FreeBSD : sudosh -- buffer overflow (8675efd5-e22c-11e1-a808-002354ed89bc)

ISS reports : sudosh2 and sudosh3 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the replay function. By persuading a victim to replay a specially crafted recorded sudo session, a local attacker could overflow a buffer and execute arbitrary code on the syst...

Scientific Linux Security Update : openssl on SL5.x i386/x86_64 (20120124)

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols, as well as a full-strength, general purpose cryptography library. It was discovered that the Datagram Transport Layer Security DTLS protocol implementation in OpenSSL leaked timi...

Scientific Linux Security Update : systemtap on SL6.x i386/x86_64

SystemTap is an instrumentation system for systems running the Linux kernel. The system allows developers to write scripts to collect data on the operation of the system. It was found that SystemTap did not perform proper module path sanity checking if a user specified a custom path to the uprobe...

Scientific Linux Security Update : GPG-RPM key on SL3.x, SL4.x, SL5.x i386/x86_64

Updating the GPG keys in the release to include a Scientific Linux RPM signing key to sign the rpm's with. We will start using this new key, and stop using Connie or Troy's personal GPG Keys for signing rpm's. This is labeled as Moderate because those machines that have gpg checking turned on wil...

Scientific Linux Security Update : samba on SL3.x, SL4.x, SL5.x i386/x86_64

NOTE: This errata went out 2010-09-15, but this email was not sent. A missing array boundary checking flaw was found in the way Samba parsed the binary representation of Windows security identifiers SIDs. A malicious client could send a specially crafted SMB request to the Samba server, resulting...

Scientific Linux Security Update : openssl on SL6.x i386/x86_64

OpenSSL is a toolkit that implements the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols, as well as a full-strength, general purpose cryptography library. An uninitialized variable use flaw was found in OpenSSL. This flaw could cause an application using the OpenSSL...

Scientific Linux Security Update : sudo on SL6.x i386/x86_64

The sudo superuser do utility allows system administrators to give certain users the ability to run commands as root. A flaw was found in the sudo password checking logic. In configurations where the sudoers settings allowed a user to run a command using sudo with only the group ID changed, sudo...

Scientific Linux Security Update : sudo on SL5.x i386/x86_64 (20120221)

The sudo superuser do utility allows system administrators to give certain users the ability to run commands as root. A flaw was found in the sudo password checking logic. In configurations where the sudoers settings allowed a user to run a command using sudo with only the group ID changed, sudo...

IrfanView Formats Plugin TTF File Buffer Overflow Vulnerability

The version of the IrfanView Formats plugin Formats.dll was found to be less than 4.34. Such versions are affected by a stack-based buffer overflow caused by insufficient bounds checking when parsing TTF font names. An attacker could exploit this vulnerability to execute arbitrary code by trickin...

CVE-2012-2747

Technical details about CVE-2012-2747 are not provided in the supplied documents; no affected versions, root cause, or remediation details are disclosed. Monitor for updates.

CVE-2012-2747

Unspecified vulnerability in Joomla! 2.5.x before 2.5.5 allows remote attackers to gain privileges via unknown attack vectors related to "Inadequate checking."...

Debian DSA-2490-1 : nss - denial of service

Kaspar Brand discovered that Mozilla's Network Security Services NSS libraries did insufficient length checking in the QuickDER decoder, allowing to crash a program using the libraries. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...

[SECURITY] Fedora 15 Update: roundcubemail-0.7.2-2.fc15

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

[SECURITY] Fedora 16 Update: roundcubemail-0.7.2-2.fc16

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

HP Data Protector Express Opcode 0x320 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Express. Authentication is not required to exploit this vulnerability. User interaction is not required to exploit this vulnerability. The specific flaw exists within the...

HP Data Protector Express Opcode 0x330 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Data Protector Express. Authentication is not required to exploit this vulnerability. User interaction is not required to exploit this vulnerability. The specific flaw exists within the...

GLSA-201203-24 : Chromium, V8: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201203-24 Chromium, V8: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details. Impact : A context-dependent...

RHEL 6 : busybox (RHSA-2012:0810)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0810 advisory. BusyBox provides a single binary that includes versions of a large number of system commands, including a shell. This can be very useful for...

FreeBSD : joomla -- Privilege Escalation (f46c4c6a-ba25-11e1-806a-001143cd36d8)

Joomla! reported a Core Privilege Escalation: : Inadequate checking leads to possible user privilege escalation.. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacque...

IObit Protected Folder protection bypass

It's possible to bypass protection, e.g. by changing return value of password checking function...