thunderbird (SL4, SL5)

Synopsis: Critical: thunderbird security update Issue Date: 2011-04-28 CVE Numbers: CVE-2011-0078 CVE-2011-0077 CVE-2011-0075 CVE-2011-0074 CVE-2011-0073 CVE-2011-0080 — Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML content. An HTML mail … Read More

seamonkey (SL4)

Synopsis: Critical: seamonkey security update Issue Date: 2011-04-28 CVE Numbers: CVE-2011-0078 CVE-2011-0077 CVE-2011-0075 CVE-2011-0074 CVE-2011-0073 CVE-2011-0072 CVE-2011-0080 — SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in … Read More

Important: nss (SL4, SL5, SL6)

Synopsis: Important: nss security update Issue Date: 2011-04-28 Network Security Services (NSS) is a set of libraries designed to support the development of security-enabled client and server applications. This erratum blacklists a small number of HTTPS certificates by adding them, … Read More

glibc (SL5)

Synopsis: Important: glibc security update Issue Date: 2011-04-04 CVE Numbers: CVE-2010-0296 CVE-2011-1095 CVE-2011-0536 CVE-2011-1071 — The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math … Read More

Important: kdenetwork (SL6)

Synopsis: Important: kdenetwork security update Issue Date: 2011-04-21 CVE Numbers: CVE-2011-1586 — The kdenetwork packages contain networking applications for the K Desktop Environment (KDE). A directory traversal flaw was found in the way KGet, a download manager, handled the “file” … Read More

Moderate: kdelibs (SL6)

Synopsis: Moderate: kdelibs security update Issue Date: 2011-04-21 CVE Numbers: CVE-2011-1094 CVE-2011-1168 — The kdelibs packages provide libraries for the K Desktop Environment (KDE). A cross-site scripting (XSS) flaw was found in the way KHTML, the HTML layout engine used … Read More

Important: polkit (SL6)

Synopsis: Important: polkit security update Issue Date: 2011-04-19 CVE Numbers: CVE-2011-1485 — PolicyKit is a toolkit for defining and handling authorizations. A race condition flaw was found in the PolicyKit pkexec utility and polkitd daemon. A local user could use … Read More

Important: libtiff (SL6)

Synopsis: Important: libtiff security update Issue Date: 2011-04-18 CVE Numbers: CVE-2009-5022 — The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. A heap-based buffer overflow flaw was found in the way libtiff processed … Read More

xorg-x11 (SL4)

Synopsis: Moderate: xorg-x11 security update Issue Date: 2011-04-11 CVE Numbers: CVE-2011-0465 — X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was … Read More

Moderate: krb5 (SL6)

Synopsis: Moderate: krb5 security update Issue Date: 2011-04-14 CVE Numbers: CVE-2011-0285 — Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution Center (KDC). … Read More