Från Bugtraq december år 2002

• nethack C340-137: security issue fixed
• GLSA: eterm (200303-1)
• GLSA: vte (200303-2)
• [RHSA-2003:073-06] Updated sendmail packages fix critical security issues
• MDKSA-2003:027 - Updated tcpdump packages fix denial of service vulnerabilities
• Snort RPC Vulnerability (fwd)
• SuSE Security Announcement: sendmail (SuSE-SA:2003:013)
• MDKSA-2003:028 - Updated sendmail packages fix remotely exploitable buffer overflow vulnerability
• [CLA-2003:571] Conectiva Linux Security Announcement - sendmail
• [Snort-2003-001] Buffer overflow in Snort RPC preprocessor (fwd)
• GLSA: sendmail (200303-4)
• [SECURITY] [DSA-257-1] sendmail remote exploit
• Fwd: CERT Advisory CA-2003-07 Remote Buffer Overflow in Sendmail
• GLSA: tcpdump (200303-5)
• [RHSA-2003:042-07] Updated squirrelmail packages close cross-site scripting vulnerabilities
• [RHSA-2003:039-06] Updated im packages fix insecure handling of temporary files
• [RHSA-2003:062-11] Updated OpenSSL packages fix timing attack
• file(1) exploit code
• GLSA: snort (200303-6)
• Security Update: [CSSA-2003-009.0] Linux: slocate command line buffer overflows
• gzprintf
• [RHSA-2003:086-07] Updated file packages fix vulnerability
• MDKSA-2003:030 - Updated file packages fix stack overflow vulnerability
• GLSA: mysqlcc (200303-7)
• [ESA-20030307-007] 'snort' RPC preprocessor buffer overflow.
• [sorcerer-spells] SNORT-SORCERER2003-03-06-1
• sendmail 8.12.8 available
• xscreensaver exploit for Redhat 7.3
• GLSA: snort (200303-6.1)
• MDKSA-2003:029 - Updated snort packages fix buffer overflow vulnerability
• [ESA-20030307-008] 'file' ELF parsing routine buffer overflow vulnerability.
• Smoothwall Firewall SNORT buffer overflow
• Cross-Referencing Linux vulnerability
• MySQL user can be changed to root
• BIND 9.2.2 Vulnerabilities?
• [SECURITY] [DSA 258-1] New ethereal packages fix arbitrary code execution
• [SNS Advisory No.63] DeleGate Pointer Array Overflow May Let Remote Users Execute Arbitrary Code
• Security Update: [CSSA-2003-011.0] Linux: format string vulnerability in zlib (gzprintf)
• Security Update: [CSSA-2003-010.0] Linux: remote buffer overflow in sendmail (CERT CA-2003-07)
• Vulnerability in man < 1.5l
• Re: QPopper 4.0.x buffer overflow vulnerability
• GLSA: ethereal (200303-10)
• pgp4pine stack overflow vulnerability
• MDKSA-2003:031 - Updated usermode packages remove insecure shutdown command
• R7-0012: Lotus Notes/Domino R6-beta PROTOS LDAP Denial of Service Regression
• SuSE Security Announcement: lprold (SuSE-SA:2003:0014)
• R7-0010: Buffer Overflow in Lotus Notes Protocol Authentication
• SuSE Security Announcement: tcpdump (SuSE-SA:2003:0015)
• R7-0011: Lotus Notes/Domino Web Retriever HTTP Status Buffer Overflow
• [SECURITY] [DSA-260-1] New file package fixes buffer overflow
• [SECURITY] [DSA 261-1] New tcpdump packages fix denial of service vulnerability
• Buffer overflows in ircII-based clients
• Guestbook v1.1.3 CSS Vuln
• Security Update: [CSSA-2003-012.0] Linux: KDE rlogin.protocol and telnet.protocol url kio Vulnerability
• Denial-Of-Service holes in JDK 1.4.1_01
• [SECURITY] [DSA-262-1] samba security fix
• MITKRB5-SA-2003-004: Cryptographic weaknesses in Kerberos v4 protocol
• [SECURITY] [DSA 263-1] New tcpdump packages fix denial of service vulnerability
• [RHSA-2003:098-00] Updated 2.4 kernel fixes vulnerability
• [INetCop Security Advisory #2002-0x82-013] Kebi Academy 2001 Web Solution Directory Traversing Vulnerability.
• GLSA: samba (200303-11)
• Vulnerability in OpenSSL
• Security Bugfix for Samba - Samba 2.2.8 Released
• [RHSA-2003:072-08] Updated Gnome-lokkit packages fix vulnerability
• GLSA: qpopper (200303-12)
• [RHSA-2003:054-00] Updated rxvt packages fix various vulnerabilites
• MDKSA-2003:032 - Updated samba packages fix remote root vulnerability
• Bilaga till: [Sorcerer-spells] SAMBA-SORCERER2003-03-17
• GLSA: mysql (200303-14)
• GLSA: man (200303-13)
• [ESA-20030318-009] Several 'kernel' vulnerabilities
• MDKSA-2003:033 - Updated zlib packages fix buffer overrun vulnerability
• [] New samba packages fix security vulnerabilities
• TSLSA-2003-0009 - mysql
• TSLSA-2003-0007 - kernel
• TSLSA-2003-0010 - openssl
• TSLSA-2003-0011 - samba
• [SECURITY] [DSA 264-1] New lxr packages fix information disclosure
• SuSE Security Announcement: samba (SuSE-SA:2003:016)
• EEYE: XDR Integer Overflow
• [OpenSSL Advisory] Klima-Pokorny-Rosa attack on PKCS #1 v1.5 padding
• linux kmod/ptrace bug - details
• [RHSA-2003:089-00] Updated glibc packages fix vulnerabilities in RPC XDR decoder
• MITKRB5-SA-2003-003: faulty length checks in xdrmem_getbytes
• CORE-2003-03-04-01: Multiple vulnerabilities in Ximian 's Evolution Mail User Agent
• mutt-1.4.1 fixes a buffer overflow.
• Security Update: [CSSA-2003-013.0] Linux: integer overflow vulnerability in XDR/RPC routines
• [ESA-20030320-010] Several vulnerabilities in the OpenSSL toolkit.
• [RHSA-2003:088-01] New kernel 2.2 packages fix vulnerabilities
• [Sorcerer-spells] GLIBC-SORCERER2003-03-20
• Fwd: CERT Advisory CA-2003-10 Integer overflow in Sun RPC XDR library routines
• [Sorcerer-spells] LINUX-SORCERER2003-03-20
• [Sorcerer-spells] KRB5-SORCERER2003-03-20
• IBM Tivoli Firewall Security Toolbox buffer overflow vulnerability
• CORE-20030304-02: Vulnerability in Mutt Mail User Agent
• [SCSA-011] Path Disclosure Vulnerability in XOOPS
• GLSA: evolution (200303-18)
• GLSA: kernel (200303-17)
• SuSE Security Announcement: ethereal (SuSE-SA:2003:019)
• SuSE Security Announcement: file (SuSE-SA:2003:017)
• [SECURITY] [DSA 265-1] New bonsai packages fix several vulnerabilities
• SuSE Security Announcement: qpopper (SuSE-SA:2003:018)
• [ESA-20030321-010] 'glibc' RPC XDR decoder vulnerability
• [Sorcerer-spells] OPENSSL-SORDCERER2003-03-21
• [RHSA-2003:108-01] Updated Evolution packages fix multiple vulnerabilities
• Stunnel: RSA timing attacks / key discovery
• GLSA: rxvt (200303-16)
• [sorcerer-spells] MUTT-SORCERER2003-03-19
• GLSA: openssl (200303-15)
• GLSA: mutt (200303-19)
• [SECURITY] [DSA 266-1] New krb5 packages fix several vulnerabilities
• GLSA: openssl (200303-20)
• SuSE Security Announcement: mutt (SuSE-SA:2003:020)
• [SECURITY] [DSA 267-1] New lpr packages fix local root exploit
• GLSA: bitchx (200303-21)
• Samba-TNG 0.3.1 Security Release (fwd)
• [ESA-20030324-012] 'MySQL' root exploit.
• Security Update: [CSSA-2003-014.0] Linux: several recently discovered openssl vulnerabilities
• @(#)Mordred Labs advisory - Integer overflow in PHP socket_iovec_alloc() function
• [RHSA-2003:095-02] New samba packages fix security vulnerabilities
• [SECURITY] [DSA 268-1] New mutt packages fix arbitrary code execution
• GLSA: glibc (200303-22)
• Re: Buffer overflows in ircII-based clients
• PHPNuke viewpage.php allows Remote File retrieving
• SuSE Security Announcement: kernel (SuSE-SA:2003:021)
• GLSA: stunnel (200303-24)
• MDKSA-2003:037 - Updated glibc packages fix vulnerabilities in RPC XDR decoder
• Security Update: [CSSA-2003-015.0] Linux: apcupsd remote root vulnerability and buffer overflows
• MDKSA-2003:036 - Updated netpbm packages fix math overflow errors
• MDKSA-2003:035 - Updated openssl packages fix RSA-related insecurities
• MDKSA-2003:034 - Updated rxvt packages fix escape sequence insecurities
• GLSA: mod_ssl (200303-23)
• SuSE Security Announcement: apcupsd (SuSE-SA:2003:022)
• [SECURITY] [DSA 269-1] New heimdal packages fix authentication failure
• TSLSA-2003-0013 - openssl
• [SECURITY] [DSA 270-1] New Linux kernel packages (mips + mipsel) fix local root exploit
• [SECURITY] [DSA 271-1] New ecartis and listar packages fix password change vulnerability
• Fwd: CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino
• TSLSA-2003-0014 - glibc
• [RHSA-2003:051-01] Updated kerberos packages fix various vulnerabilities
• Immunix Secured OS 7+ openssl update
• Problems with Snort-1.9.1
• [SECURITY] [DSA 274-1] New mutt packages fix arbitrary code execution
• CORE-2003-0304-03: Vulnerability in GNOME's Eye of Gnome
• MDKSA-2003:038 - Updated 2,4 kernel packages fix ptrace vulnerability
• GLSA: zlib (200303-25)
• [SECURITY] [DSA 273-1] New krb4 packages fix authentication failure
• MDKSA-2003:039 - Updated kernel22 packages fix multiple vulnerabilities
• [SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution
• Mod_Survey ENV tag vulnerability
• Netscape and Opera crash via java
• [security@slackware.com: [slackware-security] Sendmail buffer overflow fixed]
• [security@slackware.com: [slackware-security] Samba buffer overflow fixed]
• sendmail 8.12.9 available

Upp en nivå