SL Developer Blog | Scientific Linux | Information about the Scientific Linux distribution

Important: freetype (SL4, SL5, SL6)

By Scientific Linux Team on October 25, 2011

Synopsis: Important: freetype security update Issue Date: 2011-10-25 CVE Numbers: CVE-2011-3256 — FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual glyphs efficiently. The freetype packages for … Read More

xen (SL5)

By Scientific Linux Team on October 24, 2011

Synopsis: Moderate: xen security and bug fix update Issue Date: 2011-10-24 CVE Numbers: CVE-2011-3346 — The xen packages contain administration tools and the xend service for managing the kernel-xen kernel for virtualization on Red Hat Enterprise Linux. A buffer overflow … Read More

httpd (SL4, SL5)

By Scientific Linux Team on October 24, 2011

Synopsis: Moderate: httpd security and bug fix update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-3368 — The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI for … Read More

Moderate: httpd (SL6)

By Scientific Linux Team on October 24, 2011

Synopsis: Moderate: httpd security and bug fix update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-3348 CVE-2011-3368 — The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI … Read More

kernel (SL5)

By Scientific Linux Team on October 24, 2011

Synopsis: Important: kernel security, bug fix, and enhancement update Issue Date: 2011-10-20 CVE Numbers: CVE-2011-2695 CVE-2011-1160 CVE-2011-1585 CVE-2011-2484 CVE-2011-2496 CVE-2011-2723 CVE-2011-1833 CVE-2009-4067 CVE-2011-2699 CVE-2011-3131 CVE-2011-2942 CVE-2011-3188 CVE-2011-3191 CVE-2011-3209 CVE-2011-3347 — The kernel packages contain the Linux kernel, the core of … Read More

Moderate: kdelibs and kdelibs3 (SL4, SL5, SL6)

By Scientific Linux Team on October 19, 2011

Synopsis: Moderate: kdelibs and kdelibs3 security update Issue Date: 2011-10-19 CVE Numbers: CVE-2011-3365 — The kdelibs and kdelibs3 packages provide libraries for the K Desktop Environment (KDE). An input sanitization flaw was found in the KSSL (KDE SSL Wrapper) API. … Read More

Critical: java-1.6.0-openjdk (SL5, SL6)

By Scientific Linux Team on October 19, 2011

Synopsis: Critical: java-1.6.0-openjdk security update Issue Date: 2011-10-18 CVE Numbers: CVE-2011-3389 CVE-2011-3560 CVE-2011-3547 CVE-2011-3551 CVE-2011-3552 CVE-2011-3544 CVE-2011-3521 CVE-2011-3554 CVE-2011-3556 CVE-2011-3557 CVE-2011-3548 CVE-2011-3553 CVE-2011-3558 — These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. … Read More

Moderate: krb5 (SL6)

By Scientific Linux Team on October 19, 2011

Synopsis: Moderate: krb5 security update Issue Date: 2011-10-18 CVE Numbers: CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 — Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution … Read More

postgresql84 (SL5)

By Scientific Linux Team on October 18, 2011

Synopsis: Moderate: postgresql84 security update Issue Date: 2011-10-17 CVE Numbers: CVE-2011-2483 — PostgreSQL is an advanced object-relational database management system (DBMS). A signedness issue was found in the way the crypt() function in the PostgreSQL pgcrypto module handled 8-bit characters … Read More

Moderate: postgresql (SL4, SL5, SL6)

By Scientific Linux Team on October 18, 2011

Synopsis: Moderate: postgresql security update Issue Date: 2011-10-17 CVE Numbers: CVE-2011-2483 — PostgreSQL is an advanced object-relational database management system (DBMS). A signedness issue was found in the way the crypt() function in the PostgreSQL pgcrypto module handled 8-bit characters … Read More

SL Security Errata