Från Bugtraq december år 2002
Några texter från Bugtraq. Nyaste texterna sist:
SuSE Security Announcement: cups (SuSE-SA:2003:002)
GLSA: leafnode
SuSE Security Announcement: mysql (SuSE-SA:2003:003)
[SECURITY] [DSA 220-1] New squirrelmail packages fix cross site scripting problem
GLSA: xpdf
SuSE Security Announcement: fetchmail (SuSE-SA:2003:001)
[BUGZILLA] Security Advisory - remote database password disclosure
[SECURITY] [DSA 221-1] New mhonarc packages fix cross site scripting
[RHSA-2002:270-16] Updated pine packages available
OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS
GLSA: libmcrypt
GLSA: dhcpcd
GLSA: http-fetcher
GLSA: lcdproc
Tanne Remote format string exploit (Proof of Concept)
IMP 2.x SQL injection vulnerabilities
Security Update: [CSSA-2003-001.0] Linux: fetchmail at-sign buffer overflow vulnerability
MDKSA-2003:001 - Updated CUPS packages fix multiple vulnerabilities
MDKSA-2003:003 - Updated dhcpcd packages fix character expansion vulnerability
GLSA: libpng
MDKSA-2003:002 - Updated xpdf packages fix integer overflow vulnerability
MDKSA-2003:005 - Updated leafnode packages fix remote DoS vulnerability
[SECURITY] [DSA 224-1] New canna packages fix buffer overflow and denial of service
[SECURITY] [DSA 225-1] New tomcat packages fix source disclosure vulnerability
[RHSA-2002:295-07] Updated CUPS packages fix various vulnerabilities
[RHSA-2002:283-09] Updated cyrus-sasl packages fix buffer overflows
MDKSA-2003:004 - Updated KDE packages fix multiple vulnerabilities
SuSE Security Announcement: libpng (SuSE-SA:2003:0004)
[SECURITY] [DSA 227-1] New openldap packages fix buffer overflows and remote exploit
[SECURITY] [DSA 229-1] New IMP packages fix SQL injection
[RHSA-2003:001-16] Updated PostgreSQL packages fix security issues and bugs
MDKSA-2003:006 - Updated OpenLDAP packages fix multiple vulnerabilities
stunnel - exploit
[SECURITY] [DSA 229-2] New IMP packages fix SQL injection and typo
Security Update: [CSSA-2003.003.0] Linux: wget directory traversal and buffer overrun vulnerabilities
[SECURITY] [DSA 231-1] New dhcp3 packages fix arbitrary code execution
phpBB SQL Injection vulnerability
Security Update: [CSSA-2003-002.0] Linux: Webmin Cross-site Scripting and Session ID Spoofing Vulnerabilities
Multiple Vulnerabilties In PHPLinks
CERT Advisory CA-2003-01 Buffer Overflows in ISC DHCPD Minires Library (fwd)
[RHSA-2002:290-07] Updated Ethereal packages are available
[SECURITY] [DSA 223-1] New geneweb packages fix information exposure
isc dhcpd 3.0 format string exploit
[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution
[SECURITY] [DSA 230-1] New bugzilla packages fix unauthorized data modification
[SECURITY] [DSA 228-1] New libmcrypt packages fix buffer overflows and memory leak
GLSA: fnord
[RHSA-2002:288-22] Updated MySQL packages fix various security issues
[RHSA-2002:297-17] Updated vim packages fix modeline vulnerability
[SECURITY] [DSA 226-1] New xpdf-i packages fix arbitrary command execution
GLSA: mod_php php
DoS against DHCP infrastructure with isc dhcrelay
GLSA: kde-2.2.x
MDKSA-2002:073-1 - Updated krb5 packages fix incorrect initscripts
[RHSA-2003:011-07] Updated dhcp packages fix security vulnerabilities
[RHSA-2003:010-10] Updated PostgreSQL packages fix buffer overrun vulnerabilities
Re: Local/remote mpg123 exploit
MDKSA-2003:007 - Updated dhcp packages fix remote code execution vulnerability
GLSA: dhcp
Path Parsing Errata in Apache HTTP Server
[RHSA-2003:012-07] Updated CVS packages available
[SECURITY] [DSA 235-1] New kdegraphics packages fix several vulnerabilities
MDKSA-2003:010 - Updated printer-drivers packages fix local vulnerabilities
Security Update: [CSSA-2003-005.0] Linux: canna buffer overflow and denial of service
Whitepaper - Detecting Wireless LAN MAC Address Spoofing
[RHSA-2002:202-25] Updated python packages fix predictable temporary file
[SECURITY] [DSA 234-1] New kdeadmin packages fix several vulnerabilities
GLSA: cvs
[SECURITY] [DSA 233-1] New cvs packages fix arbitrary code execution
Remote Root Exploit in CVS
iDEFENSE Security Advisory 01.21.03: Buffer Overflows in Mandrake Linux printer-drivers Package
SuSE Security Announcement: susehelp (SuSE-SA:2003:005)
[ANNOUNCE] Apache 2.0.44 Released
[security@slackware.com: [slackware-security] New CVS packages available]
[SECURITY] [DSA 237-1] New kdenetwork packages fix several vulnerabilities
[CLA-2003:561] Conectiva Linux Security Announcement - cvs
SuSE Security Announcement: dhcp (SuSE-SA:2003:0006)
[SECURITY] [DSA 240-1] New kdegames packages fix several vulnerabilities
Security Update: [CSSA-2003-004.0] Linux: Multiple Security Vulnerabilities in the Common Unix Printing System (CUPS)
[SECURITY] [DSA 239-1] New kdesdk packages fix several vulnerabilities
[security@slackware.com: [slackware-security] New DHCP packages available]
MDKSA-2003:009 - Updated cvs packages fix multiple vulnerabilities
[CLA-2003:564] Conectiva Linux Security Announcement - libpng
[CLA-2003:562] Conectiva Linux Security Announcement - dhcp
Binary file cvs-pserver-double-free-2003-01.txt matches
Mailman: cross-site scripting bug
[SECURITY] [DSA 242-1] New kdebase packages fix several vulnerabilities
[SECURITY] [DSA 241-1] New kdeutils packages fix several vulnerabilities
[SECURITY] [DSA 243-1] New kdemultimedia packages fix several vulnerabilities
[USG- SA- 2003.001] USG Security Advisory (slocate)
[SECURITY] [DSA 244-1] New noffle packages fix buffer overflows
[ESA-20030127-002] fetchmail-ssl: heap overflow vulnerability
[ESA-20030127-001] MySQL vulnerabilities
Re: Mailman: cross-site scripting bug
MDKSA-2003:011 - Updated fetchmail packages fix remote exploit vulnerability
[SECURITY] [DSA 245-1] New dhcp3 packages fix potential network flood
[SECURITY] [DSA 246-1] New tomcat packages fix information exposure and cross site scripting
Local root vuln in SuSE 8.0 plptools package
SPIKE Proxy 1.4.7 is now available
Apache Jakarta Tomcat 3 URL parsing vulnerability
[RHSA-2003:020-10] Updated kerberos packages fix vulnerability in ftp client
Security Update: [CSSA-2003-006.0] Linux: CVS double free vulnerability
Upp en nivå