Section: .. / 0806-advisories /
| /// File Name: |
sa30769.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, disclose potentially sensitive information, cause a DoS (Denial of Service), and gain escalated privileges, and by malicious people to cause a DoS and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30769/ | | File Size: | 189384 | | Last Modified: | Jun 20 21:11:07 2008 |
| MD5 Checksum: | 33eb92062e8f070625a6c56482454f5d |
|
| /// File Name: |
cisco-sa-20080610-snmpv3.txt |
Description:
|
Cisco Security Advisory - Multiple Cisco products contain either of two authentication vulnerabilities in the Simple Network Management Protocol version 3 (SNMPv3) feature. These vulnerabilities can be exploited when processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of network information or may enable an attacker to perform configuration changes to vulnerable devices. The SNMP server is an optional service that is disabled by default in Cisco products. Only SNMPv3 is impacted by these vulnerabilities. Workarounds are available for mitigating the impact of the vulnerabilities described in this document.
| | Homepage: | http://www.cisco.com/ | | File Size: | 82165 | | Related CVE(s): | CVE-2008-0960 | | Last Modified: | Jun 10 20:59:03 2008 |
| MD5 Checksum: | a90f74b6f09d67478056a2900825af18 |
|
| /// File Name: |
USN-614-1.txt |
Description:
|
Ubuntu Security Notice 614-1 - It was discovered that PowerPC kernels did not correctly handle reporting certain system details. By requesting a specific set of information, a local attacker could cause a system crash resulting in a denial of service. A race condition was discovered between dnotify fcntl() and close() in the kernel. If a local attacker performed malicious dnotify requests, they could cause memory consumption leading to a denial of service, or possibly send arbitrary signals to any process. On SMP systems, a race condition existed in fcntl(). Local attackers could perform malicious locks, causing system crashes and leading to a denial of service. The tehuti network driver did not correctly handle certain IO functions. A local attacker could perform malicious requests to the driver, potentially accessing kernel memory, leading to privilege escalation or access to private system information.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 76898 | | Related CVE(s): | CVE-2007-6694, CVE-2008-1375, CVE-2008-1669, CVE-2008-1675 | | Last Modified: | Jun 3 20:42:46 2008 |
| MD5 Checksum: | e879ddc4fe4819bcf545b9a39c1b83dc |
|
| /// File Name: |
MDVSA-2008-113.txt |
Description:
|
Mandriva Linux Security Advisory - The asn1 implementation in (a) the Linux kernel 2.4 before 2.4.36.6 and 2.6 before 2.6.25.5, as used in the cifs and ip_nat_snmp_basic modules; and (b) the gxsnmp package; does not properly validate length values during decoding of ASN.1 BER data, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a length greater than the working buffer, which can lead to an unspecified overflow; (2) an oid length of zero, which can lead to an off-by-one error; or (3) an indefinite length for a primitive encoding.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 75589 | | Related CVE(s): | CVE-2008-1673 | | Last Modified: | Jun 13 19:08:23 2008 |
| MD5 Checksum: | ba8d7e65ec5a0cb555e482dd8977020f |
|
| /// File Name: |
MDVSA-2008-109.txt |
Description:
|
Mandriva Linux Security Advisory - The bdx_ioctl_priv function in the tehuti driver (tehuti.c) in Linux kernel 2.6.x before 2.6.25.1 does not properly check certain information related to register size, which has unspecified impact and local attack vectors, probably related to reading or writing kernel memory. Additionally, some fixes were made, related to: iwlwifi (small bug interacting with drakconnect interface detection), brightness handling on EeePc, uvcvideo on Thinkpad X300, sound for TOSHIBA Satellite Pro A200 and A210, RealTek 8169 ethernet, unionfs, and more.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 71889 | | Related CVE(s): | CVE-2008-1675 | | Last Modified: | Jun 3 20:46:43 2008 |
| MD5 Checksum: | 58602d0d5640cdc9f3a5187c33bc70d7 |
|
| /// File Name: |
sa30515.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/30515/ | | File Size: | 71013 | | Last Modified: | Jun 4 21:24:03 2008 |
| MD5 Checksum: | 23aceb23f2df0800e4e7687b08be1fcf |
|
| /// File Name: |
MDVSA-2008-110.txt |
Description:
|
Mandriva Linux Security Advisory - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.14.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 59983 | | Related CVE(s): | CVE-2008-1380 | | Last Modified: | Jun 6 18:57:57 2008 |
| MD5 Checksum: | c14720412bc04f903daf033da6ff8fa2 |
|
| /// File Name: |
dsa-1592-2.txt |
Description:
|
Debian Security Advisory 1592-2 - Two vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or arbitrary code execution. Wei Wang from McAfee reported a potential heap overflow in the ASN.1 decode code that is used by the SNMP NAT and CIFS subsystem. Exploitation of this issue may lead to arbitrary code execution. This issue is not believed to be exploitable with the pre-built kernel images provided by Debian, but it might be an issue for custom images built from the Debian-provided source package. Brandon Edwards of McAfee Avert labs discovered an issue in the DCCP subsystem. Due to missing feature length checks it is possible to cause an overflow they may result in remote arbitrary code execution. This updated advisory adds the linux-2.6 build for mipsel which was not yet available at the time of DSA-1592-1.
| | Homepage: | http://www.debian.org/security | | File Size: | 36393 | | Related CVE(s): | CVE-2008-1673, CVE-2008-2358 | | Last Modified: | Jun 9 15:49:47 2008 |
| MD5 Checksum: | 7a55df5d90d45c720f4f79ce568d12d5 |
|
| /// File Name: |
USN-617-1.txt |
Description:
|
Ubuntu Security Notice 617-1 - Samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. When samba is configured as a Primary or Backup Domain Controller, a remote attacker could send malicious logon requests and possibly cause a denial of service. Alin Rad Pop of Secunia Research discovered that Samba did not properly perform bounds checking when parsing SMB replies. A remote attacker could send crafted SMB packets and execute arbitrary code.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 34281 | | Related CVE(s): | CVE-2007-4572, CVE-2008-1105 | | Last Modified: | Jun 18 17:19:35 2008 |
| MD5 Checksum: | aa534b412941f7c7ac477625b6203640 |
|
| /// File Name: |
sa30000.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30000/ | | File Size: | 34050 | | Last Modified: | Jun 10 19:43:51 2008 |
| MD5 Checksum: | ade1b7ab87c20ec6e516551618c3d4cc |
|
| /// File Name: |
USN-621-1.txt |
Description:
|
Ubuntu Security Notice 621-1 - Drew Yao discovered several vulnerabilities in Ruby which lead to integer overflows. If a user or automated system were tricked into running a malicious script, an attacker could cause a denial of service or execute arbitrary code with the privileges of the user invoking the program. Drew Yao discovered that Ruby did not sanitize its input when using ALLOCA. If a user or automated system were tricked into running a malicious script, an attacker could cause a denial of service via memory corruption.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 33872 | | Related CVE(s): | CVE-2008-2662, CVE-2008-2663, CVE-2008-2725, CVE-2008-2726, CVE-2008-2664 | | Last Modified: | Jun 27 12:04:23 2008 |
| MD5 Checksum: | 3f9b36d1f7954def85af5e64b364ce99 |
|
| /// File Name: |
dsa-1592-1.txt |
Description:
|
Debian Security Advisory 1592-1 - Two vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or arbitrary code execution. Wei Wang from McAfee reported a potential heap overflow in the ASN.1 decode code that is used by the SNMP NAT and CIFS subsystem. Exploitation of this issue may lead to arbitrary code execution. This issue is not believed to be exploitable with the pre-built kernel images provided by Debian, but it might be an issue for custom images built from the Debian-provided source package. Brandon Edwards of McAfee Avert labs discovered an issue in the DCCP subsystem. Due to missing feature length checks it is possible to cause an overflow they may result in remote arbitrary code execution.
| | Homepage: | http://www.debian.org/security | | File Size: | 33749 | | Related CVE(s): | CVE-2008-1673, CVE-2008-2358 | | Last Modified: | Jun 9 10:35:32 2008 |
| MD5 Checksum: | 6711c649d1e889d9a7a4224589db5f68 |
|
| /// File Name: |
sa30736.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30736/ | | File Size: | 32311 | | Last Modified: | Jun 18 17:15:54 2008 |
| MD5 Checksum: | 1fb37e56d2ae6e346473e117dccd8b23 |
|
| /// File Name: |
sa30867.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for ruby1.8. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30867/ | | File Size: | 31952 | | Last Modified: | Jun 28 10:14:58 2008 |
| MD5 Checksum: | d67b1b2da426fcd5b76e3afccbbadfe7 |
|
| /// File Name: |
cisco-sa-20080604-asa.txt |
Description:
|
Cisco Security Advisory - Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances. The first four vulnerabilities may lead to a denial of service (DoS) condition and the fifth vulnerability may allow an attacker to bypass control-plane access control lists (ACL).
| | Homepage: | http://www.cisco.com/ | | File Size: | 29659 | | Related CVE(s): | CVE-2008-2055 | | Last Modified: | Jun 4 21:53:01 2008 |
| MD5 Checksum: | 2c024c8810f6e22e8f2cadeb828229af |
|
| /// File Name: |
VMSA-2008-0009.txt |
Description:
|
VMware Security Advisory - Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues.
| | Homepage: | http://www.vmware.com/ | | File Size: | 29263 | | Related CVE(s): | CVE-2007-5671, CVE-2008-0967, CVE-2008-2097, CVE-2008-2100, CVE-2006-1721, CVE-2008-0553, CVE-2007-5378, CVE-2007-4772, CVE-2008-0888, CVE-2008-0062, CVE-2008-0063, CVE-2008-0948 | | Last Modified: | Jun 4 21:56:09 2008 |
| MD5 Checksum: | 21a9f9bc9d12b67725e49cdbc7495422 |
|
| /// File Name: |
CORE-2008-0125.txt |
Description:
|
Core Security Technologies Advisory - A vulnerability was found in CitectSCADA that could allow a remote un-authenticated attacker to force an abnormal termination of the vulnerable software (Denial of Service) or to execute arbitrary code on vulnerable systems to gain complete control of the software. To accomplish such goal the would-be attacker must be able to connect to the vulnerable service on a TCP high-port.
| | Author: | Sebastian Muniz | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 26834 | | Related CVE(s): | CVE-2008-2639 | | Last Modified: | Jun 11 14:49:38 2008 |
| MD5 Checksum: | 05d523bd4c70fe5989f629e5358a80e8 |
|
| /// File Name: |
USN-616-1.txt |
Description:
|
Ubuntu Security Notice 616-1 - Multiple flaws were found in the RENDER, RECORD, and Security extensions of X.org which did not correctly validate function arguments. An authenticated attacker could send specially crafted requests and gain root privileges or crash X. It was discovered that the MIT-SHM extension of X.org did not correctly validate the location of memory during an image copy. An authenticated attacker could exploit this to read arbitrary memory locations within X, exposing sensitive information.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 25658 | | Related CVE(s): | CVE-2008-1377, CVE-2008-2360, CVE-2008-2361, CVE-2008-2362, CVE-2008-1379 | | Last Modified: | Jun 13 12:39:38 2008 |
| MD5 Checksum: | a0ffdd2dfdee818f9b6d08cd37d7f402 |
|
| /// File Name: |
sa30664.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for xorg-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/30664/ | | File Size: | 24579 | | Last Modified: | Jun 13 18:49:22 2008 |
| MD5 Checksum: | 246c953612636f7496580787971a9590 |
|
| /// File Name: |
sa30478.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30478/ | | File Size: | 21027 | | Last Modified: | Jun 2 19:54:33 2008 |
| MD5 Checksum: | 5263f9aeb7757442996642e22fa8f6f3 |
|
| /// File Name: |
USN-615-1.txt |
Description:
|
Ubuntu Security Notice 615-1 - Alin Rad Pop of Secunia Research discovered that Evolution did not properly validate timezone data when processing iCalendar attachments. If a user disabled the ITip Formatter plugin and viewed a crafted iCalendar attachment, an attacker could cause a denial of service or possibly execute code with user privileges. Note that the ITip Formatter plugin is enabled by default in Ubuntu. Alin Rad Pop of Secunia Research discovered that Evolution did not properly validate the DESCRIPTION field when processing iCalendar attachments. If a user were tricked into accepting a crafted iCalendar attachment and replied to it from the calendar window, an attacker code cause a denial of service or execute code with user privileges. Matej Cepl discovered that Evolution did not properly validate date fields when processing iCalendar attachments. If a user disabled the ITip Formatter plugin and viewed a crafted iCalendar attachment, an attacker could cause a denial of service. Note that the ITip Formatter plugin is enabled by default in Ubuntu.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 19409 | | Related CVE(s): | CVE-2008-1108, CVE-2008-1109 | | Last Modified: | Jun 6 19:07:39 2008 |
| MD5 Checksum: | 2b77957f2a1fd2dfcb53ca8a889967db |
|
| /// File Name: |
MDVSA-2008-116.txt |
Description:
|
Mandriva Linux Security Advisory - An input validation flaw was found in X.org's Security and Record extensions. A malicious authorized client could exploit the issue to cause a denial of service (crash) or possibly execute arbitrary code with root privileges on the X.org server. An input validation flaw was found in X.org's MIT-SHM extension. A client connected to the X.org server could read arbitrary server memory, resulting in the disclosure of sensitive data of other users of the X.org server. Multiple integer overflows were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service (crash) or possibly execute arbitrary code with root privileges on the X.org server. In addition, this update corrects a problem that could cause memory corruption or segfaults in the render code of the vnc server on Mandriva Linux 2008.1
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 19210 | | Related CVE(s): | CVE-2008-1377, CVE-2008-1379, CVE-2008-2360, CVE-2008-2361, CVE-2008-2362 | | Last Modified: | Jun 16 20:06:28 2008 |
| MD5 Checksum: | b517657379a7aa72957fef323eea0c6a |
|
| /// File Name: |
sa30571.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for evolution. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30571/ | | File Size: | 18102 | | Last Modified: | Jun 9 18:41:06 2008 |
| MD5 Checksum: | eabeeeb8bde48da3b1b4e74259dbc291 |
|
| /// File Name: |
dsa-1595-1.txt |
Description:
|
Debian Security Advisory 1595-1 - Lack of validation of the parameters of the SProcSecurityGenerateAuthorization SProcRecordCreateContext functions makes it possible for a specially crafted request to trigger the swapping of bytes outside the parameter of these requests, causing memory corruption. An integer overflow in the validation of the parameters of the ShmPutImage() request makes it possible to trigger the copy of arbitrary server memory to a pixmap that can subsequently be read by the client, to read arbitrary parts of the X server memory space. An integer overflow may occur in the computation of the size of the glyph to be allocated by the AllocateGlyph() function which will cause less memory to be allocated than expected, leading to later heap overflow. An integer overflow may occur in the computation of the size of the glyph to be allocated by the ProcRenderCreateCursor() function which will cause less memory to be allocated than expected, leading later to dereferencing un-mapped memory, causing a crash of the X server. Integer overflows can also occur in the code validating the parameters for the SProcRenderCreateLinearGradient, SProcRenderCreateRadialGradient and SProcRenderCreateConicalGradient functions, leading to memory corruption by swapping bytes outside of the intended request parameters.
| | Homepage: | http://www.debian.org/security | | File Size: | 17212 | | Related CVE(s): | CVE-2008-1377, CVE-2008-1379, CVE-2008-2360, CVE-2008-2361, CVE-2008-2362 | | Last Modified: | Jun 12 21:52:32 2008 |
| MD5 Checksum: | f83e5d1509dce4327dbb2137017aeeb2 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
