Fixlet Site - PatchesforSUSELinuxEnterprise
Current Version: 226	Published: Fri, 29 May 2009 22:38:48  GMT

New Fixlets:
============

***************************************************************
Title: PATCH-12419 - Security update for cyrus-sasl - SLES9
Severity: <Unspecified>
Fixlet ID: 1241901
Fixlet Link: http://download.novell.com/Download?buildid=T7VfSlZEsXE~

Fixlet Description: This update of cyrus-sasl improves the output of function sasl_encode64() by appending a 0 for string termination. The impact depends on the application that uses sasl_encode64(). (CVE-2009-0688) Please update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9052701 - Security update for cyrus-sasl - SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 905270101
Fixlet Link: http://download.novell.com/Download?buildid=GLm9lci411M~

Fixlet Description: This update of cyrus-sasl improves the output of function sasl_encode64() by appending a 0 for string termination. The impact depends on the application that uses sasl_encode64(). (CVE-2009-0688) Please update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9052701 - Security update for cyrus-sasl - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 905270103
Fixlet Link: http://download.novell.com/Download?buildid=7bcO5tJdhvw~

Fixlet Description: This update of cyrus-sasl improves the output of function sasl_encode64() by appending a 0 for string termination. The impact depends on the application that uses sasl_encode64(). (CVE-2009-0688) Please update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9052801 - Security update for net-snmp - SLES10 SP2
Severity: <Unspecified>
Fixlet ID: 905280101
Fixlet Link: http://download.novell.com/Download?buildid=oDs8bYfpM38~

Fixlet Description: With this update of net-snmp the handling of TCP wrappers rules for client authorization was improved, prior to this update it was possible for remote attackers to bypass intended access restrictions and execute SNMP queries. (CVE-2008-6123)  Additionally binding to multiple interfaces was improved. Everyone using SNMP should update. Please see patch page for more detailed information.

***************************************************************
Title: PATCH-B9052801 - Security update for net-snmp - SLED10 SP2
Severity: <Unspecified>
Fixlet ID: 905280103
Fixlet Link: http://download.novell.com/Download?buildid=7YfoPV25YEA~

Fixlet Description: With this update of net-snmp the handling of TCP wrappers rules for client authorization was improved, prior to this update it was possible for remote attackers to bypass intended access restrictions and execute SNMP queries. (CVE-2008-6123)  Additionally binding to multiple interfaces was improved. Everyone using SNMP should update. Please see patch page for more detailed information.