[SECURITY] Fedora 7 Update: file-4.21-1.fc7

The file command is used to identify a particular file according to the type of data contained by the file. File can identify many different file types, including ELF binaries, system libraries, RPM packages, and different graphics formats. You should install the file package, since the file...

VMSA-2007-0005:Updated Service Console packages (XFree86, UP and SMP kernels, Kerberos libraries) resolve security issues.

VMSA-2007-0005 Updated Service Console packages XFree86, UP and SMP kernels, Kerberos libraries resolve security issues. VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMSA-2007-0005 VMware Security AdvisorySynopsis: Updated Service Console packages XFree86, UP and SMP kernels,...

Design/Logic Flaw

Multiple unspecified vulnerabilities in Dia before 0.96.1-6 have unspecified attack vectors and impact, probably involving the use of vulnerable FreeType libraries that contain CVE-2007-2754 and/or CVE-2007-1351...

CVE-2007-3408

CVE-2007-3408 refers to multiple vulnerabilities in Dia prior to 0.96.1-6, involving vulnerable FreeType libraries that contain CVE-2007-2754 and/or CVE-2007-1351. Public details in connected advisories confirm that these FreeType issues are integer overflow/related flaws in FreeType 2 (also appe...

Design/Logic Flaw

The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...

CVE-2007-3280

The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...

CVE-2007-3280

The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...

CentOS 3 : gdb (CESA-2007:0469)

An updated gdb package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a...

CentOS 3 : gcc (CESA-2007:0473)

Updated gcc packages that fix a security issue and another bug are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gcc packages include C, C++, Java, Fortran 77, Objective C, and Ada 95 GNU compilers and related support...

[SECURITY] Fedora Core 6 Update: file-4.21-1.fc6

The file command is used to identify a particular file according to the type of data contained by the file. File can identify many different file types, including ELF binaries, system libraries, RPM packages, and different graphics formats. You should install the file package, since the file...

[SECURITY] Fedora Core 5 Update: file-4.21-1.fc5

The file command is used to identify a particular file according to the type of data contained by the file. File can identify many different file types, including ELF binaries, system libraries, RPM packages, and different graphics formats. You should install the file package, since the file...

Low: Red Hat Security Advisory: gdb security and bug fix update

An updated gdb package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a...

RSA BSAFE libraries denial of service vulnerability

Overview The RSA BSAFE Crypto-C and Cert-C libraries contain a denial-of-service vulnerability. Description RSA BSAFE products include software libraries that developers can use to implement cryptography in their applications. The RSA BSAFE Crypto-C and Cert-C libraries contain a denial-of-servic...

SOL2104 - Buffer read overflow in DNS resolver libraries - CAN-2002-1146

Information about this vulnerability can be found at the following location: Note: This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge...

gdb security update

CentOS Errata and Security Advisory CESA-2007:0229 An updated gdb package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written in C...

RHEL 4 : gcc (RHSA-2007:0220)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2007:0220 advisory. The gcc packages include C, C++, Java, Fortran 77, Objective C, and Ada 95 GNU compilers and related support libraries. Jrgen Weigert discovered a...

Low: Red Hat Security Advisory: gdb security and bug fix update

An updated gdb package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GDB, the GNU debugger, allows debugging of programs written in C, C++, and other languages by executing them in a...

CVE-2007-1784

The JNILoader ActiveX control STJNILoader.ocx 3.1.0.26 in IBM Lotus Notes Sametime before 7.5 allows remote attackers to load arbitrary DLL libraries and execute arbitrary code via arbitrary arguments to the loadLibrary function...

CVE-2007-1784

The JNILoader ActiveX control STJNILoader.ocx 3.1.0.26 in IBM Lotus Notes Sametime before 7.5 allows remote attackers to load arbitrary DLL libraries and execute arbitrary code via arbitrary arguments to the loadLibrary function...

MOPB-18-2007:PHP ext/filter HTML Tag Stripping Bypass Vulnerability

Summary Since PHP 5.2.0 there is a new filtering extension in PHP that is on the one hand supposed to be used by applications to filter user input and on the other hand able to enforce site wide filtering. When the FILTERSANITIZESTRING filter is used in combination with the flag FILTERFLAGSTRIPLO...