[SUSE-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: PatchesforSUSELinuxEnterprise
Notification of New SUSE Fixlet Messages
suse-announcements at bigmail.bigfix.com
Thu Oct 1 03:10:08 PDT 2009
Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 254 Published: Wed, 30 Sep 2009 21:14:06 GMT
New Fixlets:
============
***************************************************************
Title: PATCH-12503 - Security update for freeswan - SLES9
Severity: <Unspecified>
Fixlet ID: 1250301
Fixlet Link: http://download.novell.com/Download?buildid=ogzVq4uEfM0~
Fixlet Description: The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. (CVE-2009-2661) This could lead to crashes of the pluto IKE daemon. Everyone should update. Please see patch page for more detailed information.
***************************************************************
Title: PATCH-12509 - Security update for PostgreSQL - SLES9
Severity: <Unspecified>
Fixlet ID: 1250901
Fixlet Link: http://download.novell.com/Download?buildid=5RJ0cDaU0Pw~
Fixlet Description: Multiple security vulnerabilities have been fixed in PostgrSQL: CVE-2009-3229: allows remote authenticated users to cause a denial of service CVE-2009-3230: allows remote authenticated users to gain higher privileges CVE-2009-3231: when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password Everyone should update. Please see patch page for more detailed information.
***************************************************************
Title: PATCH-B9092801 - Security update for PostgreSQL - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 909280101
Fixlet Link: http://download.novell.com/Download?buildid=JZ89PDSjYM8~
Fixlet Description: Multiple security vulnerabilities have been fixed in PostgrSQL CVE-2009-3229: allows remote authenticated users to cause a denial of service CVE-2009-3230: allows remote authenticated users to gain higher privileges CVE-2009-3231: when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password Everyone should update. Please see patch page for more detailed information.
***************************************************************
Title: PATCH-B9092801 - Security update for PostgreSQL - SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 909280103
Fixlet Link: http://download.novell.com/Download?buildid=jgmdRTRZzRU~
Fixlet Description: Multiple security vulnerabilities have been fixed in PostgrSQL CVE-2009-3229: allows remote authenticated users to cause a denial of service CVE-2009-3230: allows remote authenticated users to gain higher privileges CVE-2009-3231: when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password Everyone should update. Please see patch page for more detailed information.
More information about the SUSE-Announcements
mailing list