BugTraq Latest Security Advisories
[SECURITY] [DSA 1602-1] New pcre3 packages fix arbitrary code execution
------------------------------------------------------------------------
Debian Security Advisory DSA-1602-1 security_at_debian.org
http://www.debian.org/security/ Florian Weimer
July 05, 2008 ...
[ MDVSA-2008:135 ] - Updated gnome-screensaver packages fix authentication vulnerability
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:135
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:134 ] - Updated squid packages fix DoS vulnerability
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:134
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:133 ] - Updated sympa packages fix DoS vulnerability
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:133
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:132 ] - Updated gnome-screensaver packages fix authentication vulnerability
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:132
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:131 ] - Updated phpMyAdmin packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:131
http://www.mandriva.com/security/
_______________________________________________________________________
...
Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow
||
|| [ISR]
|| Infobyte Security Research
|| www.infobyte.com.ar
|| 07.02.2008
||
.:: SUMMARY
Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow
Version: 2.0, It is suspected that all previous versions of Groupwise
Messenger Client are vulnerable.
.:: BACKGROUND
...
[DSECRG-08-027] Multiple RFI-LFI in 1024 CMS 1.4.3, 1.4.4 RFC
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-027
Application: 1024 CMS
Versions Affected: 1.4.3, 1.4.4 RFC
Vendor URL: http://www.1024cms.com/
Bug: Multiple Remote/Local File Include
...
[SECURITY] [DSA 1601-1] New wordpress packages fix several vulnerabilities
------------------------------------------------------------------------
Debian Security Advisory DSA-1601-1 security_at_debian.org
http://www.debian.org/security/ Thijs Kinkhorst
July 04, 2008 ...
Local vulnerability in WeFi Client v3.2.1.4.1(Update)
('binary' encoding is not supported, stored as-is)
==================================================
INFO
==================================================
The wireless client, WeFi v3.2.1.4.1 is susceptible to local vulnerabilities due to improper coding. Earlier versions may
also be...
[ MDVSA-2008:130 ] - Updated PHP packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:130
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:129 ] - Updated PHP packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:129
http://www.mandriva.com/security/
_______________________________________________________________________
...
F5 FirePass 1200 SNMP daemon DoS
('binary' encoding is not supported, stored as-is)
F5 FirePass 1200 SNMP daemon DoS
Product: F5 FirePass 1200
http://www.f5.com/products/firepass/
The F5 FirePass 1200 SSL VPN appliance contains a denial-of-service vulnerability in the SNMP daemon. Traversing (walking) OID branch hrSWInstalled...
[ MDVSA-2008:128 ] - Updated PHP packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:128
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:127 ] - Updated PHP packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:127
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:126 ] - Updated PHP packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:126
http://www.mandriva.com/security/
_______________________________________________________________________
...
[ MDVSA-2008:125 ] - Updated PHP packages fix multiple vulnerabilities
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2008:125
http://www.mandriva.com/security/
_______________________________________________________________________
...
Unauthorized reading confirmation from Outlook
I've just got an interesting idea about how a malicious e-mail sender
could try to get a unseen by the recipient reading confirmation,
including the IP address of the recipient. I was working on S/MIME
messages and I thought about the signature validation process, where
some of the steps...
rPSA-2008-0212-1 tshark wireshark
rPath Security Advisory: 2008-0212-1
Published: 2008-07-03
Products:
rPath Linux 1
Rating: Major
Exposure Level Classification:
Indirect Deterministic Information Exposure
Updated Versions:
...
rPSA-2008-0211-1 mercurial mercurial-hgk
rPath Security Advisory: 2008-0211-1
Published: 2008-07-03
Products:
rPath Linux 2
Rating: Major
Exposure Level Classification:
Indirect User Deterministic Unauthorized Access
Updated Versions:
...