Linux Compatible - Gentoo (Page 25)

GLSA 200507-28: AMD64 x86 emulation base libraries: Buffer

Gentoo 2529 Published 2005-07-30 15:59 by Philipp Esselbach 0

An AMD64 x86 emulation base libraries security update is available for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-28
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: AMD64 x86 emulation base libraries: Buffer overflow
Date: July 30, 2005
Bugs: #100686
ID: 200507-28

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

The x86 emulation base libraries for AMD64 contain a vulnerable version of zlib which could potentially lead to execution of arbitrary code.

GLSA 200507-27: Ethereal: Multiple vulnerabilities

Gentoo 2529 Published 2005-07-28 04:16 by Philipp Esselbach 0

An Ethereal update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-27
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: Ethereal: Multiple vulnerabilities
Date: July 28, 2005
Bugs: #100316
ID: 200507-27

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination.

GLSA 200507-26: GNU Gadu, CenterICQ, Kadu, EKG, libgadu

Gentoo 2529 Published 2005-07-27 04:23 by Philipp Esselbach 0

A Gadu library security update is available for Debian GNU/Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-26
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: GNU Gadu, CenterICQ, Kadu, EKG, libgadu: Remote code
execution in Gadu library
Date: July 27, 2005
Bugs: #99816, #99890, #99583
ID: 200507-26

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

GNU Gadu, CenterICQ, Kadu, EKG and libgadu are vulnerable to an integer overflow which could potentially lead to the execution of arbitrary code or a Denial of Service.

GLSA 200507-25: Clam AntiVirus: Integer overflows

Gentoo 2529 Published 2005-07-27 04:01 by Philipp Esselbach 0

A Clam AntiVirus update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-25
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: Clam AntiVirus: Integer overflows
Date: July 26, 2005
Bugs: #100178
ID: 200507-25

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Clam AntiVirus is vulnerable to integer overflows when handling several file formats, potentially resulting in the execution of arbitrary code.

GLSA 200507-24: Mozilla Suite: Multiple vulnerabilities

Gentoo 2529 Published 2005-07-26 15:21 by Philipp Esselbach 0

A Mozilla Suite security update is available for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-24
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: Mozilla Suite: Multiple vulnerabilities
Date: July 26, 2005
Bugs: #98846
ID: 200507-24

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Several vulnerabilities in the Mozilla Suite allow attacks ranging from the execution of javascript code with elevated privileges to information leakage.

GLSA 200507-23: Kopete: Vulnerability in included Gadu library

Gentoo 2529 Published 2005-07-25 14:45 by Philipp Esselbach 0

A Koperte update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-23
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: Kopete: Vulnerability in included Gadu library
Date: July 25, 2005
Bugs: #99754
ID: 200507-23

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Kopete is vulnerable to several input validation vulnerabilities which may lead to execution of arbitrary code.

GLSA 200507-21: fetchmail: Buffer Overflow

Gentoo 2529 Published 2005-07-25 14:40 by Philipp Esselbach 0

A fetchmail update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-21
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: fetchmail: Buffer Overflow
Date: July 25, 2005
Bugs: #99865
ID: 200507-21

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

fetchmail is susceptible to a buffer overflow resulting in a Denial of Service or arbitrary code execution.

GLSA 200507-20: Shorewall: Security policy bypass

Gentoo 2529 Published 2005-07-22 05:48 by Philipp Esselbach 0

A Shorewall update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Low
Title: Shorewall: Security policy bypass
Date: July 22, 2005
Bugs: #99398
ID: 200507-20

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

A vulnerability in Shorewall allows clients authenticated by MAC address filtering to bypass all other security rules.

GLSA 200507-19: zlib: Buffer overflow

Gentoo 2529 Published 2005-07-22 05:44 by Philipp Esselbach 0

A zlib security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-19
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: zlib: Buffer overflow
Date: July 22, 2005
Bugs: #99751
ID: 200507-19

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

zlib is vulnerable to a buffer overflow which could potentially lead to execution of arbitrary code.

GLSA 200507-18: MediaWiki: Cross-site scripting vulnerability

Gentoo 2529 Published 2005-07-20 06:44 by Philipp Esselbach 0

A MediaWiki security update is available for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-18
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Low
Title: MediaWiki: Cross-site scripting vulnerability
Date: July 20, 2005
Bugs: #99132
ID: 200507-18

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

MediaWiki is vulnerable to a cross-site scripting attack that could allow arbitrary JavaScript code execution.

GLSA 200507-17: Mozilla Thunderbird

Gentoo 2529 Published 2005-07-18 06:45 by Philipp Esselbach 0

New Mozilla Thunderbird packages are available for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-17
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: Mozilla Thunderbird: Multiple vulnerabilities
Date: July 18, 2005
Bugs: #98855
ID: 200507-17

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Several vulnerabilities in Mozilla Thunderbird allow attacks ranging from execution of script code with elevated privileges to information leak.

GLSA 200507-16: dhcpcd: Denial of Service vulnerability

Gentoo 2529 Published 2005-07-15 17:14 by Philipp Esselbach 0

A dhcpcd update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-16
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: dhcpcd: Denial of Service vulnerability
Date: July 15, 2005
Bugs: #98394
ID: 200507-16

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

A vulnerability in dhcpcd may cause the dhcpcd daemon to crash.

GLSA 200507-15: PHP: Script injection through XML-RPC

Gentoo 2529 Published 2005-07-15 10:36 by Philipp Esselbach 0

A PHP security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-15
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: PHP: Script injection through XML-RPC
Date: July 15, 2005
Bugs: #97655
ID: 200507-15

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

PHP includes an XML-RPC implementation which allows remote attackers to execute arbitrary PHP script commands.

GLSA 200507-14: Mozilla Firefox: Multiple vulnerabilities

Gentoo 2529 Published 2005-07-15 08:03 by Philipp Esselbach 0

A Mozilla Firefox security update is available for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-14
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: Mozilla Firefox: Multiple vulnerabilities
Date: July 15, 2005
Bugs: #95199
ID: 200507-14

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Several vulnerabilities in Mozilla Firefox allow attacks ranging from execution of script code with elevated privileges to information leak.

GLSA 200507-13: pam_ldap and nss_ldap: Plain text authentic

Gentoo 2529 Published 2005-07-14 07:47 by Philipp Esselbach 0

A pam_ldap and nss_ldap security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-13
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: pam_ldap and nss_ldap: Plain text authentication leak
Date: July 14, 2005
Bugs: #96767
ID: 200507-13

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

pam_ldap and nss_ldap fail to restart TLS when following a referral, possibly leading to credentials being sent in plain text.

GLSA 200507-12: Bugzilla: Unauthorized access and information

Gentoo 2529 Published 2005-07-14 06:15 by Philipp Esselbach 0

A Bugzilla security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-12
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Low
Title: Bugzilla: Unauthorized access and information disclosure
Date: July 13, 2005
Bugs: #98348
ID: 200507-12

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Multiple vulnerabilities in Bugzilla could allow remote users to modify bug flags or gain sensitive information.

GLSA 200507-11: MIT Kerberos 5: Multiple vulnerabilities

Gentoo 2529 Published 2005-07-13 04:23 by Philipp Esselbach 0

A MIT Kerberos 5 security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-11
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: MIT Kerberos 5: Multiple vulnerabilities
Date: July 12, 2005
Bugs: #98799
ID: 200507-11

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

MIT Kerberos 5 is vulnerable to a Denial of Service attack and remote execution of arbitrary code, possibly leading to the compromise of the entire Kerberos realm.

GLSA 200507-10: Ruby: Arbitrary command execution

Gentoo 2529 Published 2005-07-11 10:14 by Philipp Esselbach 0

A Ruby ecurity update has been released for Gentoo Linuxx

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-10
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: Ruby: Arbitrary command execution through XML-RPC
Date: July 11, 2005
Bugs: #96784
ID: 200507-10

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

A vulnerability in XMLRPC.iPIMethods allows remote attackers to execute arbitrary commands.

GLSA 200507-09: Adobe Acrobat Reader: Buffer overflow

Gentoo 2529 Published 2005-07-11 09:05 by Philipp Esselbach 0

An Adobe Acrobat security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-09
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Normal
Title: Adobe Acrobat Reader: Buffer overflow vulnerability
Date: July 11, 2005
Bugs: #98101
ID: 200507-09

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

Adobe Acrobat Reader is vulnerable to a buffer overflow that could lead to remote execution of arbitrary code.

GLSA 200507-08: phpGroupWare, eGroupWare: PHP script inject

Gentoo 2529 Published 2005-07-10 18:05 by Philipp Esselbach 0

phpGroupWare, eGroupWare security update has been released for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200507-08
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: High
Title: phpGroupWare, eGroupWare: PHP script injection
vulnerability
Date: July 10, 2005
Bugs: #97460, #97651
ID: 200507-08

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

phpGroupWare and eGroupWare include an XML-RPC implementation which allows remote attackers to execute arbitrary PHP script commands.