Open Source Pixels

Debian has updated belpic
(certificate validation bypass).

Fedora has updated wireshark (F10:
multiple vulnerabilities), cups (F10:
denial of service), expat (F10, F11, F12:
denial of service), dstat (F11, F12: arbitrary code execution), maniadrive (F12: buffer overflow), php (F12: buffer overflow), nginx (F10, F11, F12: multiple vulnerabilities), and
kernel (F11, F12: null pointer dereference).

Mandriva has updated postfix
(2008.0: information disclosure), expat
(denial of service), libsamplerate (2008.0:
buffer overflow), cyrus-imapd (2008.0:
arbitrary code execution), silc-toolkit
(2008.0: multiple vulnerabilities), freetype2 (2008.0: arbitrary code execution),
newt (2008.0: arbitrary code execution), dbus (2008.0: signature spoofing), graphviz (2008.0: arbitrary code execution),
imagemagick (2008.0: arbitrary code
execution), netpbm (2008.0: multiple
vulnerabilities), xmlsec1 (2008.0: multiple
vulnerabilities), libmikmod (2008.0:
multiple vulnerabilities), perl-IO-Socket-SSL (2009.0: invalid
certificate checking), gd (2008.0: buffer
overflow), ffmpeg (2008.0: multiple
vulnerabilities), xine-lib (2008.0:
multiple vulnerabilities), libtool (2008.0:
privilege escalation), samba (2008.0:
multiple vulnerabilities), pidgin (2008.0:
multiple vulnerabilities), audacity
(2008.0: denial of service), kompozer
(2008.0: denial of service), htmldoc
(2008.0: arbitrary code execution), mono (2008.0: multiple vulnerabilities), libcdaudio (2008.0: multiple vulnerabilities),
apache (2008.0: multiple vulnerabilities),
and php (2008.0: multiple vulnerabilities).

Red Hat has updated expat (denial of
service) and acpid (privilege escalation).

Ubuntu has updated kernel (multiple
vulnerabilities) and bind (DNS cache
poisoning).

Monday’s security updates

Leave a comment »

Archived Entry

Categories +/-

Archives +/-

Partners

Recent Posts +/-