|
Vulnerability Report: Conectiva Linux 9
|
This vulnerability report for Conectiva Linux 9 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Conectiva Linux 9 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
54 Secunia Advisories in 2004
|
Secunia has issued a total of 54 Secunia advisories in 2004 for Conectiva Linux 9. Currently, 0% (0 out of 54) are marked as unpatched.
More information about the specific Secunia advisories affecting Conectiva Linux 9 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2004-12-30 |
Secunia Advisory ID:
SA13682 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Conectiva has issued an update for netpbm. This fixes a vulnerability, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-02 |
Secunia Advisory ID:
SA13342 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for squirrelmail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-02 |
Secunia Advisory ID:
SA13346 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for cyrus-imapd. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-02 |
Secunia Advisory ID:
SA13344 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for abiword. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-24 |
Secunia Advisory ID:
SA13299 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for bugzilla. This fixes a security issue, which can be exploited by malicious users to remove keywords from bugs, even though the user doesn't have the proper permissions. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-23 |
Secunia Advisory ID:
SA13283 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Conectiva has issued an update for shadow-utils. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-18 |
Secunia Advisory ID:
SA13222 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
System access
|
Where:
From local network |
|
Short Description:
Conectiva has issued an update for mysql. This fixes multiple vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise the system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-18 |
Secunia Advisory ID:
SA13238 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for libxml. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-12 |
Secunia Advisory ID:
SA13171 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Conectiva has issued an update for sasl2. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-08 |
Secunia Advisory ID:
SA13128 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for libtiff3. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-11-08 |
Secunia Advisory ID:
SA13127 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for xpdf. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-05 |
Secunia Advisory ID:
SA13101 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for gaim. This fixes multiple vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-05 |
Secunia Advisory ID:
SA13102 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for apache. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-03 |
Secunia Advisory ID:
SA13044 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for squid. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-11-01 |
Secunia Advisory ID:
SA13048 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for rsync. This fixes two vulnerabilities, which potentially can be exploited by malicious users to read or write arbitrary files on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-28 |
Secunia Advisory ID:
SA13011 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Conectiva has issued an update for foomatic-filters. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-25 |
Secunia Advisory ID:
SA12952 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
Manipulation of data
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for mozilla. This fixes multiple vulnerabilities, which can be exploited to cause a DoS (Denial of Service), conduct spoofing and cross-site scripting attacks, access and modify sensitive information, or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-19 |
Secunia Advisory ID:
SA12872 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for gtk+. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-14 |
Secunia Advisory ID:
SA12830 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Conectiva has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-10-14 |
Secunia Advisory ID:
SA12829 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From local network |
|
Short Description:
Conectiva has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and access arbitrary files and directories. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-28 |
Secunia Advisory ID:
SA12675 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updates for imlib and imlib2. These fix some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-27 |
Secunia Advisory ID:
SA12663 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From local network |
|
Short Description:
Conectiva has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-24 |
Secunia Advisory ID:
SA12646 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for apache. This fixes multiple vulnerabilities, which can be exploited to cause a DoS (Denial of Service), gain escalated privileges, and potentially compromise a system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-23 |
Secunia Advisory ID:
SA12630 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for qt3. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-23 |
Secunia Advisory ID:
SA12624 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Connectiva has issued an update for spamassassin. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-09-14 |
Secunia Advisory ID:
SA12521 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Hijacking
Spoofing
Privilege escalation
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for kde. This fixes multiple vulnerabilities, which can be exploited to perform certain actions on a vulnerable system with escalated privileges, spoof the content of websites, or hijack sessions. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-10 |
Secunia Advisory ID:
SA12503 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for krb5. This fixes multiple vulnerabilities, where the most critical potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-13 |
Secunia Advisory ID:
SA12289 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for squirrelmail. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting, script insertion, and SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-09 |
Secunia Advisory ID:
SA12242 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for libpng. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-02 |
Secunia Advisory ID:
SA12167 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Conectiva has issued an update for samba. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-02 |
Secunia Advisory ID:
SA12158 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for SoX. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-19 |
Secunia Advisory ID:
SA12081 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
Security Bypass
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for php4. This fixes two vulnerabilities, which can be exploited by malicious people to bypass certain security functionality or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-16 |
Secunia Advisory ID:
SA12075 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Conectiva has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited to gain escalated privileges, cause a DoS (Denial of Service), or gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2004-06-23 |
Secunia Advisory ID:
SA11921 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Conectiva as issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), gain knowledge of sensitive information, or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-27 |
Secunia Advisory ID:
SA11725 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for kde. This fixes a vulnerability, which can be exploited by malicious people to create or truncate files on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-26 |
Secunia Advisory ID:
SA11702 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for libneon. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-26 |
Secunia Advisory ID:
SA11707 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued an update for mailman. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), or retrieve users' passwords. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-07 |
Secunia Advisory ID:
SA11564 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for lha. These fix multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-14 |
Secunia Advisory ID:
SA11353 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for Apache 2. These fix three vulnerabilities, potentially allowing malicious people to cause a Denial of Service or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-13 |
Secunia Advisory ID:
SA11345 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for mod_python. These fix a vulnerability, which can be exploited by malicious people to cause a Denial of Service. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-01 |
Secunia Advisory ID:
SA11268 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for mc. These fix a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-01 |
Secunia Advisory ID:
SA11267 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for OpenSSL. These fix three vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial-of-Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-04-01 |
Secunia Advisory ID:
SA11266 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for ethereal. These fix multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-01 |
Secunia Advisory ID:
SA11265 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for libxml2. These fix some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-23 |
Secunia Advisory ID:
SA10944 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
Privilege escalation
|
Where:
From local network |
|
Short Description:
Conectiva has issued updated packages for XFree86. This fixes some vulnerabilities, which potentially can be exploited by malicious users to escalate their privileges on a vulnerable system or compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-23 |
Secunia Advisory ID:
SA10943 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Conectiva has issued updated packages for the kernel. These fix various vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-11 |
Secunia Advisory ID:
SA10838 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for gaim. These fix multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-06 |
Secunia Advisory ID:
SA10802 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Conectiva has issued updated packages for libtool. These fix a vulnerability, allowing malicious users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-20 |
Secunia Advisory ID:
SA10682 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for cvs. These fix a vulnerability, which can be exploited by malicious users to create arbitrary folders and possibly files in the root of the host's file system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-20 |
Secunia Advisory ID:
SA10681 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for kdepim. These fix a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-20 |
Secunia Advisory ID:
SA10680 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Conectiva has issued updated packages for screen. These fix a vulnerability, which potentially may allow malicious, local users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-07 |
Secunia Advisory ID:
SA10568 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for ethereal. These fix two vulnerabilities, which can be exploited by malicious people to crash the application. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-06 |
Secunia Advisory ID:
SA10548 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Conectiva has issued updated packages for lftp. These fix two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-05 |
Secunia Advisory ID:
SA10537 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
Privilege escalation
|
Where:
Local system |
|
Short Description:
Conectiva has issued updated packages for the kernel. These fix two vulnerabilities, which may disclose sensitive information to malicious, local users or allow them to gain escalated privileges. [Read More]
|
|
|
