Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 97	Published: Fri, 11 Jan 2008 23:13:16  GMT
***************************************************************
Title: PATCH-12004 - Security update for squid - SLES9
Severity: <Unspecified>
Fixlet ID: 1200401
Fixlet Link: http://support.novell.com/techcenter/psdb/e6d3d86875c99ac49052ced4199bd6d1.html

Fixlet Description: This update of squid fixes a denial-of-service bug during cache update reply processing. Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12004 - Security update for squid - SLED10/SLES10
Severity: &amp;lt;Unspecified&amp;gt;
Fixlet ID: 1200403
Fixlet Link: http://support.novell.com/techcenter/psdb/e6d3d86875c99ac49052ced4199bd6d1.html

Fixlet Description: This update of squid fixes a denial-of-service bug during cache update reply processing. Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12010 - Security update for rsync - SLED10/SLES10
Severity: <Unspecified>
Fixlet ID: 1201001
Fixlet Link: http://support.novell.com/techcenter/psdb/84c0e58baea4e5213424103bd3ab770c.html

Fixlet Description: Everyone using rsync should install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12013 - Security update for Python - SLES9
Severity: <Unspecified>
Fixlet ID: 1201301
Fixlet Link: http://support.novell.com/techcenter/psdb/b5ee8d570837e8d054b4dc0125fb4447.html

Fixlet Description: Python contains a copy of the pcre library. Specially crafted regular expressions could lead to a buffer overflow in the pcre library. Applications using pcre to process regular expressions from untrusted sources could therefore potentially be exploited by attackers to execute arbitrary code. Everyone should install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12016 - Security update for cups - SLES9
Severity: <Unspecified>
Fixlet ID: 1201601
Fixlet Link: http://support.novell.com/techcenter/psdb/eb37a23ce60ab91ec04f08ea1e3aa56a.html

Fixlet Description: Everyone using cups should install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12016 - Security update for cups - SLED10/SLES10
Severity: &amp;lt;Unspecified&amp;gt;
Fixlet ID: 1201603
Fixlet Link: http://support.novell.com/techcenter/psdb/eb37a23ce60ab91ec04f08ea1e3aa56a.html

Fixlet Description: Everyone using cups should install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12016 - Dependencies Needed - SLED10/SLES10
Severity: &amp;lt;Unspecified&amp;gt;
Fixlet ID: 1201605
Fixlet Link: http://support.novell.com/techcenter/psdb/eb37a23ce60ab91ec04f08ea1e3aa56a.html

Fixlet Description: Updated packages for cups are now available. However, this update requires that the package "libgcc" be installed and at least version "4.1.2".

***************************************************************
Title: PATCH-12017 - Security update for TeX - SLED10
Severity: <Unspecified>
Fixlet ID: 1201701
Fixlet Link: http://support.novell.com/techcenter/psdb/e5415bb6339000a029fc7a4b6bb34cb4.html

Fixlet Description: Buffer overflows have been found in dvips and dviljk which can be used by an attacker to run malicious code by tricking a user to process a specially crafted dvi file under the user's privileges. (CVE-2007-5935, CVE-2007-5937) Additionally, dvips creates temporary files in an insecure manner. (CVE-2007-5936) Everyone using TeX should install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12038 - Security update for rsync - SLES9
Severity: <Unspecified>
Fixlet ID: 1203801
Fixlet Link: http://support.novell.com/techcenter/psdb/8b7ab8a915e5a096afe4ffa851d5be91.html

Fixlet Description: This update fixes a bug in rsync that allowed remote attackers to access restricted files outside a module's hierarchy if no chroot setup was used. (CVE-2007-6199) Please read http://rsync. samba. org/security. html entry from November 28th, 2007 to get more information about a secure configuration of rsync that also covers the bug tracked with CVE-2007-6200. This update also fixes some crashes that only affect rsync-2.6.8 on SLES10. This is a reissue of another post-SP4 rsync update. Everyone using rsync should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8010701 - Security update for libsndfile - SLED10/SLES10
Severity: <Unspecified>
Fixlet ID: 801070101
Fixlet Link: http://support.novell.com/techcenter/psdb/12c6c97f27bea6390e0884afcf6c5001.html

Fixlet Description: This update fixes a possible buffer overflow that occurs while reading decoded PCM data from the FLAC library. Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8010902 - Security update for Intel i810 chips - SLES10
Severity: <Unspecified>
Fixlet ID: 801090201
Fixlet Link: http://support.novell.com/techcenter/psdb/c2ee82f7d31e086e9acd1923a8958f31.html

Fixlet Description: This update provides the latest i810 driver stack, which includes fixes for FnFx handling (enables switching from internal to external and internal monitor on Laptops) This update also fixes a potential write to arbitrary memory locations using the i965 driver. Everyone using Intel i810 chips should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8010902 - Security update for Intel i810 chips - SLED10
Severity: &lt;Unspecified&gt;
Fixlet ID: 801090202
Fixlet Link: http://support.novell.com/techcenter/psdb/c2ee82f7d31e086e9acd1923a8958f31.html

Fixlet Description: This update provides the latest i810 driver stack, which includes fixes for FnFx handling (enables switching from internal to external and internal monitor on Laptops) This update also fixes a potential write to arbitrary memory locations using the i965 driver. Everyone using Intel i810 chips should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8010902 - Dependencies Needed - SLES10
Severity: <Unspecified>
Fixlet ID: 801090205
Fixlet Link: http://support.novell.com/techcenter/psdb/c2ee82f7d31e086e9acd1923a8958f31.html

Fixlet Description: This update provides the latest i810 driver stack, which includes fixes for FnFx handling (enables switching from internal to external and internal monitor on Laptops) This update also fixes a potential write to arbitrary memory locations using the i965 driver. However, this update requires that the running Linux Kernel be version "2.6.16.54-0.2.3".