Important: libpng (SL4, SL5, SL6)

Synopsis: Important: libpng security update Issue Date: 2012-02-20 CVE Numbers: CVE-2011-3026 — The libpng packages contain a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. A heap-based buffer overflow flaw was found in libpng. … Read More

Critical: xulrunner (SL5, SL6)

Synopsis: Critical: xulrunner security update Issue Date: 2012-02-16 CVE Numbers: CVE-2011-3026 — XULRunner provides the XUL Runtime environment for applications using the Gecko layout engine. A heap-based buffer overflow flaw was found in the way XULRunner handled PNG (Portable Network … Read More

firefox (SL4)

Synopsis: Critical: firefox security update Issue Date: 2012-02-16 CVE Numbers: CVE-2011-3026 — Mozilla Firefox is an open source web browser. A heap-based buffer overflow flaw was found in the way Firefox handled PNG (Portable Network Graphics) images. A web page … Read More

seamonkey (SL4)

Synopsis: Critical: seamonkey security update Issue Date: 2012-02-16 CVE Numbers: CVE-2011-3026 — SeaMonkey is an open source web browser, e-mail and newsgroup client, IRC chat client, and HTML editor. A heap-based buffer overflow flaw was found in the way SeaMonkey … Read More

Critical: thunderbird (SL6)

Synopsis: Critical: thunderbird security update Issue Date: 2012-02-16 CVE Numbers: CVE-2011-3026 — Mozilla Thunderbird is a standalone mail and newsgroup client. A heap-based buffer overflow flaw was found in the way Thunderbird handled PNG (Portable Network Graphics) images. An HTML … Read More

Moderate: texlive (SL6)

Synopsis: Moderate: texlive security update Issue Date: 2012-02-15 CVE Numbers: CVE-2010-2642 CVE-2011-0433 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 CVE-2011-0764 — TeX Live is an implementation of TeX. TeX takes a text file and a set of formatting commands as input, and creates a … Read More

Important: libvorbis (SL4, SL5, SL6)

Synopsis: Important: libvorbis security update Issue Date: 2012-02-14 CVE Numbers: CVE-2012-0444 — The libvorbis packages contain runtime libraries for use in programs that support Ogg Vorbis. Ogg Vorbis is a fully open, non-proprietary, patent-and royalty-free, general-purpose compressed audio format. A … Read More

Critical: java-1.6.0-openjdk (SL6)

Synopsis: Critical: java-1.6.0-openjdk security update Issue Date: 2012-02-14 CVE Numbers: CVE-2011-5035 CVE-2012-0501 CVE-2012-0503 CVE-2011-3571 CVE-2011-3563 CVE-2012-0502 CVE-2012-0505 CVE-2012-0506 CVE-2012-0497 — These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. It was discovered that … Read More

Moderate: httpd (SL6)

Synopsis: Moderate: httpd security update Issue Date: 2012-02-13 CVE Numbers: CVE-2011-3639 CVE-2011-4317 CVE-2011-3607 CVE-2012-0031 CVE-2012-0053 — The Apache HTTP Server is a popular web server. It was discovered that the fix for CVE-2011-3368 (released via RHSA-2011:1391) did not completely address … Read More

mysql (SL5)

Synopsis: Moderate: mysql security update Issue Date: 2012-02-13 CVE Numbers: CVE-2012-0075 CVE-2012-0087 CVE-2012-0101 CVE-2012-0102 CVE-2012-0114 CVE-2012-0484 CVE-2012-0490 — MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. … Read More