oss-security February 2011 archive
| Main Archive Page > Month Archives > oss-security archives |
oss-security By Subject
| Subject | Author | Date |
| [oss-security] [HITB-Announce] HITB Magazine Issue 005 Released | ||
| Hafez Kamal | 09 Feb 2011 | |
| [oss-security] clamav 0.97 | ||
| Josh Bressers | 21 Feb 2011 | |
| Hanno Böck | 21 Feb 2011 | |
| [oss-security] CVE assignments for Wireshark | ||
| Josh Bressers | 09 Feb 2011 | |
| [oss-security] CVE id request: telepathy-gabble | ||
| Josh Bressers | 17 Feb 2011 | |
| Nico Golde | 17 Feb 2011 | |
| [oss-security] CVE Request | ||
| Eugene Teo | 23 Feb 2011 | |
| Kurt Seifried | 23 Feb 2011 | |
| [oss-security] CVE request - kernel: bridge br_multicast NULL pointer dereference | ||
| Moritz Muehlenhoff | 16 Feb 2011 | |
| Josh Bressers | 16 Feb 2011 | |
| Eugene Teo | 16 Feb 2011 | |
| [oss-security] CVE request - kernel: s390 task_show_regs infoleak | ||
| Josh Bressers | 16 Feb 2011 | |
| Eugene Teo | 16 Feb 2011 | |
| [oss-security] CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack | ||
| Josh Bressers | 17 Feb 2011 | |
| Eugene Teo | 17 Feb 2011 | |
| [oss-security] CVE request - kernel: xfs infoleak | ||
| Josh Bressers | 16 Feb 2011 | |
| Eugene Teo | 16 Feb 2011 | |
| [oss-security] CVE request -- kernel: deficiency in processing igmp host membership reports in br_multicast | ||
| Eugene Teo | 17 Feb 2011 | |
| Petr Matousek | 17 Feb 2011 | |
| [oss-security] CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names | ||
| Josh Bressers | 24 Feb 2011 | |
| Jan Lieskovsky | 24 Feb 2011 | |
| [oss-security] CVE Request -- OpenLDAP -- two issues | ||
| Vincent Danen | 28 Feb 2011 | |
| Thomas Biege | 28 Feb 2011 | |
| Josh Bressers | 25 Feb 2011 | |
| Jan Lieskovsky | 24 Feb 2011 | |
| [oss-security] CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition | ||
| Josh Bressers | 22 Feb 2011 | |
| Jan Lieskovsky | 22 Feb 2011 | |
| [oss-security] CVE Request -- Smarty -- {smarty.template} && {smarty.currentdir} security bypass | ||
| Josh Bressers | 28 Feb 2011 | |
| Jan Lieskovsky | 24 Feb 2011 | |
| [oss-security] CVE request for feh | ||
| Josh Bressers | 09 Feb 2011 | |
| Stefan Behte | 09 Feb 2011 | |
| [oss-security] CVE Request for phpMyAdmin 3.4.x, 3.4.0 beta 2 <= Stored Cross Site Scripting (XSS) Vulnerability | ||
| YGN Ethical Hacker Group | 25 Feb 2011 | |
| Steven M. Christey | 02 Feb 2011 | |
| [oss-security] CVE request: aircrack-ng | ||
| Marc Deslauriers | 14 Feb 2011 | |
| Nico Golde | 15 Feb 2011 | |
| [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP | ||
| Steven M. Christey | 22 Feb 2011 | |
| Josh Bressers | 18 Feb 2011 | |
| Thomas Biege | 18 Feb 2011 | |
| [oss-security] cve request: eglibc memory corruption | ||
| Michael Gilbert | 28 Feb 2011 | |
| Josh Bressers | 28 Feb 2011 | |
| Michael Gilbert | 26 Feb 2011 | |
| [oss-security] CVE request: FreeBSD/OS X crontab information leakage | ||
| Josh Bressers | 28 Feb 2011 | |
| Dan Rosenberg | 28 Feb 2011 | |
| [oss-security] CVE request: fuse | ||
| Josh Bressers | 08 Feb 2011 | |
| Marc Deslauriers | 03 Feb 2011 | |
| Josh Bressers | 03 Feb 2011 | |
| Marc Deslauriers | 02 Feb 2011 | |
| [oss-security] CVE request: glibc CVE-2010-3847 fix regression | ||
| Josh Bressers | 03 Feb 2011 | |
| Tomas Hoger | 01 Feb 2011 | |
| [oss-security] CVE request: Information disclosure in CGIHTTPServer from Python | ||
| Josh Bressers | 24 Feb 2011 | |
| Moritz Muehlenhoff | 23 Feb 2011 | |
| [oss-security] CVE request: kernel: /proc/$pid/ leaks contents across setuid exec | ||
| Eugene Teo | 25 Feb 2011 | |
| Kees Cook | 24 Feb 2011 | |
| [oss-security] CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions | ||
| Kees Cook | 26 Feb 2011 | |
| Vasiliy Kulikov | 25 Feb 2011 | |
| Eugene Teo | 25 Feb 2011 | |
| Kees Cook | 25 Feb 2011 | |
| [oss-security] CVE request: kernel: a collection of world-writable debugfs bugs | ||
| Josh Bressers | 23 Feb 2011 | |
| Vasiliy Kulikov | 23 Feb 2011 | |
| Eugene Teo | 23 Feb 2011 | |
| Josh Bressers | 22 Feb 2011 | |
| Eugene Teo | 22 Feb 2011 | |
| [oss-security] CVE request: kernel: btrfs heap overflow | ||
| Eugene Teo | 22 Feb 2011 | |
| Steven M. Christey | 10 Feb 2011 | |
| Greg KH | 09 Feb 2011 | |
| Moritz Muehlenhoff | 09 Feb 2011 | |
| Stéphane Gaudreault | 09 Feb 2011 | |
| Eugene Teo | 09 Feb 2011 | |
| Eugene Teo | 09 Feb 2011 | |
| Dan Rosenberg | 09 Feb 2011 | |
| Eugene Teo | 09 Feb 2011 | |
| Dan Rosenberg | 09 Feb 2011 | |
| [oss-security] CVE request: kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN | ||
| Eugene Teo | 25 Feb 2011 | |
| Kees Cook | 24 Feb 2011 | |
| [oss-security] CVE request: kernel: Corrupted LDM partition table issues | ||
| Josh Bressers | 23 Feb 2011 | |
| Eugene Teo | 23 Feb 2011 | |
| [oss-security] CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 | ||
| Eugene Teo | 25 Feb 2011 | |
| Josh Bressers | 24 Feb 2011 | |
| Eugene Teo | 24 Feb 2011 | |
| [oss-security] CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables | ||
| Josh Bressers | 24 Feb 2011 | |
| Jon Oberheide | 24 Feb 2011 | |
| Eugene Teo | 24 Feb 2011 | |
| Josh Bressers | 23 Feb 2011 | |
| Timo Warns | 23 Feb 2011 | |
| [oss-security] CVE request: kernel: fs/partitions: validate map_count in mac partition tables | ||
| Josh Bressers | 22 Feb 2011 | |
| Greg KH | 22 Feb 2011 | |
| Josh Bressers | 22 Feb 2011 | |
| Eugene Teo | 22 Feb 2011 | |
| [oss-security] CVE request: kernel: OOM-killer via argv expansion | ||
| Eugene Teo | 01 Mar 2011 | |
| Nelson Elhage | 01 Mar 2011 | |
| Kees Cook | 28 Feb 2011 | |
| Kees Cook | 28 Feb 2011 | |
| Kees Cook | 28 Feb 2011 | |
| [oss-security] CVE request: kernel: two bluetooth and one ebtables infoleaks/DoSes | ||
| Vasiliy Kulikov | 28 Feb 2011 | |
| [oss-security] CVE request: libcgroup: Failure to verify netlink messages | ||
| Steve Grubb | 25 Feb 2011 | |
| Nelson Elhage | 25 Feb 2011 | |
| Steve Grubb | 25 Feb 2011 | |
| Eugene Teo | 25 Feb 2011 | |
| Nelson Elhage | 25 Feb 2011 | |
| [oss-security] CVE request: patch directory traversal flaw | ||
| Vasiliy Kulikov | 18 Feb 2011 | |
| [oss-security] CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack | ||
| Josh Bressers | 28 Feb 2011 | |
| Dan Rosenberg | 28 Feb 2011 | |
| Helgi Þormar Þorbjörnsson | 28 Feb 2011 | |
| [oss-security] CVE request: phpbb before 3.0.8 | ||
| Hanno Böck | 08 Feb 2011 | |
| Josh Bressers | 08 Feb 2011 | |
| Hanno Böck | 07 Feb 2011 | |
| [oss-security] CVE Request: PHPShop 0.8.1 <= | Cross Site Scripting Vulnerability | ||
| Josh Bressers | 28 Feb 2011 | |
| YGN Ethical Hacker Group | 25 Feb 2011 | |
| [oss-security] CVE request: pmwiki before 2.2.21 | ||
| Josh Bressers | 23 Feb 2011 | |
| Hanno Böck | 23 Feb 2011 | |
| [oss-security] CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE | ||
| Josh Bressers | 21 Feb 2011 | |
| Thomas Biege | 21 Feb 2011 | |
| [oss-security] CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.1 | ||
| Josh Bressers | 03 Feb 2011 | |
| Reed Loden | 01 Feb 2011 | |
| [oss-security] CVE request: simple machines forum before 1.1.13 | ||
| Josh Bressers | 23 Feb 2011 | |
| Hanno Böck | 22 Feb 2011 | |
| [oss-security] CVE request: v86d: Failure to validate netlink message sender | ||
| Josh Bressers | 28 Feb 2011 | |
| Nelson Elhage | 26 Feb 2011 | |
| [oss-security] CVE Request: Vanilla Forums 2.0.17.1 ~ 2.0.17.5 <= Cross Site Scripting Vulnerability | ||
| Josh Bressers | 22 Feb 2011 | |
| YGN Ethical Hacker Group | 22 Feb 2011 | |
| [oss-security] CVE request: wordpress before 3.0.5 | ||
| Josh Bressers | 09 Feb 2011 | |
| Hanno Böck | 08 Feb 2011 | |
| [oss-security] CVE request: xpdf | ||
| Thomas Biege | 08 Feb 2011 | |
| Tomas Hoger | 08 Feb 2011 | |
| Thomas Biege | 08 Feb 2011 | |
| Michael Gilbert | 02 Feb 2011 | |
| [oss-security] CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability | ||
| Josh Bressers | 03 Feb 2011 | |
| YGN Ethical Hacker Group | 01 Feb 2011 | |
| [oss-security] CVE requests: freebsd kernel/tesseract/xinha/proftpd | ||
| Josh Bressers | 23 Feb 2011 | |
| Moritz Muehlenhoff | 21 Feb 2011 | |
| [oss-security] CVE-2011-0436: dtc sends password of new users to site admin by unencrypted email | ||
| Raphael Geissert | 22 Feb 2011 | |
| [oss-security] Django multiple flaws (CVEs inside) | ||
| Josh Bressers | 09 Feb 2011 | |
| [oss-security] gdm PostLogin script executes scripts as user gdm | ||
| Thomas Biege | 23 Feb 2011 | |
| Josh Bressers | 22 Feb 2011 | |
| Thomas Biege | 22 Feb 2011 | |
| [oss-security] kernel: ALSA: caiaq - Fix possible string-buffer overflow | ||
| Eugene Teo | 16 Feb 2011 | |
| Josh Bressers | 16 Feb 2011 | |
| Eugene Teo | 16 Feb 2011 | |
| [oss-security] Pattern lock bypass on SE X10 with Android 1.6 | ||
| Josh Bressers | 24 Feb 2011 | |
| Tim Brown | 23 Feb 2011 | |
| [oss-security] PHP Exif 64bit Casting Vulnerability, CVE request | ||
| Pierre Joye | 14 Feb 2011 | |
| [oss-security] Physical access vulnerabilities and auto-mounting | ||
| Steven M. Christey | 23 Feb 2011 | |
| Vincent Danen | 23 Feb 2011 | |
| Timo Warns | 23 Feb 2011 | |
| Steve Grubb | 23 Feb 2011 | |
| Hanno Böck | 23 Feb 2011 | |
| Michael Tokarev | 23 Feb 2011 | |
| Sebastian Krahmer | 23 Feb 2011 | |
| Solar Designer | 23 Feb 2011 | |
| Nelson Elhage | 23 Feb 2011 | |
| Eugene Teo | 23 Feb 2011 | |
| Eugene Teo | 23 Feb 2011 | |
| Dan Rosenberg | 23 Feb 2011 | |
| [oss-security] possible flaw in widely used strtod.c implementation | ||
| Pierre Joye | 01 Feb 2011 | |
| [oss-security] Webkit Dupes | ||
| Michael Gilbert | 18 Feb 2011 | |
| Steven M. Christey | 17 Feb 2011 | |
| Michael Gilbert | 05 Feb 2011 | |
| [oss-security] Webkit Roundup | ||
| Michael Gilbert | 05 Feb 2011 | |
| [oss-security] wireshark dct3trace buffer overflow | ||
| Huzaifa Sidhpurwala | 16 Feb 2011 | |
| [oss-security] Wireshark: Freeing uninitialized pointer | ||
| Huzaifa Sidhpurwala | 04 Feb 2011 | |
| [oss-security] XSSer v1.5 -beta- aka "Swarm Edition!" released. | ||
| psy | 24 Feb 2011 | |
| [vendor-sec] OpenSSH security advisory: legacy certificate signing in 5.6/5.7 | ||
| Josh Bressers | 04 Feb 2011 | |
| CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition | ||
| Vincent Danen | 24 Feb 2011 | |
| Ralf Corsepius | 24 Feb 2011 | |
| Vincent Danen | 24 Feb 2011 | |
| Josh Bressers | 23 Feb 2011 | |
| Thomas Sibley | 22 Feb 2011 | |
| CVE request: More Evince overflows | ||
| Raphael Geissert | 18 Feb 2011 | |
| PHP Exif 64bit Casting Vulnerability, CVE request | ||
| Huzaifa Sidhpurwala | 16 Feb 2011 | |
| Pierre Joye | 16 Feb 2011 | |
| Pierre Joye | 16 Feb 2011 | |
- Last message date: 01 Mar 2011
- Archived on: 01 Mar 2011 GMT