Section: .. / 1001-advisories /
| /// File Name: |
USN-882-1.txt |
Description:
|
Ubuntu Security Notice 882-1 - Maksymilian Arciemowicz discovered that PHP did not properly handle the ini_restore function. An attacker could exploit this issue to obtain random memory contents or to cause the PHP server to crash, resulting in a denial of service. It was discovered that the htmlspecialchars function did not properly handle certain character sequences, which could result in browsers becoming vulnerable to cross-site scripting attacks when processing the output. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data (such as passwords), within the same domain. Stefan Esser discovered that PHP did not properly handle session data. An attacker could exploit this issue to bypass safe_mode or open_basedir restrictions.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 86381 | | Related CVE(s): | CVE-2009-2626, CVE-2009-4142, CVE-2009-4143 | | Last Modified: | Jan 13 21:29:50 2010 |
| MD5 Checksum: | 58014cec2904df5137bfc8f8a0a82992 |
|
| /// File Name: |
sa38192.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/ | | File Size: | 78849 | | Last Modified: | Jan 15 07:24:20 2010 |
| MD5 Checksum: | 541e41672d6858aaba8e6cba9780b7e3 |
|
| /// File Name: |
sa38099.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct spoofing attacks.
| | Homepage: | http://secunia.com/ | | File Size: | 64697 | | Last Modified: | Jan 5 06:04:52 2010 |
| MD5 Checksum: | fd0e501d2af96a6db999622e75ebc844 |
|
| /// File Name: |
USN-876-1.txt |
Description:
|
Ubuntu Security Notice 876-1 - It was discovered that PostgreSQL did not properly handle certificates with NULL characters in the Common Name field of X.509 certificates. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications. It was discovered that PostgreSQL did not properly manage session-local state. A remote authenticated user could exploit this to escalate privileges within PostgreSQL.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 60216 | | Related CVE(s): | CVE-2009-4034, CVE-2009-4136 | | Last Modified: | Jan 3 23:27:01 2010 |
| MD5 Checksum: | ec4f6b7b0f091672355282b553868fcb |
|
| /// File Name: |
USN-881-1.txt |
Description:
|
Ubuntu Security Notice 881-1 - It was discovered that Kerberos did not correctly handle invalid AES blocks. An unauthenticated remote attacker could send specially crafted traffic that would crash the KDC service, leading to a denial of service, or possibly execute arbitrary code with root privileges.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 57414 | | Related CVE(s): | CVE-2009-4212 | | Last Modified: | Jan 12 17:41:02 2010 |
| MD5 Checksum: | c5cc3071235d3683b1c35e54ec7d601d |
|
| /// File Name: |
sa38100.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for PostgreSQL. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct spoofing attacks.
| | Homepage: | http://secunia.com/ | | File Size: | 55983 | | Last Modified: | Jan 5 06:04:55 2010 |
| MD5 Checksum: | 90b9af87ce84af63b0bd9ace22107d97 |
|
| /// File Name: |
sa38126.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/ | | File Size: | 53437 | | Last Modified: | Jan 13 12:35:14 2010 |
| MD5 Checksum: | e1f19bae7bcedfb9b71f855160dbd5e8 |
|
| /// File Name: |
USN-888-1.txt |
Description:
|
Ubuntu Security Notice 888-1 - It was discovered that Bind would incorrectly cache bogus NXDOMAIN responses. When DNSSEC validation is in use, a remote attacker could exploit this to cause a denial of service, and possibly poison DNS caches. USN-865-1 provided updated Bind packages to fix a security vulnerability. The upstream security patch to fix CVE-2009-4022 was incomplete and CVE-2010-0290 was assigned to the issue. This update corrects the problem. Michael Sinatra discovered that Bind did not correctly validate certain records added to its cache. When DNSSEC validation is in use, a remote attacker could exploit this to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 52900 | | Related CVE(s): | CVE-2009-4022, CVE-2010-0097, CVE-2010-0290 | | Last Modified: | Jan 20 19:16:31 2010 |
| MD5 Checksum: | 8ee9d38fe264c826df92d23f2eb44caf |
|
| /// File Name: |
dsa-1969-1.txt |
Description:
|
Debian Linux Security Advisory 1969-1 - It was discovered that krb5, a system for authenticating users and services on a network, is prone to integer underflow in the AES and RC4 decryption operations of the crypto library. A remote attacker can cause crashes, heap corruption, or, under extraordinarily unlikely conditions, arbitrary code execution.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 49443 | | Related CVE(s): | CVE-2009-4212 | | Last Modified: | Jan 13 21:27:14 2010 |
| MD5 Checksum: | 941b47f478b812ad02bf8c80885c29f0 |
|
| /// File Name: |
sa38240.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for bind9. This fixes multiple vulnerabilities, which can be exploited by malicious people to poison the DNS cache.
| | Homepage: | http://secunia.com/ | | File Size: | 49321 | | Last Modified: | Jan 21 05:22:50 2010 |
| MD5 Checksum: | d01926ddc22b6c6a76ffb533eaf858e0 |
|
| /// File Name: |
USN-893-1.txt |
Description:
|
Ubuntu Security Notice 893-1 - Ronald Volgers discovered that the mount.cifs utility, when installed as a setuid program, suffered from a race condition when verifying user permissions. A local attacker could trick samba into mounting over arbitrary locations, leading to a root privilege escalation.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 47293 | | Related CVE(s): | CVE-2009-3297 | | Last Modified: | Jan 29 17:37:52 2010 |
| MD5 Checksum: | 6d7694cdc9b4cf486e8c305a1e883f1e |
|
| /// File Name: |
sa38140.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/ | | File Size: | 46051 | | Last Modified: | Jan 13 12:34:51 2010 |
| MD5 Checksum: | 7592b26be8bc6f93432e9452442d3ecc |
|
| /// File Name: |
dsa-1973-1.txt |
Description:
|
Debian Linux Security Advisory 1973-1 - Christoph Pleger has discovered that the GNU C Library (aka glibc) and its derivatives add information from the passwd.adjunct.byname map to entries in the passwd map, which allows local users to obtain the encrypted passwords of NIS accounts by calling the getpwnam function.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 45592 | | Related CVE(s): | CVE-2010-0015 | | Last Modified: | Jan 20 17:47:01 2010 |
| MD5 Checksum: | 2f31441909e69e429dbb777e1fe79435 |
|
| /// File Name: |
sa38357.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for samba. This fixes a security issue, which can be exploited by malicious, local users to disclose potentially sensitive information and potentially gain escalated privileges.
| | Homepage: | http://secunia.com/ | | File Size: | 44566 | | Last Modified: | Jan 31 05:11:24 2010 |
| MD5 Checksum: | 98e9ea1c57ec91405f0eb9b22e0600db |
|
| /// File Name: |
sa38238.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for glibc and eglibc. This fixes a security issue which can be exploited by malicious, local users to disclose sensitive information.
| | Homepage: | http://secunia.com/ | | File Size: | 42525 | | Last Modified: | Jan 21 05:21:50 2010 |
| MD5 Checksum: | 37de7e5650719413f166e29e9ef92021 |
|
| /// File Name: |
MDVSA-2010-008.txt |
Description:
|
Mandriva Linux Security Advisory 2010-008 - The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and earlier versions allows context-specific attackers to obtain sensitive information (memory contents) and cause a PHP crash by using the ini_set function to declare a variable, then using the ini_restore function to restore the variable. The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks by placing a crafted byte sequence before a special character. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct these issues.
| | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 39443 | | Related CVE(s): | CVE-2009-2626, CVE-2009-4142 | | Last Modified: | Jan 15 19:40:23 2010 |
| MD5 Checksum: | 255d28778c94f59a3f2ad6327849b2e3 |
|
| /// File Name: |
USN-877-1.txt |
Description:
|
Ubuntu Security Notice 877-1 - USN-873-1 fixed vulnerabilities in Firefox and Xulrunner. The upstream changes introduced a regression when using NTLM authentication. This update fixes the problem and added additional stability fixes. We apologize for the inconvenience. Original advisory details: Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and David James discovered several flaws in the browser and JavaScript engines of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Takehiro Takahashi discovered flaws in the NTLM implementation in Firefox. If an NTLM authenticated user visited a malicious website, a remote attacker could send requests to other applications, authenticated as the user. Jonathan Morgan discovered that Firefox did not properly display SSL indicators under certain circumstances. This could be used by an attacker to spoof an encrypted page, such as in a phishing attack. Jordi Chancel discovered that Firefox did not properly display invalid URLs for a blank page. If a user were tricked into accessing a malicious website, an attacker could exploit this to spoof the location bar, such as in a phishing attack.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 37490 | | Last Modified: | Jan 7 20:07:29 2010 |
| MD5 Checksum: | 338344ef71b3a037f41e18c7b87ca2d0 |
|
| /// File Name: |
dsa-1977-1.txt |
Description:
|
Debian Linux Security Advisory 1977-1 - Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that the embedded Expat copy in the interpreter for the Python language, does not properly process malformed or crafted XML files. This vulnerability could allow an attacker to cause a denial of service while parsing a malformed XML file. In addition, this update fixes an integer overflow in the hashlib module in python2.5. This vulnerability could allow an attacker to defeat cryptographic digests. It only affects the oldstable distribution (etch).
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 33836 | | Related CVE(s): | CVE-2008-2316, CVE-2009-3560, CVE-2009-3720 | | Last Modified: | Jan 26 21:17:02 2010 |
| MD5 Checksum: | 849e7c1a44931c10b7948c6f91f0b161 |
|
| /// File Name: |
sa38324.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for python2.4 and python2.5. This fixes some vulnerabilities, where some have unknown impact and others can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/ | | File Size: | 31048 | | Last Modified: | Jan 26 01:05:36 2010 |
| MD5 Checksum: | 2997d87da0a0a3ccfee263e47d5c89a2 |
|
| /// File Name: |
MDVSA-2009-316-2.txt |
Description:
|
Mandriva Linux Security Advisory 2009-316 - The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than and CVE-2009-3720. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers This update provides a solution to these vulnerabilities. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. SUSE discovered a regression with the previous patch fixing CVE-2009-3560. This regression is now being addressed with this update.
| | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 28449 | | Related CVE(s): | CVE-2009-3560 | | Last Modified: | Jan 11 13:01:43 2010 |
| MD5 Checksum: | 8a1c6a9407a15672c9cb16af188b52cb |
|
| /// File Name: |
dsa-1985-1.txt |
Description:
|
Debian Linux Security Advisory 1985-1 - It was discovered that sendmail, a Mail Transport Agent, does not properly handle a '\\0' character in a Common Name (CN) field of an X.509 certificate. This allows an attacker to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and to bypass intended access restrictions via a crafted client certificate issued by a legitimate Certification Authority.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 27346 | | Related CVE(s): | CVE-2009-4565 | | Last Modified: | Jan 31 16:26:17 2010 |
| MD5 Checksum: | 079a17fa8d5d399fecb93c8957fd2d86 |
|
| /// File Name: |
MDVSA-2009-316-1.txt |
Description:
|
Mandriva Linux Security Advisory 2009-316 - The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than and CVE-2009-3720. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers This update provides a solution to these vulnerabilities. This vulnerability was discovered in the bundled expat code in various softwares besides expat itself. As a precaution the affected softwares has preemptively been patched to prevent presumptive future exploitations of this issue.
| | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 27252 | | Related CVE(s): | CVE-2009-3560 | | Last Modified: | Jan 8 20:42:08 2010 |
| MD5 Checksum: | d04931a023893e2574977321f731d560 |
|
| /// File Name: |
MDVSA-2010-009.txt |
Description:
|
Mandriva Linux Security Advisory 2010-009 - The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks by placing a crafted byte sequence before a special character. The updated packages have been patched to correct this issue.
| | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 26049 | | Related CVE(s): | CVE-2009-4142 | | Last Modified: | Jan 15 20:00:20 2010 |
| MD5 Checksum: | 3bc2c39f69446ef0aee711c725b25958 |
|
| /// File Name: |
USN-890-3.txt |
Description:
|
Ubuntu Security Notice 890-3 - USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for the PyExpat module in Python 2.4. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash.
| | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 24827 | | Related CVE(s): | CVE-2009-3560, CVE-2009-3720 | | Last Modified: | Jan 22 18:54:08 2010 |
| MD5 Checksum: | 5bb6274ca915988ea7addb08819f54e2 |
|
| /// File Name: |
MDVSA-2010-000.txt |
Description:
|
Mandriva Linux Security Advisory 2010-000 - The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote attackers to cause a denial of service (application crash) via a crafted web site that triggers memory consumption and an accompanying Low Memory alert dialog, and also triggers attempted removal of an observer from an empty observers array. Additionally, some packages which require so, have been rebuilt and are being provided as updates.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 24598 | | Last Modified: | Jan 11 15:33:32 2010 |
| MD5 Checksum: | b123fa0e1eedf97f96d0694447fc8bb4 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
