Fedora 10 : gnutls-2.4.2-3.fc10 (2008-10162)

Tue Nov 11 2008 Tomas Mraz 2.4.2-3 - fix chain verification issue CVE-2008-4989 470079 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

Fedora 10 : cobbler-1.2.9-1.fc10 (2008-10069)

Fixes a security vulnerability where a CobblerWeb user if so configured can import a Python module via a web-edited Cheetah template and run commands as root. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...

MODx Revolution CMS Cross Site Scripting

getObject'modUser',array 30: 'username' = $POST'username', 31: ; ... 71: else if !empty$POST'forgotlogin' 72: $c = $modx-newQuery'modUser'; 73: $c-selectarray'modUser.','Profile.email','Profile.fullname'; 74: $c-innerJoin'modUserProfile','Profile'; 75: $c-wherearray 76: '...

Fedora 10 : rt3-3.8.2-12.fc10 (2009-12817)

Fri Dec 4 2009 Ralf Corsepius - 3.8.2-12 - Add rt-3.8.2-rh-bz543962.diff BZ 543962. - Tue Oct 13 2009 Ralf Corsepius - 3.8.2-11 - Update rt-3.8.2-rh-bz526870.diff. - Mon Oct 12 2009 Ralf Corsepius - 3.8.2-10 - Add rt-3.8.2-rh-bz526870.diff BZ 526870. - Wed Jun 24 2009 Ralf Corsepius - 3.8.2-9 -...

Fedora 10 : mysql-5.0.88-1.fc10 (2009-12180)

See http://dev.mysql.com/doc/refman/5.0/en/news-5-0-88.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Fedora 10 : asterisk-1.6.0.19-1.fc10 (2009-12461)

Update to 1.6.0.19 to fix AST-2009-010/CVE-2009-4055 http://downloads.asterisk.org/pub/security/AST-2009-010.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...

Fedora 10 : kernel-2.6.27.41-170.2.117.fc10 (2009-13098)

Update to kernel 2.6.27.41: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.39 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.40 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.41 Note that Tenable Network Security has extracted the preceding description...

[SECURITY] Fedora 10 Update: kernel-2.6.27.41-170.2.117.fc10

The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc...

[SECURITY] Fedora 10 Update: mysql-5.0.88-1.fc10

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

[SECURITY] Fedora 10 Update: asterisk-1.6.0.19-1.fc10

Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware...

[SECURITY] Fedora 10 Update: ruby-1.8.6.368-2.fc10

Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks as in Perl. It is simple, straight-forward, and extensible...

[SECURITY] Fedora 10 Update: moodle-1.9.7-1.fc10

Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...

[SECURITY] Fedora 10 Update: httpd-2.2.14-1.fc10

The Apache HTTP Server is a powerful, efficient, and extensible web server...

Fedora 10 : rubygem-actionpack-2.1.1-5.fc10 (2009-12966)

Two security issues are found on activepack shipped on Fedora 10. One bug is that there is a weakness in the striptags function in ruby on rails bug 542786, CVE-2009-4214. Another one is a possibility to circumvent protection against cross-site request forgery CSRF attacks bug 544329. This new rp...

Fedora 10 : httpd-2.2.14-1.fc10 (2009-12604)

This update contains the latest stable release of Apache httpd. Three security fixes are included, along with several minor bug fixes. A flaw was found in the way the TLS/SSL Transport Layer Security/Secure Sockets Layer protocols handle session renegotiation. A man-in-the-middle attacker could u...

Fedora 10 : nginx-0.7.64-1.fc10 (2009-12775)

Fri Dec 4 2009 Jeremy Hinegardner - 0.7.64-1 - update to 0.7.64 - Thu Oct 29 2009 Jeremy Hinegardner - 0.7.63-1 - update to 0.7.63 - Mon Sep 14 2009 Jeremy Hinegardner - 0.7.62-1 - update to 0.7.62 - fixes CVE-2009-2629 - Sun Aug 2 2009 Jeremy Hinegardner - 0.7.61-1 - update to new stable 0.7.61...

Fedora 10 : cups-1.3.11-4.fc10 (2009-12652)

This update include a fix for improper reference counting in abstract file descriptors handling interface CVE-2009-3553, and for a memory leak in the LSPP support. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...

[SECURITY] Fedora 10 Update: expat-2.0.1-8.fc10

This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser. This means that you register handlers with the parser prior to starting the parse. These handlers are called when the parser discovers the associated structures in the document being parse...

[SECURITY] Fedora 10 Update: cups-1.3.11-4.fc10

The Common UNIX Printing System provides a portable printing layer for UNIX=C2=AE operating systems. It has been developed by Easy Software Produc ts to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces...

[SECURITY] Fedora 10 Update: wget-1.12-2.fc10

GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...