[SECURITY] [DSA 1853-1] New memcached packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1853-1 [email protected] http://www.debian.org/security/ Nico Golde August 7th, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1849-1] New xml-security-c packages fix signature forgery

------------------------------------------------------------------------ Debian Security Advisory DSA-1849-1 [email protected] http://www.debian.org/security/ Florian Weimer August 02, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1834-2] New apache/apache2-mpm-itk fix regression

------------------------------------------------------------------------ Debian Security Advisory DSA-1834-2 [email protected] http://www.debian.org/security/ Stefan Fritsch July 31, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1841-1] New git-core packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA-1841-1 [email protected] http://www.debian.org/security/ Nico Golde July 25th, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1839-1] New gst-plugins-good0.10 packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1839-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 19, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1838-1] New pulseaudio packages fix privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1838-1 [email protected] http://www.debian.org/security/ Florian Weimer July 18, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1837-1] New dbus packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1837-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 18, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1835-1] New tiff packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1835-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 15, 2009 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 1833-1] New dhcp3 packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1833-1 [email protected] http://www.debian.org/security/ Florian Weimer July 14, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1829-1] New sork-passwd-h3 packages fix cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-1829-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 11, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1827-1] New ipplan packages fix cross-site scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1827-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 06, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1813-1] New evolution-data-server packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1813-1 [email protected] http://www.debian.org/security/ Steffen Joeris June 08, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1806-1] New cscope packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1806-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 24, 2009 http://www.debian.org/security/faq -...

Code injection

The mapypalias function in functions/imapgeneral.php in SquirrelMail before 1.4.19-1 on Debian GNU/Linux, and possibly other operating systems and versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program. NOT...

CVE-2009-1381

The mapypalias function in functions/imapgeneral.php in SquirrelMail before 1.4.19-1 on Debian GNU/Linux, and possibly other operating systems and versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program. NOT...

CVE-2009-1381

CVE-2009-1381 relates to SquirrelMail prior to version 1.4.19-1 on Debian and possibly other OSes, where the map_yp_alias function in functions/imap_general.php allows remote execution of arbitrary commands via shell metacharacters in a username string used by ypmatch. Connected advisories confir...

[SECURITY] [DSA 1802-2] New squirrelmail packages correct incomplete fix

------------------------------------------------------------------------ Debian Security Advisory DSA-1802-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 21, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1803-1] New nsd packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1803-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 20, 2009 http://www.debian.org/security/faq -...

NSD vulnerable to one-byte overflow

Overview A vulnerability exists in the way NSD processes certain types of packets that may lead to a one-byte buffer overflow. Description Name server daemon NSD is an open source name server developed by NLnet Labs. NSD contains an off-by-one error that can cause a one-byte buffer overflow when...

[SECURITY] [DSA 1795-1] New ldns packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1795 [email protected] http://www.debian.org/security/ Devin Carraway May 07, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------...