Critical: kdelibs (SL6)

Synopsis: Critical: kdelibs security update Issue Date: 2012-10-30 CVE Numbers: CVE-2012-4513 CVE-2012-4512 — A heap-based buffer overflow flaw was found in the way the CSS (Cascading Style Sheets) parser in kdelibs parsed the location of the source for font faces. … Read More

Important: thunderbird (SL5, SL6)

Synopsis: Important: thunderbird security update Issue Date: 2012-10-29 CVE Numbers: CVE-2012-4194 CVE-2012-4195 CVE-2012-4196 — Multiple flaws were found in the location object implementation in Thunderbird. Malicious content could be used to perform cross-site scripting attacks, bypass the same-origin policy, or … Read More

Critical: firefox (SL5, SL6)

Synopsis: Critical: firefox security update Issue Date: 2012-10-26 CVE Numbers: CVE-2012-4194 CVE-2012-4195 CVE-2012-4196 — Multiple flaws were found in the location object implementation in Firefox. Malicious content could be used to perform cross-site scripting attacks, bypass the same-origin policy, or … Read More

Critical: java-1.6.0-sun (SL5, SL6)

Synopsis: Critical: java-1.6.0-sun security update Issue Date: 2012-10-18 CVE Numbers: CVE-2012-0547 CVE-2012-4416 CVE-2012-3216 CVE-2012-5068 CVE-2012-5077 CVE-2012-5073 CVE-2012-5075 CVE-2012-5072 CVE-2012-5081 CVE-2012-5086 CVE-2012-5084 CVE-2012-5089 CVE-2012-5071 CVE-2012-5069 CVE-2012-5085 CVE-2012-5079 CVE-2012-1531 CVE-2012-1532 CVE-2012-1533 CVE-2012-3143 CVE-2012-3159 CVE-2012-5083 — This update fixes several vulnerabilities in the … Read More

java-1.7.0-openjdk (SL6)

Synopsis: Important: java-1.7.0-openjdk security update Issue Date: 2012-10-17 CVE Numbers: CVE-2012-4416 CVE-2012-3216 CVE-2012-5068 CVE-2012-5070 CVE-2012-5076 CVE-2012-5077 CVE-2012-5073 CVE-2012-5074 CVE-2012-5075 CVE-2012-5072 CVE-2012-5081 CVE-2012-5086 CVE-2012-5087 CVE-2012-5088 CVE-2012-5084 CVE-2012-5089 CVE-2012-5071 CVE-2012-5069 CVE-2012-5085 CVE-2012-5079 — Multiple improper permission check issues were discovered in the … Read More

java-1.6.0-openjdk (SL5)

Synopsis: Important: java-1.6.0-openjdk security update Issue Date: 2012-10-17 CVE Numbers: CVE-2012-4416 CVE-2012-3216 CVE-2012-5068 CVE-2012-5077 CVE-2012-5073 CVE-2012-5075 CVE-2012-5072 CVE-2012-5081 CVE-2012-5086 CVE-2012-5084 CVE-2012-5089 CVE-2012-5071 CVE-2012-5069 CVE-2012-5085 CVE-2012-5079 — Multiple improper permission check issues were discovered in the Beans, Swing, and JMX components … Read More

Critical: java-1.6.0-openjdk (SL6)

Synopsis: Critical: java-1.6.0-openjdk security update Issue Date: 2012-10-17 CVE Numbers: CVE-2012-4416 CVE-2012-3216 CVE-2012-5068 CVE-2012-5077 CVE-2012-5073 CVE-2012-5075 CVE-2012-5072 CVE-2012-5081 CVE-2012-5086 CVE-2012-5084 CVE-2012-5089 CVE-2012-5071 CVE-2012-5069 CVE-2012-5085 CVE-2012-5079 — Multiple improper permission check issues were discovered in the Beans, Swing, and JMX components … Read More

Important: kernel (SL6)

Synopsis: Important: kernel security and bug fix update Issue Date: 2012-10-16 CVE Numbers: CVE-2012-3412 — This update fixes the following security issue: * A flaw was found in the way socket buffers (skb) requiring TSO (TCP segment offloading) were handled … Read More

Important: bind (SL5, SL6)

Synopsis: Important: bind security update Issue Date: 2012-10-12 CVE Numbers: CVE-2012-5166 — A flaw was found in the way BIND handled certain combinations of resource records. A remote attacker could use this flaw to cause a recursive resolver, or an … Read More

Critical: xulrunner (SL5, SL6)

Synopsis: Critical: xulrunner security update Issue Date: 2012-10-12 CVE Numbers: CVE-2012-4193 — A flaw was found in the way XULRunner handled security wrappers. A web page containing malicious content could possibly cause an application linked against XULRunner (such as Mozilla … Read More