|
Find the information you need for your favorite open source distribution
 To browse through our weekly Linux Advisory Watch newsletters, click here.
|
|
|
These vulnerabilities can only by exploited remotely with user-assistance
and in conjunction with other software receiving OOo documents over
the network (like a kmail attachment). |
|
|
his update fixes three vulnerabilities, two of them are only possible if
krb4 support is enabled. |
|
|
The function emf_multipart_encrypted() that is used to process encrypted
messages is vulnerable to format-string bugs.
This bug can be abused by a remote attacker to execute arbitrary code by
sending a crafted encrypted eMail. |
|
|
The current security update of cups fixes a double-free bug in the function
process_browse_data() that can lead to a remote denial-of-service by crash-
ing cupsd or possibly to a remote code execution (CVE-2008-0882).
The bug can only be exploited if cupsd listens to 631/udp by crafted UDP
Browse packets. |
|
|
The X windows system is vulnerable to several kind of vulner-
abilities that are caused due to insufficient input validation.
The bugs range from crashing the X server to executing arbitrary
code with the privilges of the X server process. |
|
|
The Samba suite is an open-source implementatin of the SMB protocol.
This update of samba fixes a buffer overflow in function send_mailslot()
that allows remote attackers to overwrite the stack with 0 (via memset(3))
by sending specially crafted SAMLOGON packets. |
|
|
Secunia Research has reported a bug in function reply_netbios_packet()
that allowed remote attackers to execute arbitrary code
by sending specially crafted WINS "Name Registration" requests followed
by a WINS "Name Query" request packet.
The exploitable code in samba can only be reached if the option "wins
support" was enabled. |
|
|
<< Start < Prev 1 2 3 Next > End >>
|
| Results 1 - 7 of 429 |
