Important: libxml2 (SL6)

Synopsis: Important: libxml2 security update Issue Date: 2012-01-11 CVE Numbers: CVE-2011-3905 CVE-2011-3919 — The libxml2 library is a development toolbox providing the implementation of various XML standards. A heap-based buffer overflow flaw was found in the way libxml2 decoded entity … Read More

libxml2 (SL4)

Synopsis: Important: libxml2 security update Issue Date: 2012-01-11 CVE Numbers: CVE-2011-0216 CVE-2011-2834 CVE-2011-3905 CVE-2011-3919 — The libxml2 library is a development toolbox providing the implementation of various XML standards. One of those standards is the XML Path Language (XPath), which … Read More

Important: qemu-kvm (SL6)

Synopsis: Important: qemu-kvm security update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-4111 — KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on AMD64 and Intel 64 systems. qemu-kvm is the user-space component for running virtual machines using KVM. … Read More

Moderate: ipa (SL6)

Synopsis: Moderate: ipa security and bug fix update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-3636 — A Cross-Site Request Forgery (CSRF) flaw was found in IPA. If a remote attacker could trick a user, who was logged into the management web … Read More

Critical: krb5-appl (SL6)

Synopsis: Critical: krb5-appl security update Issue Date: 2011-12-27 CVE Numbers: CVE-2011-4862 — The krb5-appl packages provide Kerberos-aware telnet, ftp, rcp, rsh, and rlogin clients and servers. Kerberos is a network authentication system which allows clients and servers to authenticate to … Read More

krb5 (SL4, SL5)

Synopsis: Critical: krb5 security update Issue Date: 2011-12-27 CVE Numbers: CVE-2011-4862 — Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third- party, the Key Distribution Center … Read More

Important: kernel (SL6)

Synopsis: Important: kernel security and bug fix update Issue Date: 2011-12-22 CVE Numbers: CVE-2011-4127 — * Using the SG_IO IOCTL to issue SCSI requests to partitions or LVM volumes resulted in the requests being passed to the underlying block device. … Read More

Moderate: kernel update (SL6)

Synopsis: Moderate: kernel security, bug fix and enhancement update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-1020 CVE-2011-3347 CVE-2011-4110 CVE-2011-3638 — The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: … Read More

Low: nfs-utils (SL6)

Synopsis: Low: nfs-utils security, bug fix, and enhancement update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-1749 CVE-2011-2500 — The nfs-utils packages provide a daemon for the kernel Network File System (NFS) server, and related tools such as the mount.nfs, umount.nfs, and … Read More

tomcat5 (SL5)

Synopsis: Moderate: tomcat5 security update Issue Date: 2011-12-20 CVE Numbers: CVE-2011-0013 CVE-2010-3718 CVE-2011-2204 CVE-2011-1184 — Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. It was found that web applications could modify the location … Read More