Important: nss (SL4, SL5, SL6)

Synopsis: Important: nss security update Issue Date: 2011-04-28 Network Security Services (NSS) is a set of libraries designed to support the development of security-enabled client and server applications. This erratum blacklists a small number of HTTPS certificates by adding them, … Read More

glibc (SL5)

Synopsis: Important: glibc security update Issue Date: 2011-04-04 CVE Numbers: CVE-2010-0296 CVE-2011-1095 CVE-2011-0536 CVE-2011-1071 — The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math … Read More

Important: kdenetwork (SL6)

Synopsis: Important: kdenetwork security update Issue Date: 2011-04-21 CVE Numbers: CVE-2011-1586 — The kdenetwork packages contain networking applications for the K Desktop Environment (KDE). A directory traversal flaw was found in the way KGet, a download manager, handled the “file” … Read More

Moderate: kdelibs (SL6)

Synopsis: Moderate: kdelibs security update Issue Date: 2011-04-21 CVE Numbers: CVE-2011-1094 CVE-2011-1168 — The kdelibs packages provide libraries for the K Desktop Environment (KDE). A cross-site scripting (XSS) flaw was found in the way KHTML, the HTML layout engine used … Read More

Important: polkit (SL6)

Synopsis: Important: polkit security update Issue Date: 2011-04-19 CVE Numbers: CVE-2011-1485 — PolicyKit is a toolkit for defining and handling authorizations. A race condition flaw was found in the PolicyKit pkexec utility and polkitd daemon. A local user could use … Read More

Important: libtiff (SL6)

Synopsis: Important: libtiff security update Issue Date: 2011-04-18 CVE Numbers: CVE-2009-5022 — The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. A heap-based buffer overflow flaw was found in the way libtiff processed … Read More

xorg-x11 (SL4)

Synopsis: Moderate: xorg-x11 security update Issue Date: 2011-04-11 CVE Numbers: CVE-2011-0465 — X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was … Read More

Moderate: krb5 (SL6)

Synopsis: Moderate: krb5 security update Issue Date: 2011-04-14 CVE Numbers: CVE-2011-0285 — Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution Center (KDC). … Read More

avahi (SL5)

Synopsis: Moderate: avahi security update Issue Date: 2011-04-12 CVE Numbers: CVE-2011-1002 — Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware … Read More

kernel (SL5)

Synopsis: Important: kernel security and bug fix update Issue Date: 2011-04-12 CVE Numbers: CVE-2011-0521 CVE-2010-4346 CVE-2011-0710 CVE-2011-1478 CVE-2011-1010 CVE-2011-1090 — The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security … Read More