[SECURITY] [DSA 895-1] New uim packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 895-1 [email protected] http://www.debian.org/security/ Martin Schulze November 14th, 2005 http://www.debian.org/security/faq -...

Special characters for penetration invasion decrypt-vulnerability warning-the black bar safety net

AnalysisServerof the web application, likethe forum, chat rooms, and found their programming bugs or omissions, so for 8 0 port the penetration of the invasion, it seems just a hacker program Master of things. In fact, although we will not write programs, but the use of the special structure of t...

[SECURITY] [DSA 889-1] New enigmail packages fix information disclosure

-------------------------------------------------------------------------- Debian Security Advisory DSA 889-1 [email protected] http://www.debian.org/security/ Martin Schulze November 8th, 2005 http://www.debian.org/security/faq -...

DSA-879-1 gallery - programming error

Bulletin has no description...

Debian DSA-864-1 : ruby1.8 - programming error

Yutaka Oiwa discovered a bug in Ruby, the interpreter for the object-oriented scripting language, that can cause illegal program code to bypass the safe level and taint flag protections check and be executed. The following matrix lists the fixed versions in our distributions : old stable woody...

[SECURITY] [DSA 864-1] New Ruby 1.8 packages fix safety bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 864-1 [email protected] http://www.debian.org/security/ Martin Schulze October 13th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 864-1] New Ruby 1.8 packages fix safety bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 864-1 [email protected] http://www.debian.org/security/ Martin Schulze October 13th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 862-1] New Ruby 1.6 packages fix safety bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 862-1 [email protected] http://www.debian.org/security/ Martin Schulze October 11th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 860-1] New Ruby packages fix safety bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 860-1 [email protected] http://www.debian.org/security/ Martin Schulze October 11th, 2005 http://www.debian.org/security/faq -...

Debian DSA-862-1 : ruby1.6 - programming error

Yutaka Oiwa discovered a bug in Ruby, the interpreter for the object-oriented scripting language, that can cause illegal program code to bypass the safe level and taint flag protections check and be executed. The following matrix lists the fixed versions in our distributions : old stable woody...

Debian DSA-845-1 : mason - programming error

Christoph Martin noticed that upon configuration mason, which interactively creates a Linux packet filtering firewall, does not install the init script to actually load the firewall during system boot. This will leave the machine without a firewall after a reboot. %NASLMINLEVEL 70300 C Tenable...

Debian DSA-860-1 : ruby - programming error

Yutaka Oiwa discovered a bug in Ruby, the interpreter for the object-oriented scripting language, that can cause illegal program code to bypass the safe level and taint flag protections check and be executed. The following matrix lists the fixed versions in our distributions : old stable woody...

Debian DSA-851-1 : openvpn - programming errors

Several security related problems have been discovered in openvpn, a Virtual Private Network daemon. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-2531 Wrong processing of failed certificate authentication when running with 'verb 0' and without TL...

Debian DSA-849-1 : shorewall - programming error

'Supernaut' noticed that shorewall, the Shoreline Firewall, could generate an iptables configuration which is significantly more permissive than the rule set given in the shorewall configuration, if MAC verification are used in a non-default manner. When MACLISTDISPOSITION is set to ACCEPT in the...

[SECURITY] [DSA 851-1] New openvpn packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 851-1 [email protected] http://www.debian.org/security/ Martin Schulze October 9th, 2005 http://www.debian.org/security/faq -...

DSA-849-1 shorewall - programming error

Bulletin has no description...

[SECURITY] [DSA 845-1] New mason packages fix missing init script

-------------------------------------------------------------------------- Debian Security Advisory DSA 845-1 [email protected] http://www.debian.org/security/ Martin Schulze October 6th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 845-1] New mason packages fix missing init script

-------------------------------------------------------------------------- Debian Security Advisory DSA 845-1 [email protected] http://www.debian.org/security/ Martin Schulze October 6th, 2005 http://www.debian.org/security/faq -...

Low: Red Hat Security Advisory: perl security update

Updated Perl packages that fix security issues and contain several bug fixes are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. Perl is a high-level programming language commonly used for system...

Debian DSA-844-1 : mod-auth-shadow - programming error

A vulnerability in modauthshadow, an Apache module that lets users perform HTTP authentication against /etc/shadow, has been discovered. The module runs for all locations that use the 'require group' directive which would bypass access restrictions controlled by another authorisation mechanism,...