Section: .. / 0609-advisories /
| /// File Name: |
sa21816.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for bind9. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21816/ | | File Size: | 20849 | | Last Modified: | Sep 8 23:38:32 2006 |
| MD5 Checksum: | 42a01a19e0d4f3b429a650560cf91a9b |
|
| /// File Name: |
sa21828.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for bind9. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21828/ | | File Size: | 20501 | | Last Modified: | Sep 13 00:17:26 2006 |
| MD5 Checksum: | 049a82f966e5c052d16c68454322a222 |
|
| /// File Name: |
dsa-1167-1.txt |
Description:
|
Debian Security Advisory 1167-1 - Several remote vulnerabilities have been discovered in the Apache, the worlds most popular webserver, which may lead to the execution of arbitrary web scripts. A cross-site scripting (XSS) flaw exists in the mod_imap component of the Apache server. Apache does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks.
| | Homepage: | http://www.debian.org/security | | File Size: | 15605 | | Related CVE(s): | CVE-2005-3352, CVE-2006-3918 | | Last Modified: | Sep 7 10:21:34 2006 |
| MD5 Checksum: | f9a8ab142f7a0c600050d5124bc36726 |
|
| /// File Name: |
dsa-1168-1.txt |
Description:
|
Debian Security Advisory 1168-1 - Several remote vulnerabilities have been discovered in Imagemagick, a collection of image manipulation tools, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 15585 | | Related CVE(s): | CVE-2006-2440, CVE-2006-3743, CVE-2006-3744 | | Last Modified: | Sep 7 10:50:20 2006 |
| MD5 Checksum: | 50bba9d206db94a99c12ed6bfa57066e |
|
| /// File Name: |
SUSE-SA-2006-056.txt |
Description:
|
SUSE-SA:2006:056 - The gzip tool does not handle some specific values correctly when unpacking archives. This leads to vulnerabilities like buffer overflows or infinite loops.
| | Homepage: | http://www.suse.com | | File Size: | 14455 | | Last Modified: | Sep 28 00:22:53 2006 |
| MD5 Checksum: | c3080e7b37844e76782d8539c5a7a834 |
|
| /// File Name: |
sa21744.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for apache. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/21744/ | | File Size: | 14363 | | Last Modified: | Sep 6 08:32:48 2006 |
| MD5 Checksum: | d5ff1c902ca90cdaa980ae8713e7d8b6 |
|
| /// File Name: |
sa21780.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for imagemagick. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21780/ | | File Size: | 14207 | | Last Modified: | Sep 7 06:08:47 2006 |
| MD5 Checksum: | 529dcf6ffca12f6a53ca190131fe3822 |
|
| /// File Name: |
USN-340-1.txt |
Description:
|
Ubuntu Security Notice USN-340-1 - Tavis Ormandy discovered several buffer overflows in imagemagick's Sun Raster and XCF (Gimp) image decoders. By tricking a user or automated system into processing a specially crafted image, this could be exploited to execute arbitrary code with the users' privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 14143 | | Related CVE(s): | CVE-2006-3743, CVE-2006-3744 | | Last Modified: | Sep 7 11:07:01 2006 |
| MD5 Checksum: | 6e5488de7d25c5623b523bd91b1d26f4 |
|
| /// File Name: |
sa21719.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for imagemagick. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21719/ | | File Size: | 14133 | | Last Modified: | Sep 6 08:32:48 2006 |
| MD5 Checksum: | a94c0d242390395861aa030a381a395a |
|
| /// File Name: |
USN-348-1.txt |
Description:
|
Ubuntu Security Notice 348-1: The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 13696 | | Last Modified: | Sep 22 02:11:41 2006 |
| MD5 Checksum: | 5f8136a6278b9cbac05c048960df400b |
|
| /// File Name: |
dsa-1164-1.txt |
Description:
|
Debian Security Advisory 1164-1 - A programming error has been discovered in sendmail, an alternative mail transport agent for Debian, that could allow a remote attacker to crash the sendmail process by sending a specially crafted email message.
| | Homepage: | http://www.debian.org/security | | File Size: | 13683 | | Related CVE(s): | CVE-2006-4434 | | Last Modified: | Sep 7 08:06:42 2006 |
| MD5 Checksum: | 8dbcd895f51d3d02b8b9108663d44110 |
|
| /// File Name: |
sa22001.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22001/ | | File Size: | 13660 | | Last Modified: | Sep 22 01:56:25 2006 |
| MD5 Checksum: | 8c11ccd53ead7e81dc3848f7fc73c560 |
|
| /// File Name: |
CORE-2006-0321.txt |
Description:
|
Core Security Technologies Advisory - A vulnerability in AOL's ICQ Pro 2003b instant messenger client could lead to denial of service attacks and remote compromise of systems running vulnerable versions of the client.
| | Author: | Luciana Tabo, Lucas Lavarello, Sebastian Cufre, Ezequiel Gutesman, Javier Garcia Di Palma | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 13338 | | Last Modified: | Sep 8 08:24:00 2006 |
| MD5 Checksum: | 8273eab9e5d04368f2111795795e36f7 |
|
| /// File Name: |
CORE-2006-0322.txt |
Description:
|
Core Security Technologies Advisory - Security problems found in the ICQ Toolbar version 1.3 may allow attackers to control and change configuration settings and to inject scripting code in RSS feed contents and execute it in the context of the feed interface (IE's Local Zone).
| | Author: | Luciana Tabo, Lucas Lavarello, Sebastian Cufre, Ezequiel Gutesman, Javier Garcia Di Palma | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 12871 | | Last Modified: | Sep 8 08:46:05 2006 |
| MD5 Checksum: | 8e727a16959afeca7e522376edac5df2 |
|
| /// File Name: |
sa21973.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for gnutls. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21973/ | | File Size: | 12864 | | Last Modified: | Sep 22 01:56:25 2006 |
| MD5 Checksum: | 7fd5b2806e9e0b966d61dbb354282ca0 |
|
| /// File Name: |
sa21696.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for sendmail. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21696/ | | File Size: | 12688 | | Last Modified: | Sep 1 10:31:54 2006 |
| MD5 Checksum: | 6586c05a9566ab9fb3ad2c702c414bbd |
|
| /// File Name: |
USN-350-1.txt |
Description:
|
Ubuntu Security Notice 350-1: mozilla-thunderbird vulnerabilities
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12497 | | Last Modified: | Sep 26 21:50:42 2006 |
| MD5 Checksum: | 2c39b4cace57576403a93f485911b894 |
|
| /// File Name: |
dsa-1169-1.txt |
Description:
|
Debian Security Advisory 1169-1 - Several local vulnerabilities have been discovered in the MySQL database server. Michal Prokopiuk discovered that remote authenticated users are permitted to create and access a database if the lowercase spelling is the same as one they have been granted access to. Beat Vontobel discovered that certain queries replicated to a slave could crash the client and thus terminate the replication.
| | Homepage: | http://www.debian.org/security | | File Size: | 12237 | | Related CVE(s): | CVE-2006-4226, CVE-2006-4380 | | Last Modified: | Sep 7 10:51:49 2006 |
| MD5 Checksum: | d681538479702c1b2dc6181ee316561c |
|
| /// File Name: |
sa21762.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for mysql-dfsg-4.1. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions or to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21762/ | | File Size: | 11310 | | Last Modified: | Sep 6 08:32:48 2006 |
| MD5 Checksum: | 6b3e7db7b15495ec7da8069787d8be3b |
|
| /// File Name: |
dsa-1182-1.txt |
Description:
|
Debian Security Advisory 1182-1: Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid.
| | Homepage: | http://www.debian.org/security | | File Size: | 11307 | | Last Modified: | Sep 26 21:47:36 2006 |
| MD5 Checksum: | 62ba149f5f9d11422d86ec8492a50681 |
|
| /// File Name: |
USN-346-2.txt |
Description:
|
Ubuntu Security Notice 346-2: USN-346-1 provided an updated Linux kernel to fix several security vulnerabilities. Unfortunately the update broke the binary 'nvidia' driver from linux-restricted-modules. This update corrects this problem. We apologize for the inconvenience.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11307 | | Last Modified: | Sep 15 01:24:02 2006 |
| MD5 Checksum: | d80b8548ea440286a87213a2c11c40b1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
