Important: mysql (SL6)

Synopsis: Important: mysql security update Issue Date: 2012-11-14 CVE Numbers: CVE-2012-1688 CVE-2012-1690 CVE-2012-1703 CVE-2012-2749 CVE-2012-0540 CVE-2012-1689 CVE-2012-1734 CVE-2012-3163 CVE-2012-3158 CVE-2012-3177 CVE-2012-3166 CVE-2012-3173 CVE-2012-3150 CVE-2012-3180 CVE-2012-3167 CVE-2012-3197 CVE-2012-3160 — This update fixes several vulnerabilities in the MySQL database server. Information about … Read More

Moderate: libproxy (SL6)

Synopsis: Moderate: libproxy security update Issue Date: 2012-11-14 CVE Numbers: CVE-2012-4505 — A buffer overflow flaw was found in the way libproxy handled the downloading of proxy auto-configuration (PAC) files. A malicious server hosting a PAC file or a man-in-the-middle … Read More

kernel (SL5)

Synopsis: Low: kernel security and bug fix update Issue Date: 2012-11-13 CVE Numbers: CVE-2012-2100 — The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issue: * It was found … Read More

Low: nspluginwrapper (SL6)

Synopsis: Low: nspluginwrapper security and bug fix update Issue Date: 2012-11-13 CVE Numbers: CVE-2011-2486 — It was not possible for plug-ins wrapped by nspluginwrapper to discover whether the browser was running in Private Browsing mode. This flaw could lead to … Read More

Moderate: gegl (SL6)

Synopsis: Moderate: gegl security update Issue Date: 2012-11-12 CVE Numbers: CVE-2012-4433 — An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the gegl utility processed .ppm (Portable Pixel Map) image files. An attacker could … Read More

Critical: icedtea-web (SL6)

Synopsis: Critical: icedtea-web security update Issue Date: 2012-11-07 CVE Numbers: CVE-2012-4540 — A buffer overflow flaw was found in the IcedTea-Web plug-in. Visiting a malicious web page could cause a web browser using the IcedTea-Web plug-in to crash or, possibly, … Read More

Moderate: kernel (SL6)

Synopsis: Moderate: kernel security and bug fix update Issue Date: 2012-11-06 CVE Numbers: CVE-2012-1568 CVE-2012-2133 CVE-2012-3400 CVE-2012-3511 — This update fixes the following security issues: * A use-after-free flaw was found in the Linux kernel’s memory management subsystem in the … Read More

kdelibs (SL6)

Synopsis: Critical: kdelibs security update Issue Date: 2012-10-30 CVE Numbers: CVE-2012-4513 CVE-2012-4512 — A heap-based buffer overflow flaw was found in the way the CSS (Cascading Style Sheets) parser in kdelibs parsed the location of the source for font faces. … Read More

Critical: kdelibs (SL6)

Synopsis: Critical: kdelibs security update Issue Date: 2012-10-30 CVE Numbers: CVE-2012-4513 CVE-2012-4512 — A heap-based buffer overflow flaw was found in the way the CSS (Cascading Style Sheets) parser in kdelibs parsed the location of the source for font faces. … Read More

Important: thunderbird (SL5, SL6)

Synopsis: Important: thunderbird security update Issue Date: 2012-10-29 CVE Numbers: CVE-2012-4194 CVE-2012-4195 CVE-2012-4196 — Multiple flaws were found in the location object implementation in Thunderbird. Malicious content could be used to perform cross-site scripting attacks, bypass the same-origin policy, or … Read More