LinuxSecurity.com - Security Advisories http://www.linuxsecurity.com/ The central voice for Linux and Open Source security news. en-us update-rss-feeds.pl (1.01) SuSE: IBM Java 6 (SUSE-SA:2009:036) http://www.linuxsecurity.com/content/view/149301?rdf Thu, 02 Jul 2009 15:56:00 +0000 <b>LinuxSecurity.com</b>: http://www.linuxsecurity.com/content/view/149301?rdf LinuxSecurity.com Gentoo: ModSecurity Denial of Service http://www.linuxsecurity.com/content/view/149300?rdf Thu, 02 Jul 2009 15:38:00 +0000 <b>LinuxSecurity.com</b>: =3D=3D=3D=3D=3D=3D=3D=3D Two vulnerabilities in ModSecurity might lead to a Denial of Service. http://www.linuxsecurity.com/content/view/149300?rdf LinuxSecurity.com Gentoo: libwmf User-assisted execution of arbitrary http://www.linuxsecurity.com/content/view/149299?rdf Thu, 02 Jul 2009 15:37:00 +0000 <b>LinuxSecurity.com</b>: =3D=3D=3D=3D=3D=3D=3D=3D libwmf bundles an old GD version which contains a "use-after-free" vulnerability. http://www.linuxsecurity.com/content/view/149299?rdf LinuxSecurity.com Ubuntu: Perl vulnerability http://www.linuxsecurity.com/content/view/149298?rdf Thu, 02 Jul 2009 14:31:00 +0000 <b>LinuxSecurity.com</b>: It was discovered that the Compress::Raw::Zlib Perl module incorrectly handled certain zlib compressed streams. If a user or automated system were tricked into processing a specially crafted compressed stream or file, a remote attacker could crash the application, leading to a denial of service. http://www.linuxsecurity.com/content/view/149298?rdf LinuxSecurity.com Ubuntu: Nagios vulnerability http://www.linuxsecurity.com/content/view/149297?rdf Thu, 02 Jul 2009 14:30:00 +0000 <b>LinuxSecurity.com</b>: It was discovered that Nagios did not properly parse certain commands submitted using the WAP web interface. An authenticated user could exploit this flaw and execute arbitrary programs on the server. http://www.linuxsecurity.com/content/view/149297?rdf LinuxSecurity.com RedHat: Moderate: ruby security update http://www.linuxsecurity.com/content/view/149296?rdf Thu, 02 Jul 2009 13:08:00 +0000 <b>LinuxSecurity.com</b>: Updated ruby packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. http://www.linuxsecurity.com/content/view/149296?rdf LinuxSecurity.com