511 matches found
Ubuntu 4.10 / 5.04 / 5.10 : courier vulnerability (USN-226-1)
Patrick Cheong Shu Yang discovered a flaw in the user account handling of courier-authdaemon. After successful authorization, the Courier mail server granted access to deactivated accounts. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...
Ubuntu 4.10 / 5.04 : dpkg, ia32-libs, amd64-libs vulnerabilities (USN-151-2)
USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could be exploited to cause Denial of Service attacks or even arbitrary code execution with malicious data streams. Most applications use the shared library provided by the 'zlib1g' package; however, some packages contain copies of t...
[SECURITY] [DSA 928-1] New dhis-tools-dns packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 928-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2005 http://www.debian.org/security/faq -...
[Full-disclosure] [SECURITY] [DSA 928-1] New dhis-tools-dns packages fix insecure temporary file creation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 928-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 915-1] New helix-player packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 915-1 [email protected] http://www.debian.org/security/ Martin Schulze December 2nd, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 892-1] New awstats packages fix arbitrary command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 892-1 [email protected] http://www.debian.org/security/ Martin Schulze November 10th, 2005 http://www.debian.org/security/faq -...
Debian DSA-816-1 : xfree86 - integer overflow
Soren Sandmann discovered a bug in memory allocation for pixmap images, that can cause a crash of the X server or to execute arbitrary code. The update for the old stable distribution woody also contains a different correction for multiple vulnerabilities in libXpm DSA 607, CAN-2004-0914,...
[SECURITY] [DSA 819-1] New python2.1 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 819-1 [email protected] http://www.debian.org/security/ Martin Schulze September 23rd, 2005 http://www.debian.org/security/faq -...
Debian DSA-782-1 : bluez-utils - missing input sanitising
Henryk Plotz discovered a vulnerability in bluez-utils, tools and daemons for Bluetooth. Due to missing input sanitising it is possible for an attacker to execute arbitrary commands supplied as device name from the remote device. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...
[SECURITY] [DSA 759-1] New phppgadmin packages fix directory traversal vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 759-1 [email protected] http://www.debian.org/security/ Martin Schulze July 18th, 2005 http://www.debian.org/security/faq -...
Gentoo symbolic links problem
dispatch-conf and dpkg symbolic links problem...