Linuxsecurity - linuxsecurity.com - LinuxSecurity.com - Security Advisories
General Information:
Latest News:
Mandriva: 2013:220: lcms 27 Aug 2013 | 01:15 pm
LinuxSecurity.com: Updated lcms packages fix security vulnerability: Three buffer overflows in Little CMS version 1.19 that could possibly be exploited through user input (CVE-2013-4276). [More...] __...
Debian: 2743-1: kfreebsd-9: privilege escalation/inform 27 Aug 2013 | 07:04 am
LinuxSecurity.com: Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a privilege escalation or information leak. The Common Vulnerabilities and Exposures project iden...
Debian: 2742-1: php5: interpretation conflict 26 Aug 2013 | 09:27 pm
LinuxSecurity.com: It was discovered that PHP, a general-purpose scripting language commonly used for web application development, did not properly process embedded NUL characters in the subjectAltNam...
Debian: 2741-1: chromium-browser: Multiple vulnerabilities 25 Aug 2013 | 09:48 pm
LinuxSecurity.com: Several vulnerabilities have been discovered in the Chromium web browser. CVE-2013-2887 [More...]
Gentoo: 201308-04 Puppet: Multiple vulnerabilities 23 Aug 2013 | 07:40 pm
LinuxSecurity.com: Multiple vulnerabilities have been found in Puppet, the worst of which could lead to execution of arbitrary code.
Debian: 2740-1: python-django: cross-site scripting vulner 23 Aug 2013 | 06:53 pm
LinuxSecurity.com: Nick Brunn reported a possible cross-site scripting vulnerability in python-django, a high-level Python web development framework. The is_safe_url utility function used to validate ...
Mandriva: 2013:219: libtiff 23 Aug 2013 | 03:39 pm
LinuxSecurity.com: Updated libtiff packages fix security vulnerabilities: Pedro Ribeiro discovered a buffer overflow flaw in rgb2ycbcr, a tool to convert RGB color, greyscale, or bi-level TIFF images ...
Mandriva: 2013:218: python-django 23 Aug 2013 | 02:54 pm
LinuxSecurity.com: Updated python-django package fixes security vulnerability: The is_safe_url() function has been modified to properly recognize and reject URLs which specify a scheme other than HTTP...
Mandriva: 2013:217: spice 23 Aug 2013 | 01:33 pm
LinuxSecurity.com: Updated spice packages fix security vulnerability: An user able to initiate spice connection to the guest could use a flaw in server/red_channel.c to crash the guest (CVE-2013-4130)...
Mandriva: 2013:216: perl-Proc-ProcessTable 23 Aug 2013 | 01:09 pm
LinuxSecurity.com: Updated perl-Proc-ProcessTable package fixes security vulnerability: ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is enabled, allows ...
