Fixlet Site - PatchesforSUSELinuxEnterprise Current Version: 67 Published: Fri, 05 Oct 2007 17:56:06 GMT *************************************************************** Title: PATCH-11786 - Security update for id3lib - SLES9 Severity: Fixlet ID: 1178601 Fixlet Link: http://support.novell.com/techcenter/psdb/a7900f71ab69d5511012653b1457c53a.html Fixlet Description: This update fixes a bug that allows local attackers to overwrite arbitrary files. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-11786 - Security update for id3lib - SLES10 Severity: Fixlet ID: 1178603 Fixlet Link: http://support.novell.com/techcenter/psdb/a7900f71ab69d5511012653b1457c53a.html Fixlet Description: This update fixes a bug that allows local attackers to overwrite arbitrary files. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-11786 - Security update for id3lib - SLED10 Severity: Fixlet ID: 1178604 Fixlet Link: http://support.novell.com/techcenter/psdb/a7900f71ab69d5511012653b1457c53a.html Fixlet Description: This update fixes a bug that allows local attackers to overwrite arbitrary files. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-11788 - Security update for OpenOffice - SLED10 Severity: Fixlet ID: 1178801 Fixlet Link: http://support.novell.com/techcenter/psdb/f06d1e55c8e342f5cdd05749c53217ca.html Fixlet Description: This update of OpenOffice_org fixes a bug in TIFF parsing code that leads to a heap overflow. This bug can be exploited with user assistance to execute arbitrary code. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-11788 - Dependencies Needed - SLED10 Severity: Fixlet ID: 1178803 Fixlet Link: http://support.novell.com/techcenter/psdb/f06d1e55c8e342f5cdd05749c53217ca.html Fixlet Description: This update of OpenOffice_org fixes a bug in TIFF parsing code that leads to a heap overflow. However, this update requires that the package "xalan-j2" be installed and at least version "2.6.0-21.4.1" as well as the package "xerces-j2" installed and at least version "2.7.1-16.4.1" and the package "xml-commons-apis" installed and at least version "1.3.02-40". *************************************************************** Title: PATCH-B7092701 - Security update for openCryptoki - SLES10 Severity: Fixlet ID: 709270101 Fixlet Link: http://support.novell.com/techcenter/psdb/025ce378bdee86491b03040d246c1b40.html Fixlet Description: The openCryptoki crypto framework package has been updated to fix a incorrect crypto initialisation which leads to weak IV (initial vectors). Install this update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B7092702 - Security update for madwifi - SLED10 Severity: Fixlet ID: 709270201 Fixlet Link: http://support.novell.com/techcenter/psdb/a6f1c80016e722e3975fa8fa1db34f94.html Fixlet Description: This update fixes some bugs in madwifi: possible security bug in radar detection code dynamic Beacon Interval Standardise Radiotap FCS Handling fix wrong channel change behavior for AP mode fix ath_hardstart returning 0 even if queue is full rxantenna value is reset after suspend/resume Everyone using madwifi should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B7092702 - Dependencies Needed - SLED10 Severity: Fixlet ID: 709270203 Fixlet Link: http://support.novell.com/techcenter/psdb/a6f1c80016e722e3975fa8fa1db34f94.html Fixlet Description: Updated madwifi packages are now available. However, this update requires that your kernel be updated to verstion "2.6.16.53-0". *************************************************************** Title: PATCH-B7092703 - Security update for gnome-screensaver - SLED10/SLES10 Severity: Fixlet ID: 709270301 Fixlet Link: http://support.novell.com/techcenter/psdb/93747a37b0dff7e878ee2335befb16d3.html Fixlet Description: Memory corruption made the gnome-screensaver process crash when the screen was locked, leaving the desktop accessible to anyone without having to enter a password. This fixes this memory corruption, as confirmed by internal testing. All GNOME users should upgrade. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B7092704 - Security update for Kerberos 5 - SLED10 Severity: Fixlet ID: 709270401 Fixlet Link: http://support.novell.com/techcenter/psdb/b2bd8313c49e972106778cda28cda303.html Fixlet Description: This update improves the patch for the previously released security update of krb5 to fix CVE-2007-3999 and CVE-2007-4000. Everyone using Kerberos should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B7092704 - Security update for Kerberos 5 - SLES10 Severity: Fixlet ID: 709270402 Fixlet Link: http://support.novell.com/techcenter/psdb/b2bd8313c49e972106778cda28cda303.html Fixlet Description: This update improves the patch for the previously released security update of krb5 to fix CVE-2007-3999 and CVE-2007-4000. Everyone using Kerberos should update. Please see patch page for more detailed information.