Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2012:6200

Overview

Id SUSE-2012:6200
Name Novell SUSE 2012:6200 expat security update for SLES 11 SP2 x86_64 (Rev 2)
Vendor Name novell
Product Novell
Content Type Critical - 01 Critical - 01
Language(s)
Operating System(s) Linux 
Released On 20 Jun 2012 12:00:00

SUSE-2012:6200

Novell SUSE 2012:6200 expat security update for SLES 11 SP2 x86_64 (Rev 2)

Vendor Name

novell

Product

Novell

Released On

20 Jun 2012 12:00:00

Url

https://www.suse.com/support/update/announcement/2012/suse-su-20120773-1.html

Description

Description:
This update of expat fixes the following bugs:
*Hash collision attack that could lead to excessive CPU usage (CVE-2012-0876).
*Expat didn't close file descriptors in some cases (CVE-2012-1147).
*Specially crafted xml files could lead to a memory leak (CVE-2012-1148).

Note:
The endpoints must be subscribed to Novell before deploying this patch.

Revision Information:
Revision 2: Modified the logic to correct an issue in which the deployment may require user interaction.

Related Resources

Related Vulnerabilities

CVE-2012-0876   CVE-2012-1147   CVE-2012-1148  

Related Patches

Superseded Patches

None


Last Updated: 27 May 2016 11:19:24