Mandriva Linux Security Advisory - Thomas Pollet discovered an integer overflow vulnerability in the PNG image handling filter in CUPS. This could allow a malicious user to execute arbitrary code with the privileges of the user running CUPS, or cause a denial of service by sending a specially crafted PNG image to the print server. The updated packages have been patched to correct this issue.
6027428b40ba6f81523065dcc68298cdbbc56ec431a12d32a36b06ad82559a49
Mandriva Linux Security Advisory - Marc Schoenefeld of the Red Hat Security Response Team discovered a vulnerability in the hplip alert-mailing functionality that could allow a local attacker to elevate their privileges by using specially-crafted packets to trigger alert mails that are sent by the root account. Another vulnerability was discovered by Marc Schoenefeld in the hpssd message parser that could allow a local attacker to stop the hpssd process by sending specially-crafted packets, causing a denial of service. The updated packages have been patched to correct these issues.
6795cd9f04e5887e773481d7eeb670df41567a78f63d3ae89b6d00acd4462e78
Mandriva Linux Security Advisory - A vulnerability was found in the OCSP search functionality in stunnel that could allow a remote attacker to use a revoked certificate that would be successfully authenticated by stunnel. This flaw only concerns users who have enabled OCSP validation in stunnel. The updated packages have been patched to correct this issue.
843d62d83217251c61bdf65b8d108d92c9f85072194511a82c123ff877bd88e8
A remote illegal access vulnerability exists in Microsoft Windows Live Messenger. A vicious attacker can control the Live Messenger via constructing a malicious web page.
e193b70a2907428a643a20891cf651e8fda5c7bc6903f72feb2aa3e7972221e4
CyBoards PHP Lite version 1.21 suffers from cross site scripting, local file inclusion, and remote file inclusion vulnerabilities.
ef50722f4459bd2d59ea512846c76f681c0345a36b24c6fcd02fb9c024f1c34f
NavBoard version 16 suffers from multiple local file inclusion and cross site scripting vulnerabilities.
7b885728709d032b398a0528f8689d5d5a5d35668a4802114a6bb5737182ed09
YapBB version 1.2 Beta2 suffers from a remote file inclusion vulnerability.
966b85211c2f88736d0575aeac1b4aef3f97b3a536edd094e7bf6679ab3519a3