816 matches found
[SECURITY] [DSA 1768-1] New openafs packages potential code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1768-1 [email protected] http://www.debian.org/security/ Florian Weimer April 10, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1767-1] New multipath-tools packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1767-1 [email protected] http://www.debian.org/security/ Nico Golde April 9th, 2009 http://www.debian.org/security/faq -...
Mandriva Update for kernel MDVSA-2008:224 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2008:224 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
[SECURITY] [DSA 1758-1] New nss-ldapd packages fix information disclosure
------------------------------------------------------------------------ Debian Security Advisory DSA-1758-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 30, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1747-1] New glib2.0 packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1747-1 [email protected] http://www.debian.org/security/ Steffen Joeris March 20, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1743-1] New libtk-img packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1743-1 [email protected] http://www.debian.org/security/ Steffen Joeris March 17, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1742-1] New libsnd packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA-1742-1 [email protected] http://www.debian.org/security/ Nico Golde March 16th, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1724-1] New moodle packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1724-1 [email protected] http://www.debian.org/security/ Steffen Joeris February 13th, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1722-1] New libpam-heimdal packages fix local privilege escalation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1722-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 11, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1715-1] New moin packages fix insufficient input sanitising
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1715 [email protected] http://www.debian.org/security/ Steffen Joeris January 29, 2009 http://www.debian.org/security/faq -...
Debian GNU/Linux XTERM DECRQSS Weakness
Package: xterm Version: 222-1etch2 Severity: grave Tags: security patch Justification: user security hole DECRQSS Device Control Request Status String "DCS $ q" simply echoes responds with invalid commands. For example, perl -e 'print "\eP$q\nbad-command\n\e\"' would run bad-command...
CVE-2006-7236
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences...
CVE-2006-7236
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences...
CVE-2006-7236
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences...
CVE-2006-7236
The CVE-2006-7236 issue concerns the xterm program and its default configuration on Debian sid (and possibly Ubuntu), where the allowWindowOps resource is enabled. This permits a user-assisted attacker to execute arbitrary code or otherwise impact the system via crafted escape sequences. Related ...
CVE-2006-7236
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted attackers to execute arbitrary code or have unspecified other impact via escape sequences...
CVE-2008-4539
Heap-based buffer overflow in the Cirrus VGA implementation in 1 KVM before kvm-82 and 2 QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap overflow. NOTE: this issue exists because of an incorre...
CVE-2008-4539
Heap-based buffer overflow in the Cirrus VGA implementation in 1 KVM before kvm-82 and 2 QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap overflow. NOTE: this issue exists because of an incorre...
[SECURITY] [DSA 1685-1] New uw-imap packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1685-1 [email protected] http://www.debian.org/security/ Steffen Joeris December 12, 2008 http://www.debian.org/security/faq -...
Design/Logic Flaw
/bin/login in shadow 4.0.18.1 in Debian GNU/Linux, and probably other Linux distributions, allows local users in the utmp group to overwrite arbitrary files via a symlink attack on a temporary file referenced in a line aka utline field in a utmp entry...