
|
Find the information you need for your favorite open source distribution
To browse through our weekly Linux Advisory Watch newsletters, click here.
|
|
|
Secunia Research reported three security bugs in xpdf. The first problem occurs while indexing an array in DCTStream::readProgressiveDataUnit() and is tracked by CVE-2007-4352. Another method in the same class named reset() is vulnerable to an integer overflow which leads to an overflow on the heap, CVE-2007-5392. The last bug also causes an overflow on the heap but this time in method lookChar() of class CCITTFaxStream, CVE-2007-5393. |
|
|
The Opera web-browser allows an attacker to execute arbitrary code by providing an invalid pointer to a virtual function in JavaScript. This bug can be exploited automatically when a user visits a web-site that contains the attacker's JavaScript code |
|
|
The Mozilla Firefox browser was brought to security update version 1.5.0.12 on Novell Linux Desktop 9 and 2.0.0.4 on SUSE Linux Enterprise 10, SUSE Linux 10.0, 10.1 and openSUSE 10.2.
The Mozilla Thunderbird mailreader was brought to security update version 1.5.0.12 on SUSE Linux 10.0, 10.1 and openSUSE 10.2.
|
|
|
The ftdi_sio driver allowed local users to cause a denial of service (memory consumption) by writing more data to the serial port than the hardware can handle, which causes the data to be queued. This requires this driver to be loaded, which only happens if such a device is plugged in. |
|
|
The Open Source PBX software Asterisk was updated
to fix several security related bugs that allowed attackers to remotely
crash asterisk or cause information leaks.Asterisk allowed remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP)
packet without a URI and SIP-version header, which results in a NULL pointer dereference. |
|
|
The anti-virus scan engine ClamAV was upgraded to version 0.90.3 to
fix several security bugs. One is a heap corruption causing denial-of-service with corrupted rar archive. |
|
|
Numerous numerous vulnerabilities have been fixed in PHP. Most of them were made public during the "Month of PHP Bugs" project by Stefan Esser and we thank Stefan for his reports. The vulnerabilities potentially lead to crashes, information leaks
or even execution of malicious code. |
|
|
<< Start < Prev 1 2 3 Next > End >>
|
| Results 8 - 14 of 429 |