SuSE 11 Security Update : avahi (SAT Patch Number 1827)

The avahi-daemon reflector could cause packet storms when reflecting legacy unicast mDNS traffic CVE-2009-0758. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text...

openSUSE Security Update : postgresql (postgresql-1773)

An unprivileged, authenticated PostgreSQL user could create a table which references functions with malicious content. Maintenance operations carried out be the database superuser could execute such functions CVE-2009-4136. Embedded null bytes in the common name of SSL certificates could bypass...

Ruby 1.9.1 - WEBrick Terminal Escape Sequence in Logs Command Injection

Ruby 1.9.1 - WEBrick Terminal Escape Sequence in Logs Command Injection source: https://www.securityfocus.com/bid/37710/info Ruby WEBrick is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in log files. Attackers can exploit this issue to...

Mandriva Update for vim MDVSA-2008:236-1 (vim)

Check for the Version of vim OpenVAS Vulnerability Test Mandriva Update for vim MDVSA-2008:236-1 vim Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

Sudo version 1.6.8p9 now available, fixes security issue.

Sudo version 1.6.8, patchlevel 9 is now available, which fixes a race condition in Sudo's pathname validation. This is a security issue. Summary: A race condition in Sudo's command pathname handling prior to Sudo version 1.6.8p9 that could allow a user with Sudo privileges to run arbitrary...