Moderate: openswan (SL5, SL6)

Synopsis: Moderate: openswan security update Issue Date: 2011-11-02 CVE Numbers: CVE-2011-4073 — Openswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services. These services … Read More

Moderate: openssl (SL6)

Synopsis: Moderate: openssl security update Issue Date: 2011-10-26 CVE Numbers: CVE-2011-3207 — OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols, as well as a full-strength, general purpose cryptography library. … Read More

Important: freetype (SL4, SL5, SL6)

Synopsis: Important: freetype security update Issue Date: 2011-10-25 CVE Numbers: CVE-2011-3256 — FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual glyphs efficiently. The freetype packages for … Read More

xen (SL5)

Synopsis: Moderate: xen security and bug fix update Issue Date: 2011-10-24 CVE Numbers: CVE-2011-3346 — The xen packages contain administration tools and the xend service for managing the kernel-xen kernel for virtualization on Red Hat Enterprise Linux. A buffer overflow … Read More

httpd (SL4, SL5)

Synopsis: Moderate: httpd security and bug fix update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-3368 — The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI for … Read More

Moderate: httpd (SL6)

Synopsis: Moderate: httpd security and bug fix update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-3348 CVE-2011-3368 — The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI … Read More

kernel (SL5)

Synopsis: Important: kernel security, bug fix, and enhancement update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-2695 CVE-2011-1160 CVE-2011-1585 CVE-2011-2484 CVE-2011-2496 CVE-2011-2723 CVE-2011-1833 CVE-2009-4067 CVE-2011-2699 CVE-2011-3131 CVE-2011-2942 CVE-2011-3188 CVE-2011-3191 CVE-2011-3209 CVE-2011-3347 — The kernel packages contain the Linux kernel, the core of … Read More

Moderate: kdelibs and kdelibs3 (SL4, SL5, SL6)

Synopsis: Moderate: kdelibs and kdelibs3 security update Issue Date: 2011-10-19 CVE Numbers: CVE-2011-3365 — The kdelibs and kdelibs3 packages provide libraries for the K Desktop Environment (KDE). An input sanitization flaw was found in the KSSL (KDE SSL Wrapper) API. … Read More

Critical: java-1.6.0-openjdk (SL5, SL6)

Synopsis: Critical: java-1.6.0-openjdk security update Issue Date: 2011-10-18 CVE Numbers: CVE-2011-3389 CVE-2011-3560 CVE-2011-3547 CVE-2011-3551 CVE-2011-3552 CVE-2011-3544 CVE-2011-3521 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3548 CVE-2011-3553 CVE-2011-3558 — These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. … Read More

Moderate: krb5 (SL6)

Synopsis: Moderate: krb5 security update Issue Date: 2011-10-18 CVE Numbers: CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 — Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution … Read More