[SECURITY] [DSA 1248-1] New libsoup packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1248-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 12nd, 2007 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1246-1] New OpenOffice.org packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1246-1 [email protected] http://www.debian.org/security/ Martin Schulze January 8th, 2007 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1214-2] Updated gv packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1214-2 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 27th, 2006 http://www.debian.org/security/faq -...

Fully Automated Installation管理HASH密码信息泄露漏洞

Fully Automated Installation是一种基于Debian GNU/Linux平台的全自动安装集群结点机的软件包。 Fully Automated Installation存在设计错误，本地攻击者可以利用漏洞获得敏感信息。 如果安装在verbose模式，ROOT密码的HASH信息会存储在'/var/log/fai/current/fai.log'，当fai-savelog调用时，它拷贝日志文件到新安装的主机，而仍旧保留HASH信息到文件中，导致敏感信息泄露。 Thomas Lange Fully Automated Installation 3.1.2 Thomas...

GnuPG vulnerable to remote data control

Overview A vulnerability in GnuPG could allow a remote attacker to execute arbitrary code on an affected system. Description GNU Privacy Guard GnuPG is the GNU project's implementation of the OpenPGP standard as defined by RFC2440.OpenPGP messages are processed by GnuPG using data structures call...

[SECURITY] [DSA 1239-1] New sql-ledger packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1239-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 17th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1238-1] New clamav packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1238-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 17th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1222-1] New proftpd packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1222-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 30th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1215-1] New xine-lib packages fix execution of arbitrary code

-------------------------------------------------------------------------- Debian Security Advisory DSA 1215-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 20th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1211-1] New pdns packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1211-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 14th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1208-1] New bugzilla packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1208-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 11th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1206-1] New php4 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1206-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 6th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA-1205-1] New thttpd packages fix insecure temporary file creation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1205-1 [email protected] http://www.debian.org/security/ Steve Kemp November 2rd, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1204-1] New ingo1 packages fix arbitrary shell command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1204-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 2nd, 2006 http://www.debian.org/security/faq -...

CVE-2006-4248

thttpd on Debian GNU/Linux, and possibly other distributions, allows local users to create or touch arbitrary files via a symlink attack on the startthttpd temporary file...

[SECURITY] [DSA 1198-1] New python2.3 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1198-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 23rd, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1196-1] New clamav packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1196-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 19th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1192-1] New Mozilla packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1192-1 [email protected] http://www.debian.org/security/ Martin Schulze October 6th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1188-1] New mailman packages fix several problems

-------------------------------------------------------------------------- Debian Security Advisory DSA 1188-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1183-1] New Linux 2.4.27 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1183-1 [email protected] http://www.debian.org/security/ Dann Frazier September 25th, 2006 http://www.debian.org/security/faq -...