Secunia Security Advisory - SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, malicious users to cause a DoS (Denial of Service), and malicious people to bypass certain security restrictions, disclose potentially sensitive information, cause a DoS, and compromise a vulnerable system.
b40304ffaab0ededb7b1a329358ac90ea188e61ea5e6f69b6e0bf5fb8ad4eba4
----------------------------------------------------------------------
Secunia Network Software Inspector 2.0 (NSI) - Public Beta
2 days left of beta period.
The 1st generation of the Secunia Network Software Inspector (NSI)
has been available for corporate users for almost 1 year and its been
a tremendous success.
The 2nd generation Secunia NSI is built on the same technology as the
award winning Secunia PSI, which has already been downloaded and
installed on more than 400,000 computers world wide.
Learn more / Download (instant access):
http://secunia.com/network_software_inspector_2/
----------------------------------------------------------------------
TITLE:
SUSE Update for Multiple Packages
SECUNIA ADVISORY ID:
SA29957
VERIFY ADVISORY:
http://secunia.com/advisories/29957/
CRITICAL:
Moderately critical
IMPACT:
Security Bypass, Exposure of sensitive information, Privilege
escalation, DoS, System access
WHERE:
>From remote
OPERATING SYSTEM:
SUSE Linux Enterprise Server 9
http://secunia.com/product/4118/
SUSE Linux Enterprise Server 10
http://secunia.com/product/12192/
openSUSE 10.2
http://secunia.com/product/13375/
openSUSE 10.3
http://secunia.com/product/16124/
SUSE Linux 10
http://secunia.com/product/6221/
SUSE Linux 10.1
http://secunia.com/product/10796/
SOFTWARE:
Novell Open Enterprise Server 1.x
http://secunia.com/product/4664/
DESCRIPTION:
SUSE has issued updates for multiple packages. These fix some
vulnerabilities, which can be exploited by malicious, local users to
gain escalated privileges, malicious users to cause a DoS (Denial of
Service), and malicious people to bypass certain security
restrictions, disclose potentially sensitive information, cause a
DoS, and compromise a vulnerable system.
For more information:
SA27424
SA28926
SA29426
SA29617
SA29792
SA29818
SOLUTION:
Apply updated packages via YaST Online Update or the SUSE FTP server.
ORIGINAL ADVISORY:
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html
OTHER REFERENCES:
SA27424:
http://secunia.com/advisories/27424/
SA28926:
http://secunia.com/advisories/28926/
SA29426:
http://secunia.com/advisories/29426/
SA29617:
http://secunia.com/advisories/29617/
SA29792:
http://secunia.com/advisories/29792/
SA29818:
http://secunia.com/advisories/29818/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------