New php packages are available for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: php4, mod_php4 Announcement-ID: SUSE-SA:2005:002 Date: Monday, Jan 17th 2005 18:00 MEST Affected products: 8.1, 8.2, 9.0, 9.1, 9.2 SUSE Linux Enterprise Server 8, 9 Vulnerability Type: remote code execution Severity (1-10): 7 SUSE default package: no Cross References: CAN-2004-1019 CAN-2004-1065 http://bugs.php.net/bug.php?id=25753 Content of this advisory: 1) security vulnerability resolved: - buffer overflows in PHP - PHP source code disclosure problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: 6) standard appendix (further information)
A libtiff/tiff security update is available for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: libtiff/tiff Announcement-ID: SUSE-SA:2005:001 Date: Monday, Jan 10th 2005 11:30 MET Affected products: 8.1, 8.2, 9.0, 9.1, 9.2 SUSE Linux Desktop 1.0 SUSE Linux Enterprise Server 8, 9 Novell Linux Desktop 9 Vulnerability Type: remote system compromise Severity (1-10): 8 SUSE default package: yes Cross References: CAN-2004-1183 CAN-2004-1308 Content of this advisory: 1) security vulnerability resolved: - integer overflow - buffer overflow problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: 6) standard appendix (further information)
Mandrake Linux tips for free has posted a review on SUSE Linux 9.2 Professional edition
SUSE Linux 9.2 is now available for download as full DVD image or mini installation image for FTP installs
NewsForge has posted an article on SUSE Professional
Company starts test program for its Novell Open Enterprise Server, bringing NetWare services to SuSE Linux.
Read more
Read more
IBM and Novell have teamed together to provide Independent Software Vendors and Linux developers with the opportunity to try out SUSE LINUX Enterprise Server 9 (SLES 9) for IBM POWER, including 90 days of online updates. Request an evaluation kit with CDs be mailed to no at no-charge.
A cyrus-imapd update is available for SUSE Linux _____________________________________________________________________________ SUSE Security Announcement Package: cyrus-imapd Announcement-ID: SUSE-SA:2004:043 Date: Friday, Dec 3rd 2004 13:00 MEST Affected products: 8.1, 8.2, 9.0, 9.1, 9.2 SUSE Linux Enterprise Server 8, 9 SuSE-Linux-Standard-Server 8 SuSE Linux Openexchange Server 4 Vulnerability Type: remote command execution Severity (1-10): 5 SUSE default package: No Cross References: CAN-2004-1011 CAN-2004-1012 CAN-2004-1013 Content of this advisory: 1) security vulnerability resolved: - buffer overflow and out of bounds access in cyrus imapd problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - suidperl - putty 6) standard appendix (further information)
An updated kernel package has been released for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: kernel Announcement-ID: SUSE-SA:2004:042 Date: Wednesday, Dec 1st 2004 15:00 MEST Affected products: 8.1, 8.2, 9.0, 9.1, 9.2 SUSE Linux Enterprise Server 8, 9 SUSE LINUX Desktop 1.0 Novell Linux Desktop 9 Vulnerability Type: local and remote denial of service Severity (1-10): 7 SUSE default package: yes Cross References: CAN-2004-0883 CAN-2004-0949 CAN-2004-1070 CAN-2004-1071 CAN-2004-1072 CAN-2004-1073 CAN-2004-1074 Content of this advisory: 1) security vulnerability resolved: - kernel remote and local denial of service problems problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - see SUSE Security Summary Report 6) standard appendix (further information)
A XFree86/xorg-x11 security update is available for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: xshared, XFree86-libs, xorg-x11-libs Announcement-ID: SUSE-SA:2004:041 Date: Wednesday, Nov 17th 2004 15:00 MET Affected products: 8.1, 8.2, 9.0, 9.1, 9.2 SUSE Linux Desktop 1.0 SUSE Linux Enterprise Server 8, 9 Novell Linux Desktop 1.0 Vulnerability Type: remote system compromise Severity (1-10): 8 SUSE default package: yes Cross References: none Content of this advisory: 1) security vulnerability resolved: - several integer overflows - out-of-bounds memory access - shell command execution - path traversal - endless loops - memory leaks problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - ImageMagick - clamav - perl-MIME-Tools, perl-Archive-ZIP - apache / mod_include - apache2 / mod_SSL 6) standard appendix (further information)
A SAMBA update is available for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: samba Announcement-ID: SUSE-SA:2004:040 Date: Monday, Nov 15th 2004 18:00 MEST Affected products: 9.1, 9.2 SUSE Linux Enterprise Server 9 Novell Linux Desktop 9 Vulnerability Type: potential remote buffer overflow remote denial of service Severity (1-10): 7 SUSE default package: yes Cross References: CAN-2004-0930 CAN-2004-0882 Content of this advisory: 1) security vulnerabilities resolved: - remote buffer overflow and remote denial of service conditions in Samba 3 packages. problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - bogofilter - libxml2 - clamav - various PDF viewers - mozilla /tmp issues - sharutils - phpMyAdmin - gaim - sysconfig - perl-MIME-Tools, perl-Archive-ZIP - apache / mod_include - apache2 / mod_SSL 6) standard appendix (further information)
Updated xpdf, gpdf, kdegraphics3-pdf, pdftohtml, and cups packages are available for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: xpdf, gpdf, kdegraphics3-pdf, pdftohtml, cups Announcement-ID: SUSE-SA:2004:039 Date: Tuesday, Oct 26th 2004 10:30 MEST Affected products: 8.1, 8.2, 9.0, 9.1, 9.2 SUSE Linux Enterprise Server 8, 9 SUSE Linux Desktop 1.0 Vulnerability Type: remote system compromise Severity (1-10): 5 SUSE default package: yes Cross References: CAN-2004-0888 CAN-2004-0889 Content of this advisory: 1) security vulnerability resolved: - integer overflows - arithmetic errors problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - freeradius denial of service problems - mpg123 - squid 6) standard appendix (further information)
OSDir has posted a screenshot slideshow of SUSE LINUX 9.2 Live
SUSE LINUX Professional 9.2 Live CDs/DVD are available for download
A libtiff update has been released for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: libtiff Announcement-ID: SUSE-SA:2004:038 Date: Friday, Oct 22nd 2004 18:00 MEST Affected products: 8.1, 8.2, 9.0, 9.1 SUSE Linux Enterprise Server 8, 9 SUSE Linux Desktop 1.0 Vulnerability Type: local privilege escalation Severity (1-10): 9 SUSE default package: yes Cross References: CAN-2004-0803 CAN-2004-0804 CAN-2004-0886 CAN-2004-0929 Content of this advisory: 1) security vulnerability resolved: - several buffer overflows and related problems in libtiff were fixed. problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - security problems in PDF viewers - freeradius denial of service problems - mpg123 buffer overflow 6) standard appendix (further information)
A new kernel security update has been released for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: kernel Announcement-ID: SUSE-SA:2004:037 Date: Wednesday, Oct 20th 2004 18:00 MEST Affected products: 9.1 SUSE Linux Enterprise Server 9 Vulnerability Type: remote denial of service Severity (1-10): 9 SUSE default package: yes Cross References: CAN-2004-0816 CAN-2004-0887 Content of this advisory: 1) security vulnerability resolved: - remote system crash with enabled firewall - local root exploit on the S/390 platform - minor /proc information leaks problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - libtiff - cyrus-sasl - php4 - zinf
Novell said today that its new Open Enterprise Server product will ship in February 2005, about two months later than the company had announced in March.
Read more
Read more
OSNews reports that Novell's web site carries some docs and shots for the upcoming Novell Linux Desktop
Read more
Read more
SUSE LINUX Professional 9.2 will be released next month
An updated Mozilla package is available for SUSE Linux ______________________________________________________________________________ SUSE Security Announcement Package: mozilla Announcement-ID: SUSE-SA:2004:036 Date: Wednesday, Oct 6th 14:36:39 MEST 2004 Affected products: 8.1, 8.2, 9.0, 9.1 SUSE Linux Enterprise Server 8, 9 SUSE Linux Desktop 1.0 Vulnerability Type: various vulnerabilities Severity (1-10): 5 SUSE default package: yes Cross References: http://www.mozilla.org/security/ Content of this advisory: 1) security vulnerability resolved: - various vulnerabilities problem description 2) solution/workaround 3) special instructions and notes 4) package location and checksums 5) pending vulnerabilities, solutions, workarounds: - openmotif 6) standard appendix (further information)
