Section: .. / 0805-advisories /
| /// File Name: |
glsa-200805-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-08 - The namesx and uhnames modules do not properly validate network input, leading to a buffer overflow. Versions less than 1.1.19 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2399 | | Related CVE(s): | CVE-2008-1925 | | Last Modified: | May 9 13:53:32 2008 |
| MD5 Checksum: | cdb2393100a4faec5400559fd35ff0f8 |
|
| /// File Name: |
glsa-200805-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-07 - LTSP version 4.2, ships prebuilt copies of programs such as the Linux Kernel, the X.org X11 server (GLSA 200705-06, GLSA 200710-16, GLSA 200801-09), libpng (GLSA 200705-24, GLSA 200711-08), Freetype (GLSA 200705-02, GLSA 200705-22) and OpenSSL (GLSA 200710-06, GLSA 200710-30) which were subject to multiple security vulnerabilities since 2006. Please note that the given list of vulnerabilities might not be exhaustive. Versions less than 5.0 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4366 | | Last Modified: | May 9 13:53:07 2008 |
| MD5 Checksum: | b99107d7cc4efe620d3b52050bad0f8f |
|
| /// File Name: |
glsa-200805-06.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-06 - Viesturs reported that the default configuration for Gentoo's init script (/etc/conf.d/firebird) sets the ISC_PASSWORD environment variable when starting Firebird. It will be used when no password is supplied by a client connecting as the SYSDBA user. Versions less than 2.0.3.12981.0-r6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2857 | | Related CVE(s): | CVE-2008-1880 | | Last Modified: | May 9 13:52:37 2008 |
| MD5 Checksum: | 85f645f65baa0b3fe9c141d775831681 |
|
| /// File Name: |
MDVSA-2008-099.txt |
Description:
|
Mandriva Linux Security Advisory - A heap-based buffer overflow vulnerability was found in how ImageMagick parsed XCF files. If ImageMagick opened a specially-crafted XCF file, it could be made to overwrite heap memory beyond the bounds of its allocated memory, potentially allowing an attacker to execute arbitrary code on the system running ImageMagick. Another heap-based buffer overflow vulnerability was found in how ImageMagick processed certain malformed PCX images. If ImageMagick opened a specially-crafted PCX image file, an attacker could possibly execute arbitrary code on the system running ImageMagick.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7839 | | Related CVE(s): | CVE-2008-1096, CVE-2008-1097 | | Last Modified: | May 9 13:43:27 2008 |
| MD5 Checksum: | 80671fb91b231ddf51ff6f60aef286c4 |
|
| /// File Name: |
USN-611-3.txt |
Description:
|
Ubuntu Security Notice 611-3 - USN-611-1 fixed a vulnerability in Speex. This update provides the corresponding update for GStreamer Good Plugins. It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 15260 | | Related CVE(s): | CVE-2008-1686 | | Last Modified: | May 9 13:31:28 2008 |
| MD5 Checksum: | 26dd30b7333f05b291b099650b8a9e89 |
|
| /// File Name: |
USN-611-2.txt |
Description:
|
Ubuntu Security Notice 611-2 - USN-611-1 fixed a vulnerability in Speex. This update provides the corresponding update for ogg123, part of vorbis-tools. It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7294 | | Related CVE(s): | CVE-2008-1686 | | Last Modified: | May 9 13:30:57 2008 |
| MD5 Checksum: | a2c8b46ce1f3301d099c7eb67973f3b0 |
|
| /// File Name: |
USN-611-1.txt |
Description:
|
Ubuntu Security Notice 611-1 - It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 13345 | | Related CVE(s): | CVE-2008-1686 | | Last Modified: | May 9 13:30:27 2008 |
| MD5 Checksum: | 218704e90625568f9bf94f8cb18d0063 |
|
| /// File Name: |
novell-stackoverflow.txt |
Description:
|
Novell Client versions 4.91 SP4 and below suffer from a local stack overflow vulnerability.
| | Author: | laurent gaffi | | File Size: | 2335 | | Last Modified: | May 9 13:20:52 2008 |
| MD5 Checksum: | dcfbc10b009f3e54667c1a67566d1691 |
|
| /// File Name: |
sa30065.txt |
Description:
|
Secunia Security Advisory - Khashayar Fereidani has discovered some vulnerabilities in Maian Links, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/30065/ | | File Size: | 2300 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | e82f1d2c0cef9017e6897d47eba48b27 |
|
| /// File Name: |
sa30069.txt |
Description:
|
Secunia Security Advisory - Khashayar Fereidani has reported some vulnerabilities in Maian Greetings, which can be exploited by malicious people to conduct cross-site scripting or SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30069/ | | File Size: | 2551 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | 03506958cbf544d575eda259f08b621a |
|
| /// File Name: |
sa30072.txt |
Description:
|
Secunia Security Advisory - Khashayar Fereidani has discovered some vulnerabilities in Maian Search, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30072/ | | File Size: | 2507 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | 6b54c9ea8e924fc3b27d0a5dc37c36ba |
|
| /// File Name: |
sa30083.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30083/ | | File Size: | 2622 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | 0fff22cfd6b031f72e83bf209fb7929e |
|
| /// File Name: |
sa30120.txt |
Description:
|
Secunia Security Advisory - Russ McRee has reported a vulnerability in InfoBiz Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/30120/ | | File Size: | 2033 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | a8a5896f3567440c99551f6ca871c908 |
|
| /// File Name: |
sa30127.txt |
Description:
|
Secunia Security Advisory - InjEctOr5 has reported a vulnerability in PostcardMentor, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30127/ | | File Size: | 2027 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | b5b6fae3781a6c1f16fb633c097c1d48 |
|
| /// File Name: |
sa30154.txt |
Description:
|
Secunia Security Advisory - RoMaNcYxHaCkEr has reported a vulnerability in Cyberfolio, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30154/ | | File Size: | 2268 | | Last Modified: | May 9 12:56:08 2008 |
| MD5 Checksum: | bd5097202d97208e3cf04c1f52c8173c |
|
| /// File Name: |
sa29958.txt |
Description:
|
Secunia Security Advisory - Thomas Pollet has reported a vulnerability in IBM Lotus Expeditor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29958/ | | File Size: | 2470 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | aed946be54e86ef962175c615e13acaf |
|
| /// File Name: |
sa29962.txt |
Description:
|
Secunia Security Advisory - Nico Golde has reported a vulnerability in PeerCast, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29962/ | | File Size: | 2436 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 465b36b80b86db383ebe8e3a147ffb71 |
|
| /// File Name: |
sa29970.txt |
Description:
|
Secunia Security Advisory - cO2 has reported a vulnerability in FluentCMS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29970/ | | File Size: | 1986 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 094373de8bcad1d54e3c0731742fc38a |
|
| /// File Name: |
sa29971.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29971/ | | File Size: | 1874 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 0ffe8c539b948b3443351ad4ddc210f3 |
|
| /// File Name: |
sa29975.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29975/ | | File Size: | 2073 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 344c52b071692dc98eee730ce4f22053 |
|
| /// File Name: |
sa29976.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in IBM WebSphere Application Server, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/29976/ | | File Size: | 2059 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 4f4486ede067b0634cbb196ed6620c92 |
|
| /// File Name: |
sa29983.txt |
Description:
|
Secunia Security Advisory - M.Hasran Addahroni has reported a vulnerability in Softbiz Web Host Directory Script, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29983/ | | File Size: | 2165 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 73d0bc3a54009371c8f815fb010802d6 |
|
| /// File Name: |
sa29984.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for dbmail. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/29984/ | | File Size: | 2036 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 8219f12cbe681dcbd7f406d3dd58ea60 |
|
| /// File Name: |
sa29986.txt |
Description:
|
Secunia Security Advisory - HP has acknowledged some vulnerabilities in HP-UX, which can potentially be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29986/ | | File Size: | 2172 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | eafb537ad432ae58b6f689f5e110bd4a |
|
| /// File Name: |
sa29992.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for libpng. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/29992/ | | File Size: | 2037 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | eb6e200312c0d069dfaecd7eb6f73e81 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
