Section: .. / 0702-advisories /
| /// File Name: |
USN-416-1.txt |
Description:
|
Ubuntu Security Notice 416-1 - A large quantity of Linux 2.6 kernel vulnerabilities have been discovered and fixed.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 179577 | | Related CVE(s): | CVE-2006-4572, CVE-2006-4814, CVE-2006-5749, CVE-2006-5753, CVE-2006-5755, CVE-2006-5757, CVE-2006-5823, CVE-2006-6053, CVE-2006-6054, CVE-2006-6056, CVE-2006-6057, CVE-2006-6106 | | Last Modified: | Feb 13 01:11:00 2007 |
| MD5 Checksum: | 1d62b1b3baa4783c7afe8a58fc50fbe3 |
|
| /// File Name: |
sa24098.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, some of which have unknown impacts, while others can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges, and by malicious people to bypass certain security restrictions and cause a DoS.
| | Homepage: | http://secunia.com/advisories/24098/ | | File Size: | 164805 | | Last Modified: | Feb 12 19:06:32 2007 |
| MD5 Checksum: | 0e658022e36d6cc13d46f6aa1b862615 |
|
| /// File Name: |
cisco-sa-20070214-fwsm.txt |
Description:
|
Cisco Security Advisory - Multiple vulnerabilities exist in the Cisco Firewall Services Module (FWSM). These vulnerabilities occur in the processing of specific Hypertext Transfer Protocol (HTTP), Secure HTTP (HTTPS), Session Initiation Protocol (SIP), and Simple Network Management Protocol (SNMP) traffic. If verbose logging is enabled for debugging purposes, a vulnerability exists when the FWSM processes packets destined to itself. All of these vulnerabilities may result in a reload of the device. An additional vulnerability is included in this advisory in which the manipulation of access control lists (ACLs) that make use of object groups may corrupt the ACL and create a situation where unwanted traffic may be permitted or desirable traffic may be blocked.
| | Homepage: | http://www.cisco.com/ | | File Size: | 41063 | | Last Modified: | Feb 14 17:28:19 2007 |
| MD5 Checksum: | 81507c5ff4d851323d723cbf6d6fdbd0 |
|
| /// File Name: |
USN-424-1.txt |
Description:
|
Ubuntu Security Notice 424-1 - Multiple buffer overflows have been discovered in various PHP modules. If a PHP application processes untrusted data with functions of the session or zip module, or various string functions, a remote attacker could exploit this to execute arbitrary code with the privileges of the web server. The sapi_header_op() function had a buffer underflow that could be exploited to crash the PHP interpreter. The wddx unserialization handler did not correctly check for some buffer boundaries and had an uninitialized variable. By unserializing untrusted data, this could be exploited to expose memory regions that were not meant to be accessible. Depending on the PHP application this could lead to disclosure of potentially sensitive information. On 64 bit systems (the amd64 and sparc platforms), various print functions and the odbc_result_all() were susceptible to a format string vulnerability. A remote attacker could exploit this to execute arbitrary code with the privileges of the web server. Under certain circumstances it was possible to overwrite superglobal variables (like the HTTP GET/POST arrays) with crafted session data. When unserializing untrusted data on 64-bit platforms the zend_hash_init() function could be forced to enter an infinite loop, consuming CPU resources, for a limited length of time, until the script timeout alarm aborts the script.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 40014 | | Related CVE(s): | CVE-2007-0906, CVE-2007-0907, CVE-2007-0908, CVE-2007-0909, CVE-2007-0910, CVE-2007-0988 | | Last Modified: | Feb 23 19:13:23 2007 |
| MD5 Checksum: | c167c44b2f1ce8a0e863337ae113fd61 |
|
| /// File Name: |
MDKSA-2007-050.txt |
Description:
|
Mandriva Security Advisory - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.10.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 38268 | | Related CVE(s): | CVE-2006-6077, CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0777, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981, CVE-2007-0995, CVE-2007-0996, CVE-2007-1092 | | Last Modified: | Mar 5 23:36:13 2007 |
| MD5 Checksum: | 15b10f6ffa7af181925ec1386a74cb9c |
|
| /// File Name: |
USN-417-1.txt |
Description:
|
Ubuntu Security Notice 417-1 - Jeff Trout discovered that the PostgreSQL server did not sufficiently check data types of SQL function arguments in some cases. An authenticated attacker could exploit this to crash the database server or read out arbitrary locations in the server's memory, which could allow retrieving database content the attacker should not be able to see. Jeff Trout reported that the query planner did not verify that a table was still compatible with a previously made query plan. By using ALTER COLUMN TYPE during query execution, an attacker could exploit this to read out arbitrary locations in the server's memory, which could allow retrieving database content the attacker should not be able to see.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 36221 | | Related CVE(s): | CVE-2007-0555, CVE-2007-0556 | | Last Modified: | Feb 6 00:42:54 2007 |
| MD5 Checksum: | 94784312b719d3d0d5857d0ebe86a78f |
|
| /// File Name: |
sa24217.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for php. This fixes some vulnerabilities and a weakness, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24217/ | | File Size: | 36180 | | Last Modified: | Feb 22 21:32:16 2007 |
| MD5 Checksum: | 6b95bf4b4a924435e6b5f1dd9c537d71 |
|
| /// File Name: |
sa24028.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain knowledge of potentially sensitive information and cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24028/ | | File Size: | 34336 | | Last Modified: | Feb 6 22:53:09 2007 |
| MD5 Checksum: | 05bf6387c9e3beb5d84f3f345500acb1 |
|
| /// File Name: |
cisco-sa-20070214-pix.txt |
Description:
|
Cisco Security Advisory - Multiple vulnerabilities have been found in Cisco PIX 500 Series Security Appliances and the Cisco ASA 5500 Series Adaptive Security Appliances. They affect enhanced inspection of Malformed Hypertext Transfer Protocol (HTTP) traffic, inspection of malformed Session Initiation Protocol (SIP) packets, inspection of a stream of malformed Transmission Control Protocol (TCP) packets, and privilege escalation.
| | Homepage: | http://www.cisco.com/ | | File Size: | 26971 | | Last Modified: | Feb 14 17:18:41 2007 |
| MD5 Checksum: | b821bb1d898f29a1e9d50d79ba46895d |
|
| /// File Name: |
dsa-1257-1.txt |
Description:
|
Debian Security Advisory 1257-1 - Several remote vulnerabilities have been discovered in samba, a free implementation of the SMB/CIFS protocol, which may lead to the execution of arbitrary code or denial of service.
| | Homepage: | http://www.debian.org/security | | File Size: | 24874 | | Related CVE(s): | CVE-2007-0452, CVE-2007-0454 | | Last Modified: | Feb 6 00:44:32 2007 |
| MD5 Checksum: | 716b84149699e209c03b2728d1f47a6b |
|
| /// File Name: |
cisco-sa-20070213-iosips.txt |
Description:
|
Cisco Security Advisory - The Intrusion Prevention System (IPS) feature set of Cisco IOS contains several vulnerabilities. These include a flaw where fragmented IP packets may be used to evade signature inspection and another flaw where IPS signatures utilizing the regular expression feature of the ATOMIC.TCP signature engine may cause a router to crash resulting in a denial of service.
| | Homepage: | http://www.cisco.com/ | | File Size: | 24702 | | Last Modified: | Feb 14 15:05:23 2007 |
| MD5 Checksum: | 3c3c330852f9ad6e7663f928dbe5017b |
|
| /// File Name: |
USN-419-1.txt |
Description:
|
Ubuntu Security Notice 419-1 - A flaw was discovered in Samba's file opening code, which in certain situations could lead to an endless loop, resulting in a denial of service. A format string overflow was discovered in Samba's ACL handling on AFS shares. Remote users with access to an AFS share could create crafted filenames and execute arbitrary code with root privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 24484 | | Related CVE(s): | CVE-2007-0452, CVE=2007-0454 | | Last Modified: | Feb 7 23:47:41 2007 |
| MD5 Checksum: | 6d5b2a73065b8da60a0435c4ca92b866 |
|
| /// File Name: |
sa24067.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24067/ | | File Size: | 23760 | | Last Modified: | Feb 7 23:22:52 2007 |
| MD5 Checksum: | 3d6a346bab201157afe472a982bef385 |
|
| /// File Name: |
USN-418-1.txt |
Description:
|
Ubuntu Security Notice 418-1 - A flaw was discovered in Bind's DNSSEC validation code. Remote attackers could send a specially crafted DNS query which would cause the Bind server to crash, resulting in a denial of service. Only servers configured to use DNSSEC extensions were vulnerable.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 23677 | | Related CVE(s): | CVE-2007-0493, CVE-2007-0494 | | Last Modified: | Feb 6 00:55:06 2007 |
| MD5 Checksum: | 41abac30121fdc265f3ded01646f1ed8 |
|
| /// File Name: |
sa24060.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24060/ | | File Size: | 22974 | | Last Modified: | Feb 6 22:53:09 2007 |
| MD5 Checksum: | ee2c06ce46949d6a94cb52b1a54766fa |
|
| /// File Name: |
sa24048.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for bind. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24048/ | | File Size: | 22962 | | Last Modified: | Feb 6 22:53:09 2007 |
| MD5 Checksum: | 0d4f8adfb97dd086c29e0242966995e8 |
|
| /// File Name: |
cisco-sa-20070131-sip.txt |
Description:
|
Cisco Security Advisory - Cisco devices running IOS which support voice and are not configured for Session Initiated Protocol (SIP) are vulnerable to a crash under yet to be determined conditions, but isolated to traffic destined to Port 5060. SIP is enabled by default on all Advanced images which support voice and do not contain the fix for CSCsb25337. There are no reports of this vulnerability on the devices which are properly configured for SIP processing. Workarounds exist to mitigate the effects of this problem. IOS releases that include voice support after 12.3(14)T, 12.3(8)YC1, 12.3(8)YG and all of 12.4 are affected.
| | Homepage: | http://www.cisco.com/ | | File Size: | 21930 | | Last Modified: | Jan 31 23:52:05 2007 |
| MD5 Checksum: | ef630cb93afce94787df82c139fd9b8b |
|
| /// File Name: |
USN-428-1.txt |
Description:
|
Ubuntu Security Notice 428-1 - Firefox has been patched to fix a slew of miscellaneous vulnerabilities including cross site scripting and SSL flaws.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 21770 | | Related CVE(s): | CVE-2006-6077, CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981, CVE-2007-0995, CVE-2007-0996, CVE-2007-1092 | | Last Modified: | Mar 5 23:30:15 2007 |
| MD5 Checksum: | 3300c941a12a3ac1f996e8b22c1dc121 |
|
| /// File Name: |
dsa-1261-1.txt |
Description:
|
Debian Security Advisory 1261-1 - It was discovered that the PostgreSQL database performs insufficient type checking for SQL function arguments, which might lead to denial of service or information disclosure.
| | Homepage: | http://www.debian.org/security | | File Size: | 21178 | | Related CVE(s): | CVE-2007-0555 | | Last Modified: | Feb 16 23:46:07 2007 |
| MD5 Checksum: | af333b926fbf35132c67504503fb8634 |
|
| /// File Name: |
USN-417-2.txt |
Description:
|
Ubuntu Security Notice 417-2 - USN-417-1 fixed several vulnerabilities in the PostgreSQL server. Unfortunately this update had a regression that caused some valid queries to be aborted with a type error. This update corrects that problem.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 20277 | | Last Modified: | Feb 8 00:21:45 2007 |
| MD5 Checksum: | 753d542683bf017fe602c6c634855545 |
|
| /// File Name: |
sa24158.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for postgresql. This fixes a vulnerability, which can be exploited by malicious users to gain knowledge of potentially sensitive information and cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24158/ | | File Size: | 19904 | | Last Modified: | Feb 16 23:12:18 2007 |
| MD5 Checksum: | edcb7050e3a3bc1600229fca4f3940c4 |
|
| /// File Name: |
cisco-sa-20070221-phone.txt |
Description:
|
Cisco Security Advisory - Certain Cisco Unified IP Conference Station and IP Phone devices contain vulnerabilities which may allow unauthorized users to gain administrative access to vulnerable devices.
| | Homepage: | http://www.cisco.com/ | | File Size: | 18821 | | Last Modified: | Feb 23 19:14:27 2007 |
| MD5 Checksum: | 50aae22a39a331a4524510ead2dc1b4c |
|
| /// File Name: |
cisco-sa-20070221-supplicant.txt |
Description:
|
Cisco Security Advisory - The Cisco Secure Services Client (CSSC) is a software client that enables customers to deploy a single authentication framework using the 802.1X authentication standard across multiple device types to access both wired and wireless networks. A lightweight version of the CSSC client is also a component of the Cisco Trust Agent (CTA) within the Cisco Network Admission Control (NAC) Framework solution. These products are affected by multiple vulnerabilities including privilege escalations and information disclosure.
| | Homepage: | http://www.cisco.com/ | | File Size: | 18702 | | Last Modified: | Feb 23 19:15:19 2007 |
| MD5 Checksum: | b030fad2ee8b30943ebf8516146868fc |
|
| /// File Name: |
cisco-sa-20070228-mpls.txt |
Description:
|
Cisco Security Advisory - Cisco Catalyst 6500 series systems that are running certain versions of Cisco Internetwork Operating System (IOS) are vulnerable to an attack from a Multi Protocol Label Switching (MPLS) packet. Only the systems that are running in Hybrid Mode (Catalyst OS (CatOS) software on the Supervisor Engine and IOS Software on the Multilayer Switch Feature Card (MSFC)) or running with Cisco IOS Software Modularity are affected.
| | Homepage: | http://www.cisco.com/ | | File Size: | 15795 | | Last Modified: | Mar 5 23:26:06 2007 |
| MD5 Checksum: | f4f1ef6216f388ba59e83f34ad1a654a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
