Section: .. / 0906-advisories /
| /// File Name: |
glsa-200906-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200906-05 - Multiple vulnerabilities have been discovered in Wireshark which allow for Denial of Service (application crash) or remote code execution. Versions less than 1.0.8 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 6265 | | Related CVE(s): | CVE-2008-4680, CVE-2008-4681, CVE-2008-4682, CVE-2008-4683, CVE-2008-4684, CVE-2008-4685, CVE-2008-5285, CVE-2008-6472, CVE-2009-0599, CVE-2009-0600, CVE-2009-0601, CVE-2009-1210, CVE-2009-1266, CVE-2009-1268, CVE-2009-1269, CVE-2009-1829 | | Last Modified: | Jun 30 16:03:53 2009 |
| MD5 Checksum: | d075826c7519c02bad45c3c7a05defd1 |
|
| /// File Name: |
sa35619.txt |
Description:
|
Secunia Security Advisory - Septemb0x has discovered a vulnerability in the DM Albums plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/ | | File Size: | 2464 | | Last Modified: | Jun 30 09:33:57 2009 |
| MD5 Checksum: | f378fa4b50144709c4bcbb29c9b54ec3 |
|
| /// File Name: |
sa35628.txt |
Description:
|
Secunia Security Advisory - Gabriel Menezes Nunes has discovered a security issue in Gizmo, which can be exploited by malicious people to conduct spoofing attacks.
| | Homepage: | http://secunia.com/ | | File Size: | 2302 | | Last Modified: | Jun 30 09:33:54 2009 |
| MD5 Checksum: | 5e62f4150bd4b5f4eb701fdbd2d433f8 |
|
| /// File Name: |
sa35653.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in the Vote For Us module for PunBB, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/ | | File Size: | 2413 | | Last Modified: | Jun 30 08:03:22 2009 |
| MD5 Checksum: | e3ab4a599e4f2b37ad3af9e72f810fca |
|
| /// File Name: |
sa35654.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in the Affiliation module for PunBB, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/ | | File Size: | 2423 | | Last Modified: | Jun 30 08:03:19 2009 |
| MD5 Checksum: | 2b61394e7a4a9f332e29281bae598085 |
|
| /// File Name: |
sa35582.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in KDE, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/ | | File Size: | 1949 | | Last Modified: | Jun 30 08:03:17 2009 |
| MD5 Checksum: | 969909729425948418edca4f1bd20b41 |
|
| /// File Name: |
sa35627.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in KDE, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/ | | File Size: | 2153 | | Last Modified: | Jun 30 08:03:14 2009 |
| MD5 Checksum: | 8a3d411a2ca6ab21b84967e0ea135220 |
|
| /// File Name: |
glsa-200906-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200906-04 - An error in the Apache Tomcat JK Connector might allow for an information disclosure flaw. The Red Hat Security Response Team discovered that mod_jk does not properly handle (1) requests setting the Content-Length header while not providing data and (2) clients sending repeated requests very quickly. Versions less than 1.2.27 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2672 | | Related CVE(s): | CVE-2008-5519 | | Last Modified: | Jun 29 19:28:12 2009 |
| MD5 Checksum: | e6a07d832be3549e5ef0367c3b755415 |
|
| /// File Name: |
glsa-200906-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200906-03 - Multiple errors in phpMyAdmin might allow the remote execution of arbitrary code or a Cross-Site Scripting attack. Versions less than 2.11.9.5 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2961 | | Related CVE(s): | CVE-2009-1150, CVE-2009-1151 | | Last Modified: | Jun 29 19:27:53 2009 |
| MD5 Checksum: | 73d9714f00b50473519685cfb2efaa8d |
|
| /// File Name: |
MDVSA-2009-146.txt |
Description:
|
Mandriva Linux Security Advisory 2009-146 - Security vulnerabilities has been identified and fixed in University of Washington IMAP Toolkit. These include multiple stack-based buffer overflows, a pointer dereference, and an off-by-one error.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7107 | | Related CVE(s): | CVE-2008-5005, CVE-2008-5006, CVE-2008-5514 | | Last Modified: | Jun 29 19:21:29 2009 |
| MD5 Checksum: | 5366191de3ab4efd60c6002621fc32cc |
|
| /// File Name: |
MDVSA-2009-145.txt |
Description:
|
Mandriva Linux Security Advisory 2009-145 - A vulnerability has been found and corrected in PHP. The updated packages have been patched to correct these issues.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 40438 | | Last Modified: | Jun 29 17:56:32 2009 |
| MD5 Checksum: | 7d45ecb326b5fddd44bc3ce23c2b7988 |
|
| /// File Name: |
glsa-200906-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200906-02 - A flaw in the Ruby standard library might allow remote attackers to cause a Denial of Service attack. Tadayoshi Funaba reported that BigDecimal in ext/bigdecimal/bigdecimal.c does not properly handle string arguments containing overly long numbers. Versions less than 1.8.6_p369 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2496 | | Related CVE(s): | CVE-2009-1904 | | Last Modified: | Jun 29 13:23:22 2009 |
| MD5 Checksum: | f680b416976cb5745d15eae1ba7e4408 |
|
| /// File Name: |
glsa-200906-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200906-01 - A vulnerability has been discovered in libpng that allows for information disclosure. Jeff Phillips discovered that libpng does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file. Versions less than 1.2.37 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2574 | | Related CVE(s): | CVE-2009-2042 | | Last Modified: | Jun 29 13:22:04 2009 |
| MD5 Checksum: | 9ba5fcf8171c13cdafe8abb723bfcc6d |
|
| /// File Name: |
MDVSA-2009-144.txt |
Description:
|
Mandriva Linux Security Advisory 2009-144 - Multiple security vulnerabilities has been identified and fixed in ghostscript. This update makes ghostscript link against the shared system jasper library which makes it easier to address presumptive future security issues in the jasper library.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8818 | | Related CVE(s): | CVE-2008-3520, CVE-2008-3522 | | Last Modified: | Jun 29 13:21:07 2009 |
| MD5 Checksum: | 9194265d630966382fc5f98826af6196 |
|
| /// File Name: |
sa35578.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/ | | File Size: | 2304 | | Last Modified: | Jun 29 05:08:40 2009 |
| MD5 Checksum: | a01c36b6bd70a2d278f24f6bf3f3ab3f |
|
| /// File Name: |
sa35577.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and cross-site request forgery attacks, and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/ | | File Size: | 2251 | | Last Modified: | Jun 29 05:08:38 2009 |
| MD5 Checksum: | d331f3ff5baec234ace4765ca2ad7e66 |
|
| /// File Name: |
sa35583.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for gstreamer-plugins-good. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
| | Homepage: | http://secunia.com/ | | File Size: | 2117 | | Last Modified: | Jun 29 05:08:35 2009 |
| MD5 Checksum: | cbdf52e069b17a47ebf92e8e9db1f56b |
|
| /// File Name: |
sa35546.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Tor, which can be exploited by malicious people to conduct spoofing attacks and cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/ | | File Size: | 2548 | | Last Modified: | Jun 29 05:08:33 2009 |
| MD5 Checksum: | a3a9ec89fe3a7a7210519f8f7faf8699 |
|
| /// File Name: |
sa35586.txt |
Description:
|
Secunia Security Advisory - NoGe has discovered a security issue in 2Bgal, which can be exploited by malicious people to disclose system information.
| | Homepage: | http://secunia.com/ | | File Size: | 2223 | | Last Modified: | Jun 29 05:08:30 2009 |
| MD5 Checksum: | 77d6264ecb189ac407381c00c3b012e9 |
|
| /// File Name: |
MDVSA-2009-143.txt |
Description:
|
Mandriva Linux Security Advisory 2009-143 - Multiple security vulnerabilities has been identified and fixed in netpbm. The updated packages have been patched to prevent this.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3611 | | Related CVE(s): | CVE-2008-3520, CVE-2008-3522 | | Last Modified: | Jun 26 18:54:00 2009 |
| MD5 Checksum: | 7bd323f53587c335fd03b3adfee2cf59 |
|
| /// File Name: |
06.26.09-1.txt |
Description:
|
iDefense Security Advisory 06.26.09 - Remote exploitation of a stack based buffer overflow vulnerability in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability exists within the 'rping' application, which is distributed with the Linux version of NNM. It is possible for a remote attacker to launch the 'rping' application and trigger a stack based buffer overflow. iDefense has confirmed the existence of this vulnerability in Network Node Manager version 7.53 for Linux. Previous versions may also be affected. The Windows version is not affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 4172 | | Related CVE(s): | CVE-2009-1420 | | Last Modified: | Jun 26 18:46:50 2009 |
| MD5 Checksum: | fcfb9e98fc9783860856994c31754272 |
|
| /// File Name: |
MDVSA-2009-141.txt |
Description:
|
Mandriva Linux Security Advisory 2009-141 - A number of security vulnerabilities have been discovered for Mozilla Thunderbird version 2.0.0.21. This update provides the latest Thunderbird to correct these issues.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 54906 | | Related CVE(s): | CVE-2009-1302, CVE-2009-1303, CVE-2009-1304, CVE-2009-1305, CVE-2009-1306, CVE-2009-1307, CVE-2009-1308, CVE-2009-1309, CVE-2009-2210, CVE-2009-1392, CVE-2009-1832, CVE-2009-1833, CVE-2009-1838, CVE-2009-1836, CVE-2009-1840, CVE-2009-1841 | | Last Modified: | Jun 26 15:05:46 2009 |
| MD5 Checksum: | 50c4e6527786e1a60c143285b6d81223 |
|
| /// File Name: |
printf-overrun.txt |
Description:
|
An array overrun vulnerability has been discovered in libc/gdtoa printf(3). Systems affected include OpenBSD version 4.5, NetBSD version 5.0, and FreeBSD versions 7.2 and 6.4.
| | Author: | Maksymilian Arciemowicz | | Homepage: | http://securityreason.com/ | | File Size: | 5381 | | Related CVE(s): | CVE-2009-0689 | | Last Modified: | Jun 26 15:02:10 2009 |
| MD5 Checksum: | b60dc8e7cd15abef3ab6de2a7b3a582f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
