Download
| Alert*
|
oval:org.secpod.oval:def:300776
Security issues were identified and fixed in firefox 3.0.x: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla"s string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code con ... oval:org.secpod.oval:def:101979 Mugshot works with the server at mugshot.org to extend the panel, web browser, music player and other parts of the desktop with a live social experience and interoperation with online services you and your friends use. It"s fun and easy. oval:org.secpod.oval:def:102306 Ruby/GNOME2 is a Ruby binding of libgnome/libgnomeui-2.x. oval:org.secpod.oval:def:101852 Google Gadgets for Linux provides a platform for running desktop gadgets under Linux, catering to the unique needs of Linux users. It can run, without modification, many Google Desktop gadgets as well as the Universal Gadgets on iGoogle. oval:org.secpod.oval:def:200532 SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey creates temporary file names for downloaded files. If a local attacker knows the name of a file SeaMonkey is going to download, they can replace the contents o ... oval:org.secpod.oval:def:101459 Epiphany Extensions is a collection of extensions for Epiphany, the GNOME web browser. oval:org.secpod.oval:def:102302 Miro is a free application that turns your computer into an internet TV video player. This release is still a beta version, which means that there are some bugs, but we"re moving quickly to fix them and will be releasing bug fixes on a regular basis. oval:org.secpod.oval:def:200413 SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey creates temporary file names for downloaded files. If a local attacker knows the name of a file SeaMonkey is going to download, they can replace the contents o ... oval:org.secpod.oval:def:101969 Yelp is the help browser for the GNOME desktop. It is designed to help you browse all the documentation on your system in one central tool, including traditional man pages, info pages and documentation written in DocBook. oval:org.secpod.oval:def:101600 This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. oval:org.secpod.oval:def:201972 The kdelibs packages provide libraries for the K Desktop Environment . A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the use ... oval:org.secpod.oval:def:101569 XULRunner provides the XUL Runtime environment for Gecko applications. oval:org.secpod.oval:def:300140 Multiple vulnerabilities was discovered and corrected in kdelibs4: KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \"\0\" character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL se ... oval:org.secpod.oval:def:700399 Alin Rad Pop discovered a heap-based buffer overflow in Firefox when it converted strings to floating point numbers. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking ... oval:org.secpod.oval:def:89045331 mono-core was updated to fix the following vulnerabilities: - CVE-2009-0689: Remote attackers could cause a denial of service and possibly arbitrary code execution through the string-to-double parser implementation - CVE-2012-3543: Remote attackers could cause a denial of service through increased ... oval:org.secpod.oval:def:102097 gnome-web-photo contains a thumbnailer that will be used by GNOME applications, including the file manager, to generate screenshots of web pages. oval:org.secpod.oval:def:102282 The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python. oval:org.secpod.oval:def:300671 Security issues were identified and fixed in firefox 3.0.x: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla"s string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code con ... oval:org.secpod.oval:def:3814 The host is installed with Apple Mac OS X before 10.6.3 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle floating point binary to text conversion. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:200473 SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey creates temporary file names for downloaded files. If a local attacker knows the name of a file SeaMonkey is going to download, they can replace the contents o ... oval:org.secpod.oval:def:101358 This module allows you to use the Mozilla embedding widget from Perl. oval:org.secpod.oval:def:102447 Yelp is the Gnome 2 help/documentation browser. It is designed to help you browse all the documentation on your system in one central tool. oval:org.secpod.oval:def:101631 XULRunner provides the XUL Runtime environment for Gecko applications. oval:org.secpod.oval:def:700421 A buffer overflow was found in the KDE libraries when converting a string to a floating point number. If a user or application linked against kdelibs were tricked into processing crafted input, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the ... oval:org.secpod.oval:def:101990 The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python. oval:org.secpod.oval:def:102043 The Eclipse platform is designed for building integrated development environments , server-side applications, desktop applications, and everything in between. oval:org.secpod.oval:def:102150 Galeon is a web browser built around Gecko and Necko . It"s a GNOME web browser, designed to take advantage of as many GNOME technologies as makes sense. Galeon was written to do just one thing - browse the web. oval:org.secpod.oval:def:200340 The kdelibs packages provide libraries for the K Desktop Environment . A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the use ... oval:org.secpod.oval:def:101746 Google Gadgets for Linux provides a platform for running desktop gadgets under Linux, catering to the unique needs of Linux users. It can run, without modification, many Google Desktop gadgets as well as the Universal Gadgets on iGoogle. oval:org.secpod.oval:def:500585 The kdelibs packages provide libraries for the K Desktop Environment . A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the use ... oval:org.secpod.oval:def:101622 This is an evolution plugin which enables evolution to read rss feeds. oval:org.secpod.oval:def:102315 This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL. oval:org.secpod.oval:def:101741 Galeon is a web browser built around Gecko and Necko . It"s a GNOME web browser, designed to take advantage of as many GNOME technologies as makes sense. Galeon was written to do just one thing - browse the web. oval:org.secpod.oval:def:101581 An easy-to-use telnet client mainly targets BBS users. PCMan X is a newly developed GPL"d version of PCMan, a full-featured famous BBS client formerly designed for MS Windows only. It aimed to be an easy-to-use yet full-featured telnet client facilitating BBS browsing with the ability to process dou ... oval:org.secpod.oval:def:200507 The kdelibs packages provide libraries for the K Desktop Environment . A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the use ... oval:org.secpod.oval:def:300577 Security issues were identified and fixed in firefox 3.5.x: Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla"s string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code con ... oval:org.secpod.oval:def:109898 The Mono runtime implements a JIT engine for the ECMA CLI virtual machine oval:org.secpod.oval:def:202192 The kdelibs packages provide libraries for the K Desktop Environment . A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the use ... oval:org.secpod.oval:def:200291 Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. nspr provides the Netscape Portable Runtime . A flaw was found in the way Firefox handles form history. A malicious web page could steal saved form data by synthesizing input events, ca ... oval:org.secpod.oval:def:101934 Epiphany Extensions is a collection of extensions for Epiphany, the GNOME web browser. oval:org.secpod.oval:def:500630 Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. nspr provides the Netscape Portable Runtime . A flaw was found in the way Firefox handles form history. A malicious web page could steal saved form data by synthesizing input events, ca ... oval:org.secpod.oval:def:101930 Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly fully customizable. This package uses Gecko for HTML rendering engine. oval:org.secpod.oval:def:101897 This module allows you to use the Mozilla embedding widget from Perl. oval:org.secpod.oval:def:101898 This is an evolution plugin which enables evolution to read rss feeds. oval:org.secpod.oval:def:101768 gnome-web-photo contains a thumbnailer that will be used by GNOME applications, including the file manager, to generate screenshots of web pages. oval:org.secpod.oval:def:101886 Epiphany is a simple GNOME web browser based on the Mozilla rendering engine. oval:org.secpod.oval:def:500642 SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey creates temporary file names for downloaded files. If a local attacker knows the name of a file SeaMonkey is going to download, they can replace the contents o ... oval:org.secpod.oval:def:102339 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. oval:org.secpod.oval:def:101524 This package provides Mono bindings for the Gecko engine, through an easy-to-use widget that will allow you to embed a Mozilla browser window into your Gtk# application. oval:org.secpod.oval:def:200605 SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey creates temporary file names for downloaded files. If a local attacker knows the name of a file SeaMonkey is going to download, they can replace the contents o ... oval:org.secpod.oval:def:102298 Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. oval:org.secpod.oval:def:600017 Maksymilian Arciemowicz discovered a buffer overflow in the internal string routines of the KDE core libraries, which could lead to the execution of arbitrary code. For the stable distribution , this problem has been fixed in version 4:3.5.10.dfsg.1-0lenny4. For the unstable distribution , this prob ... oval:org.secpod.oval:def:102408 The plugins and utilities in this package integrate seahorse into the GNOME desktop environment and allow users to perform operations from applications like nautilus or gedit. oval:org.secpod.oval:def:102527 Blam is a tool that helps you keep track of the growing number of news feeds distributed as RSS. Blam lets you subscribe to any number of feeds and provides an easy to use and clean interface to stay up to date oval:org.secpod.oval:def:200311 Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. nspr provides the Netscape Portable Runtime . A flaw was found in the way Firefox handles form history. A malicious web page could steal saved form data by synthesizing input events, ca ... oval:org.secpod.oval:def:101797 Epiphany is the web browser for the GNOME desktop. Its goal is to be simple and easy to use. Epiphany ties together many GNOME components in order to let you focus on the Web content, instead of the browser application. Epiphany is extensible through a plugin system. Existing plugins can be found in ... oval:org.secpod.oval:def:101558 This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. oval:org.secpod.oval:def:102007 The hulalop library contains a widget for embedding mozilla. It"s based on pyxpcom and give access to the whole mozilla xpcom API through python. oval:org.secpod.oval:def:89045203 mono-core was updated to fix the following vulnerabilities: - CVE-2009-0689: Remote attackers could cause a denial of service and possibly arbitrary code execution through the string-to-double parser implementation. - CVE-2012-3543: Remote attackers could cause a denial of service through increased ... oval:org.secpod.oval:def:101678 Miro is a free application that turns your computer into an internet TV video player. This release is still a beta version, which means that there are some bugs, but we"re moving quickly to fix them and will be releasing bug fixes on a regular basis. oval:org.secpod.oval:def:102401 Ruby/GNOME2 is a Ruby binding of libgnome/libgnomeui-2.x. oval:org.mitre.oval:def:6826 Maksymilian Arciemowicz discovered a buffer overflow in the internal string routines of the KDE core libraries, which could lead to the execution of arbitrary code. oval:org.secpod.oval:def:300005 Multiple vulnerabilities was discovered and corrected in kdelibs4: KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \"\0\" character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL se ... oval:org.secpod.oval:def:101823 Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly fully customizable. This package uses Gecko for HTML rendering engine. oval:org.secpod.oval:def:102479 Blam is a tool that helps you keep track of the growing number of news feeds distributed as RSS. Blam lets you subscribe to any number of feeds and provides an easy to use and clean interface to stay up to date oval:org.secpod.oval:def:101821 An easy-to-use telnet client mainly targets BBS users. PCMan X is a newly developed GPL"d version of PCMan, a full-featured famous BBS client formerly designed for MS Windows only. It aimed to be an easy-to-use yet full-featured telnet client facilitating BBS browsing with the ability to process dou ... oval:org.secpod.oval:def:101384 A gtk2 chm document viewer. It uses chmlib to extract files. It uses gecko to display pages. It supports displaying multilingual pages due to gecko. It features bookmarks and tabs. The tabs could be used to jump inside the chm file conveniently. Its UI is clean and handy, also is well localized. It ... oval:org.secpod.oval:def:300796 Mandriva Linux 2008.0 was released with KDE version 3.5.7. This update upgrades KDE in Mandriva Linux 2008.0 to version 3.5.10, which brings many bugfixes, overall improvements and many security fixes. kdegraphics contains security fixes for CVE-2009-3603,3604,3605,3606,3608,3609,0146,0147,0165,0166 ... oval:org.secpod.oval:def:203220 PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the way PHP parsed floating point numbers from their text representation. If a PHP application converted untrusted input strings to numbers, an attacker able to provide such inpu ... oval:org.secpod.oval:def:501208 PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A buffer overflow flaw was found in the way PHP parsed floating point numbers from their text representation. If a PHP application converted untrusted input strings to numbers, an attacker able to provide such inpu ... oval:org.secpod.oval:def:1500403 Updated php packages that fix two security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Critical security impact. Common Vulnerability Scoring System base scores, which give detailed severity ratings, are available for e ... oval:org.secpod.oval:def:500315 Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running ... oval:org.secpod.oval:def:100242 SeaMonkey is an all-in-one Internet application suite. It includes a browser, mail/news client, IRC client, JavaScript debugger, and a tool to inspect the DOM for web pages. It is derived from the application formerly known as Mozilla Application Suite. oval:org.secpod.oval:def:200060 Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running ... oval:org.secpod.oval:def:200104 Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running ... oval:org.secpod.oval:def:201958 Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running ... oval:org.secpod.oval:def:700124 Several flaws were discovered in the JavaScript engine of Thunderbird. If a user had JavaScript enabled and were tricked into viewing malicious web content, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Jos ... oval:org.secpod.oval:def:301166 A vulnerability has been found and corrected in krb5: Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service via a request from a kadmin client that sends an invalid API version numb ... oval:org.mitre.oval:def:8171 Several vulnerabilities have been discovered in the NetScape Portable Runtime Library, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: A programming error in the string handling code may lead to the execution of a ... oval:org.secpod.oval:def:500415 Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running ... oval:org.secpod.oval:def:201889 Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running ... oval:org.secpod.oval:def:600362 Several vulnerabilities have been discovered in the NetScape Portable Runtime Library, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-1563 A programming error in the string handling code may lead to the ... oval:org.mitre.oval:def:6528 Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5. ... |
