what you don't know can hurt you
Showing 1 - 25 of 41 RSS Feed

Files Date: 2012-03-06

Red Hat Security Advisory 2012-0358-01
Posted Mar 6, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-0358-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Using PCI passthrough without interrupt remapping support allowed Xen hypervisor guests to generate MSI interrupts and thus potentially inject traps. A privileged guest user could use this flaw to crash the host or possibly escalate their privileges on the host. The fix for this issue can prevent PCI passthrough working and guests starting.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2011-1898, CVE-2011-2699, CVE-2011-4127, CVE-2011-4330, CVE-2012-0028
SHA-256 | 98902c733d28dde86a19c4de285d3fdd02cc5ae6d870d00196d370a40c1b38bf
Red Hat Security Advisory 2012-0350-01
Posted Mar 6, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-0350-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A buffer overflow flaw was found in the way the Linux kernel's XFS file system implementation handled links with overly long path names. A local, unprivileged user could use this flaw to cause a denial of service or escalate their privileges by mounting a specially-crafted disk.

tags | advisory, denial of service, overflow, kernel, local
systems | linux, redhat
advisories | CVE-2011-4077, CVE-2011-4081, CVE-2011-4132, CVE-2011-4347, CVE-2011-4594, CVE-2011-4611, CVE-2011-4622, CVE-2012-0038, CVE-2012-0045, CVE-2012-0207
SHA-256 | d8a60be00abc472adc04c925566012a45e0ea8c2dd26a7a38e5dd76f2aabd4c9
Red Hat Security Advisory 2012-0359-01
Posted Mar 6, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-0359-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes two vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed on the Adobe security page APSB12-05, listed in the References section. A flaw was found in the way flash-plugin displayed certain SWF content. An attacker could use this flaw to create a specially-crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the specially-crafted SWF content.

tags | advisory, web, arbitrary, vulnerability
systems | linux, redhat
advisories | CVE-2012-0768, CVE-2012-0769
SHA-256 | 4f6c288312851d2cb202ed736a92e3023e458dbcde02a2d931cb95fc88603ecb
Debian Security Advisory 2426-1
Posted Mar 6, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2426-1 - Several vulnerabilities have been identified in GIMP, the GNU Image Manipulation Program.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2010-4540, CVE-2010-4541, CVE-2010-4542, CVE-2010-4543, CVE-2011-1782, CVE-2011-2896
SHA-256 | c0394f9695ebdf2d15d0afe31dea0930a6225b25502c39d96a08bff4a91920ce
Ubuntu Security Notice USN-1388-1
Posted Mar 6, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1388-1 - Paolo Bonzini discovered a flaw in Linux's handling of the SG_IO ioctl command. A local user, or user in a VM could exploit this flaw to bypass restrictions and gain read/write access to all data on the affected block device. A flaw was found in KVM's Programmable Interval Timer (PIT). When a virtual interrupt control is not available a local user could use this to cause a denial of service by starting a timer. Various other issues were also addressed.

tags | advisory, denial of service, local
systems | linux, ubuntu
advisories | CVE-2011-4127, CVE-2011-4622, CVE-2012-0038, CVE-2011-4127, CVE-2011-4622, CVE-2012-0038
SHA-256 | 126a48e4d1ff19e40314d4b9f3f392c8922fa6b67944dfdb4e8c722c215cad38
Ubuntu Security Notice USN-1387-1
Posted Mar 6, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1387-1 - Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernel's handling of IPv4 icmp packets. A remote user could exploit this to cause a denial of service. A flaw was found in the Linux Ethernet bridge's handling of IGMP (Internet Group Management Protocol) packets. An unprivileged local user could exploit this flaw to crash the system. Han-Wen Nienhuys reported a flaw in the FUSE kernel module. A local user who can mount a FUSE file system could cause a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, kernel, local, protocol
systems | linux, ubuntu
advisories | CVE-2011-1927, CVE-2011-0716, CVE-2011-3353, CVE-2011-3619, CVE-2011-4622, CVE-2012-0038, CVE-2012-0044, CVE-2011-0716, CVE-2011-1927, CVE-2011-3353, CVE-2011-3619, CVE-2011-4622, CVE-2012-0038, CVE-2012-0044
SHA-256 | 40ff9f09cac0bb58416a79990e0931211e0f67f009ea3cfee34f33dde61736aa
Ubuntu Security Notice USN-1386-1
Posted Mar 6, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1386-1 - The linux kernel did not properly account for PTE pages when deciding which task to kill in out of memory conditions. A local, unprivileged could exploit this flaw to cause a denial of service. A flaw was discovered in the TOMOYO LSM's handling of mount system calls. An unprivileged user could oops the system causing a denial of service. Han-Wen Nienhuys reported a flaw in the FUSE kernel module. A local user who can mount a FUSE file system could cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2011-2498, CVE-2011-2518, CVE-2011-3353, CVE-2011-4097, CVE-2011-4622, CVE-2012-0038, CVE-2012-0044, CVE-2012-0207, CVE-2011-2498, CVE-2011-2518, CVE-2011-3353, CVE-2011-4097, CVE-2011-4622, CVE-2012-0038, CVE-2012-0044, CVE-2012-0207
SHA-256 | 592f0d80f08ac87ab6ec43ce2f47735b6630fba60fe855ae8f8ec5015e2ae809
Ubuntu Security Notice USN-1384-1
Posted Mar 6, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1384-1 - A bug was discovered in the Linux kernel's calculation of OOM (Out of memory) scores, that would result in the wrong process being killed. A user could use this to kill the process with the highest OOM score, even if that process belongs to another user or the system. Paolo Bonzini discovered a flaw in Linux's handling of the SG_IO ioctl command. A local user, or user in a VM could exploit this flaw to bypass restrictions and gain read/write access to all data on the affected block device. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2011-4097, CVE-2011-4127, CVE-2011-4622, CVE-2012-0038, CVE-2012-0055, CVE-2012-0207, CVE-2011-4097, CVE-2011-4127, CVE-2011-4622, CVE-2012-0038, CVE-2012-0055, CVE-2012-0207
SHA-256 | ba35da89b5eae8117d31f718c99da404c1ff80d437df5bc034c13a24bb0b4c94
Ubuntu Security Notice USN-1385-1
Posted Mar 6, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1385-1 - Simon Ruderich discovered that APT incorrectly handled repositories that use InRelease files. The default Ubuntu repositories do not use InRelease files, so this issue only affected third-party repositories. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to install altered packages.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2012-0214
SHA-256 | 0b3230c53e5dc0059e2437886ba73186dc53da343aa39e73c732eadf57916c41
Ubuntu Security Notice USN-1383-1
Posted Mar 6, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1383-1 - Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernel's handling of IPv4 icmp packets. A remote user could exploit this to cause a denial of service. Dan Rosenberg reported an error in the old ABI compatibility layer of ARM kernels. A local attacker could exploit this flaw to cause a denial of service or gain root privileges. Ben Hutchings reported a flaw in the kernel's handling of corrupt LDM partitions. A local user could exploit this to cause a denial of service or escalate privileges. Various other issues were also addressed.

tags | advisory, remote, denial of service, kernel, local, root
systems | linux, ubuntu
advisories | CVE-2011-1927, CVE-2011-1759, CVE-2011-2182, CVE-2011-2498, CVE-2011-2518, CVE-2011-3619, CVE-2011-1759, CVE-2011-1927, CVE-2011-2182, CVE-2011-2498, CVE-2011-2518, CVE-2011-3619
SHA-256 | 1c6f556901340d1873875e73d463e09ffc201debeb651be21394b09aed677fb0
Gentoo Linux Security Advisory 201203-12
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-12 - Multiple vulnerabilities have been found in OpenSSL, allowing remote attackers to cause a Denial of Service or obtain sensitive information. Versions less than 1.0.0g are affected.

tags | advisory, remote, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2011-4108, CVE-2011-4109, CVE-2011-4576, CVE-2011-4577, CVE-2011-4619, CVE-2012-0027, CVE-2012-0050
SHA-256 | 33d5dcd48ce0543fba2329b32e7c2e3cb7ad20833adcae6ddcc406a2b4b01fd0
Gentoo Linux Security Advisory 201203-11
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-11 - A buffer overflow vulnerability in usbmuxd could result in the execution of arbitrary code. Versions less than 1.0.7-r1 are affected.

tags | advisory, overflow, arbitrary
systems | linux, gentoo
advisories | CVE-2012-0065
SHA-256 | 050987172a5f0e81cbd07961f611019965bf253d2f9ed39680489af5384f6c69
Gentoo Linux Security Advisory 201203-10
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-10 - Multiple buffer overflow vulnerabilities in libmikmod may allow an attacker to execute arbitrary code or cause a Denial of Service condition. Versions less than 3.2.0_beta2-r3 are affected.

tags | advisory, denial of service, overflow, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2010-2546, CVE-2010-2971
SHA-256 | dabf13a93eead13d95d3728608051ef4b42c78528c35570c2f5af336866b7a7d
Gentoo Linux Security Advisory 201203-09
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-9 - Vulnerabilities found in ImageMagick might allow remote attackers to execute arbitrary code. Versions less than 6.7.5.3 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2012-0247, CVE-2012-0248
SHA-256 | 762c38364403aa1177fe908220a67725dc7492c7605c2e8562025421a3a2418c
Gentoo Linux Security Advisory 201203-08
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-8 - A vulnerability in libxslt could result in Denial of Service. Versions less than 1.1.26-r3 are affected.

tags | advisory, denial of service
systems | linux, gentoo
advisories | CVE-2011-3970
SHA-256 | eda3411ae557f830dff680802ba73a02b1f235290b5fcebb036ebf955ac7435f
Gentoo Linux Security Advisory 201203-07
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-7 - A vulnerability in foomatic-filters could result in the execution of arbitrary code. Versions less than 4.0.9 are affected.

tags | advisory, arbitrary
systems | linux, gentoo
advisories | CVE-2011-2697, CVE-2011-2964
SHA-256 | e801b2a3f7216de6732e2de2cfac6b7c7a5c4e6a46da4c9988814688ec3ccdff
Gentoo Linux Security Advisory 201203-06
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-6 - Two vulnerabilities have been discovered in sudo, allowing local attackers to possibly gain escalated privileges. Versions less than 1.8.3_p2 are affected.

tags | advisory, local, vulnerability
systems | linux, gentoo
advisories | CVE-2011-0010, CVE-2012-0809
SHA-256 | 1a5fc85ff948260a7509a11c8d46123635e981c62090a8dc757d025322b5808d
Gentoo Linux Security Advisory 201203-05
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-5 - A hash collision vulnerability in Rack allows remote attackers to cause a Denial of Service condition. Versions less than 1.1.3 are affected.

tags | advisory, remote, denial of service
systems | linux, gentoo
advisories | CVE-2011-5036
SHA-256 | 9769e36f41607c430d74378f10b2dccc1250c0da0d459328c3cc7ad212bd778d
Gentoo Linux Security Advisory 201203-04
Posted Mar 6, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-4 - A hash collision vulnerability in libxml2 allows remote attackers to cause a Denial of Service condition. Versions less than 2.7.8-r5 are affected.

tags | advisory, remote, denial of service
systems | linux, gentoo
advisories | CVE-2012-0841
SHA-256 | 05cbef9b101de10df239376a0c8402f096aad6b9cf5890c4139943d0780dd035
ZetaBoards Cross Site Scripting
Posted Mar 6, 2012
Authored by Sony

ZetaBoards suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | ef7b694ed9e45359558501916b6c761f799968edaceb670125c1e5a445813534
Longtail E-Media Design SQL Injection
Posted Mar 6, 2012
Authored by 3spi0n

Longtail E-Media Design suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 98eca58d15266b6559f64baa12c09eada488d2cb7e26f3fae8912b144465ba63
Red Moon Media CMS SQL Injection
Posted Mar 6, 2012
Authored by Am!r | Site irist.ir

Red Moon Media CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 9380eb6db0ae0f73bc9bb5086e972256be5e7b4a876c7ffa5dc0cadc52b93421
Digital Design CMS SQL Injection
Posted Mar 6, 2012
Authored by Am!r | Site irist.ir

Digital Design CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 857b874faa267d8d1c84ec4d5a0048f7152630b15625c33a6dbd4b4af3ff34b1
Dcommunication SQL Injection
Posted Mar 6, 2012
Authored by Am!r | Site irist.ir

Dcommunication suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b32d4b39a41c7cf4c9ef9476671fd2dc864728896f6ce7dd84d343ae3c7e8606
Access Road 0.7
Posted Mar 6, 2012
Authored by Patrick Thazard | Site accessroad.sourceforge.net

Access Road is an access control simulator written in Java. Out of the box simulations currently support GNU/Linux and MySQL server.

tags | tool, java
systems | linux, unix
SHA-256 | 3bf4799effc3aee2894fb54a88a3b0351e5dd5dc3cd53f5232aeccd792a6d5a4
Page 1 of 2
Back12Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close