Re: [Full-Disclosure] OpenSSL =3D 0.9.6m vulnerability

in 0.9.6 which was fixed in the meantime? Or am I missing something? Have a nice day, Martin -- Martin Pitt http://www.piware.de Ubuntu Developerhttp://www.ubuntulinux.org Debian GNU/Linux Developer http://www.debian.org signature.asc Description: Digital

[Full-Disclosure] [USN-90-1] Imagemagick vulnerability

=== Ubuntu Security Notice USN-90-1 March 03, 2005 imagemagick vulnerability CAN-2005-0397 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-86-1] cURL vulnerability

=== Ubuntu Security Notice USN-86-1 February 28, 2005 curl vulnerability CAN-2005-0940 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-87-1] Cyrus IMAP server vulnerability

=== Ubuntu Security Notice USN-87-1 February 28, 2005 cyrus21-imapd vulnerability CAN-2005-0546 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-88-1] reportbug information disclosure

=== Ubuntu Security Notice USN-88-1 February 28, 2005 reportbug information disclosure https://bugzilla.ubuntulinux.org/6600 https://bugzilla.ubuntulinux.org/6717 === A

[Full-Disclosure] [USN-89-1] XML library vulnerabilities

=== Ubuntu Security Notice USN-89-1 February 28, 2005 libxml vulnerabilities CAN-2004-0989 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-85-1] Gaim vulnerabilities

=== Ubuntu Security Notice USN-85-1 February 25, 2005 gaim vulnerabilities CAN-2005-0208, CAN-2005-0472, CAN-2005-0473 === A security issue affects the following Ubuntu

[Full-Disclosure] [USN-84-1] Squid vulnerabilities

=== Ubuntu Security Notice USN-84-1 February 21, 2005 squid vulnerabilities CAN-2005-0194, CAN-2005-0446 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-78-2] Fixed mailman packages for USN-78-1

=== Ubuntu Security Notice USN-78-2 February 17, 2005 mailman vulnerabilities CAN-2005-0202 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-66-2] PHP vulnerability

=== Ubuntu Security Notice USN-66-2 February 17, 2005 php4 vulnerability http://www.securitytracker.com/alerts/2004/Oct/1011984.html === A security issue affects the following

[Full-Disclosure] [USN-83-1] LessTif 2 vulnerabilities

=== Ubuntu Security Notice USN-83-1 February 16, 2005 lesstif1-1 vulnerabilities CAN-2004-0914 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-82-1] Linux kernel vulnerabilities

=== Ubuntu Security Notice USN-82-1 February 15, 2005 linux-source-2.6.8.1 vulnerabilities CAN-2005-0176, CAN-2005-0177, CAN-2005-0178 http://oss.sgi.com/archives/netdev/2005-01/msg01036.html

[Full-Disclosure] [USN-80-1] mod_python vulnerability

=== Ubuntu Security Notice USN-80-1 February 11, 2005 libapache2-mod-python vulnerabilities CAN-2005-0088 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-81-1] iptables vulnerability

=== Ubuntu Security Notice USN-81-1 February 11, 2005 iptables vulnerability CAN-2004-0986 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-79-1] PostgreSQL vulnerabilities

=== Ubuntu Security Notice USN-79-1 February 10, 2005 postgresql vulnerabilities CAN-2005-0244 CAN-2005-0245 CAN-2005-0246 CAN-2005-0247 === A security issue affects the

[Full-Disclosure] [USN-76-1] Emacs vulnerability

=== Ubuntu Security Notice USN-76-1 February 07, 2005 emacs21 vulnerability CAN-2005-0100 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-77-1] Squid vulnerabilities

=== Ubuntu Security Notice USN-77-1 February 07, 2005 squid vulnerabilities CAN-2005-0173, CAN-2005-0174, CAN-2005-0175, CAN-2005-0211 === A security issue affects the

Re: [Full-Disclosure] Re: [USN-74-1] Postfix vulnerability

by this. Hello, Does this affect the Debian version (which is v6 enabled) ? This is already fixed in Sarge/Sid. However, I'm not sure about woody. LaMont, does Woody already include the IPv6 patch? Martin -- Martin Pitt http://www.piware.de Ubuntu Developer

Re: [Full-Disclosure] Re: [USN-74-1] Postfix vulnerability

confusion this might cause. Have a nice day, Martin -- Martin Pitt http://www.piware.de Ubuntu Developerhttp://www.ubuntulinux.org Debian GNU/Linux Developer http://www.debian.org signature.asc Description: Digital signature

[Full-Disclosure] [USN-74-1] Postfix vulnerability

=== Ubuntu Security Notice USN-74-1 February 04, 2005 postfix vulnerability http://bugs.debian.org/267837 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-75-1] cpio vulnerability

=== Ubuntu Security Notice USN-75-1 February 04, 2005 cpio vulnerability CAN-1999-1572 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-74-2] Fixed Postfix packages for USN-74-1

=== Ubuntu Security Notice USN-74-2 February 04, 2005 postfix vulnerability http://bugs.debian.org/267837 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-73-1] Python vulnerability

=== Ubuntu Security Notice USN-73-1 February 03, 2005 python2.2, python2.3 vulnerability CAN-2005-0089 === A security issue affects the following Ubuntu releases: Ubuntu 4.10

[Full-Disclosure] [USN-71-1] PostgreSQL vulnerability

=== Ubuntu Security Notice USN-71-1 February 01, 2005 postgresql vulnerability http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php === A security issue affects the

[Full-Disclosure] [USN-70-1] Perl DBI module vulnerability

=== Ubuntu Security Notice USN-70-1January 25, 2005 libdbi-perl vulnerabilities CAN-2005-0077 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[sb] [Full-Disclosure] [USN-65-1] Apache utility script vulnerability

=== Ubuntu Security Notice USN-65-1January 19, 2005 apache vulnerabilities http://bugs.debian.org/290974 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-66-1] PHP vulnerabilities

=== Ubuntu Security Notice USN-66-1January 20, 2005 php4 vulnerabilities http://www.securitytracker.com/alerts/2004/Oct/1011984.html http://www.securityfocus.com/archive/1/384920

[Full-Disclosure] [USN-67-1] Squid vulnerabilities

=== Ubuntu Security Notice USN-67-1January 20, 2005 squid vulnerabilities CAN-2005-0094, CAN-2005-0095, CAN-2005-0096, CAN-2005-0097 === A security issue affects the

[Full-Disclosure] [USN-64-1] xpdf, CUPS vulnerabilities

=== Ubuntu Security Notice USN-64-1January 19, 2005 xpdf, cupsys vulnerabilities CAN-2005-0064 === A security issue affects the following Ubuntu releases: Ubuntu 4.10

[Full-Disclosure] [USN-65-1] Apache utility script vulnerability

=== Ubuntu Security Notice USN-65-1January 19, 2005 apache vulnerabilities http://bugs.debian.org/290974 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-61-1] vim vulnerabilities

=== Ubuntu Security Notice USN-61-1January 18, 2005 vim vulnerabilities CAN-2005-0069 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-62-1] imagemagick vulnerability

=== Ubuntu Security Notice USN-62-1January 18, 2005 imagemagick vulnerability CAN-2005-0005 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-60-0] Linux kernel vulnerabilities

=== Ubuntu Security Notice USN-60-0January 14, 2005 linux-source-2.6.8.1 vulnerabilities CAN-2005-0001 http://lists.netsys.com/pipermail/full-disclosure/2005-January/030660.html

[Full-Disclosure] [USN-58-1] MIT Kerberos server vulnerability

=== Ubuntu Security Notice USN-58-1January 10, 2005 krb5 vulnerability CAN-2004-1189 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-59-1] mailman vulnerabilities

=== Ubuntu Security Notice USN-59-1January 10, 2005 mailman vulnerabilities CAN-2004-1177, http://bugs.debian.org/285839 === A security issue affects the following Ubuntu

[Full-Disclosure] [USN-57-1] Linux kernel vulnerabilities

=== Ubuntu Security Notice USN-57-1January 09, 2005 linux-source-2.6.8.1 vulnerabilities CAN-2004-1235, CAN-2004-1337 === A security issue affects the following Ubuntu

[Full-Disclosure] [USN-56-1] exim4 vulnerabilities

=== Ubuntu Security Notice USN-56-1January 07, 2005 exim4 vulnerabilities CAN-2005-0021, CAN-2005-0022 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-55-1] imlib2 vulnerabilities

=== Ubuntu Security Notice USN-55-1January 06, 2005 imlib2 vulnerabilities CAN-2004-1025, CAN-2004-1026 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-54-1] TIFF library tool vulnerability

=== Ubuntu Security Notice USN-54-1January 06, 2005 tiff vulnerability CAN-2004-1183 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-53-1] imlib vulnerabilities

=== Ubuntu Security Notice USN-53-1 December 29, 2004 imlib+png2 vulnerabilities CAN-2004-1025, CAN-2004-1026 === A security issue affects the following Ubuntu releases:

[Full-Disclosure] [USN-50-1] CUPS vulnerabilities

=== Ubuntu Security Notice USN-50-1 December 23, 2004 cupsys vulnerabilities CAN-2004-1125, CAN-2004-2467, CAN-2004-1268, CAN-2004-1269, CAN-2004-1270 === A security issue

[Full-Disclosure] [USN-49-1] debmake vulnerability

=== Ubuntu Security Notice USN-49-1 December 23, 2004 debmake vulnerability CAN-2004-1179 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

Re: [Full-Disclosure] [USN-45-1] nasm vulnerability

_assemble_ a source file, I do not expect it to have any side effects (no system modification apart from writing the output file. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Martin Pitt Sent: Wednesday, December 22, 2004 4:53 AM To: [EMAIL

[Full-Disclosure] [USN-39-1] Linux amd64 kernel vulnerability

=== Ubuntu Security Notice USN-39-1 December 16, 2004 linux-source-2.6.8.1 vulnerability CAN-2004-1074, USN-30-1 === A security issue affects the following Ubuntu releases:

[Full-Disclosure] [USN-48-1] xpdf, tetex-bin vulnerabilities

=== Ubuntu Security Notice USN-48-1 December 23, 2004 xpdf, tetex-bin vulnerabilities CAN-2004-1125 === A security issue affects the following Ubuntu releases: Ubuntu 4.10

[Full-Disclosure] [USN-52-1] vim vulnerability

=== Ubuntu Security Notice USN-52-1 December 23, 2004 vim vulnerability CAN-2004-1138 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-51-1] teTeX auxiliary script vulnerability

=== Ubuntu Security Notice USN-51-1 December 23, 2004 tetex-bin vulnerability http://bugs.debian.org/286370 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-45-1] nasm vulnerability

=== Ubuntu Security Notice USN-45-1 December 22, 2004 nasm vulnerability CAN-2004-1287 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-46-1] TIFF library vulnerability

=== Ubuntu Security Notice USN-46-1 December 22, 2004 tiff vulnerability CAN-2004-1308 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-40-1] PHP vulnerabilities

=== Ubuntu Security Notice USN-40-1 December 16, 2004 php4 vulnerabilities CAN-2004-1019, CAN-2004-1065 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-44-1] perl information leak

=== Ubuntu Security Notice USN-44-1 December 21, 2004 perl vulnerabilities CAN-2004-0452 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-43-1] groff utility vulnerabilities

=== Ubuntu Security Notice USN-43-1 December 20, 2004 groff vulnerabilities http://bugs.debian.org/286371, http://bugs.debian.org/286372 === A security issue affects the

[Full-Disclosure] [USN-41-1] Samba vulnerability

=== Ubuntu Security Notice USN-41-1 December 17, 2004 samba vulnerability CAN-2004-1154 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-42-1] Xine library vulnerabilities

=== Ubuntu Security Notice USN-42-1 December 20, 2004 xine-lib vulnerabilities https://sourceforge.net/project/shownotes.php?group_id=9655release_id=290099 === A security

[Full-Disclosure] [USN-38-1] Linux kernel vulnerabilities

=== Ubuntu Security Notice USN-38-1 December 14, 2004 linux-source-2.6.8.1 vulnerabilities CAN-2004-0814, CAN-2004-1016, CAN-2004-1056, CAN-2004-1058, CAN-2004-1068, CAN-2004-1069, CAN-2004-1137, CAN-2004-1151

[Full-Disclosure] [USN-36-1] NFS statd vulnerability

=== Ubuntu Security Notice USN-36-1 December 01, 2004 nfs-utils vulnerability CAN-2004-1014 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-34-1] OpenSSH information leakage

=== Ubuntu Security Notice USN-34-1 November 30, 2004 openssh information leakage CAN-2003-0190 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-35-1] imagemagick vulnerabilities

=== Ubuntu Security Notice USN-35-1 November 30, 2004 imagemagick vulnerabilities CAN-2004-0827 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-33-1] libgd vulnerabilities

=== Ubuntu Security Notice USN-33-1 November 29, 2004 libgd vulnerabilities CAN-2004-0941 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-31-1] cyrus21-imapd vulnerabilities

=== Ubuntu Security Notice USN-31-1 November 23, 2004 cyrus21-imapd vulnerabilities CAN-2004-1012, CAN-2004-1013, http://security.e-matters.de/advisories/152004.html === A

[Full-Disclosure] [USN-29-1] samba vulnerability

=== Ubuntu Security Notice USN-29-1 November 18, 2004 samba vulnerability CAN-2004-0882 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-30-1] Linux kernel vulnerabilities

=== Ubuntu Security Notice USN-30-1 November 18, 2004 linux-source-2.6.8.1 vulnerabilities CAN-2004-0883, CAN-2004-0949, and others === A security issue affects the following

[Full-Disclosure] [USN-26-1] bogofilter vulnerability

=== Ubuntu Security Notice USN-26-1 November 17, 2004 bogofilter vulnerability CAN-2004-1007 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-28-1] sudo vulnerability

=== Ubuntu Security Notice USN-28-1 November 17, 2004 sudo vulnerability http://www.sudo.ws/sudo/alerts/bash_functions.html === A security issue affects the following Ubuntu

[Full-Disclosure] [USN-25-1] libgd2 vulnerability

/pool/main/libg/libgd2/libgd2-xpm_2.0.23-2ubuntu0.2_powerpc.deb Size/MD5: 173314 62620d7ed4283f1c7cb675a729a7ca4d - End forwarded message - -- Martin Pitt http://www.piware.de Ubuntu Developerhttp://www.ubuntulinux.org Debian GNU/Linux Developer

[Full-Disclosure] [USN-21-1] libgd vulnerabilities

=== Ubuntu Security Notice USN-21-1 November 09, 2004 libgd vulnerabilities CAN-2004-0990 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-22-1] samba vulnerability

=== Ubuntu Security Notice USN-22-1 November 10, 2004 samba vulnerability CAN-2004-0930 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-20-1] Ruby CGI module vulnerability

=== Ubuntu Security Notice USN-20-1 November 08, 2004 ruby1.8 vulnerability CAN-2004-0983 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

Re: [Full-Disclosure] [HV-MED] Zip/Linux long path buffer overflow

@@ -322,6 +322,9 @@ char name[FNMAX]; int len = strlen(f); + if (len = FNMAX) +error(file name too long); + if (f == label) { if (a != NULL) *a = label_mode; Have a nice day, Martin -- Martin Pitt http://www.piware.de Ubuntu Developer

[Full-Disclosure] [USN-18-1] zip vulnerability

=== Ubuntu Security Notice USN-18-1 November 05, 2004 zip vulnerability CAN-2004-1010 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

[Full-Disclosure] [USN-17-1] passwd vulnerability

=== Ubuntu Security Notice USN-17-1 November 04, 2004 passwd vulnerabilities CAN-2004-1001 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-16-1] perl vulnerabilities

=== Ubuntu Security Notice USN-16-1 November 02, 2004 perl vulnerabilities CAN-2004-0976 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-14-1] xpdf vulnerabilities

=== Ubuntu Security Notice 14-1November 1, 2004 xpdf vulnerabilities CAN-2004-0888, CAN-2004-0889 === A security issue affects the following Ubuntu releases: Ubuntu

[Full-Disclosure] [USN-13-1] groff utility vulnerability

=== Ubuntu Security Notice USN-13-1November 1, 2004 groff utility vulnerability CAN-2004-0969 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-15-1] lvm10 vulnerability

=== Ubuntu Security Notice USN-15-1 November 01, 2004 lvm10 vulnerability CAN-2004-0972 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-11-1] libgd2 vulnerabilities

=== Ubuntu Security Notice USN-11-1October 28, 2004 libgd2 vulnerabilities CAN-2004-0990 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-12-1] ppp Denial of Service

=== Ubuntu Security Notice USN-12-1October 29, 2004 ppp Denial of Service http://www.securityfocus.com/archive/1/379450 === A security issue affects the following Ubuntu

[Full-Disclosure] [USN-4-1] Standard C library script vulnerabilities

=== Ubuntu Security Notice USN-4-1 October 27, 2004 Standard C library script vulnerabilities CAN-2004-0968 === A security issue affects the following Ubuntu releases:

[Full-Disclosure] [USN-9-1] tetex-bin vulnerabilities

=== Ubuntu Security Notice USN-9-1 October 27, 2004 tetex-bin vulnerabilities CAN-2004-0888 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-7-1] imagemagick vulnerability

=== Ubuntu Security Notice USN-7-1 October 27, 2004 imagemagick vulnerability CAN-2004-0981 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-8-1] gaim vulnerabilities

=== Ubuntu Security Notice USN-8-1 October 27, 2004 gaim vulnerabilities CAN-2004-0891 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-Disclosure] [USN-5-1] gettext vulnerabilities

=== Ubuntu Security Notice USN-5-1 October 27, 2004 gettext vulnerabilities CAN-2004-0966 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty