Moderate: icu (SL5, SL6)

Synopsis: Moderate: icu security update Issue Date: 2011-12-13 CVE Numbers: CVE-2011-4599 — The International Components for Unicode (ICU) library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for … Read More

Moderate: ipmitool (SL6)

Synopsis: Moderate: ipmitool security update Issue Date: 2011-12-13 CVE Numbers: CVE-2011-4339 — The ipmitool package contains a command line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine … Read More

Important: jasper (SL6)

Synopsis: Important: jasper security update Issue Date: 2011-12-08 CVE Numbers: CVE-2011-4516 CVE-2011-4517 — JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Two heap-based buffer overflow flaws were found in the way JasPer decoded JPEG … Read More

Low: virt-v2v (SL6)

Synopsis: Low: virt-v2v security and bug fix update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-1773 — virt-v2v is a tool for converting and importing virtual machines to libvirt-managed KVM (Kernel-based Virtual Machine), or Red Hat Enterprise Virtualization. Using virt-v2v to convert … Read More

netpbm (SL4, SL5)

Synopsis: Important: netpbm security update Issue Date: 2011-12-12 CVE Numbers: CVE-2011-4516 CVE-2011-4517 CVE-2009-4274 — The netpbm packages contain a library of functions which support programs for handling various graphics file formats, including .pbm (Portable Bit Map), .pgm (Portable Gray Map), … Read More

perl (SL4, SL5)

Synopsis: Moderate: perl security update Issue Date: 2011-12-08 CVE Numbers: CVE-2011-3597 — Perl is a high-level programming language commonly used for system administration utilities and web programming. It was found that the “new” constructor of the Digest module used its … Read More

Moderate: squid (SL6)

Synopsis: Moderate: squid security update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-4096 — Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. An input validation flaw was found in the way Squid calculated … Read More

Moderate: krb5 (SL6)

Synopsis: Moderate: krb5 security update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-1530 — Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution Center (KDC). … Read More

Low: libxml2 (SL6)

Synopsis: Low: libxml2 security and bug fix update Issue Date: 2011-12-06 CVE Numbers: CVE-2010-4008 CVE-2010-4494 CVE-2011-1944 CVE-2011-0216 CVE-2011-2821 CVE-2011-2834 — The libxml2 library is a development toolbox providing the implementation of various XML standards. One of those standards is the … Read More

Low: php-pear (SL6)

Synopsis: Low: php-pear security and bug fix update Issue Date: 2011-12-06 CVE Numbers: CVE-2011-1072 — The php-pear package contains the PHP Extension and Application Repository (PEAR), a framework and distribution system for reusable PHP components. It was found that the … Read More