|
Vulnerability Report: Gentoo Linux
|
This vulnerability report for Gentoo Linux contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Gentoo Linux then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
142 Secunia Advisories in 2003
|
Secunia has issued a total of 142 Secunia advisories in 2003 for Gentoo Linux. Currently, 0% (0 out of 142) are marked as unpatched.
More information about the specific Secunia advisories affecting Gentoo Linux can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2003-12-29 |
Secunia Advisory ID:
SA10503 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued updated packages for CVS. These fix a vulnerability, which can be exploited by malicious users to gain escalated privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-12-18 |
Secunia Advisory ID:
SA10459 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an updated package for net-ftp/lftp. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-12-12 |
Secunia Advisory ID:
SA10418 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for gnupg. These fix two vulnerabilities, which may expose the private key when using El-Gamal type 20 keys and allow malicious people to compromise systems using the experimental HKP interface. [Read More]
|
|
|
|
|
|
Release Date:
2003-12-11 |
Secunia Advisory ID:
SA10407 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for cvs. These fix a vulnerability, which can be exploited by malicious users to create arbitrary folders and possibly files in the root of the host's file system. [Read More]
|
|
|
|
|
|
Release Date:
2003-12-05 |
Secunia Advisory ID:
SA10366 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued updated packages for the kernel. These fix a vulnerability, which can be exploited by malicious users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-12-04 |
Secunia Advisory ID:
SA10358 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for rsync. These fix a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-26 |
Secunia Advisory ID:
SA10296 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an updated version of net-dialup/freeradius. This fixes two vulnerabilities, which can be exploited to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-25 |
Secunia Advisory ID:
SA10290 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-11-25 |
Secunia Advisory ID:
SA10293 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for Ethereal. These fix multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system running Ethereal. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-25 |
Secunia Advisory ID:
SA10291 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for libnids. These fix a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-20 |
Secunia Advisory ID:
SA10266 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued packages for opera. These fix a vulnerability, which can be exploited by malicious web sites and emails to crash the browser. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-20 |
Secunia Advisory ID:
SA10265 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued updated packages for hylafax. These fix a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-20 |
Secunia Advisory ID:
SA10260 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Gentoo has issued updated packages for apache. These fix some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or escalate privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-20 |
Secunia Advisory ID:
SA10259 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Brute force
Privilege escalation
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued updated packages for kdebase. These fix two vulnerabilities, which can be exploited by malicious users to escalate their privileges or by malicious people to brute force the session cookie. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-31 |
Secunia Advisory ID:
SA10114 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for apache2. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or escalate privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-06 |
Secunia Advisory ID:
SA9942 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for Cfengine. This fixes a vulnerability, which potentially could lead to execution of arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-04 |
Secunia Advisory ID:
SA9929 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for vpopmail. This fixes a vulnerability, which can be exploited by malicious, local users to gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-02 |
Secunia Advisory ID:
SA9910 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for OpenSSL. These fix some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-01 |
Secunia Advisory ID:
SA9899 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for TeaPOP. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks against a vulnerable mail server. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-01 |
Secunia Advisory ID:
SA9898 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for mpg123. This fixes an older vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-01 |
Secunia Advisory ID:
SA9880 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for mplayer. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-30 |
Secunia Advisory ID:
SA9881 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for ProFTPD. This fixes a vulnerability, which can be exploited by some malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-24 |
Secunia Advisory ID:
SA9826 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for OpenSSH. This fixes a vulnerability in the PAM implementation, which could lead to system compromise. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-18 |
Secunia Advisory ID:
SA9766 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for sendmail. These fixes a vulnerability which possibly could allow malicious people to gain system access. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-17 |
Secunia Advisory ID:
SA9749 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for ssh. These fix a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-16 |
Secunia Advisory ID:
SA9737 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for Pine. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-15 |
Secunia Advisory ID:
SA9733 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for exim. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable system or compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-15 |
Secunia Advisory ID:
SA9730 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued updates for MySQL. These fix a vulnerability, which can be exploited by malicious users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-02 |
Secunia Advisory ID:
SA9649 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for horde. This fixes a vulnerability, which potentially can be exploited by malicious people to gain unauthorised access to an account. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-02 |
Secunia Advisory ID:
SA9657 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for atari800. This fixes a vulnerability, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-02 |
Secunia Advisory ID:
SA9656 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for Gallery. This fixes a vulnerability, which can be exploited by malicious people to conduct Cross Site Scripting attacks against other users. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-02 |
Secunia Advisory ID:
SA9655 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for eroaster. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-02 |
Secunia Advisory ID:
SA9654 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for mindi. This fixes a vulnerability, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-02 |
Secunia Advisory ID:
SA9653 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Gentoo has issued an updated version of phpwebsite. This fixes some vulnerabilities, which can be exploited by malicious people to conduct Cross Site Scripting and SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-01 |
Secunia Advisory ID:
SA9644 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for pam_smb. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-08-26 |
Secunia Advisory ID:
SA9606 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an updated version of vmware-workstation. This fixes some vulnerabilities, which can be exploited by malicious, local users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-08-15 |
Secunia Advisory ID:
SA9537 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for semi, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-08-14 |
Secunia Advisory ID:
SA9533 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
Privilege escalation
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for gentoo-sources fixing three vulnerabilities. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-23 |
Secunia Advisory ID:
SA9328 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for gnupg to fix a vulnerability allowing local users to overwrite certain files. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-22 |
Secunia Advisory ID:
SA9316 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From remote |
|
Short Description:
Multiple vulnerabilities has been identified in the Linux Kernel. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-21 |
Secunia Advisory ID:
SA9309 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued updated packages for nfs-utils. These fix a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-14 |
Secunia Advisory ID:
SA9259 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
A vulnerability has been reported in nfs-utils, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-11 |
Secunia Advisory ID:
SA9241 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for cistronradius. This fixes a vulnerability, which can be exploited by malicious people to crash a server and potentially compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-11 |
Secunia Advisory ID:
SA9240 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for ypserv. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable NIS server. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-11 |
Secunia Advisory ID:
SA9239 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for gtksee. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-11 |
Secunia Advisory ID:
SA9238 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for unzip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system by overwriting arbitrary files on it. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-03 |
Secunia Advisory ID:
SA9174 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for mikmod. This fixes a vulnerability, which potentially could be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-30 |
Secunia Advisory ID:
SA9144 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for gnocatan. This fixes several vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable system or potentially compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-30 |
Secunia Advisory ID:
SA9148 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for phpBB. This fixes a vulnerability, which allows malicious people to inject arbitrary SQL code. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-30 |
Secunia Advisory ID:
SA9145 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for noweb. This fixes a vulnerability, which can be exploited by a malicious, local user to escalate privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-26 |
Secunia Advisory ID:
SA9121 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for Ethereal. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a system running a vulnerable version of Ethereal. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-26 |
Secunia Advisory ID:
SA9120 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for proftpd. This fixes a vulnerability, which allows malicious people to inject arbitrary SQL code. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-26 |
Secunia Advisory ID:
SA9119 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for Xpdf. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system by luring the user into viewing a specially crafted PDF document. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-26 |
Secunia Advisory ID:
SA9118 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for acroread. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system by luring the user into viewing a specially crafted PDF document. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-17 |
Secunia Advisory ID:
SA9057 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
A vulnerability has been identified in Linux-PAM, which allows malicious, local users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-16 |
Secunia Advisory ID:
SA9032 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for gzip. This fixes two vulnerabilities, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-16 |
Secunia Advisory ID:
SA9031 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for LPRng. This fixes a vulnerability in "psbanner", which can be exploited by malicious, local users to overwrite certain files on the system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-16 |
Secunia Advisory ID:
SA9029 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for ghostscript. This fixes a vulnerability, which can be exploited by malicious, local users to overwrite certain files on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-16 |
Secunia Advisory ID:
SA9039 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for cups. This fixes a vulnerability, which can be exploited by a malicious user to cause a DoS (Denial of Service) on a print server. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-16 |
Secunia Advisory ID:
SA9033 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for kon2. This fixes a vulnerability, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-09 |
Secunia Advisory ID:
SA8969 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for atftp. This closes a buffer overflow vulnerability in the handling of long filenames allowing a malicious server to execute arbitrary code on the client. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-03 |
Secunia Advisory ID:
SA8936 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Three vulnerabilities have been identified in the Linux Kernel 2.4 branch. One can be exploited to cause a Denial of Service by a malicious person and is very similar to the recent Linux Kernel Denial of Service. The others are local Denial of Service vulnerabilities. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-03 |
Secunia Advisory ID:
SA8923 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for uw-imapd. This fixes a vulnerability in the imap client allowing malicious servers to gain system access on the client. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-02 |
Secunia Advisory ID:
SA8912 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for tomcat. This fixes a vulnerability, which can be exploited by malicious, local users to gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-02 |
Secunia Advisory ID:
SA8918 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued an update for maelstrom. This fixes a vulnerability, which can be exploited by malicious, local users to escalate their privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-02 |
Secunia Advisory ID:
SA8916 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for apache. This fixes two Apache vulnerabilities, which can be exploited to cause a DoS (Denial of Service) on a vulnerable system or potentially compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2003-05-27 |
Secunia Advisory ID:
SA8866 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Spoofing
Exposure of system information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for heimdal, which fix multiple vulnerabilities in the Kerberos v4 protocol. [Read More]
|
|
|
|
|
|
Release Date:
2003-05-27 |
Secunia Advisory ID:
SA8865 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
Privilege escalation
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for nessus. This fixes some vulnerabilities, which can potentially allow malicious users to escalate privileges or malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-05-02 |
Secunia Advisory ID:
SA8721 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious people to identify valid users on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-30 |
Secunia Advisory ID:
SA8704 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for balsa. This fixes a vulnerabillity in the handling of IMAP folders, which might allow malicious servers to execute arbitrary code on the client system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-28 |
Secunia Advisory ID:
SA8675 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for pptpd. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-28 |
Secunia Advisory ID:
SA8674 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for mgetty. This fixes two vulnerabilities, which can be exploited to compromise a vulnerable system or escalate privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-28 |
Secunia Advisory ID:
SA8673 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for monkeyd. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-22 |
Secunia Advisory ID:
SA8632 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Xinetd, which can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-22 |
Secunia Advisory ID:
SA8629 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for Snort. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a system running Snort. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-16 |
Secunia Advisory ID:
SA8605 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
A vulnerability was reported in Snort, which could be exploited by a malicious person to execute arbitrary code on the system running Snort. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-15 |
Secunia Advisory ID:
SA8596 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for kdegraphics. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-11 |
Secunia Advisory ID:
SA8577 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for KDE 2.x. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-11 |
Secunia Advisory ID:
SA8569 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for KDE 3.x. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-09 |
Secunia Advisory ID:
SA8554 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for apache. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) on a vulnerable webserver. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-09 |
Secunia Advisory ID:
SA8556 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for setiathome. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-09 |
Secunia Advisory ID:
SA8555 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for samba. This fixes a vulnerability, which can be exploited by anonymous users to gain root privileges on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-07 |
Secunia Advisory ID:
SA8533 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Samba is vulnerable to a buffer overflow, which can be exploited by anonymous users. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-31 |
Secunia Advisory ID:
SA8451 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Spoofing
Security Bypass
|
Where:
From remote |
|
Short Description:
Gentoo has an update for openafs to address a cryptographic weakness. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-31 |
Secunia Advisory ID:
SA8455 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for sendmail. This fixes a vulnerability in the address parsing, which potentially can be exploited to compromise a vulnerable mail server. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-31 |
Secunia Advisory ID:
SA8457 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Spoofing
Exposure of sensitive information
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has released updated packages for krb5 and mit-krb5, which fix multiple vulnerabilities in Kerberos. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-31 |
Secunia Advisory ID:
SA8459 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for dietlibc. A vulnerability has been discovered allowing malicious users to cause an integer overflow. This could lead to a Denial of Service and possibly also execution of arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-30 |
Secunia Advisory ID:
SA8446 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been discovered in Sendmail, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-26 |
Secunia Advisory ID:
SA8416 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has released an update for openssl. This eliminates an information disclosure vulnerability, which can be exploited by malicious people to gain knowledge of the RSA secret. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-25 |
Secunia Advisory ID:
SA8404 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has released updates for mod_ssl. These eliminate an information disclosure vulnerability, which can be exploited by malicious people to gain knowledge of the RSA secret. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-25 |
Secunia Advisory ID:
SA8403 |
Solution Status:
Vendor Workaround |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for RPC XDR. A vulnerability has been discovered allowing malicious users to cause an integer overflow, this could lead to a Denial of Service and possibly also execution of arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-24 |
Secunia Advisory ID:
SA8378 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
Security Bypass
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for Evolution. Three vulnerabilities has been identified in Evolution, the worst could lead to system access. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-24 |
Secunia Advisory ID:
SA8394 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for openssl. This fixes a vulnerability, which allows malicious people to retrieve the premaster-secret. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-24 |
Secunia Advisory ID:
SA8393 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has released an update for bitchx. This eliminates multiple vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-24 |
Secunia Advisory ID:
SA8380 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for mutt. A vulnerabillity has been identified in the handling of IMAP folders which might allow malicious servers to execute arbitrary code on the client system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-21 |
Secunia Advisory ID:
SA8375 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-03-20 |
Secunia Advisory ID:
SA8347 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
A vulnerability identified in multiple *NIX operating systems and software can be exploited by malicious people to conduct a DoS attack (Denial of Service) on a vulnerable system or potentially compromise it. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-20 |
Secunia Advisory ID:
SA8354 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for rxvt. These eliminate a vulnerability allowing malicious people to manipulate actions taken by the system administrator and other users on a system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-20 |
Secunia Advisory ID:
SA8351 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has released an update for openssl. This eliminates an information disclosure vulnerability, which can be exploited by malicious people to gain knowledge of the RSA secret. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-17 |
Secunia Advisory ID:
SA8304 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for qpopper. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable server. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-17 |
Secunia Advisory ID:
SA8303 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From local network |
|
Short Description:
Gentoo has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable samba server. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-17 |
Secunia Advisory ID:
SA8299 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
A vulnerability has been identified in Samba, which can be exploited by a malicious person to compromise a vulnerable server. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-11 |
Secunia Advisory ID:
SA8264 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has released updates for the utility "file". These fix a vulnerability exploitable by malicious, local users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-10 |
Secunia Advisory ID:
SA8248 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for netscape to fix the vulnerabilities in flash player prior to 6.0.79 [Read More]
|
|
|
|
|
|
Release Date:
2003-03-10 |
Secunia Advisory ID:
SA8253 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for Ethereal. Two vulnerabilities has been discovered, a format string vulnerability in the handling of certain socks packets and a heap overflow in the handling of NTLMSSP. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-10 |
Secunia Advisory ID:
SA8251 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
|
Where:
Local system |
|
Short Description:
Gentoo has issued updates for mysqlcc. mysqlcc left all configuration and connection files world readable. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-06 |
Secunia Advisory ID:
SA8232 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has released an update for snort. This fixes a vulnerability, which can be exploited by a malicious person to compromise a system running snort. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-05 |
Secunia Advisory ID:
SA8224 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
A boundary error identified in the utility "file" included in many *nix distributions can potentially be exploited by malicious users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-05 |
Secunia Advisory ID:
SA8218 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-03-04 |
Secunia Advisory ID:
SA8207 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for sendmail. Sendmail has been found vulnerable to an issue that could lead to remote root compromise. The problem is with parsing of certain headers. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-03 |
Secunia Advisory ID:
SA8189 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for eterm. These eliminate a vulnerability allowing malicious people to manipulate actions taken by the system administrator and other users on a system. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-03 |
Secunia Advisory ID:
SA8188 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages for vte. These eliminate a vulnerability allowing malicious people to manipulate actions taken by the system administrator and other users on a system. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-24 |
Secunia Advisory ID:
SA8131 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for VNC. This fixes a vulnerability allowing attackers to perform a replay attack. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-24 |
Secunia Advisory ID:
SA8127 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-02-24 |
Secunia Advisory ID:
SA8126 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for apcupsd. A vulnerability in apcupsd can be exploited by malicious users to compromise a slave device. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-24 |
Secunia Advisory ID:
SA8116 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for webmin. The author of Webmin recommends everybody to upgrade to version 1.070, due to an unspecified vulnerability in all previous versions. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-24 |
Secunia Advisory ID:
SA8132 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for TightVNC. This fixes a vulnerability allowing attackers to perform a replay attack. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-21 |
Secunia Advisory ID:
SA8108 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to fix a vulnerability in the BitchX IRC client, which can be exploited by a malicious IRC server to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2003-02-21 |
Secunia Advisory ID:
SA8105 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has released an updated package for openssl. This eliminates an information disclosure vulnerability, which can be exploited by malicious people to gain knowledge of a used plaintext block in a SSL/TLS session. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-19 |
Secunia Advisory ID:
SA8094 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for php and mod_php. A vulnerability has been discovered, which could be exploited if PHP 4.3.0 is configured to use "/cgi-bin/php". [Read More]
|
|
|
|
|
|
Release Date:
2003-02-18 |
Secunia Advisory ID:
SA8077 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued updates for syslinux. Security flaws has been identified in syslinux, which could be exploited to gain privileges if syslinux is installed setuid root. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-18 |
Secunia Advisory ID:
SA8082 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-02-17 |
Secunia Advisory ID:
SA8074 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for w3m to fix two Cross Site Scripting vulnerabilities. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-17 |
Secunia Advisory ID:
SA8066 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates for mailman. These fix a vulnerability, which can be exploited by a malicious person to mount a XSS attack (Cross-Site Scripting) against a user. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-05 |
Secunia Advisory ID:
SA8002 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update to bladeenc. This fixes a vulnerability, which can be exploited by a hacker to compromise a user's system if the user is lured into playing a malicious wave file. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-05 |
Secunia Advisory ID:
SA7999 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
Exposure of sensitive information
Exposure of system information
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-02-03 |
Secunia Advisory ID:
SA7983 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to Mail-SpamAssasin. These fix a vulnerability, which can be exploited by hackers to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-03 |
Secunia Advisory ID:
SA7982 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Gentoo has issued updates to slocate. These eliminate a vulnerability, which can be exploited by malicious, local users to escalate their privileges. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-21 |
Secunia Advisory ID:
SA7914 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to fix the double-free vulnerability in CVS, allowing anonymous remote users to execute arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-19 |
Secunia Advisory ID:
SA7897 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to KDE. KDE does not handle URLs properly, this can be exploited to run arbitrary commands. The problem is that URLs are not verified and quoted correctly. This allows malicious persons to include shell metacharacters. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-17 |
Secunia Advisory ID:
SA7894 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for dhcp. This fixes a stack overflow in the minires library. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-17 |
Secunia Advisory ID:
SA7893 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to fnord. fnord contains a buffer overflow in a cgi program it is not known if this is exploitable. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-13 |
Secunia Advisory ID:
SA7855 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to mod_php / php. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-09 |
Secunia Advisory ID:
SA7836 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued an update for libpng. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-08 |
Secunia Advisory ID:
SA7829 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to lcdproc. lcdproc suffers a buffer overflow allowing execution of arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-07 |
Secunia Advisory ID:
SA7823 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to the http-fetcher library. The problem is that certain input is treated correctly, this allows for trivial buffer overflows and execution of arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-07 |
Secunia Advisory ID:
SA7820 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to monopd. A buffer overflow exists in the monopd messaging framework which can be exploited to run arbitrary commands with the privileges of the user running monopd. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-06 |
Secunia Advisory ID:
SA7814 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
[Read More]
|
|
|
|
|
|
Release Date:
2003-01-06 |
Secunia Advisory ID:
SA7813 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updated packages to dhcpcd. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-02 |
Secunia Advisory ID:
SA7801 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to leafnode. leafnode does not handle cross posted newsgroup messages correct, when the group name of one group is also the prefix of the name of another group. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-02 |
Secunia Advisory ID:
SA7800 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to xpdf to fix an integer overflow. [Read More]
|
|
|
|
|
|
Release Date:
2003-01-01 |
Secunia Advisory ID:
SA7794 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Gentoo has issued updates to CUPS to fix multiple vulnerabilities. [Read More]
|
|
|
