Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 144	Published: Fri, 11 Jul 2008 00:46:08  GMT

New Fixlets:
============

***************************************************************
Title: PATCH-12188 - Security update for freetype2 - SLES9
Severity: <Unspecified>
Fixlet ID: 1218801
Fixlet Link: http://download.novell.com/Download?buildid=SijLEC77-IE~

Fixlet Description: This update of freetype2 fixes several potential vulnerabilities reported by iDefense. Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8070401 - Security update for freetype2 - SLES10 SP1/SLED10 SP1
Severity: <Unspecified>
Fixlet ID: 807040105
Fixlet Link: http://download.novell.com/Download?buildid=Hn4rWA1ivjg~
Fixlet Link: http://download.novell.com/Download?buildid=-sQbpw9McWY~

Fixlet Description: This update of freetype2 fixes several potential vulnerabilities reported by iDefense. Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8070401 - Security update for freetype2 - SLES10 SP2/SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 807040107
Fixlet Link: http://download.novell.com/Download?buildid=kNZxvEp43IY~
Fixlet Link: http://download.novell.com/Download?buildid=Z4ByYMSY3jE~

Fixlet Description: This update of freetype2 fixes several potential vulnerabilities reported by iDefense. Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8070402 - Security update for Linux kernel - SLES10 SP1/SLED10 SP1
Severity: <Unspecified>
Fixlet ID: 807040201
Fixlet Link: http://download.novell.com/Download?buildid=AGbHIo1l_WU~
Fixlet Link: http://download.novell.com/Download?buildid=m09mrdWRZpM~

Fixlet Description: This kernel update fixes quite a number of security problems:   CVE-2007-6282: A remote attacker could crash the IPSec/IPv6 stack by sending a bad ESP packet. This requires the host to be able to receive such packets (default filtered by the firewall). CVE-2008-2136: A problem in SIT IPv6 tunnel handling could be used by remote attackers to immediately crash the machine. CVE-2008-1615: On x86_64 a denial of service attack could be used by local attackers to immediately panic / crash the machine. CVE-2007-6206: An information leakage during coredumping of root processes was fixed. CVE-2008-1669: Fixed a SMP ordering problem in fcntl_setlk could potentially allow local attackers to execute code by timing file locking. CVE-2008-1375: Fixed a dnotify race condition, which could be used by local attackers to potentially execute code. CVE-2007-5500: A ptrace bug could be used by local attackers to hang their own processes indefinitely. CVE-2008-1367: Clear the "direction" flag before calling signal handlers. For specific not yet identified programs under specific timing conditions this could potentially have caused memory corruption or code execution. CVE-2007-6151: The isdn_ioctl function in isdn_common. c allowed local users to cause a denial of service via a crafted ioctl struct in which ioctls is not null terminated, which triggers a buffer overflow. Non security related changes: OCFS2 was updated to version v1.2.9-1-r3100. Also a huge number of bugs were fixed. Please refer to the RPM changelog for a detailed list. Everyone using the Linux Kernel on x86 architecture should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8070402 - Dependency Needed - SLES10 SP1/SLED10 SP1
Severity: <Unspecified>
Fixlet ID: 807040202
Fixlet Link: http://download.novell.com/Download?buildid=AGbHIo1l_WU~
Fixlet Link: http://download.novell.com/Download?buildid=m09mrdWRZpM~

Fixlet Description: Updated Linux kernel packages are now available for SuSE Linux Enterprise 10. However, this update requires that the package "perl-Bootloader" be installed and that the version of it be greater than or equal to "0.4.16".

***************************************************************
Title: PATCH-B8070404 - Security update for speex - SLED10 SP1/SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 807040401
Fixlet Link: http://download.novell.com/Download?buildid=eMr9C9VQloE~
Fixlet Link: http://download.novell.com/Download?buildid=7ais4MlzMXE~

Fixlet Description: Specially crafted files or streams could potentially be abused to trick applications that support speex into executing arbitrary code (CVE-2008-1686). Install this update. Please see patch page for more detailed information.