Advisory: Gentoo Essential and Critical Security Patch Updates - Page 172

Gentoo: GLSA-200409-15: Webmin, Usermin: Multiple vulnerabilities in Usermin

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A vulnerability in the webmail function of Usermin could be used by an attacker to execute shell code via a specially-crafted e-mail. A bug in the installation script of Webmin and Usermin also allows a local user to execute a symlink attack at installation time. [More...]

LinuxSecurity.com Team
Sep 12, 2004

Gentoo: GLSA-200409-14: Samba: Remote printing non-vulnerability

This advisory incorrectly described Samba versions as being vulnerable to a remote denial of service. After further verifications, it appears that a remote user can only deny service to himself, so this bug does not induce any security issue at all. The corrected sections appear [More...] [More...]

LinuxSecurity.com Team
Sep 10, 2004

Gentoo: GLSA-200409-14: Samba: Remote printing vulnerability

Samba is vulnerable to a remote denial of service attack due to out of sequence print change notification requests.

LinuxSecurity.com Team
Sep 09, 2004

Gentoo: GLSA-200409-13: LHa: Multiple vulnerabilities

Several buffer overflows and a shell metacharacter command execution vulnerability have been found in LHa. These vulnerabilities can be used to execute arbitrary code. [More...]

LinuxSecurity.com Team
Sep 08, 2004

Gentoo: GLSA-200409-12: ImageMagick, imlib, imlib2: BMP decoding buffer overflows

ImageMagick, imlib and imlib2 contain exploitable buffer overflow vulnerabilities in the BMP image processing code.

LinuxSecurity.com Team
Sep 08, 2004

Gentoo: GLSA-200409-11: star: Suid root vulnerability

star contains a suid root vulnerability which could potentially grant unauthorized root access to an attacker.

LinuxSecurity.com Team
Sep 07, 2004

Gentoo: GLSA-200409-10: multi-gnome-terminal: Information leak

Active keystroke logging in multi-gnome-terminal has been discovered in potentially world-readable files. This could allow any authorized user on the system to read sensitive data, including passwords. [More...]

LinuxSecurity.com Team
Sep 06, 2004

Gentoo: GLSA-200409-09: MIT krb5: Multiple vulnerabilities

MIT krb5 contains several double-free vulnerabilities, potentially allowing the execution of arbitrary code, as well as a denial of service vulnerability. [More...]

LinuxSecurity.com Team
Sep 06, 2004

Gentoo: GLSA-200409-08: Ruby: CGI::Session creates files insecurely

When used for CGI scripting, Ruby creates session files in /tmp with the permissions of the default umask. Depending on that umask, local users may be able to read sensitive data stored in session files. [More...]

LinuxSecurity.com Team
Sep 03, 2004

Gentoo: GLSA-200409-07: xv: Buffer overflows in image handling

xv contains multiple exploitable buffer overflows in the image handling code.

LinuxSecurity.com Team
Sep 03, 2004

Gentoo: GLSA-200408-22: Mozilla, Firefox, Thunderbird, Galeon, Epiphany: New releases fix vulnerabilities

New releases of Mozilla, Epiphany, Galeon, Mozilla Thunderbird, and Mozilla Firefox fix several vulnerabilities, including remote DoS and buffer overflows. [More...]

LinuxSecurity.com Team
Sep 03, 2004

Gentoo: GLSA-200409-06: eGroupWare: Multiple XSS vulnerabilities

The eGroupWare software contains multiple cross site scripting vulnerabilities.

LinuxSecurity.com Team
Sep 02, 2004

Gentoo: GLSA-200409-05: Gallery: Arbitrary command execution

The Gallery image upload code contains a temporary file handling vulnerability which could lead to execution of arbitrary commands.

LinuxSecurity.com Team
Sep 02, 2004

Gentoo: GLSA-200409-04: Squid: Denial of service when using NTLM authentication

Squid is vulnerable to a denial of service attack which could crash its NTLM helpers.

LinuxSecurity.com Team
Sep 02, 2004

Gentoo: GLSA-200409-03: Python 2.2: Buffer overflow in getaddrinfo()

Python 2.2 has a vulnerability in DNS handling when IPV6 is disabled and a malformed IPV6 address is encountered by getaddrinfo().

LinuxSecurity.com Team
Sep 02, 2004

Gentoo: GLSA-200409-02: MySQL: Insecure temporary file creation in mysqlhotcopy

The mysqlhotcopy utility can create temporary files with predictable paths, allowing an attacker to use a symlink to trick MySQL into overwriting important data. [More...]

LinuxSecurity.com Team
Sep 01, 2004

Gentoo: GLSA-200409-01: vpopmail: Multiple vulnerabilities

vpopmail contains several bugs making it vulnerable to several SQL injection exploits as well as one buffer overflow and one format string exploit when using Sybase. This could lead to the execution of arbitrary code. [More...]

LinuxSecurity.com Team
Sep 01, 2004

Gentoo: GLSA-200408-27: Gaim: New vulnerabilities

Gaim contains several security issues that might allow an attacker to execute arbitrary code or commands.

LinuxSecurity.com Team
Aug 27, 2004

Gentoo: GLSA-200408-26: zlib: Denial of service vulnerability

The zlib library contains a Denial of Service vulnerability.

LinuxSecurity.com Team
Aug 27, 2004

Gentoo: GLSA-200408-25: MoinMoin: Group ACL bypass

MoinMoin contains a bug allowing anonymous users to bypass ACLs (Access Control Lists) and carry out operations that should be limited to authorized users. [More...]

LinuxSecurity.com Team
Aug 26, 2004

Gentoo Essential and Critical Security Patch Updates - Page 172

Gentoo: GLSA-200409-15: Webmin, Usermin: Multiple vulnerabilities in Usermin

Gentoo: GLSA-200409-14: Samba: Remote printing non-vulnerability

Gentoo: GLSA-200409-14: Samba: Remote printing vulnerability

Gentoo: GLSA-200409-13: LHa: Multiple vulnerabilities

Gentoo: GLSA-200409-12: ImageMagick, imlib, imlib2: BMP decoding buffer overflows

Gentoo: GLSA-200409-11: star: Suid root vulnerability

Gentoo: GLSA-200409-10: multi-gnome-terminal: Information leak

Gentoo: GLSA-200409-09: MIT krb5: Multiple vulnerabilities

Gentoo: GLSA-200409-08: Ruby: CGI::Session creates files insecurely

Gentoo: GLSA-200409-07: xv: Buffer overflows in image handling

Gentoo: GLSA-200408-22: Mozilla, Firefox, Thunderbird, Galeon, Epiphany: New releases fix vulnerabilities

Gentoo: GLSA-200409-06: eGroupWare: Multiple XSS vulnerabilities

Gentoo: GLSA-200409-05: Gallery: Arbitrary command execution

Gentoo: GLSA-200409-04: Squid: Denial of service when using NTLM authentication

Gentoo: GLSA-200409-03: Python 2.2: Buffer overflow in getaddrinfo()

Gentoo: GLSA-200409-02: MySQL: Insecure temporary file creation in mysqlhotcopy

Gentoo: GLSA-200409-01: vpopmail: Multiple vulnerabilities

Gentoo: GLSA-200408-27: Gaim: New vulnerabilities

Gentoo: GLSA-200408-26: zlib: Denial of service vulnerability

Gentoo: GLSA-200408-25: MoinMoin: Group ACL bypass

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By