|
Find the information you need for your favorite open source distribution
 To browse through our weekly Linux Advisory Watch newsletters, click here.
|
|
|
- Fix security in awredir.pl script by adding a security key required by
default. - Enhance security of parameter sanitizing function. |
|
|
Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape
content of mail header fields, when using the sendmail backend. A remote
attacker could send an email message, with specially-crafted headers to local
user, leading to disclosure of content and potentially, to modification of
arbitrary system file, once the email message was processed by the PEAR's Mail
class. |
|
|
New release, including fix for XSS vulnerability in web interface
(CVE-2009-2820) and for improper reference counting in abstract file descriptors
handling interface (CVE-2009-3553). |
|
|
Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape
content of mail header fields, when using the sendmail backend. A remote
attacker could send an email message, with specially-crafted headers to local
user, leading to disclosure of content and potentially, to modification of
arbitrary system file, once the email message was processed by the PEAR's Mail
class. |
|
|
- Fix security in awredir.pl script by adding a security key required by
default. - Enhance security of parameter sanitizing function. |
|
|
Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape
content of mail header fields, when using the sendmail backend. A remote
attacker could send an email message, with specially-crafted headers to local
user, leading to disclosure of content and potentially, to modification of
arbitrary system file, once the email message was processed by the PEAR's Mail
class. |
|
|
Updated to 1.4.2 including XSS security fix (CVE-2009-2820). Fixed improper
reference counting in abstract file descriptors handling interface
(CVE-2009-3553). Fixed admin.cgi crash when modifying a class. Fix cups-lpd to
create unique temporary data files. Pass through serial parameters correctly in
web interface. Set the PRINTER_IS_SHARED variable for admin.cgi Fix removing
files with lprm. Fixed German translation. Fixed PostScript errors with
number-up handling. Fixed lspp-patch to avoid memory leak. Upstream fix for
GNU TLS error handling bug. Reset SIGPIPE handler for child processes. Fixed
typo in admin web template. Fixed incorrect handling of out-of-memory when
loading jobs. Fixed wrong driver reported in web interface. |
|
|
<< Start < Prev 4 5 6 Next > End >>
|
| Results 29 - 35 of 2634 |
