Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 119	Published: Wed, 02 Apr 2008 22:33:27  GMT

New Fixlets:
============

***************************************************************
Title: PATCH-12106 - Security update for Linux kernel - SLES9
Severity: <Unspecified>
Fixlet ID: 1210601
Fixlet Link: http://support.novell.com/techcenter/psdb/ecea9bb7c95d1d842c67c822088572c9.html

Fixlet Description: This kernel update fixes the following security problems:    Memory overrun vulnerability in ISDN code (CVE-2007-6151)    Insufficient range checks of certain fault handlers (CVE-2008-0007)    Reset current-&gt;pdeath_signal on SUID binary execution (CVE-2007-3848)    aacraid: Fix range checks (CVE-2007-4308).    fixed a remote buffer overflow in CIFS (CVE-2007-5904)  Further improvements include:    Several kernel crashes addressed.    Improvements to running as a VMWare guest.    Update of OCFS2 to 1.2.8-2.    New code drop for the s390 architecture.  For details and a complete list of changes, please refer to the package changelog. Everyone using the Linux Kernel should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-12106 - Dependencies Needed - SLES9
Severity: <Unspecified>
Fixlet ID: 1210602
Fixlet Link: http://support.novell.com/techcenter/psdb/ecea9bb7c95d1d842c67c822088572c9.html

Fixlet Description: Updated packages for the Linux Kernel are now available. However, this update requires that the package "mkinitrd" be installed and at least version "1.2".

***************************************************************
Title: PATCH-B8032602 - Security update for epiphany - SLED10
Severity: <Unspecified>
Fixlet ID: 803260201
Fixlet Link: http://support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html

Fixlet Description: This update of the Mozilla XULRunner engine catches up on all previous security problems found in the XULRunner engine. Following security problems were fixed:     MFSA 2008-11/CVE-2008-0594 Web forgery overwrite with div overlay    MFSA 2008-10/CVE-2008-0593 URL token stealing via stylesheet redirect    MFSA 2008-09/CVE-2008-0592 Mishandling of locally-saved plain text files    MFSA 2008-08/CVE-2008-0591 File action dialog tampering    MFSA 2008-06/CVE-2008-0419 Web browsing history and forward navigation        stealing    MFSA 2008-05/CVE-2008-0418 Directory traversal via chrome: URI    MFSA 2008-04/CVE-2008-0417 Stored password corruption    MFSA 2008-03/CVE-2008-0415 Privilege escalation, XSS, Remote Code        Execution    MFSA 2008-02/CVE-2008-0414 Multiple file input focus stealing        vulnerabilities    MFSA 2008-01/CVE-2008-0412 Crashes with evidence of memory corruption (rv:1.8.1.12) Install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8032602 - Security update for epiphany - SLES10
Severity: &lt;Unspecified&gt;
Fixlet ID: 803260202

Fixlet Description: This update of the Mozilla XULRunner engine catches up on all previous security problems found in the XULRunner engine. Following security problems were fixed:     MFSA 2008-11/CVE-2008-0594 Web forgery overwrite with div overlay    MFSA 2008-10/CVE-2008-0593 URL token stealing via stylesheet redirect    MFSA 2008-09/CVE-2008-0592 Mishandling of locally-saved plain text files    MFSA 2008-08/CVE-2008-0591 File action dialog tampering    MFSA 2008-06/CVE-2008-0419 Web browsing history and forward navigation        stealing    MFSA 2008-05/CVE-2008-0418 Directory traversal via chrome: URI    MFSA 2008-04/CVE-2008-0417 Stored password corruption    MFSA 2008-03/CVE-2008-0415 Privilege escalation, XSS, Remote Code        Execution    MFSA 2008-02/CVE-2008-0414 Multiple file input focus stealing        vulnerabilities    MFSA 2008-01/CVE-2008-0412 Crashes with evidence of memory corruption (rv:1.8.1.12) Install this update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8032602 - Dependencies Needed - SLED10
Severity: <Unspecified>
Fixlet ID: 803260207
Fixlet Link: http://support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html

Fixlet Description: This update of the Mozilla XULRunner engine catches up on all previous security problems found in the XULRunner engine. However, this update requires that the package "mozilla-nspr" be installed and at least version "4.6.4" as well as the package "mozilla-nss" at or greater than version "3.11.4".

***************************************************************
Title: PATCH-B8032602 - Dependencies Needed - SLES10
Severity: &lt;Unspecified&gt;
Fixlet ID: 803260208
Fixlet Link: http://support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html

Fixlet Description: This update of the Mozilla XULRunner engine catches up on all previous security problems found in the XULRunner engine. However, this update requires that the package "mozilla-nspr" be installed and at least version "4.6.4" as well as the package "mozilla-nss" at or greater than version "3.11.4".