Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 190	Published: Sat, 13 Dec 2008 00:11:56  GMT

New Fixlets:
============

***************************************************************
Title: PATCH-12241 - Security update for rsh - SLES9
Severity: <Unspecified>
Fixlet ID: 1224101
Fixlet Link: http://download.novell.com/Download?buildid=xo9yzXV0I5A~

Fixlet Description: in.rexecd was not using the system wide limits, potentially allowing remote rexec users to exhaust all system resources. Everyone using rsh-server should install this patch. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8120901 - Security update for GnuTLS - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 812090103
Fixlet Link: http://download.novell.com/Download?buildid=hx9VwuaNzvo~

Fixlet Description: GnuTLS did not properly verify x509 certificate chains. An attacker could exploit that to trick client programs into trusting servers that would normally get rejected (CVE-2008-4989). Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8120901 - Security update for GnuTLS - SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 812090105
Fixlet Link: http://download.novell.com/Download?buildid=t-6D5aM3cyc~

Fixlet Description: GnuTLS did not properly verify x509 certificate chains. An attacker could exploit that to trick client programs into trusting servers that would normally get rejected (CVE-2008-4989). Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8120902 - Security update for rsh - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 812090205
Fixlet Link: http://download.novell.com/Download?buildid=eojx_TcDVpo~

Fixlet Description: in.rexecd was not using the system wide limits, potentially allowing remote rexec users to exhaust all system resources. Everyone using rsh-server should install this patch. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B8120902 - Security update for rsh - SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 812090207
Fixlet Link: http://download.novell.com/Download?buildid=J9ijD2Y5pKc~

Fixlet Description: in.rexecd was not using the system wide limits, potentially allowing remote rexec users to exhaust all system resources. Everyone using rsh-server should install this patch. Please see patch page for more detailed information.