Mandriva Linux Security Advisory 2010-109 - gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attackers to bypass screen locking and access an unattended workstation by pressing the Enter key many times. This update fixes this issue.
fd37a0333074f22843b9284dc068deae15fe1b07943400355e8d7a51c292c24d
FreeBSD Security Advisory - The NFS client subsystem fails to correctly validate the length of a parameter provided by the user when a filesystem is mounted.
70736852d69a5ba3339928319cc037983dc3817d723837db593e3435317fcb66
FreeBSD Security Advisory - The jail utility does not change the current working directory while imprisoning. The current working directory can be accessed by its descendants.
b2bcf78251c6486bcf6a16cbff4254da82066d5d6d8dfee5d7e784cbe34d6018
FreeBSD Security Advisory - A programming error in the OPIE library could allow an off-by-one buffer overflow to write a single zero byte beyond the end of an on-stack buffer.
131cb41ee3226c91716b15316e0d2870cb7092520923a4ace9a5c051500f74a1
Secunia Security Advisory - Fedora has issued an update for kdenetwork. This fixes two vulnerabilities, which can be exploited by malicious people to bypass certain security features and to compromise a user's system.
bb0594673e4a3ac06e431689f1439317e101c0fbcc9644a9d25e6bf7e6bed64c
Secunia Security Advisory - Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct spoofing attacks or bypass certain security restrictions.
59ead42e4a555c5b5840cf5fbb216ec3ffb4cdbe30fc7d28b4d731a8423a740f
Secunia Security Advisory - Red Hat has issued an update for mysql. This fixes some vulnerabilities, which can be exploited by malicious, local users to manipulate certain data and by malicious users to bypass certain security restrictions and potentially compromise a vulnerable system.
6fa6c039f397b386bdcc300cd8fb6323a265211ceee29de3842c08472d26170c
Secunia Security Advisory - Some vulnerabilities have been reported in Adobe Photoshop CS4, which can be exploited by malicious people to compromise a user's system.
ca1cc527ee8fc7fabe254dba341fb21dd598853a9f8e79d31e71975ccd8ea6be
Secunia Security Advisory - Soroush Dalili has discovered a vulnerability in Mozilla Firefox, which can be exploited by malicious people to disclose potentially sensitive information.
e3248e7f1fdf33d1106a76f7748d07f0e1d0b9518d44aa2a399e151b4908e142
Secunia Security Advisory - A vulnerability has been reported in EMC Avamar, which can be exploited by malicious people to cause a DoS (Denial of Service).
0d9e3257219a28883070ff7f565ad3bd0f4d7547117f88c1cf0d52c9986371ab
Secunia Security Advisory - Fedora has issued an update for libprelude. This fixes a security issue, which can be exploited by malicious, local users to potentially gain escalated privileges.
6e249dc1e6436ada855451a75c199b2c2071db6b223ff1cc5f897bb01e65495f
Secunia Security Advisory - Stephane Bortzmeyer has reported a vulnerability in ZoneCheck, which can be exploited by malicious people to conduct cross-site scripting attacks.
e87d7fd0b4311d330baf86d0d44bf493a056ddd0b14b9e3d16cc848efd7fa800
Secunia Security Advisory - A security issue has been reported in libprelude, which can be exploited by malicious, local users to potentially gain escalated privileges.
e01fb8396154ca558a7471446f296f9962714729494d269aaaba367fce189bfa
Secunia Security Advisory - Some vulnerabilities have been reported in the Multishop CMS, which can be exploited by malicious people to conduct SQL injection attacks.
5508792bb49132c5f5ea174752b538d27d50103168d629472492c42de2237562
Secunia Security Advisory - Some vulnerabilities have been reported in the AddonChat module for Drupal, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to bypass certain security restrictions.
201594cae22bcffeb20d82c2168480f6003091ee52803b21a9eba92f679b7c81
Secunia Security Advisory - FreeBSD has acknowledged a vulnerability in OPIE, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
79c2b22186e0d0ca9ef1bc055f0575849a287471df853d6096fb5ef376e5f979
Secunia Security Advisory - A vulnerability has been reported in the Scheduler module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
e04b120e9d32aa6b2b9efb77f388181294f87f25383b7b68b0ead836781c4e0f
Secunia Security Advisory - John Leitch has discovered a vulnerability in Pacific Timesheet, which can be exploited by malicious people to conduct cross-site request forgery attacks.
133f52c96f4b942ad7778457cd3d35adcc210dc2d142137f44b2a30252579813
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Network Building Mediator, which can be exploited by malicious users to gain escalated privileges and by malicious people to gain knowledge of sensitive information.
0fd6ddecd19b0ee4c46d98fed298fcc702743077671f7e705d91faf9921c6dc1
Secunia Security Advisory - A vulnerability has been reported in OPIE, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
d44547bd358a649ac5610ce6926f3464169bcc56e5d42307203c528d4068dc50
Secunia Security Advisory - John Leitch has discovered a vulnerability in Brekeke PBX, which can be exploited by malicious people to conduct cross-site request forgery attacks.
28b822598679f43f19b3b1931a188e09031372949a9b11b4fa23ad3e762c2a11
Cisco Security Advisory - Multiple vulnerabilities exist in the Cisco Network Building Mediator (NBM) products. These vulnerabilities also affect the legacy Richards-Zeta Mediator products.
fc108c609855740fa4c95d1feb7a58d047606cdb3aca3e9df995086d0a0e404d
HP Security Bulletin - Potential security vulnerabilities have been identified with HP Business Availability Center running Apache. The vulnerabilities could be remotely exploited to allow Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), and Denial of Service (DoS).
8984e6a6d71e3911533469692dc0da853eb51153edc9f05ce6268a71ce2b470d
Cyberoam SSL VPN Client version 1.0 suffers from a credential plain-text storage vulnerability.
7c6a8124e4411e955439950da22cc1f0a3ceae972be47e2a49eaa7f3189835a0
HP Security Bulletin - A potential vulnerability has been identified with HP TestDirector for Quality Center running on AIX, Linux and Solaris. The vulnerability could be exploited to allow remote unauthorized access.
1e575c5d721ba2d12194d427be9020879c0af490396e3c0b7f4bf70a24cc8e75