|
|
Colapse all |
Post message
SUSE Security Announcement: kernel local privilege escalation (SUSE-SA:2005:003) 2005-01-21 Marcus Meissner (meissner suse de) UnixWare 7.1.3 UnixWare 7.1.1 : OpenSSL Multiple Vulnerabilities 2005-01-21 please_reply_to_security sco com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ ______ SCO Security Advisory Subject: UnixWare 7.1.3 UnixWare 7.1.1 : OpenSSL Multiple Vulnerabilities Advisory number: SCOSA-2005.7 Issue date: 2005 January 20 Cross ref [ more ] [ reply ] [SECURITY] [DSA 652-1] New unarj packages fix several vulnerabilities 2005-01-21 joey infodrom org (Martin Schulze) [ GLSA 200501-26 ] ImageMagick: PSD decoding heap overflow 2005-01-20 Sune Kloppenborg Jeppesen (jaervosz gentoo org) God Admin Injection Vulnerability in Siteman 1.0.x 2005-01-20 Pedram hayati (pi3ch yahoo com) God Admin Injection Vulnerability in Siteman 1.0.x, Discovered by PersianHacker.NET Security Team by amironline452 (amironline452 hotmail com) http://www.PersianHacker.NET http://www.amironline452.tk Siteman is a Content Management System (CMS) that is so easy to install and use, that a [ more ] [ reply ] [SECURITY] [DSA 649-1] New xtrlock packages fix authentication bypass 2005-01-20 joey infodrom org (Martin Schulze) STG Security Advisory: [SSA-20050120-22] JSBoard file disclosure vulnerability 2005-01-20 advisory stgsecurity com STG Security Advisory: [SSA-20050120-22] JSBoard file disclosure vulnerability. Revision 1.0 Date Published: 2005-01-20 (KST) Last Update: 2005-01-20 (KST) Disclosed by SSR Team (advisory (at) stgsecurity (dot) com [email concealed]) Summary ======== JSBoard is one of widely used web BBS applications in Korea. Because of an [ more ] [ reply ] STG Security Advisory: [SSA-20050120-24] GForge 3.x directory traversal vulnerability 2005-01-20 advisory stgsecurity com STG Security Advisory: [SSA-20050120-24] GForge 3.x directory traversal vulnerability. Revision 1.0 Date Published: 2005-01-20 (KST) Last Update: 2005-01-20 (KST) Disclosed by SSR Team (advisory (at) stgsecurity (dot) com [email concealed]) Summary ======== GForge is a software to help collaborative development for software [ more ] [ reply ] MDKSA-2005:010 - Updated playmidi packages fix buffer overflow vulnerability 2005-01-19 Mandrake Linux Security Team (security linux-mandrake com) MDKSA-2005:009 - Updated mpg123 packages fix vulnerability 2005-01-19 Mandrake Linux Security Team (security linux-mandrake com) Integrigy Security Advisory - High Risk Security Issues in the Oracle Database and Oracle Applications 2005-01-20 Integrigy Security (alerts integrigy com) Integrigy Security Advisory ______________________________________________________________________ High Risk Security Issues in the Oracle Database and Oracle Applications Oracle Critical Patch Update - January 2005 January 19, 2005 _________________________________________________________________ [ more ] [ reply ] MDKSA-2005:011 - Updated xine packages fix multiple vulnerabilities 2005-01-19 Mandrake Linux Security Team (security linux-mandrake com) Multiple vulnerabilities in Konversation 2005-01-19 Wouter Coekaerts (wouter coekaerts be) On 18 and 19 Jan 2005 I (Wouter Coekaerts) discovered 3 security vulnerabilities in Konversation ("A user-friendly IRC-client for KDE", http://konversation.berlios.de/). Affected are version 0.15, CVS until 18-19/01/2005, and some older versions too. They are fixed in 0.15.1. Problem 1. Quick But [ more ] [ reply ] [CLA-2005:920] Conectiva Security Announcement - libtiff3 2005-01-20 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : libtiff3 SUMMARY : Fixes for libtiff vulnerab [ more ] [ reply ] [USN-67-1] Squid vulnerabilities 2005-01-20 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-67-1 January 20, 2005 squid vulnerabilities CAN-2005-0094, CAN-2005-0095, CAN-2005-0096, CAN-2005-0097 =========================================================== A security issue affects the following Ubuntu [ more ] [ reply ] [SECURITY] [DSA 650-1] New sword packages fix arbitrary command execution 2005-01-20 joey infodrom org (Martin Schulze) OpenServer 5.0.6 OpenServer 5.0.7 : bind remote attacker can poison the nameserver cache 2005-01-20 please_reply_to_security sco com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ ______ SCO Security Advisory Subject: OpenServer 5.0.6 OpenServer 5.0.7 : bind remote attacker can poison the nameserver cache Advisory number: SCOSA-2005.4 Issue date: 2 [ more ] [ reply ] [SECURITY] [DSA 651-1] New squid packages fix denial of service 2005-01-20 joey infodrom org (Martin Schulze) [USN-64-1] xpdf, CUPS vulnerabilities 2005-01-19 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-64-1 January 19, 2005 xpdf, cupsys vulnerabilities CAN-2005-0064 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog [ more ] [ reply ] [USN-66-1] PHP vulnerabilities 2005-01-20 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-66-1 January 20, 2005 php4 vulnerabilities http://www.securitytracker.com/alerts/2004/Oct/1011984.html http://www.securityfocus.com/archive/1/384920 =========================================================== [ more ] [ reply ] [USN-65-1] Apache utility script vulnerability 2005-01-19 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-65-1 January 19, 2005 apache vulnerabilities http://bugs.debian.org/290974 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (War [ more ] [ reply ] [SECURITY] [DSA 647-1] New mysql packages fix insecure temporary files 2005-01-19 joey infodrom org (Martin Schulze) [SECURITY] [DSA 646-1] New ImageMagick packages fix arbitrary code execution 2005-01-19 joey infodrom org (Martin Schulze) [SECURITY] [DSA 645-1] New CUPS packages fix arbitrary code execution 2005-01-19 joey infodrom org (Martin Schulze) iDEFENSE Security Advisory 01.19.05: MySQL MaxDB Web Agent Multiple Denial of Service Vulnerabilities 2005-01-19 Michael Sutton (msutton iDefense com) MySQL MaxDB Web Agent Multiple Denial of Service Vulnerabilities iDEFENSE Security Advisory 01.19.05 www.idefense.com/application/poi/display?id=187&type=vulnerabilities January 19, 2005 I. BACKGROUND MaxDB by MySQL is a re-branded and enhanced version of SAP DB, SAP AG's open source database. Ma [ more ] [ reply ] RealPlayer 'ShowPreferences' Buffer Overflow Vulnerability (#NISR19012005e) 2005-01-19 NGSSoftware Insight Security Research (nisr nextgenss com) NGSSoftware Insight Security Research Advisory Name: RealPlayer 'ShowPreferences' Buffer Overflow Vulnerability Systems Affected: RealPlayer 10.5 (6.0.12.1040) and older Severity: High Vendor URL: http://www.real.com/ Author: John Heasman [ john (at) ngssoftware (dot) com [email concealed] ] Date of Public Advisory: 19th Janua [ more ] [ reply ] |
|
Privacy Statement |
-----BEGIN PGP SIGNED MESSAGE-----
________________________________________________________________________
______
SUSE Security Announcement
Package: kernel
Announcement-ID: SUSE-SA:2005:003
Date: Friday, Jan
[ more ] [ reply ]