357 matches found
[SECURITY] [DSA 1459-1] New gforge packages fix SQL injection
------------------------------------------------------------------------ Debian Security Advisory DSA-1459-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst January 13, 2008 http://www.debian.org/security/faq -...
DSA-1399-1 pcre3 - arbitrary code execution
Bulletin has no description...
DSA-1365-3 id3lib3.8.3 - denial of service
Bulletin has no description...
DSA-1370-2 phpmyadmin - several vulnerabilities
Bulletin has no description...
Debian DSA-1367-1 : krb5 - buffer overflow
It was discovered that a buffer overflow of the RPC library of the MIT Kerberos reference implementation allows the execution of arbitrary code. The oldstable distribution sarge is not affected by this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
Debian DSA-1364-2 : vim - several vulnerabilities
Several vulnerabilities have been discovered in the vim editor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-2953 Ulf Harnhammar discovered that a format string flaw in helptagsone from src/excmds.c triggered through the 'helptags' command can le...
DSA-1364-1 vim
Bulletin has no description...
DSA-1365-1 id3lib3.8.3
Bulletin has no description...
DSA-1354-1 gpdf - integer overflow
Bulletin has no description...
Debian DSA-1341-2 : bind9 - design error
This update provides fixed packages for the oldstable distribution sarge. For reference the original advisory text : Amit Klein discovered that the BIND name server generates predictable DNS query IDs, which may lead to cache poisoning attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
DSA-1352-1 pdfkit.framework - integer overflow
Bulletin has no description...
Debian DSA-1343-1 : file - integer overflow
Colin Percival discovered an integer overflow in file, a file type classification tool, which may lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...
Debian DSA-1338-1 : iceweasel - several vulnerabilities
Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3089 Ronen Zilberman and Michal Zalewski discovered that a timing race...
DSA-1320-1 clamav
Bulletin has no description...
DSA-1288-1 pptpd
Bulletin has no description...
DSA-1284-1 qemu
Bulletin has no description...
Debian DSA-882-1 : openssl095 - cryptographic weakness
Yutaka Oiwa discovered a vulnerability in the Open Secure Socket Layer OpenSSL library that can allow an attacker to perform active protocol-version rollback attacks that could lead to the use of the weaker SSL 2.0 protocol even though both ends support SSL 3.0 or TLS 1.0. The following matrix...