kernel: b43: format string leaking into error msgs

Format string vulnerability in the b43requestfirmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an fwpostfix modprobe...

Oracle Linux 6 : post (ELSA-2011-0423)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0423 advisory. 2:2.6.6-2.1 - fix CVE-2011-0411 682978 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus...

Oracle Linux 5 / 6 : post (ELSA-2011-0843)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0843 advisory. 2:2.6.6-2.2 - fix CVE-2011-1720 704136 Resolves: rhbz704136 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 5 : post (ELSA-2011-0422)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0422 advisory. - fix CVE-2011-0411 683387 - fix CVE-2008-2937 683387 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Postfix IPv6 Relaying Security Issue (CVE-2005-0337)

There is a vulnerability in the way Postfix handles the relaying of e-mail messages A successful attack allows an attacker to use the target Postfix as an open relay to MX hosts with IPv6addresses...

Gentoo Security Advisory GLSA 201206-33 (Postfix)

The remote host is missing updates announced in advisory GLSA 201206-33. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Gentoo Security Advisory GLSA 201206-33 (Postfix)

The remote host is missing updates announced in advisory GLSA 201206-33. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Scientific Linux Security Update : postfix on SL4.x, SL5.x i386/x86_64

Postfix is a Mail Transport Agent MTA, supporting LDAP, SMTP AUTH SASL, and TLS. A heap-based buffer over-read flaw was found in the way Postfix performed SASL handlers management for SMTP sessions, when Cyrus SASL authentication was enabled. A remote attacker could use this flaw to cause the...

Scientific Linux Security Update : postfix on SL4.x, SL5.x i386/x86_64

It was discovered that Postfix did not flush the received SMTP commands buffer after switching to TLS encryption for an SMTP session. A man-in-the-middle attacker could use this flaw to inject SMTP commands into a victim's session during the plain text phase. This would lead to those commands bei...

Scientific Linux Security Update : postfix on SL6.x i386/x86_64

It was discovered that Postfix did not flush the received SMTP commands buffer after switching to TLS encryption for an SMTP session. A man-in-the-middle attacker could use this flaw to inject SMTP commands into a victim's session during the plain text phase. This would lead to those commands bei...

Scientific Linux Security Update : postfix on SL3.x, SL4.x, SL5.x i386/x86_64

A flaw was found in the way Postfix dereferences symbolic links. If a local user has write access to a mail spool directory with no root mailbox, it may be possible for them to append arbitrary data to files that root has write permission to. CVE-2008-2936 %NASLMINLEVEL 70300 C Tenable Network...

CentOS Update for postfix CESA-2011:0843 centos5 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for postfix CESA-2011:0843 centos4 x86_64

Check for the Version of postfix OpenVAS Vulnerability Test CentOS Update for postfix CESA-2011:0843 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for postfix CESA-2011:0843 centos5 x86_64

Check for the Version of postfix OpenVAS Vulnerability Test CentOS Update for postfix CESA-2011:0843 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for postfix CESA-2011:0422 centos5 x86_64

Check for the Version of postfix OpenVAS Vulnerability Test CentOS Update for postfix CESA-2011:0422 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for postfix CESA-2011:0422 centos4 x86_64

Check for the Version of postfix OpenVAS Vulnerability Test CentOS Update for postfix CESA-2011:0422 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for postfix CESA-2011:0422 centos4 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for postfix CESA-2011:0843 centos4 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for postfix CESA-2011:0422 centos5 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

GLSA-201206-33 : Postfix: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201206-33 Postfix: Multiple vulnerabilities A vulnerability have been discovered in Postfix. Please review the CVE identifier referenced below for details. Impact : An attacker could perform a man-in-the-middle attack and inject...