May 2006

May 2006

00381 - SUN(SM) ALERT WEEKLY SUMMARY REPORT: Week of 21-May-2006 - 27-May-2006

00380 - Nine Debian Security Advisories: DSA 1075-1 to 1083-1

00379 - SYM06-010 - Symantec Client Security and Symantec AntiVirus Elevation of Privilege

00378 - Five Mandriva Linux Security Advisories

00377 - Cisco Security Advisory: cisco-sa-20060524 - Windows VPN Client Local Privilege Escalation Vulnerability

00376 - Debian Security Advisory: DSA 1074-1 - New mpg123 packages fix arbitrary code execution

00375 - Red Hat Security Advisory: RHSA-2006:0493-01 - Important: kernel security update

00374 - NISCC Vulnerability Advisory 260146/NISCC/SITESCAPE

00372 - Apple Security Advisory: APPLE-SA-2006-05-23 Xcode Tools 2.3

00371 - Four Hewlett Packard Security Bulletins

00370 - Red Hat Security Advisories: 1. RHSA-2006:0498-01 - Moderate: xscreensaver security update 2. RHSA-2006:0501-02 - Moderate: php security update 3. RHSA-2006:0526-02 - Important: postgresql security update

00369 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 14-May-2006 - 20-May-2006

00368 - SCO Security Advisory: SCOSA-2006.24 - Sendmail Arbitrary Code Execution Vulnerability

00367 - Three Debian Security Advisories: 1. DSA 1071-1 - New MySQL 3.23 packages fix several vulnerabilities 2. DSA 1072-1 - New Nagios packages fix arbitrary code execution 3. DSA 1073-1 - New MySQL 4.1 packages fix several vulnerabilities

00366 - Two Hewlett Packard Security Bulletins: 1. HPSBUX02119 SSRT4848 rev.1 - HP-UX Running Motif Applications Remote Arbitrary Code Execution, Denial of Service (DoS) 2. HPSBUX02120 SSRT051057 rev.1 - HP-UX Local Denial of Service (DoS)

00365 - OpenPKG Security Advisory: OpenPKG-SA-2006.008 - openldap

00364 - Gentoo Linux Security Advisory: GLSA 200605-14 - libextractor: Two heap-based buffer overflows

00363 - Microsoft Security Advisory (919637) Vulnerability in Word Could Allow Remote Code Execution

00362 - SUSE Security Summary Report: SUSE-SR:2006:011

00361 - Three Debian Security Advisories

00360 - Gentoo Linux Security Advisory: GLSA 200605-15 - Quagga Routing Suite: Multiple vulnerabilities

00359 - Microsoft Word Vulnerability

00358 - Debian Security Advisory: DSA 1058-1 - New awstats packages fix arbitrary command execution

00357 - Two Hewlett Packard Security Bulletins

00356 - Two Gentoo Linux Security Advisories: 1. GLSA 200605-07:02 2. GLSA 200605-13:04

00355 - Debian Security Advisory: DSA 1057-1 - New phpLDAPadmin packages fix cross-site scripting

00354 - SUN(SM) ALERT WEEKLY SUMMARY REPORT: Week of 07-May-2006 - 13-May-2006

00353 - SUSE Security Summary Report: SUSE-SR:2006:010

00352 - MySQL 4.0.27 - reported security vulnerabilities in the MySQL client-server protocol

00351 - Debian Security Advisory: DSA 1056-1 - New webcalendar packages fix information leak

00350 - Apple Security Advisory: APPLE-SA-2006-05-11 Security Update 2006-003

00349 - Cisco Security Advisory: cisco-sa-20060510-avs - AVS TCP Relay Vulnerability

00348 - Debian Security Advisory: DSA 1055-1 - New Mozilla Firefox packages fix arbitrary code execution

00347 - Sophos Advisory: Crafted Microsoft CAB file can allow arbitrary code to be run

00346 - Debian Security Advisory: DSA 1054-1 - New TIFF packages fix denial of service and arbitrary code execution

00345 - Two Red Hat Security Advisories: 1. RHSA-2006:0425-01 - Important: libtiff security update 2. RHSA-2006:0427-01 - Moderate: ruby security update

00344 - Three Microsoft Security Bulletins

00343 - Two Gentoo Linux Security Advisories: 1. GLSA 200605-08 - PHP: Multiple vulnerabilities 2. GLSA 200605-09 - Mozilla Thunderbird: Multiple vulnerabilities

00342 - SUN(SM) ALERT WEEKLY SUMMARY REPORT Week of 30-Apr-2006 - 06-May-2006

00341 - Two Cisco Security Responses: 1. Cisco Secure ACS for Windows - Administrator Password Disclosure 2. PIX/ASA/FWSM Websense/N2H2 Content Filter Bypass

00340 - Debian Security Advisory: DSA 1053-1 - New Mozilla packages fix arbitrary code execution

00339 - New NISCC Technical Note and new Policy and Good Practice guide

00336 - SUSE Security Announcement: SUSE-SA:2006:025 - cyrus-sasl-digestmd5 denial of service attack

00335 - Sun Security Bulletin: Sun Alert ID: 102339 Security Vulnerability in the Xorg(1) Version of the Render Extension

00334 - Debian Security Advisory: DSA 1051-1 - New Mozilla Thunderbird packages fix several vulnerabilities

00333 - Red Hat Security Advisory: RHSA-2006:0451-01 - xorg-x11 security update

00332 - IBM Security Advisory: Multiple patches for IBM Tivoli Directory Server, Tivoli Identity Manager and Websphere Application Server

00331 - Debian Security Advisory: DSA 1050-1 - New ClamAV packages fix denial of service or arbitrary code execution

00330 - Mandriva Linux Security Advisory: MDKSA-2006:082 - Updated libtiff packages fix vulnerabilities

00329 - Three Red Hat Security Advisories: 1. RHSA-2006:0280-01 - dia security update 2. RHSA-2006:0283-01 - squirrelmail security update 3. RHSA-2006:0420-01 - ethereal security update

00328 - Two AusCERT Alerts: 1. AL-2006.0032 - Firefox vulnerability may allow remote code execution 2. AL-2006.0033 - MySQL vulnerabilities allow information disclosure and remote code execution

00327 - Mandriva Linux Security Advisory: MDKSA-2006:081 - Updated xorg-x11 packages fix vulnerability

00326 - NetBSD Security Advisory 2006-014: An audio subsystem race condition may crash the system NetBSD Security Advisory 2006-014: An audio subsystem race condition may crash the system

00325 - Cisco Security Advisory: Cisco Unity Express Expired Password Reset Privilege Escalation

00324 - Debian Security Advisory: DSA 1049-1 - New Ethereal packages fix several vulnerabilities

00323 - Three Hewlett Packard Security Bulletins: HPSBMA02113 SSRT061148 rev.1, HPSBUX02075 SSRT051074 rev.4, HPSBUX02108 SSRT061133 rev.9

00322 - eEye Digital Security: Juniper Networks SSL-VPN Client Buffer Overflow eEye Digital Security: Juniper Networks SSL-VPN Client Buffer Overflow