[SECURITY] [DSA 030-2] New m68k packages of XFree86 released

---------------------------------------------------------------------------- Debian Security Advisory DSA 030-2 [email protected] http://www.debian.org/security/ Martin Schulze February 12, 2001 - ---------------------------------------------------------------------------- Package : xfree86-1...

[SECURITY] [DSA-030-1] Multiple security problems in X

Package : xfree86-1 Vulnerability : buffer overflow, insecure tempfile handling, denial-of-service attack Debian-specific: no Chris Evans, Joseph S. Myers, Michal Zalewski, Alan Cox, and others have noted a number of problems in several components of the X Window System sample implementation from...

CVE-2001-0069

dialog before 0.9a-20000118-3bis in Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack...

[SECURITY] [DSA 028-1] New man-db packages released

---------------------------------------------------------------------------- Debian Security Advisory DSA-028-1 [email protected] http://www.debian.org/security/ Martin Schulze February 9, 2001 - ---------------------------------------------------------------------------- Package : man-db...

[SECURITY] [DSA 023-1] New version of inn2 released

---------------------------------------------------------------------------- Debian Security Advisory DSA-023-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26, 2001 - ---------------------------------------------------------------------------- Package : inn2...

[SECURITY] [DSA 021-1] New version of Apache released

---------------------------------------------------------------------------- Debian Security Advisory DSA-021-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26, 2001 - ---------------------------------------------------------------------------- Package : apache...

[SECURITY] [DSA 019-1] New version of squid released

---------------------------------------------------------------------------- Debian Security Advisory DSA-019-1 [email protected] http://www.debian.org/security/ Martin Schulze January 25, 2001 - ---------------------------------------------------------------------------- Package : squid...

[SECURITY] [DSA-017-1] New version of jazip released

---------------------------------------------------------------------------- Debian Security Advisory DSA-017-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23, 2001 - ---------------------------------------------------------------------------- Package : jazip...

[SECURITY] [DSA-013-1] New version of MySQL released

---------------------------------------------------------------------------- Debian Security Advisory DSA-013-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23, 2001 - ---------------------------------------------------------------------------- Package : mysql...

CVE-2000-1136

CVE-2000-1136 affects elvis-tiny before 1.4-10 in Debian GNU/Linux (and possibly other Linux OS). The issue is a symlink attack that lets local users overwrite files of other users. Exploitation is Local with Low complexity and no authentication required; impacts include partial confidentiality, ...

CVE-2000-1135

fshd fsh daemon in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack...

CVE-2000-1136

elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack...

CVE-2000-1135

CVE-2000-1135 describes a local privilege issue in the fshd (fsh daemon) on Debian GNU/Linux. The vulnerability allows a local user to overwrite files belonging to other users via a symbolic link (symlink) attack. The impact is partial confidentiality, integrity, and availability due to the abili...

[SECURITY] [DSA-011-1] New version of mgetty released

Package: mgetty Vulnerability: insecure tempfile Debian-specific: no Immunix reports that mgetty does not create temporary files in a secure manner, which could lead to a symlink attack. This has been corrected in mgetty 1.1.21-3potato1 We recommend you upgrade your mgetty package immediately. wg...

CVE-2000-1135

fshd fsh daemon in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack...

CVE-2000-1136

elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack...

[SECURITY] New version of mc released

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman November 25, 2000 - ------------------------------------------------------------------------ Package : mc Problem type : local DoS...

[SECURITY] New Debian xmcd packages released

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz November 21, 2000 -...

[SECURITY] New Debian ncurses packages released

---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz November 21, 2000 - ---------------------------------------------------------------------------- Package: ncurses...

[SECURITY] New version of ghostscript released

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman November 23, 2000 - ------------------------------------------------------------------------ Package : gs Problem type : symlink...