Security Update: [CSSA-2002-047.0] Linux: KDE SSL and XSS vulnerabilities

To: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] __ SCO Security Advisory Subject:Linux: KDE SSL and XSS vulnerabilities Advisory number:CSSA-2

Remote Buffer Overflow vulnerability in Zeroo HTTP Server.

INetCop Security Advisory #2002-0x82-004 * Title: Remote Buffer Overflow vulnerability in Zeroo HTTP Server. 0x01. Description Zeroo HTTP Server is simple and fast webserver. Many overf

FreeBSD Security Advisory FreeBSD-SA-02:41.smrsh [REVISED]

-BEGIN PGP SIGNED MESSAGE- = FreeBSD-SA-02:41.smrsh Security Advisory The FreeBSD Project Topic: smrsh restri

Security Update: [CSSA-2002-046.0] Linux: buffer overflows and other security issues in squid

To: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] __ SCO Security Advisory Subject:Linux: buffer overflows and other security issues in squid Advisory nu

FreeBSD Security Advisory FreeBSD-SA-02:43.bind [REVISED]

-BEGIN PGP SIGNED MESSAGE- = FreeBSD-SA-02:43.bind Security Advisory The FreeBSD Project Topic: multiple vul

[SECURITY] [DSA-196-1] New BIND packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 196-1 [EMAIL PROTECTED] http://www.debian.org/security/ Daniel Jacobowitz November 14th, 2002

[OpenPKG-SA-2002.011] OpenPKG Security Advisory (bind, bind8)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 OpenPKG Security AdvisoryThe OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org [EMAIL PROTECTED]

Security holes... Who cares?

I'd like to announce the availability for downlaod of the following paper. Security holes... Who cares? Eric Rescorla RTFM, Inc. We report on an observational study of user response following the O

Re: ZDnet forum: IE formatting local drive

FYI, the HTML code is; prog = 'command'; args = '/k format a: /autotest'; if (!location.hash) { showHelp(location+"#1"); showHelp("iexplore.chm"); blur(); } else if (location.hash == "#1") open(location+"2"

Unofficial statement re: tcpdump and libpcap

-BEGIN PGP SIGNED MESSAGE- There was a post on Slashdot recently [1] about a trojan in tcpdump and libpcap. The post referred to two web pages [2], and [3], which describe the trojan. Unfortunately, the web pages at this time say nothing about whether or not the maintainers of tcpdum

RE: When scrubbing secrets in memory doesn't work

> From: Jan Echternach [mailto:[EMAIL PROTECTED]] > Sent: Monday, November 11, 2002 11:47 AM > On Fri, Nov 08, 2002 at 05:23:34PM +0100, Michael Zimmermann wrote: > > Not to declare the intermediate storage for sensitive > > data as 'volatile' is a coding flaw. An esily overlooked > > one, yes, bu

Re: MS02-064 fix time

David Litchfield said: >I warned MS of this back in on September 6th 1999 whilst 2k was still >in BETA (See the bottom of the following mail) >http://security-archive.merton.ox.ac.uk/bugtraq-199909/0145.html > >I wonder if this is the longest time it has taken for a "fix" to be >made public after

Re: i386 Linux kernel DoS

On Wed, 13 Nov 2002, Christophe Devine wrote: > > Regarding this issue: is it 80x86 or specifically 80386 designed ? > > Been trying it on AMD Duron, AMD Athlon MP, Intel i586 - just segfaults :( > Yep; the first version of the DoS I posted on bugtraq was defective and > worked only under special

MDKSA-2002:077 - bind update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mandrake Linux Security Update Advisory Package name: bind Advisory ID:

[CLA-2002:546] Conectiva Linux Security Announcement - bind

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - -- PACKAGE : bind SUMMARY : Remote vulnerabilities in the