[slackware-security] libsoup

New libsoup packages are available for Slackware 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libsoup-2.52.2-i586-3slack14.2.txz: Rebuilt. Fixed a chunked decoding buffer overrun that could be exploited against either...

XSOK 1.0 2 - LANG Environment Local Buffer Overrun

XSOK 1.0 2 - LANG Environment Local Buffer Overrun // source: https://www.securityfocus.com/bid/9341/info xsok is prone to a locally exploitable buffer overrun vulnerability due to insufficient bounds check of data supplied through the LANG environment variable. This could be exploited to execute...

AutomatedShops WebC 2.0/5.0 Script - Name Remote Buffer Overrun

// source: https://www.securityfocus.com/bid/7268/info It has been reported that a boundary condition error exists in WebC. Because of this, it may be possible for a remote attacker to gain unauthorized access to a vulnerable host. / AutomatedShops WebC 2.011 - 5.005 remote exploit. By Carl Livit...

XFree86 X11R6 3.3.x - Font Server Remote Buffer Overrun

source: https://www.securityfocus.com/bid/6241/info A remotely exploitable buffer overrun condition has been reported in the XFS font server, fs.auto used by multiple vendors. This vulnerability may be exploited by remote attackers to execute commands on the target host with privileges of user...

Phusion-web.txt

------oOo---------------- Phusion Webserver Directory Traversal, DoS Vulnerabilities and BufferOverrun, Released exploits Codes. ------oOo---------------- Phusion Webserver for Windows 9x/NT/2000 contains remote vulnerabilities which allow users to see and retrieve any file on the server. Exploit...