[SECURITY] [DSA 2432-1] libyaml-libyaml-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2432-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 12, 2012 http://www.debian.org/security/faq -...

DSA-2432-1 libyaml-libyaml-perl - format string vulnerability

Bulletin has no description...

Debian DSA-2431-1 : libdbd-pg-perl - format string vulnerabilities

Niko Tyni discovered two format string vulnerabilities in DBD::Pg, a Perl DBI driver for the PostgreSQL database server, which can be exploited by a rogue database server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...

[SECURITY] [DSA 2431-1] libdbd-pg-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2431-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 11, 2012 http://www.debian.org/security/faq -...

DSA-2431-1 libdbd-pg-perl - format string vulnerabilities

Bulletin has no description...

[USN-1396-1] GNU C Library vulnerabilities

========================================================================== Ubuntu Security Notice USN-1396-1 March 09, 2012 eglibc, glibc vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivative...

CVE-2012-0646

Format string vulnerability in VPN in Apple iOS before 5.1 allows remote attackers to execute arbitrary code via a crafted racoon configuration file...

CVE-2012-0646

Format string vulnerability in VPN in Apple iOS before 5.1 allows remote attackers to execute arbitrary code via a crafted racoon configuration file...

CVE-2012-0646

CVE-2012-0646 affects Apple iOS prior to 5.1, describing a format string vulnerability in the VPN racoon configuration handler that could allow remote code execution with system privileges when a crafted racoon file is processed. The core issue is a format-string vulnerability in the VPN configur...

sudo: Privilege escalation

Background sudo allows a system administrator to give users the ability to run commands as other users. Description Two vulnerabilities have been discovered in sudo: When the sudoers file is configured with a Runas group, sudo does not prompt for a password when changing to the new group...

GLSA-201203-06 : sudo: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201203-06 sudo: Privilege escalation Two vulnerabilities have been discovered in sudo: When the sudoers file is configured with a Runas group, sudo does not prompt for a password when changing to the new group CVE-2011-0010. A...

CVE-2012-0864

Integer overflow in the vfprintf function in stdio-common/vfprintf.c in glibc 2.14 and other versions allows context-dependent attackers to bypass the FORTIFYSOURCE protection mechanism, conduct format string attacks, and write to arbitrary memory via a large number of arguments...

Format string

Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via format string specifiers in a message string...

CVE-2012-0242

CVE-2012-0242 : A format-string vulnerability in Advantech/BroadWin WebAccess prior to 7.0 allows remote execution of arbitrary code via a crafted message string. Public advisories note that attacks can be remote and exploitable for full control. ICS-CERT summarizes the impact as bypassing authen...

CVE-2012-0242

Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via format string specifiers in a message string...

sudo format string vulnerability

Format string vulnerability on logging...

FreeBSD Ports: sudo

The remote host is missing an update to the system as announced in the referenced advisory. VID 7c920bb7-4b5f-11e1-9f47-00e0815b8da8 OpenVAS Vulnerability Test $ Description: Auto generated from VID 7c920bb7-4b5f-11e1-9f47-00e0815b8da8 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Gentoo Security Advisory GLSA 201201-06 (iscsitarget)

The remote host is missing updates announced in advisory GLSA 201201-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

FreeBSD Ports: sudo

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Gentoo Security Advisory GLSA 201201-06 (iscsitarget)

The remote host is missing updates announced in advisory GLSA 201201-06. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...