Advertisement

Latest News

[ Windows | Linux | Apple ]

· CompatDB Updates 05/22/13
· Removing and Wiping Drivers Guide and more
· Windows Server 2012 Essentials SDK Installer 1.1
· Xbox One hardware and specs: 8-core CPU, 8GB RAM, 500GB hard drive and more
· Tim Cook: US-made Macs will be assembled in Texas
· Microsoft software satisfaction slumps
· Photos of Likely 802.11ac 'Gigabit Wi-Fi' Card From Next-Generation iMac Surface
· Mageia 3 released
· Understanding Email Bounce Messages and more
· How to Prepare for Windows 8 Even Though Its Not Coming to Enterprises

Upcoming News

· Shuttle OMNINAS KD20 @ techPowerUp
· What You Need To Know about the Xbox One @ ThinkComputers.org
· PQI Air Drive External Wireless Storage Device Product and Video Review
· PoINT Storage Manager 4.0 now available
· [CentOS-announce] CEEA-2013:0852 CentOS 5 rgmanager Update
· i-Mego Throne Gold Over Ear Headphones Review @ TestFreaks
· Xbox One: Entertainment Hub First, Gaming Console Second -- But Could It Disrupt TV?
· Star Wars: The Old Republic Gaming Mouse Review @ Madshrimps
· Samsung SSD 840 comparison @ Hardwareoverclock.com
· Leawo Total Media Converter Ultimate @ Benchmark Reviews

Linux Compatibility

· Dell Dimension 9100
· CL-CAM50001 UPC=3700284609322
· DFE 520 TX
· nVidia GeForce4 MX 440
· Gore: Ultimate Soldier
· SMC2802W V2 wi-fi 54Mbps PCI card
· Wireless modem router N300
· Dell P780
· ASUS A7V8X
· BricsCAD for Linux

New Forum Topics

· shutdown link ?
by: estirwent
on: 2013-05-11 17:46
18 replies, 6426 views

· Laptop keyboard drank soda
by: Zenn
on: 2013-04-30 00:27
1 replies, 682 views

· connecting to to internet with ubuntu
by: Zenn
on: 2013-04-30 00:26
2 replies, 4542 views

· Need Linux-compatible PS/2 expansion card
by: Zenn
on: 2013-04-30 00:26
1 replies, 752 views

· irql_not_less_or_equal blue screen
by: Zenn
on: 2013-04-30 00:25
2 replies, 1136 views

News Channels

· Drivers
· Guides
· Reviews
· Security
· Software
· Press Release
· Updates
· Interviews
· Linux
· General
· Debian
· Red Hat
· Slackware
· Gentoo
· Mandriva
· White Box
· SUSE
· GNOME
· KDE
· CentOS
· Ubuntu
· MEPIS
· Android

What's New

Login to see an overview of all news stories since your last visit.

Welcome to our website

To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.

DSA 2611-1: movabletype-opensource security update

Posted by Philipp Esselbach on: 01/22/2013 09:16 AM [ Print | 0 comment(s) ]

A movabletype-opensource security update has been released for Debian GNU/Linux

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2611-1 security@debian.org
http://www.debian.org/security/ Yves-Alexis Perez
January 22, 2013 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : movabletype-opensource
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE ID : CVE-2013-0209
Debian Bug : 697666

An input sanitation problem has been found in upgrade functions of
movabletype-opensource, a web-based publishing platform. Using carefully
crafted requests to the mt-upgrade.cgi file, it would be possible to inject OS
command and SQL queries.

For the stable distribution (squeeze), this problem has been fixed in
version 4.3.8+dfsg-0+squeeze3.

For the testing distribution (wheezy), this problem has been fixed in
version 5.1.2+dfsg-1.

For the unstable distribution (sid), this problem has been fixed in
version 5.1.2+dfsg-1.

We recommend that you upgrade your movabletype-opensource packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

DSA 2611-1: movabletype-opensource security update

All products mentioned are registered trademarks or trademarks of their respective owners.
© 2002-2013 Esselbach Internet Solutions - All Rights Reserved. Terms and privacy policy
Powered by Contentteller® Business Edition