Debian Security Advisory 1492-1 - Frank Lichtenheld and Nico Golde discovered that WML, an off-line HTML generation toolkit, creates insecure temporary files in the eperl and ipp backends and in the wmg.cgi script, which could lead to local denial of service by overwriting files.
968cbf15656caec7816b6646a9f9246a60c3937d49be8c28ef1849441ab6e468Debian Security Advisory 1491-1 - It was discovered that a buffer overflow in the GIF image parsing code of Tk, a cross-platform graphical toolkit, could lead to denial of service and potentially the execution of arbitrary code.
bd97d20b96315054941f8677e330b910ff634a65e26f266fb3498ad74bb14aa9Debian Security Advisory 1490-1 - It was discovered that a buffer overflow in the GIF image parsing code of Tk, a cross-platform graphical toolkit, could lead to denial of service and potentially the execution of arbitrary code.
24c7c8595ae8b5c42962b1fda0cb764c7a651f8db1f63f901f217a350e3972a1Debian Security Advisory 1489-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. These include arbitrary code execution, privilege escalation, and directory traversal flaws.
43e48acc32823c671aa5d0ce96fb6032885f942a876e0b4cc572d9328be2fee6Debian Security Advisory 1488-1 - phpbb2 suffers from a slew of vulnerabilities including cross site request forgery and malicious upload flaws.
092d27daec109fe26250b49509cd201662a7561851d8e194db7101047dc2b737Apache Tomcat versions 5.5.11 through 5.5.25 and 6.0.0 through 6.0.15 suffer from a duplicate request processing vulnerability.
22729b358466fbd68bb4271ffdf26a6060ba0c78b027606cde7fa63482f7d411Apache Tomcat versions 4.1.0 through 4.1.36, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14 suffers from a cookie handling vulnerability that allows for session hi-jacking.
b39d081913bab5de110b695d04a57477a5c95855e6a8d1817540793912383f76Secunia Security Advisory - rPath has issued an update for gd. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
6542b6d8364f2f07b8e5dd117fcd253695da6d075702fe8c93f103f2ae57e3feSecunia Security Advisory - Mandriva has issued an update for libcdio. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
d74f7e1a7aeca7adcc4ea9eb709a05f38d2cd3088306f466edc0af71f123e706Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some security issues and vulnerabilities, where some have unknown impacts and others can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, corrupt a file system, and gain escalated privileges, or by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service).
cdf2ffb325a84c3ddf4c21d0d447154d23b156edc1c57262ea18a700626c9f33Secunia Security Advisory - Fedora has issued an update for tk and perl-Tk. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
e0c80ccf82d325940fb33d124fbccac0dea28f50f1818b4aae00792b5613ce32Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, conduct spoofing attacks, or potentially to compromise a vulnerable system.
01e1b7095bcd2fec991c70e4483c7245d562301f9e9bdc1c7e665daff2cfb326Secunia Security Advisory - Fedora has issued an update for openldap. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
79d0fc4eaa08dbf08ea3bc6b4a91ac5680204a7d9fa899544cfab2821d626317Secunia Security Advisory - Some vulnerabilities and a weakness have been discovered in PowerNews, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting and SQL injection attacks, disclose certain information, and compromise a vulnerable system.
8714795122dbbdaae66827cdfdd041259eb96b0eb98622d992d57623271cb04eSecunia Security Advisory - Russ McRee has reported a vulnerability in Sift Unity, which can be exploited by malicious people to conduct cross-site scripting attacks.
b3492cf6e74820736449f9e4069a1fd736bae9677a625bfe5124f92ab92066c4Secunia Security Advisory - OpenBSD has issued an update for X.Org.This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
72271bf77a565505e5dd02e04f476ff7648aa1a926db0ab72c4a4b145cb0c29aSecunia Security Advisory - Some vulnerabilities have been reported in HP Select Identity, which can be exploited by malicious users to bypass certain security restrictions or potentially compromise a vulnerable system.
3fdbf425177b270b735c117cd54bc23de2b5870524a86876ba893ab13d1236fcSecunia Security Advisory - Mandriva has issued an update for tk. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library.
d4d08629d89e5c43e4993d5539b95e8a6de901ee89c6707c1bd880b320814b41Secunia Security Advisory - Mandriva has issued an update for SDL_image. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
45d60f07f6c988a5bc1d80f91095e7d94f26dbdc770a9a9bcec448eb1d7fd8f3Secunia Security Advisory - Some vulnerabilities have been reported in Adobe Reader/Acrobat, some of which have unknown impacts while others can be exploited by malicious people to compromise a user's system.
ea0fcb3d25f6b7b28fd535ea022d65bb210c70364833410d2b158d6196374e5cSecunia Security Advisory - Alexander Brachmann has reported a vulnerability in the Freetag plugin for Serendipity, which can be exploited by malicious people to conduct cross-site scripting attacks.
437e1defa011b4a64130242711f34302750bcfa813c9a2655c980f30969f2f8c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed