|
Vulnerability Report: Red Hat Enterprise Linux AS 3
|
This vulnerability report for Red Hat Enterprise Linux AS 3 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Red Hat Enterprise Linux AS 3 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
105 Secunia Advisories in 2004
|
Secunia has issued a total of 105 Secunia advisories in 2004 for Red Hat Enterprise Linux AS 3. Currently, 0% (0 out of 105) are marked as unpatched.
More information about the specific Secunia advisories affecting Red Hat Enterprise Linux AS 3 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2004-12-24 |
Secunia Advisory ID:
SA13659 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Red Hat has issued updated packages for the kernel. These fixes some vulnerabilities, allowing malicious, local users to escalate their privileges, cause a DoS (Denial of Service), and gain knowledge of sensitive information or malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-24 |
Secunia Advisory ID:
SA13658 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for SquirrelMail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-23 |
Secunia Advisory ID:
SA13639 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for acroread. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-22 |
Secunia Advisory ID:
SA13614 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for PHP. This fixes some vulnerabilities, which can be exploited to gain escalated privileges, bypass certain security restrictions, gain knowledge of sensitive information, or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-21 |
Secunia Advisory ID:
SA13597 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for nfs-utils. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-21 |
Secunia Advisory ID:
SA13595 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for XFree86. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-21 |
Secunia Advisory ID:
SA13594 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for glibc. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-21 |
Secunia Advisory ID:
SA13598 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for rh-postgresql. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-17 |
Secunia Advisory ID:
SA13505 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for zip. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-17 |
Secunia Advisory ID:
SA13506 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for libxml. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-17 |
Secunia Advisory ID:
SA13507 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-17 |
Secunia Advisory ID:
SA13520 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for gd. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-14 |
Secunia Advisory ID:
SA13454 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-12-13 |
Secunia Advisory ID:
SA13435 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for imlib. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-09 |
Secunia Advisory ID:
SA13406 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for ImageMagick. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-12-03 |
Secunia Advisory ID:
SA13359 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for the kernel. This fixes multiple vulnerabilities, which potentially can be exploited to gain escalated privileges, bypass certain security restrictions, or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-12-03 |
Secunia Advisory ID:
SA13350 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for openmotif. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-17 |
Secunia Advisory ID:
SA13219 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for samba. This fixes two vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-15 |
Secunia Advisory ID:
SA13194 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for httpd. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2004-11-15 |
Secunia Advisory ID:
SA13193 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for freeradius. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-11-15 |
Secunia Advisory ID:
SA13192 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for libxml2. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-27 |
Secunia Advisory ID:
SA13007 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for mysql-server. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-27 |
Secunia Advisory ID:
SA13006 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for xpdf. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-22 |
Secunia Advisory ID:
SA12950 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for cups. This fixes some vulnerabilities, which potentially can be exploited to compromise a vulnerable system or gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-22 |
Secunia Advisory ID:
SA12947 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-10-21 |
Secunia Advisory ID:
SA12910 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for gaim. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-21 |
Secunia Advisory ID:
SA12912 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for mysql. This fixes multiple vulnerabilities, which can be exploited to perform certain actions with escalated privileges, bypass certain security restrictions, cause a DoS (Denial of Service), or compromise the system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-21 |
Secunia Advisory ID:
SA12913 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
Privilege escalation
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for imagemagick. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system, or by malicious, local users to perform certain actions on a vulnerable system with the privileges of another user. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-21 |
Secunia Advisory ID:
SA12911 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-10-08 |
Secunia Advisory ID:
SA12767 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for cyrus-sasl. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-05 |
Secunia Advisory ID:
SA12727 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for XFree86. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-05 |
Secunia Advisory ID:
SA12725 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Hijacking
Spoofing
Privilege escalation
|
Where:
From remote |
|
Short Description:
Red Hat has issued updates for kdelibs and kdebase. These fix multiple vulnerabilities, which can be exploited to perform certain actions on a vulnerable system with escalated privileges, spoof the content of websites, or hijack sessions. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-01 |
Secunia Advisory ID:
SA12701 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for ruby. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2004-10-01 |
Secunia Advisory ID:
SA12700 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for spamassassin. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-10-01 |
Secunia Advisory ID:
SA12699 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-10-01 |
Secunia Advisory ID:
SA12698 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for mozilla. This fixes multiple vulnerabilities, which can be exploited to conduct cross-site scripting attacks, access and modify sensitive information, and compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-23 |
Secunia Advisory ID:
SA12632 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From local network |
|
Short Description:
John Buswell has reported a security issue in redhat-config-nfs, which may result in users having more permissions than expected on exported resources. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-23 |
Secunia Advisory ID:
SA12631 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for samba. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-09-16 |
Secunia Advisory ID:
SA12543 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for gdk-pixbuf. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-16 |
Secunia Advisory ID:
SA12568 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for gtk2. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-16 |
Secunia Advisory ID:
SA12571 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for CUPS. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-09-15 |
Secunia Advisory ID:
SA12539 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for imlib. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-15 |
Secunia Advisory ID:
SA12546 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for openoffice.org. This fixes a vulnerability, which can be exploited by malicious, local users to gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-15 |
Secunia Advisory ID:
SA12547 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for httpd. This fixes multiple vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-07 |
Secunia Advisory ID:
SA12480 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for gaim. This fixes multiple vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-02 |
Secunia Advisory ID:
SA12437 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for LHA. This fixes some vulnerabilities, which can be exploited to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-02 |
Secunia Advisory ID:
SA12443 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for httpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-09-02 |
Secunia Advisory ID:
SA12433 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Exposure of system information
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for rsync. This fixes a vulnerability, which potentially can be exploited by malicious users to read or write arbitrary files on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-09-01 |
Secunia Advisory ID:
SA12414 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for krb5. This fixes multiple vulnerabilities, where the most critical potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-26 |
Secunia Advisory ID:
SA12388 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for acroread. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-23 |
Secunia Advisory ID:
SA12350 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for qt. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-06 |
Secunia Advisory ID:
SA12227 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has reported a vulnerability in GNOME VFS, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-06 |
Secunia Advisory ID:
SA12237 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for Ethereal. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-05 |
Secunia Advisory ID:
SA12234 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for mozilla. This fixes multiple vulnerabilities, where the most serious can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-05 |
Secunia Advisory ID:
SA12225 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for libpng. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-08-04 |
Secunia Advisory ID:
SA12211 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
DoS
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain knowledge of sensitive information or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-07-30 |
Secunia Advisory ID:
SA12185 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for ipsec-tools. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-30 |
Secunia Advisory ID:
SA12184 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for sox. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-23 |
Secunia Advisory ID:
SA12133 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for samba. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-19 |
Secunia Advisory ID:
SA12106 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for php. This fixes two vulnerabilities, which can be exploited by malicious people to bypass certain security functionality or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-06 |
Secunia Advisory ID:
SA12023 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for httpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-07-02 |
Secunia Advisory ID:
SA11998 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From local network |
|
Short Description:
Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions [Read More]
|
|
|
|
|
|
Release Date:
2004-06-21 |
Secunia Advisory ID:
SA11908 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2004-06-21 |
Secunia Advisory ID:
SA11892 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for the kernel. This fixes various vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose kernel memory, or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-06-15 |
Secunia Advisory ID:
SA11870 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for squirrelmail. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting, script insertion, and SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2004-06-10 |
Secunia Advisory ID:
SA11834 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for CVS. This fixes multiple vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-06-10 |
Secunia Advisory ID:
SA11838 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-06-10 |
Secunia Advisory ID:
SA11837 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-06-10 |
Secunia Advisory ID:
SA11836 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for ethereal. This fixes multiple vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system or cause a DoS (Denial-of-Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-05-26 |
Secunia Advisory ID:
SA11710 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for tcpdump. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-05-26 |
Secunia Advisory ID:
SA11709 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for LHA. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-26 |
Secunia Advisory ID:
SA11708 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued an update for utempter. This fixes a security issue, which potentially can be exploited by malicious, local users to perform certain actions with higher privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-20 |
Secunia Advisory ID:
SA11669 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Security Bypass
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for rsync. These fix a vulnerability, potentially allowing malicious people to write files outside the intended directory. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-20 |
Secunia Advisory ID:
SA11667 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updates for libpng. These fix a vulnerability, potentially allowing malicious people to cause a Denial of Service against certain applications. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-19 |
Secunia Advisory ID:
SA11647 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for cvs. These fix a vulnerability, which can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-18 |
Secunia Advisory ID:
SA11631 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for kdelibs. These fix a vulnerability, which can be exploited by malicious people to create or truncate files on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-12 |
Secunia Advisory ID:
SA11600 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
Exposure of sensitive information
Exposure of system information
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for the kernel. These fix various vulnerabilities, which can be exploited by malicious, local users to gain knowledge of sensitive information or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-05-12 |
Secunia Advisory ID:
SA11599 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Hijacking
Security Bypass
Manipulation of data
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for ipsec-tools. These fix various vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), establish unauthorised connections, and conduct MitM (Man-in-the-Middle) attacks. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-30 |
Secunia Advisory ID:
SA11512 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued an update for xchat. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-23 |
Secunia Advisory ID:
SA11469 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for the kernel. These fix various vulnerabilities, which can be exploited by malicious users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-15 |
Secunia Advisory ID:
SA11379 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for OpenOffice. These fix a vulnerability allowing malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-04-15 |
Secunia Advisory ID:
SA11371 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for CVS. These fix two vulnerabilities allowing malicious servers to compromise clients, and malicious users to retrieve arbitrary files from a vulnerable server. [Read More]
|
|
|
|
|
|
Release Date:
2004-03-31 |
Secunia Advisory ID:
SA11250 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for ethereal. These fix multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-03-30 |
Secunia Advisory ID:
SA11239 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
Cross Site Scripting
Security Bypass
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for mozilla, which fixes various vulnerabilities. [Read More]
|
|
|
|
|
|
Release Date:
2004-03-23 |
Secunia Advisory ID:
SA11197 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for mod_ssl. These fix a vulnerability allowing malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-03-18 |
Secunia Advisory ID:
SA11147 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for OpenSSL. These fix three vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial-of-Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-03-11 |
Secunia Advisory ID:
SA11106 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for sysstat. These fix a vulnerability, allowing malicious local users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-03-11 |
Secunia Advisory ID:
SA11104 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Red Hat has issued updated packages for nfs-utils. These fix a vulnerability, which can be exploited by malicious people to crash rpc.mountd. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-27 |
Secunia Advisory ID:
SA10986 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for libxml2. These fix some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-27 |
Secunia Advisory ID:
SA10985 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for mod_python. These fix a vulnerability, which can be exploited by malicious people to cause a Denial of Service. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-20 |
Secunia Advisory ID:
SA10932 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued an updated package for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-18 |
Secunia Advisory ID:
SA10896 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for pwlib. These fix some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2004-02-16 |
Secunia Advisory ID:
SA10872 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for XFree86. These fix some vulnerabilities, which potentially can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-11 |
Secunia Advisory ID:
SA10847 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for Mutt. These fix a vulnerability which can be exploited to crash the mail client or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-02-03 |
Secunia Advisory ID:
SA10771 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for netpbm. These fix a vulnerability, allowing malicious users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-27 |
Secunia Advisory ID:
SA10721 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for gaim. These fix multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-27 |
Secunia Advisory ID:
SA10720 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for slocate. These fix a vulnerability, which can be exploited by malicious, local users to gain "slocate" group privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-21 |
Secunia Advisory ID:
SA10684 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for ethereal. These fix two vulnerabilities, which can be exploited by malicious people to crash the application. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-19 |
Secunia Advisory ID:
SA10658 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated kernel packages. These fix a vulnerability, allowing malicious users to escalate their privileges through a vulnerability in the 32-bit ptrace emulation. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-16 |
Secunia Advisory ID:
SA10643 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From local network |
|
Short Description:
Red Hat has issued updated packages for net-snmp. These fix a vulnerability, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-15 |
Secunia Advisory ID:
SA10626 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for kdepim. These fix a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-15 |
Secunia Advisory ID:
SA10639 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for tcpdump. These fix three vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a system running tcpdump. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-15 |
Secunia Advisory ID:
SA10627 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
|
Where:
From remote |
|
Short Description:
Red Hat has issued updated packages for cvs, which fix two vulnerabilities. The first vulnerability can be exploited by malicious users to create arbitrary folders and possibly files in the root of the host's file system. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-14 |
Secunia Advisory ID:
SA10624 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for httpd. These fix a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or escalate privileges. [Read More]
|
|
|
|
|
|
Release Date:
2004-01-08 |
Secunia Advisory ID:
SA10572 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Red Hat has issued updated packages for the kernel. These fix a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
