[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

87888

 
 

136

 
 
Paid content will be excluded from the download.

Filter
Matches : 1830 Download | Alert*

This updates fixes two major bugs: - applog subcription/unsubscription needed to get a thread safe usage of applog were buggy and not thread safe themselves. - disabling slog usage form printout level > error was not respected.

A vulnerability has been found in ncpfs which can be exploited by local users to disclose potentially sensitive information, cause a DoS , and potentially gain escalated privileges . Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.

It was discovered php-eaccelerator-0.9.6 did not work properly with open_basedir for php-5.3.2. This advisory upgrades php-eaccelerator to 0.9.6.1 which solves this problem. Update: It was discovered php-eaccelerator-0.9.6 did not work properly with open_basedir for php-5.2.13. This advisory upgrades php-eaccelerator to 0.9.6.1 which solves this problem.

A vulnerability has been found and corrected in libHX: Heap-based buffer overflow in the HX_split function in string.c in libHX before 3.6 allows remote attackers to execute arbitrary code or cause a denial of service via a string that is inconsistent with the expected number of fields . The updated packages have been patched to correct this issue.

Dependency problems was discovered on Mandriva Linux 2009.0 Powerpack x86_64 which prevented the flashplayer and libsmbclient0 packages to install smoothly using MandrivaUpdate. This advisory provides the missing packages.

This update fixes two issues with msec: - some error messages could result in msec trowing an exception instead of logging the corresponding text - security report about group-writable files belonging to gdm user was silenced by default

This update adds a feature to msec to save the log message that would be sent by email into /var/log/security/ to allow consulting it without relying on email system.

A vulnerability was discovered and corrected in krb5: An unauthenticated remote attacker could alter a SAM-2 challenge, affecting the prompt text seen by the user or the kind of response sent to the KDC. Under some circumstances, this can negate the incremental security benefit of using a single-use authentication mechanism token. An unauthenticated remote attacker has a 1/256 chance of forging KR ...

libgpod as shipped with Mandriva 2010.1 does not have support for HAL, the Hardware Abstraction Layer anymore. This is still needed for iPod support in KDE, so the update reenables HAL support.

This update allows msec to properly set special file permissions when changing security levels .


Pages:      Start    164    165    166    167    168    169    170    171    172    173    174    175    176    177    ..   182

© SecPod Technologies