Section: .. / 0801-advisories /
| /// File Name: |
MDVSA-2008-012.txt |
Description:
|
Mandriva Linux Security Advisory - An integer overflow flaw was discovered in how python's pcre module handled certain regular expressions. If a python application using the pcre module were to compile and execute untrusted regular expressions, it could possibly lead to an application crash or the execution of arbitrary code with the privileges of the python interpreter. Multiple integer overflows were found in python's imageop module. If an application written in python used the imageop module to process untrusted images, it could cause the application to crash, enter an infinite loop, or possibly execute arbitrary code with the privileges of the python interpreter.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4724 | | Related CVE(s): | CVE-2006-7228, CVE-2007-4965 | | Last Modified: | Jan 14 17:59:40 2008 |
| MD5 Checksum: | cb9f373cc74b45624bba55e90191bd4a |
|
| /// File Name: |
sa28483.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for syslog-ng. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28483/ | | File Size: | 4665 | | Last Modified: | Jan 16 23:45:41 2008 |
| MD5 Checksum: | 1ab02b63dd1a1d04c3efa60dfa855cbc |
|
| /// File Name: |
sa28221.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for inotify-tools. This fixes a vulnerability, which can potentially be exploited by malicious users to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/28221/ | | File Size: | 4647 | | Last Modified: | Jan 2 18:42:16 2008 |
| MD5 Checksum: | 6467c93cce526dc2b4071eb120e6d9d3 |
|
| /// File Name: |
sa28297.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28297/ | | File Size: | 4620 | | Last Modified: | Jan 8 15:39:29 2008 |
| MD5 Checksum: | d960b8b7d419b41835d7094902f10394 |
|
| /// File Name: |
sa28254.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for tcpreen. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28254/ | | File Size: | 4560 | | Last Modified: | Jan 4 20:33:38 2008 |
| MD5 Checksum: | caef1437beef6e0d0020eff0c315b2d0 |
|
| /// File Name: |
sa28637.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for mysql. This fixes a security issue and a vulnerability, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28637/ | | File Size: | 4505 | | Last Modified: | Jan 30 18:37:19 2008 |
| MD5 Checksum: | c716cf142620e8eac3f872791225bf31 |
|
| /// File Name: |
MDVSA-2008-024.txt |
Description:
|
Mandriva Linux Security Advisory - A heap-based buffer overflow flaw was found in how the X.org server handled malformed font files that could allow a malicious local user to potentially execute arbitrary code with the privileges of the X.org server.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4397 | | Related CVE(s): | CVE-2008-0006 | | Last Modified: | Jan 25 03:35:35 2008 |
| MD5 Checksum: | e1e2cdb59de1210c487a22344b8728d0 |
|
| /// File Name: |
01.17.08-3.txt |
Description:
|
iDefense Security Advisory 01.17.08 - Local exploitation of multiple integer overflow vulnerabilities in the X.Org X server, as included in various vendors' operating system distributions, could allow an attacker to execute arbitrary code with the privileges of the X server, typically root. One vulnerability exists within the EVI extension. When processing a request, the server uses a 32-bit value provided by the client in an arithmetic operation that calculates the number of bytes to allocate for a dynamic buffer. This operation can overflow, which later leads to a potentially exploitable heap overflow. Another vulnerability exists within the MIT-SHM extension. When allocating a pixmap, the server uses values from the request to verify that the requested size is not greater than the amount of allocated shared memory. The calculation can overflow, which leads to the overwriting of arbitrary addresses in memory that aren't part of the shared memory segment. iDefense has confirmed the existence of these vulnerabilities in X.Org X11 version R7.3. Previous versions may also be affected.
| | Author: | regenrecht | | Homepage: | http://www.idefense.com/ | | File Size: | 4381 | | Related CVE(s): | CVE-2007-6429 | | Last Modified: | Jan 18 05:54:08 2008 |
| MD5 Checksum: | d8374f2c1aa7d9c49935b8406407713d |
|
| /// File Name: |
FreeBSD-SA-08-02.libc.txt |
Description:
|
FreeBSD Security Advisory - An off-by-one error in the inet_network() function could lead to memory corruption with certain inputs.
| | Homepage: | http://security.freebsd.org/ | | File Size: | 4335 | | Related CVE(s): | CVE-2008-0122 | | Last Modified: | Jan 15 15:23:52 2008 |
| MD5 Checksum: | e0392834b11387459aade51caa04478c |
|
| /// File Name: |
sa28462.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for tog-pegasus. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28462/ | | File Size: | 4283 | | Last Modified: | Jan 14 21:34:40 2008 |
| MD5 Checksum: | 1a05850e6e8bb9184458c3378efafb15 |
|
| /// File Name: |
MDVSA-2008-009.txt |
Description:
|
Mandriva Linux Security Advisory - The default behaviour of autofs 5 for the hosts map did not specify the nosuid and nodev mount options. This could allow a local user with control of a remote NFS server to create a setuid root executable on the exported filesystem of the remote NFS server. If this filesystem was mounted with the default hosts map, it would allow the user to obtain root privileges. Likewise, the same scenario would be available for local users able to create device files on the exported filesystem which could allow the user to gain access to important system devices. Because the default behaviour of autofs was to mount -hosts map entries with the dev and suid options enabled by default, autofs has been altered to always use nodev and nosuid by default. In order to have the old behaviour, the configuration must now explicitly set the dev and/or suid options.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4190 | | Related CVE(s): | CVE-2007-5964, CVE-2007-6285 | | Last Modified: | Jan 11 20:47:25 2008 |
| MD5 Checksum: | f9d1f61a7e9c079463f7defadccd3a0d |
|
| /// File Name: |
postgresql-multi.txt |
Description:
|
The PostgreSQL Global Development Group has released updated versions which patch five security vulnerabilities. These releases update all current PostgreSQL versions, including 8.2, 8.1, 8.0, 7.4 and 7.3.
| | Homepage: | http://www.postgresql.org/support/security | | File Size: | 4167 | | Last Modified: | Jan 7 14:36:52 2008 |
| MD5 Checksum: | ae0f98dea021cc2ed261880750558da6 |
|
| /// File Name: |
sa28500.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for libXfont. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28500/ | | File Size: | 4153 | | Last Modified: | Jan 23 22:55:21 2008 |
| MD5 Checksum: | 335e4c015f962cbdea59cb6dc0b4acd6 |
|
| /// File Name: |
MDVSA-2008-027.txt |
Description:
|
Mandriva Linux Security Advisory - A programming flaw was found in Pulseaudio versions older than 0.9.9, by which a local user can gain root access, if pulseaudio is installed as a setuid to root binary, which is the recommended configuration.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4115 | | Related CVE(s): | CVE-2008-0008 | | Last Modified: | Jan 25 19:21:24 2008 |
| MD5 Checksum: | 8909b5c5d3679c095cddeb45e29c6a08 |
|
| /// File Name: |
01.17.08-4.txt |
Description:
|
iDefense Security Advisory 01.17.08 - Local exploitation of an invalid array index vulnerability in the X.Org X server, as included in various vendors' operating system distributions, could allow an attacker to execute arbitrary code with the privileges of the X server, typically root. The vulnerability exists within the XFree86-Misc extension. When processing a request, a 32-bit value from the client's request is used as an index into an array of structures. This structure contains an array of function pointers, one of which is used later in the request handling. By supplying a large array index, an arbitrary function pointer can be dereferenced. This results in the execution of arbitrary code. iDefense has confirmed the existence of this vulnerability in X.org X11 version R7.3. Previous versions may also be affected.
| | Author: | regenrecht | | Homepage: | http://www.idefense.com/ | | File Size: | 4054 | | Related CVE(s): | CVE-2007-5760 | | Last Modified: | Jan 18 05:55:09 2008 |
| MD5 Checksum: | e9363376f421d5734a8bb62a5b45c073 |
|
| /// File Name: |
MDVSA-2008-014.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw found in the mod_autoindex module could lead to a cross-site scripting attack on sites where mod_autoindex was enabled and the AddDefaultCharset directive was removed from the configuration, against web browsers that did not correctly derive the response character set following the rules in RFC 2616. A flaw found in the mod_imagemap module could lead to a cross-site scripting attack on sites where mod_imagemap was enabled and an imagemap file was publicly available. A flaw found in the mod_status module could lead to a cross-site scripting attack on sites where mod_status was enabled and the status pages were publicly available. A flaw found in the mod_proxy_ftp module could lead to a cross-site scripting attack against web browsers which do not correctly derive the response character set following the rules in RFC 2616, on sites where the mod_proxy_ftp module was enabled.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4002 | | Related CVE(s): | CVE-2007-4465, CVE-2007-5000, CVE-2007-6388, CVE-2008-0005 | | Last Modified: | Jan 17 00:56:17 2008 |
| MD5 Checksum: | 73ce39335778435b022b8ca44386cf69 |
|
| /// File Name: |
sa28325.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28325/ | | File Size: | 3967 | | Last Modified: | Jan 3 20:06:34 2008 |
| MD5 Checksum: | b6c1ec6419db77f9687c05c6dbf649c0 |
|
| /// File Name: |
01.17.08-2.txt |
Description:
|
iDefense Security Advisory 01.17.08 - Local exploitation of an information disclosure vulnerability in the X.Org X server, as included in various vendors' operating system distributions, could allow an attacker to gain access to sensitive information stored in server memory. The vulnerable code exists within the TOG-CUP extension. A 32-bit client supplied value is taken directly from the request, and then used as an index into an array. The value located at this index is then stored into a buffer which is later sent to the client. This allows a client to read memory from arbitrary locations in server memory. iDefense has confirmed the existence of this vulnerability in X.Org X11 version R7.3. Previous versions may also be affected.
| | Author: | regenrecht | | Homepage: | http://www.idefense.com/ | | File Size: | 3966 | | Related CVE(s): | CVE-2007-6428 | | Last Modified: | Jan 18 05:53:07 2008 |
| MD5 Checksum: | 1b7e32af0eef6ebb2945a5211db21469 |
|
| /// File Name: |
12.24.07-1.txt |
Description:
|
iDefense Security Advisory 12.24.07 - Local exploitation of a privilege escalation vulnerability in Novell ZENworks Endpoint Security Management allows attackers to execute arbitrary code with SYSTEM privileges. iDefense has confirmed the existence of this vulnerability in STEngine.exe version 3.5.0.20 as included with Novell Inc's ZENworks Endpoint Security Management 3.5. Other versions may also be affected.
| | Author: | Stephen Fewer | | Homepage: | http://www.idefense.com/ | | File Size: | 3947 | | Related CVE(s): | CVE-2007-5665 | | Last Modified: | Jan 4 19:25:04 2008 |
| MD5 Checksum: | e67c26c468fb8d535a7fe75eab2aae44 |
|
| /// File Name: |
MDVSA-2008-009-1.txt |
Description:
|
Mandriva Linux Security Advisory - The default behaviour of autofs 5 for the hosts map did not specify the nosuid and nodev mount options. This could allow a local user with control of a remote NFS server to create a setuid root executable on the exported filesystem of the remote NFS server. If this filesystem was mounted with the default hosts map, it would allow the user to obtain root privileges. Likewise, the same scenario would be available for local users able to create device files on the exported filesystem which could allow the user to gain access to important system devices. Because the default behaviour of autofs was to mount -hosts map entries with the dev and suid options enabled by default, autofs has been altered to always use nodev and nosuid by default. In order to have the old behaviour, the configuration must now explicitly set the dev and/or suid options. The previous update shipped with an incorrect LDAP lookup module that would prevent the automount daemon from starting. This update corrects that problem.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3937 | | Related CVE(s): | CVE-2007-5964, CVE-2007-6285 | | Last Modified: | Jan 12 19:37:36 2008 |
| MD5 Checksum: | f6177e8e7d3f51b060fff3292eb5e11a |
|
| /// File Name: |
01.07.08-1.txt |
Description:
|
iDefense Security Advisory 01.07.08 - Local exploitation of a privilege escalation vulnerability in Motorola Inc.'s netOctopus could allow an attacker to execute arbitrary code in kernel context. iDefense has confirmed the existence of this vulnerability in version 5.0.0.115 of the nantsys.sys driver as included with netOctopus version 5.1.2 build 1011. Previous versions may also be affected.
| | Author: | Stephen Fewer | | Homepage: | http://www.idefense.com/ | | File Size: | 3913 | | Related CVE(s): | CVE-2007-5761 | | Last Modified: | Jan 7 16:03:56 2008 |
| MD5 Checksum: | 61e51ae15fb273e26e18067d2f5ee0d4 |
|
| /// File Name: |
sa28505.txt |
Description:
|
Secunia Security Advisory - nnposter has reported a vulnerability in F5 BIG-IP, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28505/ | | File Size: | 3871 | | Last Modified: | Jan 18 20:16:59 2008 |
| MD5 Checksum: | 57753decd34e4c9eeb9a9101ddb214bb |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
