quota (SL5)

Synopsis: Low: quota security and bug fix update Issue Date: 2013-01-08 CVE Numbers: CVE-2012-3417 — It was discovered that the rpc.rquotad service did not use tcp_wrappers correctly. Certain hosts access rules defined in “/etc/hosts.allow” and “/etc/hosts.deny” may not have been … Read More

tcl (SL5)

Synopsis: Moderate: tcl security and bug fix update Issue Date: 2013-01-08 CVE Numbers: CVE-2007-4772 CVE-2007-6067 — Two denial of service flaws were found in the Tcl regular expression handling engine. If Tcl or an application using Tcl processed a specially-crafted … Read More

Critical: firefox (SL5, SL6)

Synopsis: Critical: firefox security update Issue Date: 2013-01-08 CVE Numbers: CVE-2013-0769 CVE-2013-0762 CVE-2013-0766 CVE-2013-0767 CVE-2013-0759 CVE-2013-0744 CVE-2013-0746 CVE-2013-0748 CVE-2013-0750 CVE-2013-0758 CVE-2013-0753 CVE-2013-0754 — Several flaws were found in the processing of malformed web content. A web page containing malicious content … Read More

Critical: thunderbird (SL5, SL6)

Synopsis: Critical: thunderbird security update Issue Date: 2013-01-08 CVE Numbers: CVE-2013-0769 CVE-2013-0762 CVE-2013-0766 CVE-2013-0767 CVE-2013-0759 CVE-2013-0744 CVE-2013-0746 CVE-2013-0748 CVE-2013-0750 CVE-2013-0758 CVE-2013-0753 CVE-2013-0754 — Several flaws were found in the processing of malformed content. Malicious content could cause Thunderbird to crash … Read More

Moderate: libtiff (SL5, SL6)

Synopsis: Moderate: libtiff security update Issue Date: 2012-12-18 CVE Numbers: CVE-2012-3401 CVE-2012-4447 CVE-2012-5581 CVE-2012-4564 — A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create … Read More

Moderate: kernel (SL6)

Synopsis: Moderate: kernel security, bug fix and enhancement update Issue Date: 2012-12-18 CVE Numbers: CVE-2012-2100 CVE-2012-4565 CVE-2012-2375 CVE-2012-4444 CVE-2012-5517 — This update fixes the following security issues: * It was found that a previous update did not correctly fix the … Read More

Important: mysql (SL6)

Synopsis: Important: mysql security update Issue Date: 2012-12-07 CVE Numbers: CVE-2012-5611 — A stack-based buffer overflow flaw was found in the user permission checking code in MySQL. An authenticated database user could use this flaw to crash the mysqld daemon … Read More

Important: bind (SL6)

Synopsis: Important: bind security update Issue Date: 2012-12-06 CVE Numbers: CVE-2012-5688 — A flaw was found in the DNS64 implementation in BIND. If a remote attacker sent a specially-crafted query to a named server, named could exit unexpectedly with an … Read More

kernel (SL5)

Synopsis: Important: kernel security, bug fix, and enhancement update Issue Date: 2012-12-04 CVE Numbers: CVE-2012-2372 CVE-2012-3552 CVE-2012-4508 CVE-2012-4535 CVE-2012-4537 CVE-2012-5513 — Security fixes: * A race condition in the way asynchronous I/O and fallocate() interacted when using ext4 could allow … Read More

Important: libxml2 (SL5, SL6)

Synopsis: Important: libxml2 security update Issue Date: 2012-11-29 CVE Numbers: CVE-2012-5134 — A heap-based buffer underflow flaw was found in the way libxml2 decoded certain entities. A remote attacker could provide a specially-crafted XML file that, when opened in an … Read More