Fedora 7 : openldap-2.3.34-6.fc7 (2008-1307)

Tue Feb 5 2008 Jan Safranek 2.3.34-6 - fix CVE-2007-6698 431409 - Mon Jan 14 2008 Jan Safranek 2.3.34-5 - fix default slurpd directory to /var/lib/ldap 424831 - Fri Nov 2 2007 Jan Safranek 2.3.34-4 - fix various security flaws 360081 - Fri Jul 13 2007 Jan Safranek 2.3.34-3 - Fix initscript return...

Fedora 8 : postgresql-8.2.6-1.fc8 (2008-0478)

Mon Jan 7 2008 Tom Lane 8.2.6-1 - Update to PostgreSQL 8.2.6 to fix CVE-2007-4769, CVE-2007-4772, CVE-2007-6067, CVE-2007-6600, CVE-2007-6601 - Make initscript and pam config files be installed unconditionally; seems new buildroots don't necessarily have those directories in place Note that...

Fedora 8 : bind-9.5.0-20.b1.fc8 (2007-4655)

bind-chroot-admin called restorecon on /proc filesystem 405281 - 9.5.0b1 release 405281, 392491 - stop with initscript will fail if rndc was disabled 417431 - fixed IDN support in dig and host utilities 412241 - added dst/gssapi.h to -devel subpackage 419091 - CVE-2007-6283 - /etc/rndc.key file...

Fedora 7 : openldap-2.3.34-4.fc7 (2007-3124)

Fri Nov 2 2007 Jan Safranek 2.3.34-4.fc7 - fix various security flaws 360081 - Fri Jul 13 2007 Jan Safranek 2.3.34-3.fc7 - Fix initscript return codes 242667 - Provide overlays including smbk5pwd as modules; 246036, 245896, 220895 - Add available modules to config file - do not create script in...

Moderate: Red Hat Security Advisory: openssh security and bug fix update

Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...

Important: cups security and bug fix update

1.2.4-11.14.el51.1 - Applied patch to fix CVE-2007-4351 STR 2561, bug 353981. 1.2.4-11.14 - Applied patch to fix cupsd crash when failing to open a file: URI STR 2351, bug 250415. 1.2.4-11.13 - Moved LSPP security attributes check before job creation bug 231522. 1.2.4-11.12 - Moved LSPP access...

Security fix for the ALT Linux 6 package eggdrop version 1.6.18-alt2

Sept. 20, 2007 Vladimir V Kamarzin 1.6.18-alt2 - Security fix: CVE-2007-2807: Stack-based buffer overflow in mod/server.mod/servrmsg.c - Recode README.ALT to utf8 and update it - Create pseudouser on %pre stage - Install config to /var/lib/eggdrop - Load module blowfish by default - Change defaul...

Fedora Core 5 : samba-3.0.23-1.fc5 (2006-807)

Wed Jul 12 2006 Jay Fenlason 3.0.23-1.fc5 - Upgrade to 3.0.23 to close bz197836 CVE-2006-3403 Samba denial of service - include related spec file, filter-requires-samba.sh and patch changes from rawhide. - include the fixed smb.init file from rawhide, closing bz182560 Wrong retval for initscript...

[ MDKSA-2006:158 ] - Updated MySQL packages fix DoS vuln, initscript bug

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:158 http://www.mandriva.com/security/ Package : MySQL Date : August 31, 2006 Affected: 2006.0 Problem Description: MySQL before 4.1.13 allows local users to cause a denial of service persistent replication...

CVE-2001-1383

CVE-2001-1383 affects the initscript in setserial 2.17-4 and earlier, where it creates predictable temporary file names. This could allow local users to perform unauthorized operations on files. The Connected documents confirm the same description across CVE lists and NVD records, with no provide...

[RHSA-2001:110-05] Insecure setserial initscript

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Insecure setserial initscript Advisory ID: RHSA-2001:110-05 Issue date: 2001-09-12 Updated on: 2001-09-19 Product: Red Hat Linux Keywords: setserial initscript temporary file...

GLIBC 2.1.3 ld_preload Local Exploit

Exploit for linux platform in category local exploits ==================================== GLIBC 2.1.3 ldpreload Local Exploit ==================================== !/bin/tcsh przyklad wykorzystania dziury w LDPRELOAD shadow tested on redhat 6.0, should work on others if -e /etc/initscript echo...