Från Bugtraq december år 2002
Några texter från Bugtraq. Nyaste texterna sist:
[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service
GLSA: pine
[RHSA-2002:196-19] Updated xinetd packages fix denial of service vulnerability
MDKSA-2002:085 - Updated WindowMaker packages fix buffer overflow vulnerability
SquirrelMail v1.2.9 XSS bugs
[SECURITY] [DSA 202-1] New IM packages fix insecure temporary file creation
Local Netfilter / IPTables IP Queue PID Wrap Flaw
MDKSA-2002:084 - Updated pine packages fix buffer overflow vulnerability
[SECURITY] [DSA 203-1] New smb2www packages fix arbitrary command execution
[CLA-2002:551] Conectiva Linux Security Announcement - pine
Security Update: [CSSA-2002-054.0] Linux: exploitable memory leak in ypserv
[RHSA-2002:220-40] Updated KDE packages fix security issues
[RHSA-2002:254-05] Updated Webalizer packages fix vulnerability
Security Update: [CSSA-2002-055.0] Linux: RPC XDR buffer overflow
Apache/Tomcat Denial Of Service And Information Leakage Vulnerability
[SECURITY] [DSA 204-1] New kdlibs packages fix arbitrary program execution
[Fwd: [RHSA-2002:196-09] Updated xinetd packages fix denial of service vulnerability]
Security Update: [CSSA-2002-056.0] Linux: apache vulnerabilities in shared memory, DNS, and ApacheBench
SuSE Security Announcement: OpenLDAP2 (SuSE-SA:2002:047)
[SECURITY] [DSA 202-2] New IM packages correct hidden architecture dependency
[SECURITY] [DSA 192-2] New html2ps packages correct fix against arbitrary code execution
Security Update: [CSSA-2002-057.0] Linux: groff pic buffer overflow
[RHSA-2002:246-18] Updated Canna packages fix vulnerabilities
[RHSA-2002:229-10] Updated wget packages fix directory traversal bug
MDKSA-2002:082-1 - Updated python packages fix local arbitrary code execution vulnerability
[SECURITY] [DSA-206-1] tcpdump BGP decoding error
[SECURITY] [DSA-205-1] gtetrinet buffer overflows
Security Update: [CSSA-2002-058.0] Linux: buffer overflow in nss_ldap DNS SRV
Remote multiple vulnerability in apt-www-proxy.
[SECURITY] [DSA 207-1] New tetex-lib packages fix arbitrary command execution
proftpd <=1.2.7rc3 DoS
Advisory 04/2002: Multiple MySQL vulnerabilities
[RHSA-2002:222-21] Updated apache, httpd, and mod_ssl packages available
[SECURITY] [DSA 208-1] New Perl packages correct Safe handling
MDKSA-2002:086 - Updated wget packages fix directory traversal vulnerability
[SECURITY] [DSA-209-1] two wget problems
[SECURITY] [DSA-210-1] lynx CRLF injection
[SECURITY] [DSA 211-1] New mICQ packages fix denial of service
[ESA-20021213-033] Several MySQL vulnerabilities.
[CLA-2002:552] Conectiva Linux Security Announcement - wget
GLSA: fetchmail
GLSA: squirrelmail
GLSA: mysql
GLSA: exim
R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors
[CLA-2002:554] Conectiva Linux Security Announcement - fetchmail
[CLA-2002:553] Conectiva Linux Security Announcement - kernel 2.4
Security Patchs for PHP Products
[CLA-2002:555] Conectiva Linux Security Announcement - MySQL
[SECURITY] [DSA-212-1] Multiple MySQL vulnerabilities
[RHSA-2002:228-11] Updated Net-SNMP packages fix security and other bugs
[RHSA-2002:293-09] Updated Fetchmail packages fix security vulnerability
Fwd: CERT Advisory CA-2002-36 Multiple Vulnerabilities in SSH Implementations
RAZOR advisory: Linux 2.2.xx /proc/<pid>/mem mmap() vulnerability
gfxboot allows boot password circumvention, SuSE 8.1 GRUB
MDKSA-2002:087 - Updated MySQL packages fix multiple vulnerabilities
MDKSA-2002:068-1 - Updated apache packages fix multiple vulnerabilities
[RAZOR] Problems with mkstemp()
GLSA: perl
GLSA: canna
SuSE Security Announcement: cyrus-imapd (SuSE-SA:2002:048)
GLSA: wget
RealNetworks HELIX Server Buffer Overflow Vulnerabilities (#NISR20122002)
PHP-Nuke mail CRLF Injection vulnerabilities
[SECURITY] [DSA 214-1] New kdentwork packages fix buffer overflows
Security Update: [CSSA-2002-059.0] Linux: multiple vulnerabilities in BIND (CERT CA-2002-31)
KDE Security Advisory: Multiple vulnerabilities in KDE
Matlab /tmp usage
[SECURITY] [DSA 215-1] New cyrus-imapd packages fix remote command execution
zkfingerd remote exploit
GLSA: kde-3.0.x
junkbuster 2.0-1 proxy relaying spam
iDEFENSE Security Advisory 12.23.02: Integer Overflow in pdftops
[SECURITY] [DSA 216-1] New fetchmail packages fix buffer overflow
[SECURITY] [DSA 217-1] New typespeed packages fix buffer overflow
[CLA-2002:557] Conectiva Linux Security Announcement - cyrus-imapd
Buffer overflow in PHP "wordwrap" function
GLSA: cyrus-sasl
PHRACK #60 HAS BEEN RELEASED
GLSA: openldap
GLSA: cups
[SECURITY] [DSA 218-1] New bugzilla packages fix cross site scripting problem
Updated "Secure Programming for Linux and Unix HOWTO" now available.
[SECURITY] [DSA 219-1] New dhcpcd packages fix remote command execution vulnerability
Upp en nivå