26 matches found
CLSA-2023-1700160647 Fix CVE(s): CVE-2023-46847
SECURITY UPDATE: Denial of Service in HTTP Digest Authentication - debian/patches/CVE-2023-46847.patch: fix stack buffer overflow when parsing Digest Authorization - CVE-2023-46847...
CLSA-2023-1688678678 Fix CVE(s): CVE-2021-23240
SECURITY UPDATE: privilege escalation via symlinks - debian/patches/CVE-2021-23240.patch: fix opportunity for local unprivileged user to gain file ownership via symlinks. - CVE-2021-23240...
CLSA-2023-1687469528 Fix CVE(s): CVE-2023-24329
SECURITY UPDATE: urllib.parse space handling CVE-2023-24329 appears unfixed - debian/patches/CVE-2023-24329-2.patch: start stripping C0 control and space chars in urlsplit - CVE-2023-24329...
CLSA-2023-1675985375 Fix CVE(s): CVE-2023-22809
SECURITY UPDATE: edit a file not permitted by the security policy - debian/patches/CVE-2023-22809.patch: do not permit editor arguments to include "--" - CVE-2023-22809...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The Linux-patch-debian-2.6.18 package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may result in a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
lbl-traceroute.txt
LBL traceroute exploit. By Dvorak, Synnergy Networks www.synnergy.net Vulnerable: All versions of LBL traceroute using savestr. See Chris Evans post in bugtraq http://www.securityfocus.com/archive/1/136215 Discovery: Pekka Savola [email protected] Published to bugtraq by: Chris Evans...