PDA

View Full Version : Security Announcements

Pages : [1] 2
  1. FreeBSD Security Advisory FreeBSD-SA-05:09.htt
  2. [DSA 721-1] New squid packages fix ACL bypass
  3. [DSA 722-1] New smail packages fix arbitrary code execution
  4. Reminder to Update Fantastico Applications
  5. Critical Kayako eSupport Vulnerability
  6. phpMyChat Version 0.14.5 May Be Insecure
  7. Fedora Core 3 - php 4.3.11-2.5
  8. FreeBSD Security Advisory - BIND 9 DNSSEC remote DoS
  9. FreeBSD Security Advisory - gzip directory traversal
  10. FreeBSD Security Advisory - Infinite loops in tcpdump
  11. FreeBSD Security Advisory - TCP connection stall denial of service
  12. FreeBSD Security Advisory - bzip2 denial of service
  13. FreeBSD Security Advisory - ipfw packet matching errors
  14. FreeBSD Security Advisory: IPSec Incorrect Key Usage
  15. FreeBSD Security Advisory: zlib Buffer Overflow
  16. Fedora Core 3 - Apache HTTP Server 2 Various Security Fixes
  17. Fedora Core 4 - Apache HTTP Server 2 Various Security Fixes
  18. Debian Security Advisory - zlib remote DoS
  19. Gentoo Linux Security Advisory GLSA 200508-02 - ProFTPD
  20. ModernBill Security Announcement - Arbitrary Code Execution
  21. phpWebSite "module" Parameter SQL Injection Vulnerability
  22. Ventrilo Server Denial of Service Vulnerability
  23. Debian Security Advisory - proftpd
  24. Debian Security Advisory - sqwebmail and courier
  25. Gentoo Security Advisory - pam_ldap
  26. Gentoo Security Advisory - phpWebSite
  27. Gentoo : Macromedia Flash Player: Remote arbitrary code execution
  28. Gentoo: inkscape vulnerability
  29. Ubuntu: ipsec-tools vulnerability
  30. Ubuntu: w3c-libwww vulnerability
  31. Coppermine Photo Gallery "relocate_server.php"
  32. PHP-Fusion 6.x: vulnerability in PHP-Fusion
  33. Ubuntu: krb4, krb5 vulnerabilities
  34. phpMyAdmin: XSS vulnerabilities
  35. Gentoo: webmin usermin
  36. Mozilla Firefox: Long-title temporary startup unresponsiveness
  37. Ubuntu: courier vulnerability
  38. Horde: security release that fixes cross site scripting
  39. Gentoo: phpmyadmin
  40. Gentoo: sendmail program in Xmail
  41. Ubuntu: ffmpeg vulnerability
  42. Gentoo: opera
  43. iTunes / Quicktime Potential Exploit
  44. Debian: dhis-tools-dns -- insecure temporary file
  45. Gentoo: rssh
  46. Gentoo: XnView
  47. PhpDocumentor File Inclusion Vulnerabilities
  48. FreeBSD: texindex temporary file privilege escalation
  49. FreeBSD-SA: ee temporary file privilege escalation
  50. FreeBSD: cpio
  51. FreeBSD: ipfw IP fragment denial of service
  52. Gentoo: clamav buffer overflow -may lead to remote execution of arbitrary code
  53. Gentoo: Blender is vulnerable to a buffer overflow that may be exploited by attacker
  54. Gentoo: flaw in Wine in the handling of Windows Metafiles (WMF) files
  55. Fedora: tetex update fixes some vulnerabilities
  56. Debian: crawl allow problem-local attackers to gain group games privileges.
  57. Mandriva: Updated perl-Net_SSLeay packages fix vulnerability
  58. Debian: imagemagick -- missing shell meta sanitising
  59. Debian: several vulnerabilities
  60. Gentoo: Gallery is possibly vulnerable to a cross-site scripting attack
  61. Gentoo: Trac is vulnerable to a cross-site scripting attack
  62. SUSE LINUX: remote denial of service Part 1
  63. Debian: vulnerabilities and a security issue
  64. Debian Security Advisory
  65. Gentoo: flaw in OpenSSH and Dropbear
  66. Ubuntu: heimdal-servers DoS vulnerability
  67. Gentoo: GnuPG signature verification flaw
  68. Red Hat Enterprise Linux 4: tar security update
  69. Debian: vulnerabilities in xpdf
  70. Ubuntu: irssi-text-Denial of Service vulnerability
  71. Apple Macintosh OS X: multiple vulnerabilities.
  72. Linux Security Update: patches for ImageMagick, bzip2, tar
  73. Debian: Squirrelmail vulnerabilities fix
  74. Gentoo: Metamail vulnerability
  75. Gentoo: Crypt::CBC vulnerability
  76. Gentoo: PEAR-Auth data verification vulnerability
  77. Debian: crossfire vulnerability
  78. cURL/libcURL vulnerability
  79. Debian: ilohamail -- missing input sanitising
  80. Ubuntu: kaffeine vulnerability
  81. Mandriva: Kaffeine vulnerability
  82. Debian: sash -- buffer overflows
  83. Ubuntu: mozilla-firefox, firefox vulnerabilities
  84. Debian: abcmidi -- buffer overflows
  85. Ethereal: DoS or compromise of vulnerable system.
  86. SUSE Linux: Thunderbird security bugs
  87. Debian: cyrus-sasl2 -- programming error Part 1
  88. Fast Click SQL Lite: remote file inclusion
  89. Gentoo: Quake 3 vulnerability
  90. gentoo: Ruby: Denial of Service
  91. Gentoo: pdnsd is vulnerable to a buffer overflow
  92. Gentoo: PHP is affected by multiple issues
  93. Gentoo update for mozilla-thunderbird-attack vulnerability
  94. Ubuntu: quagga velnerability
  95. Ubuntu: dia-gnome vulnerabilities
  96. Red Hat: Updated postgresql packages
  97. Red Hat: Updated PHP packages
  98. Advanced Linux Environment 3 Security Update
  99. Spamassassin updates: flaw in spamd daemon
  100. Clan Manager Pro: two vulnerabilities
  101. Ubuntu: security issue
  102. Debian: integer overflow
  103. Gentoo: DokuWiki's spell checker flaw
  104. Debian: horde3 vulnerability
  105. Opera Web Browser: integer overflow vulnerability
  106. Gentoo: aRts arbitrary code with elevated privileges vulnerability
  107. Webmin Directory Traversal Vulnerability
  108. Mambo: Galleria module vulnerability
  109. Quake 3: Remote Stack Overflow Exploit
  110. Gentoo: heap overflow in mpg123
  111. Red Hat: SquirrelMail local file disclosure flaw
  112. Gentoo: PostgreSQL: SQL injection flaw
  113. Mambo Simpleboard component "sbp" vulnerability
  114. Mandriva: xine-lib overflow vulnerability
  115. UnixWare 7.1.3 UnixWare 7.1.4 : Mozilla Multiple Vulnerabilities
  116. Red Hat: PHP multiple security issues
  117. Ubuntu: buffer overflows in libmms
  118. FlushCMS: File Inclusion Vulnerability
  119. Linux kernel: execution of arbitrary code with root privileges
  120. Merak Mail Server: IceWarp Web Mail vulnerability
  121. Debian: rssh bypass of access restrictions
  122. Debian: samba denial of service vulnerability I
  123. Mandriva: kernel update to fix vulnerabilities
  124. PhpLinkExchange: remote file inclusion flaw
  125. Ubuntu: security issues
  126. Debian: programming error security advisory
  127. Debian: race condition-kernel-source advisory
  128. Gentoo: xine-lib vulnerability
  129. Red Hat Enterprise Linux 3: kernel update: Part 1
  130. Mozilla: Thunderbird, SeaMonkey vulnerabilities
  131. Mozilla: multiple vulnerabilities
  132. kernel updates for SUSE Linux 9.1 - 10.1 Part 1
  133. Debian: ethereal -- several vulnerabilities
  134. Debian: drupal -- several vulnerabilities
  135. Ubuntu: firefox vulnerabilities
  136. Ubuntu: apache can be exploited
  137. Debian: wrong input sanitising
  138. Ubuntu: TIFF library weaknesses
  139. Red Hat: critical seamonkey security update
  140. Debian: tiff -- several vulnerabilities
  141. PHP 4.4.3 released: fixes security issues
  142. Ubuntu: security issue
  143. Gentoo: Mozilla Firefox vulnerabilities
  144. Gentoo: Thunderbird vulnerabilities
  145. Gentoo:
  146. Mambo: arbitrary files vulnerability
  147. Gentoo Linux: Ruby on Rails remote execution of arbitrary Ruby scripts
  148. WEBInsta CMS: vulnerabilities
  149. ImageMagick ReadSGIImage() Heap Overflow
  150. SUSE Linux Enterprise 9: security issues
  151. SUSE: arbitrary code execution
  152. Debian: Drupal update
  153. Debian: SquirrelMail vulnerabilities
  154. cPanel vulnerabilities
  155. Mambo: bigAPE-Backup vulnerability
  156. Debian: clamav -- buffer overflow
  157. Gentoo: fbida vulnerability
  158. Debian: sendmail -- programming error
  159. Cisco Firewall Products Unintentional Password Modification
  160. Red Hat update for ImageMagick
  161. Gentoo: Heartbeat DOS vulnerability
  162. Mandriva update for MySQL
  163. phpCOIN: _CCFG[_PKG_PATH_INCL]" File Inclusion
  164. Zend Platform Multiple Vulnerabilities
  165. Mandriva update for xorg-x11
  166. phpGroupWare vulnerability
  167. rPath update for mysql
  168. Gentoo: Motor uses a vulnerable ktools library
  169. Gentoo update for php
  170. Gentoo update for wireshark
  171. Debian: mysql-dfsg-4.1 vulnerabilities
  172. Debian: apache -- missing input sanitising vulnerablility
  173. Microsoft Word 2000 vulnerability
  174. Debian: cheesetracker -- buffer overflow
  175. Debian: Imagemagick vulnerabilities
  176. OpenSSL versions: RSA key forgery
  177. Mailman vulnerability
  178. WebAdmin "MDaemon" Account Access Vulnerability
  179. ISC BIND Denial of Service Vulnerabilities
  180. PHP-Fusion "maincore.php" SQL Injection Vulnerability
  181. TWiki "filename" Parameter Disclosure of Sensitive Information
  182. OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery
  183. MKPortal "index.php" Cross-Site Scripting Vulnerability
  184. Ubuntu update for bind9-security issue
  185. Debian: Ethereal network scanner vulnerabilities
  186. Drupal Pubcookie module vulnerability
  187. Ubuntu: update for PHP
  188. Symantec vulnerabilities
  189. Gentoo: FFmpeg: Buffer overflows
  190. Gentoo: xine-lib: Buffer overflows
  191. Downstat vulnerabilities
  192. Gentoo: LibXfont, monolithic X.org: Multiple integer overflows
  193. Drupal Userreview Module Cross-Site Scripting Vulnerability
  194. Debian: isakmpd -- programming error
  195. Gentoo: Mailman: Multiple vulnerabilities
  196. Debian: alsaplayer vulnerabilities
  197. PHPQuiz vulnerabilities
  198. PHP-Post vulnerabilities
  199. Mandriva: Mailman flaw
  200. Qualiteam X-Cart cmpi.php Variable Overwriting Vulnerability
  201. Mozilla Firefox: vulnerabilities
  202. Linux Kernel SCTP Denial of Service Vulnerability
  203. OpenSSH Identical Blocks Denial of Service Vulnerability
  204. Red Hat update for squirrelmail
  205. SUSE update for gzip
  206. Tikiwiki: Arbitrary command execution
  207. Gentoo: GnuTLS: RSA Signature Forgery
  208. rPath update for openssh
  209. Debian: OpenSSL vulnerabilities
  210. FreeBSD: openssh vulnerabilities
  211. OpenVPN Multiple Vulnerabilities
  212. Debian: mozilla -- several vulnerabilities
  213. Python: buffer overrun in repr() for unicode strings
  214. Gentoo: ncompress: Buffer Underflow
  215. SHTTPD vulnerability
  216. Red Hat: kernel update
  217. Multiple Vulnerabilities in Adobe Flash Player 8.0.24.0 and Earlier Versions
  218. Mambo Authentication Bypass
  219. Mandriva: kernel update
  220. ImageMagick PALM and DCM Buffer Overflows
  221. QK SMTP Server "RCPT TO:" Buffer Overflow Vulnerability
  222. Wiclear "path" File Inclusion Vulnerabilities
  223. Der Dirigent "cfg_dedi[dedi_path]" File Inclusion Vulnerabilities
  224. Debian: python2.3 -- buffer overflow
  225. phpAdsNew "lib-history.inc.php" Cross-Site Scripting and Script Insertion
  226. Debian: clamav -- several vulnerabilities
  227. Debian: maxdb-7.5.00 -- buffer overflow
  228. Gentoo: libmusicbrainz: Multiple buffer overflows
  229. Red Hat kernel update
  230. Gentoo: Cscope: Multiple buffer overflows
  231. Ubuntu update for mutt
  232. WordPress Unspecified Vulnerabilities
  233. Ubuntu update for wvWare
  234. PHP "htmlentities()" and "htmlspecialchars()" Buffer Overflows
  235. Ubuntu update for screen
  236. Debian: update for screen
  237. Ubuntu update for Ruby
  238. Ubuntu update for ImageMagick
  239. Red Hat update for qt
  240. ProFTPD Unspecified Vulnerability
  241. Ubuntu update for texinfo
  242. Fedora Core 6-Linux 2.6.x minix_bmap denial of service
  243. Mandriva: Updated xorg-x11/XFree86 packages fix integer overflow vulnerabilities
  244. Oliver "conf[motdfile]" File Inclusion Vulnerability
  245. Dovecot Cache File Off-By-One Vulnerability
  246. PHP Easy Download "file_info/admin/save.php" PHP Code Execution
  247. Debian update for imagemagick
  248. PHPQuickGallery "textFile" File Inclusion Vulnerability
  249. SUSE Update for Multiple Packages
  250. Ubuntu: ruby update