 |
Summary of Security Items from July 13 through July 19, 2005
Information in the US-CERT Cyber Security Bulletin is a compilation and includes information published by outside sources, so the information should not be considered the result of US-CERT analysis. Software vulnerabilities are categorized in the appropriate section reflecting the operating system on which the vulnerability was reported; however, this does not mean that the vulnerability only affects the operating system reported since this information is obtained from open-source information.
This bulletin provides a summary of new or updated vulnerabilities, exploits, trends, viruses, and trojans. Updates to vulnerabilities that appeared in previous bulletins are listed in bold text. The text in the Risk column appears in red for vulnerabilities ranking High. The risks levels applied to vulnerabilities in the Cyber Security Bulletin are based on how the "system" may be impacted. The Recent Exploit/Technique table contains a "Workaround or Patch Available" column that indicates whether a workaround or patch has been published for the vulnerability which the script exploits.
Vulnerabilities
The table below summarizes vulnerabilities that have been identified, even if they are not being exploited. Complete details about patches or workarounds are available from the source of the information or from the URL provided in the section. CVE numbers are listed where applicable. Vulnerabilities that affect both Windows and Unix Operating Systems are included in the Multiple Operating Systems section.
Note: All the information included in the following tables has been discussed in newsgroups and on web sites.
The Risk levels defined below are based on how the system may be impacted:
Note: Even though a vulnerability may allow several malicious acts to be performed, only the highest level risk will be defined in the Risk column.
- High - A high-risk vulnerability is defined as one that will allow an intruder to immediately gain privileged access (e.g., sysadmin or root) to the system or allow an intruder to execute code or alter arbitrary system files. An example of a high-risk vulnerability is one that allows an unauthorized user to send a sequence of instructions to a machine and the machine responds with a command prompt with administrator privileges.
- Medium - A medium-risk vulnerability is defined as one that will allow an intruder immediate access to a system with less than privileged access. Such vulnerability will allow the intruder the opportunity to continue the attempt to gain privileged access. An example of medium-risk vulnerability is a server configuration error that allows an intruder to capture the password file.
- Low - A low-risk vulnerability is defined as one that will provide information to an intruder that could lead to further compromise attempts or a Denial of Service (DoS) attack. It should be noted that while the DoS attack is deemed low from a threat potential, the frequency of this type of attack is very high. DoS attacks against mission-critical nodes are not included in this rating and any attack of this nature should instead be considered to be a "High" threat.
Windows Operating Systems Only |
Vendor & Software Name |
Vulnerability - Impact
Patches - Workarounds
Attacks Scripts |
Common Name /
CVE Reference |
Risk |
Source |
Alt-N Technologies
MDaemon 8.0.3 |
An IMAP authentication vulnerability has been reported in MDaemon that could let remote malicious user cause a Denial of Service.
No workaround or patch available at time of publishing.
Currently we are not aware of any exploits for this vulnerability. |
Alt-N Technologies MDaemon Denial of Service |
Low |
Secunia Advisory: SA16097
July 19, 2005 |
Apple
Darwin Streaming Server 5.5 |
A vulnerability has been reported in Darwin Streaming Server that could let remote malicious users cause a Denial of Service. Note: Only windows 2000/ 2003 should be effected.
Upgrade to version 5.5.1:
http://developer.apple.com/
darwin/projects/streaming/
There is no exploit code required. |
Apple Darwin Streaming Server Denial of Service
CAN-2005-2195
|
Low |
Security Tracker Alert ID: 1014474, July 13, 2005 |
ASPNuke
ASPNuke 0.80 |
A vulnerability has been reported in ASPNuke ('Comment_Post.asp') that could let remote malicious users perform Cross-Site Scripting attacks.
No workaround or patch available at time of publishing.
There is no exploit code required; however, a Proof of Concept exploit has been published. |
ASPNuke Cross-Site Scripting |
High |
Security Focus, 14226, July 12, 2005 |
DG Remote Control Server
DG Remote Control Server 1.6.2 |
A vulnerability has been reported in DG Remote Control Server that could let a remote malicious user perform a Denial of Service.
No workaround or patch available at time of publishing.
There is no exploit code required; however, a Proof of Concept exploit has been published. |
DG Remote Control Server Denial of Service
CAN-2005-2305
|
Low |
Security Focus, 14263, July 14, 2005 |
DZSoft
DZPhp Editor 3.1.2.8 |
A buffer overflow vulnerability has been reported in DZPhp Editor that could let remote malicious users to cause a Denial of Service.
No workaround or patch available at time of publishing.
There is no exploit code required. |
DzSoft PHP Editor Denial of Service
|
Low |
Security Tracker Alert ID: 1014507, July 18, 2005 |
ESi
WebEOC |
Multiple vulnerabilities have been reported in WebEOC that could let remote malicious users perform a Denial of Service or obtain elevated privileges.
Upgrade to version 6.0.2:
http://www.esi911.com/esi/
products/webeoc.shtml
There is no exploit code required. |
WebEOC Multiple Vulnerabilities
CAN-2005-2281
CAN-2005-2282
CAN-2005-2283
CAN-2005-2284
CAN-2005-2285
CAN-2005-2286 |
Medium |
Security Focus, 14249, July 13, 2005
US CERT Vulnerability Notes,VU#
170394, 388282,
258834, 165290,
372797, 138538,
491770, 956762
|
Hosting Controller
Hosting Controller 6.1 |
Multiple vulnerabilities have been reported in Hosting Controller that could let remote malicious users inject SQL commands or execute arbitrary code.
No workaround or patch available at time of publishing.
There is no exploit code required; however, a Proof of Concept exploit has been published.
|
Hosting Controller Multiple Vulnerabilities
|
High |
Security Tracker Alert ID: 1014468, July 13, 2005, 1014477,
July 14, 2005, 1014496,
July 16, 2005, 1014501,
July 17, 2005
|
MailEnable
MailEnable Professional 1.5 |
A buffer overflow vulnerability has been reported in MailEnable that could let remote malicious users execute arbitrary code.
Vendor Hotfix available:
http://www.mailenable.com/
hotfix/
There is no exploit code required; however, a Proof of Concept exploit has been published. |
MailEnable Arbitrary Code Execution
CAN-2005-2278
|
High |
Secunia Advisory: SA15986, July 13, 2005 |
Microsoft
Internet Explorer 6.0SP2 |
Multiple vulnerabilities have been reported in Internet Explorer, JPEG Rendering, that could let remote malicious users perform a Denial of Service.
No workaround or patch available at time of publishing.
A Proof of Concept exploit has been published. |
Microsoft Internet Explorer Denial of Service
CAN-2005-2308 |
Low |
Security Focus, 14284, 14285, 14286, July 15, 2005 |
Microsoft
MSN Messenger 9.0, Internet Explorer 6.0
|
An image ICC profile processing vulnerability has been reported in MSN Messenger/ Internet Explorer that could let malicious users crash applications.
No workaround or patch available at time of publishing.
Currently we are not aware of any exploits for this vulnerability. |
Microsoft MSN Messenger / Internet Explorer Application Crash
CAN-2005-2304 |
Low |
Security Focus, 14288, July 16, 2005 |
Microsoft
Window Kernel |
A vulnerability has been reported in the Windows Kernel that could let remote malicious users cause a Denial of Service.
No workaround or patch available at time of publishing.
Currently we are not aware of any exploits for this vulnerability. |
Microsoft Windows Kernel Denial Of Service
CAN-2005-2303
|
Low |
Security Focus, 14259, July 12, 2005 |
Microsoft
Windows (2000, Server 2003, XP) |
A vulnerability has been reported in Windows Remote Desktop Protocol that could let a remote malicious user cause a Denial of Service.
Workarounds available:
http://www.microsoft.com/
technet/security/advisory/
904797.mspx
No exploit code required. |
Microsoft Windows Remote Desktop Denial of Service
CAN-2005-2303
|
Low |
Microsoft Security Advisory 904797, July 16, 2005 |
Microsoft
Windows Connections Manager Library |
A vulnerability has been reported in Windows Connections Manager Library that could let local malicious users cause a Denial of Service.
No workaround or patch available at time of publishing.
An exploit has been published. |
Microsoft Windows Network Connections Manager Library Denial of Service
CAN-2005-2307 |
Low |
Security Focus, 14260, July 14, 2005 |
Nullsoft
Winamp 5.091 |
A buffer overflow vulnerability has been reported in Winamp (ID3V2 tag processing) that could let remote malicious users execute arbitrary code.
No workaround or patch available at time of publishing.
There is no exploit code required; however, a Proof of Concept exploit has been published. |
Winamp Arbitrary Code Execution
CAN-2005-2310
|
High |
Security Tracker Alert ID: 1014483, July 14, 2005 |
Small HTTP Server
Small HTTP Server 3.05.28 |
An FTP Service vulnerability has been reported in Small Http Server that could let remote malicious users write to arbitrary files.
No workaround or patch available at time of publishing.
There is no exploit code required. |
Small HTTP Server Arbitrary File Writing
|
Medium |
Security Tracker Alert ID: 1014506, July 18, 2005 |
SSH Communications Security
SSH Secure Shell and Tectia Server 4.3.1 |
A host key disclosure vulnerability has been reported in SSH Secure Shell and SSH Tectia Server that could let local/ remote malicious users pretend to be other servers.
Update to version 4.3.2,
http://www.ssh.com/support/
downloads/tectia-server/
updates-and-packages-4-3.html
There is no exploit code required. |
SSH Secure Shell and Tectia Server Key Disclosure
CAN-2005-2146
|
Medium |
SSH Vulnerability Notification, RQ #11775, June 30, 2005
US CERT VU#973635 |
ToCA
Race Driver 1.2 |
A buffer overflow vulnerability has been reported in Race Driver that could let remote malicious users execute arbitrary code.
No workaround or patch available at time of publishing.
There is no exploit code required; however, a Proof of Concept exploit has been published. |
ToCA Race Driver Arbitrary Code Execution
|
High |
Security Focus, 14304, July 18, 2005 |
Virtual Programming
VP-ASP 4.0, 4.5, 5.0 |
Multiple vulnerabilities have been reported in VP-ASP that could let remote malicious users perform SQL injection attacks.
Vendor fix available:
http://www.vpasp.com
/virtprog/info/faq_
securityfixes.htm
There is no exploit code required. |
VP-ASP SQL Injection
|
High |
Security Focus, 14295, 14305, 14306, July 18, 2005 |
[back to
top]
| UNIX / Linux Operating Systems Only |
Vendor & Software Name |
Vulnerability - Impact
Patches - Workarounds
Attacks Scripts |
Common Name /
CVE Reference |
Risk |
Source |
Adobe
Acrobat Reader (UNIX) 5.0.10, 5.0.9 |
A buffer overflow vulnerability has been reported in the 'UnixAppOpenFilePerform()' function due to a boundary error, which could let a remote malicious user execute arbitrary code.
Upgrades available at:
www.adobe.com/products/
acrobat/readstep2.html
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-575.html
Gentoo:
http://security.gentoo.org/
glsa/glsa-200507-09.xml
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE
Currently we are not aware of any exploits for this vulnerability. |
Adobe Acrobat Reader UnixAppOpen
FilePerform
Buffer Overflow
CAN-2005-1625
|
High |
Adobe Security Advisory,
July 5, 2005
RedHat Security Advisory,
RHSA-2005:
575-11,
July 8, 2005
Gentoo Linux Security
Advisory,
GLSA 200507
-09,
July 11,
2005
SUSE
Security Announce-
ment, SUSE-SA:2005:042,
July 14, 2005 |
Apple
Mac OS X 10.4.1, 10.4, 10.3.3 -10.3.9 |
A vulnerability has been reported because mobile users with the original AirPort card enabled could automatically connect to a malicious network. Note: This issue does not affect AirPort Extreme.
Updates available at:
http://www.apple.com/
support/downloads/
There is no exploit code required.
|
Apple Mac OS X AirPort Card Automatic
Network Association
CAN-2005-2196
|
High |
Apple Security Advisory,
APPLE-SA-
2005-07-19,
July 19, 2005 |
Apple
Mac OS X Server 10.4.1, 10.4, Mac OS X 10.4.1, 10.4
|
Several vulnerabilities have been reported: a vulnerability was reported due to an error in the Dashboard, which could let a remote malicious user install widgets with the same internal identifier (CFBundleIdentifier) as an Apple-supplied widgets thereby replacing it; and a remote Denial of Service vulnerability has been reported due to a NULL pointer dereference error in the TCP/IP implementation.
Upgrades available at:
http://www.apple.com/support/
downloads/macosxserver
1042combo.html
Currently we are not aware of any exploits for these vulnerabilities. |
|
Medium |
Apple Security Advisory,
APPLE-SA-
2005-07-12,
July 12, 2005 |
bzip2
bzip2 1.0.2 |
A remote Denial of Service vulnerability has been reported when the application processes malformed archives.
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/b/bzip2/
Mandriva:
http://www.mandriva.com/
security/advisories
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE
OpenPKG:
http://www.openpkg.org/
security/OpenPKG-
SA-2005.008
-openpkg.html
RedHat:
http://rhn.redhat.com/errata/
RHSA-2005-474.html
FreeBSD:
ftp://ftp.FreeBSD.org/pub/
FreeBSD/CERT/patches/
SA-05:14/bzip2.patch
Conectiva:
ftp://atualizacoes.
conectiva. com.br/
Debian:
http://security.debian.org/
pool/updates/main/b/bzip2/
SGI:
http://www.sgi.com/
support/security/
Currently we are not aware of any exploits for this vulnerability. |
|
Low |
Ubuntu Security Notice,
USN-127-1,
May 17, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:
091, May 19,
2005
Turbolinux
Security
Advisory,
TLSA-2005-60, June 1, 2005
SUSE Security Summary
Report, SUSE-SR:2005:015,
June 7, 2005
OpenPKG
Security
Advisory, OpenPKG-
SA-2005.008,
June 10, 2005
RedHat Security Advisory,
RHSA-2005:
474-15,
June 16, 2005
FreeBSD
Security
Advisory,
FreeBSD-SA-05:14, June 29, 2005
Conectiva
Linux Announce
-ment, CLSA-2005:972,
July 6, 2005
Debian
Security Advisory,
DSA 741-1,
July 7, 2005
SGI Security Advisory, 20050605
-01-U,
July 12, 2005 |
bzip2
bzip2 1.0.2 & prior |
A vulnerability has been reported when an archive is extracted into a world or group writeable directory, which could let a malicious user modify file permissions of target files.
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/b/bzip2/
Mandriva:
http://www.mandriva.com/
security/advisories
Debian:
http://security.debian.org/
pool/updates/main/b/bzip2/
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
OpenPKG:
http://www.openpkg.org/
security/OpenPKG-
SA-2005.008-
openpkg.html
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-474.html
FreeBSD:
ftp://ftp.FreeBSD.org/pub/
FreeBSD/CERT/patches/
SA-05:14/bzip2.patch
Conectiva:
ftp://atualizacoes.
conectiva.com.br/
SGI:
http://www.sgi.com/
support/security/
There is no exploit code required. |
|
Medium |
Security
Focus,
12954,
March 31, 2005
Ubuntu Security Notice,
USN-127-1,
May 17, 2005
Mandriva Linux Security
Update
Advisory,
MDKSA-2005:
091, May 19,
2005
Debian Security Advisory,
DSA 730-1,
May 27, 2005
Turbolinux
Security
Advisory,
TLSA-2005-60, June 1, 2005
OpenPKG
Security
Advisory, OpenPKG-SA-2005.008,
June 10, 2005
RedHat
Security Advisory,
RHSA-2005
:474-15,
June 16, 2005
FreeBSD Security Advisory,
FreeBSD-SA-05:14, June 29, 2005
Conectiva Linux Announce
-ment, CLSA-2005:972,
July 6, 2005
SGI Security Advisory, 20050605-
01-U, July 12, 2005 |
Centericq
Centericq 4.20 |
A vulnerability has been reported in 'gaduhook::handletoken()' due to the insecure creation of temporary files, which could let a malicious user obtain elevated privileges.
Debian:
http://security.debian.org/
pool/updates/main/c/
centericq/
There is no exploit code required. |
|
Medium |
Security
Focus, 14144,
July 5, 2005
Debian
Security
Advisory,
DSA 754-1,
July 13, 2005
|
Easy Software Products
CUPS prior to 1.1.21rc1
|
A vulnerability has been reported in incoming print jobs due to a failure to properly apply ACLs (Access Control List), which could let a remote malicious user bypass ACLs.
Upgrades available at: http://www.cups.org/
software.php
RedHat:
http://rhn.redhat.com/errata/
RHSA-2005-571.html
There is no exploit code required. |
Easy Software Products CUPS Access Control
List Bypass
CAN-2004-2154
|
Medium |
Security
Tracker Alert ID: 1014482,
July 14, 2005
RedHat
Security Advisory,
RHSA-2005:
571-06,
July 14, 2005
|
FreeRADIUS Server
Project
FreeRADIUS 1.0.2 |
Two vulnerabilities have been reported: a vulnerability was reported in the 'radius_xlat()' function call due to insufficient validation, which could let a remote malicious user execute arbitrary SQL code; and a buffer overflow vulnerability was reported in the 'sql_escape_func()' function, which could let a remote malicious user execute arbitrary code.
Gentoo:
http://security.gentoo.org/
glsa/glsa-200505-13.xml
SuSE:
ftp://ftp.suse.com/pub/suse/
FreeRadius:
ftp://ftp.freeradius.org/pub/
radius/freeradius-1.0.3.tar.gz
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-524.html
SGI:
http://www.sgi.com/
support/security/
There is no exploit code required. |
|
High |
Security
Tracker Alert ID: 1013909,
May 6, 2005
Gentoo Linux Security
Advisory,
GLSA
200505-13,
May 17, 2005
SUSE Security Summary Report, SUSE-SR:2005:014, June 7, 2005
Security Focus, 13541,
June 10, 2005
RedHat
Security Advisory,
RHSA-2005:
524-05,
June 23, 2005
SGI Security Advisory, 20050606-
01-U, J
uly 12, 2005 |
GNOME
gEdit 2.0.2, 2.2 .0, 2.10.2 |
A format string vulnerability has been reported when invoking the program with a filename that includes malicious format specifiers, which could let a remote malicious user cause a Denial of Service and potentially execute arbitrary code.
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/g/gedit/
Gentoo:
http://security.gentoo.org/
glsa/glsa-200506-09.xml
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-499.html
Mandriva:
http://www.mandriva.com/
security/advisories
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/
ia32/Desktop/10/updates/
SGI:
ftp://oss.sgi.com/projects/
sgi_propack/download
/3/updates/
Debian:
http://security.debian.org/
pool/updates/main/g/gedit/
An exploit has been published. |
|
High |
Securiteam,
May 22, 2005
Ubuntu Security Notice,
USN-138-1,
June 09, 2005
Gentoo Linux Security Advisory, GLSA 200506-09,
June 11, 2005
RedHat Security Advisory,
RHSA-2005:499-05, June 13, 2005
Mandriva Linux Security Update Advisory, MDKSA-2005:102,
June 16, 2005
Turbolinux Security Advisory,
TLSA-2005-70, June 22, 2005
SGI Security Advisory, 20050603-
01-U, June 23, 2005
Debian Security Advisory,
DSA 753-1,
July 12, 2005 |
GNU
cpio 1.0-1.3, 2.4.2, 2.5, 2.5.90, 2.6 |
A vulnerability has been reported when an archive is extracted into a world or group writeable directory because non-atomic procedures are used, which could let a malicious user modify file permissions.
Trustix:
ftp://ftp.turbolinux.co.jp/
pub/TurboLinux/
TurboLinux/
Mandriva:
http://www.mandriva.com/
security/advisories
There is no exploit code required. |
|
Medium |
Bugtraq, 395703,
April 13, 2005
Trustix Secure Linux Security Advisory, TSLSA-2005-0030, June 24, 2005
Mandriva
Linux Security Update Advisory, MDKSA2005:
116, July 12,
2005 |
GNU
cpio 2.6 |
A Directory Traversal vulnerability has been reported when invoking cpio on a malicious archive, which could let a remote malicious user obtain sensitive information.
Gentoo:
http://security.gentoo.org/
glsa/glsa-200506-16.xml
Trustix:
ftp://ftp.turbolinux.co.jp/
pub/TurboLinux/
TurboLinux/
Mandriva:
http://www.mandriva.com/
security/advisories
A Proof of Concept exploit has been published. |
|
Medium |
Bugtraq,
396429, April 20, 2005
Gentoo Linux Security Advisory, GLSA
200506-16, June 20, 2005
Trustix Secure
Linux Security Advisory, TSLSA-2005-
0030, June 24, 2005
Mandriva Linux Security Update Advisory, MDKSA2005:
116, July 12, 2005 |
GNU
shtool 2.0.1 & prior |
A vulnerability has been reported that could let a local malicious user gain escalated privileges. The vulnerability is caused due to temporary files being created insecurely.
Gentoo:
http://security.gentoo.org/
glsa/glsa-200506-08.xml
OpenPKG:
ftp://ftp.openpkg.org/
release/2.3
RedHat:
http://rhn.redhat.com/errata/
RHSA-2005-564.html
Trustix:
http://http.trustix.org/
pub/trustix/updates/
SGI:
http://www.sgi.com/
support/security/
There is no exploit code required. |
|
Medium |
Secunia Advisory, SA15496,
May 25, 2005
Gentoo Linux Security Advisory, GLSA 200506
-08, June 11, 200
OpenPKG
Security Advisory, OpenPKG-SA-2005.011,
June 23, 2005
Trustix Secure Linux Security Advisory,
TSLSA-2005-
0036, July 14, 2005
SGI Security Advisory, 20050703-01-U, July 15, 2005 |
GNU
Gaim prior to 1.1.4 |
A vulnerability exists in the processing of HTML that could let a remote malicious user crash the Gaim client. This is due to a NULL pointer dereference.
Update to version 1.1.4:
http://gaim.sourceforge.net/
downloads.php
Ubuntu:
http://www.ubuntulinux.org/
support/documentation/
usn/usn-85-1
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
Gentoo:
http://security.gentoo.org/
glsa/glsa-200503-03.xml
Mandrake:
http://www.mandrake
secure.net/en/ftp.php
RedHat:
http://rhn.redhat.com/errata/
RHSA-2005-215.html
Conectiva:
ftp://atualizacoes.conectiva.
com.br/
Peachtree:
http://peachtree.burdell.org/
updates/
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE
Currently we are not aware of any exploits for this vulnerability. |
GNU Gaim
Denial of Service Vulnerability
CAN-2005-0208 |
Low |
Sourceforge.net Gaim
Vulnerability Note, February 24,
2005
US-CERT VU#795812
Gentoo, GLSA 200503-03,
March 1, 2005
Mandrakelinux Security Update Advisory,
MDKSA-2005:049, March 4, 2005
RedHat Security Advisory,
RHSA-2005:215-11, March 10, 2005
Conectiva Linux Security Announce-ment, CLA-2005:933,
March 14, 2005
Peachtree
Linux Security Notice,
PLSN-0002,
April 21, 2005
SUSE Security Summary
Report, SUSE-SR:2005:017,
July 13, 2005 |
GNU
zgrep 1.2.4 |
A vulnerability has been reported in 'zgrep.in' due to insufficient validation of user-supplied arguments, which could let a remote malicious user execute arbitrary commands.
A patch for 'zgrep.in' is available in the following bug report:
http://bugs.gentoo.org/
show_bug.cgi?id=90626
Mandriva:
http://www.mandriva.com/
security/advisories
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-357.html
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-474.html
SGI:
ftp://oss.sgi.com/projects/
sgi_propack/download/
3/updates/
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/3/
SGI:
http://www.sgi.com/
support/security/
There is no exploit code required. |
|
High |
Security Tracker Alert, 1013928,
May 10, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:
092, May 19,
2005
Turbolinux
Security Advisory, TLSA-2005-59, June 1, 2005
RedHat Security Advisory,
RHSA-2005:
357-19,
June 13, 2005
RedHat Security Advisory,
RHSA-2005:
474-15,
June 16, 2005
SGI Security Advisory, 20050603-01-U, June 23, 2005
Fedora Update Notification,
FEDORA-
2005-471,
June 27, 2005
SGI Security Advisory, 20050605
-01-U, July 12, 2005
|
Hewlett Packard Company
HP-UX B.11.23, B.11.22, B.11.11, B.11.04, B.11.00 |
A remote Denial of Service vulnerability has been reported in the Path MTU Discovery (PMTUD) functionality that is supported in the ICMP protocol.
Patches available at:
http://www1.itrc.hp.com/service/
cki/docDisplay.do?docId= HPSBUX01137
Revision 2: The binary files of HPSBUX01164 will resolve the issue for the core TCP/IP in B.11.11, B.11.22, and B.11.23. The binary files of HPSBUX01164 will resolve NOT resolve the issue for IPSec. B.11.00 and B.11.04 are NOT vulnerable. The recommended workaround is to modify /etc/rc.config.d/nddconf and reboot.
Rev 3: PHNE_33159 is available for B.11.11.
Avaya:
http://support.avaya.com/
elmodocs2/security/
ASA-2005-160.pdf
Rev 4: PHNE_32606 is available for B.11.23.
Currently we are not aware of any exploits for this vulnerability. |
|
Low |
Hewlett Packard Company
Security Advisory, HPSBUX
01137,
April 24, 2005
Hewlett Packard Company
Security
Advisory,
HPSBUX
01137:
SSRT5954 rev.1, May 25, 2005
Hewlett Packard Company
Security Advisory,
HPSBUX
01137:
SSRT5954 rev.2, June 1, 2005
Avaya Security Bulletin,
ASA-2005-160, July 15, 2005
HP Security Bulletin, HPSBUX0
1137 rev 4,
July 19, 2005 |
High Availability Linux Project
Heartbeat 1.2.3 |
An insecure file creation vulnerability has been reported in Heartbeat that could let local users arbitrarily overwrite files.
Debian:
http://security.debian.org/
pool/updates/main/
h/heartbeat/
There is no exploit code required. |
Heartbeat Arbitrary File Overwrite
CAN-2005-2231 |
Medium |
Secunia Advisory: SA16039,
July 12, 2005
Debian Security Advisory,
DSA 761-1,
July 19, 2005 |
ImageMagick
ImageMagick 5.3.3, 5.3.8, 5.4.3, 5.4.4 .5, 5.4.7, 5.4.8 .2-1.1.0 , 5.4.8, 5.5.3 .2-1.2.0, 5.5.4, 5.5.6 .0-20030409, 5.5.6, 5.5.7, 6.0, 6.0.1 |
Several vulnerabilities have been reported: a remote Denial of Service vulnerability has been reported in the decoder due to a failure to handle malformed TIFF tags; a remote Denial of Service vulnerability has been reported due to a failure to handle malformed TIFF images; a remote Denial of Service vulnerability has been reported due to a failure to handle malformed PSD files; and a buffer overflow vulnerability has been reported in the SGI parser, which could let a remote malicious user execute arbitrary code.
Upgrades available at:
http://www.imagemagick.org/
script/download.php?
SuSE:
ftp://ftp.suse.com/pub/suse
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-070.html
Debian:
http://security.debian.org/
pool/updates/main/i/
imagemagick/
Mandrake:
http://www.mandrake
secure.net/en/ftp.php
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
FedoraLegacy:
http://download.
fedoralegacy.org/redhat/
Currently we are not aware of any exploits for these vulnerabilities. |
|
|
Security Tracker
Alert, 1013550,
March 24, 2005
Debian Security Advisory,
DSA 702-1,
April 1, 2005
Mandrakelinux Security Update Advisory,
MDKSA-2005:
065, April 3, 2005
Turbolinux Security Advisory,
TLSA-2005-47, April 19, 2005
Fedora Legacy Update
Advisory, FLSA:152777, July 13, 2005 |
ImageMagick
ImageMagick 6.x |
A buffer overflow vulnerability exists in 'coders/psd.c' when a specially crafted Photoshop document file is submitted, which could let a remote malicious user execute arbitrary code.
Update available at:
http://www.imagemagick.org/
www/download.html
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/i/
imagemagick/
Debian:
http://security.debian.org/pool/
updates/main/i/imagemagick/
Gentoo:
http://security.gentoo.org/
glsa/glsa-200501-26.xml
Gentoo:
http://security.gentoo.org/
glsa/glsa-200501-37.xml
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
SGI:
ftp://oss.sgi.com/projects/
sgi_propack/download/
3/updates/
Mandrake:
http://www.mandrake
secure.net/en/ftp.php
TurboLinux:
ftp://ftp.turbolinux.co.jp
/pub/TurboLinux/
TurboLinux/ia32/
FedoraLegacy:
http://download.
fedoralegacy.org/
redhat/
Currently we are not aware of any exploits for this vulnerability. |
|
High |
iDEFENSE
Security Advisory, January 17,
2005
Ubuntu Security Notice, USN-62-1, January 18,
2005
Debian Security Advisory,
DSA 646-1,
January 19, 2005
Gentoo Linux Security Advisory, GLSA 200501-26, January 20, 2005
Gentoo Linux Security
Advisory,
GLSA 200501-37,
January 26,
2005
Mandrakelinux Security Update Advisory,
MDKSA-2005:
065, April 3,
2005
Turbolinux
Security Advisory,
TLSA-2005-47, April 19, 2005
Fedora Legacy Update
Advisory, FLSA:152777, July 13, 2005
|
ImageMagick
ImageMagick 5.3.3, 5.4.3, 5.4.4.5, 5.4.7, 5.4.8 .2-1.1.0, 5.4.8,
5.5.3 .2-1.2.0, 5.5.6 .0-20030409, 5.5.7, 6.0, 6.0.1, 6.0.3-6.0.8 |
A buffer overflow vulnerability exists in the 'EXIF' parsing routine due to a boundary error, which could let a remote malicious user execute arbitrary code.
Upgrades available at:
http://sourceforge.net
/project/showfiles.
php?group_id=24099
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/i/
imagemagick/
Gentoo:
http://security.gentoo.org/
glsa/glsa-200411-11.xml
Debian:
http://security.debian.org/pool/
updates/main/i/imagemagick/
SUSE:
ftp://ftp.SUSE.com/pub
/SUSE/i386/update/
Mandrakesoft:
http://www.mandrakesoft.com/
security/advisories?name=
MDKSA-2004:143
(Red Hat has re-issued it's update.)
http://rhn.redhat.com/
errata/RHSA-2004-480.html
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
FedoraLegacy:
http://download.
fedoralegacy.org/redhat/
Currently we are not aware of any exploits for this vulnerability. |
|
High |
Security Tracker Alert ID,
1011946,
October 26, 2004
Gentoo Linux Security Advisory, GLSA 200411-11:01,
November 6,
2004
Debian Security Advisory
DSA 593-1, November 16, 2004
SUSE Security Announcement, SUSE-SA:2004:041, November
17, 2004
SUSE Security Summary Report, SUSE-SR:2004:001, November
24, 2004
Mandrakesoft Security Advisory, MDKSA-2004:
143, December 6, 2004
Red Hat Security Advisory,
RHSA-2004:636-03, December 8,
2004
Turbolinux
Security Advisory, TLSA-2005-7, January 26,
2005
Fedora Legacy Update
Advisory, FLSA:152777, July 13, 2005 |
John Bradley
XV 3.10 a |
Multiple vulnerabilities have been reported:a buffer overflow vulnerability was reported in the PDS image decoder when processing comments, which could let a remote malicious user execute arbitrary code; a vulnerability was reported in the TIFF and PDS image decoders due to format string errors, which could let a remote malicious execute arbitrary code; a vulnerability was reported due to an input validation error when handling filenames, which could let a remote malicious user execute arbitrary code.
Gentoo:
http://security.gentoo.org/
glsa/glsa-200504-17.xml
Slackware:
ftp://ftp.slackware.com/
pub/slackware/
There is no exploit code required. |
John Bradley XV Multiple
Vulnerabilities |
High |
Secunia Advisory,
SA14977,
April 19, 2005
Gentoo Linux Security Advisory, GLSA 200504-
17, April 19, 2005
Slackware Security
Advisory, SSA:2005-
195-02,
July 15, 2005 |
John Bradley
XV 3.10 a |
A format string vulnerability exists in a formatted printing function due to insufficient sanitization of user-supplied input, which could let a remote malicious user cause a Denial of Service or execute arbitrary code.
Gentoo:
http://security.gentoo.org/glsa/
glsa-200503-09.xml
SUSE:
ftp://ftp.suse.com/pub/suse/
Slackware:
ftp://ftp.slackware.com/
pub/slackware/
Currently we are not aware of any exploits for this vulnerability. |
|
|
Gentoo Linux Security
Advisory, GLSA
200503-09,
March 4, 2005
SUSE Security Summary
Report, SUSE-SR:2005:008, March 18, 2005
Slackware Security
Advisory, SSA:2005-
195-02,
July 15, 2005 |
KDE
KDE 3.4, 3.3-3.3.2, 3.2-3.2.3
|
A vulnerability has been reported in KDE Kate and KWrite because backup files are created with default permissions even if the original file had more restrictive permissions set, which could let a local/remote malicious user obtain sensitive information.
Patches available at: ftp://ftp.kde.org/pub/kde/
security_patches/
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/3/
There is no exploit code required. |
KDE Kate,
KWrite Local Backup File Information Disclosure
CAN-2005-1920
|
Medium |
Security Tracker Alert ID: 1014512, July 18, 2005
Fedora Update Notification,
FEDORA-2005-594, July 19, 2005 |
LBL
tcpdump 3.4 a6, 3.4, 3.5, alpha, 3.5.2, 3.6.2, 3.6.3, 3.7-3.7.2, 3.8.1 -3.8.3; IPCop 1.4.1, 1.4.2, 1.4.4, 1.4.5 |
Remote Denials of Service vulnerabilities have been reported due to the way tcpdump decodes Border Gateway Protocol (BGP) packets, Label Distribution Protocol (LDP) datagrams, Resource ReSerVation Protocol (RSVP) packets, and Intermediate System to Intermediate System (ISIS) packets.
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/3/
Trustix:
http://http.trustix.org/
pub/trustix/updates/
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/t/tcpdump/
Gentoo:
http://security.gentoo.org/
glsa/glsa-200505-06.xml
Mandriva:
http://www.mandriva.com/
security/advisories
IPCop:
http://ipcop.org/modules.php?
op=modload&name=Downloads
&file=index&req=viewdownload
&cid=3&orderby=dateD
FreeBSD:
ftp://ftp.FreeBSD.org/pub/
FreeBSD/CERT/patches/
SA-05:10/tcpdump.patch
Avaya:
http://support.avaya.com/
elmodocs2/security/
ASA-2005-137_
RHSA-2005-417_
RHSA-2005-421.pdf
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE
Exploit scripts have been published. |
|
Low |
Bugtraq,
396932,
April 26, 2005
Fedora Update Notification,
FEDORA-2005-351, May 3,
2005
Trustix Secure
Linux Security Advisory, TSLSA-2005-0018,
May 6, 2005
Ubuntu Security Notice,
USN-119-1 May 06, 2005
Gentoo Linux Security Advisory, GLSA 200505-06, May 9, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:087, May 12, 2005
Security Focus, 13392, May 12, 2005
FreeBSD Security Advisory,
FreeBSD-SA-05:10,
June 9, 2005
Avaya Security Advisory,
ASA-2005-137, June 13, 2005
Turbolinux
Security Advisory,
TLSA-2005-63, June 15, 2005
SUSE Security Summary
Report, SUSE-SR:2005:017,
July 13, 2005 |
Leafnode
Leafnode 1.11.2, 1.11.1, 1.9.47-1.9.29-1.9.31, 1.9.19-1.9.27 |
A remote Denial of Service vulnerability has been reported in the fetchnews program (the NNTP client) due to a failure to handle network delays.
Upgrades available at:
http://sourceforge.net
/project/showfiles.php?
group_id=57767
Mandriva:
http://www.mandriva.com/
security/advisories
There is no exploit code required. |
|
Low |
leafnode-SA-2005:02,
June 8, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:
114, July 12,
2005 |
Leafnode
Leafnode 1.9.48- 1.9.50, 1.11.1 |
A remote Denial of Service vulnerability has been reported in the fetchnews program when reading an article header or an article body.
Upgrades available at:
http://sourceforge.net/project/
showfiles.php?group_id=57767
&package_id=53446&
release_id=325112
Mandriva:
http://www.mandriva.com/
security/advisories
There is no exploit code required. |
|
Low |
Securiteam,
May 5, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:
114, July 12, 2005 |
LibTIFF
LibTIFF 3.4, 3.5.1-3.5.5, 3.5.7, 3.6 .0, 3.6.1, 3.7, 3.7.1 |
A buffer overflow vulnerability has been reported in the 'TIFFOpen()' function when opening malformed TIFF files, which could let a remote malicious user execute arbitrary code.
Patches available at:
http://bugzilla.remotesensing.org/
attachment.cgi?id=238
Gentoo:
http://security.gentoo.org/
glsa/glsa-200505-07.xml
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/t/tiff/
SuSE:
ftp://ftp.suse.com/pub/suse/
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/ia32/
Debian:
http://security.debian.org/
pool/updates/main/t/tiff/
Currently we are not aware of any exploits for this vulnerability. |
|
High |
Gentoo Linux Security Advisory, GLSA 200505-07, May 10, 2005
Ubuntu Security Notice,
USN-130-1, May 19, 2005
SUSE Security Summary Report, SUSE-SR:2005:014,
June 7, 2005
Turbolinux
Security Advisory, TLSA-2005-72, June 28, 2005
Debian Security Advisory, DSA 755-1, July 13, 2005 |
Mozilla
Bugzilla 2.18.2
|
A vulnerability has been reported in Bugzilla that could let remote malicious users disclose private summaries or modify flags.
Vendor fix available:
http://www.bugzilla.org/
download.html
Gentoo:
http://security.gentoo.org/
glsa/glsa-200507-12.xml
There is no exploit code required. |
Bugzilla Private Summary Disclosure or Flag Modification
CAN-2005-2173
CAN-2005-2174
|
Medium |
Security Tracker, Alert ID: 1014428, July 8, 2005
Gentoo Linux Security
Advisory, GLSA 200507-12,
July 13, 2005 |
Multiple Vendors
OpenLDAP 2.1.25; Padl Software pam_ldap Builds 166, 85, 202, 199, 198, 194, 183-192, 181, 180, 173, 172, 122, 121, 113, 107, 105
|
A vulnerability has been reported in OpenLDAP, 'pam_ldap,' and 'nss_ldap' when a connection to a slave is established using TLS and the client is referred to a master, which could let a remote malicious user obtain sensitive information.
Trustix:
http://http.trustix.org/pub/
trustix/updates/
Gentoo:
http://security.gentoo.org/
glsa/glsa-200507-13.xml
Mandriva:
http://www.mandriva.com/
security/advisories
There is no exploit code required. |
|
Medium |
Trustix Secure
Linux Advisory, TSLSA-2005-
0031, July 1, 2005
Gentoo Linux Security
Advisory, GLSA 200507-13,
July 14, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:
121, July 19, 2005 |
Multiple Vendors
ImageMagick 6.0-6.0.8, 6.1-6.1.8, 6.2 .0.7, 6.2 .0.4, 6.2, 6.2.1 |
A buffer overflow vulnerability has been reported due to a failure to properly validate user-supplied string lengths before copying into static process buffers, which could let a remote malicious user cause a Denial of Service.
Upgrades available at:
http://www.imagemagick.org/
script/binary-releases.php
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/3/
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/
i/imagemagick/
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-413.html
SGI:
ftp://patches.sgi.com/
support/free/security/
advisories/
Trustix:
http://http.trustix.org/
pub/trustix/updates/
TurboLinux:
ftp://ftp.turbolinux.co.jp/
pub/TurboLinux/
TurboLinux/ia32/Server/
FedoraLegacy:
http://download.
fedoralegacy.org/redhat/
A Proof of Concept exploit has been published. |
|
|
Security Focus, 13351, April 25, 2005
Fedora Update Notification
FEDORA-2005-344,
April 28, 2005
Ubuntu Security Notice,
USN-132-1, May 23, 2005,
RedHat Security Advisory,
RHSA-2005:413-04, May 25, 2005
SGI Security Advisory, 20050503-01-U, June 8, 2005
Trustix Secure
Linux Advisory,
TSLSA-2005-
0031, July 1, 2005
Turbolinux Security Advisory, TLSA-2005-75, July 6, 2005
Fedora Legacy Update
Advisory, FLSA:152777, July 13, 2005 |
Multiple Vendors
RedHat Fedora Core3;
LBL tcpdump 3.9.1, 3.9, 3.8.1-3.8.3, 3.7-3.7.2, 3.6.3, 3.6.2, 3.5.2, 3.5, alpha, 3.4, 3.4 a6 |
A remote Denial of Service vulnerability has been reported in the 'bgp_update_print()' function in 'print-bgp.c' when a malicious user submits specially crafted BGP protocol data.
Update available at:
http://cvs.tcpdump.org/
cgi-bin/cvsweb/
tcpdump/print-bgp.c
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/3/
Trustix:
ftp://ftp.trustix.org/pub/
trustix/updates/
Mandriva:
http://www.mandriva.com/
security/advisories
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/4/
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/t/tcpdump/
TurboLinux:
ftp://ftp.turbolinux.co.jp
/pub/TurboLinux/
TurboLinux/ia32/
Slackware:
ftp://ftp.slackware.com/
pub/slackware
A Proof of Concept exploit script has been published. |
|
Low |
Security Tracker Alert, 1014133, June 8, 2005
Fedora Update Notification,
FEDORA-2005-406, June 9, 2005
Trustix Secure Linux Security Advisory, TLSA-2005-0028, June 13, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:101, June 15, 2005
Fedora Update Notification,
FEDORA-2005-407, June 16, 2005
Ubuntu Security Notice,
USN-141-1,
June 21, 2005
Turbolinux
Security Advisory, TLSA-2005-69,
June 22, 2005
Slackware Security
Advisory, SSA:2005-
195-10,
July 15, 2005 |
Multiple Vendors
Squid Web
Proxy Cache 2.5 .STABLE9, .STABLE8, .STABLE7 |
A vulnerability exists when using the Netscape Set-Cookie recommendations for handling cookies in caches due to a race condition, which could let a malicious user obtain sensitive information.
Patches available at:
http://www.squid-cache.org/
Versions/v2/2.5/bugs/
squid-2.5.STABLE9-
setcookie.patch
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/s/squid/
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
Conectiva:
ftp://atualizacoes.
conectiva.com.br/
Mandrake:
http://www.mandrakesecure.
net/en/ftp.php
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-415.html
TurboLinux:
ftp://ftp.turbolinux.co.jp/
pub/TurboLinux/
TurboLinux/ia32/
SGI:
http://www.sgi.com/
support/security/
There is no exploit code required.
|
Squid Proxy
Set-Cookie Headers Information Disclosure
CAN-2005-0626
|
Medium |
Secunia Advisory, SA14451,
March 3, 2005
Ubuntu Security
Notice,
USN-93-1
March 08, 2005
Fedora Update Notifications,
FEDORA-2005-
275 & 276,
March 30, 2005
Conectiva Linux Security Announce-
ment, CLA-2005:948,
April 27, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:078, April 29, 2005
RedHat Security Advisory,
RHSA-2005:415-16, June 14, 2005
Turbolinux
Security Advisory, TLSA-2005-71, June 28, 2005
SGI Security Advisory, 20050605-01-U, July 12, 2005 |
Multiple Vendors
zlib 1.2.2, 1.2.1, 1.2 .0.7, 1.1-1.1.4, 1.0-1.0.9; Ubuntu Linux 5.0 4, powerpc, i386, amd64, 4.1 ppc, ia64, ia32; SuSE Open-Enterprise-Server 9.0, Novell Linux Desktop 9.0, Linux Professional 9.3, x86_64, 9.2, x86_64, 9.1, x86_64, Linux Personal 9.3, x86_64, 9.2, x86_64, 9.1, x86_64, Linux Enterprise Server 9; Gentoo Linux;
FreeBSD 5.4, -RELENG, -RELEASE, -PRERELEASE, 5.3, -STABLE, -RELENG, -RELEASE;
Debian Linux 3.1, sparc, s/390, ppc, mipsel, mips, m68k, ia-64, ia-32, hppa, arm, alpha |
A buffer overflow vulnerability has been reported due to insufficient validation of input data prior to utilizing it in a memory copy operation, which could let a remote malicious user execute arbitrary code.
Debian:
tp://security.debian.org/pool/
updates/main/z/zlib/
FreeBSD:
ftp://ftp.FreeBSD.org/pub/
FreeBSD/CERT/patches/
SA-05:16/zlib.patch
Gentoo:
http://security.gentoo.org/
glsa/glsa-200507-05.xml
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/z/zlib/
Mandriva:
http://www.mandriva.com/
security/advisories
OpenBSD:
http://www.openbsd.org/
errata.html
OpenPKG:
ftp.openpkg.org
RedHat:
http://rhn.redhat.com/
errata/RHSA-2005-569.html
Trustix:
http://http.trustix.org/pub/
trustix/updates/
Slackware:
ftp://ftp.slackware.com/
pub/slackware/
TurboLinux:
ftp://ftp.turbolinux.co.jp/pub/
TurboLinux/TurboLinux/
ia32/Server/10
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
Currently we are not aware of any exploits for this vulnerability. |
|
High |
Debian Security Advisory
DSA 740-1,
July 6, 2005
FreeBSD Security Advisory,
FreeBSD-SA-05:16, J
uly 6, 2005
Gentoo Linux Security Advisory, GLSA 200507-
05, July 6, 2005
SUSE Security Announcement, SUSE-SA:2005:039,
July 6, 2005
Ubuntu Security Notice,
USN-148-1, July 06, 2005
RedHat Security Advisory, RHSA-2005:569-03,
July 6, 2005
Fedora Update Notifications,
FEDORA-2005-523, 524,
July 7, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:11, July 7, 2005
OpenPKG
Security Advisory, OpenPKG-SA-2005.013,
July 7, 2005
Trustix Secure
Linux Security Advisory,
TSLSA-2005-
0034, July 8,
2005
Slackware Security
Advisory, SSA:2005-
189-01,
July 11, 2005
Turbolinux Security
Advisory, TLSA-2005-77,
July 11, 2005
Fedora Update Notification, FEDORA-2005-565, July 13, 2005
SUSE Security Summary
Report, SUSE-SR:2005:017,
July 13, 2005
|
Multiple Vendors
dhcpcd 1.3.22 |
A vulnerability has been reported in dchpcd that could let a remote user perform a Denial of Service.
Debian:
http://security.debian.org/
pool/updates/main/d/dhcpcd/
Mandriva:
http://www.mandriva.com/
security/advisories
Gentoo:
http://security.gentoo.org/
glsa/glsa-200507-16.xml
Currently we are not aware of any exploits for this vulnerability. |
dhcpcd Denial of Service
CAN-2005-1848 |
Low |
Secunia, Advisory: SA15982, July 11, 2005
Debian Security Advisory,
DSA 750-1,
July 11, 2005
Mandriva Linux Security Update Advisory,
MDKSA-2005:117, July 13, 2005
Gentoo Linux Security
Advisory, GLSA 200507-16,
July 15, 2005 |
Multiple Vendors
Enlightenment Imlib2 1.0-1.0.5, 1.1, 1.1.1;
ImageMagick ImageMagick 5.4.3, 5.4.4 .5, 5.4.8 .2-1.1.0 , 5.5.3 .2-1.2.0, 5.5.6 .0- 2003040, 5.5.7,6.0.2;
Imlib Imlib 1.9-1.9.14 |
Multiple buffer overflow vulnerabilities exist in the Iimlib/Imlib2 libraries when handling malformed bitmap images, which could let a remote malicious user cause a Denial of Service or execute arbitrary code.
lmlib:
http://cvs.sourceforge.net/
viewcvs.py/enlightenment/
e17/
ImageMagick:
http://www.imagemagick.org/
www/download.html
Gentoo:
http://security.gentoo.org/
glsa/glsa-200409-12.xml
Mandrake:
http://www.mandrakesecure.
net/en/ftp.php
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
Debian:
http://security.debian.org/
pool/updates/main/i/
imagemagick/
RedHat:
http://rhn.redhat.com/errata/
RHSA-2004-465.html
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE/
TurboLinux:
ftp://ftp.turbolinux.com/pub/
TurboLinux/TurboLinux/
ia32/Desktop/
Conectiva:
ftp://atualizacoes.conectiva.
com.br/
Sun:
http://sunsolve.sun.com/
search/document.do?
assetkey=1-26-57648-1
&searchclause=
http://sunsolve.sun.com/
search/document.do?
assetkey=1-26-57645-
1&searchclause=
TurboLinux:
ftp://ftp.turbolinux.com/pub/
TurboLinux/TurboLinux/ia32/
RedHat:
http://rhn.redhat.com/errata/
RHSA-2004-480.html
Ubuntu:
http://security.ubuntu.com/
ubuntu/pool/main/i/
imagemagick/i
RedHat:
http://rhn.redhat.com/errata/
RHSA-2004-636.html
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE/
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
FedoraLegacy:
http://download.
fedoralegacy.org/redhat/
Currently we are not aware of any exploits for these vulnerabilities.
|
IMLib/IMLib2 Multiple BMP Image
Decoding Buffer Overflows
CAN-2004-0817
CAN-2004-0802 |
|
Security Focus, September 1, 2004
Gentoo Linux Security Advisory, GLSA 200409-12,
September
8, 2004
Mandrakelinux Security Update Advisory,
MDKSA-2004:089, September
8, 2004
Fedora Update Notifications,
FEDORA-
2004-300 &301, September
9, 2004
Turbolinux Security Advisory,
TLSA-2004-27, September 15, 2004
RedHat Security Advisory,
RHSA-2004:465-08, September
15, 2004
Debian Security Advisories,
DSA 547-1 & 548-1, September 16, 2004
Conectiva Linux Security
Announcement,
CLA-2004:870, September 28, 2004
Sun(sm) Alert Notifications,
57645 & 57648,
September 20, 2004
Turbolinux Security Announcement,
October 5, 2004
RedHat Security Update, RHSA-2004:480-05,
October 20, 2004
Ubuntu Security
Notice USN-35-1, November
30, 2004
RedHat Security Advisory, RHSA-2004:636-03, December
8, 2004
SUSE Security Summary Report, SUSE-SR:2005:002, January 26, 2005
Fedora Update Notifications,
FEDORA-2005-
234 & 235,
March 30, 2005
Fedora Legacy Update
Advisory, FLSA:152777, July 13, 2005
|
Multiple Vendors
glibc 2.2 |
A buffer overflow vulnerability exists in the resolver libraries of glibc 2.2.
SUSE:
ftp://ftp.SUSE.com/
pub/SUSE
Red Hat:
http://rhn.redhat.com/errata/
RHSA-2004-586.html
Mandrakesoft:
http://www.mandrakesoft.com/
security/advisories?name=
MDKSA-2004:159
Avaya:
http://support.avaya.com/
elmodocs2/security/
ASA-2005-011_
RHSA-2004-586.pdf
Avaya:
http://support.avaya.com/
elmodocs2/security/
ASA-2005-155.pdf
Currently we are not aware of any exploits for this vulnerability. |
Multiple Vendors glibc Buffer Overflow
CAN-2002-0029
CAN-2004-0968
|
Low |
SUSE Security Summary Report, SUSE-SR:2004:002, November
30, 2004
Red Hat
RHSA-2004:586-15, December 20, 2004
Mandrakesoft, MDKSA-2004:
159, December
29, 2004
Avaya Security Advisory, ASA-2005-011,
January 14, 2005
Avaya Security Advisory,
ASA-2005-155, July 14, 2005 |
Multiple Vendors
GNU Debian Linux 3.0, sparc, s/390, ppc, mipsel, mips, m68k, ia-64, ia-32, hppa, arm, alpha;
GNOME gdk-pixbug 0.22 & prior; GTK GTK+ 2.0.2, 2.0.6, 2.2.1, 2.2.3, 2.2.4;
MandrakeSoft Linux Mandrake 9.2, amd64, 10.0, AMD64;
RedHat Advanced Workstation for the Itanium Processor 2.1, IA64, Desktop 3.0, Enterprise Linux WS 3, WS 2.1 IA64, WS 2.1, ES 3, ES 2.1 IA64, ES 2.1, AS 3, AS 2.1 IA64, AS 2.1,
RedHat Fedora Core1&2;
SuSE. Linux 8.1, 8.2, 9.0, x86_64, 9.1, Desktop 1.0, Enterprise Server 9, 8 |
Multiple vulnerabilities exist: a vulnerability exists when decoding BMP images, which could let a remote malicious user cause a Denial of Service; a vulnerability exists when decoding XPM images, which could let a remote malicious user cause a Denial of Service or execute arbitrary code; and a vulnerability exists when attempting to decode ICO images, which could let a remote malicious user cause a Denial of Service.
Debian:
http://security.debian.org/
pool/updates/main/
g/gdk-pixbuf/
Fedora:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
Mandrake:
http://www.mandrakesecure.
net/en/ftp.php
RedHat:
http://download.fedora.
redhat.com/pub/fedora/
linux/core/updates/
SuSE:
ftp://ftp.suse.com/pub/suse/ | |
| |
