thunderbird (SL4, SL5)

Synopsis: Moderate: thunderbird security update Issue Date: 2011-11-08 CVE Numbers: CVE-2011-3648 — Mozilla Thunderbird is a standalone mail and newsgroup client. A cross-site scripting (XSS) flaw was found in the way Thunderbird handled certain multibyte character sets. Malicious, remote content … Read More

Critical: firefox (SL4, SL5, SL6)

Synopsis: Critical: firefox security update Issue Date: 2011-11-08 CVE Numbers: CVE-2011-3647 CVE-2011-3648 CVE-2011-3650 — Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A flaw was found in the way Firefox handled … Read More

Critical: java-1.6.0-sun (SL5, SL6)

Synopsis: Critical: java-1.6.0-sun security update Issue Date: 2011-10-19 CVE Numbers: CVE-2011-3389 CVE-2011-3560 CVE-2011-3547 CVE-2011-3551 CVE-2011-3552 CVE-2011-3544 CVE-2011-3521 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3548 CVE-2011-3553 CVE-2011-3558 CVE-2011-3545 CVE-2011-3549 CVE-2011-3550 CVE-2011-3516 CVE-2011-3546 CVE-2011-3555 CVE-2011-3561 — The Sun 1.6.0 Java release includes the Sun Java … Read More

Moderate: perl (SL6)

Synopsis: Moderate: perl security update Issue Date: 2011-11-03 CVE Numbers: CVE-2011-2939 CVE-2011-3597 — Perl is a high-level programming language commonly used for system administration utilities and web programming. A heap-based buffer overflow flaw was found in the way Perl decoded … Read More

Moderate: php53 and php (SL5, SL6)

Synopsis: Moderate: php53 and php security update Issue Date: 2011-11-02 CVE Numbers: CVE-2011-2483 CVE-2011-0708 CVE-2011-1148 CVE-2011-1466 CVE-2011-1468 CVE-2011-1469 CVE-2011-1471 CVE-2011-1938 CVE-2011-2202 — PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A signedness issue was found … Read More

Moderate: openswan (SL5, SL6)

Synopsis: Moderate: openswan security update Issue Date: 2011-11-02 CVE Numbers: CVE-2011-4073 — Openswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services. These services … Read More

Moderate: openssl (SL6)

Synopsis: Moderate: openssl security update Issue Date: 2011-10-26 CVE Numbers: CVE-2011-3207 — OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a full-strength, general purpose cryptography library. … Read More

Important: freetype (SL4, SL5, SL6)

Synopsis: Important: freetype security update Issue Date: 2011-10-25 CVE Numbers: CVE-2011-3256 — FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual glyphs efficiently. The freetype packages for … Read More

xen (SL5)

Synopsis: Moderate: xen security and bug fix update Issue Date: 2011-10-24 CVE Numbers: CVE-2011-3346 — The xen packages contain administration tools and the xend service for managing the kernel-xen kernel for virtualization on Red Hat Enterprise Linux. A buffer overflow … Read More

httpd (SL4, SL5)

Synopsis: Moderate: httpd security and bug fix update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-3368 — The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI for … Read More