May 2010 - openSUSE Updates - openSUSE Mailing Lists

openSUSE-YU-2010:0230-1 (low): libzypp: Collective update for openSUSE 11.2.
by maintenance＠opensuse.org 06 May '10

06 May '10

openSUSE YOU Update: libzypp: Collective update for openSUSE 11.2. ______________________________________________________________________________ Announcement ID: openSUSE-YU-2010:0230-1 Rating: low References: #223512 #279045 #377568 #393723 #394396 #462697 #465532 #467106 #467693 #471436 #473834 #495977 #497711 #522223 #523573 #535816 #537870 #538152 #544432 #545106 #545295 #545722 #547354 #549940 #551637 #551744 #551956 #552180 #552265 #553712 #553895 #554480 #557557 #558813 #560496 #561294 #564239 #564816 #565525 #566291 #570623 #570917 #571410 #572634 #573897 #576080 #578052 #578684 #578721 #580571 #581276 #581332 #581926 #584644 #585000 #585082 #585409 #585789 #586303 #588850 #589331 #589333 #589640 #590864 #591760 #593385 Affected Products: openSUSE 11.2 ______________________________________________________________________________ An update that has 66 YOU fixes can now be installed. It includes 6 new package versions. Description: The following bugs are fixed by this update: - Fix parsing port from IPv6 URL [bnc#593385] - Parse an installed products <shortsummary> tag [bnc#586303] - dataiterator: reset parent when jumping to a solvid [bnc#589640] - parse global repository ids. [bnc#377568] - fix pattern parsing in repomd format. [bnc#585000] - fix language code lookup for fallback languages [bnc#584644] - change solvable_lookup_str_lang interface a bit for libzypp - make dup rules work when system repo is not first [bnc#581276] - parse pattern visibility flag in repomd format - speed up createwhatprovides when many solvables provide the same dep - fix choice rule creation for real (bnc#551637) - set repository:toolversion to 1.0 in common_write - disable update rule in noobsoletes case if installed package is to be kept [bnc#564239] - work around rpm bug when --prefix is used [bnc#565525] - add support for sparc architecture [bnc#566291] - Support optionally compressed product(s).xml in rpmmd metadata. - Propagate ZConfig::setTextLocale to pool. (bnc#588850) - Fix guessing package spec to match package names only. (bnc#590864) - Add static Target::distributionLabel to return the baseproducts shortName and summary. Mainlu used for the bootloader menu. (bnc #586303) - Fix broken bit values in enum VendorSupportOption (bnc#589331) - Fix handling of symlinked packages in package cache. (bnc #585409) - Avoiding use of 'guest' if 'credentials' is used when moutning a CIFS share. This caused 'permission denied' error with certain server configurations (bnc #560496). - Check if a downloaded file actually exists even if aria2c returned 0. (bnc #564816) - Made CURLE_PARTIAL_FILE an auto-retry error (bnc #471436) - Turn off cookies when retrieving services repoindex.xml (bnc #573897) - Consider pending disable requests when removing service repositories. (bnc #572634) - RepoManager::cleanCacheDirGarbage added for removing directories which do not belong to any of known repos (bnc #467693) - On SLE aria2 is not required, so conflict with a too old aria2 version installed. (bnc #578052) - Fix package-manager script wrongly escaping UTF-8 chars in path names (bnc #571410) - Remember the enabled state of removed service repositories. This way we are able to restore service repositories correctly after a subscrition expired and gets renewed. (bnc #572634) - Abort aria2c download when the progress callback receives 'false' (bnc #545106) - Evaluate SolvAttr::repositoryToolVersion to prevent loading outdated solv files. (bnc #570623) - Use regex to parse aria2c progress lines (bnc #570917) - Set SignatureFileChecker context even if the key is not known (bnc #495977) - RepoInfoBase::label() added for use in UI messages, plus ZConfig::repoLabelIsAlias() - Fix transaction building in presence of multiversion installable items. - Improve multiversion status handling and installation. (fate #305311) - Don't allow an alias to start with '.' (bnc #473834) - PickList and status interface for handling packages which are installable in multiple versions. (fate #305311) - Add Selectable::highestAvailableVersionObj. Returns the highest available package version, ignoring priorities and policies. (bnc #557557) - Also parse <product> tag from .prod files <upgrade> section. - Fix chroot execution of update scripts. (bnc #558813) - Fixed parsing of download speed from aria2c (bnc #537870) - Add ui::Selecatble interface for picking specific package versions to install or delete if multiversion install is on. - Parse zypp.conf multiversion option and make the setting available in pool and resolver. - Fix repository probing and building in presence of productdir. (bnc #553712) - Raised the limit of redirections from 3 to 6 (bnc #465532) - Following redirections also for https (bnc #545722). - Following https redirections requires at least libcurl4-7.19.4. (bnc #553895) - Do not report cached packages as being downloaded. (bnc #545295) - Per default do not collect and report deleted files outside bin and lib directories for 'zypper ps'. (bnc #554480) - CheckAccessDeleted: Per default do not collect and report deleted files that outside bin and lib directories. 'zypper ps' reporting false positive seems to confuse. (bnc #554480) - Following https redirections requires at least libcurl4-7.19.4. (bnc #553895) - dup: Process drop list only if product actually changes. (bnc #552180) - Selectable: Consider allowed arch/noarch changes when comuting candiadates. - Enhance interface for zypper. (bnc #551956) - CIFS/SMB: Support mountoption 'noguest' to prevent passing 'guest' option to mount. "cifs://server/share/path?mountoptions=noguest,ro" (bnc #547354) - Work around swig not understanding nested class. - Pass py_sitedir macro from .spec file to cmake. - Always print solver problems if solving failed. - Parse and process <upgradeRepo name=REPOALIAS/> - add test cases for UI testing (new directory UI-tests) - Fixed crash if no available packages found in repos (bnc #591760) - Fixed "removed locks:" message not translated (bnc #581332) - Fixed 'lp --issues' and 'patch --cve #' (bnc #589640) - Showing full product name in installation summary and license text (bnc #589333) - Reporting why specified selectable can't be updated in 'zypper in packages' or 'zypper up packages' (bnc #522223) In case of 'zypper up' the summary also shows a list of packages that have update candidates, but will not get upgraded. - zypp-refresh-wrapper: set HOME so zypp/er credentials under /root can be found (bnc #585789) - Ignoring trailing slash when matching repos by URL (bnc #585082) - Show installed packages only from specified repos when 'zypper [-i|-u] -r repo' is used (bnc#467106) - Added a few forgotten strings for translation (bnc #581332) - Fix SEGV in Summary::writeResolvableList - Avoid a newline in 'zypper --quiet list-patches' (bnc #523573) - Showing packages that need additional customer contract separately in the installation summary (bnc #581926 c#6) - Avoiding confirmation of unchanged license on upgrade (bnc #394396) - clean --all: clean also garbage and zypper cache (bnc #467693) - Fixed broken --type (bnc #580571) - Fix 'zypper products' failing to list installed products under certain conditions (bnc #578721) - Fix SEGV if $HOME or $PWD are unset in the environment (bnc #578684) - Exit if missing required option argument. - Start using Capability::guessPackageSpec to parse package arguments. - man page updated (bnc #576080) - Fixed ignored .arch when specifying packages as name.arch (bnc #561294) - Setting --root correctly when working with lock (reported by Uwe) - Correctly abbreviate strings with non-ascii characters in tables (bnc #393723) - Avoid overwriting progress lines with other messages (bnc #495977) - Fixed --no-force-resolution help text (bnc #535816) - zypper.conf: main.showAlias option added to choose between alias and name for showing repos - search, pt: hide patterns flagged user invisible (bnc #538152) - Report invalid alias exception from libzypp (bnc #473834) - Match repositories also by name wherever repository is expected (bnc #462697). - Show truely all updates when --all is used (bnc #557557) - new prompt options for media errors: * cd/dvd: 'e' to eject selected drive (bnc #279045) * https: 's' to disable SSL CA check (bnc #223512) - solver.forceResolutionCommands added to zypper.conf to configure commands in which forceResolve solver option should be set (bnc #549940) - --download-* aliases added for --download <mode> option values - --download option added to in, up, dup, ve, and patch commands to set the package download mode ad-hoc. Available download modes: only, in-advance, in-heaps, as-needed. - Show update notifications after installation (fate #301175) - dist-upgrade: warn about muliple repos and show hint. This is a temporary solution to fate #305553. - Show recommended and suggested packages in summary (fate #303493) - --gpg-auto-import-keys global option added (fate #307087) - --with-interactive option added to 'patch' command (bnc #497711) - Fix zypper to use up-to-date RepoInfos. (bnc #544432) - fixed wrong package counting during installation (bnc #545295) - al/rl: Support 'kind:name' notation if -t is not given. Also required to remove a specific lock as rl does not yet support -t. (bnc 551956) - Fix typo in man page. (bnc #552265) - Prevent clipping lines when output is redirected. (bnc #551744) Special Instructions and Notes: Please log out and log in again after installing this update.This update triggers a restart of the software management stack. More updates will be available for installation after applying this update and restarting the application. Patch Instructions: To install this openSUSE YOU Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.2: zypper in -t patch softwaremgmt_201004-2355 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.2 (i586 src x86_64) [New Version: 1.3.4,2.18.11,2.18.22 and 6.31.4]: PackageKit-0.5.1-3.8.1 libqdialogsolver1-1.3.0-2.12.1 libzypp-6.31.4-0.1.1 yast2-gtk-2.20.5-1.3.1 yast2-ncurses-2.18.11-0.1.1 yast2-ncurses-pkg-2.18.4-2.10.2 yast2-pkg-bindings-2.18.11-1.3.1 yast2-qt-pkg-2.18.22-1.1.1 zypper-1.3.4-0.1.3 - openSUSE 11.2 (i586 x86_64) [New Version: 0.14.17,0.5.3,2.18.11 and 6.31.4]: PackageKit-devel-0.5.1-3.8.1 PackageKit-doc-0.5.1-3.8.1 libpackagekit-glib12-0.5.1-3.8.1 libpackagekit-glib12-devel-0.5.1-3.8.1 libpackagekit-qt12-0.5.1-3.8.1 libpackagekit-qt12-devel-0.5.1-3.8.1 libqdialogsolver1-devel-1.3.0-2.12.1 libsatsolver-demo-0.14.17-1.1.2 libsatsolver-devel-0.14.17-1.1.2 libzypp-devel-6.31.4-0.1.1 perl-satsolver-0.14.17-1.1.2 perl-zypp-0.5.3-1.1.1 python-satsolver-0.14.17-1.1.2 python-zypp-0.5.3-1.1.1 ruby-satsolver-0.14.17-1.1.2 ruby-zypp-0.5.3-1.1.1 ruck-0.5.1-3.8.1 satsolver-tools-0.14.17-1.1.2 yast2-ncurses-devel-2.18.11-0.1.1 - openSUSE 11.2 (noarch): PackageKit-lang-0.5.1-3.8.1 - openSUSE 11.2 (src) [New Version: 0.14.17 and 0.5.3]: libsatsolver-0.14.17-1.1.2 libzypp-bindings-0.5.3-1.1.1 References: https://bugzilla.novell.com/223512 https://bugzilla.novell.com/279045 https://bugzilla.novell.com/377568 https://bugzilla.novell.com/393723 https://bugzilla.novell.com/394396 https://bugzilla.novell.com/462697 https://bugzilla.novell.com/465532 https://bugzilla.novell.com/467106 https://bugzilla.novell.com/467693 https://bugzilla.novell.com/471436 https://bugzilla.novell.com/473834 https://bugzilla.novell.com/495977 https://bugzilla.novell.com/497711 https://bugzilla.novell.com/522223 https://bugzilla.novell.com/523573 https://bugzilla.novell.com/535816 https://bugzilla.novell.com/537870 https://bugzilla.novell.com/538152 https://bugzilla.novell.com/544432 https://bugzilla.novell.com/545106 https://bugzilla.novell.com/545295 https://bugzilla.novell.com/545722 https://bugzilla.novell.com/547354 https://bugzilla.novell.com/549940 https://bugzilla.novell.com/551637 https://bugzilla.novell.com/551744 https://bugzilla.novell.com/551956 https://bugzilla.novell.com/552180 https://bugzilla.novell.com/552265 https://bugzilla.novell.com/553712 https://bugzilla.novell.com/553895 https://bugzilla.novell.com/554480 https://bugzilla.novell.com/557557 https://bugzilla.novell.com/558813 https://bugzilla.novell.com/560496 https://bugzilla.novell.com/561294 https://bugzilla.novell.com/564239 https://bugzilla.novell.com/564816 https://bugzilla.novell.com/565525 https://bugzilla.novell.com/566291 https://bugzilla.novell.com/570623 https://bugzilla.novell.com/570917 https://bugzilla.novell.com/571410 https://bugzilla.novell.com/572634 https://bugzilla.novell.com/573897 https://bugzilla.novell.com/576080 https://bugzilla.novell.com/578052 https://bugzilla.novell.com/578684 https://bugzilla.novell.com/578721 https://bugzilla.novell.com/580571 https://bugzilla.novell.com/581276 https://bugzilla.novell.com/581332 https://bugzilla.novell.com/581926 https://bugzilla.novell.com/584644 https://bugzilla.novell.com/585000 https://bugzilla.novell.com/585082 https://bugzilla.novell.com/585409 https://bugzilla.novell.com/585789 https://bugzilla.novell.com/586303 https://bugzilla.novell.com/588850 https://bugzilla.novell.com/589331 https://bugzilla.novell.com/589333 https://bugzilla.novell.com/589640 https://bugzilla.novell.com/590864 https://bugzilla.novell.com/591760 https://bugzilla.novell.com/593385

1 0

openSUSE-SU-2010:0220-1 (moderate): libesmtp security update
by opensuse-security＠opensuse.org 05 May '10

05 May '10

openSUSE Security Update: libesmtp security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0220-1 Rating: moderate References: #585393 Cross-References: CVE-2010-1192 CVE-2010-1194 Affected Products: openSUSE 11.2 openSUSE 11.1 openSUSE 11.0 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: libesmtp did not properly handle wildcards and embedded null characters in the Common Name of X.509 certificates (CVE-2010-1192, CVE-2010-1194). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.2: zypper in -t patch libesmtp-2389 - openSUSE 11.1: zypper in -t patch libesmtp-2389 - openSUSE 11.0: zypper in -t patch libesmtp-2389 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.2 (i586 src x86_64): libesmtp-1.0.4-158.2.1 - openSUSE 11.2 (i586 x86_64): libesmtp-devel-1.0.4-158.2.1 - openSUSE 11.1 (i586 ppc src x86_64): libesmtp-1.0.4-157.35.1 - openSUSE 11.1 (i586 ppc x86_64): libesmtp-devel-1.0.4-157.35.1 - openSUSE 11.0 (i586 ppc src x86_64): libesmtp-1.0.4-142.2 - openSUSE 11.0 (i586 ppc x86_64): libesmtp-devel-1.0.4-142.2 References: http://support.novell.com/security/cve/CVE-2010-1192.html http://support.novell.com/security/cve/CVE-2010-1194.html https://bugzilla.novell.com/585393

1 0

openSUSE-RU-2010:0218-1 (moderate): libqt4: Fix crashes with YaST in Japanese locale
by maintenance＠opensuse.org 05 May '10

05 May '10

openSUSE Recommended Update: libqt4: Fix crashes with YaST in Japanese locale ______________________________________________________________________________ Announcement ID: openSUSE-RU-2010:0218-1 Rating: moderate References: #517894 Affected Products: openSUSE 11.1 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update improves stability of Qt applications when using Japanese locale with input methods enabled (bnc#517894). Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.1: zypper in -t patch libqt4-1896 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.1 (i586 ppc src x86_64): libqt4-4.4.3-4.11.1 - openSUSE 11.1 (i586 ppc x86_64): libqt4-devel-4.4.3-4.11.1 libqt4-qt3support-4.4.3-4.11.1 libqt4-sql-4.4.3-4.11.1 libqt4-sql-sqlite-4.4.3-4.11.1 libqt4-x11-4.4.3-4.11.1 - openSUSE 11.1 (x86_64): libqt4-32bit-4.4.3-4.11.1 libqt4-qt3support-32bit-4.4.3-4.11.1 libqt4-sql-32bit-4.4.3-4.11.1 libqt4-x11-32bit-4.4.3-4.11.1 - openSUSE 11.1 (ppc): libqt4-64bit-4.4.3-4.11.1 libqt4-qt3support-64bit-4.4.3-4.11.1 libqt4-sql-64bit-4.4.3-4.11.1 libqt4-x11-64bit-4.4.3-4.11.1 References: https://bugzilla.novell.com/517894

1 0

openSUSE-SU-2010:0216-1 (moderate): evolution-data-server security update
by opensuse-security＠opensuse.org 05 May '10

05 May '10

openSUSE Security Update: evolution-data-server security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0216-1 Rating: moderate References: #475108 #568822 Cross-References: CVE-2009-0547 Affected Products: openSUSE 11.0 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: evolution considered S/MIME signatures to be valid even for modified mails (CVE-2009-0547). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.0: zypper in -t patch evolution-data-server-2333 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.0 (i586 ppc src x86_64): evolution-data-server-2.22.1.1-11.6 - openSUSE 11.0 (i586 ppc x86_64): evolution-data-server-devel-2.22.1.1-11.6 evolution-data-server-doc-2.22.1.1-11.6 - openSUSE 11.0 (x86_64): evolution-data-server-32bit-2.22.1.1-11.6 - openSUSE 11.0 (ppc): evolution-data-server-64bit-2.22.1.1-11.6 References: http://support.novell.com/security/cve/CVE-2009-0547.html https://bugzilla.novell.com/475108 https://bugzilla.novell.com/568822

1 0

openSUSE-SU-2010:0198-2 (moderate): mysql security update
by opensuse-security＠opensuse.org 04 May '10

04 May '10

openSUSE Security Update: mysql security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0198-2 Rating: moderate References: #557669 Cross-References: CVE-2008-7247 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 Affected Products: openSUSE 11.2 openSUSE 11.1 openSUSE 11.0 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: Updated mysql packages fix the following bugs: - upstream #47320 - checking server certificates (CVE-2009-4028) - upstream #48291 - error handling in subqueries (CVE-2009-4019) - upstream #47780 - preserving null_value flag in GeomFromWKB() (CVE-2009-4019) - upstream #39277 - symlink behaviour fixed (CVE-2008-7247) - upstream #32167 - symlink behaviour refixed (CVE-2009-4030) Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.2: zypper in -t patch libmysqlclient-devel-2315 - openSUSE 11.1: zypper in -t patch libmysqlclient-devel-2315 - openSUSE 11.0: zypper in -t patch libmysqlclient-devel-2315 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.2 (i586 src x86_64): mysql-5.1.36-6.8.8 - openSUSE 11.2 (i586 x86_64): libmysqlclient-devel-5.1.36-6.8.8 libmysqlclient16-5.1.36-6.8.8 libmysqlclient_r16-5.1.36-6.8.8 libmysqld-devel-5.1.36-6.8.8 mysql-bench-5.1.36-6.8.8 mysql-client-5.1.36-6.8.8 mysql-debug-5.1.36-6.8.8 mysql-ndb-extra-5.1.36-6.8.8 mysql-ndb-management-5.1.36-6.8.8 mysql-ndb-storage-5.1.36-6.8.8 mysql-ndb-tools-5.1.36-6.8.8 mysql-test-5.1.36-6.8.8 mysql-tools-5.1.36-6.8.8 - openSUSE 11.2 (x86_64): libmysqlclient16-32bit-5.1.36-6.8.8 libmysqlclient_r16-32bit-5.1.36-6.8.8 - openSUSE 11.1 (i586 ppc src x86_64): mysql-5.0.67-12.17.7 - openSUSE 11.1 (i586 ppc x86_64): libmysqlclient-devel-5.0.67-12.17.7 libmysqlclient15-5.0.67-12.17.7 libmysqlclient_r15-5.0.67-12.17.7 mysql-Max-5.0.67-12.17.7 mysql-bench-5.0.67-12.17.7 mysql-client-5.0.67-12.17.7 mysql-debug-5.0.67-12.17.7 mysql-test-5.0.67-12.17.7 mysql-tools-5.0.67-12.17.7 - openSUSE 11.1 (x86_64): libmysqlclient15-32bit-5.0.67-12.17.7 libmysqlclient_r15-32bit-5.0.67-12.17.7 - openSUSE 11.1 (ppc): libmysqlclient15-64bit-5.0.67-12.17.7 libmysqlclient_r15-64bit-5.0.67-12.17.7 - openSUSE 11.0 (i586 ppc ppc64 src x86_64): mysql-5.0.51a-27.8 - openSUSE 11.0 (i586 ppc x86_64): libmysqlclient-devel-5.0.51a-27.8 libmysqlclient15-5.0.51a-27.8 libmysqlclient_r15-5.0.51a-27.8 mysql-Max-5.0.51a-27.8 mysql-bench-5.0.51a-27.8 mysql-client-5.0.51a-27.8 mysql-debug-5.0.51a-27.8 mysql-tools-5.0.51a-27.8 - openSUSE 11.0 (x86_64): libmysqlclient15-32bit-5.0.51a-27.8 libmysqlclient_r15-32bit-5.0.51a-27.8 - openSUSE 11.0 (ppc): libmysqlclient15-64bit-5.0.51a-27.8 libmysqlclient_r15-64bit-5.0.51a-27.8 References: http://support.novell.com/security/cve/CVE-2008-7247.html http://support.novell.com/security/cve/CVE-2009-4019.html http://support.novell.com/security/cve/CVE-2009-4028.html http://support.novell.com/security/cve/CVE-2009-4030.html https://bugzilla.novell.com/557669

1 0

openSUSE-RU-2010:0214-1 (important): xorg-x11-server: Update to fix 'X eats up CPU on an idle system'
by maintenance＠opensuse.org 04 May '10

04 May '10

openSUSE Recommended Update: xorg-x11-server: Update to fix 'X eats up CPU on an idle system' ______________________________________________________________________________ Announcement ID: openSUSE-RU-2010:0214-1 Rating: important References: #524724 #594433 Affected Products: openSUSE 11.1 ______________________________________________________________________________ An update that has two recommended fixes can now be installed. Description: This updates includes a fix for 'X eats up CPU on an idle system' related to a previous gnome-screensaver update and some other minor fixes. Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.1: zypper in -t patch xorg-x11-Xvnc-2306 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.1 (i586 ppc src x86_64): xorg-x11-server-7.4-17.7.1 - openSUSE 11.1 (i586 ppc x86_64): xorg-x11-Xvnc-7.4-17.7.1 xorg-x11-server-extra-7.4-17.7.1 xorg-x11-server-sdk-7.4-17.7.1 References: https://bugzilla.novell.com/524724 https://bugzilla.novell.com/594433

1 0

openSUSE-SU-2010:0212-1 (low): moodle security update
by opensuse-security＠opensuse.org 04 May '10

04 May '10

openSUSE Security Update: moodle security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0212-1 Rating: low References: #591850 Cross-References: CVE-2010-1613 CVE-2010-1614 CVE-2010-1615 CVE-2010-1616 CVE-2010-1617 CVE-2010-1618 CVE-2010-1619 Affected Products: openSUSE 11.1 openSUSE 11.0 ______________________________________________________________________________ An update that fixes 7 vulnerabilities is now available. It includes four new package versions. Description: Moodle version 1.9.8 fixes several security issues including cross-site-scripting (XSS) and SQL injection bugs (CVE-2010-1613, CVE-2010-1614, CVE-2010-1615, CVE-2010-1616, CVE-2010-1617 CVE-2010-1618, CVE-2010-1619). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.1: zypper in -t patch moodle-2387 - openSUSE 11.0: zypper in -t patch moodle-2387 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.1 (noarch src) [New Version: 1.9.8]: moodle-1.9.8-0.1.1 - openSUSE 11.1 (noarch) [New Version: 1.9.8]: moodle-af-1.9.8-0.1.1 moodle-ar-1.9.8-0.1.1 moodle-be-1.9.8-0.1.1 moodle-bg-1.9.8-0.1.1 moodle-bs-1.9.8-0.1.1 moodle-ca-1.9.8-0.1.1 moodle-cs-1.9.8-0.1.1 moodle-da-1.9.8-0.1.1 moodle-de-1.9.8-0.1.1 moodle-de_du-1.9.8-0.1.1 moodle-el-1.9.8-0.1.1 moodle-es-1.9.8-0.1.1 moodle-et-1.9.8-0.1.1 moodle-eu-1.9.8-0.1.1 moodle-fa-1.9.8-0.1.1 moodle-fi-1.9.8-0.1.1 moodle-fr-1.9.8-0.1.1 moodle-ga-1.9.8-0.1.1 moodle-gl-1.9.8-0.1.1 moodle-he-1.9.8-0.1.1 moodle-hi-1.9.8-0.1.1 moodle-hr-1.9.8-0.1.1 moodle-hu-1.9.8-0.1.1 moodle-id-1.9.8-0.1.1 moodle-is-1.9.8-0.1.1 moodle-it-1.9.8-0.1.1 moodle-ja-1.9.8-0.1.1 moodle-ka-1.9.8-0.1.1 moodle-km-1.9.8-0.1.1 moodle-kn-1.9.8-0.1.1 moodle-ko-1.9.8-0.1.1 moodle-lt-1.9.8-0.1.1 moodle-lv-1.9.8-0.1.1 moodle-mi_tn-1.9.8-0.1.1 moodle-ms-1.9.8-0.1.1 moodle-nl-1.9.8-0.1.1 moodle-nn-1.9.8-0.1.1 moodle-no-1.9.8-0.1.1 moodle-pl-1.9.8-0.1.1 moodle-pt-1.9.8-0.1.1 moodle-ro-1.9.8-0.1.1 moodle-ru-1.9.8-0.1.1 moodle-sk-1.9.8-0.1.1 moodle-sl-1.9.8-0.1.1 moodle-so-1.9.8-0.1.1 moodle-sq-1.9.8-0.1.1 moodle-sr-1.9.8-0.1.1 moodle-sv-1.9.8-0.1.1 moodle-th-1.9.8-0.1.1 moodle-tl-1.9.8-0.1.1 moodle-tr-1.9.8-0.1.1 moodle-uk-1.9.8-0.1.1 moodle-vi-1.9.8-0.1.1 moodle-zh_cn-1.9.8-0.1.1 - openSUSE 11.0 (noarch src) [New Version: 1.9.8]: moodle-1.9.8-0.1 - openSUSE 11.0 (noarch) [New Version: 1.9.8]: moodle-af-1.9.8-0.1 moodle-ar-1.9.8-0.1 moodle-be-1.9.8-0.1 moodle-bg-1.9.8-0.1 moodle-bs-1.9.8-0.1 moodle-ca-1.9.8-0.1 moodle-cs-1.9.8-0.1 moodle-da-1.9.8-0.1 moodle-de-1.9.8-0.1 moodle-de_du-1.9.8-0.1 moodle-el-1.9.8-0.1 moodle-es-1.9.8-0.1 moodle-et-1.9.8-0.1 moodle-eu-1.9.8-0.1 moodle-fa-1.9.8-0.1 moodle-fi-1.9.8-0.1 moodle-fr-1.9.8-0.1 moodle-ga-1.9.8-0.1 moodle-gl-1.9.8-0.1 moodle-he-1.9.8-0.1 moodle-hi-1.9.8-0.1 moodle-hr-1.9.8-0.1 moodle-hu-1.9.8-0.1 moodle-id-1.9.8-0.1 moodle-is-1.9.8-0.1 moodle-it-1.9.8-0.1 moodle-ja-1.9.8-0.1 moodle-ka-1.9.8-0.1 moodle-km-1.9.8-0.1 moodle-kn-1.9.8-0.1 moodle-ko-1.9.8-0.1 moodle-lt-1.9.8-0.1 moodle-lv-1.9.8-0.1 moodle-mi_tn-1.9.8-0.1 moodle-ms-1.9.8-0.1 moodle-nl-1.9.8-0.1 moodle-nn-1.9.8-0.1 moodle-no-1.9.8-0.1 moodle-pl-1.9.8-0.1 moodle-pt-1.9.8-0.1 moodle-ro-1.9.8-0.1 moodle-ru-1.9.8-0.1 moodle-sk-1.9.8-0.1 moodle-sl-1.9.8-0.1 moodle-so-1.9.8-0.1 moodle-sq-1.9.8-0.1 moodle-sr-1.9.8-0.1 moodle-sv-1.9.8-0.1 moodle-th-1.9.8-0.1 moodle-tl-1.9.8-0.1 moodle-tr-1.9.8-0.1 moodle-uk-1.9.8-0.1 moodle-vi-1.9.8-0.1 moodle-zh_cn-1.9.8-0.1 References: http://support.novell.com/security/cve/CVE-2010-1613.html http://support.novell.com/security/cve/CVE-2010-1614.html http://support.novell.com/security/cve/CVE-2010-1615.html http://support.novell.com/security/cve/CVE-2010-1616.html http://support.novell.com/security/cve/CVE-2010-1617.html http://support.novell.com/security/cve/CVE-2010-1618.html http://support.novell.com/security/cve/CVE-2010-1619.html https://bugzilla.novell.com/591850

1 0

openSUSE-RU-2010:0210-1 (low): xorg-x11-libXext: This update fixes a race condition in libXext
by maintenance＠opensuse.org 04 May '10

04 May '10

openSUSE Recommended Update: xorg-x11-libXext: This update fixes a race condition in libXext ______________________________________________________________________________ Announcement ID: openSUSE-RU-2010:0210-1 Rating: low References: #578577 Affected Products: openSUSE 11.2 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: XAllocID must only be called with the Display lock held. There's a race condition in libXext that causes apps that use the X shared memory extensions to occasionally crash. It affects lots of X programs, including Evolution, Firefox, various parts of Gnome, etc. Fixed by this update. Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.2: zypper in -t patch xorg-x11-libXext-2379 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.2 (i586 src x86_64): xorg-x11-libXext-7.4-7.2.1 - openSUSE 11.2 (i586 x86_64): xorg-x11-libXext-devel-7.4-7.2.1 - openSUSE 11.2 (x86_64): xorg-x11-libXext-32bit-7.4-7.2.1 xorg-x11-libXext-devel-32bit-7.4-7.2.1 References: https://bugzilla.novell.com/578577

1 0

openSUSE-SU-2010:0209-1 (moderate): libmikmod security update
by opensuse-security＠opensuse.org 04 May '10

04 May '10

openSUSE Security Update: libmikmod security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0209-1 Rating: moderate References: #577875 Cross-References: CVE-2009-3995 CVE-2009-3996 Affected Products: openSUSE 11.2 openSUSE 11.1 openSUSE 11.0 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: Specially crafted "Impulse Tracker" and "Ultratracker" files could cause a heap based buffer overflow in libmikmod. Attackers could exploit that to crash or potentially execute code in applications linking against libmikmod (CVE-2009-3995, CVE-2009-3996). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.2: zypper in -t patch libmikmod-2353 - openSUSE 11.1: zypper in -t patch libmikmod-2353 - openSUSE 11.0: zypper in -t patch libmikmod-2353 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.2 (i586 src x86_64): libmikmod-3.1.11a-118.2.1 - openSUSE 11.2 (i586 x86_64): libmikmod-devel-3.1.11a-118.2.1 - openSUSE 11.2 (x86_64): libmikmod-32bit-3.1.11a-118.2.1 - openSUSE 11.1 (i586 ppc src x86_64): libmikmod-3.1.11a-71.57.1 - openSUSE 11.1 (i586 ppc x86_64): libmikmod-devel-3.1.11a-71.57.1 - openSUSE 11.1 (x86_64): libmikmod-32bit-3.1.11a-71.57.1 - openSUSE 11.1 (ppc): libmikmod-64bit-3.1.11a-71.57.1 - openSUSE 11.0 (i586 ppc src x86_64): libmikmod-3.1.11a-84.5 - openSUSE 11.0 (i586 ppc x86_64): libmikmod-devel-3.1.11a-84.5 - openSUSE 11.0 (x86_64): libmikmod-32bit-3.1.11a-84.5 - openSUSE 11.0 (ppc): libmikmod-64bit-3.1.11a-84.5 References: http://support.novell.com/security/cve/CVE-2009-3995.html http://support.novell.com/security/cve/CVE-2009-3996.html https://bugzilla.novell.com/577875

1 0

openSUSE-RU-2010:0204-1 (moderate): unscd: This update fixes huge log file generation
by maintenance＠opensuse.org 03 May '10

03 May '10

openSUSE Recommended Update: unscd: This update fixes huge log file generation ______________________________________________________________________________ Announcement ID: openSUSE-RU-2010:0204-1 Rating: moderate References: #575736 Affected Products: openSUSE 11.2 ______________________________________________________________________________ An update that has one recommended fix can now be installed. It includes one version update. Description: With the security-related version upgrade, the debug level setup has been tweaked in such a way that without any -d option passed, the debug level is set to the maximum. This causes unscd generating huge /var/log/nscd.log, eventually in the order of gigabytes. Fixed by this update. Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.2: zypper in -t patch unscd-2366 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.2 (i586 src x86_64) [New Version: 0.45]: unscd-0.45-0.2.1 References: https://bugzilla.novell.com/575736

1 0