Section: .. / 0711-advisories /
| /// File Name: |
MDKSA-2007-212.txt |
Description:
|
Mandriva Linux Security Advisory - Multiple vulnerabilities were discovered by Tavis Ormandy and Will Drewry in the way that pcre handled certain malformed regular expressions. If an application linked against pcre, such as Konqueror, parses a malicious regular expression, it could lead to the execution of arbitrary code as the user running the application.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3675 | | Related CVE(s): | CVE-2007-1659, CVE-2007-1660 | | Last Modified: | Nov 8 18:51:42 2007 |
| MD5 Checksum: | 4a10d480630399081cc9b29433fc4791 |
|
| /// File Name: |
MDKSA-2007-213.txt |
Description:
|
Mandriva Linux Security Advisory - Multiple vulnerabilities were discovered by Tavis Ormandy and Will Drewry in the way that pcre handled certain malformed regular expressions. If an application linked against pcre, such as Konqueror, parses a malicious regular expression, it could lead to the execution of arbitrary code as the user running the application.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3228 | | Related CVE(s): | CVE-2007-1660 | | Last Modified: | Nov 8 18:52:19 2007 |
| MD5 Checksum: | 419f8570df845774c467abb9c94a6f4d |
|
| /// File Name: |
MDKSA-2007-214.txt |
Description:
|
Mandriva Linux Security Advisory - A security vulnerability was discovered in how flac processed audio data. An attacker could create a carefully crafted FLAC audio file that could cause an application linked against the flac libraries to crash or execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8457 | | Related CVE(s): | CVE-2007-4619 | | Last Modified: | Nov 8 20:30:54 2007 |
| MD5 Checksum: | 62e4d6981f1022eb559be7cfe4998e45 |
|
| /// File Name: |
MDKSA-2007-215.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw in the way OpenLDAP's slapd daemon handled malformed objectClasses LDAP attributes was discovered. A local or remote attacker could create an LDAP request that could cause a denial of service by crashing slapd.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 9124 | | Related CVE(s): | CVE-2007-5707 | | Last Modified: | Nov 9 12:47:28 2007 |
| MD5 Checksum: | 5d3921b9fc271172e06128bea9f59b94 |
|
| /// File Name: |
MDKSA-2007-218.txt |
Description:
|
Mandriva Linux Security Advisory - IOActive Inc. found a buffer overflow in Mono.Math.BigInteger class in Mono 1.2.5.1 and previous versions, which allows arbitrary code execution by context-dependent attackers.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10853 | | Related CVE(s): | CVE-2007-5197 | | Last Modified: | Nov 14 21:06:50 2007 |
| MD5 Checksum: | b1e5330b867bb04e20e4390d03d41ec1 |
|
| /// File Name: |
MDKSA-2007-219.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in xpdf. An attacker could create a malicious PDF file that would cause xpdf to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4565 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 16 03:00:36 2007 |
| MD5 Checksum: | f2df8f41505283862496fbe63d3514af |
|
| /// File Name: |
MDKSA-2007-220.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in gpdf. An attacker could create a malicious PDF file that would cause gpdf to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2481 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 16 03:01:14 2007 |
| MD5 Checksum: | 69593546afb721d6fb53d6aaded7144b |
|
| /// File Name: |
MDKSA-2007-221.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in kpdf. An attacker could create a malicious PDF file that would cause kpdf to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 27708 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 16 03:01:45 2007 |
| MD5 Checksum: | 653876dc602521aaabe631ca6bf660a3 |
|
| /// File Name: |
MDKSA-2007-222.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in koffice. An attacker could create a malicious PDF file that would cause koffice to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 16096 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 26 16:06:26 2007 |
| MD5 Checksum: | b1b3fdc38e368c4d50af7677b8475a7f |
|
| /// File Name: |
MDKSA-2007-223.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in pdftohtml. An attacker could create a malicious PDF file that would cause pdftohtml to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2910 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 26 16:06:58 2007 |
| MD5 Checksum: | 3a6082d40c24a99449767333148956af |
|
| /// File Name: |
MDKSA-2007-224-1.txt |
Description:
|
Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges. The patch that fixed CVE-2007-4572 introduced a regression that would prevent shares from being mounted properly and would cause the remote (patched) smbd to crash. This update contains another fix from upstream to correct the problem.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 18060 | | Related CVE(s): | CVE-2007-5398, CVE-2007-4572 | | Last Modified: | Nov 26 18:05:54 2007 |
| MD5 Checksum: | 1fda8ef98ab122a72043e22e01082e10 |
|
| /// File Name: |
MDKSA-2007-224-2.txt |
Description:
|
Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges. The update packages on Corporate Server 4.0 resulted in the nmbd daemon crashing at startup. This update provides a newer version of samba (3.0.23d) that does not exhibit this behaviour.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5799 | | Related CVE(s): | CVE-2007-5398, CVE-2007-4572 | | Last Modified: | Nov 26 21:18:13 2007 |
| MD5 Checksum: | af94122a03abb9e752f705e053cd564a |
|
| /// File Name: |
MDKSA-2007-224-3.txt |
Description:
|
Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges. This update corrects all known regressions with previous Samba updates due to the security fixes to correct CVE-2007-4572.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 17994 | | Related CVE(s): | CVE-2007-5398, CVE-2007-4572 | | Last Modified: | Nov 30 01:59:23 2007 |
| MD5 Checksum: | 35c3dfda88c38965355ccbfee1082a66 |
|
| /// File Name: |
MDKSA-2007-224.txt |
Description:
|
Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 17826 | | Related CVE(s): | CVE-2007-5398, CVE-2007-4572 | | Last Modified: | Nov 26 16:08:19 2007 |
| MD5 Checksum: | c32c1a151a0949b55ac1568072ffec25 |
|
| /// File Name: |
MDKSA-2007-225.txt |
Description:
|
Mandriva Linux Security Advisory - The SNMP agent in net-snmp 5.4.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 9096 | | Related CVE(s): | CVE-2007-5846 | | Last Modified: | Nov 26 17:18:10 2007 |
| MD5 Checksum: | aff94627279169e507cae4278624e45b |
|
| /// File Name: |
MDKSA-2007-226.txt |
Description:
|
Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The minix filesystem code allows local users to cause a denial of service (hang) via a malformed minix file stream. An integer underflow in the Linux kernel prior to 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6197 | | Related CVE(s): | CVE-2006-6058, CVE-2007-4997 | | Last Modified: | Nov 26 17:26:07 2007 |
| MD5 Checksum: | 78821709b8c62321dd92c246f966efc7 |
|
| /// File Name: |
MDKSA-2007-227.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in poppler. An attacker could create a malicious PDF file that would cause poppler to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6604 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 26 17:26:44 2007 |
| MD5 Checksum: | 89d580be4bc84ec7277dde50a2f6dd89 |
|
| /// File Name: |
MDKSA-2007-228.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in cups. An attacker could create a malicious PDF file that would cause cups to crash or potentially execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8508 | | Related CVE(s): | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 | | Last Modified: | Nov 26 17:27:13 2007 |
| MD5 Checksum: | 3b63964426b583b7859d5d456d6c969d |
|
| /// File Name: |
MDKSA-2007-229.txt |
Description:
|
Mandriva Linux Security Advisory - A few vulnerabilities and security-related issues have been fixed in phpMyAdmin since the 2.11.1.2 release. This update provides version 2.11.2.2 which is the latest stable release of phpMyAdmin.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2804 | | Related CVE(s): | CVE-2007-5976, CVE-2007-5977 | | Last Modified: | Nov 26 17:41:32 2007 |
| MD5 Checksum: | 5c5d7c1ed94a2f310fe3954e7a959f2e |
|
| /// File Name: |
MDKSA-2007-230.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw in the t1lib library where an attacker could create a malicious file that would cause tetex to crash or possibly execute arbitrary code when opened. Alin Rad Pop found several flaws in how PDF files are handled in tetex. An attacker could create a malicious PDF file that would cause tetex to crash or potentially execute arbitrary code when opened. A stack-based buffer overflow in dvips in tetex allows for user-assisted attackers to execute arbitrary code via a DVI file with a long href tag. A vulnerability in dvips in tetex allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place. Multiple buffer overflows in dviljk in tetext may allow users-assisted attackers to execute arbitrary code via a crafted DVI input file.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 14433 | | Related CVE(s): | CVE-2007-5937, CVE-2007-4352, CVE-2007-5392, CVE-2007-5393, CVE-2007-5935, CVE-2007-5936, CVE-2007-4033 | | Last Modified: | Nov 26 17:44:04 2007 |
| MD5 Checksum: | 187635521c833ac66c89ca720f5fcc3d |
|
| /// File Name: |
MDKSA-2007-231.txt |
Description:
|
Mandriva Linux Security Advisory - An SQL injection vulnerability in cacti may allow remote attackers to execute arbitrary SQL commands.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2288 | | Related CVE(s): | CVE-2007-6035 | | Last Modified: | Nov 26 21:02:00 2007 |
| MD5 Checksum: | cb5ec8bb6c20e51658b2d89004ca35b5 |
|
| /// File Name: |
MDKSA-2007-232.txt |
Description:
|
Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The minix filesystem code allows local users to cause a denial of service (hang) via a malformed minix file stream. An integer underflow in the Linux kernel prior to 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6235 | | Related CVE(s): | CVE-2007-4997, CVE-2006-6058 | | Last Modified: | Nov 28 20:19:35 2007 |
| MD5 Checksum: | 766cc256ddbcf93d4722fa79a16929c1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
