oss-security January 2011 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: By Thread

oss-security By Thread

SubjectAuthor Date
[oss-security] CVE request: code execution in VLC media playerDan Rosenberg31 Jan 2011
Re: [oss-security] CVE request: code execution in VLC media playerJosh Bressers31 Jan 2011
[oss-security] [HITB-Announce] Reminder: HITB2011AMS - Call for Papers closes on the 18th of FebHafez Kamal31 Jan 2011
[oss-security] MaraDNS 1.4.06 and 1.3.07.11 releasedSam Trenholme30 Jan 2011
Re: [oss-security] MaraDNS 1.4.06 and 1.3.07.11 releasedTomas Hoger31 Jan 2011
[oss-security] CVE Request -- NDB: CVE-2005-3534 reintroduced in upstream nbd-v2.9.0 versionJan Lieskovsky28 Jan 2011
Re: [oss-security] CVE Request -- NDB: CVE-2005-3534 reintroduced in upstream nbd-v2.9.0 versionJosh Bressers31 Jan 2011
[oss-security] request CVE for weborfSalvo Tomaselli28 Jan 2011
Re: [oss-security] request CVE for weborfJosh Bressers31 Jan 2011
[oss-security] CVE request: puppetMoritz MĂĽhlenhoff27 Jan 2011
Re: [oss-security] CVE request: puppetJosh Bressers31 Jan 2011
[oss-security] CVE Request:Vanilla Forums 2.0.16 <= Cross Site Scripting VulnerabilityYGN Ethical Hacker Group27 Jan 2011
Re: [oss-security] CVE Request:Vanilla Forums 2.0.16 <= Cross Site Scripting VulnerabilityJosh Bressers27 Jan 2011
[oss-security] CVE Request for phpMyAdmin 3.4.x, 3.4.0 beta 2 <= Stored Cross Site Scripting (XSS) VulnerabilityYGN Ethical Hacker Group27 Jan 2011
Re: [oss-security] CVE Request for phpMyAdmin 3.4.x, 3.4.0 beta 2 <= Stored Cross Site Scripting (XSS) VulnerabilityJosh Bressers27 Jan 2011
[oss-security] CVE-2010-4238 xen dom0 issueEugene Teo25 Jan 2011
[oss-security] Batavi 1.0 - XSRF bug fixedRonald van den Blink25 Jan 2011
Re: [oss-security] Batavi 1.0 - XSRF bug fixedJosh Bressers27 Jan 2011
[oss-security] CVE Request: VLC Subtitle StripTags heap corruptionMarc Deslauriers25 Jan 2011
Re: [oss-security] CVE Request: VLC Subtitle StripTags heap corruptionJosh Bressers25 Jan 2011
[oss-security] syslog-ng wrong file permission vulnerabilitySZALAY Attila25 Jan 2011
[oss-security] CVE request: multiple gypsy vulnerabilitiesKees Cook24 Jan 2011
Re: [oss-security] CVE request: multiple gypsy vulnerabilitiesJosh Bressers25 Jan 2011
[oss-security] CVE request: linux kernel heap issuesKees Cook24 Jan 2011
Re: [oss-security] CVE request: linux kernel heap issuesKurt Seifried25 Jan 2011
Re: [oss-security] CVE request: linux kernel heap issuesEugene Teo25 Jan 2011
--> Re: [oss-security] CVE request: linux kernel heap issuesEugene Teo25 Jan 2011
--> Re: [oss-security] CVE request: linux kernel heap issuesEugene Teo28 Jan 2011
[oss-security] CVE request: libxml2 heap contents leakKees Cook24 Jan 2011
Re: [oss-security] CVE request: libxml2 heap contents leakJosh Bressers25 Jan 2011
Re: [oss-security] CVE request: libxml2 heap contents leakPierre Joye25 Jan 2011
--> Re: [oss-security] CVE request: libxml2 heap contents leakKees Cook25 Jan 2011
[oss-security] CVE request: multiple status.net issuesKees Cook24 Jan 2011
Re: [oss-security] CVE request: multiple status.net issuesJosh Bressers25 Jan 2011
[oss-security] Linux kernel av7110 negative array offsetKees Cook24 Jan 2011
Re: [oss-security] Linux kernel av7110 negative array offsetEugene Teo25 Jan 2011
[oss-security] CVE request: MaraDNS DoS via long queriesRaphael Geissert24 Jan 2011
Re: [oss-security] CVE request: MaraDNS DoS via long queriesJosh Bressers24 Jan 2011
[oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeEugene Teo21 Jan 2011
[oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeVasiliy Kulikov21 Jan 2011
--> [oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeEugene Teo21 Jan 2011
[oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeSteven M. Christey22 Jan 2011
--> Re: [oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeEugene Teo23 Jan 2011
--> Re: [oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeJosh Bressers24 Jan 2011
--> Re: [oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeEugene Teo25 Jan 2011
--> [oss-security] Re: [PATCH] acpi: debugfs: fix buffer overflows, double freeVasiliy Kulikov24 Jan 2011
[oss-security] CVE request: xpdfDan Rosenberg20 Jan 2011
Re: [oss-security] CVE request: xpdfJosh Bressers24 Jan 2011
[oss-security] CVE request: heap corruption in VLC media playerDan Rosenberg19 Jan 2011
Re: [oss-security] CVE request: heap corruption in VLC media playerJosh Bressers20 Jan 2011
[oss-security] 2 acpid flawsVasiliy Kulikov19 Jan 2011
[oss-security] CVE Request -- Asterisk: Stack-based buffer overflow by forming an outgoing SIP request with specially-crafted caller ID information (AST-2011-001)Jan Lieskovsky19 Jan 2011
Re: [oss-security] CVE Request -- Asterisk: Stack-based buffer overflow by forming an outgoing SIP request with specially-crafted caller ID information (AST-2011-001)Steven M. Christey19 Jan 2011
--> Re: [oss-security] CVE Request -- Asterisk: Stack-based buffer overflow by forming an outgoing SIP request with specially-crafted caller ID information (AST-2011-001)Matthew Nicholson19 Jan 2011
[oss-security] CVE request: heap corruption in libpangoDan Rosenberg18 Jan 2011
Re: [oss-security] CVE request: heap corruption in libpangoJosh Bressers20 Jan 2011
[oss-security] CVE requestTim Brown18 Jan 2011
Re: [oss-security] CVE requestMichael Gilbert18 Jan 2011
--> Re: [oss-security] CVE requestTim Brown18 Jan 2011
--> Re: [oss-security] CVE requestMichael Gilbert18 Jan 2011
--> Re: [oss-security] CVE requestJosh Bressers18 Jan 2011
[oss-security] CVE request: torMoritz Muehlenhoff17 Jan 2011
Re: [oss-security] CVE request: torJosh Bressers18 Jan 2011
--> Re: [oss-security] CVE request: torSteven M. Christey19 Jan 2011
[oss-security] CVE request: proftpd before 1.3.3dHanno Böck14 Jan 2011
Re: [oss-security] CVE request: proftpd before 1.3.3dJosh Bressers14 Jan 2011
--> Re: [oss-security] CVE request: proftpd before 1.3.3dTJ Saunders14 Jan 2011
[oss-security] CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3Raphael Geissert13 Jan 2011
Re: [oss-security] CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3Moritz MĂĽhlenhoff14 Jan 2011
--> Re: [oss-security] CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3Steven M. Christey14 Jan 2011
--> Re: [oss-security] CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3Tomas Hoger14 Jan 2011
Re: [oss-security] CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3Josh Bressers14 Jan 2011
[oss-security] Re: CVE requests: IO::Socket::SSL, cakephp, collectd, gnash, ocrodjvu, hypermail, libcloud, piwigoRaphael Geissert13 Jan 2011
[oss-security] CVE assignments for WiresharkSteven M. Christey12 Jan 2011
Re: [oss-security] CVE assignments for WiresharkHuzaifa Sidhpurwala20 Jan 2011
--> Re: [oss-security] CVE assignments for WiresharkJosh Bressers31 Jan 2011
[oss-security] CVE request: sudo does not ask for password on GID changesVincent Danen11 Jan 2011
Re: [oss-security] CVE request: sudo does not ask for password on GID changesJosh Bressers12 Jan 2011
Re: [oss-security] CVE request: sudo does not ask for password on GID changesTodd C. Miller12 Jan 2011
[oss-security] CVE request: qemu-kvm: Setting VNC password to empty string silently disables all authenticationPetr Matousek10 Jan 2011
Re: [oss-security] CVE request: qemu-kvm: Setting VNC password to empty string silently disables all authenticationKurt Seifried11 Jan 2011
Re: [oss-security] CVE request: qemu-kvm: Setting VNC password to empty string silently disables all authenticationJosh Bressers12 Jan 2011
Re: [oss-security] Re: CVE-2010-2094: PECL's phar code is vulnerable tooEygene Ryabinkin10 Jan 2011
Re: [oss-security] Re: CVE-2010-2094: PECL's phar code is vulnerable tooPierre Joye10 Jan 2011
[oss-security] CVE Request - pimd - Insecure file creation in /var/tmpSteve Kemp07 Jan 2011
Re: [oss-security] CVE Request - pimd - Insecure file creation in /var/tmpJosh Bressers07 Jan 2011
[oss-security] CVE-2010-4225: XSP/mod_mono source code disclosureThomas Biege07 Jan 2011
Re: [oss-security] CVE-2010-4225: XSP/mod_mono source code disclosureOden Eriksson20 Jan 2011
--> Re: [oss-security] CVE-2010-4225: XSP/mod_mono source code disclosureVincent Danen20 Jan 2011
[oss-security] CVE Request: kernel [Re: Security review of 2.6.32.28]dann frazier06 Jan 2011
Re: [oss-security] CVE Request: kernel [Re: Security review of 2.6.32.28]Josh Bressers06 Jan 2011
[oss-security] CVE Request: Eclipse IDE Version: 3.6.1 | Help Server Local Cross Site Scripting (XSS)YGN Ethical Hacker Group06 Jan 2011
Re: [oss-security] CVE Request: Eclipse IDE Version: 3.6.1 | Help Server Local Cross Site Scripting (XSS)Josh Bressers06 Jan 2011
[oss-security] CVE Request for Joomla! 1.0.x ~ 1.0.15 | Cross Site Scripting (XSS) VulnerabilityYGN Ethical Hacker Group06 Jan 2011
Re: [oss-security] CVE Request for Joomla! 1.0.x ~ 1.0.15 | Cross Site Scripting (XSS) VulnerabilityJosh Bressers06 Jan 2011
[oss-security] CVE-NONE kernel: PHONET signedness issueEugene Teo06 Jan 2011
Re: [oss-security] CVE-NONE kernel: PHONET signedness issueMichael Gilbert06 Jan 2011
--> Re: [oss-security] CVE-NONE kernel: PHONET signedness issueDan Rosenberg06 Jan 2011
--> Re: [oss-security] CVE-NONE kernel: PHONET signedness issueMichael Gilbert06 Jan 2011
--> Re: [oss-security] CVE-NONE kernel: PHONET signedness issueNelson Elhage06 Jan 2011
--> Re: [oss-security] CVE-NONE kernel: PHONET signedness issueSteven M. Christey07 Jan 2011
[oss-security] CVE Request: Multiple XSS Vulnerabiliies < Piwik 1.1Anthon Pang06 Jan 2011
Re: [oss-security] CVE Request: Multiple XSS Vulnerabiliies < Piwik 1.1Josh Bressers06 Jan 2011
[oss-security] CVE request: patch directory traversal flawVincent Danen05 Jan 2011
Re: [oss-security] CVE request: patch directory traversal flawDan Rosenberg05 Jan 2011
--> Re: [oss-security] CVE request: patch directory traversal flawVincent Danen05 Jan 2011
Re: [oss-security] CVE request: patch directory traversal flawSteve Beattie06 Jan 2011
--> [oss-security] Re: CVE request: patch directory traversal flawRaphael Geissert06 Jan 2011
Re: [oss-security] CVE request: patch directory traversal flawJosh Bressers06 Jan 2011
--> Re: [oss-security] CVE request: patch directory traversal flawVasiliy Kulikov26 Jan 2011
[oss-security] Re: CVE request: patch directory traversal flawRaphael Geissert06 Jan 2011
[oss-security] CVE request: hastymail before 1.01 XSSHanno Böck05 Jan 2011
Re: [oss-security] CVE request: hastymail before 1.01 XSSJosh Bressers06 Jan 2011
[oss-security] possible flaw in widely used strtod.c implementationPierre Joye05 Jan 2011
Re: [oss-security] possible flaw in widely used strtod.c implementationMichael Gilbert05 Jan 2011
--> Re: [oss-security] possible flaw in widely used strtod.c implementationPierre Joye05 Jan 2011
--> Re: [oss-security] possible flaw in widely used strtod.c implementationPierre Joye06 Jan 2011
--> Re: [oss-security] possible flaw in widely used strtod.c implementationJosh Bressers06 Jan 2011
--> Re: [oss-security] possible flaw in widely used strtod.c implementationSteven M. Christey11 Jan 2011
[oss-security] CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleakEugene Teo05 Jan 2011
Re: [oss-security] CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleakGreg KH05 Jan 2011
--> Re: [oss-security] CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleakEugene Teo06 Jan 2011
[oss-security] (possible) CVE request: Clickjacking in MediawikiJonathan Wiltshire04 Jan 2011
Re: [oss-security] (possible) CVE request: Clickjacking in MediawikiJosh Bressers04 Jan 2011
Re: [oss-security] Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)Jan Lieskovsky04 Jan 2011
Re: [oss-security] Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)Mark Stosberg04 Jan 2011
--> [oss-security] CGI.pm 3.51 releasedMark Stosberg05 Jan 2011
--> [oss-security] Re: CGI.pm 3.51 released (revised)Mark Stosberg05 Jan 2011
Re: [oss-security] CVE request: kernel: Multiple DoS issues in block layerEugene Teo04 Jan 2011
[oss-security] CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect()Eugene Teo04 Jan 2011
Re: [oss-security] CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect()Greg KH04 Jan 2011
[oss-security] CVE request: AusweisAppHanno Böck04 Jan 2011
Re: [oss-security] CVE request: AusweisAppHanno Böck04 Jan 2011
[oss-security] CVE request: silverstripe before 2.4.4Hanno Böck03 Jan 2011
Re: [oss-security] CVE request: silverstripe before 2.4.4Josh Bressers04 Jan 2011
[oss-security] Possible CVE Request: improper AppArmor exec transitionJamie Strandboge03 Jan 2011
Re: [oss-security] Possible CVE Request: improper AppArmor exec transitionJamie Strandboge03 Jan 2011
Re: [oss-security] CVE Request: WiresharkJosh Bressers03 Jan 2011
Re: [oss-security] CVE Request: CrawlTrack < 3.2.7 - remote php code executionJosh Bressers03 Jan 2011
Re: [oss-security] CVE request: wordpress before 3.0.4 XSSJosh Bressers03 Jan 2011
Re: [oss-security] CVE Request -- Django 1.2.4, Django 1.1.3 and Django 1.3 beta 1 -- addressing two security flawsJosh Bressers03 Jan 2011
Re: [oss-security] Re: CVE Request -- OfflineIMAP -- 1), failed to validate remote SSL server certificate 2), allows SSLv2 protocolJosh Bressers03 Jan 2011
Re: [oss-security] CVE Request -- 1, ccid -- int.overflow leading to array index error 2, pcsc-lite stack-based buffer overflow in ATR decoder [was: [oss-security] CVE request: opensc buffer overflow ]Josh Bressers03 Jan 2011
[oss-security] CVE request for buffer overflows in gimpHuzaifa Sidhpurwala03 Jan 2011
Re: [oss-security] CVE request for buffer overflows in gimpJosh Bressers04 Jan 2011
Re: [oss-security] CVE request: kernel: irda: prevent integer underflow in IRLMP_ENUMDEVICESHuzaifa Sidhpurwala03 Jan 2011
[oss-security] CVE request for subversionKurt Seifried02 Jan 2011
Re: [oss-security] CVE request for subversionJosh Bressers03 Jan 2011
--> Re: [oss-security] CVE request for subversionJan Lieskovsky04 Jan 2011
--> Re: [oss-security] CVE request for subversionHyrum Wright04 Jan 2011
--> Re: [oss-security] CVE request for subversionJosh Bressers05 Jan 2011
--> Re: [oss-security] CVE request for subversionHyrum K Wright09 Jan 2011
--> Re: [oss-security] CVE request for subversionKurt Seifried09 Jan 2011