73 matches found
Openswan和strongSwan DPD报文远程拒绝服务漏洞
BUGTRAQ ID: 34296 CVECAN ID: CVE-2009-0790 Openswan和strongSwan都是Linux系统下的IPSEC实现。 死亡对等体检测(DPD)是IPsec IKE通知消息,使用ICOOKIE/RCOOKIE机制将入站报文匹配到已知的安全关联(ISAKMP)。在一个端点的ISAKMP状态已过期但另一个端点仍在使用旧状态发送DPD通知的情况下,如果远程攻击者向Openswan和strongSwan发送了恶意的RUTHERE或 RUTHEREACK通知报文的话,就会在不存在的状态对象st上触发空指针引用,导致pluto IKE守护程序崩溃并重启。...
[SECURITY] [DSA 1739-1] New mldonkey packages fix information disclosure
------------------------------------------------------------------------ Debian Security Advisory DSA-1739-1 [email protected] http://www.debian.org/security/ Florian Weimer March 13, 2009 http://www.debian.org/security/faq -...
[USN-732-1] dash vulnerability
=========================================================== Ubuntu Security Notice USN-732-1 March 10, 2009 dash vulnerability CVE-2009-0854 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 This advisor...
[SECURITY] [DSA 1650-1] New openldap2.3 packags fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1650-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 12, 2008 http://www.debian.org/security/faq -...
Debian 2.1 apcd符号链接漏洞
和Debian GNT/Linux 2.1一起发行的apcd软件包存在符号链接漏洞。当apcd进程接收到一个SIGUSR1信号时,会将其状态信息保存到/tmp/upsstat。然而由于这个文件没有被安全地打开,可能会导致符号链接攻击。 Debian GNU/Linux 2.1 该漏洞在0.6a.nr-4slink1版本中被修补,建议立刻升级apcd软件包。 Source archives: http://security.debian.org/dists/stable/updates/source/apcd0.6a.nr-4slink1.diff.gz MD5 checksum:...
X.Org X server RENDER扩展ProcRenderCreateCursor()拒绝服务漏洞
BUGTRAQ ID: 29665 CVECAN ID: CVE-2008-2361 Xorg X Server是多个厂商操作系统中所捆绑的X窗口系统显示服务器。 X.Org X Server的RENDER扩展中的ProcRenderCreateCursor函数在解析客户端请求时直接将请求中的值用于计算动态缓冲区的大小。这个计算中可能出现整数溢出,导致分配不充分的缓冲区和访问无效内存,X Server可能会崩溃。...
Xpdf嵌入字体处理代码执行漏洞
BUGTRAQ ID: 28830 CVECAN ID: CVE-2008-1693 Xpdf是便携文档格式(PDF)文件的开放源码查看器。 Xpdf显示PDF文件中所嵌入的畸形字体的方式存在漏洞,攻击者可以创建恶意的PDF文件,如果打开了该文件就会导致Xpdf崩溃或执行任意指令。 Xpdf 3.x Debian ------ Debian已经为此发布了一个安全公告(DSA-1548-1)以及相应补丁: DSA-1548-1:New xpdf packages fix arbitrary code exitution...
Python PyLocale_strxfrm函数远程信息泄露漏洞
BUGTRAQ ID: 23887 CVECAN ID: CVE-2007-2052 Python是一种开放源代码的脚本编程语言。 Python的Modules/localemodule.c文件中的PyLocalestrxfrm函数中存在单字节溢出漏洞,允许攻击者读取部分内存内容。 Modules/localemodule.c:361 356 n1 = strlens + 1; 357 buf = PyMemMallocn1; 358 if !buf 359 return PyErrNoMemory; 360 n2 = strxfrmbuf, s, n1;...
MPlayer sdpplin_parse()函数RTSP整数溢出漏洞
BUGTRAQ ID: 28851 CVECAN ID: CVE-2008-1558 MPlayer是一款基于Linux的媒体播放程序,支持多种媒体格式。 MPlayer的stream/realrtsp/sdpplin.c文件中的sdpplinparse函数存在整数溢出漏洞: sdpplinparsestream desc-streamid=atoibuf; spplinparse desc-streamstream-streamid=stream; 如果用户所打开的媒体文件中包含有超长的StreamCount SDP参数的话,就可以触发这个溢出,导致执行任意指令。 MPlayer 1....
[SECURITY] [DSA 1513-1] New lighttpd packages fix CGI source disclosure
------------------------------------------------------------------------ Debian Security Advisory DSA-1513-1 [email protected] http://www.debian.org/security/ Steve Kemp March 06, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
Linux Kernel vmsplice_to_pipe()本地权限提升漏洞
BUGTRAQ ID: 27801 CVECAN ID: CVE-2008-0600 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的实现上存在漏洞,本地攻击者可能利用此漏洞提升自己的权限。 Linux Kernel的fs/splice.c文件中的vmsplicetopipe没有正确地验证某些用户域指针,这允许本地攻击者通过特制的vmsplice系统调用获得root用户权限提升。 Linux kernel 2.6.17 - 2.6.24.1 厂商补丁: Debian ------...
[SECURITY] [DSA 1475-1] new gforge packages fix cross site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1475-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst January 26, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1470-1] New horde3 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1470-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 20, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1465-2] New apt-listchanges packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1465-2 [email protected] http://www.debian.org/security/ Steve Kemp January 17, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1459-1] New gforge packages fix SQL injection
------------------------------------------------------------------------ Debian Security Advisory DSA-1459-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst January 13, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1436-1] New Linux 2.6.18 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1436-1 [email protected] http://www.debian.org/security/ dann frazier December 20th, 2007 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1431-1] New ruby-gnome2 packages fix execution of arbitrary code
------------------------------------------------------------------------ Debian Security Advisory DSA-1431-1 [email protected] http://www.debian.org/security/ Steve Kemp December 11, 2007 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1397-1] New mono packages fix integer overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1397-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 3rd, 2007 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1351-] New bochs packages fix privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 1351-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 7th, 2007 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1289-1] New Linux 2.6.18 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1289-1 [email protected] http://www.debian.org/security/ Dann Frazier May 13th, 2007 http://www.debian.org/security/faq -...