Users login

Create an account »

JOIN XATRIX

Users login

Home » Security Advisories » Fedora

Fedora Security Advisories

Here you'll find the latest security advisories from Fedora. Our database currently contains 4435 Fedora security advisories.
Page: 12... 171 172 173 174 175 176 177 178 out of 178

Mc stack-based buffer overflow | FLSA:1224 | May 18, 2004
There exists a stack-based buffer overflow in fs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allowing remote attackers to execute ar

cvs 1.11.15 updates | FEDORA-2004-110 | May 14, 2004
The client for CVS before 1.11.15 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates. Updated packages

neon 0.24.5 updates | FEDORA-2004-103 | May 14, 2004
Multiple format string vulnerabilities in neon 0.24.4 and earlier allow remote malicious WebDAV servers to execute arbitrary code. Updated packages were made available in April 2004 however the origi

lha 1.14i updates | FEDORA-2004-119 | May 11, 2004
Ulf Härnhammar discovered two stack buffer overflows and two directory traversal flaws in LHA. An attacker could exploit the buffer overflows by creating a carefully crafted LHA archive in such a way

OpenSSL denial of service bug | FLSA:1395 | May 08, 2004
Testing performed by the OpenSSL group using the Codenomicon TLS Test Tool uncovered a bug in older versions of OpenSSL 0.9.6 prior to 0.9.6d that can lead to a denial of service attack (infinite loop

libpng10 1.0.13 updates | FEDORA-2004-106 | May 05, 2004

squid 2.5.STABLE3 updates | FEDORA-2004-104 | April 15, 2004

Util-linux login information leak | FLSA:1256 | March 04, 2004
Updated util-linux packages that fix an information leak in the login program are now available.

tcpdump 3.7.2 updates | FEDORA-2004-091 | March 04, 2004
Updated tcpdump, libpcap, and arpwatch packages fix vulnerabilities in ISAKMP and RADIUS parsing. Tcpdump is a command-line tool for monitoring network traffic. George Bakos discovered flaws in the

Kernel mremap value checking flaw | FLSA:1284 | March 02, 2004
Updated kernel packages that fix security vulnerabilities which may allow local users to gain root privileges are now available. These packages also resolve other minor issues.

Kernel return value checking flaw | FLSA:1284 | March 02, 2004
Updated kernel packages that fix security vulnerabilities which may allow local users to gain root privileges are now available. These packages also resolve other minor issues.

libxml2 2.6.6 updates | FEDORA-2004-087 | February 25, 2004
Updated libxml2 packages are available to fix an overflow when parsing the URI for remote resources.

kernel 2.4.22 updates | FEDORA-2004-080 | February 18, 2004

XFree86 4.3.0 updates | FEDORA-2004-069 | February 13, 2004
Updated XFree86 packages that fix a privilege escalation vulnerability are now available. XFree86 is an implementation of the X Window System, providing the core graphical user interface and video dr

Slocate heap-based buffer overflow | FLSA:1232 | February 11, 2004
Updated slocate packages are now available that fix security vulnerabilities which may allow local users to gain "slocate" group privileges.

Slocate heap-based buffer overflow | FLSA:1232 | February 11, 2004
Updated slocate packages are now available that fix security vulnerabilities which may allow local users to gain "slocate" group privileges.

kernel 2.4.22 updates | FEDORA-2004-063 | February 11, 2004

netpbm 9.24 updates | FEDORA-2004-068 | February 06, 2004
This update of the netpbm package fixes some security holes found by the Debian group. An update to the latest version these packages provide is recommended to every user of the netpbm programs and

Tcpdump denial of service | FLSA:1222 | January 31, 2004
Updated tcpdump packages are now available that fix multiple security vulnerabilities which may allow remote attackers to exploit these issues by sending carefully-crafted packets to a victim. If the

Tcpdump ISAKMP decoding routines flaw | FLSA:1222 | January 31, 2004
Updated tcpdump packages are now available that fix multiple security vulnerabilities which may allow remote attackers to exploit these issues by sending carefully-crafted packets to a victim. If the

Ethereal crash vulnerability | FLSA:1193 | January 31, 2004
Updated ethereal packages are now available that fix multiple security vulnerabilities which may allow attackers to make Ethereal crash by injecting an intentionally malformed packet onto the wire or

Ethereal SMB dissector denial of service | FLSA:1193 | January 31, 2004
Updated ethereal packages are now available that fix multiple security vulnerabilities which may allow attackers to make Ethereal crash by injecting an intentionally malformed packet onto the wire or

Cvs root privileges vuln | FLSA:1207 | January 28, 2004
Updated cvs packages are now available that fix a security vulnerability which may allow cvs to attempt to create files and directories in the root file system, as well as prevent the cvsd from retain

Cvs vuln | FLSA:1207 | January 28, 2004
Updated cvs packages are now available that fix a security vulnerability which may allow cvs to attempt to create files and directories in the root file system, as well as prevent the cvsd from retain

Screen integer signedness error | FLSA:1187 | January 26, 2004
Updated screen packages are now available that fix a security vulnerability which may allow privilege escalation for local users, and possibly remote attacks or getting control of another user's s

Page: 12... 171 172 173 174 175 176 177 178 out of 178

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »