Debian Essential And Critical Security Patch Updates - Page 249

Debian: New kdelibs packages fix buffer overflow

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Maksim Orlovich discovered that the kjs Javascript interpreter, used in the Konqueror web browser and in other parts of KDE, performs insufficient bounds checking when parsing UTF-8 encoded Uniform Resource Identifiers, which may lead to a heap based buffer overflow and the execution of arbitrary code.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New crawl packages fix potential group games execution

Steve Kemp from the Debian Security Audit project discovered a security related problem in crawl, another console based dungeon exploration game in the vein of nethack and rogue. The program executes commands insecurely when saving or loading games which can allow local attackers to gain group games privileges.

LinuxSecurity.com Team
Jan 27, 2006

Debian: trac fix SQL injection and cross-site scripting DSA-951-1

Several vulnerabilies have been discovered in trac, an enhanced wiki and issue tracking system for software development projects. The Common Vulnerabilities and Exposures project identifie the following problems:

LinuxSecurity.com Team
Jan 27, 2006

Debian: New libapache-auth-ldap packages fix arbitrary code execution

"Seregorn" discovered a format string vulnerability in the logging function of libapache-auth-ldap, an LDAP authentication module for the Apache webserver, that can lead to the execution of arbitrary code.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New flyspray packages fix cross-site scripting

Several cross-site scripting vulnerabilities have been discovered in flyspray, a lightweight bug tracking system, which allows attackers to insert arbitary script code into the index page.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New wine packages fix arbitrary code execution

H D Moore that discovered that Wine, a free implemention of the Microsoft Windows APIs, inherits a design flaw from the Windows GDI API, which may lead to the execution of code through GDI escape functions in WMF files.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New clamav packages fix heap overflow

A heap overflow has been discovered in ClamAV, a virus scanner, which could allow an attacker to execute arbitrary code by sending a carefully crafted UPX-encoded executable to a system runnig ClamAV. In addition, other potential overflows have been corrected.

LinuxSecurity.com Team
Jan 27, 2006

Debian: mailman fix denial of service DSA-955-1

Two denial of service bugs were found in the mailman list server. In one, attachment filenames containing UTF8 strings were not properly parsed, which could cause the server to crash. In another, a message containing a bad date string could cause a server crash.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New lsh-utils packages fix local vulnerabilities

Stefan Pfetzing discovered that lshd, a Secure Shell v2 (SSH2) protocol server, leaks a couple of file descriptors, related to the randomness generator, to user shells which are started by lshd. A local attacker can truncate the server's seed file, which may prevent the server from starting, and with some more effort, maybe also crack session keys.

LinuxSecurity.com Team
Jan 27, 2006

Debian: drupal fix several vulnerabilities DSA-958-1

Several security related problems have been discovered in drupal, a fully-featured content management/discussion engine. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities:

LinuxSecurity.com Team
Jan 27, 2006

Debian: New hylafax packages fix arbitrary command execution

Patrice Fournier found that hylafax passes unsanitized user data in the notify script, allowing users with the ability to submit jobs to run arbitrary commands with the privileges of the hylafax server.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New pound packages fix multiple vulnerabilities

Two vulnerabilities have been discovered in Pound, a reverse proxy and load balancer for HTTP. The Common Vulnerabilities and Exposures project identifies the following problems:

LinuxSecurity.com Team
Jan 27, 2006

Debian: New smstools packages fix format string vulnerability

Ulf Harnhammar from the Debian Security Audit project discovered a format string attack in the logging code of smstools, which may be exploited to execute arbitary code with root privileges.

LinuxSecurity.com Team
Jan 27, 2006

Debian: New libapache2-mod-auth-pgsql packages fix arbitrary code execution

iDEFENSE reports that a format string vulnerability in mod_auth_pgsql, a library used to authenticate web users against a PostgreSQL database, could be used to execute arbitrary code with the privileges of the httpd user.

LinuxSecurity.com Team
Jan 27, 2006

Debian: libextractor fix arbitrary code execution DSA-936-1

"infamous41md" and Chris Evans discovered several heap based buffer overflows in xpdf, the Portable Document Format (PDF) suite, which is also present in libextractor, a library to extract arbitrary meta-data from files, and which can lead to a denial of service by crashing the application or possibly to the execution of arbitrary code.