New cfingerd 1.4.0 - Configurable Finger Daemon

After several years of development I'm happy to present a new version of the configurable finger daemon. The original author and former maintainer Ken Hollis has handed over development to me as stated before. So this release is authorized. I feel a need for this second posting because the new

Re: XDM Insecurity revisited

Jochen Bauer wrote: On Wed, 26 Nov 1997 Eric Augustus ([EMAIL PROTECTED]) posted a message on BUGTRAQ about the fact, that the default Xaccess file allows XDMCP connections from any host. As you know, this can be used to get a login screen on any host and therefore get around access control

Insecure use of file in /tmp by trn

Wichert Akkerman . Martin Schulze [EMAIL PROTECTED] . [EMAIL PROTECTED] . [EMAIL PROTECTED] PGP signature

Re: Insecure use of file in /tmp by trn

Rogier Wolff wrote: Martin Schulze wrote: This was not intentional by the author, he tried to use tempfile(1) to create the temporary filename. However, due to a thinko, the name was hardcoded into the script. [...] +#NNTPactive=\`tempfile -p active\` #"/tmp/active.\$\$"

Vixie Cron version 3.0pl1 vulnerable to root exploit

Red Hat has recently released a Security Advisory (RHSA-1999:030-01) covering a reverse denial of service bug in the vixie cron package. As user you could restart sendmail even if the host should not receive mail through the SMTP port. Further investigation discovered that it was even worse.

Re: Vixie Cron version 3.0pl1 vulnerable to root exploit

Valentin Nechayev wrote: Quite more simple and correct variant is to append "--" to mailargs: -#define MAILARGS "%s -FCronDaemon -odi -oem -or0s %s" /*-*/ +#define MAILARGS "%s -FCronDaemon -odi -oem -- %s" /*-*/ After it, it's possible to use real local parts

Re: SuSe / Debian man package format string vulnerability

StyX wrote: Joao Gouveia wrote: Hi, This issue has been discussed in vuln-dev (2001-01-26), see: http://www.securityfocus.com/templates/archive.pike?end=2001-01-27tid=15872 4fromthread=0start=2001-01-21threads=1list=82 Posted also on suse security list, and aparently overlooked.

[SECURITY] [DSA 125-1] New analog packages fix cross-site scripting vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 125-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 28th, 2002

[SECURITY] [DSA 137-1] New mm packages fix insecure temporary file creation

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 137-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze July 30th, 2002

[SECURITY] [DSA 139-1] New super packages fix local root exploit

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 139-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 1st, 2002

[SECURITY] [DSA 140-1] New libpng packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 140-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 1st, 2002

[SECURITY] [DSA 141-1] New mpack packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 141-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 1st, 2002

[SECURITY] [DSA 147-1] New mailman packages fix cross-site scripting problem

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 147-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 8th, 2002

[SECURITY] [DSA 150-1] New interchange packages fix illegal file exposition

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 150-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 13th, 2002

[SECURITY] [DSA 152-1] New l2tpd packages adds better randomization

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 152-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 13th, 2002

[SECURITY] [DSA 151-1] New xinetd packages fix local denial of service

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 151-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 13th, 2002

[SECURITY] [DSA 147-2] New mailman packages fix cross-site scripting problem

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 147-2 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 26th, 2002

[SECURITY] [DSA 158-1] New gaim packages fix arbitrary program execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 158-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 27th, 2002

[SECURITY] [DSA 159-1] New Python packages fix insecure temporary file use

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 159-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 28th, 2002

[SECURITY] [DSA 160-1] New scrollkeeper packages fix insecure temporary file creation

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 160-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze September 3rd, 2002

[SECURITY] [DSA 161-1] New Mantis package fixes privilege escalation

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 161-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze September 4th, 2002

[SECURITY] [DSA 162-1] New ethereal packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 162-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze September 6th, 2002

[SECURITY] [DSA 168-1] New PHP packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 168-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze September 18th, 2002

[SECURITY] [DSA 149-2] New glibc packages fix

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 149-2 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze September 26th, 2002

[SECURITY] [DSA 169-1] New tomcat packages fix unintended source code disclosure

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 169-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October, 4th, 2002

[SECURITY] [DSA 169-1] New ht://Check packages fix cross site scripting problem

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 169-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze September 25th, 2002

[SECURITY] [DSA 171-1] New fetchmail packages fix buffer overflows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 171-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 7th, 2002

[SECURITY] [DSA 173-1] New bugzilla packages fix privilege escalation

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 173-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 9th, 2002

[SECURITY] [DSA 174-1] New heartbeat packages fix buffer overflows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 174-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 14th, 2002

[SECURITY] [DSA 175-1] New syslog-ng packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 175-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 15th, 2002

[SECURITY] [DSA 176-1] New gv packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 176-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 16th, 2002

[SECURITY] [DSA 179-1] New gnome-gv packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 179-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 18th, 2002

[SECURITY] [DSA 180-1] New NIS packages fix information leak

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 180-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 21st, 2002

[SECURITY] [DSA 181-1] New mod_ssl packages fix cross site scripting

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 181-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 22nd, 2002

[SECURITY] [DSA 178-1] New Heimdal packages fix remote command execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 178-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 17th, 2002

[SECURITY] [DSA 177-1] New PAM packages fix serious security violation in Debian/unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 177-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 17th, 2002

[SECURITY] [DSA 182-1] New kghostview packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 182-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 28th, 2002

[SECURITY] [DSA 183-1] New krb5 packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 183-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 29th, 2002

[SECURITY] [DSA 184-1] New krb4 packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 184-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 30th, 2002

[SECURITY] [DSA 185-1] New heimdal packages fix buffer overflows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 185-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze October 31st, 2002

[SECURITY] [DSA 186-1] New log2mail packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 186-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 1st, 2002

[SECURITY] [DSA 187-1] New Apache packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 187-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 4th, 2002

[SECURITY] [DSA 189-1] New luxman packages fix local root exploit

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 189-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 6th, 2002

[SECURITY] [DSA 191-1] New squirrelmail packages fix cross site scripting bugs

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 191-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 7th, 2002

[SECURITY] [DSA 188-1] New Apache-SSL packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 188-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 5th, 2002

[SECURITY] [DSA 192-1] New html2ps packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 192-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 8th, 2002

[SECURITY] [DSA 191-2] New squirrelmail packages fix problem in options page

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 191-2 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 7th, 2002

[SECURITY] [DSA 193-1] New klisa packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 193-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 11th, 2002

[SECURITY] [DSA 194-1] New masqmail packages fix buffer overflows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 194-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 12th, 2002

[SECURITY] [DSA 195-1] New Apache-Perl packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 195-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 13th, 2002

[SECURITY] [DSA 197-1] New sqwebmail packages fix local information exposure

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 197-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 15th, 2002

[SECURITY] [DSA 199-1] New mhonarc packages fix cross site scripting

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 199-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze November 19th, 2002

[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 201-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 2nd, 2002

[SECURITY] [DSA 202-1] New IM packages fix insecure temporary file creation

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 202-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 3rd, 2002

[SECURITY] [DSA 203-1] New smb2www packages fix arbitrary command execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 203-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 4th, 2002

[SECURITY] [DSA 204-1] New kdlibs packages fix arbitrary program execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 204-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 5th, 2002

[SECURITY] [DSA 208-1] New Perl packages correct Safe handling

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 208-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 12th, 2002

[SECURITY] [DSA 211-1] New mICQ packages fix denial of service

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 211-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 13th, 2002

[SECURITY] [DSA 214-1] New kdentwork packages fix buffer overflows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 214-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 20th, 2002

[SECURITY] [DSA 215-1] New cyrus-imapd packages fix remote command execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 215-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 23th, 2002

[SECURITY] [DSA 216-1] New fetchmail packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 216-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 24th, 2002

[SECURITY] [DSA 217-1] New typespeed packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 217-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 27th, 2002

[SECURITY] [DSA 218-1] New bugzilla packages fix cross site scripting problem

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 218-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 30th, 2002

[SECURITY] [DSA 219-1] New dhcpcd packages fix remote command execution vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 219-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze December 31st, 2002

[SECURITY] [DSA 220-1] New squirrelmail packages fix cross site scripting problem

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 220-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 2nd, 2003

[SECURITY] [DSA 221-1] New mhonarc packages fix cross site scripting

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 221-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 3rd, 2003

[SECURITY] [DSA 224-1] New canna packages fix buffer overflow and denial of service

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 224-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 8th, 2002

[SECURITY] [DSA 225-1] New tomcat packages fix source disclosure vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 225-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 9th, 2002

[SECURITY] [DSA 227-1] New openldap packages fix buffer overflows and remote exploit

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 227-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January, 13th, 2003

[SECURITY] [DSA 229-1] New IMP packages fix SQL injection

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 229-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 15th, 2003

[SECURITY] [DSA 229-2] New IMP packages fix SQL injection and typo

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 229-2 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 15th, 2003

[SECURITY] [DSA 231-1] New dhcp3 packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 231-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 17th, 2003

[SECURITY] [DSA 223-1] New geneweb packages fix information exposure

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 223-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 7th, 2003

[SECURITY] [DSA 222-1] New xpdf packages fix arbitrary command execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 222-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 6th, 2003

[SECURITY] [DSA 235-1] New kdegraphics packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 235-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 22nd, 2003

[SECURITY] [DSA 233-1] New cvs packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 233-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 21st, 2003

[SECURITY] [DSA 238-1] New kdepim packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 238-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 23rd, 2003

[SECURITY] [DSA 240-1] New kdegames packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 240-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 23rd, 2003

[SECURITY] [DSA 241-1] New kdeutils packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 241-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 24th, 2003

[SECURITY] [DSA 237-1] New kdenetwork packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 237-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 22nd, 2003

[SECURITY] [DSA 244-1] New noffle packages fix buffer overflows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 244-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 27th, 2003

[SECURITY] [DSA 249-1] New w3mmee packages fix cookie information leak

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 249-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 11th, 2003

[SECURITY] [DSA 248-1] New hypermail packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 248-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze January 31st, 2003

[SECURITY] [DSA 250-1] New w3mmee-ssl packages fix cookie information leak

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 250-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 12th, 2003

[SECURITY] [DSA 251-1] New w3m packages fix cookie information leak

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 251-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 14th, 2003

[SECURITY] [DSA 252-1] New slocate packages fix local root exploit

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 252-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 21st, 2003

[SECURITY] [DSA 253-1] New OpenSSL packages fix timing-based attack vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 253-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 24th, 2003

[SECURITY] [DSA 254-1] New NANOG traceroute packages fix buffer overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 254-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 27th, 2003

[SECURITY] [DSA 255-1] New tcpdump packages fix denial of service vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 255-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze February 27th, 2003

[SECURITY] [DSA 258-1] New ethereal packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 258-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 10th, 2003

[SECURITY] [DSA 261-1] New tcpdump packages fix denial of service vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 261-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 14th, 2003

[SECURITY] [DSA 263-1] New tcpdump packages fix denial of service vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 263-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 17th, 2003

[SECURITY] [DSA 264-1] New lxr packages fix information disclosure

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 264-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 19th, 2003

[SECURITY] [DSA 265-1] New bonsai packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 265-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 21st, 2003

[SECURITY] [DSA 266-1] New krb5 packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 266-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 17th, 2003

[SECURITY] [DSA 267-1] New lpr packages fix local root exploit

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 267-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 24th, 2003

[SECURITY] [DSA 268-1] New mutt packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 268-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 25th, 2003

[SECURITY] [DSA 269-1] New heimdal packages fix authentication failure

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 269-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 26th, 2003

[SECURITY] [DSA 270-1] New Linux kernel packages (mips + mipsel) fix local root exploit

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 270-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 27sh, 2003

[SECURITY] [DSA 271-1] New ecartis and listar packages fix password change vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 271-1 [EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze March 27th, 2003

  1   2   3   4   >