LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Security advisories for Thursday

[Posted February 9, 2012 by jake]

CentOS has updated squirrelmail (C4; C5: multiple vulnerabilities) and mysql (C6: multiple unspecified vulnerabilities).

Debian has updated icedove (multiple vulnerabilities) and cvs (remote code execution).

Fedora has updated ettercap (F15; F16: insecure settings file), mysql (F16: multiple unspecified vulnerabilities), maniadrive (F16: PHP remote code execution), php (F16: remote code execution), php-eaccelerator (F16: remote code execution), and samba (F16: denial of service).

Mandriva has updated wireshark (multiple vulnerabilities).

openSUSE has updated firefox (multiple vulnerabilities), curl (authentication bypass), powerdns (denial of service), kernel (11.3; 11.4: multiple vulnerabilities), kvm (two vulnerabilities), tomcat6 (multiple vulnerabilities), apache2 (11.3; 11.4: multiple vulnerabilities), squid3 (denial of service), gnutls (denial of service), dovecot20 (certificate spoofing), xorg-x11-server (two vulnerabilities), ruby (multiple vulnerabilities), curl (multiple vulnerabilities), firefox (multiple vulnerabilities), nginx (code execution), lighttpd (denial of service), sysconfig (code execution), and opera (multiple vulnerabilities).

Oracle has updated squirrelmail (OL4; OL5: multiple vulnerabilities) and mysql (OL6: multiple unspecified vulnerabilities).

Red Hat has updated squirrelmail (RHEL 4&5: multiple vulnerabilities), libxml2 (RHEL 5.6: code execution), mysql (RHEL 6: multiple unspecified vulnerabilities), and kernel (RHEL 5: multiple vulnerabilities).

Scientific Linux has updated squirrelmail (SL4&5: multiple vulnerabilities) and mysql (SL6: multiple unspecified vulnerabilities).

SUSE has updated xulrunner (SLE 11 SP1: multiple vulnerabilities) and firefox (SLE 10 SP4: multiple vulnerabilities).

(Log in to post comments)

Security advisories for Thursday

Posted Feb 10, 2012 15:05 UTC (Fri) by bobsol (subscriber, #54641) [Link]

Patches are out for slackware. For some reason security bulitins are not going out. From ftp.slackware.com/pub/slackware/slackware-13.37/patches/ 
php-5.3.10-i486-1_slack13.37.txz 	5347 KB 	02/07/2012 	07:52:00 PM
httpd-2.2.22-i486-1_slack13.37.txz 	1563 KB 	02/07/2012 	07:33:00 PM
apr-util-1.4.1-i486-1_slack13.37.txz 	106 KB 	02/07/2012 	07:28:00 PM
vsftpd-2.3.5-i486-1_slack13.37.txz 	113 KB 	02/06/2012 	09:40:00 PM
glibc-2.13-i486-5_slack13.37.txz 	11152 KB 	02/06/2012 	09:26:00 PM
glibc-solibs-2.13-i486-5_slack13.37.txz 	2217 KB 	02/06/2012 	09:25:00 PM
glibc-i18n-2.13-i486-5_slack13.37.txz 	6629 KB 	02/06/2012 	09:25:00 PM
glibc-zoneinfo-2.13-noarch-5_slack13.37.txz 	145 KB 	02/06/2012 	09:24:00 PM
glibc-profile-2.13-i486-5_slack13.37.txz 	845 KB 	02/06/2012 	09:24:00 PM
proftpd-1.3.4a-i486-1_slack13.37.txz 	793 KB 	02/03/2012 	07:32:00 PM
freetype-2.4.8-i486-1_slack13.37.txz 	406 KB 	02/01/2012 	10:57:00 PM
openssl-solibs-0.9.8t-i486-1_slack13.37.txz 	677 KB 	02/01/2012 	09:37:00 PM
openssl-0.9.8t-i486-1_slack13.37.txz 	2284 KB 	02/01/2012 	09:37:00 PM
ca-certificates-20111211-noarch-1_slack13.37.txz 	129 KB 	02/01/2012 	08:58:00 PM
seamonkey-solibs-2.7-i486-1_slack13.37.txz 	2097 KB 	02/01/2012 	02:31:00 AM
seamonkey-2.7-i486-1_slack13.37.txz 	21032 KB 	02/01/2012 	02:30:00 AM
mozilla-thunderbird-10.0-i486-1_slack13.37.txz 	15860 KB 	01/31/2012 	07:30:00 PM
mozilla-firefox-10.0-i486-1_slack13.37.txz 	13741 KB 	01/31/2012 	06:46:00 PM
coreutils-8.15-i486-1_slack13.37.txz 	2071 KB 	01/17/2012 	02:11:00 AM

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds