Linuxsecurity Advisories

The central voice for Linux and Open Source security news.

URL: http://www.linuxsecurity.com/

Aktualisiert: vor 6 Stunden 9 Minuten

SuSE: 2010-038: kernel

3. September 2010 - 11:02

LinuxSecurity.com: This SUSE Linux Enterprise 10 SP3 kernel update contains several bug fixes and fixes for the following security issues: CVE-2010-2240: the stack of a process could grow into other mapped areas, therefore overwriting memory instead of terminating the [More...]

Kategorien: Fedora Debian Security

Debian: 2102-1: barnowl: unchecked return value

3. September 2010 - 8:14

LinuxSecurity.com: It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service (crash of the application), and possibly execute [More...]

Kategorien: Fedora Debian Security

Pardus: 2010-120: Flashplugin: Multiple

3. September 2010 - 4:09

LinuxSecurity.com: Multiple vulnerabilities have been fixed in flashplugin.

Kategorien: Fedora Debian Security

Pardus: 2010-119: OpenSSL: Use-after-free

3. September 2010 - 4:09

LinuxSecurity.com: A vulnerability has been fixed in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

Kategorien: Fedora Debian Security

Mandriva: 2010:170: wget

2. September 2010 - 21:21

LinuxSecurity.com: A vulnerability has been found and corrected in wget: GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files [More...]

Kategorien: Fedora Debian Security

Gentoo: 201009-01: wxGTK: User-assisted execution of arbitrary code

2. September 2010 - 19:20

LinuxSecurity.com: An integer overflow vulnerability in wxGTK might enable remoteattackers to cause the execution of arbitrary code.

Kategorien: Fedora Debian Security

Mandriva: 2010:168: openssl

1. September 2010 - 15:30

LinuxSecurity.com: A vulnerability has been found and corrected in openssl: Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent [More...]

Kategorien: Fedora Debian Security

SuSE: 2010-036: kernel

1. September 2010 - 10:04

LinuxSecurity.com: This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. Following security issues were fixed: CVE-2010-2521: A crafted NFS write request might have caused a buffer overwrite, [More...]

Kategorien: Fedora Debian Security

Mandriva: 2010:167: perl-libwww-perl

31. August 2010 - 22:24

LinuxSecurity.com: A vulnerability has been found and corrected in perl-libwww-perl: lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . (dot) character, which allows remote servers to create or overwrite files via (1) a 3xx redirect to a [More...]

Kategorien: Fedora Debian Security

Debian: 2101-1: wireshark: Multiple vulnerabilities

31. August 2010 - 19:29

LinuxSecurity.com: Several implementation errors in the dissector of the Wireshark network traffic analyzer for the ASN.1 BER protocol and in the SigComp Universal Decompressor Virtual Machine may lead to the execution of arbitrary code. [More...]

Kategorien: Fedora Debian Security

Mandriva: 2010:166: libgdiplus

31. August 2010 - 16:00

LinuxSecurity.com: A vulnerability has been found and corrected in libgdiplus: Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via (1) a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; [More...]

Kategorien: Fedora Debian Security

Ubuntu: 981-1: libwww-perl vulnerability

31. August 2010 - 11:43

LinuxSecurity.com: It was discovered that libwww-perl incorrectly filtered filenames suggestedby Content-Disposition headers. If a user were tricked into downloading afile from a malicious site, a remote attacker could overwrite hidden filesin the user's directory. [More...]

Kategorien: Fedora Debian Security

Debian: 2100-1: openssl: double free

30. August 2010 - 16:45

LinuxSecurity.com: George Guninski discovered a double free in the ECDH code of the OpenSSL crypto library, which may lead to denial of service and potentially the execution of arbitrary code. [More...]

Kategorien: Fedora Debian Security

Mandriva: 2010:165: libHX

30. August 2010 - 16:00

LinuxSecurity.com: A vulnerability has been found and corrected in libHX: Heap-based buffer overflow in the HX_split function in string.c in libHX before 3.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a string that [More...]

Kategorien: Fedora Debian Security

Red Hat: 2010:0661-01: kernel: Important Advisory

30. August 2010 - 13:09

LinuxSecurity.com: Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More...]

Kategorien: Fedora Debian Security

Red Hat: 2010:0660-01: kernel: Important Advisory

30. August 2010 - 12:43

LinuxSecurity.com: Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having [More...]

Kategorien: Fedora Debian Security

Red Hat: 2010:0659-01: httpd: Moderate Advisory

30. August 2010 - 12:42

LinuxSecurity.com: Updated httpd packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate [More...]

Kategorien: Fedora Debian Security

Mandriva: 2010:164: phpmyadmin

30. August 2010 - 12:27

LinuxSecurity.com: A vulnerability has been found and corrected in phpmyadmin: It was possible to conduct a XSS attack using crafted URLs or POST parameters on several pages (CVE-2010-3056). [More...]

Kategorien: Fedora Debian Security

Debian: 2098-1: typo3-src: Multiple vulnerabilities

29. August 2010 - 8:35

LinuxSecurity.com: Several remote vulnerabilities have been discovered in the TYPO3 web content management framework: cross-site Scripting, open redirection, SQL injection, broken authentication and session management, insecure randomness, information disclosure and arbitrary code [More...]

Kategorien: Fedora Debian Security

Debian: 2097-1: phpmyadmin: insufficient input sanitisi

29. August 2010 - 8:27

LinuxSecurity.com: Several remote vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems: [More...]

Kategorien: Fedora Debian Security

Aktuelles Wetter

22089 Hamburg-Eilbek

Klarer Himmel
Temperatur: 10 °C, gefühlt wie 8.8 °C
Wind: Ost-Nordost (60°), 9.3 km/h
Luftdruck: 1026 hPa
Rel. Luftfeuchte: 82 %
Sicht: 10 km
Sonnenaufgang: 06:33
Sonnenuntergang: 20:04

Berichtet am:
6. September 2010 - 0:50

Linuxsecurity Advisories

Fedora Debian Security

Wind in the Wires

Ein paar Worte über die "Gaza-Solidaritäts-Flotte"