Section: .. / 0706-advisories /
| /// File Name: |
GdiPlus.pdf |
Description:
|
The CSIS Security Group has discovered an "Integer division by zero" flaw in the GDI+ component of Windows XP. Exploitation of this flaw can result in a denial of service condition.
| | Author: | Dennis Rand | | Homepage: | http://www.csis.dk/ | | File Size: | 130523 | | Last Modified: | Jun 7 02:54:59 2007 |
| MD5 Checksum: | 1e1a69cf8e1d200e9b8cae5681f23af8 |
|
| /// File Name: |
dsa-1307-1.txt |
Description:
|
Debian Security Advisory 1307-1 - John Heasman discovered a heap overflow in the routines of OpenOffice.org that parse RTF files. A specially crafted RTF file could cause the filter to overwrite data on the heap, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 51808 | | Related CVE(s): | CVE-2007-0245 | | Last Modified: | Jun 12 21:06:55 2007 |
| MD5 Checksum: | 2979f28b859b37269bf3d9b44968dcb7 |
|
| /// File Name: |
USN-470-1.txt |
Description:
|
Ubuntu Security Notice 470-1 - Ilja van Sprundel discovered that Bluetooth setsockopt calls could leak kernel memory contents via an uninitialized stack buffer. A local attacker could exploit this flaw to view sensitive kernel information. The GEODE-AES driver did not correctly initialize its encryption key. Any data encrypted using this type of device would be easily compromised. The random number generator was hashing a subset of the available entropy, leading to slightly less random numbers. Additionally, systems without an entropy source would be seeded with the same inputs at boot time, leading to a repeatable series of random numbers.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 49897 | | Related CVE(s): | CVE-2007-1353, CVE-2007-2451, CVE-2007-2453 | | Last Modified: | Jun 10 20:30:28 2007 |
| MD5 Checksum: | aa14eca65f912b2d5e65561a17a896a3 |
|
| /// File Name: |
USN-475-1.txt |
Description:
|
Ubuntu Security Notice 475-1 - Philip Van Hoof discovered that the IMAP client in Evolution did not correctly verify the SEQUENCE value. A malicious or spoofed server could exploit this to execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 48613 | | Related CVE(s): | CVE-2007-3257 | | Last Modified: | Jun 26 16:43:45 2007 |
| MD5 Checksum: | 0d535d8beab5c8d5730b82bfe3de4ca2 |
|
| /// File Name: |
dsa-1323-1.txt |
Description:
|
Debian Security Advisory 1323-1 - Several remote vulnerabilities have been discovered in the MIT reference implementation of the Kerberos network authentication protocol suite, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 34760 | | Related CVE(s): | CVE-2007-2442, CVE-2007-2443, CVE-2007-2798 | | Last Modified: | Jun 29 01:37:00 2007 |
| MD5 Checksum: | 9675f44fcc9ff2e27cb29ebe574700e6 |
|
| /// File Name: |
dsa-1304-1.txt |
Description:
|
Debian Security Advisory 1304-1 - Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 34109 | | Related CVE(s): | CVE-2005-4811, CVE-2006-4814, CVE-2006-4623, CVE-2006-5753, CVE-2006-5754, CVE-2006-5757, CVE-2006-6053, CVE-2006-6056, CVE-2006-6060, CVE-2006-6106, CVE-2006-6535, CVE-2007-0958, CVE-2007-1357, CVE-2007-1592 | | Last Modified: | Jun 19 14:39:52 2007 |
| MD5 Checksum: | 1d8a803d6cd25a9ae00f96aa85c482a1 |
|
| /// File Name: |
USN-479-1.txt |
Description:
|
Ubuntu Security Notice 479-1 - Multiple flaws in the MadWifi driver were discovered that could lead to a system crash. A physically near-by attacker could generate specially crafted wireless network traffic and cause a denial of service. A flaw was discovered in the MadWifi driver that would allow unencrypted network traffic to be sent prior to finishing WPA authentication. A physically near-by attacker could capture this, leading to a loss of privacy, denial of service, or network spoofing. A flaw was discovered in the MadWifi driver's ioctl handling. A local attacker could read kernel memory, or crash the system, leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 33822 | | Related CVE(s): | CVE-2006-7177, CVE-2006-7178, CVE-2006-7179, CVE-2007-2829, CVE-2007-2830, CVE-2006-7180, CVE-2007-2831 | | Last Modified: | Jun 29 22:45:34 2007 |
| MD5 Checksum: | 7f1f06c23808577845fca734298e7ccc |
|
| /// File Name: |
dsa-1311-1.txt |
Description:
|
Debian Security Advisory 1311-1 - It was discovered that the PostgreSQL database performs insufficient validation of variables passed to privileged SQL statement called "security definers", which could lead to SQL privilege escalation.
| | Homepage: | http://www.debian.org/security | | File Size: | 32964 | | Related CVE(s): | CVE-2007-2138 | | Last Modified: | Jun 19 16:35:57 2007 |
| MD5 Checksum: | eefad625b43958f3ae0784c74aeb5931 |
|
| /// File Name: |
sa25890.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25890/ | | File Size: | 31534 | | Last Modified: | Jun 29 20:49:08 2007 |
| MD5 Checksum: | 0ca6870fbe9d1524a3d758542496777f |
|
| /// File Name: |
sa25861.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for MadWifi. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to gain knowledge of potentially sensitive information or to cause a DoS.
| | Homepage: | http://secunia.com/advisories/25861/ | | File Size: | 31156 | | Last Modified: | Jun 29 20:49:08 2007 |
| MD5 Checksum: | da032572388de223d731a6a1a82defdf |
|
| /// File Name: |
sa25862.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for OpenOffice_org. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/25862/ | | File Size: | 29922 | | Last Modified: | Jun 29 20:49:08 2007 |
| MD5 Checksum: | db767e1849950178086b6549c09a0da0 |
|
| /// File Name: |
dsa-1320-1.txt |
Description:
|
Debian Security Advisory 1320-1 - Several remote vulnerabilities have been discovered in the Clam anti-virus toolkit. It was discovered that the OLE2 parser can be tricked into an infinite loop and memory exhaustion. It was discovered that the NsPack decompression code performed insufficient sanitizing on an internal length variable, resulting in a potential buffer overflow. It was discovered that temporary files were created with insecure permissions, resulting in information disclosure. It was discovered that the decompression code for RAR archives allows bypassing a scan of a RAR archive due to insufficient validity checks. It was discovered that the decompression code for RAR archives performs insufficient validation of header values, resulting in a buffer overflow.
| | Homepage: | http://www.debian.org/security | | File Size: | 29332 | | Related CVE(s): | CVE-2007-2650, CVE-2007-3023, CVE-2007-3024, CVE-2007-3122, CVE-2007-3123 | | Last Modified: | Jun 26 17:45:06 2007 |
| MD5 Checksum: | 27fe60fe32214a09a227280b1444c8ae |
|
| /// File Name: |
dsa-1309-1.txt |
Description:
|
Debian Security Advisory 1309-1 - It was discovered that the PostgreSQL database performs insufficient validation of variables passed to privileged SQL statements, so called "security definers", which could lead to SQL privilege escalation.
| | Homepage: | http://www.debian.org/security | | File Size: | 28160 | | Related CVE(s): | CVE-2007-2138 | | Last Modified: | Jun 19 16:21:31 2007 |
| MD5 Checksum: | df58f5754151ca2c00c2769afcaf62f8 |
|
| /// File Name: |
dsa-1301-1.txt |
Description:
|
Debian Security Advisory 1301-1 - A buffer overflow has been identified in Gimp's SUNRAS plugin in versions prior to 2.2.15. This bug could allow an attacker to execute arbitrary code on the victim's computer by inducing the victim to open a specially crafted RAS file.
| | Homepage: | http://www.debian.org/security | | File Size: | 26056 | | Related CVE(s): | CVE-2007-2356 | | Last Modified: | Jun 10 20:41:56 2007 |
| MD5 Checksum: | ebc4ab67fa5872eea14ee1c03518dc1e |
|
| /// File Name: |
USN-477-1.txt |
Description:
|
Ubuntu Security Notice 477-1 - Wei Wang discovered that the krb5 RPC library did not correctly handle certain error conditions. A remote attacker could cause kadmind to free an uninitialized pointer, leading to a denial of service or possibly execution of arbitrary code with root privileges. Wei Wang discovered that the krb5 RPC library did not correctly check the size of certain communications. A remote attacker could send a specially crafted request to kadmind and execute arbitrary code with root privileges. It was discovered that the kadmind service could be made to overflow its stack. A remote attacker could send a specially crafted request and execute arbitrary code with root privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 23997 | | Related CVE(s): | CVE-2007-2442, CVE-2007-2443, CVE-2007-2798 | | Last Modified: | Jun 29 00:41:40 2007 |
| MD5 Checksum: | 688105ec1e7c951d3c3189647680931f |
|
| /// File Name: |
dsa-1291-4.txt |
Description:
|
Debian Security Advisory 1291-4 - The samba security update for CVE-2007-2446 introduced a regression, which broke connection to domain member servers in some scenarios. This update fixes this regression.
| | Homepage: | http://www.debian.org/security | | File Size: | 22497 | | Related CVE(s): | CVE-2007-2444, CVE-2007-2446, CVE-2007-2447 | | Last Modified: | Jun 7 01:00:42 2007 |
| MD5 Checksum: | 6a69c9a77344d1a0be464f58f6388bf1 |
|
| /// File Name: |
dsa-1325-1.txt |
Description:
|
Debian Security Advisory 1325-1 - Ulf Harnhammer discovered that a format string vulnerability in the handling of shared calendars may allow the execution of arbitrary code. It was discovered that the IMAP code in the Evolution Data Server performs insufficient sanitizing of a value later used an array index, which can lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 15941 | | Related CVE(s): | CVE-2007-1002, CVE-2007-3257 | | Last Modified: | Jun 29 22:59:09 2007 |
| MD5 Checksum: | 94a262ab5007fe2d9720a0ad3ddfeb4d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
