Gentoo Linux Security Advisory GLSA 200511-16 - Ludwig Nussel from SUSE Linux has identified two vulnerabilities in GNUMP3d. GNUMP3d fails to properly check for the existence of /tmp/index.lok before writing to the file, allowing for local unauthorized access to files owned by the user running GNUMP3d. GNUMP3d also fails to properly validate the theme GET variable from CGI input, allowing for unauthorized file inclusion. Versions less than 2.9.7-r1 are affected.
08d0421f8c121fc5d627b9a4cde4c5a57814b48d6d52a78d1f3cc307a8f7521e
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service) and to disclose certain sensitive information, or by malicious people to disclose certain sensitive information, bypass certain security restrictions, and to cause a DoS.
5ce1d79242d6a4532a3476d1247e0297845a2830d6c1a045c9adfdf7fb478622
Secunia Security Advisory - Trustix has issued updates for multiple packages. These fix some vulnerabilities, where the most critical ones can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a user's system or vulnerable system.
01599546892c21399f97f0e095f4db3d612ad2fcebd77001ac2e3ae0007519a9
Ubuntu Security Notice USN-218-1 - Two buffer overflows were discovered in the 'pnmtopng' tool, which were triggered by processing an image with exactly 256 colors when using the -alpha option (CVE-2005-3662) or by processing a text file with very long lines when using the -text option (CVE-2005-3632).
186205740c073a6c3a2123b8b2b81ee862292ac19e01abb4acb5c901ee7951e5
Ubuntu Security Notice USN-217-1 - A buffer overflow has been discovered in the SVG importer of Inkscape. By tricking an user into opening a specially crafted SVG image this could be exploited to execute arbitrary code with the privileges of the Inkscape user.
8cad225daf417b8629396e73ffb925a33dbee577c4002c58f3df767d93220abc
Ubuntu Security Notice USN-190-2 - USN-190-1 fixed a vulnerability in the net-snmp library. It was discovered that the same problem also affects the ucs-snmp implementation (which is used by the Cyrus email server).
71f0daa8f76924288d470abcd943995a73a608b6cc3c2eafde32a49b0775a60f
Debian Security Advisory DSA 906-1 - Colin Leroy discovered several buffer overflows in a number of importer routines in sylpheed, a light-weight e-mail client with GTK+, that could lead to the execution of arbitrary code.
321af136ce5c7d8ec83f7bc7c8b560b5bb6b2aa65614b5bb5fa7d3c97c18b8bc
Debian Security Advisory DSA 904-1 - Greg Roelofs discovered and fixed several buffer overflows in pnmtopng which is also included in netpbm, a collection of graphic conversion utilities, that can lead to the execution of arbitrary code via a specially crafted PNM file.
ff9dcb190b7f26319bebf2b2c7eb51ff9bff606f34d1534d94936a2edff61d85
Debian Security Advisory DSA 905-1 - Several security related problems have been discovered in Mantis, a web-based bug tracking system.
37afb62c3ac2f6edd23d8125fe8e10bb6260c9ae28d019cb48d8444d700f4faa
Debian Security Advisory DSA 903-1 - Imran Ghory discovered a race condition in the permissions setting code in unzip. When decompressing a file in a directory an attacker has access to, unzip could be tricked to set the file permissions to a different file the user has permissions to.
9e22ed59ae84809fd5b9322df9c217c7dbc8633028c8fdb3386100d81b1da842
Debian Security Advisory DSA 900-2 - Due to restrictive dependency definition the updated fetchmailconf package couldn't be installed on the old stable distribution (woody) together with fetchmail-ssl. Hence, this update loosens it, so that the update can be pulled in.
a9e0c17ba354f04b0b155b5cb05dc36b11e47b7de7565a01fba077e842680c88
Debian Security Advisory DSA 902-1 - A buffer overflow has been discovered in the sendmail program of xmail, an advanced, fast and reliable ESMTP/POP3 mail server that could lead to the execution of arbitrary code with group mail privileges.
8d570937a36775d3599f4f9640229e1e74667db4315d254b29d2094a3ebc2a63
Debian Security Advisory DSA 811-2 - The bugfix for the common-lisp-controller vulnerability contained an error that caused third party programs to fail.
b4ad7e172ff13a3ae7070d05655e0d92270c7908fea6a80867665a48c44e439a
Secunia Security Advisory - Secunia Research has discovered a vulnerability in Opera, which can be exploited by malicious people to compromise a user's system.
2d3abc2e1426f968b6e8ac3491b89437788df52b20a4ad263778b3770eca7b9c
Secunia Security Advisory - PSNC Security Team has reported some vulnerabilities and weaknesses in Gadu-Gadu, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, and disclose sensitive information.
fc1f059a006fa010bd3087733bbe61b64c0d7ec72c85310e8f5d9e7d450b6d9c
Secunia Security Advisory - SUSE has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
dcbea86f7314f433fd942f7ef020fde9b80506b5b72cbc80b1c5af5b88d0dd7f
Secunia Security Advisory - SUSE has issued updates for multiple packages. These fix various vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and to compromise a user's or a vulnerable system.
d531f2efc2f47fe1f72afa7a6fcd40c66f804b97de5df32ca6fab1e7b8ca12a8
Secunia Security Advisory - Gentoo has issued an update for smb4k. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
ce1c739fb5e9aea5caa3128b24da166037f98812c3f43cafcfa1251d906c2241
Secunia Security Advisory - Debian has issued an update for xmail. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
37488c7e6db187e27d809563f2dce4c94f5d0077fe64c95754fbff56d944925b
Secunia Security Advisory - Lostmon has reported a vulnerability in Nuke ET, which can be exploited by malicious people to conduct SQL injection attacks.
24d420a25d592aacf2eea80e9d9062b13a138f9674e534c1f7bec8bf43970c1a
Secunia Security Advisory - H D Moore has reported some vulnerabilities in Google Mini Search Appliance, which can be exploited by malicious people to conduct cross-site scripting attacks and potentially to compromise a vulnerable appliance.
ded0465a32dd164fae6248ee2453b3354e0d60455a3356aac17677eedd849f4d
Secunia Security Advisory - Gentoo has issued an update for gnump3d. This fixes two vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges, and by malicious people to disclose potentially sensitive information.
f396fee3089fa74cb1b0bb2402c9c5dd3db4566588e1807611ce2db09ee73b8e
Secunia Security Advisory - Tobias Klein has reported some vulnerabilities in phpMyFAQ, which can be exploited by malicious people to conduct script insertion attacks.
1e0be890b61274ac74d5f4efb14819af33e247b3bdbcbdfe3ade36a2a86cfa6e
Secunia Security Advisory - Joxean Koret has reported a vulnerability in Inkspace, which potentially can be exploited by malicious people to compromise a user's system.
360982f11f578e29fe12d240f1bb115e594529d1c0c336398a6f9fb339464548
Secunia Security Advisory - BiPi_HaCk has reported some vulnerabilities in e-Quick Cart, which can be exploited by malicious people to conduct SQL injection attacks.
af28fa646780e86adf478e52b70aea0ff0101c7f69e3b1fd427e9a5b116c8615