iDEFENSE Inc. informed us about a buffer overflow in the linux 2.4 iDEFENSE Inc. informed us about a buffer overflow in the linux 2.4 kernel code which handles ISO9660 filesystems. The original code is not kernel code which handles ISO9660 filesystems. The original code is not able to handle very long symlink names. The vulnerability can be triggered locally by mounting removable media that [More...]
OpenSSL is an implementation of the Secure Socket Layer (SSL v2/3) OpenSSL is an implementation of the Secure Socket Layer (SSL v2/3) and Transport Layer Security (TLS v1) protocol. and Transport Layer Security (TLS v1) protocol. The NISCC informed us about to failure conditions in openssl that can be triggered to crash applications that use the openssl library. The first bug occurs during [More...]
XFree86 is an open-source X Window System implementation that acts XFree86 is an open-source X Window System implementation that acts as a client-server-based API between different hardware components as a client-server-based API between different hardware components like display, mouse, keyboard and so on. Several buffer overflows were found in the fontfile code that handles a user-supplie [More...]
Another bug in the Kernel's do_mremap() function, which is unrelated to Another bug in the Kernel's do_mremap() function, which is unrelated to the bug fixed in SuSE-SA:2004:001, was found by Paul Starzetz. the bug fixed in SuSE-SA:2004:001, was found by Paul Starzetz. The do_mremap() function of the Linux Kernel is used to manage Virtual Memory Areas (VMAs) which includes moving, removing a [More...]
Gaim is a multi-protocol instant-messaging client. Stefan Esser found Gaim is a multi-protocol instant-messaging client. Stefan Esser found 12 vulnerabilities in gaim that can lead to a remote system compromise 12 vulnerabilities in gaim that can lead to a remote system compromise with the privileges of the user running GAIM. The GAIM package that SUSE LINUX ships is affected by just two of [More...]
The do_mremap() function of the Linux Kernel is used to manage The do_mremap() function of the Linux Kernel is used to manage (move, resize) Virtual Memory Areas (VMAs). By exploiting an incorrect (move, resize) Virtual Memory Areas (VMAs). By exploiting an incorrect bounds check in do_mremap() during the remapping of memory it is possible to create a VMA with the size of 0. In normal opera [More...]
Tcpdump is a well known tool for administrators to analyze network Tcpdump is a well known tool for administrators to analyze network traffic. traffic. There is a bug in the tcpdump code responsible for handling ISAKMP messages. This bug allows remote attackers to destroy a current tcpdump session by tricking the tcpdump program with evil ISAKMP messages to enter an endless loop.
The do_mremap() function of the Linux Kernel is used to manage The do_mremap() function of the Linux Kernel is used to manage (move, resize) Virtual Memory Areas (VMAs). By exploiting an incorrect (move, resize) Virtual Memory Areas (VMAs). By exploiting an incorrect bounds check in do_mremap() during the remapping of memory it is [More...]
The the flexible and powerful FTP command-line client lftp is vulnerable The the flexible and powerful FTP command-line client lftp is vulnerable to two remote buffer overflows. to two remote buffer overflows. When using lftp via HTTP or HTTPS to execute commands like 'ls' or 'rels' [More...]
The rsync suite provides client and server tools to easily support an The rsync suite provides client and server tools to easily support an administrator keeping the files of different machines in sync. administrator keeping the files of different machines in sync. In most private networks the rsync client tool is used via SSH to fulfill [More...]
This security update fixes a serious vulnerability in the Linux This security update fixes a serious vulnerability in the Linux kernel. A missing bounds check in the brk() system call allowed kernel. A missing bounds check in the brk() system call allowed processes to request memory beyond the maximum size allowed for tasks, causing kernel memory to be mapped into the process' address spac [More...]
The gnupg (the SUSE package is named gpg) package is the most widelyThe gnupg (the SUSE package is named gpg) package is the most widely used software for cryptographic encryption/decryption of data. used software for cryptographic encryption/decryption of data. Two independent errors have been found in gpg (GnuPG) packages as shipped with SUSE products: A) A format string error in the clie [More...]
To resolve IP addresses to host and domain names and vice versa the To resolve IP addresses to host and domain names and vice versa the DNS service needs to be consulted. The most popular DNS software is DNS service needs to be consulted. The most popular DNS software is the BIND8 and BIND9 suite. The BIND8 code is vulnerable to a remote denial-of-service attack by poisoning the cache with a [More...]
The sane (Scanner Access Now Easy) package provides access to scanners The sane (Scanner Access Now Easy) package provides access to scanners either locally or remotely over the network. either locally or remotely over the network. Several bugs in sane were fixed to avoid remote denial-of-service attacks. These attacks can even be executed if the remote attacker is not allowed to access th [More...]
Hylafax is an Open Source fax server which allows sharing of fax Hylafax is an Open Source fax server which allows sharing of fax equipment among computers by offering its service to clients by equipment among computers by offering its service to clients by a protocol similar to FTP. The SuSE Security Team found a format bug condition during a code review of the hfaxd server. It allows remo [More...]
Two vulnerabilities were found in the "tiny" web-server thttpd. Two vulnerabilities were found in the "tiny" web-server thttpd. The first bug is a buffer overflow that can be exploited remotely The first bug is a buffer overflow that can be exploited remotely to overwrite the EBP register of the stack. Due to memory-alignment of the stack done by gcc 3.x this bug can not be exploited. All th [More...]
While checking the openssl implementation with a tool-kit from NISCC several errors were revealed most are ASN.1 encoding issues that causes a remote denial-of-service attack on the server side and possibly lead to remote command execution.
A remotely exploitable buffer overflow has been found in all versions of sendmail that come with SuSE products. These versions include sendmail-8.11 and sendmail-8.12 releases.
