[SECURITY] [DSA 409-1] New bind packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 409-1 [email protected] http://www.debian.org/security/ Matt Zimmerman January 5th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 405-1] New xsok packages fix local group games exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 405-1 [email protected] http://www.debian.org/security/ Martin Schulze December 30th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 397-1] New PostgreSQL packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 397-1 [email protected] http://www.debian.org/security/ Martin Schulze November 7th, 2003 http://www.debian.org/security/faq -...

[Full-Disclosure] [SECURITY] [DSA 274-1] New node packages fix remote root vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 274-1 [email protected] http://www.debian.org/security/ Martin Schulze August 29th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA-325-1] New eldav packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 325-1 [email protected] http://www.debian.org/security/ Matt Zimmerman June 19th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA-316-3] New jnethack packages fix buffer overflow, incorrect permissions

-------------------------------------------------------------------------- Debian Security Advisory DSA 316-3 [email protected] http://www.debian.org/security/ Matt Zimmerman June 17th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA-309-2] New eterm packages fix error introduced in DSA-309-1

-------------------------------------------------------------------------- Debian Security Advisory DSA 309-2 [email protected] http://www.debian.org/security/ Matt Zimmerman June 6th, 2003 http://www.debian.org/security/faq -...

CVE-2003-0262

leksbot 1.2.3 in Debian GNU/Linux installs the KATAXWR as setuid root, which allows local users to gain root privileges by exploiting unknown vulnerabilities related to the escalated privileges, which KATAXWR is not designed to have...

CVE-2003-0308

The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via 1 expn, 2 checksendmail, or 3 doublebounce.pl...

CVE-2003-0308

The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via 1 expn, 2 checksendmail, or 3 doublebounce.pl...

CVE-2003-0308

CVE-2003-0308 : The Debian GNU/Linux 3.0 package of Sendmail 8.12.3 does not securely create temporary files, enabling local users to gain additional privileges via the expn, checksendmail, or doublebounce.pl scripts. The issue is due to insecure temporary file handling within these components. E...

CVE-2003-0308

The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via 1 expn, 2 checksendmail, or 3 doublebounce.pl...

CVE-2003-0308

The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via 1 expn, 2 checksendmail, or 3 doublebounce.pl...

CVE-2003-0262

leksbot 1.2.3 in Debian GNU/Linux installs the KATAXWR as setuid root, which allows local users to gain root privileges by exploiting unknown vulnerabilities related to the escalated privileges, which KATAXWR is not designed to have...

CVE-2003-0262

CVE-2003-0262 concerns leksbot 1.2.3 on Debian GNU/Linux, where the program KATAXWR is installed as setuid root due to a packaging error. This misconfiguration enables local users to attempt privilege escalation to root, leveraging vulnerabilities in KATAXWR that it was not designed to expose to ...

OpenSSHPAM 3.6.1p1 - Remote Users Discovery Tool

OpenSSHPAM 3.6.1p1 - Remote Users Discovery Tool / SSHBRUTE - OpenSSH/PAM Proof of concept code by Maurizio Agazzini Tested against Red Hat, Mandrake, and Debian GNU/Linux. Reference: http://lab.mediaservice.net/advisory/2003-01-openssh.txt $ tar xvfz openssh-3.6.1p1.tar.gz $ patch -p0 include...

[SECURITY] [DSA 292-1] New mime-support packages fix temporary file race conditions

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 292-1 [email protected] http://www.debian.org/security/ Martin Schulze April 22nd, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 261-1] New tcpdump packages fix denial of service vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 261-1 [email protected] http://www.debian.org/security/ Martin Schulze March 14th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 256-1] New mhc-utils packages fix predictable temporary file

-------------------------------------------------------------------------- Debian Security Advisory DSA 256-1 [email protected] http://www.debian.org/security/ Martin Schulze February 28th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 249-1] New w3mmee packages fix cookie information leak

-------------------------------------------------------------------------- Debian Security Advisory DSA 249-1 [email protected] http://www.debian.org/security/ Martin Schulze February 11th, 2003 http://www.debian.org/security/faq -...