|
Find the information you need for your favorite open source distribution
 To browse through our weekly Linux Advisory Watch newsletters, click here.
|
|
|
The SuSE Security-Team has found two critical issues in the code:
- two remote buffer overflows while decoding the HTTP basic authentication
header (CVE-2008-2234)
- a possible SSL session replay attack affecting the client (depending on
the configuration) (CVE-2008-2233) |
|
|
Postfix is a well known MTA. During a source code audit the SuSE Security-Team discovered a local
privilege escalation bug (CVE-2008-2936) as well as a mailbox ownership problem (CVE-2008-2937) in postfix. The first bug allowed local users to execute arbitrary commands as root while the second one allowed local users to read other users mail |
|
|
The net-snmp daemon implements the "simple network management protocol".
The version 3 of SNMP as implemented in net-snmp uses the length of the
HMAC in a packet to verify against a local HMAC for authentication.
An attacker can therefore send a SNMPv3 packet with a one byte HMAC and
guess the correct first byte of the local HMAC with 256 packets (max). |
|
|
The new version of bind uses a random transaction-ID (TRXID) and a random
UDP source-port for DNS queries to address DNS cache poisoning attacks
possible because of the "birthday paradox" and an attack discovered by Dan
Kaminsky. Unfortunately we do not have details about Kaminsky's attack and
have to trust the statement that a random UDP source-port is sufficient to
stop it. |
|
|
These vulnerabilities can only by exploited remotely with user-assistance
and in conjunction with other software receiving OOo documents over
the network (like a kmail attachment). |
|
|
his update fixes three vulnerabilities, two of them are only possible if
krb4 support is enabled. |
|
|
The function emf_multipart_encrypted() that is used to process encrypted
messages is vulnerable to format-string bugs.
This bug can be abused by a remote attacker to execute arbitrary code by
sending a crafted encrypted eMail. |
|
|
<< Start < Prev 1 2 3 Next > End >>
|
| Results 1 - 7 of 433 |
