SuSE Linux Distribution - Page 731

Find the information you need for your favorite open source distribution .

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-011: curl buffer overflow in NTLM authentication Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This email address is being protected from spambots. You need JavaScript enabled to view it. reported a vulnerability in libcurl, the This email address is being protected from spambots. You need JavaScript enabled to view it. reported a vulnerability in libcurl, the HTTP/FTP retrieval library. This library is used by lots of programs, HTTP/FTP retrieval library. This library is used by lots of programs, including YaST2 and PHP4.The NTLM authorization in curl had a buffer overflow in the base64 decoding which allows a remote a [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-010: kernel / nvidia bugfix update Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The previous kernel security update for the SUSE Linux 9.1 The previous kernel security update for the SUSE Linux 9.1 and the SUSE Linux Enterprise Server 9 based products caused and the SUSE Linux Enterprise Server 9 based products caused problems with the NVidia driver for users with NVidia graphics cards. Stricter checking in the memory management functions in the kernel caused the kerne [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-009: cyrus-imapd buffer overflows Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This update fixes one-byte buffer overruns in the cyrus-imapd IMAP This update fixes one-byte buffer overruns in the cyrus-imapd IMAP server package. server package. Several overruns were fixed in the IMAP annote extension as well as in cached header handling which can be run by an authenticated user.Additionally bounds checking in fetchnews was improved to avoid

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-006: mailman remote file disclosure Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Mailman is a flexible mailing list management tool. It provides Mailman is a flexible mailing list management tool. It provides mail controlled subscription front ends and also includes CGI scripts mail controlled subscription front ends and also includes CGI scripts to handle subscription, moderation and archive retrieval and other options.Due to incomplete input validation the "private" CG [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-006: squid Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Squid is a feature-rich web-proxy with support for various web-related Squid is a feature-rich web-proxy with support for various web-related protocols. protocols. The last two squid updates from February the 1st and 10th fix several vulnerabilities. The impact of them range from remote denial-of-service over cache poisoning to possible remote command execution. Due to the hugh amount of b [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-005: kernel bugfixes and SP1 merge Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The linux kernel is the core of the SUSE Linux based products. The linux kernel is the core of the SUSE Linux based products. Two weeks ago we released the Service Pack 1 for our SUSE Linux Enterprise Server 9 product. Due to the strict code freeze we were not able to merge all the security fixes from the last kernel update on Jan23rd (SUSE-SA:2005:003) into this kernel.This update merges t [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-004: Realplayer 8 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

RealPlayer is a combined audio and video player for RealMedia formatted RealPlayer is a combined audio and video player for RealMedia formatted streaming data. These formats are very common throughout the Internet. eEye Security in October 2004 discovered a flaw in the .rm RealMovie stream handling routines which allows a remote attacker to exploit an integer overflow vulnerability using a speci [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-003: kernel local privilege escalation Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Several exploitable security problems were identified and fixed in Several exploitable security problems were identified and fixed in the Linux kernel, the core of every SUSE Linux product. - Due to missing locking in the sys_uselib system call a local attacker can gain root access. This was found by Paul Starzetz and is tracked by the Mitre CVE ID CAN-2004-1235.

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-002: php4/mod_php4 Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

PHP is a well known, widely-used scripting language often used within web PHP is a well known, widely-used scripting language often used within web server setups. server setups. Stefan Esser and Marcus Boerger found several buffer overflow problems in the unserializer functions of PHP (CAN-2004-1019) and Ilia Alshanetsky (CAN-2004-1065) found one in the exif parser. Any of them could allow [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2005-001: libtiff/tiff Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Libtiff supports reading, writing, and manipulating of TIFF image files. Libtiff supports reading, writing, and manipulating of TIFF image files. iDEFENSE reported an integer overflow in libtiff that can be exploited by iDEFENSE reported an integer overflow in libtiff that can be exploited by specific TIFF images to trigger a heap-based buffer overflow afterwards.This bug can be used by exter [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-045: samba Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Samba developers informed us about several potential integer overflow The Samba developers informed us about several potential integer overflow issues in the Samba 2 and Samba 3 code. issues in the Samba 2 and Samba 3 code. This update adds constraints to the Samba server code which protects it from using values from untrusted sources as operands in arithmetic operations to determine he [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-043: cyrus-imapd Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Stefan Esser reported various bugs within the Cyrus IMAP Server. Stefan Esser reported various bugs within the Cyrus IMAP Server. These include buffer overflows and out-of-bounds memory access These include buffer overflows and out-of-bounds memory access which could allow remote attackers to execute arbitrary commands as root. The bugs occur in the pre-authentication phase, therefore an up [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-042: various kernel problems Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Linux kernel is the base of the SUSE Linux system. The Linux kernel is the base of the SUSE Linux system. Several security problems have been found and addressed by the SUSE Security Team. The following issues are present in all SUSE Linux based products.- Several remote denial of service conditions have been found in the smbfs file system, reported by Stefan Esser.

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-041: xshared, XFree86-libs, xorg-x11-libs Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The XPM library which is part of the XFree86/XOrg project is used by The XPM library which is part of the XFree86/XOrg project is used by several GUI applications to process XPM image files. several GUI applications to process XPM image files. A source code review done by Thomas Biege of the SuSE Security-Team revealed several different kinds of bugs. The bug types are: - integer overflows [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-040: samba Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

There is a problem in the Samba file sharing service daemon, which There is a problem in the Samba file sharing service daemon, which allows a remote user to have the service consume lots of computing allows a remote user to have the service consume lots of computing power and potentially crash the service by querying special wildcarded filenames.This attack can be successful if the Samba da [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-039: xpdf, gpdf, kpdf, pdftohtml, cups Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Xpdf is a widely used fast PDF file viewer. Various other PDF viewer Xpdf is a widely used fast PDF file viewer. Various other PDF viewer and PDF conversion tools use xpdf code to accomplish their tasks. and PDF conversion tools use xpdf code to accomplish their tasks. Chris Evans found several integer overflows and arithmetic errors. Additionally Sebastian Krahmer from the SuSE Security-Tea [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-038: libtiff Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

libtiff is used by image viewers and web browser to view "TIFF" images. libtiff is used by image viewers and web browser to view "TIFF" images. These usually open and display those images without querying the user, These usually open and display those images without querying the user, making a normal system by default vulnerable to exploits of image library bugs. Chris Evans found several securit [More...]

LS Hmepg 337x500 34 Esm H200

SuSE: 2004-037: kernel Security Update

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

An integer underflow problem in the iptables firewall logging rules An integer underflow problem in the iptables firewall logging rules can allow a remote attacker to crash the machine by using a handcrafted can allow a remote attacker to crash the machine by using a handcrafted IP packet. This attack is only possible with firewalling enabled. We would like to thank Richard Hart for reporting the [More...]

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved