1915 matches found
[SECURITY] [DSA-040-1] slrn buffer overflow
Package : slrn Problem type : buffer overflow Debian-specific: no Bill Nottingham reported a problem in the wrapping/unwrapping functions of the slrn newsreader. A long header in a message might overflow a buffer and which could result into executing arbitraty code encoded in the message. The...
[SECURITY] [DSA-039-1] glibc local file overwrite problems
Package : glibc Problem type : local file overwrite Debian-specific: no The version of GNU libc that was distributed with Debian GNU/Linux 2.2 suffered from 2 security problems: It was possible to use LDPRELOAD to load libraries that are listed in /etc/ld.so.cache, even for suid programs. This...
[SECURITY] [DSA 037-1] New versions of Athena Widget replacement libraries available
---------------------------------------------------------------------------- Debian Security Advisory DSA-037-1 [email protected] http://www.debian.org/security/ Martin Schulze March 7, 2001 - ---------------------------------------------------------------------------- Package : nextaw, xaw3d,...
[SECURITY] [DSA 035-1] New version of man2html available
---------------------------------------------------------------------------- Debian Security Advisory DSA-035-1 [email protected] http://www.debian.org/security/ Martin Schulze March 7, 2001 - ---------------------------------------------------------------------------- Package : man2html...
[SECURITY] [DSA 034-1] New version of ePerl packages available
---------------------------------------------------------------------------- Debian Security Advisory DSA-034-1 [email protected] http://www.debian.org/security/ Martin Schulze March 7, 2001 - ---------------------------------------------------------------------------- Package : ePerl...
[SECURITY] [DSA 031-2] New sudo packages for powerpc available
---------------------------------------------------------------------------- Debian Security Advisory DSA-031-2 [email protected] http://www.debian.org/security/ Martin Schulze March 6, 2001 - ---------------------------------------------------------------------------- Package : sudo...
[SECURITY] [DSA 011-2] New mgetty packages for m68k and powerpc available
---------------------------------------------------------------------------- Debian Security Advisory DSA-011-2 [email protected] http://www.debian.org/security/ Martin Schulze March 6, 2001 - ---------------------------------------------------------------------------- Package : mgetty...
[SECURITY] [DSA 030-2] New m68k packages of XFree86 released
---------------------------------------------------------------------------- Debian Security Advisory DSA 030-2 [email protected] http://www.debian.org/security/ Martin Schulze February 12, 2001 - ---------------------------------------------------------------------------- Package : xfree86-1...
[SECURITY] [DSA-030-1] Multiple security problems in X
Package : xfree86-1 Vulnerability : buffer overflow, insecure tempfile handling, denial-of-service attack Debian-specific: no Chris Evans, Joseph S. Myers, Michal Zalewski, Alan Cox, and others have noted a number of problems in several components of the X Window System sample implementation from...
CVE-2001-0069
dialog before 0.9a-20000118-3bis in Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack...
[SECURITY] [DSA 028-1] New man-db packages released
---------------------------------------------------------------------------- Debian Security Advisory DSA-028-1 [email protected] http://www.debian.org/security/ Martin Schulze February 9, 2001 - ---------------------------------------------------------------------------- Package : man-db...
[SECURITY] [DSA 023-1] New version of inn2 released
---------------------------------------------------------------------------- Debian Security Advisory DSA-023-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26, 2001 - ---------------------------------------------------------------------------- Package : inn2...
[SECURITY] [DSA 021-1] New version of Apache released
---------------------------------------------------------------------------- Debian Security Advisory DSA-021-1 [email protected] http://www.debian.org/security/ Martin Schulze January 26, 2001 - ---------------------------------------------------------------------------- Package : apache...
[SECURITY] [DSA 019-1] New version of squid released
---------------------------------------------------------------------------- Debian Security Advisory DSA-019-1 [email protected] http://www.debian.org/security/ Martin Schulze January 25, 2001 - ---------------------------------------------------------------------------- Package : squid...
[SECURITY] [DSA-017-1] New version of jazip released
---------------------------------------------------------------------------- Debian Security Advisory DSA-017-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23, 2001 - ---------------------------------------------------------------------------- Package : jazip...
[SECURITY] [DSA-013-1] New version of MySQL released
---------------------------------------------------------------------------- Debian Security Advisory DSA-013-1 [email protected] http://www.debian.org/security/ Martin Schulze January 23, 2001 - ---------------------------------------------------------------------------- Package : mysql...
CVE-2000-1136
CVE-2000-1136 affects elvis-tiny before 1.4-10 in Debian GNU/Linux (and possibly other Linux OS). The issue is a symlink attack that lets local users overwrite files of other users. Exploitation is Local with Low complexity and no authentication required; impacts include partial confidentiality, ...
CVE-2000-1136
elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack...
CVE-2000-1135
fshd fsh daemon in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack...
CVE-2000-1135
CVE-2000-1135 describes a local privilege issue in the fshd (fsh daemon) on Debian GNU/Linux. The vulnerability allows a local user to overwrite files belonging to other users via a symbolic link (symlink) attack. The impact is partial confidentiality, integrity, and availability due to the abili...