Section: .. / 0604-advisories /
| /// File Name: |
FLSA-2006-152896.txt |
Description:
|
Fedora Legacy Update Advisory - Updated mod_python package fixes a security issue
| | Homepage: | http://fedoralegacy.org | | File Size: | 5297 | | Last Modified: | Apr 6 18:26:53 2006 |
| MD5 Checksum: | ca9a2787ba360a938084ad471eeb1125 |
|
| /// File Name: |
FLSA-2006-152873.txt |
Description:
|
Fedora Legacy Update Advisory - Updated tcpdump packages fix security issues.
| | Homepage: | http://fedoralegacy.org | | File Size: | 6597 | | Last Modified: | Apr 6 18:26:29 2006 |
| MD5 Checksum: | 38ccf7152462a3a16744fccfd5d58a7a |
|
| /// File Name: |
glsa-200604-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200604-04 - Kaffeine uses an unchecked buffer when fetching remote RAM playlists via HTTP. Versions less than 0.7.1-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3026 | | Last Modified: | Apr 6 18:21:34 2006 |
| MD5 Checksum: | d0f1966a9444c3ebe679a064ff15face |
|
| /// File Name: |
glsa-200604-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200604-03 - FreeRADIUS suffers from insufficient input validation in the EAP-MSCHAPv2 state machine. Versions less than 1.1.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3389 | | Last Modified: | Apr 6 18:21:26 2006 |
| MD5 Checksum: | e2ee344ab3e69ddcfb01bbaa4335deab |
|
| /// File Name: |
glsa-200604-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200604-02 - Jan Schneider of the Horde team discovered a vulnerability in the help viewer of the Horde Application Framework that could allow remote code execution (CVE-2006-1491). Paul Craig reported that services/go.php fails to validate the passed URL parameter correctly (CVE-2006-1260). Versions less than 3.1.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3556 | | Last Modified: | Apr 6 18:21:20 2006 |
| MD5 Checksum: | 2fdc349ca72f8efd24d3a74e17964b51 |
|
| /// File Name: |
glsa-200604-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200604-01 - MediaWiki fails to decode certain encoded URLs correctly. Versions less than 1.4.15 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3080 | | Last Modified: | Apr 6 18:21:15 2006 |
| MD5 Checksum: | bbe49c6e26708959174386570a3caa41 |
|
| /// File Name: |
glsa-200604-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200604-05 - Luigi Auriemma discovered that Doomsday incorrectly implements formatted printing. Versions less than or equal to 1.8.6-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3397 | | Last Modified: | Apr 6 18:21:07 2006 |
| MD5 Checksum: | 9cfb8de8ac8249973bdd46173cf6073b |
|
| /// File Name: |
dsa-1027-1.txt |
Description:
|
Debian Security Advisory 1027-1: New mailman packages fix denial of service.
| | File Size: | 5205 | | Last Modified: | Apr 6 18:14:29 2006 |
| MD5 Checksum: | d523e6e3020c0726f32b8a77889ec5a1 |
|
| /// File Name: |
dsa-1026-1.txt |
Description:
|
Debian Security Advisory 1026-1: New sash packages fix potential arbitrary code execution
| | File Size: | 5347 | | Last Modified: | Apr 6 18:14:24 2006 |
| MD5 Checksum: | 32624851648655d4170b6542d1e8c3a0 |
|
| /// File Name: |
dsa-1025-1.txt |
Description:
|
Debian Security Advisory 1025-1: New dia packages fix arbitrary code execution.
| | File Size: | 14975 | | Last Modified: | Apr 6 18:14:19 2006 |
| MD5 Checksum: | 686815d298ebfe171b8aa87a8877568a |
|
| /// File Name: |
dsa-1024-1.txt |
Description:
|
Debian Security Advisory 1024-1: New clamav packages fix several vulnerabilities.
| | File Size: | 16058 | | Last Modified: | Apr 6 18:14:09 2006 |
| MD5 Checksum: | aea3c8ff766186d93390de172b1aca99 |
|
| /// File Name: |
dsa-1023-1.txt |
Description:
|
Debian Security Advisory 1023-1: New kaffeine packages fix arbitrary code execution
| | File Size: | 5167 | | Last Modified: | Apr 6 18:14:00 2006 |
| MD5 Checksum: | ea8ca1237d4adc816a0ae3df6f6f2c12 |
|
| /// File Name: |
dsa-1018-2.txt |
Description:
|
Debian Security Advisory 1018-2: New Linux kernel 2.4.27 packages fix several vulnerabilities.
| | File Size: | 50444 | | Last Modified: | Apr 6 18:13:52 2006 |
| MD5 Checksum: | fd8911931e90148af7adabec4abacd8a |
|
| /// File Name: |
dsa-1022-1.txt |
Description:
|
Debian Security Advisory 1022-1: New storebackup packages fix several vulnerabilities
| | File Size: | 3617 | | Last Modified: | Apr 6 18:13:46 2006 |
| MD5 Checksum: | 995951ccabe90e121be7d5268bdef451 |
|
| /// File Name: |
USN-268-1.txt |
Description:
|
Ubuntu Security Notice USN-268-1 - kaffeine vulnerability
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4495 | | Last Modified: | Apr 6 18:13:14 2006 |
| MD5 Checksum: | edc8f5a9cf4eefa6842a163b2e97880d |
|
| /// File Name: |
MDKSA-2006-066.txt |
Description:
|
Mandriva Linux Security Advisory - MDKSA-2006:066: Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4034 | | Last Modified: | Apr 6 18:12:10 2006 |
| MD5 Checksum: | d9230e7d60655a909ffb97149ab70e27 |
|
| /// File Name: |
MDKSA-2006-065.txt |
Description:
|
Mandriva Linux Security Advisory - MDKSA-2006:065: Marcus Meissner discovered Kaffeine contains an unchecked buffer while creating HTTP request headers for fetching remote RAM playlists, which allows overflowing a heap allocated buffer. As a result, remotely supplied RAM playlists can be used to execute arbitrary code on the client machine.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3039 | | Last Modified: | Apr 6 18:11:28 2006 |
| MD5 Checksum: | b9a1d7fa98d4467d7d07977ffd6d23ba |
|
| /// File Name: |
MDKSA-2006-064.txt |
Description:
|
Mandriva Linux Security Advisory - MDKSA-2006:064: MySQL allows local users to bypass logging mechanisms via SQL queries that contain the NULL character, which are not properly handled by the mysql_real_query function.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7074 | | Last Modified: | Apr 6 18:10:06 2006 |
| MD5 Checksum: | d55dc694059559e9c1c671dd690c674c |
|
| /// File Name: |
MDKSA-2006-063.txt |
Description:
|
Mandriva Linux Security Advisory - MDKSA-2006:063: A vulnerability was discovered where the html_entity_decode() function would return a chunk of memory with length equal to the string supplied, which could include php code, php ini data, other user data, etc. Note that by default, Corporate 3.0 and Mandriva Linux LE2005 ship with magic_quotes_gpc on which seems to protect against this vulnerability "out of the box" but users are encourages to upgrade regardless.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6081 | | Last Modified: | Apr 6 18:09:16 2006 |
| MD5 Checksum: | 1cc21abd249e43ef33aa67f8fcf6129f |
|
| /// File Name: |
MDKSA-2006-062.txt |
Description:
|
Mandriva Linux Security Advisory - MDKSA-2006:062: Three buffer overflows were discovered by infamous41md in dia's xfig import code. This could allow for user-complicit attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid color index, number of points, or depth.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3076 | | Last Modified: | Apr 6 18:08:22 2006 |
| MD5 Checksum: | 461d69f858b52ada4e81677e1c942a08 |
|
| /// File Name: |
secunia-an-httpd.txt |
Description:
|
Secunia Research 03/04/2006 - AN HTTPD Script Source Disclosure Vulnerability - The vulnerability is caused due to a validation error of the filename extension supplied by the user in the URL. This can be exploited to retrieve the source code of script files (e.g. PL, CGI, and BAT) from the server via specially crafted requests containing dot and space characters.
| | Homepage: | http://secunia.com/secunia_research/ | | File Size: | 3343 | | Last Modified: | Apr 6 14:53:08 2006 |
| MD5 Checksum: | 574005806c4c5492c82b1c3c9442e218 |
|
| /// File Name: |
FleXiBle.txt |
Description:
|
FleXiBle development script suffers from remote command execution and XSS
| | Author: | Andries Bruinsma | | Homepage: | http://www.ahbruinsma.nl | | File Size: | 683 | | Last Modified: | Apr 6 14:51:02 2006 |
| MD5 Checksum: | 8286d37a89577a2dbe0dd18ff977044c |
|
| /// File Name: |
sa19054.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in NOD32, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/19054/ | | File Size: | 2190 | | Last Modified: | Apr 6 14:10:32 2006 |
| MD5 Checksum: | 4cef73c7e2c19c61725951c85a68e87f |
|
| /// File Name: |
sa19478.txt |
Description:
|
Secunia Security Advisory - r0t has discovered some vulnerabilities in Crafty Syntax Image Gallery, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/19478/ | | File Size: | 2170 | | Last Modified: | Apr 6 14:10:32 2006 |
| MD5 Checksum: | df9841e69636861c129dfeae7b6185e3 |
|
| /// File Name: |
sa19484.txt |
Description:
|
Secunia Security Advisory - r0t has reported some vulnerabilities in SKForum, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/19484/ | | File Size: | 1863 | | Last Modified: | Apr 6 14:10:32 2006 |
| MD5 Checksum: | 4af1b3571ac89efc4989bb1d8110f45b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
