442 matches found
Debian DSA-1386-1 : wesnoth - programming error
A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. Note that both wesnoth and the wesno...
[SECURITY] [DSA 1380-1] New elinks packages fix information disclosure
------------------------------------------------------------------------ Debian Security Advisory DSA 1380-1 [email protected] http://www.debian.org/security/ Steve Kemp October 2nd, 2007 http://www.debian.org/security/faq -...
DSA-1365-3 id3lib3.8.3 - denial of service
Bulletin has no description...
Debian DSA-1376-1 : kdebase - programming error
iKees Huijgen discovered that under certain circumstances KDM, an X session manager for KDE, could be tricked into allowing user logins without a password. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securi...
DSA-1376-1 kdebase - programming error
Bulletin has no description...
[SECURITY] [DSA 1365-1] New id3lib3.8.3 packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1365-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 1st, 2007 http://www.debian.org/security/faq -...
Debian DSA-1365-3 : id3lib3.8.3 - programming error
Nikolaus Schulz discovered that a programming error in id3lib, an ID3 Tag Library, may lead to denial of service through symlink attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...
DSA-1288-2 pptpd - regression
Bulletin has no description...
[SECURITY] [DSA 1365-1] New id3lib3.8.3 packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 1365-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 1st, 2007 http://www.debian.org/security/faq -...
DSA-1365-1 id3lib3.8.3
Bulletin has no description...
DSA-1339-1 iceape - several
Bulletin has no description...
Debian DSA-1321-1 : evolution-data-server - programming error
It was discovered that the IMAP code in the Evolution Data Server performs insufficient sanitising of a value later used an array index, which can lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
Debian DSA-1311-1 : postgresql-7.4 - programming error
It was discovered that the PostgreSQL database performs insufficient validation of variables passed to privileged SQL statement called'security definers', which could lead to SQL privilege escalation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
Debian DSA-1309-1 : postgresql-8.1 - programming error
It was discovered that the PostgreSQL database performs insufficient validation of variables passed to privileged SQL statements, so called'security definers', which could lead to SQL privilege escalation. The oldstable distribution sarge doesn't contain PostgreSQL 8.1. %NASLMINLEVEL 70300 C...
[SECURITY] [DSA 1309-1] New PostgreSQL 8.1 packages fix privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 1309-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 16th, 2007 http://www.debian.org/security/faq -...
Debian DSA-1245-1 : proftpd - programming error
Martin Loewer discovered that the proftpd FTP daemon is vulnerable to denial of service if the addon module for Radius authentication is enabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisor...
[SECURITY] [DSA 1288-1] New pptpd packages fix denial of service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1288-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 8th, 2007 http://www.debian.org/security/faq -...
Debian DSA-1288-1 : pptpd - programming error
It was discovered that the PoPToP Point to Point Tunneling Server contains a programming error, which allows the tear-down of a PPTP connection through a malformed GRE packet, resulting in denial of service. The oldstable distribution sarge is not affected by this problem. %NASLMINLEVEL 70300 C...
Debian DSA-1256-1 : gtk+2.0 - programming error
It was discovered that the image loading code in the GTK+ graphical user interface library performs insufficient error handling when loading malformed images, which may lead to denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
DTSA-32-1 bcfg2 - programming error
Bulletin has no description...