Ubuntu Security Notice 573-1 - It was discovered that PulseAudio did not properly drop privileges when running as a daemon. Local users may be able to exploit this and gain privileges. The default Ubuntu configuration is not affected.
50be48546e847365f1810a3037a5cffcMandriva Linux Security Advisory - Multiple vulnerabilities were discovered by Tavis Ormandy and Will Drewry in the way that pcre handled certain malformed regular expressions. If an application linked against pcre, such as Konqueror, parses a malicious regular expression, it could lead to the execution of arbitrary code as the user running the application.
8e866bd16d72a841a27406434f7794deMandriva Linux Security Advisory - Ruby network libraries Net::HTTP, Net::IMAP, Net::FTPTLS, Net::Telnet, Net::POP3, and Net::SMTP, up to Ruby version 1.8.6 are affected by a possible man-in-the-middle attack, when using SSL, due to a missing check of the CN (common name) attribute in SSL certificates against the server's hostname.
d9eee1e6f905cf3d8a905cf24119a373Secunia Security Advisory - Dave Lewis has reported a vulnerability in Tripwire Enterprise, which can be exploited by malicious people to conduct cross-site scripting attacks.
bcaa9f7a7255aeae4f381c39177d49c0Secunia Security Advisory - rPath has issued an update for xorg-x11. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
dbe654111d6e17d2bb77371ca5d798afSecunia Security Advisory - Two vulnerabilities have been reported in VirtueMart, which can be exploited by malicious people to conduct cross-site request forgery attacks or to disclose sensitive information.
59a96f5e68cac7893595d634e3296ff4LiveLink versions 9.7.0 and below suffer from a cross site scripting vulnerability using UTF-7.
291fd26f70ff0a944715c3b8458d94caGentoo Linux Security Advisory GLSA 200801-22:02 - Luigi Auriemma reported a heap-based buffer overflow within the handshakeHTTP() function when processing HTTP requests. Versions less than 0.1218 are affected.
3978ace13523e798b19aa1203f0cd950Gentoo Linux Security Advisory GLSA 200801-21 - Miroslav Lichvar discovered that the xdg-open and xdg-email shell scripts do not properly sanitize their input before processing it. Versions less than 1.0.2-r1 are affected.
ae2e54c93e009d1196f63b44369e372bSecunia Security Advisory - Some vulnerabilities have been reported in Xdg-utils, which can be exploited by malicious people to compromise a user's system.
6a95ad32c6981e140c49642989eff97bSecunia Security Advisory - Mandriva has issued an update for ruby. This fixes some security issues, which can be exploited by malicious people to conduct spoofing attacks.
fa73cdbbe70a0d46c8a5343528e0f9b7Secunia Security Advisory - NBBN has discovered two vulnerabilities in webSPELL, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
c17e1355daa284828a24b3e36d00be5cSecunia Security Advisory - enter_the_dragon has reported a vulnerability in the WassUp plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
757036066da958176d20dc15b7523c10Secunia Security Advisory - Cisco has acknowledged a vulnerability in Cisco Wireless Control System (WCS), which can be exploited by malicious people to compromise a vulnerable system.
1850aa0f12359953352cfed85526bbf6Secunia Security Advisory - Gentoo has issued an update for goffice. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, and compromise a vulnerable system.
ba6f77bf3efe9317c0768b6b4c152d20Secunia Security Advisory - Elazar Broad has discovered a vulnerability in MySpace Uploader Control, which can be exploited by malicious people to compromise a user's system.
86eae8cef13b1a9631cb118614074332Secunia Security Advisory - Gentoo has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
903b14be43b76366761498ac5f8e7c08Secunia Security Advisory - A vulnerability has been reported in the OpenID module for Drupal, which can be exploited by malicious people to spoof OpenID authorities.
c9ca3b837f33ed19cac5bf06f3517eadSecunia Security Advisory - Gentoo has issued an update for peercast. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system.
b67b23d1b23d9368260143fb7d5b69aaSecunia Security Advisory - Gentoo has issued an update for kazehakase. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, and compromise a user's system.
68424c31cbc812ae1e967a03220d7ce9Secunia Security Advisory - Will Dormann has reported some vulnerabilities in SwiftView Viewer, which can be exploited by malicious people to compromise a user's system.
55315730d918face79ccab9bba9b2ab0Secunia Security Advisory - A vulnerability has been reported in Gnumeric, which can be exploited by malicious people to compromise a user's system.
b08eb75a016918711824eaf195f45230Secunia Security Advisory - Alexandr Polyakov and Anton Karpov have reported a vulnerability in OpenBSD bgplg, which can be exploited by malicious people to conduct cross-site scripting attacks.
206c5756f3f140622efd8ba2075734deSecunia Security Advisory - Houssamix has discovered a vulnerability in PHP Links, which can be exploited by malicious people to conduct SQL injection attacks.
796247babda4c9ed5baefe681db726d7Secunia Security Advisory - Gentoo has issued an update for xdg-utils. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
4da6e6814b51e4603ffe9c934bd698d8
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed