A new Courier update for Gentoo Linux is available
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200403-06
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Multiple remote buffer overflow vulnerabilities in Courier
Date: March 26, 2004
Bugs: #45584
ID: 200403-06
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
=======
Remote buffer overflow vulnerabilites have been found in Courier-IMAP and Courier MTA. These exploits may allow the execution of abritrary code, allowing unauthorized access to a vulnerable system.
An UUDeview update for Gentoo Linux has been released
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200403-05
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
~ http://security.gentoo.org
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
~ Severity: Normal
~ Title: UUDeview MIME Buffer Overflow
~ Date: March 26, 2004
~ Bugs: #44859
~ ID: 200403-05
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
=======
A specially-crafted MIME file (.mim, .uue, .uu, .b64, .bhx, .hqx, and .xxe extensions) may cause UUDeview to crash or execute arbitrary code.
An Apache 2 update for Gentoo Linux has been relased
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200403-04
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Multiple security vulnerabilities in Apache 2
Date: March 22, 2004
Bugs: #45206
ID: 200403-04
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
=======
A memory leak in mod_ssl allows a remote denial of service attack against an SSL-enabled server via plain HTTP requests. Another flaw was found when arbitrary client-supplied strings can be written to the error log, allowing the exploit of certain terminal emulators. A third flaw exists with the mod_disk_cache module.
The OpenSSL update is now available for Gentoo Linux
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200403-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Multiple OpenSSL Vulnerabilities
Date: March 17, 2004
Bugs: #44941
ID: 200403-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
=======
Three vulnerabilities have been found in OpenSSL via a commercial test suite for the TLS protocol developed by Codenomicon Ltd.
Gentoo 2004.0 CDs based on Red Hat's Anaconda installer are available
KDE 3.2.1 is available in the portage tree
Gentoo Linux Security Advisory GLSA 200403-01
~ Severity: Normal
~ Title: Libxml2 URI Parsing Buffer Overflow Vulnerabilities
~ Date: March 06, 2004
~ Bugs: #42735
~ ID: 200403-01
Synopsis
========
A buffer overflow has been discovered in libxml2 versions prior to 2.6.6 which may be exploited by an attacker allowing the execution of arbitrary code.
Gentoo Linux Security Advisory GLSA 200403-02
~ Severity: High
~ Title: Linux kernel do_mremap local privilege escalation
~ vulnerability
~ Date: March 06, 2004
~ Bugs: #42024
~ ID: 200403-02
Synopsis
========
A critical security vulnerability has been found in recent Linux kernels by Paul Starzetz of iSEC Security Research which allows for local privilege escalations.
Thanks Gentoo lover. Gentoo Linux 2004.0 ISO's are finally available
Readme Download CD #1 Download CD #2 (read the readme link from above to download the right 2nd iso for you)
