6828 matches found
RHEL 2.1 : WindowMaker (RHSA-2003:009)
Updated packages are available to fix a vulnerability in Window Maker. Updated 06 Feb 2003 Fixed packages for Advanced Workstation 2.1 have been added. Updated 31 Mar 2003 New erratum packages are available to fix a bug in the original security patch. Updated 18 Jun 2003 The last update did not...
MDKSA-2004:044 - Updated libuser packages fix vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrakelinux Security Update Advisory Package name: libuser Advisory ID: MDKSA-2004:044 Date: May 17th, 2004 Affected versions: 10.0, 9.1, 9.2, Corporate Server 2.1 Problem Description: Steve Grubb discovered a number of problems in the libuser libra...
[Full-Disclosure] MDKSA-2004:038 - Updated sysklogd packages fix vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrakelinux Security Update Advisory Package name: sysklogd Advisory ID: MDKSA-2004:038 Date: April 28th, 2004 Affected versions: 10.0, 9.1, 9.2, Corporate Server 2.1, Multi Network Firewall 8.2 Problem Description: Steve Grubb discovered a bug in...
Moderate: Red Hat Security Advisory: : Updated kernel packages resolve security vulnerabilities
Updated kernel packages that fix several minor security vulnerabilities are now available The Linux kernel handles the basic functions of the operating system. iDefense reported a buffer overflow flaw in the ISO9660 filesystem code. An attacker could create a malicious filesystem in such a way th...
Symantec Norton AntiVirus 2002 - Nested File Manual Scan Bypass
source: https://www.securityfocus.com/bid/10164/info A vulnerability has been reported in Symantec Norton AntiVirus 2002 that may potentially cause deeply nested files with specific names to bypass manual scanning. This could permit malicious executable content to bypass scanning by the software...
MDKSA-2004:025 - Updated squid packages fix vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrakelinux Security Update Advisory Package name: squid Advisory ID: MDKSA-2004:025 Date: March 30th, 2004 Affected versions: 9.1, 9.2, 10.0, Corporate Server 2.1, Multi Network Firewall 8.2 Problem Description: A vulnerability was discovered in...
[Full-Disclosure] [RHSA-2004:091-01] Updated libxml2 packages fix security vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated libxml2 packages fix security vulnerability Advisory ID: RHSA-2004:091-01 Issue date: 2004-02-26 Updated on: 2004-02-26 Product: Red Ha...
[Full-Disclosure] [SECURITY] [DSA 447-1] New hsftp packages fix format string vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 447-1 [email protected] http://www.debian.org/security/ Matt Zimmerman February 22nd, 2004 http://www.debian.org/security/faq -...
Moderate: Red Hat Security Advisory: : Updated NetPBM packages fix multiple temporary file vulnerabilities
Updated NetPBM packages are available that fix a number of temporary file vulnerabilities in the netpbm libraries. The netpbm package contains a library of functions that support programs for handling various graphics file formats, including .pbm portable bitmaps, .pgm portable graymaps, .pnm...
Important: Red Hat Security Advisory: : Updated mc packages resolve buffer overflow vulnerability
Updated mc packages that resolve a buffer overflow vulnerability are now available. Midnight Commander is a visual shell much like a file manager. A buffer overflow has been found in Midnight Commander's virtual filesystem code. Specifically, a stack-based buffer overflow in vfssresolvesymlink of...
Important: Red Hat Security Advisory: : Updated kernel resolves security vulnerability
Updated kernel packages are now available that fix a security vulnerability which may allow local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in bounds checking in mremap in the Linux kernel versions 2.4.23 a...
MDKSA-2003:112-1 - Updated cvs packages fix malformed module request vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrake Linux Security Update Advisory Package name: cvs Advisory ID: MDKSA-2003:112-1 Date: December 10th, 2003 Original Advisory Date: December 8th, 2003 Affected versions: 9.1, 9.2 Problem Description: A vulnerability was discovered in the CVS...
[RHSA-2003:311-01] Updated Pan packages fix denial of service vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated Pan packages fix denial of service vulnerability Advisory ID: RHSA-2003:311-01 Issue date: 2003-11-24 Updated on: 2003-11-24 Product: R...
[RHSA-2003:307-01] Updated zebra packages fix security vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated zebra packages fix security vulnerabilities Advisory ID: RHSA-2003:307-01 Issue date: 2003-11-13 Updated on: 2003-11-13 Product: Red Ha...
Moderate: Red Hat Security Advisory: : Updated Ethereal packages fix security issues
Updated Ethereal packages that fix a number of exploitable security issues are now available. Ethereal is a program for monitoring network traffic. A number of security issues affect Ethereal. By exploiting these issues, it may be possible to make Ethereal crash or run arbitrary code by injecting...
Moderate: Red Hat Security Advisory: : Updated CUPS packages fix denial of service
Updated CUPS packages that fix a problem where CUPS can hang are now available. CUPS is a print spooler. Paul Mitcheson reported a situation where the CUPS Internet Printing Protocol IPP implementation in CUPS versions prior to 1.1.19 would get into a busy loop. This could result in a denial of...
GuppY : XSS, Files Reading/Writing
Informations : °°°°°°°°°°°°° Language : PHP Bugged Version : 2.4p3 and less ? Patched version : 2.4p4 Website : http://www.freeguppy.org Problems : - Permanent XSS - Files Reading - Files Writing PHP Code/Location : °°°°°°°°°°°°°°°°°°° postguest.php :...
GuppY 2.4 - HTML Injection
source: https://www.securityfocus.com/bid/8717/info It has been reported that one of the scripts included with GuppY is vulnerable to an HTML injection attack. The script, "postguest.php", does not perform input validation to prevent the inclusion of HTML/script content in messages posted to the...
(RHSA-2003:268) New up2date available with updated SSL certificate authority file
The rhnregister and up2date packages contain the software necessary to take advantage of Red Hat Network functionality. This erratum includes an updated RHNS-CA-CERT file, which contains a new CA certificate. This new certificate is needed so that up2date can continue to communicate with Red Hat...
[Full-Disclosure] MDKSA-2003:086 - Updated sendmail packages fix vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrake Linux Security Update Advisory Package name: sendmail Advisory ID: MDKSA-2003:086 Date: August 26th, 2003 Affected versions: 8.2, 9.0, Corporate Server 2.1 Problem Description: A vulnerability was discovered in all 8.12.x versions of sendmail...