161 matches found
Mandriva Linux Security Advisory : cups (MDVSA-2013:034)
Updated cups packages fixes bugs and security vulnerabilities : During the process of CUPS socket activation code refactoring in favour of systemd capability a security flaw was found in the way CUPS service honoured Listen localhost:631 cupsd.conf configuration option. The setting was recognized...
local file access in `Client:send` via manipulation of `$protocol` argument
security fix: hardened the Client::send method against misuse of the $method argument issue 81. Abusing its value, it was possible to force the client to access local files or connect to undesired urls instead of the intended target server's url the one used in the Client constructor. This weakne...
Debian Security Advisory DSA 2476-1 (pidgin-otr)
The remote host is missing an update to pidgin-otr announced via advisory DSA 2476-1. OpenVAS Vulnerability Test $Id: deb24761.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2476-1 pidgin-otr Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
A DTMF-based IVR application that is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs crashes
Fixes an issue in which a DTMF-based IVR application crashes when a user barges-in multiple times with invalid DTMF digits or barges-in to request help. This issue occurs if the application is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs.SymptomsConsider the following scenario: You...
virt-v2v security and bug fix update
0.8.3-5 - Fix regression when converting Win7 32 bit to RHEV RHBZ738236 0.8.3-4 element 0.8.3-3 - Add missing dependency on new Sys::Virt 0.8.3-2 - Fix for CVE-2011-1773 - Document limitations wrt Windows Recovery Console 0.8.3-1 - Include missing virt-v2v.db - Rebase to upstream release 0.8.3...
Fixed in Apache Tomcat 7.0.14
Important: Security constraint bypass CVE-2011-1582 An error in the fixes for CVE-2011-1088/CVE-2011-1183 meant that security constraints configured via annotations were ignored on the first request to a Servlet. Subsequent requests were secured correctly. This was fixed in revision 1100832. This...
Mandriva Update for fetchmail MDVA-2010:018 (fetchmail)
Check for the Version of fetchmail OpenVAS Vulnerability Test Mandriva Update for fetchmail MDVA-2010:018 fetchmail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
SuSE9 Security Update : SLES9-SP4: Security update for lprng (YOU Patch Number 11603)
There is a small memory leak in lpd which lets its memory usage grow a bit for each print job until the print system becomes unusable. - Using lprng with a printcap provided via NIS/YP produced following error: 'Inittempfile: bad tempdir '/var/spool/lpd/%P''. This was caused by the function...
Fedora 11 : viewvc-1.1.2-2.fc11 (2009-8507)
CHANGES in 1.1.2: - security fix: validate the 'view' parameter to avoid XSS attack - security fix: avoid printing illegal parameter names and values - add optional support for character encoding detection issue 400 - fix username case handling in svnauthz module issue 419 - fix cvsdbadmin/svnadm...
MDKA-2007:048-1 : x11-server
The x11 server would crash when setting a pixmap for the root window and later trying to restore the defaults. This update has been patched to correct the problem. Update: An error in packaging caused an incorrect conflict with the updated x11-server packages and the compiz package. New packages...
kernel security and bug fix update
2.6.9-78.0.17.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
Fedora 9 : DevIL-1.7.5-2.fc9 (2009-0856)
Fix missing symbols rh 480269 - Fix off by one error in CVE-2008-5262 check rh 479864 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
kernel security and bug fix update
kernel-2.4.21-57.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - ora 5088963: io to nfs partition hangs - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli kernel-2.4.21-57.EL -...
MDKA-2005:044 : postgresql
A number of bugs are corrected in PostgreSQL version 8.0.4 so an update for Mandrivalinux 2006 is now available PostgreSQL 8.0.3 was provided. Fixes include various memory leakage fixes, improved checking for partially-written WAL pages, a fix for an error that allowed 'VACUUM' to remove ctid...
Fedora Core 4 : gnupg-1.4.2.1-1 (2006-116)
The GNU Privacy Guard provides encryption and signing for messages and arbitrary files, and implements the OpenPGP standard as described by IETF RFC2440. Version 1.4.2 of GnuPG would in some cases erroneously exit with status 0 signaling no errors if it was invoked to check a signature but found ...
Ubuntu 4.10 : postfix vulnerability (USN-74-2)
This is an update to the recently published Ubuntu Security Notice USN-74-1, which fixed the delivery of arbitrary mail to any MX host which has an IPv6 address. Unfortunately that upgrade revealed an error in the package upgrade system which caused package installation to fail. After the failed...
USN-206-2: Fixed lynx packages for USN-206-1
USN-206-1 fixed a security vulnerability in lynx. Unfortunately the fix contained an error that caused lynx to crash under certain circumstances. The updated packages fix this...
Fedora Core 4 : kernel-2.6.12-1.1447_FC4 (2005-820)
Fri Aug 26 2005 Dave Jones 2.6.12-1.1447FC4 - Better identify local builds. 159696 - Fix disk/net dump & netconsole. 152586 - Fix up sleeping in invalid context in sym2 driver. 164995 - Fix 'semaphore is not ready' error in snd-intel8x0m. - Restore hwclock functionality on some systems. 144894 -...
Fedora Core 3 : kernel-2.6.12-1.1376_FC3 (2005-821)
Fri Aug 26 2005 Dave Jones 2.6.12-1.1376FC3 - Better identify local builds. 159696 - Fix disk/net dump & netconsole. 152586 - Fix up sleeping in invalid context in sym2 driver. 164995 - Fix 'semaphore is not ready' error in snd-intel8x0m. - Restore hwclock functionality on some systems. 144894 -...
USN-74-2: Fixed Postfix packages for USN-74-1
This is an update to the recently published Ubuntu Security Notice USN-74-1, which fixed the delivery of arbitrary mail to any MX host which has an IPv6 address. Unfortunately that upgrade revealed an error in the package upgrade system which caused package installation to fail. After the failed...