Fedora Linux Distribution
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
Upon receiving specially crafted ISAKMP packets, TCPDUMP would try to read beyondthe end of the packet capture buffer and subsequently crash.
An attacker could create a carefully crafted link such that when opened by a victim it creates or overwrites a file in the victims home directory.
The client for CVS before 1.11.15 allows a remote malicious CVS server to create arbitrary files by using absolute pathnames during checkouts or updates.
Exploiting these bugs may allow remote malicious WebDAV servers to execute arbitrary code.
A cross-site scripting (XSS) vulnerability exists in the admin CGI script for Mailman before 2.1.4.
Ulf Härnhammar discovered two stack buffer overflows and two directory traversal flaws in LHA.
iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface.
Fixes a possible out-of-bounds read in the error message handler.
Fixes a possible out-of-bounds read in the error message handler.
Testing uncovered a bug in older versions of OpenSSL 0.9.6 prior to 0.9.6d that can lead to a denial of service attack (infinite loop).
Several buffer overflows, several temporary file creation vulnerabilities, and one format string vulnerability have been discovered in Midnight Commander.
This patch fixes a large variety of vulnerabilities in the 2.4.22 kernel, including some related to journaling filesystems.
An updated utempter package that fixes a potential symlink vulnerability is now available.
This is a backport of an older patch which prevented crafted URLs from being able to ignore Squid's ACLs.
This patch fixes vulnerabilities that may allow execution of arbitrary code, as well as other bugfixes.
This patch fixes a variety of buffer overflow and information leak vulnerabilities.
This update includes OpenSSL packages to fix two security issues affecting OpenSSL 0.9.7a which allow denial of service attacks.
An integer overflow in ls in the fileutils or coreutils packages may allow local users to cause a denial of service or execute arbitrary code.