http://www.linuxsecurity.com – LinuxSecurity.com: Several vulnerabilities have been discovered in libpng, a library for reading and writing PNG files. The Common Vulnerabilities and Exposures project identifies the following problems: [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: Updated openssl packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: USN-927-1 fixed vulnerabilities in NSS. This update provides theThunderbird update to use the new NSS. [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: Aki Helin discovered an integer underflow in ncompress, the original Lempel-Ziv compress/uncompress programs. This could lead to the execution of arbitrary code when trying to decompress a crafted LZW compressed gzip archive. [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: Mozilla Firefox was updated to version 3.5.10, fixing various bugs and security issues. MFSA 2010-33 / CVE-2008-5913: Security researcher Amit Klein reported that it was possible to reverse engineer the value used to seed Math.random(). Since the pseudo-random [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: The Samba server was updated to fix security issues and bugs. Following security issues were fixed: CVE-2010-2063: A buffer overrun was possible in chain_reply code in 3.3.x and below, which could be used to crash the samba server or potentially execute code. [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues. [More Info...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: Anders Kaseorg and Evan Broder discovered a vulnerability in sudo, a program designed to allow a sysadmin to give limited root privileges to users, that allows a user with sudo permissions on certain programs to [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: A vulnerability has been fixed in sudo which can be exploited to allow local users to gain privileges. (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: Multiple incorrect buffer overflow checks which can be used to cause denial of service in audioop module have been fixed. (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: A default configuration of ASP.NET in Mono which allows Cross Site Scripting (XSS) attacks have been fixed. (Security)
http://security.gentoo.org – UnrealIRCd: Multiple vulnerabilities (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: Adobe Flash Player was updated to fix multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The Flash Plugin was upgraded to version 10.1.53.64. The following CVE numbers have been assigned: [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: The SNMP server did not correctly validate certain UDP clients when usingTCP wrappers. Under some situations, a remote attacker could bypassaccess restrictions and communicate with the SNMP server, potentiallyleading to a loss of privacy or a denial of service. [More...] (Security)
http://www.linuxsecurity.com – LinuxSecurity.com: It was discovered that the Safe.pm module as used by PostgreSQL did notproperly restrict PL/perl procedures. If PostgreSQL was configured to usePerl stored procedures, a remote authenticated attacker could exploit thisto execute arbitrary Perl code. (CVE-2010-1169) [More...] (Security)
Email this page