Lucene search
+L

789 matches found

Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.24 views

Mandrake Linux Security Advisory : xinetd (MDKSA-2001:055-1)

A bug exists in xinetd as shipped with Mandrake Linux 8.0 dealing with TCP connections with the WAIT state that prevents linuxconf-web from working properly. As well, xinetd contains a security flaw in which it defaults to a umask of 0. This means that applications using the xinetd umask that do...

3.6CVSS6AI score0.00363EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/30 12:0 a.m.26 views

RHEL 3 : sox (RHSA-2004:409)

Updated sox packages that fix buffer overflows in the WAV file handling code are now available. SoX Sound eXchange is a sound file format converter. SoX can convert between many different digitized sound formats and perform simple sound manipulation functions, including sound effects. Buffer...

10CVSS5.7AI score0.2508EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2004/07/28 12:0 a.m.33 views

Fedora Core 2 : sox-12.17.4-4.fc2 (2004-244)

Updated sox packages that fix buffer overflows in the WAV file handling code are now available. Buffer overflows existed in the parsing of WAV file header fields. It was possible that a malicious WAV file could have caused arbitrary code to be executed when the file was played or converted. Note...

10CVSS6AI score0.2508EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.39 views

SuSE-SA:2004:010: Linux Kernel

The remote host is missing the patch for the advisory SuSE-SA:2004:010 Linux Kernel. Various vulnerabilities have been fixed in the newly available kernel updates. The updates consist of fixes for the following vulnerabilities: - The dofork memory leak, which could lead to a local DoS attack. All...

7.2CVSS6.5AI score0.01238EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.11 views

Fedora Core 1 2004-087: libxml2

The remote host is missing the patch for the advisory FEDORA-2004-087 libxml2. This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or...

7.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.32 views

RHEL 2.1 : squid (RHSA-2002:130)

New Squid packages are available which fix various issues. Squid is a high-performance proxy caching server. The following summary describes the various issues found and fixed : Several buffer overflows have been found in the MSTN auth helper msntauth when configured to use denyusers or allowuser...

7.5CVSS5.8AI score0.05537EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.30 views

RHEL 2.1 / 3 : krb5 (RHSA-2004:236)

Updated Kerberos 5 krb5 packages which correct buffer overflows in the krb5anametolocalname function are now available. Kerberos is a network authentication system. Bugs have been fixed in the krb5anametolocalname library function. Specifically, buffer overflows were possible for all Kerberos...

10CVSS5.7AI score0.11665EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.42 views

RHEL 2.1 : glibc (RHSA-2002:167)

Updated glibc packages are available which fix a buffer overflow in the XDR decoder and two vulnerabilities in the resolver functions. updated 8 aug 2002 Updated packages have been made available, as the original errata introduced a bug which could cause calloc to crash on 32-bit platforms when...

10CVSS8.5AI score0.58133EPSS
Exploits3References9
Slackware Linux
Slackware Linux
added 2004/02/18 4:38 a.m.42 views

metamail security update

Metamail is a set of utilities for processing MIME mail. New metamail packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix two format string bugs and two buffer overflows which could lead to unauthorized code execution. Thanks to Ulf Hrnhammar for discovering these problems...

7.5CVSS6.8AI score0.2622EPSS
Exploits1
securityvulns
securityvulns
added 2004/02/11 12:0 a.m.31 views

Mutt-1.4.2 fixes buffer overflow.

Mutt-1.4.2 has just been released; this version fixes a buffer overflow that can be triggered by incoming messages. There are reports about spam that has actually triggered this problem and crashed mutt. It is recommended that users of mutt versions prior to 1.4.2 upgrade to this version, or appl...

7.5CVSS0.2AI score0.05427EPSS
Exploits0
Slackware Linux
Slackware Linux
added 2004/01/14 10:23 p.m.16 views

INN security update

INN InterNetNews is used to run a news NNTP server. New INN packages are available for Slackware 9.0, 9.1, and -current. These have been upgraded to inn-2.4.1 to fix a potentially exploitable buffer overflow. All sites running INN should upgrade. Here are the details from the Slackware 9.1...

7.1AI score
Exploits0
Slackware Linux
Slackware Linux
added 2003/09/17 12:1 p.m.22 views

Sendmail vulnerabilities fixed

The sendmail packages in Slackware 8.1, 9.0, and -current have been patched to fix security problems. These issues seem to be remotely exploitable, so all sites running sendmail should upgrade right away. Sendmail's 8.12.10 announcement may be found here: http://www.sendmail.org/8.12.10.html Here...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2003/07/07 7:58 p.m.6 views

Critical: Red Hat Security Advisory: : : : Updated openldap packages available for iSeries and pSeries

Updated openldap packages are available which fix a number of local and remote buffer overflows in libldap, and in the slapd and slurpd servers, as well as fixing potential issues stemming from using user-specified LDAP configuration files. OpenLDAP is a suite of LDAP Lightweight Directory Access...

7.5CVSS6AI score0.06996EPSS
Exploits0
securityvulns
securityvulns
added 2003/05/30 12:0 a.m.43 views

[SECURITY] [DSA-307-1] New gps packages fix multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 307-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 27th, 2003 http://www.debian.org/security/faq -...

1.4AI score
Exploits0
Debian
Debian
added 2003/05/29 2:1 a.m.16 views

[SECURITY] [DSA-307-1] New gps packages fix multiple vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 307-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 27th, 2003 http://www.debian.org/security/faq -...

7.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2003/04/24 3:29 p.m.8 views

Critical: Red Hat Security Advisory: : : : Updated Fetchmail packages fix security vulnerabilities

Updated Fetchmail packages that close a number of vulnerabilities are available for Red Hat Linux on IBM iSeries and pSeries systems. Fetchmail is a remote mail retrieval and forwarding utility intended for use over on-demand TCP/IP links such as SLIP and PPP connections. Three bugs have been fou...

7.5CVSS6.5AI score0.0495EPSS
Exploits0References4
Debian
Debian
added 2003/04/04 2:57 p.m.29 views

[SECURITY] [DSA 278-2] New sendmail packages fix DoS and arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 278-2 [email protected] http://www.debian.org/security/ Martin Schulze April 4th, 2003 http://www.debian.org/security/faq -...

10CVSS6.4AI score0.38188EPSS
Exploits0
securityvulns
securityvulns
added 2003/03/20 12:0 a.m.24 views

mutt-1.4.1 fixes a buffer overflow.

Mutt versions 1.4.1 and 1.5.4 have just been released and will soon be available from ftp://ftp.mutt.org/mutt/. Both versions fix a buffer overflow in mutt's IMAP client code which was identified by Core Security Technologies, and fixed by Edmund Grimley Evans. A more detailed advisory will be...

2.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2002/11/08 11:15 a.m.16 views

Important: Red Hat Security Advisory: apache, mod_ssl, php security update for Stronghold

Updated versions of the Apache HTTP server, PHP, and modssl are now available which close possible buffer overflows in the Apache HTTP server benchmarking tool, fixes two cross-site scripting vulnerabilities in the error pages, and fix possible local privilege escalation. These updates also fix...

7.5CVSS6.2AI score0.94006EPSS
Exploits0References2
Debian
Debian
added 2002/09/26 5:1 p.m.33 views

[SECURITY] [DSA 149-2] New glibc packages fix

-------------------------------------------------------------------------- Debian Security Advisory DSA 149-2 [email protected] http://www.debian.org/security/ Martin Schulze September 26th, 2002 http://www.debian.org/security/faq -...

10CVSS0.4AI score0.58133EPSS
Exploits3
Rows per page
Query Builder