Lucene search
+L
SlackwareRecent

1893 matches found

Slackware Linux
Slackware Linux
•added 2005/04/21 10:27 p.m.•18 views

Python SimpleXMLRPCServer module

New Python packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue in the SimpleXMLRPCServer library module. Here are the details from the Slackware 10.1 ChangeLog: patches/packages/python-2.4.1-i486-1.tgz: Upgraded to python-2.4.1. From the python.org...

7.2AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2005/04/21 10:27 p.m.•28 views

CVS

New CVS packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0753 Here are the details from t...

7.5CVSS6.5AI score0.04745EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2005/04/05 2:48 p.m.•18 views

PHP

New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix security issues. More details about the issues may be found in the PHP ChangeLogs on the PHP web site: http://php.net Here are the details from the Slackware 10.1 ChangeLog:...

7.1AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2005/03/27 2:40 a.m.•24 views

Mozilla/Firefox/Thunderbird

New Mozilla packages are available for Slackware 9.1, 10.0, 10.1, and -current to fix various security issues and bugs. See the Mozilla site for a complete list of the issues patched: http://www.mozilla.org/projects/security/known-vulnerabilities.htmlMozilla Also updated are Firefox and Thunderbi...

7AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/11/01 8:0 a.m.•37 views

[slackware-security] libtiff

New libtiff packages are available for Slackware 8.1, 9.0, 9.1, 10.1, and -current to fix security issues that could lead to application crashes, or possibly execution of arbitrary code. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

7.3AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/11/01 8:0 a.m.•54 views

[slackware-security] apache+mod_ssl

New apache packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix a security issue. Apache has been upgraded to version 1.3.33 which fixes a buffer overflow which may allow local users to execute arbitrary code as the apache user. The modssl package has also been upgraded t...

7.4AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/10/26 12:40 a.m.•38 views

[slackware-security] apache, mod_ssl, php

New apache and modssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix security issues. Apache has been upgraded to version 1.3.32 which fixes a heap-based buffer overflow in modproxy. modssl was upgraded from version modssl-2.8.19-1.3.31 to version 2.8.21-1.3.32 whic...

7.2AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/10/23 12:7 a.m.•35 views

[slackware-security] gaim

New gaim packages are available for Slackware 9.0, 9.1, 10.0 and -current to fix a buffer overflow in the MSN protocol. Sites that use GAIM should upgrade to the new version. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

10CVSS7.1AI score0.06862EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/10/12 7:33 a.m.•20 views

[slackware-security] rsync

New rsync 2.6.3 packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to a fix security issue when rsync is run as a non-chrooted server. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

6.8AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/10/04 7:52 p.m.•20 views

[slackware-security] zlib DoS

New zlib packages are available for Slackware 10.0 and -current to fix a possible denial of service security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-797 Here are the details...

6.8AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/10/04 7:52 p.m.•19 views

[slackware-security] getmail

New getmail packages are available for Slackware 9.1, 10.0 and -current to fix a security issue. If getmail is used as root to deliver to user owned files or directories, it can be made to overwrite system files. More details about this issue may be found in the Common Vulnerabilities and Exposur...

6.5AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/09/22 8:39 p.m.•19 views

[slackware-security] xine-lib

New xine-lib packages are available for Slackware 10.0 and -current to fix security issues. For more details, see: http://www.xinehq.de/index.php/security/XSA-2004-4 http://www.xinehq.de/index.php/security/XSA-2004-5 Here are the details from the Slackware 10.0 ChangeLog:...

6.9AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/09/22 8:39 p.m.•15 views

[slackware-security] Mozilla

New Mozilla 1.7.3 packages are available for Slackware 10.0 and -current to fix security issues. Here are the details from the Slackware 10.0 ChangeLog: patches/packages/mozilla-1.7.3-i486-1.tgz: Upgraded to mozilla-1.7.3. The Mozilla page says this fixes some "minor security holes". It also brea...

7AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/09/22 8:38 p.m.•14 views

[slackware-security] GTK+ image loading flaws

New GTK+ version 2 packages are available for Slackware 10.0 and -current to fix issues in the image loader routines that can crash applications. Here are the details from the Slackware 10.0 ChangeLog: l/gtk+2-2.4.10-i486-1.tgz: Upgraded to gtk+-2.4.10. This fixes security issues in the image...

7AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/09/22 8:38 p.m.•33 views

[slackware-security] CUPS DoS

New CUPS packages are available for Slackware 9.1, 10.0, and -current to fix a denial of service issue where a malformed packet can crash the CUPS server. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

5CVSS6.2AI score0.26794EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/09/14 6:31 a.m.•35 views

[slackware-security] samba DoS

New samba packages are available for Slackware 10.0 and -current. These fix two denial of service vulnerabilities reported by iDEFENSE. Slackware -current has been upgraded to samba-3.0.7, while the samba-3.0.5 included with Slackware 10.0 has been patched to fix these issues. Sites running Samba...

6.5AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/09/04 5:1 a.m.•42 views

[slackware-security] kde

New kdelibs and kdebase packages are available for Slackware 9.1, 10.0, and -current to fix security issues. More details about this issues may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0689...

6.8AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/27 10:21 p.m.•16 views

[slackware-security] gaim updated again

A couple of bugs were found in the gaim 0.82 release, and gaim-0.82.1 was released to fix them. In addition, gaim-encryption-2.29 did not work with gaim-0.82 due to changes in the header files, so the gaim-encryption plugin has also been updated to gaim-encryption-2.30. Here are the details from...

7.1AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/27 2:48 a.m.•44 views

[slackware-security] gaim

New gaim packages are available for Slackware 9.1, 10.0 and -current to fix several security issues. Sites that use GAIM should upgrade to the new version. Here are the details from the Slackware 10.0 ChangeLog: Thu Aug 26 17:14:09 PDT 2004 patches/packages/gaim-0.82-i486-1.tgz: Upgraded to...

6.9AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/23 10:10 p.m.•50 views

[slackware-security] Qt

New Qt packages are available for Slackware 9.0, 9.1, 10.0, and -current to fix security issues. Bugs in the routines that handle PNG, BMP, GIF, and JPEG images may allow an attacker to cause unauthorized code to execute when a specially crafted image file is processed. These flaws may also cause...

6.7AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/10 9:33 p.m.•21 views

[slackware-security] sox

New sox packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix buffer overflow security issues that could allow a malicious WAV file to execute arbitrary code. Here are the details from the Slackware 10.0 ChangeLog: Sat Aug 7 17:17:20 AKDT 2004...

8AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/10 9:26 p.m.•45 views

[slackware-security] imagemagick

New imagemagick packages are available for Slackware 9.1, 10.0, and -current to fix security issues with PNG images. More details about the issues with PNG may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0597...

6.6AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/10 9:17 p.m.•66 views

[slackware-security] Mozilla

New Mozilla packages are available for Slackware 9.1, 10.0, and -current to fix a number of security issues. Slackware 10.0 and -current were upgraded to Mozilla 1.7.2, and Slackware 9.1 was upgraded to Mozilla 1.4.3. As usual, new versions of Mozilla require new versions of things that link with...

6.6AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/10 12:54 p.m.•22 views

Slackware 9.0, libpng correction

In the previous advisory for libpng SSA:2004-222-01, the URL provided for the Slackware 9.0 patch mistakenly pointed to the old unpatched package. Slackware 9.0 users should follow the URL below for the new package:...

7AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/08/09 8:40 p.m.•34 views

libpng

New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix security issues. These issues could cause program crashes, or possibly allow arbitrary code embedded in a malicious PNG image to execute. The PNG library is widely used within the system, so all sites should...

10CVSS7.1AI score0.82537EPSS
Exploits3
Slackware Linux
Slackware Linux
•added 2004/07/26 3:19 p.m.•13 views

alternate samba package for Slackware 10.0

It was pointed out that the new Samba packages for Slackware 10.0 and -current have a dependency on libattr.so that wasn't in the previous packages. Since it's not the intent to introduce new requirements in security patches especially for stable versions, an alternate version of the samba packag...

6.8AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/07/25 8:24 p.m.•13 views

new mod_ssl packages

New modssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0 and -current to fix a security issue. A format string vulnerability in modproxy hook functions could allow an attacker to run code as the modssl user. Sites using modssl should upgrade be sure to back up your existing key files...

6.9AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/07/25 8:24 p.m.•34 views

new samba packages

New samba packages are available for Slackware 8.1, 9.0, 9.1, 10.0 and -current to fix security issues. More details about these issues may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0600...

10CVSS7AI score0.29441EPSS
Exploits1
Slackware Linux
Slackware Linux
•added 2004/07/20 11:21 p.m.•52 views

PHP

New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix security issues memorylimit handling and a problem in the striptags function. Sites using PHP should upgrade. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

6.8CVSS6.5AI score0.54856EPSS
Exploits4
Slackware Linux
Slackware Linux
•added 2004/06/15 10:53 a.m.•33 views

kernel DoS

New kernel packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a denial of service security issue. Without a patch to asm-i386/i387.h, a local user can crash the machine. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

2.1CVSS6.1AI score0.00866EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/06/09 2:5 p.m.•34 views

cvs

New cvs packages that have been upgraded to cvs-1.11.17 are available for Slackware 8.1, 9.0, 9.1, and -current to fix various security issues. Sites running a CVS server should upgrade to the new CVS package right away. More details about the issues may be found in the Common Vulnerabilities and...

10CVSS6.9AI score0.13206EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/06/02 12:27 p.m.•18 views

PHP local security issue

New PHP packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. These fix a problem in previous Slackware php packages where linking PHP against a static library in an insecure path under /tmp could allow a local attacker to place shared libraries at this locatio...

7.6AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/06/02 12:24 p.m.•40 views

mod_ssl

New modssl packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. The packages were upgraded to modssl-2.8.18-1.3.31 fixing a buffer overflow that may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN, if modssl is...

7.5CVSS7.6AI score0.37681EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/05/19 7:14 p.m.•47 views

cvs

New cvs packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a buffer overflow vulnerability which could allow an attacker to run arbitrary programs on the CVS server. Sites running a CVS server should upgrade to the new CVS package right away. More details about this issue may...

7.5CVSS6.8AI score0.67525EPSS
Exploits1
Slackware Linux
Slackware Linux
•added 2004/05/18 12:8 a.m.•37 views

kdelibs

New kdelibs packages are available for Slackware 9.0, 9.1 and -current to fix security issues with URI handling. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0411 Here are the details fr...

7.5CVSS6.4AI score0.07778EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/05/17 2:27 a.m.•39 views

mc

New mc packages are available for Slackware 9.0, 9.1, and -current to fix security issues that These could lead to a denial of service or the execution of arbitrary code as the user running mc. Sites that use mc should upgrade to the new mc package. More details about this issue may be found in t...

10CVSS7.2AI score0.03936EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/05/12 4:54 p.m.•50 views

apache

New apache packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix security issues. These include a possible denial-of-service attack as well as the ability to possible pipe shell escapes through Apache's errorlog which could create an exploit if the error log is read in a termina...

7.5CVSS6.5AI score0.11549EPSS
Exploits7
Slackware Linux
Slackware Linux
•added 2004/05/04 4:34 p.m.•43 views

lha update in bin package

New bin- packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix buffer overflows and directory traversal vulnerabilities in the 'lha' archive utility. Sites using 'lha' should upgrade to the new bin package right away. More details about these issues may be found in the Common...

10CVSS6.7AI score0.10262EPSS
Exploits4
Slackware Linux
Slackware Linux
•added 2004/05/03 1:8 p.m.•36 views

libpng update

New libpng packages are available for Slackware 9.0, 9.1, and -current to fix an issue where libpng could be caused to crash, perhaps creating a denial of service issue if network services are linked with it. More details about this issue may be found in the Common Vulnerabilities and Exposures C...

5CVSS7.5AI score0.04107EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/05/03 1:7 p.m.•14 views

xine-lib update

New xine-lib packages are available for Slackware 9.1 and -current to fix a security issue where playing a specially crafted Real RTSP stream could run malicious code as the user playing the stream. More details about this issue may be found in this advisory:...

7AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/05/03 1:6 p.m.•18 views

sysklogd update

New sysklogd packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue where a user could cause syslogd to crash. Thanks to Steve Grubb who researched the issue. Here are the details from the Slackware 9.1 ChangeLog: Sun May 2 17:16:41 PDT 2004...

6.9AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/05/03 1:6 p.m.•38 views

rsync update

New rsync packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a security issue. When running an rsync server without the chroot option it is possible for an attacker to write outside of the allowed directory. Any sites running rsync in that mode should upgrade right away and...

5CVSS6.3AI score0.03404EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/04/28 1:56 p.m.•46 views

kernel security updates

New kernel packages are available for Slackware 9.1 and -current to fix security issues. Also available are new kernel modules packages including alsa-driver, and a new version of the hotplug package for Slackware 9.1 containing some fixes for using 2.4.26 and 2.6.x kernel modules. The most serio...

7.2CVSS6.5AI score0.01238EPSS
Exploits1
Slackware Linux
Slackware Linux
•added 2004/04/20 8:1 p.m.•17 views

xine security update

New xine packages are available for Slackware 9.1 and -current to fix security issues. Here are the details from the Slackware 9.1 ChangeLog: Tue Apr 20 19:01:58 PDT 2004 patches/packages/xine-lib-1rc3c-i686-1.tgz: Upgraded to xine-lib-1-rc3c. This release fixes a security problem where opening a...

6.9AI score
Exploits0
Slackware Linux
Slackware Linux
•added 2004/04/19 2:18 p.m.•31 views

utempter security update

New utempter packages are available for Slackware 9.1 and -current to fix a security issue. Slackware 9.1 was the first version of Slackware to use the libutempter library, and earlier versions of Slackware are not affected by this issue The utempter package provides a utility and shared library...

2.1CVSS6.2AI score0.01095EPSS
Exploits1
Slackware Linux
Slackware Linux
•added 2004/04/18 4:40 p.m.•35 views

cvs security update

CVS is a client/server version control system. As a server, it is used to host source code repositories. As a client, it is used to access such repositories. This advisory affects both uses of CVS. A security problem which could allow a server to create arbitrary files on a client machine, and...

5CVSS6.6AI score0.02354EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/04/17 12:2 p.m.•37 views

tcpdump denial of service

Upgraded tcpdump packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix denial-of-service issues. Sites using tcpdump should upgrade to the new packages. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

5CVSS6.3AI score0.60346EPSS
Exploits4
Slackware Linux
Slackware Linux
•added 2004/03/17 5:34 p.m.•45 views

OpenSSL security update

Upgraded OpenSSL packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix two potential denial-of-service issues in earlier versions of OpenSSL. We recommend sites that use OpenSSL upgrade to the fixed packages right away. More details about this issue may be found in the Commo...

5CVSS9.2AI score0.10424EPSS
Exploits0
Slackware Linux
Slackware Linux
•added 2004/02/18 4:38 a.m.•42 views

metamail security update

Metamail is a set of utilities for processing MIME mail. New metamail packages are available for Slackware 8.1, 9.0, 9.1, and -current. These fix two format string bugs and two buffer overflows which could lead to unauthorized code execution. Thanks to Ulf Hrnhammar for discovering these problems...

7.5CVSS6.8AI score0.2622EPSS
Exploits1
Slackware Linux
Slackware Linux
•added 2004/02/18 4:37 a.m.•64 views

Kernel security update

New kernels are available for Slackware 9.1 and -current to fix a bounds-checking problem in the kernel's mremap call which could be used by a local attacker to gain root privileges. Please note that this is not the same issue as CAN-2003-0985 which was fixed in early January. The kernels in...

7.2CVSS6.6AI score0.02434EPSS
Exploits5
Total number of security vulnerabilities1893