Section: .. / 0704-advisories /
| /// File Name: |
USN-451-1.txt |
Description:
|
Ubuntu Security Notice 451-1 - The kernel key management code did not correctly handle key reuse. A local attacker could create many key requests, leading to a denial of service. The kernel NFS code did not correctly validate NFSACL2 ACCESS requests. If a system was serving NFS mounts, a remote attacker could send a specially crafted packet, leading to a denial of service. When dumping core, the kernel did not correctly handle PT_INTERP processes. A local attacker could create situations where they could read the contents of otherwise unreadable executable programs.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 95308 | | Related CVE(s): | CVE-2007-0006, CVE-2007-0772, CVE-2007-0958 | | Last Modified: | Apr 11 07:00:57 2007 |
| MD5 Checksum: | 22fcefde27a7d2c98a15b20e8b6963f4 |
|
| /// File Name: |
sa24752.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges, and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/24752/ | | File Size: | 88752 | | Last Modified: | Apr 12 03:03:40 2007 |
| MD5 Checksum: | 18d84d0d15902e77b1dcea1f48bb47fb |
|
| /// File Name: |
USN-448-1.txt |
Description:
|
Ubuntu Security Notice 448-1 - Sean Larsson of iDefense Labs discovered that the MISC-XC extension of Xorg did not correctly verify the size of allocated memory. An authenticated user could send a specially crafted X11 request and execute arbitrary code with root privileges. Greg MacManus of iDefense Labs discovered that the BDF font handling code in Xorg and FreeType did not correctly verify the size of allocated memory. If a user were tricked into using a specially crafted font, a remote attacker could execute arbitrary code with root privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 67713 | | Related CVE(s): | CVE-2007-1003, CVE-2007-1351, CVE-2007-1352 | | Last Modified: | Apr 5 02:54:35 2007 |
| MD5 Checksum: | c87718dafe998ff55e151815cf800c51 |
|
| /// File Name: |
sa24770.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for freetype, libxfont, xorg, and xorg-server. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24770/ | | File Size: | 62740 | | Last Modified: | Apr 5 00:36:24 2007 |
| MD5 Checksum: | e82b3f5fcb3b4021e874e0e4b6faeb56 |
|
| /// File Name: |
USN-452-1.txt |
Description:
|
Ubuntu Security Notice 452-1 - The Qt library did not correctly handle truncated UTF8 strings, which could cause some applications to incorrectly filter malicious strings. If a Konqueror user were tricked into visiting a web site containing specially crafted strings, normal XSS prevention could be bypassed allowing a remote attacker to steal confidential data.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 48542 | | Related CVE(s): | CVE-2007-0242 | | Last Modified: | Apr 13 00:04:01 2007 |
| MD5 Checksum: | 9817c5f2fd3da7a0d55c099e744cfa98 |
|
| /// File Name: |
sa24847.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for kdelibs and qt-x11-free. This fixes a vulnerability, which potentially can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24847/ | | File Size: | 45678 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 1309e403e2fe2cf8fa9550bb7dcd08ce |
|
| /// File Name: |
dsa-1276-1.txt |
Description:
|
Debian Security Advisory 1276-1 - Several remote vulnerabilities have been discovered in the MIT reference implementation of the Kerberos network authentication protocol suite, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 44762 | | Related CVE(s): | CVE-2007-0956, CVE-2007-0957, CVE-2007-1216 | | Last Modified: | Apr 5 02:44:39 2007 |
| MD5 Checksum: | 4a46f217ea0deddd84e14e5b5c8c430b |
|
| /// File Name: |
USN-455-1.txt |
Description:
|
Ubuntu Security Notice 455-1 - A slew of vulnerabilities for PHP5 have been patched.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 42526 | | Related CVE(s): | CVE-2007-1375, CVE-2007-1376, CVE-2007-1380, CVE-2007-1484, CVE-2007-1521, CVE-2007-1583, CVE-2007-1700, CVE-2007-1718, CVE-2007-1824, CVE-2007-1887, CVE-2007-1888, CVE-2007-1900 | | Last Modified: | May 3 02:40:45 2007 |
| MD5 Checksum: | c6010940f066f19053aea86e55037dad |
|
| /// File Name: |
sa24736.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24736/ | | File Size: | 40915 | | Last Modified: | Apr 5 00:36:24 2007 |
| MD5 Checksum: | 915e4db5bc661f2add11f54c636fa8c5 |
|
| /// File Name: |
dsa-1283-1.txt |
Description:
|
Debian Security Advisory 1283-1 - Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 32003 | | Related CVE(s): | CVE-2007-1286, CVE-2007-1375, CVE-2007-1376, CVE-2007-1380, CVE-2007-1453, CVE-2007-1454, CVE-2007-1521, CVE-2007-1583, CVE-2007-1700, CVE-2007-1711, CVE-2007-1718, CVE-2007-1777, CVE-2007-1824, CVE-2007-1887, CVE-2007-1889, CVE-2007-1900 | | Last Modified: | May 3 05:25:57 2007 |
| MD5 Checksum: | 75fbfcf5dbc7740ecc59ffbcfaa8a3a7 |
|
| /// File Name: |
USN-454-1.txt |
Description:
|
Ubuntu Security Notice 454-1 - PostgreSQL did not handle the "search_path" configuration option in a secure way for functions declared as "SECURITY DEFINER". Previously, an attacker could override functions and operators used by the security definer function to execute arbitrary SQL commands with the privileges of the user who created the security definer function. The updated version does not search the temporary table schema for functions and operators any more.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 31224 | | Related CVE(s): | CVE-2007-2138 | | Last Modified: | May 3 02:43:16 2007 |
| MD5 Checksum: | 0c69ebd23c86a1fa63415620f7f3e232 |
|
| /// File Name: |
ASA-2007-010.txt |
Description:
|
Asterisk Project Security Advisory - Two closely related stack based buffer overflows exist in the SIP/SDP handler of Asterisk, the vulnerabilities are very similar but exist as two separate unsafe function calls.
| | Author: | Barrie Dempster | | Homepage: | http://www.asterisk.org/security | | File Size: | 28456 | | Last Modified: | Apr 25 07:30:03 2007 |
| MD5 Checksum: | 252a950355a472b214e00960e093be58 |
|
| /// File Name: |
USN-449-1.txt |
Description:
|
Ubuntu Security Notice 449-1 - The krb5 telnet service did not appropriately verify user names. A remote attacker could log in as the root user by requesting a specially crafted user name. The krb5 syslog library did not correctly verify the size of log messages. A remote attacker could send a specially crafted message and execute arbitrary code with root privileges. The krb5 administration service was vulnerable to a double-free in the GSS RPC library. A remote attacker could send a specially crafted request and execute arbitrary code with root privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 23616 | | Related CVE(s): | CVE-2007-0956, CVE-2007-0957, CVE-2007-1216 | | Last Modified: | Apr 5 04:04:37 2007 |
| MD5 Checksum: | 8dbe3d02516ebce6da8a20376066cf07 |
|
| /// File Name: |
sa24706.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24706/ | | File Size: | 22115 | | Last Modified: | Apr 5 07:27:45 2007 |
| MD5 Checksum: | 5c5fab3de5ca77954dea67a3c1feb849 |
|
| /// File Name: |
cisco-sa-20070412-wlc.txt |
Description:
|
Cisco Security Advisory - The Cisco Wireless LAN Controller (WLC) manages Cisco Aironet access points using the Lightweight Access Point Protocol (LWAPP). The WLC contains multiple vulnerabilities that could result in a denial of service (DoS) condition, information disclosure, or access control list changes, or allow an attacker to gain full administrative access.
| | Homepage: | http://www.cisco.com/ | | File Size: | 20655 | | Last Modified: | Apr 13 00:55:38 2007 |
| MD5 Checksum: | 03ab9874194bb1b04caf052982f403e5 |
|
| /// File Name: |
cisco-sa-20070412-wcs.txt |
Description:
|
Cisco Security Advisory - The Cisco Wireless Control System (WCS) works in conjunction with Cisco Aironet Lightweight Access Points, Cisco Wireless LAN Controllers, and the Cisco Wireless Location Appliance by providing tools for wireless LAN planning and design, system configuration, location tracking, security monitoring, and wireless LAN management. Cisco WCS contains multiple vulnerabilities that can result in information disclosure, privilege escalation, and unauthorized access through fixed authentication credentials.
| | Homepage: | http://www.cisco.com/ | | File Size: | 17380 | | Last Modified: | Apr 13 00:56:22 2007 |
| MD5 Checksum: | fdc7095a687300e82da9ab6dc7ded61d |
|
| /// File Name: |
dsa-1274-1.txt |
Description:
|
Debian Security Advisory 1274-1 - An integer underflow bug has been found in the file_printf function in file, a tool to determine file types based analysis of file content. The bug could allow an attacker to execute arbitrary code by inducing a local user to examine a specially crafted file that triggers a buffer overflow.
| | Homepage: | http://www.debian.org/security | | File Size: | 16380 | | Related CVE(s): | CVE-2007-1536 | | Last Modified: | Apr 3 02:47:46 2007 |
| MD5 Checksum: | 46d59b1c361fb254128ece808b24bfe2 |
|
| /// File Name: |
MDKSA-2007-079.txt |
Description:
|
Mandriva Linux Security Advisory - Local exploitation of a memory corruption vulnerability in the X.Org and XFree86 X server could allow an attacker to execute arbitrary code with privileges of the X server, typically root. The vulnerability exists in the ProcXCMiscGetXIDList() function in the XC-MISC extension. This request is used to determine what resource IDs are available for use. This function contains two vulnerabilities, both result in memory corruption of either the stack or heap. The ALLOCATE_LOCAL() macro used by this function allocates memory on the stack using alloca() on systems where alloca() is present, or using the heap otherwise. The handler function takes a user provided value, multiplies it, and then passes it to the above macro. This results in both an integer overflow vulnerability, and an alloca() stack pointer shifting vulnerability. Both can be exploited to execute arbitrary code. iDefense reported two integer overflows in the way X.org handled various font files. A malicious local user could exploit these issues to potentially execute arbitrary code with the privileges of the X.org server. Multiple integer overflows in the XGetPixel function in ImUtil.c in x.org libx11 before 1.0.3, and XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or information leak via crafted images with large or negative values that trigger a buffer overflow.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 16074 | | Related CVE(s): | CVE-2007-1003, CVE-2007-1351, CVE-2007-1352, CVE-2007-1667 | | Last Modified: | Apr 5 08:46:54 2007 |
| MD5 Checksum: | c0ef81e3cf770b6f9cac79ac2e3d346d |
|
| /// File Name: |
cisco-sa-20070425-nfc.txt |
Description:
|
Cisco Security Advisory - Versions of Cisco Network Services (CNS) NetFlow Collection Engine (NFC) prior to 6.0 create and use default accounts with identical usernames and passwords. An attacker with knowledge of these accounts can modify the application configuration and, in certain instances, gain user access to the host operating system.
| | Homepage: | http://www.cisco.com | | File Size: | 15701 | | Last Modified: | May 3 01:42:29 2007 |
| MD5 Checksum: | cf553a8d2b4152c2e86675fa2dae6d8c |
|
| /// File Name: |
MDKSA-2007-094.txt |
Description:
|
Mandriva Linux Security Advisory - A weakness in previous versions of PostgreSQL was found in the security definer functions in which an authenticated but otherwise unprivileged SQL user could use temporary objects to execute arbitrary code with the privileges of the security-definer function.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 15509 | | Related CVE(s): | CVE-2007-2138 | | Last Modified: | May 3 01:50:33 2007 |
| MD5 Checksum: | 9440c19744ef56d999ba572a309cc4ae |
|
| /// File Name: |
sa25004.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for XFree86 and Xorg. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose sensitive information, cause a DoS (Denial of Service), and gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/25004/ | | File Size: | 12681 | | Last Modified: | Apr 24 09:55:20 2007 |
| MD5 Checksum: | 3bf60b0b426ee0bd9e167b29268f7ce3 |
|
| /// File Name: |
ASA-2007-012.txt |
Description:
|
Asterisk Project Security Advisory - The Asterisk Manager Interface has a remote crash vulnerability. If a manager user is configured in manager.conf without a password, and then a connection is made that attempts to use that username and MD5 authentication, Asterisk will dereference a NULL pointer and crash.
| | Homepage: | http://www.asterisk.org/security | | File Size: | 12084 | | Last Modified: | Apr 25 07:32:40 2007 |
| MD5 Checksum: | 5b817c74c96c6fedc5164d93d80850d7 |
|
| /// File Name: |
afflib-overflows.txt |
Description:
|
Virtual Security Research, LLC. Security Advisory - Multiple buffer overflows exist in AFFLIB version 2.2.0. Earlier versions may also be affected.
| | Author: | Timothy D. Morgan | | Homepage: | http://www.vsecurity.com/ | | File Size: | 11680 | | Related CVE(s): | CVE-2007-2053 | | Last Modified: | May 3 03:44:07 2007 |
| MD5 Checksum: | 446352877e3aa73c1f54b3318d5ff7be |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
