[SECURITY] [DSA 1951-1] New firefox-sage packages fix insufficient input sanitizing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1951-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 15, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1949-1] New php-net-ping packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1949-1 [email protected] http://www.debian.org/security/ Raphael Geissert December 12, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1945-1] New gforge packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1945-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 03, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1938-1] New php-mail packages fix insufficient input sanitising

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1938-1 [email protected] http://www.debian.org/security/ Steffen Joeris November 23, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1926-1] New TYPO3 packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1926-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst November 4, 2009 http://www.debian.org/security/faq -...

New nginx packages fix denial of service

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1920-1 [email protected] http://www.debian.org/security/ Stefan Fritsch October 26, 2009...

[SECURITY] [DSA-1920-1] New nginx packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1920-1 [email protected] http://www.debian.org/security/ Stefan Fritsch October 26, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1917-1] New mimetex packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1917-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano October 24, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1916-1] New kdelibs packages fix SSL certificate verification weakness

------------------------------------------------------------------------ Debian Security Advisory DSA-1916-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano October 23, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1897-1] New horde3 packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1897-1 [email protected] http://www.debian.org/security/ Nico Golde September 28th, 2009 http://www.debian.org/security/faq -...

Mandrake Security Advisory MDVSA-2009:244 (xfig)

The remote host is missing an update to xfig announced via advisory MDVSA-2009:244. OpenVAS Vulnerability Test $Id: mdksa2009244.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:244 xfig Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

[SECURITY] [DSA 1895-1] New xmltooling packages fix potential code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1895-1 [email protected] http://www.debian.org/security/ Florian Weimer September 24, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1891-1] New changetrack packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1891-1 [email protected] http://www.debian.org/security/ Steffen Joeris September 22, 2009 http://www.debian.org/security/faq -...

[ MDVSA-2009:244 ] xfig

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:244 http://www.mandriva.com/security/ Package : xfig Date : September 23, 2009 Affected: Corporate 4.0 Problem Description: A vulnerability was discovered and corrected in xfig: Xfig in Debian GNU/Linux,...

[SECURITY] [DSA 1891-1] New changetrack packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1891-1 [email protected] http://www.debian.org/security/ Steffen Joeris September 22, 2009 http://www.debian.org/security/faq -...

CVE-2009-2939

The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...

CVE-2009-2939

CVE-2009-2939 affects Postfix on Debian/Ubuntu where the postinst script grants the postfix user write access to /var/spool/postfix/pid, enabling local users to perform symlink attacks that can overwrite arbitrary files. Connected advisories confirm the issue across multiple distributions and rep...

[SECURITY] [DSA 1882-1] New xapian-omega packages fix cross-site scripting

-------------------------------------------------------------------------- Debian Security Advisory DSA-1882-1 [email protected] http://www.debian.org/security/ Nico Golde September 9th, 2009 http://www.debian.org/security/faq -...

CVE-2009-2946

Eval injection vulnerability in scripts/uscan.pl before Rev 1984 in devscripts allows remote attackers to execute arbitrary Perl code via crafted pathnames on distribution servers for upstream source code used in Debian GNU/Linux packages...

CVE-2009-2946

Eval injection vulnerability in scripts/uscan.pl before Rev 1984 in devscripts allows remote attackers to execute arbitrary Perl code via crafted pathnames on distribution servers for upstream source code used in Debian GNU/Linux packages...