choqok - KDE Micro-Blogging Client

A Free/Open Source micro-blogging client for K Desktop Environment.
The name comes from an ancient Persian word, which means Sparrow!
Choqok currently supports Twitter.com and Identi.ca services.

Change Log:

Wed, 01 Sep 2010 GMT - Sven Lankes <sven@lank.es> - 0.9.90-1 - new upstream release Wed, 01 Sep 2010 GMT - Sven Lankes <sven@lank.es> - 0.9.90-2 - fix segfault on exit (kde bz #249748) Sun, 15 Aug 2010 GMT - Sven Lankes <sven@lank.es> - 0.9.85-1 - new upstream release ...

LinuxSecurity.com: This SUSE Linux Enterprise 10 SP3 kernel update contains several bug fixes and fixes for the following security issues: CVE-2010-2240: the stack of a process could grow into other mapped areas, therefore overwriting memory instead of terminating the [More...]

LinuxSecurity.com: It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service (crash of the application), and possibly execute [More...]

LinuxSecurity.com: Multiple vulnerabilities have been fixed in flashplugin.

LinuxSecurity.com: A vulnerability has been fixed in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

LinuxSecurity.com: A vulnerability has been found and corrected in wget: GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files [More...]

LinuxSecurity.com: An integer overflow vulnerability in wxGTK might enable remoteattackers to cause the execution of arbitrary code.

LinuxSecurity.com: A vulnerability has been found and corrected in openssl: Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent [More...]

LinuxSecurity.com: This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. Following security issues were fixed: CVE-2010-2521: A crafted NFS write request might have caused a buffer overwrite, [More...]

LinuxSecurity.com: A vulnerability has been found and corrected in perl-libwww-perl: lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . (dot) character, which allows remote servers to create or overwrite files via (1) a 3xx redirect to a [More...]

LinuxSecurity.com: Several implementation errors in the dissector of the Wireshark network traffic analyzer for the ASN.1 BER protocol and in the SigComp Universal Decompressor Virtual Machine may lead to the execution of arbitrary code. [More...]

tweetmeme_url = 'http://www.howtoforge.com/virtual-hosting-with-pureftpd-and-mysql-incl-quota-and-bandwidth-management-on-fedora-13';

Virtual Hosting With PureFTPd And MySQL (Incl. Quota And Bandwidth Management) On Fedora 13

This document describes how to install a PureFTPd server that uses virtual users from a MySQL database instead of real system users. This is much more performant and allows to have thousands of ftp users on a single machine. In addition to that I will show the use of quota and upload/download bandwidth limits with this setup. Passwords will be stored encrypted as MD5 strings in the database.

LinuxSecurity.com: A vulnerability has been found and corrected in libgdiplus: Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via (1) a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; [More...]

aespipe - AES-based encryption tool for tar/cpio and loop-aes images

aespipe is an encryption tool that reads from standard input and
writes to standard output. It uses the AES (Rijndael) cipher.

It can be used as an encryption filter, to create and restore
encrypted tar/cpio backup archives and to read/write and convert
loop-AES compatible encrypted images.

aespipe can be used for non-destructive in-place encryption of
existing disk partitions for use with the loop-AES encrypted loop-back
kernel module.

Change Log:

Sat, 28 Aug 2010 GMT - Jirka Hladky <jhladky@redhat.com> - 2.4b-3 - Replaced global with define, see https://fedoraproject.org/wiki/Packaging/Guidelines#.25global_preferred_over_.25define Wed, 25 Aug 2010 GMT - Jirka Hladky <jhladky@redhat.com> - 2.4b-2 - version 2.4b - cleaned up SPEC file - using MACROS everywhere - moved bz2aespipe into examples Fri, 22 Jan 2010 GMT - Dean Mander <knolderpoor@gmail.com> - 2.3e-4 - added Requires:gpg ...

LinuxSecurity.com: It was discovered that libwww-perl incorrectly filtered filenames suggestedby Content-Disposition headers. If a user were tricked into downloading afile from a malicious site, a remote attacker could overwrite hidden filesin the user's directory. [More...]

tweetmeme_url = 'http://www.howtoforge.com/integrating-xcache-into-php5-fedora-13-centos-5.5-and-apache2';

Integrating XCache Into PHP5 (Fedora 13/CentOS 5.5 & Apache2)

This guide explains how to integrate XCache into PHP5 on a Fedora 13 or CentOS 5.5 system (with Apache2). From the XCache project page: "XCache is a fast, stable PHP opcode cacher that has been tested and is now running on production servers under high load." It's similar to other PHP opcode cachers, such as eAccelerator and APC.

LinuxSecurity.com: George Guninski discovered a double free in the ECDH code of the OpenSSL crypto library, which may lead to denial of service and potentially the execution of arbitrary code. [More...]

LinuxSecurity.com: A vulnerability has been found and corrected in libHX: Heap-based buffer overflow in the HX_split function in string.c in libHX before 3.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a string that [More...]

LinuxSecurity.com: Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More...]

LinuxSecurity.com: Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having [More...]