.:[ packet storm ]:.
                           
four continents, one idea
four continents, one idea

 Section:  .. / 0603-advisories  /

Page 5 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 100 - 125 of 667
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: glsa-200602-13.txt
Description:
 Gentoo Linux Security Advisory GLSA 200602-13 - The SetImageInfo function was found vulnerable to a format string mishandling. Daniel Kobras discovered that the handling of %-escaped sequences in filenames passed to the function is inadequate in ImageMagick GLSA 200602-06 and the same vulnerability exists in GraphicsMagick. Versions less than 1.1.7 are affected.
Homepage:http://security.gentoo.org
File Size:2747
Last Modified:Mar 2 10:20:26 2006
MD5 Checksum:dca584621e625df95b471b97a995c50f

 ///  File Name: glsa-200602-14.txt
Description:
 Gentoo Linux Security Advisory GLSA 200602-14 - Javier Fernandez-Sanguino has discovered that the lib/toascii.nw and shell/roff.mm scripts insecurely create temporary files with predictable filenames. Versions less than 2.9-r5 are affected.
Homepage:http://security.gentoo.org
File Size:2659
Last Modified:Mar 2 10:20:52 2006
MD5 Checksum:5d7ed5289b9c5a33f6fb71c903e330e9

 ///  File Name: glsa-200603-01.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-01 - Patrik Karlsson reported that WordPress 1.5.2 makes use of an insufficiently filtered User Agent string in SQL queries related to comments posting. This vulnerability was already fixed in the 2.0-series of WordPress. Versions less than or equal to 1.5.2 are affected.
Homepage:http://security.gentoo.org
File Size:2599
Last Modified:Mar 8 05:41:28 2006
MD5 Checksum:2afbd15e6263064c8a1d777cb46cc3cd

 ///  File Name: glsa-200603-02.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-02 - CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf code is vulnerable to several heap overflows (GLSA 200512-08) as well as several buffer and integer overflows discovered by Chris Evans (CESA-2005-003). Versions less than 2.0.2-r8 are affected.
Homepage:http://security.gentoo.org
File Size:3672
Last Modified:Mar 8 05:41:46 2006
MD5 Checksum:d8ac3f60a9164440a1c29d1133a22e16

 ///  File Name: glsa-200603-03.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-03 - MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodec_default_get_buffer() function discovered by Simon Kilvington (see GLSA 200601-06). Furthermore, AFI Security Research discovered two integer overflows in ASF file format decoding, in the new_demux_packet() function from libmpdemux/demuxer.h and the demux_asf_read_packet() function from libmpdemux/demux_asf.c. Versions less than 1.0.20060217 are affected.
Homepage:http://security.gentoo.org
File Size:3096
Last Modified:Mar 8 05:42:14 2006
MD5 Checksum:1faeb2417156c9e931c8aa53911ef7dc

 ///  File Name: glsa-200603-04.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-04 - Steve Kemp discovered two format string errors in IMAP Proxy. Versions less than 1.2.4 are affected.
Homepage:http://security.gentoo.org
File Size:2565
Last Modified:Mar 8 05:51:32 2006
MD5 Checksum:979e41ac83201b895a8fbf1b84e108a1

 ///  File Name: glsa-200603-05.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-05 - Jean-Sebastien Guay-Leroux discovered a boundary error in the fullpath() function in misc.c when processing overly long file and directory names in ZOO archives. Versions less than 2.10-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2718
Last Modified:Mar 8 05:51:47 2006
MD5 Checksum:ce5ff45f38a770a93b6e68370dc50278

 ///  File Name: glsa-200603-06.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-06 - Jim Meyering discovered a flaw in the handling of certain header fields that could result in a buffer overflow when extracting or listing the contents of an archive. Versions less than 1.15.1-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2653
Last Modified:Mar 11 03:36:47 2006
MD5 Checksum:30806181c945ed05946ece95da5ec66c

 ///  File Name: glsa-200603-07.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-07 - Chris Moore discovered a buffer overflow in a special class of lexicographical scanners generated by flex. Only scanners generated by grammars which use either REJECT, or rules with a variable trailing context might be at risk. Versions less than 2.5.33-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2717
Last Modified:Mar 11 03:39:22 2006
MD5 Checksum:9e8dd77863964de8d4f54aa799c58596

 ///  File Name: glsa-200603-08.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-08 - OpenPGP is the standard that defines the format of digital signatures supported by GnuPG. OpenPGP signatures consist of multiple sections, in a strictly defined order. Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that certain illegal signature formats could allow signed data to be modified without detection. GnuPG has previously attempted to be lenient when processing malformed or legacy signature formats, but this has now been found to be insecure. Versions less than 1.4.2.2 are affected.
Homepage:http://security.gentoo.org
File Size:3198
Last Modified:Mar 11 03:39:43 2006
MD5 Checksum:fe3204fe45788d6ac2d0202780f95691

 ///  File Name: glsa-200603-09.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-09 - SquirrelMail does not validate the right_frame parameter in webmail.php, possibly allowing frame replacement or cross-site scripting. Martijn Brinkers and Scott Hughes discovered that MagicHTML fails to handle certain input correctly, potentially leading to cross-site scripting. Vicente Aguilera reported that the sqimap_mailbox_select function did not strip newlines from the mailbox or subject parameter, possibly allowing IMAP command injection. Versions less than 1.4.6 are affected.
Homepage:http://security.gentoo.org/
File Size:3452
Related CVE(s):CVE-2006-0188, CVE-2006-0195, CVE-2006-0377
Last Modified:Mar 13 01:06:54 2006
MD5 Checksum:4cf177f6c91490b96e88e0ebc0d59496

 ///  File Name: glsa-200603-10.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-10 - Luigi Auriemma reported that Cube is vulnerable to a buffer overflow in the sgetstr() function (CVE-2006-1100) and that the sgetstr() and getint() functions fail to verify the length of the supplied argument, possibly leading to the access of invalid memory regions (CVE-2006-1101). Furthermore, he discovered that a client crashes when asked to load specially crafted mapnames (CVE-2006-1102). Versions less than or equal to 20050829 are affected.
Homepage:http://security.gentoo.org
File Size:3537
Last Modified:Mar 13 22:03:03 2006
MD5 Checksum:ddb0d04d4e77acb2cb05e637379ce5db

 ///  File Name: glsa-200603-11.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-11 - Luigi Auriemma discovered that Freeciv could be tricked into the allocation of enormous chunks of memory when trying to uncompress malformed data packages, possibly leading to an out of memory condition which causes Freeciv to crash or freeze. Versions less than 2.0.8 are affected.
Homepage:http://security.gentoo.org
File Size:2755
Last Modified:Mar 17 01:15:15 2006
MD5 Checksum:abffc8376a2e29f58ccb925f9fbce746

 ///  File Name: glsa-200603-12.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-12 - zoo is vulnerable to a new buffer overflow due to insecure use of the strcpy() function when trying to create an archive from certain directories or filenames. Versions less than 2.10-r2 are affected.
Homepage:http://security.gentoo.org
File Size:2636
Last Modified:Mar 17 01:15:24 2006
MD5 Checksum:50ab1d0e6306f76eaadcbca1075dc3bc

 ///  File Name: glsa-200603-13.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-13 - Matt Van Gundy discovered that PEAR-Auth did not correctly validate data passed to the DB and LDAP containers. Versions less than 1.2.4 are affected.
Homepage:http://security.gentoo.org
File Size:2587
Last Modified:Mar 21 22:46:04 2006
MD5 Checksum:66a893b598796aba6ff6fcf2c60cb33b

 ///  File Name: glsa-200603-14.ttx
Description:
 Gentoo Linux Security Advisory GLSA 200603-14 - An unspecified privilege escalation vulnerability in the rshd server of Heimdal has been reported. Versions less than 0.7.2 are affected.
Homepage:http://security.gentoo.org
File Size:2517
Related CVE(s):CAN-2006-0582
Last Modified:Mar 21 22:46:09 2006
MD5 Checksum:6facecb52367f33e35e99460268fcfa0

 ///  File Name: glsa-200603-15.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-15 - Lincoln Stein discovered that Crypt::CBC fails to handle 16 bytes long initializiation vectors correctly when running in the RandomIV mode, resulting in a weaker encryption because the second part of every block will always be encrypted with zeros if the blocksize of the cipher is greater than 8 bytes. Versions less than 2.17 are affected.
Homepage:http://security.gentoo.org
File Size:2687
Last Modified:Mar 21 22:46:14 2006
MD5 Checksum:fcedd08bcc8639730e6a5289232f5f6e

 ///  File Name: glsa-200603-16.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-16 - Ulf Harnhammar discovered a buffer overflow in Metamail when processing mime boundraries. Versions less than 2.7.45.3-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2416
Last Modified:Mar 21 22:46:20 2006
MD5 Checksum:7b5409819040192993832187d27ccdaf

 ///  File Name: glsa-200603-17.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-17 - INFIGO discovered a problem in the URL handling code. Buffers that are allocated on the stack can be overflowed inside of nextCGIarg() function. Versions less than 0.1217 are affected.
Homepage:http://security.gentoo.org
File Size:2541
Last Modified:Mar 21 22:45:39 2006
MD5 Checksum:bcaf4f4795d5db1ca44006719ecbb850

 ///  File Name: glsa-200603-18.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-18 - Carsten Lohrke of Gentoo Linux reported that Pngcrush contains a vulnerable version of zlib (GLSA 200507-19). Versions less than 1.6.2 are affected.
Homepage:http://security.gentoo.org
File Size:2588
Last Modified:Mar 21 22:45:45 2006
MD5 Checksum:fc5ef9b24ea10ed470e4e4e3c36c0f3d

 ///  File Name: glsa-200603-19.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-19 - Ulf Harnhammar reported a possible buffer overflow in the handling of TFTP URLs in libcurl due to the lack of boundary checks. Versions less than 7.15.3 are affected.
Homepage:http://security.gentoo.org
File Size:2959
Last Modified:Mar 21 22:45:52 2006
MD5 Checksum:bcd075671569747691ac6ec7e26ea427

 ///  File Name: glsa-200603-20.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-20 - The Macromedia Flash Player contains multiple unspecified vulnerabilities. Versions less than 7.0.63 are affected.
Homepage:http://security.gentoo.org
File Size:2722
Last Modified:Mar 21 22:45:58 2006
MD5 Checksum:cbab59e469de403ee9280ae557318894

 ///  File Name: glsa-200603-21.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-21 - ISS discovered that Sendmail is vulnerable to a race condition in the handling of asynchronous signals. Versions less than 8.13.6 are affected.
Homepage:http://security.gentoo.org
File Size:2957
Last Modified:Mar 23 21:44:00 2006
MD5 Checksum:91efedcdb1d58da7efb31edba5a5d2a8

 ///  File Name: glsa-200603-22.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-22 - Multiple vulnerabilities in PHP allow remote attackers to inject arbitrary HTTP headers, perform cross site scripting or in some cases execute arbitrary code. Versions less than 4.4.2 are affected.
Homepage:http://security.gentoo.org
File Size:3697
Last Modified:Mar 28 07:40:29 2006
MD5 Checksum:81837311cd1f94ef97031e5edcde2938

 ///  File Name: glsa-200603-23.txt
Description:
 Gentoo Linux Security Advisory GLSA 200603-23 - NetHack, Slash'EM and Falcon's Eye have been found to be incompatible with the system used for managing games on Gentoo Linux. As a result, they cannot be played securely on systems with multiple users. Versions less than or equal to 3.4.3-r1 are affected.
Homepage:http://security.gentoo.org
File Size:4091
Last Modified:Mar 31 10:02:11 2006
MD5 Checksum:0b9cce49043361f430c188ab5c66fd0d
 

 ///  Last 10 Files
  1. :· phpemlak-sql.txt
  2. :· scip-dreambox.txt
  3. :· logmein-activex.txt
  4. :· najdisi-overflow.txt
  5. :· ipb235-multi.txt
  6. :· hoagie_snoop.c
  7. :· ZDI-08-054.txt
  8. :· MDVSA-2008-181.txt
  9. :· kisgearth-0.01f.tar.bz2
  10. :· firefox301-exec.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· scip-dreambox.txt
  2. :· ZDI-08-054.txt
  3. :· MDVSA-2008-181.txt
  4. :· firefox301-exec.txt
  5. :· SSRT080118.txt
  6. :· USN-638-1.txt
  7. :· SSRT080106.txt
  8. :· PLSA-2008-31.txt
  9. :· MDVSA-2008-180-1.txt
  10. :· kyocera-upload.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· phpemlak-sql.txt
  2. :· logmein-activex.txt
  3. :· najdisi-overflow.txt
  4. :· ipb235-multi.txt
  5. :· hoagie_snoop.c
  6. :· dotproject-sqlxss.txt
  7. :· mercadolibre-xssrfi.txt
  8. :· friendly-exec.txt
  9. :· friendly-fwremotecfg.txt
  10. :· acoustica-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· kisgearth-0.01f.tar.bz2
  2. :· lynis-1.2.0.tar.gz
  3. :· advchk-2.10.tar.gz
  4. :· fwknop-1.9.7.tar.gz
  5. :· tor.uclibc.i686.20080822.iso
  6. :· tor-0.2.0.30.tar.gz
  7. :· sipwitch-0.3.0.tar.gz
  8. :· DirBuster-0.11-src.tar.bz2
  9. :· collabreate-defcon.tgz
  10. :· Grendel-Scan-v1.0-src.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· OpenSSH-4.4p1-backdoored.tar.gz
  2. :· strongswan-4.2.6.tar.gz
  3. :· freebsd-master.txt
  4. :· nufw-2.2.16.tar.gz
  5. :· linux-cbexec.txt
  6. :· openvas-contest.txt
  7. :· H2HC-CFP-2008.txt
  8. :· freebsd-setexec.txt
  9. :· freebsd-reverse.txt
  10. :· ios-shellcode.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice