[SECURITY] [DSA 937-1] New tetex-bin packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 937-1 [email protected] http://www.debian.org/security/ Martin Schulze January 12th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 937-1] New tetex-bin packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 937-1 [email protected] http://www.debian.org/security/ Martin Schulze January 12th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 933-1] New hylafax packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 933-1 [email protected] http://www.debian.org/security/ Michael Stone January 9, 2006 http://www.debian.org/security/faq -...

iDefense Security Advisory 01.09.06: Multiple Vendor mod_auth_pgsql Format String Vulnerability

Multiple Vendor modauthpgsql Format String Vulnerability iDefense Security Advisory 01.09.06 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=367 January 09, 2006 I. BACKGROUND The modauthpgsql apache module allows user authentication against information stored in a PostgreSQL...

[SECURITY] [DSA 932-1] New kpdf packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 932-1 [email protected] http://www.debian.org/security/ Martin Schulze January 9th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 930-1 [email protected] http://www.debian.org/security/ Steve Kemp Jan 9, 2006 http://www.debian.org/security/faq - --------------------------------------------------------------------------...

[SECURITY] [DSA 929-1] New petris packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 929-1 [email protected] http://www.debian.org/security/ Steve Kemp Jan 9, 2006 http://www.debian.org/security/faq - --------------------------------------------------------------------------...

[Full-disclosure] [SECURITY] [DSA 930-1] New smstools packages fix format string vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 930-1 [email protected] http://www.debian.org/security/ Steve Kemp Jan 9, 2006 http://www.debian.org/security/faq -...

CVE-2005-4728

Untrusted search path vulnerability RPATH in amaya 9.2.1 on Debian GNU/Linux allows local users to gain privileges via a malicious Mesa library in the /home/anand directory...

CVE-2005-4418

util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities...

CVE-2005-4728

Untrusted search path vulnerability RPATH in amaya 9.2.1 on Debian GNU/Linux allows local users to gain privileges via a malicious Mesa library in the /home/anand directory...

CVE-2005-4418

util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities...

CVE-2005-4347

The Linux 2.4 kernel patch in kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux does not correctly set the "chroot barrier" with util-vserver, which allows attackers to access files on the host system that are outside of the vserver...

[SECURITY] [DSA 928-1] New dhis-tools-dns packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 928-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 928-1] New dhis-tools-dns packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 928-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2005 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 928-1] New dhis-tools-dns packages fix insecure temporary file creation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 928-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 926-2] New ketm packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 926-2 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 926-1] New ketm packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 926-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2005 http://www.debian.org/security/faq -...

[Full-disclosure] [SECURITY] [DSA 924-1] New nbd packages fix potential arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 924-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 923-1] New dropbear packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 923-1 [email protected] http://www.debian.org/security/ Martin Schulze December 19th, 2005 http://www.debian.org/security/faq -...