Från Bugtraq mars år 2002

• UPDATE: Cert Advisory 2002-03 and Ethereal
• [ESA-20020301-005] 'apache' (mod_ssl) session caching buffer overflow
• [ESA-20020301-006] 'php, mod_php' MIME parsing vulnerabilities
• [SECURITY] [DSA 116-1] New CFS packages fix security problems
• [SECURITY] [DSA 115-1] New PHP packages fix security problems
• Denial of Service in Sphereserver
• Apache-SSL buffer overflow (fix available)
• CERT Advisory CA-2002-06 Vulnerabilities in Various Implementations of the
• SuSE Security Announcement: squid (SuSE-SA:2002:008)
• [CLA-2002:465] Conectiva Linux Security Announcement - apache
• [RHSA-2002:030-08] Updated radiusd-cistron packages are available
• [H20020304]: Remotely exploitable format string vulnerability in ntop
• [SECURITY] [DSA 117-1] New CVS packages fix potential security problems
• Apache+php Proof of Concept Exploit
• mtr 0.45, 0.46
• efingerd remote buffer overflow and a dangerous feature
• [CLA-2002:466] Conectiva Linux Security Announcement - radiusd-cistron
• [PINE-CERT-20020301] OpenSSH off-by-one
• [ESA-20020307-007] Local vulnerability in OpenSSH's channel code.
• OpenSSH Security Advisory (adv.channelalloc)
• [CLA-2002:467] Conectiva Linux Security Announcement - openssh
• SuSE Security Announcement: openssh (SuSE-SA:2002:009)
• [OpenPKG-SA-2002.002] OpenPKG Security Advisory (openssh)
• MDKSA-2002:021 - mod_frontpage update
• [CLA-2002:468] Conectiva Linux Security Announcement - php
• [RHSA-2002:043-10] Updated openssh packages available
• Binary file linuxkernel-2.4.18.txt matches
• [SECURITY] [DSA 119-1] ssh channel bug
• [RHSA-2002:041-08] Updated mod_ssl packages available
• MDKSA-2002:019 - openssh update
• MDKSA-2002:020 - mod_ssl update
• xtux server DoS.
• GNU fileutils - recursive directory removal race condition
• OpenSSH 2.9.9p2 packages for Immunix 6.2 with latest fix
• [SECURITY] [DSA 120-1] New mod_ssl and Apache/SSL packages fix buffer overflow
• [SECURITY] [DSA 121-1] New xtell packages fix several vulnerabilities
• SuSE Security Announcement: packages containing libz/zlib (SuSE-SA:2002:011) (tandem-announcement, second part)
• [ESA-20020311-008] Double free() in zlib may lead to buffer overflow.
• [RHSA-2002:027-22] Vulnerability in zlib library (powertools)
• TSLSA-2002-0039 - openssh
• SuSE Security Announcement: libz/zlib (SuSE-SA:2002:010) (tandem-announcement, first part)
• [SECURITY] [DSA 122-1] New zlib & other packages fix buffer overflow
• CaupoShop: cross-site-scripting bug
• Binary file zlib-openssh-2002-03.txt matches
• MDKSA-2002:022 - zlib update
• CERT Advisory CA-2002-07 Double Free Bug in zlib Compression Library
• [RHSA-2002:042-12] Updated secureweb packages available
• MDKSA-2002:023 - packages containing zlib update
• Security Update: [CSSA-2002-004.1] REVISED: Linux: Various security problems in ucd-snmp
• [RHSA-2002:026-35] Vulnerability in zlib library
• MDKSA-2002:023-1 - packages containing zlib update
• MDKSA-2002:024 - rsync update
• [CLA-2002:469] Conectiva Linux Security Announcement - zlib
• CERT Advisory CA-2002-08 Multiple vulnerabilities in Oracle Servers
• security problem fixed in zlib 1.1.4
• [RHSA-2002:032-12] Updated cups packages are available
• Bug in QPopper (All Versions?)
• TSLSA-2002-0040 - zlib
• [SECURITY] [DSA-123-1] listar buffer overflow
• Binary file phpBB2-2002-03.txt matches
• Local privalege escalation issues with Webmin 0.92
• MDKSA-2002:025 - fix for insecure default kdm configuration
• [RHSA-2002:048-06] New imlib packages available
• [RHSA-2002:035-18] Updated PHP packages are available [updated 2002-Mar-11]
• [RHSA-2002:026-43] Vulnerability in zlib library
• Apache 1.3.24 Released! (fwd)
• Binary file kernel-udp-fingerprint-2002-03.txt matches
• updated squid advisory
• [SECURITY] [DSA 124-1] New mtr packages fix buffer overflow
• d_path() truncating excessive long path name vulnerability
• Root compromise through LogWatch 2.1.1
• Xchat /dns command execution vulnerability
• DoS in debian (potato) proftpd
• A buffer overflow study - generic protections
• Binary file OpenSSH-channel_lokkup-2002-03.txt matches
• [SECURITY] [DSA 125-1] New analog packages fix cross-site scripting vulnerability
• A possible buffer overflow in libnewt
• [CLA-2002:470] Conectiva Linux Security Announcement - imlib
• Security Update: [CSSA-2002-007.0] Linux: Updated Caldera Public Keys
• Security Update: [CSSA-2002-012.0] Linux: OpenSSH channel code vulnerability
• Security Update: [CSSA-2002-008.0] Linux: CUPS buffer overflow when reading names of attributes
• Security Update: [CSSA-2002-009.0] Linux: X server allows access to any shared memory on the system
• Security Update: [CSSA-2002-010.0] Linux: ftp vulnerability in squid
• Security Update: [CSSA-2002-011.0] Linux: mod_ssl Buffer Overflow Condition
• Security Update: [CSSA-2002-013.0] Linux: Name Service Cache Daemon (nscd) advisory
• Announcing Immunix SnackGuard
• Security Update: [CSSA-2002-005.0] Linux - LD_LIBRARY_PATH problem in KDE sessions

Upp en nivå