The Mandriva Security Team published a new security update for Mandriva Linux. Here the announcement:
A security announcement from Mandriva:
_______________________________________________________________________
Mandriva Linux Security Advisory MDKSA-2006:021
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mozilla-thunderbird
Date : January 25, 2006
Affected: 2006.0
_______________________________________________________________________
Problem Description:
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-complicit attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment.
The updated packages have been patched to correct this problem.
_______________________________________________________________________
Mandriva Linux Security Advisory MDKSA-2006:021
http://www.mandriva.com/security/
_______________________________________________________________________
Package : mozilla-thunderbird
Date : January 25, 2006
Affected: 2006.0
_______________________________________________________________________
Problem Description:
GUI display truncation vulnerability in Mozilla Thunderbird 1.0.2, 1.0.6, and 1.0.7 allows user-complicit attackers to execute arbitrary code via an attachment with a filename containing a large number of spaces ending with a dangerous extension that is not displayed by Thunderbird, along with an inconsistent Content-Type header, which could be used to trick a user into downloading dangerous content by dragging or saving the attachment.
The updated packages have been patched to correct this problem.
The Mandriva Security Team published a new security update: MDKSA-2006:019 - Updated kdelibs packages fix vulnerability for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:018 - Updated kernel packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:017 - Updated mod_auth_ldap packages fix vulnerability for Mandriva Linux. Here the announcement:
Mandriva today announced a new agreement with HP to distribute Mandriva Linux 2006 pre-loaded computers in 37 countries in Latin America. The deal confirms the momentum built by Mandriva in Latin America, following its acquisition of Conectiva, the number one publisher in this region. It further demonstrates Mandriva's position as a global player.
Major OEM agreement between Mandriva and HP in 37 Countries in Latin America
Major OEM agreement between Mandriva and HP in 37 Countries in Latin America
The Mandriva Security Team published a new security update: MDKSA-2006:015 - Updated hylafax packages fix eval injection vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:016 - Updated clamav packages fix vulnerability for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:014 - Updated wine packages fix WMF vulnerability for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:012 - Updated kdegraphics packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:013 - Updated kolab packages fix vulnerability for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:010 - Updated cups packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:011 - Updated tetex packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
Mandriva today announces the appointment of David Barth as Worldwide VP Engineering. A former executive of a leading system integrator with extensive experience at senior levels, David brings a tremendous addition to Mandriva's expertise on the corporate market.
Mandriva Appoints David Barth Worldwide VP Engineering
Mandriva Appoints David Barth Worldwide VP Engineering
The Mandriva Security Team published a new security update: MDKSA-2006:008 - Updated koffice packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:005 - Updated xpdf packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:006 - Updated gpdf packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:007 - Updated apache2 packages fix vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:003 - Updated poppler packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
The Mandriva Security Team published a new security update: MDKSA-2006:004 - Updated pdftohtml packages fix several vulnerabilities for Mandriva Linux. Here the announcement:
