Gentoo Linux Distribution - Page 165
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
MIT krb5 contains several double-free vulnerabilities, potentially allowing the execution of arbitrary code, as well as a denial of service vulnerability. [More...]
When used for CGI scripting, Ruby creates session files in /tmp with the permissions of the default umask. Depending on that umask, local users may be able to read sensitive data stored in session files. [More...]
xv contains multiple exploitable buffer overflows in the image handling code.
New releases of Mozilla, Epiphany, Galeon, Mozilla Thunderbird, and Mozilla Firefox fix several vulnerabilities, including remote DoS and buffer overflows. [More...]
The eGroupWare software contains multiple cross site scripting vulnerabilities.
The Gallery image upload code contains a temporary file handling vulnerability which could lead to execution of arbitrary commands.
Squid is vulnerable to a denial of service attack which could crash its NTLM helpers.
Python 2.2 has a vulnerability in DNS handling when IPV6 is disabled and a malformed IPV6 address is encountered by getaddrinfo().
The mysqlhotcopy utility can create temporary files with predictable paths, allowing an attacker to use a symlink to trick MySQL into overwriting important data. [More...]
vpopmail contains several bugs making it vulnerable to several SQL injection exploits as well as one buffer overflow and one format string exploit when using Sybase. This could lead to the execution of arbitrary code. [More...]
Gaim contains several security issues that might allow an attacker to execute arbitrary code or commands.
The zlib library contains a Denial of Service vulnerability.
MoinMoin contains a bug allowing anonymous users to bypass ACLs (Access Control Lists) and carry out operations that should be limited to authorized users. [More...]
Multiple information leaks have been found in the Linux kernel, allowing an attacker to obtain sensitive data which may be used for further exploitation of the system. [More...]
The cookie manager component in kdelibs contains a vulnerability allowing an attacker to potentially gain access to a user's session on a legitimate web server. [More...]
New releases of Mozilla, Mozilla Thunderbird, and Mozilla Firefox fix several vulnerabilities, including remote DoS and buffer overflows.
With special configurations of Cacti it is possible to change passwords via a SQL injection attack.
There are several bugs in Qt's image-handling code which could lead to crashes or arbitrary code execution.
There is a format string vulnerability in non-standard configurations of courier-imapd which may be exploited remotely. An attacker may be able to execute arbitrary code as the user running courier-imapd (oftentimes root). [More...]
xine-lib contains an exploitable buffer overflow in the VCD handling code
Sign up to get the latest security news affecting Linux and
open source delivered straight to your inbox
Powered By
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.