|
Find the information you need for your favorite open source distribution
 To browse through our weekly Linux Advisory Watch newsletters, click here.
|
|
|
a) A setuid root installed smbmnt could lead to a security breach due to
a race condition.
b) The NetBIOS name server nmbd is vulnerable to a denial-of-service attack.
c) The message service of the SMB-/CIFS-server has got a buffer overflow.
|
|
|
The KDE screensaver klock includes a bug, which allows to bypass
the password authentication.
While klock waits for kcheckpass to verify the password a timer is
triggered and the dialog box is deleted. After kcheckpass completes
klock crashs.
|
|
|
The zsoelim program, which is part of the man package, creates files
in /tmp without security checkings.
|
|
|
By sending a malicious formated email pine could be tricked into
executing shell scripts or binary programs.
|
|
|
The Linux kernel 2.2.x doesn't correctly parse the IP options, which
leads to kernel panic.
|
|
|
The innd wrapper inndstart could be tricked to execute arbitrary
code by editing the environment (INNCONF), by modifing the inn.conf
file or by overflowing a buffer.
|
|
|
XFree86 creates a directory in /tmp with the name .X11-unix for
the X sockets and sets the directory to mode 1777.
If an attacker creates a symlink with that filename and points
it to another directory (e.g. /root), the permissions of the target
directory is set to 1777.
|
|
|
<< Start < Prev 88 89 Next > End >>
|
| Results 610 - 616 of 618 |
