[SECURITY] [DSA 1047-1] New resmgr packages fix unauthorised access

-------------------------------------------------------------------------- Debian Security Advisory DSA 1047-1 [email protected] http://www.debian.org/security/ Martin Schulze April 30th, 2006 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 1047-1] New resmgr packages fix unauthorised access

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1047-1 [email protected] http://www.debian.org/security/ Martin Schulze April 30th, 2006 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 1043-1] New abcmidi packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1043-1 [email protected] http://www.debian.org/security/ Martin Schulze April 26th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1037-1] New zgv packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1037-1 [email protected] http://www.debian.org/security/ Martin Schulze April 21st, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1037-1] New zgv packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1037-1 [email protected] http://www.debian.org/security/ Martin Schulze April 21st, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1035-1] New fcheck packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 1035-1 [email protected] http://www.debian.org/security/ Steve Kemp April 15th, 2005 http://www.debian.org/security/faq -...

CVE-2006-1772

debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/databaseadminpass record, which...

CVE-2006-1772

debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/databaseadminpass record, which...

CVE-2006-1772

CVE-2006-1772 affects Debian GNU/Linux where, during configuration of mnogosearch in the mnogosearch-common 3.2.31-1 package, the debconf process stores the cleartext database administrator password in a world-readable config.dat instead of the restricted passwords.dat in mnogosearch-common/datab...

[SECURITY] [DSA 1033-1] New horde3 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1033-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 12th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1032-1] New zope-cmfplone packages fix unprivileged data manipulation

-------------------------------------------------------------------------- Debian Security Advisory DSA 1032-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 12th, 2006 http://www.debian.org/security/faq -...

[SA19589] Debian mnogosearch Insecure Password Storage Security Issue

TITLE: Debian mnogosearch Insecure Password Storage Security Issue SECUNIA ADVISORY ID: SA19589 VERIFY ADVISORY: http://secunia.com/advisories/19589/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: Local system OPERATING SYSTEM: Debian GNU/Linux 3.1...

[SECURITY] [DSA 1029-1] New libphp-adodb packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1029-1 [email protected] http://www.debian.org/security/ Martin Schulze April 8th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1028-1] New libimager-perl packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1028-1 [email protected] http://www.debian.org/security/ Martin Schulze March 7th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1023-1] New kaffeine packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1023-1 [email protected] http://www.debian.org/security/ Martin Schulze April 5th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1023-1] New kaffeine packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1023-1 [email protected] http://www.debian.org/security/ Martin Schulze April 5th, 2006 http://www.debian.org/security/faq -...

CVE-2006-1564

Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the 1 modauthzsvn.so and 2 moddavsvn.so modules, which might allow local users to gain privileges by installing malicious libraries in that...

Design/Logic Flaw

Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...

Design/Logic Flaw

Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the 1 modauthzsvn.so and 2 moddavsvn.so modules, which might allow local users to gain privileges by installing malicious libraries in that...

CVE-2006-1565

Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries in that directory...