[Full-disclosure] [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 930-1 [email protected] http://www.debian.org/security/ Steve Kemp Jan 9, 2006 http://www.debian.org/security/faq -...

CVE-2005-4418

util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities...

CVE-2005-4728

Untrusted search path vulnerability RPATH in amaya 9.2.1 on Debian GNU/Linux allows local users to gain privileges via a malicious Mesa library in the /home/anand directory...

CVE-2005-4418

util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities...

CVE-2005-4728

Untrusted search path vulnerability RPATH in amaya 9.2.1 on Debian GNU/Linux allows local users to gain privileges via a malicious Mesa library in the /home/anand directory...

[SECURITY] [DSA 928-1] New dhis-tools-dns packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 928-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 926-1] New ketm packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 926-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2005 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 924-1] New nbd packages fix potential arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 924-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 920-1] New ethereal packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 920-1 [email protected] http://www.debian.org/security/ Martin Schulze December 13th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 919-1] New curl packages fix potential security problem

-------------------------------------------------------------------------- Debian Security Advisory DSA 919-1 [email protected] http://www.debian.org/security/ Martin Schulze December 12th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 918-1] New osh packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 918-1 [email protected] http://www.debian.org/security/ Martin Schulze December 9th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 900-3] New fetchmail-ssl packages fix potential information leak

-------------------------------------------------------------------------- Debian Security Advisory DSA 900-3 [email protected] http://www.debian.org/security/ Martin Schulze November 22nd, 2005 http://www.debian.org/security/faq -...

CVE-2004-2569

ipmenu 0.0.3 before Debian GNU/Linux ipmenu0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file...

CVE-2004-2569

CVE-2004-2569 affects ipmenu prior to 0.0.3-5 for Debian GNU/Linux; it allows a local user to overwrite arbitrary files by creating a symlink to ipmenu.log. Debian’s DSA-907-1 fixes this by upgrading ipmenu to a safe version (0.0.3-5). Impact is local, with no remote vector described; no exploita...

[SECURITY] [DSA 811-2] New common-lisp-controller packages fix arbitrary code injection

-------------------------------------------------------------------------- Debian Security Advisory DSA 811-2 [email protected] http://www.debian.org/security/ Martin Schulze November 21st, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 898-1] New phpgroupware packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 898-1 [email protected] http://www.debian.org/security/ Martin Schulze November 17th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 896-1] New ftpd-ssl packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 896-1 [email protected] http://www.debian.org/security/ Martin Schulze November 15th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 894-1] New AbiWord packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 894-1 [email protected] http://www.debian.org/security/ Martin Schulze November 14th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 876-1] New lynx-ssl packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 876-1 [email protected] http://www.debian.org/security/ Martin Schulze October 27th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 876-1] New lynx-ssl packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 876-1 [email protected] http://www.debian.org/security/ Martin Schulze October 27th, 2005 http://www.debian.org/security/faq -...