Secunia Security Advisory – SUSE has issued an update for multiple packages. This fixes multiple vulnerabilities where some have an unknown impact and others can be exploited by malicious, local users to bypass certain security restrictions and cause a DoS (Denial of Service), by malicious users to conduct script insertion and SQL injection attacks and cause a DoS (Denial of Service), and by malicious people to conduct spoofing, cross-site scripting, and SQL injection attacks, manipulate certain data, disclose potentially sensitive information, cause a DoS (Denial of Service), and compromise a vulnerable system.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/89390/sa39771.txt
Source: https://packetstormsecurity.com/files/89390/Secunia-Security-Advisory-39771.html