Several security vulnerabilities have been identified on HP-UX running Kerberos. These vulnerabilities could be exploited by remote unauthenticated users to create a Denial of Service (DoS) or to execute arbitrary code. A patch is available now.

Several vulnerabilities were found in Netscape Portable Runtime (NSPR), Network Security Services (NSS) and Mozilla Seamonkey. Fixed packages are available now.

Several vulnerabilities were found in the Third-Party Drupal modules "Date", "Calendar", "Bibliography Module", and "Live". Updated software is available now. Please be aware that Drupal core is not affected.

Recent versions of Cisco IOS Software support RFC4893 ("BGP Support for Four-octet AS Number Space") and contain two remote denial of service (DoS) vulnerabilities when handling specific Border Gateway Protocol (BGP) updates. Cisco has released free software updates that address these vulnerabilities.

An issue was discovered in the kvm subsystem. Local users with permission to manipulate /dev/kvm can cause a denial of service (hang) by providing an invalid cr3 value to the KVM_SET_SREGS call. Fixed packages are available now.

No further comment due to legal reasons

No further comment due to legal reasons

Several vulnerabilities have been found in the kernel of Debian Linux. Fixed kernel packages are available now.

Several vulnerabilities have been discovered in the OpenEXR image library, which can lead to the execution of arbitrary code. Fixed packages are available now.

A denial-of-service vulnerability was found in ISC BIND9. When named(8) receives a specially crafted dynamic update message an internal assertion check is triggered which causes named(8) to exit. Fixed software is available now.

Multiple vulnerabilities exist in the Cisco Wireless LAN Controllers. Cisco has released free software updates that address these vulnerabilities.

Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses. Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses. A patch is available now.

Multiple format string vulnerabilities in the dispatch_command function in MySQL allow remote authenticated users to cause a denial of service (daemon crash). Fixed packages are available now.

Several vulnerabilities were found in python, an interpreted, interactive, object-oriented programming language. Fixed packages are available now.

It was discovered that git-daemon which is part of git-core, a popular distributed revision control system, is vulnerable to denial of service attacks caused by a programming mistake in handling requests containing extra unrecognized arguments which results in an infinite loop. While this is no problem for the daemon itself as every request will spawn a new git-daemon instance, this still results in a very high CPU consumption and might lead to denial of service conditions. Fixed packages are available now.

Integer overflow in Pango before allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow. Fixed packages are available now.

Several vulnerabilities have been found in the kernel of SuSE Linux. Fixed kernel packages are available now.

Adobe Flash Player contains a code execution vulnerability. An attacker may be able to trigger this overflow by convincing a user to open a specially crafted Flash (SWF) file. The SWF file could be hosted or embedded in a web page or contained in a Portable Document Format (PDF) file. Also affected are Adobe Reader and Acrobat. Fixed software is not available yet.

Security vulnerabilities have been identified with HP-UX running XNTP. The vulnerabilities could be exploited remotely to execute arbitrary code. A patch is available now.

Several vulnerabilities were found in the Tomcat JSP/Servlet container. Fixed packages are available now.

Several vulnerabilities were found in the Mozilla Firefox browser, Thuderbird and Seamonkey. Fixed software is available now.

Two security vulnerabilities in sun ray server software 4.0 on systems with trusted extensions enabled may allow either a denial of service (dos) of the audio service or unauthorized access to other users' sessions. Patches are available now.

It was discovered that the dbus_signature_validate function in dbus, a simple interprocess messaging system, is prone to a denial of service attack.
It has been discovered that gst-plugins-good0.10, the GStreamer plugins from the "good" set, are prone to an integer overflow, when processing a large PNG file. This could lead to the execution of arbitrary code.
Fixed packages are available now.

It was discovered that the pulseaudio daemon does not drop privileges before re-executing itself, enabling local attackers to increase their privileges. Fixed software is available now.

A security vulnerability in the Solaris IP Filter (ipfilter(5)) may allow a local or remote unprivileged user to panic the system. This is a type of Denial of Service (DoS).
A security vulnerability in the Solaris NFSv4 kernel module may allow a local unprivileged user to panic an NFSv4 client system, thereby leading to a Denial of Service (DoS) condition.
Patches are available now.

It was discovered that multiple input sanitising vulnerabilities in Fckeditor, a rich text web editor component, may lead to the execution of arbitrary code. Fixed packages are available now.

A security vulnerability in certain system board firmware revisions of Sun Fire V215 servers with XVR-100 graphic cards may allow an unprivileged user to panic the system. Patches are available now.

Firefox's Just-in-time (JIT) JavaScript compiler has a flaw which can be exploited by convincing the victim to view a malicious web page. Fixed software is not available yet. Workarounds are described in the advisory.

Cisco Unified Contact Center Express (Cisco Unified CCX) server contains both a directory traversal vulnerability and a script injection vulnerability in the administration pages of the Customer Response Solutions (CRS) and Cisco Unified IP Interactive Voice Response (Cisco Unified IP IVR) products. Exploitation of these vulnerabilities could result in a denial of service condition, information disclosure, or a privilege escalation attack. Fixed software is available now.

No further comment due to legal reasons

No further comment due to legal reasons

No further comment due to legal reasons

No further comment due to legal reasons

No further comment due to legal reasons

No further comment due to legal reasons

Updated kernel-rt packages that fix several security issues and various bugs are now available for Red Hat Enterprise MRG 1.1 (MRG: Messaging, RealTime and Grid). These vulnerablities allow Denial-of-Service (DoS) as well as the access of confidential data and increasing privileges. So the update should be installed as soon as possible.

A stack overflow vulnerability in ISC dhclient allows an attacker operating a rogue DHCP server to execute arbitrary code with root privileges on the affected system by supplying a specially crafted subnet-mask parameter. Fixed software is available now.

A buffer underflow in the LZWDecodeCompat function in libtiff allows attackers to cause a denial of service (crash) via a crafted TIFF image. Several possible integer overflow in calculation of buffer sizes were found in tiff2rgba and rgb2ycbcr. Fixed packages are available now.

It was discovered that Daniel djbdns, a Domain Name System server, does not constrain offsets in the required manner, which allows remote attackers with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.
It was discovered that CamlImages, an open source image processing library, suffers from several integer overflows which may lead to a potentially exploitable heap overflow and result in arbitrary code execution.
Fixed packages are available now.

Several vulnerabilities were found in the Tomcat JSP/Servlet container bundled in Solaris 9/10 and OpenSolaris. Patches are available now.

Vulnerabilities were found in the udev, sudo, adn curl programs of the Service Console. Fixed software is available now.

It was discovered that sork-passwd-h3, a Horde3 module for users to change their password, is prone to a cross-site scripting attack via the backend parameter. Fixed packages are available now.

A vulnerability allowing cross-site scripting (XSS) was found in the Third-Party Drupal module "Nodequeue". Updated software is available now. Please be aware that Drupal core is not affected.

Several vulnerabilities were found in Apple Safari. Fixed software is available now.

Several vulnerabilities were found in WordPress. Fixed software is available now.

A security vulnerability in the OpenSolaris process file system (proc(4)) may allow a local unprivileged user to panic the system and thereby cause a denial of service (DoS). Patches are available now.

A vulnerability in FCKEditor, which is included as part of ColdFusion 8, could allow a remote attacker to upload files in arbitrary directories which could lead to a system compromise. This issue is remotely exploitable. There are reports that this issue is being exploited in the wild. Fixed software is available now.

A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. A denial of service flaw was found in the Apache mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file. Fixed packages are available now.

A SUSE Security Summary reports about vulnerabilities in the packages optipng, cups, quagga, pango, strongswan, perl-DBD-Pg, irssi, openssl/libopenssl-devel, net-snmp, ImageMagick/GraphicsMagick, perl, ipsec-tools/novell-ipsec-tools, poppler/libpoppler3/libpoppler4, yast2-ldap-server, tomcat6, gstreamer-plugins/gstreamer010-plugins-bad, and apache2-mod_php5. Updated packages are available now and should be installed on vulnerable systems.

Several vulnerabilities were found in the linux kernel. Fixed kernel packages are available now.

Several vulnerabilities were found in the OpenSSL liubrary libcrypto. Fixed software is available now.

It was discovered that ipplan, a web-based IP address manager and tracker, does not sufficiently escape certain input parameters, which allows remote attackers to conduct cross-site scripting attacks.
It was discovered that the ocsinventory-agent which is part of the ocsinventory suite, a hardware and software configuration indexing service, is prone to an insecure perl module search path.
Fixed packages are available now.

A patch regression in Solaris kernel udp(7p) may cause certain Solaris Trusted Extensions configurations to panic at boot time, making the system unavailable. This issue may also allow remote or local unprivileged users to panic the system, thereby causing a Denial of Service (DoS) to the system as a whole.
A security vulnerability in the Solaris NFSv4 Server Kernel Module 'nfs_portmon' tunable may allow certain remote unprivileged users to gain unauthorized network access to share resources, thereby allowing those users to access (read and write) arbitrary files.
A heap-based buffer overflow security vulnerability in the System Management Agent (SMA) SNMP daemon (snmpd(1M)) that ships with Solaris may allow a local or remote unprivileged user to crash the snmpd daemon via a specially crafted SNMP GETBULK request. This is a type of Denial of Service (DoS).
Patches are available now.

It was discovered that the statuswml.cgi script of nagios, a monitoring and management system for hosts, services and networks, is prone to a command injection vulnerability. Input to the ping and traceroute parameters of the script is not properly validated which allows an attacker to execute arbitrary shell commands by passing a crafted value to these parameters.
Several vulnerabilities have been discovered in eggdrop, an advanced IRC robot.
Fixed packages are available now.

IBM Java 6 SR 5 was released fixing various bugs and critical security issues. They might lead to unwanted access to local data, the execution of arbitrary code as well as a Denial-of-Service (DoS). It's strongly recommended to install the current update, which is available via YOU.

A memory leak in the Solaris Ultra-SPARC T2 crypto provider device driver (n2cp(7D)) may Result in Denial-of-Service (DoS) to the System as a whole. Patches for Sun Solaris and OpenSolaris address this issue.

Multiple insufficient input validation flaws were found in the way Openswan's pluto IKE daemon processed some fields of X.509 certificates. A remote attacker could provide a specially-crafted X.509 certificate that would crash the pluto daemon.
A denial of service flaw was found in the Pidgin OSCAR protocol implementation. If a remote ICQ user sent a web message to a local Pidgin user using this protocol, it would cause excessive memory usage, leading to a denial of service (Pidgin crash).
Several vulnerabilities were found in ruby.
Fixed packages are available now.

A vulnerability allowing cross-site scripting (XSS) was found in the Third-Party Drupal module "Advanced Forum". Updated software is available now. Please be aware that Drupal core is not affected.

Multiple vulnerabilities have been discovered in Drupal Core. Fixed software is available and should be installed now.

A vulnerability was found in the krb5 package of the ESX service console. A patch is available now.

Multiple Cross-Site Scripting (XSS) vulnerabilities in Sun Java Web Console may allow a local or remote unprivileged user to execute arbitrary scripting code within a user's browsing session. A patch is available now.

A security vulnerability has been identified with NFS/ONCplus running on HP-UX. The vulnerability could be exploited locally to create a Denial of Service (DoS) A patch is available now.

A cross-site scripting (XSS) vulnerability in the Sun Java System Access Manager Cross-Domain Controller (CDC) may allow an unprivileged remote user to inject code into web pages served by the Access Manager CDC which can result in various impacts including the theft of sensitive information such as cookie information, access to user credentials, or the hijacking of sessions. A patch is available now.

A defect exists in SSH protocol that allows active attackers to recover plaintext from an SSH session if a CBC mode cipher is in use. Updated versions of OpenSSH mitigate this problem.
Two remote buffer overflow vulnerabilities have been found in the ntp (Network Time Protocol) code.
Several overflows were found in hack(6).
Fixed software is available now.