Section: .. / 0710-advisories /
| /// File Name: |
sa27122.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for util-linux. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/27122/ | | File Size: | 2793 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | 4e98b3292d67650c9b122ca78a57f567 |
|
| /// File Name: |
sa27201.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun StorageTek 3510 FC Array, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27201/ | | File Size: | 2420 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | e50d050cfaae13dd32ff2f01f1b0df08 |
|
| /// File Name: |
sa27203.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for java-1.5.0-bea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27203/ | | File Size: | 2352 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | bf29a2fcb01d9159df61a30756c03f22 |
|
| /// File Name: |
sa27212.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), or gain escalated privileges, and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/27212/ | | File Size: | 3918 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | 36cf60a1acffd36decd317ef2b4cd0a0 |
|
| /// File Name: |
sa27235.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious people to inject certain data.
| | Homepage: | http://secunia.com/advisories/27235/ | | File Size: | 3561 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | a34ae558bcac482b964604c6598853ff |
|
| /// File Name: |
sa27245.txt |
Description:
|
Secunia Security Advisory - Nemessis has reported a vulnerability in WebMod, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/27245/ | | File Size: | 2264 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | 2ca30c22aaaeab4a33ef6fc8349b7ab9 |
|
| /// File Name: |
sa27250.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in VirtueMart, which can be exploited by malicious users to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27250/ | | File Size: | 2362 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | 4d9b7462cc24cb155e9516ac453ced3a |
|
| /// File Name: |
sa27262.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in DCC, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27262/ | | File Size: | 2167 | | Last Modified: | Oct 16 18:06:25 2007 |
| MD5 Checksum: | e997ac31bffd5129040a6a12838e704a |
|
| /// File Name: |
MDKSA-2007-198.txt |
Description:
|
Mandriva Linux Security Advisory - The mount and umount programs in util-linux called the setuid() and setgid() functions in the wrong order and did not check the return values, which could allow attackers to grain privileges via helper applications such as mount.nfs.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6111 | | Related CVE(s): | CVE-2007-5191 | | Last Modified: | Oct 16 00:26:23 2007 |
| MD5 Checksum: | dd3bb8a621df79d81e88f389dec88ac1 |
|
| /// File Name: |
MDKSA-2007-197.txt |
Description:
|
Mandriva Linux Security Advisory - A buffer overflow in GNU tar has unspecified attack vectors and impact, resulting in a crashing stack.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3610 | | Related CVE(s): | CVE-2007-4476 | | Last Modified: | Oct 16 00:24:48 2007 |
| MD5 Checksum: | 53159c4b18c20e0be46399d37d49bbfd |
|
| /// File Name: |
sa27149.txt |
Description:
|
Secunia Security Advisory - Krystian Kloskowski has discovered a vulnerability in jetAudio, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27149/ | | File Size: | 2341 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | 2c1fa386a218234d381e25af06d0d6ca |
|
| /// File Name: |
sa27180.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for kdm. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27180/ | | File Size: | 2105 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | 6e04d8597e9dca74fb8693909d139f38 |
|
| /// File Name: |
sa27189.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in SUSE Linux Enterprise Server, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27189/ | | File Size: | 2423 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | 0a4f39bafaf91fe3ab31d51f9499c444 |
|
| /// File Name: |
sa27191.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in dotProject, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27191/ | | File Size: | 2276 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | 09749b61a242b9b24209e2808a3464d7 |
|
| /// File Name: |
sa27227.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potential sensitive information, gain escalated privileges, and cause a DoS (Denial of Service) and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/27227/ | | File Size: | 26895 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | 814ec6783120f04ddb81ddaf481fbf4a |
|
| /// File Name: |
sa27232.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for hplib. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27232/ | | File Size: | 3566 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | de903f7c7bd9f52fb91f9ad380df4e78 |
|
| /// File Name: |
sa27240.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for xfs. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges or gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27240/ | | File Size: | 2305 | | Last Modified: | Oct 16 00:22:55 2007 |
| MD5 Checksum: | 35a75b1742959d71410eee842a8fee24 |
|
| /// File Name: |
MDKSA-2007-196.txt |
Description:
|
Mandriva Linux Security Advisory - The compat_sys_mount function in fs/compat.c allowed local users to cause a denial of service (NULL pointer dereference and oops) by mounting a smbfs file system in compatibility mode. The nf_conntrack function in netfilter did not set nfctinfo during reassembly of fragmented packets, which left the default value as IP_CT_ESTABLISHED and could allow remote attackers to bypass certain rulesets using IPv6 fragments. A typo in the Linux kernel caused RTA_MAX to be used as an array size instead of RTN_MAX, which lead to an out of bounds access by certain functions. The IPv6 protocol allowed remote attackers to cause a denial of service via crafted IPv6 type 0 route headers that create network amplification between two routers. The random number feature did not properly seed pools when there was no entropy, or used an incorrect cast when extracting entropy, which could cause the random number generator to provide the same values after reboots on systems without an entropy source. A memory leak in the PPPoE socket implementation allowed local users to cause a denial of service (memory consumption) by creating a socket using connect, and releasing it before the PPPIOCGCHAN ioctl is initialized. An integer underflow in the cpuset_tasks_read function, when the cpuset filesystem is mounted, allowed local users to obtain kernel memory contents by using a large offset when reading the /dev/cpuset/tasks file. The sctp_new function in netfilter allowed remote attackers to cause a denial of service by causing certain invalid states that triggered a NULL pointer dereference. A stack-based buffer overflow in the random number generator could allow local root users to cause a denial of service or gain privileges by setting the default wakeup threshold to a value greater than the output pool size. The lcd_write function did not limit the amount of memory used by a caller, which allows local users to cause a denial of service (memory consumption). The Linux kernel allowed local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die which delivered an attacker-controlled parent process death signal (PR_SET_PDEATHSIG). The aac_cfg_openm and aac_compat_ioctl functions in the SCSI layer ioctl patch in aacraid did not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges. The IA32 system call emulation functionality, when running on the x86_64 architecture, did not zero extend the eax register after the 32bit entry path to ptrace is used, which could allow local users to gain privileges by triggering an out-of-bounds access to the system call table using the %RAX register.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8221 | | Related CVE(s): | CVE-2006-7203, CVE-2007-1497, CVE-2007-2172, CVE-2007-2242, CVE-2007-2453, CVE-2007-2525, CVE-2007-2875, CVE-2007-2876, CVE-2007-3105, CVE-2007-3513, CVE-2007-3848, CVE-2007-4308, CVE-2007-4573 | | Last Modified: | Oct 16 00:22:46 2007 |
| MD5 Checksum: | c9c788c8ab303f6c67b69c3510264278 |
|
| /// File Name: |
MDKSA-2007-195.txt |
Description:
|
Mandriva Linux Security Advisory - A stack-based buffer overflow in the random number generator could allow local root users to cause a denial of service or gain privileges by setting the default wakeup threshold to a value greater than the output pool size. The lcd_write function did not limit the amount of memory used by a caller, which allows local users to cause a denial of service (memory consumption). The decode_choice function allowed remote attackers to cause a denial of service (crash) via an encoded out-of-range index value for a choice field which triggered a NULL pointer dereference. The Linux kernel allowed local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die which delivered an attacker-controlled parent process death signal (PR_SET_PDEATHSIG). The aac_cfg_openm and aac_compat_ioctl functions in the SCSI layer ioctl patch in aacraid did not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges. The IA32 system call emulation functionality, when running on the x86_64 architecture, did not zero extend the eax register after the 32bit entry path to ptrace is used, which could allow local users to gain privileges by triggering an out-of-bounds access to the system call table using the %RAX register.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8642 | | Related CVE(s): | CVE-2007-3105, CVE-2007-3513, CVE-2007-3642, CVE-2007-3848, CVE-2007-4308, CVE-2007-4573 | | Last Modified: | Oct 16 00:17:23 2007 |
| MD5 Checksum: | 5a12cf6638c61249c10bb2a042c483b3 |
|
| /// File Name: |
sa27242.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported a vulnerability in Live for Speed, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27242/ | | File Size: | 2399 | | Last Modified: | Oct 15 19:16:07 2007 |
| MD5 Checksum: | 94f2d9452286388b9412df5c97a6e1ee |
|
| /// File Name: |
dsa-1387-1.txt |
Description:
|
Debian Security Advisory 1387-1 - It has been discovered that the original patch for a buffer overflow in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (DSA-1368-1) was insufficient to protect from arbitrary code execution in some environments.
| | Homepage: | http://www.debian.org/security | | File Size: | 6746 | | Related CVE(s): | CVE-2007-4743, CVE-2007-3999 | | Last Modified: | Oct 15 19:15:59 2007 |
| MD5 Checksum: | 78de8493ffa5690c6e0c603f981854c8 |
|
| /// File Name: |
dsa-1386-2.txt |
Description:
|
Debian Security Advisory 1386-2 - A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. Note that both wesnoth and the wesnoth server are affected. Note: This advisory only updates the MD5 sums for the stable distribution.
| | Homepage: | http://www.debian.org/security | | File Size: | 16911 | | Related CVE(s): | CVE-2007-3917 | | Last Modified: | Oct 15 19:14:25 2007 |
| MD5 Checksum: | 7affc2ab988b403b63251d891eec59f9 |
|
| /// File Name: |
dsa-1386-1.txt |
Description:
|
Debian Security Advisory 1386-1 - A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. Note that both wesnoth and the wesnoth server are affected.
| | Homepage: | http://www.debian.org/security | | File Size: | 16769 | | Related CVE(s): | CVE-2007-3917 | | Last Modified: | Oct 15 19:13:35 2007 |
| MD5 Checksum: | f05967000506df7b75f26358bfa790a9 |
|
| /// File Name: |
SYMSA-2007-010.txt |
Description:
|
Symantec Vulnerability Research SYMSA-2007-010 - A vulnerability has been discovered in the mechanism that Microsoft ActiveSync 4.x uses to obfuscate the password when it's sent over the USB network interface between the device and the host machine. This enables malicious software on the host to either impersonate a device in order to obtain the current password or, if in a position to sniff network traffic, obtain the password for trivial decoding.
| | Author: | Ollie Whitehouse | | Homepage: | http://www.symantec.com/research | | File Size: | 5788 | | Related CVE(s): | CVE-2007-5460 | | Last Modified: | Oct 15 19:12:46 2007 |
| MD5 Checksum: | 0d040e6887b4ff392302b0aef6cceca6 |
|
| /// File Name: |
glsa-200710-16.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200710-16 - Aaron Plattner discovered a buffer overflow in the compNewPixmap() function when copying data from a large pixel depth pixmap into a smaller pixel depth pixmap. Versions less than 1.3.0.0-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3015 | | Related CVE(s): | CVE-2007-4730 | | Last Modified: | Oct 15 19:09:41 2007 |
| MD5 Checksum: | 310a6f8bc21186349eadb7e649e10a4a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
