|
Vulnerability Report: Mandriva Linux 2007.0
|
This vulnerability report for Mandriva Linux 2007.0 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Mandriva Linux 2007.0 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
56 Secunia Advisories in 2006
|
Secunia has issued a total of 56 Secunia advisories in 2006 for Mandriva Linux 2007.0. Currently, 0% (0 out of 56) are marked as unpatched.
More information about the specific Secunia advisories affecting Mandriva Linux 2007.0 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2006-12-21 |
Secunia Advisory ID:
SA23435 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-19 |
Secunia Advisory ID:
SA23392 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for proftpd. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-19 |
Secunia Advisory ID:
SA23390 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for dbus. This fixes a weakness, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-12-15 |
Secunia Advisory ID:
SA23381 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for gdm. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-14 |
Secunia Advisory ID:
SA23362 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-12-14 |
Secunia Advisory ID:
SA23353 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for evince. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-12 |
Secunia Advisory ID:
SA23290 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-12 |
Secunia Advisory ID:
SA23300 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for kdegraphics. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-12-07 |
Secunia Advisory ID:
SA23268 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-12-06 |
Secunia Advisory ID:
SA23242 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for xine-lib. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-04 |
Secunia Advisory ID:
SA23220 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for koffice. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-01 |
Secunia Advisory ID:
SA23166 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for libgsf. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-01 |
Secunia Advisory ID:
SA23161 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for GnuPG. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2006-12-01 |
Secunia Advisory ID:
SA23184 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for proftpd. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-29 |
Secunia Advisory ID:
SA23117 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for tar. This fixes a security issue, which can be exploited by malicious people to overwrite arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-22 |
Secunia Advisory ID:
SA23000 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for proftpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-11-21 |
Secunia Advisory ID:
SA23020 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for avahi. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-21 |
Secunia Advisory ID:
SA23022 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From local network |
|
Short Description:
Mandriva has issued an update for links. This fixes a vulnerability, which can be exploited by malicious people to expose sensitive information and manipulate data. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-20 |
Secunia Advisory ID:
SA23033 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for xorg-x11. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-20 |
Secunia Advisory ID:
SA23018 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for gv. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-20 |
Secunia Advisory ID:
SA22953 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for openldap. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-11-20 |
Secunia Advisory ID:
SA22948 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for bind. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-11-17 |
Secunia Advisory ID:
SA22958 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for doxygen. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-17 |
Secunia Advisory ID:
SA22957 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for chromium. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-17 |
Secunia Advisory ID:
SA22956 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for libpng. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-11-13 |
Secunia Advisory ID:
SA22815 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-13 |
Secunia Advisory ID:
SA22817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-13 |
Secunia Advisory ID:
SA22814 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for openssh. This fixes a weakness, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-09 |
Secunia Advisory ID:
SA22777 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for texinfo. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-08 |
Secunia Advisory ID:
SA22696 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for pam_ldap. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-08 |
Secunia Advisory ID:
SA22705 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for wvWare. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-08 |
Secunia Advisory ID:
SA22768 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for librpm4. This fixes a vulnerability which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-08 |
Secunia Advisory ID:
SA22749 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for libx11. This fixes a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-08 |
Secunia Advisory ID:
SA22752 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for imlib2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2006-11-07 |
Secunia Advisory ID:
SA22762 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-11-03 |
Secunia Advisory ID:
SA22692 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-11-03 |
Secunia Advisory ID:
SA22693 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for php. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-31 |
Secunia Advisory ID:
SA22604 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for ImageMagick. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-31 |
Secunia Advisory ID:
SA22606 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Mandriva has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-10-30 |
Secunia Advisory ID:
SA22614 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-30 |
Secunia Advisory ID:
SA22611 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for screen. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-30 |
Secunia Advisory ID:
SA22641 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Mandriva has issued an update for xsupplicant. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-30 |
Secunia Advisory ID:
SA22640 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for mutt. This fixes some weaknesses, which potentially can be exploited by malicious people to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-30 |
Secunia Advisory ID:
SA22615 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2006-10-25 |
Secunia Advisory ID:
SA22579 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for Qt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-20 |
Secunia Advisory ID:
SA22492 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-18 |
Secunia Advisory ID:
SA22424 |
Solution Status:
Vendor Workaround |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Mandriva has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-18 |
Secunia Advisory ID:
SA22421 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-11 |
Secunia Advisory ID:
SA22358 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for python. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-04 |
Secunia Advisory ID:
SA22245 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for openssh. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-03 |
Secunia Advisory ID:
SA22259 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for ntp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-10-03 |
Secunia Advisory ID:
SA22212 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for openssl. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-09-29 |
Secunia Advisory ID:
SA22203 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for gstreamer-ffmpeg. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-09-29 |
Secunia Advisory ID:
SA22200 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-09-29 |
Secunia Advisory ID:
SA22191 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for libmusicbrainz. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2006-09-29 |
Secunia Advisory ID:
SA22114 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Mandriva has issued an update for webmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose potentially sensitive information. [Read More]
|
|
|
