Fedora 19 : lightdm-1.6.2-1.fc19 (2013-16388)

New stable bugfix, security release: include : - Correctly set permissions on Xauthority file. - Fix bug where seat failure before D-Bus acquired would not stop daemon - Stop using gfilesetcontents - it can leave intermediate files around See also:...

Fedora 17 : analitza-4.10.5-1.fc17 / ark-4.10.5-1.fc17 / audiocd-kio-4.10.5-1.fc17 / etc (2013-13499)

KDE released updates for its Workspaces, Applications, and Development Platform. These updates are the last in a series of monthly stabilization updates to the 4.10 series. 4.10.5 updates bring many bugfixes on top of the latest edition in the 4.10 series and are recommended updates for everyone...

Xymon 4.x File Deletion

Hi, a security vulnerability has been found in version 4.x of the Xymon Systems & Network Monitor tool https://sourceforge.net/projects/xymon/. Impact ------ The error permits a remote attacker to delete files on the server running the Xymon trend-data daemon "xymondrrd". File deletion is done wi...

Fedora 17 : nrpe-2.14-3.fc17 (2013-9836)

Update to 2.14 upstream for security fix and misc other bugfixes. Fixes a mistake in the service file which prevented the NRPE daemon from being started Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempt...

kernel: security and bugfix update (critical)

The openSUSE 12.2 kernel was updated to fix security issue and other bugs. Security issues fixed: CVE-2013-2850: Incorrect strncpy usage in the network listening part of the iscsi target driver could have been used by remote attackers to crash the kernel or execute code. This required the iscsi...

[slackware-security] php (SSA:2013-161-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security php SSA:2013-161-01 New php packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+...

kernel: security and bugfix update (critical)

The openSUSE 12.3 kernel was updated to fix a critical security issue, other security issues and several bugs. Security issues fixed: CVE-2013-2094: The perfsweventinit function in kernel/events/core.c in the Linux kernel used an incorrect integer data type, which allowed local users to gain...

kernel: security and bugfix update (important)

The Linux kernel was updated to 3.0.74 to fix various bugs and security issues...

kernel: security and bugfix update (important)

The openSUSE 12.1 kernel was updated to fix a severe secrutiy issue and various bugs. Security issues fixed: CVE-2013-2094: The perfsweventinit function in kernel/events/core.c in the Linux kernel used an incorrect integer data type, which allowed local users to gain privileges via a crafted...

Unbreakable Enterprise kernel security and bugfix update

2.6.39-400.21.1 - SPEC: v2.6.39-400.21.1 Maxim Uvarov - xen/mmu: On early bootup, flush the TLB when changing RO-RW bits Xen provided pagetables. Konrad Rzeszutek Wilk 2.6.39-400.20.1 - SPEC: v2.6.39-400.20.1 Maxim Uvarov - PCI: Set device power state to PCID0 for device without native PM support...

postgresql: security and bugfix update to 9.0.13 (important)

Postgresql was updated to version 9.0.13 bnc812525: CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with "-" could be crafted to damage or destroy files within the server's data directory, even if the request is...

Mozilla Firefox and others: Update to 20.0/17.0.5 releases (important)

The Mozilla suite received security and bugfix updates: Firefox was updated to version 20.0. Thunderbird was updated to version 17.0.5. Seamonkey was updated to version 2.17 mozilla-nss was updated to version 3.14.3. mozilla-nspr was updated to version 4.9.6. mozilla-nspr was updated to version...

Mozilla Firefox and others: Update to Firefox 20.0 release (important)

The Mozilla suite received security and bugfix updates: Mozilla Firefox was updated to version 20.0. Mozilla Thunderbird was updated to version 17.0.5. Mozilla Seamonkey was updated to version 17.0.5. Mozilla XULRunner was updated to version 17.0.5. mozilla-nss was updated to version 3.14.3...

SuSE 11.2 Security Update : libqt4 (SAT Patch Number 7441)

libqt4 has been updated to fix several security issues. - An information disclosure via QSharedMemory was fixed which allowed local attackers to read information e.g. bitmap content from the attacked user. CVE-2013-0254 - openssl-incompatibility-fix.diff: Fix wrong error reporting when using a...

Fedora 17 : gnutls-2.12.23-1.fc17 / libtasn1-2.14-1.fc17 (2013-2984)

Minor security and bugfix update from upstream. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

kernel: security and bugfix update (important)

The Linux kernel was updated to fix various bugs and security issues: CVE-2013-0871: Race condition in the ptrace functionality in the Linux kernel allowed local users to gain privileges via a PTRACESETREGS ptrace system call in a crafted application, as demonstrated by ptracedeath. CVE-2013-0160...

Oracle Linux 6 kernel security and bugfix update

2.6.32-358.el6 - fs Fix sget race with failing mount Eric Sandeen 883276 2.6.32-357.el6 - virt xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests Andrew Jones 896050 CVE-2013-0190 - block sgio: use different default filters for each device class Paolo Bonzini 875361...

SuSE 11.2 Security Update : LibreOffice (SAT Patch Number 6804)

LibreOffice was updated to SUSE 3.5 bugfix release 13 based on upstream 3.5.6-rc2 which fixes a lot of bugs. The following bugs have been fixed : - polygon fill rule. bnc759172 - open XML in Writer. bnc777181 - undo in text objects fdo36138 - broken numbering level. bnc760019 - better MathML...

update for bogofilter (important)

Update to version 1.2.3. Update configure.ac to avoid autoconf 2.68 warnings, by a quoting the first ACRUNIFELSE argument, an ACLANGPROGRAM, with , and b providing an explicit "true" assumption for Berkeley DB capabilities to avoid cross-compilation warnings. Security bugfix; bnc792939, Fix a...

Serva 2.0.0 DNS Server Denial Of Service

Inshell Security Advisory http://www.inshell.net 1. ADVISORY INFORMATION ----------------------- Product: Serva Vendor URL: www.vercot.com Type: Uncaught Exception CWE-248 Date found: 2012-07-08 Date published: 2013-01-14 CVSSv2 Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P CVE: - 2. CREDITS ----------...