F-Secure
Tools
SUSE Update for Multiple Packages
| Report ID: | SA32099 |
| Source: | Secunia |
| Date of Discovery: | 29.09.2008 |
| Criticality: | Urgent |
| Affects: | openSUSE 10.2 openSUSE 10.3 openSUSE 11.0 SUSE Linux Enterprise Server 10 SUSE Linux Enterprise Server 9 Novell Open Enterprise Server 1.x |
| Compromise From: | From remote |
| Compromise Type: | System access Privilege escalation Exposure of sensitive information Security bypass DoS |
Summary
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges, and by malicious people to bypass certain security restrictions, cause a DoS, or to compromise a user's system.
Detailed Description
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges, and by malicious people to bypass certain security restrictions, cause a DoS, or to compromise a user's system.
Solution
Apply updated packages via YaST Online Update or the SUSE FTP server.
CVE Reference
CVE-2008-1379
CVE-2008-2361
CVE-2008-2362
CVE-2008-2374
CVE-2008-2360
CVE-2008-3632
CVE-2008-2235
CVE-2008-3972
CVE-2008-1377
CVE-2008-2361
CVE-2008-2362
CVE-2008-2374
CVE-2008-2360
CVE-2008-3632
CVE-2008-2235
CVE-2008-3972
CVE-2008-1377