[Bug 986892] Re: mysql-server postrm breaks apparmor profile for later versions on purge

** Changed in: mysql-5.5 (Ubuntu) Assignee: e75ice...@aol.com (e75iceman) => (unassigned) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to mysql-5.1 in Ubuntu. https://bugs.launchpad.net/bugs/986892 Title: mysql-server postrm bre

[Bug 996162] Re: Please update Asterisk from Debian Sid

asterisk (1:1.8.11.1~dfsg-1) unstable; urgency=high . * New upstream release, Closes: #670180: - AST-2012-004 - further Manager permission fixes (CVE-2012-2414). - AST-2012-005 - Heap overflow in chan_skinny (CVE-2012-2415). - AST-2012-006 - Remote crash on SIP "UPDATE" method (C

[Bug 1022360] Re: (CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in voice mail application (CVE-2012-3863) CVE-2012-3863 asterisk: Possible resource leak on uncompleted re-invite t

** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-3863 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to asterisk in Ubuntu. https://bugs.launchpad.net/bugs/1022360 Title: (CVE-2012-3812) CVE-2012-3812 asterisk: Rem

[Bug 1023931] Re: (CVE-2012-3864) puppet: multiple vulnerabilities for 2.7.17 and earlier releases (CVE-(2012-{3408, 3864, 3865, 3866, 3867})

http://puppetlabs.com/security/cve/cve-2012-3864/hotfixes/ http://puppetlabs.com/security/cve/cve-2012-3865/hotfixes/ http://puppetlabs.com/security/cve/cve-2012-3866/hotfixes/ http://puppetlabs.com/security/cve/cve-2012-3867/hotfixes/ -- You received this bug notification because you are a membe

[Bug 1023931] [NEW] (CVE-2012-3864) puppet: multiple vulnerabilities for 2.7.17 and earlier releases (CVE-(2012-{3408, 3864, 3865, 3866, 3867})

*** This bug is a security vulnerability *** Public security bug reported: http://projects.puppetlabs.com/projects/puppet/wiki/Release_Notes#2.7.18 This is a security release in the 2.7.x branch. CVE-2012-3864 Arbitrary file read on the puppet master from authenticated clients (high) It is pos

[Bug 1022360] Re: (CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in voice mail application (CVE-2012-3863) CVE-2012-3863 asterisk: Possible resource leak on uncompleted re-invite t

AST-2012-010 If Asterisk sends a re-invite and an endpoint responds to the re-invite with a provisional response but never sends a final response, then the SIP dialog structure is never freed and the RTP ports for the call are never released. If an attacker has the ability to place a call, they

[Bug 1022360] [NEW] (CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in voice mail application (CVE-2012-3863) CVE-2012-3863 asterisk: Possible resource leak on uncompleted re-invite

*** This bug is a security vulnerability *** Public security bug reported: AST-2012-011 If a single voicemail account is manipulated by two parties simultaneously, a condition can occur where memory is freed twice causing a crash. http://downloads.asterisk.org/pub/security/AST-2012-011.txt

[Bug 1009422] Re: (CVE-2012-1013) krb5 : kadmind denial of service

** Visibility changed to: Public -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in Ubuntu. https://bugs.launchpad.net/bugs/1009422 Title: (CVE-2012-1013) krb5 : kadmind denial of service To manage notifications about this bug