Secunia Security Advisory - IBM has acknowledged a vulnerability in AIX, which can be exploited by malicious people to poison the DNS cache.
ca6852945ee44d5f35efe6e7537ceb2f643e95e373eb7e6398fc37baf4ec9c20
Secunia Security Advisory - A security issue has been reported in IBM Tivoli Directory Server, which can be exploited by malicious, local users to disclose sensitive information.
d7e9f67b2b42b56cb44a644ed6c7e803fc95096eb1228a071624e7eabd6b3472
Secunia Security Advisory - A weakness has been reported in GNOME Display Manager, which can be exploited by malicious, local users to gain knowledge of sensitive information.
2474a31ed9118459f8c7f823085dc304429a8b4947c654153b73d3da2f059ed2
Secunia Security Advisory - A vulnerability has been reported in Fujitsu Internet Navigware products, which can be exploited by malicious users to disclose potentially sensitive information and manipulate certain data.
83fe18fcb63d84f4b0b54f331212546118c19bf6c961bc48f0c2d99710baa9e2
Debian Linux Security Advisory 2076-1 - It was discovered that GnuPG 2 uses a freed pointer when verify a signature or importing a certificate with many Subject Alternate Names, potentially leading to arbitrary code execution.
791f0ef804a3c3e64ed5491c141bbc5664f78fd7be85e7e9b5037de9cc8f5f6a
Debian Linux Security Advisory 2075-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
092cd6fcae7be8a7336bf071b7e24a49ce0e54b973c54ce339cf692b2a748f70
Mandriva Linux Security Advisory 2010-141 - The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request with a certain 0x8003 field value. The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to trigger an out-of-bounds read, and cause a denial of service (process crash), via a \\xff\\xff security blob length in a Session Setup AndX request. The updated packages provides samba 3.4.8 which is not vulnerable to these issues.
7ee6ee198ea7396983a1a87bc200592fcb2964ad00adfeb360b908b1b52b81e4
Mandriva Linux Security Advisory 2010-140 - This is a maintenance and security update that upgrades php to 5.3.3 for 2010.0/2010.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible resource destruction issues in shm_put_var(). Fixed a possible information leak because of interruption of XOR operator. Fixed a possible memory corruption because of unexpected call-time pass by reference and following memory clobbering through callbacks. Fixed a possible memory corruption in ArrayObject::uasort(). Fixed a possible memory corruption in parse_str(). Fixed a possible memory corruption in pack(). Fixed a possible memory corruption in substr_replace(). Fixed a possible memory corruption in addcslashes(). Fixed a possible stack exhaustion inside fnmatch(). Fixed a possible dechunking filter buffer overflow. Fixed a possible arbitrary memory access inside sqlite extension. Fixed string format validation inside phar extension. Fixed handling of session variable serialization on certain prefix characters. Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed SplObjectStorage unserialization problems. Fixed possible buffer overflows in mysqlnd_list_fields, mysqlnd_change_user. Fixed possible buffer overflows when handling error packets in mysqlnd. Additionally some of the third party extensions and required dependencies has been upgraded and/or rebuilt for the new php version.
263282a55164e1c13bdc2969faf4e31379a529b35efca4398c0ecb9b5e04c31a
Mandriva Linux Security Advisory 2010-139 - This is a maintenance and security update that upgrades php to 5.2.14 for CS4/MES5/2008.0/2009.0/2009.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible interruption array leak in strrchr(). Fixed a possible interruption array leak in strchr(), strstr(), substr(), chunk_split(), strtok(), addcslashes(), str_repeat(), trim(). Fixed a possible memory corruption in substr_replace(). Fixed SplObjectStorage unserialization problems. Fixed a possible stack exhaustion inside fnmatch(). Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed handling of session variable serialization on certain prefix characters. Fixed a possible arbitrary memory access inside sqlite extension. Reported by Mateusz Kocielski. Additionally some of the third party extensions has been upgraded and/or rebuilt for the new php version.
ebb87718bcfb837ddb1778560e0e7d8acfd8aa738446314fbcafa2464569d551
Secunia Security Advisory - Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
043072f5aadedea7efb5e51e2d9f5595e3377bf945ccd4e2479f19536fbc08a9
Secunia Security Advisory - Some vulnerabilities have been reported in SAP NetWeaver, which can be exploited by malicious people to conduct cross-site scripting attacks.
3ff9433a54b8999ee997cf6e06b45c6a078acf1570d838dd98f993fc7288b543
Secunia Security Advisory - Fedora has issued an update for xulrunner. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
26fbf0bf74bc2bdbf1af1f3ba2611c38c5806ba23f61dab293616a22213cf24a
Secunia Security Advisory - Ubuntu has issued an update for likewise-open. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security features.
40471f0e15bcec370f21683285210047599b2e16bc5c8d144c681e479ddd8d37
Secunia Security Advisory - A vulnerability has been reported in the Nessus Web Server plugin for Nessus, which can be exploited by malicious people to conduct cross-site scripting attacks.
ca7f4a7eba02b42e553a90e2250ef5da7fbfea0e6f000486ddd1080ef1aeb749
Secunia Security Advisory - David Vieira-Kurz has discovered some vulnerabilities in PHPKIT, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
2f92acf6e156c1b9c43559eef5782c2ab94114691c3c22a9ff57da42720de674
Secunia Security Advisory - A vulnerability has been reported in AKY Blog, which can be exploited by malicious people to conduct SQL injection attacks.
cce158e456335cf7aa959c34d995f66128b696fdee0a4495af287688e5158612
Secunia Security Advisory - Salvatore Fresta has discovered a vulnerability in the TTVideo component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
e9466ba3f338ca9bc02f44d08852fe0b18e902a18f0c2f978209121d8c393b92
Secunia Security Advisory - A vulnerability has been reported in the Private messaging extension for PunBB, which can be exploited by malicious users to conduct SQL injection attacks.
818bb03196337c0ebf74d7871e3ba79f4c16d6e47f43c79f286fc7aa34359142
Secunia Security Advisory - A weakness and some vulnerabilities have been reported in libvirt, which can be exploited by malicious, local users in a guest system to bypass certain security restrictions.
328e059709d2315cef620a7a7f12284990d369eb1bd9439e5065cabd8f1dffe6
Secunia Security Advisory - Two vulnerabilities have been reported in Wing FTP, which can be exploited by malicious users to disclose potentially sensitive information and by malicious people to cause a DoS (Denial of Service).
ee73fcf36be20634057bf53521d43f3be9823204cfb65ae0eec1316a85b5677f
Secunia Security Advisory - High-Tech Bridge SA has discovered some vulnerabilities in SyndeoCMS, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.
66683dc4da9b86d44cb12c4664b42efb15bde805fc5485b18412e8d6e6ea74c4
Secunia Security Advisory - Red Hat has issued an update for firefox. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
d2ea29bd5515206aaed970260f35c6ea69b906b8c6ec46f9f68a7d826dec2e37
Secunia Security Advisory - A vulnerability has been reported in Mozilla Firefox, which can be exploited by malicious people to compromise a user's system.
658c6097edd2a228203e1be270c55b6d108a6ff2955dbf780e0aea608fc109ae
Secunia Security Advisory - Fedora has issued an update for mysql. This fixes a security issue, which can be exploited by malicious users to cause a DoS (Denial of Service).
bc93a6773b6172f209bf5de68d66f79b471db7208e530e895f6e2b5399b7ed9d
Secunia Security Advisory - A vulnerability has been reported in Likewise-CIFS and Likewise Open, which can be exploited by malicious, local users to bypass certain security features.
a3e2ab09f06401217fdd60b4907aac94ccc6595e069fd0d8c5570bd4826d4400