Archive for December 31st, 2012

3 results.

Debian: 2595-1: ghostscript: integer overflow

Dec31
by Ike on December 31, 2012 at 7:43 pm
Posted In: Uncategorized

(Dec 30) Marc Schoenefeld discovered that an integer overflow in the ICC parsing code of Ghostscript can lead to the execution of arbitrary code. For the stable distribution (squeeze), this problem has been fixed in [More…]

 Comment 

Debian: 2596-1: mediawiki-extensions: cross-site scripting

Dec31
by Ike on December 31, 2012 at 7:41 pm
Posted In: Uncategorized

(Dec 30) Thorsten Glaser discovered that the RSSReader extension for mediawiki, a website engine for collaborative work, does not properly escape tags in feeds. This could allow a malicious feed to inject JavaScript into the mediawiki pages. [More…]

 Comment 

Ubuntu: 1680-1: MoinMoin vulnerabilities

Dec31
by Ike on December 31, 2012 at 7:17 pm
Posted In: Uncategorized

(Dec 29) MoinMoin could be made to run programs and overwrite files.

 Comment 

59 queries. 8.5 mb Memory usage. 1.255 seconds.