Debian Security Advisory 1627-2 - The previous security update for opensc had a too strict check for vulnerable smart cards. It could flag cards as safe even though they may be affected. This update corrects that problem.
1c31305ad0911eb2a6161dee0418e4123f5823ea5ce7e34168527436780cd848
Pardus Linux Security Advisory - A security issue has been reported in OpenSC, which can be exploited by malicious people to bypass certain security restrictions.
5f2a2b3d0283b838e15c5e12ba9ccab3134fb5e185e2e38e881cf0869f083b2e
Pardus Linux Security Advisory - Juraj Skripsky has reported a vulnerability in Mono, which can be exploited by malicious people to conduct HTTP header injection attacks.
a110dc1f502aff35301058c2b04af09d0ba26ed433987154ac42c5cb4f2b88fa
Debian Security Advisory 1597-2 - In DSA-1597-1, an update was announced for multiple vulnerabilities in the mt-daapd audio server. One of the fixes introduced a regression preventing successful authentication to the administration interface. An updated release is available which corrects this problem.
6960b8e8a30837f817320f9e668706f36e5b47abc98e3e724650ef7595f4a83b
VMware Security Advisory - Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.
cf33ed983d59f3fe21ba66fc27682e8a073a9ba1d0031e69d9302bd25acc6efd
An input validation error within the web interface of Dreambox model DM500C allows for a denial of service condition.
b07f925091a95eb3ffd99e8e205d865b485e692d12f1fceebd5a4600fea29e9e
Secunia Security Advisory - shinnai has reported some vulnerabilities in Ultra Office Control, which can be exploited by malicious people to compromise a user's system.
255b574a168a3e6406787895902cd1755882c6ad556f4434770644caf0ff0148
Secunia Security Advisory - Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
ce9a3c800358679991197d67825bf3fea0ef0f7fcae2270b87e52f735798c644
A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of messaging applications that make use of the libpurple library. User interaction is not required to exploit this vulnerability. The specific flaw exists in the implementation of the MSN protocol, specifically the handling of SLP messages. The function msn_slplink_process_msg() fails to properly validate an offset value specified in the SLP packet. By providing a specific value, an attacker can overflow a heap buffer resulting in arbitrary code execution.
e15e4d5ffbe515920af88f4eecd3c1a6f1e9059e4b62cd784e5ab4422f7cbdf1
Mandriva Linux Security Advisory - Two denial of service vulnerabilities were discovered in the ipsec-tools racoon daemon, which could allow a remote attacker to cause it to consume all available memory. The updated packages have been patched to prevent these issues.
b4f033c3e31a18567428fc5e4fb2e5075e6cda5c26ecbc7bc4b1a23e35c731a6
Firefox version 3.0.1 (final release) suffers from an unspecified remote code execution vulnerability.
6b29cd17dad920f95700394f167e1dd62ff0044187a945c553e4d426532288a9
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Apache. These vulnerabilities could be exploited remotely resulting in Cross Site Scripting (XSS) or Denial of Service (DoS).
62638e73004cc9a719789f3b5f3bd25a1ac9061f94ca30f50e9fc24c6a49b2d5
Ubuntu Security Notice 638-1 - Aaron Grattafiori discovered that the Gnome Help Viewer did not handle format strings correctly when displaying certain error messages. If a user were tricked into opening a specially crafted URI, a remote attacker could execute arbitrary code with user privileges.
86831794d274f24fc29c9fdd721b2c8ce02dcd0070de1a5bfe5b4903150f4f74
HP Security Bulletin - A potential security vulnerability has been identified in the HP Enterprise Discovery. The vulnerability could be exploited remotely by an authorized user to gain extended privileges.
1f2c833b51ed915b7c7adbd4a301e8c0a6e079da9e8074c37eeb37ed8bdb3ab6
Secunia Security Advisory - Lidloses_Auge has reported a vulnerability in webEdition CMS, which can be exploited by malicious people to conduct SQL injection attacks.
ad1f9acc303b710d564592c8d48bf1df885ed115b08625f58cf632fe3b722da3
Secunia Security Advisory - Corwin has discovered some vulnerabilities in K-Rate Premium, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people and users to conduct script insertion and SQL injection attacks.
a551274ca1f7b446d590fe77629d73d74964afb86898ccd5822061b703d34a36
Secunia Security Advisory - A vulnerability has been reported in HP Enterprise Discovery, which can be exploited by malicious users to gain escalated privileges.
d5e65529ce4dd3d47e53b9d282e73c5e28cbc05b1ed444e66fefa15ae0ac4585
Secunia Security Advisory - Seth Fogie has reported some vulnerabilities in KM Scanner File Utility, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system.
4ec3e66e3374ceeb52967a67097513c609685b3acb50c372452ae53de1924988
Secunia Security Advisory - Some vulnerabilities have been reported in IBM Lotus Quickr, which can be exploited by malicious people to conduct cross-site scripting attacks.
14047ec66284315cef70bb2c658fd269f0d62feebf08af594c3e4ffc8be3940d
Secunia Security Advisory - A vulnerability with an unknown impact has been reported in IBM DB2.
e643d08debea8de749d5a636d865edbead0c4bfcb7c6bf3eeb9ce49b497d6ffd
Pardus Linux Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
4b1155a3c4fc7782e4b2a42dbe108c156dbc1b5e5f22ea2ec736bbd250b6459c
Secunia Security Advisory - Lostmon has discovered two vulnerabilities in the PopnupBlog module for Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks.
c4f812a3643b508bc0dc32257b0858d0adf80cff00d1c2dbe0a930c757bc8865
Mandriva Linux Security Advisory - Andreas Solberg found a denial of service flaw in how libxml2 processed certain content. If an application linked against libxml2 processed such malformed XML content, it could cause the application to stop responding. The original fix used to correct this issue caused some applications that used the libxml2 library to crash. These new updated packages use a different fix that does not cause certain linked applications to crash as the old packages did.
6978e44fa4ec963af815e34d9ca5be4c1c1f19cff96a972b445f68b57fcb7066
The Kyocera Mita Scanner File Utility version 3.3.0.1 suffers from multiple file manipulation vulnerabilities.
3204e5cf719058624f5e2adbca6aa070e8dddb7b8bd0eac4ca7de5912af1f865
Debian Security Advisory 1631-2 - The previous security update of the libxml2 package introduced some problems with other packages, most notably with librsvg. This update corrects these problems whilst still fixing the reported security problem.
e2c04840497407f72b22d172c8869ca3f0dd0582f1a08719fbb2c6501ff74096