x86_64.rpm libxslt-devel-64bit-1.1.23-13.2.ppc.rpm bytefx-data-mysql openSUSE 11.0 This patch fixes two security problems and one critical bug: Makes sure that values of all the tags which can be exploited are encoded to make sure no exploit is possible. (CVE-2008-3422) A header injection problem in Sys.Web was fixed. bytefx-data-mysql-1.9.1-6.3.i586.rpm bytefx-data-mysql-1.9.1-6.3.ppc.rpm bytefx-data-mysql-1.9.1-6.3.x86_64.rpm ibm-data-db2-1.9.1-6.3.i586.rpm ibm-data-db2-1.9.1-6.3.ppc.rpm ibm-data-db2-1.9.1-6.3.x86_64.rpm mono-complete-1.9.1-6.3.i586.rpm mono-complete-1.9.1-6.3.ppc.rpm mono-complete-1.9.1-6.3.x86_64.rpm mono-core-1.9.1-6.3.i586.rpm mono-core-1.9.1-6.3.ppc.rpm mono-core-1.9.1-6.3.x86_64.rpm mono-core-32bit-1.9.1-6.3.x86_64.rpm mono-data-1.9.1-6.3.i586.rpm mono-data-1.9.1-6.3.ppc.rpm mono-data-1.9.1-6.3.x86_64.rpm mono-data-firebird-1.9.1-6.3.i586.rpm mono-data-firebird-1.9.1-6.3.ppc.rpm mono-data-firebird-1.9.1-6.3.x86_64.rpm mono-data-oracle-1.9.1-6.3.i586.rpm mono-data-oracle-1.9.1-6.3.ppc.rpm mono-data-oracle-1.9.1-6.3.x86_64.rpm mono-data-postgresql-1.9.1-6.3.i586.rpm mono-data-postgresql-1.9.1-6.3.ppc.rpm mono-data-postgresql-1.9.1-6.3.x86_64.rpm mono-data-sqlite-1.9.1-6.3.i586.rpm mono-data-sqlite-1.9.1-6.3.ppc.rpm mono-data-sqlite-1.9.1-6.3.x86_64.rpm mono-data-sybase-1.9.1-6.3.i586.rpm mono-data-sybase-1.9.1-6.3.ppc.rpm mono-data-sybase-1.9.1-6.3.x86_64.rpm mono-devel-1.9.1-6.3.i586.rpm mono-devel-1.9.1-6.3.ppc.rpm mono-devel-1.9.1-6.3.x86_64.rpm mono-extras-1.9.1-6.3.i586.rpm mono-extras-1.9.1-6.3.ppc.rpm mono-extras-1.9.1-6.3.x86_64.rpm mono-jscript-1.9.1-6.3.i586.rpm mono-jscript-1.9.1-6.3.ppc.rpm mono-jscript-1.9.1-6.3.x86_64.rpm mono-locale-extras-1.9.1-6.3.i586.rpm mono-locale-extras-1.9.1-6.3.ppc.rpm mono-locale-extras-1.9.1-6.3.x86_64.rpm mono-nunit-1.9.1-6.3.i586.rpm mono-nunit-1.9.1-6.3.ppc.rpm mono-nunit-1.9.1-6.3.x86_64.rpm mono-web-1.9.1-6.3.i586.rpm mono-web-1.9.1-6.3.ppc.rpm mono-web-1.9.1-6.3.x86_64.rpm mono-winforms-1.9.1-6.3.i586.rpm mono-winforms-1.9.1-6.3.ppc.rpm mono-winforms-1.9.1-6.3.x86_64.rpm libopensc2 openSUSE 11.0 This update fixes a security issues with opensc that occurs during initializing blank smart cards with Siemens CardOS M4. It allows to set the PIN of the smart card without authorization. (CVE-2008-2235) NOTE: Already initialized cards are still vulnerable after this update. Please use the command-line tool pkcs15-tool with option --test-update and --update when necessary. libopensc2-0.11.4-37.2.i586.rpm libopensc2-0.11.4-37.2.ppc.rpm libopensc2-0.11.4-37.2.x86_64.rpm libopensc2-32bit-0.11.4-37.2.x86_64.rpm libopensc2-64bit-0.11.4-37.2.ppc.rpm opensc-0.11.4-37.2.i586.rpm opensc-0.11.4-37.2.ppc.rpm opensc-0.11.4-37.2.x86_64.rpm opensc-32bit-0.11.4-37.2.x86_64.rpm opensc-64bit-0.11.4-37.2.ppc.rpm opensc-devel-0.11.4-37.2.i586.rpm opensc-devel-0.11.4-37.2.ppc.rpm opensc-devel-0.11.4-37.2.x86_64.rpm devhelp openSUSE 11.0 Because of a missing initialization call, the port of devhelp using xulrunner 1.9 was not fully usable and crashing in various circumstances. devhelp-0.19-35.2.i586.rpm devhelp-0.19-35.2.ppc.rpm devhelp-0.19-35.2.x86_64.rpm devhelp-devel-0.19-35.2.i586.rpm devhelp-devel-0.19-35.2.ppc.rpm devhelp-devel-0.19-35.2.x86_64.rpm gcalctool openSUSE 11.0 Calculator failed to start in some locales and caused 100% CPU load instead. This update fixes this problem. gcalctool-5.22.1-22.2.i586.rpm gcalctool-5.22.1-22.2.ppc.rpm gcalctool-5.22.1-22.2.x86_64.rpm pure-ftpd openSUSE 11.0 A bug in an optimization of TCP buffers did cause a segmentation fault in any upload request. This patch fixes this. pure-ftpd-1.0.21-145.2.i586.rpm pure-ftpd-1.0.21-145.2.ppc.rpm pure-ftpd-1.0.21-145.2.x86_64.rpm gvfs openSUSE 11.0 This patch fixes multiple bugs in GNOME's virtual filesystem daemon and its FUSE compatibility layer that could cause crashes during normal operation. gvfs-0.2.3-29.2.i586.rpm gvfs-0.2.3-29.2.ppc.rpm gvfs-0.2.3-29.2.x86_64.rpm gvfs-backends-0.2.3-29.2.i586.rpm gvfs-backends-0.2.3-29.2.ppc.rpm gvfs-backends-0.2.3-29.2.x86_64.rpm gvfs-devel-0.2.3-29.2.i586.rpm gvfs-devel-0.2.3-29.2.ppc.rpm gvfs-devel-0.2.3-29.2.x86_64.rpm gvfs-fuse-0.2.3-29.2.i586.rpm gvfs-fuse-0.2.3-29.2.ppc.rpm gvfs-fuse-0.2.3-29.2.x86_64.rpm libgvfscommon0-0.2.3-29.2.i586.rpm libgvfscommon0-0.2.3-29.2.ppc.rpm libgvfscommon0-0.2.3-29.2.x86_64.rpm SuSEfirewall2 openSUSE 11.0 This update fixes a regression related to the handling of the iptables "recent" module introduced by the previous update. SuSEfirewall2-3.6_SVNr195-9.4.noarch.rpm tomcat6 openSUSE 11.0 This update of tomcat fixes another directory traversal bug which occurs when allowLinking and UTF-8 are enabled. (CVE-2008-2938) tomcat6-6.0.16-6.4.noarch.rpm tomcat6-admin-webapps-6.0.16-6.4.noarch.rpm tomcat6-docs-webapp-6.0.16-6.4.noarch.rpm tomcat6-javadoc-6.0.16-6.4.noarch.rpm tomcat6-jsp-2_1-api-6.0.16-6.4.noarch.rpm tomcat6-lib-6.0.16-6.4.noarch.rpm tomcat6-servlet-2_5-api-6.0.16-6.4.noarch.rpm tomcat6-webapps-6.0.16-6.4.noarch.rpm git openSUSE 11.0 This patch fixes several buffer overflows in some git tools, when repositories contain very long pathnames. (CVE-2008-3546) git-1.5.6-43.1.i586.rpm git-1.5.6-43.1.ppc.rpm git-1.5.6-43.1.x86_64.rpm git-arch-1.5.6-43.1.i586.rpm git-arch-1.5.6-43.1.ppc.rpm git-arch-1.5.6-43.1.x86_64.rpm git-core-1.5.6-43.1.i586.rpm git-core-1.5.6-43.1.ppc.rpm git-core-1.5.6-43.1.x86_64.rpm git-cvs-1.5.6-43.1.i586.rpm git-cvs-1.5.6-43.1.ppc.rpm git-cvs-1.5.6-43.1.x86_64.rpm git-email-1.5.6-43.1.i586.rpm git-email-1.5.6-43.1.ppc.rpm git-email-1.5.6-43.1.x86_64.rpm git-svn-1.5.6-43.1.i586.rpm git-svn-1.5.6-43.1.ppc.rpm git-svn-1.5.6-43.1.x86_64.rpm gitk-1.5.6-43.1.i586.rpm gitk-1.5.6-43.1.ppc.rpm gitk-1.5.6-43.1.x86_64.rpm kernel openSUSE 11.0 The openSUSE 11.0 kernel was updated to 2.6.25.16. It fixes various stability bugs and also security bugs. CVE-2008-1673: Fixed the range checking in the ASN.1 decoder in NAT for SNMP and CIFS, which could have been used by a remote attacker to crash the machine. CVE-2008-3276: An integer overflow flaw was found in the Linux kernel dccp_setsockopt_change() function. An attacker may leverage this vulnerability to trigger a kernel panic on a victim's machine remotely. CVE-2008-3272: The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information. CVE-2008-3275: The (1) real_lookup and (2) __lookup_hash functions in fs/namei.c in the vfs implementation do not prevent creation of a child dentry for a deleted (aka S_DEAD) directory, which allows local users to cause a denial of service ("overflow" of the UBIFS orphan area) via a series of attempted file creations within deleted directories. Also lots of bugs were fixed. kernel-debug-2.6.25.16-0.1.i586.rpm 1 kernel-debug-2.6.25.16-0.1.x86_64.rpm 1 kernel-default-2.6.25.16-0.1.i586.rpm 1 kernel-default-2.6.25.16-0.1.ppc.rpm 1 kernel-default-2.6.25.16-0.1.x86_64.rpm 1 kernel-docs-2.6.25.16-0.1.noarch.rpm 1 kernel-kdump-2.6.25.16-0.1.ppc.rpm 1 kernel-pae-2.6.25.16-0.1.i586.rpm 1 kernel-ppc64-2.6.25.16-0.1.ppc.rpm 1 kernel-rt-2.6.25.16-0.1.i586.rpm 1 kernel-rt-2.6.25.16-0.1.x86_64.rpm 1 kernel-rt_debug-2.6.25.16-0.1.i586.rpm 1 kernel-source-2.6.25.16-0.1.i586.rpm 1 kernel-source-2.6.25.16-0.1.ppc.rpm 1 kernel-source-2.6.25.16-0.1.x86_64.rpm 1 kernel-syms-2.6.25.16-0.1.i586.rpm 1 kernel-syms-2.6.25.16-0.1.ppc.rpm 1 kernel-syms-2.6.25.16-0.1.x86_64.rpm 1 kernel-vanilla-2.6.25.16-0.1.i586.rpm 1 kernel-vanilla-2.6.25.16-0.1.ppc.rpm 1 kernel-vanilla-2.6.25.16-0.1.x86_64.rpm 1 kernel-xen-2.6.25.16-0.1.i586.rpm 1 kernel-xen-2.6.25.16-0.1.x86_64.rpm 1 clamav openSUSE 11.0 This version update to 0.94 fixes numerous problems including some security relevant ones (CVE-2008-3912, CVE-2008-1389, CVE-2008-3913, CVE-2008-3914). clamav-0.94-0.1.i586.rpm clamav-0.94-0.1.ppc.rpm clamav-0.94-0.1.x86_64.rpm clamav-db-0.94-0.1.i586.rpm clamav-db-0.94-0.1.ppc.rpm clamav-db-0.94-0.1.x86_64.rpm imlib2 openSUSE 11.0 This update fixes two security problems in imlib2. Specially crafted xpm files could trigger a stack based buffer overflow in imlib2 which could potentially be exploited to execute arbitrary code (CVE-2008-2426). A crash in PNM handling due to a NULL pointer dereference was fixed. imlib2-1.4.0-46.3.i586.rpm imlib2-1.4.0-46.3.ppc.rpm imlib2-1.4.0-46.3.x86_64.rpm imlib2-devel-1.4.0-46.3.i586.rpm imlib2-devel-1.4.0-46.3.ppc.rpm imlib2-devel-1.4.0-46.3.x86_64.rpm imlib2-filters-1.4.0-46.3.i586.rpm imlib2-filters-1.4.0-46.3.ppc.rpm imlib2-filters-1.4.0-46.3.x86_64.rpm imlib2-loaders-1.4.0-46.3.i586.rpm imlib2-loaders-1.4.0-46.3.ppc.rpm imlib2-loaders-1.4.0-46.3.x86_64.rpm finch openSUSE 11.0 - specially crafted MSN SLP messages could cause an integer overflow in pidgin. Attackers could potentially exploit that to execute arbitrary code (CVE-2008-2927). - overly long file names in MSN file transfers could crash pidgin (CVE-2008-2955). - SSL certifcates were not verfied. Therefore piding didn't notice faked certificates (CVE-2008-3532) Additionally a problem was fixed that prevented gaim clients from connecting to the ICQ network after a server change on July 1st 2008. finch-2.4.1-28.4.i586.rpm finch-2.4.1-28.4.ppc.rpm finch-2.4.1-28.4.x86_64.rpm finch-devel-2.4.1-28.4.i586.rpm finch-devel-2.4.1-28.4.ppc.rpm finch-devel-2.4.1-28.4.x86_64.rpm libpurple-2.4.1-28.4.i586.rpm libpurple-2.4.1-28.4.ppc.rpm libpurple-2.4.1-28.4.x86_64.rpm libpurple-devel-2.4.1-28.4.i586.rpm libpurple-devel-2.4.1-28.4.ppc.rpm libpurple-devel-2.4.1-28.4.x86_64.rpm libpurple-meanwhile-2.4.1-28.4.i586.rpm libpurple-meanwhile-2.4.1-28.4.ppc.rpm libpurple-meanwhile-2.4.1-28.4.x86_64.rpm libpurple-mono-2.4.1-28.4.i586.rpm libpurple-mono-2.4.1-28.4.ppc.rpm libpurple-mono-2.4.1-28.4.x86_64.rpm pidgin-2.4.1-28.4.i586.rpm pidgin-2.4.1-28.4.ppc.rpm pidgin-2.4.1-28.4.x86_64.rpm pidgin-devel-2.4.1-28.4.i586.rpm pidgin-devel-2.4.1-28.4.ppc.rpm pidgin-devel-2.4.1-28.4.x86_64.rpm MozillaThunderbird openSUSE 11.0 Mozilla Thunderbird was updated to 2.0.0.16. MFSA 2008-34 / CVE-2008-2785: An anonymous researcher, via TippingPoint's Zero Day Initiative program, reported a vulnerability in Mozilla CSS reference counting code. The vulnerability was caused by an insufficiently sized variable being used as a reference counter for CSS objects. By creating a very large number of references to a common CSS object, this counter could be overflowed which could cause a crash when the browser attempts to free the CSS object while still in use. An attacker could use this crash to run arbitrary code on the victim's computer MozillaThunderbird-2.0.0.16-0.1.i586.rpm MozillaThunderbird-2.0.0.16-0.1.ppc.rpm MozillaThunderbird-2.0.0.16-0.1.x86_64.rpm MozillaThunderbird-devel-2.0.0.16-0.1.i586.rpm MozillaThunderbird-devel-2.0.0.16-0.1.ppc.rpm MozillaThunderbird-devel-2.0.0.16-0.1.x86_64.rpm MozillaThunderbird-translations-2.0.0.16-0.1.i586.rpm MozillaThunderbird-translations-2.0.0.16-0.1.ppc.rpm MozillaThunderbird-translations-2.0.0.16-0.1.x86_64.rpm seamonkey openSUSE 11.0 Seamonkey was updated to version 1.1.11. Problems fixed in the 1.1.11 update: CVE-2008-2785 MFSA 2008-34: An anonymous researcher, via TippingPoint's Zero Day Initiative program, reported a vulnerability in Mozilla's internal CSSValue array data structure. The vulnerability was caused by an insufficiently sized variable being used as a reference counter for CSS objects. By creating a very large number of references to a common CSS object, this counter could be overflowed which could cause a crash when the browser attempts to free the CSS object while still in use. An attacker could use this crash to run arbitrary code on the victim's computer. Problems fixed in the 1.1.10 update: CVE-2008-2811 MFSA 2008-33: Security research firm Astabis reported a vulnerability in Firefox 2 submitted through the iSIGHT Partners GVP Program by Greg McManus, Primary GVP Researcher. The reported crash in Mozilla's block reflow code could be used by an attacker to crash the browser and run arbitrary code on the victim's computer. CVE-2008-2810 MFSA-2008-32: Mozilla community member Geoff reported a vulnerability in the way Mozilla opens URL files sent directly to the browser. He demonstrated that such files were opened with local file privileges, giving the remote content access to read from the local filesystem. If a user opened a bookmark to a malicious page in this manner, the page could potentially read from other local files on the user's computer. CVE-2008-2809 MFSA-2008-31: Mozilla developer John G. Myers reported a weakness in the trust model used by Mozilla regarding alternate names on self-signed certificates. A user could be prompted to accept a self-signed certificate from a website which includes alt-name entries. If the user accepted the certificate, they would also extend trust to any alternate domains listed in the certificate, despite not being prompted about the additional domains. This technique could be used by an attacker to impersonate another server. CVE-2008-2808 MFSA-2008-30: Mozilla contributor Masahiro Yamada reported that file URLs in directory listings were not being HTML escaped properly when the filenames contained particular characters. This resulted in files from directory listings being opened in unintended ways or files not being able to be opened by the browser altogether. CVE-2008-2807 MFSA-2008-29: Mozilla developer Daniel Glazman demonstrated that an improperly encoded .properties file in an add-on can result in uninitialized memory being used. This could potentially result in small chunks of data from other programs being exposed in the browser. CVE-2008-2806 MFSA-2008-28: Security researcher Gregory Fleischer reported a vulnerability in the way Mozilla indicates the origin of a document to the Java plugin. This vulnerability could allow a malicious Java applet to bypass the same-origin policy and create arbitrary socket connections to other domains. CVE-2008-2805 MFSA-2008-27: Opera developer Claudio Santambrogio reported a vulnerability which allows malicious content to force the browser into uploading local files to the remote server. This could be used by an attacker to steal arbitrary files from a victim's computer. MFSA-2008-26: As a follow-up to vulnerability reported in MFSA 2008-12 Mozilla has checked similar constructs in the rest of the MIME handling code. Although no further buffer overflows were found we changed several function calls to use safer versions of the string routines that will be more robust in the face of future code changes. CVE-2008-2803 MFSA-2008-25: Mozilla contributor moz_bug_r_a4 reported a vulnerability which allows arbitrary JavaScript to be executed with chrome privileges. The privilege escalation was possible because JavaScript loaded via mozIJSSubScriptLoader.loadSubScript() was not using XPCNativeWrappers when accessing content. This could allow an attacker to overwrite trusted objects with arbitrary code which would be executed with chrome privileges when the trusted objects were called by the browser. CVE-2008-2802 MFSA-2008-24: Mozilla contributor moz_bug_r_a4 reported a vulnerability that allowed non-priviliged XUL documents to load chrome scripts from the fastload file. This could allow an attacker to run arbitrary JavaScript code with chrome privileges. CVE-2008-2801 MFSA-2008-23: Security researcher Collin Jackson reported a series of vulnerabilities which allow JavaScript to be injected into signed JARs and executed under the context of the JAR's signer. This could allow an attacker to run JavaScript in a victim's browser with the privileges of a different website, provided the attacker possesses a JAR signed by the other website. CVE-2008-2800 MFSA-2008-22: Mozilla contributor moz_bug_r_a4 submitted a set of vulnerabilities which allow scripts from one document to be executed in the context of a different document. These vulnerabilities could be used by an attacker to violate the same-origin policy and perform an XSS attack. CVE-2008-2798 CVE-2008-2799 MFSA-2008-21: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. seamonkey-1.1.11-3.1.i586.rpm seamonkey-1.1.11-3.1.ppc.rpm seamonkey-1.1.11-3.1.x86_64.rpm seamonkey-dom-inspector-1.1.11-3.1.i586.rpm seamonkey-dom-inspector-1.1.11-3.1.ppc.rpm seamonkey-dom-inspector-1.1.11-3.1.x86_64.rpm seamonkey-irc-1.1.11-3.1.i586.rpm seamonkey-irc-1.1.11-3.1.ppc.rpm seamonkey-irc-1.1.11-3.1.x86_64.rpm seamonkey-mail-1.1.11-3.1.i586.rpm seamonkey-mail-1.1.11-3.1.ppc.rpm seamonkey-mail-1.1.11-3.1.x86_64.rpm seamonkey-spellchecker-1.1.11-3.1.i586.rpm seamonkey-spellchecker-1.1.11-3.1.ppc.rpm seamonkey-spellchecker-1.1.11-3.1.x86_64.rpm seamonkey-venkman-1.1.11-3.1.i586.rpm seamonkey-venkman-1.1.11-3.1.ppc.rpm seamonkey-venkman-1.1.11-3.1.x86_64.rpm emacs openSUSE 11.0 When editing Python files Emacs accidently imported other Python script in the current directory (CVE-2008-3949). emacs-22.2-24.2.i586.rpm emacs-22.2-24.2.ppc.rpm emacs-22.2-24.2.x86_64.rpm emacs-el-22.2-24.2.i586.rpm emacs-el-22.2-24.2.ppc.rpm emacs-el-22.2-24.2.x86_64.rpm emacs-info-22.2-24.2.i586.rpm emacs-info-22.2-24.2.ppc.rpm emacs-info-22.2-24.2.x86_64.rpm emacs-nox-22.2-24.2.i586.rpm emacs-nox-22.2-24.2.ppc.rpm emacs-nox-22.2-24.2.x86_64.rpm emacs-x11-22.2-24.2.i586.rpm emacs-x11-22.2-24.2.ppc.rpm emacs-x11-22.2-24.2.x86_64.rpm libxml2 openSUSE 11.0 Specially crafted xml files could cause a crash or a heap based buffer overlow in libxml2 (CVE-2008-3281, CVE-2008-3529). libxml2-2.6.32-11.3.i586.rpm libxml2-2.6.32-11.3.ppc.rpm libxml2-2.6.32-11.3.x86_64.rpm libxml2-32bit-2.6.32-11.3.x86_64.rpm libxml2-64bit-2.6.32-11.3.ppc.rpm libxml2-devel-2.6.32-11.3.i586.rpm libxml2-devel-2.6.32-11.3.ppc.rpm libxml2-devel-2.6.32-11.3.x86_64.rpm libxml2-devel-32bit-2.6.32-11.3.x86_64.rpm libxml2-devel-64bit-2.6.32-11.3.ppc.rpm libxml2-doc-2.6.32-11.3.i586.rpm libxml2-doc-2.6.32-11.3.ppc.rpm libxml2-doc-2.6.32-11.3.x86_64.rpm aufs openSUSE 11.0 The aufs kernel module did not support weak updates on kernel updates, which caused aufs-cvs20080429-13.2.i586.rpm aufs-cvs20080429-13.2.ppc.rpm aufs-cvs20080429-13.2.x86_64.rpm aufs-kmp-debug-cvs20080429_2.6.25.16_0.1-13.2.i586.rpm aufs-kmp-debug-cvs20080429_2.6.25.16_0.1-13.2.x86_64.rpm aufs-kmp-default-cvs20080429_2.6.25.16_0.1-13.2.i586.rpm aufs-kmp-default-cvs20080429_2.6.25.16_0.1-13.2.ppc.rpm aufs-kmp-default-cvs20080429_2.6.25.16_0.1-13.2.x86_64.rpm aufs-kmp-pae-cvs20080429_2.6.25.16_0.1-13.2.i586.rpm aufs-kmp-ppc64-cvs20080429_2.6.25.16_0.1-13.2.ppc.rpm aufs-kmp-xen-cvs20080429_2.6.25.16_0.1-13.2.i586.rpm aufs-kmp-xen-cvs20080429_2.6.25.16_0.1-13.2.x86_64.rpm apache2-mod_php5 openSUSE 11.0 CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660 have been fixed in the php5 update. apache2-mod_php5-5.2.6-0.4.i586.rpm apache2-mod_php5-5.2.6-0.4.ppc.rpm apache2-mod_php5-5.2.6-0.4.x86_64.rpm php5-5.2.6-0.4.i586.rpm php5-5.2.6-0.4.ppc.rpm php5-5.2.6-0.4.x86_64.rpm php5-bcmath-5.2.6-0.4.i586.rpm php5-bcmath-5.2.6-0.4.ppc.rpm php5-bcmath-5.2.6-0.4.x86_64.rpm php5-bz2-5.2.6-0.4.i586.rpm php5-bz2-5.2.6-0.4.ppc.rpm php5-bz2-5.2.6-0.4.x86_64.rpm php5-calendar-5.2.6-0.4.i586.rpm php5-calendar-5.2.6-0.4.ppc.rpm php5-calendar-5.2.6-0.4.x86_64.rpm php5-ctype-5.2.6-0.4.i586.rpm php5-ctype-5.2.6-0.4.ppc.rpm php5-ctype-5.2.6-0.4.x86_64.rpm php5-curl-5.2.6-0.4.i586.rpm php5-curl-5.2.6-0.4.ppc.rpm php5-curl-5.2.6-0.4.x86_64.rpm php5-dba-5.2.6-0.4.i586.rpm php5-dba-5.2.6-0.4.ppc.rpm php5-dba-5.2.6-0.4.x86_64.rpm php5-dbase-5.2.6-0.4.i586.rpm php5-dbase-5.2.6-0.4.ppc.rpm php5-dbase-5.2.6-0.4.x86_64.rpm php5-devel-5.2.6-0.4.i586.rpm php5-devel-5.2.6-0.4.ppc.rpm php5-devel-5.2.6-0.4.x86_64.rpm php5-dom-5.2.6-0.4.i586.rpm php5-dom-5.2.6-0.4.ppc.rpm php5-dom-5.2.6-0.4.x86_64.rpm php5-exif-5.2.6-0.4.i586.rpm php5-exif-5.2.6-0.4.ppc.rpm php5-exif-5.2.6-0.4.x86_64.rpm php5-fastcgi-5.2.6-0.4.i586.rpm php5-fastcgi-5.2.6-0.4.ppc.rpm php5-fastcgi-5.2.6-0.4.x86_64.rpm php5-ftp-5.2.6-0.4.i586.rpm php5-ftp-5.2.6-0.4.ppc.rpm php5-ftp-5.2.6-0.4.x86_64.rpm php5-gd-5.2.6-0.4.i586.rpm php5-gd-5.2.6-0.4.ppc.rpm php5-gd-5.2.6-0.4.x86_64.rpm php5-gettext-5.2.6-0.4.i586.rpm php5-gettext-5.2.6-0.4.ppc.rpm php5-gettext-5.2.6-0.4.x86_64.rpm php5-gmp-5.2.6-0.4.i586.rpm php5-gmp-5.2.6-0.4.ppc.rpm php5-gmp-5.2.6-0.4.x86_64.rpm php5-hash-5.2.6-0.4.i586.rpm php5-hash-5.2.6-0.4.ppc.rpm php5-hash-5.2.6-0.4.x86_64.rpm php5-iconv-5.2.6-0.4.i586.rpm php5-iconv-5.2.6-0.4.ppc.rpm php5-iconv-5.2.6-0.4.x86_64.rpm php5-imap-5.2.6-0.4.i586.rpm php5-imap-5.2.6-0.4.ppc.rpm php5-imap-5.2.6-0.4.x86_64.rpm php5-json-5.2.6-0.4.i586.rpm php5-json-5.2.6-0.4.ppc.rpm php5-json-5.2.6-0.4.x86_64.rpm php5-ldap-5.2.6-0.4.i586.rpm php5-ldap-5.2.6-0.4.ppc.rpm php5-ldap-5.2.6-0.4.x86_64.rpm php5-mbstring-5.2.6-0.4.i586.rpm php5-mbstring-5.2.6-0.4.ppc.rpm php5-mbstring-5.2.6-0.4.x86_64.rpm php5-mcrypt-5.2.6-0.4.i586.rpm php5-mcrypt-5.2.6-0.4.ppc.rpm php5-mcrypt-5.2.6-0.4.x86_64.rpm php5-mysql-5.2.6-0.4.i586.rpm php5-mysql-5.2.6-0.4.ppc.rpm php5-mysql-5.2.6-0.4.x86_64.rpm php5-ncurses-5.2.6-0.4.i586.rpm php5-ncurses-5.2.6-0.4.ppc.rpm php5-ncurses-5.2.6-0.4.x86_64.rpm php5-odbc-5.2.6-0.4.i586.rpm php5-odbc-5.2.6-0.4.ppc.rpm php5-odbc-5.2.6-0.4.x86_64.rpm php5-openssl-5.2.6-0.4.i586.rpm php5-openssl-5.2.6-0.4.ppc.rpm php5-openssl-5.2.6-0.4.x86_64.rpm php5-pcntl-5.2.6-0.4.i586.rpm php5-pcntl-5.2.6-0.4.ppc.rpm php5-pcntl-5.2.6-0.4.x86_64.rpm php5-pdo-5.2.6-0.4.i586.rpm php5-pdo-5.2.6-0.4.ppc.rpm php5-pdo-5.2.6-0.4.x86_64.rpm php5-pear-5.2.6-0.4.i586.rpm php5-pear-5.2.6-0.4.ppc.rpm php5-pear-5.2.6-0.4.x86_64.rpm php5-pgsql-5.2.6-0.4.i586.rpm php5-pgsql-5.2.6-0.4.ppc.rpm php5-pgsql-5.2.6-0.4.x86_64.rpm php5-posix-5.2.6-0.4.i586.rpm php5-posix-5.2.6-0.4.ppc.rpm php5-posix-5.2.6-0.4.x86_64.rpm php5-pspell-5.2.6-0.4.i586.rpm php5-pspell-5.2.6-0.4.ppc.rpm php5-pspell-5.2.6-0.4.x86_64.rpm php5-readline-5.2.6-0.4.i586.rpm php5-readline-5.2.6-0.4.ppc.rpm php5-readline-5.2.6-0.4.x86_64.rpm php5-shmop-5.2.6-0.4.i586.rpm php5-shmop-5.2.6-0.4.ppc.rpm php5-shmop-5.2.6-0.4.x86_64.rpm php5-snmp-5.2.6-0.4.i586.rpm php5-snmp-5.2.6-0.4.ppc.rpm php5-snmp-5.2.6-0.4.x86_64.rpm php5-soap-5.2.6-0.4.i586.rpm php5-soap-5.2.6-0.4.ppc.rpm php5-soap-5.2.6-0.4.x86_64.rpm php5-sockets-5.2.6-0.4.i586.rpm php5-sockets-5.2.6-0.4.ppc.rpm php5-sockets-5.2.6-0.4.x86_64.rpm php5-sqlite-5.2.6-0.4.i586.rpm php5-sqlite-5.2.6-0.4.ppc.rpm php5-sqlite-5.2.6-0.4.x86_64.rpm php5-suhosin-5.2.6-0.4.i586.rpm php5-suhosin-5.2.6-0.4.ppc.rpm php5-suhosin-5.2.6-0.4.x86_64.rpm php5-sysvmsg-5.2.6-0.4.i586.rpm php5-sysvmsg-5.2.6-0.4.ppc.rpm php5-sysvmsg-5.2.6-0.4.x86_64.rpm php5-sysvsem-5.2.6-0.4.i586.rpm php5-sysvsem-5.2.6-0.4.ppc.rpm php5-sysvsem-5.2.6-0.4.x86_64.rpm php5-sysvshm-5.2.6-0.4.i586.rpm php5-sysvshm-5.2.6-0.4.ppc.rpm php5-sysvshm-5.2.6-0.4.x86_64.rpm php5-tidy-5.2.6-0.4.i586.rpm php5-tidy-5.2.6-0.4.ppc.rpm php5-tidy-5.2.6-0.4.x86_64.rpm php5-tokenizer-5.2.6-0.4.i586.rpm php5-tokenizer-5.2.6-0.4.ppc.rpm php5-tokenizer-5.2.6-0.4.x86_64.rpm php5-wddx-5.2.6-0.4.i586.rpm php5-wddx-5.2.6-0.4.ppc.rpm php5-wddx-5.2.6-0.4.x86_64.rpm php5-xmlreader-5.2.6-0.4.i586.rpm php5-xmlreader-5.2.6-0.4.ppc.rpm php5-xmlreader-5.2.6-0.4.x86_64.rpm php5-xmlrpc-5.2.6-0.4.i586.rpm php5-xmlrpc-5.2.6-0.4.ppc.rpm php5-xmlrpc-5.2.6-0.4.x86_64.rpm php5-xmlwriter-5.2.6-0.4.i586.rpm php5-xmlwriter-5.2.6-0.4.ppc.rpm php5-xmlwriter-5.2.6-0.4.x86_64.rpm php5-xsl-5.2.6-0.4.i586.rpm php5-xsl-5.2.6-0.4.ppc.rpm php5-xsl-5.2.6-0.4.x86_64.rpm php5-zip-5.2.6-0.4.i586.rpm php5-zip-5.2.6-0.4.ppc.rpm php5-zip-5.2.6-0.4.x86_64.rpm php5-zlib-5.2.6-0.4.i586.rpm php5-zlib-5.2.6-0.4.ppc.rpm php5-zlib-5.2.6-0.4.x86_64.rpm postfix openSUSE 11.0 When exectuting external programs postfix didn't close the file descriptor of the epoll system call. This could potentially be exploited to shutdown postfix (CVE-2008-3889). postfix-2.5.1-28.5.i586.rpm postfix-2.5.1-28.5.ppc.rpm postfix-2.5.1-28.5.x86_64.rpm postfix-devel-2.5.1-28.5.i586.rpm postfix-devel-2.5.1-28.5.ppc.rpm postfix-devel-2.5.1-28.5.x86_64.rpm postfix-mysql-2.5.1-28.5.i586.rpm postfix-mysql-2.5.1-28.5.ppc.rpm postfix-mysql-2.5.1-28.5.x86_64.rpm postfix-postgresql-2.5.1-28.5.i586.rpm postfix-postgresql-2.5.1-28.5.ppc.rpm postfix-postgresql-2.5.1-28.5.x86_64.rpm aide openSUSE 11.0 Aide was configured incorrectly with signature protection but without signature, so its database was not accessible and could not work. aide-0.13.1-20.2.i586.rpm aide-0.13.1-20.2.ppc.rpm aide-0.13.1-20.2.x86_64.rpm klamav openSUSE 11.0 clamav has been updated due to security problems. The version number of the clamav library has been changed with that update. Therefore programs like klamav that are linked against libclamav need to be updated as well. klamav-0.42-54.1.i586.rpm klamav-0.42-54.1.ppc.rpm klamav-0.42-54.1.x86_64.rpm uvcvideo-kmp-bigsmp openSUSE 11.0 The kernel driver uvcvideo was vulnerable to a buffer overflow in format descriptor parsing. (CVE-2008-3496) uvcvideo-kmp-debug-r200_2.6.25.11_0.1-2.4.i586.rpm uvcvideo-kmp-debug-r200_2.6.25.11_0.1-2.4.x86_64.rpm uvcvideo-kmp-default-r200_2.6.25.11_0.1-2.4.i586.rpm uvcvideo-kmp-default-r200_2.6.25.11_0.1-2.4.ppc.rpm uvcvideo-kmp-default-r200_2.6.25.11_0.1-2.4.x86_64.rpm uvcvideo-kmp-pae-r200_2.6.25.11_0.1-2.4.i586.rpm uvcvideo-kmp-ppc64-r200_2.6.25.11_0.1-2.4.ppc.rpm uvcvideo-kmp-xen-r200_2.6.25.11_0.1-2.4.i586.rpm uvcvideo-kmp-xen-r200_2.6.25.11_0.1-2.4.x86_64.rpm pam_mount openSUSE 11.0 pam_mount allowed users to mount arbitrary devices to any directory when the 'luserconf' configuration directive was set (CVE-2008-3970). pam_mount-0.35-15.2.i586.rpm pam_mount-0.35-15.2.ppc.rpm pam_mount-0.35-15.2.x86_64.rpm pam_mount-32bit-0.35-15.2.x86_64.rpm pam_mount-64bit-0.35-15.2.ppc.rpm libopensc2 openSUSE 11.0 This update fixes a security issues with opensc that occured when initializing blank smart cards with Siemens CardOS M4. After the initialization anyone could set the PIN of the smart card without authorization (CVE-2008-2235). NOTE: Already initialized cards are still vulnerable after this update. Please use the command-line tool pkcs15-tool with option --test-update and --update when necessary. Please find more information at http://www.opensc-project.org/security.html This is the second attempt to fix this problem. The previous update was unforunately incomplete. libopensc2-0.11.4-37.4.i586.rpm libopensc2-0.11.4-37.4.ppc.rpm libopensc2-0.11.4-37.4.x86_64.rpm libopensc2-32bit-0.11.4-37.4.x86_64.rpm libopensc2-64bit-0.11.4-37.4.ppc.rpm opensc-0.11.4-37.4.i586.rpm opensc-0.11.4-37.4.ppc.rpm opensc-0.11.4-37.4.x86_64.rpm opensc-32bit-0.11.4-37.4.x86_64.rpm opensc-64bit-0.11.4-37.4.ppc.rpm opensc-devel-0.11.4-37.4.i586.rpm opensc-devel-0.11.4-37.4.ppc.rpm opensc-devel-0.11.4-37.4.x86_64.rpm klamav openSUSE 11.0 clamav has been updated due to security problems. The version number of the clamav library has been changed with that update. Therefore programs like klamav that are linked against libclamav need to be updated as well. klamav-0.42-54.3.i586.rpm klamav-0.42-54.3.ppc.rpm klamav-0.42-54.3.x86_64.rpm libQtWebKit-devel openSUSE 11.0 A flaw in the CSS loader of the WebKit engine could crash programs and potentially allows execution of arbitrary code (CVE-2008-3632). This update also fixes unrelated problems with printing. libQtWebKit-devel-4.4.0-12.3.i586.rpm libQtWebKit-devel-4.4.0-12.3.ppc.rpm libQtWebKit-devel-4.4.0-12.3.x86_64.rpm libQtWebKit4-4.4.0-12.3.i586.rpm libQtWebKit4-4.4.0-12.3.ppc.rpm libQtWebKit4-4.4.0-12.3.x86_64.rpm libqt4-4.4.0-12.4.i586.rpm libqt4-4.4.0-12.4.ppc.rpm libqt4-4.4.0-12.4.x86_64.rpm libqt4-32bit-4.4.0-12.4.x86_64.rpm libqt4-64bit-4.4.0-12.4.ppc.rpm libqt4-devel-4.4.0-12.4.i586.rpm libqt4-devel-4.4.0-12.4.ppc.rpm libqt4-devel-4.4.0-12.4.x86_64.rpm libqt4-devel-doc-4.4.0-12.3.i586.rpm libqt4-devel-doc-4.4.0-12.3.ppc.rpm libqt4-devel-doc-4.4.0-12.3.x86_64.rpm libqt4-qt3support-4.4.0-12.4.i586.rpm libqt4-qt3support-4.4.0-12.4.ppc.rpm libqt4-qt3support-4.4.0-12.4.x86_64.rpm libqt4-qt3support-32bit-4.4.0-12.4.x86_64.rpm libqt4-qt3support-64bit-4.4.0-12.4.ppc.rpm libqt4-sql-4.4.0-12.4.i586.rpm libqt4-sql-4.4.0-12.4.ppc.rpm libqt4-sql-4.4.0-12.4.x86_64.rpm libqt4-sql-32bit-4.4.0-12.4.x86_64.rpm libqt4-sql-64bit-4.4.0-12.4.ppc.rpm libqt4-sql-sqlite-4.4.0-12.4.i586.rpm libqt4-sql-sqlite-4.4.0-12.4.ppc.rpm libqt4-sql-sqlite-4.4.0-12.4.x86_64.rpm libqt4-x11-4.4.0-12.4.i586.rpm libqt4-x11-4.4.0-12.4.ppc.rpm libqt4-x11-4.4.0-12.4.x86_64.rpm libqt4-x11-32bit-4.4.0-12.4.x86_64.rpm libqt4-x11-64bit-4.4.0-12.4.ppc.rpm qt4-x11-tools-4.4.0-12.3.i586.rpm qt4-x11-tools-4.4.0-12.3.ppc.rpm qt4-x11-tools-4.4.0-12.3.x86_64.rpm WebKitGtk openSUSE 11.0 A flaw in the CSS loader of the WebKit engine could crash programs and potentially allows execution of arbitrary code (CVE-2008-3632). WebKitGtk-1.0.29509-49.2.i586.rpm WebKitGtk-1.0.29509-49.2.ppc.rpm WebKitGtk-1.0.29509-49.2.x86_64.rpm WebKitGtk-devel-1.0.29509-49.2.i586.rpm WebKitGtk-devel-1.0.29509-49.2.ppc.rpm WebKitGtk-devel-1.0.29509-49.2.x86_64.rpm libWebKitGtk0-1.0.29509-49.2.i586.rpm libWebKitGtk0-1.0.29509-49.2.ppc.rpm libWebKitGtk0-1.0.29509-49.2.x86_64.rpm bluez-audio openSUSE 11.0 Missing length checks in bluez-libs could cause a buffer overflow in Bluetooth applications. Malicious bluetooth devices could potentially exploit that to execute arbitrary code (CVE-2008-2374). Note: The source code of each application that uses vulnerable functions of bluez-libs needs to be adapted to actually fix the problem. bluez-audio-3.32-8.2.i586.rpm bluez-cups-3.32-8.2.i586.rpm bluez-cups-3.32-8.2.ppc.rpm bluez-cups-3.32-8.2.x86_64.rpm bluez-libs-3.32-3.2.i586.rpm bluez-libs-3.32-3.2.ppc.rpm bluez-libs-3.32-3.2.x86_64.rpm bluez-test-3.32-8.2.i586.rpm bluez-test-3.32-8.2.ppc.rpm bluez-test-3.32-8.2.x86_64.rpm bluez-utils-3.32-8.2.i586.rpm bluez-utils-3.32-8.2.ppc.rpm bluez-utils-3.32-8.2.x86_64.rpm obex-data-server-0.3-26.2.i586.rpm obex-data-server-0.3-26.2.ppc.rpm obex-data-server-0.3-26.2.x86_64.rpm xgl openSUSE 11.0 This update fixes multiple vulnerabilities reported by iDefense for the included X server: - CVE-2008-2360 - RENDER Extension heap buffer overflow - CVE-2008-2361 - RENDER Extension crash - CVE-2008-2362 - RENDER Extension memory corruption - CVE-2008-1379 - MIT-SHM arbitrary memory read - CVE-2008-1377 - RECORD and Security extensions memory corruption xgl-git_071026-79.3.i586.rpm xgl-git_071026-79.3.ppc.rpm xgl-git_071026-79.3.x86_64.rpm yast2-pkg-bindings openSUSE 11.0 The one click installer for 11.0/x86_64 selected packages for i586 if they had a higher release number than the one in x86_64 (bnc#413150). The problem with setting priorities greater than 99 in the repository manager has been also fixed (bnc#402135). yast2-pkg-bindings-2.16.41-0.1.i586.rpm yast2-pkg-bindings-2.16.41-0.1.ppc.rpm yast2-pkg-bindings-2.16.41-0.1.x86_64.rpm dhcpcd openSUSE 11.0 A suse specific patch caused dhcpcd to re-read lease files incorrectly. The patch also adds documentation about extended DHCP queries being sent by our dhcpcd (bnc#423145). dhcpcd-3.2.3-6.3.i586.rpm dhcpcd-3.2.3-6.3.ppc.rpm dhcpcd-3.2.3-6.3.x86_64.rpm gnome-main-menu openSUSE 11.0 This makes gnome-main-menu not do thumbnailing by itself anymore, as the thumbnail creation process would halt main-menu for as long as thumbnails were being generated. Instead, we now rely on Nautilus to generate thumbnails for the user's files. gnome-main-menu-0.9.10-30.2.i586.rpm gnome-main-menu-0.9.10-30.2.ppc.rpm gnome-main-menu-0.9.10-30.2.x86_64.rpm gnome-main-menu-devel-0.9.10-30.2.i586.rpm gnome-main-menu-devel-0.9.10-30.2.ppc.rpm gnome-main-menu-devel-0.9.10-30.2.x86_64.rpm nautilus-gnome-main-menu-0.9.10-30.2.i586.rpm nautilus-gnome-main-menu-0.9.10-30.2.ppc.rpm nautilus-gnome-main-menu-0.9.10-30.2.x86_64.rpm GraphicsMagick openSUSE 11.0 Specially crafted image files could crash GraphicsMagick (CVE-2008-3134). GraphicsMagick-1.1.11-29.2.i586.rpm GraphicsMagick-1.1.11-29.2.ppc.rpm GraphicsMagick-1.1.11-29.2.x86_64.rpm GraphicsMagick-devel-1.1.11-29.2.i586.rpm GraphicsMagick-devel-1.1.11-29.2.ppc.rpm GraphicsMagick-devel-1.1.11-29.2.x86_64.rpm libGraphicsMagick++-devel-1.1.11-29.2.i586.rpm libGraphicsMagick++-devel-1.1.11-29.2.ppc.rpm libGraphicsMagick++-devel-1.1.11-29.2.x86_64.rpm libGraphicsMagick++1-1.1.11-29.2.i586.rpm libGraphicsMagick++1-1.1.11-29.2.ppc.rpm libGraphicsMagick++1-1.1.11-29.2.x86_64.rpm libGraphicsMagick1-1.1.11-29.2.i586.rpm libGraphicsMagick1-1.1.11-29.2.ppc.rpm libGraphicsMagick1-1.1.11-29.2.x86_64.rpm libGraphicsMagickWand0-1.1.11-29.2.i586.rpm libGraphicsMagickWand0-1.1.11-29.2.ppc.rpm libGraphicsMagickWand0-1.1.11-29.2.x86_64.rpm perl-GraphicsMagick-1.1.11-29.2.i586.rpm perl-GraphicsMagick-1.1.11-29.2.ppc.rpm perl-GraphicsMagick-1.1.11-29.2.x86_64.rpm mercurial openSUSE 11.0 The hgweb script didn't enforce the 'allowpull' permission setting which allowed anyone to retrieve files from the repository (CVE-2008-4297) mercurial-1.0-30.4.i586.rpm mercurial-1.0-30.4.ppc.rpm mercurial-1.0-30.4.x86_64.rpm digikam openSUSE 11.0 This patch resolves a race condition in Digikam's photo download code that could cause loss of pictures. The download code now uses unique pathnames for each photo's temporary file during download, preventing overwrites. digikam-0.9.3-70.2.i586.rpm digikam-0.9.3-70.2.ppc.rpm digikam-0.9.3-70.2.x86_64.rpm digikamimageplugins-0.9.3-70.2.i586.rpm digikamimageplugins-0.9.3-70.2.ppc.rpm digikamimageplugins-0.9.3-70.2.x86_64.rpm digikamimageplugins-superimpose-0.9.3-70.2.i586.rpm digikamimageplugins-superimpose-0.9.3-70.2.ppc.rpm digikamimageplugins-superimpose-0.9.3-70.2.x86_64.rpm libdigikam-devel-0.9.3-70.2.i586.rpm libdigikam-devel-0.9.3-70.2.ppc.rpm libdigikam-devel-0.9.3-70.2.x86_64.rpm yast2-pkg-bindings openSUSE 11.0 The one click installer for 11.0/x86_64 selected packages for i586 if they had a higher release number than the one in x86_64 (bnc#413150). The problem with setting priorities greater than 99 in the repository manager has been also fixed (bnc#402135). yast2-pkg-bindings-2.16.41-0.3.i586.rpm yast2-pkg-bindings-2.16.41-0.3.ppc.rpm yast2-pkg-bindings-2.16.41-0.3.x86_64.rpm yast2-pkg-bindings-devel-doc-2.16.41-0.3.noarch.rpm MozillaFirefox openSUSE 11.0 This update brings MozillaFirefox to version 3.0.3, fixing a number of bugs and security problems: MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters stripped from JavaScript before execution CVE-2008-4065: Stripped BOM characters bug CVE-2008-4066: HTML escaped low surrogates bug MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17): CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine. CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski, and Antoine Labour reported crashes in the JavaScript engine. CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers reported crashes in the layout engine which only affected Firefox 3. CVE-2008-4064: David Maciejak and Drew Yao reported crashes in graphics rendering which only affected Firefox 3. MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution CVE-2008-4058: XPCnativeWrapper pollution bugs CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2) CVE-2008-4060: Documents without script handling objects MFSA 2008-40 / CVE-2008-3837: Forced mouse drag MozillaFirefox-3.0.3-1.1.i586.rpm MozillaFirefox-3.0.3-1.1.ppc.rpm MozillaFirefox-3.0.3-1.1.x86_64.rpm MozillaFirefox-translations-3.0.3-1.1.i586.rpm MozillaFirefox-translations-3.0.3-1.1.ppc.rpm MozillaFirefox-translations-3.0.3-1.1.x86_64.rpm mozilla-xulrunner190 openSUSE 11.0 This update brings the mozilla-xulrunner190 engine to version 1.9.0.3, fixing a number of bugs and security problems: MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters stripped from JavaScript before execution CVE-2008-4065: Stripped BOM characters bug CVE-2008-4066: HTML escaped low surrogates bug MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17): CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine. CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski, and Antoine Labour reported crashes in the JavaScript engine. CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers reported crashes in the layout engine which only affected Firefox 3. CVE-2008-4064: David Maciejak and Drew Yao reported crashes in graphics rendering which only affected Firefox 3. MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution CVE-2008-4058: XPCnativeWrapper pollution bugs CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2) CVE-2008-4060: Documents without script handling objects MFSA 2008-40 / CVE-2008-3837: Forced mouse drag mozilla-xulrunner190-1.9.0.3-1.1.i586.rpm mozilla-xulrunner190-1.9.0.3-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.3-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.3-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.3-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.3-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.3-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.3-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.3-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.3-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.3-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.3-1.1.ppc.rpm MozillaThunderbird openSUSE 11.0 This update brings Mozilla Thunderbird to version 2.0.0.17. It contains the following security fixes: MFSA 2008-46 / CVE-2008-4070: Heap overflow when canceling a newsgroup message MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters stripped from JavaScript before execution CVE-2008-4065: Stripped BOM characters bug CVE-2008-4066: HTML escaped low surrogates bug MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17): CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine. CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski, and Antoine Labour reported crashes in the JavaScript engine. CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers reported crashes in the layout engine which only affected Firefox 3. CVE-2008-4064: David Maciejak and Drew Yao reported crashes in graphics rendering which only affected Firefox 3. MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution CVE-2008-4058: XPCnativeWrapper pollution bugs CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2) CVE-2008-4060: Documents without script handling objects MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow For more details: http://www.mozilla.org/security/known-vulnerabilities/thunde rbird20.html MozillaThunderbird-2.0.0.17-0.1.i586.rpm MozillaThunderbird-2.0.0.17-0.1.ppc.rpm MozillaThunderbird-2.0.0.17-0.1.x86_64.rpm MozillaThunderbird-devel-2.0.0.17-0.1.i586.rpm MozillaThunderbird-devel-2.0.0.17-0.1.ppc.rpm MozillaThunderbird-devel-2.0.0.17-0.1.x86_64.rpm MozillaThunderbird-translations-2.0.0.17-0.1.i586.rpm MozillaThunderbird-translations-2.0.0.17-0.1.ppc.rpm MozillaThunderbird-translations-2.0.0.17-0.1.x86_64.rpm seamonkey openSUSE 11.0 This patch updates Seamonkey to version 1.1.12, fixing security and other bugs: MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters stripped from JavaScript before execution CVE-2008-4065: Stripped BOM characters bug CVE-2008-4066: HTML escaped low surrogates bug MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17): CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine. CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski, and Antoine Labour reported crashes in the JavaScript engine. CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers reported crashes in the layout engine which only affected Firefox 3. CVE-2008-4064: David Maciejak and Drew Yao reported crashes in graphics rendering which only affected Firefox 3. MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution CVE-2008-4058: XPCnativeWrapper pollution bugs CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2) CVE-2008-4060: Documents without script handling objects MFSA 2008-40 / CVE-2008-3837: Forced mouse drag MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow Details can be found here: http://www.mozilla.org/security/known-vulnerabilities/seamon key11.html seamonkey-1.1.12-0.1.i586.rpm seamonkey-1.1.12-0.1.ppc.rpm seamonkey-1.1.12-0.1.x86_64.rpm seamonkey-dom-inspector-1.1.12-0.1.i586.rpm seamonkey-dom-inspector-1.1.12-0.1.ppc.rpm seamonkey-dom-inspector-1.1.12-0.1.x86_64.rpm seamonkey-irc-1.1.12-0.1.i586.rpm seamonkey-irc-1.1.12-0.1.ppc.rpm seamonkey-irc-1.1.12-0.1.x86_64.rpm seamonkey-mail-1.1.12-0.1.i586.rpm seamonkey-mail-1.1.12-0.1.ppc.rpm seamonkey-mail-1.1.12-0.1.x86_64.rpm seamonkey-spellchecker-1.1.12-0.1.i586.rpm seamonkey-spellchecker-1.1.12-0.1.ppc.rpm seamonkey-spellchecker-1.1.12-0.1.x86_64.rpm seamonkey-venkman-1.1.12-0.1.i586.rpm seamonkey-venkman-1.1.12-0.1.ppc.rpm seamonkey-venkman-1.1.12-0.1.x86_64.rpm cups openSUSE 11.0 Specially crafted print jobs could trigger buffer overflows in the 'imagetops', 'texttops' and 'hpgltops' filters. Attackers could potentially exploit that to execute arbitrary code on the cups server (CVE-2008-3639, CVE-2008-3640, CVE-2008-3641). cups-1.3.7-25.2.i586.rpm cups-1.3.7-25.2.ppc.rpm cups-1.3.7-25.2.x86_64.rpm cups-client-1.3.7-25.2.i586.rpm cups-client-1.3.7-25.2.ppc.rpm cups-client-1.3.7-25.2.x86_64.rpm cups-devel-1.3.7-25.2.i586.rpm cups-devel-1.3.7-25.2.ppc.rpm cups-devel-1.3.7-25.2.x86_64.rpm cups-libs-1.3.7-25.2.i586.rpm cups-libs-1.3.7-25.2.ppc.rpm cups-libs-1.3.7-25.2.x86_64.rpm cups-libs-32bit-1.3.7-25.2.x86_64.rpm cups-libs-64bit-1.3.7-25.2.ppc.rpm mozilla-xulrunner181 openSUSE 11.0 This update brings mozilla-xulrunner181 to security fix version 1.8.1.17. It contains the following security fixes: MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters stripped from JavaScript before execution CVE-2008-4065: Stripped BOM characters bug CVE-2008-4066: HTML escaped low surrogates bug MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17): CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine. CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski, and Antoine Labour reported crashes in the JavaScript engine. CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers reported crashes in the layout engine which only affected Firefox 3. CVE-2008-4064: David Maciejak and Drew Yao reported crashes in graphics rendering which only affected Firefox 3. MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution CVE-2008-4058: XPCnativeWrapper pollution bugs CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2) CVE-2008-4060: Documents without script handling objects MFSA 2008-40 / CVE-2008-3837: Forced mouse drag MFSA 2008-39 / CVE-2008-3836: Privilege escalation using feed preview page and XSS flaw MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow For more details: http://www.mozilla.org/security/known-vulnerabilities/firefo x20.html mozilla-xulrunner181-1.8.1.13-22.1.i586.rpm mozilla-xulrunner181-1.8.1.13-22.1.ppc.rpm mozilla-xulrunner181-1.8.1.13-22.1.x86_64.rpm mozilla-xulrunner181-32bit-1.8.1.13-22.1.x86_64.rpm mozilla-xulrunner181-64bit-1.8.1.13-22.1.ppc.rpm mozilla-xulrunner181-devel-1.8.1.13-22.1.i586.rpm mozilla-xulrunner181-devel-1.8.1.13-22.1.ppc.rpm mozilla-xulrunner181-devel-1.8.1.13-22.1.x86_64.rpm mozilla-xulrunner181-l10n-1.8.1.13-22.1.i586.rpm mozilla-xulrunner181-l10n-1.8.1.13-22.1.ppc.rpm mozilla-xulrunner181-l10n-1.8.1.13-22.1.x86_64.rpm epiphany openSUSE 11.0 This patch updates epiphany to match the current mozilla-xulrunner181 package. epiphany-2.22.1.1-25.1.i586.rpm epiphany-2.22.1.1-25.1.ppc.rpm epiphany-2.22.1.1-25.1.x86_64.rpm epiphany-devel-2.22.1.1-25.1.i586.rpm epiphany-devel-2.22.1.1-25.1.ppc.rpm epiphany-devel-2.22.1.1-25.1.x86_64.rpm epiphany-doc-2.22.1.1-25.1.i586.rpm epiphany-doc-2.22.1.1-25.1.ppc.rpm epiphany-doc-2.22.1.1-25.1.x86_64.rpm epiphany-extensions-2.22.0-37.1.i586.rpm epiphany-extensions-2.22.0-37.1.ppc.rpm epiphany-extensions-2.22.0-37.1.x86_64.rpm mkinitrd openSUSE 11.0 Fixup some issues with NFS-root systems: - Update static IP configuration - Update DHCP network configuration - Parse ip= parameter correctly And also fix booting from LVM devices mkinitrd-2.2-19.2.i586.rpm mkinitrd-2.2-19.2.ppc.rpm mkinitrd-2.2-19.2.x86_64.rpm seamonkey openSUSE 11.0 The Mozilla Seamonkey browser suite was updated to version 1.1.14. The following security issues were fixed: MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher moz_bug_r_a4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin policy and execute arbitrary JavaScript within the context of a different website. moz_bug_r_a4 also reported two vulnerabilities by which page content can pollute XPCNativeWrappers and run arbitary JavaScript with chrome priviliges. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-67 / CVE-2008-5510: Kojima Hajime reported that unlike literal null characters which were handled correctly, the escaped form '\0' was ignored by the CSS parser and treated as if it was not present in the CSS input string. This issue could potentially be used to bypass script sanitization routines in web applications. The severity of this issue was determined to be low. MFSA 2008-66 / CVE-2008-5508: Perl developer Chip Salzenberg reported that certain control characters, when placed at the beginning of a URL, would lead to incorrect parsing resulting in a malformed URL being output by the parser. IBM researchers Justin Schuh, Tom Cross, and Peter William also reported a related symptom as part of their research that resulted in MFSA 2008-37. There was no direct security impact from this issue and its effect was limited to the improper rendering of hyperlinks containing specific characters. The severity of this issue was determined to be low. MFSA 2008-65 / CVE-2008-5507: Google security researcher Chris Evans reported that a website could access a limited amount of data from a different domain by loading a same-domain JavaScript URL which redirects to an off-domain target resource containing data which is not parsable as JavaScript. Upon attempting to load the data as JavaScript a syntax error is generated that can reveal some of the file context via the window.onerror DOM API. This issue could be used by a malicious website to steal private data from users who are authenticated on the redirected website. How much data could be at risk would depend on the format of the data and how the JavaScript parser attempts to interpret it. For most files the amount of data that can be recovered would be limited to the first word or two. Some data files might allow deeper probing with repeated loads. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-64 / CVE-2008-5506: Marius Schilder of Google Security reported that when a XMLHttpRequest is made to a same-origin resource which 302 redirects to a resource in a different domain, the response from the cross-domain resource is readable by the site issuing the XHR. Cookies marked HttpOnly were not readable, but other potentially sensitive data could be revealed in the XHR response including URL parameters and content in the response body. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-61 / CVE-2008-5503: Mozilla developer Boris Zbarsky reported that XBL bindings could be used to read data from other domains, a violation of the same-origin policy. The severity of this issue was determined to be moderate due to several mitigating factors: The target document requires a <bindingsi> element in the XBL namespace in order to be read. The reader of the data needs to know the id attribute of the binding being read in advance. It is unlikely that web services will expose private data in the manner described above. Firefox 3 is not affected by this issue. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Products built from the Mozilla 1.9.0 branch and later, Firefox 3 for example, are not affected by this issue. Upgrading to one of these products is a reliable workaround for this particular issue and it is also Mozilla's recommendation that the most current version of any Mozilla product be used. Alternatively, you can disable JavaScript until a version containing these fixes can be installed. MFSA 2008-60 / CVE-2008-5500: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript such as large images. Workaround Disable JavaScript until a version containing these fixes can be installed. seamonkey-1.1.14-0.1.i586.rpm seamonkey-1.1.14-0.1.ppc.rpm seamonkey-1.1.14-0.1.x86_64.rpm seamonkey-dom-inspector-1.1.14-0.1.i586.rpm seamonkey-dom-inspector-1.1.14-0.1.ppc.rpm seamonkey-dom-inspector-1.1.14-0.1.x86_64.rpm seamonkey-irc-1.1.14-0.1.i586.rpm seamonkey-irc-1.1.14-0.1.ppc.rpm seamonkey-irc-1.1.14-0.1.x86_64.rpm seamonkey-mail-1.1.14-0.1.i586.rpm seamonkey-mail-1.1.14-0.1.ppc.rpm seamonkey-mail-1.1.14-0.1.x86_64.rpm seamonkey-spellchecker-1.1.14-0.1.i586.rpm seamonkey-spellchecker-1.1.14-0.1.ppc.rpm seamonkey-spellchecker-1.1.14-0.1.x86_64.rpm seamonkey-venkman-1.1.14-0.1.i586.rpm seamonkey-venkman-1.1.14-0.1.ppc.rpm seamonkey-venkman-1.1.14-0.1.x86_64.rpm pam_mount openSUSE 11.0 In the script /sbin/umount.crypt the losetup command is accessed by a variable named LOSETUP. This variable is not specified, so container files will not be unbound from /dev/loop* by umount.crypt. pam_mount-0.35-15.4.i586.rpm pam_mount-0.35-15.4.ppc.rpm pam_mount-0.35-15.4.x86_64.rpm pam_mount-32bit-0.35-15.4.x86_64.rpm pam_mount-64bit-0.35-15.4.ppc.rpm openldap2 openSUSE 11.0 This update fixes a security problem in the liblber client library of openldap that allowed remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams, which triggers an assertion error. (CVE-2008-2952) Additionally a bug was fixed in ldap_free_connection which could result in client crashes when the server closed a connection while an operation is active. openldap2-2.4.9-7.4.i586.rpm openldap2-2.4.9-7.4.ppc.rpm openldap2-2.4.9-7.4.x86_64.rpm openldap2-back-meta-2.4.9-7.4.i586.rpm openldap2-back-meta-2.4.9-7.4.ppc.rpm openldap2-back-meta-2.4.9-7.4.x86_64.rpm openldap2-back-perl-2.4.9-7.4.i586.rpm openldap2-back-perl-2.4.9-7.4.ppc.rpm openldap2-back-perl-2.4.9-7.4.x86_64.rpm openldap2-client-2.4.9-7.4.i586.rpm openldap2-client-2.4.9-7.4.ppc.rpm openldap2-client-2.4.9-7.4.x86_64.rpm openldap2-client-32bit-2.4.9-7.4.x86_64.rpm openldap2-client-64bit-2.4.9-7.4.ppc.rpm openldap2-devel-2.4.9-7.4.i586.rpm openldap2-devel-2.4.9-7.4.ppc.rpm openldap2-devel-2.4.9-7.4.x86_64.rpm openldap2-devel-32bit-2.4.9-7.4.x86_64.rpm openldap2-devel-64bit-2.4.9-7.4.ppc.rpm opera openSUSE 11.0 This update of opera fixes several security problems. See: http://www.opera.com/docs/changelogs/linux/960/#sec opera-9.60-0.1.i586.rpm opera-9.60-0.1.ppc.rpm opera-9.60-0.1.x86_64.rpm timezone openSUSE 11.0 Various timezone information updates: * DST changes for Indian/Mauritius, Africa/Casablanca, Asia/Karachi, Asia/Gaza, Asia/Damascus, Argentina and Brazil * Historical DST information change for Central Europe and America/Nassau * Leap second introduction for 2008 * Fix location of Pacific/Niue Also, glibc dladdr() call has been fixed not to return incorrect values sometimes. timezone-2008h-1.1.i586.rpm timezone-2008h-1.1.ppc.rpm timezone-2008h-1.1.x86_64.rpm libgnomecanvas openSUSE 11.0 This is a fix for https://bugzilla.novell.com/show_bug.cgi?id=430785, where libgnomecanvas would cause some applications like xournal and teg to repaint incorrectly. libgnomecanvas-2.20.1.1-42.2.i586.rpm libgnomecanvas-2.20.1.1-42.2.ppc.rpm libgnomecanvas-2.20.1.1-42.2.x86_64.rpm libgnomecanvas-32bit-2.20.1.1-42.2.x86_64.rpm libgnomecanvas-64bit-2.20.1.1-42.2.ppc.rpm libgnomecanvas-devel-2.20.1.1-42.2.i586.rpm libgnomecanvas-devel-2.20.1.1-42.2.ppc.rpm libgnomecanvas-devel-2.20.1.1-42.2.x86_64.rpm libgnomecanvas-doc-2.20.1.1-42.2.i586.rpm libgnomecanvas-doc-2.20.1.1-42.2.ppc.rpm libgnomecanvas-doc-2.20.1.1-42.2.x86_64.rpm systemtap openSUSE 11.0 The systemtap package for i386 on openSUSE 11.0 doesn't work with the recent kernel including the shipped openSUSE kernel. This update fixes the breakage. systemtap-0.6-60.2.i586.rpm systemtap-0.6-60.2.ppc.rpm systemtap-0.6-60.2.x86_64.rpm timezone openSUSE 11.0 This updates the timezone data files to version 2008f, current as of 2008-09-19. Amongst other it changes the daylight saving time rules for Brazil. timezone-2008f-0.1.i586.rpm timezone-2008f-0.1.ppc.rpm timezone-2008f-0.1.x86_64.rpm opera openSUSE 11.0 Opera 9.61 fixes several security vulnerabilities. opera-9.61-0.1.i586.rpm opera-9.61-0.1.ppc.rpm opera-9.61-0.1.x86_64.rpm tsclient openSUSE 11.0 This update for tsclient fixes a crash when saving a connection (bnc#430070). tsclient-0.150-28.2.i586.rpm tsclient-0.150-28.2.ppc.rpm tsclient-0.150-28.2.x86_64.rpm pam_mount openSUSE 11.0 pam_mount does not work any longer if a local user specific configuration is active. pam_mount-0.35-15.6.i586.rpm pam_mount-0.35-15.6.ppc.rpm pam_mount-0.35-15.6.x86_64.rpm pam_mount-32bit-0.35-15.6.x86_64.rpm pam_mount-64bit-0.35-15.6.ppc.rpm lvm2 openSUSE 11.0 lvm2 was missing the symlinks to shared libraries, which did not work with the default configuration in lvm.conf. This update adds those symlinks (bnc#422839). lvm2-2.02.33-28.2.i586.rpm lvm2-2.02.33-28.2.ppc.rpm lvm2-2.02.33-28.2.x86_64.rpm lvm2-clvm-2.02.33-28.2.i586.rpm lvm2-clvm-2.02.33-28.2.ppc.rpm lvm2-clvm-2.02.33-28.2.x86_64.rpm yum openSUSE 11.0 This update fixes the default channel configuration to match openSUSE 11.0. yum-3.2.14-15.2.i586.rpm yum-3.2.14-15.2.ppc.rpm yum-3.2.14-15.2.x86_64.rpm yum-updatesd-3.2.14-15.2.i586.rpm yum-updatesd-3.2.14-15.2.ppc.rpm yum-updatesd-3.2.14-15.2.x86_64.rpm libsatsolver openSUSE 11.0 A remotely exploitable code execution vulnerability via shell metachars has been fixed in libzypp. libsatsolver-devel-0.9.5-0.1.i586.rpm libsatsolver-devel-0.9.5-0.1.ppc.rpm libsatsolver-devel-0.9.5-0.1.x86_64.rpm libsatsolver-perl-0.9.5-0.1.i586.rpm libsatsolver-perl-0.9.5-0.1.ppc.rpm libsatsolver-perl-0.9.5-0.1.x86_64.rpm libsatsolver-ruby-0.9.5-0.1.i586.rpm libsatsolver-ruby-0.9.5-0.1.ppc.rpm libsatsolver-ruby-0.9.5-0.1.x86_64.rpm libzypp-4.27.3-0.1.i586.rpm libzypp-4.27.3-0.1.ppc.rpm libzypp-4.27.3-0.1.x86_64.rpm libzypp-devel-4.27.3-0.1.i586.rpm libzypp-devel-4.27.3-0.1.ppc.rpm libzypp-devel-4.27.3-0.1.x86_64.rpm satsolver-tools-0.9.5-0.1.i586.rpm satsolver-tools-0.9.5-0.1.ppc.rpm satsolver-tools-0.9.5-0.1.x86_64.rpm kernel openSUSE 11.0 This patch updates the openSUSE 11.0 kernel to the 2.6.25.18 stable release. It also includes bugfixes and security fixes: CVE-2008-4410: The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the Virtual Machine Interface (VMI) in the Linux kernel 2.6.26.5 invokes write_idt_entry where write_ldt_entry was intended, which allows local users to cause a denial of service (persistent application failure) via crafted function calls, related to the Java Runtime Environment (JRE) experiencing improper LDT selector state. sctp: Fix kernel panic while process protocol violation parameter. CVE-2008-3528: The ext[234] filesystem code fails to properly handle corrupted data structures. With a mounted filesystem image or partition that have corrupted dir->i_size and dir->i_blocks, a user performing either a read or write operation on the mounted image or partition can lead to a possible denial of service by spamming the logfile. CVE-2008-3526: Integer overflow in the sctp_setsockopt_auth_key function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel allows remote attackers to cause a denial of service (panic) or possibly have unspecified other impact via a crafted sca_keylength field associated with the SCTP_AUTH_KEY option. CVE-2008-3525: Added missing capability checks in sbni_ioctl(). CVE-2008-4576: SCTP in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service (OOPS) via an INIT-ACK that states the peer does not support AUTH, which causes the sctp_process_init function to clean up active transports and triggers the OOPS when the T1-Init timer expires. CVE-2008-4445: The sctp_auth_ep_set_hmacs function in net/sctp/auth.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, does not verify that the identifier index is within the bounds established by SCTP_AUTH_HMAC_ID_MAX, which allows local users to obtain sensitive information via a crafted SCTP_HMAC_IDENT IOCTL request involving the sctp_getsockopt function. CVE-2008-3792: net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel 2.6.26.3 does not verify that the SCTP-AUTH extension is enabled before proceeding with SCTP-AUTH API functions, which allows attackers to cause a denial of service (panic) via vectors that result in calls to (1) sctp_setsockopt_auth_chunk, (2) sctp_setsockopt_hmac_ident, (3) sctp_setsockopt_auth_key, (4) sctp_setsockopt_active_key, (5) sctp_setsockopt_del_key, (6) sctp_getsockopt_maxburst, (7) sctp_getsockopt_active_key, (8) sctp_getsockopt_peer_auth_chunks, or (9) sctp_getsockopt_local_auth_chunks. CVE-2008-4113: The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel memory, which allows local users to obtain sensitive information via a crafted SCTP_HMAC_IDENT IOCTL request involving the sctp_getsockopt function. CVE-2008-3911: The proc_do_xprt function in net/sunrpc/sysctl.c in the Linux kernel 2.6.26.3 does not check the length of a certain buffer obtained from userspace, which allows local users to overflow a stack-based buffer and have unspecified other impact via a crafted read system call for the /proc/sys/sunrpc/transports file. kernel-debug-2.6.25.18-0.2.i586.rpm 1 kernel-debug-2.6.25.18-0.2.x86_64.rpm 1 kernel-default-2.6.25.18-0.2.i586.rpm 1 kernel-default-2.6.25.18-0.2.ppc.rpm 1 kernel-default-2.6.25.18-0.2.x86_64.rpm 1 kernel-docs-2.6.25.18-0.2.noarch.rpm 1 kernel-kdump-2.6.25.18-0.2.ppc.rpm 1 kernel-pae-2.6.25.18-0.2.i586.rpm 1 kernel-ppc64-2.6.25.18-0.2.ppc.rpm 1 kernel-ps3-2.6.25.18-0.2.ppc.rpm 1 kernel-rt-2.6.25.18-0.2.i586.rpm 1 kernel-rt-2.6.25.18-0.2.x86_64.rpm 1 kernel-rt_debug-2.6.25.18-0.2.i586.rpm 1 kernel-rt_debug-2.6.25.18-0.2.x86_64.rpm 1 kernel-source-2.6.25.18-0.2.i586.rpm 1 kernel-source-2.6.25.18-0.2.ppc.rpm 1 kernel-source-2.6.25.18-0.2.x86_64.rpm 1 kernel-syms-2.6.25.18-0.2.i586.rpm 1 kernel-syms-2.6.25.18-0.2.ppc.rpm 1 kernel-syms-2.6.25.18-0.2.x86_64.rpm 1 kernel-vanilla-2.6.25.18-0.2.i586.rpm 1 kernel-vanilla-2.6.25.18-0.2.ppc.rpm 1 kernel-vanilla-2.6.25.18-0.2.x86_64.rpm 1 kernel-xen-2.6.25.18-0.2.i586.rpm 1 kernel-xen-2.6.25.18-0.2.x86_64.rpm 1 graphviz openSUSE 11.0 This update of graphviz fixes a buffer overflow that occurs while parsing a DOT file. (CVE-2008-4555) graphviz-2.18-25.2.i586.rpm graphviz-2.18-25.2.ppc.rpm graphviz-2.18-25.2.x86_64.rpm graphviz-devel-2.18-25.2.i586.rpm graphviz-devel-2.18-25.2.ppc.rpm graphviz-devel-2.18-25.2.x86_64.rpm graphviz-doc-2.18-25.2.i586.rpm graphviz-doc-2.18-25.2.ppc.rpm graphviz-doc-2.18-25.2.x86_64.rpm graphviz-gd-2.18-25.2.i586.rpm graphviz-gd-2.18-25.2.ppc.rpm graphviz-gd-2.18-25.2.x86_64.rpm graphviz-gnome-2.18-25.2.i586.rpm graphviz-gnome-2.18-25.2.ppc.rpm graphviz-gnome-2.18-25.2.x86_64.rpm graphviz-guile-2.18-25.2.i586.rpm graphviz-guile-2.18-25.2.ppc.rpm graphviz-guile-2.18-25.2.x86_64.rpm graphviz-java-2.18-25.2.i586.rpm graphviz-java-2.18-25.2.ppc.rpm graphviz-java-2.18-25.2.x86_64.rpm graphviz-lua-2.18-25.2.i586.rpm graphviz-lua-2.18-25.2.ppc.rpm graphviz-lua-2.18-25.2.x86_64.rpm graphviz-ocaml-2.18-25.2.i586.rpm graphviz-ocaml-2.18-25.2.ppc.rpm graphviz-ocaml-2.18-25.2.x86_64.rpm graphviz-perl-2.18-25.2.i586.rpm graphviz-perl-2.18-25.2.ppc.rpm graphviz-perl-2.18-25.2.x86_64.rpm graphviz-php-2.18-25.2.i586.rpm graphviz-php-2.18-25.2.ppc.rpm graphviz-php-2.18-25.2.x86_64.rpm graphviz-python-2.18-25.2.i586.rpm graphviz-python-2.18-25.2.ppc.rpm graphviz-python-2.18-25.2.x86_64.rpm graphviz-ruby-2.18-25.2.i586.rpm graphviz-ruby-2.18-25.2.ppc.rpm graphviz-ruby-2.18-25.2.x86_64.rpm graphviz-sharp-2.18-25.2.i586.rpm graphviz-sharp-2.18-25.2.ppc.rpm graphviz-sharp-2.18-25.2.x86_64.rpm graphviz-tcl-2.18-25.2.i586.rpm graphviz-tcl-2.18-25.2.ppc.rpm graphviz-tcl-2.18-25.2.x86_64.rpm exiv2 openSUSE 11.0 This update of exiv2 solves a denial of service bug that can be triggered by using crafted metadata. (CVE-2008-2696) exiv2-0.16-29.2.i586.rpm exiv2-0.16-29.2.ppc.rpm exiv2-0.16-29.2.x86_64.rpm libexiv2-2-0.16-29.2.i586.rpm libexiv2-2-0.16-29.2.ppc.rpm libexiv2-2-0.16-29.2.x86_64.rpm libexiv2-2-32bit-0.16-29.2.x86_64.rpm libexiv2-2-64bit-0.16-29.2.ppc.rpm libexiv2-devel-0.16-29.2.i586.rpm libexiv2-devel-0.16-29.2.ppc.rpm libexiv2-devel-0.16-29.2.x86_64.rpm libgadu openSUSE 11.0 This update fixes a remote denial of service bug in libgadu. (CVE-2008-4776) libgadu-1.8.0-16.2.i586.rpm libgadu-1.8.0-16.2.ppc.rpm libgadu-1.8.0-16.2.x86_64.rpm libgadu-devel-1.8.0-16.2.i586.rpm libgadu-devel-1.8.0-16.2.ppc.rpm libgadu-devel-1.8.0-16.2.x86_64.rpm opera openSUSE 11.0 This update to Opera 9.62 fixes a security bug that allowed the execution of arbitrary commands remotely. http://www.opera.com/docs/changelogs/linux/962/ opera-9.62-0.1.i586.rpm opera-9.62-0.1.ppc.rpm opera-9.62-0.1.x86_64.rpm yelp openSUSE 11.0 This update of yelp fixes a format string bug. (CVE-2008-3533) yelp-2.22.1-25.2.i586.rpm yelp-2.22.1-25.2.ppc.rpm yelp-2.22.1-25.2.x86_64.rpm libzypp openSUSE 11.0 This update fixes the handling of meta-characters in repos. libzypp-4.27.4-0.1.i586.rpm libzypp-4.27.4-0.1.ppc.rpm libzypp-4.27.4-0.1.x86_64.rpm libzypp-devel-4.27.4-0.1.i586.rpm libzypp-devel-4.27.4-0.1.ppc.rpm libzypp-devel-4.27.4-0.1.x86_64.rpm apache2 openSUSE 11.0 Missing sanity checks of FTP URLs allowed cross site scripting (XSS) attacks via the mod_proxy_ftp module (CVE-2008-2939). Missing precautions allowed cross site request forgery (CSRF) via the mod_proxy_balancer interface (CVE-2007-6420). A memory leak in the ssl module could crash apache (CVE-2008-1678) apache2-2.2.8-28.2.i586.rpm apache2-2.2.8-28.2.ppc.rpm apache2-2.2.8-28.2.x86_64.rpm apache2-devel-2.2.8-28.2.i586.rpm apache2-devel-2.2.8-28.2.ppc.rpm apache2-devel-2.2.8-28.2.x86_64.rpm apache2-doc-2.2.8-28.2.i586.rpm apache2-doc-2.2.8-28.2.ppc.rpm apache2-doc-2.2.8-28.2.x86_64.rpm apache2-example-pages-2.2.8-28.2.i586.rpm apache2-example-pages-2.2.8-28.2.ppc.rpm apache2-example-pages-2.2.8-28.2.x86_64.rpm apache2-prefork-2.2.8-28.2.i586.rpm apache2-prefork-2.2.8-28.2.ppc.rpm apache2-prefork-2.2.8-28.2.x86_64.rpm apache2-utils-2.2.8-28.2.i586.rpm apache2-utils-2.2.8-28.2.ppc.rpm apache2-utils-2.2.8-28.2.x86_64.rpm apache2-worker-2.2.8-28.2.i586.rpm apache2-worker-2.2.8-28.2.ppc.rpm apache2-worker-2.2.8-28.2.x86_64.rpm enscript openSUSE 11.0 This update of enscript fixes buffer overflows in the setfilename (CVE-2008-3863), process_file and read_special_escape function that can be exploited during file processing. enscript-1.6.4-124.2.i586.rpm enscript-1.6.4-124.2.ppc.rpm enscript-1.6.4-124.2.x86_64.rpm libcdaudio openSUSE 11.0 This update fixes a heap-based buffer overflow in libcdaudio that can be exploited remotely to execute arbitrary code. libcdaudio-0.99.12-114.2.i586.rpm libcdaudio-0.99.12-114.2.ppc.rpm libcdaudio-0.99.12-114.2.x86_64.rpm libcdaudio-devel-0.99.12-114.2.i586.rpm libcdaudio-devel-0.99.12-114.2.ppc.rpm libcdaudio-devel-0.99.12-114.2.x86_64.rpm perl-Socket6 openSUSE 11.0 perl-5.10.0's Socket module defines PF_INET6, this clashes when perl-Socket6 also tries to define this symbol. This update brings perl-Socket6 to version 0.22 which fixes the problem. perl-Socket6-0.22-0.1.i586.rpm perl-Socket6-0.22-0.1.ppc.rpm perl-Socket6-0.22-0.1.x86_64.rpm ipsec-tools openSUSE 11.0 Remote attackers could exploit memory leaks in the 'racoon' daemon to crash it (CVE-2008-3651, CVE-2008-3652) ipsec-tools-0.7-61.3.i586.rpm ipsec-tools-0.7-61.3.ppc.rpm ipsec-tools-0.7-61.3.x86_64.rpm kpowersave openSUSE 11.0 This update fixes several autosuspend related problems in KPowersave: stop autosuspend if the first suspend call or resume from suspend fails (bnc#429546), add zypper and rpm to the generic autosuspend blacklist to prevent autosuspend while updates (bnc#396241). Also fixed: handling of the 'Apply' button in the configure dialog to set the config correctly for the actual scheme (bnc#395042), fixed problems/handling if a DBus call fails (bnc#397871), fixed problems with Console-/PolicyKit policies for a user - read always the actual values before call a DBus method. kpowersave-0.7.3-100.2.i586.rpm kpowersave-0.7.3-100.2.ppc.rpm kpowersave-0.7.3-100.2.x86_64.rpm flash-player openSUSE 11.0 This update of flash-player fixes several critical security vulnerabilities. (CVE-2007-6243, CVE-2008-3873, CVE-2007-4324, CVE-2008-4401, CVE-2008-4503, CVE-2008-4546) flash-player-9.0.151.0-0.1.i586.rpm sudo openSUSE 11.0 After configuring LDAP logins with YaST on an 11.0 system, I discovered a problem with sudo, relating to users who are in LDAP but not in sudoers. Attempting to do anything with sudo (even "sudo -l") as such a user results in the error message "sudo: parse error in /etc/sudoers near line -1". Sudo never even prompts for a password, and worse, it sends a security email to root with this error message. This is a regression from 10.3, and it is definitely a problem with sudo itself, rather than pam_ldap or something else. sudo-1.6.9p15-13.2.i586.rpm sudo-1.6.9p15-13.2.ppc.rpm sudo-1.6.9p15-13.2.x86_64.rpm aaa_base openSUSE 11.0 The netfs list in the beginning of the script doesn't mention the (nb. Novell Netware) ncpfs, which causes machines using netware volumes to hang during shutdown. aaa_base-11.0-79.4.i586.rpm aaa_base-11.0-79.4.ppc.rpm aaa_base-11.0-79.4.x86_64.rpm ktorrent openSUSE 11.0 This update of ktorrent fixes several security issues. ktorrent-3.0.2-22.2.i586.rpm ktorrent-3.0.2-22.2.ppc.rpm ktorrent-3.0.2-22.2.x86_64.rpm ktorrent-devel-3.0.2-22.2.i586.rpm ktorrent-devel-3.0.2-22.2.ppc.rpm ktorrent-devel-3.0.2-22.2.x86_64.rpm lighttpd openSUSE 11.0 Various issues have been fixed in lighttpd. CVE-2008-4298, CVE-2008-4359 and CVE-2008-4360 have been assigned to thess issues. lighttpd-1.4.19-6.2.i586.rpm lighttpd-1.4.19-6.2.ppc.rpm lighttpd-1.4.19-6.2.x86_64.rpm lighttpd-mod_cml-1.4.19-6.2.i586.rpm lighttpd-mod_cml-1.4.19-6.2.ppc.rpm lighttpd-mod_cml-1.4.19-6.2.x86_64.rpm lighttpd-mod_magnet-1.4.19-6.2.i586.rpm lighttpd-mod_magnet-1.4.19-6.2.ppc.rpm lighttpd-mod_magnet-1.4.19-6.2.x86_64.rpm lighttpd-mod_mysql_vhost-1.4.19-6.2.i586.rpm lighttpd-mod_mysql_vhost-1.4.19-6.2.ppc.rpm lighttpd-mod_mysql_vhost-1.4.19-6.2.x86_64.rpm lighttpd-mod_rrdtool-1.4.19-6.2.i586.rpm lighttpd-mod_rrdtool-1.4.19-6.2.ppc.rpm lighttpd-mod_rrdtool-1.4.19-6.2.x86_64.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.2.i586.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.2.ppc.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.2.x86_64.rpm lighttpd-mod_webdav-1.4.19-6.2.i586.rpm lighttpd-mod_webdav-1.4.19-6.2.ppc.rpm lighttpd-mod_webdav-1.4.19-6.2.x86_64.rpm cifs-mount openSUSE 11.0 This update fixes a bug that allowed the client to retrieve arbitrary memory content from the server process. (CVE-2008-4314) Additionally another bug was fixed that affects environments that enabled registry shares by setting "registry shares = yes". In this case an authenticated user is accidently allowed to access the root filesystem "/". (CVE-2009-0022) cifs-mount-3.2.4-4.3.i586.rpm cifs-mount-3.2.4-4.3.ppc.rpm cifs-mount-3.2.4-4.3.x86_64.rpm ldapsmb-1.34b-195.8.i586.rpm ldapsmb-1.34b-195.8.ppc.rpm ldapsmb-1.34b-195.8.x86_64.rpm libnetapi-devel-3.2.4-4.3.i586.rpm libnetapi-devel-3.2.4-4.3.ppc.rpm libnetapi-devel-3.2.4-4.3.x86_64.rpm libnetapi0-3.2.4-4.3.i586.rpm libnetapi0-3.2.4-4.3.ppc.rpm libnetapi0-3.2.4-4.3.x86_64.rpm libsmbclient-devel-3.2.4-4.3.i586.rpm libsmbclient-devel-3.2.4-4.3.ppc.rpm libsmbclient-devel-3.2.4-4.3.x86_64.rpm libsmbclient0-3.2.4-4.3.i586.rpm libsmbclient0-3.2.4-4.3.ppc.rpm libsmbclient0-3.2.4-4.3.x86_64.rpm libsmbclient0-32bit-3.2.4-4.3.x86_64.rpm libsmbclient0-64bit-3.2.4-4.3.ppc.rpm libsmbsharemodes-devel-3.2.4-4.3.i586.rpm libsmbsharemodes-devel-3.2.4-4.3.ppc.rpm libsmbsharemodes-devel-3.2.4-4.3.x86_64.rpm libsmbsharemodes0-3.2.4-4.3.i586.rpm libsmbsharemodes0-3.2.4-4.3.ppc.rpm libsmbsharemodes0-3.2.4-4.3.x86_64.rpm libtalloc-devel-3.2.4-4.3.i586.rpm libtalloc-devel-3.2.4-4.3.ppc.rpm libtalloc-devel-3.2.4-4.3.x86_64.rpm libtalloc1-3.2.4-4.3.i586.rpm libtalloc1-3.2.4-4.3.ppc.rpm libtalloc1-3.2.4-4.3.x86_64.rpm libtalloc1-32bit-3.2.4-4.3.x86_64.rpm libtalloc1-64bit-3.2.4-4.3.ppc.rpm libtdb-devel-3.2.4-4.3.i586.rpm libtdb-devel-3.2.4-4.3.ppc.rpm libtdb-devel-3.2.4-4.3.x86_64.rpm libtdb1-3.2.4-4.3.i586.rpm libtdb1-3.2.4-4.3.ppc.rpm libtdb1-3.2.4-4.3.x86_64.rpm libtdb1-32bit-3.2.4-4.3.x86_64.rpm libtdb1-64bit-3.2.4-4.3.ppc.rpm libwbclient-devel-3.2.4-4.3.i586.rpm libwbclient-devel-3.2.4-4.3.ppc.rpm libwbclient-devel-3.2.4-4.3.x86_64.rpm libwbclient0-3.2.4-4.3.i586.rpm libwbclient0-3.2.4-4.3.ppc.rpm libwbclient0-3.2.4-4.3.x86_64.rpm libwbclient0-32bit-3.2.4-4.3.x86_64.rpm libwbclient0-64bit-3.2.4-4.3.ppc.rpm samba-3.2.4-4.3.i586.rpm samba-3.2.4-4.3.ppc.rpm samba-3.2.4-4.3.x86_64.rpm samba-32bit-3.2.4-4.3.x86_64.rpm samba-64bit-3.2.4-4.3.ppc.rpm samba-client-3.2.4-4.3.i586.rpm samba-client-3.2.4-4.3.ppc.rpm samba-client-3.2.4-4.3.x86_64.rpm samba-client-32bit-3.2.4-4.3.x86_64.rpm samba-client-64bit-3.2.4-4.3.ppc.rpm samba-devel-3.2.4-4.3.i586.rpm samba-devel-3.2.4-4.3.ppc.rpm samba-devel-3.2.4-4.3.x86_64.rpm samba-krb-printing-3.2.4-4.3.i586.rpm samba-krb-printing-3.2.4-4.3.ppc.rpm samba-krb-printing-3.2.4-4.3.x86_64.rpm samba-winbind-3.2.4-4.3.i586.rpm samba-winbind-3.2.4-4.3.ppc.rpm samba-winbind-3.2.4-4.3.x86_64.rpm samba-winbind-32bit-3.2.4-4.3.x86_64.rpm samba-winbind-64bit-3.2.4-4.3.ppc.rpm phpMyAdmin openSUSE 11.0 This is a version upgrade to phpMyAdmin 2.11.9.4 to fix various security bugs. (CVE-2008-2960, CVE-2008-3197, CVE-2008-1149, CVE-2008-1567, CVE-2008-1924, CVE-2008-4096, CVE-2008-4326, CVE-2008-5621, CVE-2008-5622) phpMyAdmin-2.11.9.4-0.1.noarch.rpm OpenOffice_org openSUSE 11.0 This update fixes an integer overflow in the WMF handler (CVE-2008-2237) and multiple bugs in the EMF parser (CVE-2008-2238). Additionally multiple non-security fixes were added. OpenOffice_org-2.4.0.14-1.2.i586.rpm OpenOffice_org-2.4.0.14-1.2.ppc.rpm OpenOffice_org-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-af-2.4.0.14-1.2.noarch.rpm OpenOffice_org-ar-2.4.0.14-1.2.noarch.rpm OpenOffice_org-base-2.4.0.14-1.2.i586.rpm OpenOffice_org-base-2.4.0.14-1.2.ppc.rpm OpenOffice_org-base-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-be-BY-2.4.0.14-1.2.noarch.rpm OpenOffice_org-bg-2.4.0.14-1.2.noarch.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.2.i586.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.2.ppc.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-ca-2.4.0.14-1.2.noarch.rpm OpenOffice_org-calc-2.4.0.14-1.2.i586.rpm OpenOffice_org-calc-2.4.0.14-1.2.ppc.rpm OpenOffice_org-calc-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-cs-2.4.0.14-1.2.noarch.rpm OpenOffice_org-cy-2.4.0.14-1.2.noarch.rpm OpenOffice_org-da-2.4.0.14-1.2.noarch.rpm OpenOffice_org-de-2.4.0.14-1.2.noarch.rpm OpenOffice_org-devel-2.4.0.14-1.2.i586.rpm OpenOffice_org-devel-2.4.0.14-1.2.ppc.rpm OpenOffice_org-devel-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-draw-2.4.0.14-1.2.i586.rpm OpenOffice_org-draw-2.4.0.14-1.2.ppc.rpm OpenOffice_org-draw-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-el-2.4.0.14-1.2.noarch.rpm OpenOffice_org-en-GB-2.4.0.14-1.2.noarch.rpm OpenOffice_org-es-2.4.0.14-1.2.noarch.rpm OpenOffice_org-et-2.4.0.14-1.2.noarch.rpm OpenOffice_org-fi-2.4.0.14-1.2.noarch.rpm OpenOffice_org-filters-2.4.0.14-1.2.i586.rpm OpenOffice_org-filters-2.4.0.14-1.2.ppc.rpm OpenOffice_org-filters-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-fr-2.4.0.14-1.2.noarch.rpm OpenOffice_org-gnome-2.4.0.14-1.2.i586.rpm OpenOffice_org-gnome-2.4.0.14-1.2.ppc.rpm OpenOffice_org-gnome-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-gu-IN-2.4.0.14-1.2.noarch.rpm OpenOffice_org-hi-IN-2.4.0.14-1.2.noarch.rpm OpenOffice_org-hr-2.4.0.14-1.2.noarch.rpm OpenOffice_org-hu-2.4.0.14-1.2.noarch.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.2.i586.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.2.ppc.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-impress-2.4.0.14-1.2.i586.rpm OpenOffice_org-impress-2.4.0.14-1.2.ppc.rpm OpenOffice_org-impress-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-it-2.4.0.14-1.2.noarch.rpm OpenOffice_org-ja-2.4.0.14-1.2.noarch.rpm OpenOffice_org-kde-2.4.0.14-1.2.i586.rpm OpenOffice_org-kde-2.4.0.14-1.2.ppc.rpm OpenOffice_org-kde-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-km-2.4.0.14-1.2.noarch.rpm OpenOffice_org-ko-2.4.0.14-1.2.noarch.rpm OpenOffice_org-lt-2.4.0.14-1.2.noarch.rpm OpenOffice_org-mailmerge-2.4.0.14-1.2.i586.rpm OpenOffice_org-mailmerge-2.4.0.14-1.2.ppc.rpm OpenOffice_org-mailmerge-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-math-2.4.0.14-1.2.i586.rpm OpenOffice_org-math-2.4.0.14-1.2.ppc.rpm OpenOffice_org-math-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-mk-2.4.0.14-1.2.noarch.rpm OpenOffice_org-mono-2.4.0.14-1.2.i586.rpm OpenOffice_org-mono-2.4.0.14-1.2.ppc.rpm OpenOffice_org-mono-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-nb-2.4.0.14-1.2.noarch.rpm OpenOffice_org-nl-2.4.0.14-1.2.noarch.rpm OpenOffice_org-nn-2.4.0.14-1.2.noarch.rpm OpenOffice_org-officebean-2.4.0.14-1.2.i586.rpm OpenOffice_org-officebean-2.4.0.14-1.2.ppc.rpm OpenOffice_org-officebean-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-pa-IN-2.4.0.14-1.2.noarch.rpm OpenOffice_org-pl-2.4.0.14-1.2.noarch.rpm OpenOffice_org-pt-2.4.0.14-1.2.noarch.rpm OpenOffice_org-pt-BR-2.4.0.14-1.2.noarch.rpm OpenOffice_org-pyuno-2.4.0.14-1.2.i586.rpm OpenOffice_org-pyuno-2.4.0.14-1.2.ppc.rpm OpenOffice_org-pyuno-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-ru-2.4.0.14-1.2.noarch.rpm OpenOffice_org-rw-2.4.0.14-1.2.noarch.rpm OpenOffice_org-sdk-2.4.0.14-1.2.i586.rpm OpenOffice_org-sdk-2.4.0.14-1.2.ppc.rpm OpenOffice_org-sdk-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.2.i586.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.2.ppc.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-sk-2.4.0.14-1.2.noarch.rpm OpenOffice_org-sl-2.4.0.14-1.2.noarch.rpm OpenOffice_org-sr-CS-2.4.0.14-1.2.noarch.rpm OpenOffice_org-st-2.4.0.14-1.2.noarch.rpm OpenOffice_org-sv-2.4.0.14-1.2.noarch.rpm OpenOffice_org-testtool-2.4.0.14-1.2.i586.rpm OpenOffice_org-testtool-2.4.0.14-1.2.ppc.rpm OpenOffice_org-testtool-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-tr-2.4.0.14-1.2.noarch.rpm OpenOffice_org-ts-2.4.0.14-1.2.noarch.rpm OpenOffice_org-vi-2.4.0.14-1.2.noarch.rpm OpenOffice_org-writer-2.4.0.14-1.2.i586.rpm OpenOffice_org-writer-2.4.0.14-1.2.ppc.rpm OpenOffice_org-writer-2.4.0.14-1.2.x86_64.rpm OpenOffice_org-xh-2.4.0.14-1.2.noarch.rpm OpenOffice_org-zh-CN-2.4.0.14-1.2.noarch.rpm OpenOffice_org-zh-TW-2.4.0.14-1.2.noarch.rpm OpenOffice_org-zu-2.4.0.14-1.2.noarch.rpm strongswan openSUSE 11.0 This update of strongswan fixes a denial of service problem that occurs while parsing a IKE_SA_INIT message dursing key exchange. This allows an remote attacker to crash the daemon. (CVE-2008-4551) strongswan-4.2.1-11.4.i586.rpm strongswan-4.2.1-11.4.ppc.rpm strongswan-4.2.1-11.4.x86_64.rpm strongswan-doc-4.2.1-11.4.i586.rpm strongswan-doc-4.2.1-11.4.ppc.rpm strongswan-doc-4.2.1-11.4.x86_64.rpm imp openSUSE 11.0 This update fixes a XSS vulnerability in imp. (CVE-2008-4182) imp-4.1.4-70.2.noarch.rpm clamav openSUSE 11.0 Various bugs such as a get_unicode_name() off-by-one buffer overflow, a bug in URL parsing of phishing checks as well as minor other issues have been fixed in clamav. (CVE-2008-5050) clamav-0.94.1-2.1.i586.rpm clamav-0.94.1-2.1.ppc.rpm clamav-0.94.1-2.1.x86_64.rpm clamav-db-0.94.1-2.1.i586.rpm clamav-db-0.94.1-2.1.ppc.rpm clamav-db-0.94.1-2.1.x86_64.rpm acroread openSUSE 11.0 The acroread package was update to fix several security vulnerabilities in the JavaScript engine. (CVE-2008-2992, CVE-2008-2549, CVE-2008-4812, CVE-2008-4813, CVE-2008-4817, CVE-2008-4816, CVE-2008-4814, CVE-2008-4815) acroread-8.1.3-1.1.i586.rpm htop openSUSE 11.0 insufficient character filters in htop when displaying commands allowed programs that rewrite their program name to inject escape sequences (CVE-2008-5076). htop-0.7-32.2.i586.rpm htop-0.7-32.2.ppc.rpm htop-0.7-32.2.x86_64.rpm cups openSUSE 11.0 local users could crash cups by adding a large number of RSS subscriptions (CVE-2008-5183, CVE-2008-5184). cups-1.3.7-25.4.i586.rpm cups-1.3.7-25.4.ppc.rpm cups-1.3.7-25.4.x86_64.rpm cups-client-1.3.7-25.4.i586.rpm cups-client-1.3.7-25.4.ppc.rpm cups-client-1.3.7-25.4.x86_64.rpm cups-devel-1.3.7-25.4.i586.rpm cups-devel-1.3.7-25.4.ppc.rpm cups-devel-1.3.7-25.4.x86_64.rpm cups-libs-1.3.7-25.4.i586.rpm cups-libs-1.3.7-25.4.ppc.rpm cups-libs-1.3.7-25.4.x86_64.rpm cups-libs-32bit-1.3.7-25.4.x86_64.rpm cups-libs-64bit-1.3.7-25.4.ppc.rpm MozillaThunderbird openSUSE 11.0 This update brings the Mozilla Thunderbird E-Mail program to version 2.0.0.18. It fixes following security problems: CVE-2008-5012 / MFSA 2008-48: Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are not directly accessible to the attacker. NOTE: this issue can be leveraged to enumerate software on the client by performing redirections related to moz-icon. CVE-2008-5014 / MFSA 2008-50 jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native object, which triggers an assertion failure related to the OBJ_IS_NATIVE function. CVE-2008-5016 / MFSA 2008-52: The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion failure or other consequences. CVE-2008-5017 / MFSA 2008-52: Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors. CVE-2008-5018 / MFSA 2008-52: The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class. CVE-2008-5019 / MFSA 2008-53: The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x before 2.0.0.18 allows remote attackers to violate the same origin policy to conduct cross-site scripting (XSS) attacks and execute arbitrary JavaScript with chrome privileges via unknown vectors. CVE-2008-5021 / MFSA 2008-55: nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory. CVE-2008-5022 / MFSA 2008-56: The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners, which bypass the inner window check. CVE-2008-5024 / MFSA 2008-58: Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, allows remote attackers to conduct XML injection attacks via the default namespace in an E4X document. CVE-2008-5052 / MFSA 2008-52: The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js. MFSA 2008-59: Mozilla developer Boris Zbarsky reported that a malicious mail message might be able to glean personal information about the recipient from the mailbox URI (such as computer account name) if the mail recipient has enabled JavaScript in mail. If a malicious mail is forwarded "in-line" to a recipient who has enabled JavaScript, then comments added by the forwarder could be accessed by scripts in the message and potentially revealed to the original malicious author if that message has also been allowed to load remote content. Scripts in mail messages no longer have access to the DOM properties .documentURI and .textContent. MozillaThunderbird-2.0.0.18-1.1.i586.rpm MozillaThunderbird-2.0.0.18-1.1.ppc.rpm MozillaThunderbird-2.0.0.18-1.1.x86_64.rpm MozillaThunderbird-devel-2.0.0.18-1.1.i586.rpm MozillaThunderbird-devel-2.0.0.18-1.1.ppc.rpm MozillaThunderbird-devel-2.0.0.18-1.1.x86_64.rpm MozillaThunderbird-translations-2.0.0.18-1.1.i586.rpm MozillaThunderbird-translations-2.0.0.18-1.1.ppc.rpm MozillaThunderbird-translations-2.0.0.18-1.1.x86_64.rpm horde openSUSE 11.0 This update of horde fixes the following vulnerabilities: - CVE-2008-1284: directory traversal allows authenticated user to access and execute arbitrary files - CVE-2008-3330: remotely exploitable XSS - CVE-2008-3824: remotely exploitable XSS horde-3.1.4-121.2.noarch.rpm mozilla-xulrunner181 openSUSE 11.0 This update backports security fixes to the Mozilla XULRunner engine. It fixes following security issues: CVE-2008-0017 / MFSA 2008-54: The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP index response with a crafted 200 header, which triggers memory corruption and a buffer overflow. CVE-2008-5012 / MFSA 2008-48: Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are not directly accessible to the attacker. NOTE: this issue can be leveraged to enumerate software on the client by performing redirections related to moz-icon. CVE-2008-5013 / MFSA 2008-49: Mozilla Firefox 2.x before 2.0.0.18 and SeaMonkey 1.x before 1.1.13 do not properly check when the Flash module has been dynamically unloaded properly, which allows remote attackers to execute arbitrary code via a crafted SWF file that "dynamically unloads itself from an outside JavaScript function," which triggers an access of an expired memory address. CVE-2008-5014 / MFSA 2008-50: jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native object, which triggers an assertion failure related to the OBJ_IS_NATIVE function. CVE-2008-5016 / MFSA 2008-52: The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion failure or other consequences. CVE-2008-5017 / MFSA 2008-52: Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors. CVE-2008-5018 / MFSA 2008-52: The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class. CVE-2008-5021 / MFSA 2008-55: nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory. CVE-2008-5022 / MFSA 2008-56: The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners, which bypass the inner window check. CVE-2008-5023 / MFSA 2008-57: Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS property in a signed JAR file. CVE-2008-5024 / MFSA 2008-58: Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, allows remote attackers to conduct XML injection attacks via the default namespace in an E4X document. CVE-2008-5052 / MFSA 2008-52: The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js. epiphany-2.22.1.1-25.2.i586.rpm epiphany-2.22.1.1-25.2.ppc.rpm epiphany-2.22.1.1-25.2.x86_64.rpm epiphany-devel-2.22.1.1-25.2.i586.rpm epiphany-devel-2.22.1.1-25.2.ppc.rpm epiphany-devel-2.22.1.1-25.2.x86_64.rpm epiphany-doc-2.22.1.1-25.2.i586.rpm epiphany-doc-2.22.1.1-25.2.ppc.rpm epiphany-doc-2.22.1.1-25.2.x86_64.rpm epiphany-extensions-2.22.0-37.2.i586.rpm epiphany-extensions-2.22.0-37.2.ppc.rpm epiphany-extensions-2.22.0-37.2.x86_64.rpm mozilla-xulrunner181-1.8.1.18-0.1.i586.rpm mozilla-xulrunner181-1.8.1.18-0.1.ppc.rpm mozilla-xulrunner181-1.8.1.18-0.1.x86_64.rpm mozilla-xulrunner181-32bit-1.8.1.18-0.1.x86_64.rpm mozilla-xulrunner181-64bit-1.8.1.18-0.1.ppc.rpm mozilla-xulrunner181-devel-1.8.1.18-0.1.i586.rpm mozilla-xulrunner181-devel-1.8.1.18-0.1.ppc.rpm mozilla-xulrunner181-devel-1.8.1.18-0.1.x86_64.rpm mozilla-xulrunner181-l10n-1.8.1.18-0.1.i586.rpm mozilla-xulrunner181-l10n-1.8.1.18-0.1.ppc.rpm mozilla-xulrunner181-l10n-1.8.1.18-0.1.x86_64.rpm seamonkey openSUSE 11.0 This update brings the Mozilla Seamonkey browser to version 1.1.13. It fixes following security issues: CVE-2008-0017 / MFSA 2008-54: The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP index response with a crafted 200 header, which triggers memory corruption and a buffer overflow. CVE-2008-5012 / MFSA 2008-48: Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are not directly accessible to the attacker. NOTE: this issue can be leveraged to enumerate software on the client by performing redirections related to moz-icon. CVE-2008-5013 / MFSA 2008-49: Mozilla Firefox 2.x before 2.0.0.18 and SeaMonkey 1.x before 1.1.13 do not properly check when the Flash module has been dynamically unloaded properly, which allows remote attackers to execute arbitrary code via a crafted SWF file that "dynamically unloads itself from an outside JavaScript function," which triggers an access of an expired memory address. CVE-2008-5014 / MFSA 2008-50 jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native object, which triggers an assertion failure related to the OBJ_IS_NATIVE function. CVE-2008-5016 / MFSA 2008-52: The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion failure or other consequences. CVE-2008-5017 / MFSA 2008-52: Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors. CVE-2008-5018 / MFSA 2008-52: The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class. CVE-2008-5021 / MFSA 2008-55: nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory. CVE-2008-5022 / MFSA 2008-56: The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners, which bypass the inner window check. CVE-2008-5023 / MFSA 2008-57: Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS property in a signed JAR file. CVE-2008-5024 / MFSA 2008-58: Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, allows remote attackers to conduct XML injection attacks via the default namespace in an E4X document. CVE-2008-5052 / MFSA 2008-52: The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js. seamonkey-1.1.13-1.1.i586.rpm seamonkey-1.1.13-1.1.ppc.rpm seamonkey-1.1.13-1.1.x86_64.rpm seamonkey-dom-inspector-1.1.13-1.1.i586.rpm seamonkey-dom-inspector-1.1.13-1.1.ppc.rpm seamonkey-dom-inspector-1.1.13-1.1.x86_64.rpm seamonkey-irc-1.1.13-1.1.i586.rpm seamonkey-irc-1.1.13-1.1.ppc.rpm seamonkey-irc-1.1.13-1.1.x86_64.rpm seamonkey-mail-1.1.13-1.1.i586.rpm seamonkey-mail-1.1.13-1.1.ppc.rpm seamonkey-mail-1.1.13-1.1.x86_64.rpm seamonkey-spellchecker-1.1.13-1.1.i586.rpm seamonkey-spellchecker-1.1.13-1.1.ppc.rpm seamonkey-spellchecker-1.1.13-1.1.x86_64.rpm seamonkey-venkman-1.1.13-1.1.i586.rpm seamonkey-venkman-1.1.13-1.1.ppc.rpm seamonkey-venkman-1.1.13-1.1.x86_64.rpm yast2-backup openSUSE 11.0 This updated of yast2-backup fixes a sellcode injection vulnerability and improves handling of symlinks for the backup process. yast2-backup-2.16.6-0.1.noarch.rpm jasper openSUSE 11.0 Multiple, potentially dangerous integer overflows, buffer overflows and a problem with temporary files have been fixed (CVE-2008-3520, CVE-2008-3521, CVE-2008-3522). jasper-1.900.1-98.3.i586.rpm jasper-1.900.1-98.3.ppc.rpm jasper-1.900.1-98.3.x86_64.rpm libjasper-1.900.1-98.3.i586.rpm libjasper-1.900.1-98.3.ppc.rpm libjasper-1.900.1-98.3.x86_64.rpm libjasper-32bit-1.900.1-98.3.x86_64.rpm libjasper-64bit-1.900.1-98.3.ppc.rpm libjasper-devel-1.900.1-98.3.i586.rpm libjasper-devel-1.900.1-98.3.ppc.rpm libjasper-devel-1.900.1-98.3.x86_64.rpm MozillaFirefox openSUSE 11.0 This update brings the Mozilla Firefox browser to version 3.0.4. It fixes following security issues: CVE-2008-0017 / MFSA 2008-54: The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP index response with a crafted 200 header, which triggers memory corruption and a buffer overflow. CVE-2008-5012 / MFSA 2008-48: Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly change the source URI when processing a canvas element and an HTTP redirect, which allows remote attackers to bypass the same origin policy and access arbitrary images that are not directly accessible to the attacker. NOTE: this issue can be leveraged to enumerate software on the client by performing redirections related to moz-icon. CVE-2008-5013 / MFSA 2008-49: Mozilla Firefox 2.x before 2.0.0.18 and SeaMonkey 1.x before 1.1.13 do not properly check when the Flash module has been dynamically unloaded properly, which allows remote attackers to execute arbitrary code via a crafted SWF file that "dynamically unloads itself from an outside JavaScript function," which triggers an access of an expired memory address. CVE-2008-5014 / MFSA 2008-50 jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying the window.__proto__.__proto__ object in a way that causes a lock on a non-native object, which triggers an assertion failure related to the OBJ_IS_NATIVE function. CVE-2008-5015 / MFSA 2008-51: Mozilla Firefox 3.x before 3.0.4 assigns chrome privileges to a file: URI when it is accessed in the same tab from a chrome or privileged about: page, which makes it easier for user-assisted attackers to execute arbitrary JavaScript with chrome privileges via malicious code in a file that has already been saved on the local system. CVE-2008-5016 / MFSA 2008-52: The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via multiple vectors that trigger an assertion failure or other consequences. CVE-2008-5017 / MFSA 2008-52: Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors. CVE-2008-5018 / MFSA 2008-52: The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via vectors related to "insufficient class checking" in the Date class. CVE-2008-5019 / MFSA 2008-53: The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x before 2.0.0.18 allows remote attackers to violate the same origin policy to conduct cross-site scripting (XSS) attacks and execute arbitrary JavaScript with chrome privileges via unknown vectors. CVE-2008-5021 / MFSA 2008-55: nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a file input element while it is still being initialized, then using the blur method to access uninitialized memory. CVE-2008-5022 / MFSA 2008-56: The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners, which bypass the inner window check. CVE-2008-5023 / MFSA 2008-57: Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to bypass the protection mechanism for codebase principals and execute arbitrary script via the -moz-binding CSS property in a signed JAR file. CVE-2008-5024 / MFSA 2008-58: Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 do not properly escape quote characters used for XML processing, allows remote attackers to conduct XML injection attacks via the default namespace in an E4X document. CVE-2008-5052 / MFSA 2008-52: The AppendAttributeValue function in the JavaScript engine in Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger memory corruption, as demonstrated by e4x/extensions/regress-410192.js. MozillaFirefox-3.0.4-3.1.i586.rpm MozillaFirefox-3.0.4-3.1.ppc.rpm MozillaFirefox-3.0.4-3.1.x86_64.rpm MozillaFirefox-translations-3.0.4-3.1.i586.rpm MozillaFirefox-translations-3.0.4-3.1.ppc.rpm MozillaFirefox-translations-3.0.4-3.1.x86_64.rpm mozilla-xulrunner190-1.9.0.4-2.1.i586.rpm mozilla-xulrunner190-1.9.0.4-2.1.ppc.rpm mozilla-xulrunner190-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.4-2.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.4-2.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.4-2.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.4-2.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.4-2.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.4-2.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.4-2.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.4-2.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.4-2.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.4-2.1.ppc.rpm hal openSUSE 11.0 This update contains serveral fixes: HAL now gets storage.model via a ioctl instead from sysfs if the storage device use the SCSI-layer to prevent truncated strings (bnc#397871), fix internal handling of PropertyModified signal (fd.o#16427), fix battery handling on PPC (PMU) machines to prevent list the same battery multiple times (fd.o#15482), fix some memory leaks (fd.o#16376 and other), fix handling of volume devices (dont set storage.model), fixed rc file (bnc#405332), fixed keymapping for machines using the ThinkPad kernel module (bnc#382855); Sony (bnc#410730); HP (bnc#411189,#398846); a Toshiba A110 (bnc#430263) and Dell (bnc#410174), fixed interface Lock() handling to prevent locks get not removed if the lock owner dies or exit without calling Unlock(), fix generation of UDIs to prevent problems with invalid DBus paths causing crashes (fd.o#16040), fix brightness handling for some machines (bnc#42968) which handle brightness keys directly in hardware/bios, enable support for the ppdev subsystem (bnc#235059) including ACL handling, mark another CDMA device as modem (bnc#405332). hal-0.5.11-8.2.i586.rpm hal-0.5.11-8.2.ppc.rpm hal-0.5.11-8.2.x86_64.rpm hal-32bit-0.5.11-8.2.x86_64.rpm hal-64bit-0.5.11-8.2.ppc.rpm hal-devel-0.5.11-8.2.i586.rpm hal-devel-0.5.11-8.2.ppc.rpm hal-devel-0.5.11-8.2.x86_64.rpm hal-doc-0.5.11-9.2.i586.rpm hal-doc-0.5.11-9.2.ppc.rpm hal-doc-0.5.11-9.2.x86_64.rpm xorg-x11 openSUSE 11.0 Due to changes in mktemp's behaviour, the X Font Server (xfs) startup in /etc/init.d/xfs did no longer work, thereby preventing xfs to be started. xorg-x11-7.3-96.4.i586.rpm xorg-x11-7.3-96.4.ppc.rpm xorg-x11-7.3-96.4.x86_64.rpm openvpn openSUSE 11.0 This update fixes pid file related start/stop problems in the openvpn init script. openvpn-2.0.9-96.2.i586.rpm openvpn-2.0.9-96.2.ppc.rpm openvpn-2.0.9-96.2.x86_64.rpm openvpn-auth-pam-plugin-2.0.9-96.2.i586.rpm openvpn-auth-pam-plugin-2.0.9-96.2.ppc.rpm openvpn-auth-pam-plugin-2.0.9-96.2.x86_64.rpm openvpn-down-root-plugin-2.0.9-96.2.i586.rpm openvpn-down-root-plugin-2.0.9-96.2.ppc.rpm openvpn-down-root-plugin-2.0.9-96.2.x86_64.rpm rsh openSUSE 11.0 in.rexecd was not using the system wide limits, potentially allowing remote rexec users to exhaust all system resources. This patch fixes it. rsh-0.17-680.2.i586.rpm rsh-0.17-680.2.ppc.rpm rsh-0.17-680.2.x86_64.rpm rsh-server-0.17-680.2.i586.rpm rsh-server-0.17-680.2.ppc.rpm rsh-server-0.17-680.2.x86_64.rpm valgrind openSUSE 11.0 valgrind reads a file .valgrindrc in the current directory. Therefore local users could place such a file a world writable directory such as /tmp and influence other users' valgrind when it's executed there (CVE-2008-4865). valgrind-3.3.0-43.2.i586.rpm valgrind-3.3.0-43.2.ppc.rpm valgrind-3.3.0-43.2.x86_64.rpm valgrind-devel-3.3.0-43.2.i586.rpm valgrind-devel-3.3.0-43.2.ppc.rpm valgrind-devel-3.3.0-43.2.x86_64.rpm apache2 openSUSE 11.0 This updated fixes a problem in mod_proxy_http that was introduced by previous security update. apache2-2.2.8-28.4.i586.rpm apache2-2.2.8-28.4.ppc.rpm apache2-2.2.8-28.4.x86_64.rpm apache2-devel-2.2.8-28.4.i586.rpm apache2-devel-2.2.8-28.4.ppc.rpm apache2-devel-2.2.8-28.4.x86_64.rpm apache2-doc-2.2.8-28.4.i586.rpm apache2-doc-2.2.8-28.4.ppc.rpm apache2-doc-2.2.8-28.4.x86_64.rpm apache2-example-pages-2.2.8-28.4.i586.rpm apache2-example-pages-2.2.8-28.4.ppc.rpm apache2-example-pages-2.2.8-28.4.x86_64.rpm apache2-prefork-2.2.8-28.4.i586.rpm apache2-prefork-2.2.8-28.4.ppc.rpm apache2-prefork-2.2.8-28.4.x86_64.rpm apache2-utils-2.2.8-28.4.i586.rpm apache2-utils-2.2.8-28.4.ppc.rpm apache2-utils-2.2.8-28.4.x86_64.rpm apache2-worker-2.2.8-28.4.i586.rpm apache2-worker-2.2.8-28.4.ppc.rpm apache2-worker-2.2.8-28.4.x86_64.rpm java-1_4_2-sun openSUSE 11.0 This update changes the timezone information in Sun Java to 2008g. This includes changes in Brazilia, Mauritius, Moroco, Gaza, Pakistan, Turkey and Argentina. java-1_5_0-sun-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-1.5.0_update16-1.3.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-alsa-1.5.0_update16-1.3.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-demo-1.5.0_update16-1.3.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-devel-1.5.0_update16-1.3.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update16-1.3.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-src-1.5.0_update16-1.3.i586.rpm java-1_5_0-sun-src-1.5.0_update16-1.3.x86_64.rpm java-1_6_0-sun-1.6.0.u7-1.3.i586.rpm java-1_6_0-sun-1.6.0.u7-1.3.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u7-1.3.i586.rpm java-1_6_0-sun-alsa-1.6.0.u7-1.3.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u7-1.3.i586.rpm java-1_6_0-sun-demo-1.6.0.u7-1.3.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u7-1.3.i586.rpm java-1_6_0-sun-devel-1.6.0.u7-1.3.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u7-1.3.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u7-1.3.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u7-1.3.i586.rpm pdns-recursor openSUSE 11.0 PowerDNS recursor was looking in the wrong path for its configuration file. pdns-recursor-3.1.5-14.2.i586.rpm pdns-recursor-3.1.5-14.2.ppc.rpm pdns-recursor-3.1.5-14.2.x86_64.rpm libxml2 openSUSE 11.0 libxml2 could run into an endless loop when processing specially crafted XML files (CVE-2008-4225) libxml2-2.6.32-11.5.i586.rpm libxml2-2.6.32-11.5.ppc.rpm libxml2-2.6.32-11.5.x86_64.rpm libxml2-32bit-2.6.32-11.5.x86_64.rpm libxml2-64bit-2.6.32-11.5.ppc.rpm libxml2-devel-2.6.32-11.5.i586.rpm libxml2-devel-2.6.32-11.5.ppc.rpm libxml2-devel-2.6.32-11.5.x86_64.rpm libxml2-devel-32bit-2.6.32-11.5.x86_64.rpm libxml2-devel-64bit-2.6.32-11.5.ppc.rpm libxml2-doc-2.6.32-11.5.i586.rpm libxml2-doc-2.6.32-11.5.ppc.rpm libxml2-doc-2.6.32-11.5.x86_64.rpm lynx openSUSE 11.0 This update of lynx fixes a security bug that can be exploited by remote attackers to execute arbitrary commands when advanced mode is enabled and lynx is used as URL handler (CVE-2008-4690) lynx-2.8.6-109.2.i586.rpm lynx-2.8.6-109.2.ppc.rpm lynx-2.8.6-109.2.x86_64.rpm rubygem-activerecord openSUSE 11.0 Missing sanity checks of the :limit and :offset parameters in SQL queries could potentially be exploited to conduct SQL inection attacks (CVE-2008-4094). rubygem-activerecord-1.15.5-71.2.i586.rpm rubygem-activerecord-1.15.5-71.2.ppc.rpm rubygem-activerecord-1.15.5-71.2.x86_64.rpm rubygem-actionpack openSUSE 11.0 Missing input sanitation in rubygem-actionpack allowed remote attackers to inject arbitrary HTTP headers via specially crafted URLs (CVE-2008-5189). rubygem-actionpack-1.13.5-71.2.i586.rpm rubygem-actionpack-1.13.5-71.2.ppc.rpm rubygem-actionpack-1.13.5-71.2.x86_64.rpm imlib2 openSUSE 11.0 A security problem was fixed in imlib2 where loading a specific XPM file could corrupt memory. (CVE-2008-5187) imlib2-1.4.0-46.5.i586.rpm imlib2-1.4.0-46.5.ppc.rpm imlib2-1.4.0-46.5.x86_64.rpm imlib2-devel-1.4.0-46.5.i586.rpm imlib2-devel-1.4.0-46.5.ppc.rpm imlib2-devel-1.4.0-46.5.x86_64.rpm imlib2-filters-1.4.0-46.5.i586.rpm imlib2-filters-1.4.0-46.5.ppc.rpm imlib2-filters-1.4.0-46.5.x86_64.rpm imlib2-loaders-1.4.0-46.5.i586.rpm imlib2-loaders-1.4.0-46.5.ppc.rpm imlib2-loaders-1.4.0-46.5.x86_64.rpm apache2-mod_php5 openSUSE 11.0 This update fixes a buffer overflow in php_imap.c that uses an old IMAP API. This bug can be exploited to execute arbitrary code remotely via long IMAP requests. (CVE-2008-2829) apache2-mod_php5-5.2.6-0.6.i586.rpm apache2-mod_php5-5.2.6-0.6.ppc.rpm apache2-mod_php5-5.2.6-0.6.x86_64.rpm php5-5.2.6-0.6.i586.rpm php5-5.2.6-0.6.ppc.rpm php5-5.2.6-0.6.x86_64.rpm php5-bcmath-5.2.6-0.6.i586.rpm php5-bcmath-5.2.6-0.6.ppc.rpm php5-bcmath-5.2.6-0.6.x86_64.rpm php5-bz2-5.2.6-0.6.i586.rpm php5-bz2-5.2.6-0.6.ppc.rpm php5-bz2-5.2.6-0.6.x86_64.rpm php5-calendar-5.2.6-0.6.i586.rpm php5-calendar-5.2.6-0.6.ppc.rpm php5-calendar-5.2.6-0.6.x86_64.rpm php5-ctype-5.2.6-0.6.i586.rpm php5-ctype-5.2.6-0.6.ppc.rpm php5-ctype-5.2.6-0.6.x86_64.rpm php5-curl-5.2.6-0.6.i586.rpm php5-curl-5.2.6-0.6.ppc.rpm php5-curl-5.2.6-0.6.x86_64.rpm php5-dba-5.2.6-0.6.i586.rpm php5-dba-5.2.6-0.6.ppc.rpm php5-dba-5.2.6-0.6.x86_64.rpm php5-dbase-5.2.6-0.6.i586.rpm php5-dbase-5.2.6-0.6.ppc.rpm php5-dbase-5.2.6-0.6.x86_64.rpm php5-devel-5.2.6-0.6.i586.rpm php5-devel-5.2.6-0.6.ppc.rpm php5-devel-5.2.6-0.6.x86_64.rpm php5-dom-5.2.6-0.6.i586.rpm php5-dom-5.2.6-0.6.ppc.rpm php5-dom-5.2.6-0.6.x86_64.rpm php5-exif-5.2.6-0.6.i586.rpm php5-exif-5.2.6-0.6.ppc.rpm php5-exif-5.2.6-0.6.x86_64.rpm php5-fastcgi-5.2.6-0.6.i586.rpm php5-fastcgi-5.2.6-0.6.ppc.rpm php5-fastcgi-5.2.6-0.6.x86_64.rpm php5-ftp-5.2.6-0.6.i586.rpm php5-ftp-5.2.6-0.6.ppc.rpm php5-ftp-5.2.6-0.6.x86_64.rpm php5-gd-5.2.6-0.6.i586.rpm php5-gd-5.2.6-0.6.ppc.rpm php5-gd-5.2.6-0.6.x86_64.rpm php5-gettext-5.2.6-0.6.i586.rpm php5-gettext-5.2.6-0.6.ppc.rpm php5-gettext-5.2.6-0.6.x86_64.rpm php5-gmp-5.2.6-0.6.i586.rpm php5-gmp-5.2.6-0.6.ppc.rpm php5-gmp-5.2.6-0.6.x86_64.rpm php5-hash-5.2.6-0.6.i586.rpm php5-hash-5.2.6-0.6.ppc.rpm php5-hash-5.2.6-0.6.x86_64.rpm php5-iconv-5.2.6-0.6.i586.rpm php5-iconv-5.2.6-0.6.ppc.rpm php5-iconv-5.2.6-0.6.x86_64.rpm php5-imap-5.2.6-0.6.i586.rpm php5-imap-5.2.6-0.6.ppc.rpm php5-imap-5.2.6-0.6.x86_64.rpm php5-json-5.2.6-0.6.i586.rpm php5-json-5.2.6-0.6.ppc.rpm php5-json-5.2.6-0.6.x86_64.rpm php5-ldap-5.2.6-0.6.i586.rpm php5-ldap-5.2.6-0.6.ppc.rpm php5-ldap-5.2.6-0.6.x86_64.rpm php5-mbstring-5.2.6-0.6.i586.rpm php5-mbstring-5.2.6-0.6.ppc.rpm php5-mbstring-5.2.6-0.6.x86_64.rpm php5-mcrypt-5.2.6-0.6.i586.rpm php5-mcrypt-5.2.6-0.6.ppc.rpm php5-mcrypt-5.2.6-0.6.x86_64.rpm php5-mysql-5.2.6-0.6.i586.rpm php5-mysql-5.2.6-0.6.ppc.rpm php5-mysql-5.2.6-0.6.x86_64.rpm php5-ncurses-5.2.6-0.6.i586.rpm php5-ncurses-5.2.6-0.6.ppc.rpm php5-ncurses-5.2.6-0.6.x86_64.rpm php5-odbc-5.2.6-0.6.i586.rpm php5-odbc-5.2.6-0.6.ppc.rpm php5-odbc-5.2.6-0.6.x86_64.rpm php5-openssl-5.2.6-0.6.i586.rpm php5-openssl-5.2.6-0.6.ppc.rpm php5-openssl-5.2.6-0.6.x86_64.rpm php5-pcntl-5.2.6-0.6.i586.rpm php5-pcntl-5.2.6-0.6.ppc.rpm php5-pcntl-5.2.6-0.6.x86_64.rpm php5-pdo-5.2.6-0.6.i586.rpm php5-pdo-5.2.6-0.6.ppc.rpm php5-pdo-5.2.6-0.6.x86_64.rpm php5-pear-5.2.6-0.6.i586.rpm php5-pear-5.2.6-0.6.ppc.rpm php5-pear-5.2.6-0.6.x86_64.rpm php5-pgsql-5.2.6-0.6.i586.rpm php5-pgsql-5.2.6-0.6.ppc.rpm php5-pgsql-5.2.6-0.6.x86_64.rpm php5-posix-5.2.6-0.6.i586.rpm php5-posix-5.2.6-0.6.ppc.rpm php5-posix-5.2.6-0.6.x86_64.rpm php5-pspell-5.2.6-0.6.i586.rpm php5-pspell-5.2.6-0.6.ppc.rpm php5-pspell-5.2.6-0.6.x86_64.rpm php5-readline-5.2.6-0.6.i586.rpm php5-readline-5.2.6-0.6.ppc.rpm php5-readline-5.2.6-0.6.x86_64.rpm php5-shmop-5.2.6-0.6.i586.rpm php5-shmop-5.2.6-0.6.ppc.rpm php5-shmop-5.2.6-0.6.x86_64.rpm php5-snmp-5.2.6-0.6.i586.rpm php5-snmp-5.2.6-0.6.ppc.rpm php5-snmp-5.2.6-0.6.x86_64.rpm php5-soap-5.2.6-0.6.i586.rpm php5-soap-5.2.6-0.6.ppc.rpm php5-soap-5.2.6-0.6.x86_64.rpm php5-sockets-5.2.6-0.6.i586.rpm php5-sockets-5.2.6-0.6.ppc.rpm php5-sockets-5.2.6-0.6.x86_64.rpm php5-sqlite-5.2.6-0.6.i586.rpm php5-sqlite-5.2.6-0.6.ppc.rpm php5-sqlite-5.2.6-0.6.x86_64.rpm php5-suhosin-5.2.6-0.6.i586.rpm php5-suhosin-5.2.6-0.6.ppc.rpm php5-suhosin-5.2.6-0.6.x86_64.rpm php5-sysvmsg-5.2.6-0.6.i586.rpm php5-sysvmsg-5.2.6-0.6.ppc.rpm php5-sysvmsg-5.2.6-0.6.x86_64.rpm php5-sysvsem-5.2.6-0.6.i586.rpm php5-sysvsem-5.2.6-0.6.ppc.rpm php5-sysvsem-5.2.6-0.6.x86_64.rpm php5-sysvshm-5.2.6-0.6.i586.rpm php5-sysvshm-5.2.6-0.6.ppc.rpm php5-sysvshm-5.2.6-0.6.x86_64.rpm php5-tidy-5.2.6-0.6.i586.rpm php5-tidy-5.2.6-0.6.ppc.rpm php5-tidy-5.2.6-0.6.x86_64.rpm php5-tokenizer-5.2.6-0.6.i586.rpm php5-tokenizer-5.2.6-0.6.ppc.rpm php5-tokenizer-5.2.6-0.6.x86_64.rpm php5-wddx-5.2.6-0.6.i586.rpm php5-wddx-5.2.6-0.6.ppc.rpm php5-wddx-5.2.6-0.6.x86_64.rpm php5-xmlreader-5.2.6-0.6.i586.rpm php5-xmlreader-5.2.6-0.6.ppc.rpm php5-xmlreader-5.2.6-0.6.x86_64.rpm php5-xmlrpc-5.2.6-0.6.i586.rpm php5-xmlrpc-5.2.6-0.6.ppc.rpm php5-xmlrpc-5.2.6-0.6.x86_64.rpm php5-xmlwriter-5.2.6-0.6.i586.rpm php5-xmlwriter-5.2.6-0.6.ppc.rpm php5-xmlwriter-5.2.6-0.6.x86_64.rpm php5-xsl-5.2.6-0.6.i586.rpm php5-xsl-5.2.6-0.6.ppc.rpm php5-xsl-5.2.6-0.6.x86_64.rpm php5-zip-5.2.6-0.6.i586.rpm php5-zip-5.2.6-0.6.ppc.rpm php5-zip-5.2.6-0.6.x86_64.rpm php5-zlib-5.2.6-0.6.i586.rpm php5-zlib-5.2.6-0.6.ppc.rpm php5-zlib-5.2.6-0.6.x86_64.rpm pam_krb5 openSUSE 11.0 Insufficient file access permissions checks allowed users to read Kerberos tickes of other users if pam_krb5 was configured with the option "existing_ticket" (CVE-2008-3825). pam_krb5-2.2.22-35.3.i586.rpm pam_krb5-2.2.22-35.3.ppc.rpm pam_krb5-2.2.22-35.3.x86_64.rpm pam_krb5-32bit-2.2.22-35.3.x86_64.rpm pam_krb5-64bit-2.2.22-35.3.ppc.rpm libsnmp15 openSUSE 11.0 Remote attackers could crash net-snmp via GETBULK-Request (CVE-2008-4309). In addition the following non-security issues have been fixed: - typo in error message (bnc#439857) - fix duplicate registration warnings on startup (bnc#326957) - container insert errors reproducable with shared ip setups (bnc#396773) - typo in the snmpd init script to really load all agents (bnc#415127) - logrotate config to restart the snmptrapd aswell (bnc#378069) libsnmp15-5.4.1-77.4.i586.rpm libsnmp15-5.4.1-77.4.ppc.rpm libsnmp15-5.4.1-77.4.x86_64.rpm net-snmp-5.4.1-77.4.i586.rpm net-snmp-5.4.1-77.4.ppc.rpm net-snmp-5.4.1-77.4.x86_64.rpm net-snmp-32bit-5.4.1-77.4.x86_64.rpm net-snmp-64bit-5.4.1-77.4.ppc.rpm net-snmp-devel-5.4.1-77.4.i586.rpm net-snmp-devel-5.4.1-77.4.ppc.rpm net-snmp-devel-5.4.1-77.4.x86_64.rpm net-snmp-devel-64bit-5.4.1-77.4.ppc.rpm perl-SNMP-5.4.1-77.4.i586.rpm perl-SNMP-5.4.1-77.4.ppc.rpm perl-SNMP-5.4.1-77.4.x86_64.rpm snmp-mibs-5.4.1-77.4.i586.rpm snmp-mibs-5.4.1-77.4.ppc.rpm snmp-mibs-5.4.1-77.4.x86_64.rpm cifs-mount openSUSE 11.0 Malicious clients could potentially retrieve arbitrary memory content from a samba server (CVE-2008-4314). cifs-mount-3.2.4-4.1.i586.rpm cifs-mount-3.2.4-4.1.ppc.rpm cifs-mount-3.2.4-4.1.x86_64.rpm ldapsmb-1.34b-195.6.i586.rpm ldapsmb-1.34b-195.6.ppc.rpm ldapsmb-1.34b-195.6.x86_64.rpm libnetapi-devel-3.2.4-4.1.i586.rpm libnetapi-devel-3.2.4-4.1.ppc.rpm libnetapi-devel-3.2.4-4.1.x86_64.rpm libnetapi0-3.2.4-4.1.i586.rpm libnetapi0-3.2.4-4.1.ppc.rpm libnetapi0-3.2.4-4.1.x86_64.rpm libsmbclient-devel-3.2.4-4.1.i586.rpm libsmbclient-devel-3.2.4-4.1.ppc.rpm libsmbclient-devel-3.2.4-4.1.x86_64.rpm libsmbclient0-3.2.4-4.1.i586.rpm libsmbclient0-3.2.4-4.1.ppc.rpm libsmbclient0-3.2.4-4.1.x86_64.rpm libsmbclient0-32bit-3.2.4-4.1.x86_64.rpm libsmbclient0-64bit-3.2.4-4.1.ppc.rpm libsmbsharemodes-devel-3.2.4-4.1.i586.rpm libsmbsharemodes-devel-3.2.4-4.1.ppc.rpm libsmbsharemodes-devel-3.2.4-4.1.x86_64.rpm libsmbsharemodes0-3.2.4-4.1.i586.rpm libsmbsharemodes0-3.2.4-4.1.ppc.rpm libsmbsharemodes0-3.2.4-4.1.x86_64.rpm libtalloc-devel-3.2.4-4.1.i586.rpm libtalloc-devel-3.2.4-4.1.ppc.rpm libtalloc-devel-3.2.4-4.1.x86_64.rpm libtalloc1-3.2.4-4.1.i586.rpm libtalloc1-3.2.4-4.1.ppc.rpm libtalloc1-3.2.4-4.1.x86_64.rpm libtalloc1-32bit-3.2.4-4.1.x86_64.rpm libtalloc1-64bit-3.2.4-4.1.ppc.rpm libtdb-devel-3.2.4-4.1.i586.rpm libtdb-devel-3.2.4-4.1.ppc.rpm libtdb-devel-3.2.4-4.1.x86_64.rpm libtdb1-3.2.4-4.1.i586.rpm libtdb1-3.2.4-4.1.ppc.rpm libtdb1-3.2.4-4.1.x86_64.rpm libtdb1-32bit-3.2.4-4.1.x86_64.rpm libtdb1-64bit-3.2.4-4.1.ppc.rpm libwbclient-devel-3.2.4-4.1.i586.rpm libwbclient-devel-3.2.4-4.1.ppc.rpm libwbclient-devel-3.2.4-4.1.x86_64.rpm libwbclient0-3.2.4-4.1.i586.rpm libwbclient0-3.2.4-4.1.ppc.rpm libwbclient0-3.2.4-4.1.x86_64.rpm libwbclient0-32bit-3.2.4-4.1.x86_64.rpm libwbclient0-64bit-3.2.4-4.1.ppc.rpm samba-3.2.4-4.1.i586.rpm samba-3.2.4-4.1.ppc.rpm samba-3.2.4-4.1.x86_64.rpm samba-32bit-3.2.4-4.1.x86_64.rpm samba-64bit-3.2.4-4.1.ppc.rpm samba-client-3.2.4-4.1.i586.rpm samba-client-3.2.4-4.1.ppc.rpm samba-client-3.2.4-4.1.x86_64.rpm samba-client-32bit-3.2.4-4.1.x86_64.rpm samba-client-64bit-3.2.4-4.1.ppc.rpm samba-devel-3.2.4-4.1.i586.rpm samba-devel-3.2.4-4.1.ppc.rpm samba-devel-3.2.4-4.1.x86_64.rpm samba-krb-printing-3.2.4-4.1.i586.rpm samba-krb-printing-3.2.4-4.1.ppc.rpm samba-krb-printing-3.2.4-4.1.x86_64.rpm samba-winbind-3.2.4-4.1.i586.rpm samba-winbind-3.2.4-4.1.ppc.rpm samba-winbind-3.2.4-4.1.x86_64.rpm samba-winbind-32bit-3.2.4-4.1.x86_64.rpm samba-winbind-64bit-3.2.4-4.1.ppc.rpm pdns openSUSE 11.0 Remote attackers could crash pdnsd if the daemon was configured with distributor-threads=1. With the default configuration pdns is not affected by this problem (CVE-2008-5277). pdns-2.9.21-143.5.i586.rpm pdns-2.9.21-143.5.ppc.rpm pdns-2.9.21-143.5.x86_64.rpm pdns-backend-ldap-2.9.21-143.5.i586.rpm pdns-backend-ldap-2.9.21-143.5.ppc.rpm pdns-backend-ldap-2.9.21-143.5.x86_64.rpm pdns-backend-mysql-2.9.21-143.5.i586.rpm pdns-backend-mysql-2.9.21-143.5.ppc.rpm pdns-backend-mysql-2.9.21-143.5.x86_64.rpm pdns-backend-postgresql-2.9.21-143.5.i586.rpm pdns-backend-postgresql-2.9.21-143.5.ppc.rpm pdns-backend-postgresql-2.9.21-143.5.x86_64.rpm pdns-backend-sqlite2-2.9.21-143.5.i586.rpm pdns-backend-sqlite2-2.9.21-143.5.ppc.rpm pdns-backend-sqlite2-2.9.21-143.5.x86_64.rpm pdns-backend-sqlite3-2.9.21-143.5.i586.rpm pdns-backend-sqlite3-2.9.21-143.5.ppc.rpm pdns-backend-sqlite3-2.9.21-143.5.x86_64.rpm translation-update openSUSE 11.0 Fix several translation issues. translation-update-10.3-27.3.noarch.rpm translation-update-de-10.3-27.3.noarch.rpm translation-update-es-10.3-27.3.noarch.rpm translation-update-fi-10.3-27.3.noarch.rpm translation-update-ja-10.3-27.3.noarch.rpm translation-update-pt_BR-10.3-27.3.noarch.rpm dbus-1 openSUSE 11.0 This update fixes a denial of service bug in dbus. (CVE-2008-3834) dbus-1-1.2.1-15.2.i586.rpm dbus-1-1.2.1-15.2.ppc.rpm dbus-1-1.2.1-15.2.x86_64.rpm dbus-1-32bit-1.2.1-15.2.x86_64.rpm dbus-1-64bit-1.2.1-15.2.ppc.rpm dbus-1-devel-1.2.1-15.2.i586.rpm dbus-1-devel-1.2.1-15.2.ppc.rpm dbus-1-devel-1.2.1-15.2.x86_64.rpm dbus-1-devel-doc-1.2.1-15.2.i586.rpm dbus-1-devel-doc-1.2.1-15.2.ppc.rpm dbus-1-devel-doc-1.2.1-15.2.x86_64.rpm dbus-1-x11-1.2.1-18.2.i586.rpm dbus-1-x11-1.2.1-18.2.ppc.rpm dbus-1-x11-1.2.1-18.2.x86_64.rpm ndiswrapper openSUSE 11.0 The ndiswrapper was updated to fix multiple buffer overflows that can be exploited over a connected WLAN by using long ESSID stings. (CVE-2008-4395) ndiswrapper-1.52-29.2.i586.rpm ndiswrapper-1.52-29.2.x86_64.rpm ndiswrapper-kmp-default-1.52_2.6.25.18_0.2-29.2.i586.rpm ndiswrapper-kmp-default-1.52_2.6.25.18_0.2-29.2.x86_64.rpm ndiswrapper-kmp-pae-1.52_2.6.25.18_0.2-29.2.i586.rpm ndiswrapper-kmp-xen-1.52_2.6.25.18_0.2-29.2.i586.rpm ndiswrapper-kmp-xen-1.52_2.6.25.18_0.2-29.2.x86_64.rpm gnutls openSUSE 11.0 gnutls did not properly verify x509 certificate chains. An attacker could exploit that to trick client programs into trusting servers that would normally get rejected (CVE-2008-4989). gnutls-2.2.2-17.2.i586.rpm gnutls-2.2.2-17.2.ppc.rpm gnutls-2.2.2-17.2.x86_64.rpm libgnutls-devel-2.2.2-17.2.i586.rpm libgnutls-devel-2.2.2-17.2.ppc.rpm libgnutls-devel-2.2.2-17.2.x86_64.rpm libgnutls-extra-devel-2.2.2-17.2.i586.rpm libgnutls-extra-devel-2.2.2-17.2.ppc.rpm libgnutls-extra-devel-2.2.2-17.2.x86_64.rpm libgnutls-extra26-2.2.2-17.2.i586.rpm libgnutls-extra26-2.2.2-17.2.ppc.rpm libgnutls-extra26-2.2.2-17.2.x86_64.rpm libgnutls26-2.2.2-17.2.i586.rpm libgnutls26-2.2.2-17.2.ppc.rpm libgnutls26-2.2.2-17.2.x86_64.rpm libgnutls26-32bit-2.2.2-17.2.x86_64.rpm libgnutls26-64bit-2.2.2-17.2.ppc.rpm novell-nortelplugins openSUSE 11.0 Nortel VPN Update from SP2 cannot start a connection anymore while the SP1 package worked fine with the same configuration. This patch brings the interface up with a default route instead of failing if no routes were specified by the VPN server (i.e. bifurcation was not used). Also applies for 11.0. novell-nortelplugins-0.1.3-54.2.i586.rpm novell-nortelplugins-0.1.3-54.2.ppc.rpm novell-nortelplugins-0.1.3-54.2.x86_64.rpm java-1_6_0-sun openSUSE 11.0 Update to Sun Java 1.6.0u10. This is a non security bugfix only release (like bnc#355868: java.lang.NoClassDefFoundError: Could not initialize class javax.crypto.SunJCE_b). java-1_6_0-sun-1.6.0.u10-2.1.i586.rpm java-1_6_0-sun-1.6.0.u10-2.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u10-2.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u10-2.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u10-2.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u10-2.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u10-2.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u10-2.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u10-2.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u10-2.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u10-2.1.i586.rpm glib2 openSUSE 11.0 This fixes memory leaks found in gnome-main-menu when it refreshes the list of recently-used files (bnc#402256). glib2-2.16.3-20.4.i586.rpm glib2-2.16.3-20.4.ppc.rpm glib2-2.16.3-20.4.x86_64.rpm glib2-branding-upstream-2.16.3-20.4.i586.rpm glib2-branding-upstream-2.16.3-20.4.ppc.rpm glib2-branding-upstream-2.16.3-20.4.x86_64.rpm glib2-devel-2.16.3-20.4.i586.rpm glib2-devel-2.16.3-20.4.ppc.rpm glib2-devel-2.16.3-20.4.x86_64.rpm glib2-devel-64bit-2.16.3-20.4.ppc.rpm glib2-doc-2.16.3-20.4.i586.rpm glib2-doc-2.16.3-20.4.ppc.rpm glib2-doc-2.16.3-20.4.x86_64.rpm gnome-main-menu-0.9.10-30.4.i586.rpm gnome-main-menu-0.9.10-30.4.ppc.rpm gnome-main-menu-0.9.10-30.4.x86_64.rpm gnome-main-menu-devel-0.9.10-30.4.i586.rpm gnome-main-menu-devel-0.9.10-30.4.ppc.rpm gnome-main-menu-devel-0.9.10-30.4.x86_64.rpm libgio-2_0-0-2.16.3-20.4.i586.rpm libgio-2_0-0-2.16.3-20.4.ppc.rpm libgio-2_0-0-2.16.3-20.4.x86_64.rpm libgio-2_0-0-32bit-2.16.3-20.4.x86_64.rpm libgio-2_0-0-64bit-2.16.3-20.4.ppc.rpm libgio-fam-2.16.3-20.4.i586.rpm libgio-fam-2.16.3-20.4.ppc.rpm libgio-fam-2.16.3-20.4.x86_64.rpm libglib-2_0-0-2.16.3-20.4.i586.rpm libglib-2_0-0-2.16.3-20.4.ppc.rpm libglib-2_0-0-2.16.3-20.4.x86_64.rpm libglib-2_0-0-32bit-2.16.3-20.4.x86_64.rpm libglib-2_0-0-64bit-2.16.3-20.4.ppc.rpm libgmodule-2_0-0-2.16.3-20.4.i586.rpm libgmodule-2_0-0-2.16.3-20.4.ppc.rpm libgmodule-2_0-0-2.16.3-20.4.x86_64.rpm libgmodule-2_0-0-32bit-2.16.3-20.4.x86_64.rpm libgmodule-2_0-0-64bit-2.16.3-20.4.ppc.rpm libgobject-2_0-0-2.16.3-20.4.i586.rpm libgobject-2_0-0-2.16.3-20.4.ppc.rpm libgobject-2_0-0-2.16.3-20.4.x86_64.rpm libgobject-2_0-0-32bit-2.16.3-20.4.x86_64.rpm libgobject-2_0-0-64bit-2.16.3-20.4.ppc.rpm libgthread-2_0-0-2.16.3-20.4.i586.rpm libgthread-2_0-0-2.16.3-20.4.ppc.rpm libgthread-2_0-0-2.16.3-20.4.x86_64.rpm libgthread-2_0-0-32bit-2.16.3-20.4.x86_64.rpm libgthread-2_0-0-64bit-2.16.3-20.4.ppc.rpm nautilus-gnome-main-menu-0.9.10-30.4.i586.rpm nautilus-gnome-main-menu-0.9.10-30.4.ppc.rpm nautilus-gnome-main-menu-0.9.10-30.4.x86_64.rpm freeradius-server openSUSE 11.0 This update fixes a possible symlink attack in the script freeradius-dialupadmin. (CVE-2008-4474) freeradius-server-2.0.5-8.3.i586.rpm freeradius-server-2.0.5-8.3.ppc.rpm freeradius-server-2.0.5-8.3.x86_64.rpm freeradius-server-devel-2.0.5-8.3.i586.rpm freeradius-server-devel-2.0.5-8.3.ppc.rpm freeradius-server-devel-2.0.5-8.3.x86_64.rpm freeradius-server-dialupadmin-2.0.5-8.3.i586.rpm freeradius-server-dialupadmin-2.0.5-8.3.ppc.rpm freeradius-server-dialupadmin-2.0.5-8.3.x86_64.rpm freeradius-server-doc-2.0.5-8.3.i586.rpm freeradius-server-doc-2.0.5-8.3.ppc.rpm freeradius-server-doc-2.0.5-8.3.x86_64.rpm freeradius-server-libs-2.0.5-8.3.i586.rpm freeradius-server-libs-2.0.5-8.3.ppc.rpm freeradius-server-libs-2.0.5-8.3.x86_64.rpm freeradius-server-utils-2.0.5-8.3.i586.rpm freeradius-server-utils-2.0.5-8.3.ppc.rpm freeradius-server-utils-2.0.5-8.3.x86_64.rpm clamav openSUSE 11.0 Specially crafted jpg files could crash the clamd daemon of clamav. (CVE-2008-5314) clamav-0.94.2-1.1.i586.rpm clamav-0.94.2-1.1.ppc.rpm clamav-0.94.2-1.1.x86_64.rpm clamav-db-0.94.2-1.1.i586.rpm clamav-db-0.94.2-1.1.ppc.rpm clamav-db-0.94.2-1.1.x86_64.rpm postgresql openSUSE 11.0 Multiple security vulnerabilities have been fixed in PostgrSQL - CVE-2009-3229: allows remote authenticated users to cause a denial of service - CVE-2009-3230: allows remote authenticated users to gain higher privileges - CVE-2009-3231: when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password postgresql-8.3.8-0.1.i586.rpm postgresql-8.3.8-0.1.ppc.rpm postgresql-8.3.8-0.1.ppc64.rpm postgresql-8.3.8-0.1.x86_64.rpm postgresql-contrib-8.3.8-0.1.i586.rpm postgresql-contrib-8.3.8-0.1.ppc.rpm postgresql-contrib-8.3.8-0.1.x86_64.rpm postgresql-devel-8.3.8-0.1.i586.rpm postgresql-devel-8.3.8-0.1.ppc.rpm postgresql-devel-8.3.8-0.1.x86_64.rpm postgresql-docs-8.3.8-0.1.i586.rpm postgresql-docs-8.3.8-0.1.ppc.rpm postgresql-docs-8.3.8-0.1.x86_64.rpm postgresql-libs-8.3.8-0.1.i586.rpm postgresql-libs-8.3.8-0.1.ppc.rpm postgresql-libs-8.3.8-0.1.x86_64.rpm postgresql-libs-32bit-8.3.8-0.1.x86_64.rpm postgresql-libs-64bit-8.3.8-0.1.ppc.rpm postgresql-server-8.3.8-0.1.i586.rpm postgresql-server-8.3.8-0.1.ppc.rpm postgresql-server-8.3.8-0.1.x86_64.rpm java-1_5_0-gcj-compat openSUSE 11.0 Add a trusted keystore (cacerts) of root certificates to java-1_5_0-gcj-compat package for gcc-java. This allows to use SSL connections, for example. java-1_5_0-gcj-compat-1.5.0.0-65.2.i586.rpm java-1_5_0-gcj-compat-1.5.0.0-65.2.ppc.rpm java-1_5_0-gcj-compat-1.5.0.0-65.2.x86_64.rpm java-1_5_0-gcj-compat-32bit-1.5.0.0-65.2.x86_64.rpm java-1_5_0-gcj-compat-64bit-1.5.0.0-65.2.ppc.rpm java-1_5_0-gcj-compat-devel-1.5.0.0-65.2.i586.rpm java-1_5_0-gcj-compat-devel-1.5.0.0-65.2.ppc.rpm java-1_5_0-gcj-compat-devel-1.5.0.0-65.2.x86_64.rpm libmysqlclient-devel openSUSE 11.0 Empty bit-strings in a query could crash the MySQL server (CVE-2008-3963). Due to another flaw users could access tables of other users (CVE-2008-4097, CVE-2008-4098). This update also fixes problems with the 'ORDER BY' query libmysqlclient-devel-5.0.51a-27.2.i586.rpm libmysqlclient-devel-5.0.51a-27.2.ppc.rpm libmysqlclient-devel-5.0.51a-27.2.x86_64.rpm libmysqlclient15-5.0.51a-27.2.i586.rpm libmysqlclient15-5.0.51a-27.2.ppc.rpm libmysqlclient15-5.0.51a-27.2.x86_64.rpm libmysqlclient15-32bit-5.0.51a-27.2.x86_64.rpm libmysqlclient15-64bit-5.0.51a-27.2.ppc.rpm libmysqlclient_r15-5.0.51a-27.2.i586.rpm libmysqlclient_r15-5.0.51a-27.2.ppc.rpm libmysqlclient_r15-5.0.51a-27.2.x86_64.rpm libmysqlclient_r15-32bit-5.0.51a-27.2.x86_64.rpm libmysqlclient_r15-64bit-5.0.51a-27.2.ppc.rpm mysql-5.0.51a-27.2.i586.rpm mysql-5.0.51a-27.2.ppc.rpm mysql-5.0.51a-27.2.ppc64.rpm mysql-5.0.51a-27.2.x86_64.rpm mysql-Max-5.0.51a-27.2.i586.rpm mysql-Max-5.0.51a-27.2.ppc.rpm mysql-Max-5.0.51a-27.2.x86_64.rpm mysql-bench-5.0.51a-27.2.i586.rpm mysql-bench-5.0.51a-27.2.ppc.rpm mysql-bench-5.0.51a-27.2.x86_64.rpm mysql-client-5.0.51a-27.2.i586.rpm mysql-client-5.0.51a-27.2.ppc.rpm mysql-client-5.0.51a-27.2.x86_64.rpm mysql-debug-5.0.51a-27.2.i586.rpm mysql-debug-5.0.51a-27.2.ppc.rpm mysql-debug-5.0.51a-27.2.x86_64.rpm mysql-tools-5.0.51a-27.2.i586.rpm mysql-tools-5.0.51a-27.2.ppc.rpm mysql-tools-5.0.51a-27.2.x86_64.rpm courier-authlib openSUSE 11.0 Insufficient quoting allowed attackers to inject SQL statements when using the pgsql backend (CVE-2008-2380). courier-authlib-0.60.2-40.4.i586.rpm courier-authlib-0.60.2-40.4.ppc.rpm courier-authlib-0.60.2-40.4.x86_64.rpm courier-authlib-devel-0.60.2-40.4.i586.rpm courier-authlib-devel-0.60.2-40.4.ppc.rpm courier-authlib-devel-0.60.2-40.4.x86_64.rpm courier-authlib-ldap-0.60.2-40.4.i586.rpm courier-authlib-ldap-0.60.2-40.4.ppc.rpm courier-authlib-ldap-0.60.2-40.4.x86_64.rpm courier-authlib-mysql-0.60.2-40.4.i586.rpm courier-authlib-mysql-0.60.2-40.4.ppc.rpm courier-authlib-mysql-0.60.2-40.4.x86_64.rpm courier-authlib-pgsql-0.60.2-40.4.i586.rpm courier-authlib-pgsql-0.60.2-40.4.ppc.rpm courier-authlib-pgsql-0.60.2-40.4.x86_64.rpm courier-authlib-pipe-0.60.2-40.4.i586.rpm courier-authlib-pipe-0.60.2-40.4.ppc.rpm courier-authlib-pipe-0.60.2-40.4.x86_64.rpm courier-authlib-userdb-0.60.2-40.4.i586.rpm courier-authlib-userdb-0.60.2-40.4.ppc.rpm courier-authlib-userdb-0.60.2-40.4.x86_64.rpm mozilla-xulrunner190 openSUSE 11.0 The Mozilla XULRunner engine was updated to version 1.9.0.5. The following security issues were fixed: MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher moz_bug_r_a4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin policy and execute arbitrary JavaScript within the context of a different website. moz_bug_r_a4 also reported two vulnerabilities by which page content can pollute XPCNativeWrappers and run arbitary JavaScript with chrome priviliges. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-67 / CVE-2008-5510: Kojima Hajime reported that unlike literal null characters which were handled correctly, the escaped form '\0' was ignored by the CSS parser and treated as if it was not present in the CSS input string. This issue could potentially be used to bypass script sanitization routines in web applications. The severity of this issue was determined to be low. MFSA 2008-66 / CVE-2008-5508: Perl developer Chip Salzenberg reported that certain control characters, when placed at the beginning of a URL, would lead to incorrect parsing resulting in a malformed URL being output by the parser. IBM researchers Justin Schuh, Tom Cross, and Peter William also reported a related symptom as part of their research that resulted in MFSA 2008-37. There was no direct security impact from this issue and its effect was limited to the improper rendering of hyperlinks containing specific characters. The severity of this issue was determined to be low. MFSA 2008-65 / CVE-2008-5507: Google security researcher Chris Evans reported that a website could access a limited amount of data from a different domain by loading a same-domain JavaScript URL which redirects to an off-domain target resource containing data which is not parsable as JavaScript. Upon attempting to load the data as JavaScript a syntax error is generated that can reveal some of the file context via the window.onerror DOM API. This issue could be used by a malicious website to steal private data from users who are authenticated on the redirected website. How much data could be at risk would depend on the format of the data and how the JavaScript parser attempts to interpret it. For most files the amount of data that can be recovered would be limited to the first word or two. Some data files might allow deeper probing with repeated loads. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-64 / CVE-2008-5506: Marius Schilder of Google Security reported that when a XMLHttpRequest is made to a same-origin resource which 302 redirects to a resource in a different domain, the response from the cross-domain resource is readable by the site issuing the XHR. Cookies marked HttpOnly were not readable, but other potentially sensitive data could be revealed in the XHR response including URL parameters and content in the response body. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-61 / CVE-2008-5503: Mozilla developer Boris Zbarsky reported that XBL bindings could be used to read data from other domains, a violation of the same-origin policy. The severity of this issue was determined to be moderate due to several mitigating factors: The target document requires a <bindingsi> element in the XBL namespace in order to be read. The reader of the data needs to know the id attribute of the binding being read in advance. It is unlikely that web services will expose private data in the manner described above. Firefox 3 is not affected by this issue. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Products built from the Mozilla 1.9.0 branch and later, Firefox 3 for example, are not affected by this issue. Upgrading to one of these products is a reliable workaround for this particular issue and it is also Mozilla's recommendation that the most current version of any Mozilla product be used. Alternatively, you can disable JavaScript until a version containing these fixes can be installed. MFSA 2008-60 / CVE-2008-5500: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript such as large images. Workaround Disable JavaScript until a version containing these fixes can be installed. mozilla-xulrunner190-1.9.0.5-0.1.i586.rpm mozilla-xulrunner190-1.9.0.5-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.5-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.5-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.5-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.5-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.5-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.5-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.5-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.5-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.5-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.5-0.1.ppc.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox browser was updated to version 3.0.5, fixing various security issues and stability problems. The following security issues were fixed: MFSA 2008-69 / CVE-2008-5513: Mozilla security researcher moz_bug_r_a4 reported vulnerabilities in the session-restore feature by which content could be injected into an incorrect document storage location, including storage locations for other domains. An attacker could utilize these issues to violate the browser's same-origin policy and perform an XSS attack while SessionStore data is being restored. moz_bug_r_a4 also reported that one variant could be used by an attacker to run arbitrary JavaScript with chrome privileges. MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher moz_bug_r_a4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin policy and execute arbitrary JavaScript within the context of a different website. moz_bug_r_a4 also reported two vulnerabilities by which page content can pollute XPCNativeWrappers and run arbitary JavaScript with chrome priviliges. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-67 / CVE-2008-5510: Kojima Hajime reported that unlike literal null characters which were handled correctly, the escaped form '\0' was ignored by the CSS parser and treated as if it was not present in the CSS input string. This issue could potentially be used to bypass script sanitization routines in web applications. The severity of this issue was determined to be low. MFSA 2008-66 / CVE-2008-5508: Perl developer Chip Salzenberg reported that certain control characters, when placed at the beginning of a URL, would lead to incorrect parsing resulting in a malformed URL being output by the parser. IBM researchers Justin Schuh, Tom Cross, and Peter William also reported a related symptom as part of their research that resulted in MFSA 2008-37. There was no direct security impact from this issue and its effect was limited to the improper rendering of hyperlinks containing specific characters. The severity of this issue was determined to be low. MFSA 2008-65 / CVE-2008-5507: Google security researcher Chris Evans reported that a website could access a limited amount of data from a different domain by loading a same-domain JavaScript URL which redirects to an off-domain target resource containing data which is not parsable as JavaScript. Upon attempting to load the data as JavaScript a syntax error is generated that can reveal some of the file context via the window.onerror DOM API. This issue could be used by a malicious website to steal private data from users who are authenticated on the redirected website. How much data could be at risk would depend on the format of the data and how the JavaScript parser attempts to interpret it. For most files the amount of data that can be recovered would be limited to the first word or two. Some data files might allow deeper probing with repeated loads. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-64 / CVE-2008-5506: Marius Schilder of Google Security reported that when a XMLHttpRequest is made to a same-origin resource which 302 redirects to a resource in a different domain, the response from the cross-domain resource is readable by the site issuing the XHR. Cookies marked HttpOnly were not readable, but other potentially sensitive data could be revealed in the XHR response including URL parameters and content in the response body. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-63 / CVE-2008-5505: Security researcher Hish reported that the persist attribute in XUL elements can be used to store cookie-like information on a user's computer which could later be read by a website. This creates a privacy issue for users who have a non-standard cookie preference and wish to prevent sites from setting cookies on their machine. Even with cookies turned off, this issue could be used by a website to write persistent data in a user's browser and track the user across browsing sessions. Additionally, this issue could allow a website to bypass the limits normally placed on cookie size and number. MFSA 2008-60 / CVE-2008-5502 / CVE-2008-5501 / CVE-2008-5500: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript such as large images. Workaround Disable JavaScript until a version containing these fixes can be installed. MozillaFirefox-3.0.5-0.1.i586.rpm MozillaFirefox-3.0.5-0.1.ppc.rpm MozillaFirefox-3.0.5-0.1.x86_64.rpm MozillaFirefox-translations-3.0.5-0.1.i586.rpm MozillaFirefox-translations-3.0.5-0.1.ppc.rpm MozillaFirefox-translations-3.0.5-0.1.x86_64.rpm wireshark openSUSE 11.0 This update fixes problems that could crash wireshark when processing compressed data and when processing rf5 files (CVE-2008-3933, CVE-2008-3934) as well as CVE-2008-4680 (USB dissector crash), CVE-2008-4681 (Bluetooth RFCOMM dissector crash), CVE-2008-4682 (Tamos CommView dissector crash), CVE-2008-4683 (Bluetooth ACL dissector crash), CVE-2008-4684 (PRP and MATE dissector crash) and CVE-2008-4685 (Q.931 dissector crash). CVE-2008-5285 (SMTP dissector infinite loop) and an infinite loop problem in the WLCCP dissector wireshark-1.0.0-17.7.i586.rpm wireshark-1.0.0-17.7.ppc.rpm wireshark-1.0.0-17.7.x86_64.rpm wireshark-devel-1.0.0-17.7.i586.rpm wireshark-devel-1.0.0-17.7.ppc.rpm wireshark-devel-1.0.0-17.7.x86_64.rpm microcode_ctl openSUSE 11.0 This update installs the lates microcode data files from Intel. The microcode is loaded at system start (since the CPU doesn't keep the microcode if the system is powered down). microcode_ctl-1.17-78.2.i586.rpm microcode_ctl-1.17-78.2.x86_64.rpm glibc openSUSE 11.0 - nscd: Major improvement in nscd stability - two race conditions fixed. - glibc: Fix %EY strptime() specifier. - Fix backtracing through clone(). - Fix constraints for ppc atomic operations. glibc-2.8-14.2.i586.rpm glibc-2.8-14.2.i686.rpm glibc-2.8-14.2.ppc.rpm glibc-2.8-14.2.x86_64.rpm glibc-32bit-2.8-14.2.x86_64.rpm glibc-64bit-2.8-14.2.ppc.rpm glibc-devel-2.8-14.2.i586.rpm glibc-devel-2.8-14.2.i686.rpm glibc-devel-2.8-14.2.ppc.rpm glibc-devel-2.8-14.2.x86_64.rpm glibc-devel-32bit-2.8-14.2.x86_64.rpm glibc-devel-64bit-2.8-14.2.ppc.rpm glibc-html-2.8-14.2.i586.rpm glibc-html-2.8-14.2.ppc.rpm glibc-html-2.8-14.2.x86_64.rpm glibc-i18ndata-2.8-14.2.i586.rpm glibc-i18ndata-2.8-14.2.ppc.rpm glibc-i18ndata-2.8-14.2.x86_64.rpm glibc-info-2.8-14.2.i586.rpm glibc-info-2.8-14.2.ppc.rpm glibc-info-2.8-14.2.x86_64.rpm glibc-locale-2.8-14.2.i586.rpm glibc-locale-2.8-14.2.ppc.rpm glibc-locale-2.8-14.2.x86_64.rpm glibc-locale-32bit-2.8-14.2.x86_64.rpm glibc-locale-64bit-2.8-14.2.ppc.rpm glibc-obsolete-2.8-14.2.i586.rpm glibc-obsolete-2.8-14.2.ppc.rpm glibc-obsolete-2.8-14.2.x86_64.rpm glibc-profile-2.8-14.2.i586.rpm glibc-profile-2.8-14.2.ppc.rpm glibc-profile-2.8-14.2.x86_64.rpm glibc-profile-32bit-2.8-14.2.x86_64.rpm glibc-profile-64bit-2.8-14.2.ppc.rpm nscd-2.8-14.2.i586.rpm nscd-2.8-14.2.ppc.rpm nscd-2.8-14.2.x86_64.rpm mozilla-xulrunner181 openSUSE 11.0 The Mozilla XULRunner 1.8.1 engine received backports for security problems in 1.9.0.5. The following security issues were fixed: MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher moz_bug_r_a4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin policy and execute arbitrary JavaScript within the context of a different website. moz_bug_r_a4 also reported two vulnerabilities by which page content can pollute XPCNativeWrappers and run arbitary JavaScript with chrome priviliges. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-67 / CVE-2008-5510: Kojima Hajime reported that unlike literal null characters which were handled correctly, the escaped form '\0' was ignored by the CSS parser and treated as if it was not present in the CSS input string. This issue could potentially be used to bypass script sanitization routines in web applications. The severity of this issue was determined to be low. MFSA 2008-66 / CVE-2008-5508: Perl developer Chip Salzenberg reported that certain control characters, when placed at the beginning of a URL, would lead to incorrect parsing resulting in a malformed URL being output by the parser. IBM researchers Justin Schuh, Tom Cross, and Peter William also reported a related symptom as part of their research that resulted in MFSA 2008-37. There was no direct security impact from this issue and its effect was limited to the improper rendering of hyperlinks containing specific characters. The severity of this issue was determined to be low. MFSA 2008-65 / CVE-2008-5507: Google security researcher Chris Evans reported that a website could access a limited amount of data from a different domain by loading a same-domain JavaScript URL which redirects to an off-domain target resource containing data which is not parsable as JavaScript. Upon attempting to load the data as JavaScript a syntax error is generated that can reveal some of the file context via the window.onerror DOM API. This issue could be used by a malicious website to steal private data from users who are authenticated on the redirected website. How much data could be at risk would depend on the format of the data and how the JavaScript parser attempts to interpret it. For most files the amount of data that can be recovered would be limited to the first word or two. Some data files might allow deeper probing with repeated loads. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-64 / CVE-2008-5506: Marius Schilder of Google Security reported that when a XMLHttpRequest is made to a same-origin resource which 302 redirects to a resource in a different domain, the response from the cross-domain resource is readable by the site issuing the XHR. Cookies marked HttpOnly were not readable, but other potentially sensitive data could be revealed in the XHR response including URL parameters and content in the response body. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-61 / CVE-2008-5503: Mozilla developer Boris Zbarsky reported that XBL bindings could be used to read data from other domains, a violation of the same-origin policy. The severity of this issue was determined to be moderate due to several mitigating factors: The target document requires a <bindingsi> element in the XBL namespace in order to be read. The reader of the data needs to know the id attribute of the binding being read in advance. It is unlikely that web services will expose private data in the manner described above. Firefox 3 is not affected by this issue. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Products built from the Mozilla 1.9.0 branch and later, Firefox 3 for example, are not affected by this issue. Upgrading to one of these products is a reliable workaround for this particular issue and it is also Mozilla's recommendation that the most current version of any Mozilla product be used. Alternatively, you can disable JavaScript until a version containing these fixes can be installed. MFSA 2008-60 / CVE-2008-5500: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript such as large images. Workaround Disable JavaScript until a version containing these fixes can be installed. mozilla-xulrunner181-1.8.1.19-0.1.i586.rpm mozilla-xulrunner181-1.8.1.19-0.1.ppc.rpm mozilla-xulrunner181-1.8.1.19-0.1.x86_64.rpm mozilla-xulrunner181-32bit-1.8.1.19-0.1.x86_64.rpm mozilla-xulrunner181-64bit-1.8.1.19-0.1.ppc.rpm mozilla-xulrunner181-devel-1.8.1.19-0.1.i586.rpm mozilla-xulrunner181-devel-1.8.1.19-0.1.ppc.rpm mozilla-xulrunner181-devel-1.8.1.19-0.1.x86_64.rpm mozilla-xulrunner181-l10n-1.8.1.19-0.1.i586.rpm mozilla-xulrunner181-l10n-1.8.1.19-0.1.ppc.rpm mozilla-xulrunner181-l10n-1.8.1.19-0.1.x86_64.rpm epiphany openSUSE 11.0 The epiphany packages explicitly require mozilla-xulrunner181 versions so they need to be supplied together with the mozilla-xulrunner181 update. epiphany-2.22.1.1-25.3.i586.rpm epiphany-2.22.1.1-25.3.ppc.rpm epiphany-2.22.1.1-25.3.x86_64.rpm epiphany-devel-2.22.1.1-25.3.i586.rpm epiphany-devel-2.22.1.1-25.3.ppc.rpm epiphany-devel-2.22.1.1-25.3.x86_64.rpm epiphany-doc-2.22.1.1-25.3.i586.rpm epiphany-doc-2.22.1.1-25.3.ppc.rpm epiphany-doc-2.22.1.1-25.3.x86_64.rpm epiphany-extensions-2.22.0-37.3.i586.rpm epiphany-extensions-2.22.0-37.3.ppc.rpm epiphany-extensions-2.22.0-37.3.x86_64.rpm java-1_6_0-sun openSUSE 11.0 The version update to SUN Java 1.6.0_11-b03 fixes numerous security issues such as privilege escalations. (CVE-2008-5360, CVE-2008-5359, CVE-2008-5358, CVE-2008-5357, CVE-2008-5356, CVE-2008-5344, CVE-2008-5343, CVE-2008-5342, CVE-2008-5341, CVE-2008-5340, CVE-2008-5339, CVE-2008-2086, CVE-2008-5355, CVE-2008-5354, CVE-2008-5353, CVE-2008-5352, CVE-2008-5351, CVE-2008-5350, CVE-2008-5349, CVE-2008-5348, CVE-2008-5347, CVE-2008-5345, CVE-2008-5346) java-1_6_0-sun-1.6.0.u11-0.1.i586.rpm java-1_6_0-sun-1.6.0.u11-0.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u11-0.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u11-0.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u11-0.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u11-0.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u11-0.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u11-0.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u11-0.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u11-0.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u11-0.1.i586.rpm java-1_5_0-sun openSUSE 11.0 The version update to SUN Java 1.5.0u17 fixes numerous security issues such as privilege escalations. (CVE-2008-5360, CVE-2008-5359, CVE-2008-5358, CVE-2008-5357, CVE-2008-5356, CVE-2008-5344, CVE-2008-5343, CVE-2008-5342, CVE-2008-5341, CVE-2008-5340, CVE-2008-5339, CVE-2008-2086, CVE-2008-5355, CVE-2008-5354, CVE-2008-5353, CVE-2008-5352, CVE-2008-5351, CVE-2008-5350, CVE-2008-5349, CVE-2008-5348, CVE-2008-5347, CVE-2008-5345, CVE-2008-5346) java-1_5_0-sun-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-1.5.0_update17-0.1.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-alsa-1.5.0_update17-0.1.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-demo-1.5.0_update17-0.1.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-devel-1.5.0_update17-0.1.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update17-0.1.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update17-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update17-0.1.x86_64.rpm MozillaThunderbird openSUSE 11.0 The Mozilla Thunderbird E-Mail client was updated to version 2.0.0.19. The following security issues were fixed: MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher moz_bug_r_a4 reported that an XBL binding, when attached to an unloaded document, can be used to violate the same-origin policy and execute arbitrary JavaScript within the context of a different website. moz_bug_r_a4 also reported two vulnerabilities by which page content can pollute XPCNativeWrappers and run arbitary JavaScript with chrome priviliges. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-67 / CVE-2008-5510: Kojima Hajime reported that unlike literal null characters which were handled correctly, the escaped form '\0' was ignored by the CSS parser and treated as if it was not present in the CSS input string. This issue could potentially be used to bypass script sanitization routines in web applications. The severity of this issue was determined to be low. MFSA 2008-66 / CVE-2008-5508: Perl developer Chip Salzenberg reported that certain control characters, when placed at the beginning of a URL, would lead to incorrect parsing resulting in a malformed URL being output by the parser. IBM researchers Justin Schuh, Tom Cross, and Peter William also reported a related symptom as part of their research that resulted in MFSA 2008-37. There was no direct security impact from this issue and its effect was limited to the improper rendering of hyperlinks containing specific characters. The severity of this issue was determined to be low. MFSA 2008-65 / CVE-2008-5507: Google security researcher Chris Evans reported that a website could access a limited amount of data from a different domain by loading a same-domain JavaScript URL which redirects to an off-domain target resource containing data which is not parsable as JavaScript. Upon attempting to load the data as JavaScript a syntax error is generated that can reveal some of the file context via the window.onerror DOM API. This issue could be used by a malicious website to steal private data from users who are authenticated on the redirected website. How much data could be at risk would depend on the format of the data and how the JavaScript parser attempts to interpret it. For most files the amount of data that can be recovered would be limited to the first word or two. Some data files might allow deeper probing with repeated loads. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-64 / CVE-2008-5506: Marius Schilder of Google Security reported that when a XMLHttpRequest is made to a same-origin resource which 302 redirects to a resource in a different domain, the response from the cross-domain resource is readable by the site issuing the XHR. Cookies marked HttpOnly were not readable, but other potentially sensitive data could be revealed in the XHR response including URL parameters and content in the response body. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Disable JavaScript until a version containing these fixes can be installed. MFSA 2008-61 / CVE-2008-5503: Mozilla developer Boris Zbarsky reported that XBL bindings could be used to read data from other domains, a violation of the same-origin policy. The severity of this issue was determined to be moderate due to several mitigating factors: The target document requires a <bindingsi> element in the XBL namespace in order to be read. The reader of the data needs to know the id attribute of the binding being read in advance. It is unlikely that web services will expose private data in the manner described above. Firefox 3 is not affected by this issue. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Workaround Products built from the Mozilla 1.9.0 branch and later, Firefox 3 for example, are not affected by this issue. Upgrading to one of these products is a reliable workaround for this particular issue and it is also Mozilla's recommendation that the most current version of any Mozilla product be used. Alternatively, you can disable JavaScript until a version containing these fixes can be installed. MFSA 2008-60 / CVE-2008-5500: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from running JavaScript in mail. Without further investigation we cannot rule out the possibility that for some of these an attacker might be able to prepare memory for exploitation through some means other than JavaScript such as large images. Workaround Disable JavaScript until a version containing these fixes can be installed. MozillaThunderbird-2.0.0.19-0.1.i586.rpm MozillaThunderbird-2.0.0.19-0.1.ppc.rpm MozillaThunderbird-2.0.0.19-0.1.x86_64.rpm MozillaThunderbird-devel-2.0.0.19-0.1.i586.rpm MozillaThunderbird-devel-2.0.0.19-0.1.ppc.rpm MozillaThunderbird-devel-2.0.0.19-0.1.x86_64.rpm MozillaThunderbird-translations-2.0.0.19-0.1.i586.rpm MozillaThunderbird-translations-2.0.0.19-0.1.ppc.rpm MozillaThunderbird-translations-2.0.0.19-0.1.x86_64.rpm python openSUSE 11.0 Integer Overflows in the python imageop module potentially allowed attackers to execute arbitrary code (CVE-2008-4864). python-2.5.2-26.4.i586.rpm python-2.5.2-26.4.ppc.rpm python-2.5.2-26.4.x86_64.rpm python-32bit-2.5.2-26.4.x86_64.rpm python-64bit-2.5.2-26.4.ppc.rpm python-curses-2.5.2-26.4.i586.rpm python-curses-2.5.2-26.4.ppc.rpm python-curses-2.5.2-26.4.x86_64.rpm python-demo-2.5.2-26.4.i586.rpm python-demo-2.5.2-26.4.ppc.rpm python-demo-2.5.2-26.4.x86_64.rpm python-devel-2.5.2-26.4.i586.rpm python-devel-2.5.2-26.4.ppc.rpm python-devel-2.5.2-26.4.x86_64.rpm python-gdbm-2.5.2-26.4.i586.rpm python-gdbm-2.5.2-26.4.ppc.rpm python-gdbm-2.5.2-26.4.x86_64.rpm python-idle-2.5.2-26.4.i586.rpm python-idle-2.5.2-26.4.ppc.rpm python-idle-2.5.2-26.4.x86_64.rpm python-tk-2.5.2-26.4.i586.rpm python-tk-2.5.2-26.4.ppc.rpm python-tk-2.5.2-26.4.x86_64.rpm python-xml-2.5.2-26.4.i586.rpm python-xml-2.5.2-26.4.ppc.rpm python-xml-2.5.2-26.4.x86_64.rpm vinagre openSUSE 11.0 A format string problem in vinagre potentially allowed malicious VNC servers to have a vinagre client that connects to the server execute arbitrary code. (CVE-2008-5660) vinagre-0.5.1-20.2.i586.rpm vinagre-0.5.1-20.2.ppc.rpm vinagre-0.5.1-20.2.x86_64.rpm jhead openSUSE 11.0 This update of jhead fixes several security problems: - CVE-2008-4575: buffer overflow in DoCommand() - CVE-2008-4639: local symlink attack - CVE-2008-4640: DoCommand() allowed deletion of arbitrary files - CVE-2008-4641: execution of arbitrary shell commands in DoCommand() jhead-2.82-11.3.i586.rpm jhead-2.82-11.3.ppc.rpm jhead-2.82-11.3.x86_64.rpm git openSUSE 11.0 A malicious repository owner could specify a custom git diff command and therefore could execute arbitrary commands. git-1.5.6-43.3.i586.rpm git-1.5.6-43.3.ppc.rpm git-1.5.6-43.3.x86_64.rpm git-arch-1.5.6-43.3.i586.rpm git-arch-1.5.6-43.3.ppc.rpm git-arch-1.5.6-43.3.x86_64.rpm git-core-1.5.6-43.3.i586.rpm git-core-1.5.6-43.3.ppc.rpm git-core-1.5.6-43.3.x86_64.rpm git-cvs-1.5.6-43.3.i586.rpm git-cvs-1.5.6-43.3.ppc.rpm git-cvs-1.5.6-43.3.x86_64.rpm git-email-1.5.6-43.3.i586.rpm git-email-1.5.6-43.3.ppc.rpm git-email-1.5.6-43.3.x86_64.rpm git-svn-1.5.6-43.3.i586.rpm git-svn-1.5.6-43.3.ppc.rpm git-svn-1.5.6-43.3.x86_64.rpm gitk-1.5.6-43.3.i586.rpm gitk-1.5.6-43.3.ppc.rpm gitk-1.5.6-43.3.x86_64.rpm kvm openSUSE 11.0 Rogue VNC clients could make the built in VNC server of kvm run into an infinite loop (CVE-2008-2382) An off-by-one bug limited the length of VNC passwords to seven instead of eight (CVE-2008-5714) Virtualized guests could potentially execute code on the host by triggering a buffer overflow in the network emulation code via large ethernet frames (CVE-2007-5729) Virtualized guests could potentially execute code on the host by triggering a heap based buffer overflow in the Cirrus Graphics card emulation (CVE-2007-1320). kvm-63-31.2.i586.rpm kvm-63-31.2.x86_64.rpm kismet openSUSE 11.0 due to a build setup error the binaries gpsmap and gpsmap-helper-earthamaps were missing in the package (bnc#462695) kismet-2007_10_R1-60.2.i586.rpm kismet-2007_10_R1-60.2.ppc.rpm kismet-2007_10_R1-60.2.x86_64.rpm xterm openSUSE 11.0 XTerm evaluated various ANSI Escape sequences so that command execution was possible if an attacker could pipe raw data to an xterm. (CVE-2008-2383) (It is usually not recommended to display raw data on an xterm.) xterm-235-12.2.i586.rpm xterm-235-12.2.ppc.rpm xterm-235-12.2.x86_64.rpm cups openSUSE 11.0 Previous updates for the PNG and HPGL filters were incomplete and are corrected now. Also cups used a guest user account for RSS subscriptions which made it eeasier for attackers to conduct CSRF attacks. (CVE-2008-3641, CVE-2008-5184, CVE-2008-5286) cups-1.3.7-25.6.i586.rpm cups-1.3.7-25.6.ppc.rpm cups-1.3.7-25.6.x86_64.rpm cups-client-1.3.7-25.6.i586.rpm cups-client-1.3.7-25.6.ppc.rpm cups-client-1.3.7-25.6.x86_64.rpm cups-devel-1.3.7-25.6.i586.rpm cups-devel-1.3.7-25.6.ppc.rpm cups-devel-1.3.7-25.6.x86_64.rpm cups-libs-1.3.7-25.6.i586.rpm cups-libs-1.3.7-25.6.ppc.rpm cups-libs-1.3.7-25.6.x86_64.rpm cups-libs-32bit-1.3.7-25.6.x86_64.rpm cups-libs-64bit-1.3.7-25.6.ppc.rpm seccheck openSUSE 11.0 This update of seccheck does not sent annoying cron mails anymore. seccheck-2.0-631.2.noarch.rpm kernel openSUSE 11.0 This update fixes various security issues and several bugs in the openSUSE 11.0 kernel. It was also updated to the stable version 2.6.25.20. CVE-2008-5702: Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c might allow local users to have an unknown impact via a certain /dev/watchdog WDIOC_SETTIMEOUT IOCTL call. CVE-2008-5700: libata did not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program. CVE-2008-5079: net/atm/svc.c in the ATM subsystem allowed local users to cause a denial of service (kernel infinite loop) by making two calls to svc_listen for the same socket, and then reading a /proc/net/atm/*vc file, related to corruption of the vcc table. CVE-2008-5300: Linux kernel 2.6.28 allows local users to cause a denial of service ("soft lockup" and process loss) via a large number of sendmsg function calls, which does not block during AF_UNIX garbage collection and triggers an OOM condition, a different vulnerability than CVE-2008-5029. CVE-2008-5029: The __scm_destroy function in net/core/scm.c makes indirect recursive calls to itself through calls to the fput function, which allows local users to cause a denial of service (panic) via vectors related to sending an SCM_RIGHTS message through a UNIX domain socket and closing file descriptors. CVE-2008-4933: Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c allowed attackers to cause a denial of service (memory corruption or system crash) via an hfsplus filesystem image with an invalid catalog namelength field, related to the hfsplus_cat_build_key_uni function. CVE-2008-5025: Stack-based buffer overflow in the hfs_cat_find_brec function in fs/hfs/catalog.c allowed attackers to cause a denial of service (memory corruption or system crash) via an hfs filesystem image with an invalid catalog namelength field, a related issue to CVE-2008-4933. CVE-2008-5182: The inotify functionality might allow local users to gain privileges via unknown vectors related to race conditions in inotify watch removal and umount. CVE-2008-3831: The i915 driver in drivers/char/drm/i915_dma.c does not restrict the DRM_I915_HWS_ADDR ioctl to the Direct Rendering Manager (DRM) master, which allows local users to cause a denial of service (memory corruption) via a crafted ioctl call, related to absence of the DRM_MASTER and DRM_ROOT_ONLY flags in the ioctl's configuration. CVE-2008-4554: The do_splice_from function in fs/splice.c did not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file. kernel-debug-2.6.25.20-0.1.i586.rpm 1 kernel-debug-2.6.25.20-0.1.x86_64.rpm 1 kernel-default-2.6.25.20-0.1.i586.rpm 1 kernel-default-2.6.25.20-0.1.ppc.rpm 1 kernel-default-2.6.25.20-0.1.x86_64.rpm 1 kernel-docs-2.6.25.20-0.1.noarch.rpm 1 kernel-kdump-2.6.25.20-0.1.ppc.rpm 1 kernel-pae-2.6.25.20-0.1.i586.rpm 1 kernel-ppc64-2.6.25.20-0.1.ppc.rpm 1 kernel-ps3-2.6.25.20-0.1.ppc.rpm 1 kernel-rt-2.6.25.20-0.1.i586.rpm 1 kernel-rt-2.6.25.20-0.1.x86_64.rpm 1 kernel-rt_debug-2.6.25.20-0.1.i586.rpm 1 kernel-rt_debug-2.6.25.20-0.1.x86_64.rpm 1 kernel-source-2.6.25.20-0.1.i586.rpm 1 kernel-source-2.6.25.20-0.1.ppc.rpm 1 kernel-source-2.6.25.20-0.1.x86_64.rpm 1 kernel-syms-2.6.25.20-0.1.i586.rpm 1 kernel-syms-2.6.25.20-0.1.ppc.rpm 1 kernel-syms-2.6.25.20-0.1.x86_64.rpm 1 kernel-vanilla-2.6.25.20-0.1.i586.rpm 1 kernel-vanilla-2.6.25.20-0.1.ppc.rpm 1 kernel-vanilla-2.6.25.20-0.1.x86_64.rpm 1 kernel-xen-2.6.25.20-0.1.i586.rpm 1 kernel-xen-2.6.25.20-0.1.x86_64.rpm 1 moodle openSUSE 11.0 Insufficient quoting of wiki page titles allowed attackers to conduct cross site scripting (XSS) attacks (CVE-2008-5432 ). moodle-1.9.0-24.4.noarch.rpm moodle-af-1.9.0-24.4.noarch.rpm moodle-ar-1.9.0-24.4.noarch.rpm moodle-be-1.9.0-24.4.noarch.rpm moodle-bg-1.9.0-24.4.noarch.rpm moodle-bs-1.9.0-24.4.noarch.rpm moodle-ca-1.9.0-24.4.noarch.rpm moodle-cs-1.9.0-24.4.noarch.rpm moodle-da-1.9.0-24.4.noarch.rpm moodle-de-1.9.0-24.4.noarch.rpm moodle-de_du-1.9.0-24.4.noarch.rpm moodle-el-1.9.0-24.4.noarch.rpm moodle-es-1.9.0-24.4.noarch.rpm moodle-et-1.9.0-24.4.noarch.rpm moodle-eu-1.9.0-24.4.noarch.rpm moodle-fa-1.9.0-24.4.noarch.rpm moodle-fi-1.9.0-24.4.noarch.rpm moodle-fr-1.9.0-24.4.noarch.rpm moodle-ga-1.9.0-24.4.noarch.rpm moodle-gl-1.9.0-24.4.noarch.rpm moodle-he-1.9.0-24.4.noarch.rpm moodle-hi-1.9.0-24.4.noarch.rpm moodle-hr-1.9.0-24.4.noarch.rpm moodle-hu-1.9.0-24.4.noarch.rpm moodle-id-1.9.0-24.4.noarch.rpm moodle-is-1.9.0-24.4.noarch.rpm moodle-it-1.9.0-24.4.noarch.rpm moodle-ja-1.9.0-24.4.noarch.rpm moodle-ka-1.9.0-24.4.noarch.rpm moodle-km-1.9.0-24.4.noarch.rpm moodle-kn-1.9.0-24.4.noarch.rpm moodle-ko-1.9.0-24.4.noarch.rpm moodle-lt-1.9.0-24.4.noarch.rpm moodle-lv-1.9.0-24.4.noarch.rpm moodle-mi_tn-1.9.0-24.4.noarch.rpm moodle-ms-1.9.0-24.4.noarch.rpm moodle-nl-1.9.0-24.4.noarch.rpm moodle-nn-1.9.0-24.4.noarch.rpm moodle-no-1.9.0-24.4.noarch.rpm moodle-pl-1.9.0-24.4.noarch.rpm moodle-pt-1.9.0-24.4.noarch.rpm moodle-ro-1.9.0-24.4.noarch.rpm moodle-ru-1.9.0-24.4.noarch.rpm moodle-sk-1.9.0-24.4.noarch.rpm moodle-sl-1.9.0-24.4.noarch.rpm moodle-so-1.9.0-24.4.noarch.rpm moodle-sq-1.9.0-24.4.noarch.rpm moodle-sr-1.9.0-24.4.noarch.rpm moodle-sv-1.9.0-24.4.noarch.rpm moodle-th-1.9.0-24.4.noarch.rpm moodle-tl-1.9.0-24.4.noarch.rpm moodle-tr-1.9.0-24.4.noarch.rpm moodle-uk-1.9.0-24.4.noarch.rpm moodle-vi-1.9.0-24.4.noarch.rpm moodle-zh_cn-1.9.0-24.4.noarch.rpm libnasl openSUSE 11.0 This update of libnasl adds missing return value checks for openssl function calls. (CVE-2009-0125) libnasl-2.2.10-59.2.i586.rpm libnasl-2.2.10-59.2.ppc.rpm libnasl-2.2.10-59.2.x86_64.rpm libpng-devel openSUSE 11.0 This update of libpng fixes the function png_check_keyword() that allowed setting arbitrary bytes in the process memory to 0. (CVE-2008-5907) libpng-devel-1.2.26-14.4.i586.rpm libpng-devel-1.2.26-14.4.ppc.rpm libpng-devel-1.2.26-14.4.x86_64.rpm libpng-devel-32bit-1.2.26-14.4.x86_64.rpm libpng-devel-64bit-1.2.26-14.4.ppc.rpm libpng12-0-1.2.26-14.4.i586.rpm libpng12-0-1.2.26-14.4.ppc.rpm libpng12-0-1.2.26-14.4.x86_64.rpm libpng12-0-32bit-1.2.26-14.4.x86_64.rpm libpng12-0-64bit-1.2.26-14.4.ppc.rpm libpng3-1.2.26-14.4.i586.rpm libpng3-1.2.26-14.4.ppc.rpm libpng3-1.2.26-14.4.x86_64.rpm bind openSUSE 11.0 This update improves the verification of return values of openssl functions. Prior this update it was possible to spoof answers signed with DSA and NSEC3DSA. (CVE-2009-0025) bind-9.4.2-39.4.i586.rpm bind-9.4.2-39.4.ppc.rpm bind-9.4.2-39.4.x86_64.rpm bind-chrootenv-9.4.2-39.4.i586.rpm bind-chrootenv-9.4.2-39.4.ppc.rpm bind-chrootenv-9.4.2-39.4.x86_64.rpm bind-devel-9.4.2-39.4.i586.rpm bind-devel-9.4.2-39.4.ppc.rpm bind-devel-9.4.2-39.4.x86_64.rpm bind-devel-64bit-9.4.2-39.4.ppc.rpm bind-doc-9.4.2-39.4.i586.rpm bind-doc-9.4.2-39.4.ppc.rpm bind-doc-9.4.2-39.4.x86_64.rpm bind-libs-9.4.2-39.4.i586.rpm bind-libs-9.4.2-39.4.ppc.rpm bind-libs-9.4.2-39.4.x86_64.rpm bind-libs-32bit-9.4.2-39.4.x86_64.rpm bind-libs-64bit-9.4.2-39.4.ppc.rpm bind-utils-9.4.2-39.4.i586.rpm bind-utils-9.4.2-39.4.ppc.rpm bind-utils-9.4.2-39.4.x86_64.rpm attr openSUSE 11.0 - #457660: REGRESSION: getfattr -P broken in SLES11 due to bug in the walk-attr.diff patch setfattr and getfattr with the -P flag recurse directory structures incorrectly. Expected behavior ============== trusted.9 trusted.a trusted.9 trusted.a trusted.9 trusted.a Current Behavior ============= trusted.9 trusted.a trusted.9 trusted.a attr-2.4.43-2.2.i586.rpm attr-2.4.43-2.2.ppc.rpm attr-2.4.43-2.2.x86_64.rpm libattr-2.4.43-2.2.i586.rpm libattr-2.4.43-2.2.ppc.rpm libattr-2.4.43-2.2.x86_64.rpm libattr-32bit-2.4.43-2.2.x86_64.rpm libattr-64bit-2.4.43-2.2.ppc.rpm libattr-devel-2.4.43-2.2.i586.rpm libattr-devel-2.4.43-2.2.ppc.rpm libattr-devel-2.4.43-2.2.x86_64.rpm libattr-devel-64bit-2.4.43-2.2.ppc.rpm libopenssl-devel openSUSE 11.0 This update improves the verification of return values. Prior to this udpate it was possible to bypass the certification chain checks of openssl. (CVE-2008-5077) libopenssl-devel-0.9.8g-47.2.i586.rpm libopenssl-devel-0.9.8g-47.2.ppc.rpm libopenssl-devel-0.9.8g-47.2.x86_64.rpm libopenssl0_9_8-0.9.8g-47.2.i586.rpm libopenssl0_9_8-0.9.8g-47.2.ppc.rpm libopenssl0_9_8-0.9.8g-47.2.x86_64.rpm libopenssl0_9_8-32bit-0.9.8g-47.2.x86_64.rpm libopenssl0_9_8-64bit-0.9.8g-47.2.ppc.rpm openssl-0.9.8g-47.2.i586.rpm openssl-0.9.8g-47.2.ppc.rpm openssl-0.9.8g-47.2.x86_64.rpm openssl-certs-0.9.8g-47.2.i586.rpm openssl-certs-0.9.8g-47.2.ppc.rpm openssl-certs-0.9.8g-47.2.x86_64.rpm openssl-doc-0.9.8g-47.2.i586.rpm openssl-doc-0.9.8g-47.2.ppc.rpm openssl-doc-0.9.8g-47.2.x86_64.rpm syslog-ng openSUSE 11.0 This update provides two fixes for following issues: - Bug #414955: Fix to avoid getpwnam/getgrnam calls with negative values (special meaning), that are causing an ldap request on system using nss_ldap and during a syslog reload a deadlock with a locally running ldap server trying to log (the request). - Bug #423470: Fix by Karsten Kuenne for a SEGV in host macro expansion in case when the host variable in the message structure isn't set. syslog-ng-1.6.12-76.2.i586.rpm syslog-ng-1.6.12-76.2.ppc.rpm syslog-ng-1.6.12-76.2.x86_64.rpm sudo openSUSE 11.0 This update of sudo fixes a bug that allowed - depending on the sudoers rules - a sudo-user to execute arbitrary shell commands as root. sudo-1.6.9p15-13.4.i586.rpm sudo-1.6.9p15-13.4.ppc.rpm sudo-1.6.9p15-13.4.x86_64.rpm nouveau-kmp-debug openSUSE 11.0 The updated kernel in the update repository caused the nouveau-kmp to no longer work due to a kernel version mismatch and the KMP being in the wrong directory under /lib/modules. nouveau-kmp-debug-0.10.1.20081112_2.6.25.18_0.2-0.3.i586.rpm nouveau-kmp-debug-0.10.1.20081112_2.6.25.18_0.2-0.3.x86_64.rpm nouveau-kmp-default-0.10.1.20081112_2.6.25.18_0.2-0.3.i586.rpm nouveau-kmp-default-0.10.1.20081112_2.6.25.18_0.2-0.3.ppc.rpm nouveau-kmp-default-0.10.1.20081112_2.6.25.18_0.2-0.3.x86_64.rpm nouveau-kmp-pae-0.10.1.20081112_2.6.25.18_0.2-0.3.i586.rpm nouveau-kmp-xen-0.10.1.20081112_2.6.25.18_0.2-0.3.i586.rpm nouveau-kmp-xen-0.10.1.20081112_2.6.25.18_0.2-0.3.x86_64.rpm xorg-x11-driver-video-nouveau-0.10.1.20081112-0.3.i586.rpm xorg-x11-driver-video-nouveau-0.10.1.20081112-0.3.ppc.rpm xorg-x11-driver-video-nouveau-0.10.1.20081112-0.3.x86_64.rpm xorg-x11-driver-video-nouveau-3d-0.10.1.20081112-0.3.i586.rpm xorg-x11-driver-video-nouveau-3d-0.10.1.20081112-0.3.ppc.rpm xorg-x11-driver-video-nouveau-3d-0.10.1.20081112-0.3.x86_64.rpm audiofile openSUSE 11.0 A heap-overflow in libaudiofile was fixed. The overflow existsed in the WAV processing code and can be exploited to execute arbitrary code. (CVE-2008-5824) audiofile-0.2.6-115.2.i586.rpm audiofile-0.2.6-115.2.ppc.rpm audiofile-0.2.6-115.2.x86_64.rpm audiofile-32bit-0.2.6-115.2.x86_64.rpm audiofile-64bit-0.2.6-115.2.ppc.rpm audiofile-devel-0.2.6-115.2.i586.rpm audiofile-devel-0.2.6-115.2.ppc.rpm audiofile-devel-0.2.6-115.2.x86_64.rpm gstreamer-0_10-plugins-good openSUSE 11.0 gstreamer-0_10: several heap overflows (CVE-2009-0386, CVE-2009-0387,CVE-2009-0397) have been fixed. Remote attackers could exploit these to execute arbitrary code via QuickTime media files. gstreamer-0_10-plugins-good-0.10.7-38.2.i586.rpm gstreamer-0_10-plugins-good-0.10.7-38.2.ppc.rpm gstreamer-0_10-plugins-good-0.10.7-38.2.x86_64.rpm gstreamer-0_10-plugins-good-doc-0.10.7-38.2.i586.rpm gstreamer-0_10-plugins-good-doc-0.10.7-38.2.ppc.rpm gstreamer-0_10-plugins-good-doc-0.10.7-38.2.x86_64.rpm gstreamer-0_10-plugins-good-extra-0.10.7-38.2.i586.rpm gstreamer-0_10-plugins-good-extra-0.10.7-38.2.ppc.rpm gstreamer-0_10-plugins-good-extra-0.10.7-38.2.x86_64.rpm gstreamer-0_10-plugins-good-lang-0.10.7-38.2.i586.rpm gstreamer-0_10-plugins-good-lang-0.10.7-38.2.ppc.rpm gstreamer-0_10-plugins-good-lang-0.10.7-38.2.x86_64.rpm compat-openssl097g openSUSE 11.0 This update improves the verification of return values. Prior to this udpate it was possible to bypass the certification chain checks of openssl. (CVE-2008-5077) compat-openssl097g-0.9.7g-119.3.i586.rpm compat-openssl097g-0.9.7g-119.3.ppc.rpm compat-openssl097g-0.9.7g-119.3.x86_64.rpm compat-openssl097g-32bit-0.9.7g-119.3.x86_64.rpm compat-openssl097g-64bit-0.9.7g-119.3.ppc.rpm amarok openSUSE 11.0 This update of amarok fixes several integer overflows and unchecked memory allocations that can be exploited by malformed Audible digital audio files. These bugs could be used in a user-assisted attack scenario to execute arbitrary code remotely. (CVE-2009-0135, CVE-2009-0136) amarok-1.4.9.1-27.2.i586.rpm amarok-1.4.9.1-27.2.ppc.rpm amarok-1.4.9.1-27.2.x86_64.rpm amarok-lang-1.4.9.1-27.2.i586.rpm amarok-lang-1.4.9.1-27.2.ppc.rpm amarok-lang-1.4.9.1-27.2.x86_64.rpm amarok-libvisual-1.4.9.1-27.2.i586.rpm amarok-libvisual-1.4.9.1-27.2.ppc.rpm amarok-libvisual-1.4.9.1-27.2.x86_64.rpm amarok-xine-1.4.9.1-27.2.i586.rpm amarok-xine-1.4.9.1-27.2.ppc.rpm amarok-xine-1.4.9.1-27.2.x86_64.rpm amarok-yauap-1.4.9.1-27.2.i586.rpm amarok-yauap-1.4.9.1-27.2.ppc.rpm amarok-yauap-1.4.9.1-27.2.x86_64.rpm avahi openSUSE 11.0 Specially crafted mDNS packets could crash the Avahi daemon (CVE-2008-5081). avahi-0.6.22-68.2.i586.rpm avahi-0.6.22-68.2.ppc.rpm avahi-0.6.22-68.2.x86_64.rpm avahi-compat-howl-devel-0.6.22-68.2.i586.rpm avahi-compat-howl-devel-0.6.22-68.2.ppc.rpm avahi-compat-howl-devel-0.6.22-68.2.x86_64.rpm avahi-compat-mDNSResponder-devel-0.6.22-68.2.i586.rpm avahi-compat-mDNSResponder-devel-0.6.22-68.2.ppc.rpm avahi-compat-mDNSResponder-devel-0.6.22-68.2.x86_64.rpm avahi-utils-0.6.22-68.2.i586.rpm avahi-utils-0.6.22-68.2.ppc.rpm avahi-utils-0.6.22-68.2.x86_64.rpm avahi-utils-gtk-0.6.22-68.2.i586.rpm avahi-utils-gtk-0.6.22-68.2.ppc.rpm avahi-utils-gtk-0.6.22-68.2.x86_64.rpm libavahi-client3-0.6.22-68.2.i586.rpm libavahi-client3-0.6.22-68.2.ppc.rpm libavahi-client3-0.6.22-68.2.x86_64.rpm libavahi-client3-32bit-0.6.22-68.2.x86_64.rpm libavahi-client3-64bit-0.6.22-68.2.ppc.rpm libavahi-common3-0.6.22-68.2.i586.rpm libavahi-common3-0.6.22-68.2.ppc.rpm libavahi-common3-0.6.22-68.2.x86_64.rpm libavahi-common3-32bit-0.6.22-68.2.x86_64.rpm libavahi-common3-64bit-0.6.22-68.2.ppc.rpm libavahi-core5-0.6.22-68.2.i586.rpm libavahi-core5-0.6.22-68.2.ppc.rpm libavahi-core5-0.6.22-68.2.x86_64.rpm libavahi-devel-0.6.22-68.2.i586.rpm libavahi-devel-0.6.22-68.2.ppc.rpm libavahi-devel-0.6.22-68.2.x86_64.rpm libavahi-glib-devel-0.6.22-68.2.i586.rpm libavahi-glib-devel-0.6.22-68.2.ppc.rpm libavahi-glib-devel-0.6.22-68.2.x86_64.rpm libavahi-glib1-0.6.22-68.2.i586.rpm libavahi-glib1-0.6.22-68.2.ppc.rpm libavahi-glib1-0.6.22-68.2.x86_64.rpm libavahi-glib1-32bit-0.6.22-68.2.x86_64.rpm libavahi-glib1-64bit-0.6.22-68.2.ppc.rpm libavahi-gobject-devel-0.6.22-68.2.i586.rpm libavahi-gobject-devel-0.6.22-68.2.ppc.rpm libavahi-gobject-devel-0.6.22-68.2.x86_64.rpm libavahi-gobject0-0.6.22-68.2.i586.rpm libavahi-gobject0-0.6.22-68.2.ppc.rpm libavahi-gobject0-0.6.22-68.2.x86_64.rpm libavahi-ui0-0.6.22-68.2.i586.rpm libavahi-ui0-0.6.22-68.2.ppc.rpm libavahi-ui0-0.6.22-68.2.x86_64.rpm libdns_sd-0.6.22-68.2.i586.rpm libdns_sd-0.6.22-68.2.ppc.rpm libdns_sd-0.6.22-68.2.x86_64.rpm libdns_sd-32bit-0.6.22-68.2.x86_64.rpm libdns_sd-64bit-0.6.22-68.2.ppc.rpm libhowl0-0.6.22-68.2.i586.rpm libhowl0-0.6.22-68.2.ppc.rpm libhowl0-0.6.22-68.2.x86_64.rpm python-avahi-0.6.22-68.2.i586.rpm python-avahi-0.6.22-68.2.ppc.rpm python-avahi-0.6.22-68.2.x86_64.rpm nscd openSUSE 11.0 Fix instability during cache pruning and garbage collection phases that might lead to random segfaults and assertion failures - overflow in he_data setup and too risky alloca() usage. nscd-2.8-14.4.i586.rpm nscd-2.8-14.4.ppc.rpm nscd-2.8-14.4.x86_64.rpm wine openSUSE 11.0 A symlink vulnerability in handling tmp files in the winetricks helper scripts was fixed. (CVE-2009-0313) wine-0.9.64_aka_1.0.rc3-2.2.i586.rpm wine-devel-0.9.64_aka_1.0.rc3-2.2.i586.rpm xine-devel openSUSE 11.0 This update of xine fixes multiple buffer overflows while parsing files: - CVE-2008-3231 - CVE-2008-5233 - CVE-2008-5234 - CVE-2008-5235 - CVE-2008-5236 - CVE-2008-5237 - CVE-2008-5238 - CVE-2008-5239 - CVE-2008-5240 - CVE-2008-5241 - CVE-2008-5242 - CVE-2008-5243 - CVE-2008-5244 - CVE-2008-5245 - CVE-2008-5246 - CVE-2008-5247 - CVE-2008-5248 These bugs can lead to remote code execution. xine-devel-1.1.12-8.2.i586.rpm xine-devel-1.1.12-8.2.ppc.rpm xine-devel-1.1.12-8.2.x86_64.rpm xine-extra-1.1.12-8.2.i586.rpm xine-extra-1.1.12-8.2.ppc.rpm xine-extra-1.1.12-8.2.x86_64.rpm xine-lib-1.1.12-8.2.i586.rpm xine-lib-1.1.12-8.2.ppc.rpm xine-lib-1.1.12-8.2.x86_64.rpm xine-lib-32bit-1.1.12-8.2.x86_64.rpm xine-lib-64bit-1.1.12-8.2.ppc.rpm perl openSUSE 11.0 This perl update fixes a race condition in rmtree. (CVE-2008-5302) perl-5.10.0-37.6.i586.rpm perl-5.10.0-37.6.ppc.rpm perl-5.10.0-37.6.x86_64.rpm perl-32bit-5.10.0-37.6.x86_64.rpm perl-64bit-5.10.0-37.6.ppc.rpm perl-base-5.10.0-37.6.i586.rpm perl-base-5.10.0-37.6.ppc.rpm perl-base-5.10.0-37.6.x86_64.rpm perl-doc-5.10.0-37.6.i586.rpm perl-doc-5.10.0-37.6.ppc.rpm perl-doc-5.10.0-37.6.x86_64.rpm softwaremgmt openSUSE 11.0 This patch fixes a bug where the solver wants to install incompatible updates and downgrade kde from 4.1.3 to 4.0.4. Additionally, libzypp is compiled with -fPIC and a Gtk package selector crash on the conflict dialog is fixed. PackageKit-0.2.1-15.8.i586.rpm 1 PackageKit-0.2.1-15.8.ppc.rpm 1 PackageKit-0.2.1-15.8.x86_64.rpm 1 PackageKit-devel-0.2.1-15.8.i586.rpm 1 PackageKit-devel-0.2.1-15.8.ppc.rpm 1 PackageKit-devel-0.2.1-15.8.x86_64.rpm 1 gnome-packagekit-0.2.1-15.7.i586.rpm 1 gnome-packagekit-0.2.1-15.7.ppc.rpm 1 gnome-packagekit-0.2.1-15.7.x86_64.rpm 1 libsatsolver-devel-0.9.6-0.2.i586.rpm 1 libsatsolver-devel-0.9.6-0.2.ppc.rpm 1 libsatsolver-devel-0.9.6-0.2.x86_64.rpm 1 libsatsolver-perl-0.9.6-0.2.i586.rpm 1 libsatsolver-perl-0.9.6-0.2.ppc.rpm 1 libsatsolver-perl-0.9.6-0.2.x86_64.rpm 1 libsatsolver-ruby-0.9.6-0.2.i586.rpm 1 libsatsolver-ruby-0.9.6-0.2.ppc.rpm 1 libsatsolver-ruby-0.9.6-0.2.x86_64.rpm 1 libzypp-4.28.1-0.1.i586.rpm 1 libzypp-4.28.1-0.1.ppc.rpm 1 libzypp-4.28.1-0.1.x86_64.rpm 1 libzypp-devel-4.28.1-0.1.i586.rpm 1 libzypp-devel-4.28.1-0.1.ppc.rpm 1 libzypp-devel-4.28.1-0.1.x86_64.rpm 1 satsolver-tools-0.9.6-0.2.i586.rpm 1 satsolver-tools-0.9.6-0.2.ppc.rpm 1 satsolver-tools-0.9.6-0.2.x86_64.rpm 1 yast2-gtk-2.16.15-0.1.i586.rpm 1 yast2-gtk-2.16.15-0.1.ppc.rpm 1 yast2-gtk-2.16.15-0.1.x86_64.rpm 1 yast2-ncurses-pkg-2.16.14-0.4.i586.rpm 1 yast2-ncurses-pkg-2.16.14-0.4.ppc.rpm 1 yast2-ncurses-pkg-2.16.14-0.4.x86_64.rpm 1 yast2-online-update-2.16.15-6.1.noarch.rpm 1 yast2-online-update-frontend-2.16.15-6.1.noarch.rpm 1 yast2-packager-2.16.53-3.1.i586.rpm 1 yast2-packager-2.16.53-3.1.ppc.rpm 1 yast2-packager-2.16.53-3.1.x86_64.rpm 1 yast2-pkg-bindings-2.16.42-0.2.i586.rpm 1 yast2-pkg-bindings-2.16.42-0.2.ppc.rpm 1 yast2-pkg-bindings-2.16.42-0.2.x86_64.rpm 1 yast2-pkg-bindings-devel-doc-2.16.42-0.2.noarch.rpm 1 yast2-qt-pkg-2.16.48-0.2.i586.rpm 1 yast2-qt-pkg-2.16.48-0.2.ppc.rpm 1 yast2-qt-pkg-2.16.48-0.2.x86_64.rpm 1 zypper-0.11.10-0.3.i586.rpm 1 zypper-0.11.10-0.3.ppc.rpm 1 zypper-0.11.10-0.3.x86_64.rpm 1 apache2-mod_php5 openSUSE 11.0 This update of php5 fixes a directory traversal bug in ZipArchive (CVE-2008-5658) and a buffer overflow in the mstring extension (CVE-2008-5557). apache2-mod_php5-5.2.6-0.8.i586.rpm apache2-mod_php5-5.2.6-0.8.ppc.rpm apache2-mod_php5-5.2.6-0.8.x86_64.rpm php5-5.2.6-0.8.i586.rpm php5-5.2.6-0.8.ppc.rpm php5-5.2.6-0.8.x86_64.rpm php5-bcmath-5.2.6-0.8.i586.rpm php5-bcmath-5.2.6-0.8.ppc.rpm php5-bcmath-5.2.6-0.8.x86_64.rpm php5-bz2-5.2.6-0.8.i586.rpm php5-bz2-5.2.6-0.8.ppc.rpm php5-bz2-5.2.6-0.8.x86_64.rpm php5-calendar-5.2.6-0.8.i586.rpm php5-calendar-5.2.6-0.8.ppc.rpm php5-calendar-5.2.6-0.8.x86_64.rpm php5-ctype-5.2.6-0.8.i586.rpm php5-ctype-5.2.6-0.8.ppc.rpm php5-ctype-5.2.6-0.8.x86_64.rpm php5-curl-5.2.6-0.8.i586.rpm php5-curl-5.2.6-0.8.ppc.rpm php5-curl-5.2.6-0.8.x86_64.rpm php5-dba-5.2.6-0.8.i586.rpm php5-dba-5.2.6-0.8.ppc.rpm php5-dba-5.2.6-0.8.x86_64.rpm php5-dbase-5.2.6-0.8.i586.rpm php5-dbase-5.2.6-0.8.ppc.rpm php5-dbase-5.2.6-0.8.x86_64.rpm php5-devel-5.2.6-0.8.i586.rpm php5-devel-5.2.6-0.8.ppc.rpm php5-devel-5.2.6-0.8.x86_64.rpm php5-dom-5.2.6-0.8.i586.rpm php5-dom-5.2.6-0.8.ppc.rpm php5-dom-5.2.6-0.8.x86_64.rpm php5-exif-5.2.6-0.8.i586.rpm php5-exif-5.2.6-0.8.ppc.rpm php5-exif-5.2.6-0.8.x86_64.rpm php5-fastcgi-5.2.6-0.8.i586.rpm php5-fastcgi-5.2.6-0.8.ppc.rpm php5-fastcgi-5.2.6-0.8.x86_64.rpm php5-ftp-5.2.6-0.8.i586.rpm php5-ftp-5.2.6-0.8.ppc.rpm php5-ftp-5.2.6-0.8.x86_64.rpm php5-gd-5.2.6-0.8.i586.rpm php5-gd-5.2.6-0.8.ppc.rpm php5-gd-5.2.6-0.8.x86_64.rpm php5-gettext-5.2.6-0.8.i586.rpm php5-gettext-5.2.6-0.8.ppc.rpm php5-gettext-5.2.6-0.8.x86_64.rpm php5-gmp-5.2.6-0.8.i586.rpm php5-gmp-5.2.6-0.8.ppc.rpm php5-gmp-5.2.6-0.8.x86_64.rpm php5-hash-5.2.6-0.8.i586.rpm php5-hash-5.2.6-0.8.ppc.rpm php5-hash-5.2.6-0.8.x86_64.rpm php5-iconv-5.2.6-0.8.i586.rpm php5-iconv-5.2.6-0.8.ppc.rpm php5-iconv-5.2.6-0.8.x86_64.rpm php5-imap-5.2.6-0.8.i586.rpm php5-imap-5.2.6-0.8.ppc.rpm php5-imap-5.2.6-0.8.x86_64.rpm php5-json-5.2.6-0.8.i586.rpm php5-json-5.2.6-0.8.ppc.rpm php5-json-5.2.6-0.8.x86_64.rpm php5-ldap-5.2.6-0.8.i586.rpm php5-ldap-5.2.6-0.8.ppc.rpm php5-ldap-5.2.6-0.8.x86_64.rpm php5-mbstring-5.2.6-0.8.i586.rpm php5-mbstring-5.2.6-0.8.ppc.rpm php5-mbstring-5.2.6-0.8.x86_64.rpm php5-mcrypt-5.2.6-0.8.i586.rpm php5-mcrypt-5.2.6-0.8.ppc.rpm php5-mcrypt-5.2.6-0.8.x86_64.rpm php5-mysql-5.2.6-0.8.i586.rpm php5-mysql-5.2.6-0.8.ppc.rpm php5-mysql-5.2.6-0.8.x86_64.rpm php5-ncurses-5.2.6-0.8.i586.rpm php5-ncurses-5.2.6-0.8.ppc.rpm php5-ncurses-5.2.6-0.8.x86_64.rpm php5-odbc-5.2.6-0.8.i586.rpm php5-odbc-5.2.6-0.8.ppc.rpm php5-odbc-5.2.6-0.8.x86_64.rpm php5-openssl-5.2.6-0.8.i586.rpm php5-openssl-5.2.6-0.8.ppc.rpm php5-openssl-5.2.6-0.8.x86_64.rpm php5-pcntl-5.2.6-0.8.i586.rpm php5-pcntl-5.2.6-0.8.ppc.rpm php5-pcntl-5.2.6-0.8.x86_64.rpm php5-pdo-5.2.6-0.8.i586.rpm php5-pdo-5.2.6-0.8.ppc.rpm php5-pdo-5.2.6-0.8.x86_64.rpm php5-pear-5.2.6-0.8.i586.rpm php5-pear-5.2.6-0.8.ppc.rpm php5-pear-5.2.6-0.8.x86_64.rpm php5-pgsql-5.2.6-0.8.i586.rpm php5-pgsql-5.2.6-0.8.ppc.rpm php5-pgsql-5.2.6-0.8.x86_64.rpm php5-posix-5.2.6-0.8.i586.rpm php5-posix-5.2.6-0.8.ppc.rpm php5-posix-5.2.6-0.8.x86_64.rpm php5-pspell-5.2.6-0.8.i586.rpm php5-pspell-5.2.6-0.8.ppc.rpm php5-pspell-5.2.6-0.8.x86_64.rpm php5-readline-5.2.6-0.8.i586.rpm php5-readline-5.2.6-0.8.ppc.rpm php5-readline-5.2.6-0.8.x86_64.rpm php5-shmop-5.2.6-0.8.i586.rpm php5-shmop-5.2.6-0.8.ppc.rpm php5-shmop-5.2.6-0.8.x86_64.rpm php5-snmp-5.2.6-0.8.i586.rpm php5-snmp-5.2.6-0.8.ppc.rpm php5-snmp-5.2.6-0.8.x86_64.rpm php5-soap-5.2.6-0.8.i586.rpm php5-soap-5.2.6-0.8.ppc.rpm php5-soap-5.2.6-0.8.x86_64.rpm php5-sockets-5.2.6-0.8.i586.rpm php5-sockets-5.2.6-0.8.ppc.rpm php5-sockets-5.2.6-0.8.x86_64.rpm php5-sqlite-5.2.6-0.8.i586.rpm php5-sqlite-5.2.6-0.8.ppc.rpm php5-sqlite-5.2.6-0.8.x86_64.rpm php5-suhosin-5.2.6-0.8.i586.rpm php5-suhosin-5.2.6-0.8.ppc.rpm php5-suhosin-5.2.6-0.8.x86_64.rpm php5-sysvmsg-5.2.6-0.8.i586.rpm php5-sysvmsg-5.2.6-0.8.ppc.rpm php5-sysvmsg-5.2.6-0.8.x86_64.rpm php5-sysvsem-5.2.6-0.8.i586.rpm php5-sysvsem-5.2.6-0.8.ppc.rpm php5-sysvsem-5.2.6-0.8.x86_64.rpm php5-sysvshm-5.2.6-0.8.i586.rpm php5-sysvshm-5.2.6-0.8.ppc.rpm php5-sysvshm-5.2.6-0.8.x86_64.rpm php5-tidy-5.2.6-0.8.i586.rpm php5-tidy-5.2.6-0.8.ppc.rpm php5-tidy-5.2.6-0.8.x86_64.rpm php5-tokenizer-5.2.6-0.8.i586.rpm php5-tokenizer-5.2.6-0.8.ppc.rpm php5-tokenizer-5.2.6-0.8.x86_64.rpm php5-wddx-5.2.6-0.8.i586.rpm php5-wddx-5.2.6-0.8.ppc.rpm php5-wddx-5.2.6-0.8.x86_64.rpm php5-xmlreader-5.2.6-0.8.i586.rpm php5-xmlreader-5.2.6-0.8.ppc.rpm php5-xmlreader-5.2.6-0.8.x86_64.rpm php5-xmlrpc-5.2.6-0.8.i586.rpm php5-xmlrpc-5.2.6-0.8.ppc.rpm php5-xmlrpc-5.2.6-0.8.x86_64.rpm php5-xmlwriter-5.2.6-0.8.i586.rpm php5-xmlwriter-5.2.6-0.8.ppc.rpm php5-xmlwriter-5.2.6-0.8.x86_64.rpm php5-xsl-5.2.6-0.8.i586.rpm php5-xsl-5.2.6-0.8.ppc.rpm php5-xsl-5.2.6-0.8.x86_64.rpm php5-zip-5.2.6-0.8.i586.rpm php5-zip-5.2.6-0.8.ppc.rpm php5-zip-5.2.6-0.8.x86_64.rpm php5-zlib-5.2.6-0.8.i586.rpm php5-zlib-5.2.6-0.8.ppc.rpm php5-zlib-5.2.6-0.8.x86_64.rpm libvirt openSUSE 11.0 libvirt misses some read-only connection checks for certain methods. This flaw enables local unprivileged users for example to migrate virtual machines without authentication (CVE-2008-5086). libvirt-0.4.0-59.4.i586.rpm libvirt-0.4.0-59.4.x86_64.rpm libvirt-devel-0.4.0-59.4.i586.rpm libvirt-devel-0.4.0-59.4.x86_64.rpm libvirt-doc-0.4.0-59.4.i586.rpm libvirt-doc-0.4.0-59.4.x86_64.rpm libvirt-python-0.4.0-59.4.i586.rpm libvirt-python-0.4.0-59.4.x86_64.rpm java-1_6_0-sun openSUSE 11.0 Switch from old Java plugin (libjavaplugin_oji.so), which may causes a Firefox freeze to new one (libnpjp2.so) - bnc#465790. java-1_6_0-sun-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-1.6.0.u11-0.3.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-alsa-1.6.0.u11-0.3.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-demo-1.6.0.u11-0.3.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-devel-1.6.0.u11-0.3.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u11-0.3.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-src-1.6.0.u11-0.3.i586.rpm java-1_6_0-sun-src-1.6.0.u11-0.3.x86_64.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox browser is updated to version 3.0.6 fixing various security and stability issues. MFSA 2009-01 / CVE-2009-0352 / CVE-2009-0353: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MFSA 2009-02 / CVE-2009-0354: Mozilla security researcher moz_bug_r_a4 reported that a chrome XBL method can be used in conjuction with window.eval to execute arbitrary JavaScript within the context of another website, violating the same origin policy. Firefox 2 releases are not affected. MFSA 2009-03 / CVE-2009-0355: Mozilla security researcher moz_bug_r_a4 reported that a form input control's type could be changed during the restoration of a closed tab. An attacker could set an input control's text value to the path of a local file whose location was known to the attacker. If the tab was then closed and the victim persuaded to re-open it, upon restoring the tab the attacker could use this vulnerability to change the input type to file. Scripts in the page could then automatically submit the form and steal the contents of the user's local file. MFSA 2009-04 / CVE-2009-0356: Mozilla security researcher Georgi Guninski reported that the fix for an earlier vulnerability reported by Liu Die Yu using local internet shortcut files to access other sites (MFSA 2008-47) could be bypassed by redirecting to a privileged about: URI such as about:plugins. If an attacker could get a victim to download two files, a malicious HTML file and a .desktop shortcut file, they could have the HTML document load a privileged chrome document via the shortcut and both documents would be treated as same origin. This vulnerability could potentially be used by an attacker to inject arbitrary code into the chrome document and execute with chrome privileges. Because this attack has relatively high complexity, the severity of this issue was determined to be moderate. MFSA 2009-05 / CVE-2009-0357: Developer and Mozilla community member Wladimir Palant reported that cookies marked HTTPOnly were readable by JavaScript via the XMLHttpRequest.getResponseHeader and XMLHttpRequest.getAllResponseHeaders APIs. This vulnerability bypasses the security mechanism provided by the HTTPOnly flag which intends to restrict JavaScript access to document.cookie. The fix prevents the XMLHttpRequest feature from accessing the Set-Cookie and Set-Cookie2 headers of any response whether or not the HTTPOnly flag was set for those cookies. MFSA 2009-06 / CVE-2009-0358: Paul Nel reported that certain HTTP directives to not cache web pages, Cache-Control: no-store and Cache-Control: no-cache for HTTPS pages, were being ignored by Firefox 3. On a shared system, applications relying upon these HTTP directives could potentially expose private data. Another user on the system could use this vulnerability to view improperly cached pages containing private data by navigating the browser back. MozillaFirefox-3.0.6-0.1.i586.rpm MozillaFirefox-3.0.6-0.1.ppc.rpm MozillaFirefox-3.0.6-0.1.x86_64.rpm MozillaFirefox-translations-3.0.6-0.1.i586.rpm MozillaFirefox-translations-3.0.6-0.1.ppc.rpm MozillaFirefox-translations-3.0.6-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.6-0.1.i586.rpm mozilla-xulrunner190-1.9.0.6-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.6-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.6-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.6-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.6-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.6-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.6-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.6-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.6-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.6-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.6-0.1.ppc.rpm netatalk openSUSE 11.0 This update of netatalk adds a filter for characters of user-supplied data to papd. Prior to this update it was possible to execute arbitrary shell commands remotely. (CVE-2008-5718) netatalk-2.0.3-218.3.i586.rpm netatalk-2.0.3-218.3.ppc.rpm netatalk-2.0.3-218.3.x86_64.rpm netatalk-devel-2.0.3-218.3.i586.rpm netatalk-devel-2.0.3-218.3.ppc.rpm netatalk-devel-2.0.3-218.3.x86_64.rpm sbl openSUSE 11.0 A buffer overflow in the sbl package has been fixed. Incoming data and authentication-strings have not been checked properly. CVE-2009-0310 has been assigned to this issue. sbl-3.2.2-16.2.i586.rpm sbl-3.2.2-16.2.ppc.rpm sbl-3.2.2-16.2.x86_64.rpm sbl-orca-3.2.2-16.2.i586.rpm sbl-orca-3.2.2-16.2.ppc.rpm sbl-orca-3.2.2-16.2.x86_64.rpm dovecot openSUSE 11.0 Dovecot didn't properly treat negative access rights therefore allowing attackers to bypass intended access restrictions (CVE-2008-4577) dovecot-1.0.13-24.2.i586.rpm dovecot-1.0.13-24.2.ppc.rpm dovecot-1.0.13-24.2.x86_64.rpm dovecot-devel-1.0.13-24.2.i586.rpm dovecot-devel-1.0.13-24.2.ppc.rpm dovecot-devel-1.0.13-24.2.x86_64.rpm phpPgAdmin openSUSE 11.0 Attackers could read arbitrary files due to a directory traversal vulnerability in phpPgAdmin (CVE-2008-5587). phpPgAdmin-4.2-16.2.noarch.rpm sblim-sfcb openSUSE 11.0 A tmp file race condition in the genSslCerts.sh helper script could be used by local attackers to gain root privileges. (CVE-2009-0416) sblim-sfcb-1.3.0-6.2.i586.rpm sblim-sfcb-1.3.0-6.2.ppc.rpm sblim-sfcb-1.3.0-6.2.x86_64.rpm mediawiki openSUSE 11.0 Missing checks allowed remote attackers to conduct cross-site scripting (XSS) or cross-site request forgery (CSRF) attacks against MediaWiki (CVE-2008-5250, CVE-2008-5252). mediawiki-1.11.2-36.2.i586.rpm mediawiki-1.11.2-36.2.ppc.rpm mediawiki-1.11.2-36.2.x86_64.rpm virtualbox openSUSE 11.0 Insufficient checks on temporary files could allow users to trick others into overwriting arbitrary files (CVE-2008-5256). virtualbox-ose-1.5.6-33.2.i586.rpm virtualbox-ose-1.5.6-33.2.x86_64.rpm virtualbox-ose-guest-tools-1.5.6-33.2.i586.rpm virtualbox-ose-guest-tools-1.5.6-33.2.x86_64.rpm xorg-x11-driver-virtualbox-ose-1.5.6-33.2.i586.rpm xorg-x11-driver-virtualbox-ose-1.5.6-33.2.x86_64.rpm libtiff-devel openSUSE 11.0 specially crafted tiff images could lead to allocating large amounts of memory therefore crashing applications that process such files (CVE-2008-1586). libtiff-devel-3.8.2-108.4.i586.rpm libtiff-devel-3.8.2-108.4.ppc.rpm libtiff-devel-3.8.2-108.4.x86_64.rpm libtiff-devel-32bit-3.8.2-108.4.x86_64.rpm libtiff-devel-64bit-3.8.2-108.4.ppc.rpm libtiff3-3.8.2-108.4.i586.rpm libtiff3-3.8.2-108.4.ppc.rpm libtiff3-3.8.2-108.4.x86_64.rpm libtiff3-32bit-3.8.2-108.4.x86_64.rpm libtiff3-64bit-3.8.2-108.4.ppc.rpm tiff-3.8.2-108.4.i586.rpm tiff-3.8.2-108.4.ppc.rpm tiff-3.8.2-108.4.x86_64.rpm novell-ipsec-tools openSUSE 11.0 Remote attackers could exploit memory leaks in the 'racoon' daemon to crash it (CVE-2008-3651, CVE-2008-3652) novell-ipsec-tools-0.6.3-183.2.i586.rpm novell-ipsec-tools-0.6.3-183.2.ppc.rpm novell-ipsec-tools-0.6.3-183.2.x86_64.rpm novell-ipsec-tools-devel-0.6.3-183.2.i586.rpm novell-ipsec-tools-devel-0.6.3-183.2.ppc.rpm novell-ipsec-tools-devel-0.6.3-183.2.x86_64.rpm openslp openSUSE 11.0 OpenSLP prior this update does not correctly check the return values of OpenSSL functions. openslp-1.2.0-143.2.i586.rpm openslp-1.2.0-143.2.ppc.rpm openslp-1.2.0-143.2.x86_64.rpm openslp-32bit-1.2.0-143.2.x86_64.rpm openslp-64bit-1.2.0-143.2.ppc.rpm openslp-devel-1.2.0-143.2.i586.rpm openslp-devel-1.2.0-143.2.ppc.rpm openslp-devel-1.2.0-143.2.x86_64.rpm openslp-server-1.2.0-143.2.i586.rpm openslp-server-1.2.0-143.2.ppc.rpm openslp-server-1.2.0-143.2.x86_64.rpm swfdec openSUSE 11.0 The free Flash decoder engine "swfdec" was updated to version 0.6.8 to fix lots of crashers which are likely security relevant and could be exploited to remotely execute code. (CVE-2008-3796) swfdec-0.6.8-0.1.i586.rpm swfdec-0.6.8-0.1.ppc.rpm swfdec-0.6.8-0.1.x86_64.rpm swfdec-devel-0.6.8-0.1.i586.rpm swfdec-devel-0.6.8-0.1.ppc.rpm swfdec-devel-0.6.8-0.1.x86_64.rpm swfdec-doc-0.6.8-0.1.i586.rpm swfdec-doc-0.6.8-0.1.ppc.rpm swfdec-doc-0.6.8-0.1.x86_64.rpm audacity openSUSE 11.0 Specially crafted GRO files could cause a stack based buffer in audacity (CVE-2009-0490). audacity-1.3.4-56.2.i586.rpm audacity-1.3.4-56.2.ppc.rpm audacity-1.3.4-56.2.x86_64.rpm libxml2 openSUSE 11.0 A previous security fix for libxml2 caused problems when processing large xml files. The patch has been reworked so processing of large files works again. libxml2-2.6.32-11.8.i586.rpm libxml2-2.6.32-11.8.ppc.rpm libxml2-2.6.32-11.8.x86_64.rpm libxml2-32bit-2.6.32-11.8.x86_64.rpm libxml2-64bit-2.6.32-11.8.ppc.rpm libxml2-devel-2.6.32-11.8.i586.rpm libxml2-devel-2.6.32-11.8.ppc.rpm libxml2-devel-2.6.32-11.8.x86_64.rpm libxml2-devel-32bit-2.6.32-11.8.x86_64.rpm libxml2-devel-64bit-2.6.32-11.8.ppc.rpm libxml2-doc-2.6.32-11.8.i586.rpm libxml2-doc-2.6.32-11.8.ppc.rpm libxml2-doc-2.6.32-11.8.x86_64.rpm java-1_6_0-sun openSUSE 11.0 Sun Java 6 u12. This update brings a native 64bit Java Plugin and a Java Webstart support. Please install the java-1_6_0-sun-plugin package for x86_64. Warning: As the new Java plugin is not compatible with Firefox 2, there's no java-1_6_0-sun-plugin package available for x86_64 version of openSUSE 10.3. Read http://en.opensuse.org/Java/How_To_use_Java_with_Firefox_on_ 64-bit_openSuSE_10.3 for details. java-1_6_0-sun-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-1.6.0.u12-1.2.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-alsa-1.6.0.u12-1.2.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-demo-1.6.0.u12-1.2.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-devel-1.6.0.u12-1.2.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u12-1.2.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-plugin-1.6.0.u12-1.2.x86_64.rpm java-1_6_0-sun-src-1.6.0.u12-1.2.i586.rpm java-1_6_0-sun-src-1.6.0.u12-1.2.x86_64.rpm libQtWebKit-devel openSUSE 11.0 - fix threaded mysql issues - fix qtabbar sizing - fix path seperators in qmake - fix crash on QGraphicsProxyWidget deletion - fix recursive backing store crash - add QUrl revalidate speedup - fix crash on clear Focus in QGraphicsProxyWidget - fix fontconfig handling - fix zero height pixmaps not being considered null - fix crash in form layouting code - add display key support - fix select() handling in QNativeSocketEngine libQtWebKit-devel-4.4.0-12.5.i586.rpm libQtWebKit-devel-4.4.0-12.5.ppc.rpm libQtWebKit-devel-4.4.0-12.5.x86_64.rpm libQtWebKit4-4.4.0-12.5.i586.rpm libQtWebKit4-4.4.0-12.5.ppc.rpm libQtWebKit4-4.4.0-12.5.x86_64.rpm libqt4-4.4.0-12.6.i586.rpm libqt4-4.4.0-12.6.ppc.rpm libqt4-4.4.0-12.6.x86_64.rpm libqt4-32bit-4.4.0-12.6.x86_64.rpm libqt4-64bit-4.4.0-12.6.ppc.rpm libqt4-devel-4.4.0-12.6.i586.rpm libqt4-devel-4.4.0-12.6.ppc.rpm libqt4-devel-4.4.0-12.6.x86_64.rpm libqt4-devel-doc-4.4.0-12.5.i586.rpm libqt4-devel-doc-4.4.0-12.5.ppc.rpm libqt4-devel-doc-4.4.0-12.5.x86_64.rpm libqt4-devel-doc-data-4.4.0-12.4.noarch.rpm libqt4-qt3support-4.4.0-12.6.i586.rpm libqt4-qt3support-4.4.0-12.6.ppc.rpm libqt4-qt3support-4.4.0-12.6.x86_64.rpm libqt4-qt3support-32bit-4.4.0-12.6.x86_64.rpm libqt4-qt3support-64bit-4.4.0-12.6.ppc.rpm libqt4-sql-4.4.0-12.6.i586.rpm libqt4-sql-4.4.0-12.6.ppc.rpm libqt4-sql-4.4.0-12.6.x86_64.rpm libqt4-sql-32bit-4.4.0-12.6.x86_64.rpm libqt4-sql-64bit-4.4.0-12.6.ppc.rpm libqt4-sql-mysql-4.4.0-5.4.i586.rpm libqt4-sql-mysql-4.4.0-5.4.ppc.rpm libqt4-sql-mysql-4.4.0-5.4.x86_64.rpm libqt4-sql-postgresql-4.4.0-5.4.i586.rpm libqt4-sql-postgresql-4.4.0-5.4.ppc.rpm libqt4-sql-postgresql-4.4.0-5.4.x86_64.rpm libqt4-sql-sqlite-4.4.0-12.6.i586.rpm libqt4-sql-sqlite-4.4.0-12.6.ppc.rpm libqt4-sql-sqlite-4.4.0-12.6.x86_64.rpm libqt4-sql-unixODBC-4.4.0-5.4.i586.rpm libqt4-sql-unixODBC-4.4.0-5.4.ppc.rpm libqt4-sql-unixODBC-4.4.0-5.4.x86_64.rpm libqt4-x11-4.4.0-12.6.i586.rpm libqt4-x11-4.4.0-12.6.ppc.rpm libqt4-x11-4.4.0-12.6.x86_64.rpm libqt4-x11-32bit-4.4.0-12.6.x86_64.rpm libqt4-x11-64bit-4.4.0-12.6.ppc.rpm qt4-x11-tools-4.4.0-12.5.i586.rpm qt4-x11-tools-4.4.0-12.5.ppc.rpm qt4-x11-tools-4.4.0-12.5.x86_64.rpm libipulog openSUSE 11.0 This update provides a correction of the user and groupname in the /etc/logrotate.d/ulogd file (bnc#468419). libipulog-1.24-101.2.i586.rpm libipulog-1.24-101.2.ppc.rpm libipulog-1.24-101.2.x86_64.rpm ulogd-1.24-101.2.i586.rpm ulogd-1.24-101.2.ppc.rpm ulogd-1.24-101.2.x86_64.rpm ulogd-mysql-1.24-101.2.i586.rpm ulogd-mysql-1.24-101.2.ppc.rpm ulogd-mysql-1.24-101.2.x86_64.rpm ulogd-pcap-1.24-101.2.i586.rpm ulogd-pcap-1.24-101.2.ppc.rpm ulogd-pcap-1.24-101.2.x86_64.rpm ulogd-pgsql-1.24-101.2.i586.rpm ulogd-pgsql-1.24-101.2.ppc.rpm ulogd-pgsql-1.24-101.2.x86_64.rpm ulogd-sqlite-1.24-101.2.i586.rpm ulogd-sqlite-1.24-101.2.ppc.rpm ulogd-sqlite-1.24-101.2.x86_64.rpm dhcp openSUSE 11.0 This update contains a backported patch from dhcp-3.0.7 to fix a buffer overflow which could lead to a denial-of-service condition in cases when the dhcp server is configured to send many DHCP options to clients. (CVE-2007-0062) dhcp-3.0.6-86.2.i586.rpm dhcp-3.0.6-86.2.ppc.rpm dhcp-3.0.6-86.2.x86_64.rpm dhcp-client-3.0.6-86.2.i586.rpm dhcp-client-3.0.6-86.2.ppc.rpm dhcp-client-3.0.6-86.2.x86_64.rpm dhcp-devel-3.0.6-86.2.i586.rpm dhcp-devel-3.0.6-86.2.ppc.rpm dhcp-devel-3.0.6-86.2.x86_64.rpm dhcp-relay-3.0.6-86.2.i586.rpm dhcp-relay-3.0.6-86.2.ppc.rpm dhcp-relay-3.0.6-86.2.x86_64.rpm dhcp-server-3.0.6-86.2.i586.rpm dhcp-server-3.0.6-86.2.ppc.rpm dhcp-server-3.0.6-86.2.x86_64.rpm ntp openSUSE 11.0 This update of ntp improves a check for the return value of openssl's function EVP_VerifyFinal(). (CVE-2009-0021) ntp-4.2.4p4-44.2.i586.rpm ntp-4.2.4p4-44.2.ppc.rpm ntp-4.2.4p4-44.2.x86_64.rpm ntp-doc-4.2.4p4-44.2.i586.rpm ntp-doc-4.2.4p4-44.2.ppc.rpm ntp-doc-4.2.4p4-44.2.x86_64.rpm wireshark openSUSE 11.0 wireshark: fixed crashes while reading capture files containing NetScreen data (CVE-2009-0599), Tektronix K12 capture files (CVE-2009-0600) and and a format string vulnerability (CVE-2009-0601). wireshark-1.0.0-17.9.i586.rpm wireshark-1.0.0-17.9.ppc.rpm wireshark-1.0.0-17.9.x86_64.rpm wireshark-devel-1.0.0-17.9.i586.rpm wireshark-devel-1.0.0-17.9.ppc.rpm wireshark-devel-1.0.0-17.9.x86_64.rpm libpng-devel openSUSE 11.0 A allocation mistake in libpng's pngread.c has been fixed. CVE-2009-0040 has been assigned to this issue. libpng-devel-1.2.26-14.6.i586.rpm libpng-devel-1.2.26-14.6.ppc.rpm libpng-devel-1.2.26-14.6.x86_64.rpm libpng-devel-32bit-1.2.26-14.6.x86_64.rpm libpng-devel-64bit-1.2.26-14.6.ppc.rpm libpng12-0-1.2.26-14.6.i586.rpm libpng12-0-1.2.26-14.6.ppc.rpm libpng12-0-1.2.26-14.6.x86_64.rpm libpng12-0-32bit-1.2.26-14.6.x86_64.rpm libpng12-0-64bit-1.2.26-14.6.ppc.rpm libpng3-1.2.26-14.6.i586.rpm libpng3-1.2.26-14.6.ppc.rpm libpng3-1.2.26-14.6.x86_64.rpm nagios openSUSE 11.0 A CSRF bug in nagios' cmd.cgi (CVE-2008-5028) has been fixed as well as an authentication bypass (CVE-2008-5027). nagios-3.0.6-1.1.i586.rpm nagios-3.0.6-1.1.ppc.rpm nagios-3.0.6-1.1.x86_64.rpm nagios-devel-3.0.6-1.1.i586.rpm nagios-devel-3.0.6-1.1.ppc.rpm nagios-devel-3.0.6-1.1.x86_64.rpm nagios-www-3.0.6-1.1.i586.rpm nagios-www-3.0.6-1.1.ppc.rpm nagios-www-3.0.6-1.1.x86_64.rpm pam_mount openSUSE 11.0 This update fixes the temp-flle handling in the passwdehd script that allowed a symlink attack. (CVE-2008-5138) (script was disabled for 11.0 and 11.1) pam_mount-0.35-15.8.i586.rpm pam_mount-0.35-15.8.ppc.rpm pam_mount-0.35-15.8.x86_64.rpm pam_mount-32bit-0.35-15.8.x86_64.rpm pam_mount-64bit-0.35-15.8.ppc.rpm keyutils openSUSE 11.0 keyutils and keyutils-libs are now required by the "cifs-mount" package of the last samba update. This update just provides them via the update channel, they are unchanged compared to the DVD/FTP media. keyutils-1.2-80.1.i586.rpm keyutils-1.2-80.1.ppc.rpm keyutils-1.2-80.1.x86_64.rpm keyutils-devel-1.2-80.1.i586.rpm keyutils-devel-1.2-80.1.ppc.rpm keyutils-devel-1.2-80.1.x86_64.rpm keyutils-libs-1.2-80.1.i586.rpm keyutils-libs-1.2-80.1.ppc.rpm keyutils-libs-1.2-80.1.x86_64.rpm keyutils-libs-32bit-1.2-80.1.x86_64.rpm keyutils-libs-64bit-1.2-80.1.ppc.rpm eID-belgium openSUSE 11.0 eID-belgium uses EVP_VerifyFinal() incorrectly (CVE-2009-0049) which allowed bypassing the validation of the certificate chain. eID-belgium-2.6.0-73.2.i586.rpm eID-belgium-2.6.0-73.2.ppc.rpm eID-belgium-2.6.0-73.2.x86_64.rpm flash-player openSUSE 11.0 Specially crafted swf files could cause a buffer overflow in flash-player. Attackers could potentially exploit that to execute code on the victim's machine (CVE-2009-0519, CVE-2009-0520, CVE-2009-0114, CVE-2009-0521). flash-player-9.0.159.0-0.1.i586.rpm libpng-devel openSUSE 11.0 A allocation mistake in libpng's pngread.c has been fixed (CVE-2009-0040). The previous update was using an incomplete patch so it needed to be reissued. libpng-devel-1.2.26-14.8.i586.rpm libpng-devel-1.2.26-14.8.ppc.rpm libpng-devel-1.2.26-14.8.x86_64.rpm libpng-devel-32bit-1.2.26-14.8.x86_64.rpm libpng-devel-64bit-1.2.26-14.8.ppc.rpm libpng12-0-1.2.26-14.8.i586.rpm libpng12-0-1.2.26-14.8.ppc.rpm libpng12-0-1.2.26-14.8.x86_64.rpm libpng12-0-32bit-1.2.26-14.8.x86_64.rpm libpng12-0-64bit-1.2.26-14.8.ppc.rpm libpng3-1.2.26-14.8.i586.rpm libpng3-1.2.26-14.8.ppc.rpm libpng3-1.2.26-14.8.x86_64.rpm curl openSUSE 11.0 Arbitrary file access via HTTP-redirect has been fixed in curl. CVE-2009-0037 has been assigned to this issue. curl-7.18.1-18.2.i586.rpm curl-7.18.1-18.2.ppc.rpm curl-7.18.1-18.2.x86_64.rpm libcurl-devel-7.18.1-18.2.i586.rpm libcurl-devel-7.18.1-18.2.ppc.rpm libcurl-devel-7.18.1-18.2.x86_64.rpm libcurl4-7.18.1-18.2.i586.rpm libcurl4-7.18.1-18.2.ppc.rpm libcurl4-7.18.1-18.2.x86_64.rpm libcurl4-32bit-7.18.1-18.2.x86_64.rpm libcurl4-64bit-7.18.1-18.2.ppc.rpm libmikmod openSUSE 11.0 Specially crafted XM files or playing mod files with varying number of channels could crash applications using libmikmod (CVE-2009-0179, CVE-2007-6720). libmikmod-3.1.11a-84.3.i586.rpm libmikmod-3.1.11a-84.3.ppc.rpm libmikmod-3.1.11a-84.3.x86_64.rpm libmikmod-32bit-3.1.11a-84.3.x86_64.rpm libmikmod-64bit-3.1.11a-84.3.ppc.rpm libmikmod-devel-3.1.11a-84.3.i586.rpm libmikmod-devel-3.1.11a-84.3.ppc.rpm libmikmod-devel-3.1.11a-84.3.x86_64.rpm psi openSUSE 11.0 Remote attackers could crash the Psi instant messaging client via the file transfer port (CVE-2008-6393). psi-0.11.99.1-22.2.i586.rpm psi-0.11.99.1-22.2.ppc.rpm psi-0.11.99.1-22.2.x86_64.rpm optipng openSUSE 11.0 Specially crafted BMP files could overflow a buffer in optipng (CVE-2008-5101), specially crafted GIF files could crash optipng (CVE-2009-0749). optipng-0.6.2-2.2.i586.rpm optipng-0.6.2-2.2.ppc.rpm optipng-0.6.2-2.2.x86_64.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox browser is updated to version 3.0.7 fixing various security and stability issues. MFSA 2009-07 / CVE-2009-0771 / CVE-2009-0772 / CVE-2009-0773 / CVE-2009-0774: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MFSA 2009-08 / CVE-2009-0775: An anonymous researcher, via TippingPoint's Zero Day Initiative program, reported a vulnerability in Mozilla's garbage collection process. The vulnerability was caused by improper memory management of a set of cloned XUL DOM elements which were linked as a parent and child. After reloading the browser on a page with such linked elements, the browser would crash when attempting to access an object which was already destroyed. An attacker could use this crash to run arbitrary code on the victim's computer. MFSA 2009-09 / CVE-2009-0776: Mozilla security researcher Georgi Guninski reported that a website could use nsIRDFService and a cross-domain redirect to steal arbitrary XML data from another domain, a violation of the same-origin policy. This vulnerability could be used by a malicious website to steal private data from users authenticated to the redirected website. MFSA 2009-10 / CVE-2009-0040: libpng maintainer Glenn Randers-Pehrson reported several memory safety hazards in PNG libraries used by Mozilla. These vulnerabilities could be used by a malicious website to crash a victim's browser and potentially execute arbitrary code on their computer. libpng was upgraded to a version which contained fixes for these flaws. MFSA 2009-11 / CVE-2009-0777: Mozilla contributor Masahiro Yamada reported that certain invisible control characters were being decoded when displayed in the location bar, resulting in fewer visible characters than were present in the actual location. An attacker could use this vulnerability to spoof the location bar and display a misleading URL for their malicious web page. MozillaFirefox-3.0.7-1.1.i586.rpm MozillaFirefox-3.0.7-1.1.ppc.rpm MozillaFirefox-3.0.7-1.1.x86_64.rpm MozillaFirefox-translations-3.0.7-1.1.i586.rpm MozillaFirefox-translations-3.0.7-1.1.ppc.rpm MozillaFirefox-translations-3.0.7-1.1.x86_64.rpm mozilla-xulrunner190-1.9.0.7-1.1.i586.rpm mozilla-xulrunner190-1.9.0.7-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.7-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.7-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.7-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.7-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.7-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.7-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.7-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.7-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.7-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.7-1.1.ppc.rpm gtk2 openSUSE 11.0 A SUSE specific patch to GTK2 accidentally added a relative search path for gtk modules therefore allowed local attackers have gtk programs load modules from untrusted places (CVE-2009-0848). gtk2-2.12.9-37.3.i586.rpm gtk2-2.12.9-37.3.ppc.rpm gtk2-2.12.9-37.3.x86_64.rpm gtk2-32bit-2.12.9-37.3.x86_64.rpm gtk2-64bit-2.12.9-37.3.ppc.rpm gtk2-branding-upstream-2.12.9-37.3.i586.rpm gtk2-branding-upstream-2.12.9-37.3.ppc.rpm gtk2-branding-upstream-2.12.9-37.3.x86_64.rpm gtk2-devel-2.12.9-37.3.i586.rpm gtk2-devel-2.12.9-37.3.ppc.rpm gtk2-devel-2.12.9-37.3.x86_64.rpm gtk2-devel-64bit-2.12.9-37.3.ppc.rpm gtk2-doc-2.12.9-37.3.i586.rpm gtk2-doc-2.12.9-37.3.ppc.rpm gtk2-doc-2.12.9-37.3.x86_64.rpm gtk2-lang-2.12.9-37.3.i586.rpm gtk2-lang-2.12.9-37.3.ppc.rpm gtk2-lang-2.12.9-37.3.x86_64.rpm PolicyKit openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. PolicyKit-0.8-14.2.i586.rpm PolicyKit-0.8-14.2.ppc.rpm PolicyKit-0.8-14.2.x86_64.rpm PolicyKit-32bit-0.8-14.2.x86_64.rpm PolicyKit-64bit-0.8-14.2.ppc.rpm PolicyKit-devel-0.8-14.2.i586.rpm PolicyKit-devel-0.8-14.2.ppc.rpm PolicyKit-devel-0.8-14.2.x86_64.rpm PackageKit openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. PackageKit-0.2.1-15.10.i586.rpm PackageKit-0.2.1-15.10.ppc.rpm PackageKit-0.2.1-15.10.x86_64.rpm PackageKit-devel-0.2.1-15.10.i586.rpm PackageKit-devel-0.2.1-15.10.ppc.rpm PackageKit-devel-0.2.1-15.10.x86_64.rpm pommed openSUSE 11.0 A dbus security update changed the default access permissios for services on the bus from allow to deny. Pommed relied on the old behavior and therefore needs a new configuration. gpomme-1.15-38.2.i586.rpm gpomme-1.15-38.2.x86_64.rpm pommed-1.15-38.2.i586.rpm pommed-1.15-38.2.x86_64.rpm wmpomme-1.15-38.2.i586.rpm wmpomme-1.15-38.2.x86_64.rpm hal openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. hal-0.5.11-8.4.i586.rpm hal-0.5.11-8.4.ppc.rpm hal-0.5.11-8.4.x86_64.rpm hal-32bit-0.5.11-8.4.x86_64.rpm hal-64bit-0.5.11-8.4.ppc.rpm hal-devel-0.5.11-8.4.i586.rpm hal-devel-0.5.11-8.4.ppc.rpm hal-devel-0.5.11-8.4.x86_64.rpm gvim openSUSE 11.0 The VI Improved editor (vim) was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python code was used. CVE-2008-2712: Arbitrary code execution in vim helper plugins filetype.vim, zipplugin, xpm.vim, gzip_vim, and netrw were fixed. CVE-2008-3074: tarplugin code injection CVE-2008-3075: zipplugin code injection CVE-2008-3076: several netrw bugs, code injection CVE-2008-6235: code injection in the netrw plugin CVE-2008-4677: credential disclosure by netrw plugin gvim-7.2-9.1.i586.rpm gvim-7.2-9.1.ppc.rpm gvim-7.2-9.1.x86_64.rpm vim-7.2-9.1.i586.rpm vim-7.2-9.1.ppc.rpm vim-7.2-9.1.x86_64.rpm vim-base-7.2-9.1.i586.rpm vim-base-7.2-9.1.ppc.rpm vim-base-7.2-9.1.x86_64.rpm vim-data-7.2-9.1.i586.rpm vim-data-7.2-9.1.ppc.rpm vim-data-7.2-9.1.x86_64.rpm vim-enhanced-7.2-9.1.i586.rpm vim-enhanced-7.2-9.1.ppc.rpm vim-enhanced-7.2-9.1.x86_64.rpm xpdf openSUSE 11.0 When selecting Full screen mode, xpdf immediately crashes if a pdf file loaded. xpdf-3.02-95.2.i586.rpm xpdf-3.02-95.2.ppc.rpm xpdf-3.02-95.2.x86_64.rpm xpdf-tools-3.02-95.2.i586.rpm xpdf-tools-3.02-95.2.ppc.rpm xpdf-tools-3.02-95.2.x86_64.rpm ModemManager openSUSE 11.0 The NetworkManager configuration was too permissive and allowed any user to read secrets (CVE-2009-0365) or manipulate the configuration of other users (CVE-2009-0578). NetworkManager-0.7.0.r3685-7.4.i586.rpm NetworkManager-0.7.0.r3685-7.4.ppc.rpm NetworkManager-0.7.0.r3685-7.4.x86_64.rpm NetworkManager-devel-0.7.0.r3685-7.4.i586.rpm NetworkManager-devel-0.7.0.r3685-7.4.ppc.rpm NetworkManager-devel-0.7.0.r3685-7.4.x86_64.rpm NetworkManager-glib-0.7.0.r3685-7.4.i586.rpm NetworkManager-glib-0.7.0.r3685-7.4.ppc.rpm NetworkManager-glib-0.7.0.r3685-7.4.x86_64.rpm NetworkManager-kde openSUSE 11.0 The knetworkmanager configuration was too permissive and allowed any user to read secrets (CVE-2009-0365). NetworkManager-kde-0.7r821737-0.5.i586.rpm NetworkManager-kde-0.7r821737-0.5.ppc.rpm NetworkManager-kde-0.7r821737-0.5.x86_64.rpm NetworkManager-kde-devel-0.7r821737-0.5.i586.rpm NetworkManager-kde-devel-0.7r821737-0.5.ppc.rpm NetworkManager-kde-devel-0.7r821737-0.5.x86_64.rpm NetworkManager-openvpn-kde-0.7r821737-0.5.i586.rpm NetworkManager-openvpn-kde-0.7r821737-0.5.ppc.rpm NetworkManager-openvpn-kde-0.7r821737-0.5.x86_64.rpm NetworkManager-vpnc-kde-0.7r821737-0.5.i586.rpm NetworkManager-vpnc-kde-0.7r821737-0.5.ppc.rpm NetworkManager-vpnc-kde-0.7r821737-0.5.x86_64.rpm NetworkManager-gnome openSUSE 11.0 The NetworkManager configuration was too permissive and allowed any user to read secrets (CVE-2009-0365) or manipulate the configuration of other users (CVE-2009-0578). NetworkManager-gnome-0.7.0.r729-7.4.i586.rpm NetworkManager-gnome-0.7.0.r729-7.4.ppc.rpm NetworkManager-gnome-0.7.0.r729-7.4.x86_64.rpm libpurple openSUSE 11.0 Fixes connecting of pidgin and finch to ICQ. libpurple-2.4.1-28.6.i586.rpm libpurple-2.4.1-28.6.ppc.rpm libpurple-2.4.1-28.6.x86_64.rpm dbus-1 openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. dbus-1-1.2.1-15.4.i586.rpm dbus-1-1.2.1-15.4.ppc.rpm dbus-1-1.2.1-15.4.x86_64.rpm dbus-1-32bit-1.2.1-15.4.x86_64.rpm dbus-1-64bit-1.2.1-15.4.ppc.rpm dbus-1-devel-1.2.1-15.4.i586.rpm dbus-1-devel-1.2.1-15.4.ppc.rpm dbus-1-devel-1.2.1-15.4.x86_64.rpm dbus-1-devel-doc-1.2.1-15.4.i586.rpm dbus-1-devel-doc-1.2.1-15.4.ppc.rpm dbus-1-devel-doc-1.2.1-15.4.x86_64.rpm dbus-1-glib-0.74-88.1.i586.rpm dbus-1-glib-0.74-88.1.ppc.rpm dbus-1-glib-0.74-88.1.x86_64.rpm dbus-1-glib-32bit-0.74-88.1.x86_64.rpm dbus-1-glib-64bit-0.74-88.1.ppc.rpm dbus-1-glib-devel-0.74-88.1.i586.rpm dbus-1-glib-devel-0.74-88.1.ppc.rpm dbus-1-glib-devel-0.74-88.1.x86_64.rpm dbus-1-glib-doc-0.74-88.1.i586.rpm dbus-1-glib-doc-0.74-88.1.ppc.rpm dbus-1-glib-doc-0.74-88.1.x86_64.rpm dbus-1-mono-0.63-154.1.i586.rpm dbus-1-mono-0.63-154.1.ppc.rpm dbus-1-mono-0.63-154.1.x86_64.rpm dbus-1-python-0.82.4-49.1.i586.rpm dbus-1-python-0.82.4-49.1.ppc.rpm dbus-1-python-0.82.4-49.1.x86_64.rpm dbus-1-python-devel-0.82.4-49.1.i586.rpm dbus-1-python-devel-0.82.4-49.1.ppc.rpm dbus-1-python-devel-0.82.4-49.1.x86_64.rpm dbus-1-qt3-0.62-179.1.i586.rpm dbus-1-qt3-0.62-179.1.ppc.rpm dbus-1-qt3-0.62-179.1.x86_64.rpm dbus-1-qt3-32bit-0.62-179.1.x86_64.rpm dbus-1-qt3-64bit-0.62-179.1.ppc.rpm dbus-1-qt3-devel-0.62-179.1.i586.rpm dbus-1-qt3-devel-0.62-179.1.ppc.rpm dbus-1-qt3-devel-0.62-179.1.x86_64.rpm dbus-1-x11-1.2.1-18.4.i586.rpm dbus-1-x11-1.2.1-18.4.ppc.rpm dbus-1-x11-1.2.1-18.4.x86_64.rpm ConsoleKit openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. ConsoleKit-0.2.10-14.4.i586.rpm ConsoleKit-0.2.10-14.4.ppc.rpm ConsoleKit-0.2.10-14.4.x86_64.rpm ConsoleKit-32bit-0.2.10-14.4.x86_64.rpm ConsoleKit-64bit-0.2.10-14.4.ppc.rpm ConsoleKit-devel-0.2.10-14.4.i586.rpm ConsoleKit-devel-0.2.10-14.4.ppc.rpm ConsoleKit-devel-0.2.10-14.4.x86_64.rpm ConsoleKit-x11-0.2.10-14.4.i586.rpm ConsoleKit-x11-0.2.10-14.4.ppc.rpm ConsoleKit-x11-0.2.10-14.4.x86_64.rpm hal openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. powersave-0.15.20-38.2.i586.rpm powersave-0.15.20-38.2.ppc.rpm powersave-0.15.20-38.2.x86_64.rpm powersave-devel-0.15.20-38.2.i586.rpm powersave-devel-0.15.20-38.2.ppc.rpm powersave-devel-0.15.20-38.2.x86_64.rpm powersave-libs-0.15.20-38.2.i586.rpm powersave-libs-0.15.20-38.2.ppc.rpm powersave-libs-0.15.20-38.2.x86_64.rpm powersave-libs-32bit-0.15.20-38.2.x86_64.rpm powersave-libs-64bit-0.15.20-38.2.ppc.rpm opera openSUSE 11.0 Opera 9.64 is a recommended security and stability upgrade, incorporating the Opera Presto 2.1.1 user agent engine. Opera highly recommends all users to upgrade to Opera 9.64 to take advantage of these improvements (CVE-2009-0914, CVE-2009-0915, CVE-2009-0916). A detailed changelog can be found at http://www.opera.com/docs/changelogs/linux/964/ opera-9.64-1.1.i586.rpm opera-9.64-1.1.ppc.rpm opera-9.64-1.1.x86_64.rpm java-1_6_0-openjdk openSUSE 11.0 Specially crafted image files could cause an integer overflow in the lcms library contained in openjdk. Attackers could potentially exploit that to crash applications using lcms or even execute arbitrary code (CVE-2009-0723, CVE-2009-0581, CVE-2009-0733). This update also fixes problems with package dependencies that prevented installation of the package. java-1_6_0-openjdk-1.4_b14-24.3.i586.rpm java-1_6_0-openjdk-1.4_b14-24.3.ppc.rpm java-1_6_0-openjdk-1.4_b14-24.3.x86_64.rpm java-1_6_0-openjdk-demo-1.4_b14-24.3.i586.rpm java-1_6_0-openjdk-demo-1.4_b14-24.3.ppc.rpm java-1_6_0-openjdk-demo-1.4_b14-24.3.x86_64.rpm java-1_6_0-openjdk-devel-1.4_b14-24.3.i586.rpm java-1_6_0-openjdk-devel-1.4_b14-24.3.ppc.rpm java-1_6_0-openjdk-devel-1.4_b14-24.3.x86_64.rpm java-1_6_0-openjdk-javadoc-1.4_b14-24.3.i586.rpm java-1_6_0-openjdk-javadoc-1.4_b14-24.3.ppc.rpm java-1_6_0-openjdk-javadoc-1.4_b14-24.3.x86_64.rpm java-1_6_0-openjdk-plugin-1.4_b14-24.3.i586.rpm java-1_6_0-openjdk-plugin-1.4_b14-24.3.ppc.rpm java-1_6_0-openjdk-plugin-1.4_b14-24.3.x86_64.rpm java-1_6_0-openjdk-src-1.4_b14-24.3.i586.rpm java-1_6_0-openjdk-src-1.4_b14-24.3.ppc.rpm java-1_6_0-openjdk-src-1.4_b14-24.3.x86_64.rpm kpartx openSUSE 11.0 This update improves the file permissions on the socket file. (CVE-2009-0115) kpartx-0.4.7-127.2.i586.rpm kpartx-0.4.7-127.2.ppc.rpm kpartx-0.4.7-127.2.x86_64.rpm multipath-tools-0.4.7-127.2.i586.rpm multipath-tools-0.4.7-127.2.ppc.rpm multipath-tools-0.4.7-127.2.x86_64.rpm lcms openSUSE 11.0 Specially crafted image files could cause an integer overflow in lcms. Attackers could potentially exploit that to crash applications using lcms or even execute arbitrary code (CVE-2009-0723, CVE-2009-0581, CVE-2009-0733). lcms-1.17-40.2.i586.rpm lcms-1.17-40.2.ppc.rpm lcms-1.17-40.2.x86_64.rpm liblcms-devel-1.17-40.2.i586.rpm liblcms-devel-1.17-40.2.ppc.rpm liblcms-devel-1.17-40.2.x86_64.rpm liblcms-devel-32bit-1.17-40.2.x86_64.rpm liblcms-devel-64bit-1.17-40.2.ppc.rpm liblcms1-1.17-40.2.i586.rpm liblcms1-1.17-40.2.ppc.rpm liblcms1-1.17-40.2.x86_64.rpm liblcms1-32bit-1.17-40.2.x86_64.rpm liblcms1-64bit-1.17-40.2.ppc.rpm horde openSUSE 11.0 Version update to horde 3.1.9 fixes a cross-site-scripting (XSS) issue (CVE-2008-5917) and an include file problem (CVE-2009-0932). horde-3.1.9-0.1.noarch.rpm imp openSUSE 11.0 Version update to IMP 4.1.6 fixes a problem with validating HTTP requests that allowed attackers to delete emails (CVE-2007-6018) and some cross-site-scripting issues (CVE-2009-0930). imp-4.1.6-0.1.noarch.rpm bluez-audio openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. bluez-audio-3.32-8.4.i586.rpm bluez-audio-3.32-8.4.ppc.rpm bluez-audio-3.32-8.4.x86_64.rpm bluez-cups-3.32-8.4.i586.rpm bluez-cups-3.32-8.4.ppc.rpm bluez-cups-3.32-8.4.x86_64.rpm bluez-test-3.32-8.4.i586.rpm bluez-test-3.32-8.4.ppc.rpm bluez-test-3.32-8.4.x86_64.rpm bluez-utils-3.32-8.4.i586.rpm bluez-utils-3.32-8.4.ppc.rpm bluez-utils-3.32-8.4.x86_64.rpm moodle openSUSE 11.0 moodle was prone to several cross-site-scripting (XSS) and cross-site-request-forgery (CSRF) problems (CVE-2009-0499, CVE-2009-0500, CVE-2009-0501, CVE-2009-0502). moodle-1.9.0-24.6.noarch.rpm moodle-af-1.9.0-24.6.noarch.rpm moodle-ar-1.9.0-24.6.noarch.rpm moodle-be-1.9.0-24.6.noarch.rpm moodle-bg-1.9.0-24.6.noarch.rpm moodle-bs-1.9.0-24.6.noarch.rpm moodle-ca-1.9.0-24.6.noarch.rpm moodle-cs-1.9.0-24.6.noarch.rpm moodle-da-1.9.0-24.6.noarch.rpm moodle-de-1.9.0-24.6.noarch.rpm moodle-de_du-1.9.0-24.6.noarch.rpm moodle-el-1.9.0-24.6.noarch.rpm moodle-es-1.9.0-24.6.noarch.rpm moodle-et-1.9.0-24.6.noarch.rpm moodle-eu-1.9.0-24.6.noarch.rpm moodle-fa-1.9.0-24.6.noarch.rpm moodle-fi-1.9.0-24.6.noarch.rpm moodle-fr-1.9.0-24.6.noarch.rpm moodle-ga-1.9.0-24.6.noarch.rpm moodle-gl-1.9.0-24.6.noarch.rpm moodle-he-1.9.0-24.6.noarch.rpm moodle-hi-1.9.0-24.6.noarch.rpm moodle-hr-1.9.0-24.6.noarch.rpm moodle-hu-1.9.0-24.6.noarch.rpm moodle-id-1.9.0-24.6.noarch.rpm moodle-is-1.9.0-24.6.noarch.rpm moodle-it-1.9.0-24.6.noarch.rpm moodle-ja-1.9.0-24.6.noarch.rpm moodle-ka-1.9.0-24.6.noarch.rpm moodle-km-1.9.0-24.6.noarch.rpm moodle-kn-1.9.0-24.6.noarch.rpm moodle-ko-1.9.0-24.6.noarch.rpm moodle-lt-1.9.0-24.6.noarch.rpm moodle-lv-1.9.0-24.6.noarch.rpm moodle-mi_tn-1.9.0-24.6.noarch.rpm moodle-ms-1.9.0-24.6.noarch.rpm moodle-nl-1.9.0-24.6.noarch.rpm moodle-nn-1.9.0-24.6.noarch.rpm moodle-no-1.9.0-24.6.noarch.rpm moodle-pl-1.9.0-24.6.noarch.rpm moodle-pt-1.9.0-24.6.noarch.rpm moodle-ro-1.9.0-24.6.noarch.rpm moodle-ru-1.9.0-24.6.noarch.rpm moodle-sk-1.9.0-24.6.noarch.rpm moodle-sl-1.9.0-24.6.noarch.rpm moodle-so-1.9.0-24.6.noarch.rpm moodle-sq-1.9.0-24.6.noarch.rpm moodle-sr-1.9.0-24.6.noarch.rpm moodle-sv-1.9.0-24.6.noarch.rpm moodle-th-1.9.0-24.6.noarch.rpm moodle-tl-1.9.0-24.6.noarch.rpm moodle-tr-1.9.0-24.6.noarch.rpm moodle-uk-1.9.0-24.6.noarch.rpm moodle-vi-1.9.0-24.6.noarch.rpm moodle-zh_cn-1.9.0-24.6.noarch.rpm ghostscript-devel openSUSE 11.0 Integer overflows and missing upper bounds checks in Ghostscript's ICC library potentially allowed attackers to crash Ghostscript or even cause execution of arbitrary code via specially crafted PS or PDF files (CVE-2009-0583, CVE-2009-0584). ghostscript-devel-8.62-17.2.i586.rpm ghostscript-devel-8.62-17.2.ppc.rpm ghostscript-devel-8.62-17.2.x86_64.rpm ghostscript-fonts-other-8.62-17.2.i586.rpm ghostscript-fonts-other-8.62-17.2.ppc.rpm ghostscript-fonts-other-8.62-17.2.x86_64.rpm ghostscript-fonts-rus-8.62-17.2.i586.rpm ghostscript-fonts-rus-8.62-17.2.ppc.rpm ghostscript-fonts-rus-8.62-17.2.x86_64.rpm ghostscript-fonts-std-8.62-17.2.i586.rpm ghostscript-fonts-std-8.62-17.2.ppc.rpm ghostscript-fonts-std-8.62-17.2.x86_64.rpm ghostscript-ijs-devel-8.62-17.2.i586.rpm ghostscript-ijs-devel-8.62-17.2.ppc.rpm ghostscript-ijs-devel-8.62-17.2.x86_64.rpm ghostscript-library-8.62-17.2.i586.rpm ghostscript-library-8.62-17.2.ppc.rpm ghostscript-library-8.62-17.2.x86_64.rpm ghostscript-omni-8.62-17.2.i586.rpm ghostscript-omni-8.62-17.2.ppc.rpm ghostscript-omni-8.62-17.2.x86_64.rpm ghostscript-x11-8.62-17.2.i586.rpm ghostscript-x11-8.62-17.2.ppc.rpm ghostscript-x11-8.62-17.2.x86_64.rpm libgimpprint-4.2.7-258.2.i586.rpm libgimpprint-4.2.7-258.2.ppc.rpm libgimpprint-4.2.7-258.2.x86_64.rpm libgimpprint-devel-4.2.7-258.2.i586.rpm libgimpprint-devel-4.2.7-258.2.ppc.rpm libgimpprint-devel-4.2.7-258.2.x86_64.rpm acroread openSUSE 11.0 Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. (CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062) acroread-8.1.4-0.1.i586.rpm struts openSUSE 11.0 Insufficient quoting of parameters allowed attackers to conduct cross site scripting (XSS) attacks (CVE-2008-2025). struts-1.2.9-198.2.noarch.rpm struts-javadoc-1.2.9-198.2.noarch.rpm struts-manual-1.2.9-198.2.noarch.rpm struts-webapps-tomcat6-1.2.9-198.2.noarch.rpm logwatch openSUSE 11.0 Starting logwatch from cron didn't work as expected because sendmail was called without full path. logwatch-7.3.6-35.2.noarch.rpm java-1_5_0-sun openSUSE 11.0 The Sun JDK 5 was updated to Update18 to fix various bugs and security issues. CVE-2009-1093: LdapCtx in the LDAP service in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.1_24 and earlier; and 1.4.2_19 and earlier does not close the connection when initialization fails, which allows remote attackers to cause a denial of service (LDAP service hang). CVE-2009-1094: Unspecified vulnerability in the LDAP implementation in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.1_24 and earlier; and 1.4.2_19 and earlier allows remote LDAP servers to execute arbitrary code via unknown vectors related to serialized data. CVE-2009-1095: Integer overflow in unpack200 in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers. CVE-2009-1096: Buffer overflow in unpack200 in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers. CVE-2009-1098: Buffer overflow in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files or execute arbitrary code via a crafted GIF image, aka CR 6804998. CVE-2009-1099: Integer signedness error in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a crafted Type1 font, which triggers a buffer overflow. CVE-2009-1100: Multiple unspecified vulnerabilities in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allow remote attackers to cause a denial of service (disk consumption) via vectors related to temporary font files and (1) "limits on Font creation," aka CR 6522586, and (2) another unspecified vector, aka CR 6632886. CVE-2009-1103: Unspecified vulnerability in the Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors related to "deserializing applets," aka CR 6646860. CVE-2009-1104: The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; and 1.4.2_19 and earlier does not prevent Javascript that is loaded from the localhost from connecting to other ports on the system, which allows user-assisted attackers to bypass intended access restrictions via LiveConnect, aka CR 6724331. NOTE: this vulnerability can be leveraged with separate cross-site scripting (XSS) vulnerabilities for remote attack vectors. CVE-2009-1107: The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier, and 5.0 Update 17 and earlier, allows remote attackers to trick a user into trusting a signed applet via unknown vectors that misrepresent the security warning dialog, related to a "Swing JLabel HTML parsing vulnerability," aka CR 6782871. java-1_5_0-sun-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-1.5.0_update18-0.1.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-alsa-1.5.0_update18-0.1.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-demo-1.5.0_update18-0.1.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-devel-1.5.0_update18-0.1.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update18-0.1.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update18-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update18-0.1.x86_64.rpm java-1_6_0-sun openSUSE 11.0 The Sun JDK 6 was updated to Update13 to fix various bugs and security issues. CVE-2009-1093: LdapCtx in the LDAP service in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.1_24 and earlier; and 1.4.2_19 and earlier does not close the connection when initialization fails, which allows remote attackers to cause a denial of service (LDAP service hang). CVE-2009-1094: Unspecified vulnerability in the LDAP implementation in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.1_24 and earlier; and 1.4.2_19 and earlier allows remote LDAP servers to execute arbitrary code via unknown vectors related to serialized data. CVE-2009-1095: Integer overflow in unpack200 in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers. CVE-2009-1096: Buffer overflow in unpack200 in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers. CVE-2009-1097: Multiple buffer overflows in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via a crafted (1) PNG image, aka CR 6804996, and (2) GIF image, aka CR 6804997. CVE-2009-1098: Buffer overflow in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files or execute arbitrary code via a crafted GIF image, aka CR 6804998. CVE-2009-1099: Integer signedness error in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a crafted Type1 font, which triggers a buffer overflow. CVE-2009-1100: Multiple unspecified vulnerabilities in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allow remote attackers to cause a denial of service (disk consumption) via vectors related to temporary font files and (1) "limits on Font creation," aka CR 6522586, and (2) another unspecified vector, aka CR 6632886. CVE-2009-1101: Unspecified vulnerability in the lightweight HTTP server implementation in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allows remote attackers to cause a denial of service (probably resource consumption) for a JAX-WS service endpoint via a connection without any data, which triggers a file descriptor "leak." CVE-2009-1102: Unspecified vulnerability in the Virtual Machine in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors related to "code generation." CVE-2009-1103: Unspecified vulnerability in the Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors related to "deserializing applets," aka CR 6646860. CVE-2009-1104: The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; and 1.4.2_19 and earlier does not prevent Javascript that is loaded from the localhost from connecting to other ports on the system, which allows user-assisted attackers to bypass intended access restrictions via LiveConnect, aka CR 6724331. NOTE: this vulnerability can be leveraged with separate cross-site scripting (XSS) vulnerabilities for remote attack vectors. CVE-2009-1105: The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 allows user-assisted remote attackers to cause a trusted applet to run in an older JRE version, which can be used to exploit vulnerabilities in that older version, aka CR 6706490. CVE-2009-1106: The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 does not properly parse crossdomain.xml files, which allows remote attackers to bypass intended access restrictions and connect to arbitrary sites via unknown vectors, aka CR 6798948. CVE-2009-1107: The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier, and 5.0 Update 17 and earlier, allows remote attackers to trick a user into trusting a signed applet via unknown vectors that misrepresent the security warning dialog, related to a "Swing JLabel HTML parsing vulnerability," aka CR 6782871. java-1_6_0-sun-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-1.6.0.u13-0.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u13-0.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u13-0.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u13-0.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u13-0.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-plugin-1.6.0.u13-0.1.x86_64.rpm java-1_6_0-sun-src-1.6.0.u13-0.1.i586.rpm java-1_6_0-sun-src-1.6.0.u13-0.1.x86_64.rpm apache2-mod_php5 openSUSE 11.0 php 5.1.9 fixes among other things some security issues: - Missing bounds checks of an error in the imageRotate function of the gd extension potentially allowed attackers to read portions of memory (CVE-2008-5498). - the mbstring.func_overload in .htaccess was applied to other virtual hosts on th same machine (CVE-2009-0754). apache2-mod_php5-5.2.9-0.1.i586.rpm apache2-mod_php5-5.2.9-0.1.ppc.rpm apache2-mod_php5-5.2.9-0.1.x86_64.rpm php5-5.2.9-0.1.i586.rpm php5-5.2.9-0.1.ppc.rpm php5-5.2.9-0.1.x86_64.rpm php5-bcmath-5.2.9-0.1.i586.rpm php5-bcmath-5.2.9-0.1.ppc.rpm php5-bcmath-5.2.9-0.1.x86_64.rpm php5-bz2-5.2.9-0.1.i586.rpm php5-bz2-5.2.9-0.1.ppc.rpm php5-bz2-5.2.9-0.1.x86_64.rpm php5-calendar-5.2.9-0.1.i586.rpm php5-calendar-5.2.9-0.1.ppc.rpm php5-calendar-5.2.9-0.1.x86_64.rpm php5-ctype-5.2.9-0.1.i586.rpm php5-ctype-5.2.9-0.1.ppc.rpm php5-ctype-5.2.9-0.1.x86_64.rpm php5-curl-5.2.9-0.1.i586.rpm php5-curl-5.2.9-0.1.ppc.rpm php5-curl-5.2.9-0.1.x86_64.rpm php5-dba-5.2.9-0.1.i586.rpm php5-dba-5.2.9-0.1.ppc.rpm php5-dba-5.2.9-0.1.x86_64.rpm php5-dbase-5.2.9-0.1.i586.rpm php5-dbase-5.2.9-0.1.ppc.rpm php5-dbase-5.2.9-0.1.x86_64.rpm php5-devel-5.2.9-0.1.i586.rpm php5-devel-5.2.9-0.1.ppc.rpm php5-devel-5.2.9-0.1.x86_64.rpm php5-dom-5.2.9-0.1.i586.rpm php5-dom-5.2.9-0.1.ppc.rpm php5-dom-5.2.9-0.1.x86_64.rpm php5-exif-5.2.9-0.1.i586.rpm php5-exif-5.2.9-0.1.ppc.rpm php5-exif-5.2.9-0.1.x86_64.rpm php5-fastcgi-5.2.9-0.1.i586.rpm php5-fastcgi-5.2.9-0.1.ppc.rpm php5-fastcgi-5.2.9-0.1.x86_64.rpm php5-ftp-5.2.9-0.1.i586.rpm php5-ftp-5.2.9-0.1.ppc.rpm php5-ftp-5.2.9-0.1.x86_64.rpm php5-gd-5.2.9-0.1.i586.rpm php5-gd-5.2.9-0.1.ppc.rpm php5-gd-5.2.9-0.1.x86_64.rpm php5-gettext-5.2.9-0.1.i586.rpm php5-gettext-5.2.9-0.1.ppc.rpm php5-gettext-5.2.9-0.1.x86_64.rpm php5-gmp-5.2.9-0.1.i586.rpm php5-gmp-5.2.9-0.1.ppc.rpm php5-gmp-5.2.9-0.1.x86_64.rpm php5-hash-5.2.9-0.1.i586.rpm php5-hash-5.2.9-0.1.ppc.rpm php5-hash-5.2.9-0.1.x86_64.rpm php5-iconv-5.2.9-0.1.i586.rpm php5-iconv-5.2.9-0.1.ppc.rpm php5-iconv-5.2.9-0.1.x86_64.rpm php5-imap-5.2.9-0.1.i586.rpm php5-imap-5.2.9-0.1.ppc.rpm php5-imap-5.2.9-0.1.x86_64.rpm php5-json-5.2.9-0.1.i586.rpm php5-json-5.2.9-0.1.ppc.rpm php5-json-5.2.9-0.1.x86_64.rpm php5-ldap-5.2.9-0.1.i586.rpm php5-ldap-5.2.9-0.1.ppc.rpm php5-ldap-5.2.9-0.1.x86_64.rpm php5-mbstring-5.2.9-0.1.i586.rpm php5-mbstring-5.2.9-0.1.ppc.rpm php5-mbstring-5.2.9-0.1.x86_64.rpm php5-mcrypt-5.2.9-0.1.i586.rpm php5-mcrypt-5.2.9-0.1.ppc.rpm php5-mcrypt-5.2.9-0.1.x86_64.rpm php5-mysql-5.2.9-0.1.i586.rpm php5-mysql-5.2.9-0.1.ppc.rpm php5-mysql-5.2.9-0.1.x86_64.rpm php5-ncurses-5.2.9-0.1.i586.rpm php5-ncurses-5.2.9-0.1.ppc.rpm php5-ncurses-5.2.9-0.1.x86_64.rpm php5-odbc-5.2.9-0.1.i586.rpm php5-odbc-5.2.9-0.1.ppc.rpm php5-odbc-5.2.9-0.1.x86_64.rpm php5-openssl-5.2.9-0.1.i586.rpm php5-openssl-5.2.9-0.1.ppc.rpm php5-openssl-5.2.9-0.1.x86_64.rpm php5-pcntl-5.2.9-0.1.i586.rpm php5-pcntl-5.2.9-0.1.ppc.rpm php5-pcntl-5.2.9-0.1.x86_64.rpm php5-pdo-5.2.9-0.1.i586.rpm php5-pdo-5.2.9-0.1.ppc.rpm php5-pdo-5.2.9-0.1.x86_64.rpm php5-pear-5.2.9-0.1.i586.rpm php5-pear-5.2.9-0.1.ppc.rpm php5-pear-5.2.9-0.1.x86_64.rpm php5-pgsql-5.2.9-0.1.i586.rpm php5-pgsql-5.2.9-0.1.ppc.rpm php5-pgsql-5.2.9-0.1.x86_64.rpm php5-posix-5.2.9-0.1.i586.rpm php5-posix-5.2.9-0.1.ppc.rpm php5-posix-5.2.9-0.1.x86_64.rpm php5-pspell-5.2.9-0.1.i586.rpm php5-pspell-5.2.9-0.1.ppc.rpm php5-pspell-5.2.9-0.1.x86_64.rpm php5-readline-5.2.9-0.1.i586.rpm php5-readline-5.2.9-0.1.ppc.rpm php5-readline-5.2.9-0.1.x86_64.rpm php5-shmop-5.2.9-0.1.i586.rpm php5-shmop-5.2.9-0.1.ppc.rpm php5-shmop-5.2.9-0.1.x86_64.rpm php5-snmp-5.2.9-0.1.i586.rpm php5-snmp-5.2.9-0.1.ppc.rpm php5-snmp-5.2.9-0.1.x86_64.rpm php5-soap-5.2.9-0.1.i586.rpm php5-soap-5.2.9-0.1.ppc.rpm php5-soap-5.2.9-0.1.x86_64.rpm php5-sockets-5.2.9-0.1.i586.rpm php5-sockets-5.2.9-0.1.ppc.rpm php5-sockets-5.2.9-0.1.x86_64.rpm php5-sqlite-5.2.9-0.1.i586.rpm php5-sqlite-5.2.9-0.1.ppc.rpm php5-sqlite-5.2.9-0.1.x86_64.rpm php5-suhosin-5.2.9-0.1.i586.rpm php5-suhosin-5.2.9-0.1.ppc.rpm php5-suhosin-5.2.9-0.1.x86_64.rpm php5-sysvmsg-5.2.9-0.1.i586.rpm php5-sysvmsg-5.2.9-0.1.ppc.rpm php5-sysvmsg-5.2.9-0.1.x86_64.rpm php5-sysvsem-5.2.9-0.1.i586.rpm php5-sysvsem-5.2.9-0.1.ppc.rpm php5-sysvsem-5.2.9-0.1.x86_64.rpm php5-sysvshm-5.2.9-0.1.i586.rpm php5-sysvshm-5.2.9-0.1.ppc.rpm php5-sysvshm-5.2.9-0.1.x86_64.rpm php5-tidy-5.2.9-0.1.i586.rpm php5-tidy-5.2.9-0.1.ppc.rpm php5-tidy-5.2.9-0.1.x86_64.rpm php5-tokenizer-5.2.9-0.1.i586.rpm php5-tokenizer-5.2.9-0.1.ppc.rpm php5-tokenizer-5.2.9-0.1.x86_64.rpm php5-wddx-5.2.9-0.1.i586.rpm php5-wddx-5.2.9-0.1.ppc.rpm php5-wddx-5.2.9-0.1.x86_64.rpm php5-xmlreader-5.2.9-0.1.i586.rpm php5-xmlreader-5.2.9-0.1.ppc.rpm php5-xmlreader-5.2.9-0.1.x86_64.rpm php5-xmlrpc-5.2.9-0.1.i586.rpm php5-xmlrpc-5.2.9-0.1.ppc.rpm php5-xmlrpc-5.2.9-0.1.x86_64.rpm php5-xmlwriter-5.2.9-0.1.i586.rpm php5-xmlwriter-5.2.9-0.1.ppc.rpm php5-xmlwriter-5.2.9-0.1.x86_64.rpm php5-xsl-5.2.9-0.1.i586.rpm php5-xsl-5.2.9-0.1.ppc.rpm php5-xsl-5.2.9-0.1.x86_64.rpm php5-zip-5.2.9-0.1.i586.rpm php5-zip-5.2.9-0.1.ppc.rpm php5-zip-5.2.9-0.1.x86_64.rpm php5-zlib-5.2.9-0.1.i586.rpm php5-zlib-5.2.9-0.1.ppc.rpm php5-zlib-5.2.9-0.1.x86_64.rpm phpMyAdmin openSUSE 11.0 This update of phpMyAdmin fixes multiple vulnerabilities: - CVE-2009-1148: directory traversal - CVE-2009-1149: CRLF injection - CVE-2009-1150: cross-site scripting - CVE-2009-1151: static code injection phpMyAdmin-2.11.9.5-0.1.noarch.rpm libsndfile openSUSE 11.0 Specially crafted CAF files could cause an integer overflow in libsndfile (CVE-2009-0186). libsndfile-1.0.17-141.2.i586.rpm libsndfile-1.0.17-141.2.ppc.rpm libsndfile-1.0.17-141.2.x86_64.rpm libsndfile-32bit-1.0.17-141.2.x86_64.rpm libsndfile-64bit-1.0.17-141.2.ppc.rpm libsndfile-devel-1.0.17-141.2.i586.rpm libsndfile-devel-1.0.17-141.2.ppc.rpm libsndfile-devel-1.0.17-141.2.x86_64.rpm libsndfile-octave-1.0.17-141.2.i586.rpm libsndfile-octave-1.0.17-141.2.ppc.rpm libsndfile-octave-1.0.17-141.2.x86_64.rpm libsndfile-progs-1.0.17-141.2.i586.rpm libsndfile-progs-1.0.17-141.2.ppc.rpm libsndfile-progs-1.0.17-141.2.x86_64.rpm qemu openSUSE 11.0 qemu update to version 0.10.1 fixes the following security issues: CVE-2008-0928: problems with range checks of block devices CVE-2008-1945: problems with removable media handling CVE-2008-2382: vnc server DoS CVE-2008-4539: fix a heap overflow in the cirrus VGA implementation CVE-2008-5714: off by one error in vnc password handling qemu-0.10.1-0.1.i586.rpm qemu-0.10.1-0.1.ppc.rpm qemu-0.10.1-0.1.x86_64.rpm openswan openSUSE 11.0 By sending a specially crafted Dead Peer Detection (DPD) packet remote attackers could crash the pluto IKE daemon (CVE-2009-0790). openswan-2.4.7-130.2.i586.rpm openswan-2.4.7-130.2.ppc.rpm openswan-2.4.7-130.2.x86_64.rpm openswan-doc-2.4.7-130.2.i586.rpm openswan-doc-2.4.7-130.2.ppc.rpm openswan-doc-2.4.7-130.2.x86_64.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox Browser was updated to the 3.0.8 release. It fixes several security issues: MFSA 2009-13 / CVE-2009-1044: Security researcher Nils reported via TippingPoint's Zero Day Initiative that the XUL tree method _moveToEdgeShift was in some cases triggering garbage collection routines on objects which were still in use. In such cases, the browser would crash when attempting to access a previously destroyed object and this crash could be used by an attacker to run arbitrary code on a victim's computer. This vulnerability was used by the reporter to win the 2009 CanSecWest Pwn2Own contest. This vulnerability does not affect Firefox 2, Thunderbird 2, or released versions of SeaMonkey. MFSA 2009-12 / CVE-2009-1169:Security researcher Guido Landi discovered that a XSL stylesheet could be used to crash the browser during a XSL transformation. An attacker could potentially use this crash to run arbitrary code on a victim's computer. This vulnerability was also previously reported as a stability problem by Ubuntu community member, Andre. Ubuntu community member Michael Rooney reported Andre's findings to Mozilla, and Mozilla community member Martin helped reduce Andre's original testcase and contributed a patch to fix the vulnerability. MozillaFirefox-3.0.8-1.1.i586.rpm MozillaFirefox-3.0.8-1.1.ppc.rpm MozillaFirefox-3.0.8-1.1.x86_64.rpm MozillaFirefox-translations-3.0.8-1.1.i586.rpm MozillaFirefox-translations-3.0.8-1.1.ppc.rpm MozillaFirefox-translations-3.0.8-1.1.x86_64.rpm mozilla-xulrunner190-1.9.0.8-1.1.i586.rpm mozilla-xulrunner190-1.9.0.8-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.8-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.8-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.8-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.8-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.8-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.8-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.8-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.8-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.8-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.8-1.1.ppc.rpm krb5 openSUSE 11.0 Clients sending negotiation requests with invalid flags could crash the kerberos server (CVE-2009-0845). GSS-API clients could crash when reading from an invalid address space (CVE-2009-0844). Invalid length checks could crash applications using the kerberos ASN.1 parser (CVE-2009-0847). Under certain circumstances the ASN.1 parser could free an uninitialized pointer which could crash a kerberos server or even lead to execution of arbitrary code (CVE-2009-0846). krb5-1.6.3-50.5.i586.rpm krb5-1.6.3-50.5.ppc.rpm krb5-1.6.3-50.5.x86_64.rpm krb5-32bit-1.6.3-50.5.x86_64.rpm krb5-64bit-1.6.3-50.5.ppc.rpm krb5-apps-clients-1.6.3-50.5.i586.rpm krb5-apps-clients-1.6.3-50.5.ppc.rpm krb5-apps-clients-1.6.3-50.5.x86_64.rpm krb5-apps-servers-1.6.3-50.5.i586.rpm krb5-apps-servers-1.6.3-50.5.ppc.rpm krb5-apps-servers-1.6.3-50.5.x86_64.rpm krb5-client-1.6.3-50.5.i586.rpm krb5-client-1.6.3-50.5.ppc.rpm krb5-client-1.6.3-50.5.x86_64.rpm krb5-devel-1.6.3-50.5.i586.rpm krb5-devel-1.6.3-50.5.ppc.rpm krb5-devel-1.6.3-50.5.x86_64.rpm krb5-devel-32bit-1.6.3-50.5.x86_64.rpm krb5-devel-64bit-1.6.3-50.5.ppc.rpm krb5-server-1.6.3-50.5.i586.rpm krb5-server-1.6.3-50.5.ppc.rpm krb5-server-1.6.3-50.5.x86_64.rpm clamav openSUSE 11.0 ClamAV update to version 0.95. This also fix some potential security bugs. (CVE-2009-1241) clamav-0.95-0.2.i586.rpm clamav-0.95-0.2.ppc.rpm clamav-0.95-0.2.x86_64.rpm clamav-db-0.95-0.2.i586.rpm clamav-db-0.95-0.2.ppc.rpm clamav-db-0.95-0.2.x86_64.rpm klamav openSUSE 11.0 * Compatibility changes for the upcoming ClamAV 0.95. * Add new iconset from Maarten van Gent. * Ukrainian Translation from Yuri Chornoivan * Fix compilation against ClamAV 0.94 * Fix bug #258424 in ubuntu bug tracker. * Install Konqueror Action 'Scan with KlamAV' so that it works on all systems . * Fix bug 213690 in ubuntu bugtracker. Whitespace fixes. * Fix paths when creating crontask. Patch from Marc Benstein klamav-0.46-0.1.i586.rpm klamav-0.46-0.1.ppc.rpm klamav-0.46-0.1.x86_64.rpm hal openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services like hal break due to this setting and need an updated configuration as well. The dbus configuration in the previous hal update was incomplete so this is the second attempt to fix the problem. hal-0.5.11-8.6.i586.rpm hal-0.5.11-8.6.ppc.rpm hal-0.5.11-8.6.x86_64.rpm hal-32bit-0.5.11-8.6.x86_64.rpm hal-64bit-0.5.11-8.6.ppc.rpm hal-devel-0.5.11-8.6.i586.rpm hal-devel-0.5.11-8.6.ppc.rpm hal-devel-0.5.11-8.6.x86_64.rpm strongswan openSUSE 11.0 By sending a specially crafted Dead Peer Detection (DPD) packet remote attackers could crash the pluto IKE daemon (CVE-2009-0790). strongswan-4.2.1-11.6.i586.rpm strongswan-4.2.1-11.6.ppc.rpm strongswan-4.2.1-11.6.x86_64.rpm strongswan-doc-4.2.1-11.6.i586.rpm strongswan-doc-4.2.1-11.6.ppc.rpm strongswan-doc-4.2.1-11.6.x86_64.rpm timezone openSUSE 11.0 * DST changes: Africa/Casablanca, Africa/Tunis, Asia/Damascus, America/Argentina/..., America/Havana, America/Resolute * Historical correction: Europe/Zurich * New timezone: America/Argentina/Salta * zic.c: fix fence-post error (fixes corrupt timezone database) timezone-2009d-0.1.i586.rpm timezone-2009d-0.1.ppc.rpm timezone-2009d-0.1.x86_64.rpm postgresql openSUSE 11.0 Remote authenticated users could crash the postgresql server by requesting a conversion with an inappropriate encoding (CVE-2009-0922). postgresql-8.3.7-0.1.i586.rpm postgresql-8.3.7-0.1.ppc.rpm postgresql-8.3.7-0.1.ppc64.rpm postgresql-8.3.7-0.1.x86_64.rpm postgresql-contrib-8.3.7-0.1.i586.rpm postgresql-contrib-8.3.7-0.1.ppc.rpm postgresql-contrib-8.3.7-0.1.x86_64.rpm postgresql-devel-8.3.7-0.1.i586.rpm postgresql-devel-8.3.7-0.1.ppc.rpm postgresql-devel-8.3.7-0.1.x86_64.rpm postgresql-docs-8.3.7-0.1.i586.rpm postgresql-docs-8.3.7-0.1.ppc.rpm postgresql-docs-8.3.7-0.1.x86_64.rpm postgresql-libs-8.3.7-0.1.i586.rpm postgresql-libs-8.3.7-0.1.ppc.rpm postgresql-libs-8.3.7-0.1.x86_64.rpm postgresql-libs-32bit-8.3.7-0.1.x86_64.rpm postgresql-libs-64bit-8.3.7-0.1.ppc.rpm postgresql-server-8.3.7-0.1.i586.rpm postgresql-server-8.3.7-0.1.ppc.rpm postgresql-server-8.3.7-0.1.x86_64.rpm libudev-devel openSUSE 11.0 This update fixes a local privilege escalation in udev. CVE-2009-1185: udev did not check the origin of the netlink messages. A local attacker could fake device create events and so gain root privileges. libvolume_id-120-13.2.i586.rpm libvolume_id-120-13.2.ppc.rpm libvolume_id-120-13.2.x86_64.rpm libvolume_id-devel-120-13.2.i586.rpm libvolume_id-devel-120-13.2.ppc.rpm libvolume_id-devel-120-13.2.x86_64.rpm udev-120-13.2.i586.rpm udev-120-13.2.ppc.rpm udev-120-13.2.x86_64.rpm sysconfig openSUSE 11.0 - Fixed overlapping messages in rcnetwork output (bnc#406887). - Fixes for /etc/named.d/forwarders.conf updates in case that the file does not exists or it does not already contain a 'forwarders {};' block (bnc#134692). - Fixed ifup-wireless to not set nick by default that breaks several drivers (bnc#478513). - Fixed ifup-wireless to set ap to 'off' instead to 'any' for the madwifi driver that does not support 'any' (bnc#402438). - Fixed network scripts to handle dummy interfaces (bnc#436857). - Fixed ipv6 support in ifup-route script and parsing of final lines without EOL in ifroute files (bnc#467165). - Fixed ifdown-autoip to check if info file exists (bnc#463266). - Fixed ifup-dhcp to retain spaces DHCLIENT_VENDOR_CLASS_ID and other dhcpcd option values (bnc#424356). - Fixed DHCLIENT_SET_HOSTNAME handling for dhcpcd (bnc#418168). - Fixed typo in ethtool retcode check in ifup (bnc#405434). - Added the -p dhcpcd option in /sbin/ifup-dhcp when STARTMODE is nfsroot to avoid an interface deconfiguration on dhcpcd startup (bnc#397484). sysconfig-0.70.8-3.2.i586.rpm sysconfig-0.70.8-3.2.ppc.rpm sysconfig-0.70.8-3.2.x86_64.rpm libxine-devel openSUSE 11.0 Specially crafted 4x movie files could cause an integer overflow in xine-lib (CVE-2009-0698). xine-devel-1.1.12-8.5.i586.rpm xine-devel-1.1.12-8.5.ppc.rpm xine-devel-1.1.12-8.5.x86_64.rpm xine-extra-1.1.12-8.5.i586.rpm xine-extra-1.1.12-8.5.ppc.rpm xine-extra-1.1.12-8.5.x86_64.rpm xine-lib-1.1.12-8.5.i586.rpm xine-lib-1.1.12-8.5.ppc.rpm xine-lib-1.1.12-8.5.x86_64.rpm xine-lib-32bit-1.1.12-8.5.x86_64.rpm xine-lib-64bit-1.1.12-8.5.ppc.rpm moodle openSUSE 11.0 Special command sequences in TeX files allowed users to read arbitrary files (CVE-2009-1171). moodle-1.9.0-24.8.noarch.rpm moodle-af-1.9.0-24.8.noarch.rpm moodle-ar-1.9.0-24.8.noarch.rpm moodle-be-1.9.0-24.8.noarch.rpm moodle-bg-1.9.0-24.8.noarch.rpm moodle-bs-1.9.0-24.8.noarch.rpm moodle-ca-1.9.0-24.8.noarch.rpm moodle-cs-1.9.0-24.8.noarch.rpm moodle-da-1.9.0-24.8.noarch.rpm moodle-de-1.9.0-24.8.noarch.rpm moodle-de_du-1.9.0-24.8.noarch.rpm moodle-el-1.9.0-24.8.noarch.rpm moodle-es-1.9.0-24.8.noarch.rpm moodle-et-1.9.0-24.8.noarch.rpm moodle-eu-1.9.0-24.8.noarch.rpm moodle-fa-1.9.0-24.8.noarch.rpm moodle-fi-1.9.0-24.8.noarch.rpm moodle-fr-1.9.0-24.8.noarch.rpm moodle-ga-1.9.0-24.8.noarch.rpm moodle-gl-1.9.0-24.8.noarch.rpm moodle-he-1.9.0-24.8.noarch.rpm moodle-hi-1.9.0-24.8.noarch.rpm moodle-hr-1.9.0-24.8.noarch.rpm moodle-hu-1.9.0-24.8.noarch.rpm moodle-id-1.9.0-24.8.noarch.rpm moodle-is-1.9.0-24.8.noarch.rpm moodle-it-1.9.0-24.8.noarch.rpm moodle-ja-1.9.0-24.8.noarch.rpm moodle-ka-1.9.0-24.8.noarch.rpm moodle-km-1.9.0-24.8.noarch.rpm moodle-kn-1.9.0-24.8.noarch.rpm moodle-ko-1.9.0-24.8.noarch.rpm moodle-lt-1.9.0-24.8.noarch.rpm moodle-lv-1.9.0-24.8.noarch.rpm moodle-mi_tn-1.9.0-24.8.noarch.rpm moodle-ms-1.9.0-24.8.noarch.rpm moodle-nl-1.9.0-24.8.noarch.rpm moodle-nn-1.9.0-24.8.noarch.rpm moodle-no-1.9.0-24.8.noarch.rpm moodle-pl-1.9.0-24.8.noarch.rpm moodle-pt-1.9.0-24.8.noarch.rpm moodle-ro-1.9.0-24.8.noarch.rpm moodle-ru-1.9.0-24.8.noarch.rpm moodle-sk-1.9.0-24.8.noarch.rpm moodle-sl-1.9.0-24.8.noarch.rpm moodle-so-1.9.0-24.8.noarch.rpm moodle-sq-1.9.0-24.8.noarch.rpm moodle-sr-1.9.0-24.8.noarch.rpm moodle-sv-1.9.0-24.8.noarch.rpm moodle-th-1.9.0-24.8.noarch.rpm moodle-tl-1.9.0-24.8.noarch.rpm moodle-tr-1.9.0-24.8.noarch.rpm moodle-uk-1.9.0-24.8.noarch.rpm moodle-vi-1.9.0-24.8.noarch.rpm moodle-zh_cn-1.9.0-24.8.noarch.rpm koffice openSUSE 11.0 The pdf filter of koffice is prone to several buffer overflows. Due to the large number of problems and the huge backporting effort that would be needed the filter has been disabled. koffice-1.6.3-157.2.i586.rpm koffice-1.6.3-157.2.ppc.rpm koffice-1.6.3-157.2.x86_64.rpm koffice-database-1.6.3-157.2.i586.rpm koffice-database-1.6.3-157.2.ppc.rpm koffice-database-1.6.3-157.2.x86_64.rpm koffice-database-mysql-1.6.3-157.2.i586.rpm koffice-database-mysql-1.6.3-157.2.ppc.rpm koffice-database-mysql-1.6.3-157.2.x86_64.rpm koffice-database-psql-1.6.3-157.2.i586.rpm koffice-database-psql-1.6.3-157.2.ppc.rpm koffice-database-psql-1.6.3-157.2.x86_64.rpm koffice-devel-1.6.3-157.2.i586.rpm koffice-devel-1.6.3-157.2.ppc.rpm koffice-devel-1.6.3-157.2.x86_64.rpm koffice-extra-1.6.3-157.2.i586.rpm koffice-extra-1.6.3-157.2.ppc.rpm koffice-extra-1.6.3-157.2.x86_64.rpm koffice-illustration-1.6.3-157.2.i586.rpm koffice-illustration-1.6.3-157.2.ppc.rpm koffice-illustration-1.6.3-157.2.x86_64.rpm koffice-planning-1.6.3-157.2.i586.rpm koffice-planning-1.6.3-157.2.ppc.rpm koffice-planning-1.6.3-157.2.x86_64.rpm koffice-presentation-1.6.3-157.2.i586.rpm koffice-presentation-1.6.3-157.2.ppc.rpm koffice-presentation-1.6.3-157.2.x86_64.rpm koffice-python-1.6.3-157.2.i586.rpm koffice-python-1.6.3-157.2.ppc.rpm koffice-python-1.6.3-157.2.x86_64.rpm koffice-ruby-1.6.3-157.2.i586.rpm koffice-ruby-1.6.3-157.2.ppc.rpm koffice-ruby-1.6.3-157.2.x86_64.rpm koffice-spreadsheet-1.6.3-157.2.i586.rpm koffice-spreadsheet-1.6.3-157.2.ppc.rpm koffice-spreadsheet-1.6.3-157.2.x86_64.rpm koffice-wordprocessing-1.6.3-157.2.i586.rpm koffice-wordprocessing-1.6.3-157.2.ppc.rpm koffice-wordprocessing-1.6.3-157.2.x86_64.rpm bluez-audio openSUSE 11.0 The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied (CVE-2008-4311). The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. The previous bluez update caused problems with the bluez passkey agent. This second update fixes this. bluez-audio-3.32-8.7.i586.rpm bluez-audio-3.32-8.7.ppc.rpm bluez-audio-3.32-8.7.x86_64.rpm bluez-cups-3.32-8.7.i586.rpm bluez-cups-3.32-8.7.ppc.rpm bluez-cups-3.32-8.7.x86_64.rpm bluez-test-3.32-8.7.i586.rpm bluez-test-3.32-8.7.ppc.rpm bluez-test-3.32-8.7.x86_64.rpm bluez-utils-3.32-8.7.i586.rpm bluez-utils-3.32-8.7.ppc.rpm bluez-utils-3.32-8.7.x86_64.rpm gnutls openSUSE 11.0 The previous security fix for gnutls (CVE-2008-4989) introduced a regression in the X.509 validation code for self-signed certificates. This update fixes this problem. gnutls-2.2.2-17.4.i586.rpm gnutls-2.2.2-17.4.ppc.rpm gnutls-2.2.2-17.4.x86_64.rpm libgnutls-devel-2.2.2-17.4.i586.rpm libgnutls-devel-2.2.2-17.4.ppc.rpm libgnutls-devel-2.2.2-17.4.x86_64.rpm libgnutls-extra-devel-2.2.2-17.4.i586.rpm libgnutls-extra-devel-2.2.2-17.4.ppc.rpm libgnutls-extra-devel-2.2.2-17.4.x86_64.rpm libgnutls-extra26-2.2.2-17.4.i586.rpm libgnutls-extra26-2.2.2-17.4.ppc.rpm libgnutls-extra26-2.2.2-17.4.x86_64.rpm libgnutls26-2.2.2-17.4.i586.rpm libgnutls26-2.2.2-17.4.ppc.rpm libgnutls26-2.2.2-17.4.x86_64.rpm libgnutls26-32bit-2.2.2-17.4.x86_64.rpm libgnutls26-64bit-2.2.2-17.4.ppc.rpm zypper openSUSE 11.0 This update fixes indefinitely growing zypp-refresh.log by installing a logrotate file zypp-refresh.lr (bnc #487613). Other fixes included: - bnc #433679: requesting of perl symbols in 'install' command. (e.g. zypper install 'perl(MIME::Lite)') - bnc #436688: zypper lr -P correctly shows repository priorities and sorts the repositories by them. zypper-0.11.11-0.1.i586.rpm zypper-0.11.11-0.1.ppc.rpm zypper-0.11.11-0.1.x86_64.rpm cups openSUSE 11.0 Specially crafted tiff files could cause an integer overflow in the 'imagetops' filter (CVE-2009-0163). cups-1.3.7-25.8.i586.rpm cups-1.3.7-25.8.ppc.rpm cups-1.3.7-25.8.x86_64.rpm cups-client-1.3.7-25.8.i586.rpm cups-client-1.3.7-25.8.ppc.rpm cups-client-1.3.7-25.8.x86_64.rpm cups-devel-1.3.7-25.8.i586.rpm cups-devel-1.3.7-25.8.ppc.rpm cups-devel-1.3.7-25.8.x86_64.rpm cups-libs-1.3.7-25.8.i586.rpm cups-libs-1.3.7-25.8.ppc.rpm cups-libs-1.3.7-25.8.x86_64.rpm cups-libs-32bit-1.3.7-25.8.x86_64.rpm cups-libs-64bit-1.3.7-25.8.ppc.rpm kdepim3 openSUSE 11.0 This updates of KMail does not executes links in mail without confirmation anymore. kdepim3-3.5.9-53.2.i586.rpm kdepim3-3.5.9-53.2.ppc.rpm kdepim3-3.5.9-53.2.x86_64.rpm kdepim3-devel-3.5.9-53.2.i586.rpm kdepim3-devel-3.5.9-53.2.ppc.rpm kdepim3-devel-3.5.9-53.2.x86_64.rpm kdepim3-kpilot-3.5.9-53.2.i586.rpm kdepim3-kpilot-3.5.9-53.2.ppc.rpm kdepim3-kpilot-3.5.9-53.2.x86_64.rpm kdepim3-mobile-3.5.9-53.2.i586.rpm kdepim3-mobile-3.5.9-53.2.ppc.rpm kdepim3-mobile-3.5.9-53.2.x86_64.rpm kdepim3-notes-3.5.9-53.2.i586.rpm kdepim3-notes-3.5.9-53.2.ppc.rpm kdepim3-notes-3.5.9-53.2.x86_64.rpm kdepim3-time-management-3.5.9-53.2.i586.rpm kdepim3-time-management-3.5.9-53.2.ppc.rpm kdepim3-time-management-3.5.9-53.2.x86_64.rpm kitchensync-3.5.9-53.2.i586.rpm kitchensync-3.5.9-53.2.ppc.rpm kitchensync-3.5.9-53.2.x86_64.rpm libkcal-3.5.9-53.2.i586.rpm libkcal-3.5.9-53.2.ppc.rpm libkcal-3.5.9-53.2.x86_64.rpm libkcal-devel-3.5.9-53.2.i586.rpm libkcal-devel-3.5.9-53.2.ppc.rpm libkcal-devel-3.5.9-53.2.x86_64.rpm libkcal2-3.5.9-53.2.i586.rpm libkcal2-3.5.9-53.2.ppc.rpm libkcal2-3.5.9-53.2.x86_64.rpm libkmime-devel-3.5.9-53.2.i586.rpm libkmime-devel-3.5.9-53.2.ppc.rpm libkmime-devel-3.5.9-53.2.x86_64.rpm libkmime2-3.5.9-53.2.i586.rpm libkmime2-3.5.9-53.2.ppc.rpm libkmime2-3.5.9-53.2.x86_64.rpm libktnef-devel-3.5.9-53.2.i586.rpm libktnef-devel-3.5.9-53.2.ppc.rpm libktnef-devel-3.5.9-53.2.x86_64.rpm libktnef1-3.5.9-53.2.i586.rpm libktnef1-3.5.9-53.2.ppc.rpm libktnef1-3.5.9-53.2.x86_64.rpm xpdf openSUSE 11.0 Specially crafted PDF files could lead to crashes, make the viewer run into an infinite loop or potentially even allow execution of arbitrary code. (CVE-2009-0165, CVE-2009-0146, CVE-2009-0147, CVE-2009-0166, CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180, CVE-2009-1181, CVE-2009-1182, CVE-2009-1183) xpdf-3.02-95.4.i586.rpm xpdf-3.02-95.4.ppc.rpm xpdf-3.02-95.4.x86_64.rpm xpdf-tools-3.02-95.4.i586.rpm xpdf-tools-3.02-95.4.ppc.rpm xpdf-tools-3.02-95.4.x86_64.rpm glib2 openSUSE 11.0 Large strings could lead to a heap overflow in the base64 encoding and decoding functions. Attackers could potentially exploit that to execute arbitrary code (CVE-2008-4316). glib2-2.16.3-20.6.i586.rpm glib2-2.16.3-20.6.ppc.rpm glib2-2.16.3-20.6.x86_64.rpm glib2-branding-upstream-2.16.3-20.6.i586.rpm glib2-branding-upstream-2.16.3-20.6.ppc.rpm glib2-branding-upstream-2.16.3-20.6.x86_64.rpm glib2-devel-2.16.3-20.6.i586.rpm glib2-devel-2.16.3-20.6.ppc.rpm glib2-devel-2.16.3-20.6.x86_64.rpm glib2-devel-64bit-2.16.3-20.6.ppc.rpm glib2-doc-2.16.3-20.6.i586.rpm glib2-doc-2.16.3-20.6.ppc.rpm glib2-doc-2.16.3-20.6.x86_64.rpm glib2-lang-2.16.3-20.6.i586.rpm glib2-lang-2.16.3-20.6.ppc.rpm glib2-lang-2.16.3-20.6.x86_64.rpm libgio-2_0-0-2.16.3-20.6.i586.rpm libgio-2_0-0-2.16.3-20.6.ppc.rpm libgio-2_0-0-2.16.3-20.6.x86_64.rpm libgio-2_0-0-32bit-2.16.3-20.6.x86_64.rpm libgio-2_0-0-64bit-2.16.3-20.6.ppc.rpm libgio-fam-2.16.3-20.6.i586.rpm libgio-fam-2.16.3-20.6.ppc.rpm libgio-fam-2.16.3-20.6.x86_64.rpm libglib-2_0-0-2.16.3-20.6.i586.rpm libglib-2_0-0-2.16.3-20.6.ppc.rpm libglib-2_0-0-2.16.3-20.6.x86_64.rpm libglib-2_0-0-32bit-2.16.3-20.6.x86_64.rpm libglib-2_0-0-64bit-2.16.3-20.6.ppc.rpm libgmodule-2_0-0-2.16.3-20.6.i586.rpm libgmodule-2_0-0-2.16.3-20.6.ppc.rpm libgmodule-2_0-0-2.16.3-20.6.x86_64.rpm libgmodule-2_0-0-32bit-2.16.3-20.6.x86_64.rpm libgmodule-2_0-0-64bit-2.16.3-20.6.ppc.rpm libgobject-2_0-0-2.16.3-20.6.i586.rpm libgobject-2_0-0-2.16.3-20.6.ppc.rpm libgobject-2_0-0-2.16.3-20.6.x86_64.rpm libgobject-2_0-0-32bit-2.16.3-20.6.x86_64.rpm libgobject-2_0-0-64bit-2.16.3-20.6.ppc.rpm libgthread-2_0-0-2.16.3-20.6.i586.rpm libgthread-2_0-0-2.16.3-20.6.ppc.rpm libgthread-2_0-0-2.16.3-20.6.x86_64.rpm libgthread-2_0-0-32bit-2.16.3-20.6.x86_64.rpm libgthread-2_0-0-64bit-2.16.3-20.6.ppc.rpm clamav openSUSE 11.0 This clamav version upgrade to 0.95.1 fixes a buffer overflow error in the cli_url_canon() function (CVE-2009-1372) and a denial of service condition occuring while parsing malformed UPack archives (CVE-2009-1371). clamav-0.95.1-0.1.i586.rpm clamav-0.95.1-0.1.ppc.rpm clamav-0.95.1-0.1.x86_64.rpm clamav-db-0.95.1-0.1.i586.rpm clamav-db-0.95.1-0.1.ppc.rpm clamav-db-0.95.1-0.1.x86_64.rpm gpg2 openSUSE 11.0 gpg-agent modifies SigBlk mask of all processes spawned in the X session breaking unrelated software gpg2-2.0.9-22.2.i586.rpm gpg2-2.0.9-22.2.ppc.rpm gpg2-2.0.9-22.2.x86_64.rpm gpg2-lang-2.0.9-22.2.i586.rpm gpg2-lang-2.0.9-22.2.ppc.rpm gpg2-lang-2.0.9-22.2.x86_64.rpm kdegraphics3 openSUSE 11.0 This update fixes security problems while decoding JBIG2. (CVE-2009-0146, CVE-2009-0147, CVE-2009-0165, CVE-2009-0166, CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180, CVE-2009-1181, CVE-2009-1182, CVE-2009-1183) kdegraphics3-3.5.9-53.3.i586.rpm kdegraphics3-3.5.9-53.3.ppc.rpm kdegraphics3-3.5.9-53.3.x86_64.rpm kdegraphics3-3D-3.5.9-53.3.i586.rpm kdegraphics3-3D-3.5.9-53.3.ppc.rpm kdegraphics3-3D-3.5.9-53.3.x86_64.rpm kdegraphics3-devel-3.5.9-53.3.i586.rpm kdegraphics3-devel-3.5.9-53.3.ppc.rpm kdegraphics3-devel-3.5.9-53.3.x86_64.rpm kdegraphics3-extra-3.5.9-53.3.i586.rpm kdegraphics3-extra-3.5.9-53.3.ppc.rpm kdegraphics3-extra-3.5.9-53.3.x86_64.rpm kdegraphics3-fax-3.5.9-53.3.i586.rpm kdegraphics3-fax-3.5.9-53.3.ppc.rpm kdegraphics3-fax-3.5.9-53.3.x86_64.rpm kdegraphics3-imaging-3.5.9-53.3.i586.rpm kdegraphics3-imaging-3.5.9-53.3.ppc.rpm kdegraphics3-imaging-3.5.9-53.3.x86_64.rpm kdegraphics3-kamera-3.5.9-53.3.i586.rpm kdegraphics3-kamera-3.5.9-53.3.ppc.rpm kdegraphics3-kamera-3.5.9-53.3.x86_64.rpm kdegraphics3-pdf-3.5.9-53.3.i586.rpm kdegraphics3-pdf-3.5.9-53.3.ppc.rpm kdegraphics3-pdf-3.5.9-53.3.x86_64.rpm kdegraphics3-postscript-3.5.9-53.3.i586.rpm kdegraphics3-postscript-3.5.9-53.3.ppc.rpm kdegraphics3-postscript-3.5.9-53.3.x86_64.rpm kdegraphics3-scan-3.5.9-53.3.i586.rpm kdegraphics3-scan-3.5.9-53.3.ppc.rpm kdegraphics3-scan-3.5.9-53.3.x86_64.rpm kdegraphics3-tex-3.5.9-53.3.i586.rpm kdegraphics3-tex-3.5.9-53.3.ppc.rpm kdegraphics3-tex-3.5.9-53.3.x86_64.rpm libopenssl-devel openSUSE 11.0 This update of openssl fixes the following problems: - CVE-2009-0590: ASN1_STRING_print_ex() function allows remote denial of service - CVE-2009-0789: denial of service due to malformed ASN.1 structures libopenssl-devel-0.9.8g-47.4.i586.rpm libopenssl-devel-0.9.8g-47.4.ppc.rpm libopenssl-devel-0.9.8g-47.4.x86_64.rpm libopenssl0_9_8-0.9.8g-47.4.i586.rpm libopenssl0_9_8-0.9.8g-47.4.ppc.rpm libopenssl0_9_8-0.9.8g-47.4.x86_64.rpm libopenssl0_9_8-32bit-0.9.8g-47.4.x86_64.rpm libopenssl0_9_8-64bit-0.9.8g-47.4.ppc.rpm openssl-0.9.8g-47.4.i586.rpm openssl-0.9.8g-47.4.ppc.rpm openssl-0.9.8g-47.4.x86_64.rpm openssl-certs-0.9.8g-47.4.i586.rpm openssl-certs-0.9.8g-47.4.ppc.rpm openssl-certs-0.9.8g-47.4.x86_64.rpm openssl-doc-0.9.8g-47.4.i586.rpm openssl-doc-0.9.8g-47.4.ppc.rpm openssl-doc-0.9.8g-47.4.x86_64.rpm compat-openssl097g openSUSE 11.0 This update of openssl fixes the following problems: - CVE-2009-0590: ASN1_STRING_print_ex() function allows remote denial of service - CVE-2009-0789: denial of service due to malformed ASN.1 structures compat-openssl097g-0.9.7g-119.5.i586.rpm compat-openssl097g-0.9.7g-119.5.ppc.rpm compat-openssl097g-0.9.7g-119.5.x86_64.rpm compat-openssl097g-32bit-0.9.7g-119.5.x86_64.rpm compat-openssl097g-64bit-0.9.7g-119.5.ppc.rpm evolution-data-server openSUSE 11.0 camel's NTLM SASL authentication mechanism as used by evolution did not properly validate server's challenge packets (CVE-2009-0582). evolution-data-server-2.22.1.1-11.4.i586.rpm evolution-data-server-2.22.1.1-11.4.ppc.rpm evolution-data-server-2.22.1.1-11.4.x86_64.rpm evolution-data-server-32bit-2.22.1.1-11.4.x86_64.rpm evolution-data-server-64bit-2.22.1.1-11.4.ppc.rpm evolution-data-server-devel-2.22.1.1-11.4.i586.rpm evolution-data-server-devel-2.22.1.1-11.4.ppc.rpm evolution-data-server-devel-2.22.1.1-11.4.x86_64.rpm evolution-data-server-doc-2.22.1.1-11.4.i586.rpm evolution-data-server-doc-2.22.1.1-11.4.ppc.rpm evolution-data-server-doc-2.22.1.1-11.4.x86_64.rpm java-1_6_0-openjdk openSUSE 11.0 Empty keystore disallows the SSL support for Java application running on openjdk. This update fixes it and install a keystore (cacerts) generated from openssl-certs. java-1_6_0-openjdk-1.4_b14-24.4.i586.rpm java-1_6_0-openjdk-1.4_b14-24.4.ppc.rpm java-1_6_0-openjdk-1.4_b14-24.4.x86_64.rpm java-1_6_0-openjdk-demo-1.4_b14-24.4.i586.rpm java-1_6_0-openjdk-demo-1.4_b14-24.4.ppc.rpm java-1_6_0-openjdk-demo-1.4_b14-24.4.x86_64.rpm java-1_6_0-openjdk-devel-1.4_b14-24.4.i586.rpm java-1_6_0-openjdk-devel-1.4_b14-24.4.ppc.rpm java-1_6_0-openjdk-devel-1.4_b14-24.4.x86_64.rpm java-1_6_0-openjdk-javadoc-1.4_b14-24.4.i586.rpm java-1_6_0-openjdk-javadoc-1.4_b14-24.4.ppc.rpm java-1_6_0-openjdk-javadoc-1.4_b14-24.4.x86_64.rpm java-1_6_0-openjdk-plugin-1.4_b14-24.4.i586.rpm java-1_6_0-openjdk-plugin-1.4_b14-24.4.ppc.rpm java-1_6_0-openjdk-plugin-1.4_b14-24.4.x86_64.rpm java-1_6_0-openjdk-src-1.4_b14-24.4.i586.rpm java-1_6_0-openjdk-src-1.4_b14-24.4.ppc.rpm java-1_6_0-openjdk-src-1.4_b14-24.4.x86_64.rpm gtk2 openSUSE 11.0 This fixes a crash in Firefox and other applications when SuSEconfig runs. gtk2-2.12.9-37.5.i586.rpm gtk2-2.12.9-37.5.ppc.rpm gtk2-2.12.9-37.5.x86_64.rpm gtk2-32bit-2.12.9-37.5.x86_64.rpm gtk2-64bit-2.12.9-37.5.ppc.rpm gtk2-branding-upstream-2.12.9-37.5.i586.rpm gtk2-branding-upstream-2.12.9-37.5.ppc.rpm gtk2-branding-upstream-2.12.9-37.5.x86_64.rpm gtk2-devel-2.12.9-37.5.i586.rpm gtk2-devel-2.12.9-37.5.ppc.rpm gtk2-devel-2.12.9-37.5.x86_64.rpm gtk2-devel-64bit-2.12.9-37.5.ppc.rpm gtk2-doc-2.12.9-37.5.i586.rpm gtk2-doc-2.12.9-37.5.ppc.rpm gtk2-doc-2.12.9-37.5.x86_64.rpm MozillaFirefox openSUSE 11.0 Firefox version upgrade to 3.0.9 to fix various security bugs. (CVE-2009-1302,CVE-2009-1303,CVE-2009-1304,CVE-2009-1305,CVE -2009-1306,CVE-2009-1307,CVE-2009-1308,CVE-2009-1309,CVE-200 9-1310,CVE-2009-1311,CVE-2009-1312,CVE-2009-0652) MozillaFirefox-3.0.9-0.1.i586.rpm MozillaFirefox-3.0.9-0.1.ppc.rpm MozillaFirefox-3.0.9-0.1.x86_64.rpm MozillaFirefox-translations-3.0.9-0.1.i586.rpm MozillaFirefox-translations-3.0.9-0.1.ppc.rpm MozillaFirefox-translations-3.0.9-0.1.x86_64.rpm mozilla-xulrunner190 openSUSE 11.0 Firefox version upgrade to 3.0.9 to fix various security bugs. (CVE-2009-1302,CVE-2009-1303,CVE-2009-1304,CVE-2009-1305,CVE -2009-1306,CVE-2009-1307,CVE-2009-1308,CVE-2009-1309,CVE-200 9-1310,CVE-2009-1311,CVE-2009-1312,CVE-2009-0652) mozilla-xulrunner190-1.9.0.9-0.1.i586.rpm mozilla-xulrunner190-1.9.0.9-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.9-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.9-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.9-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.9-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.9-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.9-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.9-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.9-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.9-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.9-0.1.ppc.rpm libopensc2 openSUSE 11.0 Private data objects on smartcards initialized with OpenSC could be accessed without authentication (CVE-2009-0368). Only blank cards initialized with OpenSC are affected by this problem. Affected cards need to be manually fixed, updating the opensc package alone is not sufficient! Please carefully read and follow the instructions on the following web site if you are using PIN protected private data objects on smart cards other than Oberthur, and you have initialized those cards using OpenSC: http://en.opensuse.org/Smart_Cards/Advisories libopensc2-0.11.4-37.6.i586.rpm libopensc2-0.11.4-37.6.ppc.rpm libopensc2-0.11.4-37.6.x86_64.rpm libopensc2-32bit-0.11.4-37.6.x86_64.rpm libopensc2-64bit-0.11.4-37.6.ppc.rpm opensc-0.11.4-37.6.i586.rpm opensc-0.11.4-37.6.ppc.rpm opensc-0.11.4-37.6.x86_64.rpm opensc-32bit-0.11.4-37.6.x86_64.rpm opensc-64bit-0.11.4-37.6.ppc.rpm opensc-devel-0.11.4-37.6.i586.rpm opensc-devel-0.11.4-37.6.ppc.rpm opensc-devel-0.11.4-37.6.x86_64.rpm freetype2 openSUSE 11.0 Freetype was updated to fix some integer overflows that can be exploited remotely in conjunction with programs like a web-browser. (CVE-2009-0946) Thanks to Tavis Ormandy who found the bugs. freetype2-2.3.5-62.5.i586.rpm freetype2-2.3.5-62.5.ppc.rpm freetype2-2.3.5-62.5.x86_64.rpm freetype2-32bit-2.3.5-62.5.x86_64.rpm freetype2-64bit-2.3.5-62.5.ppc.rpm freetype2-devel-2.3.5-62.5.i586.rpm freetype2-devel-2.3.5-62.5.ppc.rpm freetype2-devel-2.3.5-62.5.x86_64.rpm freetype2-devel-32bit-2.3.5-62.5.x86_64.rpm freetype2-devel-64bit-2.3.5-62.5.ppc.rpm python-crypto openSUSE 11.0 Missing checks for the key length in the ARC2 module potentially allowed attackers to crash applications using python-crypto or potentially even cause execute arbitrary code (CVE-2009-0544). python-crypto-2.0.1-164.2.i586.rpm python-crypto-2.0.1-164.2.ppc.rpm python-crypto-2.0.1-164.2.x86_64.rpm gnutls openSUSE 11.0 This update of gnutls immproves the certificate validation process of gnutls-cli, prior gnutls-cli allowed man-in-the-middle attacks (only Gnus seems to use this tool). gnutls-2.2.2-17.6.i586.rpm gnutls-2.2.2-17.6.ppc.rpm gnutls-2.2.2-17.6.x86_64.rpm libgnutls-devel-2.2.2-17.6.i586.rpm libgnutls-devel-2.2.2-17.6.ppc.rpm libgnutls-devel-2.2.2-17.6.x86_64.rpm libgnutls-extra-devel-2.2.2-17.6.i586.rpm libgnutls-extra-devel-2.2.2-17.6.ppc.rpm libgnutls-extra-devel-2.2.2-17.6.x86_64.rpm libgnutls-extra26-2.2.2-17.6.i586.rpm libgnutls-extra26-2.2.2-17.6.ppc.rpm libgnutls-extra26-2.2.2-17.6.x86_64.rpm libgnutls26-2.2.2-17.6.i586.rpm libgnutls26-2.2.2-17.6.ppc.rpm libgnutls26-2.2.2-17.6.x86_64.rpm libgnutls26-32bit-2.2.2-17.6.x86_64.rpm libgnutls26-64bit-2.2.2-17.6.ppc.rpm MozillaFirefox openSUSE 11.0 Firefox version upgrade to 3.0.10 to fix a crash in nsTextFrame::ClearTextRun() (CVE-2009-1313). MozillaFirefox-3.0.10-1.1.i586.rpm MozillaFirefox-3.0.10-1.1.ppc.rpm MozillaFirefox-3.0.10-1.1.x86_64.rpm MozillaFirefox-translations-3.0.10-1.1.i586.rpm MozillaFirefox-translations-3.0.10-1.1.ppc.rpm MozillaFirefox-translations-3.0.10-1.1.x86_64.rpm mozilla-xulrunner190-1.9.0.10-1.1.i586.rpm mozilla-xulrunner190-1.9.0.10-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.10-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.10-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.10-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.10-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.10-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.10-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.10-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.10-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.10-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.10-1.1.ppc.rpm libwmf openSUSE 11.0 A specially crafted WMF files could crash libwmf. (CVE-2009-1364) libwmf-0.2.8.4-164.2.i586.rpm libwmf-0.2.8.4-164.2.ppc.rpm libwmf-0.2.8.4-164.2.x86_64.rpm libwmf-devel-0.2.8.4-164.2.i586.rpm libwmf-devel-0.2.8.4-164.2.ppc.rpm libwmf-devel-0.2.8.4-164.2.x86_64.rpm libwmf-gnome-0.2.8.4-164.2.i586.rpm libwmf-gnome-0.2.8.4-164.2.ppc.rpm libwmf-gnome-0.2.8.4-164.2.x86_64.rpm ghostscript-devel openSUSE 11.0 Specially crafted file could cause a heap-overflow in JBIG2 decoder (CVE-2009-0196), an integer overflow in ICC library (CVE-2009-0792), a buffer overflow in BaseFont writer module (CVE-2008-6679) or crash the CCITTFax decoder (CVE-2007-6725). ghostscript-devel-8.62-17.6.i586.rpm ghostscript-devel-8.62-17.6.ppc.rpm ghostscript-devel-8.62-17.6.x86_64.rpm ghostscript-fonts-other-8.62-17.6.i586.rpm ghostscript-fonts-other-8.62-17.6.ppc.rpm ghostscript-fonts-other-8.62-17.6.x86_64.rpm ghostscript-fonts-rus-8.62-17.6.i586.rpm ghostscript-fonts-rus-8.62-17.6.ppc.rpm ghostscript-fonts-rus-8.62-17.6.x86_64.rpm ghostscript-fonts-std-8.62-17.6.i586.rpm ghostscript-fonts-std-8.62-17.6.ppc.rpm ghostscript-fonts-std-8.62-17.6.x86_64.rpm ghostscript-ijs-devel-8.62-17.6.i586.rpm ghostscript-ijs-devel-8.62-17.6.ppc.rpm ghostscript-ijs-devel-8.62-17.6.x86_64.rpm ghostscript-library-8.62-17.6.i586.rpm ghostscript-library-8.62-17.6.ppc.rpm ghostscript-library-8.62-17.6.x86_64.rpm ghostscript-omni-8.62-17.6.i586.rpm ghostscript-omni-8.62-17.6.ppc.rpm ghostscript-omni-8.62-17.6.x86_64.rpm ghostscript-x11-8.62-17.6.i586.rpm ghostscript-x11-8.62-17.6.ppc.rpm ghostscript-x11-8.62-17.6.x86_64.rpm libgimpprint-4.2.7-258.6.i586.rpm libgimpprint-4.2.7-258.6.ppc.rpm libgimpprint-4.2.7-258.6.x86_64.rpm libgimpprint-devel-4.2.7-258.6.i586.rpm libgimpprint-devel-4.2.7-258.6.ppc.rpm libgimpprint-devel-4.2.7-258.6.x86_64.rpm xine-devel openSUSE 11.0 This update of xine-lib fixes an integer overflow in the qt_error parse_trak_atom() function in that leads to a heap-based overflow and allows remote attackers to execute arbitrary code via a malformed Quicktime movie file. (CVE-2009-1274) xine-devel-1.1.12-8.7.i586.rpm xine-devel-1.1.12-8.7.ppc.rpm xine-devel-1.1.12-8.7.x86_64.rpm xine-extra-1.1.12-8.7.i586.rpm xine-extra-1.1.12-8.7.ppc.rpm xine-extra-1.1.12-8.7.x86_64.rpm xine-lib-1.1.12-8.7.i586.rpm xine-lib-1.1.12-8.7.ppc.rpm xine-lib-1.1.12-8.7.x86_64.rpm xine-lib-32bit-1.1.12-8.7.x86_64.rpm xine-lib-64bit-1.1.12-8.7.ppc.rpm ntp openSUSE 11.0 This update fixes a remote buffer overflow in xntp/ntp which can be exploited when autokey is enabled to execute arbitrary code. (CVE-2009-1252) This upfate fixes a buffer overflow in ntpd that can be triggered by a malicious server. (CVE-2009-0159) ntp-4.2.4p4-44.5.i586.rpm ntp-4.2.4p4-44.5.ppc.rpm ntp-4.2.4p4-44.5.x86_64.rpm ntp-doc-4.2.4p4-44.5.i586.rpm ntp-doc-4.2.4p4-44.5.ppc.rpm ntp-doc-4.2.4p4-44.5.x86_64.rpm openmotif22-libs openSUSE 11.0 This update fixes an overflow in openmotif library (bnc#486469) openmotif22-libs-2.2.4-149.3.i586.rpm openmotif22-libs-32bit-2.2.4-149.3.x86_64.rpm acroread openSUSE 11.0 This update of acroread fixes two vulnerabilities in the JavaScript API that allow attackers to execute arbitrary code with a malformed PDF file. (CVE-2009-1492,CVE-2009-1493) acroread-8.1.5-0.1.i586.rpm ganglia-monitor-core openSUSE 11.0 A stack buffer overflow in ganglia's buffer process_path function has been fixed. CVE-2009-0241 has been assigned to this issue. ganglia-monitor-core-2.5.7-162.2.i586.rpm ganglia-monitor-core-2.5.7-162.2.ppc.rpm ganglia-monitor-core-2.5.7-162.2.x86_64.rpm ganglia-monitor-core-devel-2.5.7-162.2.i586.rpm ganglia-monitor-core-devel-2.5.7-162.2.ppc.rpm ganglia-monitor-core-devel-2.5.7-162.2.x86_64.rpm ganglia-monitor-core-gmetad-2.5.7-162.2.i586.rpm ganglia-monitor-core-gmetad-2.5.7-162.2.ppc.rpm ganglia-monitor-core-gmetad-2.5.7-162.2.x86_64.rpm ganglia-monitor-core-gmond-2.5.7-162.2.i586.rpm ganglia-monitor-core-gmond-2.5.7-162.2.ppc.rpm ganglia-monitor-core-gmond-2.5.7-162.2.x86_64.rpm ganglia-webfrontend-2.5.7-162.2.i586.rpm ganglia-webfrontend-2.5.7-162.2.ppc.rpm ganglia-webfrontend-2.5.7-162.2.x86_64.rpm RealPlayer openSUSE 11.0 RealPlayer 10 is vulnerable to a critical security problem in the flash plugin (CVE-2007-5400). Real does not provide updated binaries of RealPlayer 10 and SUSE is not allowed to ship RealPlayer 11. Therefore this update disables the flash plugin by setting restrictive file system permissions. RealPlayer-10.0.9-51.3.i586.rpm wireshark openSUSE 11.0 Version upgrade to Wireshark 1.0.7 to fix various vulnerabilities: CVE-2009-1269: crash while loading a Tektronix .rf5 file CVE-2009-1268: crash in Check Point High-Availability Protocol (CPHAP) dissector CVE-2009-1267: LDAP dissector could crash on Windows CVE-2009-1210: PROFINET format string bug CVE-2009-1266: additional PROFINET format string bugs, a crash in the PCNFSD dissector wireshark-1.0.0-17.12.i586.rpm wireshark-1.0.0-17.12.ppc.rpm wireshark-1.0.0-17.12.x86_64.rpm wireshark-devel-1.0.0-17.12.i586.rpm wireshark-devel-1.0.0-17.12.ppc.rpm wireshark-devel-1.0.0-17.12.x86_64.rpm libopenssl-devel openSUSE 11.0 Three remote DoS vulnerabilities have been fixed in OpenSSL: a DTLS epoch record buffer memory DoS (CVE-2009-1377), a DTLS fragment handling memory DoS (CVE-2009-1378) and a DTLS fragment read after a free DoS (CVE-2009-1379). libopenssl-devel-0.9.8g-47.6.i586.rpm libopenssl-devel-0.9.8g-47.6.ppc.rpm libopenssl-devel-0.9.8g-47.6.x86_64.rpm libopenssl0_9_8-0.9.8g-47.6.i586.rpm libopenssl0_9_8-0.9.8g-47.6.ppc.rpm libopenssl0_9_8-0.9.8g-47.6.x86_64.rpm libopenssl0_9_8-32bit-0.9.8g-47.6.x86_64.rpm libopenssl0_9_8-64bit-0.9.8g-47.6.ppc.rpm openssl-0.9.8g-47.6.i586.rpm openssl-0.9.8g-47.6.ppc.rpm openssl-0.9.8g-47.6.x86_64.rpm openssl-certs-0.9.8g-47.6.i586.rpm openssl-certs-0.9.8g-47.6.ppc.rpm openssl-certs-0.9.8g-47.6.x86_64.rpm openssl-doc-0.9.8g-47.6.i586.rpm openssl-doc-0.9.8g-47.6.ppc.rpm openssl-doc-0.9.8g-47.6.x86_64.rpm cyrus-sasl openSUSE 11.0 This update of cyrus-sasl improves the output of function sasl_encode64() by appending a 0 for string termination. The impact depends on the application that uses sasl_encode64(). (CVE-2009-0688) cyrus-sasl-2.1.22-140.2.i586.rpm cyrus-sasl-2.1.22-140.2.ppc.rpm cyrus-sasl-2.1.22-140.2.x86_64.rpm cyrus-sasl-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-64bit-2.1.22-140.2.ppc.rpm cyrus-sasl-crammd5-2.1.22-140.2.i586.rpm cyrus-sasl-crammd5-2.1.22-140.2.ppc.rpm cyrus-sasl-crammd5-2.1.22-140.2.x86_64.rpm cyrus-sasl-crammd5-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-crammd5-64bit-2.1.22-140.2.ppc.rpm cyrus-sasl-devel-2.1.22-140.2.i586.rpm cyrus-sasl-devel-2.1.22-140.2.ppc.rpm cyrus-sasl-devel-2.1.22-140.2.x86_64.rpm cyrus-sasl-devel-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-devel-64bit-2.1.22-140.2.ppc.rpm cyrus-sasl-digestmd5-2.1.22-140.2.i586.rpm cyrus-sasl-digestmd5-2.1.22-140.2.ppc.rpm cyrus-sasl-digestmd5-2.1.22-140.2.x86_64.rpm cyrus-sasl-digestmd5-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-digestmd5-64bit-2.1.22-140.2.ppc.rpm cyrus-sasl-gssapi-2.1.22-140.2.i586.rpm cyrus-sasl-gssapi-2.1.22-140.2.ppc.rpm cyrus-sasl-gssapi-2.1.22-140.2.x86_64.rpm cyrus-sasl-gssapi-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-gssapi-64bit-2.1.22-140.2.ppc.rpm cyrus-sasl-ntlm-2.1.22-140.2.i586.rpm cyrus-sasl-ntlm-2.1.22-140.2.ppc.rpm cyrus-sasl-ntlm-2.1.22-140.2.x86_64.rpm cyrus-sasl-otp-2.1.22-140.2.i586.rpm cyrus-sasl-otp-2.1.22-140.2.ppc.rpm cyrus-sasl-otp-2.1.22-140.2.x86_64.rpm cyrus-sasl-otp-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-otp-64bit-2.1.22-140.2.ppc.rpm cyrus-sasl-plain-2.1.22-140.2.i586.rpm cyrus-sasl-plain-2.1.22-140.2.ppc.rpm cyrus-sasl-plain-2.1.22-140.2.x86_64.rpm cyrus-sasl-plain-32bit-2.1.22-140.2.x86_64.rpm cyrus-sasl-plain-64bit-2.1.22-140.2.ppc.rpm libsnmp15 openSUSE 11.0 With this update of net-snmp the handling of TCP wrappers rules for client authorization was improved, prior to this update it was possible for remote attackers to bypass intended access restrictions and execute SNMP queries. (CVE-2008-6123) Additionally binding to multiple interfaces was improved. libsnmp15-5.4.1-77.6.i586.rpm libsnmp15-5.4.1-77.6.ppc.rpm libsnmp15-5.4.1-77.6.x86_64.rpm net-snmp-5.4.1-77.6.i586.rpm net-snmp-5.4.1-77.6.ppc.rpm net-snmp-5.4.1-77.6.x86_64.rpm net-snmp-32bit-5.4.1-77.6.x86_64.rpm net-snmp-64bit-5.4.1-77.6.ppc.rpm net-snmp-devel-5.4.1-77.6.i586.rpm net-snmp-devel-5.4.1-77.6.ppc.rpm net-snmp-devel-5.4.1-77.6.x86_64.rpm net-snmp-devel-64bit-5.4.1-77.6.ppc.rpm perl-SNMP-5.4.1-77.6.i586.rpm perl-SNMP-5.4.1-77.6.ppc.rpm perl-SNMP-5.4.1-77.6.x86_64.rpm snmp-mibs-5.4.1-77.6.i586.rpm snmp-mibs-5.4.1-77.6.ppc.rpm snmp-mibs-5.4.1-77.6.x86_64.rpm dos2unix openSUSE 11.0 dos2unix will destroy the original file if the output is on another file system. dos2unix-3.1-413.2.i586.rpm dos2unix-3.1-413.2.ppc.rpm dos2unix-3.1-413.2.x86_64.rpm kernel openSUSE 11.0 This kernel update for openSUSE 11.0 fixes some bugs and several security problems. The following security issues are fixed: A local denial of service problem in the splice(2) system call. CVE-2009-1630: The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver. CVE-2009-0834: The audit_syscall_entry function in the Linux kernel on the x86_64 platform did not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls. CVE-2009-1072: nfsd in the Linux kernel did not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the root_squash option. CVE-2009-0835 The __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass intended access restrictions via crafted syscalls that are misinterpreted as (a) stat or (b) chmod. CVE-2009-1439: Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and earlier allows remote attackers to cause a denial of service (crash) or potential code execution via a long nativeFileSystem field in a Tree Connect response to an SMB mount request. This requires that kernel can be made to mount a "cifs" filesystem from a malicious CIFS server. CVE-2009-1337: The exit_notify function in kernel/exit.c in the Linux kernel did not restrict exit signals when the CAP_KILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exit_signal field and then uses an exec system call to launch a setuid application. CVE-2009-0859: The shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system hang) via an SHM_INFO shmctl call, as demonstrated by running the ipcs program. (SUSE is enabling CONFIG_SHMEM, so is by default not affected, the fix is just for completeness). CVE-2009-1242: The vmx_set_msr function in arch/x86/kvm/vmx.c in the VMX implementation in the KVM subsystem in the Linux kernel on the i386 platform allows guest OS users to cause a denial of service (OOPS) by setting the EFER_LME (aka "Long mode enable") bit in the Extended Feature Enable Register (EFER) model-specific register, which is specific to the x86_64 platform. CVE-2009-1265: Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux kernel might allow attackers to obtain sensitive information via a large length value, which causes "garbage" memory to be sent. CVE-2009-0028: The clone system call in the Linux kernel allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONE_PARENT flag, and then letting this new process exit. CVE-2009-0675: The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux kernel permits SKFP_CLR_STATS requests only when the CAP_NET_ADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic" issue. CVE-2009-0676: The sock_getsockopt function in net/core/sock.c in the Linux kernel does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request. CVE-2009-0322: drivers/firmware/dell_rbu.c in the Linux kernel allows local users to cause a denial of service (system crash) via a read system call that specifies zero bytes from the (1) image_type or (2) packet_size file in /sys/devices/platform/dell_rbu/. CVE-2009-0269: fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel allows local users to cause a denial of service (fault or memory corruption), or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array index. CVE-2009-0065: Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel allows remote attackers to have an unknown impact via an FWD-TSN (aka FORWARD-TSN) chunk with a large stream ID. Some other non-security bugs were fixed, please see the RPM changelog. acerhk-kmp-debug-0.5.35_2.6.25.20_0.4-98.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.4-3.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.4-3.1.x86_64.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.4-108.1.i586.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.4-108.1.x86_64.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.4-2.1.i586.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.4-2.1.x86_64.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.4-4.1.i586.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.4-4.1.x86_64.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.4-13.3.i586.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.4-13.3.x86_64.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.4-42.1.i586.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.4-42.1.x86_64.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.4-0.2.i586.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.4-0.2.x86_64.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.4-1.1.i586.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.4-1.1.x86_64.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.4-63.1.i586.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.4-63.1.x86_64.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.4-66.1.i586.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.4-66.1.x86_64.rpm 1 kernel-debug-2.6.25.20-0.4.i586.rpm 1 kernel-debug-2.6.25.20-0.4.x86_64.rpm 1 kernel-default-2.6.25.20-0.4.i586.rpm 1 kernel-default-2.6.25.20-0.4.ppc.rpm 1 kernel-default-2.6.25.20-0.4.x86_64.rpm 1 kernel-docs-2.6.25.20-0.4.noarch.rpm 1 kernel-kdump-2.6.25.20-0.4.ppc.rpm 1 kernel-pae-2.6.25.20-0.4.i586.rpm 1 kernel-ppc64-2.6.25.20-0.4.ppc.rpm 1 kernel-ps3-2.6.25.20-0.4.ppc.rpm 1 kernel-source-2.6.25.20-0.4.i586.rpm 1 kernel-source-2.6.25.20-0.4.ppc.rpm 1 kernel-source-2.6.25.20-0.4.x86_64.rpm 1 kernel-syms-2.6.25.20-0.4.i586.rpm 1 kernel-syms-2.6.25.20-0.4.ppc.rpm 1 kernel-syms-2.6.25.20-0.4.x86_64.rpm 1 kernel-vanilla-2.6.25.20-0.4.i586.rpm 1 kernel-vanilla-2.6.25.20-0.4.ppc.rpm 1 kernel-vanilla-2.6.25.20-0.4.x86_64.rpm 1 kernel-xen-2.6.25.20-0.4.i586.rpm 1 kernel-xen-2.6.25.20-0.4.x86_64.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.4-7.1.i586.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.4-7.1.x86_64.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.4-0.4.i586.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.4-0.4.x86_64.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.4-1.1.i586.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.4-1.1.x86_64.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.4-4.1.i586.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.4-4.1.x86_64.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.4-207.1.i586.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.4-207.1.x86_64.rpm 1 tpctl-kmp-debug-4.17_2.6.25.20_0.4-189.1.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.4-2.4.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.4-2.4.x86_64.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.4-33.3.i586.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.4-33.3.x86_64.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.4-21.1.i586.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.4-21.1.x86_64.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.4-107.1.i586.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.4-107.1.x86_64.rpm 1 optipng openSUSE 11.0 OptiPNG contained a bug in the GIF handling code that allowed to use already freed ressources. CVE-2009-0749 has been assigned to this issue. optipng-0.6.2-2.4.i586.rpm optipng-0.6.2-2.4.ppc.rpm optipng-0.6.2-2.4.x86_64.rpm quagga openSUSE 11.0 This update fixes a remote denial of service bug in quagga that can be triggered via an AS path containing ASN elements whose string representation is longer than expected. (CVE-2009-1572) quagga-0.99.9-59.2.i586.rpm quagga-0.99.9-59.2.ppc.rpm quagga-0.99.9-59.2.x86_64.rpm quagga-devel-0.99.9-59.2.i586.rpm quagga-devel-0.99.9-59.2.ppc.rpm quagga-devel-0.99.9-59.2.x86_64.rpm strongswan openSUSE 11.0 This update fixes two denial of service bugs that can lead to a remote pre-auth crash while processing a IKE_SA_INIT or a IKE_AUTH request. CVE-2009-1957 and CVE-2009-1958 have been assigned to this issue. strongswan-4.2.1-11.8.i586.rpm strongswan-4.2.1-11.8.ppc.rpm strongswan-4.2.1-11.8.x86_64.rpm strongswan-doc-4.2.1-11.8.i586.rpm strongswan-doc-4.2.1-11.8.ppc.rpm strongswan-doc-4.2.1-11.8.x86_64.rpm yast2-qt-pkg openSUSE 11.0 yast2-qt-pkg-2.16.49-0.1.i586.rpm yast2-qt-pkg-2.16.49-0.1.ppc.rpm yast2-qt-pkg-2.16.49-0.1.x86_64.rpm klamav openSUSE 11.0 During a previous update, the Klammail program was disabled by an openSUSE specific patch from the build. This has now been corrected and it is included again in the package (bnc#415178) klamav-0.46-0.3.i586.rpm klamav-0.46-0.3.ppc.rpm klamav-0.46-0.3.x86_64.rpm irssi openSUSE 11.0 Fixed a irssi off by one overflow in the event_wallops() function. CVE-2009-1959 has been assigned to this issue. irssi-0.8.12-49.2.i586.rpm irssi-0.8.12-49.2.ppc.rpm irssi-0.8.12-49.2.x86_64.rpm irssi-devel-0.8.12-49.2.i586.rpm irssi-devel-0.8.12-49.2.ppc.rpm irssi-devel-0.8.12-49.2.x86_64.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox browser was updated to version 3.0.11, fixing various bugs and security issues: * MFSA 2009-24/CVE-2009-1392/CVE-2009-1832/CVE-2009-1833 Crashes with evidence of memory corruption (rv:1.9.0.11) * MFSA 2009-25/CVE-2009-1834 (bmo#479413) URL spoofing with invalid unicode characters * MFSA 2009-26/CVE-2009-1835 (bmo#491801) Arbitrary domain cookie access by local file: resources * MFSA 2009-27/CVE-2009-1836 (bmo#479880) SSL tampering via non-200 responses to proxy CONNECT requests * MFSA 2009-28/CVE-2009-1837 (bmo#486269) Race condition while accessing the private data of a NPObject JS wrapper class object * MFSA 2009-29/CVE-2009-1838 (bmo#489131) Arbitrary code execution using event listeners attached to an element whose owner document is null * MFSA 2009-30/CVE-2009-1839 (bmo#479943) Incorrect principal set for file: resources loaded via location bar * MFSA 2009-31/CVE-2009-1840 (bmo#477979) XUL scripts bypass content-policy checks * MFSA 2009-32/CVE-2009-1841 (bmo#479560) JavaScript chrome privilege escalation MozillaFirefox-3.0.11-0.1.i586.rpm MozillaFirefox-3.0.11-0.1.ppc.rpm MozillaFirefox-3.0.11-0.1.x86_64.rpm MozillaFirefox-translations-3.0.11-0.1.i586.rpm MozillaFirefox-translations-3.0.11-0.1.ppc.rpm MozillaFirefox-translations-3.0.11-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.11-1.1.i586.rpm mozilla-xulrunner190-1.9.0.11-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.11-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.11-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.11-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.11-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.11-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.11-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.11-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.11-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.11-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.11-1.1.ppc.rpm libopenssl-devel openSUSE 11.0 OpenSSL DTLS remote DoS in ChangeCipherSpec (CVE-2009-1386) and in out-of-sequence message handling (CVE-2009-1387) have been fixed. libopenssl-devel-0.9.8g-47.8.i586.rpm libopenssl-devel-0.9.8g-47.8.ppc.rpm libopenssl-devel-0.9.8g-47.8.x86_64.rpm libopenssl0_9_8-0.9.8g-47.8.i586.rpm libopenssl0_9_8-0.9.8g-47.8.ppc.rpm libopenssl0_9_8-0.9.8g-47.8.x86_64.rpm libopenssl0_9_8-32bit-0.9.8g-47.8.x86_64.rpm libopenssl0_9_8-64bit-0.9.8g-47.8.ppc.rpm openssl-0.9.8g-47.8.i586.rpm openssl-0.9.8g-47.8.ppc.rpm openssl-0.9.8g-47.8.x86_64.rpm openssl-certs-0.9.8g-47.8.i586.rpm openssl-certs-0.9.8g-47.8.ppc.rpm openssl-certs-0.9.8g-47.8.x86_64.rpm openssl-doc-0.9.8g-47.8.i586.rpm openssl-doc-0.9.8g-47.8.ppc.rpm openssl-doc-0.9.8g-47.8.x86_64.rpm seamonkey openSUSE 11.0 The Mozilla Seamonkey browser suite was updated to version 1.1.16, fixing various bugs and security issues: - Security update to 1.1.16 * MFSA 2009-12/CVE-2009-1169 (bmo#460090,485217) Crash and remote code execution in XSL transformation * MFSA 2009-14/CVE-2009-1303/CVE-2009-1305 Crashes with evidence of memory corruption (rv:1.9.0.9) - Security update to 1.1.15 * MFSA 2009-15/CVE-2009-0652 URL spoofing with box drawing character * MFSA 2009-07/CVE-2009-0771, CVE-2009-0772, CVE-2009-0773 CVE-2009-0774: Crashes with evidence of memory corruption (rv:1.9.0.7) * MFSA 2009-09/CVE-2009-0776: XML data theft via RDFXMLDataSource and cross-domain redirect * MFSA 2009-10/CVE-2009-0040: Upgrade PNG library to fix memory safety hazards * MFSA 2009-01/CVE-2009-0352 Crashes with evidence of memory corruption (rv:1.9.0.6) * MFSA 2009-05/CVE-2009-0357 XMLHttpRequest allows reading HTTPOnly cookies Please note that the java openjdk plugin might not work after installing this update. seamonkey-1.1.16-1.1.i586.rpm seamonkey-1.1.16-1.1.ppc.rpm seamonkey-1.1.16-1.1.x86_64.rpm seamonkey-dom-inspector-1.1.16-1.1.i586.rpm seamonkey-dom-inspector-1.1.16-1.1.ppc.rpm seamonkey-dom-inspector-1.1.16-1.1.x86_64.rpm seamonkey-irc-1.1.16-1.1.i586.rpm seamonkey-irc-1.1.16-1.1.ppc.rpm seamonkey-irc-1.1.16-1.1.x86_64.rpm seamonkey-mail-1.1.16-1.1.i586.rpm seamonkey-mail-1.1.16-1.1.ppc.rpm seamonkey-mail-1.1.16-1.1.x86_64.rpm seamonkey-spellchecker-1.1.16-1.1.i586.rpm seamonkey-spellchecker-1.1.16-1.1.ppc.rpm seamonkey-spellchecker-1.1.16-1.1.x86_64.rpm seamonkey-venkman-1.1.16-1.1.i586.rpm seamonkey-venkman-1.1.16-1.1.ppc.rpm seamonkey-venkman-1.1.16-1.1.x86_64.rpm osc openSUSE 11.0 Fixed Bugs: - bnc#478054: osc asks for build.o.o credential even if -A<somelocalapi> is always used - bnc#478052 : osc backtrace on password entry (first startup) - bnc#477690 : osc fetching binaries really slow - bnc#470948 : osc build - update - bnc#479156 : osc: osc linkpac fails / backtrace - bnc#469167 : osc commit "message" (forgot -m) => this code path should never be reached - bnc#458083 : osc importsrcpkg keep src pkgs, incorrect help and set url - bnc#462869 : osc updatepacmetafromspec fails if %description is starting with newline - bnc#459292 : osc meta prj ... -e error messages are not helpful - bnc#459288 : osc mkpac fails - bnc#458535 : osc deletes complete project given wrong parameters - bnc#421390 : osc build" doesn't strip when creating debuginfo Enhancements/Changes: - "submitreq" command has a new syntax (incompatible !) - new "deleterequest" command - new "changedevelrequest" command - new "request" command for showing/modifing requests - new support for osc linkpac to specify cicount attribute - delete commands consolidated: * deleteprj and deletepac are obsolete. * delete and rdelete take over - new option for copypac * -r to specify source revision * -m to specify a comment (and send default comment if not specified) - new option to results(r), and rresults: * -r|--repo to specify a repository(repositories) * -a|--arch to specify a architexure(s) * --xml for xml output (makes results_meta obsolete) - new repairlink command for repairing a broken source link - new vc command for editing the changes files - support "setlinkrev" for whole projects - add "setlinkrev --unset" for removing revision references - add "osc request list -t <type>" to list only submit, delete or develchange requests - add shell completion scripts - fix support of listing requests with multiple actions - "osc maintainer" list maintainer and bugowner roles now - rename "rebuildpac" to "rebuild", but keep "rebuildpac" as alias OSC contains many more changes, please see package changelog via YaST or "rpm -q --changelog osc | less" on a console. osc-0.120-1.1.i586.rpm osc-0.120-1.1.ppc.rpm osc-0.120-1.1.x86_64.rpm perl openSUSE 11.0 A Buffer overflow in perl, in the base Compress::Raw::Zlib perl module has been fixed. (CVE-2009-1391) Additionaly three non security bugs were fixed. perl-5.10.0-37.8.i586.rpm perl-5.10.0-37.8.ppc.rpm perl-5.10.0-37.8.x86_64.rpm perl-32bit-5.10.0-37.8.x86_64.rpm perl-64bit-5.10.0-37.8.ppc.rpm perl-base-5.10.0-37.8.i586.rpm perl-base-5.10.0-37.8.ppc.rpm perl-base-5.10.0-37.8.x86_64.rpm perl-doc-5.10.0-37.8.i586.rpm perl-doc-5.10.0-37.8.ppc.rpm perl-doc-5.10.0-37.8.x86_64.rpm ImageMagick openSUSE 11.0 This update of ImageMagick fixes an integer overflow in the XMakeImage() function that allowed remote attackers to cause a denial-of-service and possibly the execution of arbitrary code via a crafted TIFF file. (CVE-2009-1882) ImageMagick-6.4.0.4-20.2.i586.rpm ImageMagick-6.4.0.4-20.2.ppc.rpm ImageMagick-6.4.0.4-20.2.x86_64.rpm ImageMagick-devel-6.4.0.4-20.2.i586.rpm ImageMagick-devel-6.4.0.4-20.2.ppc.rpm ImageMagick-devel-6.4.0.4-20.2.x86_64.rpm ImageMagick-extra-6.4.0.4-20.2.i586.rpm ImageMagick-extra-6.4.0.4-20.2.ppc.rpm ImageMagick-extra-6.4.0.4-20.2.x86_64.rpm libMagick++-devel-6.4.0.4-20.2.i586.rpm libMagick++-devel-6.4.0.4-20.2.ppc.rpm libMagick++-devel-6.4.0.4-20.2.x86_64.rpm libMagick++1-6.4.0.4-20.2.i586.rpm libMagick++1-6.4.0.4-20.2.ppc.rpm libMagick++1-6.4.0.4-20.2.x86_64.rpm libMagickCore1-6.4.0.4-20.2.i586.rpm libMagickCore1-6.4.0.4-20.2.ppc.rpm libMagickCore1-6.4.0.4-20.2.x86_64.rpm libMagickWand1-6.4.0.4-20.2.i586.rpm libMagickWand1-6.4.0.4-20.2.ppc.rpm libMagickWand1-6.4.0.4-20.2.x86_64.rpm perl-PerlMagick-6.4.0.4-20.2.i586.rpm perl-PerlMagick-6.4.0.4-20.2.ppc.rpm perl-PerlMagick-6.4.0.4-20.2.x86_64.rpm GraphicsMagick openSUSE 11.0 This update of GraphicsMagick fixes an integer overflow in the XMakeImage() function that allowed remote attackers to cause a denial-of-service and possibly the execution of arbitrary code via a crafted TIFF file. (CVE-2009-1882) GraphicsMagick-1.1.11-29.5.i586.rpm GraphicsMagick-1.1.11-29.5.ppc.rpm GraphicsMagick-1.1.11-29.5.x86_64.rpm GraphicsMagick-devel-1.1.11-29.5.i586.rpm GraphicsMagick-devel-1.1.11-29.5.ppc.rpm GraphicsMagick-devel-1.1.11-29.5.x86_64.rpm libGraphicsMagick++-devel-1.1.11-29.5.i586.rpm libGraphicsMagick++-devel-1.1.11-29.5.ppc.rpm libGraphicsMagick++-devel-1.1.11-29.5.x86_64.rpm libGraphicsMagick++1-1.1.11-29.5.i586.rpm libGraphicsMagick++1-1.1.11-29.5.ppc.rpm libGraphicsMagick++1-1.1.11-29.5.x86_64.rpm libGraphicsMagick1-1.1.11-29.5.i586.rpm libGraphicsMagick1-1.1.11-29.5.ppc.rpm libGraphicsMagick1-1.1.11-29.5.x86_64.rpm libGraphicsMagickWand0-1.1.11-29.5.i586.rpm libGraphicsMagickWand0-1.1.11-29.5.ppc.rpm libGraphicsMagickWand0-1.1.11-29.5.x86_64.rpm perl-GraphicsMagick-1.1.11-29.5.i586.rpm perl-GraphicsMagick-1.1.11-29.5.ppc.rpm perl-GraphicsMagick-1.1.11-29.5.x86_64.rpm ipsec-tools openSUSE 11.0 This update of ipsec-tools fixes a crash of racoon in ISAKMP's de-fragmentation code due to a NULL-pointer dereference. (CVE-2009-1574) Additionally multiple memory leaks were fixed that allowed to execute a remote denial of service attack. (CVE-2009-1632) ipsec-tools-0.7-61.5.i586.rpm ipsec-tools-0.7-61.5.ppc.rpm ipsec-tools-0.7-61.5.x86_64.rpm libpoppler3 openSUSE 11.0 This update of poppler: fix various security bugs that occur while decoding JBIG2 (CVE-2009-0146, CVE-2009-0147, CVE-2009-0165, CVE-2009-0166, CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180, CVE-2009-1181, CVE-2009-1182, CVE-2009-1183). Further a denial of service bug in function FormWidgetChoice::loadDefaults() (CVE-2009-0755) and JBIG2Stream::readSymbolDictSeg() (CVE-2009-0756) was closed that could be triggered via malformed PDF files. libpoppler3-0.8.2-1.4.i586.rpm libpoppler3-0.8.2-1.4.ppc.rpm libpoppler3-0.8.2-1.4.x86_64.rpm java-1_5_0-sun openSUSE 11.0 The Sun JDK/JRE 5 was updated to Update 19 fixing various bugs and security issues. An exact list of changes published by Sun can be found on http://java.sun.com/j2se/1.5.0/ReleaseNotes.html java-1_5_0-sun-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-1.5.0_update19-0.1.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-alsa-1.5.0_update19-0.1.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-demo-1.5.0_update19-0.1.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-devel-1.5.0_update19-0.1.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update19-0.1.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update19-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update19-0.1.x86_64.rpm clamav openSUSE 11.0 Multiple issues in clamav regarding malformed archives and emails have been fixed. clamav-0.95.2-1.1.i586.rpm clamav-0.95.2-1.1.ppc.rpm clamav-0.95.2-1.1.x86_64.rpm clamav-db-0.95.2-1.1.i586.rpm clamav-db-0.95.2-1.1.ppc.rpm clamav-db-0.95.2-1.1.x86_64.rpm tomcat6 openSUSE 11.0 This update of tomcat fixes several vulnerabilities: - CVE-2008-5515: RequestDispatcher usage can lead to information leakage - CVE-2009-0033: denial of service via AJP connection - CVE-2009-0580: some authentication classes allow user enumeration - CVE-2009-0781: XSS bug in example application cal2.jsp - CVE-2009-0783: replacing XML parser leads to information leakage Additionally, non-security bugs were fixed. tomcat6-6.0.16-6.5.noarch.rpm tomcat6-admin-webapps-6.0.16-6.5.noarch.rpm tomcat6-docs-webapp-6.0.16-6.5.noarch.rpm tomcat6-javadoc-6.0.16-6.5.noarch.rpm tomcat6-jsp-2_1-api-6.0.16-6.5.noarch.rpm tomcat6-lib-6.0.16-6.5.noarch.rpm tomcat6-servlet-2_5-api-6.0.16-6.5.noarch.rpm tomcat6-webapps-6.0.16-6.5.noarch.rpm novell-ipsec-tools openSUSE 11.0 This update of ipsec-tools fixes a crash of racoon in ISAKMP's de-fragmentation code due to a NULL-pointer dereference. (CVE-2009-1574) Additionally multiple memory leaks were fixed that allowed to execute a remote denial of service attack. (CVE-2009-1632) novell-ipsec-tools-0.6.3-183.4.i586.rpm novell-ipsec-tools-0.6.3-183.4.ppc.rpm novell-ipsec-tools-0.6.3-183.4.x86_64.rpm novell-ipsec-tools-devel-0.6.3-183.4.i586.rpm novell-ipsec-tools-devel-0.6.3-183.4.ppc.rpm novell-ipsec-tools-devel-0.6.3-183.4.x86_64.rpm acroread openSUSE 11.0 This update of acroread fixes the following vulnerabilities: - CVE-2009-1855: stack overflow that could lead to code execution - CVE-2009-1856: integer overflow with potential to lead to arbitrary code execution - CVE-2009-1857: memory corruption with potential to lead to arbitrary code execution - CVE-2009-1858: memory corruption with potential to lead to arbitrary code execution - CVE-2009-1859: memory corruption with potential to lead to arbitrary code execution - CVE-2009-0198: memory corruption with potential to lead to arbitrary code execution - CVE-2009-0509, CVE-2009-0510 CVE-2009-0511, CVE-2009-0512: heap overflow that could lead to code execution - CVE-2009-1861: heap overflow that could lead to code execution acroread-8.1.6-0.1.i586.rpm gstreamer-0_10-plugins-bad openSUSE 11.0 This update fixes a buffer overflow in libmodplug that can be exploited remotely to execute arbitrary code with the privileges of the process using the libaray. (CVE-2009-1438) gstreamer-0_10-plugins-bad-0.10.6-36.2.i586.rpm gstreamer-0_10-plugins-bad-0.10.6-36.2.ppc.rpm gstreamer-0_10-plugins-bad-0.10.6-36.2.x86_64.rpm gstreamer-0_10-plugins-bad-devel-0.10.6-36.2.i586.rpm gstreamer-0_10-plugins-bad-devel-0.10.6-36.2.ppc.rpm gstreamer-0_10-plugins-bad-devel-0.10.6-36.2.x86_64.rpm gstreamer-0_10-plugins-bad-doc-0.10.6-36.2.i586.rpm gstreamer-0_10-plugins-bad-doc-0.10.6-36.2.ppc.rpm gstreamer-0_10-plugins-bad-doc-0.10.6-36.2.x86_64.rpm gstreamer-0_10-plugins-bad-lang-0.10.6-36.2.i586.rpm gstreamer-0_10-plugins-bad-lang-0.10.6-36.2.ppc.rpm gstreamer-0_10-plugins-bad-lang-0.10.6-36.2.x86_64.rpm libgstapp-0_10-0-0.10.6-36.2.i586.rpm libgstapp-0_10-0-0.10.6-36.2.ppc.rpm libgstapp-0_10-0-0.10.6-36.2.x86_64.rpm gstreamer-0_10-plugins-good openSUSE 11.0 Specially crafted files could cause integer overflows in the PNG decoding module of GStreamer (CVE-2009-1932). gstreamer-0_10-plugins-good-0.10.7-38.4.i586.rpm gstreamer-0_10-plugins-good-0.10.7-38.4.ppc.rpm gstreamer-0_10-plugins-good-0.10.7-38.4.x86_64.rpm gstreamer-0_10-plugins-good-doc-0.10.7-38.4.i586.rpm gstreamer-0_10-plugins-good-doc-0.10.7-38.4.ppc.rpm gstreamer-0_10-plugins-good-doc-0.10.7-38.4.x86_64.rpm gstreamer-0_10-plugins-good-extra-0.10.7-38.4.i586.rpm gstreamer-0_10-plugins-good-extra-0.10.7-38.4.ppc.rpm gstreamer-0_10-plugins-good-extra-0.10.7-38.4.x86_64.rpm gstreamer-0_10-plugins-good-lang-0.10.7-38.4.i586.rpm gstreamer-0_10-plugins-good-lang-0.10.7-38.4.ppc.rpm gstreamer-0_10-plugins-good-lang-0.10.7-38.4.x86_64.rpm java-1_6_0-sun openSUSE 11.0 The Sun JDK/JRE 6 was updated to Update 14 fixing various bugs. According to Sun no new security issues were fixed. An exact list of changes published by Sun can be found on http://java.sun.com/javase/6/webnotes/6u14.html java-1_6_0-sun-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-1.6.0.u14-0.2.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-alsa-1.6.0.u14-0.2.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-demo-1.6.0.u14-0.2.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-devel-1.6.0.u14-0.2.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u14-0.2.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-plugin-1.6.0.u14-0.2.x86_64.rpm java-1_6_0-sun-src-1.6.0.u14-0.2.i586.rpm java-1_6_0-sun-src-1.6.0.u14-0.2.x86_64.rpm ruby openSUSE 11.0 This ruby update improves return value checks for openssl function OCSP_basic_verify() (CVE-2009-0642) which allowed an attacker to use revoked certificates. The entropy of DNS identifiers was increased (CVE-2008-3905) to avaid spoofing attacks. The code for parsing XML data was vulnerable to a denial of service bug (CVE-2008-3790). An attack on algorithm complexity was possible in function WEBrick::HTTP::DefaultFileHandler() while parsing HTTP requests (CVE-2008-3656) as well as by using the regex engine (CVE-2008-3443) causing high CPU load. Ruby's access restriction code (CVE-2008-3655) as well as safe-level handling using function DL.dlopen() (CVE-2008-3657) and big decimal handling (CVE-2009-1904) was improved. Bypassing HTTP basic authentication (authenticate_with_http_digest) is not possible anymore. ruby-1.8.6.p369-0.1.i586.rpm ruby-1.8.6.p369-0.1.ppc.rpm ruby-1.8.6.p369-0.1.x86_64.rpm ruby-devel-1.8.6.p369-0.1.i586.rpm ruby-devel-1.8.6.p369-0.1.ppc.rpm ruby-devel-1.8.6.p369-0.1.x86_64.rpm ruby-doc-html-1.8.6.p369-0.1.i586.rpm ruby-doc-html-1.8.6.p369-0.1.ppc.rpm ruby-doc-html-1.8.6.p369-0.1.x86_64.rpm ruby-doc-ri-1.8.6.p369-0.1.i586.rpm ruby-doc-ri-1.8.6.p369-0.1.ppc.rpm ruby-doc-ri-1.8.6.p369-0.1.x86_64.rpm ruby-examples-1.8.6.p369-0.1.i586.rpm ruby-examples-1.8.6.p369-0.1.ppc.rpm ruby-examples-1.8.6.p369-0.1.x86_64.rpm ruby-test-suite-1.8.6.p369-0.1.i586.rpm ruby-test-suite-1.8.6.p369-0.1.ppc.rpm ruby-test-suite-1.8.6.p369-0.1.x86_64.rpm ruby-tk-1.8.6.p369-0.1.i586.rpm ruby-tk-1.8.6.p369-0.1.ppc.rpm ruby-tk-1.8.6.p369-0.1.x86_64.rpm cifs-mount openSUSE 11.0 Fixed a format string vulnerability in smbclient (CVE-2009-1886) and a ACL bypass vulnerability in samba (CVE-2009-1888). cifs-mount-3.2.4-4.5.i586.rpm cifs-mount-3.2.4-4.5.ppc.rpm cifs-mount-3.2.4-4.5.x86_64.rpm ldapsmb-1.34b-195.10.i586.rpm ldapsmb-1.34b-195.10.ppc.rpm ldapsmb-1.34b-195.10.x86_64.rpm libnetapi-devel-3.2.4-4.5.i586.rpm libnetapi-devel-3.2.4-4.5.ppc.rpm libnetapi-devel-3.2.4-4.5.x86_64.rpm libnetapi0-3.2.4-4.5.i586.rpm libnetapi0-3.2.4-4.5.ppc.rpm libnetapi0-3.2.4-4.5.x86_64.rpm libsmbclient-devel-3.2.4-4.5.i586.rpm libsmbclient-devel-3.2.4-4.5.ppc.rpm libsmbclient-devel-3.2.4-4.5.x86_64.rpm libsmbclient0-3.2.4-4.5.i586.rpm libsmbclient0-3.2.4-4.5.ppc.rpm libsmbclient0-3.2.4-4.5.x86_64.rpm libsmbclient0-32bit-3.2.4-4.5.x86_64.rpm libsmbclient0-64bit-3.2.4-4.5.ppc.rpm libsmbsharemodes-devel-3.2.4-4.5.i586.rpm libsmbsharemodes-devel-3.2.4-4.5.ppc.rpm libsmbsharemodes-devel-3.2.4-4.5.x86_64.rpm libsmbsharemodes0-3.2.4-4.5.i586.rpm libsmbsharemodes0-3.2.4-4.5.ppc.rpm libsmbsharemodes0-3.2.4-4.5.x86_64.rpm libtalloc-devel-3.2.4-4.5.i586.rpm libtalloc-devel-3.2.4-4.5.ppc.rpm libtalloc-devel-3.2.4-4.5.x86_64.rpm libtalloc1-3.2.4-4.5.i586.rpm libtalloc1-3.2.4-4.5.ppc.rpm libtalloc1-3.2.4-4.5.x86_64.rpm libtalloc1-32bit-3.2.4-4.5.x86_64.rpm libtalloc1-64bit-3.2.4-4.5.ppc.rpm libtdb-devel-3.2.4-4.5.i586.rpm libtdb-devel-3.2.4-4.5.ppc.rpm libtdb-devel-3.2.4-4.5.x86_64.rpm libtdb1-3.2.4-4.5.i586.rpm libtdb1-3.2.4-4.5.ppc.rpm libtdb1-3.2.4-4.5.x86_64.rpm libtdb1-32bit-3.2.4-4.5.x86_64.rpm libtdb1-64bit-3.2.4-4.5.ppc.rpm libwbclient-devel-3.2.4-4.5.i586.rpm libwbclient-devel-3.2.4-4.5.ppc.rpm libwbclient-devel-3.2.4-4.5.x86_64.rpm libwbclient0-3.2.4-4.5.i586.rpm libwbclient0-3.2.4-4.5.ppc.rpm libwbclient0-3.2.4-4.5.x86_64.rpm libwbclient0-32bit-3.2.4-4.5.x86_64.rpm libwbclient0-64bit-3.2.4-4.5.ppc.rpm samba-3.2.4-4.5.i586.rpm samba-3.2.4-4.5.ppc.rpm samba-3.2.4-4.5.x86_64.rpm samba-32bit-3.2.4-4.5.x86_64.rpm samba-64bit-3.2.4-4.5.ppc.rpm samba-client-3.2.4-4.5.i586.rpm samba-client-3.2.4-4.5.ppc.rpm samba-client-3.2.4-4.5.x86_64.rpm samba-client-32bit-3.2.4-4.5.x86_64.rpm samba-client-64bit-3.2.4-4.5.ppc.rpm samba-devel-3.2.4-4.5.i586.rpm samba-devel-3.2.4-4.5.ppc.rpm samba-devel-3.2.4-4.5.x86_64.rpm samba-krb-printing-3.2.4-4.5.i586.rpm samba-krb-printing-3.2.4-4.5.ppc.rpm samba-krb-printing-3.2.4-4.5.x86_64.rpm samba-winbind-3.2.4-4.5.i586.rpm samba-winbind-3.2.4-4.5.ppc.rpm samba-winbind-3.2.4-4.5.x86_64.rpm samba-winbind-32bit-3.2.4-4.5.x86_64.rpm samba-winbind-64bit-3.2.4-4.5.ppc.rpm MozillaThunderbird openSUSE 11.0 Mozilla Thunderbird was updated to the 2.0.0.22 security release. It fixes various bugs and security issues: * MFSA-2009-14/CVE-2009-1302/CVE-2009-1303/CVE-2009-1304 CVE-2009-1305 Crashes with evidence of memory corruption (rv:1.9.0.9) * MFSA 2009-17/CVE-2009-1307 (bmo#481342) Same-origin violations when Adobe Flash loaded via view-source: scheme * MFSA 2009-24/CVE-2009-1392/CVE-2009-1832/CVE-2009-1833 Crashes with evidence of memory corruption (rv:1.9.0.11) * MFSA 2009-27/CVE-2009-1836 (bmo#479880) SSL tampering via non-200 responses to proxy CONNECT requests * MFSA 2009-29/CVE-2009-1838 (bmo#489131) Arbitrary code execution using event listeners attached to an element whose owner document is null * MFSA 2009-32/CVE-2009-1841 (bmo#479560) JavaScript chrome privilege escalation * MFSA 2009-33 (bmo#495057) Crash viewing multipart/alternative message with text/enhanced part MozillaThunderbird-2.0.0.22-0.1.i586.rpm MozillaThunderbird-2.0.0.22-0.1.ppc.rpm MozillaThunderbird-2.0.0.22-0.1.x86_64.rpm MozillaThunderbird-devel-2.0.0.22-0.1.i586.rpm MozillaThunderbird-devel-2.0.0.22-0.1.ppc.rpm MozillaThunderbird-devel-2.0.0.22-0.1.x86_64.rpm MozillaThunderbird-translations-2.0.0.22-0.1.i586.rpm MozillaThunderbird-translations-2.0.0.22-0.1.ppc.rpm MozillaThunderbird-translations-2.0.0.22-0.1.x86_64.rpm libpng-devel openSUSE 11.0 This update of libpng improves the parsing of 1-bit interlaced images. This bug could be abused to use "out-of-bounds pixels" to read memory. (CVE-2009-2042) libpng-devel-1.2.26-14.10.i586.rpm libpng-devel-1.2.26-14.10.ppc.rpm libpng-devel-1.2.26-14.10.x86_64.rpm libpng-devel-32bit-1.2.26-14.10.x86_64.rpm libpng-devel-64bit-1.2.26-14.10.ppc.rpm libpng12-0-1.2.26-14.10.i586.rpm libpng12-0-1.2.26-14.10.ppc.rpm libpng12-0-1.2.26-14.10.x86_64.rpm libpng12-0-32bit-1.2.26-14.10.x86_64.rpm libpng12-0-64bit-1.2.26-14.10.ppc.rpm libpng3-1.2.26-14.10.i586.rpm libpng3-1.2.26-14.10.ppc.rpm libpng3-1.2.26-14.10.x86_64.rpm dhcp openSUSE 11.0 The DHCP client (dhclient) could be crashed by a malicious DHCP server sending a overlong subnet field. (CVE-2009-0692) In some circumstances code execution might be possible, but might is likely caught by the buffer overflow checking of the FORTIFY_SOURCE extension. dhcp-3.0.6-86.4.i586.rpm dhcp-3.0.6-86.4.ppc.rpm dhcp-3.0.6-86.4.x86_64.rpm dhcp-client-3.0.6-86.4.i586.rpm dhcp-client-3.0.6-86.4.ppc.rpm dhcp-client-3.0.6-86.4.x86_64.rpm dhcp-devel-3.0.6-86.4.i586.rpm dhcp-devel-3.0.6-86.4.ppc.rpm dhcp-devel-3.0.6-86.4.x86_64.rpm dhcp-relay-3.0.6-86.4.i586.rpm dhcp-relay-3.0.6-86.4.ppc.rpm dhcp-relay-3.0.6-86.4.x86_64.rpm dhcp-server-3.0.6-86.4.i586.rpm dhcp-server-3.0.6-86.4.ppc.rpm dhcp-server-3.0.6-86.4.x86_64.rpm ga-pool-200905 openSUSE 11.0 This patchinfo contains packages needed for installing self-contained 11.1 updates. gconf2-2.22.0-28.1.i586.rpm gconf2-2.22.0-28.1.ppc.rpm gconf2-2.22.0-28.1.x86_64.rpm gconf2-32bit-2.22.0-28.1.x86_64.rpm gconf2-64bit-2.22.0-28.1.ppc.rpm gconf2-devel-2.22.0-28.1.i586.rpm gconf2-devel-2.22.0-28.1.ppc.rpm gconf2-devel-2.22.0-28.1.x86_64.rpm gconf2-doc-2.22.0-28.1.i586.rpm gconf2-doc-2.22.0-28.1.ppc.rpm gconf2-doc-2.22.0-28.1.x86_64.rpm jpackage-utils-1.7.4-31.1.i586.rpm jpackage-utils-1.7.4-31.1.ppc.rpm jpackage-utils-1.7.4-31.1.x86_64.rpm libapr-util1 openSUSE 11.0 This update of libapr-util1 fixes a memory consumption bug in the XML parser that can cause a remote denial-of-service vulnerability in applications using APR (WebDAV for example) (CVE-2009-1955). Additionally a one byte buffer overflow in function apr_brigade_vprintf() (CVE-2009-1956) and buffer underflow in function apr_strmatch_precompile() (CVE-2009-0023) was fixed too. Depending on the application using this function it can lead to remote denial of service or information leakage. libapr-util1-1.2.12-43.2.i586.rpm libapr-util1-1.2.12-43.2.ppc.rpm libapr-util1-1.2.12-43.2.x86_64.rpm libapr-util1-64bit-1.2.12-43.2.ppc.rpm libapr-util1-dbd-mysql-1.2.12-43.2.i586.rpm libapr-util1-dbd-mysql-1.2.12-43.2.ppc.rpm libapr-util1-dbd-mysql-1.2.12-43.2.x86_64.rpm libapr-util1-dbd-pgsql-1.2.12-43.2.i586.rpm libapr-util1-dbd-pgsql-1.2.12-43.2.ppc.rpm libapr-util1-dbd-pgsql-1.2.12-43.2.x86_64.rpm libapr-util1-dbd-sqlite3-1.2.12-43.2.i586.rpm libapr-util1-dbd-sqlite3-1.2.12-43.2.ppc.rpm libapr-util1-dbd-sqlite3-1.2.12-43.2.x86_64.rpm libapr-util1-devel-1.2.12-43.2.i586.rpm libapr-util1-devel-1.2.12-43.2.ppc.rpm libapr-util1-devel-1.2.12-43.2.x86_64.rpm libapr-util1-devel-64bit-1.2.12-43.2.ppc.rpm openswan openSUSE 11.0 Two vulnerabilities in the openswan ASN.1 parser (when handling RDNs, UTCTIME and GENERALIZEDTIME strings) could lead to remote crashes of the pluto daemon (CVE-2009-2185). openswan-2.4.7-130.4.i586.rpm openswan-2.4.7-130.4.ppc.rpm openswan-2.4.7-130.4.x86_64.rpm openswan-doc-2.4.7-130.4.i586.rpm openswan-doc-2.4.7-130.4.ppc.rpm openswan-doc-2.4.7-130.4.x86_64.rpm strongswan openSUSE 11.0 Two vulnerabilities in the strongswan ASN.1 parser (when handling RDNs, UTCTIME and GENERALIZEDTIME strings) could lead to remote crashes of the pluto daemon (CVE-2009-2185). strongswan-4.2.1-11.10.i586.rpm strongswan-4.2.1-11.10.ppc.rpm strongswan-4.2.1-11.10.x86_64.rpm strongswan-doc-4.2.1-11.10.i586.rpm strongswan-doc-4.2.1-11.10.ppc.rpm strongswan-doc-4.2.1-11.10.x86_64.rpm finch openSUSE 11.0 Several bugfixes were done for the Instant Messenger Pidgin: - Malformed responses to file transfers could cause a buffer overflow in pidgin (CVE-2009-1373) and specially crafted packets could crash it (CVE-2009-1375). - The fix against integer overflows in the msn protocol handling was incomplete (CVE-2009-1376). - Fixed misparsing ICQ message as SMS DoS (CVE-2009-1889, Pidgin#9483). Also the Yahoo IM protocol was made to work again. finch-2.4.1-28.9.i586.rpm finch-2.4.1-28.9.ppc.rpm finch-2.4.1-28.9.x86_64.rpm finch-devel-2.4.1-28.9.i586.rpm finch-devel-2.4.1-28.9.ppc.rpm finch-devel-2.4.1-28.9.x86_64.rpm libpurple-2.4.1-28.9.i586.rpm libpurple-2.4.1-28.9.ppc.rpm libpurple-2.4.1-28.9.x86_64.rpm libpurple-devel-2.4.1-28.9.i586.rpm libpurple-devel-2.4.1-28.9.ppc.rpm libpurple-devel-2.4.1-28.9.x86_64.rpm libpurple-lang-2.4.1-28.9.i586.rpm libpurple-lang-2.4.1-28.9.ppc.rpm libpurple-lang-2.4.1-28.9.x86_64.rpm libpurple-meanwhile-2.4.1-28.9.i586.rpm libpurple-meanwhile-2.4.1-28.9.ppc.rpm libpurple-meanwhile-2.4.1-28.9.x86_64.rpm libpurple-mono-2.4.1-28.9.i586.rpm libpurple-mono-2.4.1-28.9.ppc.rpm libpurple-mono-2.4.1-28.9.x86_64.rpm pidgin-2.4.1-28.9.i586.rpm pidgin-2.4.1-28.9.ppc.rpm pidgin-2.4.1-28.9.x86_64.rpm pidgin-devel-2.4.1-28.9.i586.rpm pidgin-devel-2.4.1-28.9.ppc.rpm pidgin-devel-2.4.1-28.9.x86_64.rpm libsndfile openSUSE 11.0 This update of libsndfile fixes a heap-based buffer overflow in voc_read_header() (CVE-2009-1788) and a heap-based buffer overflow in aiff_read_header() (CVE-2009-1791). libsndfile-1.0.17-141.4.i586.rpm libsndfile-1.0.17-141.4.ppc.rpm libsndfile-1.0.17-141.4.x86_64.rpm libsndfile-32bit-1.0.17-141.4.x86_64.rpm libsndfile-64bit-1.0.17-141.4.ppc.rpm libsndfile-devel-1.0.17-141.4.i586.rpm libsndfile-devel-1.0.17-141.4.ppc.rpm libsndfile-devel-1.0.17-141.4.x86_64.rpm libsndfile-octave-1.0.17-141.4.i586.rpm libsndfile-octave-1.0.17-141.4.ppc.rpm libsndfile-octave-1.0.17-141.4.x86_64.rpm libsndfile-progs-1.0.17-141.4.i586.rpm libsndfile-progs-1.0.17-141.4.ppc.rpm libsndfile-progs-1.0.17-141.4.x86_64.rpm build openSUSE 11.0 Bugfixes: - bnc#396196: Generate debuginfo packages for baselibs - bnc#479537: build does not create /repos symlink for kiwi - bnc#396766: fix broken debtransform - bnc#406596: fix Build/Rpm.pm ignores BuildRequires in subpackages - various fixes for kiwi build - fix boolification in && and || Enhancements: - vc tool included now (buildvc) - Support for new disturl containing a complete pointer to build service instance resource - add support for package compare - new armv7el arch for all binaries for up to ARMv7 EABI with VFP - add support for Requires(pre) or (post) semantic - support badarch (aka excludearch) - added documentation for specfile control comments - add --incarnation - add --create-build-binaries - added kvm support - improved baselibs handling build-2009.06.04-1.1.noarch.rpm MozillaFirefox openSUSE 11.0 The MozillaFirefox 3.0.12 release fixes various bugs and some critical security issues. MFSA 2009-34 / CVE-2009-2462 / CVE-2009-2463 / CVE-2009-2464 / CVE-2009-2465 / CVE-2009-2466: Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MFSA 2009-35 / CVE-2009-2467: Security researcher Attila Suszter reported that when a page contains a Flash object which presents a slow script dialog, and the page is navigated while the dialog is still visible to the user, the Flash plugin is unloaded resulting in a crash due to a call to the deleted object. This crash could potentially be used by an attacker to run arbitrary code on a victim's computer. MFSA 2009-36 / CVE-2009-1194: oCERT security researcher Will Drewry reported a series of heap and integer overflow vulnerabilities which independently affected multiple font glyph rendering libraries. On Linux platforms libpango was susceptible to the vulnerabilities while on OS X CoreGraphics was similarly vulnerable. An attacker could trigger these overflows by constructing a very large text run for the browser to display. Such an overflow can result in a crash which the attacker could potentially use to run arbitrary code on a victim's computer. The open-source nature of Linux meant that Mozilla was able to work with the libpango maintainers to implement the correct fix in version 1.24 of that system library which was distributed with OS security updates. On Mac OS X Firefox works around the CoreGraphics flaw by limiting the length of text runs passed to the system. MFSA 2009-37 / CVE-2009-2469: Security researcher PenPal reported a crash involving a SVG element on which a watch function and __defineSetter__ function have been set for a particular property. The crash showed evidence of memory corruption and could potentially be used by an attacker to run arbitrary code on a victim's computer. MFSA 2009-39 / CVE-2009-2471: Mozilla developer Blake Kaplan reported that setTimeout, when called with certain object parameters which should be protected with a XPCNativeWrapper, will fail to keep the object wrapped when compiling the new function to be executed. If chrome privileged code were to call setTimeout using this as an argument, the this object will lose its wrapper and could be unsafely accessed by chrome code. An attacker could use such vulnerable code to run arbitrary JavaScript with chrome privileges. MFSA 2009-40 / CVE-2009-2472: Mozilla security researcher moz_bug_r_a4 reported a series of vulnerabilities in which objects that normally receive a XPCCrossOriginWrapper are constructed without the wrapper. This can lead to cases where JavaScript from one website may unsafely access properties of such an object which had been set by a different website. A malicious website could use this vulnerability to launch a XSS attack and run arbitrary JavaScript within the context of another site. MozillaFirefox-3.0.12-0.1.i586.rpm MozillaFirefox-3.0.12-0.1.ppc.rpm MozillaFirefox-3.0.12-0.1.x86_64.rpm MozillaFirefox-translations-3.0.12-0.1.i586.rpm MozillaFirefox-translations-3.0.12-0.1.ppc.rpm MozillaFirefox-translations-3.0.12-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.12-1.1.i586.rpm mozilla-xulrunner190-1.9.0.12-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.12-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.12-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.12-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.12-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.12-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.12-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.12-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.12-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.12-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.12-1.1.ppc.rpm xfig openSUSE 11.0 Xfig dies with FPE after zoom in caused by a division by zero. This update fix the problem. xfig-3.2.5-96.2.i586.rpm xfig-3.2.5-96.2.ppc.rpm xfig-3.2.5-96.2.x86_64.rpm nagios openSUSE 11.0 A shell injection bug in nagios' statuswml.cgi CGI script has been fixed. CVE-2009-2288 has been assigned to this issue. nagios-3.0.6-1.3.i586.rpm nagios-3.0.6-1.3.ppc.rpm nagios-3.0.6-1.3.x86_64.rpm nagios-devel-3.0.6-1.3.i586.rpm nagios-devel-3.0.6-1.3.ppc.rpm nagios-devel-3.0.6-1.3.x86_64.rpm nagios-www-3.0.6-1.3.i586.rpm nagios-www-3.0.6-1.3.ppc.rpm nagios-www-3.0.6-1.3.x86_64.rpm bind openSUSE 11.0 Specially crafted ddns update packets could trigger an exception in bind causing it to exit. The attack works if BIND is master for a zone even if ddns is not configured (CVE-2009-0696). bind-9.4.2-39.6.i586.rpm bind-9.4.2-39.6.ppc.rpm bind-9.4.2-39.6.x86_64.rpm bind-chrootenv-9.4.2-39.6.i586.rpm bind-chrootenv-9.4.2-39.6.ppc.rpm bind-chrootenv-9.4.2-39.6.x86_64.rpm bind-devel-9.4.2-39.6.i586.rpm bind-devel-9.4.2-39.6.ppc.rpm bind-devel-9.4.2-39.6.x86_64.rpm bind-devel-64bit-9.4.2-39.6.ppc.rpm bind-doc-9.4.2-39.6.i586.rpm bind-doc-9.4.2-39.6.ppc.rpm bind-doc-9.4.2-39.6.x86_64.rpm bind-libs-9.4.2-39.6.i586.rpm bind-libs-9.4.2-39.6.ppc.rpm bind-libs-9.4.2-39.6.x86_64.rpm bind-libs-32bit-9.4.2-39.6.x86_64.rpm bind-libs-64bit-9.4.2-39.6.ppc.rpm bind-utils-9.4.2-39.6.i586.rpm bind-utils-9.4.2-39.6.ppc.rpm bind-utils-9.4.2-39.6.x86_64.rpm flash-player openSUSE 11.0 Specially crafted Flash (SWF) files can cause a buffer overflow in flash-player. Attackers could potentially exploit that to execute arbitrary code (CVE-2009-1862, CVE-2009-0901, CVE-2009-2395, CVE-2009-2493, CVE-2009-1863, CVE-2009-1864, CVE-2009-1865, CVE-2009-1866, CVE-2009-1867, CVE-2009-1868, CVE-2009-1869, CVE-2009-1870). flash-player-9.0.246.0-0.1.i586.rpm libtiff3 openSUSE 11.0 This update of libtiff fixes a buffer underflow in LZWDecodeCompat (CVE-2009-2285). libtiff3-3.8.2-108.6.i586.rpm libtiff3-3.8.2-108.6.ppc.rpm libtiff3-3.8.2-108.6.x86_64.rpm libtiff3-32bit-3.8.2-108.6.x86_64.rpm libtiff3-64bit-3.8.2-108.6.ppc.rpm java-1_5_0-sun openSUSE 11.0 The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java Web Start applications, which allows context-dependent attackers to obtain sensitive information by reading these properties. CVE-2009-2671: The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted (1) applet or (2) Java Web Start application via unspecified vectors. CVE-2009-2672: The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted (1) applets and (2) Java Web Start applications, which allows remote attackers to hijack web sessions via unspecified vectors. CVE-2009-2673: The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to bypass intended access restrictions and connect to arbitrary sites via unspecified vectors, related to a declaration that lacks the final keyword. CVE-2009-2674: Integer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 allows context-dependent attackers to gain privileges via vectors involving an untrusted Java Web Start application that grants permissions to itself, related to parsing of JPEG images. CVE-2009-2675: Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via vectors involving an untrusted (1) applet or (2) Java Web Start application that grants permissions to itself, related to decompression. CVE-2009-2676: Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier +and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.2_21 and earlier; allows remote attackers to create or modify arbitrary files via vectors involving an untrusted Java applet. java-1_5_0-sun-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-1.5.0_update20-0.1.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-alsa-1.5.0_update20-0.1.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-demo-1.5.0_update20-0.1.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-devel-1.5.0_update20-0.1.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update20-0.1.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update20-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update20-0.1.x86_64.rpm java-1_6_0-sun openSUSE 11.0 The Sun Java JRE /JDK 6 was updated to Update 15 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java Web Start applications, which allows context-dependent attackers to obtain sensitive information by reading these properties. CVE-2009-2671: The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted (1) applet or (2) Java Web Start application via unspecified vectors. CVE-2009-2672: The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted (1) applets and (2) Java Web Start applications, which allows remote attackers to hijack web sessions via unspecified vectors. CVE-2009-2673: The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to bypass intended access restrictions and connect to arbitrary sites via unspecified vectors, related to a declaration that lacks the final keyword. CVE-2009-2674: Integer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 allows context-dependent attackers to gain privileges via vectors involving an untrusted Java Web Start application that grants permissions to itself, related to parsing of JPEG images. CVE-2009-2675: Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via vectors involving an untrusted (1) applet or (2) Java Web Start application that grants permissions to itself, related to decompression. CVE-2009-2676: Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier +and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.2_21 and earlier; allows remote attackers to create or modify arbitrary files via vectors involving an untrusted Java applet. java-1_6_0-sun-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-1.6.0.u15-0.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u15-0.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u15-0.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u15-0.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u15-0.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-plugin-1.6.0.u15-0.1.x86_64.rpm java-1_6_0-sun-src-1.6.0.u15-0.1.i586.rpm java-1_6_0-sun-src-1.6.0.u15-0.1.x86_64.rpm memcached openSUSE 11.0 This update of memcached fixes a signedness problem which may lead to a buffer too small to hold all data received from the network, this may allow arbitrary remote code execution. (CVE-2009-2415) Additionally an information leak was fixed (CVE-2009-1494, CVE-2009-1255 ) memcached-1.2.2-49.2.i586.rpm memcached-1.2.2-49.2.ppc.rpm memcached-1.2.2-49.2.x86_64.rpm libxml2 openSUSE 11.0 This update of libxml2 does not use pointers after they were freed anymore. (CVE-2009-2416) Additionally a stack-based buffer overflow was fixed while parsing the root XML document. (CVE-2009-2414) libxml2-2.6.32-11.10.i586.rpm libxml2-2.6.32-11.10.ppc.rpm libxml2-2.6.32-11.10.x86_64.rpm libxml2-32bit-2.6.32-11.10.x86_64.rpm libxml2-64bit-2.6.32-11.10.ppc.rpm libxml2-devel-2.6.32-11.10.i586.rpm libxml2-devel-2.6.32-11.10.ppc.rpm libxml2-devel-2.6.32-11.10.x86_64.rpm libxml2-devel-32bit-2.6.32-11.10.x86_64.rpm libxml2-devel-64bit-2.6.32-11.10.ppc.rpm libxml2-doc-2.6.32-11.10.i586.rpm libxml2-doc-2.6.32-11.10.ppc.rpm libxml2-doc-2.6.32-11.10.x86_64.rpm fetchmail openSUSE 11.0 This update of fetchmail improves SSL certificate validation to stop possible man-in-the-middle attacks by inserting \0-character in the certificate's subject name. (CVE-2009-2666) fetchmail-6.3.8-134.2.i586.rpm fetchmail-6.3.8-134.2.ppc.rpm fetchmail-6.3.8-134.2.x86_64.rpm fetchmailconf-6.3.8-134.2.i586.rpm fetchmailconf-6.3.8-134.2.ppc.rpm fetchmailconf-6.3.8-134.2.x86_64.rpm subversion openSUSE 11.0 This version upgrade of subversion to 1.5.7 fixes some buffer overflows in the client and server code that can occur while parsing binary diffs. (CVE-2009-2411) Version 1.5.7 also fixes various non-security bugs. subversion-1.5.7-0.1.i586.rpm subversion-1.5.7-0.1.ppc.rpm subversion-1.5.7-0.1.x86_64.rpm subversion-devel-1.5.7-0.1.i586.rpm subversion-devel-1.5.7-0.1.ppc.rpm subversion-devel-1.5.7-0.1.x86_64.rpm subversion-perl-1.5.7-0.1.i586.rpm subversion-perl-1.5.7-0.1.ppc.rpm subversion-perl-1.5.7-0.1.x86_64.rpm subversion-python-1.5.7-0.1.i586.rpm subversion-python-1.5.7-0.1.ppc.rpm subversion-python-1.5.7-0.1.x86_64.rpm subversion-server-1.5.7-0.1.i586.rpm subversion-server-1.5.7-0.1.ppc.rpm subversion-server-1.5.7-0.1.x86_64.rpm subversion-tools-1.5.7-0.1.i586.rpm subversion-tools-1.5.7-0.1.ppc.rpm subversion-tools-1.5.7-0.1.x86_64.rpm wget openSUSE 11.0 This update wget improves the handling of the 0-character in the subject name of a SSL certificate. wget-1.11.1-11.2.i586.rpm wget-1.11.1-11.2.ppc.rpm wget-1.11.1-11.2.x86_64.rpm icu openSUSE 11.0 icu does not properly handle invalid byte sequences during Unicode conversion. Remote attackers could potentially exploit that to conduct conduct cross-site scripting (XSS) attacks (CVE-2009-0153). icu-3.8.1-21.2.i586.rpm icu-3.8.1-21.2.ppc.rpm icu-3.8.1-21.2.x86_64.rpm icu-data-3.8.1-21.2.i586.rpm icu-data-3.8.1-21.2.ppc.rpm icu-data-3.8.1-21.2.x86_64.rpm libicu-3.8.1-21.2.i586.rpm libicu-3.8.1-21.2.ppc.rpm libicu-3.8.1-21.2.x86_64.rpm libicu-32bit-3.8.1-21.2.x86_64.rpm libicu-64bit-3.8.1-21.2.ppc.rpm libicu-devel-3.8.1-21.2.i586.rpm libicu-devel-3.8.1-21.2.ppc.rpm libicu-devel-3.8.1-21.2.x86_64.rpm libicu-devel-32bit-3.8.1-21.2.x86_64.rpm libicu-devel-64bit-3.8.1-21.2.ppc.rpm libicu-doc-3.8.1-21.2.i586.rpm libicu-doc-3.8.1-21.2.ppc.rpm libicu-doc-3.8.1-21.2.x86_64.rpm curl openSUSE 11.0 This update of libcurl2 fixes the 0-character handling in the subject name of a SSL certificate. This bug could be used to execute an undetected man-in-the-middle-attack. (CVE-2009-2417) curl-7.18.1-18.4.i586.rpm curl-7.18.1-18.4.ppc.rpm curl-7.18.1-18.4.x86_64.rpm libcurl-devel-7.18.1-18.4.i586.rpm libcurl-devel-7.18.1-18.4.ppc.rpm libcurl-devel-7.18.1-18.4.x86_64.rpm libcurl4-7.18.1-18.4.i586.rpm libcurl4-7.18.1-18.4.ppc.rpm libcurl4-7.18.1-18.4.x86_64.rpm libcurl4-32bit-7.18.1-18.4.x86_64.rpm libcurl4-64bit-7.18.1-18.4.ppc.rpm libfreebl3 openSUSE 11.0 The Mozilla NSS security framework was updated to version 3.12.3.1. CVE-2009-2404 / MFSA 2009-43 : Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger (AIM), allows remote SSL servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long domain name in the subject's Common Name (CN) field of an X.509 certificate, related to the cert_TestHostName function. MFSA 2009-42 / CVE-2009-2408: IOActive security researcher Dan Kaminsky reported a mismatch in the treatment of domain names in SSL certificates between SSL clients and the Certificate Authorities (CA) which issue server certificates. In particular, if a malicious person requested a certificate for a host name with an invalid null character in it most CAs would issue the certificate if the requester owned the domain specified after the null, while most SSL clients (browsers) ignored that part of the name and used the unvalidated part in front of the null. This made it possible for attackers to obtain certificates that would function for any site they wished to target. These certificates could be used to intercept and potentially alter encrypted communication between the client and a server such as sensitive bank account transactions. This vulnerability was independently reported to us by researcher Moxie Marlinspike who also noted that since Firefox relies on SSL to protect the integrity of security updates this attack could be used to serve malicious updates. libfreebl3-3.12.3.1-1.1.i586.rpm libfreebl3-3.12.3.1-1.1.ppc.rpm libfreebl3-3.12.3.1-1.1.x86_64.rpm libfreebl3-32bit-3.12.3.1-1.1.x86_64.rpm libfreebl3-64bit-3.12.3.1-1.1.ppc.rpm mozilla-nss-3.12.3.1-1.1.i586.rpm mozilla-nss-3.12.3.1-1.1.ppc.rpm mozilla-nss-3.12.3.1-1.1.x86_64.rpm mozilla-nss-32bit-3.12.3.1-1.1.x86_64.rpm mozilla-nss-64bit-3.12.3.1-1.1.ppc.rpm mozilla-nss-devel-3.12.3.1-1.1.i586.rpm mozilla-nss-devel-3.12.3.1-1.1.ppc.rpm mozilla-nss-devel-3.12.3.1-1.1.x86_64.rpm mozilla-nss-tools-3.12.3.1-1.1.i586.rpm mozilla-nss-tools-3.12.3.1-1.1.ppc.rpm mozilla-nss-tools-3.12.3.1-1.1.x86_64.rpm MozillaFirefox openSUSE 11.0 MozillaFirefox was updated to the 3.0.13 release, fixing some security issues and bugs: MFSA 2009-44 / CVE-2009-2654: Security researcher Juan Pablo Lopez Yacubian reported that an attacker could call window.open() on an invalid URL which looks similar to a legitimate URL and then use document.write() to place content within the new document, appearing to have come from the spoofed location. Additionally, if the spoofed document was created by a document with a valid SSL certificate, the SSL indicators would be carried over into the spoofed document. An attacker could use these issues to display misleading location and SSL information for a malicious web page. MFSA 2009-45 / CVE-2009-2662:The browser engine in Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the TraceRecorder::snapshot function in js/src/jstracer.cpp, and unspecified other vectors. CVE-2009-2663 / MFSA 2009-45: libvorbis before r16182, as used in Mozilla Firefox before 3.0.13 and 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file. CVE-2009-2664 / MFSA 2009-45: The js_watch_set function in js/src/jsdbgapi.cpp in the JavaScript engine in Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to cause a denial of service (assertion failure and application exit) or possibly execute arbitrary code via a crafted .js file, related to a "memory safety bug." MozillaFirefox-3.0.13-0.1.i586.rpm MozillaFirefox-3.0.13-0.1.ppc.rpm MozillaFirefox-3.0.13-0.1.x86_64.rpm MozillaFirefox-translations-3.0.13-0.1.i586.rpm MozillaFirefox-translations-3.0.13-0.1.ppc.rpm MozillaFirefox-translations-3.0.13-0.1.x86_64.rpm gconf2-2.22.0-28.1.i586.rpm gconf2-2.22.0-28.1.ppc.rpm gconf2-2.22.0-28.1.x86_64.rpm gconf2-32bit-2.22.0-28.1.x86_64.rpm gconf2-64bit-2.22.0-28.1.ppc.rpm libidl-0.8.10-27.1.i586.rpm libidl-0.8.10-27.1.ppc.rpm libidl-0.8.10-27.1.x86_64.rpm libidl-32bit-0.8.10-27.1.x86_64.rpm libidl-64bit-0.8.10-27.1.ppc.rpm mozilla-xulrunner190-1.9.0.13-1.1.i586.rpm mozilla-xulrunner190-1.9.0.13-1.1.ppc.rpm mozilla-xulrunner190-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.13-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.13-1.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.13-1.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.13-1.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.13-1.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.13-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.13-1.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.13-1.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.13-1.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.13-1.1.ppc.rpm orbit2-2.14.12-32.1.i586.rpm orbit2-2.14.12-32.1.ppc.rpm orbit2-2.14.12-32.1.x86_64.rpm orbit2-32bit-2.14.12-32.1.x86_64.rpm orbit2-64bit-2.14.12-32.1.ppc.rpm xfce4-panel-plugin-battery openSUSE 11.0 xfce4-panel-plugins: Before version 0.6.3 of plugin weather it cannot work to the current version of weather.com's API. This update fixes the problem. xfce4-panel-plugin-battery-0.5.0-14.2.i586.rpm xfce4-panel-plugin-battery-0.5.0-14.2.ppc.rpm xfce4-panel-plugin-battery-0.5.0-14.2.x86_64.rpm xfce4-panel-plugin-cddrive-0.0.1-6.2.i586.rpm xfce4-panel-plugin-cddrive-0.0.1-6.2.ppc.rpm xfce4-panel-plugin-cddrive-0.0.1-6.2.x86_64.rpm xfce4-panel-plugin-cellmodem-0.0.5-11.2.i586.rpm xfce4-panel-plugin-cellmodem-0.0.5-11.2.ppc.rpm xfce4-panel-plugin-cellmodem-0.0.5-11.2.x86_64.rpm xfce4-panel-plugin-clipman-0.8.1-14.2.i586.rpm xfce4-panel-plugin-clipman-0.8.1-14.2.ppc.rpm xfce4-panel-plugin-clipman-0.8.1-14.2.x86_64.rpm xfce4-panel-plugin-cpufreq-0.0.1-11.2.i586.rpm xfce4-panel-plugin-cpufreq-0.0.1-11.2.ppc.rpm xfce4-panel-plugin-cpufreq-0.0.1-11.2.x86_64.rpm xfce4-panel-plugin-cpugraph-0.3.0-11.2.i586.rpm xfce4-panel-plugin-cpugraph-0.3.0-11.2.ppc.rpm xfce4-panel-plugin-cpugraph-0.3.0-11.2.x86_64.rpm xfce4-panel-plugin-datetime-0.5.0-14.2.i586.rpm xfce4-panel-plugin-datetime-0.5.0-14.2.ppc.rpm xfce4-panel-plugin-datetime-0.5.0-14.2.x86_64.rpm xfce4-panel-plugin-dict-0.3.0-11.2.i586.rpm xfce4-panel-plugin-dict-0.3.0-11.2.ppc.rpm xfce4-panel-plugin-dict-0.3.0-11.2.x86_64.rpm xfce4-panel-plugin-diskperf-2.1.0-14.2.i586.rpm xfce4-panel-plugin-diskperf-2.1.0-14.2.ppc.rpm xfce4-panel-plugin-diskperf-2.1.0-14.2.x86_64.rpm xfce4-panel-plugin-eyes-4.4.0-14.2.i586.rpm xfce4-panel-plugin-eyes-4.4.0-14.2.ppc.rpm xfce4-panel-plugin-eyes-4.4.0-14.2.x86_64.rpm xfce4-panel-plugin-fsguard-0.4.1-11.2.i586.rpm xfce4-panel-plugin-fsguard-0.4.1-11.2.ppc.rpm xfce4-panel-plugin-fsguard-0.4.1-11.2.x86_64.rpm xfce4-panel-plugin-genmon-3.2-11.2.i586.rpm xfce4-panel-plugin-genmon-3.2-11.2.ppc.rpm xfce4-panel-plugin-genmon-3.2-11.2.x86_64.rpm xfce4-panel-plugin-governor-0.1.0-6.2.i586.rpm xfce4-panel-plugin-governor-0.1.0-6.2.ppc.rpm xfce4-panel-plugin-governor-0.1.0-6.2.x86_64.rpm xfce4-panel-plugin-mailwatch-1.0.1-11.2.i586.rpm xfce4-panel-plugin-mailwatch-1.0.1-11.2.ppc.rpm xfce4-panel-plugin-mailwatch-1.0.1-11.2.x86_64.rpm xfce4-panel-plugin-mount-0.5.4-11.2.i586.rpm xfce4-panel-plugin-mount-0.5.4-11.2.ppc.rpm xfce4-panel-plugin-mount-0.5.4-11.2.x86_64.rpm xfce4-panel-plugin-mpc-0.3.3-11.2.i586.rpm xfce4-panel-plugin-mpc-0.3.3-11.2.ppc.rpm xfce4-panel-plugin-mpc-0.3.3-11.2.x86_64.rpm xfce4-panel-plugin-netload-0.4.0-14.2.i586.rpm xfce4-panel-plugin-netload-0.4.0-14.2.ppc.rpm xfce4-panel-plugin-netload-0.4.0-14.2.x86_64.rpm xfce4-panel-plugin-notes-1.6.1-11.2.i586.rpm xfce4-panel-plugin-notes-1.6.1-11.2.ppc.rpm xfce4-panel-plugin-notes-1.6.1-11.2.x86_64.rpm xfce4-panel-plugin-places-1.0.0-11.2.i586.rpm xfce4-panel-plugin-places-1.0.0-11.2.ppc.rpm xfce4-panel-plugin-places-1.0.0-11.2.x86_64.rpm xfce4-panel-plugin-quicklauncher-1.9.4-11.2.i586.rpm xfce4-panel-plugin-quicklauncher-1.9.4-11.2.ppc.rpm xfce4-panel-plugin-quicklauncher-1.9.4-11.2.x86_64.rpm xfce4-panel-plugin-radio-0.2.0-11.2.i586.rpm xfce4-panel-plugin-radio-0.2.0-11.2.ppc.rpm xfce4-panel-plugin-radio-0.2.0-11.2.x86_64.rpm xfce4-panel-plugin-screenshooter-1.0.0-11.2.i586.rpm xfce4-panel-plugin-screenshooter-1.0.0-11.2.ppc.rpm xfce4-panel-plugin-screenshooter-1.0.0-11.2.x86_64.rpm xfce4-panel-plugin-sensors-0.10.99.3-11.2.i586.rpm xfce4-panel-plugin-sensors-0.10.99.3-11.2.ppc.rpm xfce4-panel-plugin-sensors-0.10.99.3-11.2.x86_64.rpm xfce4-panel-plugin-smartbookmark-0.4.2-11.2.i586.rpm xfce4-panel-plugin-smartbookmark-0.4.2-11.2.ppc.rpm xfce4-panel-plugin-smartbookmark-0.4.2-11.2.x86_64.rpm xfce4-panel-plugin-smartpm-0.1.2-11.2.i586.rpm xfce4-panel-plugin-smartpm-0.1.2-11.2.ppc.rpm xfce4-panel-plugin-smartpm-0.1.2-11.2.x86_64.rpm xfce4-panel-plugin-systemload-0.4.2-14.2.i586.rpm xfce4-panel-plugin-systemload-0.4.2-14.2.ppc.rpm xfce4-panel-plugin-systemload-0.4.2-14.2.x86_64.rpm xfce4-panel-plugin-timeout-0.1.1-11.2.i586.rpm xfce4-panel-plugin-timeout-0.1.1-11.2.ppc.rpm xfce4-panel-plugin-timeout-0.1.1-11.2.x86_64.rpm xfce4-panel-plugin-timer-0.6-11.2.i586.rpm xfce4-panel-plugin-timer-0.6-11.2.ppc.rpm xfce4-panel-plugin-timer-0.6-11.2.x86_64.rpm xfce4-panel-plugin-verve-0.3.5-14.2.i586.rpm xfce4-panel-plugin-verve-0.3.5-14.2.ppc.rpm xfce4-panel-plugin-verve-0.3.5-14.2.x86_64.rpm xfce4-panel-plugin-wavelan-0.5.4-11.2.i586.rpm xfce4-panel-plugin-wavelan-0.5.4-11.2.ppc.rpm xfce4-panel-plugin-wavelan-0.5.4-11.2.x86_64.rpm xfce4-panel-plugin-weather-0.7.0-0.1.i586.rpm xfce4-panel-plugin-weather-0.7.0-0.1.ppc.rpm xfce4-panel-plugin-weather-0.7.0-0.1.x86_64.rpm xfce4-panel-plugin-xfapplet-0.1.0-11.2.i586.rpm xfce4-panel-plugin-xfapplet-0.1.0-11.2.ppc.rpm xfce4-panel-plugin-xfapplet-0.1.0-11.2.x86_64.rpm xfce4-panel-plugin-xfmedia-remote-0.2.2-6.2.i586.rpm xfce4-panel-plugin-xfmedia-remote-0.2.2-6.2.ppc.rpm xfce4-panel-plugin-xfmedia-remote-0.2.2-6.2.x86_64.rpm xfce4-panel-plugin-xkb-0.4.3-14.2.i586.rpm xfce4-panel-plugin-xkb-0.4.3-14.2.ppc.rpm xfce4-panel-plugin-xkb-0.4.3-14.2.x86_64.rpm xfce4-panel-plugin-xmms-0.5.1-11.2.i586.rpm xfce4-panel-plugin-xmms-0.5.1-11.2.ppc.rpm xfce4-panel-plugin-xmms-0.5.1-11.2.x86_64.rpm Xerces-c openSUSE 11.0 The Xerces-c package was vulnerable to various bugs while parsing XML. (CVE-2009-1885) Xerces-c-2.8.0-10.2.i586.rpm Xerces-c-2.8.0-10.2.ppc.rpm Xerces-c-2.8.0-10.2.x86_64.rpm libXerces-c-28-2.8.0-10.2.i586.rpm libXerces-c-28-2.8.0-10.2.ppc.rpm libXerces-c-28-2.8.0-10.2.x86_64.rpm libXerces-c-devel-2.8.0-10.2.i586.rpm libXerces-c-devel-2.8.0-10.2.ppc.rpm libXerces-c-devel-2.8.0-10.2.x86_64.rpm libtiff-devel openSUSE 11.0 This update of the tiff package fixes various integer overflows in the tools. (CVE-2009-2347) libtiff-devel-3.8.2-108.7.i586.rpm libtiff-devel-3.8.2-108.7.ppc.rpm libtiff-devel-3.8.2-108.7.x86_64.rpm libtiff-devel-32bit-3.8.2-108.7.x86_64.rpm libtiff-devel-64bit-3.8.2-108.7.ppc.rpm libtiff3-3.8.2-108.7.i586.rpm libtiff3-3.8.2-108.7.ppc.rpm libtiff3-3.8.2-108.7.x86_64.rpm libtiff3-32bit-3.8.2-108.7.x86_64.rpm libtiff3-64bit-3.8.2-108.7.ppc.rpm tiff-3.8.2-108.7.i586.rpm tiff-3.8.2-108.7.ppc.rpm tiff-3.8.2-108.7.x86_64.rpm xpdf openSUSE 11.0 Specially crafted PDF documents could crash xpdf or potentially even allow execution of arbitrary code (CVE-2009-0791). xpdf-3.02-95.6.i586.rpm xpdf-3.02-95.6.ppc.rpm xpdf-3.02-95.6.x86_64.rpm xpdf-tools-3.02-95.6.i586.rpm xpdf-tools-3.02-95.6.ppc.rpm xpdf-tools-3.02-95.6.x86_64.rpm kernel openSUSE 11.0 This kernel update for openSUSE 11.0 fixes some bugs and several security problems. The following security issues are fixed: CVE-2009-2692: A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. CVE-2009-2406: A kernel stack overflow when mounting eCryptfs filesystems in parse_tag_11_packet() was fixed. Code execution might be possible of ecryptfs is in use. CVE-2009-2407: A kernel heap overflow when mounting eCryptfs filesystems in parse_tag_3_packet() was fixed. Code execution might be possible of ecryptfs is in use. The compiler option -fno-delete-null-pointer-checks was added to the kernel build, and the -fwrapv compiler option usage was fixed to be used everywhere. This works around the compiler removing checks too aggressively. CVE-2009-1389: A crash in the r8169 driver when receiving large packets was fixed. This is probably exploitable only in the local network. CVE-2009-1895: Personality flags on set*id were not cleared correctly, so ASLR and NULL page protection could be bypassed. CVE-2009-1046: A utf-8 console memory corruption that can be used for local privilege escalation was fixed. The NULL page protection using mmap_min_addr was enabled (was disabled before). No CVE yet: A sigaltstack kernel memory disclosure was fixed. CVE-2008-5033: A local denial of service (Oops) in video4linux tvaudio was fixed. CVE-2009-1385: A Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows remote attackers to cause a denial of service (panic) via a crafted frame size. acerhk-kmp-debug-0.5.35_2.6.25.20_0.5-98.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.5-3.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.5-3.1.x86_64.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.5-108.1.i586.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.5-108.1.x86_64.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.5-2.1.i586.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.5-2.1.x86_64.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.5-4.1.i586.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.5-4.1.x86_64.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.5-13.3.i586.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.5-13.3.x86_64.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.5-42.1.i586.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.5-42.1.x86_64.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.5-0.2.i586.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.5-0.2.x86_64.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.5-1.1.i586.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.5-1.1.x86_64.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.5-63.1.i586.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.5-63.1.x86_64.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.5-66.1.i586.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.5-66.1.x86_64.rpm 1 kernel-debug-2.6.25.20-0.5.i586.rpm 1 kernel-debug-2.6.25.20-0.5.x86_64.rpm 1 kernel-default-2.6.25.20-0.5.i586.rpm 1 kernel-default-2.6.25.20-0.5.ppc.rpm 1 kernel-default-2.6.25.20-0.5.x86_64.rpm 1 kernel-docs-2.6.25.20-0.5.noarch.rpm 1 kernel-kdump-2.6.25.20-0.5.ppc.rpm 1 kernel-pae-2.6.25.20-0.5.i586.rpm 1 kernel-ppc64-2.6.25.20-0.5.ppc.rpm 1 kernel-ps3-2.6.25.20-0.5.ppc.rpm 1 kernel-source-2.6.25.20-0.5.i586.rpm 1 kernel-source-2.6.25.20-0.5.ppc.rpm 1 kernel-source-2.6.25.20-0.5.x86_64.rpm 1 kernel-syms-2.6.25.20-0.5.i586.rpm 1 kernel-syms-2.6.25.20-0.5.ppc.rpm 1 kernel-syms-2.6.25.20-0.5.x86_64.rpm 1 kernel-vanilla-2.6.25.20-0.5.i586.rpm 1 kernel-vanilla-2.6.25.20-0.5.ppc.rpm 1 kernel-vanilla-2.6.25.20-0.5.x86_64.rpm 1 kernel-xen-2.6.25.20-0.5.i586.rpm 1 kernel-xen-2.6.25.20-0.5.x86_64.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.5-7.1.i586.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.5-7.1.x86_64.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.5-0.4.i586.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.5-0.4.x86_64.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.5-1.1.i586.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.5-1.1.x86_64.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.5-4.1.i586.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.5-4.1.x86_64.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.5-207.1.i586.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.5-207.1.x86_64.rpm 1 tpctl-kmp-debug-4.17_2.6.25.20_0.5-189.1.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.5-2.4.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.5-2.4.x86_64.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.5-33.3.i586.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.5-33.3.x86_64.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.5-21.1.i586.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.5-21.1.x86_64.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.5-107.1.i586.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.5-107.1.x86_64.rpm 1 xemacs openSUSE 11.0 Specially crafted tiff, png and jpeg images could cause integer overflows in xemacs and possible system compromise. (CVE-2009-2688) Additionally two non-security bugs were fixed that enable xemacs to use the configured fonts. xemacs-21.5.28.20080401-16.2.i586.rpm xemacs-21.5.28.20080401-16.2.ppc.rpm xemacs-21.5.28.20080401-16.2.x86_64.rpm xemacs-el-21.5.28.20080401-16.2.i586.rpm xemacs-el-21.5.28.20080401-16.2.ppc.rpm xemacs-el-21.5.28.20080401-16.2.x86_64.rpm xemacs-info-21.5.28.20080401-16.2.i586.rpm xemacs-info-21.5.28.20080401-16.2.ppc.rpm xemacs-info-21.5.28.20080401-16.2.x86_64.rpm xerces-j2 openSUSE 11.0 The xerces-j2 package was vulnerable to various bugs while parsing XML.CVE-2009-2625 has been assigned to this issue. xerces-j2-2.8.1-149.2.noarch.rpm xerces-j2-demo-2.8.1-149.2.noarch.rpm xerces-j2-javadoc-apis-2.8.1-149.2.noarch.rpm xerces-j2-javadoc-dom3-2.8.1-149.2.noarch.rpm xerces-j2-javadoc-impl-2.8.1-149.2.noarch.rpm xerces-j2-javadoc-other-2.8.1-149.2.noarch.rpm xerces-j2-javadoc-xni-2.8.1-149.2.noarch.rpm xerces-j2-scripts-2.8.1-149.2.noarch.rpm xerces-j2-xml-apis-2.8.1-149.2.noarch.rpm xerces-j2-xml-resolver-2.8.1-149.2.noarch.rpm libmysqlclient-devel openSUSE 11.0 - the COM_CREATE_DB and COM_DROP_DB suffered from format string vulnerabilities (CVE-2009-2446) - the command line client was prone to cross-site scripting (XSS) attacks (CVE-2008-4456) - fix slave reconnect libmysqlclient-devel-5.0.51a-27.4.i586.rpm libmysqlclient-devel-5.0.51a-27.4.ppc.rpm libmysqlclient-devel-5.0.51a-27.4.x86_64.rpm libmysqlclient15-5.0.51a-27.4.i586.rpm libmysqlclient15-5.0.51a-27.4.ppc.rpm libmysqlclient15-5.0.51a-27.4.x86_64.rpm libmysqlclient15-32bit-5.0.51a-27.4.x86_64.rpm libmysqlclient15-64bit-5.0.51a-27.4.ppc.rpm libmysqlclient_r15-5.0.51a-27.4.i586.rpm libmysqlclient_r15-5.0.51a-27.4.ppc.rpm libmysqlclient_r15-5.0.51a-27.4.x86_64.rpm libmysqlclient_r15-32bit-5.0.51a-27.4.x86_64.rpm libmysqlclient_r15-64bit-5.0.51a-27.4.ppc.rpm mysql-5.0.51a-27.4.i586.rpm mysql-5.0.51a-27.4.ppc.rpm mysql-5.0.51a-27.4.ppc64.rpm mysql-5.0.51a-27.4.x86_64.rpm mysql-Max-5.0.51a-27.4.i586.rpm mysql-Max-5.0.51a-27.4.ppc.rpm mysql-Max-5.0.51a-27.4.x86_64.rpm mysql-bench-5.0.51a-27.4.i586.rpm mysql-bench-5.0.51a-27.4.ppc.rpm mysql-bench-5.0.51a-27.4.x86_64.rpm mysql-client-5.0.51a-27.4.i586.rpm mysql-client-5.0.51a-27.4.ppc.rpm mysql-client-5.0.51a-27.4.x86_64.rpm mysql-debug-5.0.51a-27.4.i586.rpm mysql-debug-5.0.51a-27.4.ppc.rpm mysql-debug-5.0.51a-27.4.x86_64.rpm mysql-tools-5.0.51a-27.4.i586.rpm mysql-tools-5.0.51a-27.4.ppc.rpm mysql-tools-5.0.51a-27.4.x86_64.rpm java-1_6_0-openjdk openSUSE 11.0 The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documentes. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. (CVE-2009-0217) The WebStart component does not allow to run unsigned code in some cases. (CVE-2009-1896) A null pointer dereference was fixed in the LittleCMS component. (CVE-2009-0793) java-1_6_0-openjdk-1.5.1_b16-0.1.i586.rpm java-1_6_0-openjdk-1.5.1_b16-0.1.ppc.rpm java-1_6_0-openjdk-1.5.1_b16-0.1.x86_64.rpm java-1_6_0-openjdk-demo-1.5.1_b16-0.1.i586.rpm java-1_6_0-openjdk-demo-1.5.1_b16-0.1.ppc.rpm java-1_6_0-openjdk-demo-1.5.1_b16-0.1.x86_64.rpm java-1_6_0-openjdk-devel-1.5.1_b16-0.1.i586.rpm java-1_6_0-openjdk-devel-1.5.1_b16-0.1.ppc.rpm java-1_6_0-openjdk-devel-1.5.1_b16-0.1.x86_64.rpm java-1_6_0-openjdk-javadoc-1.5.1_b16-0.1.i586.rpm java-1_6_0-openjdk-javadoc-1.5.1_b16-0.1.ppc.rpm java-1_6_0-openjdk-javadoc-1.5.1_b16-0.1.x86_64.rpm java-1_6_0-openjdk-plugin-1.5.1_b16-0.1.i586.rpm java-1_6_0-openjdk-plugin-1.5.1_b16-0.1.ppc.rpm java-1_6_0-openjdk-plugin-1.5.1_b16-0.1.x86_64.rpm java-1_6_0-openjdk-src-1.5.1_b16-0.1.i586.rpm java-1_6_0-openjdk-src-1.5.1_b16-0.1.ppc.rpm java-1_6_0-openjdk-src-1.5.1_b16-0.1.x86_64.rpm finch openSUSE 11.0 This update of pidgin fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. (CORE-2009-0727) finch-2.4.1-28.12.i586.rpm finch-2.4.1-28.12.ppc.rpm finch-2.4.1-28.12.x86_64.rpm finch-devel-2.4.1-28.12.i586.rpm finch-devel-2.4.1-28.12.ppc.rpm finch-devel-2.4.1-28.12.x86_64.rpm libpurple-2.4.1-28.12.i586.rpm libpurple-2.4.1-28.12.ppc.rpm libpurple-2.4.1-28.12.x86_64.rpm libpurple-devel-2.4.1-28.12.i586.rpm libpurple-devel-2.4.1-28.12.ppc.rpm libpurple-devel-2.4.1-28.12.x86_64.rpm libpurple-lang-2.4.1-28.12.i586.rpm libpurple-lang-2.4.1-28.12.ppc.rpm libpurple-lang-2.4.1-28.12.x86_64.rpm libpurple-meanwhile-2.4.1-28.12.i586.rpm libpurple-meanwhile-2.4.1-28.12.ppc.rpm libpurple-meanwhile-2.4.1-28.12.x86_64.rpm libpurple-mono-2.4.1-28.12.i586.rpm libpurple-mono-2.4.1-28.12.ppc.rpm libpurple-mono-2.4.1-28.12.x86_64.rpm pidgin-2.4.1-28.12.i586.rpm pidgin-2.4.1-28.12.ppc.rpm pidgin-2.4.1-28.12.x86_64.rpm pidgin-devel-2.4.1-28.12.i586.rpm pidgin-devel-2.4.1-28.12.ppc.rpm pidgin-devel-2.4.1-28.12.x86_64.rpm OpenEXR openSUSE 11.0 This update of OpenEXR fixes seceral integer overflows (CVE-2009-1720) and a denial-of-service (probably execution of arbitrary code) bug (CVE-2009-1721). OpenEXR-1.6.1-47.2.i586.rpm OpenEXR-1.6.1-47.2.ppc.rpm OpenEXR-1.6.1-47.2.x86_64.rpm OpenEXR-32bit-1.6.1-47.2.x86_64.rpm OpenEXR-64bit-1.6.1-47.2.ppc.rpm OpenEXR-devel-1.6.1-47.2.i586.rpm OpenEXR-devel-1.6.1-47.2.ppc.rpm OpenEXR-devel-1.6.1-47.2.x86_64.rpm OpenEXR-doc-1.6.1-47.2.i586.rpm OpenEXR-doc-1.6.1-47.2.ppc.rpm OpenEXR-doc-1.6.1-47.2.x86_64.rpm wireshark openSUSE 11.0 Flaws in the AFS dissector allowed attackers to crash wireshark via specially crafted network traffic (CVE-2009-2562). wireshark-1.0.0-17.14.i586.rpm wireshark-1.0.0-17.14.ppc.rpm wireshark-1.0.0-17.14.x86_64.rpm wireshark-devel-1.0.0-17.14.i586.rpm wireshark-devel-1.0.0-17.14.ppc.rpm wireshark-devel-1.0.0-17.14.x86_64.rpm dnsmasq openSUSE 11.0 This update fixes a buffer overflow in the TFTP server code of dnsmasq. Please note that the TFTP server is disabled by default. dnsmasq-2.45-0.3.i586.rpm dnsmasq-2.45-0.3.ppc.rpm dnsmasq-2.45-0.3.x86_64.rpm xen openSUSE 11.0 xend did not properly enforce access control of the xenstore directory tree, therefore allowing guest VM's to write there. This could lead to security problems if other applications such as libvirt are not prepared for untrusted data in the xenstore directory (CVE-2008-4405). xen-3.2.1_16881_04-4.3.i586.rpm xen-3.2.1_16881_04-4.3.x86_64.rpm xen-devel-3.2.1_16881_04-4.3.i586.rpm xen-devel-3.2.1_16881_04-4.3.x86_64.rpm xen-doc-html-3.2.1_16881_04-4.3.i586.rpm xen-doc-html-3.2.1_16881_04-4.3.x86_64.rpm xen-doc-pdf-3.2.1_16881_04-4.3.i586.rpm xen-doc-pdf-3.2.1_16881_04-4.3.x86_64.rpm xen-libs-3.2.1_16881_04-4.3.i586.rpm xen-libs-3.2.1_16881_04-4.3.x86_64.rpm xen-tools-3.2.1_16881_04-4.3.i586.rpm xen-tools-3.2.1_16881_04-4.3.x86_64.rpm xen-tools-domU-3.2.1_16881_04-4.3.i586.rpm xen-tools-domU-3.2.1_16881_04-4.3.x86_64.rpm fetchmsttfonts openSUSE 11.0 The Sourceforge download URLs changed, so fetchmsttfonts was not able to download the MS TrueType corefonts anymore. This patch fixes this issue. cabextract-1.2-94.2.i586.rpm cabextract-1.2-94.2.ppc.rpm cabextract-1.2-94.2.x86_64.rpm fetchmsttfonts-11.0-2.3.noarch.rpm opera openSUSE 11.0 Opera version 10 includes at least security fixes for an XML denial-of-service bug (CVE-2009-1234) and the "SSL tampering" attack (CVE-2009-2059, CVE-2009-2063, CVE-2009-2067, CVE-2009-2070). opera-10.00-6.1.i586.rpm opera-10.00-6.1.ppc.rpm opera-10.00-6.1.x86_64.rpm bytefx-data-mysql openSUSE 11.0 The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documents. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. bytefx-data-mysql-1.9.1-6.5.i586.rpm bytefx-data-mysql-1.9.1-6.5.ppc.rpm bytefx-data-mysql-1.9.1-6.5.x86_64.rpm ibm-data-db2-1.9.1-6.5.i586.rpm ibm-data-db2-1.9.1-6.5.ppc.rpm ibm-data-db2-1.9.1-6.5.x86_64.rpm mono-complete-1.9.1-6.5.i586.rpm mono-complete-1.9.1-6.5.ppc.rpm mono-complete-1.9.1-6.5.x86_64.rpm mono-core-1.9.1-6.5.i586.rpm mono-core-1.9.1-6.5.ppc.rpm mono-core-1.9.1-6.5.x86_64.rpm mono-core-32bit-1.9.1-6.5.x86_64.rpm mono-data-1.9.1-6.5.i586.rpm mono-data-1.9.1-6.5.ppc.rpm mono-data-1.9.1-6.5.x86_64.rpm mono-data-firebird-1.9.1-6.5.i586.rpm mono-data-firebird-1.9.1-6.5.ppc.rpm mono-data-firebird-1.9.1-6.5.x86_64.rpm mono-data-oracle-1.9.1-6.5.i586.rpm mono-data-oracle-1.9.1-6.5.ppc.rpm mono-data-oracle-1.9.1-6.5.x86_64.rpm mono-data-postgresql-1.9.1-6.5.i586.rpm mono-data-postgresql-1.9.1-6.5.ppc.rpm mono-data-postgresql-1.9.1-6.5.x86_64.rpm mono-data-sqlite-1.9.1-6.5.i586.rpm mono-data-sqlite-1.9.1-6.5.ppc.rpm mono-data-sqlite-1.9.1-6.5.x86_64.rpm mono-data-sybase-1.9.1-6.5.i586.rpm mono-data-sybase-1.9.1-6.5.ppc.rpm mono-data-sybase-1.9.1-6.5.x86_64.rpm mono-devel-1.9.1-6.5.i586.rpm mono-devel-1.9.1-6.5.ppc.rpm mono-devel-1.9.1-6.5.x86_64.rpm mono-extras-1.9.1-6.5.i586.rpm mono-extras-1.9.1-6.5.ppc.rpm mono-extras-1.9.1-6.5.x86_64.rpm mono-jscript-1.9.1-6.5.i586.rpm mono-jscript-1.9.1-6.5.ppc.rpm mono-jscript-1.9.1-6.5.x86_64.rpm mono-locale-extras-1.9.1-6.5.i586.rpm mono-locale-extras-1.9.1-6.5.ppc.rpm mono-locale-extras-1.9.1-6.5.x86_64.rpm mono-nunit-1.9.1-6.5.i586.rpm mono-nunit-1.9.1-6.5.ppc.rpm mono-nunit-1.9.1-6.5.x86_64.rpm mono-web-1.9.1-6.5.i586.rpm mono-web-1.9.1-6.5.ppc.rpm mono-web-1.9.1-6.5.x86_64.rpm mono-winforms-1.9.1-6.5.i586.rpm mono-winforms-1.9.1-6.5.ppc.rpm mono-winforms-1.9.1-6.5.x86_64.rpm OpenOffice_org openSUSE 11.0 This update of OpenOffice.org fixes potential buffer overflow in EMF parser code (CVE-2009-2139, CVE-2009-2140) (Thanks to Petr Mladek). Additionally Secunia reported an integer underflow (CVE-2009-0200) and a buffer overflow (CVE-2009-0201) that could be triggered while parsing Word documents. OpenOffice_org-2.4.0.14-1.4.i586.rpm OpenOffice_org-2.4.0.14-1.4.ppc.rpm OpenOffice_org-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-base-2.4.0.14-1.4.i586.rpm OpenOffice_org-base-2.4.0.14-1.4.ppc.rpm OpenOffice_org-base-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.4.i586.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.4.ppc.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-calc-2.4.0.14-1.4.i586.rpm OpenOffice_org-calc-2.4.0.14-1.4.ppc.rpm OpenOffice_org-calc-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-devel-2.4.0.14-1.4.i586.rpm OpenOffice_org-devel-2.4.0.14-1.4.ppc.rpm OpenOffice_org-devel-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-draw-2.4.0.14-1.4.i586.rpm OpenOffice_org-draw-2.4.0.14-1.4.ppc.rpm OpenOffice_org-draw-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-filters-2.4.0.14-1.4.i586.rpm OpenOffice_org-filters-2.4.0.14-1.4.ppc.rpm OpenOffice_org-filters-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-gnome-2.4.0.14-1.4.i586.rpm OpenOffice_org-gnome-2.4.0.14-1.4.ppc.rpm OpenOffice_org-gnome-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.4.i586.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.4.ppc.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-impress-2.4.0.14-1.4.i586.rpm OpenOffice_org-impress-2.4.0.14-1.4.ppc.rpm OpenOffice_org-impress-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-kde-2.4.0.14-1.4.i586.rpm OpenOffice_org-kde-2.4.0.14-1.4.ppc.rpm OpenOffice_org-kde-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-mailmerge-2.4.0.14-1.4.i586.rpm OpenOffice_org-mailmerge-2.4.0.14-1.4.ppc.rpm OpenOffice_org-mailmerge-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-math-2.4.0.14-1.4.i586.rpm OpenOffice_org-math-2.4.0.14-1.4.ppc.rpm OpenOffice_org-math-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-mono-2.4.0.14-1.4.i586.rpm OpenOffice_org-mono-2.4.0.14-1.4.ppc.rpm OpenOffice_org-mono-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-officebean-2.4.0.14-1.4.i586.rpm OpenOffice_org-officebean-2.4.0.14-1.4.ppc.rpm OpenOffice_org-officebean-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-pyuno-2.4.0.14-1.4.i586.rpm OpenOffice_org-pyuno-2.4.0.14-1.4.ppc.rpm OpenOffice_org-pyuno-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-sdk-2.4.0.14-1.4.i586.rpm OpenOffice_org-sdk-2.4.0.14-1.4.ppc.rpm OpenOffice_org-sdk-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.4.i586.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.4.ppc.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-testtool-2.4.0.14-1.4.i586.rpm OpenOffice_org-testtool-2.4.0.14-1.4.ppc.rpm OpenOffice_org-testtool-2.4.0.14-1.4.x86_64.rpm OpenOffice_org-writer-2.4.0.14-1.4.i586.rpm OpenOffice_org-writer-2.4.0.14-1.4.ppc.rpm OpenOffice_org-writer-2.4.0.14-1.4.x86_64.rpm gnutls openSUSE 11.0 This update of gnutls improves the verification of the domain/subject names in SSL certificates (CVE-2009-2730). gnutls-2.2.2-17.9.i586.rpm gnutls-2.2.2-17.9.ppc.rpm gnutls-2.2.2-17.9.x86_64.rpm libgnutls-devel-2.2.2-17.9.i586.rpm libgnutls-devel-2.2.2-17.9.ppc.rpm libgnutls-devel-2.2.2-17.9.x86_64.rpm libgnutls-extra-devel-2.2.2-17.9.i586.rpm libgnutls-extra-devel-2.2.2-17.9.ppc.rpm libgnutls-extra-devel-2.2.2-17.9.x86_64.rpm libgnutls-extra26-2.2.2-17.9.i586.rpm libgnutls-extra26-2.2.2-17.9.ppc.rpm libgnutls-extra26-2.2.2-17.9.x86_64.rpm libgnutls26-2.2.2-17.9.i586.rpm libgnutls26-2.2.2-17.9.ppc.rpm libgnutls26-2.2.2-17.9.x86_64.rpm libgnutls26-32bit-2.2.2-17.9.x86_64.rpm libgnutls26-64bit-2.2.2-17.9.ppc.rpm yast2-backup openSUSE 11.0 yast2-backup: In some cases after a successful backup a error message was shown. This bug is fixed by this update. yast2-backup-2.16.7-0.1.noarch.rpm libxml openSUSE 11.0 This update of libxml does not use pointers after they were freed anymore. (CVE-2009-2416) Additionally a stack-based buffer overflow was fixed while parsing the root XML document. (CVE-2009-2414) libxml-1.8.17-489.2.i586.rpm libxml-1.8.17-489.2.ppc.rpm libxml-1.8.17-489.2.x86_64.rpm libxml-32bit-1.8.17-489.2.x86_64.rpm libxml-64bit-1.8.17-489.2.ppc.rpm libxml-devel-1.8.17-489.2.i586.rpm libxml-devel-1.8.17-489.2.ppc.rpm libxml-devel-1.8.17-489.2.x86_64.rpm silc-toolkit openSUSE 11.0 This update of slic-toolkit fixes stack-based overflow while encoding a ASN.1 OID (CVE-2008-7159) and several format string bugs (CVE-2009-3051, CVE-2008-7160). The probability to exploit this issues to execute arbitrary code is high. silc-toolkit-1.1.7-19.2.i586.rpm silc-toolkit-1.1.7-19.2.ppc.rpm silc-toolkit-1.1.7-19.2.x86_64.rpm silc-toolkit-devel-1.1.7-19.2.i586.rpm silc-toolkit-devel-1.1.7-19.2.ppc.rpm silc-toolkit-devel-1.1.7-19.2.x86_64.rpm open-iscsi openSUSE 11.0 The iscsi_discovery tool created predictable temporary files which potentially allowed attackers to overwrite system files (CVE-2009-1297 ). open-iscsi-2.0.869-8.2.i586.rpm open-iscsi-2.0.869-8.2.ppc.rpm open-iscsi-2.0.869-8.2.x86_64.rpm MozillaThunderbird openSUSE 11.0 Mozilla Thunderbird was updated to version 2.0.0.23. The release fixes one security issue: MFSA 2009-42 / CVE-2009-2408: IOActive security researcher Dan Kaminsky reported a mismatch in the treatment of domain names in SSL certificates between SSL clients and the Certificate Authorities (CA) which issue server certificates. In particular, if a malicious person requested a certificate for a host name with an invalid null character in it most CAs would issue the certificate if the requester owned the domain specified after the null, while most SSL clients (browsers) ignored that part of the name and used the unvalidated part in front of the null. This made it possible for attackers to obtain certificates that would function for any site they wished to target. These certificates could be used to intercept and potentially alter encrypted communication between the client and a server such as sensitive bank account transactions. This vulnerability was independently reported to us by researcher Moxie Marlinspike who also noted that since Firefox relies on SSL to protect the integrity of security updates this attack could be used to serve malicious updates. MozillaThunderbird-2.0.0.23-0.2.i586.rpm MozillaThunderbird-2.0.0.23-0.2.ppc.rpm MozillaThunderbird-2.0.0.23-0.2.x86_64.rpm MozillaThunderbird-devel-2.0.0.23-0.2.i586.rpm MozillaThunderbird-devel-2.0.0.23-0.2.ppc.rpm MozillaThunderbird-devel-2.0.0.23-0.2.x86_64.rpm MozillaThunderbird-translations-2.0.0.23-0.2.i586.rpm MozillaThunderbird-translations-2.0.0.23-0.2.ppc.rpm MozillaThunderbird-translations-2.0.0.23-0.2.x86_64.rpm hunspell-1.2.2-15.1.i586.rpm hunspell-1.2.2-15.1.ppc.rpm hunspell-1.2.2-15.1.x86_64.rpm hunspell-32bit-1.2.2-15.1.x86_64.rpm hunspell-64bit-1.2.2-15.1.ppc.rpm mutt openSUSE 11.0 This update of mutt improves the handling of the \0 character in SSL certificates. (CVE-2009-2408 ) mutt-1.5.17-63.2.i586.rpm mutt-1.5.17-63.2.ppc.rpm mutt-1.5.17-63.2.x86_64.rpm strongswan openSUSE 11.0 The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. (CVE-2009-2661) This could lead to crashes of the pluto IKE daemon. strongswan-4.2.1-11.13.i586.rpm strongswan-4.2.1-11.13.ppc.rpm strongswan-4.2.1-11.13.x86_64.rpm strongswan-doc-4.2.1-11.13.i586.rpm strongswan-doc-4.2.1-11.13.ppc.rpm strongswan-doc-4.2.1-11.13.x86_64.rpm openswan openSUSE 11.0 The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. (CVE-2009-2661) This could lead to crashes of the pluto IKE daemon. openswan-2.4.7-130.6.i586.rpm openswan-2.4.7-130.6.ppc.rpm openswan-2.4.7-130.6.x86_64.rpm openswan-doc-2.4.7-130.6.i586.rpm openswan-doc-2.4.7-130.6.ppc.rpm openswan-doc-2.4.7-130.6.x86_64.rpm MozillaFirefox openSUSE 11.0 This update brings Mozilla Firefox to the 3.0.14 stable release. It also fixes various security issues: MFSA 2009-47 / CVE-2009-3069 / CVE-2009-3070 / CVE-2009-3071 / CVE-2009-3072 / CVE-2009-3073 / CVE-2009-30 / CVE-2009-3075: Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MFSA 2009-48 / CVE-2009-3076: Mozilla security researcher Jesse Rudermanreported that when security modules were added or removed via pkcs11.addmodule or pkcs11.deletemodule, the resulting dialog was not sufficiently informative. Without sufficient warning, an attacker could entice a victim to install a malicious PKCS11 module and affect the cryptographic integrity of the victim's browser. Security researcher Dan Kaminsky reported that this issue had not been fixed in Firefox 3.0 and that under certain circumstances pkcs11 modules could be installed from a remote location. Firefox 3.5 releases are not affected. MFSA 2009-49 / CVE-2009-3077: An anonymous security researcher, via TippingPoint's Zero Day Initiative, reported that the columns of a XUL tree element could be manipulated in a particular way which would leave a pointer owned by the column pointing to freed memory. An attacker could potentially use this vulnerability to crash a victim's browser and run arbitrary code on the victim's computer. MFSA 2009-50 / CVE-2009-3078: Security researcher Juan Pablo Lopez Yacubian reported that the default Windows font used to render the locationbar and other text fields was improperly displaying certain Unicode characters with tall line-height. In such cases the tall line-height would cause the rest of the text in the input field to be scrolled vertically out of view. An attacker could use this vulnerability to prevent a user from seeing the URL of a malicious site. Corrie Sloot also independently reported this issue to Mozilla. MFSA 2009-51 / CVE-2009-3079: Mozilla security researcher moz_bug_r_a4 reported that the BrowserFeedWriter could be leveraged to run JavaScript code from web content with elevated privileges. Using this vulnerability, an attacker could construct an object containing malicious JavaScript and cause the FeedWriter to process the object, running the malicious code with chrome privileges. Thunderbird does not support the BrowserFeedWriter object and is not vulnerable in its default configuration. Thunderbird might be vulnerable if the user has installed any add-on which adds a similarly implemented feature and then enables JavaScript in mail messages. This is not the default setting and we strongly discourage users from running JavaScript in mail. MozillaFirefox-3.0.14-0.1.i586.rpm MozillaFirefox-3.0.14-0.1.ppc.rpm MozillaFirefox-3.0.14-0.1.x86_64.rpm MozillaFirefox-translations-3.0.14-0.1.i586.rpm MozillaFirefox-translations-3.0.14-0.1.ppc.rpm MozillaFirefox-translations-3.0.14-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.14-0.1.i586.rpm mozilla-xulrunner190-1.9.0.14-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.14-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.14-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.14-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.14-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.14-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.14-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.14-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.14-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.14-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.14-0.1.ppc.rpm cyrus-imapd openSUSE 11.0 This update of cyrus-imapd fixes a buffer overflow that occurs in snprintf() due to incorrectly calculating the size of the destination buffer. (CVE-2009-2632) cyrus-imapd-2.3.11-31.2.i586.rpm cyrus-imapd-2.3.11-31.2.ppc.rpm cyrus-imapd-2.3.11-31.2.x86_64.rpm cyrus-imapd-devel-2.3.11-31.2.i586.rpm cyrus-imapd-devel-2.3.11-31.2.ppc.rpm cyrus-imapd-devel-2.3.11-31.2.x86_64.rpm perl-Cyrus-IMAP-2.3.11-31.2.i586.rpm perl-Cyrus-IMAP-2.3.11-31.2.ppc.rpm perl-Cyrus-IMAP-2.3.11-31.2.x86_64.rpm perl-Cyrus-SIEVE-managesieve-2.3.11-31.2.i586.rpm perl-Cyrus-SIEVE-managesieve-2.3.11-31.2.ppc.rpm perl-Cyrus-SIEVE-managesieve-2.3.11-31.2.x86_64.rpm libldap-2_4-2 openSUSE 11.0 This update of openldap2 makes SSL certificate verification more robust against uses of the special character \0 in the subjects name. (CVE-2009-2408) openldap2-2.4.9-7.6.i586.rpm openldap2-2.4.9-7.6.ppc.rpm openldap2-2.4.9-7.6.x86_64.rpm openldap2-back-meta-2.4.9-7.6.i586.rpm openldap2-back-meta-2.4.9-7.6.ppc.rpm openldap2-back-meta-2.4.9-7.6.x86_64.rpm openldap2-back-perl-2.4.9-7.6.i586.rpm openldap2-back-perl-2.4.9-7.6.ppc.rpm openldap2-back-perl-2.4.9-7.6.x86_64.rpm openldap2-client-2.4.9-7.6.i586.rpm openldap2-client-2.4.9-7.6.ppc.rpm openldap2-client-2.4.9-7.6.x86_64.rpm openldap2-client-32bit-2.4.9-7.6.x86_64.rpm openldap2-client-64bit-2.4.9-7.6.ppc.rpm openldap2-devel-2.4.9-7.6.i586.rpm openldap2-devel-2.4.9-7.6.ppc.rpm openldap2-devel-2.4.9-7.6.x86_64.rpm openldap2-devel-32bit-2.4.9-7.6.x86_64.rpm openldap2-devel-64bit-2.4.9-7.6.ppc.rpm java-1_6_0-openjdk openSUSE 11.0 This update of java-1_6_0-openjdk fixes the following issues: - CVE-2009-2670: OpenJDK Untrusted applet System properties access - CVE-2009-2671,CVE-2009-2672: OpenJDK Proxy mechanism information leaks - CVE-2009-2673: OpenJDK proxy mechanism allows non-authorized socket connections - CVE-2009-2674: Java Web Start Buffer JPEG processing integer overflow - CVE-2009-2675: Java Web Start Buffer unpack200 processing integer overflow - CVE-2009-2625: OpenJDK XML parsing Denial-Of-Service - CVE-2009-2475: OpenJDK information leaks in mutable variables - CVE-2009-2476: OpenJDK OpenType checks can be bypassed - CVE-2009-2689: OpenJDK JDK13Services grants unnecessary privileges - CVE-2009-2690: OpenJDK private variable information disclosure java-1_6_0-openjdk-1.6_b16-0.1.i586.rpm java-1_6_0-openjdk-1.6_b16-0.1.ppc.rpm java-1_6_0-openjdk-1.6_b16-0.1.x86_64.rpm java-1_6_0-openjdk-demo-1.6_b16-0.1.i586.rpm java-1_6_0-openjdk-demo-1.6_b16-0.1.ppc.rpm java-1_6_0-openjdk-demo-1.6_b16-0.1.x86_64.rpm java-1_6_0-openjdk-devel-1.6_b16-0.1.i586.rpm java-1_6_0-openjdk-devel-1.6_b16-0.1.ppc.rpm java-1_6_0-openjdk-devel-1.6_b16-0.1.x86_64.rpm java-1_6_0-openjdk-javadoc-1.6_b16-0.1.i586.rpm java-1_6_0-openjdk-javadoc-1.6_b16-0.1.ppc.rpm java-1_6_0-openjdk-javadoc-1.6_b16-0.1.x86_64.rpm java-1_6_0-openjdk-plugin-1.6_b16-0.1.i586.rpm java-1_6_0-openjdk-plugin-1.6_b16-0.1.ppc.rpm java-1_6_0-openjdk-plugin-1.6_b16-0.1.x86_64.rpm java-1_6_0-openjdk-src-1.6_b16-0.1.i586.rpm java-1_6_0-openjdk-src-1.6_b16-0.1.ppc.rpm java-1_6_0-openjdk-src-1.6_b16-0.1.x86_64.rpm wireshark openSUSE 11.0 Specially crafted packets could crash the OPC UA dissector in Wireshark (CVE-2009-3241) wireshark-1.0.0-17.16.i586.rpm wireshark-1.0.0-17.16.ppc.rpm wireshark-1.0.0-17.16.x86_64.rpm wireshark-devel-1.0.0-17.16.i586.rpm wireshark-devel-1.0.0-17.16.ppc.rpm wireshark-devel-1.0.0-17.16.x86_64.rpm dovecot openSUSE 11.0 This update of dovecot fixes two buffer overflows in the sieve plug-in (CVE-2009-2632, CVE-2009-3235) dovecot-1.0.13-24.4.i586.rpm dovecot-1.0.13-24.4.ppc.rpm dovecot-1.0.13-24.4.x86_64.rpm dovecot-devel-1.0.13-24.4.i586.rpm dovecot-devel-1.0.13-24.4.ppc.rpm dovecot-devel-1.0.13-24.4.x86_64.rpm apache2-mod_php5 openSUSE 11.0 Multiple issues have been fixed in php5: - php_openssl_apply_verification_policy() fails to verify certificate (CVE-2009-3291) - "missing sainity checks around exif" (CVE-2009-3292) - unspecified vulnerability in the imagecolortransparent() (CVE-2009-3293) - denial of service in exif module (CVE-2009-2687) Additionally we fixed: - xmlparse was broken - read_exif_data() only returns the first letter of UTF-16 strings apache2-mod_php5-5.2.11-0.1.i586.rpm apache2-mod_php5-5.2.11-0.1.ppc.rpm apache2-mod_php5-5.2.11-0.1.x86_64.rpm php5-5.2.11-0.1.i586.rpm php5-5.2.11-0.1.ppc.rpm php5-5.2.11-0.1.x86_64.rpm php5-bcmath-5.2.11-0.1.i586.rpm php5-bcmath-5.2.11-0.1.ppc.rpm php5-bcmath-5.2.11-0.1.x86_64.rpm php5-bz2-5.2.11-0.1.i586.rpm php5-bz2-5.2.11-0.1.ppc.rpm php5-bz2-5.2.11-0.1.x86_64.rpm php5-calendar-5.2.11-0.1.i586.rpm php5-calendar-5.2.11-0.1.ppc.rpm php5-calendar-5.2.11-0.1.x86_64.rpm php5-ctype-5.2.11-0.1.i586.rpm php5-ctype-5.2.11-0.1.ppc.rpm php5-ctype-5.2.11-0.1.x86_64.rpm php5-curl-5.2.11-0.1.i586.rpm php5-curl-5.2.11-0.1.ppc.rpm php5-curl-5.2.11-0.1.x86_64.rpm php5-dba-5.2.11-0.1.i586.rpm php5-dba-5.2.11-0.1.ppc.rpm php5-dba-5.2.11-0.1.x86_64.rpm php5-dbase-5.2.11-0.1.i586.rpm php5-dbase-5.2.11-0.1.ppc.rpm php5-dbase-5.2.11-0.1.x86_64.rpm php5-devel-5.2.11-0.1.i586.rpm php5-devel-5.2.11-0.1.ppc.rpm php5-devel-5.2.11-0.1.x86_64.rpm php5-dom-5.2.11-0.1.i586.rpm php5-dom-5.2.11-0.1.ppc.rpm php5-dom-5.2.11-0.1.x86_64.rpm php5-exif-5.2.11-0.1.i586.rpm php5-exif-5.2.11-0.1.ppc.rpm php5-exif-5.2.11-0.1.x86_64.rpm php5-fastcgi-5.2.11-0.1.i586.rpm php5-fastcgi-5.2.11-0.1.ppc.rpm php5-fastcgi-5.2.11-0.1.x86_64.rpm php5-ftp-5.2.11-0.1.i586.rpm php5-ftp-5.2.11-0.1.ppc.rpm php5-ftp-5.2.11-0.1.x86_64.rpm php5-gd-5.2.11-0.1.i586.rpm php5-gd-5.2.11-0.1.ppc.rpm php5-gd-5.2.11-0.1.x86_64.rpm php5-gettext-5.2.11-0.1.i586.rpm php5-gettext-5.2.11-0.1.ppc.rpm php5-gettext-5.2.11-0.1.x86_64.rpm php5-gmp-5.2.11-0.1.i586.rpm php5-gmp-5.2.11-0.1.ppc.rpm php5-gmp-5.2.11-0.1.x86_64.rpm php5-hash-5.2.11-0.1.i586.rpm php5-hash-5.2.11-0.1.ppc.rpm php5-hash-5.2.11-0.1.x86_64.rpm php5-iconv-5.2.11-0.1.i586.rpm php5-iconv-5.2.11-0.1.ppc.rpm php5-iconv-5.2.11-0.1.x86_64.rpm php5-imap-5.2.11-0.1.i586.rpm php5-imap-5.2.11-0.1.ppc.rpm php5-imap-5.2.11-0.1.x86_64.rpm php5-json-5.2.11-0.1.i586.rpm php5-json-5.2.11-0.1.ppc.rpm php5-json-5.2.11-0.1.x86_64.rpm php5-ldap-5.2.11-0.1.i586.rpm php5-ldap-5.2.11-0.1.ppc.rpm php5-ldap-5.2.11-0.1.x86_64.rpm php5-mbstring-5.2.11-0.1.i586.rpm php5-mbstring-5.2.11-0.1.ppc.rpm php5-mbstring-5.2.11-0.1.x86_64.rpm php5-mcrypt-5.2.11-0.1.i586.rpm php5-mcrypt-5.2.11-0.1.ppc.rpm php5-mcrypt-5.2.11-0.1.x86_64.rpm php5-mysql-5.2.11-0.1.i586.rpm php5-mysql-5.2.11-0.1.ppc.rpm php5-mysql-5.2.11-0.1.x86_64.rpm php5-ncurses-5.2.11-0.1.i586.rpm php5-ncurses-5.2.11-0.1.ppc.rpm php5-ncurses-5.2.11-0.1.x86_64.rpm php5-odbc-5.2.11-0.1.i586.rpm php5-odbc-5.2.11-0.1.ppc.rpm php5-odbc-5.2.11-0.1.x86_64.rpm php5-openssl-5.2.11-0.1.i586.rpm php5-openssl-5.2.11-0.1.ppc.rpm php5-openssl-5.2.11-0.1.x86_64.rpm php5-pcntl-5.2.11-0.1.i586.rpm php5-pcntl-5.2.11-0.1.ppc.rpm php5-pcntl-5.2.11-0.1.x86_64.rpm php5-pdo-5.2.11-0.1.i586.rpm php5-pdo-5.2.11-0.1.ppc.rpm php5-pdo-5.2.11-0.1.x86_64.rpm php5-pear-5.2.11-0.1.i586.rpm php5-pear-5.2.11-0.1.ppc.rpm php5-pear-5.2.11-0.1.x86_64.rpm php5-pgsql-5.2.11-0.1.i586.rpm php5-pgsql-5.2.11-0.1.ppc.rpm php5-pgsql-5.2.11-0.1.x86_64.rpm php5-posix-5.2.11-0.1.i586.rpm php5-posix-5.2.11-0.1.ppc.rpm php5-posix-5.2.11-0.1.x86_64.rpm php5-pspell-5.2.11-0.1.i586.rpm php5-pspell-5.2.11-0.1.ppc.rpm php5-pspell-5.2.11-0.1.x86_64.rpm php5-readline-5.2.11-0.1.i586.rpm php5-readline-5.2.11-0.1.ppc.rpm php5-readline-5.2.11-0.1.x86_64.rpm php5-shmop-5.2.11-0.1.i586.rpm php5-shmop-5.2.11-0.1.ppc.rpm php5-shmop-5.2.11-0.1.x86_64.rpm php5-snmp-5.2.11-0.1.i586.rpm php5-snmp-5.2.11-0.1.ppc.rpm php5-snmp-5.2.11-0.1.x86_64.rpm php5-soap-5.2.11-0.1.i586.rpm php5-soap-5.2.11-0.1.ppc.rpm php5-soap-5.2.11-0.1.x86_64.rpm php5-sockets-5.2.11-0.1.i586.rpm php5-sockets-5.2.11-0.1.ppc.rpm php5-sockets-5.2.11-0.1.x86_64.rpm php5-sqlite-5.2.11-0.1.i586.rpm php5-sqlite-5.2.11-0.1.ppc.rpm php5-sqlite-5.2.11-0.1.x86_64.rpm php5-suhosin-5.2.11-0.1.i586.rpm php5-suhosin-5.2.11-0.1.ppc.rpm php5-suhosin-5.2.11-0.1.x86_64.rpm php5-sysvmsg-5.2.11-0.1.i586.rpm php5-sysvmsg-5.2.11-0.1.ppc.rpm php5-sysvmsg-5.2.11-0.1.x86_64.rpm php5-sysvsem-5.2.11-0.1.i586.rpm php5-sysvsem-5.2.11-0.1.ppc.rpm php5-sysvsem-5.2.11-0.1.x86_64.rpm php5-sysvshm-5.2.11-0.1.i586.rpm php5-sysvshm-5.2.11-0.1.ppc.rpm php5-sysvshm-5.2.11-0.1.x86_64.rpm php5-tidy-5.2.11-0.1.i586.rpm php5-tidy-5.2.11-0.1.ppc.rpm php5-tidy-5.2.11-0.1.x86_64.rpm php5-tokenizer-5.2.11-0.1.i586.rpm php5-tokenizer-5.2.11-0.1.ppc.rpm php5-tokenizer-5.2.11-0.1.x86_64.rpm php5-wddx-5.2.11-0.1.i586.rpm php5-wddx-5.2.11-0.1.ppc.rpm php5-wddx-5.2.11-0.1.x86_64.rpm php5-xmlreader-5.2.11-0.1.i586.rpm php5-xmlreader-5.2.11-0.1.ppc.rpm php5-xmlreader-5.2.11-0.1.x86_64.rpm php5-xmlrpc-5.2.11-0.1.i586.rpm php5-xmlrpc-5.2.11-0.1.ppc.rpm php5-xmlrpc-5.2.11-0.1.x86_64.rpm php5-xmlwriter-5.2.11-0.1.i586.rpm php5-xmlwriter-5.2.11-0.1.ppc.rpm php5-xmlwriter-5.2.11-0.1.x86_64.rpm php5-xsl-5.2.11-0.1.i586.rpm php5-xsl-5.2.11-0.1.ppc.rpm php5-xsl-5.2.11-0.1.x86_64.rpm php5-zip-5.2.11-0.1.i586.rpm php5-zip-5.2.11-0.1.ppc.rpm php5-zip-5.2.11-0.1.x86_64.rpm php5-zlib-5.2.11-0.1.i586.rpm php5-zlib-5.2.11-0.1.ppc.rpm php5-zlib-5.2.11-0.1.x86_64.rpm libnewt0_52 openSUSE 11.0 A heap-based buffer overflow was found in the way newt used to process content, to be rendered in text dialog box. Local attacker could issue a specially-crafted text dialog box rendering request (direct or via custom application), leading to denial of service (application crash) or, potentially, to execution of arbitrary code with the privileges of the user running the application. CVE-2009-2905 has been assigned to this issue. libnewt0_52-0.52.9-20.2.i586.rpm libnewt0_52-0.52.9-20.2.ppc.rpm libnewt0_52-0.52.9-20.2.x86_64.rpm newt-0.52.9-20.2.i586.rpm newt-0.52.9-20.2.ppc.rpm newt-0.52.9-20.2.x86_64.rpm newt-devel-0.52.9-20.2.i586.rpm newt-devel-0.52.9-20.2.ppc.rpm newt-devel-0.52.9-20.2.x86_64.rpm newt-doc-0.52.9-20.2.i586.rpm newt-doc-0.52.9-20.2.ppc.rpm newt-doc-0.52.9-20.2.x86_64.rpm newt-python-0.52.9-20.2.i586.rpm newt-python-0.52.9-20.2.ppc.rpm newt-python-0.52.9-20.2.x86_64.rpm newt-static-0.52.9-20.2.i586.rpm newt-static-0.52.9-20.2.ppc.rpm newt-static-0.52.9-20.2.x86_64.rpm seamonkey openSUSE 11.0 seamonkey was updated to version 1.1.18, fixing various security issues: MFSA 2009-43 / CVE-2009-2404 Moxie Marlinspike reported a heap overflow vulnerability in the code that handles regular expressions in certificate names. This vulnerability could be used to compromise the browser and run arbitrary code by presenting a specially crafted certificate to the client. This code provided compatibility with the non-standard regular expression syntax historically supported by Netscape clients and servers. With version 3.5 Firefox switched to the more limited industry-standard wildcard syntax instead and is not vulnerable to this flaw. MFSA 2009-42 / CVE-2009-2408: IOActive security researcher Dan Kaminsky reported a mismatch in the treatment of domain names in SSL certificates between SSL clients and the Certificate Authorities (CA) which issue server certificates. In particular, if a malicious person requested a certificate for a host name with an invalid null character in it most CAs would issue the certificate if the requester owned the domain specified after the null, while most SSL clients (browsers) ignored that part of the name and used the unvalidated part in front of the null. This made it possible for attackers to obtain certificates that would function for any site they wished to target. These certificates could be used to intercept and potentially alter encrypted communication between the client and a server such as sensitive bank account transactions. This vulnerability was independently reported to us by researcher Moxie Marlinspike who also noted that since Firefox relies on SSL to protect the integrity of security updates this attack could be used to serve malicious updates. Mozilla would like to thank Dan and the Microsoft Vulnerability Research team for coordinating a multiple-vendor response to this problem. The update also contains the fixes from the skipped 1.1.17 security update: MFSA 2009-17/CVE-2009-1307: Same-origin violations when Adobe Flash loaded via view-source: scheme MFSA 2009-21/CVE-2009-1311:POST data sent to wrong site when saving web page with embedded frame MFSA 2009-24/CVE-2009-1392/CVE-2009-1832/CVE-2009-1833: Crashes with evidence of memory corruption (rv:1.9.0.11) MFSA 2009-26/CVE-2009-1835: Arbitrary domain cookie access by local file: resources MFSA 2009-27/CVE-2009-1836: SSL tampering via non-200 responses to proxy CONNECT requests MFSA 2009-29/CVE-2009-1838: Arbitrary code execution using event listeners attached to an element whose owner document is null MFSA 2009-32/CVE-2009-1841: JavaScript chrome privilege escalation MFSA 2009-33/CVE-2009-2210: Crash viewing multipart/alternative message with text/enhanced part seamonkey-1.1.18-0.1.i586.rpm seamonkey-1.1.18-0.1.ppc.rpm seamonkey-1.1.18-0.1.x86_64.rpm seamonkey-dom-inspector-1.1.18-0.1.i586.rpm seamonkey-dom-inspector-1.1.18-0.1.ppc.rpm seamonkey-dom-inspector-1.1.18-0.1.x86_64.rpm seamonkey-irc-1.1.18-0.1.i586.rpm seamonkey-irc-1.1.18-0.1.ppc.rpm seamonkey-irc-1.1.18-0.1.x86_64.rpm seamonkey-mail-1.1.18-0.1.i586.rpm seamonkey-mail-1.1.18-0.1.ppc.rpm seamonkey-mail-1.1.18-0.1.x86_64.rpm seamonkey-spellchecker-1.1.18-0.1.i586.rpm seamonkey-spellchecker-1.1.18-0.1.ppc.rpm seamonkey-spellchecker-1.1.18-0.1.x86_64.rpm seamonkey-venkman-1.1.18-0.1.i586.rpm seamonkey-venkman-1.1.18-0.1.ppc.rpm seamonkey-venkman-1.1.18-0.1.x86_64.rpm phpMyAdmin openSUSE 11.0 phpMyAdmin has been updated to version 2.11.9.6 to fix a cross-site scripting (XSS) issue (CVE-2009-3696) and an SQL injection vulnerability (CVE-2009-3697). phpMyAdmin-2.11.9.6-0.1.noarch.rpm cifs-mount openSUSE 11.0 samba's make_connection_snum() handles certain input incorrectly, which may lead to disclosure of the root directory. CVE-2009-2813 has been assigned to this issue. Additionally an information disclosure vulnerability in mount.cifs has been fixed (CVE-2009-2948) as well as a DoS condition (CVE-2009-2906). cifs-mount-3.2.4-4.7.i586.rpm cifs-mount-3.2.4-4.7.ppc.rpm cifs-mount-3.2.4-4.7.x86_64.rpm ldapsmb-1.34b-195.12.i586.rpm ldapsmb-1.34b-195.12.ppc.rpm ldapsmb-1.34b-195.12.x86_64.rpm libnetapi-devel-3.2.4-4.7.i586.rpm libnetapi-devel-3.2.4-4.7.ppc.rpm libnetapi-devel-3.2.4-4.7.x86_64.rpm libnetapi0-3.2.4-4.7.i586.rpm libnetapi0-3.2.4-4.7.ppc.rpm libnetapi0-3.2.4-4.7.x86_64.rpm libsmbclient-devel-3.2.4-4.7.i586.rpm libsmbclient-devel-3.2.4-4.7.ppc.rpm libsmbclient-devel-3.2.4-4.7.x86_64.rpm libsmbclient0-3.2.4-4.7.i586.rpm libsmbclient0-3.2.4-4.7.ppc.rpm libsmbclient0-3.2.4-4.7.x86_64.rpm libsmbclient0-32bit-3.2.4-4.7.x86_64.rpm libsmbclient0-64bit-3.2.4-4.7.ppc.rpm libsmbsharemodes-devel-3.2.4-4.7.i586.rpm libsmbsharemodes-devel-3.2.4-4.7.ppc.rpm libsmbsharemodes-devel-3.2.4-4.7.x86_64.rpm libsmbsharemodes0-3.2.4-4.7.i586.rpm libsmbsharemodes0-3.2.4-4.7.ppc.rpm libsmbsharemodes0-3.2.4-4.7.x86_64.rpm libtalloc-devel-3.2.4-4.7.i586.rpm libtalloc-devel-3.2.4-4.7.ppc.rpm libtalloc-devel-3.2.4-4.7.x86_64.rpm libtalloc1-3.2.4-4.7.i586.rpm libtalloc1-3.2.4-4.7.ppc.rpm libtalloc1-3.2.4-4.7.x86_64.rpm libtalloc1-32bit-3.2.4-4.7.x86_64.rpm libtalloc1-64bit-3.2.4-4.7.ppc.rpm libtdb-devel-3.2.4-4.7.i586.rpm libtdb-devel-3.2.4-4.7.ppc.rpm libtdb-devel-3.2.4-4.7.x86_64.rpm libtdb1-3.2.4-4.7.i586.rpm libtdb1-3.2.4-4.7.ppc.rpm libtdb1-3.2.4-4.7.x86_64.rpm libtdb1-32bit-3.2.4-4.7.x86_64.rpm libtdb1-64bit-3.2.4-4.7.ppc.rpm libwbclient-devel-3.2.4-4.7.i586.rpm libwbclient-devel-3.2.4-4.7.ppc.rpm libwbclient-devel-3.2.4-4.7.x86_64.rpm libwbclient0-3.2.4-4.7.i586.rpm libwbclient0-3.2.4-4.7.ppc.rpm libwbclient0-3.2.4-4.7.x86_64.rpm libwbclient0-32bit-3.2.4-4.7.x86_64.rpm libwbclient0-64bit-3.2.4-4.7.ppc.rpm samba-3.2.4-4.7.i586.rpm samba-3.2.4-4.7.ppc.rpm samba-3.2.4-4.7.x86_64.rpm samba-32bit-3.2.4-4.7.x86_64.rpm samba-64bit-3.2.4-4.7.ppc.rpm samba-client-3.2.4-4.7.i586.rpm samba-client-3.2.4-4.7.ppc.rpm samba-client-3.2.4-4.7.x86_64.rpm samba-client-32bit-3.2.4-4.7.x86_64.rpm samba-client-64bit-3.2.4-4.7.ppc.rpm samba-devel-3.2.4-4.7.i586.rpm samba-devel-3.2.4-4.7.ppc.rpm samba-devel-3.2.4-4.7.x86_64.rpm samba-krb-printing-3.2.4-4.7.i586.rpm samba-krb-printing-3.2.4-4.7.ppc.rpm samba-krb-printing-3.2.4-4.7.x86_64.rpm samba-winbind-3.2.4-4.7.i586.rpm samba-winbind-3.2.4-4.7.ppc.rpm samba-winbind-3.2.4-4.7.x86_64.rpm samba-winbind-32bit-3.2.4-4.7.x86_64.rpm samba-winbind-64bit-3.2.4-4.7.ppc.rpm libapr-util1 openSUSE 11.0 This update of libapr-util1 and libapr1 fixes multiple integer overflows that could probably be used to execute arbitrary code remotely. (CVE-2009-2412) libapr-util1-1.2.12-43.4.i586.rpm libapr-util1-1.2.12-43.4.ppc.rpm libapr-util1-1.2.12-43.4.x86_64.rpm libapr-util1-64bit-1.2.12-43.4.ppc.rpm libapr-util1-dbd-mysql-1.2.12-43.4.i586.rpm libapr-util1-dbd-mysql-1.2.12-43.4.ppc.rpm libapr-util1-dbd-mysql-1.2.12-43.4.x86_64.rpm libapr-util1-dbd-pgsql-1.2.12-43.4.i586.rpm libapr-util1-dbd-pgsql-1.2.12-43.4.ppc.rpm libapr-util1-dbd-pgsql-1.2.12-43.4.x86_64.rpm libapr-util1-dbd-sqlite3-1.2.12-43.4.i586.rpm libapr-util1-dbd-sqlite3-1.2.12-43.4.ppc.rpm libapr-util1-dbd-sqlite3-1.2.12-43.4.x86_64.rpm libapr-util1-devel-1.2.12-43.4.i586.rpm libapr-util1-devel-1.2.12-43.4.ppc.rpm libapr-util1-devel-1.2.12-43.4.x86_64.rpm libapr-util1-devel-64bit-1.2.12-43.4.ppc.rpm libapr1-1.2.12-27.2.i586.rpm libapr1-1.2.12-27.2.ppc.rpm libapr1-1.2.12-27.2.x86_64.rpm libapr1-64bit-1.2.12-27.2.ppc.rpm libapr1-devel-1.2.12-27.2.i586.rpm libapr1-devel-1.2.12-27.2.ppc.rpm libapr1-devel-1.2.12-27.2.x86_64.rpm libapr1-devel-64bit-1.2.12-27.2.ppc.rpm viewvc openSUSE 11.0 Update of viewvc to version 1.0.9 fixes a cross-site scripting (XSS) problem and enhances filtering of illegal characters when displaying error messages (CVE-2009-3618, CVE-2009-3619). viewvc-1.0.9-0.1.i586.rpm viewvc-1.0.9-0.1.ppc.rpm viewvc-1.0.9-0.1.x86_64.rpm acroread openSUSE 11.0 Adobe Reader has been updated to fix numerous security vulnerabilities. Some of the vulnerabilities allowed attackers to potentially execute arbitrary code on the victim's system via specially crafted PDF files. (CVE-2007-0048, CVE-2007-0045, CVE-2009-2564,CVE-2009-2979, CVE-2009-2980, CVE-2009-2981, CVE-2009-2982, CVE-2009-2983, CVE-2009-2985, CVE-2009-2986, CVE-2009-2988, CVE-2009-2990, CVE-2009-2991, CVE-2009-2992, CVE-2009-2993, CVE-2009-2994, CVE-2009-2996, CVE-2009-2997, CVE-2009-2998, CVE-2009-3431, CVE-2009-3458, CVE-2009-3459, CVE-2009-3462) acroread-8.1.7-0.1.i586.rpm apache2 openSUSE 11.0 This update of the Apache webserver fixes various security issues: - the option IncludesNOEXEC could be bypassed via .htaccess (CVE-2009-1195) - mod_proxy could run into an infinite loop when used as reverse proxy (CVE-2009-1890) - mod_deflate continued to compress large files even after a network connection was closed, causing mod_deflate to consume large amounts of CPU (CVE-2009-1891) - The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command. (CVE-2009-3094) - access restriction bypass in mod_proxy_ftp module (CVE-2009-3095) apache2-2.2.8-28.8.i586.rpm apache2-2.2.8-28.8.ppc.rpm apache2-2.2.8-28.8.x86_64.rpm apache2-devel-2.2.8-28.8.i586.rpm apache2-devel-2.2.8-28.8.ppc.rpm apache2-devel-2.2.8-28.8.x86_64.rpm apache2-doc-2.2.8-28.8.i586.rpm apache2-doc-2.2.8-28.8.ppc.rpm apache2-doc-2.2.8-28.8.x86_64.rpm apache2-example-pages-2.2.8-28.8.i586.rpm apache2-example-pages-2.2.8-28.8.ppc.rpm apache2-example-pages-2.2.8-28.8.x86_64.rpm apache2-prefork-2.2.8-28.8.i586.rpm apache2-prefork-2.2.8-28.8.ppc.rpm apache2-prefork-2.2.8-28.8.x86_64.rpm apache2-utils-2.2.8-28.8.i586.rpm apache2-utils-2.2.8-28.8.ppc.rpm apache2-utils-2.2.8-28.8.x86_64.rpm apache2-worker-2.2.8-28.8.i586.rpm apache2-worker-2.2.8-28.8.ppc.rpm apache2-worker-2.2.8-28.8.x86_64.rpm pinentry openSUSE 11.0 When pinentry is invoked in graphical session (xterm) and pinentry-qt/gtk-2 is not installed, pinentry fails while it could use pinentry-curses instead. (#544365, #441084) pinentry-0.7.5-18.3.i586.rpm pinentry-0.7.5-18.3.ppc.rpm pinentry-0.7.5-18.3.x86_64.rpm pinentry-gtk2-0.7.5-14.2.i586.rpm pinentry-gtk2-0.7.5-14.2.ppc.rpm pinentry-gtk2-0.7.5-14.2.x86_64.rpm pinentry-qt-0.7.5-14.2.i586.rpm pinentry-qt-0.7.5-14.2.ppc.rpm pinentry-qt-0.7.5-14.2.x86_64.rpm libneon-devel openSUSE 11.0 neon did not properly handle embedded NUL characters in X.509 certificates when comparing host names. Attackers could exploit that to spoof SSL servers (CVE-2009-2408). Specially crafted XML documents that contain a large number of nested entity references could cause neon to consume large amounts of CPU and memory (CVE-2009-2473). libneon-devel-0.28.2-17.4.i586.rpm libneon-devel-0.28.2-17.4.ppc.rpm libneon-devel-0.28.2-17.4.x86_64.rpm libneon27-0.28.2-17.4.i586.rpm libneon27-0.28.2-17.4.ppc.rpm libneon27-0.28.2-17.4.x86_64.rpm libneon27-32bit-0.28.2-17.4.x86_64.rpm libneon27-64bit-0.28.2-17.4.ppc.rpm neon-0.28.2-17.4.i586.rpm neon-0.28.2-17.4.ppc.rpm neon-0.28.2-17.4.x86_64.rpm cyrus-imapd openSUSE 11.0 This update fixes another buffer overflow in the Sieve code (CVE-2009-3235). This can be exploited by users allowed to use their own sieve scripts to execute arbitrary code remotely. Additionally the handling of long headers was improved. cyrus-imapd-2.3.11-31.4.i586.rpm cyrus-imapd-2.3.11-31.4.ppc.rpm cyrus-imapd-2.3.11-31.4.x86_64.rpm cyrus-imapd-devel-2.3.11-31.4.i586.rpm cyrus-imapd-devel-2.3.11-31.4.ppc.rpm cyrus-imapd-devel-2.3.11-31.4.x86_64.rpm perl-Cyrus-IMAP-2.3.11-31.4.i586.rpm perl-Cyrus-IMAP-2.3.11-31.4.ppc.rpm perl-Cyrus-IMAP-2.3.11-31.4.x86_64.rpm perl-Cyrus-SIEVE-managesieve-2.3.11-31.4.i586.rpm perl-Cyrus-SIEVE-managesieve-2.3.11-31.4.ppc.rpm perl-Cyrus-SIEVE-managesieve-2.3.11-31.4.x86_64.rpm timezone openSUSE 11.0 - update data to 2009p: * DST changes: Asia/Karachi, Asia/Dhaka, America/Argentina timezone-2009p-1.1.i586.rpm timezone-2009p-1.1.ppc.rpm timezone-2009p-1.1.x86_64.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox browser was updated to version 3.0.0.15 to fix various bugs and security issues. Following security issues have been fixed: MFSA 2009-52 / CVE-2009-3370: Security researcher Paul Stone reported that a user's form history, both from web content as well as the smart location bar, was vulnerable to theft. A malicious web page could synthesize events such as mouse focus and key presses on behalf of the victim and trick the browser into auto-filling the form fields with history entries and then reading the entries. MFSA 2009-53 / CVE-2009-3274: Security researcher Jeremy Brown reported that the file naming scheme used for downloading a file which already exists in the downloads folder is predictable. If an attacker had local access to a victim's computer and knew the name of a file the victim intended to open through the Download Manager, he could use this vulnerability to place a malicious file in the world-writable directory used to save temporary downloaded files and cause the browser to choose the incorrect file when opening it. Since this attack requires local access to the victim's machine, the severity of this vulnerability was determined to be low. MFSA 2009-54 / CVE-2009-3371: Security researcher Orlando Berrera of Sec Theory reported that recursive creation of JavaScript web-workers can be used to create a set of objects whose memory could be freed prior to their use. These conditions often result in a crash which could potentially be used by an attacker to run arbitrary code on a victim's computer. MFSA 2009-55 / CVE-2009-3372: Security researcher Marco C. reported a flaw in the parsing of regular expressions used in Proxy Auto-configuration (PAC) files. In certain cases this flaw could be used by an attacker to crash a victim's browser and run arbitrary code on their computer. Since this vulnerability requires the victim to have PAC configured in their environment with specific regular expresssions which can trigger the crash, the severity of the issue was determined to be moderate. MFSA 2009-56 / CVE-2009-3373: Security research firm iDefense reported that researcher regenrecht discovered a heap-based buffer overflow in Mozilla's GIF image parser. This vulnerability could potentially be used by an attacker to crash a victim's browser and run arbitrary code on their computer. MFSA 2009-57 / CVE-2009-3374: Mozilla security researcher moz_bug_r_a4 reported that the XPCOM utility XPCVariant::VariantDataToJS unwrapped doubly-wrapped objects before returning them to chrome callers. This could result in chrome privileged code calling methods on an object which had previously been created or modified by web content, potentially executing malicious JavaScript code with chrome privileges. MFSA 2009-59 / CVE-2009-1563: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code containing a very long string to be converted to a floating point number which would result in improper memory allocation and the execution of an arbitrary memory location. This vulnerability could thus be leveraged by the attacker to run arbitrary code on a victim's computer. MFSA 2009-61 / CVE-2009-3375: Security researcher Gregory Fleischer reported that text within a selection on a web page can be read by JavaScript in a different domain using the document.getSelection function, violating the same-origin policy. Since this vulnerability requires user interaction to exploit, its severity was determined to be moderate. MFSA 2009-62 / CVE-2009-3376: Mozilla security researchers Jesse Ruderman and Sid Stamm reported that when downloading a file containing a right-to-left override character (RTL) in the filename, the name displayed in the dialog title bar conflicts with the name of the file shown in the dialog body. An attacker could use this vulnerability to obfuscate the name and file extension of a file to be downloaded and opened, potentially causing a user to run an executable file when they expected to open a non-executable file. MFSA 2009-64 / CVE-2009-3380 / CVE-2009-3381 / CVE-2009-3382 / CVE-2009-3383: Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MozillaFirefox-3.0.15-0.1.i586.rpm MozillaFirefox-3.0.15-0.1.ppc.rpm MozillaFirefox-3.0.15-0.1.x86_64.rpm MozillaFirefox-translations-3.0.15-0.1.i586.rpm MozillaFirefox-translations-3.0.15-0.1.ppc.rpm MozillaFirefox-translations-3.0.15-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.15-0.1.i586.rpm mozilla-xulrunner190-1.9.0.15-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.15-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.15-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.15-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.15-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.15-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.15-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.15-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.15-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.15-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.15-0.1.ppc.rpm expat openSUSE 11.0 Specially crafted XML documents could make expat run into an enless loop, therefore locking up applications using expat (CVE-2009-3720). expat-2.0.1-62.2.i586.rpm expat-2.0.1-62.2.ppc.rpm expat-2.0.1-62.2.x86_64.rpm libexpat-devel-2.0.1-62.2.i586.rpm libexpat-devel-2.0.1-62.2.ppc.rpm libexpat-devel-2.0.1-62.2.x86_64.rpm libexpat1-2.0.1-62.2.i586.rpm libexpat1-2.0.1-62.2.ppc.rpm libexpat1-2.0.1-62.2.x86_64.rpm libexpat1-32bit-2.0.1-62.2.x86_64.rpm libexpat1-64bit-2.0.1-62.2.ppc.rpm apache2-mod_jk openSUSE 11.0 Certain HTTP request could confuse the JK connector in Apache Tomcat which could result in a user seeing responses destined for other users (CVE-2008-5519). apache2-mod_jk-1.2.21-129.2.i586.rpm apache2-mod_jk-1.2.21-129.2.ppc.rpm apache2-mod_jk-1.2.21-129.2.x86_64.rpm mozilla-nspr openSUSE 11.0 This update fixes a bug in the Mozilla NSPR helper libraries, which could be used by remote attackers to potentially execute code via javascript vectors. MFSA 2009-59 / CVE-2009-1563: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code containing a very long string to be converted to a floating point number which would result in improper memory allocation and the execution of an arbitrary memory location. This vulnerability could thus be leveraged by the attacker to run arbitrary code on a victim's computer. mozilla-nspr-4.8.2-1.1.i586.rpm mozilla-nspr-4.8.2-1.1.ppc.rpm mozilla-nspr-4.8.2-1.1.x86_64.rpm mozilla-nspr-32bit-4.8.2-1.1.x86_64.rpm mozilla-nspr-64bit-4.8.2-1.1.ppc.rpm mozilla-nspr-devel-4.8.2-1.1.i586.rpm mozilla-nspr-devel-4.8.2-1.1.ppc.rpm mozilla-nspr-devel-4.8.2-1.1.x86_64.rpm xpdf openSUSE 11.0 Specially crafted PDF files could cause buffer overflows in xpdf when viewing such a document (CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3606, CVE-2009-3608, CVE-2009-3609). xpdf-3.02-95.9.i586.rpm xpdf-3.02-95.9.ppc.rpm xpdf-3.02-95.9.x86_64.rpm xpdf-tools-3.02-95.9.i586.rpm xpdf-tools-3.02-95.9.ppc.rpm xpdf-tools-3.02-95.9.x86_64.rpm struts openSUSE 11.0 This update of struts fixes a regression caused by the last security update. struts-1.2.9-198.4.noarch.rpm struts-javadoc-1.2.9-198.4.noarch.rpm struts-manual-1.2.9-198.4.noarch.rpm struts-webapps-tomcat6-1.2.9-198.4.noarch.rpm opera openSUSE 11.0 Version upgrade of Opera to 10.1 to fix: - CVE-2009-3265: CVSS v2 Base Score: 4.3 CVE-2009-3266: CVSS v2 Base Score: 4.3 two XSS attacks via RSS/Atom - CVE-2009-3831: CVSS v2 Base Score: 9.3 possible remote arbitrary code execution via crafted domain names opera-10.01-1.1.i586.rpm opera-10.01-1.1.ppc.rpm opera-10.01-1.1.x86_64.rpm java-1_5_0-sun openSUSE 11.0 java-1_5_0-sun u22 update fixes the following security bugs: - CVE-2009-3864: CVSS v2 Base Score: 7.5 - CVE-2009-3867: CVSS v2 Base Score: 9.3 - CVE-2009-3868: CVSS v2 Base Score: 9.3 - CVE-2009-3869: CVSS v2 Base Score: 9.3 - CVE-2009-3871: CVSS v2 Base Score: 9.3 - CVE-2009-3872: CVSS v2 Base Score: 10.0 - CVE-2009-3873: CVSS v2 Base Score: n/a - CVE-2009-3874: CVSS v2 Base Score: 9.3 - CVE-2009-3875: CVSS v2 Base Score: 5.0 - CVE-2009-3876: CVSS v2 Base Score: 5.0 - CVE-2009-3877: CVSS v2 Base Score: 5.0 For bug details use the CVE-ID to query the Mitre database at http://cve.mitre.org/cve please. java-1_5_0-sun-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-1.5.0_update22-0.1.x86_64.rpm java-1_5_0-sun-alsa-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-alsa-1.5.0_update22-0.1.x86_64.rpm java-1_5_0-sun-demo-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-demo-1.5.0_update22-0.1.x86_64.rpm java-1_5_0-sun-devel-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-devel-1.5.0_update22-0.1.x86_64.rpm java-1_5_0-sun-jdbc-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-jdbc-1.5.0_update22-0.1.x86_64.rpm java-1_5_0-sun-plugin-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update22-0.1.i586.rpm java-1_5_0-sun-src-1.5.0_update22-0.1.x86_64.rpm clamav openSUSE 11.0 ClamAV bugfix update to version 0.95.3 clamav-0.95.3-0.1.i586.rpm clamav-0.95.3-0.1.ppc.rpm clamav-0.95.3-0.1.x86_64.rpm clamav-db-0.95.3-0.1.i586.rpm clamav-db-0.95.3-0.1.ppc.rpm clamav-db-0.95.3-0.1.x86_64.rpm cups openSUSE 11.0 The cups web interface was prone to Cross-Site Scripting (XSS) problems (CVE-2009-2820). cups-1.3.7-25.12.i586.rpm cups-1.3.7-25.12.ppc.rpm cups-1.3.7-25.12.x86_64.rpm cups-client-1.3.7-25.12.i586.rpm cups-client-1.3.7-25.12.ppc.rpm cups-client-1.3.7-25.12.x86_64.rpm cups-devel-1.3.7-25.12.i586.rpm cups-devel-1.3.7-25.12.ppc.rpm cups-devel-1.3.7-25.12.x86_64.rpm cups-libs-1.3.7-25.12.i586.rpm cups-libs-1.3.7-25.12.ppc.rpm cups-libs-1.3.7-25.12.x86_64.rpm cups-libs-32bit-1.3.7-25.12.x86_64.rpm cups-libs-64bit-1.3.7-25.12.ppc.rpm libqt4 openSUSE 11.0 This update fixes the handling of the subjectAltName field in SSL certificates. (CVE-2009-2700) libqt4-4.4.0-12.8.i586.rpm libqt4-4.4.0-12.8.ppc.rpm libqt4-4.4.0-12.8.x86_64.rpm libqt4-32bit-4.4.0-12.8.x86_64.rpm libqt4-64bit-4.4.0-12.8.ppc.rpm libqt4-devel-4.4.0-12.8.i586.rpm libqt4-devel-4.4.0-12.8.ppc.rpm libqt4-devel-4.4.0-12.8.x86_64.rpm libqt4-qt3support-4.4.0-12.8.i586.rpm libqt4-qt3support-4.4.0-12.8.ppc.rpm libqt4-qt3support-4.4.0-12.8.x86_64.rpm libqt4-qt3support-32bit-4.4.0-12.8.x86_64.rpm libqt4-qt3support-64bit-4.4.0-12.8.ppc.rpm libqt4-sql-4.4.0-12.8.i586.rpm libqt4-sql-4.4.0-12.8.ppc.rpm libqt4-sql-4.4.0-12.8.x86_64.rpm libqt4-sql-32bit-4.4.0-12.8.x86_64.rpm libqt4-sql-64bit-4.4.0-12.8.ppc.rpm libqt4-sql-sqlite-4.4.0-12.8.i586.rpm libqt4-sql-sqlite-4.4.0-12.8.ppc.rpm libqt4-sql-sqlite-4.4.0-12.8.x86_64.rpm libqt4-x11-4.4.0-12.8.i586.rpm libqt4-x11-4.4.0-12.8.ppc.rpm libqt4-x11-4.4.0-12.8.x86_64.rpm libqt4-x11-32bit-4.4.0-12.8.x86_64.rpm libqt4-x11-64bit-4.4.0-12.8.ppc.rpm kdegraphics3-pdf openSUSE 11.0 Specially crafted PDF files could cause buffer overflows in the pdftops filter when printing such a document. CVE-2009-3608: CVSS v2 Base Score: 9.3 CVE-2009-3609: CVSS v2 Base Score: 4. kdegraphics3-pdf-3.5.9-53.5.i586.rpm kdegraphics3-pdf-3.5.9-53.5.ppc.rpm kdegraphics3-pdf-3.5.9-53.5.x86_64.rpm compat-openssl097g openSUSE 11.0 The TLS/SSLv3 protocol as implemented in openssl prior to this update was not able to associate data to a renegotiated connection. This allowed man-in-the-middle attackers to inject HTTP requests in a HTTPS session without being noticed. For example Apache's mod_ssl was vulnerable to this kind of attack because it uses openssl. Please note that renegotiation will be disabled by this update and may cause problems in some cases. (CVE-2009-3555: CVSS v2 Base Score: 6.4) compat-openssl097g-0.9.7g-119.7.i586.rpm compat-openssl097g-0.9.7g-119.7.ppc.rpm compat-openssl097g-0.9.7g-119.7.x86_64.rpm compat-openssl097g-32bit-0.9.7g-119.7.x86_64.rpm compat-openssl097g-64bit-0.9.7g-119.7.ppc.rpm libopenssl-devel openSUSE 11.0 The TLS/SSLv3 protocol as implemented in openssl prior to this update was not able to associate data to a renegotiated connection. This allowed man-in-the-middle attackers to inject HTTP requests in a HTTPS session without being noticed. For example Apache's mod_ssl was vulnerable to this kind of attack because it uses openssl. Please note that renegotiation will be disabled by this update and may cause problems in some cases. (CVE-2009-3555: CVSS v2 Base Score: 6.4) libopenssl-devel-0.9.8g-47.10.i586.rpm libopenssl-devel-0.9.8g-47.10.ppc.rpm libopenssl-devel-0.9.8g-47.10.x86_64.rpm libopenssl0_9_8-0.9.8g-47.10.i586.rpm libopenssl0_9_8-0.9.8g-47.10.ppc.rpm libopenssl0_9_8-0.9.8g-47.10.x86_64.rpm libopenssl0_9_8-32bit-0.9.8g-47.10.x86_64.rpm libopenssl0_9_8-64bit-0.9.8g-47.10.ppc.rpm openssl-0.9.8g-47.10.i586.rpm openssl-0.9.8g-47.10.ppc.rpm openssl-0.9.8g-47.10.x86_64.rpm openssl-certs-0.9.8g-47.10.i586.rpm openssl-certs-0.9.8g-47.10.ppc.rpm openssl-certs-0.9.8g-47.10.x86_64.rpm openssl-doc-0.9.8g-47.10.i586.rpm openssl-doc-0.9.8g-47.10.ppc.rpm openssl-doc-0.9.8g-47.10.x86_64.rpm java-1_6_0-sun openSUSE 11.0 The Sun Java 6 SDK/JRE was updated to u17 update fixing bugs and various security issues: CVE-2009-3866:The Java Web Start Installer in Sun Java SE in JDK and JRE 6 before Update 17 does not properly use security model permissions when removing installer extensions, which allows remote attackers to execute arbitrary code by modifying a certain JNLP file to have a URL field that poi nts to an unintended trusted application, aka Bug Id 6872824. CVE-2009-3867: Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a long file: URL in an argument, aka Bug Id 6854303. CVE-2009-3869: Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_ 24 allows remote attackers to execute arbitrary code via a crafted argument, aka Bug Id 6872357. CVE-2009-3871: Heap-based buffer overflow in the setBytePixels function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4. 2_24 allows remote attackers to execute arbitrary code via crafted arguments, aka Bug Id 6872358. CVE-2009-3874: Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via large subsample dimensi ons in a JPEG file that triggers a heap-based buffer overflow, aka Bug Id 6874643. CVE-2009-3875: The MessageDigest.isEqual function in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 befor e Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to spoof HMAC-based digital si gnatures, and possibly bypass authentication, via unspecified vectors related to "timing attack vulnerabilities," aka Bug Id 6863503. CVE-2009-3876: Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1 _27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to cause a denial of service (memory consumption) via crafted DER encoded data, which is not properly decoded by the ASN.1 DER input stream parser, aka Bug Id 6864911. CVE-2009-3877: Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1 _27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to cause a denial of service (memory consumption) via crafted HTTP header s, which are not properly parsed by the ASN.1 DER input stream parser, aka Bug Id 6864911. CVE-2009-3864: The Java Update functionality in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22 and JDK and JRE 6 before Update 17, when a non-English version of Windows is used, does not retrieve available new JRE versions, which allows remote attackers to lev erage vulnerabilities in older releases of this software, aka Bug Id 6869694. CVE-2009-3865: The launch method in the Deployment Toolkit plugin in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 6 before Update 17 allows remote attackers to execute arbitrary commands via a crafted web page, aka Bug Id 6869752. CVE-2009-3868: Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x be fore 1.4.2_24 does not properly parse color profiles, which allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862970. CVE-2009-3872: Unspecified vulnerability in the JPEG JFIF Decoder in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK a nd JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to gain privileges via a crafted image file, aka Bug Id 6862969. CVE-2009-3873: The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2 _24 allows remote attackers to gain privileges via a crafted image file, related to a "quanization problem," aka Bug Id 6862968. java-1_6_0-sun-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-1.6.0.u17-1.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u17-1.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u17-1.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u17-1.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u17-1.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-plugin-1.6.0.u17-1.1.x86_64.rpm java-1_6_0-sun-src-1.6.0.u17-1.1.i586.rpm java-1_6_0-sun-src-1.6.0.u17-1.1.x86_64.rpm qemu openSUSE 11.0 The VNC server of qemu was vulnerable to use-after-free bugs, that allowed the execution of code on the host system initiated from the guest system. This can be used to escape from the guest machine to the host machine. (CVE-2009-3616: CVSS v2 Base Score: 8.5) qemu-0.10.1-0.3.i586.rpm qemu-0.10.1-0.3.ppc.rpm qemu-0.10.1-0.3.x86_64.rpm kvm openSUSE 11.0 This update of QEMU KVM fixes the following bugs: - CVE-2009-3616: CVSS v2 Base Score: 8.5 use-after-free bug in VNC code which might be used to execute code on the host system injected from the guest system - CVE-2009-3638: CVSS v2 Base Score: 7.2 integer overflow in kvm_dev_ioctl_get_supported_cpuid() - CVE-2009-3640: CVSS v2 Base Score: 2.1 update_cr8_intercept() NULL pointer dereference kvm-78.0.10.6-0.1.i586.rpm kvm-78.0.10.6-0.1.x86_64.rpm kvm-kmp-default-78.2.6.30.1_2.6.25.20_0.5-0.1.i586.rpm kvm-kmp-default-78.2.6.30.1_2.6.25.20_0.5-0.1.x86_64.rpm kvm-kmp-pae-78.2.6.30.1_2.6.25.20_0.5-0.1.i586.rpm opera openSUSE 11.0 Opera was upgraded to version 10.10 to fix the following security bugs: - CVE-2009-0689: CVSS v2 Base Score: 6.8 A heap buffer overflow in string to number conversion. - Error messages could leak information. - Another, yet unspecified, vulnerability reported by Chris Evans. opera-10.10-0.1.i586.rpm opera-10.10-0.1.ppc.rpm opera-10.10-0.1.x86_64.rpm java-1_6_0-openjdk openSUSE 11.0 New icedtea update to fix: - ICC_Profile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 - Numerous static security flaws in Swing; CVE-2009-3882: CVSS v2 Base Score: 7.5 - Mutable statics in Windows PL&F; CVE-2009-3883: CVSS v2 Base Score: 7.5 - UI logging information leakage; CVE-2009-3880: CVSS v2 Base Score: 5.0 - GraphicsConfiguration information leak; CVE-2009-3879: CVSS v2 Base Score: 7.5 - zoneinfo file existence information leak; CVE-2009-3884: CVSS v2 Base Score: 5.0 - deprecate MD2 in SSL cert validation; CVE-2009-2409: CVSS v2 Base Score: 6.4 - JPEG Image Writer quantization problem; CVE-2009-3873: CVSS v2 Base Score: 9.3 - MessageDigest.isEqual introduces timing attack vulnerabilities; CVE-2009-3875: CVSS v2 Base Score: 5.0 - OpenJDK ASN.1/DER input stream parser denial of service; CVE-2009-3876,CVE-2009-3877: CVSS v2 Base Score: 5.0 - JRE AWT setDifflCM stack overflow; CVE-2009-3869: CVSS v2 Base Score: 9.3 - ImageI/O JPEG heap overflow; CVE-2009-3874: CVSS v2 Base Score: 9.3 - JRE AWT setBytePixels heap overflow; CVE-2009-3871: CVSS v2 Base Score: 9.3 java-1_6_0-openjdk-1.6.2_b16-0.1.i586.rpm java-1_6_0-openjdk-1.6.2_b16-0.1.ppc.rpm java-1_6_0-openjdk-1.6.2_b16-0.1.x86_64.rpm java-1_6_0-openjdk-demo-1.6.2_b16-0.1.i586.rpm java-1_6_0-openjdk-demo-1.6.2_b16-0.1.ppc.rpm java-1_6_0-openjdk-demo-1.6.2_b16-0.1.x86_64.rpm java-1_6_0-openjdk-devel-1.6.2_b16-0.1.i586.rpm java-1_6_0-openjdk-devel-1.6.2_b16-0.1.ppc.rpm java-1_6_0-openjdk-devel-1.6.2_b16-0.1.x86_64.rpm java-1_6_0-openjdk-javadoc-1.6.2_b16-0.1.i586.rpm java-1_6_0-openjdk-javadoc-1.6.2_b16-0.1.ppc.rpm java-1_6_0-openjdk-javadoc-1.6.2_b16-0.1.x86_64.rpm java-1_6_0-openjdk-plugin-1.6.2_b16-0.1.i586.rpm java-1_6_0-openjdk-plugin-1.6.2_b16-0.1.ppc.rpm java-1_6_0-openjdk-plugin-1.6.2_b16-0.1.x86_64.rpm java-1_6_0-openjdk-src-1.6.2_b16-0.1.i586.rpm java-1_6_0-openjdk-src-1.6.2_b16-0.1.ppc.rpm java-1_6_0-openjdk-src-1.6.2_b16-0.1.x86_64.rpm wireshark openSUSE 11.0 Version upgrade of wireshark fix multiple vulnerabilities: - CVE-2009-3549: CVSS v2 Base Score: 5.0 (MEDIUM) The Paltalk dissector could crash on alignment-sensitive processors. - CVE-2009-3550: CVSS v2 Base Score: 4.3 (MEDIUM) The DCERPC/NT dissector could crash. - CVE-2009-3551: CVSS v2 Base Score: 5.0 (MEDIUM) The SMB dissector could crash. - CVE-2009-2560: CVSS v2 Base Score: 5.0 (MEDIUM) The RADIUS dissector could crash. - CVE-2009-3829 CVSS v2 Base Score: 9.3 (HIGH) Fix for an integer overflow in wiretap/erf.c that allowed remote attackers to execute arbitrary code via a crafted ERF file. This does not affect SLE products. wireshark-1.0.0-17.19.i586.rpm wireshark-1.0.0-17.19.ppc.rpm wireshark-1.0.0-17.19.x86_64.rpm wireshark-devel-1.0.0-17.19.i586.rpm wireshark-devel-1.0.0-17.19.ppc.rpm wireshark-devel-1.0.0-17.19.x86_64.rpm bind openSUSE 11.0 The bind DNS server was updated to close a possible cache poisoning vulnerability which allowed to bypass DNSSEC. CVE-2009-4022: CVSS v2 Base Score: 2.6 bind-9.4.2-39.8.i586.rpm bind-9.4.2-39.8.ppc.rpm bind-9.4.2-39.8.x86_64.rpm bind-chrootenv-9.4.2-39.8.i586.rpm bind-chrootenv-9.4.2-39.8.ppc.rpm bind-chrootenv-9.4.2-39.8.x86_64.rpm bind-devel-9.4.2-39.8.i586.rpm bind-devel-9.4.2-39.8.ppc.rpm bind-devel-9.4.2-39.8.x86_64.rpm bind-devel-64bit-9.4.2-39.8.ppc.rpm bind-doc-9.4.2-39.8.i586.rpm bind-doc-9.4.2-39.8.ppc.rpm bind-doc-9.4.2-39.8.x86_64.rpm bind-libs-9.4.2-39.8.i586.rpm bind-libs-9.4.2-39.8.ppc.rpm bind-libs-9.4.2-39.8.x86_64.rpm bind-libs-32bit-9.4.2-39.8.x86_64.rpm bind-libs-64bit-9.4.2-39.8.ppc.rpm bind-utils-9.4.2-39.8.i586.rpm bind-utils-9.4.2-39.8.ppc.rpm bind-utils-9.4.2-39.8.x86_64.rpm lighttpd openSUSE 11.0 This update fixes a regression caused by the last security update for CVE-2008-4360. lighttpd-1.4.19-6.4.i586.rpm lighttpd-1.4.19-6.4.ppc.rpm lighttpd-1.4.19-6.4.x86_64.rpm lighttpd-mod_cml-1.4.19-6.4.i586.rpm lighttpd-mod_cml-1.4.19-6.4.ppc.rpm lighttpd-mod_cml-1.4.19-6.4.x86_64.rpm lighttpd-mod_magnet-1.4.19-6.4.i586.rpm lighttpd-mod_magnet-1.4.19-6.4.ppc.rpm lighttpd-mod_magnet-1.4.19-6.4.x86_64.rpm lighttpd-mod_mysql_vhost-1.4.19-6.4.i586.rpm lighttpd-mod_mysql_vhost-1.4.19-6.4.ppc.rpm lighttpd-mod_mysql_vhost-1.4.19-6.4.x86_64.rpm lighttpd-mod_rrdtool-1.4.19-6.4.i586.rpm lighttpd-mod_rrdtool-1.4.19-6.4.ppc.rpm lighttpd-mod_rrdtool-1.4.19-6.4.x86_64.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.4.i586.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.4.ppc.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.4.x86_64.rpm lighttpd-mod_webdav-1.4.19-6.4.i586.rpm lighttpd-mod_webdav-1.4.19-6.4.ppc.rpm lighttpd-mod_webdav-1.4.19-6.4.x86_64.rpm mutt openSUSE 11.0 This update improves the handling of SSL certificates and fixes a minor usability bug introduced with the last security update. mutt-1.5.17-63.4.i586.rpm mutt-1.5.17-63.4.ppc.rpm mutt-1.5.17-63.4.x86_64.rpm e2fsprogs openSUSE 11.0 e2fsprogs: fsck during boot up fails with the error message "too many open files". This bug is fixed by this update. e2fsprogs-1.40.8-20.2.i586.rpm e2fsprogs-1.40.8-20.2.ppc.rpm e2fsprogs-1.40.8-20.2.x86_64.rpm e2fsprogs-devel-1.40.8-20.2.i586.rpm e2fsprogs-devel-1.40.8-20.2.ppc.rpm e2fsprogs-devel-1.40.8-20.2.x86_64.rpm libblkid-devel-1.40.8-20.2.i586.rpm libblkid-devel-1.40.8-20.2.ppc.rpm libblkid-devel-1.40.8-20.2.x86_64.rpm libblkid-devel-32bit-1.40.8-20.2.x86_64.rpm libblkid-devel-64bit-1.40.8-20.2.ppc.rpm libblkid1-1.40.8-20.2.i586.rpm libblkid1-1.40.8-20.2.ppc.rpm libblkid1-1.40.8-20.2.x86_64.rpm libblkid1-32bit-1.40.8-20.2.x86_64.rpm libblkid1-64bit-1.40.8-20.2.ppc.rpm libcom_err-devel-1.40.8-20.2.i586.rpm libcom_err-devel-1.40.8-20.2.ppc.rpm libcom_err-devel-1.40.8-20.2.x86_64.rpm libcom_err-devel-32bit-1.40.8-20.2.x86_64.rpm libcom_err-devel-64bit-1.40.8-20.2.ppc.rpm libcom_err2-1.40.8-20.2.i586.rpm libcom_err2-1.40.8-20.2.ppc.rpm libcom_err2-1.40.8-20.2.x86_64.rpm libcom_err2-32bit-1.40.8-20.2.x86_64.rpm libcom_err2-64bit-1.40.8-20.2.ppc.rpm libext2fs-devel-1.40.8-20.2.i586.rpm libext2fs-devel-1.40.8-20.2.ppc.rpm libext2fs-devel-1.40.8-20.2.x86_64.rpm libext2fs-devel-32bit-1.40.8-20.2.x86_64.rpm libext2fs-devel-64bit-1.40.8-20.2.ppc.rpm libext2fs2-1.40.8-20.2.i586.rpm libext2fs2-1.40.8-20.2.ppc.rpm libext2fs2-1.40.8-20.2.x86_64.rpm libext2fs2-32bit-1.40.8-20.2.x86_64.rpm libext2fs2-64bit-1.40.8-20.2.ppc.rpm libuuid-devel-1.40.8-20.2.i586.rpm libuuid-devel-1.40.8-20.2.ppc.rpm libuuid-devel-1.40.8-20.2.x86_64.rpm libuuid-devel-32bit-1.40.8-20.2.x86_64.rpm libuuid-devel-64bit-1.40.8-20.2.ppc.rpm libuuid1-1.40.8-20.2.i586.rpm libuuid1-1.40.8-20.2.ppc.rpm libuuid1-1.40.8-20.2.x86_64.rpm libuuid1-32bit-1.40.8-20.2.x86_64.rpm libuuid1-64bit-1.40.8-20.2.ppc.rpm uuid-runtime-1.40.8-20.2.i586.rpm uuid-runtime-1.40.8-20.2.ppc.rpm uuid-runtime-1.40.8-20.2.x86_64.rpm cacti openSUSE 11.0 The package cacti was updated to fix four cross-site-scripting vulnerabilities (CVE-2009-4032: CVSS v2 Base Score: 4.9) and one privilege escalation bug (CVE-2009-4112). cacti-0.8.7e-0.1.noarch.rpm kdelibs3 openSUSE 11.0 KDE KDELibs Remote Array Overrun (Arbitrary code execution), CVE-2009-0689 kdelibs3-3.5.9-49.2.i586.rpm kdelibs3-3.5.9-49.2.ppc.rpm kdelibs3-3.5.9-49.2.x86_64.rpm kdelibs3-32bit-3.5.9-49.2.x86_64.rpm kdelibs3-64bit-3.5.9-49.2.ppc.rpm kdelibs3-arts-3.5.9-49.2.i586.rpm kdelibs3-arts-3.5.9-49.2.ppc.rpm kdelibs3-arts-3.5.9-49.2.x86_64.rpm kdelibs3-arts-32bit-3.5.9-49.2.x86_64.rpm kdelibs3-arts-64bit-3.5.9-49.2.ppc.rpm kdelibs3-default-style-3.5.9-49.2.i586.rpm kdelibs3-default-style-3.5.9-49.2.ppc.rpm kdelibs3-default-style-3.5.9-49.2.x86_64.rpm kdelibs3-default-style-32bit-3.5.9-49.2.x86_64.rpm kdelibs3-default-style-64bit-3.5.9-49.2.ppc.rpm kdelibs3-devel-3.5.9-49.2.i586.rpm kdelibs3-devel-3.5.9-49.2.ppc.rpm kdelibs3-devel-3.5.9-49.2.x86_64.rpm kdelibs3-doc-3.5.9-49.2.i586.rpm kdelibs3-doc-3.5.9-49.2.ppc.rpm kdelibs3-doc-3.5.9-49.2.x86_64.rpm kdelibs4-4.0.4-15.4.i586.rpm kdelibs4-4.0.4-15.4.ppc.rpm kdelibs4-4.0.4-15.4.x86_64.rpm kdelibs4-core-4.0.4-15.4.i586.rpm kdelibs4-core-4.0.4-15.4.ppc.rpm kdelibs4-core-4.0.4-15.4.x86_64.rpm kdelibs4-doc-4.0.4-15.4.i586.rpm kdelibs4-doc-4.0.4-15.4.ppc.rpm kdelibs4-doc-4.0.4-15.4.x86_64.rpm libkde4-4.0.4-15.4.i586.rpm libkde4-4.0.4-15.4.ppc.rpm libkde4-4.0.4-15.4.x86_64.rpm libkde4-32bit-4.0.4-15.4.x86_64.rpm libkde4-64bit-4.0.4-15.4.ppc.rpm libkde4-devel-4.0.4-15.4.i586.rpm libkde4-devel-4.0.4-15.4.ppc.rpm libkde4-devel-4.0.4-15.4.x86_64.rpm libkdecore4-4.0.4-15.4.i586.rpm libkdecore4-4.0.4-15.4.ppc.rpm libkdecore4-4.0.4-15.4.x86_64.rpm libkdecore4-32bit-4.0.4-15.4.x86_64.rpm libkdecore4-64bit-4.0.4-15.4.ppc.rpm libkdecore4-devel-4.0.4-15.4.i586.rpm libkdecore4-devel-4.0.4-15.4.ppc.rpm libkdecore4-devel-4.0.4-15.4.x86_64.rpm utempter-0.5.5-114.1.i586.rpm utempter-0.5.5-114.1.ppc.rpm utempter-0.5.5-114.1.x86_64.rpm utempter-32bit-0.5.5-114.1.x86_64.rpm utempter-64bit-0.5.5-114.1.ppc.rpm finch openSUSE 11.0 This update of pidgin fixes the following issues: - CVE-2009-3026: CVSS v2 Base Score: 5.0 Allowed to send confidential data unencrypted even if SSL was chosen by user. - CVE-2009-3025: CVSS v2 Base Score: 4.3 Remote denial of service in yahoo IM plug-in. - CVE-2009-3083: CVSS v2 Base Score: 5.0 Remote denial of service in MSN plug-in. - CVE-2009-3084: CVSS v2 Base Score: 5.0 Remote denial of service in MSN plug-in. - CVE-2009-3085: CVSS v2 Base Score: 5.0 Remote denial of service in XMPP plug-in. - CVE-2009-3615: CVSS v2 Base Score: 5.0 Remote denial of service in ICQ plug-in. - QQ protocol upgrade Migrate all QQ accounts to QQ2008. cdparanoia-IIIalpha9.8-664.1.i586.rpm cdparanoia-IIIalpha9.8-664.1.ppc.rpm cdparanoia-IIIalpha9.8-664.1.x86_64.rpm cdparanoia-32bit-IIIalpha9.8-664.1.x86_64.rpm cdparanoia-64bit-IIIalpha9.8-664.1.ppc.rpm check-0.9.5-72.1.i586.rpm check-0.9.5-72.1.ppc.rpm check-0.9.5-72.1.x86_64.rpm check-32bit-0.9.5-72.1.x86_64.rpm check-64bit-0.9.5-72.1.ppc.rpm desktop-file-utils-0.15-34.1.i586.rpm desktop-file-utils-0.15-34.1.ppc.rpm desktop-file-utils-0.15-34.1.x86_64.rpm fam-2.7.0-106.1.i586.rpm fam-2.7.0-106.1.ppc.rpm fam-2.7.0-106.1.x86_64.rpm fam-32bit-2.7.0-106.1.x86_64.rpm fam-64bit-2.7.0-106.1.ppc.rpm finch-2.6.3-0.1.i586.rpm finch-2.6.3-0.1.ppc.rpm finch-2.6.3-0.1.x86_64.rpm finch-devel-2.6.3-0.1.i586.rpm finch-devel-2.6.3-0.1.ppc.rpm finch-devel-2.6.3-0.1.x86_64.rpm gnome-vfs2-2.22.0-33.1.i586.rpm gnome-vfs2-2.22.0-33.1.ppc.rpm gnome-vfs2-2.22.0-33.1.x86_64.rpm gnome-vfs2-32bit-2.22.0-33.1.x86_64.rpm gnome-vfs2-64bit-2.22.0-33.1.ppc.rpm gnome-vfs2-lang-2.22.0-33.1.i586.rpm gnome-vfs2-lang-2.22.0-33.1.ppc.rpm gnome-vfs2-lang-2.22.0-33.1.x86_64.rpm gstreamer-0_10-0.10.19-16.1.i586.rpm gstreamer-0_10-0.10.19-16.1.ppc.rpm gstreamer-0_10-0.10.19-16.1.x86_64.rpm gstreamer-0_10-32bit-0.10.19-16.1.x86_64.rpm gstreamer-0_10-64bit-0.10.19-16.1.ppc.rpm gstreamer-0_10-lang-0.10.19-16.1.i586.rpm gstreamer-0_10-lang-0.10.19-16.1.ppc.rpm gstreamer-0_10-lang-0.10.19-16.1.x86_64.rpm libgstreamer-0_10-0-0.10.19-16.1.i586.rpm libgstreamer-0_10-0-0.10.19-16.1.ppc.rpm libgstreamer-0_10-0-0.10.19-16.1.x86_64.rpm libgstreamer-0_10-0-32bit-0.10.19-16.1.x86_64.rpm libgstreamer-0_10-0-64bit-0.10.19-16.1.ppc.rpm libogg0-1.1.3-86.1.i586.rpm libogg0-1.1.3-86.1.ppc.rpm libogg0-1.1.3-86.1.x86_64.rpm libogg0-32bit-1.1.3-86.1.x86_64.rpm libogg0-64bit-1.1.3-86.1.ppc.rpm liboil-0.3.14-18.1.i586.rpm liboil-0.3.14-18.1.ppc.rpm liboil-0.3.14-18.1.x86_64.rpm liboil-32bit-0.3.14-18.1.x86_64.rpm liboil-64bit-0.3.14-18.1.ppc.rpm libpurple-2.6.3-0.1.i586.rpm libpurple-2.6.3-0.1.ppc.rpm libpurple-2.6.3-0.1.x86_64.rpm libpurple-devel-2.6.3-0.1.i586.rpm libpurple-devel-2.6.3-0.1.ppc.rpm libpurple-devel-2.6.3-0.1.x86_64.rpm libpurple-lang-2.6.3-0.1.i586.rpm libpurple-lang-2.6.3-0.1.ppc.rpm libpurple-lang-2.6.3-0.1.x86_64.rpm libpurple-meanwhile-2.6.3-0.1.i586.rpm libpurple-meanwhile-2.6.3-0.1.ppc.rpm libpurple-meanwhile-2.6.3-0.1.x86_64.rpm libpurple-mono-2.6.3-0.1.i586.rpm libpurple-mono-2.6.3-0.1.ppc.rpm libpurple-mono-2.6.3-0.1.x86_64.rpm libtheora0-1.0.beta2-3.1.i586.rpm libtheora0-1.0.beta2-3.1.ppc.rpm libtheora0-1.0.beta2-3.1.x86_64.rpm libtheora0-32bit-1.0.beta2-3.1.x86_64.rpm libtheora0-64bit-1.0.beta2-3.1.ppc.rpm libvisual-0.4.0-139.1.i586.rpm libvisual-0.4.0-139.1.ppc.rpm libvisual-0.4.0-139.1.x86_64.rpm libvisual-32bit-0.4.0-139.1.x86_64.rpm libvisual-64bit-0.4.0-139.1.ppc.rpm libvorbis-1.2.0-53.1.i586.rpm libvorbis-1.2.0-53.1.ppc.rpm libvorbis-1.2.0-53.1.x86_64.rpm libvorbis-32bit-1.2.0-53.1.x86_64.rpm libvorbis-64bit-1.2.0-53.1.ppc.rpm pidgin-2.6.3-0.1.i586.rpm pidgin-2.6.3-0.1.ppc.rpm pidgin-2.6.3-0.1.x86_64.rpm pidgin-devel-2.6.3-0.1.i586.rpm pidgin-devel-2.6.3-0.1.ppc.rpm pidgin-devel-2.6.3-0.1.x86_64.rpm pidgin-otr-3.1.0-87.1.i586.rpm pidgin-otr-3.1.0-87.1.ppc.rpm pidgin-otr-3.1.0-87.1.x86_64.rpm ncpfs openSUSE 11.0 This update fixes a problem problem that occurs when the eDir replica is only held by a Linux server and the user is trying to mount a volume on the NetWare server (bnc#527802). ncpfs-2.2.6-132.2.i586.rpm ncpfs-2.2.6-132.2.ppc.rpm ncpfs-2.2.6-132.2.x86_64.rpm ncpfs-32bit-2.2.6-132.2.x86_64.rpm ncpfs-64bit-2.2.6-132.2.ppc.rpm ncpfs-devel-2.2.6-132.2.i586.rpm ncpfs-devel-2.2.6-132.2.ppc.rpm ncpfs-devel-2.2.6-132.2.x86_64.rpm perl-HTML-Parser openSUSE 11.0 Specially crafted HTML documents could cause perl-HTML-Parser to run into an endless loop (CVE-2009-3627). perl-HTML-Parser-3.56-77.2.i586.rpm perl-HTML-Parser-3.56-77.2.ppc.rpm perl-HTML-Parser-3.56-77.2.x86_64.rpm expat openSUSE 11.0 Specially crafted XML files could crash applications that use expat to parse such files (CVE-2009-3560). expat-2.0.1-62.4.i586.rpm expat-2.0.1-62.4.ppc.rpm expat-2.0.1-62.4.x86_64.rpm libexpat-devel-2.0.1-62.4.i586.rpm libexpat-devel-2.0.1-62.4.ppc.rpm libexpat-devel-2.0.1-62.4.x86_64.rpm libexpat1-2.0.1-62.4.i586.rpm libexpat1-2.0.1-62.4.ppc.rpm libexpat1-2.0.1-62.4.x86_64.rpm libexpat1-32bit-2.0.1-62.4.x86_64.rpm libexpat1-64bit-2.0.1-62.4.ppc.rpm openslp openSUSE 11.0 libslp may use only a subset of the known DAs due to a bug in the DAAdvert handling for non-openslp servers. openslp-1.2.0-143.4.i586.rpm openslp-1.2.0-143.4.ppc.rpm openslp-1.2.0-143.4.x86_64.rpm openslp-32bit-1.2.0-143.4.x86_64.rpm openslp-64bit-1.2.0-143.4.ppc.rpm openslp-devel-1.2.0-143.4.i586.rpm openslp-devel-1.2.0-143.4.ppc.rpm openslp-devel-1.2.0-143.4.x86_64.rpm openslp-server-1.2.0-143.4.i586.rpm openslp-server-1.2.0-143.4.ppc.rpm openslp-server-1.2.0-143.4.x86_64.rpm pyxml openSUSE 11.0 Specially crafted XML documents could make pyxml run into an enless loop, therefore locking up applications using pyxml (CVE-2009-3720, CVE-2009-3560). pyxml-0.8.4-164.3.i586.rpm pyxml-0.8.4-164.3.ppc.rpm pyxml-0.8.4-164.3.x86_64.rpm htmldoc openSUSE 11.0 Specially crafted files could cause a buffer overflow in htmldoc (CVE-2009-3050). htmldoc-1.8.27-136.2.i586.rpm htmldoc-1.8.27-136.2.ppc.rpm htmldoc-1.8.27-136.2.x86_64.rpm MozillaFirefox openSUSE 11.0 The Mozilla Firefox was updated to version 3.0.16, fixing lots of bugs and various security issues. The following issues were fixed: * MFSA 2009-65/CVE-2009-3979/CVE-2009-3981 Crashes with evidence of memory corruption (1.9.0.16) * MFSA 2009-68/CVE-2009-3983 (bmo#487872) NTLM reflection vulnerability * MFSA 2009-69/CVE-2009-3984/CVE-2009-3985 (bmo#521461,bmo#514232) Location bar spoofing vulnerabilities * MFSA 2009-70/CVE-2009-3986 (bmo#522430) Privilege escalation via chrome window.opener MozillaFirefox-3.0.16-0.1.i586.rpm MozillaFirefox-3.0.16-0.1.ppc.rpm MozillaFirefox-3.0.16-0.1.x86_64.rpm MozillaFirefox-translations-3.0.16-0.1.i586.rpm MozillaFirefox-translations-3.0.16-0.1.ppc.rpm MozillaFirefox-translations-3.0.16-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.16-0.1.i586.rpm mozilla-xulrunner190-1.9.0.16-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.16-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.16-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.16-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.16-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.16-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.16-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.16-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.16-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.16-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.16-0.1.ppc.rpm cups openSUSE 11.0 A use-after-free problem in cupsd allowed remote attackers to crash the cups server (CVE-2009-3553). cups-1.3.7-25.14.i586.rpm cups-1.3.7-25.14.ppc.rpm cups-1.3.7-25.14.x86_64.rpm cups-client-1.3.7-25.14.i586.rpm cups-client-1.3.7-25.14.ppc.rpm cups-client-1.3.7-25.14.x86_64.rpm cups-devel-1.3.7-25.14.i586.rpm cups-devel-1.3.7-25.14.ppc.rpm cups-devel-1.3.7-25.14.x86_64.rpm cups-libs-1.3.7-25.14.i586.rpm cups-libs-1.3.7-25.14.ppc.rpm cups-libs-1.3.7-25.14.x86_64.rpm cups-libs-32bit-1.3.7-25.14.x86_64.rpm cups-libs-64bit-1.3.7-25.14.ppc.rpm libpoppler-devel openSUSE 11.0 This update of libpoppler3 fixes various security issues. CVE-2009-0791: Fix multiple integer overflows in "pdftops" filter that could be used by attackers to execute code. CVE-2009-3607: Integer overflow in the create_surface_from_thumbnail_data function in glib/poppler-page.cc in Poppler 0.x allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information. CVE-2009-3608: Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. CVE-2009-3938: Buffer overflow in the ABWOutputDev::endWord function in poppler/ABWOutputDev.cc in Poppler (aka libpoppler) 0.10.6, 0.12.0, and possibly other versions, as used by the Abiword pdftoabw utility, allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted PDF file. CVE-2009-4035: A indexing error in FoFiType1::parse() was fixed that could be used by attackers to corrupt memory and potentially execute code. libpoppler-devel-0.8.2-1.5.i586.rpm libpoppler-devel-0.8.2-1.5.ppc.rpm libpoppler-devel-0.8.2-1.5.x86_64.rpm libpoppler-doc-0.8.2-1.5.i586.rpm libpoppler-doc-0.8.2-1.5.ppc.rpm libpoppler-doc-0.8.2-1.5.x86_64.rpm libpoppler-glib-devel-0.8.2-1.5.i586.rpm libpoppler-glib-devel-0.8.2-1.5.ppc.rpm libpoppler-glib-devel-0.8.2-1.5.x86_64.rpm libpoppler-glib3-0.8.2-1.5.i586.rpm libpoppler-glib3-0.8.2-1.5.ppc.rpm libpoppler-glib3-0.8.2-1.5.x86_64.rpm libpoppler-qt2-0.8.2-1.5.i586.rpm libpoppler-qt2-0.8.2-1.5.ppc.rpm libpoppler-qt2-0.8.2-1.5.x86_64.rpm libpoppler-qt3-devel-0.8.2-1.5.i586.rpm libpoppler-qt3-devel-0.8.2-1.5.ppc.rpm libpoppler-qt3-devel-0.8.2-1.5.x86_64.rpm libpoppler-qt4-3-0.8.2-1.5.i586.rpm libpoppler-qt4-3-0.8.2-1.5.ppc.rpm libpoppler-qt4-3-0.8.2-1.5.x86_64.rpm libpoppler-qt4-devel-0.8.2-1.5.i586.rpm libpoppler-qt4-devel-0.8.2-1.5.ppc.rpm libpoppler-qt4-devel-0.8.2-1.5.x86_64.rpm libpoppler3-0.8.2-1.5.i586.rpm libpoppler3-0.8.2-1.5.ppc.rpm libpoppler3-0.8.2-1.5.x86_64.rpm poppler-tools-0.8.2-1.5.i586.rpm poppler-tools-0.8.2-1.5.ppc.rpm poppler-tools-0.8.2-1.5.x86_64.rpm yast2-backup openSUSE 11.0 yast2-backup-2.16.8-0.1.noarch.rpm libltdl-3 openSUSE 11.0 libtool: libltdl may load modules from the current working directory. CVE-2009-3736 has been assigned to this issue. libltdl-3-1.5.26-23.2.i586.rpm libltdl-3-1.5.26-23.2.ppc.rpm libltdl-3-1.5.26-23.2.x86_64.rpm libltdl-3-32bit-1.5.26-23.2.x86_64.rpm libltdl-3-64bit-1.5.26-23.2.ppc.rpm libtool-1.5.26-23.2.i586.rpm libtool-1.5.26-23.2.ppc.rpm libtool-1.5.26-23.2.x86_64.rpm libtool-32bit-1.5.26-23.2.x86_64.rpm libtool-64bit-1.5.26-23.2.ppc.rpm perl-spamassassin openSUSE 11.0 Versions of the FH_DATE_PAST_20XX [2] rule released with versions of Apache SpamAssassin 3.2.0 thru 3.2.5 will trigger on most mail with a Date header that includes the year 2010 or later. The rule will add a score of up to 3.6 towards the spam classification of all email. perl-spamassassin-3.2.4-29.2.i586.rpm perl-spamassassin-3.2.4-29.2.ppc.rpm perl-spamassassin-3.2.4-29.2.x86_64.rpm spamassassin-3.2.4-29.2.i586.rpm spamassassin-3.2.4-29.2.ppc.rpm spamassassin-3.2.4-29.2.x86_64.rpm flash-player openSUSE 11.0 Specially crafted Flash (SWF) files can cause overflows in flash-player. Attackers could potentially exploit that to execute arbitrary code (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798,CVE-2009-3799, CVE-2009-3800, CVE-2009-3951) flash-player was upgraded to version 10 to fix those problems. flash-player-10.0.42.34-2.1.i586.rpm ntp openSUSE 11.0 By sending specially crafted NTP packets attackers could make ntpd flood it's log file with error messages or even run into an endless loop (CVE-2009-3563). ntp-4.2.4p4-44.7.i586.rpm ntp-4.2.4p4-44.7.ppc.rpm ntp-4.2.4p4-44.7.x86_64.rpm ntp-doc-4.2.4p4-44.7.i586.rpm ntp-doc-4.2.4p4-44.7.ppc.rpm ntp-doc-4.2.4p4-44.7.x86_64.rpm timezone-2009u openSUSE 11.0 updated tzdata to version 2009u: * DST changes: Asia/Damascus, Asia/Dhaka, Pacific/Fiji * GMT offset changes: some bases in Antartica * New zones: Asia/Novokuznetsk * Historical changes: Asia/Hong_Kong timezone-2009u-0.1.i586.rpm timezone-2009u-0.1.ppc.rpm timezone-2009u-0.1.x86_64.rpm expat openSUSE 11.0 The previous expat security update (CVE-2009-3560) caused parse errors with some xml documents. expat-2.0.1-62.6.i586.rpm expat-2.0.1-62.6.ppc.rpm expat-2.0.1-62.6.x86_64.rpm libexpat-devel-2.0.1-62.6.i586.rpm libexpat-devel-2.0.1-62.6.ppc.rpm libexpat-devel-2.0.1-62.6.x86_64.rpm libexpat1-2.0.1-62.6.i586.rpm libexpat1-2.0.1-62.6.ppc.rpm libexpat1-2.0.1-62.6.x86_64.rpm libexpat1-32bit-2.0.1-62.6.x86_64.rpm libexpat1-64bit-2.0.1-62.6.ppc.rpm phpMyAdmin openSUSE 11.0 The use of unserialize() on POST data which could have lead to remote code execution (CVE-2009-4605) has been fixed as well as some minor temporary file issues (CVE-2008-7251, CVE-2008-7252). phpMyAdmin-2.11.9.6-0.3.noarch.rpm postgresql openSUSE 11.0 An unprivileged, authenticated PostgreSQL user could create a table which references functions with malicious content. Maintenance operations carried out be the database superuser could execute such functions (CVE-2009-4136). Embedded null bytes in the common name of SSL certificates could bypass certificate hostname checks (CVE-2009-4034). postgresql was updated to the next upstream patchlevel update which also includes several bugfixes. See the package changelog for details. postgresql-8.3.9-0.1.i586.rpm postgresql-8.3.9-0.1.ppc.rpm postgresql-8.3.9-0.1.ppc64.rpm postgresql-8.3.9-0.1.x86_64.rpm postgresql-contrib-8.3.9-0.1.i586.rpm postgresql-contrib-8.3.9-0.1.ppc.rpm postgresql-contrib-8.3.9-0.1.x86_64.rpm postgresql-devel-8.3.9-0.1.i586.rpm postgresql-devel-8.3.9-0.1.ppc.rpm postgresql-devel-8.3.9-0.1.x86_64.rpm postgresql-docs-8.3.9-0.1.i586.rpm postgresql-docs-8.3.9-0.1.ppc.rpm postgresql-docs-8.3.9-0.1.x86_64.rpm postgresql-libs-8.3.9-0.1.i586.rpm postgresql-libs-8.3.9-0.1.ppc.rpm postgresql-libs-8.3.9-0.1.x86_64.rpm postgresql-libs-32bit-8.3.9-0.1.x86_64.rpm postgresql-libs-64bit-8.3.9-0.1.ppc.rpm postgresql-plperl-8.3.9-0.1.i586.rpm postgresql-plperl-8.3.9-0.1.ppc.rpm postgresql-plperl-8.3.9-0.1.x86_64.rpm postgresql-plpython-8.3.9-0.1.i586.rpm postgresql-plpython-8.3.9-0.1.ppc.rpm postgresql-plpython-8.3.9-0.1.x86_64.rpm postgresql-pltcl-8.3.9-0.1.i586.rpm postgresql-pltcl-8.3.9-0.1.ppc.rpm postgresql-pltcl-8.3.9-0.1.x86_64.rpm postgresql-server-8.3.9-0.1.i586.rpm postgresql-server-8.3.9-0.1.ppc.rpm postgresql-server-8.3.9-0.1.x86_64.rpm msmtp openSUSE 11.0 msmtp did not properly handle a '0' character in the domain name of SSL certificates (CVE-2009-3942). msmtp-1.4.14-14.2.i586.rpm msmtp-1.4.14-14.2.ppc.rpm msmtp-1.4.14-14.2.x86_64.rpm krb5 openSUSE 11.0 Specially crafted AES and RC4 packets could allow unauthenticated remote attackers to trigger an integer overflow leads to heap memory corruption (CVE-2009-4212). krb5-1.6.3-50.7.i586.rpm krb5-1.6.3-50.7.ppc.rpm krb5-1.6.3-50.7.x86_64.rpm krb5-32bit-1.6.3-50.7.x86_64.rpm krb5-64bit-1.6.3-50.7.ppc.rpm krb5-apps-clients-1.6.3-50.7.i586.rpm krb5-apps-clients-1.6.3-50.7.ppc.rpm krb5-apps-clients-1.6.3-50.7.x86_64.rpm krb5-apps-servers-1.6.3-50.7.i586.rpm krb5-apps-servers-1.6.3-50.7.ppc.rpm krb5-apps-servers-1.6.3-50.7.x86_64.rpm krb5-client-1.6.3-50.7.i586.rpm krb5-client-1.6.3-50.7.ppc.rpm krb5-client-1.6.3-50.7.x86_64.rpm krb5-devel-1.6.3-50.7.i586.rpm krb5-devel-1.6.3-50.7.ppc.rpm krb5-devel-1.6.3-50.7.x86_64.rpm krb5-devel-32bit-1.6.3-50.7.x86_64.rpm krb5-devel-64bit-1.6.3-50.7.ppc.rpm krb5-server-1.6.3-50.7.i586.rpm krb5-server-1.6.3-50.7.ppc.rpm krb5-server-1.6.3-50.7.x86_64.rpm transmission openSUSE 11.0 Specially crafted torrent files could overwrite arbitrary files. transmission-1.11-18.2.i586.rpm transmission-1.11-18.2.ppc.rpm transmission-1.11-18.2.x86_64.rpm transmission-gtk-1.11-18.2.i586.rpm transmission-gtk-1.11-18.2.ppc.rpm transmission-gtk-1.11-18.2.x86_64.rpm transmission-lang-1.11-18.2.i586.rpm transmission-lang-1.11-18.2.ppc.rpm transmission-lang-1.11-18.2.x86_64.rpm openssl-CVE-2009-4355.patch openSUSE 11.0 Incorrect use of an openssl cleanup function can lead to memory leaks in applications. For example an ssl enabled web server such as apache that uses php, curl and openssl leaks memory if a SIGHUP signal was sent to apache. The openssl cleanup function was made more robust to avoid memory leaks (CVE-2009-4355). libopenssl-devel-0.9.8g-47.12.i586.rpm libopenssl-devel-0.9.8g-47.12.ppc.rpm libopenssl-devel-0.9.8g-47.12.x86_64.rpm libopenssl0_9_8-0.9.8g-47.12.i586.rpm libopenssl0_9_8-0.9.8g-47.12.ppc.rpm libopenssl0_9_8-0.9.8g-47.12.x86_64.rpm libopenssl0_9_8-32bit-0.9.8g-47.12.x86_64.rpm libopenssl0_9_8-64bit-0.9.8g-47.12.ppc.rpm openssl-0.9.8g-47.12.i586.rpm openssl-0.9.8g-47.12.ppc.rpm openssl-0.9.8g-47.12.x86_64.rpm openssl-certs-0.9.8g-47.12.i586.rpm openssl-certs-0.9.8g-47.12.ppc.rpm openssl-certs-0.9.8g-47.12.x86_64.rpm openssl-doc-0.9.8g-47.12.i586.rpm openssl-doc-0.9.8g-47.12.ppc.rpm openssl-doc-0.9.8g-47.12.x86_64.rpm acroread openSUSE 11.0 Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code (CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3956, CVE-2009-3957, CVE-2009-3958, CVE-2009-3959, CVE-2009-4324). Acrobat reader was updated to version 9.3 to fix those security issues. acroread-9.3-0.1.i586.rpm bind openSUSE 11.0 bind when configured for DNSSEC could incorrectly cache NXDOMAIN responses (CVE-2010-0097). Moreover, the fix for CVE-2009-4022 was incomplete. Despite the previous fix CNAME and DNAME responses could be incorrectly cached (CVE-2010-0290). bind was updated to version 9.4.3-P5 in order to fix those issues. bind-9.4.3P5-0.1.i586.rpm bind-9.4.3P5-0.1.ppc.rpm bind-9.4.3P5-0.1.x86_64.rpm bind-chrootenv-9.4.3P5-0.1.i586.rpm bind-chrootenv-9.4.3P5-0.1.ppc.rpm bind-chrootenv-9.4.3P5-0.1.x86_64.rpm bind-devel-9.4.3P5-0.1.i586.rpm bind-devel-9.4.3P5-0.1.ppc.rpm bind-devel-9.4.3P5-0.1.x86_64.rpm bind-devel-64bit-9.4.3P5-0.1.ppc.rpm bind-doc-9.4.3P5-0.1.i586.rpm bind-doc-9.4.3P5-0.1.ppc.rpm bind-doc-9.4.3P5-0.1.x86_64.rpm bind-libs-9.4.3P5-0.1.i586.rpm bind-libs-9.4.3P5-0.1.ppc.rpm bind-libs-9.4.3P5-0.1.x86_64.rpm bind-libs-32bit-9.4.3P5-0.1.x86_64.rpm bind-libs-64bit-9.4.3P5-0.1.ppc.rpm bind-utils-9.4.3P5-0.1.i586.rpm bind-utils-9.4.3P5-0.1.ppc.rpm bind-utils-9.4.3P5-0.1.x86_64.rpm gzip openSUSE 11.0 Specially crafted gzip archives could lead to gzip allocating a too small huffman table. Attackers could exploit that to crash gzip (CVE-2009-2624). Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code (CVE-2010-0001). Only 64bit architectures are affected by this flaw. gzip-1.3.12-72.2.i586.rpm gzip-1.3.12-72.2.ppc.rpm gzip-1.3.12-72.2.x86_64.rpm virtualbox-ose openSUSE 11.0 This update of virtualbox-ose fixes a memory consumption bug in the kernel code that can be used to allocate almost all physical memory. CVE-2009-3940: CVSS v2 Base Score: 2.1 (LOW) (AV:L/AC:L/Au:N/C:N/I:N/A:P) virtualbox-ose-1.5.6-33.4.i586.rpm virtualbox-ose-1.5.6-33.4.x86_64.rpm virtualbox-ose-guest-tools-1.5.6-33.4.i586.rpm virtualbox-ose-guest-tools-1.5.6-33.4.x86_64.rpm virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.5-33.4.i586.rpm virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.5-33.4.x86_64.rpm virtualbox-ose-kmp-default-1.5.6_2.6.25.20_0.5-33.4.i586.rpm virtualbox-ose-kmp-default-1.5.6_2.6.25.20_0.5-33.4.x86_64.rpm virtualbox-ose-kmp-pae-1.5.6_2.6.25.20_0.5-33.4.i586.rpm xorg-x11-driver-virtualbox-ose-1.5.6-33.4.i586.rpm xorg-x11-driver-virtualbox-ose-1.5.6-33.4.x86_64.rpm MozillaFirefox openSUSE 11.0 Mozilla Firefox was upgraded to 3.0.17 fixing some bugs and regressions. CVE-2010-0220: The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote attackers to cause a denial of service (application crash) via a crafted web site that triggers memory consumption and an accompanying Low Memory alert dialog, and also triggers attempted removal of an observer from an empty observers array. MozillaFirefox-3.0.17-0.1.i586.rpm MozillaFirefox-3.0.17-0.1.ppc.rpm MozillaFirefox-3.0.17-0.1.x86_64.rpm MozillaFirefox-translations-3.0.17-0.1.i586.rpm MozillaFirefox-translations-3.0.17-0.1.ppc.rpm MozillaFirefox-translations-3.0.17-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.17-0.1.i586.rpm mozilla-xulrunner190-1.9.0.17-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.17-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.17-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.17-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.17-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.17-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.17-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.17-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.17-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.17-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.17-0.1.ppc.rpm NetworkManager-gnome openSUSE 11.0 nm-applet connected to WPA2 Enterprise networks even if the specified CA certificate file didn't exist (CVE-2009-4144). When editing connections in nm-applet the connection object was exported via DBus disclosing potentially sensitive information to local users (CVE-2009-4145). NetworkManager-gnome-0.7.0.r729-7.6.i586.rpm NetworkManager-gnome-0.7.0.r729-7.6.ppc.rpm NetworkManager-gnome-0.7.0.r729-7.6.x86_64.rpm acl openSUSE 11.0 the setfacl tool followed symbolic links in recursive (-R) mode even if the --physical (-P) option was specified (CVE-2009-4411). acl-2.2.47-6.3.i586.rpm acl-2.2.47-6.3.ppc.rpm acl-2.2.47-6.3.x86_64.rpm libacl-2.2.47-6.3.i586.rpm libacl-2.2.47-6.3.ppc.rpm libacl-2.2.47-6.3.x86_64.rpm libacl-32bit-2.2.47-6.3.x86_64.rpm libacl-64bit-2.2.47-6.3.ppc.rpm libacl-devel-2.2.47-6.3.i586.rpm libacl-devel-2.2.47-6.3.ppc.rpm libacl-devel-2.2.47-6.3.x86_64.rpm libacl-devel-64bit-2.2.47-6.3.ppc.rpm libthai openSUSE 11.0 very long strings could lead to a heap buffer overflow in libthai libthai-0.1.9-11.2.i586.rpm libthai-0.1.9-11.2.ppc.rpm libthai-0.1.9-11.2.x86_64.rpm libthai-devel-0.1.9-11.2.i586.rpm libthai-devel-0.1.9-11.2.ppc.rpm libthai-devel-0.1.9-11.2.x86_64.rpm avahi openSUSE 11.0 The avahi-daemon reflector could cause packet storms when reflecting legacy unicast mDNS traffic (CVE-2009-0758). avahi-0.6.22-68.4.i586.rpm avahi-0.6.22-68.4.ppc.rpm avahi-0.6.22-68.4.x86_64.rpm avahi-compat-howl-devel-0.6.22-68.4.i586.rpm avahi-compat-howl-devel-0.6.22-68.4.ppc.rpm avahi-compat-howl-devel-0.6.22-68.4.x86_64.rpm avahi-compat-mDNSResponder-devel-0.6.22-68.4.i586.rpm avahi-compat-mDNSResponder-devel-0.6.22-68.4.ppc.rpm avahi-compat-mDNSResponder-devel-0.6.22-68.4.x86_64.rpm avahi-lang-0.6.22-68.4.i586.rpm avahi-lang-0.6.22-68.4.ppc.rpm avahi-lang-0.6.22-68.4.x86_64.rpm avahi-utils-0.6.22-68.4.i586.rpm avahi-utils-0.6.22-68.4.ppc.rpm avahi-utils-0.6.22-68.4.x86_64.rpm avahi-utils-gtk-0.6.22-68.4.i586.rpm avahi-utils-gtk-0.6.22-68.4.ppc.rpm avahi-utils-gtk-0.6.22-68.4.x86_64.rpm libavahi-client3-0.6.22-68.4.i586.rpm libavahi-client3-0.6.22-68.4.ppc.rpm libavahi-client3-0.6.22-68.4.x86_64.rpm libavahi-client3-32bit-0.6.22-68.4.x86_64.rpm libavahi-client3-64bit-0.6.22-68.4.ppc.rpm libavahi-common3-0.6.22-68.4.i586.rpm libavahi-common3-0.6.22-68.4.ppc.rpm libavahi-common3-0.6.22-68.4.x86_64.rpm libavahi-common3-32bit-0.6.22-68.4.x86_64.rpm libavahi-common3-64bit-0.6.22-68.4.ppc.rpm libavahi-core5-0.6.22-68.4.i586.rpm libavahi-core5-0.6.22-68.4.ppc.rpm libavahi-core5-0.6.22-68.4.x86_64.rpm libavahi-devel-0.6.22-68.4.i586.rpm libavahi-devel-0.6.22-68.4.ppc.rpm libavahi-devel-0.6.22-68.4.x86_64.rpm libavahi-glib-devel-0.6.22-68.4.i586.rpm libavahi-glib-devel-0.6.22-68.4.ppc.rpm libavahi-glib-devel-0.6.22-68.4.x86_64.rpm libavahi-glib1-0.6.22-68.4.i586.rpm libavahi-glib1-0.6.22-68.4.ppc.rpm libavahi-glib1-0.6.22-68.4.x86_64.rpm libavahi-glib1-32bit-0.6.22-68.4.x86_64.rpm libavahi-glib1-64bit-0.6.22-68.4.ppc.rpm libavahi-gobject-devel-0.6.22-68.4.i586.rpm libavahi-gobject-devel-0.6.22-68.4.ppc.rpm libavahi-gobject-devel-0.6.22-68.4.x86_64.rpm libavahi-gobject0-0.6.22-68.4.i586.rpm libavahi-gobject0-0.6.22-68.4.ppc.rpm libavahi-gobject0-0.6.22-68.4.x86_64.rpm libavahi-ui0-0.6.22-68.4.i586.rpm libavahi-ui0-0.6.22-68.4.ppc.rpm libavahi-ui0-0.6.22-68.4.x86_64.rpm libdns_sd-0.6.22-68.4.i586.rpm libdns_sd-0.6.22-68.4.ppc.rpm libdns_sd-0.6.22-68.4.x86_64.rpm libdns_sd-32bit-0.6.22-68.4.x86_64.rpm libdns_sd-64bit-0.6.22-68.4.ppc.rpm libhowl0-0.6.22-68.4.i586.rpm libhowl0-0.6.22-68.4.ppc.rpm libhowl0-0.6.22-68.4.x86_64.rpm python-avahi-0.6.22-68.4.i586.rpm python-avahi-0.6.22-68.4.ppc.rpm python-avahi-0.6.22-68.4.x86_64.rpm ethtool openSUSE 11.0 This update fixes ethtool to be able to set the wire speed to 10Gbit. ethtool-6-52.2.i586.rpm ethtool-6-52.2.ppc.rpm ethtool-6-52.2.x86_64.rpm nscd openSUSE 11.0 nscd is name service caching daemon, caching requests of applications to resolve usernames, hostnames, etc. This update backports a variety of race condition and database management bugfixes; upgrade if you have nscd stability problems. nscd-2.8-14.5.i586.rpm nscd-2.8-14.5.ppc.rpm nscd-2.8-14.5.x86_64.rpm lighttpd openSUSE 11.0 This update fixes a denial of service vulnerability in lighttpd that can be triggers using slow requests. (CVE-2010-0295) lighttpd-1.4.19-6.6.i586.rpm lighttpd-1.4.19-6.6.ppc.rpm lighttpd-1.4.19-6.6.x86_64.rpm lighttpd-mod_cml-1.4.19-6.6.i586.rpm lighttpd-mod_cml-1.4.19-6.6.ppc.rpm lighttpd-mod_cml-1.4.19-6.6.x86_64.rpm lighttpd-mod_magnet-1.4.19-6.6.i586.rpm lighttpd-mod_magnet-1.4.19-6.6.ppc.rpm lighttpd-mod_magnet-1.4.19-6.6.x86_64.rpm lighttpd-mod_mysql_vhost-1.4.19-6.6.i586.rpm lighttpd-mod_mysql_vhost-1.4.19-6.6.ppc.rpm lighttpd-mod_mysql_vhost-1.4.19-6.6.x86_64.rpm lighttpd-mod_rrdtool-1.4.19-6.6.i586.rpm lighttpd-mod_rrdtool-1.4.19-6.6.ppc.rpm lighttpd-mod_rrdtool-1.4.19-6.6.x86_64.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.6.i586.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.6.ppc.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.6.x86_64.rpm lighttpd-mod_webdav-1.4.19-6.6.i586.rpm lighttpd-mod_webdav-1.4.19-6.6.ppc.rpm lighttpd-mod_webdav-1.4.19-6.6.x86_64.rpm fuse openSUSE 11.0 A race condition in fusermount allowed users to umount any filesystem (CVE-2009-3297). fuse-2.7.2-32.2.i586.rpm fuse-2.7.2-32.2.ppc.rpm fuse-2.7.2-32.2.x86_64.rpm fuse-devel-2.7.2-32.2.i586.rpm fuse-devel-2.7.2-32.2.ppc.rpm fuse-devel-2.7.2-32.2.x86_64.rpm libfuse2-2.7.2-32.2.i586.rpm libfuse2-2.7.2-32.2.ppc.rpm libfuse2-2.7.2-32.2.x86_64.rpm moodle openSUSE 11.0 This patch updates Moodle to the latest stable upstream version (1.9.7) fixing multiple security issues: CVE-2009-4297, CVE-2009-4298, CVE-2009-4299, CVE-2009-4300, CVE-2009-4301, CVE-2009-4302, CVE-2009-4303, CVE-2009-4304, CVE-2009-4305, MSA-09-0030 (New detection of insecure Flash player plugins) The new version also has a completely new , more secure password handling. Beside other features, Admins will be asked to change their passwords next time they log in after upgrading. moodle-1.9.7-0.1.noarch.rpm moodle-af-1.9.7-0.1.noarch.rpm moodle-ar-1.9.7-0.1.noarch.rpm moodle-be-1.9.7-0.1.noarch.rpm moodle-bg-1.9.7-0.1.noarch.rpm moodle-bs-1.9.7-0.1.noarch.rpm moodle-ca-1.9.7-0.1.noarch.rpm moodle-cs-1.9.7-0.1.noarch.rpm moodle-da-1.9.7-0.1.noarch.rpm moodle-de-1.9.7-0.1.noarch.rpm moodle-de_du-1.9.7-0.1.noarch.rpm moodle-el-1.9.7-0.1.noarch.rpm moodle-es-1.9.7-0.1.noarch.rpm moodle-et-1.9.7-0.1.noarch.rpm moodle-eu-1.9.7-0.1.noarch.rpm moodle-fa-1.9.7-0.1.noarch.rpm moodle-fi-1.9.7-0.1.noarch.rpm moodle-fr-1.9.7-0.1.noarch.rpm moodle-ga-1.9.7-0.1.noarch.rpm moodle-gl-1.9.7-0.1.noarch.rpm moodle-he-1.9.7-0.1.noarch.rpm moodle-hi-1.9.7-0.1.noarch.rpm moodle-hr-1.9.7-0.1.noarch.rpm moodle-hu-1.9.7-0.1.noarch.rpm moodle-id-1.9.7-0.1.noarch.rpm moodle-is-1.9.7-0.1.noarch.rpm moodle-it-1.9.7-0.1.noarch.rpm moodle-ja-1.9.7-0.1.noarch.rpm moodle-ka-1.9.7-0.1.noarch.rpm moodle-km-1.9.7-0.1.noarch.rpm moodle-kn-1.9.7-0.1.noarch.rpm moodle-ko-1.9.7-0.1.noarch.rpm moodle-lt-1.9.7-0.1.noarch.rpm moodle-lv-1.9.7-0.1.noarch.rpm moodle-mi_tn-1.9.7-0.1.noarch.rpm moodle-ms-1.9.7-0.1.noarch.rpm moodle-nl-1.9.7-0.1.noarch.rpm moodle-nn-1.9.7-0.1.noarch.rpm moodle-no-1.9.7-0.1.noarch.rpm moodle-pl-1.9.7-0.1.noarch.rpm moodle-pt-1.9.7-0.1.noarch.rpm moodle-ro-1.9.7-0.1.noarch.rpm moodle-ru-1.9.7-0.1.noarch.rpm moodle-sk-1.9.7-0.1.noarch.rpm moodle-sl-1.9.7-0.1.noarch.rpm moodle-so-1.9.7-0.1.noarch.rpm moodle-sq-1.9.7-0.1.noarch.rpm moodle-sr-1.9.7-0.1.noarch.rpm moodle-sv-1.9.7-0.1.noarch.rpm moodle-th-1.9.7-0.1.noarch.rpm moodle-tl-1.9.7-0.1.noarch.rpm moodle-tr-1.9.7-0.1.noarch.rpm moodle-uk-1.9.7-0.1.noarch.rpm moodle-vi-1.9.7-0.1.noarch.rpm moodle-zh_cn-1.9.7-0.1.noarch.rpm java-1_6_0-sun openSUSE 11.0 Sun Java 6 was updated to Update 18. To our knowledge, no security bugs are fixed, but a lot of non-security bugs. Also the timezone data was bumped to Olson timezone data 2009s. See also http://java.sun.com/javase/6/webnotes/6u18.html for more details. java-1_6_0-sun-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-1.6.0.u18-0.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u18-0.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u18-0.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u18-0.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u18-0.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-plugin-1.6.0.u18-0.1.x86_64.rpm java-1_6_0-sun-src-1.6.0.u18-0.1.i586.rpm java-1_6_0-sun-src-1.6.0.u18-0.1.x86_64.rpm pdns-recursor openSUSE 11.0 This update of pdns-rucursor improves the packet parsing code to fix a possible DNS spoofing vulnerability (CVE-2009-4010) and a remote buffer overflow that could give the ability to execute arbitrary code (CVE-2009-4009). pdns-recursor-3.1.5-14.4.i586.rpm pdns-recursor-3.1.5-14.4.ppc.rpm pdns-recursor-3.1.5-14.4.x86_64.rpm horde openSUSE 11.0 This update of horde fixes: - CVE-2009-3236: CVSS v2 Base Score: 5.0: Overwrite arbitrary files and execute PHP code - CVE-2009-3237: CVSS v2 Base Score: 5.0: Cross-Site Scripting (XSS) - CVE-2009-3701: CVSS v2 Base Score: 4.3: Cross-Site Scripting (XSS) - CVE-2009-4363: CVSS v2 Base Score: 4.3: Cross-Site Scripting (XSS) horde-3.1.9-0.3.noarch.rpm kbuild openSUSE 11.0 This update fixes a crash on the build of virtualbox-ose. kbuild-0.1.2svn1480-15.2.i586.rpm kbuild-0.1.2svn1480-15.2.ppc.rpm kbuild-0.1.2svn1480-15.2.x86_64.rpm pango openSUSE 11.0 Long glyph string could trigger a heap-based buffer overflow in pango (CVE-2009-1194). pango-1.20.1-20.2.i586.rpm pango-1.20.1-20.2.ppc.rpm pango-1.20.1-20.2.x86_64.rpm pango-32bit-1.20.1-20.2.x86_64.rpm pango-64bit-1.20.1-20.2.ppc.rpm pango-devel-1.20.1-20.2.i586.rpm pango-devel-1.20.1-20.2.ppc.rpm pango-devel-1.20.1-20.2.x86_64.rpm pango-devel-64bit-1.20.1-20.2.ppc.rpm pango-doc-1.20.1-20.2.i586.rpm pango-doc-1.20.1-20.2.ppc.rpm pango-doc-1.20.1-20.2.x86_64.rpm pango-module-thai-lang-1.20.1-20.2.i586.rpm pango-module-thai-lang-1.20.1-20.2.ppc.rpm pango-module-thai-lang-1.20.1-20.2.x86_64.rpm acroread-cmaps openSUSE 11.0 The last Adobe Acrobat Reader was released without Character Maps packages. This update delivers them. acroread-cmaps-9.3-0.1.noarch.rpm acroread-fonts-ja-9.3-0.1.noarch.rpm acroread-fonts-ko-9.3-0.1.noarch.rpm acroread-fonts-zh_CN-9.3-0.1.noarch.rpm acroread-fonts-zh_TW-9.3-0.1.noarch.rpm kernel openSUSE 11.0 This kernel update for openSUSE 11.0 fixes some bugs and several security problems. The following security issues are fixed: CVE-2009-4536: drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload. CVE-2009-4538: drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets. CVE-2010-0007: Missing CAP_NET_ADMIN checks in the ebtables netfilter code might have allowed local attackers to modify bridge firewall settings. CVE-2010-0003: An information leakage on fatal signals on x86_64 machines was fixed. CVE-2009-4138: drivers/firewire/ohci.c in the Linux kernel, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field. CVE-2009-4308: The ext4_decode_error function in fs/ext4/super.c in the ext4 filesystem in the Linux kernel before 2.6.32 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference), and possibly have unspecified other impact, via a crafted read-only filesystem that lacks a journal. CVE-2009-3939: The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file. CVE-2009-4021: The fuse_direct_io function in fs/fuse/file.c in the fuse subsystem in the Linux kernel before 2.6.32-rc7 might allow attackers to cause a denial of service (invalid pointer dereference and OOPS) via vectors possibly related to a memory-consumption attack. CVE-2009-3547: A race condition in the pipe(2) systemcall could be used by local attackers to hang the machine. The kernel in Moblin 2.0 uses NULL ptr protection which avoids code execution possbilities. CVE-2009-2903: Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x through 2.6.31, when the appletalk and ipddp modules are loaded but the ipddp"N" device is not found, allows remote attackers to cause a denial of service (memory consumption) via IP-DDP datagrams. CVE-2009-3621: net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system hang) by creating an abstract-namespace AF_UNIX listening socket, performing a shutdown operation on this socket, and then performing a series of connect operations to this socket. CVE-2009-3612: The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. CVE-2009-3620: The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls. CVE-2009-3726: The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remote NFS servers to cause a denial of service (NULL pointer dereference and panic) by sending a certain response containing incorrect file attributes, which trigger attempted use of an open file that lacks NFSv4 state. CVE-2009-3286: NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does not properly clean up an inode when an O_EXCL create fails, which causes files to be created with insecure settings such as setuid bits, and possibly allows local users to gain privileges, related to the execution of the do_open_permission function even when a create fails. CVE-2009-2910: arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode. CVE-2009-3238: The get_random_int function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to "return the same value over and over again for long stretches of time." CVE-2009-2848: The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current->clear_child_tid pointer, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a clone system call with CLONE_CHILD_SETTID or CLONE_CHILD_CLEARTID enabled, which is not properly handled during thread creation and exit. CVE-2009-3002: The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c. CVE-2009-1633: Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service (memory corruption) and possibly have unspecified other impact via (1) a malformed Unicode string, related to Unicode string area alignment in fs/cifs/sess.c; or (2) long Unicode characters, related to fs/cifs/cifssmb.c and the cifs_readdir function in fs/cifs/readdir.c. acerhk-kmp-debug-0.5.35_2.6.25.20_0.6-98.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.6-4.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.6-4.1.x86_64.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.6-108.1.i586.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.6-108.1.x86_64.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.6-2.1.i586.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.6-2.1.x86_64.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.6-4.1.i586.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.6-4.1.x86_64.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.6-13.3.i586.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.6-13.3.x86_64.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.6-42.1.i586.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.6-42.1.x86_64.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.6-0.2.i586.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.6-0.2.x86_64.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.6-1.1.i586.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.6-1.1.x86_64.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.6-63.1.i586.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.6-63.1.x86_64.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.6-66.1.i586.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.6-66.1.x86_64.rpm 1 kernel-debug-2.6.25.20-0.6.i586.rpm 1 kernel-debug-2.6.25.20-0.6.x86_64.rpm 1 kernel-default-2.6.25.20-0.6.i586.rpm 1 kernel-default-2.6.25.20-0.6.ppc.rpm 1 kernel-default-2.6.25.20-0.6.x86_64.rpm 1 kernel-docs-2.6.25.20-0.6.noarch.rpm 1 kernel-kdump-2.6.25.20-0.6.ppc.rpm 1 kernel-pae-2.6.25.20-0.6.i586.rpm 1 kernel-ppc64-2.6.25.20-0.6.ppc.rpm 1 kernel-ps3-2.6.25.20-0.6.ppc.rpm 1 kernel-source-2.6.25.20-0.6.i586.rpm 1 kernel-source-2.6.25.20-0.6.ppc.rpm 1 kernel-source-2.6.25.20-0.6.x86_64.rpm 1 kernel-syms-2.6.25.20-0.6.i586.rpm 1 kernel-syms-2.6.25.20-0.6.ppc.rpm 1 kernel-syms-2.6.25.20-0.6.x86_64.rpm 1 kernel-vanilla-2.6.25.20-0.6.i586.rpm 1 kernel-vanilla-2.6.25.20-0.6.ppc.rpm 1 kernel-vanilla-2.6.25.20-0.6.x86_64.rpm 1 kernel-xen-2.6.25.20-0.6.i586.rpm 1 kernel-xen-2.6.25.20-0.6.x86_64.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.6-7.1.i586.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.6-7.1.x86_64.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.6-0.4.i586.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.6-0.4.x86_64.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.6-1.1.i586.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.6-1.1.x86_64.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.6-4.1.i586.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.6-4.1.x86_64.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.6-207.1.i586.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.6-207.1.x86_64.rpm 1 tpctl-kmp-debug-4.17_2.6.25.20_0.6-189.1.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.6-2.4.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.6-2.4.x86_64.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.6-33.5.i586.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.6-33.5.x86_64.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.6-21.1.i586.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.6-21.1.x86_64.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.6-107.1.i586.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.6-107.1.x86_64.rpm 1 flash-player openSUSE 11.0 Insufficient checks in flash-player allowed malicious flash applets to create illegal cross-domain requests (CVE-2010-0186). The update also fixes a denial of service condition (CVE-2010-0187). flash-player-10.0.45.2-0.1.i586.rpm osc openSUSE 11.0 This version supports secure https connections, proxy support and new features for creating maintenance updates. osc-0.125.5-0.1.i586.rpm osc-0.125.5-0.1.ppc.rpm osc-0.125.5-0.1.x86_64.rpm python-keyring-0.2-0.1.i586.rpm python-keyring-0.2-0.1.ppc.rpm python-keyring-0.2-0.1.x86_64.rpm python-keyring-gnome-0.2-0.1.i586.rpm python-keyring-gnome-0.2-0.1.ppc.rpm python-keyring-gnome-0.2-0.1.x86_64.rpm python-keyring-kde-0.2-0.1.i586.rpm python-keyring-kde-0.2-0.1.ppc.rpm python-keyring-kde-0.2-0.1.x86_64.rpm python-m2crypto-0.19.1-1.1.i586.rpm python-m2crypto-0.19.1-1.1.ppc.rpm python-m2crypto-0.19.1-1.1.x86_64.rpm build openSUSE 11.0 This updates added support for new kiwi 4.1 and contains some bugfixes. build-2010.02.08-0.1.noarch.rpm libexpat0 openSUSE 11.0 Specially crafted XML files could crash applications that use expat to parse such files. CVE-2009-2625: CVSS v2 Base Score: 5.0 CVE-2009-3560: CVSS v2 Base Score: 5.0 libexpat0-1.95.8-73.2.i586.rpm libexpat0-1.95.8-73.2.ppc.rpm libexpat0-1.95.8-73.2.x86_64.rpm libexpat0-32bit-1.95.8-73.2.x86_64.rpm libexpat0-64bit-1.95.8-73.2.ppc.rpm apache2-mod_php5 openSUSE 11.0 This update of php5 fixes: CVE-2008-5624: CVSS v2 Base Score: 7.5 (HIGH) (AV:N/AC:L/Au:N/C:P/I:P/A:P): Permissions, Privileges, and Access Control (CWE-264) CVE-2008-5625: CVSS v2 Base Score: 7.5 (HIGH) (AV:N/AC:L/Au:N/C:P/I:P/A:P): Permissions, Privileges, and Access Control (CWE-264) CVE-2008-5814: CVSS v2 Base Score: 2.6 (LOW) (AV:N/AC:H/Au:N/C:N/I:P/A:N): Cross-Site Scripting (XSS) (CWE-79) CVE-2009-2626: CVSS v2 Base Score: 6.4 (MEDIUM) (AV:N/AC:L/Au:N/C:P/I:N/A:P): Other (CWE-Other) CVE-2009-2687: CVSS v2 Base Score: 4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:N/I:N/A:P): Input Validation (CWE-20) CVE-2009-3546: CVSS v2 Base Score: 4.4 (moderate) (AV:L/AC:M/Au:N/C:P/I:P/A:P): Other (CWE-Other) CVE-2009-4017: CVSS v2 Base Score: 5.0 (moderate) (AV:N/AC:L/Au:N/C:N/I:N/A:P): Other (CWE-Other) CVE-2009-4142: CVSS v2 Base Score: 4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:N/I:P/A:N): Cross-Site Scripting (XSS) (CWE-79) apache2-mod_php5-5.2.12-0.1.i586.rpm apache2-mod_php5-5.2.12-0.1.ppc.rpm apache2-mod_php5-5.2.12-0.1.x86_64.rpm php5-5.2.12-0.1.i586.rpm php5-5.2.12-0.1.ppc.rpm php5-5.2.12-0.1.x86_64.rpm php5-bcmath-5.2.12-0.1.i586.rpm php5-bcmath-5.2.12-0.1.ppc.rpm php5-bcmath-5.2.12-0.1.x86_64.rpm php5-bz2-5.2.12-0.1.i586.rpm php5-bz2-5.2.12-0.1.ppc.rpm php5-bz2-5.2.12-0.1.x86_64.rpm php5-calendar-5.2.12-0.1.i586.rpm php5-calendar-5.2.12-0.1.ppc.rpm php5-calendar-5.2.12-0.1.x86_64.rpm php5-ctype-5.2.12-0.1.i586.rpm php5-ctype-5.2.12-0.1.ppc.rpm php5-ctype-5.2.12-0.1.x86_64.rpm php5-curl-5.2.12-0.1.i586.rpm php5-curl-5.2.12-0.1.ppc.rpm php5-curl-5.2.12-0.1.x86_64.rpm php5-dba-5.2.12-0.1.i586.rpm php5-dba-5.2.12-0.1.ppc.rpm php5-dba-5.2.12-0.1.x86_64.rpm php5-dbase-5.2.12-0.1.i586.rpm php5-dbase-5.2.12-0.1.ppc.rpm php5-dbase-5.2.12-0.1.x86_64.rpm php5-devel-5.2.12-0.1.i586.rpm php5-devel-5.2.12-0.1.ppc.rpm php5-devel-5.2.12-0.1.x86_64.rpm php5-dom-5.2.12-0.1.i586.rpm php5-dom-5.2.12-0.1.ppc.rpm php5-dom-5.2.12-0.1.x86_64.rpm php5-exif-5.2.12-0.1.i586.rpm php5-exif-5.2.12-0.1.ppc.rpm php5-exif-5.2.12-0.1.x86_64.rpm php5-fastcgi-5.2.12-0.1.i586.rpm php5-fastcgi-5.2.12-0.1.ppc.rpm php5-fastcgi-5.2.12-0.1.x86_64.rpm php5-ftp-5.2.12-0.1.i586.rpm php5-ftp-5.2.12-0.1.ppc.rpm php5-ftp-5.2.12-0.1.x86_64.rpm php5-gd-5.2.12-0.1.i586.rpm php5-gd-5.2.12-0.1.ppc.rpm php5-gd-5.2.12-0.1.x86_64.rpm php5-gettext-5.2.12-0.1.i586.rpm php5-gettext-5.2.12-0.1.ppc.rpm php5-gettext-5.2.12-0.1.x86_64.rpm php5-gmp-5.2.12-0.1.i586.rpm php5-gmp-5.2.12-0.1.ppc.rpm php5-gmp-5.2.12-0.1.x86_64.rpm php5-hash-5.2.12-0.1.i586.rpm php5-hash-5.2.12-0.1.ppc.rpm php5-hash-5.2.12-0.1.x86_64.rpm php5-iconv-5.2.12-0.1.i586.rpm php5-iconv-5.2.12-0.1.ppc.rpm php5-iconv-5.2.12-0.1.x86_64.rpm php5-imap-5.2.12-0.1.i586.rpm php5-imap-5.2.12-0.1.ppc.rpm php5-imap-5.2.12-0.1.x86_64.rpm php5-json-5.2.12-0.1.i586.rpm php5-json-5.2.12-0.1.ppc.rpm php5-json-5.2.12-0.1.x86_64.rpm php5-ldap-5.2.12-0.1.i586.rpm php5-ldap-5.2.12-0.1.ppc.rpm php5-ldap-5.2.12-0.1.x86_64.rpm php5-mbstring-5.2.12-0.1.i586.rpm php5-mbstring-5.2.12-0.1.ppc.rpm php5-mbstring-5.2.12-0.1.x86_64.rpm php5-mcrypt-5.2.12-0.1.i586.rpm php5-mcrypt-5.2.12-0.1.ppc.rpm php5-mcrypt-5.2.12-0.1.x86_64.rpm php5-mysql-5.2.12-0.1.i586.rpm php5-mysql-5.2.12-0.1.ppc.rpm php5-mysql-5.2.12-0.1.x86_64.rpm php5-ncurses-5.2.12-0.1.i586.rpm php5-ncurses-5.2.12-0.1.ppc.rpm php5-ncurses-5.2.12-0.1.x86_64.rpm php5-odbc-5.2.12-0.1.i586.rpm php5-odbc-5.2.12-0.1.ppc.rpm php5-odbc-5.2.12-0.1.x86_64.rpm php5-openssl-5.2.12-0.1.i586.rpm php5-openssl-5.2.12-0.1.ppc.rpm php5-openssl-5.2.12-0.1.x86_64.rpm php5-pcntl-5.2.12-0.1.i586.rpm php5-pcntl-5.2.12-0.1.ppc.rpm php5-pcntl-5.2.12-0.1.x86_64.rpm php5-pdo-5.2.12-0.1.i586.rpm php5-pdo-5.2.12-0.1.ppc.rpm php5-pdo-5.2.12-0.1.x86_64.rpm php5-pear-5.2.12-0.1.i586.rpm php5-pear-5.2.12-0.1.ppc.rpm php5-pear-5.2.12-0.1.x86_64.rpm php5-pgsql-5.2.12-0.1.i586.rpm php5-pgsql-5.2.12-0.1.ppc.rpm php5-pgsql-5.2.12-0.1.x86_64.rpm php5-posix-5.2.12-0.1.i586.rpm php5-posix-5.2.12-0.1.ppc.rpm php5-posix-5.2.12-0.1.x86_64.rpm php5-pspell-5.2.12-0.1.i586.rpm php5-pspell-5.2.12-0.1.ppc.rpm php5-pspell-5.2.12-0.1.x86_64.rpm php5-readline-5.2.12-0.1.i586.rpm php5-readline-5.2.12-0.1.ppc.rpm php5-readline-5.2.12-0.1.x86_64.rpm php5-shmop-5.2.12-0.1.i586.rpm php5-shmop-5.2.12-0.1.ppc.rpm php5-shmop-5.2.12-0.1.x86_64.rpm php5-snmp-5.2.12-0.1.i586.rpm php5-snmp-5.2.12-0.1.ppc.rpm php5-snmp-5.2.12-0.1.x86_64.rpm php5-soap-5.2.12-0.1.i586.rpm php5-soap-5.2.12-0.1.ppc.rpm php5-soap-5.2.12-0.1.x86_64.rpm php5-sockets-5.2.12-0.1.i586.rpm php5-sockets-5.2.12-0.1.ppc.rpm php5-sockets-5.2.12-0.1.x86_64.rpm php5-sqlite-5.2.12-0.1.i586.rpm php5-sqlite-5.2.12-0.1.ppc.rpm php5-sqlite-5.2.12-0.1.x86_64.rpm php5-suhosin-5.2.12-0.1.i586.rpm php5-suhosin-5.2.12-0.1.ppc.rpm php5-suhosin-5.2.12-0.1.x86_64.rpm php5-sysvmsg-5.2.12-0.1.i586.rpm php5-sysvmsg-5.2.12-0.1.ppc.rpm php5-sysvmsg-5.2.12-0.1.x86_64.rpm php5-sysvsem-5.2.12-0.1.i586.rpm php5-sysvsem-5.2.12-0.1.ppc.rpm php5-sysvsem-5.2.12-0.1.x86_64.rpm php5-sysvshm-5.2.12-0.1.i586.rpm php5-sysvshm-5.2.12-0.1.ppc.rpm php5-sysvshm-5.2.12-0.1.x86_64.rpm php5-tidy-5.2.12-0.1.i586.rpm php5-tidy-5.2.12-0.1.ppc.rpm php5-tidy-5.2.12-0.1.x86_64.rpm php5-tokenizer-5.2.12-0.1.i586.rpm php5-tokenizer-5.2.12-0.1.ppc.rpm php5-tokenizer-5.2.12-0.1.x86_64.rpm php5-wddx-5.2.12-0.1.i586.rpm php5-wddx-5.2.12-0.1.ppc.rpm php5-wddx-5.2.12-0.1.x86_64.rpm php5-xmlreader-5.2.12-0.1.i586.rpm php5-xmlreader-5.2.12-0.1.ppc.rpm php5-xmlreader-5.2.12-0.1.x86_64.rpm php5-xmlrpc-5.2.12-0.1.i586.rpm php5-xmlrpc-5.2.12-0.1.ppc.rpm php5-xmlrpc-5.2.12-0.1.x86_64.rpm php5-xmlwriter-5.2.12-0.1.i586.rpm php5-xmlwriter-5.2.12-0.1.ppc.rpm php5-xmlwriter-5.2.12-0.1.x86_64.rpm php5-xsl-5.2.12-0.1.i586.rpm php5-xsl-5.2.12-0.1.ppc.rpm php5-xsl-5.2.12-0.1.x86_64.rpm php5-zip-5.2.12-0.1.i586.rpm php5-zip-5.2.12-0.1.ppc.rpm php5-zip-5.2.12-0.1.x86_64.rpm php5-zlib-5.2.12-0.1.i586.rpm php5-zlib-5.2.12-0.1.ppc.rpm php5-zlib-5.2.12-0.1.x86_64.rpm gmime openSUSE 11.0 This update of gmime fixes a buffer overflow in the GMIME_UUENCODE_LEN macro which allowed possible code execution while processing uuencoded data. (CVE-2010-0409: CVSS v2 Base Score: 5.8) gmime-2.2.18-28.2.i586.rpm gmime-2.2.18-28.2.ppc.rpm gmime-2.2.18-28.2.x86_64.rpm gmime-devel-2.2.18-28.2.i586.rpm gmime-devel-2.2.18-28.2.ppc.rpm gmime-devel-2.2.18-28.2.x86_64.rpm gmime-doc-2.2.18-28.2.i586.rpm gmime-doc-2.2.18-28.2.ppc.rpm gmime-doc-2.2.18-28.2.x86_64.rpm gmime-sharp-2.2.18-28.2.i586.rpm gmime-sharp-2.2.18-28.2.ppc.rpm gmime-sharp-2.2.18-28.2.x86_64.rpm libgmime-2_0-3-2.2.18-28.2.i586.rpm libgmime-2_0-3-2.2.18-28.2.ppc.rpm libgmime-2_0-3-2.2.18-28.2.x86_64.rpm MozillaFirefox openSUSE 11.0 Mozilla Firefox was upgraded to version 3.0.18, fixing various bugs and security issues. Following security issues have been fixed: MFSA 2010-01 / CVE-2010-0159: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MFSA 2010-02 / CVE-2010-0160: Security researcher Orlando Barrera II reported via TippingPoint's Zero Day Initiative that Mozilla's implementation of Web Workers contained an error in its handling of array data types when processing posted messages. This error could be used by an attacker to corrupt heap memory and crash the browser, potentially running arbitrary code on a victim's computer. MFSA 2010-03 / CVE-2009-1571: Security researcher Alin Rad Pop of Secunia Research reported that the HTML parser incorrectly freed used memory when insufficient space was available to process remaining input. Under such circumstances, memory occupied by in-use objects was freed and could later be filled with attacker-controlled text. These conditions could result in the execution or arbitrary code if methods on the freed objects were subsequently called. MFSA 2010-04 / CVE-2009-3988: Security researcher Hidetake Jo of Microsoft Vulnerability Research reported that the properties set on an object passed to showModalDialog were readable by the document contained in the dialog, even when the document was from a different domain. This is a violation of the same-origin policy and could result in a website running untrusted JavaScript if it assumed the dialogArguments could not be initialized by another site. An anonymous security researcher, via TippingPoint's Zero Day Initiative, also independently reported this issue to Mozilla. MFSA 2010-05 / CVE-2010-0162: Mozilla security researcher Georgi Guninski reported that when a SVG document which is served with Content-Type: application/octet-stream is embedded into another document via an <embed> tag with type="image/svg+xml", the Content-Type is ignored and the SVG document is processed normally. A website which allows arbitrary binary data to be uploaded but which relies on Content-Type: application/octet-stream to prevent script execution could have such protection bypassed. An attacker could upload a SVG document containing JavaScript as a binary file to a website, embed the SVG document into a malicous page on another site, and gain access to the script environment from the SVG-serving site, bypassing the same-origin policy. MozillaFirefox-3.0.18-0.1.i586.rpm MozillaFirefox-3.0.18-0.1.ppc.rpm MozillaFirefox-3.0.18-0.1.x86_64.rpm MozillaFirefox-translations-3.0.18-0.1.i586.rpm MozillaFirefox-translations-3.0.18-0.1.ppc.rpm MozillaFirefox-translations-3.0.18-0.1.x86_64.rpm mozilla-xulrunner190-1.9.0.18-0.1.i586.rpm mozilla-xulrunner190-1.9.0.18-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.18-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.18-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.18-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.18-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.18-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.18-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.18-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.18-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.18-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.18-0.1.ppc.rpm rmail openSUSE 11.0 This update of sendmail improves the handling of special-characters in the SSL certificate. (CVE-2009-4565: CVSS v2 Base Score: 7.5) rmail-8.14.3-8.2.i586.rpm rmail-8.14.3-8.2.ppc.rpm rmail-8.14.3-8.2.x86_64.rpm sendmail-8.14.3-8.2.i586.rpm sendmail-8.14.3-8.2.ppc.rpm sendmail-8.14.3-8.2.x86_64.rpm sendmail-devel-8.14.3-8.2.i586.rpm sendmail-devel-8.14.3-8.2.ppc.rpm sendmail-devel-8.14.3-8.2.x86_64.rpm rubygem-actionpack openSUSE 11.0 This update of rubygems fixes two vulnerabilities: - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method strip_tags does not completely protect agains XSS attacks. rubygem-actionpack-1.13.5-71.4.i586.rpm rubygem-actionpack-1.13.5-71.4.ppc.rpm rubygem-actionpack-1.13.5-71.4.x86_64.rpm finch openSUSE 11.0 This update of pidgin fixes various security vulnerabilities - CVE-2010-0013: CVSS v2 Base Score: 4.3: Path Traversal (CWE-22) Remote file disclosure vulnerability by using the MSN protocol. - CVE-2010-0277: CVSS v2 Base Score: 4.9: Resource Management Errors (CWE-399) MSN protocol plugin in libpurple allowed remote attackers to cause a denial of service (memory corruption) at least. - CVE-2010-0420 Same nick names in XMPP MUC lead to a crash in finch. - CVE-2010-0423 A remote denial of service attack (resource consumption) is possible by sending an IM with a lot of smilies in it. finch-2.6.6-0.1.i586.rpm finch-2.6.6-0.1.ppc.rpm finch-2.6.6-0.1.x86_64.rpm finch-devel-2.6.6-0.1.i586.rpm finch-devel-2.6.6-0.1.ppc.rpm finch-devel-2.6.6-0.1.x86_64.rpm libpurple-2.6.6-0.1.i586.rpm libpurple-2.6.6-0.1.ppc.rpm libpurple-2.6.6-0.1.x86_64.rpm libpurple-devel-2.6.6-0.1.i586.rpm libpurple-devel-2.6.6-0.1.ppc.rpm libpurple-devel-2.6.6-0.1.x86_64.rpm libpurple-lang-2.6.6-0.1.i586.rpm libpurple-lang-2.6.6-0.1.ppc.rpm libpurple-lang-2.6.6-0.1.x86_64.rpm libpurple-meanwhile-2.6.6-0.1.i586.rpm libpurple-meanwhile-2.6.6-0.1.ppc.rpm libpurple-meanwhile-2.6.6-0.1.x86_64.rpm libpurple-mono-2.6.6-0.1.i586.rpm libpurple-mono-2.6.6-0.1.ppc.rpm libpurple-mono-2.6.6-0.1.x86_64.rpm pidgin-2.6.6-0.1.i586.rpm pidgin-2.6.6-0.1.ppc.rpm pidgin-2.6.6-0.1.x86_64.rpm pidgin-devel-2.6.6-0.1.i586.rpm pidgin-devel-2.6.6-0.1.ppc.rpm pidgin-devel-2.6.6-0.1.x86_64.rpm acroread openSUSE 11.0 This update of acroread fixes: - CVE-2010-0186: CVSS v2 Base Score: 5.8 Cross-domain request vulnerability - CVE-2010-0188: CVSS v2 Base Score: 6.8 An unspecified vulnerability that possibly allowed remote code execution. acroread-9.3.1-0.1.i586.rpm acroread-cmaps-9.3.1-0.1.noarch.rpm acroread-fonts-ja-9.3.1-0.1.noarch.rpm acroread-fonts-ko-9.3.1-0.1.noarch.rpm acroread-fonts-zh_CN-9.3.1-0.1.noarch.rpm acroread-fonts-zh_TW-9.3.1-0.1.noarch.rpm pidgin-otr openSUSE 11.0 This update contains the missed pidgin-otr dependend package of the last pidgin update. pidgin-otr-3.1.0-87.2.i586.rpm pidgin-otr-3.1.0-87.2.ppc.rpm pidgin-otr-3.1.0-87.2.x86_64.rpm libnetpbm-devel openSUSE 11.0 This update of netpbm fxes a stack-based buffer overflow that could be triggered while processing the contents of XPM headers in image files. (CVE-2009-4274: CVSS v2 Base Score: 5.8 (moderate) (AV:N/AC:M/Au:N/C:N/I:P/A:P): Buffer Errors (CWE-119)) libnetpbm-devel-10.26.44-62.2.i586.rpm libnetpbm-devel-10.26.44-62.2.ppc.rpm libnetpbm-devel-10.26.44-62.2.x86_64.rpm libnetpbm10-10.26.44-62.2.i586.rpm libnetpbm10-10.26.44-62.2.ppc.rpm libnetpbm10-10.26.44-62.2.x86_64.rpm libnetpbm10-32bit-10.26.44-62.2.x86_64.rpm libnetpbm10-64bit-10.26.44-62.2.ppc.rpm netpbm-10.26.44-62.2.i586.rpm netpbm-10.26.44-62.2.ppc.rpm netpbm-10.26.44-62.2.x86_64.rpm sudo openSUSE 11.0 This update fixes two security issues: - CVE-2010-0427:CVSS v2 Base Score: 6.6 Sudo failed to properly reset group permissions, when 'runas_default' option was used. If a local, unprivileged user was authorized by sudoers file to perform their sudo commands under default user account, it could lead to privilege escalation CVE-2010-0426:CVSS v2 Base Score: 6.6 A privilege escalation flaw was found in the way sudo used to check file paths for pseudocommands. If local, unprivileged user was authorized by sudoers file to edit one or more files, it could lead to execution of arbitrary code, with the privileges of privileged system user (root). sudo-1.6.9p15-13.6.i586.rpm sudo-1.6.9p15-13.6.ppc.rpm sudo-1.6.9p15-13.6.x86_64.rpm kernel openSUSE 11.0 The openSUSE 11.0 kernel was updated to fix following security issues: CVE-2009-4020: Stack-based buffer overflow in the hfs subsystem in the Linux kernel 2.6.32 allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem, related to the hfs_readdir function in fs/hfs/dir.c. CVE-2010-0307: The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of service (system crash) via a 32-bit application that attempts to execute a 64-bit application and then triggers a segmentation fault, as demonstrated by amd64_killer, related to the flush_old_exec function. CVE-2010-0622: The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, which allows local users to cause a denial of service (OOPS) and possibly have unspecified other impact via vectors involving modification of the futex value from user space. CVE-2010-0410: drivers/connector/connector.c in the Linux kernel before 2.6.32.8 allows local users to cause a denial of service (memory consumption and system crash) by sending the kernel many NETLINK_CONNECTOR messages. CVE-2010-0415: The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which allows local users to read arbitrary kernel memory locations, cause a denial of service (OOPS), and possibly have unspecified other impact by specifying a node that is not part of the kernel's node set. acerhk-kmp-debug-0.5.35_2.6.25.20_0.7-98.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.7-4.1.i586.rpm 1 acx-kmp-debug-20080210_2.6.25.20_0.7-4.1.x86_64.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.7-108.1.i586.rpm 1 appleir-kmp-debug-1.1_2.6.25.20_0.7-108.1.x86_64.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.7-2.1.i586.rpm 1 at76_usb-kmp-debug-0.17_2.6.25.20_0.7-2.1.x86_64.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.7-4.1.i586.rpm 1 atl2-kmp-debug-2.0.4_2.6.25.20_0.7-4.1.x86_64.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.7-13.3.i586.rpm 1 aufs-kmp-debug-cvs20080429_2.6.25.20_0.7-13.3.x86_64.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.7-42.1.i586.rpm 1 dazuko-kmp-debug-2.3.4.4_2.6.25.20_0.7-42.1.x86_64.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.7-0.2.i586.rpm 1 drbd-kmp-debug-8.2.6_2.6.25.20_0.7-0.2.x86_64.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.7-1.1.i586.rpm 1 gspcav-kmp-debug-01.00.20_2.6.25.20_0.7-1.1.x86_64.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.7-63.1.i586.rpm 1 iscsitarget-kmp-debug-0.4.15_2.6.25.20_0.7-63.1.x86_64.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.7-66.1.i586.rpm 1 ivtv-kmp-debug-1.0.3_2.6.25.20_0.7-66.1.x86_64.rpm 1 kernel-debug-2.6.25.20-0.7.i586.rpm 1 kernel-debug-2.6.25.20-0.7.x86_64.rpm 1 kernel-default-2.6.25.20-0.7.i586.rpm 1 kernel-default-2.6.25.20-0.7.ppc.rpm 1 kernel-default-2.6.25.20-0.7.x86_64.rpm 1 kernel-docs-2.6.25.20-0.7.noarch.rpm 1 kernel-kdump-2.6.25.20-0.7.ppc.rpm 1 kernel-pae-2.6.25.20-0.7.i586.rpm 1 kernel-ppc64-2.6.25.20-0.7.ppc.rpm 1 kernel-ps3-2.6.25.20-0.7.ppc.rpm 1 kernel-source-2.6.25.20-0.7.i586.rpm 1 kernel-source-2.6.25.20-0.7.ppc.rpm 1 kernel-source-2.6.25.20-0.7.x86_64.rpm 1 kernel-syms-2.6.25.20-0.7.i586.rpm 1 kernel-syms-2.6.25.20-0.7.ppc.rpm 1 kernel-syms-2.6.25.20-0.7.x86_64.rpm 1 kernel-vanilla-2.6.25.20-0.7.i586.rpm 1 kernel-vanilla-2.6.25.20-0.7.ppc.rpm 1 kernel-vanilla-2.6.25.20-0.7.x86_64.rpm 1 kernel-xen-2.6.25.20-0.7.i586.rpm 1 kernel-xen-2.6.25.20-0.7.x86_64.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.7-7.1.i586.rpm 1 kqemu-kmp-debug-1.3.0pre11_2.6.25.20_0.7-7.1.x86_64.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.7-0.4.i586.rpm 1 nouveau-kmp-debug-0.10.1.20081112_2.6.25.20_0.7-0.4.x86_64.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.7-1.1.i586.rpm 1 omnibook-kmp-debug-20080313_2.6.25.20_0.7-1.1.x86_64.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.7-4.1.i586.rpm 1 pcc-acpi-kmp-debug-0.9_2.6.25.20_0.7-4.1.x86_64.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.7-207.1.i586.rpm 1 pcfclock-kmp-debug-0.44_2.6.25.20_0.7-207.1.x86_64.rpm 1 tpctl-kmp-debug-4.17_2.6.25.20_0.7-189.1.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.7-2.4.i586.rpm 1 uvcvideo-kmp-debug-r200_2.6.25.20_0.7-2.4.x86_64.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.7-33.5.i586.rpm 1 virtualbox-ose-kmp-debug-1.5.6_2.6.25.20_0.7-33.5.x86_64.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.7-21.1.i586.rpm 1 vmware-kmp-debug-2008.04.14_2.6.25.20_0.7-21.1.x86_64.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.7-107.1.i586.rpm 1 wlan-ng-kmp-debug-0.2.8_2.6.25.20_0.7-107.1.x86_64.rpm 1 OpenOffice_org openSUSE 11.0 This update of OpenOffice_org includes fixes for the following vulnerabilities: - CVE-2009-0217: XML signature weakness - CVE-2009-2949: XPM Import Integer Overflow - CVE-2009-2950: GIF Import Heap Overflow - CVE-2009-3301: MS Word sprmTDefTable Memory Corruption - CVE-2009-3302: MS Word sprmTDefTable Memory Corruption - CVE-2010-0136: In the ooo-build variant of OpenOffice_org VBA Macro support does not honor Macro security settings. OpenOffice_org-2.4.0.14-1.6.i586.rpm OpenOffice_org-2.4.0.14-1.6.ppc.rpm OpenOffice_org-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-base-2.4.0.14-1.6.i586.rpm OpenOffice_org-base-2.4.0.14-1.6.ppc.rpm OpenOffice_org-base-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.6.i586.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.6.ppc.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-calc-2.4.0.14-1.6.i586.rpm OpenOffice_org-calc-2.4.0.14-1.6.ppc.rpm OpenOffice_org-calc-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-devel-2.4.0.14-1.6.i586.rpm OpenOffice_org-devel-2.4.0.14-1.6.ppc.rpm OpenOffice_org-devel-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-draw-2.4.0.14-1.6.i586.rpm OpenOffice_org-draw-2.4.0.14-1.6.ppc.rpm OpenOffice_org-draw-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-filters-2.4.0.14-1.6.i586.rpm OpenOffice_org-filters-2.4.0.14-1.6.ppc.rpm OpenOffice_org-filters-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-gnome-2.4.0.14-1.6.i586.rpm OpenOffice_org-gnome-2.4.0.14-1.6.ppc.rpm OpenOffice_org-gnome-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.6.i586.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.6.ppc.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-impress-2.4.0.14-1.6.i586.rpm OpenOffice_org-impress-2.4.0.14-1.6.ppc.rpm OpenOffice_org-impress-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-kde-2.4.0.14-1.6.i586.rpm OpenOffice_org-kde-2.4.0.14-1.6.ppc.rpm OpenOffice_org-kde-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-mailmerge-2.4.0.14-1.6.i586.rpm OpenOffice_org-mailmerge-2.4.0.14-1.6.ppc.rpm OpenOffice_org-mailmerge-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-math-2.4.0.14-1.6.i586.rpm OpenOffice_org-math-2.4.0.14-1.6.ppc.rpm OpenOffice_org-math-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-mono-2.4.0.14-1.6.i586.rpm OpenOffice_org-mono-2.4.0.14-1.6.ppc.rpm OpenOffice_org-mono-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-officebean-2.4.0.14-1.6.i586.rpm OpenOffice_org-officebean-2.4.0.14-1.6.ppc.rpm OpenOffice_org-officebean-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-pyuno-2.4.0.14-1.6.i586.rpm OpenOffice_org-pyuno-2.4.0.14-1.6.ppc.rpm OpenOffice_org-pyuno-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-sdk-2.4.0.14-1.6.i586.rpm OpenOffice_org-sdk-2.4.0.14-1.6.ppc.rpm OpenOffice_org-sdk-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.6.i586.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.6.ppc.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-testtool-2.4.0.14-1.6.i586.rpm OpenOffice_org-testtool-2.4.0.14-1.6.ppc.rpm OpenOffice_org-testtool-2.4.0.14-1.6.x86_64.rpm OpenOffice_org-writer-2.4.0.14-1.6.i586.rpm OpenOffice_org-writer-2.4.0.14-1.6.ppc.rpm OpenOffice_org-writer-2.4.0.14-1.6.x86_64.rpm wireshark openSUSE 11.0 This update of wireshark fixes: - CVE-2009-4376: Remote attackers could potentially trigger a buffer overflow in the Daintree SNA file parser. - CVE-2009-4377: Specially crafted packets could cause the SMB and SMB2 dissector to crash wireshark. - CVE-2009-2563: Unspecified vulnerability in the Infiniband dissector allows remote attackers to cause a denial of service. - CVE-2010-0304: Several buffer overflows in the LWRES dissector. wireshark-1.0.0-17.21.i586.rpm wireshark-1.0.0-17.21.ppc.rpm wireshark-1.0.0-17.21.x86_64.rpm wireshark-devel-1.0.0-17.21.i586.rpm wireshark-devel-1.0.0-17.21.ppc.rpm wireshark-devel-1.0.0-17.21.x86_64.rpm cron openSUSE 11.0 This update of cron fixes a race condition in crontab that can be used to change the time-stamp of arbitrary files while editing the crontab entry. CVE-2010-0424: CVSS v2 Base Score: 3.6 Additionally the return value of initgroups() is verified now. cron-4.1-172.2.i586.rpm cron-4.1-172.2.ppc.rpm cron-4.1-172.2.x86_64.rpm cups openSUSE 11.0 lppasswd when running setuid or setgid still honors environment variables that specify the location of message files. Local attackers could exploit that to gather information by using crafted format strings (CVE-2010-0393). The previous fix for a use-after-free vulnerability (CVE-2009-3553) was incomplete (CVE-2010-0302). cups-1.3.7-25.17.i586.rpm cups-1.3.7-25.17.ppc.rpm cups-1.3.7-25.17.x86_64.rpm cups-client-1.3.7-25.17.i586.rpm cups-client-1.3.7-25.17.ppc.rpm cups-client-1.3.7-25.17.x86_64.rpm cups-devel-1.3.7-25.17.i586.rpm cups-devel-1.3.7-25.17.ppc.rpm cups-devel-1.3.7-25.17.x86_64.rpm cups-libs-1.3.7-25.17.i586.rpm cups-libs-1.3.7-25.17.ppc.rpm cups-libs-1.3.7-25.17.x86_64.rpm cups-libs-32bit-1.3.7-25.17.x86_64.rpm cups-libs-64bit-1.3.7-25.17.ppc.rpm libpulse-browse0 openSUSE 11.0 Due to a race condition in pulseaudio a local attacker could make pulseaudio change ownership and permissions of arbitrary files. The problem is only security relevant if pulseaudio is run in "system mode" which is not the case by default (CVE-2009-1299). libpulse-browse0-0.9.10-26.7.i586.rpm libpulse-browse0-0.9.10-26.7.ppc.rpm libpulse-browse0-0.9.10-26.7.x86_64.rpm libpulse-devel-0.9.10-26.7.i586.rpm libpulse-devel-0.9.10-26.7.ppc.rpm libpulse-devel-0.9.10-26.7.x86_64.rpm libpulse-mainloop-glib0-0.9.10-26.7.i586.rpm libpulse-mainloop-glib0-0.9.10-26.7.ppc.rpm libpulse-mainloop-glib0-0.9.10-26.7.x86_64.rpm libpulse0-0.9.10-26.7.i586.rpm libpulse0-0.9.10-26.7.ppc.rpm libpulse0-0.9.10-26.7.x86_64.rpm libpulse0-32bit-0.9.10-26.7.x86_64.rpm libpulse0-64bit-0.9.10-26.7.ppc.rpm libpulsecore4-0.9.10-26.7.i586.rpm libpulsecore4-0.9.10-26.7.ppc.rpm libpulsecore4-0.9.10-26.7.x86_64.rpm pulseaudio-0.9.10-26.7.i586.rpm pulseaudio-0.9.10-26.7.ppc.rpm pulseaudio-0.9.10-26.7.x86_64.rpm pulseaudio-esound-compat-0.9.10-26.7.i586.rpm pulseaudio-esound-compat-0.9.10-26.7.ppc.rpm pulseaudio-esound-compat-0.9.10-26.7.x86_64.rpm pulseaudio-module-bluetooth-0.9.10-26.7.i586.rpm pulseaudio-module-bluetooth-0.9.10-26.7.ppc.rpm pulseaudio-module-bluetooth-0.9.10-26.7.x86_64.rpm pulseaudio-module-gconf-0.9.10-26.7.i586.rpm pulseaudio-module-gconf-0.9.10-26.7.ppc.rpm pulseaudio-module-gconf-0.9.10-26.7.x86_64.rpm pulseaudio-module-jack-0.9.10-26.7.i586.rpm pulseaudio-module-jack-0.9.10-26.7.ppc.rpm pulseaudio-module-jack-0.9.10-26.7.x86_64.rpm pulseaudio-module-lirc-0.9.10-26.7.i586.rpm pulseaudio-module-lirc-0.9.10-26.7.ppc.rpm pulseaudio-module-lirc-0.9.10-26.7.x86_64.rpm pulseaudio-module-x11-0.9.10-26.7.i586.rpm pulseaudio-module-x11-0.9.10-26.7.ppc.rpm pulseaudio-module-x11-0.9.10-26.7.x86_64.rpm pulseaudio-module-zeroconf-0.9.10-26.7.i586.rpm pulseaudio-module-zeroconf-0.9.10-26.7.ppc.rpm pulseaudio-module-zeroconf-0.9.10-26.7.x86_64.rpm pulseaudio-utils-0.9.10-26.7.i586.rpm pulseaudio-utils-0.9.10-26.7.ppc.rpm pulseaudio-utils-0.9.10-26.7.x86_64.rpm squid openSUSE 11.0 The following vulnerabilities have been fixed in squid: - CVE-2009-2855: DoS via special crafted auth header - CVE-2010-0308: DoS via invalid DoS header - CVE-2009-2622: DoS in squid3 via broken HTTP handling - CVE-2009-2621: DoS in squid3 via not enforced "buffer limits and related bound checks" squid-2.6.STABLE20-12.3.i586.rpm squid-2.6.STABLE20-12.3.ppc.rpm squid-2.6.STABLE20-12.3.x86_64.rpm squid-beta-3.0-419.2.i586.rpm squid-beta-3.0-419.2.ppc.rpm squid-beta-3.0-419.2.x86_64.rpm squid3-3.0.STABLE5-11.3.i586.rpm squid3-3.0.STABLE5-11.3.ppc.rpm squid3-3.0.STABLE5-11.3.x86_64.rpm cifs-mount openSUSE 11.0 With enabled "wide links" samba follows symbolic links on the server side, therefore allowing clients to overwrite arbitrary files (CVE-2010-0926). This update changes the default setting to have "wide links" disabled by default. The new default only works if "wide links" is not set explicitly in smb.conf. Due to a race condition in mount.cifs a local attacker could corrupt /etc/mtab if mount.cifs is installed setuid root. mount.cifs is not setuid root by default and it's not recommended to change that (CVE-2010-0547). cifs-mount-3.2.4-4.9.i586.rpm cifs-mount-3.2.4-4.9.ppc.rpm cifs-mount-3.2.4-4.9.x86_64.rpm ldapsmb-1.34b-195.14.i586.rpm ldapsmb-1.34b-195.14.ppc.rpm ldapsmb-1.34b-195.14.x86_64.rpm libnetapi-devel-3.2.4-4.9.i586.rpm libnetapi-devel-3.2.4-4.9.ppc.rpm libnetapi-devel-3.2.4-4.9.x86_64.rpm libnetapi0-3.2.4-4.9.i586.rpm libnetapi0-3.2.4-4.9.ppc.rpm libnetapi0-3.2.4-4.9.x86_64.rpm libsmbclient-devel-3.2.4-4.9.i586.rpm libsmbclient-devel-3.2.4-4.9.ppc.rpm libsmbclient-devel-3.2.4-4.9.x86_64.rpm libsmbclient0-3.2.4-4.9.i586.rpm libsmbclient0-3.2.4-4.9.ppc.rpm libsmbclient0-3.2.4-4.9.x86_64.rpm libsmbclient0-32bit-3.2.4-4.9.x86_64.rpm libsmbclient0-64bit-3.2.4-4.9.ppc.rpm libsmbsharemodes-devel-3.2.4-4.9.i586.rpm libsmbsharemodes-devel-3.2.4-4.9.ppc.rpm libsmbsharemodes-devel-3.2.4-4.9.x86_64.rpm libsmbsharemodes0-3.2.4-4.9.i586.rpm libsmbsharemodes0-3.2.4-4.9.ppc.rpm libsmbsharemodes0-3.2.4-4.9.x86_64.rpm libtalloc-devel-3.2.4-4.9.i586.rpm libtalloc-devel-3.2.4-4.9.ppc.rpm libtalloc-devel-3.2.4-4.9.x86_64.rpm libtalloc1-3.2.4-4.9.i586.rpm libtalloc1-3.2.4-4.9.ppc.rpm libtalloc1-3.2.4-4.9.x86_64.rpm libtalloc1-32bit-3.2.4-4.9.x86_64.rpm libtalloc1-64bit-3.2.4-4.9.ppc.rpm libtdb-devel-3.2.4-4.9.i586.rpm libtdb-devel-3.2.4-4.9.ppc.rpm libtdb-devel-3.2.4-4.9.x86_64.rpm libtdb1-3.2.4-4.9.i586.rpm libtdb1-3.2.4-4.9.ppc.rpm libtdb1-3.2.4-4.9.x86_64.rpm libtdb1-32bit-3.2.4-4.9.x86_64.rpm libtdb1-64bit-3.2.4-4.9.ppc.rpm libwbclient-devel-3.2.4-4.9.i586.rpm libwbclient-devel-3.2.4-4.9.ppc.rpm libwbclient-devel-3.2.4-4.9.x86_64.rpm libwbclient0-3.2.4-4.9.i586.rpm libwbclient0-3.2.4-4.9.ppc.rpm libwbclient0-3.2.4-4.9.x86_64.rpm libwbclient0-32bit-3.2.4-4.9.x86_64.rpm libwbclient0-64bit-3.2.4-4.9.ppc.rpm samba-3.2.4-4.9.i586.rpm samba-3.2.4-4.9.ppc.rpm samba-3.2.4-4.9.x86_64.rpm samba-32bit-3.2.4-4.9.x86_64.rpm samba-64bit-3.2.4-4.9.ppc.rpm samba-client-3.2.4-4.9.i586.rpm samba-client-3.2.4-4.9.ppc.rpm samba-client-3.2.4-4.9.x86_64.rpm samba-client-32bit-3.2.4-4.9.x86_64.rpm samba-client-64bit-3.2.4-4.9.ppc.rpm samba-devel-3.2.4-4.9.i586.rpm samba-devel-3.2.4-4.9.ppc.rpm samba-devel-3.2.4-4.9.x86_64.rpm samba-krb-printing-3.2.4-4.9.i586.rpm samba-krb-printing-3.2.4-4.9.ppc.rpm samba-krb-printing-3.2.4-4.9.x86_64.rpm samba-winbind-3.2.4-4.9.i586.rpm samba-winbind-3.2.4-4.9.ppc.rpm samba-winbind-3.2.4-4.9.x86_64.rpm samba-winbind-32bit-3.2.4-4.9.x86_64.rpm samba-winbind-64bit-3.2.4-4.9.ppc.rpm viewvc openSUSE 11.0 Query forms didn't escape user provided input, therefore allowing cross-site-scripting (XSS) attacks. CVE-2010-0736 has been assigned to this issue. viewvc-1.0.10-0.1.i586.rpm viewvc-1.0.10-0.1.ppc.rpm viewvc-1.0.10-0.1.x86_64.rpm compiz-fusion-plugins-main openSUSE 11.0 The expo plugin in Compiz Fusion allowed local users with physical access to bypass the screen-saver by just dragging it aside. (CVE-2008-6514: CVSS v2 Base Score: 6.2) compiz-fusion-plugins-main-0.7.4-28.2.i586.rpm compiz-fusion-plugins-main-0.7.4-28.2.ppc.rpm compiz-fusion-plugins-main-0.7.4-28.2.x86_64.rpm compiz-fusion-plugins-main-devel-0.7.4-28.2.i586.rpm compiz-fusion-plugins-main-devel-0.7.4-28.2.ppc.rpm compiz-fusion-plugins-main-devel-0.7.4-28.2.x86_64.rpm MozillaThunderbird openSUSE 11.0 Mozilla Thunderbird was updated to 2.0.0.14 fixing several security issues and bugs. MFSA 2010-07: Mozilla developers took fixes from previously fixed memory safety bugs in newer Mozilla-based products and ported them to the Mozilla 1.8.1 branch so they can be utilized by Thunderbird 2 and SeaMonkey 1.1. Paul Fisher reported a crash when joined to an Active Directory server under Vista or Windows 7 and using SSPI authentication. (CVE-2010-0161) Ludovic Hirlimann reported a crash indexing some messages with attachments (CVE-2010-0163) Carsten Book reported a crash in the JavaScript engine (CVE-2009-3075) Josh Soref reported a crash in the BinHex decoder used on non-Mac platforms. (CVE-2009-3072) monarch2000 reported an integer overflow in a base64 decoding function (CVE-2009-2463) MFSA 2009-68 / CVE-2009-3983: Security researcher Takehiro Takahashi of the IBM X-Force reported that Mozilla's NTLM implementation was vulnerable to reflection attacks in which NTLM credentials from one application could be forwarded to another arbitary application via the browser. If an attacker could get a user to visit a web page he controlled he could force NTLM authenticated requests to be forwarded to another application on behalf of the user. MFSA 2009-62 / CVE-2009-3376: Mozilla security researchers Jesse Ruderman and Sid Stamm reported that when downloading a file containing a right-to-left override character (RTL) in the filename, the name displayed in the dialog title bar conflicts with the name of the file shown in the dialog body. An attacker could use this vulnerability to obfuscate the name and file extension of a file to be downloaded and opened, potentially causing a user to run an executable file when they expected to open a non-executable file. MFSA 2009-59 / CVE-2009-0689: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code containing a very long string to be converted to a floating point number which would result in improper memory allocation and the execution of an arbitrary memory location. This vulnerability could thus be leveraged by the attacker to run arbitrary code on a victim's computer. Update: The underlying flaw in the dtoa routines used by Mozilla appears to be essentially the same as that reported against the libc gdtoa routine by Maksymilian Arciemowicz. MFSA 2009-49 / CVE-2009-3077: An anonymous security researcher, via TippingPoint's Zero Day Initiative, reported that the columns of a XUL tree element could be manipulated in a particular way which would leave a pointer owned by the column pointing to freed memory. An attacker could potentially use this vulnerability to crash a victim's browser and run arbitrary code on the victim's computer. Please see http://www.mozilla.org/security/known-vulnerabilities/thunde rbird20.html MozillaThunderbird-2.0.0.24-0.1.i586.rpm MozillaThunderbird-2.0.0.24-0.1.ppc.rpm MozillaThunderbird-2.0.0.24-0.1.x86_64.rpm MozillaThunderbird-devel-2.0.0.24-0.1.i586.rpm MozillaThunderbird-devel-2.0.0.24-0.1.ppc.rpm MozillaThunderbird-devel-2.0.0.24-0.1.x86_64.rpm MozillaThunderbird-translations-2.0.0.24-0.1.i586.rpm MozillaThunderbird-translations-2.0.0.24-0.1.ppc.rpm MozillaThunderbird-translations-2.0.0.24-0.1.x86_64.rpm gnome-screensaver openSUSE 11.0 Pressing the "Return" key repeatedly caused an X error that terminated gnome-screensaver (CVE-2010-0732). gnome-screensaver-2.22.2-24.2.i586.rpm gnome-screensaver-2.22.2-24.2.ppc.rpm gnome-screensaver-2.22.2-24.2.x86_64.rpm gnome-screensaver-lang-2.22.2-24.2.i586.rpm gnome-screensaver-lang-2.22.2-24.2.ppc.rpm gnome-screensaver-lang-2.22.2-24.2.x86_64.rpm libtheora openSUSE 11.0 An integer overflow was fixed in libtheora. It could be exploited remotely to execute arbitrary code. CVE-2009-3389: CVSS v2 Base Score: 9.3 (HIGH) (AV:N/AC:M/Au:N/C:C/I:C/A:C): Numeric Errors (CWE-189) libtheora-devel-1.0.beta2-4.2.i586.rpm libtheora-devel-1.0.beta2-4.2.ppc.rpm libtheora-devel-1.0.beta2-4.2.x86_64.rpm libtheora0-1.0.beta2-4.2.i586.rpm libtheora0-1.0.beta2-4.2.ppc.rpm libtheora0-1.0.beta2-4.2.x86_64.rpm libtheora0-32bit-1.0.beta2-4.2.x86_64.rpm libtheora0-64bit-1.0.beta2-4.2.ppc.rpm java-1_6_0-sun openSUSE 11.0 Sun Java 6 was updated to Update 19, fixing a large number of security issues. CVE-2009-3555 CVE-2010-0082 CVE-2010-0084 CVE-2010-0085 CVE-2010-0087 CVE-2010-0088 CVE-2010-0089 CVE-2010-0090 CVE-2010-0091 CVE-2010-0092 CVE-2010-0093 CVE-2010-0094 CVE-2010-0095 CVE-2010-0837 CVE-2010-0838 CVE-2010-0839 CVE-2010-0840 CVE-2010-0841 CVE-2010-0842 CVE-2010-0843 CVE-2010-0844 CVE-2010-0845 CVE-2010-0846 CVE-2010-0847 CVE-2010-0848 CVE-2010-0849 CVE-2010-0850 java-1_6_0-sun-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-1.6.0.u19-0.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u19-0.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u19-0.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u19-0.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u19-0.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-plugin-1.6.0.u19-0.1.x86_64.rpm java-1_6_0-sun-src-1.6.0.u19-0.1.i586.rpm java-1_6_0-sun-src-1.6.0.u19-0.1.x86_64.rpm tomcat6 openSUSE 11.0 This update of tomcat5/6 fixes: - CVE-2009-2693: CVSS v2 Base Score: 5.8 CVE-2009-2902: CVSS v2 Base Score: 4.3 Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. - CVE-2009-2901: CVSS v2 Base Score: 4.3 When autoDeploy is enabled the autodeployment process deployed appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests. - CVE-2008-5515: CVSS v2 Base Score: 5.0 When using the RequestDispatcher method, i was possible for remote attackers to bypass intended access restrictions and conduct directory traversal attacks. tomcat6-6.0.16-6.7.noarch.rpm tomcat6-admin-webapps-6.0.16-6.7.noarch.rpm tomcat6-docs-webapp-6.0.16-6.7.noarch.rpm tomcat6-javadoc-6.0.16-6.7.noarch.rpm tomcat6-jsp-2_1-api-6.0.16-6.7.noarch.rpm tomcat6-lib-6.0.16-6.7.noarch.rpm tomcat6-servlet-2_5-api-6.0.16-6.7.noarch.rpm tomcat6-webapps-6.0.16-6.7.noarch.rpm transmission openSUSE 11.0 A data corruption issue has been fixed in transmission. CVE-2010-0748 has been assigned to this issue. transmission-1.11-18.4.i586.rpm transmission-1.11-18.4.ppc.rpm transmission-1.11-18.4.x86_64.rpm transmission-gtk-1.11-18.4.i586.rpm transmission-gtk-1.11-18.4.ppc.rpm transmission-gtk-1.11-18.4.x86_64.rpm transmission-lang-1.11-18.4.i586.rpm transmission-lang-1.11-18.4.ppc.rpm transmission-lang-1.11-18.4.x86_64.rpm viewvc openSUSE 11.0 The regular expression search feature didn't properly sanitize user input, therefore allowing attackers to conduct cross-site-scripting (XSS) attacks (CVE-2010-0132). viewvc-1.0.11-0.1.i586.rpm viewvc-1.0.11-0.1.ppc.rpm viewvc-1.0.11-0.1.x86_64.rpm vsftpd openSUSE 11.0 vsftpd was updated to fix the following bug: - #574366: vsftpd doesn't work with ipv6 link local address vsftpd-2.0.6-25.4.i586.rpm vsftpd-2.0.6-25.4.ppc.rpm vsftpd-2.0.6-25.4.x86_64.rpm viewvc openSUSE 11.0 CVS support got broken by the previous viewvc update for CVE-2010-0132. This release fixes that again. viewvc-1.0.11-0.3.i586.rpm viewvc-1.0.11-0.3.ppc.rpm viewvc-1.0.11-0.3.x86_64.rpm libfreebl3 openSUSE 11.0 Mozilla NSS was updated to version 3.12.6. This fixes all currently known issues in mozilla-nss, and also implements the new TLS/SSL renegotiation handling (CVE-2009-3555). libfreebl3-3.12.6-3.1.i586.rpm libfreebl3-3.12.6-3.1.ppc.rpm libfreebl3-3.12.6-3.1.x86_64.rpm libfreebl3-32bit-3.12.6-3.1.x86_64.rpm libfreebl3-64bit-3.12.6-3.1.ppc.rpm mozilla-nss-3.12.6-3.1.i586.rpm mozilla-nss-3.12.6-3.1.ppc.rpm mozilla-nss-3.12.6-3.1.x86_64.rpm mozilla-nss-32bit-3.12.6-3.1.x86_64.rpm mozilla-nss-64bit-3.12.6-3.1.ppc.rpm mozilla-nss-devel-3.12.6-3.1.i586.rpm mozilla-nss-devel-3.12.6-3.1.ppc.rpm mozilla-nss-devel-3.12.6-3.1.x86_64.rpm mozilla-nss-tools-3.12.6-3.1.i586.rpm mozilla-nss-tools-3.12.6-3.1.ppc.rpm mozilla-nss-tools-3.12.6-3.1.x86_64.rpm krb5 openSUSE 11.0 Authenticated users could crash the kadmind process by referencing freed memory (CVE-2010-0629). krb5-1.6.3-50.9.i586.rpm krb5-1.6.3-50.9.ppc.rpm krb5-1.6.3-50.9.x86_64.rpm krb5-32bit-1.6.3-50.9.x86_64.rpm krb5-64bit-1.6.3-50.9.ppc.rpm krb5-apps-clients-1.6.3-50.9.i586.rpm krb5-apps-clients-1.6.3-50.9.ppc.rpm krb5-apps-clients-1.6.3-50.9.x86_64.rpm krb5-apps-servers-1.6.3-50.9.i586.rpm krb5-apps-servers-1.6.3-50.9.ppc.rpm krb5-apps-servers-1.6.3-50.9.x86_64.rpm krb5-client-1.6.3-50.9.i586.rpm krb5-client-1.6.3-50.9.ppc.rpm krb5-client-1.6.3-50.9.x86_64.rpm krb5-devel-1.6.3-50.9.i586.rpm krb5-devel-1.6.3-50.9.ppc.rpm krb5-devel-1.6.3-50.9.x86_64.rpm krb5-devel-32bit-1.6.3-50.9.x86_64.rpm krb5-devel-64bit-1.6.3-50.9.ppc.rpm krb5-server-1.6.3-50.9.i586.rpm krb5-server-1.6.3-50.9.ppc.rpm krb5-server-1.6.3-50.9.x86_64.rpm firefox35upgrade openSUSE 11.0 This patch updates Mozilla Firefox from the 3.0 stable branch to the 3.5.9 release. It includes also following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code. References Martijn Wargers, Josh Soref, and Jesse Ruderman reported crashes in the browser engine that affected Firefox 3.5 and Firefox 3.6. (CVE-2010-0173) Jesse Ruderman and Ehsan Akhgari reported crashes that affected all supported versions of the browser engine. (CVE-2010-0174) MFSA 2010-17 / CVE-2010-0175: Security researcher regenrecht reported via TippingPoint's Zero Day Initiative that a select event handler for XUL tree items could be called after the tree item was deleted. This results in the execution of previously freed memory which an attacker could use to crash a victim's browser and run arbitrary code on the victim's computer. MFSA 2010-18 / CVE-2010-0176: Security researcher regenrecht reported via TippingPoint's Zero Day Initiative an error in the way <option> elements are inserted into a XUL tree <optgroup>. In certain cases, the number of references to an <option> element is under-counted so that when the element is deleted, a live pointer to its old location is kept around and may later be used. An attacker could potentially use these conditions to run arbitrary code on a victim's computer. MFSA 2010-19 / CVE-2010-0177: Security researcher regenrecht reported via TippingPoint's Zero Day Initiative an error in the implementation of the window.navigator.plugins object. When a page reloads, the plugins array would reallocate all of its members without checking for existing references to each member. This could result in the deletion of objects for which valid pointers still exist. An attacker could use this vulnerability to crash a victim's browser and run arbitrary code on the victim's machine. MFSA 2010-20 / CVE-2010-0178: Security researcher Paul Stone reported that a browser applet could be used to turn a simple mouse click into a drag-and-drop action, potentially resulting in the unintended loading of resources in a user's browser. This behavior could be used twice in succession to first load a privileged chrome: URL in a victim's browser, then load a malicious javascript: URL on top of the same document resulting in arbitrary script execution with chrome privileges. MFSA 2010-21 / CVE-2010-0179: Mozilla security researcher moz_bug_r_a4 reported that the XMLHttpRequestSpy module in the Firebug add-on was exposing an underlying chrome privilege escalation vulnerability. When the XMLHttpRequestSpy object was created, it would attach various properties of itself to objects defined in web content, which were not being properly wrapped to prevent their exposure to chrome privileged objects. This could result in an attacker running arbitrary JavaScript on a victim's machine, though it required the victim to have Firebug installed, so the overall severity of the issue was determined to be High. MFSA 2010-22 / CVE-2009-3555: Mozilla developers added support in the Network Security Services module for preventing a type of man-in-the-middle attack against TLS using forced renegotiation. Note that to benefit from the fix, Firefox 3.6 and Firefox 3.5 users will need to set their security.ssl.require_safe_negotiation preference to true. Firefox 3 does not contain the fix for this issue. MFSA 2010-23 / CVE-2010-0181: phpBB developer Henry Sudhof reported that when an image tag points to a resource that redirects to a mailto: URL, the external mail handler application is launched. This issue poses no security threat to users but could create an annoyance when browsing a site that allows users to post arbitrary images. MFSA 2010-24 / CVE-2010-0182: Mozilla community member Wladimir Palant reported that XML documents were failing to call certain security checks when loading new content. This could result in certain resources being loaded that would otherwise violate security policies set by the browser or installed add-ons. MozillaFirefox-3.5.9-0.1.i586.rpm MozillaFirefox-3.5.9-0.1.ppc.rpm MozillaFirefox-3.5.9-0.1.x86_64.rpm MozillaFirefox-branding-upstream-3.5.9-0.1.i586.rpm MozillaFirefox-branding-upstream-3.5.9-0.1.ppc.rpm MozillaFirefox-branding-upstream-3.5.9-0.1.x86_64.rpm MozillaFirefox-translations-common-3.5.9-0.1.i586.rpm MozillaFirefox-translations-common-3.5.9-0.1.ppc.rpm MozillaFirefox-translations-common-3.5.9-0.1.x86_64.rpm MozillaFirefox-translations-other-3.5.9-0.1.i586.rpm MozillaFirefox-translations-other-3.5.9-0.1.ppc.rpm MozillaFirefox-translations-other-3.5.9-0.1.x86_64.rpm autoconf213-2.13-3.1.noarch.rpm autoconf213-2.13-3.1.noarch.rpm autoconf213-2.13-3.1.noarch.rpm beagle-0.3.7-22.2.i586.rpm beagle-0.3.7-22.2.ppc.rpm beagle-0.3.7-22.2.x86_64.rpm beagle-devel-0.3.7-22.2.i586.rpm beagle-devel-0.3.7-22.2.ppc.rpm beagle-devel-0.3.7-22.2.x86_64.rpm beagle-epiphany-0.3.7-22.2.i586.rpm beagle-epiphany-0.3.7-22.2.ppc.rpm beagle-epiphany-0.3.7-22.2.x86_64.rpm beagle-evolution-0.3.7-22.2.i586.rpm beagle-evolution-0.3.7-22.2.ppc.rpm beagle-evolution-0.3.7-22.2.x86_64.rpm beagle-firefox-0.3.7-22.2.i586.rpm beagle-firefox-0.3.7-22.2.ppc.rpm beagle-firefox-0.3.7-22.2.x86_64.rpm beagle-google-0.3.7-22.2.i586.rpm beagle-google-0.3.7-22.2.ppc.rpm beagle-google-0.3.7-22.2.x86_64.rpm beagle-gui-0.3.7-22.2.i586.rpm beagle-gui-0.3.7-22.2.ppc.rpm beagle-gui-0.3.7-22.2.x86_64.rpm beagle-lang-0.3.7-22.2.i586.rpm beagle-lang-0.3.7-22.2.ppc.rpm beagle-lang-0.3.7-22.2.x86_64.rpm beagle-thunderbird-0.3.7-22.2.i586.rpm beagle-thunderbird-0.3.7-22.2.ppc.rpm beagle-thunderbird-0.3.7-22.2.x86_64.rpm mhtml-firefox-0.5-2.1.i586.rpm mhtml-firefox-0.5-2.1.ppc.rpm mhtml-firefox-0.5-2.1.x86_64.rpm mozilla-xulrunner191-1.9.1.9-1.1.i586.rpm mozilla-xulrunner191-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner191-32bit-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner191-64bit-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-devel-1.9.1.9-1.1.i586.rpm mozilla-xulrunner191-devel-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-devel-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner191-gnomevfs-1.9.1.9-1.1.i586.rpm mozilla-xulrunner191-gnomevfs-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-gnomevfs-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner191-gnomevfs-32bit-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner191-gnomevfs-64bit-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-translations-common-1.9.1.9-1.1.i586.rpm mozilla-xulrunner191-translations-common-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-translations-common-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner191-translations-other-1.9.1.9-1.1.i586.rpm mozilla-xulrunner191-translations-other-1.9.1.9-1.1.ppc.rpm mozilla-xulrunner191-translations-other-1.9.1.9-1.1.x86_64.rpm python-xpcom191-1.9.1.9-1.1.i586.rpm python-xpcom191-1.9.1.9-1.1.ppc.rpm python-xpcom191-1.9.1.9-1.1.x86_64.rpm mozilla-xulrunner190 openSUSE 11.0 This patch updates Mozilla XULRunner 3.0 engine the 1.9.0.19 release. It includes also following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code. References Martijn Wargers, Josh Soref, and Jesse Ruderman reported crashes in the browser engine that affected Firefox 3.5 and Firefox 3.6. (CVE-2010-0173) Jesse Ruderman and Ehsan Akhgari reported crashes that affected all supported versions of the browser engine. (CVE-2010-0174) MFSA 2010-17 / CVE-2010-0175: Security researcher regenrecht reported via TippingPoint's Zero Day Initiative that a select event handler for XUL tree items could be called after the tree item was deleted. This results in the execution of previously freed memory which an attacker could use to crash a victim's browser and run arbitrary code on the victim's computer. MFSA 2010-18 / CVE-2010-0176: Security researcher regenrecht reported via TippingPoint's Zero Day Initiative an error in the way <option> elements are inserted into a XUL tree <optgroup>. In certain cases, the number of references to an <option> element is under-counted so that when the element is deleted, a live pointer to its old location is kept around and may later be used. An attacker could potentially use these conditions to run arbitrary code on a victim's computer. MFSA 2010-19 / CVE-2010-0177: Security researcher regenrecht reported via TippingPoint's Zero Day Initiative an error in the implementation of the window.navigator.plugins object. When a page reloads, the plugins array would reallocate all of its members without checking for existing references to each member. This could result in the deletion of objects for which valid pointers still exist. An attacker could use this vulnerability to crash a victim's browser and run arbitrary code on the victim's machine. MFSA 2010-20 / CVE-2010-0178: Security researcher Paul Stone reported that a browser applet could be used to turn a simple mouse click into a drag-and-drop action, potentially resulting in the unintended loading of resources in a user's browser. This behavior could be used twice in succession to first load a privileged chrome: URL in a victim's browser, then load a malicious javascript: URL on top of the same document resulting in arbitrary script execution with chrome privileges. MFSA 2010-21 / CVE-2010-0179: Mozilla security researcher moz_bug_r_a4 reported that the XMLHttpRequestSpy module in the Firebug add-on was exposing an underlying chrome privilege escalation vulnerability. When the XMLHttpRequestSpy object was created, it would attach various properties of itself to objects defined in web content, which were not being properly wrapped to prevent their exposure to chrome privileged objects. This could result in an attacker running arbitrary JavaScript on a victim's machine, though it required the victim to have Firebug installed, so the overall severity of the issue was determined to be High. MFSA 2010-22 / CVE-2009-3555: Mozilla developers added support in the Network Security Services module for preventing a type of man-in-the-middle attack against TLS using forced renegotiation. Note that to benefit from the fix, Firefox 3.6 and Firefox 3.5 users will need to set their security.ssl.require_safe_negotiation preference to true. Firefox 3 does not contain the fix for this issue. MFSA 2010-23 / CVE-2010-0181: phpBB developer Henry Sudhof reported that when an image tag points to a resource that redirects to a mailto: URL, the external mail handler application is launched. This issue poses no security threat to users but could create an annoyance when browsing a site that allows users to post arbitrary images. MFSA 2010-24 / CVE-2010-0182: Mozilla community member Wladimir Palant reported that XML documents were failing to call certain security checks when loading new content. This could result in certain resources being loaded that would otherwise violate security policies set by the browser or installed add-ons. mozilla-xulrunner190-1.9.0.19-0.1.i586.rpm mozilla-xulrunner190-1.9.0.19-0.1.ppc.rpm mozilla-xulrunner190-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-32bit-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-64bit-1.9.0.19-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.19-0.1.i586.rpm mozilla-xulrunner190-devel-1.9.0.19-0.1.ppc.rpm mozilla-xulrunner190-devel-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1.i586.rpm mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1.ppc.rpm mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-32bit-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-gnomevfs-64bit-1.9.0.19-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.19-0.1.i586.rpm mozilla-xulrunner190-translations-1.9.0.19-0.1.ppc.rpm mozilla-xulrunner190-translations-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-translations-32bit-1.9.0.19-0.1.x86_64.rpm mozilla-xulrunner190-translations-64bit-1.9.0.19-0.1.ppc.rpm kde4-kdm openSUSE 11.0 The KDE KDM contains a local race condition which allows to make arbitrary files world writable. CVE-2010-0436 has been assigned to this issue. kde4-kdm-4.0.4-24.8.i586.rpm kde4-kdm-4.0.4-24.8.ppc.rpm kde4-kdm-4.0.4-24.8.x86_64.rpm kde4-kdm-branding-upstream-4.0.4-24.8.i586.rpm kde4-kdm-branding-upstream-4.0.4-24.8.ppc.rpm kde4-kdm-branding-upstream-4.0.4-24.8.x86_64.rpm kde4-kwin-4.0.4-24.8.i586.rpm kde4-kwin-4.0.4-24.8.ppc.rpm kde4-kwin-4.0.4-24.8.x86_64.rpm kdebase4-workspace-4.0.4-24.8.i586.rpm kdebase4-workspace-4.0.4-24.8.ppc.rpm kdebase4-workspace-4.0.4-24.8.x86_64.rpm kdebase4-workspace-branding-upstream-4.0.4-24.8.i586.rpm kdebase4-workspace-branding-upstream-4.0.4-24.8.ppc.rpm kdebase4-workspace-branding-upstream-4.0.4-24.8.x86_64.rpm kdebase4-workspace-devel-4.0.4-24.8.i586.rpm kdebase4-workspace-devel-4.0.4-24.8.ppc.rpm kdebase4-workspace-devel-4.0.4-24.8.x86_64.rpm kdebase4-workspace-ksysguardd-4.0.4-24.8.i586.rpm kdebase4-workspace-ksysguardd-4.0.4-24.8.ppc.rpm kdebase4-workspace-ksysguardd-4.0.4-24.8.x86_64.rpm fileshareset openSUSE 11.0 The KDE KDM contains a local race condition which allows to make arbitrary files world writable. CVE-2010-0436 has been assigned to this issue. fileshareset-2.0-501.4.i586.rpm fileshareset-2.0-501.4.ppc.rpm fileshareset-2.0-501.4.x86_64.rpm kdebase3-3.5.9-65.4.i586.rpm kdebase3-3.5.9-65.4.ppc.rpm kdebase3-3.5.9-65.4.x86_64.rpm kdebase3-32bit-3.5.9-65.4.x86_64.rpm kdebase3-64bit-3.5.9-65.4.ppc.rpm kdebase3-beagle-3.5.9-65.4.i586.rpm kdebase3-beagle-3.5.9-65.4.ppc.rpm kdebase3-beagle-3.5.9-65.4.x86_64.rpm kdebase3-devel-3.5.9-65.4.i586.rpm kdebase3-devel-3.5.9-65.4.ppc.rpm kdebase3-devel-3.5.9-65.4.x86_64.rpm kdebase3-extra-3.5.9-65.4.i586.rpm kdebase3-extra-3.5.9-65.4.ppc.rpm kdebase3-extra-3.5.9-65.4.x86_64.rpm kdebase3-kdm-3.5.9-65.4.i586.rpm kdebase3-kdm-3.5.9-65.4.ppc.rpm kdebase3-kdm-3.5.9-65.4.x86_64.rpm kdebase3-nsplugin-3.5.9-65.4.i586.rpm kdebase3-nsplugin-3.5.9-65.4.ppc.rpm kdebase3-runtime-3.5.9-65.4.i586.rpm kdebase3-runtime-3.5.9-65.4.ppc.rpm kdebase3-runtime-3.5.9-65.4.x86_64.rpm kdebase3-runtime-32bit-3.5.9-65.4.x86_64.rpm kdebase3-runtime-64bit-3.5.9-65.4.ppc.rpm kdebase3-samba-3.5.9-65.4.i586.rpm kdebase3-samba-3.5.9-65.4.ppc.rpm kdebase3-samba-3.5.9-65.4.x86_64.rpm kdebase3-session-3.5.9-65.4.i586.rpm kdebase3-session-3.5.9-65.4.ppc.rpm kdebase3-session-3.5.9-65.4.x86_64.rpm misc-console-font-3.5.9-65.4.i586.rpm misc-console-font-3.5.9-65.4.ppc.rpm misc-console-font-3.5.9-65.4.x86_64.rpm gimp openSUSE 11.0 Integer overflows in the BMP plug-in potentially allowed attackers to execute arbitrary code on the victim's system by tricking the victim to open specially crafted files (CVE-2009-1570). gimp-2.4.5-41.2.i586.rpm gimp-2.4.5-41.2.ppc.rpm gimp-2.4.5-41.2.x86_64.rpm gimp-branding-upstream-2.4.5-41.2.i586.rpm gimp-branding-upstream-2.4.5-41.2.ppc.rpm gimp-branding-upstream-2.4.5-41.2.x86_64.rpm gimp-devel-2.4.5-41.2.i586.rpm gimp-devel-2.4.5-41.2.ppc.rpm gimp-devel-2.4.5-41.2.x86_64.rpm gimp-doc-2.4.5-41.2.i586.rpm gimp-doc-2.4.5-41.2.ppc.rpm gimp-doc-2.4.5-41.2.x86_64.rpm gimp-plugins-python-2.4.5-41.2.i586.rpm gimp-plugins-python-2.4.5-41.2.ppc.rpm gimp-plugins-python-2.4.5-41.2.x86_64.rpm parted openSUSE 11.0 Race condition in parted might cause /proc/partitions being outdated after modification of partition table. Mismatches between partition layouts "on disk" and "in kernel data" can lead to data loss. Fixed by this update. parted-1.8.8-46.5.i586.rpm parted-1.8.8-46.5.ppc.rpm parted-1.8.8-46.5.x86_64.rpm parted-32bit-1.8.8-46.5.x86_64.rpm parted-64bit-1.8.8-46.5.ppc.rpm parted-devel-1.8.8-46.5.i586.rpm parted-devel-1.8.8-46.5.ppc.rpm parted-devel-1.8.8-46.5.x86_64.rpm acroread openSUSE 11.0 Specially crafted PDF documents could crash acroread or even lead to execution of arbitrary code (CVE-2010-0190, CVE-2010-0191, CVE-2010-0192, CVE-2010-0193 CVE-2010-0194, CVE-2010-0195, CVE-2010-0196, CVE-2010-0197 CVE-2010-0198, CVE-2010-0199, CVE-2010-0201, CVE-2010-0202 CVE-2010-0203, CVE-2010-0204, CVE-2010-1241). acroread-9.3.2-0.1.i586.rpm acroread-cmaps-9.3.2-0.1.noarch.rpm acroread-fonts-ja-9.3.2-0.1.noarch.rpm acroread-fonts-ko-9.3.2-0.1.noarch.rpm acroread-fonts-zh_CN-9.3.2-0.1.noarch.rpm acroread-fonts-zh_TW-9.3.2-0.1.noarch.rpm java-1_6_0-sun openSUSE 11.0 Oracle has released JRE 6 Update 20 in order to fix potential remote code execution vulnerabilities (CVE-2010-0887). Please refer to Oracle's site for more information: http://www.oracle.com/technology/deploy/security/alerts/aler t-cve-2010-0886.html java-1_6_0-sun-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-1.6.0.u20-0.1.x86_64.rpm java-1_6_0-sun-alsa-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-alsa-1.6.0.u20-0.1.x86_64.rpm java-1_6_0-sun-demo-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-demo-1.6.0.u20-0.1.x86_64.rpm java-1_6_0-sun-devel-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-devel-1.6.0.u20-0.1.x86_64.rpm java-1_6_0-sun-jdbc-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-jdbc-1.6.0.u20-0.1.x86_64.rpm java-1_6_0-sun-plugin-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-plugin-1.6.0.u20-0.1.x86_64.rpm java-1_6_0-sun-src-1.6.0.u20-0.1.i586.rpm java-1_6_0-sun-src-1.6.0.u20-0.1.x86_64.rpm clamav openSUSE 11.0 clamav has been updated to version 0.96. Citing freshmeat.net: This Release introduces new malware detection mechanisms and other significant improvements to the scan engine. Key features include the bytecode interpreter, heuristic improvements, signature improvements, support for new archives, support for new executable file formats, support for UPX 3.0, performance improvements and memory optimizations. clamav-0.96-0.3.i586.rpm clamav-0.96-0.3.ppc.rpm clamav-0.96-0.3.x86_64.rpm clamav-db-0.96-0.3.i586.rpm clamav-db-0.96-0.3.ppc.rpm clamav-db-0.96-0.3.x86_64.rpm lighttpd openSUSE 11.0 bnc #597765: lighttpd doesn't start after the last openssl update when "ssl.use-sslv2" is disabled. Fixed by this update. lighttpd-1.4.19-6.8.i586.rpm lighttpd-1.4.19-6.8.ppc.rpm lighttpd-1.4.19-6.8.x86_64.rpm lighttpd-mod_cml-1.4.19-6.8.i586.rpm lighttpd-mod_cml-1.4.19-6.8.ppc.rpm lighttpd-mod_cml-1.4.19-6.8.x86_64.rpm lighttpd-mod_magnet-1.4.19-6.8.i586.rpm lighttpd-mod_magnet-1.4.19-6.8.ppc.rpm lighttpd-mod_magnet-1.4.19-6.8.x86_64.rpm lighttpd-mod_mysql_vhost-1.4.19-6.8.i586.rpm lighttpd-mod_mysql_vhost-1.4.19-6.8.ppc.rpm lighttpd-mod_mysql_vhost-1.4.19-6.8.x86_64.rpm lighttpd-mod_rrdtool-1.4.19-6.8.i586.rpm lighttpd-mod_rrdtool-1.4.19-6.8.ppc.rpm lighttpd-mod_rrdtool-1.4.19-6.8.x86_64.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.8.i586.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.8.ppc.rpm lighttpd-mod_trigger_b4_dl-1.4.19-6.8.x86_64.rpm lighttpd-mod_webdav-1.4.19-6.8.i586.rpm lighttpd-mod_webdav-1.4.19-6.8.ppc.rpm lighttpd-mod_webdav-1.4.19-6.8.x86_64.rpm mediawiki openSUSE 11.0 MediaWiki was prone to a CSS validation flaw and data leakage vulnerability (CVE-2010-1189, CVE-2010-1190). mediawiki-1.11.2-36.4.i586.rpm mediawiki-1.11.2-36.4.ppc.rpm mediawiki-1.11.2-36.4.x86_64.rpm glib2 openSUSE 11.0 The when copying symbolic links the g_file_copy function set the target of the link to mode 0777 therefore exposing potentially sensitive information or allowing other user to modify files they should not have access to (CVE-2009-3289). glib2-2.16.3-20.8.i586.rpm glib2-2.16.3-20.8.ppc.rpm glib2-2.16.3-20.8.x86_64.rpm glib2-branding-upstream-2.16.3-20.8.i586.rpm glib2-branding-upstream-2.16.3-20.8.ppc.rpm glib2-branding-upstream-2.16.3-20.8.x86_64.rpm glib2-devel-2.16.3-20.8.i586.rpm glib2-devel-2.16.3-20.8.ppc.rpm glib2-devel-2.16.3-20.8.x86_64.rpm glib2-devel-64bit-2.16.3-20.8.ppc.rpm glib2-doc-2.16.3-20.8.i586.rpm glib2-doc-2.16.3-20.8.ppc.rpm glib2-doc-2.16.3-20.8.x86_64.rpm libgio-2_0-0-2.16.3-20.8.i586.rpm libgio-2_0-0-2.16.3-20.8.ppc.rpm libgio-2_0-0-2.16.3-20.8.x86_64.rpm libgio-2_0-0-32bit-2.16.3-20.8.x86_64.rpm libgio-2_0-0-64bit-2.16.3-20.8.ppc.rpm libgio-fam-2.16.3-20.8.i586.rpm libgio-fam-2.16.3-20.8.ppc.rpm libgio-fam-2.16.3-20.8.x86_64.rpm libglib-2_0-0-2.16.3-20.8.i586.rpm libglib-2_0-0-2.16.3-20.8.ppc.rpm libglib-2_0-0-2.16.3-20.8.x86_64.rpm libglib-2_0-0-32bit-2.16.3-20.8.x86_64.rpm libglib-2_0-0-64bit-2.16.3-20.8.ppc.rpm libgmodule-2_0-0-2.16.3-20.8.i586.rpm libgmodule-2_0-0-2.16.3-20.8.ppc.rpm libgmodule-2_0-0-2.16.3-20.8.x86_64.rpm libgmodule-2_0-0-32bit-2.16.3-20.8.x86_64.rpm libgmodule-2_0-0-64bit-2.16.3-20.8.ppc.rpm libgobject-2_0-0-2.16.3-20.8.i586.rpm libgobject-2_0-0-2.16.3-20.8.ppc.rpm libgobject-2_0-0-2.16.3-20.8.x86_64.rpm libgobject-2_0-0-32bit-2.16.3-20.8.x86_64.rpm libgobject-2_0-0-64bit-2.16.3-20.8.ppc.rpm libgthread-2_0-0-2.16.3-20.8.i586.rpm libgthread-2_0-0-2.16.3-20.8.ppc.rpm libgthread-2_0-0-2.16.3-20.8.x86_64.rpm libgthread-2_0-0-32bit-2.16.3-20.8.x86_64.rpm libgthread-2_0-0-64bit-2.16.3-20.8.ppc.rpm apache2 openSUSE 11.0 When using a multithreaded MPM apache could leak memory of requests handled by a different thread when processing subrequests (CVE-2010-0434). Specially crafted requests could crash mod_proxy_ajp (CVE-2010-0408). apache2-2.2.8-28.10.i586.rpm apache2-2.2.8-28.10.ppc.rpm apache2-2.2.8-28.10.x86_64.rpm apache2-devel-2.2.8-28.10.i586.rpm apache2-devel-2.2.8-28.10.ppc.rpm apache2-devel-2.2.8-28.10.x86_64.rpm apache2-doc-2.2.8-28.10.i586.rpm apache2-doc-2.2.8-28.10.ppc.rpm apache2-doc-2.2.8-28.10.x86_64.rpm apache2-example-pages-2.2.8-28.10.i586.rpm apache2-example-pages-2.2.8-28.10.ppc.rpm apache2-example-pages-2.2.8-28.10.x86_64.rpm apache2-prefork-2.2.8-28.10.i586.rpm apache2-prefork-2.2.8-28.10.ppc.rpm apache2-prefork-2.2.8-28.10.x86_64.rpm apache2-utils-2.2.8-28.10.i586.rpm apache2-utils-2.2.8-28.10.ppc.rpm apache2-utils-2.2.8-28.10.x86_64.rpm apache2-worker-2.2.8-28.10.i586.rpm apache2-worker-2.2.8-28.10.ppc.rpm apache2-worker-2.2.8-28.10.x86_64.rpm timezone openSUSE 11.0 Updated tzdata version to 2010h: * DST changes: Asia/Dhaka, Asia/Karachi, Asia/Gaza, Asia/Damascus, Pacific/Apia, Pacific/Fiji, Africa/Tunis America/Santiago, Pacific/Easter, America/Asuncion * New zones: America/Matamoros, America/Ojinaga, America/Santa_Isabel * GMT offset changes: Europe/Samara, Asia/Kamchatka, Asia/Anadyr * Various Antarctica timezone changes * Number of Time Zones used in Russia were reduced to 9 and several regions changed timezones. timezone-2010h-1.1.i586.rpm timezone-2010h-1.1.ppc.rpm timezone-2010h-1.1.x86_64.rpm cacti openSUSE 11.0 Missing input sanitation in the template export feature allowed for SQL injection attacks (CVE-2010-1431). cacti-0.8.7e-0.3.noarch.rpm irssi openSUSE 11.0 irssi did not check the identity information of a remote hosts's certificate. Attackers could exploit that for a man-in-the-middle attack (CVE-2010-1155). irssi could crash if someone changed nick while the victim was leaving the channel (CVE-2010-1156). irssi-0.8.12-49.4.i586.rpm irssi-0.8.12-49.4.ppc.rpm irssi-0.8.12-49.4.x86_64.rpm irssi-devel-0.8.12-49.4.i586.rpm irssi-devel-0.8.12-49.4.ppc.rpm irssi-devel-0.8.12-49.4.x86_64.rpm java-1_6_0-openjdk openSUSE 11.0 java-1_6_0-openjdk version 1.7.3 fixes serveral security issues: - CVE-2010-0837: JAR 'unpack200' must verify input parameters - CVE-2010-0845: No ClassCastException for HashAttributeSet constructors if run with -Xcomp - CVE-2010-0838: CMM readMabCurveData Buffer Overflow Vulnerability - CVE-2010-0082: Loader-constraint table allows arrays instead of only the base-classes - CVE-2010-0095: Subclasses of InetAddress may incorrectly interpret network addresses - CVE-2010-0085: File TOCTOU deserialization vulnerability - CVE-2010-0091: Unsigned applet can retrieve the dragged information before drop action occurs - CVE-2010-0088: Inflater/Deflater clone issues - CVE-2010-0084: Policy/PolicyFile leak dynamic ProtectionDomains. - CVE-2010-0092: AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error - CVE-2010-0094: Deserialization of RMIConnectionImpl objects should enforce stricter checks - CVE-2010-0093: System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes - CVE-2010-0840: Applet Trusted Methods Chaining Privilege Escalation Vulnerability - CVE-2010-0848: AWT Library Invalid Index Vulnerability - CVE-2010-0847: ImagingLib arbitrary code execution vulnerability - CVE-2009-3555: TLS: MITM attacks via session renegotiation java-1_6_0-openjdk-1.6.0.0_b17-2.3.i586.rpm java-1_6_0-openjdk-1.6.0.0_b17-2.3.ppc.rpm java-1_6_0-openjdk-1.6.0.0_b17-2.3.x86_64.rpm java-1_6_0-openjdk-demo-1.6.0.0_b17-2.3.i586.rpm java-1_6_0-openjdk-demo-1.6.0.0_b17-2.3.ppc.rpm java-1_6_0-openjdk-demo-1.6.0.0_b17-2.3.x86_64.rpm java-1_6_0-openjdk-devel-1.6.0.0_b17-2.3.i586.rpm java-1_6_0-openjdk-devel-1.6.0.0_b17-2.3.ppc.rpm java-1_6_0-openjdk-devel-1.6.0.0_b17-2.3.x86_64.rpm java-1_6_0-openjdk-javadoc-1.6.0.0_b17-2.3.i586.rpm java-1_6_0-openjdk-javadoc-1.6.0.0_b17-2.3.ppc.rpm java-1_6_0-openjdk-javadoc-1.6.0.0_b17-2.3.x86_64.rpm java-1_6_0-openjdk-plugin-1.6.0.0_b17-2.3.i586.rpm java-1_6_0-openjdk-plugin-1.6.0.0_b17-2.3.ppc.rpm java-1_6_0-openjdk-plugin-1.6.0.0_b17-2.3.x86_64.rpm java-1_6_0-openjdk-src-1.6.0.0_b17-2.3.i586.rpm java-1_6_0-openjdk-src-1.6.0.0_b17-2.3.ppc.rpm java-1_6_0-openjdk-src-1.6.0.0_b17-2.3.x86_64.rpm fuse openSUSE 11.0 A race condition in fusermount allows non-privileged users to umount any file system (CVE-2010-0789). Note: this is a re-release of the previous update with a better patch. fuse-2.7.2-32.4.i586.rpm fuse-2.7.2-32.4.ppc.rpm fuse-2.7.2-32.4.x86_64.rpm fuse-devel-2.7.2-32.4.i586.rpm fuse-devel-2.7.2-32.4.ppc.rpm fuse-devel-2.7.2-32.4.x86_64.rpm libfuse2-2.7.2-32.4.i586.rpm libfuse2-2.7.2-32.4.ppc.rpm libfuse2-2.7.2-32.4.x86_64.rpm tar openSUSE 11.0 A malicious remote tape server could cause a buffer overflow in tar. In order to exploit that an attacker would have to trick the victim to extract a file that causes tar to open a connection to the rmt server (CVE-2010-0624). It's advisable to always use tar's --force-local local option to avoid such tricks. tar-1.19-35.2.i586.rpm tar-1.19-35.2.ppc.rpm tar-1.19-35.2.x86_64.rpm libmysqlclient-devel openSUSE 11.0 This update fixes several security issues in mysql: - checking server certificates (CVE-2009-4028) - error handling in subqueries (CVE-2009-4019) - preserving null_value flag in GeomFromWKB (CVE-2009-4019) - symlink behavior fixed (CVE-2008-7247) - symlink behavior refixed (CVE-2009-4030) libmysqlclient-devel-5.0.51a-27.6.i586.rpm libmysqlclient-devel-5.0.51a-27.6.ppc.rpm libmysqlclient-devel-5.0.51a-27.6.x86_64.rpm libmysqlclient15-5.0.51a-27.6.i586.rpm libmysqlclient15-5.0.51a-27.6.ppc.rpm libmysqlclient15-5.0.51a-27.6.x86_64.rpm libmysqlclient15-32bit-5.0.51a-27.6.x86_64.rpm libmysqlclient15-64bit-5.0.51a-27.6.ppc.rpm libmysqlclient_r15-5.0.51a-27.6.i586.rpm libmysqlclient_r15-5.0.51a-27.6.ppc.rpm libmysqlclient_r15-5.0.51a-27.6.x86_64.rpm libmysqlclient_r15-32bit-5.0.51a-27.6.x86_64.rpm libmysqlclient_r15-64bit-5.0.51a-27.6.ppc.rpm mysql-5.0.51a-27.6.i586.rpm mysql-5.0.51a-27.6.ppc.rpm mysql-5.0.51a-27.6.ppc64.rpm mysql-5.0.51a-27.6.x86_64.rpm mysql-Max-5.0.51a-27.6.i586.rpm mysql-Max-5.0.51a-27.6.ppc.rpm mysql-Max-5.0.51a-27.6.x86_64.rpm mysql-bench-5.0.51a-27.6.i586.rpm mysql-bench-5.0.51a-27.6.ppc.rpm mysql-bench-5.0.51a-27.6.x86_64.rpm mysql-client-5.0.51a-27.6.i586.rpm mysql-client-5.0.51a-27.6.ppc.rpm mysql-client-5.0.51a-27.6.x86_64.rpm mysql-debug-5.0.51a-27.6.i586.rpm mysql-debug-5.0.51a-27.6.ppc.rpm mysql-debug-5.0.51a-27.6.x86_64.rpm mysql-tools-5.0.51a-27.6.i586.rpm mysql-tools-5.0.51a-27.6.ppc.rpm mysql-tools-5.0.51a-27.6.x86_64.rpm libmikmod openSUSE 11.0 Specially crafted "Impulse Tracker" and "Ultratracker" files could cause a heap based buffer overflow in libmikmod. Attackers could exploit that to crash or potentially execute code in applications linking against libmikmod (CVE-2009-3995, CVE-2009-3996). libmikmod-3.1.11a-84.5.i586.rpm libmikmod-3.1.11a-84.5.ppc.rpm libmikmod-3.1.11a-84.5.x86_64.rpm libmikmod-32bit-3.1.11a-84.5.x86_64.rpm libmikmod-64bit-3.1.11a-84.5.ppc.rpm libmikmod-devel-3.1.11a-84.5.i586.rpm libmikmod-devel-3.1.11a-84.5.ppc.rpm libmikmod-devel-3.1.11a-84.5.x86_64.rpm moodle openSUSE 11.0 Moodle version 1.9.8 fixes several security issues including cross-site-scripting (XSS) and SQL injection bugs (CVE-2010-1613, CVE-2010-1614, CVE-2010-1615, CVE-2010-1616, CVE-2010-1617 CVE-2010-1618, CVE-2010-1619). moodle-1.9.8-0.1.noarch.rpm moodle-af-1.9.8-0.1.noarch.rpm moodle-ar-1.9.8-0.1.noarch.rpm moodle-be-1.9.8-0.1.noarch.rpm moodle-bg-1.9.8-0.1.noarch.rpm moodle-bs-1.9.8-0.1.noarch.rpm moodle-ca-1.9.8-0.1.noarch.rpm moodle-cs-1.9.8-0.1.noarch.rpm moodle-da-1.9.8-0.1.noarch.rpm moodle-de-1.9.8-0.1.noarch.rpm moodle-de_du-1.9.8-0.1.noarch.rpm moodle-el-1.9.8-0.1.noarch.rpm moodle-es-1.9.8-0.1.noarch.rpm moodle-et-1.9.8-0.1.noarch.rpm moodle-eu-1.9.8-0.1.noarch.rpm moodle-fa-1.9.8-0.1.noarch.rpm moodle-fi-1.9.8-0.1.noarch.rpm moodle-fr-1.9.8-0.1.noarch.rpm moodle-ga-1.9.8-0.1.noarch.rpm moodle-gl-1.9.8-0.1.noarch.rpm moodle-he-1.9.8-0.1.noarch.rpm moodle-hi-1.9.8-0.1.noarch.rpm moodle-hr-1.9.8-0.1.noarch.rpm moodle-hu-1.9.8-0.1.noarch.rpm moodle-id-1.9.8-0.1.noarch.rpm moodle-is-1.9.8-0.1.noarch.rpm moodle-it-1.9.8-0.1.noarch.rpm moodle-ja-1.9.8-0.1.noarch.rpm moodle-ka-1.9.8-0.1.noarch.rpm moodle-km-1.9.8-0.1.noarch.rpm moodle-kn-1.9.8-0.1.noarch.rpm moodle-ko-1.9.8-0.1.noarch.rpm moodle-lt-1.9.8-0.1.noarch.rpm moodle-lv-1.9.8-0.1.noarch.rpm moodle-mi_tn-1.9.8-0.1.noarch.rpm moodle-ms-1.9.8-0.1.noarch.rpm moodle-nl-1.9.8-0.1.noarch.rpm moodle-nn-1.9.8-0.1.noarch.rpm moodle-no-1.9.8-0.1.noarch.rpm moodle-pl-1.9.8-0.1.noarch.rpm moodle-pt-1.9.8-0.1.noarch.rpm moodle-ro-1.9.8-0.1.noarch.rpm moodle-ru-1.9.8-0.1.noarch.rpm moodle-sk-1.9.8-0.1.noarch.rpm moodle-sl-1.9.8-0.1.noarch.rpm moodle-so-1.9.8-0.1.noarch.rpm moodle-sq-1.9.8-0.1.noarch.rpm moodle-sr-1.9.8-0.1.noarch.rpm moodle-sv-1.9.8-0.1.noarch.rpm moodle-th-1.9.8-0.1.noarch.rpm moodle-tl-1.9.8-0.1.noarch.rpm moodle-tr-1.9.8-0.1.noarch.rpm moodle-uk-1.9.8-0.1.noarch.rpm moodle-vi-1.9.8-0.1.noarch.rpm moodle-zh_cn-1.9.8-0.1.noarch.rpm libmysqlclient-devel openSUSE 11.0 Updated mysql packages fix the following bugs: - upstream #47320 - checking server certificates (CVE-2009-4028) - upstream #48291 - error handling in subqueries (CVE-2009-4019) - upstream #47780 - preserving null_value flag in GeomFromWKB() (CVE-2009-4019) - upstream #39277 - symlink behaviour fixed (CVE-2008-7247) - upstream #32167 - symlink behaviour refixed (CVE-2009-4030) libmysqlclient-devel-5.0.51a-27.8.i586.rpm libmysqlclient-devel-5.0.51a-27.8.ppc.rpm libmysqlclient-devel-5.0.51a-27.8.x86_64.rpm libmysqlclient15-5.0.51a-27.8.i586.rpm libmysqlclient15-5.0.51a-27.8.ppc.rpm libmysqlclient15-5.0.51a-27.8.x86_64.rpm libmysqlclient15-32bit-5.0.51a-27.8.x86_64.rpm libmysqlclient15-64bit-5.0.51a-27.8.ppc.rpm libmysqlclient_r15-5.0.51a-27.8.i586.rpm libmysqlclient_r15-5.0.51a-27.8.ppc.rpm libmysqlclient_r15-5.0.51a-27.8.x86_64.rpm libmysqlclient_r15-32bit-5.0.51a-27.8.x86_64.rpm libmysqlclient_r15-64bit-5.0.51a-27.8.ppc.rpm mysql-5.0.51a-27.8.i586.rpm mysql-5.0.51a-27.8.ppc.rpm mysql-5.0.51a-27.8.ppc64.rpm mysql-5.0.51a-27.8.x86_64.rpm mysql-Max-5.0.51a-27.8.i586.rpm mysql-Max-5.0.51a-27.8.ppc.rpm mysql-Max-5.0.51a-27.8.x86_64.rpm mysql-bench-5.0.51a-27.8.i586.rpm mysql-bench-5.0.51a-27.8.ppc.rpm mysql-bench-5.0.51a-27.8.x86_64.rpm mysql-client-5.0.51a-27.8.i586.rpm mysql-client-5.0.51a-27.8.ppc.rpm mysql-client-5.0.51a-27.8.x86_64.rpm mysql-debug-5.0.51a-27.8.i586.rpm mysql-debug-5.0.51a-27.8.ppc.rpm mysql-debug-5.0.51a-27.8.x86_64.rpm mysql-tools-5.0.51a-27.8.i586.rpm mysql-tools-5.0.51a-27.8.ppc.rpm mysql-tools-5.0.51a-27.8.x86_64.rpm evolution-data-server openSUSE 11.0 evolution considered S/MIME signatures to be valid even for modified mails (CVE-2009-0547). evolution-data-server-2.22.1.1-11.6.i586.rpm evolution-data-server-2.22.1.1-11.6.ppc.rpm evolution-data-server-2.22.1.1-11.6.x86_64.rpm evolution-data-server-32bit-2.22.1.1-11.6.x86_64.rpm evolution-data-server-64bit-2.22.1.1-11.6.ppc.rpm evolution-data-server-devel-2.22.1.1-11.6.i586.rpm evolution-data-server-devel-2.22.1.1-11.6.ppc.rpm evolution-data-server-devel-2.22.1.1-11.6.x86_64.rpm evolution-data-server-doc-2.22.1.1-11.6.i586.rpm evolution-data-server-doc-2.22.1.1-11.6.ppc.rpm evolution-data-server-doc-2.22.1.1-11.6.x86_64.rpm libesmtp openSUSE 11.0 libesmtp did not properly handle wildcards and embedded null characters in the Common Name of X.509 certificates (CVE-2010-1192, CVE-2010-1194). libesmtp-1.0.4-142.2.i586.rpm libesmtp-1.0.4-142.2.ppc.rpm libesmtp-1.0.4-142.2.x86_64.rpm libesmtp-devel-1.0.4-142.2.i586.rpm libesmtp-devel-1.0.4-142.2.ppc.rpm libesmtp-devel-1.0.4-142.2.x86_64.rpm suse-build-key openSUSE 11.0 This update extends life time of our default included keys for 4 more years. Updated keys: - 307E3D54 build@suse.de "SuSE Package Signing Key" (2014-05-03) - 9C800ACA build@suse.de "SuSE Package Signing Key" (2014-05-03) - B37B98A9 support@suse.com "SUSE PTF Signing Key" (2014-05-03) - 7E2E3B05 novell-provo-build@novell.com "Novell Provo Build" (2014-05-06) Added keys: - 1D061A62 support@novell.com "build@novell.com (Novell Linux Products)" (2014-05-06) suse-build-key-1.0-855.2.noarch.rpm libpython2_6-1_0 openSUSE 11.0 This update of python has a copy of libxmlrpc that is vulnerable to denial of service bugs that can occur while processing malformed XML input. CVE-2009-2625: CVSS v2 Base Score: 5.0 (moderate) (AV:N/AC:L/Au:N/C:N/I:N/A:P): Permissions, Privileges, and Access Control (CWE-264) CVE-2009-3720: CVSS v2 Base Score: 5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:N/I:N/A:P): Insufficient Information (CWE-noinfo) CVE-2009-3560: CVSS v2 Base Score: 5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:N/I:N/A:P): Buffer Errors (CWE-119) python-2.5.2-26.6.i586.rpm python-2.5.2-26.6.ppc.rpm python-2.5.2-26.6.x86_64.rpm python-32bit-2.5.2-26.6.x86_64.rpm python-64bit-2.5.2-26.6.ppc.rpm python-curses-2.5.2-26.6.i586.rpm python-curses-2.5.2-26.6.ppc.rpm python-curses-2.5.2-26.6.x86_64.rpm python-demo-2.5.2-26.6.i586.rpm python-demo-2.5.2-26.6.ppc.rpm python-demo-2.5.2-26.6.x86_64.rpm python-devel-2.5.2-26.6.i586.rpm python-devel-2.5.2-26.6.ppc.rpm python-devel-2.5.2-26.6.x86_64.rpm python-gdbm-2.5.2-26.6.i586.rpm python-gdbm-2.5.2-26.6.ppc.rpm python-gdbm-2.5.2-26.6.x86_64.rpm python-idle-2.5.2-26.6.i586.rpm python-idle-2.5.2-26.6.ppc.rpm python-idle-2.5.2-26.6.x86_64.rpm python-tk-2.5.2-26.6.i586.rpm python-tk-2.5.2-26.6.ppc.rpm python-tk-2.5.2-26.6.x86_64.rpm python-xml-2.5.2-26.6.i586.rpm python-xml-2.5.2-26.6.ppc.rpm python-xml-2.5.2-26.6.x86_64.rpm texlive openSUSE 11.0 Specially crafted dvi files could cause buffer overflows in dvips and dvipng (CVE-2010-0827, CVE-2010-0829, CVE-2010-0739, CVE-2010-1440). texlive-2007-177.4.noarch.rpm texlive-arab-2007-177.4.noarch.rpm texlive-bin-2007-176.4.i586.rpm texlive-bin-2007-176.4.ppc.rpm texlive-bin-2007-176.4.x86_64.rpm texlive-cjk-2007-177.4.noarch.rpm texlive-context-2007-177.4.noarch.rpm texlive-devel-2007-177.4.noarch.rpm texlive-doc-2007-177.4.noarch.rpm texlive-dvilj-2007-177.4.noarch.rpm texlive-jadetex-2007-177.4.noarch.rpm texlive-latex-2007-177.4.noarch.rpm texlive-latex-doc-2007-177.4.noarch.rpm texlive-metapost-2007-177.4.noarch.rpm texlive-musictex-2007-177.4.noarch.rpm texlive-nfs-2007-177.4.noarch.rpm texlive-omega-2007-177.4.noarch.rpm texlive-ppower4-2007-177.4.noarch.rpm texlive-tex4ht-2007-177.4.noarch.rpm texlive-tools-2007-177.4.noarch.rpm texlive-xetex-2007-177.4.noarch.rpm texlive-xmltex-2007-177.4.noarch.rpm libpng-devel openSUSE 11.0 Denial of service while decompressing a highly compressed huge ancillary chunk has been fixed in libpng. CVE-2010-0205 has been assigned. libpng-devel-1.2.26-14.12.i586.rpm libpng-devel-1.2.26-14.12.ppc.rpm libpng-devel-1.2.26-14.12.x86_64.rpm libpng-devel-32bit-1.2.26-14.12.x86_64.rpm libpng-devel-64bit-1.2.26-14.12.ppc.rpm libpng12-0-1.2.26-14.12.i586.rpm libpng12-0-1.2.26-14.12.ppc.rpm libpng12-0-1.2.26-14.12.x86_64.rpm libpng12-0-32bit-1.2.26-14.12.x86_64.rpm libpng12-0-64bit-1.2.26-14.12.ppc.rpm libpng3-1.2.26-14.12.i586.rpm libpng3-1.2.26-14.12.ppc.rpm libpng3-1.2.26-14.12.x86_64.rpm ncpfs openSUSE 11.0 This update fixes three security issues in ncpfs: Fixed a information leakage on mount (CVE-2010-0790 / bnc#583536) Fixed a mtab locking problem (CVE-2010-0791 / bnc#583536) Fixed a race condition in ncpfs mounts (CVE-2010-0788 / bnc#550004) ncpfs-2.2.6-132.4.i586.rpm ncpfs-2.2.6-132.4.ppc.rpm ncpfs-2.2.6-132.4.x86_64.rpm ncpfs-32bit-2.2.6-132.4.x86_64.rpm ncpfs-64bit-2.2.6-132.4.ppc.rpm ncpfs-devel-2.2.6-132.4.i586.rpm ncpfs-devel-2.2.6-132.4.ppc.rpm ncpfs-devel-2.2.6-132.4.x86_64.rpm seamonkey openSUSE 11.0 This update brings Mozilla Seamonkey to 1.1.19 fixing various bugs and security issues. Following security issues are fixed: MFSA 2010-07: Mozilla developers took fixes from previously fixed memory safety bugs in newer Mozilla-based products and ported them to the Mozilla 1.8.1 branch so they can be utilized by Thunderbird 2 and SeaMonkey 1.1. Paul Fisher reported a crash when joined to an Active Directory server under Vista or Windows 7 and using SSPI authentication. (CVE-2010-0161) Ludovic Hirlimann reported a crash indexing some messages with attachments (CVE-2010-0163) Carsten Book reported a crash in the JavaScript engine (CVE-2009-3075) Josh Soref reported a crash in the BinHex decoder used on non-Mac platforms. (CVE-2009-3072) monarch2000 reported an integer overflow in a base64 decoding function (CVE-2009-2463) MFSA 2009-68 / CVE-2009-3983: Security researcher Takehiro Takahashi of the IBM X-Force reported that Mozilla's NTLM implementation was vulnerable to reflection attacks in which NTLM credentials from one application could be forwarded to another arbitary application via the browser. If an attacker could get a user to visit a web page he controlled he could force NTLM authenticated requests to be forwarded to another application on behalf of the user. MFSA 2009-62 / CVE-2009-3376: Mozilla security researchers Jesse Ruderman and Sid Stamm reported that when downloading a file containing a right-to-left override character (RTL) in the filename, the name displayed in the dialog title bar conflicts with the name of the file shown in the dialog body. An attacker could use this vulnerability to obfuscate the name and file extension of a file to be downloaded and opened, potentially causing a user to run an executable file when they expected to open a non-executable file. MFSA 2009-59 / CVE-2009-0689: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code containing a very long string to be converted to a floating point number which would result in improper memory allocation and the execution of an arbitrary memory location. This vulnerability could thus be leveraged by the attacker to run arbitrary code on a victim's computer. Update: The underlying flaw in the dtoa routines used by Mozilla appears to be essentially the same as that reported against the libc gdtoa routine by Maksymilian Arciemowicz. MFSA 2010-06 / CVE-2009-3385: Security researcher Georgi Guninski reported that scriptable plugin content, such as Flash objects, could be loaded and executed in SeaMonkey mail messages by embedding the content in an iframe inside the message. If a user were to reply to or forward such a message, malicious JavaScript embedded in the plugin content could potentially steal the contents of the message or files from the local filesystem. MFSA 2009-49 / CVE-2009-3077: An anonymous security researcher, via TippingPoint's Zero Day Initiative, reported that the columns of a XUL tree element could be manipulated in a particular way which would leave a pointer owned by the column pointing to freed memory. An attacker could potentially use this vulnerability to crash a victim's browser and run arbitrary code on the victim's computer. Please see http://www.mozilla.org/security/known-vulnerabilities/seamon key11.html seamonkey-1.1.19-0.1.i586.rpm seamonkey-1.1.19-0.1.ppc.rpm seamonkey-1.1.19-0.1.x86_64.rpm seamonkey-dom-inspector-1.1.19-0.1.i586.rpm seamonkey-dom-inspector-1.1.19-0.1.ppc.rpm seamonkey-dom-inspector-1.1.19-0.1.x86_64.rpm seamonkey-irc-1.1.19-0.1.i586.rpm seamonkey-irc-1.1.19-0.1.ppc.rpm seamonkey-irc-1.1.19-0.1.x86_64.rpm seamonkey-mail-1.1.19-0.1.i586.rpm seamonkey-mail-1.1.19-0.1.ppc.rpm seamonkey-mail-1.1.19-0.1.x86_64.rpm seamonkey-spellchecker-1.1.19-0.1.i586.rpm seamonkey-spellchecker-1.1.19-0.1.ppc.rpm seamonkey-spellchecker-1.1.19-0.1.x86_64.rpm seamonkey-venkman-1.1.19-0.1.i586.rpm seamonkey-venkman-1.1.19-0.1.ppc.rpm seamonkey-venkman-1.1.19-0.1.x86_64.rpm krb5 openSUSE 11.0 This update fixes a denial-of-service vulnerability in kadmind. A remote attack can send a malformed GSS-API token that triggers a NULL pointer dereference. (CVE-2010-1321: CVSS v2 Base Score: 6.8 (MEDIUM) (AV:N/AC:L/Au:S/C:N/I:N/A:C)) krb5-1.6.3-50.11.i586.rpm krb5-1.6.3-50.11.ppc.rpm krb5-1.6.3-50.11.x86_64.rpm krb5-32bit-1.6.3-50.11.x86_64.rpm krb5-64bit-1.6.3-50.11.ppc.rpm krb5-apps-clients-1.6.3-50.11.i586.rpm krb5-apps-clients-1.6.3-50.11.ppc.rpm krb5-apps-clients-1.6.3-50.11.x86_64.rpm krb5-apps-servers-1.6.3-50.11.i586.rpm krb5-apps-servers-1.6.3-50.11.ppc.rpm krb5-apps-servers-1.6.3-50.11.x86_64.rpm krb5-client-1.6.3-50.11.i586.rpm krb5-client-1.6.3-50.11.ppc.rpm krb5-client-1.6.3-50.11.x86_64.rpm krb5-devel-1.6.3-50.11.i586.rpm krb5-devel-1.6.3-50.11.ppc.rpm krb5-devel-1.6.3-50.11.x86_64.rpm krb5-devel-32bit-1.6.3-50.11.x86_64.rpm krb5-devel-64bit-1.6.3-50.11.ppc.rpm krb5-plugin-kdb-ldap-1.6.3-9.8.i586.rpm krb5-plugin-kdb-ldap-1.6.3-9.8.ppc.rpm krb5-plugin-kdb-ldap-1.6.3-9.8.x86_64.rpm krb5-plugin-preauth-pkinit-1.6.3-9.8.i586.rpm krb5-plugin-preauth-pkinit-1.6.3-9.8.ppc.rpm krb5-plugin-preauth-pkinit-1.6.3-9.8.x86_64.rpm krb5-server-1.6.3-50.11.i586.rpm krb5-server-1.6.3-50.11.ppc.rpm krb5-server-1.6.3-50.11.x86_64.rpm memcached openSUSE 11.0 Remote attackers that are allowed to connect to memcached could crash memcached by sending invalid input (CVE-2010-1152). memcached-1.2.2-49.4.i586.rpm memcached-1.2.2-49.4.ppc.rpm memcached-1.2.2-49.4.x86_64.rpm flash-player openSUSE 11.0 This Flash Player update fixes multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The following CVE numbers have been assigned: CVE-2008-4546, CVE-2009-3793, CVE-2010-1297, CVE-2010-2160, CVE-2010-2161, CVE-2010-2162, CVE-2010-2163, CVE-2010-2164, CVE-2010-2165, CVE-2010-2166, CVE-2010-2167, CVE-2010-2169, CVE-2010-2170, CVE-2010-2171, CVE-2010-2172, CVE-2010-2173, CVE-2010-2174, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2179, CVE-2010-2180, CVE-2010-2181, CVE-2010-2182, CVE-2010-2183, CVE-2010-2184, CVE-2010-2185, CVE-2010-2186, CVE-2010-2187, CVE-2010-2188, CVE-2010-2189 flash-player-10.1.53.64-1.1.i586.rpm libtiff-devel openSUSE 11.0 This update of libtiff fixes several integer overflows that could lead to a corrupted heap memory. This bug can be exploited remotely with a crafted TIFF file to cause an application crash or probably to execute arbitrary code. (CVE-2010-1411) libtiff-devel-3.8.2-108.9.i586.rpm libtiff-devel-3.8.2-108.9.ppc.rpm libtiff-devel-3.8.2-108.9.x86_64.rpm libtiff-devel-32bit-3.8.2-108.9.x86_64.rpm libtiff-devel-64bit-3.8.2-108.9.ppc.rpm libtiff3-3.8.2-108.9.i586.rpm libtiff3-3.8.2-108.9.ppc.rpm libtiff3-3.8.2-108.9.x86_64.rpm libtiff3-32bit-3.8.2-108.9.x86_64.rpm libtiff3-64bit-3.8.2-108.9.ppc.rpm tiff-3.8.2-108.9.i586.rpm tiff-3.8.2-108.9.ppc.rpm tiff-3.8.2-108.9.x86_64.rpm viewvc openSUSE 11.0 This updates viewvc to version 1.0.12: * fix exception caused by trying to HTML-escape non-string data viewvc-1.0.12-0.1.i586.rpm viewvc-1.0.12-0.1.ppc.rpm viewvc-1.0.12-0.1.x86_64.rpm lftp openSUSE 11.0 This update of lftp improves the filename handling of downloaded files to avoid downloading arbitrary content to unexpected locations (like .login). (CVE-2010-2251) lftp-3.6.3-28.2.i586.rpm lftp-3.6.3-28.2.ppc.rpm lftp-3.6.3-28.2.x86_64.rpm bytefx-data-mysql openSUSE 11.0 Mono's ASP.NET implementation did not set the 'EnableViewStateMac' property by default. Attackers could exploit that to conduct cross-site-scripting (XSS) attacks. bytefx-data-mysql-1.9.1-6.8.i586.rpm bytefx-data-mysql-1.9.1-6.8.ppc.rpm bytefx-data-mysql-1.9.1-6.8.x86_64.rpm ibm-data-db2-1.9.1-6.8.i586.rpm ibm-data-db2-1.9.1-6.8.ppc.rpm ibm-data-db2-1.9.1-6.8.x86_64.rpm mono-complete-1.9.1-6.8.i586.rpm mono-complete-1.9.1-6.8.ppc.rpm mono-complete-1.9.1-6.8.x86_64.rpm mono-core-1.9.1-6.8.i586.rpm mono-core-1.9.1-6.8.ppc.rpm mono-core-1.9.1-6.8.x86_64.rpm mono-core-32bit-1.9.1-6.8.x86_64.rpm mono-data-1.9.1-6.8.i586.rpm mono-data-1.9.1-6.8.ppc.rpm mono-data-1.9.1-6.8.x86_64.rpm mono-data-firebird-1.9.1-6.8.i586.rpm mono-data-firebird-1.9.1-6.8.ppc.rpm mono-data-firebird-1.9.1-6.8.x86_64.rpm mono-data-oracle-1.9.1-6.8.i586.rpm mono-data-oracle-1.9.1-6.8.ppc.rpm mono-data-oracle-1.9.1-6.8.x86_64.rpm mono-data-postgresql-1.9.1-6.8.i586.rpm mono-data-postgresql-1.9.1-6.8.ppc.rpm mono-data-postgresql-1.9.1-6.8.x86_64.rpm mono-data-sqlite-1.9.1-6.8.i586.rpm mono-data-sqlite-1.9.1-6.8.ppc.rpm mono-data-sqlite-1.9.1-6.8.x86_64.rpm mono-data-sybase-1.9.1-6.8.i586.rpm mono-data-sybase-1.9.1-6.8.ppc.rpm mono-data-sybase-1.9.1-6.8.x86_64.rpm mono-devel-1.9.1-6.8.i586.rpm mono-devel-1.9.1-6.8.ppc.rpm mono-devel-1.9.1-6.8.x86_64.rpm mono-extras-1.9.1-6.8.i586.rpm mono-extras-1.9.1-6.8.ppc.rpm mono-extras-1.9.1-6.8.x86_64.rpm mono-jscript-1.9.1-6.8.i586.rpm mono-jscript-1.9.1-6.8.ppc.rpm mono-jscript-1.9.1-6.8.x86_64.rpm mono-locale-extras-1.9.1-6.8.i586.rpm mono-locale-extras-1.9.1-6.8.ppc.rpm mono-locale-extras-1.9.1-6.8.x86_64.rpm mono-nunit-1.9.1-6.8.i586.rpm mono-nunit-1.9.1-6.8.ppc.rpm mono-nunit-1.9.1-6.8.x86_64.rpm mono-web-1.9.1-6.8.i586.rpm mono-web-1.9.1-6.8.ppc.rpm mono-web-1.9.1-6.8.x86_64.rpm mono-winforms-1.9.1-6.8.i586.rpm mono-winforms-1.9.1-6.8.ppc.rpm mono-winforms-1.9.1-6.8.x86_64.rpm monodoc-core-1.9-18.1.noarch.rpm cifs-mount openSUSE 11.0 This update of the Samba server package fixes security issues and bugs. Following security issues were fixed: CVE-2010-2063: A buffer overrun was possible in chain_reply code in 3.3.x and below, which could be used to crash the samba server or potentially execute code. CVE-2010-0787: Take extra care that a mount point of mount.cifs isn't changed during mount. Also the following bugs were fixed: - Honor "interfaces" list in net ad dns register. (bnc#606947) - An uninitialized variable read could cause an smbd crash; (bso#7254); (bnc#605935). cifs-mount-3.2.4-4.12.i586.rpm cifs-mount-3.2.4-4.12.ppc.rpm cifs-mount-3.2.4-4.12.x86_64.rpm ldapsmb-1.34b-195.17.i586.rpm ldapsmb-1.34b-195.17.ppc.rpm ldapsmb-1.34b-195.17.x86_64.rpm libnetapi-devel-3.2.4-4.12.i586.rpm libnetapi-devel-3.2.4-4.12.ppc.rpm libnetapi-devel-3.2.4-4.12.x86_64.rpm libnetapi0-3.2.4-4.12.i586.rpm libnetapi0-3.2.4-4.12.ppc.rpm libnetapi0-3.2.4-4.12.x86_64.rpm libsmbclient-devel-3.2.4-4.12.i586.rpm libsmbclient-devel-3.2.4-4.12.ppc.rpm libsmbclient-devel-3.2.4-4.12.x86_64.rpm libsmbclient0-3.2.4-4.12.i586.rpm libsmbclient0-3.2.4-4.12.ppc.rpm libsmbclient0-3.2.4-4.12.x86_64.rpm libsmbclient0-32bit-3.2.4-4.12.x86_64.rpm libsmbclient0-64bit-3.2.4-4.12.ppc.rpm libsmbsharemodes-devel-3.2.4-4.12.i586.rpm libsmbsharemodes-devel-3.2.4-4.12.ppc.rpm libsmbsharemodes-devel-3.2.4-4.12.x86_64.rpm libsmbsharemodes0-3.2.4-4.12.i586.rpm libsmbsharemodes0-3.2.4-4.12.ppc.rpm libsmbsharemodes0-3.2.4-4.12.x86_64.rpm libtalloc-devel-3.2.4-4.12.i586.rpm libtalloc-devel-3.2.4-4.12.ppc.rpm libtalloc-devel-3.2.4-4.12.x86_64.rpm libtalloc1-3.2.4-4.12.i586.rpm libtalloc1-3.2.4-4.12.ppc.rpm libtalloc1-3.2.4-4.12.x86_64.rpm libtalloc1-32bit-3.2.4-4.12.x86_64.rpm libtalloc1-64bit-3.2.4-4.12.ppc.rpm libtdb-devel-3.2.4-4.12.i586.rpm libtdb-devel-3.2.4-4.12.ppc.rpm libtdb-devel-3.2.4-4.12.x86_64.rpm libtdb1-3.2.4-4.12.i586.rpm libtdb1-3.2.4-4.12.ppc.rpm libtdb1-3.2.4-4.12.x86_64.rpm libtdb1-32bit-3.2.4-4.12.x86_64.rpm libtdb1-64bit-3.2.4-4.12.ppc.rpm libwbclient-devel-3.2.4-4.12.i586.rpm libwbclient-devel-3.2.4-4.12.ppc.rpm libwbclient-devel-3.2.4-4.12.x86_64.rpm libwbclient0-3.2.4-4.12.i586.rpm libwbclient0-3.2.4-4.12.ppc.rpm libwbclient0-3.2.4-4.12.x86_64.rpm libwbclient0-32bit-3.2.4-4.12.x86_64.rpm libwbclient0-64bit-3.2.4-4.12.ppc.rpm samba-3.2.4-4.12.i586.rpm samba-3.2.4-4.12.ppc.rpm samba-3.2.4-4.12.x86_64.rpm samba-32bit-3.2.4-4.12.x86_64.rpm samba-64bit-3.2.4-4.12.ppc.rpm samba-client-3.2.4-4.12.i586.rpm samba-client-3.2.4-4.12.ppc.rpm samba-client-3.2.4-4.12.x86_64.rpm samba-client-32bit-3.2.4-4.12.x86_64.rpm samba-client-64bit-3.2.4-4.12.ppc.rpm samba-devel-3.2.4-4.12.i586.rpm samba-devel-3.2.4-4.12.ppc.rpm samba-devel-3.2.4-4.12.x86_64.rpm samba-krb-printing-3.2.4-4.12.i586.rpm samba-krb-printing-3.2.4-4.12.ppc.rpm samba-krb-printing-3.2.4-4.12.x86_64.rpm samba-winbind-3.2.4-4.12.i586.rpm samba-winbind-3.2.4-4.12.ppc.rpm samba-winbind-3.2.4-4.12.x86_64.rpm samba-winbind-32bit-3.2.4-4.12.x86_64.rpm samba-winbind-64bit-3.2.4-4.12.ppc.rpm libvorbis openSUSE 11.0 This update of libvorbis fixes a memory corruption while parsing OGG files. This bug was exploitable by remote attackers to cause an application crash and could probably be exploited to execute arbitrary code. CVE-2009-2663: CVSS v2 Base Score: 6.8 (important) (AV:N/AC:M/Au:N/C:P/I:P/A:P): Resource Management Errors (CWE-399) libvorbis-1.2.0-53.3.i586.rpm libvorbis-1.2.0-53.3.ppc.rpm libvorbis-1.2.0-53.3.x86_64.rpm libvorbis-32bit-1.2.0-53.3.x86_64.rpm libvorbis-64bit-1.2.0-53.3.ppc.rpm libvorbis-devel-1.2.0-53.3.i586.rpm libvorbis-devel-1.2.0-53.3.ppc.rpm libvorbis-devel-1.2.0-53.3.x86_64.rpm libvorbis-doc-1.2.0-53.3.i586.rpm libvorbis-doc-1.2.0-53.3.ppc.rpm libvorbis-doc-1.2.0-53.3.x86_64.rpm kvirc openSUSE 11.0 This update of KVirc fixes a remotely exploitable format string and directory traversal vulnerability (CVE-2010-2451, CVE-2010-2452). kvirc-3.2.6-186.2.i586.rpm kvirc-3.2.6-186.2.ppc.rpm kvirc-3.2.6-186.2.x86_64.rpm kvirc-devel-3.2.6-186.2.i586.rpm kvirc-devel-3.2.6-186.2.ppc.rpm kvirc-devel-3.2.6-186.2.x86_64.rpm MozillaFirefox openSUSE 11.0 Mozilla Firefox was updated to version 3.5.10, fixing various bugs and security issues. MFSA 2010-33 / CVE-2008-5913: Security researcher Amit Klein reported that it was possible to reverse engineer the value used to seed Math.random(). Since the pseudo-random number generator was only seeded once per browsing session, this seed value could be used as a unique token to identify and track users across different web sites. MFSA 2010-32 / CVE-2010-1197: Security researcher Ilja van Sprundel of IOActive reported that the Content-Disposition: attachment HTTP header was ignored when Content-Type: multipart was also present. This issue could potentially lead to XSS problems in sites that allow users to upload arbitrary files and specify a Content-Type but rely on Content-Disposition: attachment to prevent the content from being displayed inline. MFSA 2010-31 / CVE-2010-1125: Google security researcher Michal Zalewski reported that focus() could be used to change a user's cursor focus while they are typing, potentially directing their keyboard input to an unintended location. This behaviour was also present across origins when content from one domain was embedded within another via an iframe. A malicious web page could use this behaviour to steal keystrokes from a victim while they were typing sensitive information such as a password. MFSA 2010-30 / CVE-2010-1199: Security researcher Martin Barbella reported via TippingPoint's Zero Day Initiative that an XSLT node sorting routine contained an integer overflow vulnerability. In cases where one of the nodes to be sorted contained a very large text value, the integer used to allocate a memory buffer to store its value would overflow, resulting in too small a buffer being created. An attacker could use this vulnerability to write data past the end of the buffer, causing the browser to crash and potentially running arbitrary code on a victim's computer. MFSA 2010-29 / CVE-2010-1196: Security researcher Nils of MWR InfoSecurity reported that the routine for setting the text value for certain types of DOM nodes contained an integer overflow vulnerability. When a very long string was passed to this routine, the integer value used in creating a new memory buffer to hold the string would overflow, resulting in too small a buffer being allocated. An attacker could use this vulnerability to write data past the end of the buffer, causing a crash and potentially running arbitrary code on a victim's computer. MFSA 2010-28 / CVE-2010-1198: Microsoft Vulnerability Research reported that two plugin instances could interact in a way in which one plugin gets a reference to an object owned by a second plugin and continues to hold that reference after the second plugin is unloaded and its object is destroyed. In these cases, the first plugin would contain a pointer to freed memory which, if accessed, could be used by an attacker to execute arbitrary code on a victim's computer. MFSA 2010-27 / CVE-2010-0183: Security researcher wushi of team509 reported that the frame construction process for certain types of menus could result in a menu containing a pointer to a previously freed menu item. During the cycle collection process, this freed item could be accessed, resulting in the execution of a section of code potentially controlled by an attacker. MFSA 2010-26 / CVE-2010-1200 / CVE-2010-1201 / CVE-2010-1202 / CVE-2010-1203: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code. MFSA 2010-25 / CVE-2010-1121: A memory corruption flaw leading to code execution was reported by security researcher Nils of MWR InfoSecurity during the 2010 Pwn2Own contest sponsored by TippingPoint's Zero Day Initiative. By moving DOM nodes between documents Nils found a case where the moved node incorrectly retained its old scope. If garbage collection could be triggered at the right time then Firefox would later use this freed object. The contest winning exploit only affects Firefox 3.6 and not earlier versions. Updated (June 22, 2010): Firefox 3.5, SeaMonkey 2.0, and Thunderbird 3.0 based on earlier versions of the browser engine were patched just in case there is an alternate way of triggering the underlying flaw. MozillaFirefox-3.5.10-0.1.i586.rpm MozillaFirefox-3.5.10-0.1.ppc.rpm MozillaFirefox-3.5.10-0.1.x86_64.rpm MozillaFirefox-branding-upstream-3.5.10-0.1.i586.rpm MozillaFirefox-branding-upstream-3.5.10-0.1.ppc.rpm MozillaFirefox-branding-upstream-3.5.10-0.1.x86_64.rpm MozillaFirefox-translations-common-3.5.10-0.1.i586.rpm MozillaFirefox-translations-common-3.5.10-0.1.ppc.rpm MozillaFirefox-translations-common-3.5.10-0.1.x86_64.rpm MozillaFirefox-translations-other-3.5.10-0.1.i586.rpm MozillaFirefox-translations-other-3.5.10-0.1.ppc.rpm MozillaFirefox-translations-other-3.5.10-0.1.x86_64.rpm mozilla-xulrunner191-1.9.1.10-0.1.i586.rpm mozilla-xulrunner191-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-1.9.1.10-0.1.x86_64.rpm mozilla-xulrunner191-32bit-1.9.1.10-0.1.x86_64.rpm mozilla-xulrunner191-64bit-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-devel-1.9.1.10-0.1.i586.rpm mozilla-xulrunner191-devel-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-devel-1.9.1.10-0.1.x86_64.rpm mozilla-xulrunner191-gnomevfs-1.9.1.10-0.1.i586.rpm mozilla-xulrunner191-gnomevfs-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-gnomevfs-1.9.1.10-0.1.x86_64.rpm mozilla-xulrunner191-gnomevfs-32bit-1.9.1.10-0.1.x86_64.rpm mozilla-xulrunner191-gnomevfs-64bit-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-translations-common-1.9.1.10-0.1.i586.rpm mozilla-xulrunner191-translations-common-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-translations-common-1.9.1.10-0.1.x86_64.rpm mozilla-xulrunner191-translations-other-1.9.1.10-0.1.i586.rpm mozilla-xulrunner191-translations-other-1.9.1.10-0.1.ppc.rpm mozilla-xulrunner191-translations-other-1.9.1.10-0.1.x86_64.rpm python-xpcom191-1.9.1.10-0.1.i586.rpm python-xpcom191-1.9.1.10-0.1.ppc.rpm python-xpcom191-1.9.1.10-0.1.x86_64.rpm acroread openSUSE 11.0 Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code (CVE-2010-1297, CVE-2010-1240, CVE-2010-1285, CVE-2010-1295, CVE-2010-2168, CVE-2010-2201, CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205, CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209, CVE-2010-2210, CVE-2010-2211, CVE-2010-2212). acroread-9.3.3-2.1.i586.rpm acroread-cmaps-9.3.3-2.1.noarch.rpm acroread-fonts-ja-9.3.3-2.1.noarch.rpm acroread-fonts-ko-9.3.3-2.1.noarch.rpm acroread-fonts-zh_CN-9.3.3-2.1.noarch.rpm acroread-fonts-zh_TW-9.3.3-2.1.noarch.rpm moodle openSUSE 11.0 Moodle was prone to several Cross-Site Scripting (XSS) vulnerabilities (CVE-2010-2228, CVE-2010-2229, CVE-2010-2230, CVE-2010-2231). moodle-1.9.9-0.1.noarch.rpm moodle-af-1.9.9-0.1.noarch.rpm moodle-ar-1.9.9-0.1.noarch.rpm moodle-be-1.9.9-0.1.noarch.rpm moodle-bg-1.9.9-0.1.noarch.rpm moodle-bs-1.9.9-0.1.noarch.rpm moodle-ca-1.9.9-0.1.noarch.rpm moodle-cs-1.9.9-0.1.noarch.rpm moodle-da-1.9.9-0.1.noarch.rpm moodle-de-1.9.9-0.1.noarch.rpm moodle-de_du-1.9.9-0.1.noarch.rpm moodle-el-1.9.9-0.1.noarch.rpm moodle-es-1.9.9-0.1.noarch.rpm moodle-et-1.9.9-0.1.noarch.rpm moodle-eu-1.9.9-0.1.noarch.rpm moodle-fa-1.9.9-0.1.noarch.rpm moodle-fi-1.9.9-0.1.noarch.rpm moodle-fr-1.9.9-0.1.noarch.rpm moodle-ga-1.9.9-0.1.noarch.rpm moodle-gl-1.9.9-0.1.noarch.rpm moodle-he-1.9.9-0.1.noarch.rpm moodle-hi-1.9.9-0.1.noarch.rpm moodle-hr-1.9.9-0.1.noarch.rpm moodle-hu-1.9.9-0.1.noarch.rpm moodle-id-1.9.9-0.1.noarch.rpm moodle-is-1.9.9-0.1.noarch.rpm moodle-it-1.9.9-0.1.noarch.rpm moodle-ja-1.9.9-0.1.noarch.rpm moodle-ka-1.9.9-0.1.noarch.rpm moodle-km-1.9.9-0.1.noarch.rpm moodle-kn-1.9.9-0.1.noarch.rpm moodle-ko-1.9.9-0.1.noarch.rpm moodle-lt-1.9.9-0.1.noarch.rpm moodle-lv-1.9.9-0.1.noarch.rpm moodle-mi_tn-1.9.9-0.1.noarch.rpm moodle-ms-1.9.9-0.1.noarch.rpm moodle-nl-1.9.9-0.1.noarch.rpm moodle-nn-1.9.9-0.1.noarch.rpm moodle-no-1.9.9-0.1.noarch.rpm moodle-pl-1.9.9-0.1.noarch.rpm moodle-pt-1.9.9-0.1.noarch.rpm moodle-ro-1.9.9-0.1.noarch.rpm moodle-ru-1.9.9-0.1.noarch.rpm moodle-sk-1.9.9-0.1.noarch.rpm moodle-sl-1.9.9-0.1.noarch.rpm moodle-so-1.9.9-0.1.noarch.rpm moodle-sq-1.9.9-0.1.noarch.rpm moodle-sr-1.9.9-0.1.noarch.rpm moodle-sv-1.9.9-0.1.noarch.rpm moodle-th-1.9.9-0.1.noarch.rpm moodle-tl-1.9.9-0.1.noarch.rpm moodle-tr-1.9.9-0.1.noarch.rpm moodle-uk-1.9.9-0.1.noarch.rpm moodle-vi-1.9.9-0.1.noarch.rpm moodle-zh_cn-1.9.9-0.1.noarch.rpm otrs openSUSE 11.0 OTRS was prone to multiple SQL-injection vulnerabilities which could allow remote authenticated attackers to execute arbitrary SQL code via unspecified vectors.(CVE-2010-0438). otrs-2.2.6-15.3.i586.rpm otrs-2.2.6-15.3.ppc.rpm otrs-2.2.6-15.3.x86_64.rpm postgresql openSUSE 11.0 This update of postgresql was pblished to fix several minor security vulnerabilities: - CVE-2010-1975: postgresql does not properly check privileges during certain RESET ALL operations, which allows remote authenticated users to remove arbitrary parameter settings. - CVE-2010-1170: The PL/Tcl implementation in postgresql loads Tcl code from the pltcl_modules table regardless of the table's ownership and permissions, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Tcl code. - CVE-2010-1169: Postgresql does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Perl code via a crafted script. - CVE-2010-0733: An integer overflow in postgresql allows remote authenticated users to crash the daemon via a SELECT statement. postgresql-8.3.11-0.1.i586.rpm postgresql-8.3.11-0.1.ppc.rpm postgresql-8.3.11-0.1.ppc64.rpm postgresql-8.3.11-0.1.x86_64.rpm postgresql-contrib-8.3.11-0.1.i586.rpm postgresql-contrib-8.3.11-0.1.ppc.rpm postgresql-contrib-8.3.11-0.1.x86_64.rpm postgresql-devel-8.3.11-0.1.i586.rpm postgresql-devel-8.3.11-0.1.ppc.rpm postgresql-devel-8.3.11-0.1.x86_64.rpm postgresql-docs-8.3.11-0.1.i586.rpm postgresql-docs-8.3.11-0.1.ppc.rpm postgresql-docs-8.3.11-0.1.x86_64.rpm postgresql-libs-8.3.11-0.1.i586.rpm postgresql-libs-8.3.11-0.1.ppc.rpm postgresql-libs-8.3.11-0.1.x86_64.rpm postgresql-libs-32bit-8.3.11-0.1.x86_64.rpm postgresql-libs-64bit-8.3.11-0.1.ppc.rpm postgresql-plperl-8.3.11-0.1.i586.rpm postgresql-plperl-8.3.11-0.1.ppc.rpm postgresql-plperl-8.3.11-0.1.x86_64.rpm postgresql-plpython-8.3.11-0.1.i586.rpm postgresql-plpython-8.3.11-0.1.ppc.rpm postgresql-plpython-8.3.11-0.1.x86_64.rpm postgresql-pltcl-8.3.11-0.1.i586.rpm postgresql-pltcl-8.3.11-0.1.ppc.rpm postgresql-pltcl-8.3.11-0.1.x86_64.rpm postgresql-server-8.3.11-0.1.i586.rpm postgresql-server-8.3.11-0.1.ppc.rpm postgresql-server-8.3.11-0.1.x86_64.rpm opera openSUSE 11.0 Opera was upgraded to the 10.60 release. It brings lots of new features, bugfixes and security fixes. Security fixes include: CVE-2010-0653: Opera permits cross-origin loading of CSS style sheets even when the style sheet download has an incorrect MIME type and the style sheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document. CVE-2010-1993: Opera 9.52 does not properly handle an IFRAME element with a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (resource consumption) via an HTML document with many IFRAME elements. opera-10.60-0.1.i586.rpm opera-10.60-0.1.ppc.rpm opera-10.60-0.1.x86_64.rpm ksh openSUSE 11.0 Collective update for ksh version 93t, including the following fixes: - #502622: ksh: assigning to SECONDS in a subshell causes corruption/crash - #520598: memory leak in ksh - #523212: ksh error when "~user" is used and NIS is enabled - #555938: ksh cursor position regression - #561405: ksh JM 93t+ 2009-01-20 bug - #564967: Trap does not work on signals over 16 in ksh - #585244: regression: ksh not detecting exit status correctly - #591248: Unreliable results in ksh when trapping SIGCHILD ksh-93t-22.1.i586.rpm ksh-93t-22.1.ppc.rpm ksh-93t-22.1.x86_64.rpm ksh-devel-93t-22.1.i586.rpm ksh-devel-93t-22.1.ppc.rpm ksh-devel-93t-22.1.x86_64.rpm OpenOffice_org openSUSE 11.0 This update of OpenOffice_org does not allow macros written in Python to be executed without permission, CVE-2010-0395. OpenOffice_org-2.4.0.14-1.8.i586.rpm OpenOffice_org-2.4.0.14-1.8.ppc.rpm OpenOffice_org-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-base-2.4.0.14-1.8.i586.rpm OpenOffice_org-base-2.4.0.14-1.8.ppc.rpm OpenOffice_org-base-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.8.i586.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.8.ppc.rpm OpenOffice_org-branding-upstream-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-calc-2.4.0.14-1.8.i586.rpm OpenOffice_org-calc-2.4.0.14-1.8.ppc.rpm OpenOffice_org-calc-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-devel-2.4.0.14-1.8.i586.rpm OpenOffice_org-devel-2.4.0.14-1.8.ppc.rpm OpenOffice_org-devel-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-draw-2.4.0.14-1.8.i586.rpm OpenOffice_org-draw-2.4.0.14-1.8.ppc.rpm OpenOffice_org-draw-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-filters-2.4.0.14-1.8.i586.rpm OpenOffice_org-filters-2.4.0.14-1.8.ppc.rpm OpenOffice_org-filters-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-gnome-2.4.0.14-1.8.i586.rpm OpenOffice_org-gnome-2.4.0.14-1.8.ppc.rpm OpenOffice_org-gnome-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.8.i586.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.8.ppc.rpm OpenOffice_org-icon-themes-prebuilt-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-impress-2.4.0.14-1.8.i586.rpm OpenOffice_org-impress-2.4.0.14-1.8.ppc.rpm OpenOffice_org-impress-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-kde-2.4.0.14-1.8.i586.rpm OpenOffice_org-kde-2.4.0.14-1.8.ppc.rpm OpenOffice_org-kde-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-mailmerge-2.4.0.14-1.8.i586.rpm OpenOffice_org-mailmerge-2.4.0.14-1.8.ppc.rpm OpenOffice_org-mailmerge-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-math-2.4.0.14-1.8.i586.rpm OpenOffice_org-math-2.4.0.14-1.8.ppc.rpm OpenOffice_org-math-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-mono-2.4.0.14-1.8.i586.rpm OpenOffice_org-mono-2.4.0.14-1.8.ppc.rpm OpenOffice_org-mono-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-officebean-2.4.0.14-1.8.i586.rpm OpenOffice_org-officebean-2.4.0.14-1.8.ppc.rpm OpenOffice_org-officebean-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-pyuno-2.4.0.14-1.8.i586.rpm OpenOffice_org-pyuno-2.4.0.14-1.8.ppc.rpm OpenOffice_org-pyuno-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-sdk-2.4.0.14-1.8.i586.rpm OpenOffice_org-sdk-2.4.0.14-1.8.ppc.rpm OpenOffice_org-sdk-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.8.i586.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.8.ppc.rpm OpenOffice_org-sdk-doc-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-testtool-2.4.0.14-1.8.i586.rpm OpenOffice_org-testtool-2.4.0.14-1.8.ppc.rpm OpenOffice_org-testtool-2.4.0.14-1.8.x86_64.rpm OpenOffice_org-writer-2.4.0.14-1.8.i586.rpm OpenOffice_org-writer-2.4.0.14-1.8.ppc.rpm OpenOffice_org-writer-2.4.0.14-1.8.x86_64.rpm libQtWebKit-devel openSUSE 11.0 This update provides an update of QtWebKit rendering engine to the one shipped in Qt 4.5.3, which fixes: Canvas (r40546, r41221 r41355, r42996, r43645) Memory (r41527, r43764, r43828, r43830) JavaScript (r39882, r40086, r40131, r40133) Rendering (r41285, r41296, r41659, r42887) Network (r41664, r42516, r42747) Plugins (r41346, r43550, r43915, r43917, r43923) Clipboard (r41360) SVG (r43590, r43795) * Backported various security fixes (r41262, r41568, r41741, r41854, r42081, r42216, r42223, r42333, r42365, r42532, r42533, r44010) libQtWebKit-devel-4.4.0-12.8.i586.rpm libQtWebKit-devel-4.4.0-12.8.ppc.rpm libQtWebKit-devel-4.4.0-12.8.x86_64.rpm libQtWebKit4-4.4.0-12.8.i586.rpm libQtWebKit4-4.4.0-12.8.ppc.rpm libQtWebKit4-4.4.0-12.8.x86_64.rpm libqt4-devel-doc-4.4.0-12.8.i586.rpm libqt4-devel-doc-4.4.0-12.8.ppc.rpm libqt4-devel-doc-4.4.0-12.8.x86_64.rpm qt4-x11-tools-4.4.0-12.8.i586.rpm qt4-x11-tools-4.4.0-12.8.ppc.rpm qt4-x11-tools-4.4.0-12.8.x86_64.rpm w3m openSUSE 11.0 w3m did not handle embedded nul characters in the common name and in subject alternative names of x509 certificates. CVE-2010-2074 has been assigned to this issue. This update also turns on verification of x509 certificates by default which was not the case before. w3m-0.5.2-90.2.i586.rpm w3m-0.5.2-90.2.ppc.rpm w3m-0.5.2-90.2.x86_64.rpm w3m-inline-image-0.5.2-90.2.i586.rpm w3m-inline-image-0.5.2-90.2.ppc.rpm w3m-inline-image-0.5.2-90.2.x86_64.rpm clamav openSUSE 11.0 This update fixes a off-by-one buffer overflow (CVE-2010-1640) and a crash while parsing PDFs (CVE-2010-1639, CVE-2010-2077) in clamav that can be used as a remote denial of service attack. clamav-0.96.1-0.1.i586.rpm clamav-0.96.1-0.1.ppc.rpm clamav-0.96.1-0.1.x86_64.rpm clamav-db-0.96.1-0.1.i586.rpm clamav-db-0.96.1-0.1.ppc.rpm clamav-db-0.96.1-0.1.x86_64.rpm ghostscript-devel openSUSE 11.0 Specially crafted postscript (.ps) files could cause buffer overflows in ghostscript that could potentially be exploited to execute arbitrary code (CVE-2010-1628, CVE-2010-1869, CVE-2009-4270) ghostscript by default read some initialization files from the current working directory. Local attackers could potentially exploit that to have other users execute arbitrary commands by placing such files e.g. in /tmp (CVE-2010-2055). ghostscript-devel-8.62-17.8.i586.rpm ghostscript-devel-8.62-17.8.ppc.rpm ghostscript-devel-8.62-17.8.x86_64.rpm ghostscript-fonts-other-8.62-17.8.i586.rpm ghostscript-fonts-other-8.62-17.8.ppc.rpm ghostscript-fonts-other-8.62-17.8.x86_64.rpm ghostscript-fonts-rus-8.62-17.8.i586.rpm ghostscript-fonts-rus-8.62-17.8.ppc.rpm ghostscript-fonts-rus-8.62-17.8.x86_64.rpm ghostscript-fonts-std-8.62-17.8.i586.rpm ghostscript-fonts-std-8.62-17.8.ppc.rpm ghostscript-fonts-std-8.62-17.8.x86_64.rpm ghostscript-ijs-devel-8.62-17.8.i586.rpm ghostscript-ijs-devel-8.62-17.8.ppc.rpm ghostscript-ijs-devel-8.62-17.8.x86_64.rpm ghostscript-library-8.62-17.8.i586.rpm ghostscript-library-8.62-17.8.ppc.rpm ghostscript-library-8.62-17.8.x86_64.rpm ghostscript-omni-8.62-17.8.i586.rpm ghostscript-omni-8.62-17.8.ppc.rpm ghostscript-omni-8.62-17.8.x86_64.rpm ghostscript-x11-8.62-17.8.i586.rpm ghostscript-x11-8.62-17.8.ppc.rpm ghostscript-x11-8.62-17.8.x86_64.rpm libgimpprint-4.2.7-258.8.i586.rpm libgimpprint-4.2.7-258.8.ppc.rpm libgimpprint-4.2.7-258.8.x86_64.rpm libgimpprint-devel-4.2.7-258.8.i586.rpm libgimpprint-devel-4.2.7-258.8.ppc.rpm libgimpprint-devel-4.2.7-258.8.x86_64.rpm openldap2 openSUSE 11.0 The following issues have been fixed in OpenLDAP: specially crafted MODRDN operations can crash the OpenLDAP server (CVE-2010-0211 and CVE-2010-0212). openldap2-2.4.9-7.8.i586.rpm openldap2-2.4.9-7.8.ppc.rpm openldap2-2.4.9-7.8.x86_64.rpm openldap2-back-meta-2.4.9-7.8.i586.rpm openldap2-back-meta-2.4.9-7.8.ppc.rpm openldap2-back-meta-2.4.9-7.8.x86_64.rpm openldap2-back-perl-2.4.9-7.8.i586.rpm openldap2-back-perl-2.4.9-7.8.ppc.rpm openldap2-back-perl-2.4.9-7.8.x86_64.rpm openldap2-client-2.4.9-7.8.i586.rpm openldap2-client-2.4.9-7.8.ppc.rpm openldap2-client-2.4.9-7.8.x86_64.rpm openldap2-client-32bit-2.4.9-7.8.x86_64.rpm openldap2-client-64bit-2.4.9-7.8.ppc.rpm openldap2-devel-2.4.9-7.8.i586.rpm openldap2-devel-2.4.9-7.8.ppc.rpm openldap2-devel-2.4.9-7.8.x86_64.rpm openldap2-devel-32bit-2.4.9-7.8.x86_64.rpm openldap2-devel-64bit-2.4.9-7.8.ppc.rpm popt openSUSE 11.0 This update fixes the problem where RPM misses to clear the SUID/SGID bit of old files during package updates. (CVE-2010-2059) Also the following bug was fixed: do not use glibc for passwd/group lookups when --root is used [bnc#536256] popt-1.7-427.3.i586.rpm popt-1.7-427.3.ppc.rpm popt-1.7-427.3.x86_64.rpm popt-32bit-1.7-427.3.x86_64.rpm popt-64bit-1.7-427.3.ppc.rpm popt-devel-1.7-427.3.i586.rpm popt-devel-1.7-427.3.ppc.rpm popt-devel-1.7-427.3.x86_64.rpm rpm-4.4.2-199.3.i586.rpm rpm-4.4.2-199.3.ppc.rpm rpm-4.4.2-199.3.x86_64.rpm rpm-devel-4.4.2-199.3.i586.rpm rpm-devel-4.4.2-199.3.ppc.rpm rpm-devel-4.4.2-199.3.x86_64.rpm openSUSE-release openSUSE 11.0 This patch concludes the openSUSE 11.0 security and bugfix support cycle after 2 years. No more updates will be published after this one. openSUSE-release-11.0-47.3.i586.rpm openSUSE-release-11.0-47.3.ppc.rpm openSUSE-release-11.0-47.3.x86_64.rpm openSUSE-release-dvd-11.0-47.3.i586.rpm openSUSE-release-dvd-11.0-47.3.ppc.rpm openSUSE-release-dvd-11.0-47.3.x86_64.rpm openSUSE-release-live-11.0-47.3.i586.rpm openSUSE-release-live-11.0-47.3.ppc.rpm openSUSE-release-live-11.0-47.3.x86_64.rpm