VUPEN Security - SuSE Security Update Fixes OpenSSH and Opera Vulnerabilities / Exploit (Security Advisories)

	Contact \| Site en Français

VUPEN VNS v4.0

Features and Options

Free 14-Day Trial

Latest Intelligence

VUPEN Security Advisories

VUPEN Security Research

Threat Watch Blog

Zero-Day Monitor

Search Engine

Mailing List & RSS

>> SuSE Security Update Fixes OpenSSH and Opera Vulnerabilities

Title : SuSE Security Update Fixes OpenSSH and Opera Vulnerabilities
VUPEN ID : VUPEN/ADV-2008-1221
CVE ID : CVE-2008-1483 - CVE-2008-1657 - CVE-2008-1761 - CVE-2008-1762 - CVE-2008-1764
CWE ID : VUPEN VNS Only

Rated as : Critical

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-04-15

Technical Description

Multiple vulnerabilities have been identified in various SuSE products, which could be exploited by remote attackers to bypass security restrictions, gain knowledge of sensitive information or compromise an affected system. These issues are caused by errors in OpenSSH and Opera. For additional information, see : VUPEN/ADV-2008-0994 - VUPEN/ADV-2008-1035 - VUPEN/ADV-2008-1084

Affected Products

SUSE Linux 10.1
openSUSE 10.2
openSUSE 10.3

Solution

Upgrade the affected packages :
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00007.html

References

http://www.vupen.com/english/advisories/2008/1221
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00007.html

ChangeLog

2008-04-15 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts with CVE, CWE, and CVSS when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.

Latest Advisories