Section: .. / 0801-advisories /
| /// File Name: |
sa28451.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for gforge. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/28451/ | | File Size: | 7642 | | Last Modified: | Jan 16 00:28:37 2008 |
| MD5 Checksum: | b0266161d0710d846fc531e9c9af3922 |
|
| /// File Name: |
dsa-1445-1.txt |
Description:
|
Debian Security Advisory 1445-1 - Michael Krieger and Sam Trenholme discovered a programming error in MaraDNS, a simple security-aware Domain Name Service server, which might to denial of service through malformed DNS packets.
| | Homepage: | http://www.debian.org/security | | File Size: | 7609 | | Related CVE(s): | CVE-2008-0061 | | Last Modified: | Jan 3 18:21:15 2008 |
| MD5 Checksum: | 46c76a00d8f4e407c0baf86ab8a448f5 |
|
| /// File Name: |
MDVSA-2008-022.txt |
Description:
|
Mandriva Linux Security Advisory - Multiple vulnerabilities including file verification, memory corruption, information disclosure, integer overflows, and heap overflows were discovered in xorg-X11.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7605 | | Related CVE(s): | CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0006, CVE-2007-4730, CVE-2007-5760 | | Last Modified: | Jan 25 03:33:10 2008 |
| MD5 Checksum: | 2405d60fcb2f1a4ccc8726fe8d7fae43 |
|
| /// File Name: |
sa28321.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for qt. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/28321/ | | File Size: | 7509 | | Last Modified: | Jan 3 21:42:27 2008 |
| MD5 Checksum: | ab37cdda5cc57fe571eabbdeb3bc10aa |
|
| /// File Name: |
MDVSA-2008-001-1.txt |
Description:
|
Mandriva Linux Security Advisory - A number of vulnerabilities in the Wireshark program were found that could cause crashes, excessive looping, or arbitrary code execution. This update provides Wireshark 0.99.7 which is not vulnerable to these issues. This update is being reissued without libcap (kernel capabilities) support, as that is not required by the original released packages, and thus gave trouble for a number of users.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7423 | | Related CVE(s): | CVE-2007-6111, CVE-2007-6112, CVE-2007-6113, CVE-2007-6114, CVE-2007-6115, CVE-2007-6116, CVE-2007-6117, CVE-2007-6118, CVE-2007-6119, CVE-2007-6120, CVE-2007-6121, CVE-2007-6438, CVE-2007-6439, CVE-2007-6441, CVE-2007-6450, CVE-2007-6451 | | Last Modified: | Jan 8 12:02:16 2008 |
| MD5 Checksum: | 41ad1f8e033c40bb0496dba7da3bafee |
|
| /// File Name: |
CORE-2007-1119.txt |
Description:
|
Core Security Technologies Advisory - Locally exploitable kernel buffer overflow vulnerabilities and improperly validated input arguments have been found in CORE FORCE Firewall and Registry modules. The vulnerabilities allow unprivileged logged on users to crash the system (denial of service), and they also may lead to a privilege escalation or even a local root exploit. Versions 0.95.167 and below are affected.
| | Author: | Sebastian Gottschalk | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 7267 | | Last Modified: | Jan 18 05:36:14 2008 |
| MD5 Checksum: | bcb349a094c8d4b1163b33bdcee0b3c9 |
|
| /// File Name: |
sa28538.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for scponly. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/28538/ | | File Size: | 7261 | | Last Modified: | Jan 22 12:17:20 2008 |
| MD5 Checksum: | 3a9af9fab82b4b4a5cc07e0fc2009b89 |
|
| /// File Name: |
sa28334.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for maradns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28334/ | | File Size: | 7154 | | Last Modified: | Jan 4 19:11:23 2008 |
| MD5 Checksum: | b850181fd9989fd172688f24e794c298 |
|
| /// File Name: |
MDVSA-2008-010.txt |
Description:
|
Mandriva Linux Security Advisory - A denial of service flaw was discovered by the Google Security Team in the way libxml2 processes malformed XML content. This flaw could cause the application to stop responding.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7090 | | Related CVE(s): | CVE-2007-6284 | | Last Modified: | Jan 11 20:48:03 2008 |
| MD5 Checksum: | 0ac803914998a47b135ab3740d0315ba |
|
| /// File Name: |
sa28255.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28255/ | | File Size: | 6981 | | Last Modified: | Jan 3 13:16:15 2008 |
| MD5 Checksum: | 63aa35f08a54becfd5f3ba9594c5e917 |
|
| /// File Name: |
sa28434.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for dovecot. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/28434/ | | File Size: | 6886 | | Last Modified: | Jan 16 00:28:37 2008 |
| MD5 Checksum: | c52bee0b89667e475bc5ddab06f2cf40 |
|
| /// File Name: |
sa28487.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28487/ | | File Size: | 6866 | | Last Modified: | Jan 23 22:55:21 2008 |
| MD5 Checksum: | 2e31c5910ad11bfaf3e719b8333b4576 |
|
| /// File Name: |
sa28339.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for tomboy. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28339/ | | File Size: | 6820 | | Last Modified: | Jan 8 20:11:56 2008 |
| MD5 Checksum: | d2bf696fd1df8f550cdb56bde9f94a1b |
|
| /// File Name: |
MDVSA-2008-029.txt |
Description:
|
Mandriva Linux Security Advisory - Ruby network libraries Net::HTTP, Net::IMAP, Net::FTPTLS, Net::Telnet, Net::POP3, and Net::SMTP, up to Ruby version 1.8.6 are affected by a possible man-in-the-middle attack, when using SSL, due to a missing check of the CN (common name) attribute in SSL certificates against the server's hostname.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6785 | | Related CVE(s): | CVE-2008-5162, CVE-2007-5770 | | Last Modified: | Jan 31 23:54:02 2008 |
| MD5 Checksum: | d9eee1e6f905cf3d8a905cf24119a373 |
|
| /// File Name: |
USN-567-1.txt |
Description:
|
Ubuntu Security Notice 567-1 - It was discovered that in very rare configurations using LDAP, Dovecot may reuse cached connections for users with the same password. As a result, a user may be able to login as another if the connection is reused. The default Ubuntu configuration of Dovecot was not vulnerable.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6333 | | Related CVE(s): | CVE-2007-6598 | | Last Modified: | Jan 10 18:05:58 2008 |
| MD5 Checksum: | a4660458a06a9e2858f02c1b75c05236 |
|
| /// File Name: |
USN-560-1.txt |
Description:
|
Ubuntu Security Notice 560-1 - Jan Oravec discovered that Tomboy did not properly setup the LD_LIBRARY_PATH environment variable. A local attacker could exploit this to execute arbitrary code as the user invoking the program.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6241 | | Related CVE(s): | CVE-2005-4790 | | Last Modified: | Jan 8 11:59:39 2008 |
| MD5 Checksum: | 57cc8958280a428127b8a3602e53a064 |
|
| /// File Name: |
SSRT071468.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running the X Font Server (xfs). The vulnerability could be exploited remotely to execute arbitrary code.
| | Homepage: | http://www.hp.com/ | | File Size: | 6120 | | Related CVE(s): | CVE-2007-4990 | | Last Modified: | Jan 15 15:27:27 2008 |
| MD5 Checksum: | c48071a57ef71848f91cfbebbb70443c |
|
| /// File Name: |
SSRT071463.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA Transport. The vulnerability could be exploited remotely to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6112 | | Related CVE(s): | CVE-2007-6425 | | Last Modified: | Jan 23 23:23:13 2008 |
| MD5 Checksum: | e792e02b727dc82a389280021f36ff76 |
|
| /// File Name: |
sa28526.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for apache. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28526/ | | File Size: | 6046 | | Last Modified: | Jan 18 03:50:24 2008 |
| MD5 Checksum: | faa619e29b0d3dba5776431c26610b23 |
|
| /// File Name: |
sa28628.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions and corrupt a file system.
| | Homepage: | http://secunia.com/advisories/28628/ | | File Size: | 5786 | | Last Modified: | Jan 25 18:58:49 2008 |
| MD5 Checksum: | 3d0afd63cce079be97bf98fad56f0b33 |
|
| /// File Name: |
sa28584.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for x11-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28584/ | | File Size: | 5765 | | Last Modified: | Jan 25 18:58:49 2008 |
| MD5 Checksum: | 11389e0e54e470e010b86a147dbeeb74 |
|
| /// File Name: |
sa27699.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered some vulnerabilities and a weakness in Layton HelpBox, which can be exploited by malicious users to conduct script insertion and SQL injection attacks and compromise a vulnerable system, and by malicious people to identify valid user accounts and conduct cross-site scripting, script insertion, and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/27699/ | | File Size: | 5670 | | Last Modified: | Jan 8 20:11:40 2008 |
| MD5 Checksum: | 51f9e5d030b95073d57730ed13bf41aa |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
