Find the information you need for your favorite open source distribution .
USN-927-4 fixed vulnerabilities in NSS. This update provides the NSPR needed to use the new NSS.
USN-927-1 fixed vulnerabilities in nss in Ubuntu 9.10. This update provides the corresponding updates for Ubuntu 8.04 LTS.
Kevin Finisterre discovered that the TIFF library did not correctly handlecertain image structures. If a user or automated system were trickedinto opening a specially crafted TIFF image, a remote attacker couldexecute arbitrary code with user privileges, or crash the application,leading to a denial of service. (CVE-2010-1411) [More...]
USN-955-1 fixed vulnerabilities in OPIE. This update provides rebuilt libpam-opie packages against the updated libopie library.
Maksymilian Arciemowicz and Adam Zabrocki discovered that OPIE incorrectly handled long usernames. A remote attacker could exploit this with a crafted username and make applications linked against libopie crash, leading to a denial of service. [More...]
Adrian Pastor and Tim Starling discovered that the CUPS web interface incorrectly protected against cross-site request forgery (CSRF) attacks. If an authenticated user were tricked into visiting a malicious website while logged into CUPS, a remote attacker could modify the CUPS configuration and possibly steal confidential data. (CVE-2010-0540) [More...]
Dan Rosenberg discovered that fastjar incorrectly handled file paths containing ".." when unpacking archives. If a user or an automated system were tricked into unpacking a specially crafted jar file, arbitrary files could be overwritten with user privileges. [More...]
Jun Mao discovered that Samba did not correctly validate SMB1 packetcontents. An unauthenticated remote attacker could send specially craftednetwork traffic that could execute arbitrary code as the root user. [More...]
It was discovered that MySQL did not check privileges before uninstalling plugins. An authenticated user could uninstall arbitrary plugins, bypassing intended restrictions. This issue only affected Ubuntu 9.10 and 10.04 LTS. (CVE-2010-1621) [More...]
Marc Schoenefeld discovered that OpenOffice.org would run document macros from the macro browser, even when macros were disabled. If a user were tricked into opening a specially crafted document and examining a macro, a remote attacker could execute arbitrary code with user privileges. [More...]
USN-947-1 fixed vulnerabilities in the Linux kernel. Fixes for CVE-2010-0419 caused failures when using KVM in certain situations. This update reverts that fix until a better solution can be found.
It was discovered that GnuTLS did not always properly verify the hashalgorithm of X.509 certificates. If an application linked against GnuTLSprocessed a crafted certificate, an attacker could make GnuTLS dereferencea NULL pointer and cause a DoS via application crash. [More...]
It was discovered that the Linux kernel did not correctly handle memoryprotection of the Virtual Dynamic Shared Object page when runninga 32-bit application on a 64-bit kernel. A local attacker couldexploit this to cause a denial of service. (Only affected Ubuntu 6.06LTS.) (CVE-2009-4271) [More...]
The SNMP server did not correctly validate certain UDP clients when usingTCP wrappers. Under some situations, a remote attacker could bypassaccess restrictions and communicate with the SNMP server, potentiallyleading to a loss of privacy or a denial of service. [More...]
It was discovered that ClamAV did not properly reallocate memory whenprocessing certain PDF files. A remote attacker could send a speciallycrafted PDF and crash ClamAV. (CVE-2010-1639)
Maksymilian Arciemowicz discovered that the GNU C library did notcorrectly handle integer overflows in the strfmon function. If a useror automated system were tricked into processing a specially craftedformat string, a remote attacker could crash applications, leading toa denial of service. (Ubuntu 10.04 was not affected.) (CVE-2008-1391) [More...]
It was discovered that the Safe.pm module as used by PostgreSQL did notproperly restrict PL/perl procedures. If PostgreSQL was configured to usePerl stored procedures, a remote authenticated attacker could exploit thisto execute arbitrary Perl code. (CVE-2010-1169) [More...]
It was discovered that MoinMoin incorrectly handled hierarchical access control lists. Users could bypass intended access controls under certain circumstances.
It was discovered that Kerberos did not correctly free memory in theGSSAPI and kdb libraries. If a remote attacker were able to manipulatean application using these libraries carefully, the service couldcrash, leading to a denial of service. (Only Ubuntu 6.06 LTS wasaffected.) (CVE-2007-5902, CVE-2007-5971, CVE-2007-5972) [More...]
Loïc Minier discovered that xvfb-run did not correctly keep the X.org session cookie private. A local attacker could gain access to any local sessions started by xvfb-run. Ubuntu 9.10 was not affected. (CVE-2009-1573) [More...]
Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.
Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.
