Download
| Alert*
|
oval:org.secpod.oval:def:400569
openSUSE 13.1 is installed oval:org.secpod.oval:def:400576 The Mozilla CA certificates package was updated to match the current Mozilla revision 1.95 of certdata.txt. It blacklists some misused certificate authorities, adds some new and adjusts some others. On openSUSE 13.1 a problem with names was also fixed. * distrust: AC DG Tresor SSL * new: CA_Disig_R ... oval:org.secpod.oval:def:400568 openssh was updated to fix a memory corruption when AES-GCM is used which could lead to remote code execution after successful authentication oval:org.secpod.oval:def:400575 Fixed CVE-2013-3709: make the secret token file readable only for the webyast user to avoid forging the session cookie oval:org.secpod.oval:def:400610 This openssl update fixes one security issue: - bnc#872299: Fixed missing bounds checks for heartbeat messages . oval:org.secpod.oval:def:400605 perl-HTTP-Body was updated to 1.19 and also received a security fix for a potential remote code injection when upload files. |
