|
Find the information you need for your favorite open source distribution
 To browse through our weekly Linux Advisory Watch newsletters,
click here.
|
|
|
Previous versions of the flashplayer package are vulnerable to a buffer
overflow attack caused by an input validation error. An attacker may use
malformed or malicious SWF or FLV files to execute arbitrary code as the
user of the flashplayer application. Because most flash content is provided
by web-pages, this is effectively a remote vulnerability, but can be
mitigated if the user disables flash in the browser.
|
|
|
Previous versions of the xfs package was vulnerable to a temporary-file
creation race condition which a local user could exploit to gain elevated
permissions. |
|
|
Previous versions of the avahi package were vulnerable to a local Denial of
Service caused by an erroneous assert(). |
|
|
Previous versions of the krb5 package are vulnerable to three
attacks. Two (MITKRB5-SA-2007-004: CVE-2007-2442 and CVE-2007-2443)
are likely limited in practice on Foresight Linux to denial of service,
but the third (MITKRB5-SA-2007-005: CVE-2007-2798) is believed to
allow a remote arbitrary code execution attack against kadmind
servers. Foresight Linux systems are not automatically configured with
kadmind enabled. |
|
|
Previous versions of the libexif package are vulnerable to an int overflow
which could allow a specially-crafted EXIF file to execute arbitrary code
on the target system.
|
|
|
|
<< Start < Prev 4 5 6 Next > End >>
|
| Results 46 - 54 of 79 |
