5302 matches found
Fedora 9 : blender-2.48a-4.fc9 (2008-9447)
Fix CVE-2008-4863 New upstream release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Fedora 8 : php-Smarty-2.6.20-2.fc8 (2008-9401)
Sun Nov 2 2008 Christopher Stone 2.6.20-2 - Add security patch bz 469648 - Add RHL dist tag conditional for Requires - Mon Oct 13 2008 Christopher Stone 2.6.20-1 - Upstream sync Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...
Fedora 9 : php-Smarty-2.6.20-2.fc9 (2008-9420)
Sun Nov 2 2008 Christopher Stone 2.6.20-2 - Add security patch bz 469648 - Add RHL dist tag conditional for Requires - Mon Oct 13 2008 Christopher Stone 2.6.20-1 - Upstream sync Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...
irb, ruby security update
CentOS Errata and Security Advisory CESA-2008:0896 Updated ruby packages that fix several security issues are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting languag...
Fedora 8 : ruby-1.8.6.287-2.fc8 (2008-8736)
Update to new upstream release fixing multiple security issues detailed in the upstream advisories: http://www.ruby-lang.org/en/news/2008/08/08/multiple- vulnerabilities-in-ruby/ - CVE-2008-3655 - multiple insufficient safe mode restrictions - CVE-2008-3656 - WEBrick DoS vulnerability CPU...
Fedora 9 : ruby-1.8.6.287-2.fc9 (2008-8738)
Update to new upstream release fixing multiple security issues detailed in the upstream advisories: http://www.ruby-lang.org/en/news/2008/08/08/multiple- vulnerabilities-in-ruby/ - CVE-2008-3655 - multiple insufficient safe mode restrictions - CVE-2008-3656 - WEBrick DoS vulnerability CPU...
Gentoo Security Advisory GLSA 200710-20 (pdfkit imagekits)
The remote host is missing updates announced in advisory GLSA 200710-20. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200805-07 (ltsp)
The remote host is missing updates announced in advisory GLSA 200805-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
bzip2 security update
1.0.3-4 - Resolves: 461587 fix cash on malformed archive file - CVE-2008-1372 apply upstream patch...
Fedora 9 : bitlbee-1.2.3-1.fc9 (2008-7830)
Upstream released Bitlbee 1.2.3 with the following changes to the former release: - Fixed one more flaw similar to the previous hijacking bug, caused by inconsistent handling of the USTATUSIDENTIFIED state. All code touching these variables was reviewed and should be correct now. Finished 7 Sep...
ipsec security update
CentOS Errata and Security Advisory CESA-2008:0849 An updated ipsec-tools package that fixes two security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The ipsec-tools package...
CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-2941
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to cause a denial of service process stop via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207...
Fedora 9 : thunderbird-2.0.0.16-1.fc9 (2008-6737)
Updated thunderbird packages that fix several security issues are now available for Fedora 9. Several flaws were found in the processing of malformed HTML content. An HTML mail containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user runnin...
mysql security, bug fix, and enhancement update
4.1.22-2 - Back-patch three upstream security fixes from 4.1.23 and 4.1.24 Resolves: 445321 4.1.22-1 - Update to not-so-new-anymore upstream version 4.1.22 Resolves: 278461, 327771, 218009, 201988 - Use default port number if out-of-range port number is specified Resolves: 206067 - Sync mysql.ini...
irb, ruby security update
CentOS Errata and Security Advisory CESA-2008:0561 Updated ruby packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting...
Fedora 9 : ruby-1.8.6.230-4.fc9 (2008-6033)
Tue Jul 1 2008 Akira TAGOH - 1.8.6.230-4 - Backported from upstream SVN to fix a segfault issue with Arrayfill. - Mon Jun 30 2008 Akira TAGOH - 1.8.6.230-3 - Backported from upstream SVN to fix a segfault issue. 452825 - Backported from upstream SVN to fix an integer overflow in rbaryfill. - Wed...
Fedora 8 : libetpan-0.54-1.fc8 (2008-5480)
Update to new upstream version 0.54 fixing a crash NULL pointer dereference in the mail message header parser. Note: There is no application in Fedora using libetpan library for which such crash could be considered a security issue. This can only be a security sensitive issue for some 3rd party,...
CVE-2008-2956
Memory leak in Pidgin 2.0.0, and possibly other versions, allows remote attackers to cause a denial of service memory consumption via malformed XML documents. NOTE: this issue has been disputed by the upstream vendor, who states: "I was never able to identify a scenario under which a problem...
CVE-2008-2956
Memory leak in Pidgin 2.0.0, and possibly other versions, allows remote attackers to cause a denial of service memory consumption via malformed XML documents. NOTE: this issue has been disputed by the upstream vendor, who states: "I was never able to identify a scenario under which a problem...