Recent Changes - Search:
NTLUG

Linux is free.
Life is good.

Linux Training
10am on Meeting Days!

1825 Monetary Lane Suite #104 Carrollton, TX

Do a presentation at NTLUG.

What is the Linux Installation Project?

Real companies using Linux!

Not just for business anymore.

Providing ready to run platforms on Linux

<< Mandriva | Distributions | Gentoo >>


Community

Support

Debian Planet

Error: It's not possible to reach RSS file http://planet.debian.net/rss20.xml ...

Debian Security Notices

  • DSA-4774 linux - security update
    Several vulnerabilities have been discovered in the Linux kernel thatmay lead to the execution of arbitrary code, privilege escalation,denial of service or information leaks.



  • DSA-4772 httpcomponents-client - security update
    Priyank Nigam discovered that HttpComponents Client, a Java HTTP agentimplementation, could misinterpret malformed authority component in arequest URI and pick the wrong target host for request execution.


  • DSA-4771 spice - security update
    Frediano Ziglio discovered multiple buffer overflow vulnerabilities inthe QUIC image decoding process of spice, a SPICE protocol client andserver library, which could result in denial of service, or possibly,execution of arbitrary code.



  • DSA-4769 xen - security update
    Multiple vulnerabilities have been discovered in the Xen hypervisor,which could result in denial of service, guest-to-host privilegeescalation or information leaks.


  • DSA-4768 firefox-esr - security update
    Multiple security issues have been found in the Mozilla Firefox webbrowser, which could potentially result in the execution of arbitrarycode, cross-site scripting or spoofing the origin of a download.


  • DSA-4767 mediawiki - security update
    Multiple security issues were discovered in MediaWiki, a website enginefor collaborative work: SpecialUserRights could leak whether a userexisted or not, multiple code paths lacked HTML sanitisation allowingfor cross-site scripting and TOTP validation applied insufficient ratelimiting against brute force attempts.


  • DSA-4766 rails - security update
    Multiple security issues were discovered in the Rails web frameworkwhich could result in cross-site scripting, information leaks, codeexecution, cross-site request forgery or bypass of upload limits.


Debian Forum at linuxquestions.org

Page last modified on September 14, 2006, at 05:07 AM