EUVD-2009-0189

Malware in sbrugna...

EUVD-2009-2689

Malware in sbrugna...

Oracle Linux 5 : gdm (ELSA-2009-1364)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2009-1364 advisory. 1:2.16.0-56 - Resolves: 239818 181302 - Fix tcp wrappers detection on 64-bit 1:2.16.0-55 Resolves: 196054 - Fix docs subpackage Requires 1:2.16.0-53 Resolves:...

Oracle Linux 5 : nfs-utils (ELSA-2008-0486)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2008-0486 advisory. 1.0.9-35z - Added the warning.patch to fix some warning which were flaged by rpmdiff during the errata phasea Errata 2008:0486 1.0.9-34z - Re-enabled tcp...

CVE-2009-2697

The Red Hat build script for the GNOME Display Manager GDM before 2.16.0-56 on Red Hat Enterprise Linux RHEL 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079...

Design/Logic Flaw

The Red Hat build script for the GNOME Display Manager GDM before 2.16.0-56 on Red Hat Enterprise Linux RHEL 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079...

CVE-2009-2697

The Red Hat build script for the GNOME Display Manager GDM before 2.16.0-56 on Red Hat Enterprise Linux RHEL 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079...

nfs-utils security and bug fix update

1.0.6-93.EL4 - Updated the tcpwrapper code to handle hostnames bz 467312 1.0.6-92.EL4 - Rebuilt to fix tcpwrapper dependency on x8664 archs. 1.0.6-91.EL4 - Added a run-time dependency on the tcpwrapper package. 1.0.6-90.EL4 - Fixed lockd not using settings in sysconfig/nfs bz 461043 - Fixed...

CVE-2008-6123

The netsnmpudpfmtaddr function snmplib/snmpUDPDomain.c in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to...

Ubuntu: Security Advisory (USN-507-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Net-snmp TCP Wrapper远程信息泄露漏洞

BUGTRAQ ID: 33755 CVECAN ID: CVE-2008-6123 Net-SNMP是一个免费的、开放源码的SNMP实现，以前称为UCD-SNMP。 在使用TCP wrapper授权客户端的时候，Net-SNMP的snmplib/snmpUDPDomain.c文件中的netsnmpudpfmtaddr函数没有正确地解析hosts.allow规则，这允许远程攻击者绕过预期的访问限制执行SNMP查询，获得主机相关的敏感信息。 0 Net-SNMP 5.4.2.1 厂商补丁： Net-SNMP -------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载...

CVE-2009-0180

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

Design/Logic Flaw

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

CVE-2009-0180

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

CVE-2009-0180

CVE-2009-0180 corresponds to build-time omission of TCP wrappers support in nfs-utils for certain Fedora releases (Fedora 9 before 1.1.2-9.fc9 and Fedora 10 before 1.1.4-6.fc10). This could allow remote attackers to bypass access restrictions due to missing host-based protection. Connected adviso...

CVE-2009-0180

Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376...

Fedora 10 : nfs-utils-1.1.4-6.fc10 (2009-0266)

Added warnings to tcp wrapper code when mounts are denied due to misconfigured DNS configurations. gssd: By default, don't spam syslog when users' credentials expire Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenabl...

Ubuntu 7.04 : tcp-wrappers vulnerability (USN-507-1)

It was discovered that the TCP wrapper library was incorrectly allowing connections to services that did not specify server-side connection details. Remote attackers could connect to services that had been configured to block such connections. This only affected Ubuntu Feisty. Note that Tenable...

[USN-507-1] tcp-wrappers vulnerability

=========================================================== Ubuntu Security Notice USN-507-1 August 30, 2007 tcp-wrappers vulnerability https://launchpad.net/bugs/135332 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.04...