Internet threat level: 1
Home→Descriptions→SA38462
SUSE update for Multiple Packages
| Secunia ID | |
| CVE-ID | |
| Release Date |
09 Feb 2010 |
| Last Change |
12 Feb 2010 |
| Criticality | |
| Solution Status |
Vendor Patch |
| Where | |
| Impact |
DoS (Denial of Service)This includes vulnerabilities ranging from excessive resource consumption (e.g. causing a system to use a lot of memory) to crashing an application or an entire system. System accessThis covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user. Exposure of sensitive informationVulnerabilities where documents or credentials are leaked or can be revealed either locally or from remote. Exposure of system informationVulnerabilities where excessive information about the system (e.g. version numbers, running services, installation paths, and similar) are exposed and can be revealed from remote and in some cases locally. Security BypassThis covers vulnerabilities or security issues where malicious users or people can bypass certain security mechanisms of the application. The actual impact varies significantly depending on the design and purpose of the affected application. |
| Description |
SUSE has issued an update for multiple packages. This fixes multiple vulnerabilities and a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to disclose sensitive information, compromise a user's system, bypass certain security restrictions, and cause a DoS (Denial of Service). |
| Solution |
Apply updated packages via YaST Online Update or the SUSE FTP server. |
| Original Advisory |
SUSE-SR:2010:003: |
© 1997-2012 Kaspersky Lab ZAO. All Rights Reserved.
Industry-leading Antivirus Software.
Registered trademarks and service marks are the property of their respective owners.