As of now we are offering so called Patch RPM packages. A Patch RPM updates an already installed RPM. It only contains files which have changed - therefore it is (much) smaller than the complete RPM package. Prerequisite for installation is an already installed basic RPM. The packages included on the SUSE Linux 10.2 (i386) CDs/DVD are considered as basic RPMs.
If you want to update an already installed package, please download the smaller Patch RPM package.
| 9 Oct 2008 |
kdenetwork3-InstantMessenger: Chat applications for KDE |
| RPM |
kdenetwork3-InstantMessenger 3.5.5-41.6 (i586) |
6423 kB |
| Patch-RPM |
kdenetwork3-InstantMessenger 3.5.5-41.6-patch (i586) |
4249 kB |
| Source-RPM |
kdenetwork3-3.5.5-41.6.src.rpm |
|
Updates the client IDs used by Kopete to login to ICQ. Solve potential crash with Yahoo! on login.
|
| 8 Oct 2008 |
epiphany-extensions: Extensions Collection for Epiphany |
| RPM |
epiphany-extensions 2.16.1-34 (i586) |
464 kB |
| Patch-RPM |
epiphany-extensions 2.16.1-34-patch (i586) |
106 kB |
| Source-RPM |
epiphany-extensions-2.16.1-34.src.rpm |
|
This patch updates epiphany to match the current mozilla-xulrunner181 package.
|
| 8 Oct 2008 |
epiphany-devel: GNOME Web Browser based on the Mozilla Rendering Engine |
| RPM |
epiphany-devel 2.16.1-34 (i586) |
26 kB |
| Patch-RPM |
epiphany-devel 2.16.1-34-patch (i586) |
12 kB |
| Source-RPM |
epiphany-2.16.1-34.src.rpm |
|
This patch updates epiphany to match the current mozilla-xulrunner181 package.
|
| 8 Oct 2008 |
epiphany-doc: Developer Documentation for Epiphany |
| RPM |
epiphany-doc 2.16.1-34 (i586) |
39 kB |
| Patch-RPM |
epiphany-doc 2.16.1-34-patch (i586) |
11 kB |
| Source-RPM |
epiphany-2.16.1-34.src.rpm |
|
This patch updates epiphany to match the current mozilla-xulrunner181 package.
|
| 8 Oct 2008 |
epiphany: GNOME Web Browser Based on the Mozilla Rendering Engine |
| RPM |
epiphany 2.16.1-34 (i586) |
3404 kB |
| Patch-RPM |
epiphany 2.16.1-34-patch (i586) |
455 kB |
| Source-RPM |
epiphany-2.16.1-34.src.rpm |
|
This patch updates epiphany to match the current mozilla-xulrunner181 package.
|
| 8 Oct 2008 |
mozilla-xulrunner181-devel: XULRunner/Gecko SDK 1.8.1.x |
| RPM |
mozilla-xulrunner181-devel 1.8.1.17-0.1 (i586) |
2234 kB |
| Source-RPM |
mozilla-xulrunner181-1.8.1.17-0.1.src.rpm |
|
Security Update!
This update brings mozilla-xulrunner181 to security fix version 1.8.1.17.
It contains the following security fixes:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-39 / CVE-2008-3836: Privilege escalation using feed preview page and XSS flaw
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
For more details:
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html
|
| 8 Oct 2008 |
mozilla-xulrunner181-l10n: Translations for XULRunner 1.8.1.x |
| RPM |
mozilla-xulrunner181-l10n 1.8.1.17-0.1 (i586) |
1414 kB |
| Source-RPM |
mozilla-xulrunner181-1.8.1.17-0.1.src.rpm |
|
Security Update!
This update brings mozilla-xulrunner181 to security fix version 1.8.1.17.
It contains the following security fixes:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-39 / CVE-2008-3836: Privilege escalation using feed preview page and XSS flaw
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
For more details:
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html
|
| 8 Oct 2008 |
mozilla-xulrunner181: Mozilla Runtime Environment 1.8.1.x |
| RPM |
mozilla-xulrunner181 1.8.1.17-0.1 (i586) |
8175 kB |
| Source-RPM |
mozilla-xulrunner181-1.8.1.17-0.1.src.rpm |
|
Security Update!
This update brings mozilla-xulrunner181 to security fix version 1.8.1.17.
It contains the following security fixes:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-39 / CVE-2008-3836: Privilege escalation using feed preview page and XSS flaw
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
For more details:
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html
|
| 7 Oct 2008 |
cups-libs: libraries for CUPS |
| RPM |
cups-libs 1.2.7-12.19 (i586) |
230 kB |
| Patch-RPM |
cups-libs 1.2.7-12.19-patch (i586) |
162 kB |
| Source-RPM |
cups-1.2.7-12.19.src.rpm |
|
Security Update!
Specially crafted print jobs could trigger buffer overflows in the
'imagetops', 'texttops' and 'hpgltops' filters. Attackers could
potentially exploit that to execute arbitrary code on the cups
server (CVE-2008-3639, CVE-2008-3640, CVE-2008-3641).
|
| 7 Oct 2008 |
cups-client: CUPS Client Programs |
| RPM |
cups-client 1.2.7-12.19 (i586) |
105 kB |
| Patch-RPM |
cups-client 1.2.7-12.19-patch (i586) |
40 kB |
| Source-RPM |
cups-1.2.7-12.19.src.rpm |
|
Security Update!
Specially crafted print jobs could trigger buffer overflows in the
'imagetops', 'texttops' and 'hpgltops' filters. Attackers could
potentially exploit that to execute arbitrary code on the cups
server (CVE-2008-3639, CVE-2008-3640, CVE-2008-3641).
|
| 7 Oct 2008 |
cups-devel: Development Environment for CUPS |
| RPM |
cups-devel 1.2.7-12.19 (i586) |
197 kB |
| Patch-RPM |
cups-devel 1.2.7-12.19-patch (i586) |
174 kB |
| Source-RPM |
cups-1.2.7-12.19.src.rpm |
|
Security Update!
Specially crafted print jobs could trigger buffer overflows in the
'imagetops', 'texttops' and 'hpgltops' filters. Attackers could
potentially exploit that to execute arbitrary code on the cups
server (CVE-2008-3639, CVE-2008-3640, CVE-2008-3641).
|
| 7 Oct 2008 |
cups: The Common UNIX Printing System |
| RPM |
cups 1.2.7-12.19 (i586) |
2247 kB |
| Patch-RPM |
cups 1.2.7-12.19-patch (i586) |
750 kB |
| Source-RPM |
cups-1.2.7-12.19.src.rpm |
|
Security Update!
Specially crafted print jobs could trigger buffer overflows in the
'imagetops', 'texttops' and 'hpgltops' filters. Attackers could
potentially exploit that to execute arbitrary code on the cups
server (CVE-2008-3639, CVE-2008-3640, CVE-2008-3641).
|
| 6 Oct 2008 |
seamonkey-venkman: The SeaMonkey JavaScript Debugger |
| RPM |
seamonkey-venkman 1.1.12-0.1 (i586) |
207 kB |
| Patch-RPM |
seamonkey-venkman 1.1.12-0.1-patch (i586) |
200 kB |
| Source-RPM |
seamonkey-1.1.12-0.1.src.rpm |
|
Security Update!
This patch updates Seamonkey to version 1.1.12, fixing security
and other bugs:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
Details can be found here:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
|
| 6 Oct 2008 |
seamonkey-spellchecker: A Spell Checker for SeaMonkey |
| RPM |
seamonkey-spellchecker 1.1.12-0.1 (i586) |
342 kB |
| Patch-RPM |
seamonkey-spellchecker 1.1.12-0.1-patch (i586) |
81 kB |
| Source-RPM |
seamonkey-1.1.12-0.1.src.rpm |
|
Security Update!
This patch updates Seamonkey to version 1.1.12, fixing security
and other bugs:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
Details can be found here:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
|
| 6 Oct 2008 |
seamonkey-mail: The SeaMonkey Mail Client |
| RPM |
seamonkey-mail 1.1.12-0.1 (i586) |
2002 kB |
| Patch-RPM |
seamonkey-mail 1.1.12-0.1-patch (i586) |
1954 kB |
| Source-RPM |
seamonkey-1.1.12-0.1.src.rpm |
|
Security Update!
This patch updates Seamonkey to version 1.1.12, fixing security
and other bugs:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
Details can be found here:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
|
| 6 Oct 2008 |
seamonkey-dom-inspector: The SeaMonkey DOM Inspector |
| RPM |
seamonkey-dom-inspector 1.1.12-0.1 (i586) |
138 kB |
| Patch-RPM |
seamonkey-dom-inspector 1.1.12-0.1-patch (i586) |
133 kB |
| Source-RPM |
seamonkey-1.1.12-0.1.src.rpm |
|
Security Update!
This patch updates Seamonkey to version 1.1.12, fixing security
and other bugs:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
Details can be found here:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
|
| 6 Oct 2008 |
seamonkey-irc: IRC for SeaMonkey |
| RPM |
seamonkey-irc 1.1.12-0.1 (i586) |
260 kB |
| Patch-RPM |
seamonkey-irc 1.1.12-0.1-patch (i586) |
254 kB |
| Source-RPM |
seamonkey-1.1.12-0.1.src.rpm |
|
Security Update!
This patch updates Seamonkey to version 1.1.12, fixing security
and other bugs:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
Details can be found here:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
|
| 6 Oct 2008 |
seamonkey: The successor of the Mozilla Application Suite |
| RPM |
seamonkey 1.1.12-0.1 (i586) |
8610 kB |
| Patch-RPM |
seamonkey 1.1.12-0.1-patch (i586) |
8281 kB |
| Source-RPM |
seamonkey-1.1.12-0.1.src.rpm |
|
Security Update!
This patch updates Seamonkey to version 1.1.12, fixing security
and other bugs:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
Details can be found here:
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
|
| 2 Oct 2008 |
digikamimageplugins: Image Manipulation Plug-Ins |
| RPM |
digikamimageplugins 0.8.2-37 (i586) |
15115 kB |
| Patch-RPM |
digikamimageplugins 0.8.2-37-patch (i586) |
1355 kB |
| Source-RPM |
digikamimageplugins-0.8.2-37.src.rpm |
|
This patch resolves a race condition in Digikam's photo download code that could cause loss of pictures. The download code now uses unique pathnames for each photo's temporary file during download, preventing overwrites.
|
| 2 Oct 2008 |
digikam: A KDE Photo Manager |
| RPM |
digikam 0.8.2-40.6 (i586) |
3581 kB |
| Patch-RPM |
digikam 0.8.2-40.6-patch (i586) |
961 kB |
| Source-RPM |
digikam-0.8.2-40.6.src.rpm |
|
This patch resolves a race condition in Digikam's photo download code that could cause loss of pictures. The download code now uses unique pathnames for each photo's temporary file during download, preventing overwrites.
|
| 1 Oct 2008 |
perl-GraphicsMagick: Viewer and Converter for Images - perl interface |
| RPM |
perl-GraphicsMagick 1.1.7-35.9 (i586) |
62 kB |
| Patch-RPM |
perl-GraphicsMagick 1.1.7-35.9-patch (i586) |
7 kB |
| Source-RPM |
GraphicsMagick-1.1.7-35.9.src.rpm |
|
Security Update!
Specially crafted image files could crash GraphicsMagick (CVE-2008-3134).
|
| 1 Oct 2008 |
GraphicsMagick-devel: Viewer and Converter for Images - files mandatory for development |
| RPM |
GraphicsMagick-devel 1.1.7-35.9 (i586) |
46 kB |
| Patch-RPM |
GraphicsMagick-devel 1.1.7-35.9-patch (i586) |
11 kB |
| Source-RPM |
GraphicsMagick-1.1.7-35.9.src.rpm |
|
Security Update!
Specially crafted image files could crash GraphicsMagick (CVE-2008-3134).
|
| 1 Oct 2008 |
GraphicsMagick-c++: Viewer and Converter for Images - C++ interface |
| RPM |
GraphicsMagick-c++ 1.1.7-35.9 (i586) |
134 kB |
| Source-RPM |
GraphicsMagick-1.1.7-35.9.src.rpm |
|
Security Update!
Specially crafted image files could crash GraphicsMagick (CVE-2008-3134).
|
| 1 Oct 2008 |
GraphicsMagick-c++-devel: Viewer and Converter for Images - C++ interface - development files |
| RPM |
GraphicsMagick-c++-devel 1.1.7-35.9 (i586) |
40 kB |
| Patch-RPM |
GraphicsMagick-c++-devel 1.1.7-35.9-patch (i586) |
5 kB |
| Source-RPM |
GraphicsMagick-1.1.7-35.9.src.rpm |
|
Security Update!
Specially crafted image files could crash GraphicsMagick (CVE-2008-3134).
|
| 1 Oct 2008 |
GraphicsMagick: Viewer and Converter for Images |
| RPM |
GraphicsMagick 1.1.7-35.9 (i586) |
2157 kB |
| Patch-RPM |
GraphicsMagick 1.1.7-35.9-patch (i586) |
1107 kB |
| Source-RPM |
GraphicsMagick-1.1.7-35.9.src.rpm |
|
Security Update!
Specially crafted image files could crash GraphicsMagick (CVE-2008-3134).
|
| 1 Oct 2008 |
dovecot: IMAP and POP3 Server Written Primarily with Security in Mind |
| RPM |
dovecot 1.0.rc14-11 (i586) |
1444 kB |
| Patch-RPM |
dovecot 1.0.rc14-11-patch (i586) |
985 kB |
| Source-RPM |
dovecot-1.0.rc14-11.src.rpm |
|
Security Update!
When configured with 'mail_extra_groups' dovecot potentially allowed
users to read mail boxes of other users. This is not the
case in the default configuration of on openSUSE (CVE-2008-1199).
By using tab characters in passwords remote attackers could
potentially acquire unauthorized access (CVE-2008-1218).
Flaws in caching LDAP data could lead to users getting logged in
with the wrong account (CVE-2007-6598).
|
| 30 Sep 2008 |
MozillaFirefox-translations: Translations for MozillaFirefox |
| RPM |
MozillaFirefox-translations 2.0.0.17-0.1 (i586) |
4683 kB |
| Source-RPM |
MozillaFirefox-2.0.0.17-0.1.src.rpm |
|
Security Update!
This update brings MozillaFirefox to version 2.0.0.17
to fix bugs and security issues:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-39 / CVE-2008-3836: Privilege escalation using feed preview page and XSS flaw
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
For more details:
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html
|
| 30 Sep 2008 |
MozillaFirefox: Mozilla Firefox Web Browser |
| RPM |
MozillaFirefox 2.0.0.17-0.1 (i586) |
7828 kB |
| Patch-RPM |
MozillaFirefox 2.0.0.17-0.1-patch (i586) |
6666 kB |
| Source-RPM |
MozillaFirefox-2.0.0.17-0.1.src.rpm |
|
Security Update!
This update brings MozillaFirefox to version 2.0.0.17
to fix bugs and security issues:
MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading
MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities
MFSA 2008-43: BOM characters stripped from JavaScript before execution
CVE-2008-4065: Stripped BOM characters bug
CVE-2008-4066: HTML escaped low surrogates bug
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17):
CVE-2008-4061: Jesse Ruderman reported a crash in the layout engine.
CVE-2008-4062: Igor Bukanov, Philip Taylor, Georgi Guninski,
and Antoine Labour reported crashes in the
JavaScript engine.
CVE-2008-4063: Jesse Ruderman, Bob Clary, and Martijn Wargers
reported crashes in the layout engine which only
affected Firefox 3.
CVE-2008-4064: David Maciejak and Drew Yao reported crashes in
graphics rendering which only affected Firefox 3.
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
CVE-2008-4058: XPCnativeWrapper pollution bugs
CVE-2008-4059: XPCnativeWrapper pollution (Firefox 2)
CVE-2008-4060: Documents without script handling objects
MFSA 2008-40 / CVE-2008-3837: Forced mouse drag
MFSA 2008-39 / CVE-2008-3836: Privilege escalation using feed preview page and XSS flaw
MFSA 2008-38 / CVE-2008-3835: nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 / CVE-2008-0016: UTF-8 URL stack buffer overflow
For more details:
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html
|
| 26 Sep 2008 |
xgl: Xserver that uses OpenGL for its drawing operations. |
| RPM |
xgl cvs_060522-45 (i586) |
1605 kB |
| Patch-RPM |
xgl cvs_060522-45-patch (i586) |
1603 kB |
| Source-RPM |
xgl-cvs_060522-45.src.rpm |
|
Security Update!
This update fixes multiple vulnerabilities reported by iDefense for the included X server:
- CVE-2008-2360 - RENDER Extension heap buffer overflow
- CVE-2008-2361 - RENDER Extension crash
- CVE-2008-2362 - RENDER Extension memory corruption
- CVE-2008-1379 - MIT-SHM arbitrary memory read
- CVE-2008-1377 - RECORD and Security extensions memory corruption
|
| 24 Sep 2008 |
bluez-utils: Bluetooth Daemons and Utilities |
| RPM |
bluez-utils 3.7-29.4 (i586) |
306 kB |
| Patch-RPM |
bluez-utils 3.7-29.4-patch (i586) |
143 kB |
| Source-RPM |
bluez-utils-3.7-29.4.src.rpm |
|
Security Update!
Missing length checks in bluez-libs could cause a buffer overflow in
Bluetooth applications. Malicious bluetooth devices could
potentially exploit that to execute arbitrary code (CVE-2008-2374).
Note: The source code of each application that uses vulnerable
functions of bluez-libs needs to be adapted to actually fix the
problem.
|
| 24 Sep 2008 |
bluez-test: Tools for testing of various Bluetooth-functions |
| RPM |
bluez-test 3.7-29.4 (i586) |
42 kB |
| Patch-RPM |
bluez-test 3.7-29.4-patch (i586) |
18 kB |
| Source-RPM |
bluez-utils-3.7-29.4.src.rpm |
|
Security Update!
Missing length checks in bluez-libs could cause a buffer overflow in
Bluetooth applications. Malicious bluetooth devices could
potentially exploit that to execute arbitrary code (CVE-2008-2374).
Note: The source code of each application that uses vulnerable
functions of bluez-libs needs to be adapted to actually fix the
problem.
|
| 24 Sep 2008 |
bluez-libs: Bluetooth Libraries |
| RPM |
bluez-libs 3.7-14.3 (i586) |
93 kB |
| Patch-RPM |
bluez-libs 3.7-14.3-patch (i586) |
69 kB |
| Source-RPM |
bluez-libs-3.7-14.3.src.rpm |
|
Security Update!
Missing length checks in bluez-libs could cause a buffer overflow in
Bluetooth applications. Malicious bluetooth devices could
potentially exploit that to execute arbitrary code (CVE-2008-2374).
Note: The source code of each application that uses vulnerable
functions of bluez-libs needs to be adapted to actually fix the
problem.
|
| 24 Sep 2008 |
bluez-cups: CUPS Driver for Bluetooth Printers |
| RPM |
bluez-cups 3.7-29.4 (i586) |
30 kB |
| Patch-RPM |
bluez-cups 3.7-29.4-patch (i586) |
22 kB |
| Source-RPM |
bluez-utils-3.7-29.4.src.rpm |
|
Security Update!
Missing length checks in bluez-libs could cause a buffer overflow in
Bluetooth applications. Malicious bluetooth devices could
potentially exploit that to execute arbitrary code (CVE-2008-2374).
Note: The source code of each application that uses vulnerable
functions of bluez-libs needs to be adapted to actually fix the
problem.
|
| 23 Sep 2008 |
opensc-devel: Additional files needed for OpenSC development |
| RPM |
opensc-devel 0.11.1-22 (i586) |
345 kB |
| Patch-RPM |
opensc-devel 0.11.1-22-patch (i586) |
197 kB |
| Source-RPM |
opensc-0.11.1-22.src.rpm |
|
Security Update!
This update fixes a security issues with opensc that occured when
initializing blank smart cards with Siemens CardOS M4. After the
initialization anyone could set the PIN of the smart card without
authorization (CVE-2008-2235).
NOTE: Already initialized cards are still vulnerable after this
update. Please use the command-line tool pkcs15-tool with option
--test-update and --update when necessary.
Please find more information at http://www.opensc-project.org/security.html
This is the second attempt to fix this problem. The previous update
was unforunately incomplete.
|
| 23 Sep 2008 |
opensc: OpenSC Smart Card Library |
| RPM |
opensc 0.11.1-22 (i586) |
674 kB |
| Patch-RPM |
opensc 0.11.1-22-patch (i586) |
279 kB |
| Source-RPM |
opensc-0.11.1-22.src.rpm |
|
Security Update!
This update fixes a security issues with opensc that occured when
initializing blank smart cards with Siemens CardOS M4. After the
initialization anyone could set the PIN of the smart card without
authorization (CVE-2008-2235).
NOTE: Already initialized cards are still vulnerable after this
update. Please use the command-line tool pkcs15-tool with option
--test-update and --update when necessary.
Please find more information at http://www.opensc-project.org/security.html
This is the second attempt to fix this problem. The previous update
was unforunately incomplete.
|
| 23 Sep 2008 |
pam_mount: A PAM Module that can Mount Volumes for a User Session. |
| RPM |
pam_mount 0.18-22 (i586) |
73 kB |
| Patch-RPM |
pam_mount 0.18-22-patch (i586) |
41 kB |
| Source-RPM |
pam_mount-0.18-22.src.rpm |
|
Security Update!
pam_mount allowed users to mount arbitrary devices to any directory
when the 'luserconf' configuration directive was set (CVE-2008-3970).
|
| 17 Sep 2008 |
klamav: Frontend for clamav |
| RPM |
klamav 0.41.1-17.5 (i586) |
488 kB |
| Patch-RPM |
klamav 0.41.1-17.5-patch (i586) |
342 kB |
| Source-RPM |
klamav-0.41.1-17.5.src.rpm |
|
Security Update!
clamav has been updated due to security problems. The version number
of the clamav library has been changed with that update. Therefore
programs like klamav that are linked against libclamav need to be
updated as well.
|
| 17 Sep 2008 |
sylpheed-claws: An Email client similar to Eudora on Windows |
| RPM |
sylpheed-claws 2.5.5-34 (i586) |
4614 kB |
| Patch-RPM |
sylpheed-claws 2.5.5-34-patch (i586) |
1261 kB |
| Source-RPM |
sylpheed-claws-2.5.5-34.src.rpm |
|
Security Update!
clamav has been updated due to security problems. The version number
of the clamav library has been changed with that update. Therefore
programs like sylpheed-claws that are linked against libclamav need to be
updated as well.
|
| 16 Sep 2008 |
php5-zlib: PHP5 Extension Module |
| RPM |
php5-zlib 5.2.6-0.5 (i586) |
50 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-zip: PHP5 Extension Module |
| RPM |
php5-zip 5.2.6-0.5 (i586) |
65 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-xmlwriter: PHP5 Extension Module |
| RPM |
php5-xmlwriter 5.2.6-0.5 (i586) |
48 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-xsl: PHP5 Extension Module |
| RPM |
php5-xsl 5.2.6-0.5 (i586) |
50 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-wddx: PHP5 Extension Module |
| RPM |
php5-wddx 5.2.6-0.5 (i586) |
52 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-xmlrpc: PHP5 Extension Module |
| RPM |
php5-xmlrpc 5.2.6-0.5 (i586) |
72 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-xmlreader: PHP5 Extension Module |
| RPM |
php5-xmlreader 5.2.6-0.5 (i586) |
49 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-tokenizer: PHP5 Extension Module |
| RPM |
php5-tokenizer 5.2.6-0.5 (i586) |
44 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-tidy: PHP5 Extension Module |
| RPM |
php5-tidy 5.2.6-0.5 (i586) |
53 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-sysvshm: PHP5 Extension Module |
| RPM |
php5-sysvshm 5.2.6-0.5 (i586) |
44 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-sysvsem: PHP5 Extension Module |
| RPM |
php5-sysvsem 5.2.6-0.5 (i586) |
42 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-sqlite: PHP5 Extension Module |
| RPM |
php5-sqlite 5.2.6-0.5 (i586) |
69 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-suhosin: PHP5 Extension Module |
| RPM |
php5-suhosin 5.2.6-0.5 (i586) |
105 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-sysvmsg: PHP5 Extension Module |
| RPM |
php5-sysvmsg 5.2.6-0.5 (i586) |
44 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-sockets: PHP5 Extension Module |
| RPM |
php5-sockets 5.2.6-0.5 (i586) |
53 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-soap: PHP5 Extension Module |
| RPM |
php5-soap 5.2.6-0.5 (i586) |
152 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-shmop: PHP5 Extension Module |
| RPM |
php5-shmop 5.2.6-0.5 (i586) |
43 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-snmp: PHP5 Extension Module |
| RPM |
php5-snmp 5.2.6-0.5 (i586) |
49 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-readline: PHP5 readline extension |
| RPM |
php5-readline 5.2.6-0.5 (i586) |
44 kB |
| Patch-RPM |
php5-readline 5.2.6-0.5-patch (i586) |
39 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-pspell: PHP5 pspell extension |
| RPM |
php5-pspell 5.2.6-0.5 (i586) |
46 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-pgsql: PHP5 Extension Module |
| RPM |
php5-pgsql 5.2.6-0.5 (i586) |
85 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-posix: PHP5 Extension Module |
| RPM |
php5-posix 5.2.6-0.5 (i586) |
47 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-pear: PHP Extension and Application Repository |
| RPM |
php5-pear 5.2.6-0.5 (i586) |
317 kB |
| Patch-RPM |
php5-pear 5.2.6-0.5-patch (i586) |
312 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-pcntl: PHP5 Extension Module |
| RPM |
php5-pcntl 5.2.6-0.5 (i586) |
46 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-pdo: PHP5 Extension Module |
| RPM |
php5-pdo 5.2.6-0.5 (i586) |
75 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-openssl: PHP5 Extension Module |
| RPM |
php5-openssl 5.2.6-0.5 (i586) |
71 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-ncurses: PHP5 Extension Module |
| RPM |
php5-ncurses 5.2.6-0.5 (i586) |
58 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-odbc: PHP5 Extension Module |
| RPM |
php5-odbc 5.2.6-0.5 (i586) |
68 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-mhash: PHP5 Extension Module |
| RPM |
php5-mhash 5.2.6-0.5 (i586) |
43 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-mysql: PHP5 Extension Module |
| RPM |
php5-mysql 5.2.6-0.5 (i586) |
94 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-mcrypt: PHP5 Extension Module |
| RPM |
php5-mcrypt 5.2.6-0.5 (i586) |
50 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-mbstring: PHP5 Extension Module |
| RPM |
php5-mbstring 5.2.6-0.5 (i586) |
745 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-json: PHP5 Extension Module |
| RPM |
php5-json 5.2.6-0.5 (i586) |
49 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-ldap: PHP5 Extension Module |
| RPM |
php5-ldap 5.2.6-0.5 (i586) |
54 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-imap: PHP5 Extension Module |
| RPM |
php5-imap 5.2.6-0.5 (i586) |
70 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-iconv: PHP5 Extension Module |
| RPM |
php5-iconv 5.2.6-0.5 (i586) |
53 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-hash: PHP5 Extension Module |
| RPM |
php5-hash 5.2.6-0.5 (i586) |
126 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-gmp: PHP5 Extension Module |
| RPM |
php5-gmp 5.2.6-0.5 (i586) |
51 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-gettext: PHP5 Extension Module |
| RPM |
php5-gettext 5.2.6-0.5 (i586) |
44 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-gd: PHP5 Extension Module |
| RPM |
php5-gd 5.2.6-0.5 (i586) |
130 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-ftp: PHP5 Extension Module |
| RPM |
php5-ftp 5.2.6-0.5 (i586) |
55 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-exif: PHP5 Extension Module |
| RPM |
php5-exif 5.2.6-0.5 (i586) |
61 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-fastcgi: FastCGI PHP5 Module |
| RPM |
php5-fastcgi 5.2.6-0.5 (i586) |
898 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-devel: Include files of PHP5 |
| RPM |
php5-devel 5.2.6-0.5 (i586) |
466 kB |
| Patch-RPM |
php5-devel 5.2.6-0.5-patch (i586) |
428 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-dom: PHP5 Extension Module |
| RPM |
php5-dom 5.2.6-0.5 (i586) |
87 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-dbase: PHP5 Extension Module |
| RPM |
php5-dbase 5.2.6-0.5 (i586) |
51 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-dba: PHP5 Extension Module |
| RPM |
php5-dba 5.2.6-0.5 (i586) |
59 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-calendar: PHP5 Extension Module |
| RPM |
php5-calendar 5.2.6-0.5 (i586) |
50 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-ctype: PHP5 Extension Module |
| RPM |
php5-ctype 5.2.6-0.5 (i586) |
42 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-curl: PHP5 Extension Module |
| RPM |
php5-curl 5.2.6-0.5 (i586) |
60 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-bz2: PHP5 Extension Module |
| RPM |
php5-bz2 5.2.6-0.5 (i586) |
47 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5-bcmath: PHP5 Extension Module |
| RPM |
php5-bcmath 5.2.6-0.5 (i586) |
53 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
php5: PHP5 Core Files |
| RPM |
php5 5.2.6-0.5 (i586) |
993 kB |
| Patch-RPM |
php5 5.2.6-0.5-patch (i586) |
968 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 16 Sep 2008 |
apache2-mod_php5: PHP5 Module for Apache 2.0 |
| RPM |
apache2-mod_php5 5.2.6-0.5 (i586) |
943 kB |
| Source-RPM |
php5-5.2.6-0.5.src.rpm |
|
Security Update!
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660
have been fixed in the php5 update.
|
| 15 Sep 2008 |
gnutls-devel: Development package for gnutls |
| RPM |
gnutls-devel 1.4.4-19 (i586) |
2157 kB |
| Patch-RPM |
gnutls-devel 1.4.4-19-patch (i586) |
301 kB |
| Source-RPM |
gnutls-1.4.4-19.src.rpm |
|
Security Update!
Multiple issues have been fixed in gnutls:
CVE-2008-1948 (GNUTLS-SA-2008-1-1),
CVE-2008-1949 (GNUTLS-SA-2008-1-2) and
CVE-2008-1950 (GNUTLS-SA-2008-1-3) have
been assigned to this issue.
|
| 15 Sep 2008 |
gnutls: The GNU Transport Layer Security Library |
| RPM |
gnutls 1.4.4-19 (i586) |
378 kB |
| Patch-RPM |
gnutls 1.4.4-19-patch (i586) |
211 kB |
| Source-RPM |
gnutls-1.4.4-19.src.rpm |
|
Security Update!
Multiple issues have been fixed in gnutls:
CVE-2008-1948 (GNUTLS-SA-2008-1-1),
CVE-2008-1949 (GNUTLS-SA-2008-1-2) and
CVE-2008-1950 (GNUTLS-SA-2008-1-3) have
been assigned to this issue.
|
| 15 Sep 2008 |
libxml2: A Library to Manipulate XML Files |
| RPM |
libxml2 2.6.26-31 (i586) |
612 kB |
| Patch-RPM |
libxml2 2.6.26-31-patch (i586) |
572 kB |
| Source-RPM |
libxml2-2.6.26-31.src.rpm |
|
Security Update!
Specially crafted xml files could cause a crash or a heap based
buffer overlow in libxml2 (CVE-2008-3281, CVE-2008-3529).
|
| 15 Sep 2008 |
libxml2-devel: Include Files and Libraries mandatory for Development. |
| RPM |
libxml2-devel 2.6.26-31 (i586) |
1416 kB |
| Patch-RPM |
libxml2-devel 2.6.26-31-patch (i586) |
609 kB |
| Source-RPM |
libxml2-2.6.26-31.src.rpm |
|
Security Update!
Specially crafted xml files could cause a crash or a heap based
buffer overlow in libxml2 (CVE-2008-3281, CVE-2008-3529).
|
| 11 Sep 2008 |
gaim: GTK+-Based Multiprotocol Instant Messaging Client |
| RPM |
gaim 1.5.0-88 (i586) |
3701 kB |
| Patch-RPM |
gaim 1.5.0-88-patch (i586) |
912 kB |
| Source-RPM |
gaim-1.5.0-88.src.rpm |
|
Security Update!
- specially crafted MSN SLP messages could cause an integer overflow in gaim.
Attackers could potentially exploit that to execute arbitrary
code (CVE-2008-2927).
Additionally a problem was fixed that prevented gaim clients from
connecting to the ICQ network after a server change on July 1st
2008.
|
| 11 Sep 2008 |
gaim-devel: GTK+ Based Multiprotocol Instant Messaging Client |
| RPM |
gaim-devel 1.5.0-88 (i586) |
94 kB |
| Patch-RPM |
gaim-devel 1.5.0-88-patch (i586) |
22 kB |
| Source-RPM |
gaim-1.5.0-88.src.rpm |
|
Security Update!
- specially crafted MSN SLP messages could cause an integer overflow in gaim.
Attackers could potentially exploit that to execute arbitrary
code (CVE-2008-2927).
Additionally a problem was fixed that prevented gaim clients from
connecting to the ICQ network after a server change on July 1st
2008.
|
| 11 Sep 2008 |
imlib2-loaders: Imlib 2 - image loaders |
| RPM |
imlib2-loaders 1.2.1-46 (i586) |
41 kB |
| Patch-RPM |
imlib2-loaders 1.2.1-46-patch (i586) |
17 kB |
| Source-RPM |
imlib2-1.2.1-46.src.rpm |
|
Security Update!
This update fixes two security problems in imlib2.
Specially crafted xpm files could trigger a stack based buffer overflow
in imlib2 which could potentially be exploited to execute arbitrary code
(CVE-2008-2426).
A crash in PNM handling due to a NULL pointer dereference was fixed.
|
| 11 Sep 2008 |
imlib2: Imlib 2, the Successor to Imlib |
| RPM |
|