Importing a certificate with more than 98 Subject Alternate Names via GPGSM's import command or implicitly while verifying a signature causes GPGSM to reallocate an array with the names. The bug is that the reallocation code misses assigning the reallocated array to the old array variable and thus the old and freed array will be used. Fixed packages are available now.

Several vulnerabilities were discovered in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed.Fixed packages are available now.

Multiple flaws have been discovered in the way the slapd daemon handles relative distinguished name (modrdn) requests. An authenticated user with privileges to perform modrdn operations could use these flaws to crash the slapd daemon via specially-crafted modrdn requests. Fixed packages are available now.

Updated java-1.4.2-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary.

The Cisco Internet Streamer application, part of the Cisco Content Delivery System, contains a directory traversal vulnerability on its web server component that allows access to arbitrary files. By exploiting this vulnerability, an attacker may be able to read arbitrary files on the device, outside of the web server document directory, by using a specially crafted URL. Cisco has released free software updates that address this vulnerability.

RSA Federated Identity Manager 4.0 and 4.1 might provide weaker than expected security, caused by the redirection of users. A remote attacker could exploit this vulnerability using an unknown attack vector to construct a malicious URL which would redirect a victim to an arbitrary Web site, once the site is visited, and launch further attacks on the vulnerable system. This problem can be solved by insatalling Hotfix 4.0.25 and Hotfix 4.1.26, respectively.

Multiple flaws have been discovered in the way the slapd daemon handles relative distinguished name (modrdn) requests. An authenticated user with privileges to perform modrdn operations could use these flaws to crash the slapd daemon via specially-crafted modrdn requests. Fixed packages are available now.

Vulnerabilities have been found in Symantec Mail Security, Symantec Brightmail Gateway, Symantec Data Loss Prevention Servers and Endpoint Agents as well as Symantec IM Manager 2007. These products ship with the Verity KeyView Filter which has been updated to address multiple security issues being reported in the content filter processing of specifically crafted document formats. So this update is recommended.

Multiple vulnerabilities have been fixed with the latest versions of Safari 5.0.1 and Safari 4.1.1. It's recommended to upgrade to these latest versions.

Since some time a vulnerability in the popular DNS Server BIND regarding DNSSEC validations and caching is known. Now, a patch is available for IBM AIX 6.1, too.

Several vulnerabilities were found in the Drupal third-party modules Dashboard, Sage Pay (former Protx) Direct Payment Gateway for Ubercart, and Kaltura show vulnerabilities in Cross-Site Scripting and Information Disclosure. Fixed software is available now. Please be aware that Drupal core is not affected.

The lvm2-cluster package contains support for Logical Volume Management (LVM) in a clustered environment. It was discovered that the cluster logical volume manager daemon (clvmd) did not verify the credentials of clients connecting to its control UNIX abstract socket, allowing local, unprivileged users to send control commands that were intended to only be available to the privileged root user. This could allow a local, unprivileged user to cause clvmd to exit, or request clvmd to activate, deactivate, or reload any logical volume on the local system or another system in the cluster. Updated packages are available now.

A potential security vulnerability has been identified with HP Insight Control power management for Windows. The vulnerability could be exploited locally to allow unauthorized read access to data. HP has made an update available to resolve the vulnerability.

In freetype2, multiple integer underflows/overflows and heap buffer overflows have been found. Further on, a heap buffer overflow has been detected in the bytecode support. Ping.c as part of iputils hangs when a special echo request answer is received. PHP 5.2.14 is available now. This version offers many security enhancements. For the other two problems fixes are available now.

A potential authorization vulnerability in P8 has been found. It occurs when security inheritance was disabled on one or more folders and an upgrade from 3.x to 4.x was performed. A fix is available now.

An input sanitization flaw was found in the way JBoss Seam processed certain parametrized JBoss Expression Language (EL) expressions. If a remote attacker could trick an authenticated JBoss Seam user into visiting a specially-crafted web page, it could lead to arbitrary code execution. Fixed packages are available now.

It was discovered that GnuPG 2 uses a freed pointer when verify a signature or importing a certificate with many Subject Alternate Names, potentially leading to arbitrary code execution. Fixed packages are available now.

It was discovered that w3m is affected by the previously published "null prefix attack", caused by incorrect handling of NULL characters in X.509 certificates. If an attacker is able to get a carefully-crafted certificate signed by a trusted Certificate Authority, the attacker could use the certificate during a man-in-the-middle attack and potentially confuse w3m into accepting it by mistake. Fixed packages are available now.

An integer underflow was discovered in ncompress, the original Lempel-Ziv compress/uncompress programs. This could lead to the execution of arbitrary code when trying to decompress a crafted LZW compressed gzip archive. Fixed packages are available now.

Several security vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to execute arbitrary code under the context of the user running the web server. Patches are available now.

The SUSE Linux Enterprise Server/Desktop 11 kernel was updated to fix various bugs and some security issues.

A directory traversal flaw was discoverd in the way the Mailing List Managing Made Joyful mailing list manager processed users' requests originating from the administrator web interface without enough input validation. A remote, authenticated attacker could use these flaws to write and / or delete arbitrary files. Fixed packages are available now.

Multiple flaws were discovered in the way the slapd daemon handled modify relative distinguished name (modrdn) requests. An authenticated user with privileges to perform modrdn operations could use these flaws to crash the slapd daemon via specially-crafted modrdn requests. Fixed packages are available now.

Several vulnerabilities were found in the Mozilla Firefox browser, Thuderbird and Seamonkey. Fixed software is available now.

Several vulnerabilities have been discovered in libpng, a library for reading and writing PNG files. Fixed packages are available now.

Several vulnerabilities allow remote attackers to execute arbitrary code on vulnerable installations of IPSwitch IMail and IPSwitch IMail List Mailer. Authentication is not required to exploit these vulnerabilities. Patches are available now.

Multiple vulnerabilities has been found in libpng.
Multiple vulnerabilities has been found in ghostscript.
Fixed packages are available now.

A security vulnerability has been identified with HP-UX running rpc.ttdbserver. The vulnerability could be exploited remotely to execute arbitrary code. Patches are available now.

Several vulnerabilities were found in the Drupal third-party modules Simple Gallery, OG Menu, Tell a Friend Node, JsMath For Displaying Mathematics With TeX, and Drupad. Fixed software is available now. Please be aware that Drupal core is not affected.

Multiple vulnerabilities has been found in python. Fixed packages are available now.

Multiple buffer overflow flaws were discovered in the way the pcscd daemon, a resource manager that coordinates communications with smart card readers and smart cards connected to the system, handled client requests. A local user could create a specially-crafted request that would cause the pcscd daemon to crash or, possibly, execute arbitrary code.
Several vulnerabilities were found in libpng.
Fixed packages are available now.

Several vulnerabilities were discovered in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed.
Several buffer overflows were discovered in the MikMod sound library, which could lead to the execution of arbitrary code if a user is tricked into opening malformed Impulse Tracker or Ultratracker sound files.
Fixed packages are available now.

A vulnerability in IBM solidDB allows remote attackers to execute arbitrary code on vulnerable installations. Authentication is not required to exploit this vulnerability. Patches are available now.

Several security vulnerabilities have been identified in HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows. The vulnerabilities could be exploited remotely to execute arbitrary code and other exploits. Patches are available now.

A security vulnerability has been identified with HP OpenVMS Auditing. The vulnerability could result in a local disclosure of information or elevation of privilege. Patches are available now.

A vulnerability in the Virtual Appliance Management Infrastructure (VAMI) allows for remote command execution in Studio 2.0 or in virtual appliances created with Studio 2.0. Exploitation of the issue requires authentication to Studio or to the virtual appliance. Fixed software is available now.

No further comment due to legal reasons

No further comment due to legal reasons

No further comment due to legal reasons

No further comment due to legal reasons

A buffer overflow was discovered in python-cjson, a fast JSON encoder/decoder for Python. This allows a remote attacker to cause a denial of service (application crash) through a specially-crafted Python script. Fixed packages are available now.

Two vulnerabilities were found in avahi-daemon regarding the handling of mDNS messages. Fixed packages are available now.

It was discovered that znc, an IRC bouncer, is vulnerable to denial of service attacks via a NULL pointer dereference when traffic statistics are requested while there is an unauthenticated connection. Fixed packages are available now.

Some vulnerabilities regarding Cross-Site Scripting (XSS) were found in the Drupal third-party modules MultiSafepay Integration and Hierarchical Select. Fixed software is available now. Please be aware that Drupal core is not affected.

The SUSE Linux Enterprise Server/Desktop 11 kernel was updated to fix various bugs and some security issues.

Cisco Industrial Ethernet 3000 (IE 3000) Series switches running Cisco IOS Software contain a vulnerability where well known SNMP community names are hard-coded for both read and write access. The hard-coded community names are "public" and "private." Cisco has released free software updates that address this vulnerability.

Multiple buffer overflow flaws were found in scsi-target-utils' tgtd daemon. A remote attacker could trigger these flaws by sending a carefully-crafted Internet Storage Name Service (iSNS) request, causing the tgtd daemon to crash.
Multiple input validation flaws were discovered in libtiff.
A flaw was found in the gfs_lock() implementation. The GFS locking code could skip the lock operation for files that have the S_ISGID bit (set-group-ID on execution) in their mode set. A local, unprivileged user on a system that has a GFS file system mounted could use this flaw to cause a kernel panic.
Fixed packages are available now.

A vulnerability has been found and corrected in heimdal. Certain invalid GSS-API tokens can cause a GSS-API acceptor (server) to crash due to a null pointer dereference in the GSS-API library. Fixed packages are available now.

Several vulnerabilities were found in IBM Java 1.5.0 and IBM Java 1.6.0. Fixed packages are available now.

Several vulnerabilities were discovered in mahara, an electronic portfolio, weblog, and resume builder. Fixed packages are available now.

The samba server shows some vulnerabilities. First of all, it should be assured that a mount point of mount.cifs isn't changed during mount. Further on, a buffer overrun in chain_reply code in samba 3.3x and earlier might lead to a server crash or even the execution of code. An update is available now.

Multiple directory traversal flaws were discovered in the Archive::Tar module. A specially-crafted tar file could cause a Perl script, using the Archive::Tar module to extract the archive, to overwrite an arbitrary file writable by the user running the script. Fixed packages are available now.

Updated kernel packages that fix one security issue and add one enhancement are now available for Red Hat Enterprise Linux 5.

Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer. It was discovered that null pointer dereferences, buffer overflows and infinite loops in the SMB, SMB PIPE, ASN1.1 and SigComp dissectors could lead to denial of service or the execution of arbitrary code. Fixed packages are available now.