Från Bugtraq december år 2002
Några texter från Bugtraq. Nyaste texterna sist:
Exploit for CVS double free() for Linux pserver
Bladeenc 0.94.2 code execution
GLSA: slocate
MDKSA-2003:013 - Updated MySQL packages fix DoS vulnerability
MDKSA-2003:012 - Updated vim packages fix arbitrary command execution vulnerability
BDT_AV200212140001: Insecure default: Using pam_xauth for su from sh-utils package
Majordomo info leakage, all versions
[RHSA-2003:025-20] Updated 2.4 kernel fixes various vulnerabilities
GLSA: qt-dcgui
GLSA: Mail-SpamAssasin
GLSA: bladeenc
[RHSA-2003:017-06] Updated PHP packages available
[CLA-2003:567] Conectiva Linux Security Announcement - mcrypt
MDKSA-2003:014 - Updated kernel packages fix a number of bugs
MDKSA-2003:015 - Updated slocate packages fix buffer overflow
[RHSA-2003:037-09] Updated Xpdf packages fix security vulnerability
[RHSA-2003:044-20] Updated w3m packages fix cross-site scripting issues
[RHSA-2003:056-08] Updated kernel-utils packages fix setuid vulnerability
Java-Applet crashes Opera 6.05 and 7.01
iDEFENSE Security Advisory 02.10.03: Buffer Overflow In NOD32 Antivirus Software for Unix
RE: Astaro Security Linux Firewall - HTTP Proxy vulnerability
#!ICadv-02.09.03: nethack 3.4.0 local buffer overflow
Gallery 1.3.3
MDKSA-2002:062-1 - Updated postgresql packages fix various buffer overflows
[RHSA-2003:029-06] Updated lynx packages fix CRLF injection vulnerability
Abyss WebServer Brute Force Vulnerability
[CLA-2003:568] Conectiva Linux Security Announcement - mozilla
[RHSA-2003:035-10] Updated PAM packages fix bug in pam_xauth module
[RHSA-2003:015-05] Updated fileutils package fixes race condition in recursive operations
[SECURITY] [DSA 250-1] New w3mmee-ssl packages fix cookie information leak
Lotus Domino DOT Bug Allows for Source Code Viewing
MDKSA-2003:016 - Updated util-linux packages provide stronger randomness in mcookie
[SECURITY] [DSA 251-1] New w3m packages fix cookie information leak
GLSA: mailman
Oracle TO_TIMESTAMP_TZ Remote System Buffer Overrun (#NISR16022003b)
Lotus Domino Web Server iNotes Overflow (#NISR17022003b)
PHP Security Advisory: CGI vulnerability in PHP version 4.3.0
Binary file opera-username-buffer-overflow-2003-02-17.txt matches
GLSA: syslinux
[SECURITY] [DSA 232-2] New CUPS packages fix wrong libPNG dependency
GLSA: w3m
[argv] BitchX-353 Vulnerability
GLSA: nethack
SuSE Security Announcement: imp (SuSE-SA:2003:0008)
SuSE Security Announcement: mod_php4 (SuSE-SA:2003:0009)
Security Update: [CSSA-2003-007.0] Linux: Apache mod_dav module format string vulnerability
MDKSA-2003:017 - Updated pam packages fix root authorization handling in pam_xauth module
MDKSA-2003:018 - Updated apcupsd packages fix buffer overflow and remove vulnerability
[ESA-20030219-003] Several PHP vulnerabilities
GLSA: mod_php php
OpenSSL 0.9.7a and 0.9.6i released
MDKSA-2003:019 - Updated php packages fix buffer overflow vulnerability
Fwd: CERT Advisory CA-2003-05 Multiple Vulnerabilities in Oracle Servers
[ESA-20030220-004] MySQL double free vulnerability
[ESA-20030220-005] OpenSSL timing-based attack vulnerability
GLSA: openssl (200302-10)
[RHSA-2003:057-06] Updated shadow-utils packages fix exposure
GLSA: bitchx (200302-11)
[CLA-2003:569] Conectiva Linux Security Announcement - kde
MDKSA-2003:021 - Updated krb5 packages fix vulnerability in FTP client
[RHSA-2003:041-12] Updated VNC packages fix replay and cookie vulnerabilities
[SECURITY] [DSA 252-1] New slocate packages fix local root exploit
MDKSA-2003:020 - Updated openssl packages fix timing-based attack vulnerability
Rogue buffer overflow
TSLSA-2003-0005 - openssl
Bilaga (webmin-exploit.pl) till: Webmin 1.050 - 1.060 remote exploit
phpBB Security Bugs
moxftp arbitrary code execution poc/advisory
GLSA: usermin (200302-14)
GLSA: apcupsd (200302-13)
multiple vulnerabilities in glftpd
GLSA: tightvnc (200302-15)
Binary file PHPNuke-SQL-Injection-2003-02.txt matches
Nessus 2.0 is out
Re: buffer overrun in zlib 1.1.4
[SECURITY] [DSA 253-1] New OpenSSL packages fix timing-based attack vulnerability
[CLA-2003:570] Conectiva Linux Security Announcement - openssl
GLSA: vnc (200302-16)
Platform independent allocating sprintf (was Re: buffer overrun
MDKSA-2003:023 - Updated lynx packages fix CRLF injection vulnerability
QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities
[RHSA-2003:053-10] Updated vte packages fix gnome-terminal vulnerability
[ESA-20030225-006] WebTool session ID spoofing vulnerability.
MDKSA-2003:022 - Updated vnc packages fix cookie vulnerability
[sorcerer-spells] ZLIB-SORCERER2003-02-25
SuSE Security Announcement: libmcrypt (SuSE-SA:2003:0010)
SuSE Security Announcement: openssl (SuSE-SA:2003:011)
[SECURITY] [DSA 248-1] New hypermail packages fix arbitrary code execution
[SECURITY] [DSA 249-1] New w3mmee packages fix cookie information leak
MDKSA-2003:026 - Updated shadow-utils packages fix improper mailspool ownership
Secunia Research: Opera browser Cross Site Scripting
[SECURITY] [DSA 254-1] New NANOG traceroute packages fix buffer overflow
MDKSA-2003:025 - Updated webmin packages fix session ID spoofing vulnerability
SuSE Security Announcement: hypermail (SuSE-SA:2003:0012)
Mandrake 9.0 local root exploit
[SECURITY] [DSA 255-1] New tcpdump packages fix denial of service vulnerability
[SECURITY] [DSA 256-1] New mhc-utils packages fix predictable temporary file
NetPBM, multiple vulnerabilities
typo3 issues
Upp en nivå