Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 212	Published: Fri, 17 Apr 2009 20:03:28  GMT

New Fixlets:
============

***************************************************************
Title: PATCH-12298 - Security update for net-snmp - SLES9
Severity: <Unspecified>
Fixlet ID: 1229801
Fixlet Link: http://download.novell.com/Download?buildid=zk2uBO_pTHA~

Fixlet Description: Remote attackers could crash net-snmp via GETBULK-Request (CVE-2008-4309). In addition the following non-security issues have been fixed:   typo in error message (bnc#439857) make OIDs longer than 256 chars work (bnc#345914) typo in the snmpd init script to really load all agents (bnc#415127) logrotate config to restart the snmptrapd aswell (bnc#378069) Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9041501 - Security update for PostgreSQL - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 904150101
Fixlet Link: http://download.novell.com/Download?buildid=KsLYSc1BvbI~

Fixlet Description: Remote authenticated users could crash the postgresql server by requesting a conversion with an inappropriate encoding (CVE-2009-0922). Everyone should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9041601 - Security update for udev - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 904160101
Fixlet Link: http://download.novell.com/Download?buildid=HlC5VQV29p8~

Fixlet Description: Udev does not check the origin of the netlink messages. A local attacker could fake device creation events and  thus gain root privileges. This update fixes the issue. It has been tracked as  CVE-2009-1185.  The update also fixes three non-security bugs:  Fix persistent symbolic links for tapes Fix broken ATA compatibility links Add by-path links for tapes Everyone should update. Please see patch page for more detailed information.