http://support.novell.com/linux/psdb/rssi386SuSESLES8.html Navigate and access SUSE patch downloads. en-us Thu May 29 20:40:49 2008 GMT http://blogs.law.harvard.edu/tech/rss support@novell.com webmaster@novell.com http://support.novell.com/techcenter/psdb/7229e7dbc574785bd430ccb2e2b8eb59.html ... Thu May 8 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/0b6d6bf72204488bc8f9189a1bea4917.html ... Wed Apr 23 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/7229e7dbc574785bd430ccb2e2b8eb59.html ... Thu May 8 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/0b6d6bf72204488bc8f9189a1bea4917.html ... Wed Apr 23 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/b5b74dcd208aaf4729bddde09fdaa4c7.html Obsoletes: none Indications Everyone should update. Contraindications None. Problem description This update of squid fixes a denial-of-service bug during "cache update reply processing" (CVE-2007-6239). Solution Please install the updates provided at the location noted below. Installation notes This update is provided as an RPM package that can easily be installed onto a running system by using this command: rpm -Fhv squid.rpm ... Mon Jan 7 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/84c0e58baea4e5213424103bd3ab770c.html Obsoletes: none Indications Everyone using rsync should install this update. Contraindications None. Description This update fixes a bug in rsync that allows remote attackers to access restricted files outside a module's hierarchy if no chroot setup is used. (CVE-2007-6199) Please refer to http://rsync.samba.org/security.html , entry from November 28th, 2007, for more information about a secure configuration of rsync that also covers the bug tracked by CVE-2007-6200. This update also fixes some crashes that only affect rsync-2.6.8 on SLES10. Installation notes This update is provided as an RPM package that can easily be installed onto a running system by using this ... Mon Jan 7 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/d52565d12f4ee4513d2a2c9fa0623cf2.html Obsoletes: none Indications Everyone should install this update. Contraindications None. Problem description Python contains a copy of the pcre library. Specially crafted regular expressions could lead to a buffer overflow in the pcre library. Applications using pcre to process regular expressions from untrusted sources could therefore potentially be exploited by attackers to execute arbitrary code (CVE-2005-2491, CVE-2006-7228). Solution Please install the updates provided at the location noted below. Installation notes This update is provided as RPM packages that can easily be installed onto a running system by using this command: rpm -Fvh python.rpm python-curses.rpm python-demo.rpm python-devel.rpm python-doc.rpm python-doc-pdf.rpm python-gdbm.rpm python-korean.rpm ... Mon Jan 7 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/01ed940afb4b4e3e1979f23f2535d210.html Obsoletes: none Indications Everybody using the check_disk plugin should update. Contraindications None. Problem description The latest maintenance version of the nagios-plugins was built without specifying the full path for the "df" command. This causes the check_disk plugin to fail. Solution Please install the updates provided at the location noted below. Installation notes This update is provided as an RPM package that can easily be installed onto a running system by using this command: rpm -Fhv nagios-plugins.rpm nagios-plugins-extras.rpm ... Mon Jan 7 14:40:49 2008 GMT http://support.novell.com/techcenter/psdb/e7e00fb9cc394d90331ede554824383e.html Obsoletes: none Indications Everyone should install the updated timezone information. Contraindications None. Description This patch updates the glibc timezone database according to a last-minute change of the time shift date by Venezuelan government from 2008-01-01 to 2007-12-09. Venezuela will move from UTC-4:00 to UTC-4:30. The affected timezone is named America/Caracas . Other timezones have been updated as well: Asia/Damascus (time change in effect since start of November) America/Havana (ditto) America/St_Barthelemy America/Marigot Solution Please install the updates provided at the location noted below. Installation notes This update is provided as an RPM package that can easily be installed onto a running ... Fri Dec 28 14:40:49 2007 GMT http://support.novell.com/techcenter/psdb/f61794701df3f762046f48a83269b763.html Obsoletes: none Indications Everyone using heimdal should install this update. Contraindications None. Description This update fixes a software bug due to calling free(3) on an uninitialized pointer. The bug can be triggered remotely, the impact is currently unknown. (CVE-2007-5939) Solution Please install the updates provided at the location noted below. Installation notes This update is provided as RPM packages that can easily be installed onto a running system by using this command: rpm -Fvh heimdal.rpm heimdal-devel.rpm heimdal-lib.rpm heimdal-tools.rpm ... Sat Dec 22 14:40:49 2007 GMT