< Back to JetLib.com

jetlib.sec » Tags » usn

« Expand/Collapse

381 items tagged "usn"

Skip to page: 1 2

April 20, 2012
12:53
Ubuntu Security Notice USN-1400-5
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1400-5 - USN-1400-1 fixed vulnerabilities in Firefox. Firefox 11 started using GSettings to access the system proxy settings. If there is a GSettings proxy settings schema, Firefox will consume it. The GSettings proxy settings schema that was shipped by default was unused by other applications and broke Firefox's ability to use system proxy settings. This update removes the unused schema. Various other issues were also addressed.
Tags: proxy firefox gsettings proxy-settings security-notice usn

12:53
Ubuntu Security Notice USN-1400-5
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1400-5 - USN-1400-1 fixed vulnerabilities in Firefox. Firefox 11 started using GSettings to access the system proxy settings. If there is a GSettings proxy settings schema, Firefox will consume it. The GSettings proxy settings schema that was shipped by default was unused by other applications and broke Firefox's ability to use system proxy settings. This update removes the unused schema. Various other issues were also addressed.
Tags: proxy firefox gsettings proxy-settings security-notice usn

12:53
Ubuntu Security Notice USN-1400-5
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1400-5 - USN-1400-1 fixed vulnerabilities in Firefox. Firefox 11 started using GSettings to access the system proxy settings. If there is a GSettings proxy settings schema, Firefox will consume it. The GSettings proxy settings schema that was shipped by default was unused by other applications and broke Firefox's ability to use system proxy settings. This update removes the unused schema. Various other issues were also addressed.
Tags: proxy firefox gsettings proxy-settings security-notice usn

April 02, 2012
18:26
Ubuntu Security Notice USN-1414-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1414-1 - It was discovered that Aptdaemon incorrectly handled installing packages without performing a transaction simulation. An attacker could possibly use this flaw to install altered packages.
Tags: ubuntu notice security security-notice attacker usn

18:26
Ubuntu Security Notice USN-1414-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1414-1 - It was discovered that Aptdaemon incorrectly handled installing packages without performing a transaction simulation. An attacker could possibly use this flaw to install altered packages.
Tags: security-notice attacker usn

18:26
Ubuntu Security Notice USN-1414-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1414-1 - It was discovered that Aptdaemon incorrectly handled installing packages without performing a transaction simulation. An attacker could possibly use this flaw to install altered packages.
Tags: ubuntu notice security security-notice attacker usn

March 07, 2012
8:40
Ubuntu Security Notice USN-1391-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1391-1 - A flaw was discovered in the XFS filesystem. If a local user mounts a specially crafted XFS image it could potential execute arbitrary code on the system.
Tags: ubuntu notice security arbitrary-code security-notice usn

8:40
Ubuntu Security Notice USN-1391-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1391-1 - A flaw was discovered in the XFS filesystem. If a local user mounts a specially crafted XFS image it could potential execute arbitrary code on the system.
Tags: ubuntu notice security arbitrary-code security-notice usn

8:40
Ubuntu Security Notice USN-1391-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1391-1 - A flaw was discovered in the XFS filesystem. If a local user mounts a specially crafted XFS image it could potential execute arbitrary code on the system.
Tags: ubuntu notice security arbitrary-code security-notice usn

March 01, 2012
19:55
Ubuntu Security Notice USN-1373-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1373-2 - USN 1373-1 fixed vulnerabilities in OpenJDK 6 in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04 for all architectures except for ARM (armel). This provides the corresponding OpenJDK 6 update for use with the ARM (armel) architecture in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04.
Tags: ubuntu notice security security-notice usn architectures

19:55
Ubuntu Security Notice USN-1373-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1373-2 - USN 1373-1 fixed vulnerabilities in OpenJDK 6 in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04 for all architectures except for ARM (armel). This provides the corresponding OpenJDK 6 update for use with the ARM (armel) architecture in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04.
Tags: ubuntu notice security security-notice usn architectures

19:55
Ubuntu Security Notice USN-1373-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1373-2 - USN 1373-1 fixed vulnerabilities in OpenJDK 6 in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04 for all architectures except for ARM (armel). This provides the corresponding OpenJDK 6 update for use with the ARM (armel) architecture in Ubuntu 10.04 LTS, Ubuntu 10.10 and Ubuntu 11.04.
Tags: ubuntu notice security security-notice usn architectures

February 13, 2012
13:08
Ubuntu Security Notice USN-1358-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1358-2 - USN 1358-1 fixed multiple vulnerabilities in PHP. The fix for CVE-2012-0831 introduced a regression where the state of the magic_quotes_gpc setting was not correctly reflected when calling the ini_get() function. Various other issues were also addressed.
Tags: ubuntu notice security security-notice usn regression

13:08
Ubuntu Security Notice USN-1358-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1358-2 - USN 1358-1 fixed multiple vulnerabilities in PHP. The fix for CVE-2012-0831 introduced a regression where the state of the magic_quotes_gpc setting was not correctly reflected when calling the ini_get() function. Various other issues were also addressed.
Tags: ubuntu notice security security-notice usn regression

13:08
Ubuntu Security Notice USN-1358-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1358-2 - USN 1358-1 fixed multiple vulnerabilities in PHP. The fix for CVE-2012-0831 introduced a regression where the state of the magic_quotes_gpc setting was not correctly reflected when calling the ini_get() function. Various other issues were also addressed.
Tags: ubuntu notice security security-notice usn regression

January 24, 2012
16:00
Ubuntu Security Notice USN-1263-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1263-2 - USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm to fail when using certain algorithms. This update fixes the problem. Various other issues were also addressed.
Tags: ubuntu notice security plaintext-attack security-notice usn

16:00
Ubuntu Security Notice USN-1263-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1263-2 - USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm to fail when using certain algorithms. This update fixes the problem. Various other issues were also addressed.
Tags: ubuntu notice security plaintext-attack security-notice usn

16:00
Ubuntu Security Notice USN-1263-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1263-2 - USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm to fail when using certain algorithms. This update fixes the problem. Various other issues were also addressed.
Tags: ubuntu notice security plaintext-attack security-notice usn

December 07, 2011
19:58
Ubuntu Security Notice USN-1289-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1289-1 - It was discovered that colord incorrectly handled certain SQL queries. A local attacker could exploit this to modify arbitrary sqlite databases. On Ubuntu, colord runs as its own user by default, so standard file permissions would limit which databases could be altered.
Tags: ubuntu notice security security-notice attacker usn

19:58
Ubuntu Security Notice USN-1289-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1289-1 - It was discovered that colord incorrectly handled certain SQL queries. A local attacker could exploit this to modify arbitrary sqlite databases. On Ubuntu, colord runs as its own user by default, so standard file permissions would limit which databases could be altered.
Tags: ubuntu notice security security-notice attacker usn

19:58
Ubuntu Security Notice USN-1289-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1289-1 - It was discovered that colord incorrectly handled certain SQL queries. A local attacker could exploit this to modify arbitrary sqlite databases. On Ubuntu, colord runs as its own user by default, so standard file permissions would limit which databases could be altered.
Tags: ubuntu notice security security-notice attacker usn

November 21, 2011
17:13
Ubuntu Security Notice USN-1275-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1275-1 - Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy.
Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

17:13
Ubuntu Security Notice USN-1275-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1275-1 - Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy.
Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

17:13
Ubuntu Security Notice USN-1275-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1275-1 - Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy.
Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

November 17, 2011
15:30
Ubuntu Security Notice USN-1266-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1266-1 - It was discovered that slapd contained an off-by-one error. An authenticated attacker could potentially exploit this by sending a crafted LDIF entry containing an empty postalAddress.
Tags: ubuntu notice security security-notice attacker usn

15:30
Ubuntu Security Notice USN-1266-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1266-1 - It was discovered that slapd contained an off-by-one error. An authenticated attacker could potentially exploit this by sending a crafted LDIF entry containing an empty postalAddress.
Tags: ubuntu notice security security-notice attacker usn

15:30
Ubuntu Security Notice USN-1266-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1266-1 - It was discovered that slapd contained an off-by-one error. An authenticated attacker could potentially exploit this by sending a crafted LDIF entry containing an empty postalAddress.
Tags: ubuntu notice security security-notice attacker usn

November 14, 2011
21:38
Ubuntu Security Notice USN-1260-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1260-1 - Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy.
Tags: security-notice attacker usn

21:38
Ubuntu Security Notice USN-1260-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1260-1 - Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy.
Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

21:38
Ubuntu Security Notice USN-1260-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1260-1 - Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy.
Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

October 19, 2011
15:52
Ubuntu Security Notice USN-1192-3
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1192-3 - USN-1192-1 provided Firefox 6 as a security upgrade. Unfortunately, this caused a regression in libvoikko which caused Firefox to crash while spell checking words with hyphens. This update corrects the issue.
Tags: ubuntu notice security security-notice usn regression

15:52
Ubuntu Security Notice USN-1192-3
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1192-3 - USN-1192-1 provided Firefox 6 as a security upgrade. Unfortunately, this caused a regression in libvoikko which caused Firefox to crash while spell checking words with hyphens. This update corrects the issue.
Tags: ubuntu notice security security-notice usn regression

15:52
Ubuntu Security Notice USN-1192-3
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1192-3 - USN-1192-1 provided Firefox 6 as a security upgrade. Unfortunately, this caused a regression in libvoikko which caused Firefox to crash while spell checking words with hyphens. This update corrects the issue.
Tags: ubuntu notice security security-notice usn regression

15:50
Ubuntu Security Notice USN-1232-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1232-2 - USN-1232-1 fixed vulnerabilities in the X.Org X server. A regression was found on Ubuntu 10.04 LTS that affected GLX support. This update temporarily disables the fix for CVE-2010-4818 that introduced the regression.
Tags: ubuntu notice security x.org lts security-notice usn

15:50
Ubuntu Security Notice USN-1232-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1232-2 - USN-1232-1 fixed vulnerabilities in the X.Org X server. A regression was found on Ubuntu 10.04 LTS that affected GLX support. This update temporarily disables the fix for CVE-2010-4818 that introduced the regression.
Tags: ubuntu notice security x.org lts security-notice usn

15:50
Ubuntu Security Notice USN-1232-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1232-2 - USN-1232-1 fixed vulnerabilities in the X.Org X server. A regression was found on Ubuntu 10.04 LTS that affected GLX support. This update temporarily disables the fix for CVE-2010-4818 that introduced the regression.
Tags: ubuntu notice security x.org lts security-notice usn

June 29, 2011
23:11
Ubuntu Security Notice USN-1149-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1149-2 - USN-1149-1 fixed vulnerabilities in Firefox. Unfortunately, a regression was introduced that prevented cookies from being stored properly when the hostname was a single character. This update fixes the problem.
Tags: ubuntu notice security security-notice usn regression

23:11
Ubuntu Security Notice USN-1149-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1149-2 - USN-1149-1 fixed vulnerabilities in Firefox. Unfortunately, a regression was introduced that prevented cookies from being stored properly when the hostname was a single character. This update fixes the problem.
Tags: ubuntu notice security security-notice usn regression

June 24, 2011
2:12
Ubuntu Security Notice USN-1157-3
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1157-3 - USN-1157-1 fixed vulnerabilities in Firefox. Unfortunately, this update produced the side effect of pulling in Firefox on some systems that did not have it installed during a dist-upgrade due to changes in the Ubuntu language packs. This update fixes the problem.
Tags: ubuntu notice security security-notice usn vulnerabilities

2:12
Ubuntu Security Notice USN-1157-3
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1157-3 - USN-1157-1 fixed vulnerabilities in Firefox. Unfortunately, this update produced the side effect of pulling in Firefox on some systems that did not have it installed during a dist-upgrade due to changes in the Ubuntu language packs. This update fixes the problem.
Tags: ubuntu notice security security-notice usn vulnerabilities

2:12
Ubuntu Security Notice USN-1157-3
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1157-3 - USN-1157-1 fixed vulnerabilities in Firefox. Unfortunately, this update produced the side effect of pulling in Firefox on some systems that did not have it installed during a dist-upgrade due to changes in the Ubuntu language packs. This update fixes the problem.
Tags: ubuntu notice security security-notice usn vulnerabilities

June 01, 2011
17:29
Ubuntu Security Notice USN-1142-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1142-1 - Henne Vogelsang discovered that under certain PolicyKit configurations, GDM could be made to launch a browser. A local attacker could exploit this to gain access to files with the privileges of the gdm user. PolicyKit is not configured in this manner in Ubuntu by default.
Tags: ubuntu notice security security-notice attacker usn

17:29
Ubuntu Security Notice USN-1142-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1142-1 - Henne Vogelsang discovered that under certain PolicyKit configurations, GDM could be made to launch a browser. A local attacker could exploit this to gain access to files with the privileges of the gdm user. PolicyKit is not configured in this manner in Ubuntu by default.
Tags: ubuntu notice security security-notice attacker usn

17:29
Ubuntu Security Notice USN-1142-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1142-1 - Henne Vogelsang discovered that under certain PolicyKit configurations, GDM could be made to launch a browser. A local attacker could exploit this to gain access to files with the privileges of the gdm user. PolicyKit is not configured in this manner in Ubuntu by default.
Tags: ubuntu notice security security-notice attacker usn

May 16, 2011
15:00
Bugtraq: [USN-1132-1] apturl vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1132-1] apturl vulnerability
Tags: bugtraq vulnerability apturl usn
May 11, 2011
13:00
Bugtraq: [USN-1131-1] Postfix vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1131-1] Postfix vulnerability
Tags: bugtraq postfix vulnerability usn
May 06, 2011
8:01
Bugtraq: [USN-1111-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1111-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn

May 04, 2011
8:44
Ubuntu Security Notice USN-1129-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1129-1 - It was discovered that the Safe.pm Perl module incorrectly handled Safe::reval and Safe::rdo access restrictions. It was discovered that the CGI.pm Perl module incorrectly handled certain MIME boundary strings. It was discovered that the CGI.pm Perl module incorrectly handled newline characters. It was discovered that the lc, lcfirst, uc, and ucfirst functions did not properly apply the taint attribute when processing tainted input.
Tags: perl module safe security-notice taint usn

8:44
Ubuntu Security Notice USN-1129-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1129-1 - It was discovered that the Safe.pm Perl module incorrectly handled Safe::reval and Safe::rdo access restrictions. It was discovered that the CGI.pm Perl module incorrectly handled certain MIME boundary strings. It was discovered that the CGI.pm Perl module incorrectly handled newline characters. It was discovered that the lc, lcfirst, uc, and ucfirst functions did not properly apply the taint attribute when processing tainted input.
Tags: perl module safe security-notice taint usn

8:44
Ubuntu Security Notice USN-1129-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1129-1 - It was discovered that the Safe.pm Perl module incorrectly handled Safe::reval and Safe::rdo access restrictions. It was discovered that the CGI.pm Perl module incorrectly handled certain MIME boundary strings. It was discovered that the CGI.pm Perl module incorrectly handled newline characters. It was discovered that the lc, lcfirst, uc, and ucfirst functions did not properly apply the taint attribute when processing tainted input.
Tags: perl module safe security-notice taint usn

May 03, 2011
12:00
Bugtraq: [USN-1129-1] Perl vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1129-1] Perl vulnerabilities
Tags: bugtraq perl usn
11:00
Bugtraq: [USN-1127-1] usb-creator vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1127-1] usb-creator vulnerability
Tags: bugtraq vulnerability usn

April 30, 2011
9:37
Ubuntu Security Notice USN-1112-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1112-1 - Multiple vulnerabilities have been identified and fixed in Firefox. It was discovered that there was a vulnerability in the memory handling of certain types of content. It was discovered that Firefox incorrectly handled certain JavaScript requests. Ian Beer discovered a vulnerability in the memory handling of a certain types of documents. Various other issues were also addressed.
Tags: ubuntu notice security ian-beer security-notice usn vulnerability

9:37
Ubuntu Security Notice USN-1112-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1112-1 - Multiple vulnerabilities have been identified and fixed in Firefox. It was discovered that there was a vulnerability in the memory handling of certain types of content. It was discovered that Firefox incorrectly handled certain JavaScript requests. Ian Beer discovered a vulnerability in the memory handling of a certain types of documents. Various other issues were also addressed.
Tags: ubuntu notice security ian-beer security-notice usn vulnerability

9:37
Ubuntu Security Notice USN-1112-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1112-1 - Multiple vulnerabilities have been identified and fixed in Firefox. It was discovered that there was a vulnerability in the memory handling of certain types of content. It was discovered that Firefox incorrectly handled certain JavaScript requests. Ian Beer discovered a vulnerability in the memory handling of a certain types of documents. Various other issues were also addressed.
Tags: ubuntu notice security ian-beer security-notice usn vulnerability

April 29, 2011
14:01
Bugtraq: [USN-1126-1] PHP vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1126-1] PHP vulnerabilities
Tags: bugtraq php usn
April 28, 2011
8:00
Bugtraq: [USN-1125-1] PCSC-Lite vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1125-1] PCSC-Lite vulnerability
Tags: bugtraq pcsc-lite vulnerability usn
April 27, 2011
12:01
Bugtraq: [USN-1124-1] rsync vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1124-1] rsync vulnerability
Tags: bugtraq vulnerability rsync usn
April 21, 2011
11:00
Bugtraq: [USN-1120-1] tiff vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1120-1] tiff vulnerability
Tags: bugtraq tiff vulnerability usn
April 20, 2011
9:00
Bugtraq: [USN-1118-1] OpenSLP vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1118-1] OpenSLP vulnerability
Tags: bugtraq vulnerability openslp usn
April 18, 2011
12:00
Bugtraq: [USN-1113-1] Postfix vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1113-1] Postfix vulnerabilities
Tags: bugtraq postfix usn
April 14, 2011
14:00
Bugtraq: [USN-1110-1] KDE-Libs vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1110-1] KDE-Libs vulnerabilities
Tags: bugtraq vulnerabilities kde-libs usn
April 13, 2011
9:00
Bugtraq: [USN-1109-1] GIMP vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1109-1] GIMP vulnerabilities
Tags: bugtraq vulnerabilities gimp usn
April 06, 2011
13:00
Bugtraq: [USN-1106-1] NSS vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1106-1] NSS vulnerabilities
Tags: bugtraq nss usn
13:00
Bugtraq: [USN-1107-1] x11-xserver-utils vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1107-1] x11-xserver-utils vulnerability
Tags: bugtraq vulnerability usn x11
April 04, 2011
14:00
Bugtraq: [USN-1102-1] tiff vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1102-1] tiff vulnerability
Tags: bugtraq tiff vulnerability usn
14:00
Bugtraq: [USN-1103-1] tex-common vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1103-1] tex-common vulnerability
Tags: bugtraq vulnerability usn
14:00
Bugtraq: [USN-1104-1] FFmpeg vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1104-1] FFmpeg vulnerabilities
Tags: bugtraq ffmpeg usn
March 31, 2011
10:00
Bugtraq: [USN-1100-1] OpenLDAP vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1100-1] OpenLDAP vulnerabilities
Tags: bugtraq usn openldap
8:00
Bugtraq: [USN-1099-1] GDM vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1099-1] GDM vulnerability
Tags: bugtraq vulnerability gdm usn
March 25, 2011
9:01
Bugtraq: [USN-1091-1] Firefox and Xulrunner vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1091-1] Firefox and Xulrunner vulnerabilities
Tags: bugtraq firefox xulrunner usn vulnerabilities
March 17, 2011
13:10
Bugtraq: [USN-1079-3] OpenJDK 6 vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1079-3] OpenJDK 6 vulnerabilities
Tags: bugtraq openjdk usn vulnerabilities
March 15, 2011
14:00
Bugtraq: [USN-1088-1] Kerberos vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1088-1] Kerberos vulnerability
Tags: bugtraq vulnerability kerberos usn
7:00
Bugtraq: [USN-1085-2] tiff regression
» ‎ SecurityFocus Vulnerabilities

[USN-1085-2] tiff regression
Tags: bugtraq tiff regression usn
7:00
Bugtraq: [USN-1079-2] OpenJDK 6 vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1079-2] OpenJDK 6 vulnerabilities
Tags: bugtraq openjdk usn vulnerabilities
March 07, 2011
9:00
Bugtraq: [USN-1084-1] avahi vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1084-1] avahi vulnerability
Tags: bugtraq vulnerability avahi usn
9:00
Bugtraq: [USN-1085-1] tiff vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1085-1] tiff vulnerabilities
Tags: bugtraq tiff usn
March 03, 2011
11:00
Bugtraq: [USN-1050-1] Thunderbird vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1050-1] Thunderbird vulnerabilities
Tags: bugtraq vulnerabilities usn
8:00
Bugtraq: [USN-1080-2] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1080-2] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
8:00
Bugtraq: [USN-1083-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1083-1] Linux kernel vulnerabilities
Tags: linux-kernel bugtraq usn
March 02, 2011
11:00
Bugtraq: [USN-1082-1] Pango vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1082-1] Pango vulnerabilities
Tags: bugtraq pango usn
7:01
Bugtraq: [USN-1080-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1080-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
7:00
Bugtraq: [USN-1081-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1081-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
March 01, 2011
8:00
Bugtraq: [USN-1079-1] OpenJDK 6 vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1079-1] OpenJDK 6 vulnerabilities
Tags: bugtraq openjdk usn vulnerabilities
February 28, 2011
12:00
Bugtraq: [USN-1075-1] Samba vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1075-1] Samba vulnerability
Tags: bugtraq vulnerability samba usn
12:00
Bugtraq: [USN-1076-1] ClamAV vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1076-1] ClamAV vulnerability
Tags: bugtraq vulnerability clamav usn
12:00
Bugtraq: [USN-1077-1] FUSE vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1077-1] FUSE vulnerabilities
Tags: bugtraq vulnerabilities fuse usn
8:00
Bugtraq: [USN-1073-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1073-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
8:00
Bugtraq: [USN-1074-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1074-1] Linux kernel vulnerabilities
Tags: linux-kernel bugtraq usn
February 25, 2011
14:00
Bugtraq: [USN-1071-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1071-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
February 23, 2011
12:00
Bugtraq: [USN-1070-1] Bind vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1070-1] Bind vulnerability
Tags: bugtraq bind vulnerability usn
February 22, 2011
13:00
Bugtraq: [USN-1069-1] Mailman vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1069-1] Mailman vulnerabilities
Tags: bugtraq mailman usn
9:00
Bugtraq: [USN-1068-1] Aptdaemon vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1068-1] Aptdaemon vulnerability
Tags: bugtraq aptdaemon vulnerability usn
February 18, 2011
8:00
Bugtraq: [USN-1066-1] Django vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1066-1] Django vulnerabilities
Tags: bugtraq django usn
February 15, 2011
9:00
Bugtraq: [USN-1063-1] QEMU vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1063-1] QEMU vulnerability
Tags: bugtraq vulnerability qemu usn
9:00
Bugtraq: [USN-1062-1] Kerberos vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1062-1] Kerberos vulnerabilities
Tags: bugtraq kerberos usn
February 04, 2011
8:00
Bugtraq: [USN-1058-1] PostgreSQL vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1058-1] PostgreSQL vulnerability
Tags: bugtraq vulnerability postgresql usn
7:00
Bugtraq: [USN-1057-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1057-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
February 02, 2011
9:00
Bugtraq: [USN-1055-1] OpenJDK vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1055-1] OpenJDK vulnerabilities
Tags: bugtraq openjdk usn
8:00
Bugtraq: [USN-1054-1] Linux kernel vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1054-1] Linux kernel vulnerabilities
Tags: bugtraq kernel linux linux-kernel usn
February 01, 2011
9:00
Bugtraq: [USN-1053-1] Subversion vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1053-1] Subversion vulnerabilities
Tags: bugtraq subversion usn

January 27, 2011
19:45
Ubuntu Security Notice USN-1052-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1052-1 - It was discovered that the JNLP SecurityManager in IcedTea for Java OpenJDK in some instances failed to properly apply the intended security policy in its checkPermission method. This could allow an attacker execute code with privileges that should have been prevented.
Tags: ubuntu notice security security-notice attacker usn

19:45
Ubuntu Security Notice USN-1052-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1052-1 - It was discovered that the JNLP SecurityManager in IcedTea for Java OpenJDK in some instances failed to properly apply the intended security policy in its checkPermission method. This could allow an attacker execute code with privileges that should have been prevented.
Tags: ubuntu notice security security-notice attacker usn

19:45
Ubuntu Security Notice USN-1052-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1052-1 - It was discovered that the JNLP SecurityManager in IcedTea for Java OpenJDK in some instances failed to properly apply the intended security policy in its checkPermission method. This could allow an attacker execute code with privileges that should have been prevented.
Tags: ubuntu notice security security-notice attacker usn

12:00
Bugtraq: [USN-1052-1] OpenJDK vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1052-1] OpenJDK vulnerability
Tags: bugtraq vulnerability openjdk usn
9:00
Bugtraq: [USN-1051-1] HPLIP vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1051-1] HPLIP vulnerability
Tags: bugtraq vulnerability hplip usn
January 24, 2011
10:01
Bugtraq: [USN-1047-1] AWStats vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1047-1] AWStats vulnerability
Tags: bugtraq vulnerability awstats usn
10:01
Bugtraq: [USN-1048-1] Tomcat vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1048-1] Tomcat vulnerability
Tags: bugtraq vulnerability tomcat usn
January 20, 2011
12:00
Bugtraq: [USN-1046-1] Sudo vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1046-1] Sudo vulnerability
Tags: bugtraq sudo vulnerability usn
January 19, 2011
13:00
Bugtraq: [USN-1045-1] FUSE vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1045-1] FUSE vulnerability
Tags: bugtraq vulnerability fuse usn
13:00
Bugtraq: [USN-1045-2] util-linux update
» ‎ SecurityFocus Vulnerabilities

[USN-1045-2] util-linux update
Tags: bugtraq usn update linux-update
January 18, 2011
13:00
Bugtraq: [USN-1044-1] D-Bus vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1044-1] D-Bus vulnerability
Tags: bugtraq d-bus vulnerability usn

January 13, 2011
17:17
Ubuntu Security Notice USN-1042-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1042-2 - USN-1042-1 fixed vulnerabilities in PHP5. The fix for CVE-2010-3436 introduced a regression in the open_basedir restriction handling code. This update fixes the problem. We apologize for the inconvenience. It was discovered that attackers might be able to bypass open_basedir() restrictions by passing a specially crafted filename.
Tags: ubuntu notice security basedir security-notice usn

17:17
Ubuntu Security Notice USN-1042-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1042-2 - USN-1042-1 fixed vulnerabilities in PHP5. The fix for CVE-2010-3436 introduced a regression in the open_basedir restriction handling code. This update fixes the problem. We apologize for the inconvenience. It was discovered that attackers might be able to bypass open_basedir() restrictions by passing a specially crafted filename.
Tags: ubuntu notice security basedir security-notice usn

17:17
Ubuntu Security Notice USN-1042-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1042-2 - USN-1042-1 fixed vulnerabilities in PHP5. The fix for CVE-2010-3436 introduced a regression in the open_basedir restriction handling code. This update fixes the problem. We apologize for the inconvenience. It was discovered that attackers might be able to bypass open_basedir() restrictions by passing a specially crafted filename.
Tags: ubuntu notice security basedir security-notice usn

11:00
Bugtraq: [USN-1042-2] PHP5 regression
» ‎ SecurityFocus Vulnerabilities

[USN-1042-2] PHP5 regression
Tags: bugtraq regression php5 usn
January 12, 2011
10:01
Bugtraq: [USN-1009-2] GNU C Library vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1009-2] GNU C Library vulnerability
Tags: vulnerability library gnu gnu-c-library bugtraq usn
10:00
Bugtraq: [USN-1043-1] Little CMS vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1043-1] Little CMS vulnerability
Tags: vulnerability little cms bugtraq usn
January 07, 2011
10:01
Bugtraq: [USN-1038-1] dpkg vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1038-1] dpkg vulnerability
Tags: bugtraq vulnerability dpkg usn
10:00
Bugtraq: [USN-1037-1] ifupdown update
» ‎ SecurityFocus Vulnerabilities

[USN-1037-1] ifupdown update
Tags: bugtraq ifupdown update usn
10:00
Bugtraq: [USN-1039-1] AppArmor update
» ‎ SecurityFocus Vulnerabilities

[USN-1039-1] AppArmor update
Tags: bugtraq apparmor usn
10:00
Bugtraq: [USN-1040-1] Django vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1040-1] Django vulnerabilities
Tags: bugtraq django usn

January 06, 2011
19:34
Ubuntu Security Notice USN-1037-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1037-1 - Under certain circumstances, the DHCP client could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before DHCP client starts.
Tags: ubuntu notice security dhcp-client security-notice usn

19:34
Ubuntu Security Notice USN-1037-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1037-1 - Under certain circumstances, the DHCP client could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before DHCP client starts.
Tags: ubuntu notice security dhcp-client security-notice usn

19:34
Ubuntu Security Notice USN-1037-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1037-1 - Under certain circumstances, the DHCP client could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before DHCP client starts.
Tags: ubuntu notice security dhcp-client security-notice usn

19:33
Ubuntu Security Notice USN-1036-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1036-1 - Under certain circumstances, CUPS could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before CUPS starts.
Tags: ubuntu notice security security-notice usn circumstances

19:33
Ubuntu Security Notice USN-1036-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1036-1 - Under certain circumstances, CUPS could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before CUPS starts.
Tags: ubuntu notice security security-notice usn circumstances

19:33
Ubuntu Security Notice USN-1036-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1036-1 - Under certain circumstances, CUPS could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before CUPS starts.
Tags: ubuntu notice security security-notice usn circumstances

January 05, 2011
10:00
Bugtraq: [USN-1035-1] Evince vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1035-1] Evince vulnerabilities
Tags: bugtraq evince usn

December 14, 2010
17:24
Ubuntu Security Notice USN-1024-2
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1024-2 - USN-1024-1 fixed vulnerabilities in OpenJDK. Some of the additional backported improvements could interfere with the compilation of certain Java software. This update fixes the problem. We apologize for the inconvenience. It was discovered that certain system property information was being leaked, which could allow an attacker to obtain sensitive information.
Tags: ubuntu notice security java-software security-notice usn

17:24
Ubuntu Security Notice USN-1024-2
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1024-2 - USN-1024-1 fixed vulnerabilities in OpenJDK. Some of the additional backported improvements could interfere with the compilation of certain Java software. This update fixes the problem. We apologize for the inconvenience. It was discovered that certain system property information was being leaked, which could allow an attacker to obtain sensitive information.
Tags: ubuntu notice security java-software security-notice usn

17:24
Ubuntu Security Notice USN-1024-2
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1024-2 - USN-1024-1 fixed vulnerabilities in OpenJDK. Some of the additional backported improvements could interfere with the compilation of certain Java software. This update fixes the problem. We apologize for the inconvenience. It was discovered that certain system property information was being leaked, which could allow an attacker to obtain sensitive information.
Tags: ubuntu notice security java-software security-notice usn

December 10, 2010
9:07
Bugtraq: [USN-1031-1] ClamAV vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1031-1] ClamAV vulnerabilities
Tags: bugtraq clamav usn
December 09, 2010
8:00
Bugtraq: [USN-1030-1] Kerberos vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1030-1] Kerberos vulnerabilities
Tags: bugtraq kerberos usn
December 08, 2010
10:00
Bugtraq: [USN-1029-1] OpenSSL vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1029-1] OpenSSL vulnerabilities
Tags: bugtraq openssl usn
9:00
Bugtraq: [USN-1028-1] ImageMagick vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1028-1] ImageMagick vulnerability
Tags: imagemagick bugtraq usn
December 01, 2010
12:00
Bugtraq: [USN-1025-1] Bind vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1025-1] Bind vulnerabilities
Tags: bugtraq vulnerabilities bind bind-vulnerabilities usn

November 30, 2010
20:56
Ubuntu Security Notice USN-1024-1
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1024-1 - It was discovered that certain system property information was being leaked, which could allow an attacker to obtain sensitive information.
Tags: ubuntu notice security security-notice attacker usn

20:56
Ubuntu Security Notice USN-1024-1
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1024-1 - It was discovered that certain system property information was being leaked, which could allow an attacker to obtain sensitive information.
Tags: ubuntu notice security security-notice attacker usn

20:56
Ubuntu Security Notice USN-1024-1
» ‎ Packet Storm Security Misc. Files

Ubuntu Security Notice 1024-1 - It was discovered that certain system property information was being leaked, which could allow an attacker to obtain sensitive information.
Tags: ubuntu notice security security-notice attacker usn

10:00
Bugtraq: [USN-1024-1] OpenJDK vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1024-1] OpenJDK vulnerability
Tags: bugtraq vulnerability openjdk usn
November 25, 2010
9:00
Bugtraq: [USN-1021-1] Apache vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1021-1] Apache vulnerabilities
Tags: bugtraq vulnerabilities apache usn
9:00
Bugtraq: [USN-1022-1] APR-util vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1022-1] APR-util vulnerability
Tags: bugtraq vulnerability apr-util usn
November 12, 2010
9:01
Bugtraq: [USN-1017-1] MySQL vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1017-1] MySQL vulnerabilities
Tags: bugtraq mysql usn

November 10, 2010
18:01
USN-1015-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1015-1 - Christoph Diehl discovered that libvpx did not properly perform bounds checking. If an application using libvpx opened a specially crafted WebM file, an attacker could cause a denial of service or possibly execute code as the user invoking the program.
Tags: txt libvpx usn christoph-diehl denial-of-service security-notice attacker
18:01
USN-1016-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1016-1 - Bui Quang Minh discovered that libxml2 did not properly process XPath namespaces and attributes. If an application using libxml2 opened a specially crafted XML file, an attacker could cause a denial of service or possibly execute code as the user invoking the program.
Tags: txt libxml usn minh denial-of-service quang-minh bui

18:01
USN-1015-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1015-1 - Christoph Diehl discovered that libvpx did not properly perform bounds checking. If an application using libvpx opened a specially crafted WebM file, an attacker could cause a denial of service or possibly execute code as the user invoking the program.
Tags: txt libvpx usn christoph-diehl denial-of-service security-notice attacker
18:01
USN-1016-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1016-1 - Bui Quang Minh discovered that libxml2 did not properly process XPath namespaces and attributes. If an application using libxml2 opened a specially crafted XML file, an attacker could cause a denial of service or possibly execute code as the user invoking the program.
Tags: txt libxml usn minh denial-of-service quang-minh bui

11:01
Bugtraq: [USN-1015-1] libvpx vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1015-1] libvpx vulnerability
Tags: bugtraq vulnerability libvpx usn
November 09, 2010
8:01
Bugtraq: [USN-1008-4] libvirt regression
» ‎ SecurityFocus Vulnerabilities

[USN-1008-4] libvirt regression
Tags: bugtraq regression libvirt usn

November 04, 2010
22:28
USN-1012-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1012-1 - Emmanuel Bouillon discovered that CUPS did not properly handle certain Internet Printing Protocol (IPP) packets. A remote attacker could use this flaw to cause a denial of service or possibly execute arbitrary code. In the default installation in Ubuntu 8.04 LTS and later, attackers would be isolated by the CUPS AppArmor profile.
Tags: ubuntu cups usn emmanuel-bouillon internet-printing-protocol denial-of-service lts

22:01
USN-1012-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1012-1 - Emmanuel Bouillon discovered that CUPS did not properly handle certain Internet Printing Protocol (IPP) packets. A remote attacker could use this flaw to cause a denial of service or possibly execute arbitrary code. In the default installation in Ubuntu 8.04 LTS and later, attackers would be isolated by the CUPS AppArmor profile.
Tags: ubuntu cups usn emmanuel-bouillon internet-printing-protocol denial-of-service lts

13:00
Bugtraq: [USN-1012-1] CUPS vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1012-1] CUPS vulnerability
Tags: bugtraq vulnerability cups usn
13:00
Bugtraq: [USN-1013-1] FreeType vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1013-1] FreeType vulnerabilities
Tags: bugtraq freetype usn
13:00
Bugtraq: [USN-1014-1] Pidgin vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1014-1] Pidgin vulnerabilities
Tags: bugtraq pidgin usn
October 28, 2010
10:00
Bugtraq: [USN-1011-2] Thunderbird vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1011-2] Thunderbird vulnerability
Tags: bugtraq vulnerability thunderbird usn
7:00
Bugtraq: [USN-1011-1] Firefox vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1011-1] Firefox vulnerability
Tags: bugtraq vulnerability firefox firefox-vulnerability usn

1:01
USN-1011-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1011-1 - Morten Krakvik discovered a heap-based buffer overflow in Firefox. If a user were tricked into navigating to a malicious site, an attacker could cause a denial of service or possibly execute arbitrary code as the user invoking the program.
Tags: txt user usn morten-krakvik based-buffer-overflow denial-of-service arbitrary-code

1:00
USN-1011-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1011-1 - Morten Krakvik discovered a heap-based buffer overflow in Firefox. If a user were tricked into navigating to a malicious site, an attacker could cause a denial of service or possibly execute arbitrary code as the user invoking the program.
Tags: txt user usn morten-krakvik based-buffer-overflow denial-of-service arbitrary-code

October 25, 2010
13:01
Bugtraq: [USN-959-2] PAM vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-959-2] PAM vulnerability
Tags: bugtraq vulnerability usn pam
7:01
Bugtraq: [USN-1009-1] GNU C Library vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1009-1] GNU C Library vulnerabilities
Tags: bugtraq library gnu gnu-c-library usn
7:00
Bugtraq: [USN-1008-3] libvirt update
» ‎ SecurityFocus Vulnerabilities

[USN-1008-3] libvirt update
Tags: bugtraq libvirt update usn
October 22, 2010
8:01
Bugtraq: [USN-1008-1] libvirt vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1008-1] libvirt vulnerabilities
Tags: bugtraq libvirt usn
8:01
Bugtraq: [USN-1008-2] Virtinst update
» ‎ SecurityFocus Vulnerabilities

[USN-1008-2] Virtinst update
Tags: bugtraq virtinst update usn

October 20, 2010
15:01
USN-1007-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1007-1 - Richard Moore discovered that NSS would sometimes incorrectly match an SSL certificate which had a Common Name that used a wildcard followed by a partial IP address. While it is very unlikely that a Certificate Authority would issue such a certificate, if an attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. Nelson Bolyard discovered a weakness in the Diffie-Hellman Ephemeral mode (DHE) key exchange implementation which allowed servers to use a too small key length.
Tags: txt certificate usn nelson-bolyard richard-moore exchange-implementation diffie-hellman partial-ip-address

15:00
USN-1007-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1007-1 - Richard Moore discovered that NSS would sometimes incorrectly match an SSL certificate which had a Common Name that used a wildcard followed by a partial IP address. While it is very unlikely that a Certificate Authority would issue such a certificate, if an attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. Nelson Bolyard discovered a weakness in the Diffie-Hellman Ephemeral mode (DHE) key exchange implementation which allowed servers to use a too small key length.
Tags: txt certificate usn nelson-bolyard richard-moore exchange-implementation diffie-hellman partial-ip-address
October 19, 2010
18:02
USN-1006-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1006-1 - A large number of security issues were discovered in the WebKit browser and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Please consult the bug listed at the top of this advisory to get the exact list of CVE numbers fixed for each release.
Tags: browser security usn arbitrary-code-execution web-browser-security malicious-website

14:01
Bugtraq: [USN-1005-1] poppler vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1005-1] poppler vulnerabilities
Tags: bugtraq poppler usn
14:00
Bugtraq: [USN-1006-1] WebKit vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1006-1] WebKit vulnerabilities
Tags: bugtraq vulnerabilities webkit usn

October 13, 2010
21:01
USN-1004-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1004-1 - It was discovered that Django did not properly sanitize the cookie value when applying CSRF protections resulting in a cross-site scripting (XSS) vulnerability. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.
Tags: txt server usn cookie-value server-request confidential-data

21:00
USN-1004-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1004-1 - It was discovered that Django did not properly sanitize the cookie value when applying CSRF protections resulting in a cross-site scripting (XSS) vulnerability. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.
Tags: txt server usn cookie-value server-request confidential-data

October 07, 2010
18:01
USN-1002-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1002-1 - It was discovered that PostgreSQL did not properly enforce permissions within sessions when PL/Perl and PL/Tcl functions or operators were redefined. A remote authenticated attacker could exploit this to execute arbitrary code with permissions of a different user, possibly leading to privilege escalation.
Tags: txt ubuntu usn arbitrary-code escalation security-notice

18:00
USN-1002-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1002-1 - It was discovered that PostgreSQL did not properly enforce permissions within sessions when PL/Perl and PL/Tcl functions or operators were redefined. A remote authenticated attacker could exploit this to execute arbitrary code with permissions of a different user, possibly leading to privilege escalation.
Tags: txt ubuntu usn arbitrary-code escalation security-notice

12:00
Bugtraq: [USN-1002-2] PostgreSQL vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1002-2] PostgreSQL vulnerability
Tags: bugtraq vulnerability postgresql usn
10:00
Bugtraq: [USN-1002-1] PostgreSQL vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-1002-1] PostgreSQL vulnerability
Tags: bugtraq vulnerability postgresql usn
10:00
Bugtraq: [USN-1003-1] OpenSSL vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-1003-1] OpenSSL vulnerabilities
Tags: bugtraq openssl usn

October 06, 2010
15:02
USN-1001-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 1001-1 - The cluster logical volume manager daemon (clvmd) in LVM2 did not correctly validate credentials. A local user could use this flaw to manipulate logical volumes without root privileges and cause a denial of service in the cluster.
Tags: txt cluster usn logical-volume-manager root-privileges denial-of-service

15:01
USN-1001-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 1001-1 - The cluster logical volume manager daemon (clvmd) in LVM2 did not correctly validate credentials. A local user could use this flaw to manipulate logical volumes without root privileges and cause a denial of service in the cluster.
Tags: txt cluster usn logical-volume-manager root-privileges denial-of-service

October 05, 2010
17:14
USN-999-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 999-1 - Mike Roszkowski discovered that the Kerberos KDC did not correctly validate the contents of certain messages. If an authenticated remote attacker sent specially crafted TGS requests, the KDC service would crash, leading to a denial of service.
Tags: kdc service usn mike-roszkowski kdc-service denial-of-service security-notice
September 29, 2010
14:01
USN-994-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 994-1 - It was discovered that libHX incorrectly handled certain parameters to the HX_split function. An attacker could use this flaw to cause a denial of service or possibly execute arbitrary code with the privileges of the user. The default compiler options for affected releases should reduce the vulnerability to a denial of service.
Tags: denial service usn default-compiler denial-of-service split-function
14:01
USN-996-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 996-1 - It was discovered that Mako incorrectly filtered single-quote characters when performing html filtering. An attacker could utilize this to perform cross-site scripting attacks.
Tags: txt ubuntu usn single-quote security-notice attacker

14:00
USN-993-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 993-1 - Stefan Cornelius discovered that libgdiplus incorrectly handled certain image files. If a user or automated system were tricked into opening a crafted image file, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.
Tags: user image usn stefan-cornelius denial-of-service automated-system arbitrary-code
14:00
USN-994-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 994-1 - It was discovered that libHX incorrectly handled certain parameters to the HX_split function. An attacker could use this flaw to cause a denial of service or possibly execute arbitrary code with the privileges of the user. The default compiler options for affected releases should reduce the vulnerability to a denial of service.
Tags: denial service usn default-compiler denial-of-service split-function
14:00
USN-996-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 996-1 - It was discovered that Mako incorrectly filtered single-quote characters when performing html filtering. An attacker could utilize this to perform cross-site scripting attacks.
Tags: txt ubuntu usn single-quote security-notice attacker

14:00
Bugtraq: [USN-992-1] Avahi vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-992-1] Avahi vulnerabilities
Tags: bugtraq avahi usn
14:00
Bugtraq: [USN-994-1] libHX vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-994-1] libHX vulnerability
Tags: bugtraq libhx vulnerability usn
14:00
Bugtraq: [USN-995-1] libMikMod vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-995-1] libMikMod vulnerabilities
Tags: bugtraq libmikmod usn
14:00
Bugtraq: [USN-996-1] Mako vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-996-1] Mako vulnerability
Tags: bugtraq vulnerability mako usn

September 23, 2010
20:01
USN-991-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 991-1 - Jima discovered that quassel would respond to a single privmsg containing multiple CTCP requests with multiple NOTICEs, possibly resulting in a denial of service against the IRC connection.
Tags: txt ubuntu usn ctcp-requests irc-connection denial-of-service

20:00
USN-991-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 991-1 - Jima discovered that quassel would respond to a single privmsg containing multiple CTCP requests with multiple NOTICEs, possibly resulting in a denial of service against the IRC connection.
Tags: txt ubuntu usn ctcp-requests irc-connection denial-of-service

September 21, 2010
10:00
Bugtraq: [USN-990-1] OpenSSL vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-990-1] OpenSSL vulnerability
Tags: bugtraq vulnerability openssl usn
10:00
Bugtraq: [USN-990-2] Apache vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-990-2] Apache vulnerability
Tags: bugtraq vulnerability apache usn

September 20, 2010
23:01
USN-989-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 989-1 - Auke van Slooten discovered that PHP incorrectly handled certain xmlrpc requests. It was discovered that the pseudorandom number generator in PHP did not provide the expected entropy. It was discovered that PHP did not properly handle directory pathnames that lacked a trailing slash character. Grzegorz Stachowiak discovered that the PHP session extension did not properly handle semicolon characters. Stefan Esser discovered that PHP incorrectly decoded remote HTTP chunked encoding streams. Various other issues were also addressed.
Tags: txt php usn stefan-esser grzegorz-stachowiak pseudorandom-number-generator directory-pathnames php-session

23:00
USN-989-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 989-1 - Auke van Slooten discovered that PHP incorrectly handled certain xmlrpc requests. It was discovered that the pseudorandom number generator in PHP did not provide the expected entropy. It was discovered that PHP did not properly handle directory pathnames that lacked a trailing slash character. Grzegorz Stachowiak discovered that the PHP session extension did not properly handle semicolon characters. Stefan Esser discovered that PHP incorrectly decoded remote HTTP chunked encoding streams. Various other issues were also addressed.
Tags: txt php usn stefan-esser grzegorz-stachowiak pseudorandom-number-generator directory-pathnames php-session

19:01
usn985-1local.txt
» ‎ Packet Storm Security Recent Files

Local proof of concept exploit that demonstrates a vulnerability with mountall where a udev rule is created with world-writable permissions.
Tags: usn txt proof proof-of-concept world-writable udev
19:01
USN-986-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 986-1 - An integer overflow was discovered in bzip2. If a user or automated system were tricked into decompressing a crafted bz2 file, an attacker could cause bzip2 or any application linked against libbz2 to crash or possibly execute code as the user running the program.
Tags: user bzip usn integer-overflow bzip2 automated-system

19:00
usn985-1local.txt
» ‎ Packet Storm Security Exploits

Local proof of concept exploit that demonstrates a vulnerability with mountall where a udev rule is created with world-writable permissions.
Tags: usn txt proof proof-of-concept world-writable udev

19:00
USN-986-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 986-1 - An integer overflow was discovered in bzip2. If a user or automated system were tricked into decompressing a crafted bz2 file, an attacker could cause bzip2 or any application linked against libbz2 to crash or possibly execute code as the user running the program.
Tags: user bzip usn integer-overflow bzip2 automated-system

15:00
Bugtraq: [USN-989-1] PHP vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-989-1] PHP vulnerabilities
Tags: bugtraq php usn
8:01
Bugtraq: [USN-986-1] bzip2 vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-986-1] bzip2 vulnerability
Tags: bugtraq vulnerability bzip bzip2 usn
8:01
Bugtraq: [USN-986-2] ClamAV vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-986-2] ClamAV vulnerability
Tags: bugtraq vulnerability clamav usn
September 17, 2010
10:01
Bugtraq: [USN-978-2] Thunderbird regression
» ‎ SecurityFocus Vulnerabilities

[USN-978-2] Thunderbird regression
Tags: bugtraq regression thunderbird usn
9:00
Bugtraq: [USN-975-2] Firefox and Xulrunner regression
» ‎ SecurityFocus Vulnerabilities

[USN-975-2] Firefox and Xulrunner regression
Tags: regression firefox xulrunner bugtraq usn
September 14, 2010
9:00
Bugtraq: [USN-987-1] Samba vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-987-1] Samba vulnerability
Tags: bugtraq vulnerability samba usn
September 09, 2010
8:00
Bugtraq: [USN-975-1] Firefox and Xulrunner vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-975-1] Firefox and Xulrunner vulnerabilities
Tags: bugtraq firefox xulrunner usn vulnerabilities

September 08, 2010
21:01
USN-985-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 985-1 - Alasdair MacGregor discovered that mountall created a udev rule file with world-writable permissions. A local attacker could exploit this under certain conditions to cause udev to execute arbitrary commands as the root user.
Tags: txt udev usn alasdair-macgregor world-writable root-user arbitrary-commands

21:01
USN-985-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 985-1 - Alasdair MacGregor discovered that mountall created a udev rule file with world-writable permissions. A local attacker could exploit this under certain conditions to cause udev to execute arbitrary commands as the root user.
Tags: txt udev usn alasdair-macgregor world-writable root-user arbitrary-commands

15:00
Bugtraq: [USN-985-1] mountall vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-985-1] mountall vulnerability
Tags: bugtraq vulnerability mountall usn
7:00
Bugtraq: [USN-984-1] LFTP vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-984-1] LFTP vulnerability
Tags: bugtraq vulnerability lftp usn

September 07, 2010
23:02
USN-984-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 984-1 - It was discovered that LFTP incorrectly filtered filenames suggested by Content-Disposition headers. If a user or automated system were tricked into downloading a file from a malicious site, a remote attacker could create the file with an arbitrary name, such as a dotfile, and possibly run arbitrary code.
Tags: txt file usn arbitrary-name content-disposition automated-system

23:01
USN-984-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 984-1 - It was discovered that LFTP incorrectly filtered filenames suggested by Content-Disposition headers. If a user or automated system were tricked into downloading a file from a malicious site, a remote attacker could create the file with an arbitrary name, such as a dotfile, and possibly run arbitrary code.
Tags: txt file usn arbitrary-name content-disposition automated-system

9:00
Bugtraq: [USN-983-1] Sudo vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-983-1] Sudo vulnerability
Tags: bugtraq sudo vulnerability usn

September 02, 2010
22:02
USN-982-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 982-1 - It was discovered that Wget would use filenames provided by the server when following 3xx redirects. If a user or automated system were tricked into downloading a file from a malicious site, a remote attacker could create the file with an arbitrary name (e.g. .wgetrc), and possibly run arbitrary code.
Tags: txt file usn arbitrary-name automated-system arbitrary-code

22:01
USN-982-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 982-1 - It was discovered that Wget would use filenames provided by the server when following 3xx redirects. If a user or automated system were tricked into downloading a file from a malicious site, a remote attacker could create the file with an arbitrary name (e.g. .wgetrc), and possibly run arbitrary code.
Tags: txt file usn arbitrary-name automated-system arbitrary-code

9:02
Bugtraq: [USN-982-1] Wget vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-982-1] Wget vulnerability
Tags: bugtraq wget vulnerability usn

August 31, 2010
12:01
USN-980-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 980-1 - Julius Plenz discovered that bogofilter incorrectly handled certain malformed encodings. By sending a specially crafted email, a remote attacker could exploit this and cause bogofilter to crash, resulting in a denial of service.
Tags: txt bogofilter usn julius-plenz denial-of-service security-notice attacker
12:01
USN-981-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 981-1 - It was discovered that libwww-perl incorrectly filtered filenames suggested by Content-Disposition headers. If a user were tricked into downloading a file from a malicious site, a remote attacker could overwrite hidden files in the user's directory.
Tags: txt user usn content-disposition security-notice attacker

12:00
USN-980-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 980-1 - Julius Plenz discovered that bogofilter incorrectly handled certain malformed encodings. By sending a specially crafted email, a remote attacker could exploit this and cause bogofilter to crash, resulting in a denial of service.
Tags: txt bogofilter usn julius-plenz denial-of-service security-notice attacker
12:00
USN-981-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 981-1 - It was discovered that libwww-perl incorrectly filtered filenames suggested by Content-Disposition headers. If a user were tricked into downloading a file from a malicious site, a remote attacker could overwrite hidden files in the user's directory.
Tags: txt user usn content-disposition security-notice attacker

8:00
Bugtraq: [USN-980-1] bogofilter vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-980-1] bogofilter vulnerability
Tags: bugtraq bogofilter vulnerability usn
8:00
Bugtraq: [USN-981-1] libwww-perl vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-981-1] libwww-perl vulnerability
Tags: bugtraq vulnerability usn
August 27, 2010
9:00
Bugtraq: [USN-974-2] Linux kernel regression
» ‎ SecurityFocus Vulnerabilities

[USN-974-2] Linux kernel regression
Tags: bugtraq kernel regression kernel-regression usn
9:00
Bugtraq: [USN-979-1] okular vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-979-1] okular vulnerability
Tags: bugtraq usn vulnerability

August 26, 2010
21:00
USN-979-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 979-1 - Stefan Cornelius of Secunia Research discovered a boundary error during RLE decompression in the TranscribePalmImageToJPEG() function in generators/plucker/inplug/image.cpp of okular when processing images embedded in PDB files, which can be exploited to cause a heap-based buffer overflow.
Tags: txt ubuntu usn stefan-cornelius based-buffer-overflow pdb-files secunia

21:00
USN-979-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 979-1 - Stefan Cornelius of Secunia Research discovered a boundary error during RLE decompression in the TranscribePalmImageToJPEG() function in generators/plucker/inplug/image.cpp of okular when processing images embedded in PDB files, which can be exploited to cause a heap-based buffer overflow.
Tags: txt ubuntu usn stefan-cornelius based-buffer-overflow pdb-files secunia

August 25, 2010
23:38
USN-977-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 977-1 - It was discovered that MoinMoin did not properly sanitize its input, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.
Tags: txt server usn server-request confidential-data security-notice

23:38
USN-976-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 976-1 - It was discovered that Tomcat incorrectly handled invalid Transfer-Encoding headers. A remote attacker could send specially crafted requests containing invalid headers to the server and cause a denial of service, or possibly obtain sensitive information from other requests.
Tags: txt ubuntu usn denial-of-service security-notice attacker
23:38
USN-977-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 977-1 - It was discovered that MoinMoin did not properly sanitize its input, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.
Tags: txt server usn server-request confidential-data security-notice

August 17, 2010
14:01
Bugtraq: [USN-972-1] FreeType vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-972-1] FreeType vulnerabilities
Tags: bugtraq freetype usn
14:00
Bugtraq: [USN-973-1] KOffice vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-973-1] KOffice vulnerabilities
Tags: bugtraq koffice usn

August 16, 2010
22:01
USN-971-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 971-1 - It was discovered that the IcedTea plugin did not correctly check certain accesses. If a user or automated system were tricked into running a specially crafted Java applet, a remote attacker could read arbitrary files with user privileges, leading to a loss of privacy.
Tags: txt user usn arbitrary-files automated-system java-applet

22:00
USN-971-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 971-1 - It was discovered that the IcedTea plugin did not correctly check certain accesses. If a user or automated system were tricked into running a specially crafted Java applet, a remote attacker could read arbitrary files with user privileges, leading to a loss of privacy.
Tags: txt user usn arbitrary-files automated-system java-applet

14:00
Bugtraq: [USN-971-1] OpenJDK vulnerabilities
» ‎ SecurityFocus Vulnerabilities

[USN-971-1] OpenJDK vulnerabilities
Tags: bugtraq openjdk usn

August 12, 2010
20:00
USN-970-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 970-1 - It was discovered that GPGSM in GnuPG2 did not correctly handle certificates with a large number of Subject Alternate Names. If a user or automated system were tricked into processing a specially crafted certificate, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program.
Tags: txt user usn subject-alternate-names denial-of-service automated-system

7:00
Bugtraq: [USN-970-1] GnuPG2 vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-970-1] GnuPG2 vulnerability
Tags: bugtraq vulnerability gnupg usn

0:01
USN-967-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 967-1 - Ludwig Nussel discovered w3m does not properly handle SSL/TLS certificates with NULL characters in the certificate name. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.
Tags: txt ubuntu usn ludwig-nussel nussel null-characters encrypted-communications

0:00
USN-967-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 967-1 - Ludwig Nussel discovered w3m does not properly handle SSL/TLS certificates with NULL characters in the certificate name. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.
Tags: txt ubuntu usn ludwig-nussel nussel null-characters encrypted-communications

August 06, 2010
13:01
USN-969-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 969-1 - It was discovered that the PC/SC service did not correctly handle malformed messages. A local attacker could exploit this to execute arbitrary code with root privileges.
Tags: txt ubuntu usn root-privileges arbitrary-code security-notice

13:00
USN-969-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 969-1 - It was discovered that the PC/SC service did not correctly handle malformed messages. A local attacker could exploit this to execute arbitrary code with root privileges.
Tags: txt ubuntu usn root-privileges arbitrary-code security-notice

12:01
USN-968-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 968-1 - It was discovered that the Ubuntu image shipped on some Dell Latitude 2110 systems was accidentally configured to allow unauthenticated package installations. A remote attacker intercepting network communications or a malicious archive mirror server could exploit this to trick the user into installing unsigned packages, resulting in arbitrary code execution with root privileges.
Tags: txt ubuntu usn dell-latitude arbitrary-code-execution archive-mirror

12:00
USN-968-1.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 968-1 - It was discovered that the Ubuntu image shipped on some Dell Latitude 2110 systems was accidentally configured to allow unauthenticated package installations. A remote attacker intercepting network communications or a malicious archive mirror server could exploit this to trick the user into installing unsigned packages, resulting in arbitrary code execution with root privileges.
Tags: txt ubuntu usn dell-latitude arbitrary-code-execution archive-mirror

8:00
Bugtraq: [USN-969-1] PCSC-Lite vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-969-1] PCSC-Lite vulnerability
Tags: bugtraq pcsc-lite vulnerability usn
August 05, 2010
17:00
Bugtraq: [USN-968-1] Dell Latitude 2110 vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-968-1] Dell Latitude 2110 vulnerability
Tags: bugtraq vulnerability usn dell-latitude
August 03, 2010
12:00
Bugtraq: [USN-964-2] Likewise Open regression
» ‎ SecurityFocus Vulnerabilities

[USN-964-2] Likewise Open regression
Tags: bugtraq regression open usn
July 27, 2010
8:00
Bugtraq: [USN-930-6] Firefox and Xulrunner vulnerability
» ‎ SecurityFocus Vulnerabilities

[USN-930-6] Firefox and Xulrunner vulnerability
Tags: vulnerability firefox xulrunner bugtraq usn

July 26, 2010
20:34
USN-957-2.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 957-2 - USN-957-1 fixed vulnerabilities in Firefox and Xulrunner. Daniel Holbert discovered that the fix for CVE-2010-1214 introduced a regression which did not properly initialize a plugin pointer. If a user were tricked into viewing a malicious site, a remote attacker could use this to crash the browser or run arbitrary code as the user invoking the program. This update fixes the problem.
Tags: txt user ubuntu daniel-holbert arbitrary-code security-notice usn
20:34
USN-930-6.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 930-6 - USN-957-1 fixed vulnerabilities in Firefox and Xulrunner. Daniel Holbert discovered that the fix for CVE-2010-1214 introduced a regression which did not properly initialize a plugin pointer. If a user were tricked into viewing a malicious site, a remote attacker could use this to crash the browser or run arbitrary code as the user invoking the program. This update fixes the problem.
Tags: txt user ubuntu daniel-holbert arbitrary-code security-notice usn
20:34
USN-964-1.txt
» ‎ Packet Storm Security Recent Files

Ubuntu Security Notice 964-1 - Matt Weatherford discovered that Likewise Open did not correctly check password expiration for the local-provider account. A local attacker could exploit this to log into a system they would otherwise not have access to.
Tags: txt ubuntu usn matt-weatherford provider-account weatherford security-notice

20:33
USN-957-2.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 957-2 - USN-957-1 fixed vulnerabilities in Firefox and Xulrunner. Daniel Holbert discovered that the fix for CVE-2010-1214 introduced a regression which did not properly initialize a plugin pointer. If a user were tricked into viewing a malicious site, a remote attacker could use this to crash the browser or run arbitrary code as the user invoking the program. This update fixes the problem.
Tags: txt user ubuntu daniel-holbert arbitrary-code security-notice usn
20:33
USN-930-6.txt
» ‎ Packet Storm Security Advisories

Ubuntu Security Notice 930-6 - USN-957-1 fixed vulnerabilities in Firefox and Xulrunner. Daniel Holbert discovered that the fix for CVE-2010-1214 introduced a regression which did not properly initialize a plugin pointer. If a user were tricked into viewing a malicious site, a remote attacker could use this to crash the browser or run arbitrary code as the user invoking the program. This update fixes the problem.
Tags: txt user ubuntu daniel-holbert arbitrary-code security-notice usn

Skip to page: 1 2

jetlib.sec » Tags » usn

Feeds

381 items tagged "usn"

Tags: proxy firefox gsettings proxy-settings security-notice usn

Tags: proxy firefox gsettings proxy-settings security-notice usn

Tags: proxy firefox gsettings proxy-settings security-notice usn

Tags: ubuntu notice security security-notice attacker usn

Tags: security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security arbitrary-code security-notice usn

Tags: ubuntu notice security arbitrary-code security-notice usn

Tags: ubuntu notice security arbitrary-code security-notice usn

Tags: ubuntu notice security security-notice usn architectures

Tags: ubuntu notice security security-notice usn architectures

Tags: ubuntu notice security security-notice usn architectures

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security plaintext-attack security-notice usn

Tags: ubuntu notice security plaintext-attack security-notice usn

Tags: ubuntu notice security plaintext-attack security-notice usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: security-notice attacker usn

Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

Tags: ubuntu notice security vasiliy-kulikov security-notice attacker usn

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security x.org lts security-notice usn

Tags: ubuntu notice security x.org lts security-notice usn

Tags: ubuntu notice security x.org lts security-notice usn

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security security-notice usn regression

Tags: ubuntu notice security security-notice usn vulnerabilities

Tags: ubuntu notice security security-notice usn vulnerabilities

Tags: ubuntu notice security security-notice usn vulnerabilities

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: ubuntu notice security security-notice attacker usn

Tags: bugtraq vulnerability apturl usn

Tags: bugtraq postfix vulnerability usn

Tags: bugtraq kernel linux linux-kernel usn

Tags: perl module safe security-notice taint usn

Tags: perl module safe security-notice taint usn

Tags: perl module safe security-notice taint usn

Tags: bugtraq perl usn

Tags: bugtraq vulnerability usn

Tags: ubuntu notice security ian-beer security-notice usn vulnerability

Tags: ubuntu notice security ian-beer security-notice usn vulnerability

Tags: ubuntu notice security ian-beer security-notice usn vulnerability

Tags: bugtraq php usn

Tags: bugtraq pcsc-lite vulnerability usn

Tags: bugtraq vulnerability rsync usn

Tags: bugtraq tiff vulnerability usn

Tags: bugtraq vulnerability openslp usn

Tags: bugtraq postfix usn

Tags: bugtraq vulnerabilities kde-libs usn

Tags: bugtraq vulnerabilities gimp usn

Tags: bugtraq nss usn

Tags: bugtraq vulnerability usn x11

Tags: bugtraq tiff vulnerability usn

Tags: bugtraq vulnerability usn

Tags: bugtraq ffmpeg usn

Tags: bugtraq usn openldap

Tags: bugtraq vulnerability gdm usn

Tags: bugtraq firefox xulrunner usn vulnerabilities

Tags: bugtraq openjdk usn vulnerabilities

Tags: bugtraq vulnerability kerberos usn