Moderate: ghostscript (SL5, SL6)

Synopsis: Moderate: ghostscript security update Issue Date: 2012-02-02 CVE Numbers: CVE-2010-2055 CVE-2009-3743 CVE-2010-4054 CVE-2010-4820 — Ghostscript is a set of software that provides a PostScript interpreter, a set of C procedures (the Ghostscript library, which implements the graphics capabilities in … Read More

Critical: php (SL4, SL5, SL6)

Synopsis: Critical: php security update Issue Date: 2012-02-02 CVE Numbers: CVE-2012-0830 — PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. It was discovered that the fix for CVE-2011-4885 (released via RHSA-2012:0071, RHSA-2012:0033, and RHSA-2012:0019 for … Read More

php53 (SL5)

Synopsis: Critical: php53 security update Issue Date: 2012-02-02 CVE Numbers: CVE-2012-0830 — PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. It was discovered that the fix for CVE-2011-4885 (released via RHSA-2012:0019 for php53 packages in … Read More

openssl (SL4)

Synopsis: Moderate: openssl security update Issue Date: 2012-02-01 CVE Numbers: CVE-2011-4576 CVE-2011-4619 — OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a full-strength, general purpose cryptography … Read More

thunderbird (SL4, SL5)

Synopsis: Critical: thunderbird security update Issue Date: 2012-02-01 CVE Numbers: CVE-2012-0442 CVE-2011-3670 — Mozilla Thunderbird is a standalone mail and newsgroup client. A flaw was found in the processing of malformed content. An HTML mail message containing malicious content could … Read More

seamonkey (SL4)

Synopsis: Critical: seamonkey security update Issue Date: 2012-02-01 CVE Numbers: CVE-2012-0442 CVE-2011-3670 — SeaMonkey is an open source web browser, e-mail and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the processing of malformed web … Read More

Critical: thunderbird (SL6)

Synopsis: Critical: thunderbird security update Issue Date: 2012-01-31 CVE Numbers: CVE-2012-0442 CVE-2011-3670 CVE-2012-0449 CVE-2011-3659 — Mozilla Thunderbird is a standalone mail and newsgroup client. A use-after-free flaw was found in the way Thunderbird removed nsDOMAttribute child nodes. In certain circumstances, … Read More

Critical: firefox (SL4, SL5, SL6)

Synopsis: Critical: firefox security update Issue Date: 2012-01-31 CVE Numbers: CVE-2012-0442 CVE-2011-3670 CVE-2012-0449 CVE-2012-0444 CVE-2011-3659 — Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A use-after-free flaw was found in the … Read More

Moderate: ruby (SL6)

Synopsis: Moderate: ruby security update Issue Date: 2012-01-30 CVE Numbers: CVE-2011-4815 — Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to do system management tasks. A denial of service flaw was found … Read More

php (SL4)

Synopsis: Moderate: php security update Issue Date: 2012-01-30 CVE Numbers: CVE-2011-0708 CVE-2011-1466 CVE-2011-2202 CVE-2011-4885 CVE-2011-4566 — PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. It was found that the hashing routine used by PHP arrays … Read More