This security update fixes a buffer overflow in OpenOffice_org This security update fixes a buffer overflow in OpenOffice_org Microsoft Word document reader which could allow a remote attacker Microsoft Word document reader which could allow a remote attacker sending a handcrafted .doc file to execute code as the user opening the document in OpenOffice.This is tracked by the Mitre CVE ID CAN [More...]
The Concurrent Versions System (CVS) offers tools which allow developers The Concurrent Versions System (CVS) offers tools which allow developers to share and maintain large software projects. to share and maintain large software projects. The current maintainer of CVS reported various problems within CVS such as a buffer overflow and memory access problems which have been fixed within the a [More...]
This update fixes the following security issues in the PHP scripting This update fixes the following security issues in the PHP scripting language: language: - A bug in getimagesize() EXIF handling which could lead to a denial of service attack. This is tracked by the Mitre CVE IDs CAN-2005-0524 and CAN-2005-0525.
Several vulnerabilities have been identified and fixed in the KDE Several vulnerabilities have been identified and fixed in the KDE desktop environment. desktop environment. - A buffer overflow via specially crafted PCX pictures was fixed. This could lead to a remote attacker being able to execute code as the user opening or viewing a PCX images. This PCX image could
This Linux kernel security update fixes a problem within the Bluetooth This Linux kernel security update fixes a problem within the Bluetooth kernel stack which can be used by a local attacker to gain root access or kernel stack which can be used by a local attacker to gain root access or crash the machine.To exploit this problem, the Bluetooth modules do not need to be loaded since they are [More...]
Racoon is a ISAKMP key management daemon used in IPsec setups. Racoon is a ISAKMP key management daemon used in IPsec setups. Sebastian Krahmer of the SUSE Security Team audited the daemon and found that it handles certain ISAKMP messages in a slightly wrong way, so that remote attackers can crash it via malformed ISAKMP packages.This update fixes this problem.
MySQL is an Open Source database server, commonly used together with MySQL is an Open Source database server, commonly used together with web services provided by PHP scripts or similar. web services provided by PHP scripts or similar. This security update fixes a broken mysqlhotcopy script as well as several security related bugs:- CAN-2005-0709: MySQL allowed remote authenticated users wi [More...]
The Linux kernel is the core component of the Linux system. The Linux kernel is the core component of the Linux system. Several vulnerabilities were reported in the last few weeks which are fixed by this update.Not all kernels are affected by all the problems, each of the problems has an affected note attached to it.
This update fixes several security issues in the ImageMagick program suite: This update fixes several security issues in the ImageMagick program suite: - A format string vulnerability was found in the display program which could lead to a remote attacker being to able to execute code as the user running display by providing handcrafted filenames of images. This is tracked by the Mitre CVE ID C [More...]
This security update for Mozilla Firefox fixes following problems: This security update for Mozilla Firefox fixes following problems: - CAN-2005-0231: "Fire tabbing" The javascript security manager usually prevents that a javascript: URL from one host is opened in a window displaying content from another host. But when the link is dropped to a tab, the security manager does not kick in.
The SUSE Security Team reviewed critical parts of the OpenSLP package, The SUSE Security Team reviewed critical parts of the OpenSLP package, an open source implementation of the Service Location Protocol (SLP). an open source implementation of the Service Location Protocol (SLP). SLP is used by Desktops to locate certain services such as printers and by servers to announce their services. [More...]
Two security problems were found in the media player RealPlayer: Two security problems were found in the media player RealPlayer: - CAN-2005-0455: A buffer overflow in the handling of .smil files. - CAN-2005-0611: A buffer overflow in the handling of .wav files. Both buffer overflows can be exploited remotely by providing URLs opened by RealPlayer.
cyrus-sasl is a library providing authentication services. cyrus-sasl is a library providing authentication services. A buffer overflow in the digestmda5 code was identified that could lead to a remote attacker executing code in the context of the service using sasl authentication.This is tracked by the Mitre CVE ID CAN-2005-0373.
The University of Washington imap daemon can be used to access mails The University of Washington imap daemon can be used to access mails remotely using the IMAP protocol. remotely using the IMAP protocol. This update fixes a logical error in the challenge response authentication mechanism CRAM-MD5 used by UW IMAP. Due to this mistake a remote attacker can gain access to the IMAP server as [More...]
This email address is being protected from spambots. You need JavaScript enabled to view it. reported a vulnerability in libcurl, the This email address is being protected from spambots. You need JavaScript enabled to view it. reported a vulnerability in libcurl, the HTTP/FTP retrieval library. This library is used by lots of programs, HTTP/FTP retrieval library. This library is used by lots of programs, including YaST2 and PHP4.The NTLM authorization in curl had a buffer overflow in the base64 decoding which allows a remote a [More...]
The previous kernel security update for the SUSE Linux 9.1 The previous kernel security update for the SUSE Linux 9.1 and the SUSE Linux Enterprise Server 9 based products caused and the SUSE Linux Enterprise Server 9 based products caused problems with the NVidia driver for users with NVidia graphics cards. Stricter checking in the memory management functions in the kernel caused the kerne [More...]
This update fixes one-byte buffer overruns in the cyrus-imapd IMAP This update fixes one-byte buffer overruns in the cyrus-imapd IMAP server package. server package. Several overruns were fixed in the IMAP annote extension as well as in cached header handling which can be run by an authenticated user.Additionally bounds checking in fetchnews was improved to avoid
Squid is an Open Source web proxy. Squid is an Open Source web proxy. A remote attacker was potentially able to crash the Squid web proxy if the log_fqdn option was set to "on" and the DNS replies were manipulated.This is tracked by the Mitre CVE ID CAN-2005-0446.
Mailman is a flexible mailing list management tool. It provides Mailman is a flexible mailing list management tool. It provides mail controlled subscription front ends and also includes CGI scripts mail controlled subscription front ends and also includes CGI scripts to handle subscription, moderation and archive retrieval and other options.Due to incomplete input validation the "private" CG [More...]
Squid is a feature-rich web-proxy with support for various web-related Squid is a feature-rich web-proxy with support for various web-related protocols. protocols. The last two squid updates from February the 1st and 10th fix several vulnerabilities. The impact of them range from remote denial-of-service over cache poisoning to possible remote command execution. Due to the hugh amount of b [More...]
