February 2006

February 2006

00104 - Red Hat - Two Security Advisories

00165 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 19-Feb-2006 - 25-Feb-2006

00164 - SUSE Security Announcement: (SUSE-SA:2006:012) - kernel various security problems

00163 - Two Debian Security Advisories: 1. DSA 982-1 - New gpdf packages fix several vulnerabilities 2. DSA 983-1 - New pdftohtml packages fix several vulnerabilities

00162 - Two Mandriva Linux Security Advisories: 1. MDKSA-2006:049 - Updated squirrelmail packages fix vulnerabilities 2. MDKSA-2005:050 - Updated unzip packages fix vulnerabilities

00249 - AUSCERT Advisory: AA-2006.0018 - Vulnerability in multiple PHP web applications using PHPLIB

00161 - Two SUSE Security Advisories: 1. SUSE-SR:2006:004 - Summary Reports 2. SUSE-SA:2006:011 - heimdal

00160 - Mod_python 3.2.8 (security)

00159 - Sun Microsystems Advisory: 102161 - Security Vulnerability in the hsfs(7FS) File System

00157 - SUSE - CASA remote code execution (SUSE-SA:2006:010)

00156 - Debian - New tutos packages fix multiple vulnerabilities [DSA 980-1]

00155 - Mandriva - Three Security Advisories

00154 - SCO Security Advisory: SCOSA-2006.9 - UnixWare 7.1.3 UnixWare 7.1.4 : Setuid ptrace Local Privilege Escalation Vulnerability

00153 - Mandriva Linux Security Advisory: MDKSA-2006:044 - Updated kernel packages fix multiple vulnerabilities

00152 - Two Red Hat Security Advisories: 1. RHSA-2006:0195-01 - Low: tar security update 2. RHSA-2006:0217-01 - Important: metamail security update

00151 - Gentoo Linux Security Advisory: GLSA 200602-12 - GPdf: Heap overflows in included Xpdf code

00150 - Secunia - Mac OS X __MACOSX ZIP Archive Shell Script Execution

00149 - SUSE Security Announcement: SUSE-SA:2006:009 - gpg,liby2util signature checking problems

00148 - Gentoo Linux Security Advisory: GLSA 200602-11 - OpenSSH, Dropbear: Insecure use of system() call

00147 - Hewlett Packard Security Bulletin: HPSBMA01224 SSRT051023 rev.6 - OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access

00146 - Debian Security Advisory: DSA 979-1 - New pdfkit.framework packages fix several vulnerabilities

00145 - CIAC INFORMATION BULLETIN: 1229918 - IBM - Potential Buffer Overflow and Directory Traversal Vulnerabilities

00144 - GnuPG Security Advisory: False positive signature verification in GnuPG

00143 - AUSCERT Advisory: AA-2006.0017 - Multiple vulnerabilities in Winamp 5.13 and prior allow arbitrary code execution

00142 - Two Debian Security Advisories: 1. DSA 977-1 - New heimdal packages fix several vulnerabilities 2. DSA 978-1 - New GnuPG packages fix invalid success return

00141 - Two Gentoo Linux Security Advisories: 1. GLSA 200602-08 - libtasn1, GNU TLS: Security flaw in DER decoding 2. GLSA 200602-09 - BomberClone: Remote execution of arbitrary code

00140 - PostgreSQL versions 8.1.3, 8.0.7, 7.4.12 and 7.3.14 have been released fixing two security issues.

00139 - Cisco Security Advisory: cisco-SA-20060215-guard-auth - TACACS+ Authentication Bypass in Cisco

00138 - Two Debian Security Advisories: 1. DSA 975-1 - New nfs-user-server packages fix arbitrary code execution 2. DSA 976-1 - New libast packages fix arbitrary code execution

00137 - Sun Security Advisory: 102186 - Security Vulnerability in the in.rexecd(1M) Daemon on Kerberos Systems

00136 - Microsoft Security Bulletin Minor Revisions

00135 - Apple Security Advisory: APPLE-SA-2006-02-14 - Mac OS X v10.4.5

00134 - SUSE Security Announcement: SUSE-SA:2006:008 - openssh

00133 - Five Debian Security Advisories

00132 - Mandriva Linux Advisory: MDKA-2006:019 - Updated postgresql packages fix various bugs

00131 - Red Hat Security Advisory: RHSA-2006:0178-01 - Moderate: ImageMagick security update

00130 - Three Gentoo Linux Security Advisories: 1. GLSA 200602-04 - Xpdf, Poppler: Heap overflow 2. GLSA 200602-05 - KPdf: Heap based overflow 3. GLSA 200602-07 - Sun JDK/JRE: Applet privilege escalation

00129 - Microsoft Bulletin Summary for February, 2006

00128 - Two IBM SECURITY ADVISORIES: 1. AIX 5.3 : Security advisories (2006.02.13) - A symlink vulnerability in lscfg may cause a denial of service 2. AIX 5.3 : Security advisories (2006.02.13) - A local user may cause a system crash

00127 - Two Debian Security Advisories: 1. DSA 970-1 - New kronolith packages fix cross-site scripting 2. DSA 971-1 - New xpdf packages fix denial of service

00126 - Mandriva Linux Security Advisory: MDKSA-2006:039 - Updated gnutls packages fix libtasn1 out-of-bounds access vulnerabilities

00125 - Three Red Hat Security Advisories: 1. RHSA-2006:0201-01 - Important: xpdf security update 2. RHSA-2006:0205-01 - Moderate: libpng security update 3. RHSA-2006:0206-01 - Important: kdegraphics security update

00124 - Gentoo Linux Security Advisory: GLSA 200602-06 - ImageMagick: Format string vulnerability

00123 - Mandriva - Updated groff packages fix temporary file vulnerabilities [MDKSA-2006:038]

00122 - SUSE - Two Security Announcements

00121 - Fedora - Three Update Notifications

00120 - Debian - Two Security Advisories

00119 - HP - Three Security Bulletins

00118 - Microsoft - Security Response Center Bulletin Notification

00117 - Mandriva Linux Security Advisory-MDKSA-2006:038 - Updated groff packages fix temporary file vulnerabilities

00116 - Microsoft Security Advisory Notification: 914457 - Possible Vulnerability in Windows Service ACLs 913333 - Vulnerability in Internet Explorer Could Allow Remote Code Execution

00115 - KDE Security Advisory: kpdf/xpdf heap based buffer overflow

00114 - Three Mandriva Linux Security Advisories

00113 - Two Fedora Update Notifications; 1. FEDORA-2006-098 - unzip-5.51-13.fc4 2. FEDORA-2006-102 - kernel-2.6.15-1.1831_FC4

00111 - Two Gentoo Linux Security Advisories: 1. GLSA 200602-02 - ADOdb: PostgresSQL command injection 2. GLSA 200602-03 - Apache: Multiple vulnerabilities

00110 - Mandriva Linux Security Advisory: MDKSA-2006:034 - Updated openssh packages fix vulnerability

00109 - Gentoo Linux Security Advisory: GLSA 200602-01 - GStreamer FFmpeg plugin: Heap-based buffer overflow

00108 - Mandriva Linux Security Advisory: MDKSA-2006:033 - Updated OpenOffice.org packages fix issue with disabled hyperlinks

00107 - Two Debian Security Advisories: 1. DSA 964-1 - New gnocatan packages fix denial of service 2. DSA 965-1 - New ipsec-tools packages fix denial of service

00106 - Symantec Sygate Management Server: SYM06-002 - SMS Authentication Servlet SQL Injection

00105 - Symantec - Veritas Backup Exec for Windows Servers Technical Advisory

00104 - Red Hat - Two Security Advisories

00103 - Mozilla - Firefox 1.5.0.1 Released

00102 - TWiki - Version 4.0.0 Production Release

00101 - HP - Tru64 UNIX Running DNS BIND Remote Unauthorized Privileged Access [SSRT051007 rev.1]

00100 - Debian - Four Security Advisories