(Jul 12) Marcus Meissner discovered that the web server included in Mono performed insufficient sanitising of requests, resulting in cross-site scripting. For the stable distribution (squeeze), this problem has been fixed in [More…]
Archive for July 28th, 2012
(Dec 7) CVE-2009-1298 null ptr deref in ipv4 ip_frag_reasm.
(Dec 7) CVE-2009-1298 null ptr deref in ipv4 ip_frag_reasm.
(Jul 16) The system could be made to crash under certain conditions.
(Jul 25) Mono could be made to expose sensitive information over the network.
(Jul 17) Updated kernel packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 5.6 Extended Update Support. The Red Hat Security Response Team has rated this update as having [More…]
(Jul 17) Updated nss and nspr packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. [More…]
(Jul 12) Several security vulnerabilities have been found in Puppet, a centralized configuration management: CVE-2012-3864 [More…]