March 2006

March 2006

00212 - Gentoo Linux Security Advisory: GLSA 200603-12

00220 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 12-Mar-2006 - 18-Mar-2006

00257 - Samba Security Advisory: CAN_2006-1059 - Exposure of machine account credentials in winbindd log files

00256 - DNS Recursion Attacks - Update

00255 - Hewlett Packard Security Bulletins: Various

00254 - Two AUSCERT Advisories: 1. AA-2006.0019 - IBM Tivoli Directory Server remote denial of service 2. AA-2006.0020 - Novell iChain 2.3 SP3 IR1 released fixing vulnerabilities

00253 - SCO Security Advisory: SCOSA-2006.16 - UnixWare 7.1.4 : libcurl URL Parsing Vulnerability

00251 - Mandriva Linux Security Advisory: MDKSA-2006:061 - Updated mailman packages fix DoS from badly formed mime multipart messages.

00250 - Microsoft Security Advisory Notification: Various

00248 - Debian Security Advisory: DSA 1021-1 - New netpbm-free packages fix arbitrary command execution

00247 - F-Secure Security Bulletin: FSC-2006-2 - Sendmail MTA Security Vulnerability

00246 - DNS Recursion Attacks

00245 - Gentoo Linux Security Advisory: GLSA 200603-25 - OpenOffice.org: Heap overflow in included libcurl

00244 - Two Symantec Security Advisories

00243 - Debian Security Advisory: DSA 1020-1 - New flex packages fix insecure code generation

00242 - SUSE Security Announcement: SUSE-SA:2006:019 - freeradius authentication bypass

00241 - Sun Alert Notification: ID: 102262 - Security Vulnerability in sendmail(1M) Versions Prior to 8.13.6

00240 - Fedora Legacy Update Advisory: FLSA:186277 - Updated sendmail packages fix security issues

00239 - Gentoo Linux Security Advisory: GLSA 200603-24 - RealPlayer: Buffer overflow vulnerability

00238 - Microsoft Security Advisory Notification: 917077 - Vulnerability in the way HTML Objects Handle Unexpected Method Calls

00237 - Three FreeBSD Security Advisories: 1. FreeBSD-SA-06:11.ipsec 2. FreeBSD-SA-06:12.opie 3. FreeBSD-SA-06:13.sendmail

00236 - Five Debian Security Advisories

00235 - Hewlett Packard Security Bulletin: SSRT061134 rev.1 - HP-UX Running swagentd Remote Denial of Service (DoS)

00234 - Security Advisory:SCO SCOSA-2006.15 - OpenServer 5.0.7 OpenServer 6.0.0 : Xpdf

00233 - Two Mandriva Linux Security Advisories

00232 - Gentoo Linux Security Advisory: GLSA 200603-22 - PHP: Format string and XSS vulnerabilities

00230 - Vulnerability in Microsoft Internet Explorer

00229 - IBM SECURITY ADVISORY: Race condition vulnerability in sendmail

00228 - UNIRAS Brief - 228/06 - Two Red Hat Security Advisories: Sendmail security updates - RHSA-2006:0265-01, RHSA-2006:0264-01

00227 - Red Hat Security Advisory: RHSA-2006:0257-01 - RealPlayer security update

00226 - Debian Security Advisory: DSA 1015-1 New sendmail packages fix arbitrary code execution

00225 - Vulnerability in Sendmail

00224 - UNIRAS Brief - 224/06 - Two Mandriva Linux Security Advisories: 1. MDKSA-2006:056, 2. MDKSA-2006:057

00223 - Three Hewlett Packard Security Bulletins: 1. SSRT051078 rev.1, 2. SSRT051128 rev.1, 3. SSRT051251 rev.2

00222 - Three Debian Security Adivisories: 1. DSA 1011-1 New kernel-patch-vserver packages fix root exploit 2. DSA 1012-1 New unzip packages fix arbitrary code execution 3. DSA 1013-1 New snmptrapfmt packages fix insecure temporary file

00221 - UNIRAS Brief - 221/06 - Two Fedora Update Notifications: FEDORA-2006-188, FEDORA-2006-189

00220 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 12-Mar-2006 - 18-Mar-2006

00219 - Three Debian Security Advisories: 1. New kpdf packages fix arbitrary code execution 2. New ilohamail packages fix cross-site scripting vulnerabilities 3. New libmail-audit-perl packages fix insecure temporary file use

00218 - Four Gentoo Linux Security Advisories: 1. GLSA 200603-13 2. GLSA 200603-14 3. GLSA 200603-15 4. GLSA 200603-16

00217 - Eight Fedora Legacy Update Advisories

00216 - Two SCO Security Advisories: SCOSA-2006.11, SCOSA-2006.12

00215 - Adobe Security Bulletins - March 2006

00214 - Four Debian Security Advisories: 1 New webcalendar packages fix several vulnerabilities. 2. New xpvm packages fix insecure temporary file 3. New vlc packages fix arbitrary code execution 4. New drupal packages fix several vulnerabilities

00213 - Six Red Hat Security Advisories:1 initscripts security update 2. squid security update 3. vixie-cron security update 4. Updated kernel packages available for Red Hat Enterprise Linux 3 Update 7 5. gnupg security update 6. flash-plugin security update

00212 - Gentoo Linux Security Advisory: GLSA 200603-12

00211 - Microsoft Security Advisory (916208)

00210 - Microsoft Security Bulletin Summary for March 2006

00209 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 05-Mar-2006 - 11-Mar-2006

00208 - Trustix Secure Linux Security Advisory #2006-0012

00207 - Apple Security Advisory: APPLE-SA-2006-03-13

00206 - Fedora Update Notification: FEDORA-2006-147

00204 - Mandriva Linux Security Advisory: MDKSA-2006:055

00202 - Statement Regarding Reported Local Escalation of Privileges Vulnerability for ZoneAlarm

00201 - Microsoft Security Response Center Bulletin Notification.

00200 - SUSE Security Announcement: SUSE-SA:2006:014 - gpg signature checking problems

00198 - Mandriva Linux Security Advisory: MDKSA-2006:035-1 - Updated php packages fix vulnerability

00197 - Two Red Hat Security Advisories: 1. RHSA-2006:0197-01 - Moderate: python security update 2. RHSA-2006:0262-01 - Important: kdegraphics security update

00196 - KDE Security Advisories: 2006-03-10 - kpdf/xpdf heap based buffer overflow

00194 - Debian Security Advisory: DSA 989-1 - New zoph packages fix SQL injection

00193 - Hewlett Packard Security Bulletin: SSRT050979 - HP Tru64 UNIX IPSEC/ISAKMP Remote Denial of Service (DoS)

00192 - Fedora Update Notification: FEDORA-2006-133 - Fedora Core 4 Update: squirrelmail-1.4.6-1.fc4

00191 - Symantec - Software Alert

00190 - Debian Security Advisory: DSA 987-1 - New tar packages fix arbitrary code execution

00188 - Two Mandriva Linux Security Advisories: 1. MDKSA-2006:053 - Updated freeciv packages fix DoS vulnerabilities 2. MDKA-2006:021 - Updated samba packages fix bugs

00187 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 26-Feb-2006 - 04-Mar-2006

00186 - Two Gentoo Linux Security Advisories: 1. GLSA 200603-04 - IMAP Proxy: Format string vulnerabilities 2. GLSA 200603-05 - zoo: Stack-based buffer overflow

00185 - Mandriva Linux Advisory: MDKA-2006:020 - New libaio packages provide Oracle Express support

00184 - AUSCERT Advisory: AA-2006.0021 - Mozilla Thunderbird 1.0.7 and earlier allow remote code execution

00183 - SUSE Security Summary Report: SUSE-SR:2006:005

00182 - Three Gentoo Linux Security Advisories: 1. GLSA 200603-01 - WordPress: SQL injection vulnerability 2. GLSA 200603-02 - teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code 3. GLSA 200603-03 - MPlayer: Multiple integer overflows

00181 - IBM Advisory: ESB-2006.0165 -- [Win][UNIX/Linux]Product patches for IBM HTTP Server, IBM Tivoli Directory Server, IBM Identity Manager and WebSphere

00180 - NGSSoftware Advisory: ESB-2006.0162 -- [Win][UNIX/Linux] Critical Risk Vulnerability in L-Soft Listserv

00178 - Two Debian Security Advisories: 1. DSA 985-1 - New libtasn1-2 packages fix arbitrary code execution 2. DSA 986-1 - New gnutls11 packages fix arbitrary code execution

00177 - Fedora Update Notification: FEDORA-2006-131 - kernel-2.6.15-1.1833_FC4

00176 - Debian Security Advisory: DSA 984-1 - New xpdf packages fix several problems

00175 - Mandriva Linux Security Advisory: MDKSA-2006:052 - Updated mozilla-thunderbird packages fix vulnerability

00173 - Two FreeBSD Secuirty Advisories: 1. FreeBSD-SA-06:09.openssh [REVISED] 2. FreeBSD-SA-06:10.nfs

00172 - Cisco Security Notice: 68840 - Response to AAA Command Authorization by-pass

00171 - Apple Security Advisory: APPLE-SA-2006-03-01 - Security Update 2006-001 is now available.

00170 - Debian Security Advisory: DSA 981-1 - new bmv packages fix arbitrary code execution

00169 - Red Hat Security Advisory: RHSA-2006:0232-01 - Moderate: tar security update

00168 - SUSE Security Announcement: SUSE-SA:2006:013 - gpg,liby2util

00167 - Hewlett Packard Security Bulletin: SSRT061118 - HP System Management Homepage (SMH)

00166 - Mandriva Linux Security Advisory: MDKSA-2006:051 - Updated gettext packages fix temporary file vulnerabilities

00231 - Microsoft - Vulnerability in the way HTML Objects Handle Unexpected Method Calls