[security] Security Advisories

Lorenzo Iannuzzi nakis a libero.it
Dom 15 Feb 2004 13:11:31 CET


http://bugzilla.redhat.com/bugzilla

Updated PWLib packages that contain fixes for security issues found during
protocol testing by the NISCC are now available.

Updated XFree86 packages that fix a privilege escalation vulnerability are
now available.

http://www.idefense.com/application/poi/display?id=73

Exploitation of a buffer overflow in The XFree86 Project Inc.'s XFree86 
X Window System allows local attackers to gain root privileges. 

  Immunix 7.3 users may use our up2date service to install fixed 
  packages: you may run either "up2date" within X, and follow the 
  directions, or run "up2date -u" to ensure your system is current. 

Mandrake Linux Security Update Advisory 
The updated packages have a patch from David Dawes to correct these 
vulnerabilities. 

http://www.debian.org/security/

Phong Nguyen identified a severe bug in the way GnuPG creates and uses 
ElGamal keys for signing.  This is a significant security failure 
which can lead to a compromise of almost all ElGamal keys used for 
signing.

http://http.trustix.org/pub/trustix/updates/

Trustix Secure Linux Security Advisory
  It was discovered that certain messages would cause mutt to crash.
  Mutt 1.4.2 fixes this bug.
-- 

Ciao e alla prossima!
Lorenzo                                 nakis a libero.it

Ci sono 10 tipi di persone al mondo. Quelle che comprendono
i binari e quelle che non li comprendono.
-------------- parte successiva --------------
Un allegato non testuale  stato rimosso....
Nome:        non disponibile
Tipo:        application/pgp-signature
Dimensione:  244 bytes
Descrizione: non disponibile
Url:         http://itlists.org/pipermail/security/attachments/20040215/2ec1cdbd/attachment.pgp 
-------------- parte successiva --------------
Un allegato non testuale  stato rimosso....
Nome:        non disponibile
Tipo:        application/pgp-signature
Dimensione:  244 bytes
Descrizione: non disponibile
Url:         http://itlists.org/pipermail/security/attachments/20040215/2ec1cdbd/attachment-0001.pgp 


Maggiori informazioni sulla lista security