SuSE: Critical Shell Execution Risk in Pine 4.X Advisory
By sending a malicious formated email pine could be tricked into executing shell scripts or binary programs.
SuSE Essential and Critical Security Patch Updates - Page 1150
Find the information you need for your favorite open source distribution .
SuSE: Kernel 2.2.x Moderate: Denial Of Service Risk Due To IP Options
The Linux kernel 2.2.x doesn't correctly parse the IP options, which leads to kernel panic.
SuSE: Critical Security Alert Addressing INN 2.0 Denial of Service Risk
The innd wrapper inndstart could be tricked to execute arbitrary code by editing the environment (INNCONF), by modifing the inn.conf file or by overflowing a buffer.
SuSE: xf86-3.3.3-5 Critical: Directory Permission Exploit
XFree86 creates a directory in /tmp with the name .X11-unix for the X sockets and sets the directory to mode 1777. If an attacker creates a symlink with that filename and points it to another directory (e.g. /root), the permissions of the target directory is set to 1777.
SuSE: IP Spoofing Threat Update - /dev/kmem Permissions Issue
The default permissions on /dev/kmem is insecure. A bug in all Linux 2.0.x kernels except 2.0.36 have a vulnerability which makes blind ip-spoofing possible.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!