Section: .. / 0807-advisories /
| /// File Name: |
FGA-2008-16-3.txt |
Description:
|
EMC Dantz Retrospect 7 Backup Server version 7.5.508 suffers from a weak password hash arithmetic vulnerability in the authentication module.
| | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2366 | | Last Modified: | Jul 23 19:08:16 2008 |
| MD5 Checksum: | 0e4381d6c4e9206769d3e16fded8c491 |
|
| /// File Name: |
FGA-2008-16.txt |
Description:
|
EMC Dantz Retrospect 7 backup Client 7.5.116 suffers from a plaintext password hash disclosure vulnerability.
| | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2562 | | Last Modified: | Jul 21 18:00:23 2008 |
| MD5 Checksum: | cbb194fe670583886c0eed55f04e9339 |
|
| /// File Name: |
FreeBSD-SA-08.06.bind.txt |
Description:
|
FreeBSD Security Advisory - The BIND DNS implementation does not randomize the UDP source port when doing remote queries, and the query id alone does not provide adequate randomization.
| | Homepage: | http://security.freebsd.org/ | | File Size: | 6653 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 14 22:48:11 2008 |
| MD5 Checksum: | 68270ba16f4122fec61835a8a609ce74 |
|
| /// File Name: |
glsa-200807-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-02 - Nico Golde reported an off-by-one error within the read_client() function in the webhttpd.c file, leading to a stack-based buffer overflow. Stefan Cornelius (Secunia Research) reported a boundary error within the same function, also leading to a stack-based buffer overflow. Both vulnerabilities require that the HTTP Control interface is enabled. Versions less than 3.2.10.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2840 | | Related CVE(s): | CVE-2008-2654 | | Last Modified: | Jul 1 11:52:36 2008 |
| MD5 Checksum: | 45919da25460de8eeaa81d8449ca136f |
|
| /// File Name: |
glsa-200807-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-03 - Tavis Ormandy of the Google Security team reported a heap-based buffer overflow when compiling regular expression patterns containing Internal Option Settings such as (?i). Versions less than 7.7-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3159 | | Related CVE(s): | CVE-2008-2371 | | Last Modified: | Jul 10 01:49:16 2008 |
| MD5 Checksum: | 373947e2ea08cbf7ad1a54367e649fb8 |
|
| /// File Name: |
glsa-200807-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-04 - Felipe Andres Manzano reported a memory management issue in the Page class constructor/destructor. Versions less than 0.6.3-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2624 | | Related CVE(s): | CVE-2008-2950 | | Last Modified: | Jul 10 02:28:59 2008 |
| MD5 Checksum: | 36459cd37a9f322aee01f5cc30c1f97b |
|
| /// File Name: |
glsa-200807-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-05 - Sean Larsson (iDefense Labs) reported an integer overflow in the function rtl_allocateMemory() in the file sal/rtl/source/alloc_global.c. Versions less than 2.4.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3619 | | Related CVE(s): | CVE-2008-2152 | | Last Modified: | Jul 10 04:15:57 2008 |
| MD5 Checksum: | aaeba71107fa187514c6444c192de812 |
|
| /// File Name: |
glsa-200807-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-07 - Multiple integer overflow and buffer overflow vulnerabilities have been discovered in the X.Org X server as shipped by NX and NX Node (GLSA 200806-07). Versions less than 3.2.0-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3115 | | Last Modified: | Jul 10 04:16:59 2008 |
| MD5 Checksum: | 1bb2bf12af83d9a3c428c184c6408092 |
|
| /// File Name: |
glsa-200807-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-08 - Dan Kaminsky of IOActive has reported a weakness in the DNS protocol related to insufficient randomness of DNS transaction IDs and query source ports. Versions less than 9.4.2_p1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2898 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 11 18:09:49 2008 |
| MD5 Checksum: | 455c82267a09dd03755f94fe0a3973ba |
|
| /// File Name: |
glsa-200807-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-09 - Jakub Wilk discovered a directory traversal vulnerability in the applydiff() function in the mercurial/patch.py file. Versions less than 1.0.1-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2480 | | Related CVE(s): | CVE-2008-2942 | | Last Modified: | Jul 15 20:02:55 2008 |
| MD5 Checksum: | 50462d81464b1af2654e6f46ece39373 |
|
| /// File Name: |
glsa-200807-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-10 - Matthijs Kooijman reported that the make_catalog_backup script uses the MySQL password as a command line argument when invoking other programs. Versions less than 2.4.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2985 | | Related CVE(s): | CVE-2007-5626 | | Last Modified: | Jul 21 17:28:26 2008 |
| MD5 Checksum: | 57f7c6379386e1685d50979f5ad3bd27 |
|
| /// File Name: |
glsa-200807-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-11 - Nico Golde reported a boundary error in the HTTP::getAuthUserPass() function when processing overly long HTTP Basic authentication requests. Versions less than 0.1218-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2849 | | Related CVE(s): | CVE-2008-2040 | | Last Modified: | Jul 21 17:28:36 2008 |
| MD5 Checksum: | d1146df456660d542131ae60286a71a2 |
|
| /// File Name: |
glsa-200807-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-12 - bannedit reported a boundary error when handling overly long IRC MODE messages (CVE-2007-4584). Nico Golde reported an insecure creation of a temporary file within the e_hostname() function (CVE-2007-5839). Versions less than or equal to 1.1-r4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3594 | | Related CVE(s): | CVE-2007-4584, CVE-2007-5839 | | Last Modified: | Jul 21 18:08:23 2008 |
| MD5 Checksum: | 8100eca3c7360f4b84b412bf7550fda5 |
|
| /// File Name: |
glsa-200807-13.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-13 - Remi Denis-Courmont reported that VLC loads plugins from the current working directory in an unsafe manner. Versions less than 0.8.6i are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 2885 | | Related CVE(s): | CVE-2008-2147, CVE-2008-2430 | | Last Modified: | Jul 31 18:53:55 2008 |
| MD5 Checksum: | 3fbe056b952279bdbc3ed4fda2bf850a |
|
| /// File Name: |
glsa-200807-14.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-14 - A stack-based buffer overflow has been reported in the audit_log_user_command() function in the file lib/audit_logging.c when processing overly long arguments. Versions less than 1.7.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2939 | | Related CVE(s): | CVE-2008-1628 | | Last Modified: | Jul 31 18:54:04 2008 |
| MD5 Checksum: | 6b691efd9f16eef42bb7a1ab17aaefac |
|
| /// File Name: |
glsa-200807-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-15 - Pavel Polischouk reported a boundary error in the PartsBatch class when processing .nzb files. Versions less than 0.132-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2656 | | Related CVE(s): | CVE-2008-2363 | | Last Modified: | Jul 31 18:54:33 2008 |
| MD5 Checksum: | 873315349fd5e7b65178514757c0bc7e |
|
| /// File Name: |
ISVA-080709.1.txt |
Description:
|
Insomnia Security Vulnerability Advisory - Microsoft SQL Server contains a buffer overflow that can be reached by causing the server to attempt a database restore from a corrupt back file.
| | Author: | Brett Moore | | Homepage: | http://www.insomniasec.com/ | | File Size: | 6547 | | Last Modified: | Jul 10 04:05:47 2008 |
| MD5 Checksum: | dec075832fea7950517fec9d1cce7d25 |
|
| /// File Name: |
libexslt-overflow.txt |
Description:
|
The libexslt library bundled with libxslt is affected by a heap-based buffer overflow which can lead to arbitrary code execution. The vulnerability is present in the rc4 encryption/decryption functions. Versions 1.1.8 and above and 1.1.24 and below are affected.
| | Author: | Chris Evans | | File Size: | 1814 | | Related CVE(s): | CVE-2008-2935 | | Last Modified: | Jul 31 11:30:53 2008 |
| MD5 Checksum: | ea8f4cce63201c78ac95cd6868a0d632 |
|
| /// File Name: |
MDVSA-2008-125.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in the chunk_split() function in PHP prior to 5.2.4 has unknown impact and attack vectors, related to an incorrect size calculation. The htmlentities() and htmlspecialchars() functions in PHP prior to 5.2.5 accepted partial multibyte sequences, which has unknown impact and attack vectors. The output_add_rewrite_var() function in PHP prior to 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which could allow a remote attacker to obtain potentially sensitive information by reading the requests for this URL. The escapeshellcmd() API function in PHP prior to 5.2.6 has unknown impact and context-dependent attack vectors related to incomplete multibyte characters. Weaknesses in the GENERATE_SEED macro in PHP prior to 4.4.8 and 5.2.5 were discovered that could produce a zero seed in rare circumstances on 32bit systems and generations a portion of zero bits during conversion due to insufficient precision on 64bit systems.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4424 | | Related CVE(s): | CVE-2007-5898, CVE-2007-5899, CVE-2007-4660, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108 | | Last Modified: | Jul 9 22:32:39 2008 |
| MD5 Checksum: | 8bcd2c1815a00aea4c5c689f48a1cfe5 |
|
| /// File Name: |
MDVSA-2008-126.txt |
Description:
|
Mandriva Linux Security Advisory - PHP 5.2.1 would allow context-dependent attackers to read portions of heap memory by executing certain scripts with a serialized data input string beginning with 'S:', which did not properly track the number of input bytes being processed. A vulnerability in the chunk_split() function in PHP prior to 5.2.4 has unknown impact and attack vectors, related to an incorrect size calculation. The htmlentities() and htmlspecialchars() functions in PHP prior to 5.2.5 accepted partial multibyte sequences, which has unknown impact and attack vectors. The output_add_rewrite_var() function in PHP prior to 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which could allow a remote attacker to obtain potentially sensitive information by reading the requests for this URL. The escapeshellcmd() API function in PHP prior to 5.2.6 has unknown impact and context-dependent attack vectors related to incomplete multibyte characters. Weaknesses in the GENERATE_SEED macro in PHP prior to 4.4.8 and 5.2.5 were discovered that could produce a zero seed in rare circumstances on 32bit systems and generations a portion of zero bits during conversion due to insufficient precision on 64bit systems. CVE-2008-2108). The IMAP module in PHP uses obsolete API calls that allow context-dependent attackers to cause a denial of service (crash) via a long IMAP request.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5568 | | Related CVE(s): | CVE-2007-1649, CVE-2007-4660, CVE-2007-5898, CVE-2007-5899, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108, CVE-2008-2829 | | Last Modified: | Jul 9 22:35:57 2008 |
| MD5 Checksum: | 57e190780b1039bb1bcea9d963ac8ca3 |
|
| /// File Name: |
MDVSA-2008-127.txt |
Description:
|
Mandriva Linux Security Advisory - The htmlentities() and htmlspecialchars() functions in PHP prior to 5.2.5 accepted partial multibyte sequences, which has unknown impact and attack vectors. The output_add_rewrite_var() function in PHP prior to 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which could allow a remote attacker to obtain potentially sensitive information by reading the requests for this URL. php-cgi in PHP prior to 5.2.6 does not properly calculate the length of PATH_TRANSLATED, which has unknown impact and attack vectors. The escapeshellcmd() API function in PHP prior to 5.2.6 has unknown impact and context-dependent attack vectors related to incomplete multibyte characters. Weaknesses in the GENERATE_SEED macro in PHP prior to 4.4.8 and 5.2.5 were discovered that could produce a zero seed in rare circumstances on 32bit systems and generations a portion of zero bits during conversion due to insufficient precision on 64bit systems. The IMAP module in PHP uses obsolete API calls that allow context-dependent attackers to cause a denial of service (crash) via a long IMAP request. In addition, this update also corrects an issue with some float to string conversions.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 15375 | | Related CVE(s): | CVE-2007-5898, CVE-2007-5899, CVE-2008-0599, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108, CVE-2008-2829 | | Last Modified: | Jul 9 22:38:20 2008 |
| MD5 Checksum: | 7d2e1fac35b020e6d4ec73b001b11cad |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
