Infodrom Oldenburg Security
By Thread

Starting: Thu Apr 26 2001 - 15:58:00 CEST
Ending: Fri Nov 16 2001 - 22:14:39 CET

• MDKSA-2001:042 - nedit update Linux Mandrake Security Team (Wed Apr 25 2001 - 21:33:10 CEST)
• Insecure directory handling in KFM file manager Paul Starzetz (Wed Apr 18 2001 - 21:40:49 CEST)
• CFINGERD remote vulnerability Megyer Laszlo (Wed Apr 11 2001 - 20:02:34 CEST)
• ntpd - new Debian 2.2 (potato) version is also vulnerable Daniel Kiper (Mon Apr 09 2001 - 11:29:15 CEST)
• Immunix OS Security update for ntp and xntp3 Greg KH (Fri Apr 06 2001 - 20:34:34 CEST)
• [RHSA-2001:045-05] Network Time Daemon (ntpd) has potential remote root exploit bugzilla@REDHAT.COM (Sun Apr 08 2001 - 23:25:00 CEST)
• A fragmentation attack against IP Filter Thomas Lopatic (Mon Apr 09 2001 - 00:16:14 CEST)
• [slackware-security] buffer overflow fix for NTP Slackware Security Team (Mon Apr 09 2001 - 01:50:03 CEST)
• PROGENY-SA-2001-02: ntpd remote buffer overflow Progeny Security Team (Mon Apr 09 2001 - 13:31:27 CEST)
• Netscape 4.76 gif comment flaw Florian Wesch (Mon Apr 09 2001 - 13:48:26 CEST)
• Trustix Security Advisory #2001-0004 - xntpd tsl@TRUSTIX.COM (Mon Apr 09 2001 - 15:56:57 CEST)
• [ESA-20010409-01] xntp buffer overflow security@GUARDIANDIGITAL.COM (Mon Apr 09 2001 - 18:39:32 CEST)
• [CLA-2001:392] Conectiva Linux Security Announcement - xntp3 secure@CONECTIVA.COM.BR (Mon Apr 09 2001 - 20:22:55 CEST)
• SuSE Security Announcement: xntp (SuSE-SA:2001:10) Roman Drahtmueller (Mon Apr 09 2001 - 22:42:45 CEST)
• Linux Security Module Interface Crispin Cowan (Wed Apr 11 2001 - 02:04:12 CEST)
• [RHSA-2001:046-03] New netscape packages available bugzilla@REDHAT.COM (Wed Apr 11 2001 - 04:32:00 CEST)
• [SECURITY] [DSA 051-1] New Netscape packages available Martin Schulze (Mon Apr 23 2001 - 12:05:34 CEST)
• [SECURITY] [DSA-048-1] remote cfingerd exploit Wichert Akkerman (Thu Apr 19 2001 - 03:02:24 CEST)
• HylaFAX vulnerability Marcin Dawcewicz (Thu Apr 12 2001 - 03:22:20 CEST)
• PROGENY-SA-2001-02A: [UPDATE] ntpd remote buffer overflow Progeny Security Team (Fri Apr 13 2001 - 18:05:50 CEST)
• Immunix OS Security update for netscape Greg KH (Tue Apr 17 2001 - 01:50:11 CEST)
• [CLA-2001:393] Conectiva Linux Security Announcement - netscape secure@CONECTIVA.COM.BR (Tue Apr 17 2001 - 16:46:42 CEST)
• Innfeed Buffer Overflow Enrique A. Sanchez Montellano (Wed Apr 18 2001 - 09:46:26 CEST)
• PROGENY-SA-2001-06: Remote vulnerability in cfingerd Progeny Security Team (Thu Apr 19 2001 - 22:58:30 CEST)
• PROGENY-SA-2001-07: Netscape Navigator fails to protect privacy Progeny Security Team (Fri Apr 20 2001 - 02:26:36 CEST)
• SuSE Security Announcement: hylafax (SuSE-SA:2001:15) Thomas Biege (Fri Apr 20 2001 - 11:39:14 CEST)
• OpenSSL-0.9.6a has security fixes Jim Knoble (Tue Apr 24 2001 - 21:40:07 CEST)
  • Re: OpenSSL-0.9.6a has security fixes Ariel Waissbein (Wed Apr 25 2001 - 20:33:13 CEST)
    • Re: OpenSSL-0.9.6a has security fixes Markus Friedl (Thu Apr 26 2001 - 09:10:14 CEST)
• MDKSA-2001:041 - hylafax update Linux Mandrake Security Team (Wed Apr 25 2001 - 04:18:00 CEST)
• SuSE Security Announcement: mc (SuSE-SA:2001:11) Thomas Biege (Tue Apr 10 2001 - 16:05:28 CEST)
• Samba 2.0.8 security fix tridge@SAMBA.ORG (Wed Apr 18 2001 - 02:06:48 CEST)
• Immunix OS Security update for samba Chris Wright (Wed Apr 18 2001 - 03:40:31 CEST)
• PROGENY-SA-2001-05: Samba /tmp vulnerabilities Progeny Security Team (Wed Apr 18 2001 - 20:03:54 CEST)
• Security Advisory: samaba security problems CSSA-2001-015.0 Caldera Support Information (Wed Apr 18 2001 - 21:55:22 CEST)
• SuSE Security Announcement: nedit (SuSE-SA:2001:14) Thomas Biege (Thu Apr 19 2001 - 11:56:33 CEST)
• MDKSA-2001:042 - nedit update Linux Mandrake Security Team (Wed Apr 25 2001 - 21:33:10 CEST)
• Sudo version 1.6.3p6 now available (fwd) Gossi The Dog (Fri Feb 23 2001 - 01:53:18 CET)
• MDKSA-2001:024-1 - sudo update Linux Mandrake Security Team (Wed Mar 14 2001 - 03:48:22 CET)
• [RHSA-2001:019-02] Updated sudo packages fixing buffer overrun available bugzilla@REDHAT.COM (Thu Mar 22 2001 - 00:31:00 CET)
• [slackware-security] buffer overflow in sudo fixed Slackware Security Team (Sun Feb 25 2001 - 21:03:42 CET)
• Trustix Security Advisory - sudo Trustix Secure Linux Team (Mon Feb 26 2001 - 16:29:32 CET)
• [CLA-2001:381] Conectiva Linux Security Announcement - sudo secure@CONECTIVA.COM.BR (Mon Feb 26 2001 - 17:23:08 CET)
• Immunix OS Security update for sudo Greg KH (Tue Feb 27 2001 - 01:27:53 CET)
• [CLA-2001:395] Conectiva Linux Security Announcement - samba secure@CONECTIVA.COM.BR (Thu Apr 19 2001 - 21:09:04 CEST)
• MDKSA-2001:040 - samba update Linux Mandrake Security Team (Fri Apr 20 2001 - 20:27:16 CEST)
• [RHSA-2001:053-06] gftp format string vulnerability corrected bugzilla@REDHAT.COM (Wed Apr 25 2001 - 22:30:00 CEST)
• SuSE Security Announcement: eperl (SuSE-SA:2001:08) Thomas Biege (Wed Mar 28 2001 - 12:59:51 CEST)
• Joe's Own Editor File Handling Error advisories@WKIT.COM (Wed Feb 28 2001 - 15:13:42 CET)
• MDKSA-2001:026 - joe update Linux Mandrake Security Team (Tue Mar 06 2001 - 23:04:13 CET)
• Immunix OS Security update for joe Greg KH (Tue Mar 06 2001 - 21:08:34 CET)
• SuSE Security Announcement: joe (SuSE-SA:2001:09) Thomas Biege (Wed Mar 28 2001 - 13:03:11 CEST)
• SuSE Security Announcement: sudo (SuSE-SA:2001:13) Thomas Biege (Thu Apr 19 2001 - 11:54:51 CEST)
• [ESA-20010409-02] xntp i386 packages available security@GUARDIANDIGITAL.COM (Thu Apr 26 2001 - 18:48:08 CEST)
• Linux-Mandrake Security Update Advisory: nedit Linux Today Newsticker (Thu Apr 26 2001 - 19:50:03 CEST)
• [RHSA-2001:050-04] Updated mgetty packages available redhat-announce-list-admin@redhat.com (Fri Apr 20 2001 - 20:04:38 CEST)
• [RHSA-2001:053-06] gftp format string vulnerability corrected redhat-announce-list-admin@redhat.com (Wed Apr 25 2001 - 22:30:04 CEST)
• PROGENY-SA-2001-10: Older versions of NEdit make insecure use of temp files Progeny Security Team (Fri Apr 27 2001 - 17:28:36 CEST)
• MDKSA-2001:044 - gftp update Linux Mandrake Security Team (Sat Apr 28 2001 - 00:24:54 CEST)
• [ESA-20010426-01] openssl vulnerabilities EnGarde Secure Linux (Wed May 02 2001 - 15:38:12 CEST)
• [RHSA-2001:061-02] Updated nedit packages available redhat-announce-list-admin@redhat.com (Tue May 08 2001 - 16:08:27 CEST)
• PROGENY-SA-2001-13: gFTP client potentially vulnerable to attack Progeny Security Team (Tue May 08 2001 - 15:54:44 CEST)
• another exploit for cfingerd. venomous (Mon May 07 2001 - 07:37:57 CEST)
• MDKSA-2001:050 - vixie-cron update Linux Mandrake Security Team (Fri May 11 2001 - 07:08:49 CEST)
• [RHSA-2001:044-08] New samba packages available to fix /tmp races bugzilla@redhat.com (Tue May 15 2001 - 04:20:23 CEST)
• smbd remote file creation vulnerability Michal Zalewski (Sun Jun 24 2001 - 05:24:26 CEST)
• [CLA-2001:405] Conectiva Linux Security Announcement - samba secure@conectiva.com.br (Sun Jun 24 2001 - 01:33:35 CEST)
• [RHSA-2001:086-06] New Samba packages available for Red Hat Linux 5.2, 6.2, 7 and 7.1 bugzilla@redhat.com (Tue Jun 26 2001 - 13:15:02 CEST)
• samba update -- Immunix OS 6.2, 7.0-beta, 7.0 Immunix Security Team (Wed Jun 27 2001 - 02:48:12 CEST)
• TSLSA-2001-0011 - Samba Trustix Secure Linux Advisor (Wed Jun 27 2001 - 15:14:02 CEST)
• SuSE Security Announcement: samba (SuSE-SA:2001:021) Roman Drahtmueller (Fri Jun 29 2001 - 15:06:28 CEST)
• [RHSA-2001:051-18] Updated openssl packages available bugzilla@redhat.com (Wed Jul 18 2001 - 22:41:09 CEST)
• MDKSA-2001:065 - openssl update Linux Mandrake Security Team (Thu Jul 19 2001 - 04:34:17 CEST)
• Immunix OS Security update for vixie-cron Greg KH (Tue Feb 20 2001 - 22:16:29 CET)
• IMP 2.2.6 (SECURITY) released Brent J. Nordquist (Sun Jul 22 2001 - 00:22:22 CEST)
• [CLA-2001:410] Conectiva Linux Security Announcement - imp secure@conectiva.com.br (Wed Jul 25 2001 - 23:25:55 CEST)
• xloadimage remote exploit - tstot.c zen-parse@gmx.net (Tue Jul 10 2001 - 11:58:48 CEST)
• SuSE Security Announcement: xli/xloadimage (SuSE-SA:2001:024) Thomas Biege (Tue Jul 24 2001 - 19:58:32 CEST)
• [RHSA-2001:088-04] New xloadimage packages available bugzilla@redhat.com (Tue Jul 10 2001 - 01:40:12 CEST)
• Squid httpd acceleration acl bug enables portscanning Paul Nasrat (Wed Jul 18 2001 - 22:16:01 CEST)
• squid update -- Immunix OS 6.2, 7.0-beta, and 7.0 Immunix Security Team (Thu Jul 19 2001 - 02:51:10 CEST)
• TSLSA-2001-0013 - Squid Trustix Secure Linux Advisor (Thu Jul 19 2001 - 14:22:43 CEST)
• [RHSA-2001:097-04] New squid packages for Red Hat Linux 7.0 bugzilla@redhat.com (Thu Jul 19 2001 - 22:40:21 CEST)
• MDKSA-2001:066 - squid update Linux Mandrake Security Team (Wed Jul 25 2001 - 23:21:42 CEST)
• Security Update [CSSA-2001-029.0] Linux - Squid configuration problems Support Info (Mon Aug 06 2001 - 17:57:07 CEST)
• [CLA-2001:410] Conectiva Linux Security Announcement - imp secure@conectiva.com.br (Wed Jul 25 2001 - 23:25:55 CEST)
• CERT Advisory CA-2001-18 aleph1@securityfocus.com (Tue Jul 17 2001 - 16:55:23 CEST)
• MDKSA-2001:069 - openldap update Linux Mandrake Security Team (Tue Aug 14 2001 - 06:27:35 CEST)
• [RHSA-2001:098-05] Updated OpenLDAP packages available for Red Hat Linux 6.2, 7, and 7.1 bugzilla@redhat.com (Thu Aug 09 2001 - 23:53:55 CEST)
• TSLSA-2001-0014 - PHPLib Trustix Secure Linux Advisor (Thu Jul 26 2001 - 15:04:58 CEST)
• Security Update: [CSSA-2001--25.0] Linux - imp uses /tmp unsafely Support Info (Tue Jul 17 2001 - 19:53:49 CEST)
• buffer overflow in Window Maker Alfredo K. Kojima (Mon Jul 23 2001 - 23:02:13 CEST)
• [CLA-2001:411] Conectiva Linux Security Announcement - windowmaker secure@conectiva.com.br (Mon Aug 13 2001 - 23:13:46 CEST)
• multiple vendor telnet daemon vulnerability Sebastian (Wed Jul 18 2001 - 22:15:10 CEST)
• Security Update: [CSSA-2001-30.0] Linux - Telnet AYT remote exploit Support Info (Tue Aug 14 2001 - 01:45:59 CEST)
• [RHSA-2001:099-06] New telnet packages available to fix buffer overflow vulnerabilities bugzilla@redhat.com (Fri Aug 10 2001 - 00:24:50 CEST)
• MDKSA-2001:068 - telnet update Linux Mandrake Security Team (Tue Aug 14 2001 - 06:26:56 CEST)
• [ESA-20010816-01] fetchmail-ssl memory overwrite vulnerability EnGarde Secure Linux (Thu Aug 16 2001 - 15:35:38 CEST)
• OpenSSL Security Advisory: PRNG weakness in versions up to 0.9.6a Bodo Moeller (Tue Jul 10 2001 - 13:03:17 CEST)
• TSLSA-2001-0012 - OpenSSL Trustix Secure Linux Advisor (Wed Jul 11 2001 - 14:41:41 CEST)
• [RHSA-2001:051-18] Updated openssl packages available bugzilla@redhat.com (Wed Jul 18 2001 - 22:41:55 CEST)
• MDKSA-2001:065 - openssl update Linux Mandrake Security Team (Thu Jul 19 2001 - 04:34:17 CEST)
• [RHSA-2001:075-04] Updated xinetd package available for Red Hat Linux 7 and 7.1 bugzilla@redhat.com (Wed Jun 06 2001 - 01:20:09 CEST)
• MDKSA-2001:055 - xinetd update Linux Mandrake Security Team (Mon Jun 11 2001 - 19:50:04 CEST)
• xinetd update -- Immunix OS 7.0 security@wirex.com (Wed Jun 13 2001 - 02:00:42 CEST)
• [CLA-2001:404] Conectiva Linux Security Announcement - xinetd secure@conectiva.com.br (Tue Jun 19 2001 - 23:08:02 CEST)
• SuSE Security Announcement: xinetd Sebastian Krahmer (Fri Jun 29 2001 - 15:24:55 CEST)
• Immunix OS Security update for GnuPG Immunix Security Team (Thu May 31 2001 - 01:52:59 CEST)
• TSLSA-2001-0009 - GnuPG Trustix Secure Linux Advisor (Fri Jun 01 2001 - 11:18:16 CEST)
• [CLA-2001:399] Conectiva Linux Security Announcement - gnupg secure@conectiva.com.br (Thu Jun 07 2001 - 20:44:52 CEST)
• TLSA2001028 gnupg-1.0.6-1 TurboLinux Security Team (Thu Jun 21 2001 - 20:51:05 CEST)
• [CSSA-2001-020.0] Format bug in gnupg Caldera Support Information (Fri Jun 08 2001 - 20:17:23 CEST)
• MDKSA-2001:053 - gnupg update Linux Mandrake Security Team (Thu May 31 2001 - 04:10:48 CEST)
• SuSE Security Announcement: gpg/GnuPG (SuSE-SA:2001:020) Roman Drahtmueller (Sun Jun 03 2001 - 14:26:13 CEST)
• [RHSA-2001:073-04] Updated GnuPG packages available bugzilla@redhat.com (Thu Jun 07 2001 - 22:04:48 CEST)
• SuSE Security Announcement: fetchmail (SuSE-SA:2001:026) Thomas Biege (Fri Aug 17 2001 - 10:25:43 CEST)
• AOLserver 3.0 vulnerability Nate Haggard (Thu Aug 23 2001 - 00:51:45 CEST)
• Another sendmail exploit Alexander Yurchenko (Thu Aug 23 2001 - 02:40:02 CEST)
• [CLA-2001:412] Conectiva Linux Security Announcement - sendmail secure@conectiva.com.br (Thu Aug 23 2001 - 16:31:40 CEST)
• SuSE Security Announcement: sendmail (SuSE-SA:2001:028) Roman Drahtmueller (Thu Aug 23 2001 - 18:44:26 CEST)
• Security Update [CSSA-2001-032.0] Linux - sendmail instant root exploit Caldera Support Info (Fri Aug 24 2001 - 21:59:50 CEST)
• ImmunixOS 7.0 sendmail update Immunix Security Team (Sat Aug 25 2001 - 02:25:34 CEST)
• [CLA-2001:413] Conectiva Linux Security Announcement - telnet secure@conectiva.com.br (Fri Aug 24 2001 - 20:50:00 CEST)
• Multiple vendor 'Taylor UUCP' problems. zen-parse (Sat Sep 08 2001 - 12:58:39 CEST)
• Security Update [CSSA-033.0]Linux - uucp argument handling problems Support Info (Mon Sep 10 2001 - 20:09:10 CEST)
• [CLA-2001:425] Conectiva Linux Security Announcement - uucp secure@conectiva.com.br (Tue Sep 11 2001 - 23:32:28 CEST)
• MDKSA-2001:078 - uucp update Linux Mandrake Security Team (Fri Sep 21 2001 - 17:56:08 CEST)
• FWD: Serious security hole in slrn Joey Hess (Sat Sep 22 2001 - 17:20:20 CEST)
• squid DoS Vladimir Ivaschenko (Fri Sep 21 2001 - 10:48:47 CEST)
• Security Update: [CSSA-2001-035.0] Linux - Remote File View Problem in htdig Support Info (Tue Oct 09 2001 - 22:44:19 CEST)
• [CLA-2001:429] Conectiva Linux Security Announcement - htdig secure@conectiva.com.br (Wed Oct 10 2001 - 23:19:33 CEST)
• [ ** Snes9x buffer overflow vulnerability ** ] Niels Heinen (Tue Oct 16 2001 - 16:37:34 CEST)
• Procmail version 3.20 released Philip Guenther (Fri Jun 29 2001 - 08:24:58 CEST)
• [RHSA-2001:093-03] Updated procmail packages available for Red Hat Linux 5.2, 6.2, 7 and 7.1 bugzilla@redhat.com (Thu Jul 19 2001 - 22:22:32 CEST)
• SuSE Security Announcement: screen (SuSE-SA:2001:030) Roman Drahtmueller (Wed Sep 05 2001 - 18:35:09 CEST)
• Security Update: [CSSA-2001-036.0] Linux - Several Linux Kernel Security Problems Support Info (Fri Oct 19 2001 - 01:11:27 CEST)
• [RedHat] Schwachstelle im 2.2.x Kernel - RHSA-2001:130-04 win-sec-ssc@cert.dfn.de (Fri Oct 19 2001 - 17:26:15 CEST)
• [ESA-20011019-02] kernel: Local DoS and root compromise EnGarde Secure Linux (Fri Oct 19 2001 - 18:16:32 CEST)
• TSLSA-2001-0028 Trustix Secure Linux Advisor (Fri Oct 19 2001 - 17:40:40 CEST)
• Immunix OS update Linux Kernel Immunix Security Team (Sat Oct 20 2001 - 03:32:57 CEST)
• SuSE Security Announcement: htdig (SuSE-SA:2001:035) Thomas Biege (Wed Oct 24 2001 - 12:21:12 CEST)
• SuSE Security Announcement: kernel (SuSE-SA:2001:036) Roman Drahtmueller (Fri Oct 26 2001 - 18:31:01 CEST)
• Re: Flaws in recent Linux kernels Mariusz Woloszyn (Fri Oct 26 2001 - 12:55:11 CEST)
• [RHSA-2001:113-03] New squid packages available to fix FTP-based DoS bugzilla@redhat.com (Mon Oct 22 2001 - 15:01:41 CEST)
• [RHSA-2001:072-14] Updated man package fixing GID security problems. bugzilla@redhat.com (Fri Sep 21 2001 - 22:34:14 CEST)
• [RHSA-2001:124-04] Updated mod_auth_pgsql packages available bugzilla@redhat.com (Wed Oct 24 2001 - 17:00:12 CEST)
• [RHSA-2001:098-05] Updated OpenLDAP packages available for Red Hat Linux 6.2, 7, and 7.1 bugzilla@redhat.com (Thu Aug 09 2001 - 23:42:00 CEST)
• MDKSA-2001:083 - htdig update Linux Mandrake Security Team (Thu Nov 01 2001 - 22:21:48 CET)
• SuSE Security Announcement: squid (SuSE-SA:2001:037) Roman Drahtmueller (Tue Oct 30 2001 - 12:41:09 CET)
• [RHSA-2001:142-15] kernel 2.2 and 2.4: syncookie vulnerability bugzilla@redhat.com (Tue Nov 06 2001 - 01:44:17 CET)
• Security Update: [CSSA-2001-38.0] Linux - syncookies firewall breaking problem Support Info (Fri Nov 09 2001 - 01:17:24 CET)
• [RHSA-2001:139-04] Updated htdig packages are available bugzilla@redhat.com (Fri Nov 09 2001 - 01:20:29 CET)
• [CLA-2001:433] Conectiva Linux Security Announcement - procmail secure@conectiva.com.br (Tue Nov 06 2001 - 20:59:20 CET)
• [CLA-2001:434] Conectiva Linux Security Announcement - w3m secure@conectiva.com.br (Thu Nov 08 2001 - 19:53:10 CET)
• [ESA-20011106-01] kernel: Syncookie vulnerability EnGarde Secure Linux (Tue Nov 06 2001 - 07:04:34 CET)
• IMP 2.2.7 (SECURITY) released Brent J. Nordquist (Sat Nov 10 2001 - 16:05:26 CET)
• [CLA-2001:437] Conectiva Linux Security Announcement - imp secure@conectiva.com.br (Fri Nov 16 2001 - 21:25:45 CET)

Last message date: Fri Nov 16 2001 - 22:14:39 CET
Archived on: Fri Nov 16 2001 - 22:14:39 CET

This archive was generated by hypermail 2.1.2 : Fri Nov 16 2001 - 22:14:39 CET