Section: .. / 0612-advisories /
| /// File Name: |
USN-395-1.txt |
Description:
|
Ubuntu Security Notice 395-1 - Multiple vulnerabilities in the Linux Kernel.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 138230 | | Last Modified: | Dec 14 23:54:38 2006 |
| MD5 Checksum: | b9937e102aa738fbc55866c983272d69 |
|
| /// File Name: |
sa23384.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, cause a DoS (Denial of Service), and by malicious people to bypass certain security restriction, and cause a DoS.
| | Homepage: | http://secunia.com/advisories/23384/ | | File Size: | 124507 | | Last Modified: | Dec 14 21:28:17 2006 |
| MD5 Checksum: | 658514b1d4b2ce8c9d8d0ea2984e2df5 |
|
| /// File Name: |
sa23344.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for ruby-1.6 and ruby-1.8. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23344/ | | File Size: | 45828 | | Last Modified: | Dec 14 10:45:41 2006 |
| MD5 Checksum: | 7a2911199b004f0bfa2fc091812c6165 |
|
| /// File Name: |
sa23395.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for kernel-source-2.4.27. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information or cause a DoS (Denial of Service), and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/23395/ | | File Size: | 39255 | | Last Modified: | Dec 19 20:15:33 2006 |
| MD5 Checksum: | 83c542eb3f522366a1ec4d06525e8852 |
|
| /// File Name: |
USN-380-2.txt |
Description:
|
Ubuntu Security Notice 380-2 - avahi regression: USN-380-1 fixed a vulnerability in Avahi. However, if used with Network manager, that version occasionally failed to resolve .local DNS names until Avahi got restarted. This update fixes the problem.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 37264 | | Last Modified: | Dec 14 23:55:24 2006 |
| MD5 Checksum: | bb3faaed1d51b32fd4b265762aae8307 |
|
| /// File Name: |
dsa-1224-1.txt |
Description:
|
Debian Security Advisory 1224-1 - Several security related problems have been discovered in Mozilla and derived products. It was discovered that malformed FTP server responses could lead to denial of service. It was discovered that the correction for a cryptographic flaw in the handling of PKCS-1 certificates was incomplete, which allows the forgery of certificates. "shutdown" discovered that modification of JavaScript objects during execution could lead to the execution of arbitrary JavaScript bytecode. Jesse Ruderman and Martijn Wargers discovered several crashes in the layout engine, which might also allow execution of arbitrary code. Igor Bukanov and Jesse Ruderman discovered several crashes in the JavaScript engine, which might allow execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 29526 | | Related CVE(s): | CVE-2006-4310, CVE-2006-5462, CVE-2006-5463, CVE-2006-5464, CVE-2006-5748 | | Last Modified: | Dec 6 06:18:55 2006 |
| MD5 Checksum: | 9142a11b12b30cdb9295f5a37476a982 |
|
| /// File Name: |
DSA-1234-1.txt |
Description:
|
Debian Security Advisory 1234-1: A denial of service vulnerability has been discovered in the CGI library included with Ruby, the interpreted scripting language for quick and easy object-oriented programming.
| | Homepage: | http://www.debian.org/security | | File Size: | 28943 | | Last Modified: | Dec 14 22:43:45 2006 |
| MD5 Checksum: | b9b3642a2d1b73563eb353d2fb1eb3cd |
|
| /// File Name: |
sa23197.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23197/ | | File Size: | 26915 | | Last Modified: | Dec 6 03:07:49 2006 |
| MD5 Checksum: | 8f697ba3b17f14e875fad500acb336da |
|
| /// File Name: |
sa23370.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to expose potentially sensitive information and cause a DoS (Denial of Service), and malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/23370/ | | File Size: | 25926 | | Last Modified: | Dec 14 21:28:17 2006 |
| MD5 Checksum: | bcf6884c823d65a08edae846e64c7099 |
|
| /// File Name: |
USN-397-1.txt |
Description:
|
Ubuntu Security Notice 397-1 - Jose Ramon Palanco discovered that the mono System.Web class did not consistently verify local file paths. As a result, the source code for mono web applications could be retrieved remotely, possibly leading to further compromise via the application's source.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 23737 | | Related CVE(s): | CVE-2006-6104 | | Last Modified: | Dec 22 01:21:29 2006 |
| MD5 Checksum: | a949f0ca6731a6a8592c47a80bedeb44 |
|
| /// File Name: |
sa23462.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/23462/ | | File Size: | 22987 | | Last Modified: | Dec 21 22:14:31 2006 |
| MD5 Checksum: | 0c78ba34ccc6d0a8e20330046261d603 |
|
| /// File Name: |
sa23474.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, expose sensitive information, or cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions and cause a DoS.
| | Homepage: | http://secunia.com/advisories/23474/ | | File Size: | 21806 | | Last Modified: | Dec 27 23:54:47 2006 |
| MD5 Checksum: | 6934e42f46e53b4d8836fbece1b19493 |
|
| /// File Name: |
USN-394-1.txt |
Description:
|
Ubuntu Security Notice 394-1 - An error was found in Ruby's CGI library that did not correctly quote the boundary of multipart MIME requests. Using a crafted HTTP request, a remote user could cause a denial of service, where Ruby CGI applications would end up in a loop, monopolizing a CPU.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 21449 | | Related CVE(s): | CVE-2006-6303 | | Last Modified: | Dec 8 23:08:03 2006 |
| MD5 Checksum: | 1c6068d99a3db060a1425b45119d2ca7 |
|
| /// File Name: |
DSA-1235-1.txt |
Description:
|
Debian Security Advisory 1235-1: A denial of service vulnerability has been discovered in the CGI library included with Ruby, the interpreted scripting language for quick and easy object-oriented programming.
| | Homepage: | http://www.debian.org/security | | File Size: | 21332 | | Last Modified: | Dec 14 22:43:01 2006 |
| MD5 Checksum: | fee77b125724711e784faa7f76507aa1 |
|
| /// File Name: |
sa23165.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for ruby1.8. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23165/ | | File Size: | 21006 | | Last Modified: | Dec 8 22:32:56 2006 |
| MD5 Checksum: | 0619d4ea1384260f7bcbf0554bb52a75 |
|
| /// File Name: |
sa23213.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/23213/ | | File Size: | 19781 | | Last Modified: | Dec 6 03:07:49 2006 |
| MD5 Checksum: | 2007fb7e67d32259985689e43d9d0041 |
|
| /// File Name: |
sa23227.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for libgsf. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/23227/ | | File Size: | 16740 | | Last Modified: | Dec 6 03:07:49 2006 |
| MD5 Checksum: | bd869aeac2452e5e4680499668bc072c |
|
| /// File Name: |
USN-391-1.txt |
Description:
|
Ubuntu Security Notice 391-1 - A heap overflow was discovered in the OLE processing code in libgsf. If a user were tricked into opening a specially crafted OLE document, an attacker could execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16636 | | Related CVE(s): | CVE-2006-4514 | | Last Modified: | Dec 6 07:16:42 2006 |
| MD5 Checksum: | 2e9b45e731cb3c390191fcacb3a778d9 |
|
| /// File Name: |
dsa-1227-1.txt |
Description:
|
Debian Security Advisory 1227-1 - Several security related problems have been discovered in Mozilla and derived products such as Mozilla Thunderbird. It was discovered that malformed FTP server responses could lead to denial of service. It was discovered that the correction for a cryptographic flaw in the handling of PKCS-1 certificates was incomplete, which allows the forgery of certificates. "shutdown" discovered that modification of JavaScript objects during execution could lead to the execution of arbitrary JavaScript bytecode. Jesse Ruderman and Martijn Wargers discovered several crashes in the layout engine, which might also allow execution of arbitrary code. Igor Bukanov and Jesse Ruderman discovered several crashes in the JavaScript engine, which might allow execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 16079 | | Related CVE(s): | CVE-2006-4310, CVE-2006-5462, CVE-2006-5463, CVE-2006-5464, CVE-2006-5748 | | Last Modified: | Dec 6 06:32:19 2006 |
| MD5 Checksum: | 394551b0027ce326ff0e261531693734 |
|
| /// File Name: |
dsa-1238-1.txt |
Description:
|
Debian Security Advisory 1238-1 - Several remote vulnerabilities have been discovered in the Clam anti-virus toolkit.
| | Homepage: | http://www.debian.org/security | | File Size: | 15626 | | Last Modified: | Dec 19 20:30:55 2006 |
| MD5 Checksum: | f2a21c3a6628a74d5f6fdec50de7c11e |
|
| /// File Name: |
dsa-1232-1.txt |
Description:
|
Debian Security Advisory 1232-1 - Stephen Gran discovered that malformed base64-encoded MIME attachments can lead to denial of service through a null pointer dereference.
| | Homepage: | http://www.debian.org/security | | File Size: | 15316 | | Related CVE(s): | CVE-2006-5874 | | Last Modified: | Dec 11 16:59:17 2006 |
| MD5 Checksum: | fa048a8141cc5acb96ca7f6c7ed03a7c |
|
| /// File Name: |
MDKSA-2006-227.txt |
Description:
|
Mandriva Linux Security Advisory - A stack overflow in the KFILE JPEG (kfile_jpeg) plugin in kdegraphics3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service (stack consumption) via a crafted EXIF section in a JPEG file, which results in an infinite recursion.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 15115 | | Related CVE(s): | CVE-2006-6297 | | Last Modified: | Dec 12 16:39:35 2006 |
| MD5 Checksum: | 6fc3a35f7dcf42b8be4ba1613278b24f |
|
| /// File Name: |
dsa-1221-1.txt |
Description:
|
Debian Security Advisory 1221-1 - "infamous41md" discovered a heap buffer overflow vulnerability in libgsf, a GNOME library for reading and writing structured file formats, which could lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 15029 | | Last Modified: | Dec 6 03:50:29 2006 |
| MD5 Checksum: | bc9d1e14e872bb07b374f42fc8293b7c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
