Debian DSA-066-1 : cfingerd - remote exploit

Steven van Acker reported on bugtraq that the version of cfingerd a configurable finger daemon as distributed in Debian GNU/Linux 2.2 suffers from two problems : - The code that reads configuration files files in which $ commands are expanded copied its input to a buffer without checking for a...

Debian DSA-081-1 : w3m - Buffer Overflow

In SNS Advisory No. 32 a buffer overflow vulnerability has been reported in the routine which parses MIME headers that are returned from web servers. A malicious web server administrator could exploit this and let the client web browser execute arbitrary code. w3m handles MIME headers included in...

CVE-2004-0911

telnetd for netkit 0.17 and earlier, and possibly other versions, on Debian GNU/Linux allows remote attackers to cause a denial of service free of an invalid pointer, a different vulnerability than CVE-2001-0554...

CVE-2004-0911

CVE-2004-0911 pertains to the netkit-telnet/ telnetd remote denial of service via an invalid free (CAN-2004-0911). Multiple feeds document a bug in the telnetd server used with netkit-telnet (notably in Debian/woody and related releases) where remote attackers could crash the telnetd process or p...

Debian bsdmainutils 6.0.14 - Calendar Information Disclosure

Debian bsdmainutils 6.0.14 - Calendar Information Disclosure // source: https://www.securityfocus.com/bid/11077/info The calendar utility contained in the bsdmainutils package on Debian GNU/Linux systems is reported susceptible to an information disclosure vulnerability. This is due to a lack of...

Debian bsdmainutils 6.0.14 - Calendar Information Disclosure

// source: https://www.securityfocus.com/bid/11077/info The calendar utility contained in the bsdmainutils package on Debian GNU/Linux systems is reported susceptible to an information disclosure vulnerability. This is due to a lack of proper file authorization checks by the application. The...

[SECURITY] [DSA 533-1] New courier packages fix cross-site scripting vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 533-1 [email protected] http://www.debian.org/security/ Matt Zimmerman July 22nd, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 504-1] New heimdal packages fix potential buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 504-1 [email protected] http://www.debian.org/security/ Martin Schulze May 18th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 501-1] New exim packages fix buffer overflows

-------------------------------------------------------------------------- Debian Security Advisory DSA 501-1 [email protected] http://www.debian.org/security/ Martin Schulze May 7th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 497-1] New mc packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 497-1 [email protected] http://www.debian.org/security/ Martin Schulze April 29th, 2004 http://www.debian.org/security/faq -...

DSA-475 linux-kernel-2.4.18-hppa - several vulnerabilities

Bulletin has no description...

[SECURITY] [DSA 470-1] New Linux 2.4.17 packages fix several local root exploits (hppa)

-------------------------------------------------------------------------- Debian Security Advisory DSA 470-1 [email protected] http://www.debian.org/security/ Martin Schulze April 1st, 2004 http://www.debian.org/security/faq -...

CVE-2003-0828

Buffer overflow in freesweep in Debian GNU/Linux 3.0 allows local users to gain "games" group privileges when processing environment variables...

CVE-2003-0828

Buffer overflow in freesweep in Debian GNU/Linux 3.0 allows local users to gain "games" group privileges when processing environment variables...

[SECURITY] [DSA 451-1] New xboing packages fix buffer overflows

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 451-1 [email protected] http://www.debian.org/security/ Matt Zimmerman February 27th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 436-2] New mailman packages fix bug introduced in DSA 436-1

-------------------------------------------------------------------------- Debian Security Advisory DSA 436-2 [email protected] http://www.debian.org/security/ Matt Zimmerman February 21st, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 439-1] New Linux 2.4.16 packages fix several local root exploits (arm)

-------------------------------------------------------------------------- Debian Security Advisory DSA 439-1 [email protected] http://www.debian.org/security/ Martin Schulze February 18th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 414-1] New jabber packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 414-1 [email protected] http://www.debian.org/security/ Matt Zimmerman January 6th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 409-1] New bind packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 409-1 [email protected] http://www.debian.org/security/ Matt Zimmerman January 5th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 405-1] New xsok packages fix local group games exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 405-1 [email protected] http://www.debian.org/security/ Martin Schulze December 30th, 2003 http://www.debian.org/security/faq -...