teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code

Background teTex is a complete TeX distribution. It is used for creating and manipulating LaTeX documents. CSTeX is a TeX distribution with Czech and Slovak support. pTeX is and ASCII publishing TeX distribution. Description CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf...

[SECURITY] [DSA 982-1] New gpdf packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 982-1 [email protected] http://www.debian.org/security/ Martin Schulze February 27th, 2006 http://www.debian.org/security/faq -...

DSA-982-1 gpdf - several

Bulletin has no description...

DSA-981-1 bmv - integer overflow

Bulletin has no description...

[SECURITY] [DSA 980-1] New tutos packages fix multiple vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 980-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 22nd, 2006 http://www.debian.org/security/faq -...

XOR-iUser.txt

------=Part352119317884.1140054596440 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=...

Design/Logic Flaw

The cryptgensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in cryptblowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a stolen password file due to the increased number o...

CVE-2006-0591

The cryptgensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in cryptblowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a stolen password file due to the increased number o...

[SECURITY] [DSA 963-1] New mydns packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 963-1 [email protected] http://www.debian.org/security/ Martin Schulze February 2nd, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 950-1] New CUPS packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 950-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23rd, 2006 http://www.debian.org/security/faq -...

DSA-950-1 cupsys - buffer overflow

Bulletin has no description...

[SECURITY] [DSA 948-1] New kdelibs packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 948-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 20th, 2005 http://www.debian.org/security/faq -...

DSA-948-1 kdelibs - heap overflow

Bulletin has no description...

[SECURITY] [DSA 938-1] New koffice packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 938-1 [email protected] http://www.debian.org/security/ Martin Schulze January 12th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 935-1] New libapache2-mod-auth-pgsql packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 935-1 [email protected] http://www.debian.org/security/ Michael Stone January 10, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 933-1] New hylafax packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 933-1 [email protected] http://www.debian.org/security/ Michael Stone January 9, 2006 http://www.debian.org/security/faq -...

DSA-930-2 smstools - format string attack

Bulletin has no description...

DSA-929-1 petris - buffer overflow

Bulletin has no description...

WAXTRAPP XSS vuln.

WAXTRAPP XSS vuln. Vuln. discovered by : r0t Date: 22 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/waxtrapp-xss-vuln.html vendor:http://www.waxtrapp.com affected version:3.0.x already tested on 3.0.1 and previous versions. Product Description: WAXTRAPP is a development platform...

Advisory 25/2005: phpMyAdmin Variables Overwrite Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hardened-PHP Project www.hardened-php.net -= Security Advisory =- Advisory: phpMyAdmin Variable Overwrite Vulnerability Release Date: 2005/12/07 Last Modified: 2005/12/07 Author: Stefan Esser [email protected] Application: phpMyAdmin 2.7.0-rc1...