Gentoo Linux Distribution - Page 165
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
The foomatic-rip filter in foomatic-filters contains a vulnerability which may allow arbitrary command execution on the print server.
SnipSnap is vulnerable to HTTP response splitting attacks such as web cache poisoning, cross-user defacement, and cross-site scripting.
Several vulnerabilities have been found in Apache 2 and mod_dav for Apache 1.3 which could allow a remote attacker to cause a Denial of Service or a local user to get escalated privileges. [More...]
The phpGroupWare software contains a cross site scripting vulnerability in the wiki module.
mpg123 decoding routines contain a buffer overflow bug that might lead to arbitrary code execution.
Several bugs exist in the Heimdal ftp daemon which could allow a remote attacker to gain root privileges.
cdrecord, if manually set SUID root, is vulnerable to a local root exploit allowing users to escalate privileges.
SUS contains a string format bug that could lead to local privilege escalation.
Two Denial of Service vulnerabilities have been found and fixed in Samba.
A vulnerability in the webmail function of Usermin could be used by an attacker to execute shell code via a specially-crafted e-mail. A bug in the installation script of Webmin and Usermin also allows a local user to execute a symlink attack at installation time. [More...]
This advisory incorrectly described Samba versions as being vulnerable to a remote denial of service. After further verifications, it appears that a remote user can only deny service to himself, so this bug does not induce any security issue at all. The corrected sections appear [More...] [More...]
Samba is vulnerable to a remote denial of service attack due to out of sequence print change notification requests.
Several buffer overflows and a shell metacharacter command execution vulnerability have been found in LHa. These vulnerabilities can be used to execute arbitrary code. [More...]
ImageMagick, imlib and imlib2 contain exploitable buffer overflow vulnerabilities in the BMP image processing code.
star contains a suid root vulnerability which could potentially grant unauthorized root access to an attacker.
Active keystroke logging in multi-gnome-terminal has been discovered in potentially world-readable files. This could allow any authorized user on the system to read sensitive data, including passwords. [More...]
MIT krb5 contains several double-free vulnerabilities, potentially allowing the execution of arbitrary code, as well as a denial of service vulnerability. [More...]
When used for CGI scripting, Ruby creates session files in /tmp with the permissions of the default umask. Depending on that umask, local users may be able to read sensitive data stored in session files. [More...]
xv contains multiple exploitable buffer overflows in the image handling code.
New releases of Mozilla, Epiphany, Galeon, Mozilla Thunderbird, and Mozilla Firefox fix several vulnerabilities, including remote DoS and buffer overflows. [More...]