oss-security February 2011 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: By Author

oss-security By Author

AuthorSubject Date
Dan Rosenberg
 [oss-security] CVE request: FreeBSD/OS X crontab information leakage28 Feb 2011
 Re: [oss-security] CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack28 Feb 2011
 [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
 [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
Eugene Teo
 Re: [oss-security] CVE request: kernel: OOM-killer via argv expansion01 Mar 2011
 Re: [oss-security] CVE request: libcgroup: Failure to verify netlink messages25 Feb 2011
 Re: [oss-security] CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions25 Feb 2011
 Re: [oss-security] CVE request: kernel: drm/radeon/kms: check AA resolve registers on r30025 Feb 2011
 Re: [oss-security] CVE request: kernel: /proc/$pid/ leaks contents across setuid exec25 Feb 2011
 Re: [oss-security] CVE request: kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN25 Feb 2011
 [oss-security] CVE request: kernel: drm/radeon/kms: check AA resolve registers on r30024 Feb 2011
 Re: [oss-security] CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables24 Feb 2011
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
 [oss-security] CVE request: kernel: Corrupted LDM partition table issues23 Feb 2011
 Re: [oss-security] CVE request: kernel: a collection of world-writable debugfs bugs23 Feb 2011
 Re: [oss-security] CVE Request23 Feb 2011
 [oss-security] CVE request: kernel: a collection of world-writable debugfs bugs22 Feb 2011
 [oss-security] CVE request: kernel: fs/partitions: validate map_count in mac partition tables22 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow22 Feb 2011
 [oss-security] CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack17 Feb 2011
 Re: [oss-security] CVE request -- kernel: deficiency in processing igmp host membership reports in br_multicast17 Feb 2011
 Re: [oss-security] kernel: ALSA: caiaq - Fix possible string-buffer overflow16 Feb 2011
 [oss-security] kernel: ALSA: caiaq - Fix possible string-buffer overflow16 Feb 2011
 [oss-security] CVE request - kernel: xfs infoleak16 Feb 2011
 [oss-security] CVE request - kernel: s390 task_show_regs infoleak16 Feb 2011
 [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference16 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
Greg KH
 Re: [oss-security] CVE request: kernel: fs/partitions: validate map_count in mac partition tables22 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
Hafez Kamal
 [oss-security] [HITB-Announce] HITB Magazine Issue 005 Released09 Feb 2011
Hanno Böck
 [oss-security] CVE request: pmwiki before 2.2.2123 Feb 2011
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
 [oss-security] CVE request: simple machines forum before 1.1.1322 Feb 2011
 [oss-security] clamav 0.9721 Feb 2011
 [oss-security] CVE request: wordpress before 3.0.508 Feb 2011
 Re: [oss-security] CVE request: phpbb before 3.0.808 Feb 2011
 [oss-security] CVE request: phpbb before 3.0.807 Feb 2011
Helgi Þormar Þorbjörnsson
 [oss-security] CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack28 Feb 2011
Huzaifa Sidhpurwala
 [oss-security] wireshark dct3trace buffer overflow16 Feb 2011
 Re: [oss-security] Re: PHP Exif 64bit Casting Vulnerability, CVE request16 Feb 2011
 [oss-security] Wireshark: Freeing uninitialized pointer04 Feb 2011
Jan Lieskovsky
 [oss-security] CVE Request -- Smarty -- {smarty.template} && {smarty.currentdir} security bypass24 Feb 2011
 [oss-security] CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names24 Feb 2011
 [oss-security] CVE Request -- OpenLDAP -- two issues24 Feb 2011
 [oss-security] CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition22 Feb 2011
Jon Oberheide
 Re: [oss-security] CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables24 Feb 2011
Josh Bressers
 Re: [oss-security] CVE request: FreeBSD/OS X crontab information leakage28 Feb 2011
 Re: [oss-security] CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack28 Feb 2011
 Re: [oss-security] cve request: eglibc memory corruption28 Feb 2011
 Re: [oss-security] CVE request: v86d: Failure to validate netlink message sender28 Feb 2011
 Re: [oss-security] CVE Request: PHPShop 0.8.1 <= | Cross Site Scripting Vulnerability28 Feb 2011
 Re: [oss-security] CVE Request -- Smarty -- {smarty.template} && {smarty.currentdir} security bypass28 Feb 2011
 Re: [oss-security] CVE Request -- OpenLDAP -- two issues25 Feb 2011
 Re: [oss-security] CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names24 Feb 2011
 Re: [oss-security] CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables24 Feb 2011
 Re: [oss-security] CVE request: kernel: drm/radeon/kms: check AA resolve registers on r30024 Feb 2011
 Re: [oss-security] CVE request: Information disclosure in CGIHTTPServer from Python24 Feb 2011
 Re: [oss-security] Pattern lock bypass on SE X10 with Android 1.624 Feb 2011
 Re: [oss-security] CVE request: kernel: a collection of world-writable debugfs bugs23 Feb 2011
 Re: [oss-security] CVE requests: freebsd kernel/tesseract/xinha/proftpd23 Feb 2011
 Re: [oss-security] CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables23 Feb 2011
 Re: [oss-security] CVE request: pmwiki before 2.2.2123 Feb 2011
 Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition23 Feb 2011
 Re: [oss-security] CVE request: kernel: Corrupted LDM partition table issues23 Feb 2011
 Re: [oss-security] CVE request: simple machines forum before 1.1.1323 Feb 2011
 Re: [oss-security] CVE request: kernel: fs/partitions: validate map_count in mac partition tables22 Feb 2011
 Re: [oss-security] CVE Request: Vanilla Forums 2.0.17.1 ~ 2.0.17.5 <= Cross Site Scripting Vulnerability22 Feb 2011
 Re: [oss-security] gdm PostLogin script executes scripts as user gdm22 Feb 2011
 Re: [oss-security] CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition22 Feb 2011
 Re: [oss-security] CVE request: kernel: fs/partitions: validate map_count in mac partition tables22 Feb 2011
 Re: [oss-security] CVE request: kernel: a collection of world-writable debugfs bugs22 Feb 2011
 Re: [oss-security] CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE21 Feb 2011
 Re: [oss-security] clamav 0.9721 Feb 2011
 Re: [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP18 Feb 2011
 Re: [oss-security] CVE id request: telepathy-gabble17 Feb 2011
 Re: [oss-security] CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack17 Feb 2011
 Re: [oss-security] kernel: ALSA: caiaq - Fix possible string-buffer overflow16 Feb 2011
 Re: [oss-security] CVE request - kernel: xfs infoleak16 Feb 2011
 Re: [oss-security] CVE request - kernel: s390 task_show_regs infoleak16 Feb 2011
 Re: [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference16 Feb 2011
 Re: [oss-security] CVE request for feh09 Feb 2011
 Re: [oss-security] CVE request: wordpress before 3.0.509 Feb 2011
 [oss-security] Django multiple flaws (CVEs inside)09 Feb 2011
 Re: [oss-security] CVE assignments for Wireshark09 Feb 2011
 Re: [oss-security] CVE request: phpbb before 3.0.808 Feb 2011
 Re: [oss-security] CVE request: fuse08 Feb 2011
 [oss-security] Re: [vendor-sec] OpenSSH security advisory: legacy certificate signing in 5.6/5.704 Feb 2011
 Re: [oss-security] CVE request: fuse03 Feb 2011
 Re: [oss-security] CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.103 Feb 2011
 Re: [oss-security] CVE request: glibc CVE-2010-3847 fix regression03 Feb 2011
 Re: [oss-security] CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability03 Feb 2011
Kees Cook
 Re: [oss-security] CVE request: kernel: OOM-killer via argv expansion28 Feb 2011
 Re: [oss-security] CVE request: kernel: OOM-killer via argv expansion28 Feb 2011
 [oss-security] CVE request: kernel: OOM-killer via argv expansion28 Feb 2011
 Re: [oss-security] CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions26 Feb 2011
 [oss-security] CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions25 Feb 2011
 [oss-security] CVE request: kernel: /proc/$pid/ leaks contents across setuid exec24 Feb 2011
 [oss-security] CVE request: kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN24 Feb 2011
Kurt Seifried
 [oss-security] CVE Request23 Feb 2011
Marc Deslauriers
 [oss-security] CVE request: aircrack-ng14 Feb 2011
 Re: [oss-security] CVE request: fuse03 Feb 2011
 [oss-security] CVE request: fuse02 Feb 2011
Michael Gilbert
 Re: [oss-security] cve request: eglibc memory corruption28 Feb 2011
 [oss-security] cve request: eglibc memory corruption26 Feb 2011
 Re: [oss-security] Webkit Dupes18 Feb 2011
 [oss-security] Webkit Dupes05 Feb 2011
 [oss-security] Webkit Roundup05 Feb 2011
 Re: [oss-security] CVE request: xpdf02 Feb 2011
Michael Tokarev
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
Moritz Muehlenhoff
 [oss-security] CVE request: Information disclosure in CGIHTTPServer from Python23 Feb 2011
 [oss-security] CVE requests: freebsd kernel/tesseract/xinha/proftpd21 Feb 2011
 Re: [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference16 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
Nelson Elhage
 Re: [oss-security] CVE request: kernel: OOM-killer via argv expansion01 Mar 2011
 [oss-security] CVE request: v86d: Failure to validate netlink message sender26 Feb 2011
 Re: [oss-security] CVE request: libcgroup: Failure to verify netlink messages25 Feb 2011
 [oss-security] CVE request: libcgroup: Failure to verify netlink messages25 Feb 2011
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
Nico Golde
 [oss-security] CVE id request: telepathy-gabble17 Feb 2011
 Re: [oss-security] CVE request: aircrack-ng15 Feb 2011
Petr Matousek
 [oss-security] CVE request -- kernel: deficiency in processing igmp host membership reports in br_multicast17 Feb 2011
Pierre Joye
 Re: [oss-security] Re: PHP Exif 64bit Casting Vulnerability, CVE request16 Feb 2011
 [oss-security] Re: PHP Exif 64bit Casting Vulnerability, CVE request16 Feb 2011
 [oss-security] PHP Exif 64bit Casting Vulnerability, CVE request14 Feb 2011
 Re: [oss-security] possible flaw in widely used strtod.c implementation01 Feb 2011
psy
 [oss-security] XSSer v1.5 -beta- aka "Swarm Edition!" released.24 Feb 2011
Ralf Corsepius
 Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition24 Feb 2011
Raphael Geissert
 [oss-security] CVE-2011-0436: dtc sends password of new users to site admin by unencrypted email22 Feb 2011
 [oss-security] Re: CVE request: More Evince overflows18 Feb 2011
Reed Loden
 [oss-security] CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.101 Feb 2011
Sebastian Krahmer
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
Solar Designer
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
Stefan Behte
 [oss-security] CVE request for feh09 Feb 2011
Steve Grubb
 Re: [oss-security] CVE request: libcgroup: Failure to verify netlink messages25 Feb 2011
 Re: [oss-security] CVE request: libcgroup: Failure to verify netlink messages25 Feb 2011
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
Steven M. Christey
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
 Re: [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP22 Feb 2011
 Re: [oss-security] Webkit Dupes17 Feb 2011
 Re: [oss-security] CVE request: kernel: btrfs heap overflow10 Feb 2011
 Re: [oss-security] CVE Request for phpMyAdmin 3.4.x, 3.4.0 beta 2 <= Stored Cross Site Scripting (XSS) Vulnerability02 Feb 2011
Stéphane Gaudreault
 Re: [oss-security] CVE request: kernel: btrfs heap overflow09 Feb 2011
Thomas Biege
 Re: [oss-security] CVE Request -- OpenLDAP -- two issues28 Feb 2011
 Re: [oss-security] gdm PostLogin script executes scripts as user gdm23 Feb 2011
 [oss-security] gdm PostLogin script executes scripts as user gdm22 Feb 2011
 [oss-security] CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE21 Feb 2011
 [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP18 Feb 2011
 Re: [oss-security] CVE request: xpdf08 Feb 2011
 Re: [oss-security] CVE request: xpdf08 Feb 2011
Thomas Sibley
 [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition22 Feb 2011
Tim Brown
 [oss-security] Pattern lock bypass on SE X10 with Android 1.623 Feb 2011
Timo Warns
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
 [oss-security] CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables23 Feb 2011
Tomas Hoger
 Re: [oss-security] CVE request: xpdf08 Feb 2011
 [oss-security] CVE request: glibc CVE-2010-3847 fix regression01 Feb 2011
Vasiliy Kulikov
 [oss-security] CVE request: kernel: two bluetooth and one ebtables infoleaks/DoSes28 Feb 2011
 Re: [oss-security] CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions25 Feb 2011
 Re: [oss-security] CVE request: kernel: a collection of world-writable debugfs bugs23 Feb 2011
 Re: [oss-security] CVE request: patch directory traversal flaw18 Feb 2011
Vincent Danen
 Re: [oss-security] CVE Request -- OpenLDAP -- two issues28 Feb 2011
 Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition24 Feb 2011
 Re: [oss-security] Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition24 Feb 2011
 Re: [oss-security] Physical access vulnerabilities and auto-mounting23 Feb 2011
YGN Ethical Hacker Group
 Re: [oss-security] CVE Request for phpMyAdmin 3.4.x, 3.4.0 beta 2 <= Stored Cross Site Scripting (XSS) Vulnerability25 Feb 2011
 [oss-security] CVE Request: PHPShop 0.8.1 <= | Cross Site Scripting Vulnerability25 Feb 2011
 [oss-security] CVE Request: Vanilla Forums 2.0.17.1 ~ 2.0.17.5 <= Cross Site Scripting Vulnerability22 Feb 2011
 [oss-security] CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability01 Feb 2011