Section: .. / 0703-advisories /
| /// File Name: |
USN-416-2.txt |
Description:
|
Ubuntu Security Notice 416-2 - USN-416-1 fixed various vulnerabilities in the Linux kernel. Unfortunately that update caused the 'nvidia-glx-config' script to not work any more. The new version fixes the problem.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10179 | | Last Modified: | Mar 6 06:19:40 2007 |
| MD5 Checksum: | bafe30e5e76365335224708d7e76e81f |
|
| /// File Name: |
USN-428-2.txt |
Description:
|
Ubuntu Security Notice 428-2 - USN-428-1 fixed vulnerabilities in Firefox 1.5. However, changes to library paths caused applications depending on libnss3 to fail to start up. This update fixes the problem.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10457 | | Last Modified: | Mar 6 07:28:58 2007 |
| MD5 Checksum: | ec1197bb4064525a19187ab03b62c30f |
|
| /// File Name: |
USN-429-1.txt |
Description:
|
Ubuntu Security Notice 429-1 - Moritz Jodeit discovered that tcpdump had an overflow in the 802.11 packet parser. Remote attackers could send specially crafted packets, crashing tcpdump, possibly leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4931 | | Related CVE(s): | CVE-2007-1218 | | Last Modified: | Mar 9 01:23:52 2007 |
| MD5 Checksum: | 418390d32d6eefff4b70c64add466220 |
|
| /// File Name: |
USN-430-1.txt |
Description:
|
Ubuntu Security Notice 430-1 - Miles Egan discovered that mod_python, when used in output filter mode, did not handle output larger than 16384 bytes, and would display freed memory, possibly disclosing private data. Thanks to Jim Garrison of the Software Freedom Law Center for identifying the original bug as a security vulnerability.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5699 | | Related CVE(s): | CVE-2004-2680 | | Last Modified: | Mar 9 01:24:40 2007 |
| MD5 Checksum: | cf8966bd1da80323253d39eaaa117faa |
|
| /// File Name: |
USN-431-1.txt |
Description:
|
Ubuntu Security Notice 431-1 - The SSLv2 protocol support in the NSS library did not sufficiently check the validity of public keys presented with a SSL certificate. A malicious SSL web site using SSLv2 could potentially exploit this to execute arbitrary code with the user's privileges. The SSLv2 protocol support in the NSS library did not sufficiently verify the validity of client master keys presented in an SSL client certificate. A remote attacker could exploit this to execute arbitrary code in a server application that uses the NSS library. Various flaws have been reported that could allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious web page.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12753 | | Related CVE(s): | CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0776, CVE-2007-0777 | | Last Modified: | Mar 9 03:20:08 2007 |
| MD5 Checksum: | fca21518a8373a321d2bb42012f82a91 |
|
| /// File Name: |
USN-432-1.txt |
Description:
|
Ubuntu Security Notice 432-1 - Gerardo Richarte from Core Security Technologies discovered that when gnupg is used without --status-fd, there is no way to distinguish initial unsigned messages from a following signed message. An attacker could inject an unsigned message, which could fool the user into thinking the message was entirely signed by the original sender.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7467 | | Related CVE(s): | CVE-2007-1263 | | Last Modified: | Mar 9 04:13:23 2007 |
| MD5 Checksum: | d76fe00ba7ed0901c41309e218dcf780 |
|
| /// File Name: |
USN-432-2.txt |
Description:
|
Ubuntu Security Notice 432-2 - USN-432-1 fixed a vulnerability in GnuPG. This update provides the corresponding updates for GnuPG2 and the GPGME library. Gerardo Richarte from Core Security Technologies discovered that when gnupg is used without --status-fd, there is no way to distinguish initial unsigned messages from a following signed message. An attacker could inject an unsigned message, which could fool the user into thinking the message was entirely signed by the original sender.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7515 | | Related CVE(s): | CVE-2007-1263 | | Last Modified: | Mar 14 03:21:42 2007 |
| MD5 Checksum: | 8a90ad61541ac9fcd89bcbaa69897621 |
|
| /// File Name: |
USN-433-1.txt |
Description:
|
Ubuntu Security Notice 433-1 - Moritz Jodeit discovered that the DMO loader of Xine did not correctly validate the size of an allocated buffer. By tricking a user into opening a specially crafted media file, an attacker could execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7955 | | Related CVE(s): | CVE-2007-1246 | | Last Modified: | Mar 13 23:20:43 2007 |
| MD5 Checksum: | 642d4cf4141d799f5662f91164e441f5 |
|
| /// File Name: |
USN-434-1.txt |
Description:
|
Ubuntu Security Notice 434-1 - It was discovered that Ekiga had format string vulnerabilities beyond those fixed in USN-426-1. If a user was running Ekiga and listening for incoming calls, a remote attacker could send a crafted call request, and execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5058 | | Related CVE(s): | CVE-2007-0999 | | Last Modified: | Mar 13 23:21:35 2007 |
| MD5 Checksum: | 080d2cb4a73acc56818bae6fd1b6446f |
|
| /// File Name: |
USN-435-1.txt |
Description:
|
Ubuntu Security Notice 435-1 - Moritz Jodeit discovered that the DirectShow loader of Xine did not correctly validate the size of an allocated buffer. By tricking a user into opening a specially crafted media file, an attacker could execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7962 | | Related CVE(s): | CVE-2007-1387 | | Last Modified: | Mar 14 03:09:01 2007 |
| MD5 Checksum: | 85ce8bc9f5fb53091f8de673817d7bc9 |
|
| /// File Name: |
USN-436-1.txt |
Description:
|
Ubuntu Security Notice 436-1 - Bryan Burns of Juniper Networks discovered that KTorrent did not correctly validate the destination file paths nor the HAVE statements sent by torrent peers. A malicious remote peer could send specially crafted messages to overwrite files or execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3726 | | Related CVE(s): | CVE-2007-1384, CVE-2007-1385 | | Last Modified: | Mar 14 03:09:54 2007 |
| MD5 Checksum: | d8fc06197e1961113b0ab85d1d976242 |
|
| /// File Name: |
USN-437-1.txt |
Description:
|
Ubuntu Security Notice 437-1 - Sean Larsson of iDefense Labs discovered that libwpd was vulnerable to integer overflows. If a user were tricked into opening a specially crafted WordPerfect document with an application that used libwpd, an attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11446 | | Related CVE(s): | CVE-2007-0002 | | Last Modified: | Mar 20 17:29:47 2007 |
| MD5 Checksum: | 96d8c5413956cd59d823fe9b8d8a15f8 |
|
| /// File Name: |
USN-438-1.txt |
Description:
|
Ubuntu Security Notice 438-1 - A flaw was discovered in Inkscape's use of format strings. If a user were tricked into opening a specially crafted URI in Inkscape, a remote attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4988 | | Related CVE(s): | CVE-2007-1463 | | Last Modified: | Mar 21 04:15:47 2007 |
| MD5 Checksum: | 79a11892b12c63d3461ac7a995594950 |
|
| /// File Name: |
USN-439-1.txt |
Description:
|
Ubuntu Security Notice 439-1 - Jean-Sebastien Guay-Leroux discovered that "file" did not correctly check the size of allocated heap memory. If a user were tricked into examining a specially crafted file with the "file" utility, a remote attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9921 | | Related CVE(s): | CVE-2007-1536 | | Last Modified: | Mar 24 02:14:14 2007 |
| MD5 Checksum: | 9d9eab70c7121f87b8a613aefa779896 |
|
| /// File Name: |
USN-440-1.txt |
Description:
|
Ubuntu Security Notice 440-1 - Stefan Streichbier and B. Mueller of SEC Consult discovered that MySQL subselect queries using "ORDER BY" could be made to crash the MySQL server. An attacker with access to a MySQL instance could cause an intermittent denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9054 | | Related CVE(s): | CVE-2007-1420 | | Last Modified: | Mar 24 02:15:10 2007 |
| MD5 Checksum: | d1deaf66ff150d319683750959167b0a |
|
| /// File Name: |
USN-441-1.txt |
Description:
|
Ubuntu Security Notice 441-1 - A flaw was discovered in Squid's handling of the TRACE request method which could lead to a crash. Remote attackers with access to the Squid server could send malicious TRACE requests, and cause a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3580 | | Related CVE(s): | CVE-2007-1560 | | Last Modified: | Mar 27 05:00:28 2007 |
| MD5 Checksum: | 42382dc09fbda524e07c489a924a9da1 |
|
| /// File Name: |
USN-442-1.txt |
Description:
|
Ubuntu Security Notice 442-1 - Ulf Harnhammar of Secunia Research discovered that Evolution did not correctly handle format strings when displaying shared memos. If a remote attacker tricked a user into viewing a specially crafted shared memo, they could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7566 | | Related CVE(s): | CVE-2007-1002 | | Last Modified: | Mar 27 05:44:52 2007 |
| MD5 Checksum: | 3e3dbb8356f31c519561d2ff221e1274 |
|
| /// File Name: |
USN-443-1.txt |
Description:
|
Ubuntu Security Notice 443-1 - A flaw was discovered in how Firefox handled PASV FTP responses. If a user were tricked into visiting a malicious FTP server, a remote attacker could perform a port-scan of machines within the user's network, leading to private information disclosure.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 19630 | | Related CVE(s): | CVE-2007-1562 | | Last Modified: | Mar 28 17:58:20 2007 |
| MD5 Checksum: | 6523a4501b229f8942bc20bfbdcfda4b |
|
| /// File Name: |
USN-444-1.txt |
Description:
|
Ubuntu Security Notice 444-1 - A stack overflow was discovered in OpenOffice.org's StarCalc parser. If a user were tricked into opening a specially crafted document, a remote attacker could execute arbitrary code with user privileges. A flaw was discovered in OpenOffice.org's link handling code. If a user were tricked into clicking a link in a specially crafted document, a remote attacker could execute arbitrary shell commands with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 38159 | | Related CVE(s): | CVE-2007-0238, CVE-2007-0239 | | Last Modified: | Mar 28 17:59:13 2007 |
| MD5 Checksum: | 1be71010f61bfd345340079bc13f3556 |
|
| /// File Name: |
USN-445-1.txt |
Description:
|
Ubuntu Security Notice 445-1 - Sven Krewitt of Secunia Research discovered that XMMS did not correctly handle BMP images when loading GUI skins. If a user were tricked into loading a specially crafted skin, a remote attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7157 | | Related CVE(s): | CVE-2007-0653, CVE-2007-0654 | | Last Modified: | Mar 28 17:59:56 2007 |
| MD5 Checksum: | eb9c1ef1b4852eb92a7d5dce510544e6 |
|
| /// File Name: |
USN-446-1.txt |
Description:
|
Ubuntu Security Notice 446-1 - Luigi Auriemma discovered multiple flaws in the Network Audio System server. Remote attackers could send specially crafted network requests that could lead to a denial of service or execution of arbitrary code. Note that default Ubuntu installs do not include the NAS server.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10809 | | Related CVE(s): | CVE-2007-1543, CVE-2007-1544, CVE-2007-1545, CVE-2007-1546, CVE-2007-1547 | | Last Modified: | Mar 29 08:19:46 2007 |
| MD5 Checksum: | a957919d456df89b8db38582d69fa4e7 |
|
| /// File Name: |
USN-447-1.txt |
Description:
|
Ubuntu Security Notice 447-1 - It was discovered that Konqueror did not correctly handle iframes from JavaScript. If a user were tricked into visiting a malicious website, Konqueror could crash, resulting in a denial of service. A flaw was discovered in how Konqueror handled PASV FTP responses. If a user were tricked into visiting a malicious FTP server, a remote attacker could perform a port-scan of machines within the user's network, leading to private information disclosure.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11882 | | Related CVE(s): | CVE-2007-1308, CVE-2007-1564 | | Last Modified: | Apr 2 23:03:12 2007 |
| MD5 Checksum: | 24a78c76fde9f65c539db7fd0c570fe4 |
|
| /// File Name: |
wp2-xss.txt |
Description:
|
The WordPress 2.0.x and 2.1.x releases suffer from a cross site scripting vulnerability in wp_title().
| | Author: | g30rg3_x | | File Size: | 1961 | | Last Modified: | Mar 14 01:19:45 2007 |
| MD5 Checksum: | edff2d04cee0e1cba3843b77d4a660c6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
