Fixlet Site - PatchesforSUSELinuxEnterprise Current Version: 253 Published: Thu, 24 Sep 2009 22:41:34 GMT New Fixlets: ============ *************************************************************** Title: PATCH-12502 - Security update for Cyrus IMAPD - SLES9 Severity: Fixlet ID: 1250201 Fixlet Link: http://download.novell.com/Download?buildid=o_YcZi4KCU0~ Fixlet Description: This update of cyrus-imapd fixes a buffer overflow that occurs in snprintf() due to incorrectly calculating the size of the destination buffer. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-12505 - Security update for mutt - SLES9 Severity: Fixlet ID: 1250501 Fixlet Link: http://download.novell.com/Download?buildid=nMLIgeNQS0A~ Fixlet Description: This update of mutt improves the handling of the \0 character in SSL certificates. (CVE-2009-2408) Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-12506 - Security update for OpenLDAP2 - SLES9 Severity: Fixlet ID: 1250601 Fixlet Link: http://download.novell.com/Download?buildid=6oWKuDpsSSw~ Fixlet Description: This update of openldap2 makes SSL certificate verification more robust against uses of the special character \0 in the subjects name. (CVE-2009-2408) Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092101 - Security update for OpenLDAP2 - SLED10 SP2 Severity: Fixlet ID: 909210101 Fixlet Link: http://download.novell.com/Download?buildid=ggg430ijAOM~ Fixlet Description: This update of openldap2 makes SSL certificate verification more robust against uses of the special character \0 in the subjects name. (CVE-2009-2408) Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092101 - Security update for OpenLDAP2 - SLES10 SP2 Severity: Fixlet ID: 909210105 Fixlet Link: http://download.novell.com/Download?buildid=WPfJcIhMrEM~ Fixlet Description: This update of openldap2 makes SSL certificate verification more robust against uses of the special character \0 in the subjects name. (CVE-2009-2408) Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092102 - Security update for mutt - SLES10 SP2 Severity: Fixlet ID: 909210201 Fixlet Link: http://download.novell.com/Download?buildid=adcEijQgPEE~ Fixlet Description: This update of mutt improves the handling of the \0 character in SSL certificates. (CVE-2009-2408) Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092102 - Security update for mutt - SLED10 SP2 Severity: Fixlet ID: 909210203 Fixlet Link: http://download.novell.com/Download?buildid=OVXuwoVs5fU~ Fixlet Description: This update of mutt improves the handling of the \0 character in SSL certificates. (CVE-2009-2408) Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092103 - Security update for Cyrus IMAPD - SLES10 SP2 Severity: Fixlet ID: 909210301 Fixlet Link: http://download.novell.com/Download?buildid=j9Bcg24_wvw~ Fixlet Description: This update of cyrus-imapd fixes a buffer overflow that occurs in snprintf() due to incorrectly calculating the size of the destination buffer. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092104 - Security update for strongswan - SLES10 SP2 Severity: Fixlet ID: 909210401 Fixlet Link: http://download.novell.com/Download?buildid=o-sB4aLdTTY~ Fixlet Description: The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. (CVE-2009-2661) This could lead to crashes of the pluto IKE daemon. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092301 - Security update for openswan - SLES10 SP2 Severity: Fixlet ID: 909230101 Fixlet Link: http://download.novell.com/Download?buildid=jSLYQ-bbBao~ Fixlet Description: The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. (CVE-2009-2661) This could lead to crashes of the pluto IKE daemon. Everyone should update. Please see patch page for more detailed information. *************************************************************** Title: PATCH-B9092301 - Security update for openswan - SLED10 SP2 Severity: Fixlet ID: 909230103 Fixlet Link: http://download.novell.com/Download?buildid=935QfW78lyc~ Fixlet Description: The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. (CVE-2009-2661) This could lead to crashes of the pluto IKE daemon. Everyone should update. Please see patch page for more detailed information.