Why So Many Sercurity and bug Updates For SuSE 10 Linux? PART2

From: Donald (tired1i8hak_at_yahoo.com)
Date: 11/28/05 

Date: Sun, 27 Nov 2005 22:36:04 -0500

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
(CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
(CVE-2005-3054). 22 Nov 2005 apache2-mod_php4: PHP4 Module for Apache 2.0
RPM apache2-mod_php4 4.4.0-6.2 (i586) 616 kB Source-RPM
php4-4.4.0-6.2.src.rpm

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
 (CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
 (CVE-2005-3054).
22 Nov 2005 php5-fastcgi: FastCGI PHP5 Module RPM php5-fastcgi 5.0.4-9.2
(i586) 613 kB Patch-RPM php5-fastcgi 5.0.4-9.2-patch (i586) 597 kB
Source-RPM php5-5.0.4-9.2.src.rpm

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
(CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
(CVE-2005-3054). 22 Nov 2005 php5-pear: PHP Extension and Application
Repository RPM php5-pear 5.0.4-9.2 (i586) 155 kB Patch-RPM php5-pear
5.0.4-9.2-patch (i586) 35 kB Source-RPM php5-5.0.4-9.2.src.rpm

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
(CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
(CVE-2005-3054).
22 Nov 2005 php5: PHP5 Core Files
RPM php5 5.0.4-9.2 (i586) 689 kB
Patch-RPM php5 5.0.4-9.2-patch (i586) 616 kB Source-RPM
php5-5.0.4-9.2.src.rpm

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
 (CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
(CVE-2005-3054).
22 Nov 2005 apache2-mod_php5: PHP5 Module for Apache 2.0 RPM
apache2-mod_php5 5.0.4-9.2 (i586) 688 kB Patch-RPM apache2-mod_php5
5.0.4-9.2-patch (i586) 673 kB Source-RPM php5-5.0.4-9.2.src.rpm

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
(CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
(CVE-2005-3054).
22 Nov 2005 php5-exif: PHP5 Extension Module RPM php5-exif 5.0.4-9.2
(i586) 41 kB Source-RPM php5-5.0.4-9.2.src.rpm

Security Update!
This update fixes the following security issues:

- Bugs in the exif code could lead to a crash (CVE-2005-3353)

- A bug in parse_str() could lead to activation of register_globals
(CVE-2005-3389)

- File uploads could overwrite $GLOBALS (CVE-2005-3390)

- session.save_path in a .htaccess file could crash Apache (CVE-2005-3319)

- open_basedir didn't work correctly when the value ended in a slash
(CVE-2005-3054).
22 Nov 2005 gnump3d: GNU MP3 Streaming Server RPM gnump3d 2.8-4.2
(noarch) 206 kB Patch-RPM gnump3d 2.8-4.2-patch (noarch) 52 kB
Source-RPM gnump3d-2.8-4.2.src.rpm

Security Update!
This update fixes the following security problems: - cross-site-scripting
bugs (CVE-2005-3424, CVE-2005-3425), - insecure use of files in /tmp
(CVE-2005-3349), - directory-traversal bugs (CVE-2005-3123,
CVE-2005-3355). 17 Nov 2005 procmail: A program for local e-mail delivery
RPM procmail 3.22-42.2 (i586) 128 kB Patch-RPM procmail 3.22-42.2-patch
(i586) 59 kB Source-RPM procmail-3.22-42.2.src.rpm

Avoids that procmail truncates a mail folder if the users quotas are
exceeded.
17 Nov 2005 subdomain-utils: SubDomain userlevel utilities that are
 useful in creating SubDomain profiles.
RPM subdomain-utils 1.2-23_imnx_suse (noarch) 67 kB Patch-RPM
subdomain-utils 1.2-23_imnx_suse-patch (noarch) 43 kB Source-RPM
subdomain-utils-1.2-23_imnx_suse.nosrc.rpm

This patch fixes problems in the AppArmor profiling tools found since the
SUSE Linux 10.0 release:
- Selecting "Deny" in genprof/logprof can generate an invalid profile
entry. - Reset PATH env variable to exclude non-standard system paths
during execution of profiling tools.
- Reference all helper programs with full pathnames from the profiling
utility tools.
17 Nov 2005 samba-winbind: Winbind Daemon and Tool RPM samba-winbind
3.0.20b-3.1 (i586) 1573 kB Patch-RPM samba-winbind 3.0.20b-3.1-patch
(i586) 1556 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 samba-python: Samba Python Modules RPM samba-python
3.0.20b-3.1 (i586) 4667 kB Patch-RPM samba-python 3.0.20b-3.1-patch
(i586) 4659 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 samba-vscan: On-Access Virus Scanning with Samba RPM
samba-vscan 0.3.6b-4.1 (i586) 150 kB Patch-RPM samba-vscan
0.3.6b-4.1-patch (i586) 130 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 samba-pdb: PDB-Modules
RPM samba-pdb 3.0.20b-3.1 (i586) 66 kB Patch-RPM samba-pdb
3.0.20b-3.1-patch (i586) 63 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 libsmbclient-devel: Libraries and Header Files to Develop
Programs ith smbclient Support
RPM libsmbclient-devel 3.0.20b-3.1 (i586) 774 kB Source-RPM
samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 samba: A SMB/ CIFS File Server RPM samba 3.0.20b-3.1 (i586)
2759 kB Patch-RPM samba 3.0.20b-3.1-patch (i586) 2698 kB Source-RPM
samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 samba-client: Samba Client Utilities RPM samba-client
3.0.20b-3.1 (i586) 6367 kB Patch-RPM samba-client 3.0.20b-3.1-patch
(i586) 6049 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 libsmbclient: Samba Client Library RPM libsmbclient
3.0.20b-3.1 (i586) 616 kB Patch-RPM libsmbclient 3.0.20b-3.1-patch
(i586) 613 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 ldapsmb: Tool to administer Samba's LDAP backend RPM ldapsmb
1.33-6.2 (i586) 61 kB
Patch-RPM ldapsmb 1.33-6.2-patch (i586) 41 kB Source-RPM
samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 cifs-mount: mount using the Common Internet File System
(CIFS) RPM cifs-mount 3.0.20b-3.1 (i586) 61 kB Patch-RPM cifs-mount
3.0.20b-3.1-patch (i586) 51 kB Source-RPM samba-3.0.20b-3.1.src.rpm

This update fixes several issues of the 3.0.20 release. The most important
are:

- anonymous printing to a Microsoft system - bugs in winbindd
- bugs caused by incompatibilities on 64-bit systems - file system quota
support

For a detailed list please check the WHATSNEW.txt file of the samba-doc
package. In particular read the section "Winbind, security = domain, and
Active Directory" as the fashion in which user and group lists can be
obtained has been changed. This section includes a solution for users
which have to stay with "security = domain".
17 Nov 2005 iscan: Image Scan is a proprietary software for Epson
scanners RPM iscan 1.15.0.2-4.2 (i586) 1237 kB Patch-RPM iscan
1.15.0.2-4.2-patch (i586) 119 kB Source-RPM iscan-1.15.0.2-4.2.src.rpm

Only for Epson all-in-one devices - not for other scanners: When for a
Epson all-in-one USB device the kernel module "usblp" is loaded to access
the printer unit (and/or when "usb-storage" is loaded to access the
cardreader unit), the USB system indicates a "resource busy" error when
the scanner unit is accessed. The Iscan software was changed to ignore
those errors. 17 Nov 2005 release-notes: A Short Description of the Most
Important Changes
 for This SUSE Linux Release
RPM release-notes 10.0.16-0.1 (noarch) 82 kB Source-RPM
release-notes-10.0.16-0.1.src.rpm

Add and update entries. Update translations. 17 Nov 2005 checkinstall:
"make install" installations tracker RPM checkinstall 1.6.0beta4-4.2
(i586) 67 kB Patch-RPM checkinstall 1.6.0beta4-4.2-patch (i586) 9 kB
Source-RPM checkinstall-1.6.0beta4-4.2.src.rpm

The installwatch script has been fixed to load installwatch.so from
/usr/lib64 when running on a 64 bit system. 17 Nov 2005 pwmanager:
Password Manager, a KWallet alternative application RPM pwmanager
1.2.3-3.2 (i586) 443 kB Patch-RPM pwmanager 1.2.3-3.2-patch (i586) 392
kB Source-RPM pwmanager-1.2.3-3.2.src.rpm

This update fixes memory corruption leading to crashes when saving the
pwmanager password database. 17 Nov 2005 sane: SANE (Scanner Access Now
Easy), the Scan Solution RPM sane 1.0.15-20.2 (i586) 2252 kB Patch-RPM
sane 1.0.15-20.2-patch (i586) 761 kB Source-RPM sane-1.0.15-20.2.src.rpm

Only for Epson all-in-one devices - not for other scanners: When for a
Epson all-in-one USB device the kernel module "usblp" is loaded to access
the printer unit (and/or when "usb-storage" is loaded to access the
cardreader unit), the USB system indicates a "resource busy" error when
the scanner unit is accessed. The SANE software was changed to ignore
those errors. 17 Nov 2005 NetworkManager-vpnc: NetworkManager VPN support
for vpnc RPM NetworkManager-vpnc 0.3cvs20050901-2.2 (i586) 43 kB
Patch-RPM NetworkManager-vpnc 0.3cvs20050901-2.2-patch (i586) 17 kB
Source-RPM NetworkManager-vpnc-0.3cvs20050901-2.2.src.rpm

Fix NetworkManager (nm-vpnc-auth-dialog) Crash. 16 Nov 2005 mediawiki: A
Web-based Collaborative Editing Environment RPM mediawiki 1.4.7-4.4
(i586) 1656 kB Patch-RPM mediawiki 1.4.7-4.4-patch (i586) 90 kB
Source-RPM mediawiki-1.4.7-4.4.src.rpm

Security Update!
This update fixes the following security problem: Unsafe handling of CSS
by Microsoft Internet Explorer could be exploited to produce cross-site
scripting attacks via JavaScript injection to clients running that browser
(CVE-2005-3167). 16 Nov 2005 spamassassin: SpamAssassin is an extensible
email filter which is used to identify spam
RPM spamassassin 3.0.4-4.2 (i586) 102 kB Patch-RPM spamassassin
3.0.4-4.2-patch (i586) 47 kB Source-RPM spamassassin-3.0.4-4.2.src.rpm

Security Update!
This update fixes the following security issue: very long recipient lists
in a mail's "To:" header could crash spamassassin (CAN-2005-3351).
16 Nov 2005 perl-spamassassin: the perl modules for using spamassassin
within an own perl script
RPM perl-spamassassin 3.0.4-4.2 (i586) 568 kB Patch-RPM
perl-spamassassin 3.0.4-4.2-patch (i586) 31 kB Source-RPM
spamassassin-3.0.4-4.2.src.rpm

Security Update!
This update fixes the following security issue: very long recipient lists
in a mail's "To:" header could crash spamassassin (CAN-2005-3351).
16 Nov 2005 zope: Open Source Web Application Server RPM zope 2.7.7-3.2
(i586) 4030 kB
Patch-RPM zope 2.7.7-3.2-patch (i586) 364 kB Source-RPM
zope-2.7.7-3.2.src.rpm

Security Update!
This update fixes the following security problem: Zope honors file
inclusion directives in RestructuredText objects which potentially allowed
attackers to execute arbitrary code (Zope Hotfix 2005-10-09). 15 Nov 2005
gdk-pixbuf: A Library for Fast Pixel Manipulation RPM gdk-pixbuf
0.22.0-72.3 (i586) 167 kB Patch-RPM gdk-pixbuf 0.22.0-72.3-patch (i586)
21 kB Source-RPM gdk-pixbuf-0.22.0-72.3.src.rpm

Security Update!
This update fixes the following security problem: a heap overflow in the
XPM reader allowed attackers to execute arbitrary code via specially
crafted XPM images (CVE-2005-3186, CVE-2005-2975, CVE-2005-2976). 15 Nov
2005 gdk-pixbuf-devel: GdkPixBuf - Development Environment RPM
gdk-pixbuf-devel 0.22.0-72.3 (i586) 154 kB Patch-RPM gdk-pixbuf-devel
0.22.0-72.3-patch (i586) 95 kB Source-RPM gdk-pixbuf-0.22.0-72.3.src.rpm

Security Update!
This update fixes the following security problem: a heap overflow in the
XPM reader allowed attackers to execute arbitrary code via specially
crafted XPM images (CVE-2005-3186, CVE-2005-2975, CVE-2005-2976). 15 Nov
2005 gtk2-devel: Include Files and Libraries mandatory for Development.
RPM gtk2-devel 2.8.3-4.3 (i586) 382 kB Patch-RPM gtk2-devel
2.8.3-4.3-patch (i586) 41 kB Source-RPM gtk2-2.8.3-4.3.src.rpm

Security Update!
This update fixes the following security problem: a heap overflow in the
XPM reader allowed attackers to execute arbitrary code via specially
crafted XPM images (CVE-2005-3186, CVE-2005-2976). 15 Nov 2005 gtk2:
Library for Creation of Graphical User Interfaces RPM gtk2 2.8.3-4.3
(i586) 3570 kB
Patch-RPM gtk2 2.8.3-4.3-patch (i586) 267 kB Source-RPM
gtk2-2.8.3-4.3.src.rpm

Security Update!
This update fixes the following security problem: a heap overflow in the
XPM reader allowed attackers to execute arbitrary code via specially
crafted XPM images (CVE-2005-3186, CVE-2005-2976). 15 Nov 2005
libgda-devel: Include Files and Libraries mandatory for Development. RPM
libgda-devel 1.3.91-5.4 (i586) 292 kB Patch-RPM libgda-devel
1.3.91-5.4-patch (i586) 120 kB Source-RPM libgda-1.3.91-5.4.src.rpm

Security Update!
This update fixes the following security problem: libgda contained two
format string bugs in logging routines. Those bugs could potentially
indirectly lead to arbitrary code execution via applications that link
against libgda and supply data to libgda (CAN-2005-2958).
15 Nov 2005 libgda: GNU Data Access (GDA) Library RPM libgda 1.3.91-5.4
(i586) 470 kB Patch-RPM libgda 1.3.91-5.4-patch (i586) 137 kB
Source-RPM libgda-1.3.91-5.4.src.rpm

Security Update!
This update fixes the following security problem: libgda contained two
format string bugs in logging routines. Those bugs could potentially
indirectly lead to arbitrary code execution via applications that link
against libgda and supply data to libgda (CAN-2005-2958).
15 Nov 2005 gpsdrive: Navigation via a GPS Receiver RPM gpsdrive
2.09-29.2 (i586) 1250 kB Patch-RPM gpsdrive 2.09-29.2-patch (i586) 18
kB Source-RPM gpsdrive-2.09-29.2.src.rpm

Security Update!
This update fixes the following security problem: A format string bug in
friendsd2 allowed an attacker to execute arbitrary code (CVE-2005-3523).
14 Nov 2005 squid: Squid WWW proxy server RPM squid 2.5.STABLE10-5.2
(i586) 3439 kB Patch-RPM squid 2.5.STABLE10-5.2-patch (i586) 489 kB
Source-RPM squid-2.5.STABLE10-5.2.src.rpm

Security Update!
This update fixes the following security problems: - A bug in the NTLM
authentication could crash squid (CVE-2005-2917) - Odd replies of FTP
servers could crash squid (CVE-2005-3258) 9 Nov 2005 clamav: Anti-Virus
Toolkit RPM clamav 0.87.1-0.1 (i586) 990 kB Patch-RPM clamav
0.87.1-0.1-patch (i586) 694 kB Source-RPM clamav-0.87.1-0.1.src.rpm

Security Update!
This versionupdate to 0.87.1 fixes among other things the following
security issues:

- clamav could be made to crash via a malformed DOC file (CAN-2005-3239).

- a buffer overflow in the FSG decoder (CVE-2005-3303).

- clamav could run into an endless loop due to malformed CAB files
(CVE-2005-3500, CVE-2005-3501).
7 Nov 2005 snort: A Packet Sniffer and Logger RPM snort 2.3.3-2.2 (i586)
        3611 kB
Patch-RPM snort 2.3.3-2.2-patch (i586) 1001 kB Source-RPM
snort-2.3.3-2.2.src.rpm

Security Update!
A buffer overflow in snort's Back Orifice preprocessor code will be fixed
by
this update. This bug can be exploited by remote attackers to execute

7 Nov 2005 giflib-devel: Library for Working with GIF Images -
 Files Mandatory
 for Development
RPM giflib-devel 4.1.3-7.2 (i586) 22 kB Patch-RPM giflib-devel
4.1.3-7.2-patch (i586) 18 kB Source-RPM giflib-4.1.3-7.2.src.rpm

Security Update!
This update fixes the following security issues:

- specially crafted GIF files could crash applications (CVE-2005-2974).

- specially crafted GIF files could overwrite memory which potentially
allowed to execute arbitrary code (CVE-2005-3350). 7 Nov 2005 giflib: A
Library for Working with GIF Images RPM giflib 4.1.3-7.2 (i586) 20 kB
Patch-RPM giflib 4.1.3-7.2-patch (i586) 19 kB Source-RPM
giflib-4.1.3-7.2.src.rpm

Security Update!
This update fixes the following security issues:

- specially crafted GIF files could crash applications (CVE-2005-2974).

- specially crafted GIF files could overwrite memory which potentially
allowed to execute arbitrary code (CVE-2005-3350). 4 Nov 2005 pwdutils:
Utilities to Manage User and Group Accounts
RPM pwdutils 3.0.4-4.2 (i586) 446 kB Patch-RPM pwdutils 3.0.4-4.2-patch
(i586) 59 kB Source-RPM pwdutils-3.0.4-4.2.src.rpm

Security Update!
Thomas Gerisch reported a local privilege escalation in the 'chfn' program
caused by insufficient argument checking. This problem allows a local
attacker to easily gain root privileges. 4 Nov 2005 ethereal: A Network
Traffic Analyser RPM ethereal 0.10.13-2.2 (i586) 6320 kB Patch-RPM
ethereal 0.10.13-2.2-patch (i586) 6234 kB Source-RPM
ethereal-0.10.13-2.2.src.rpm

Security Update!
This update upgrades ethereal to version 0.10.13 to fix several security
related bugs ranging from crashes to arbitrary code execution.
(CVE-2005-3241, CVE-2005-3242, CVE-2005-3243, CVE-2005-3244,
CVE-2005-3245, CVE-2005-3246, CVE-2005-3247, CVE-2005-3248, CVE-2005-3249,
CVE-2005-3184, CVE-2005-3313) 4 Nov 2005 ethereal-devel: A Network
Traffic Analyser RPM ethereal-devel 0.10.13-2.2 (i586) 118 kB Patch-RPM
ethereal-devel 0.10.13-2.2-patch (i586) 93 kB
Source-RPM ethereal-0.10.13-2.2.src.rpm

Security Update!

This update upgrades ethereal to version 0.10.13 to fix several security
related bugs ranging from crashes to arbitrary code execution.
(CVE-2005-3241, CVE-2005-3242, CVE-2005-3243, CVE-2005-3244,
CVE-2005-3245, CVE-2005-3246, CVE-2005-3247, CVE-2005-3248, CVE-2005-3249,
CVE-2005-3184, CVE-2005-3313) 4 Nov 2005 openvpn: Create VPN over
Wireless and Ethernet
 Networks using a
 Tun Device
RPM openvpn 2.0.2-2.2 (i586) 319 kB Patch-RPM openvpn 2.0.2-2.2-patch
(i586) 183 kB Source-RPM openvpn-2.0.2-2.2.src.rpm

Security Update!
This update fixes the following security issues:

- a malicious or compromised server could exploit a format string bug in
clients to execute arbitrary code (CVE-2005-3393).

- a server in TCP mode could be made to crashed due to insufficient checks
for the error code of the accept() system call (CVE-2005-3409).
3 Nov 2005 lynx: A text-based WWW browser RPM lynx 2.8.5-35.3 (i586)
1655 kB
Patch-RPM lynx 2.8.5-35.3-patch (i586) 1030 kB Source-RPM
lynx-2.8.5-35.3.src.rpm

Security Update!
This update fixes a buffer overflow in function HTrjis() that occurs while
processing NNTP headers. An attacker can exploit this remotely by
persuading the victim user to connect to a NNTP server which includes a
malformated article to execute arbitrary code. (CAN-2005-3120) 3 Nov 2005
insserv: A program to arrange init-scripts RPM insserv 1.03.0-1.1 (i586)
28 kB Patch-RPM insserv 1.03.0-1.1-patch (i586) 27 kB Source-RPM
insserv-1.03.0-1.1.src.rpm

Enable insserv to handle duplets in the service provides of boot scripts
as done in the init script of postfix. 3 Nov 2005 licq: Linux ICQ client
RPM licq 1.3.0-11.2 (i586) 2323 kB
Patch-RPM licq 1.3.0-11.2-patch (i586) 1056 kB Source-RPM
licq-1.3.0-11.2.src.rpm

This patch adds the missing kde-gui plugin for licq on x86_64 archi
tecture.
3 Nov 2005 libgnomeprintui-devel: Include Files and Libraries mandatory
for
 Development.
RPM libgnomeprintui-devel 2.12.1-2.2 (i586) 106 kB Patch-RPM
libgnomeprintui-devel 2.12.1-2.2-patch (i586) 101 kB Source-RPM
libgnomeprintui-2.12.1-2.2.src.rpm

Fix crashes in print dialogs.
3 Nov 2005 libgnomeprintui: User Interface Part of the GNOME- Printing
Library
RPM libgnomeprintui 2.12.1-2.2 (i586) 279 kB Patch-RPM libgnomeprintui
2.12.1-2.2-patch (i586) 271 kB Source-RPM
libgnomeprintui-2.12.1-2.2.src.rpm

Fix crashes in print dialogs.
3 Nov 2005 libgnomeprint: The GNOME 2.x Printing Library RPM
libgnomeprint 2.12.1-0.3 (i586) 363 kB Patch-RPM libgnomeprint
2.12.1-0.3-patch (i586) 340 kB Source-RPM
libgnomeprint-2.12.1-0.3.src.rpm

Fix crashes in print dialogs.
3 Nov 2005 libgnomeprint-devel: Include Files and Libraries
 mandatory
 for
Development.
RPM libgnomeprint-devel 2.12.1-0.3 (i586) 242 kB Patch-RPM
libgnomeprint-devel 2.12.1-0.3-patch (i586) 224 kB Source-RPM
libgnomeprint-2.12.1-0.3.src.rpm

Fix crashes in print dialogs.
3 Nov 2005 libgnomecups-devel: GNOME CUPS Library RPM libgnomecups-devel
0.2.2-0.2 (i586) 29 kB Patch-RPM libgnomecups-devel 0.2.2-0.2-patch
(i586) 26 kB Source-RPM libgnomecups-0.2.2-0.2.src.rpm

Fix crashes in print dialogs.
3 Nov 2005 libgnomecups: GNOME CUPS Library RPM libgnomecups 0.2.2-0.2
(i586) 127 kB Patch-RPM libgnomecups 0.2.2-0.2-patch (i586) 92 kB
Source-RPM libgnomecups-0.2.2-0.2.src.rpm

Fix crashes in print dialogs.
3 Nov 2005 iproute2: Advanced routing RPM iproute2 2.6.13-2.2 (i586)
854 kB Patch-RPM iproute2 2.6.13-2.2-patch (i586) 601 kB Source-RPM
iproute2-2.6.13-2.2.src.rpm

This update fixes a bufferoverflow with "ip route". This problem is not
security relevant.
3 Nov 2005 libipoddevice-devel: libipoddevice is a GObject library
 that provides i
Pod device transparency through HAL
RPM libipoddevice-devel 0.3.2-3.2 (i586) 20 kB Patch-RPM
libipoddevice-devel 0.3.2-3.2-patch (i586) 19 kB Source-RPM
libipoddevice-0.3.2-3.2.src.rpm

- Fix to work with iTunes 6 (#118281) - Fix crash with empty On-The-Go
iPod playlists (#128806) 3 Nov 2005 libipoddevice: libipoddevice is a
GObject library that provides iPod
device transparency through HAL
RPM libipoddevice 0.3.2-3.2 (i586) 30 kB Patch-RPM libipoddevice
0.3.2-3.2-patch (i586) 22 kB Source-RPM libipoddevice-0.3.2-3.2.src.rpm

- Fix to work with iTunes 6 (#118281) - Fix crash with empty On-The-Go
iPod playlists (#128806)

Relevant Pages
Quantcast