This reference map lists the various references for MLIST and
provides the associated CVE entries or candidates. It uses data from
CVE version 20061101 and candidates that were active as of
2012-02-08.
Note that the list of references may not be complete.
| MLIST:20040507 Bug in IO bitmap handling? Probably exploitable (2.6.5) |
CVE-2004-2536
|
| MLIST:20040507 Re: Bug in IO bitmap handling? Probably exploitable (2.6.5) |
CVE-2004-2536
|
| MLIST:20041026 [Mimedefang] SECURITY: Patch for MIME-tools |
CVE-2004-1098
|
| MLIST:20050422 Chora 1.2.3 (final) |
CVE-2005-1317
|
| MLIST:20070902 Oops in pwc v4l driver |
CVE-2007-5093
|
| MLIST:20070903 Re: Oops in pwc v4l driver |
CVE-2007-5093
|
| MLIST:20071021 [Xen-ia64-devel] PATCH: check r2 value for VTi mov rr[r3]=r2 |
CVE-2007-6207
|
| MLIST:VIM 20070130 Source VERIFY: nsGalPHP RFI |
CVE-2007-0573
|
| MLIST:[0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T |
CVE-2004-1627
|
| MLIST:[ANNOUNCE] 20070907 balsa-2.3.20 released |
CVE-2007-5007
|
| MLIST:[AWFFULL] 20070123 Regarding the fixes in 3.7.2 |
CVE-2007-0510
|
| MLIST:[AWFFULL] 20070505 awffull 3.7.1 bug with search string keywords |
CVE-2007-3299
|
| MLIST:[AWFFULL] 20070507 Announcing AWFFull v3.7.4 |
CVE-2007-3299
|
| MLIST:[Acl-Devel] 20050205 [FIX] Long-standing xattr sharing bug |
CVE-2005-2801
|
| MLIST:[Announce] 20080326 GnuPG 1.4.9 released |
CVE-2008-1530
|
| MLIST:[Announce] 20090723 ANNOUNCE: strongswan-2.8.11 and strongswan-4.2.17 released |
CVE-2009-2661
|
| MLIST:[Announcements] 20071206 MySQL 5.0.51 has been released |
CVE-2007-5969
|
| MLIST:[Backup-manager-commits] 20070102 r528 - in backup-manager/trunk: . doc lib man po |
CVE-2007-2766
|
| MLIST:[Bug-tar] 20060220 tar 1.15.90 released |
CVE-2006-0300
|
| MLIST:[Buildbot-devel] 20090812 [SECURITY ALERT] Cross-site scripting vulnerability |
CVE-2009-2959
|
| MLIST:[Buildbot-devel] 20090813 Re: Cross-site scripting vulnerability |
CVE-2009-2967
|
| MLIST:[Cache-News] 20040303 Security Alert |
CVE-2004-2683
|
| MLIST:[Cache-News] 20040305 Security Alert Correction |
CVE-2004-2683
|
| MLIST:[Cache-News] 20040309 Security Alert - %template |
CVE-2004-2684
|
| MLIST:[Cache-News] 20040310 Updated Security Alert - %template |
CVE-2004-2684
|
| MLIST:[Cache-News] 20070718 Security Alert: User passed parameter values via CSP |
CVE-2007-4427
|
| MLIST:[Clamav-announce] 20070530 announcing ClamAV 0.90.3 |
CVE-2007-3023
CVE-2007-3024
CVE-2007-3025
CVE-2007-3122
CVE-2007-3123
|
| MLIST:[Cyrus-CVS] 20090902 src/sieve by brong |
CVE-2009-2632
|
| MLIST:[Dailydave] 20040323 dtlogin advisory |
CVE-2004-0368
|
| MLIST:[Dailydave] 20040514 Mozilla bug might even get fixed! |
CVE-2004-0478
|
| MLIST:[Dailydave] 20050704 !!! pre-authenticated remote code inclusion vulnerability inside phppgadmin !!! |
CVE-2005-2256
|
| MLIST:[Dailydave] 20050714 SPIKE actually scores. |
CVE-2005-1218
|
| MLIST:[Dailydave] 20051129 Webmin miniserv.pl format string vulnerability |
CVE-2005-3912
|
| MLIST:[Dailydave] 20060105 WMF goes away :< |
CVE-2006-0106
|
| MLIST:[Dailydave] 20060203 ProtoVer vs Lotus Domino Server 7.0 |
CVE-2006-0580
|
| MLIST:[Dailydave] 20060207 ProFTPD bug |
CVE-2005-4816
|
| MLIST:[Dailydave] 20060208 Sun Directory Server 5.2 fun |
CVE-2006-0647
|
| MLIST:[Dailydave] 20060210 ??? Sun Directory Server 5.2 fun ??? |
CVE-2006-0647
|
| MLIST:[Dailydave] 20060211 IBM Tivoli Directory Server 0day |
CVE-2006-0717
|
| MLIST:[Dailydave] 20060213 eddy 0day |
CVE-2006-0710
|
| MLIST:[Dailydave] 20060214 MailSite (WorldMail) fun |
CVE-2006-0790
|
| MLIST:[Dailydave] 20060221 word dos 4fun |
CVE-2006-0935
|
| MLIST:[Dailydave] 20060226 fun with FreeBSD kernel |
CVE-2006-0900
|
| MLIST:[Dailydave] 20060430 Non disclosure from security vendors: Truecrypt exemple |
CVE-2006-2183
|
| MLIST:[Dailydave] 20060721 GnuPG 1.4.4 fun |
CVE-2006-3746
|
| MLIST:[Dailydave] 20061208 Madwifi SIOCSIWSCAN vulnerability (CVE-2006-6332) |
CVE-2006-6332
|
| MLIST:[Dailydave] 20080101 0day RealPlayer exploit demo |
CVE-2008-0098
|
| MLIST:[Darklab] 20060131 SAP security/auditing |
CVE-2005-4815
|
| MLIST:[Darklab] 20060905 SAP security/auditing |
CVE-2005-4815
|
| MLIST:[Darklab] 20060907 Re: SAP security/auditing |
CVE-2005-4815
|
| MLIST:[Darklab] 20060908 Re: SAP security/auditing |
CVE-2005-4815
|
| MLIST:[Dbmail-dev] 20071216 [DBMail 0000662]: Ability to bypass authentication. |
CVE-2007-6714
|
| MLIST:[Dbmail] 20030725 WARNING SECURITY FLAW IN IMAPSERVER |
CVE-2003-1523
|
| MLIST:[Debian-audit] 20041229 More temporary filenames/dirs related bugs |
CVE-2004-2605
|
| MLIST:[Dovecot-news] 20061119 Security hole #2: Off-by-one buffer overflow with mmap_disable=yes |
CVE-2006-5973
|
| MLIST:[Dovecot-news] 20071221 Security hole #4: Specific LDAP + auth cache configuration may mix up user logins |
CVE-2007-6598
|
| MLIST:[Dovecot-news] 20071229 v1.0.10 released |
CVE-2007-6598
|
| MLIST:[Dovecot-news] 20080309 Security hole #6: Some passdbs allowed users to log in without a valid password |
CVE-2008-1218
|
| MLIST:[Dovecot-news] 20080309 v1.0.13 and v1.1.rc3 released |
CVE-2008-1218
|
| MLIST:[Dovecot-news] 20080504 v1.0.11 released |
CVE-2008-1199
|
| MLIST:[Dovecot-news] 20081005 v1.1.4 released |
CVE-2008-4577
CVE-2008-4578
|
| MLIST:[Dovecot-news] 20081030 v1.1.6 released |
CVE-2008-4907
|
| MLIST:[Dovecot-news] 20090914 Security holes in CMU Sieve plugin |
CVE-2009-2632
CVE-2009-3235
|
| MLIST:[Dovecot-news] 20091119 1.0.rc15 released |
CVE-2006-5973
|
| MLIST:[Dovecot] 20050303 hanging imap... and users getting other users' emails! |
CVE-2007-5794
|
| MLIST:[Dovecot] 20050409 Authentication and the wrong mailbox? |
CVE-2007-5794
|
| MLIST:[Dovecot] 20060208 1.0beta3 released |
CVE-2006-0730
|
| MLIST:[Dovecot] 20081117 ManageSieve SECURITY hole: virtual users can edit scripts of other virtual users (all versions) |
CVE-2008-5301
|
| MLIST:[Ekiga-list] 20070213 Ekiga 2.0.5 available |
CVE-2007-1006
|
| MLIST:[Ethereal-dev] 20040416 Possibly incorrect CVE entry CAN-2004-0367 |
CVE-2004-0367
|
| MLIST:[Ethereal-users] 20040503 Re: HotSIP sip-messages crasching ethereal |
CVE-2004-0504
|
| MLIST:[Evolution-hackers] 20070619 Evolution 2.11.4 , Evolution-Data-Server 1.11.4 , GtkHTML 3.15.4 and Evolution-Exchange 2.11.4 released |
CVE-2007-3257
|
| MLIST:[Exim] 20021204 Minor security problem in both Exim 3 and 4 |
CVE-2002-1381
|
| MLIST:[Exim] 20030814 Minor security bug |
CVE-2003-0743
|
| MLIST:[Exim] 20030815 Minor security bug |
CVE-2003-0743
|
| MLIST:[Forensics] 20050511 DCO discovery & removal, capabilities of imaging & wiping tools |
CVE-2005-1578
|
| MLIST:[FreeNX-kNX] 20050217 Security: Serious bug in authority handling found and fixed |
CVE-2005-0579
|
| MLIST:[Ganglia-developers] 20090113 patches for: [Sec] Gmetad server BoF and network overload + [Feature] multiple requests per conn on interactive port |
CVE-2009-0241
CVE-2009-0242
|
| MLIST:[Ganglia-developers] 20090123 Re: CVE |
CVE-2009-0242
|
| MLIST:[Gnump3d-users] 20051028 New release - security fixes. |
CVE-2005-3123
CVE-2005-3424
|
| MLIST:[Gnupg-devel] 20060725 Re: [Dailydave] GnuPG 1.4.4 fun |
CVE-2006-3746
|
| MLIST:[Gpsd-announce] 20050127 Announcing release 2.8 of gpsd |
CVE-2004-1388
|
| MLIST:[Greasemonkey] 20050718 greasemonkey for secure data over insecure networks / sites |
CVE-2005-2455
|
| MLIST:[Horde-announce] 20051113 Horde 2.2.9 (final) |
CVE-2005-3570
|
| MLIST:[HostAP] 20050213 wpa_supplicant - new stable releases v0.3.8 and v0.2.7 |
CVE-2005-0470
|
| MLIST:[IRCServices] 20070324 Regarding Founder Passwords |
CVE-2007-3246
|
| MLIST:[IRCServices] 20070324 Services 5.0.60 released |
CVE-2007-3246
|
| MLIST:[IRCServices] 20070608 NS REGISTER and LINK |
CVE-2007-3245
|
| MLIST:[IRCServices] 20070610 NS REGISTER and LINK |
CVE-2007-3245
|
| MLIST:[IRCServices] 20070610 Services 5.1pre3 / 5.0.62 released |
CVE-2007-3245
|
| MLIST:[IRCServices] 20071121 Services 5.0.63 released |
CVE-2007-6122
|
| MLIST:[IRCServices] 20071121 Services 5.1.7 released |
CVE-2007-6122
|
| MLIST:[IRCServices] 20071121 Services 5.1.9 released |
CVE-2007-6123
|
| MLIST:[ISN] 20070326 Windows weakness can lead to network traffic hijacks |
CVE-2007-1692
|
| MLIST:[ISSForum] 20040128 Third party BlackICE advisory |
CVE-2004-2125
|
| MLIST:[Info-gnu-radius] 20040915 GNU Radius 1.2.94. |
CVE-2004-0849
|
| MLIST:[Ipsec-tools-devel] 20070406 Ipsec-tools 0.6.7 released |
CVE-2007-1841
|
| MLIST:[KVIrc] 20100517 Proposal for a stable release of kvirc4 |
CVE-2010-2451
CVE-2010-2452
|
| MLIST:[Libguestfs] 20101019 CVE-2010-3851libguestfs:missing disk format specifier when adding a disk |
CVE-2010-3851
|
| MLIST:[Libguestfs] 20101021 [PATCH 0/2] First part of fix for CVE-2010-3851 |
CVE-2010-3851
|
| MLIST:[Libguestfs] 20101022 [PATCH 0/8 v2] Complete fix for CVE-2010-3851. |
CVE-2010-3851
|
| MLIST:[Logwatch-devel] 20110216 Remote command execution issue with root privileges |
CVE-2011-1018
|
| MLIST:[Lurker-users] 20060302 Serious security vulnerabilities found |
CVE-2006-1062
CVE-2006-1063
CVE-2006-1064
|
| MLIST:[MPlayer-announce] 20070605 MPlayer 1.0rc1try3 released |
CVE-2007-2948
|
| MLIST:[Macsec] 20011229 MacOSX ppp |
CVE-2001-1565
|
| MLIST:[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates |
CVE-2007-4985
CVE-2007-4986
CVE-2007-4987
CVE-2007-4988
|
| MLIST:[Mailman-Announce] 20031231 RELEASED Mailman 2.1.4 |
CVE-2003-0965
|
| MLIST:[Mailman-Announce] 20040208 RELEASED: Mailman 2.0.14 patch-only release |
CVE-2003-0991
|
| MLIST:[Mailman-Announce] 20040515 RELEASED Mailman 2.1.5 |
CVE-2004-0412
|
| MLIST:[Mailman-Announce] 20060407 Released: Mailman 2.1.8 release candidate |
CVE-2006-1712
|
| MLIST:[Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9 |
CVE-2006-2191
CVE-2006-2941
CVE-2006-3636
CVE-2006-4624
|
| MLIST:[Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released) |
CVE-2008-0564
|
| MLIST:[Mailman-Users] 20050912 Uncaught runner exception: 'utf8' codeccan'tdecode bytes in position 1-4: invalid data |
CVE-2005-3573
|
| MLIST:[MediaWiki-announce] 20060327 MediaWiki 1.5.8, 1.4.15 released [SECURITY] |
CVE-2006-1498
|
| MLIST:[MediaWiki-announce] 20060606 MediaWiki 1.6.7 released |
CVE-2006-2895
|
| MLIST:[MediaWiki-announce] 20070204 MediaWiki 1.9.2 released |
CVE-2007-0788
|
| MLIST:[MediaWiki-announce] 20070910 MediaWiki 1.11.0, 1.10.2, 1.9.4, 1.8.5 released |
CVE-2007-4828
CVE-2007-4883
|
| MLIST:[MediaWiki-announce] 20080124 MediaWiki 1.11.1, 1.10.3, 1.9.5 released |
CVE-2008-0460
|
| MLIST:[MediaWiki-announce] 20080307 MediaWiki 1.11.2 released (security) |
CVE-2008-1318
|
| MLIST:[MediaWiki-announce] 20081002 MediaWiki 1.13.2, 1.12.1 security update |
CVE-2008-4408
|
| MLIST:[MediaWiki-announce] 20090207 MediaWiki releases: security update and new major branch |
CVE-2009-0737
|
| MLIST:[MediaWiki-announce] 20100303 MediaWiki security update: 1.15.2 |
CVE-2010-1189
CVE-2010-1190
|
| MLIST:[MediaWiki-announce] 20100528 MediaWiki security update: 1.15.4 and 1.16.0beta3 |
CVE-2010-1647
CVE-2010-1648
|
| MLIST:[MediaWiki-announce] 20110104 MediaWiki security release 1.16.1 |
CVE-2011-0003
|
| MLIST:[MediaWiki-announce] 20110201 MediaWiki security release 1.16.2 |
CVE-2011-0047
CVE-2011-0537
|
| MLIST:[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2 |
CVE-2007-6612
|
| MLIST:[Mongrel] 20071229 Regarding the 1.1.3 security release |
CVE-2007-6612
|
| MLIST:[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2) |
CVE-2007-6612
|
| MLIST:[Mono-dev] 20080726 [PATCH] HTML encode attributes that might need encoding |
CVE-2008-3422
|
| MLIST:[Monotone-devel] 20060308 [ANNOUNCE] Monotone 0.25.2 -- security fix release |
CVE-2006-1166
|
| MLIST:[Nano-devel] 20100407 New prerelease for security tweaks |
CVE-2010-1160
CVE-2010-1161
|
| MLIST:[Ntop-dev] 20050331 Minor security issue w/ ntop.init (RedHat Packages directory) |
CVE-2005-3387
|
| MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.4.4 available |
CVE-2007-1507
|
| MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.5.17 release available |
CVE-2007-1507
|
| MLIST:[OpenAFS-announce] 20070320 OpenAFS Security Advisory 2007-001: privilege escalation in Unix-based clients |
CVE-2007-1507
|
| MLIST:[OpenAFS-announce] 20071220 OpenAFS Security Advisory 2007-003: denial of service in OpenAFS fileserver |
CVE-2007-6599
|
| MLIST:[OpenBSD] 20011202 Code that crashes kernel at will + proposed patch |
CVE-2001-1559
|
| MLIST:[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs |
CVE-2007-5934
|
| MLIST:[Pcsclite-cvs-commit] 20101103 r5370 - /trunk/PCSC/src/atrhandler.c |
CVE-2010-4531
|
| MLIST:[Pen-Test] 20051104 Paros 3.2.7 release |
CVE-2005-4668
|
| MLIST:[Qemu-devel] 20070428 Qemu crashes on AAM 0 |
CVE-2007-1366
|
| MLIST:[Qemu-devel] 20070429 Re: Qemu crashes on AAM 0 |
CVE-2007-1366
|
| MLIST:[Qemu-devel] 20080428 [4277] add format= to drive options (CVE-2008-2004) |
CVE-2008-2004
|
| MLIST:[Qt-interest] 20020915 assistant leaves port unfiltered |
CVE-2002-1883
|
| MLIST:[Rt-announce] 20080623 Security vulnerability in RT 3.0 and up |
CVE-2008-3502
|
| MLIST:[SAP DB Dev] 20030422 Security Alert: Development Tools |
CVE-2003-1033
|
| MLIST:[ScryMUD] 20070223 ScryMUD 2.1.11 (stable) has been released. |
CVE-2007-1098
|
| MLIST:[Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages |
CVE-2007-3108
CVE-2007-4572
CVE-2007-5116
CVE-2007-5135
CVE-2007-5191
CVE-2007-5360
CVE-2007-5398
|
| MLIST:[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1 |
CVE-2005-2090
CVE-2006-7195
CVE-2007-0450
CVE-2007-2788
|
| MLIST:[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates |
CVE-2006-7228
CVE-2007-2052
CVE-2007-4308
CVE-2007-4965
CVE-2007-6015
|
| MLIST:[Security-announce] 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package |
CVE-2007-5497
|
| MLIST:[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package |
CVE-2007-6284
|
| MLIST:[Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus |
CVE-2006-7228
CVE-2007-1660
CVE-2007-5846
CVE-2008-0003
|
| MLIST:[Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix |
CVE-2006-4814
CVE-2007-5001
CVE-2007-6151
CVE-2007-6206
CVE-2008-0007
CVE-2008-1105
CVE-2008-1367
CVE-2008-1375
CVE-2008-1669
|
| MLIST:[Security-announce] 20081030 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff |
CVE-2008-3281
|
| MLIST:[Security-announce] 20081106 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues |
CVE-2008-4281
CVE-2008-4915
|
| MLIST:[Security-announce] 20090710 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl |
CVE-2009-0034
CVE-2009-0037
CVE-2009-1185
|
| MLIST:[Server-cvs] 20070131 protocol/rtsp rtspprot.cpp,1.80,1.81 |
CVE-2006-6026
|
| MLIST:[Shorewall-announce] 20040628 URGENT: Shorewall Security Vulnerability |
CVE-2004-0647
|
| MLIST:[Siteframe-Announce] 20051030 URGENT: additional security vulnerability, release 3.2.2 |
CVE-2005-4824
|
| MLIST:[Siteframe-Announce] 20060621 WARNING: Security Vulnerability identified in Siteframe 3.x |
CVE-2005-1965
|
| MLIST:[Snort-announce] 20011129 Snort 1.8.3 Released |
CVE-2001-1558
|
| MLIST:[Snort-devel] 20060531 Snort Uricontent Bypass Vulnerability |
CVE-2006-2769
|
| MLIST:[Speex-dev] 20080406 libfishsound 0.9.1 Release |
CVE-2008-1686
|
| MLIST:[Swfdec] 20080409 Swfdec 0.6.4 released |
CVE-2008-1834
|
| MLIST:[TLS] 20050602 ANNOUNCE: PureTLS 0.9b5 |
CVE-2005-4839
|
| MLIST:[TYPO3-announce] 20061219 Pre-announcement for important security update |
CVE-2006-6690
|
| MLIST:[TYPO3-announce] 20061220 TYPO3 Security Bulletin TYPO3-20061220-1: Remote Command Execution in TYPO3 |
CVE-2006-6690
|
| MLIST:[Trac] 20051205 SECURITY: Trac 0.9.2 Released |
CVE-2005-4065
|
| MLIST:[Uim] 20050928 uim 0.5.0.1 released |
CVE-2005-3149
|
| MLIST:[Uim] 20050928 uim-0.4.9.1 released |
CVE-2005-3149
|
| MLIST:[Unbound-users] 20091007 Release of unbound 1.3.4 |
CVE-2009-3602
|
| MLIST:[Users] 20070822 New version: 0.8.3 beta |
CVE-2007-4500
CVE-2007-4501
|
| MLIST:[Users] 20070822 SECURITY: root privilege escalation / trivial reveal of stored passwords |
CVE-2007-4500
CVE-2007-4501
|
| MLIST:[Users] 20070823 New version: 0.8.3 beta |
CVE-2007-4500
CVE-2007-4501
|
| MLIST:[VIM] 20070821 Recent DB2 Vulnerabilities |
CVE-2007-4270
CVE-2007-4271
CVE-2007-4272
CVE-2007-4273
CVE-2007-4275
CVE-2007-4276
CVE-2007-4417
CVE-2007-4418
CVE-2007-4423
|
| MLIST:[VIM] 20070911 MIL 4383 |
CVE-2007-4817
|
| MLIST:[VIM] 20100203 Re: disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection |
CVE-2010-0158
|
| MLIST:[VIM] 20100203 disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection |
CVE-2010-0158
|
| MLIST:[VIM] 20101109 osTicket 1.6 - Local File Inclusion |
CVE-2010-4634
|
| MLIST:[VOIPSEC] 20070319 Asterisk SDP DOS vulnerability |
CVE-2007-1561
CVE-2007-1594
|
| MLIST:[VOIPSEC] 20071216 Trixbox Arbitrary Command Execution Vulnerability |
CVE-2007-6424
|
| MLIST:[VOIPSEC] 20071219 Trixbox Arbitrary Command Execution Vulnerability |
CVE-2007-6424
|
| MLIST:[VOIPSEC] 20071219 trixbox vuln (CVE-2007-6424) - PoC exploit code |
CVE-2007-6424
|
| MLIST:[VOIPSEC] 20071219 trixbox vulnerability fluff |
CVE-2007-6424
|
| MLIST:[Vortex] 20070530 [ANN] Vortex Library 1.0.3 "Hands open release" is ready! |
CVE-2007-3046
|
| MLIST:[Vserver] 20031218 SMP oops 2.4.23 v1.22 |
CVE-2003-1288
|
| MLIST:[Vserver] 20031219 Re: SMP oops 2.4.23 v1.22 |
CVE-2003-1288
|
| MLIST:[Vserver] 20031220 Re: SMP oops 2.4.23 v1.22 |
CVE-2003-1288
|
| MLIST:[Vserver] 20050108 [Advisory] procfs in vserver |
CVE-2004-2613
|
| MLIST:[Vserver] 20060428 [SECURITY] ccaps not limited to root inside a guest |
CVE-2006-2110
|
| MLIST:[WWW-Mobile-Code] 20030706 can - IIS Version Disclosure |
CVE-2003-1306
|
| MLIST:[Wikitech-l] 20060523 MediaWiki 1.6.5 JavaScript Execution Vulnerability # 2 |
CVE-2006-2611
|
| MLIST:[Xen-devel] 20071029 [PATCH] x86: allow pv guests to disable TSC for applications |
CVE-2007-5907
|
| MLIST:[Xen-devel] 20071031 [PATCH, fixed] x86: fix debug register handling |
CVE-2007-5906
|
| MLIST:[Xen-devel] 20080521 [PATCH] ioemu: Fix PVFB backend to limit frame buffer size |
CVE-2008-1952
|
| MLIST:[Xen-devel] 20090513 [PATCH] linux/i386: hypervisor_callback adjustments |
CVE-2009-1758
|
| MLIST:[Xen-devel] 20110509 Re: Xen security advisory CVE-2011-1583 - pv kernel image validation |
CVE-2011-1583
CVE-2011-3262
|
| MLIST:[Xen-devel] 20110509 Xen security advisory CVE-2011-1583 - pv kernel image validation |
CVE-2011-1583
CVE-2011-3262
|
| MLIST:[Xorg] 20040613 DRI merging |
CVE-2006-6730
|
| MLIST:[Zope-Annce] 20060821 Hotfix for Further reST Integration Issue |
CVE-2006-4684
|
| MLIST:[Zope-announce] 20060706 Serious security problem with Zope 2 |
CVE-2006-3458
|
| MLIST:[Zope-dev] 20090706 zope.html with FCKEditor security fix |
CVE-2009-2265
|
| MLIST:[Zope] 20080812 Script (Python) insecure ? |
CVE-2008-5102
|
| MLIST:[alerts] 20070530 VMS83A_PASRTL-V0100, ECO Kit Release |
CVE-2007-2998
|
| MLIST:[alerts] 20070530 VMS83I_PASRTL-V0100, ECO Kit Release |
CVE-2007-2998
|
| MLIST:[alerts] 20080820 VMS732_SMGRTL-V0100, ECO Kit Release |
CVE-2008-4052
|
| MLIST:[alerts] 20080820 VMS821I_SMGRTL-V0100, ECO Kit Release |
CVE-2008-4052
|
| MLIST:[alerts] 20080820 VMS82A_SMGRTL-V0100, ECO Kit Release |
CVE-2008-4052
|
| MLIST:[alerts] 20080820 VMS831H1I_SMGRTL-V0100, ECO Kit Release |
CVE-2008-4052
|
| MLIST:[alerts] 20080820 VMS83A_SMGRTL-V0100, ECO Kit Release |
CVE-2008-4052
|
| MLIST:[alerts] 20080820 VMS83I_SMGRTL-V0100, ECO Kit Release |
CVE-2008-4052
|
| MLIST:[announce] 20061013 ViewVC 1.0.3 released [SECURITY FIXES] |
CVE-2006-5442
|
| MLIST:[announce] 20070314 Horde 3.1.4 (final) |
CVE-2007-1473
CVE-2007-1474
|
| MLIST:[announce] 20070314 IMP H3 (4.1.4) (final) |
CVE-2007-1515
|
| MLIST:[announce] 20070712 MySQL Community Server 5.0.45 has been released! |
CVE-2007-2691
CVE-2007-2692
CVE-2007-3780
CVE-2007-3781
CVE-2007-3782
|
| MLIST:[announce] 20080109 Horde 3.1.6 (final) |
CVE-2007-6018
CVE-2008-7218
|
| MLIST:[announce] 20080109 Horde Groupware 1.0.3 (final) |
CVE-2007-6018
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080109 Kronolith H3 (2.1.7) (final) |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080109 Mnemo H3 (2.1.2) (final) |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080109 Nag H3 (2.1.4) (final) |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080109 Turba H3 (2.1.6) (final) |
CVE-2008-7218
|
| MLIST:[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final) |
CVE-2007-6018
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080122 Horde 3.2-RC2 |
CVE-2008-7218
|
| MLIST:[announce] 20080122 Kronolith H3 (2.2-RC2) |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080122 Mnemo H3 (2.2-RC2) |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080122 Nag H3 (2.2-RC2) |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080122 Turba H3 (2.2-RC2) |
CVE-2008-7218
|
| MLIST:[announce] 20080206 Horde Groupware 1.1-RC2 |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2 |
CVE-2008-7218
CVE-2008-7219
|
| MLIST:[announce] 20080215 Horde Groupware 1.0.4 (final) |
CVE-2008-0807
|
| MLIST:[announce] 20080215 Horde Groupware Webmail Edition 1.0.5 (final) |
CVE-2008-0807
|
| MLIST:[announce] 20080215 Turba H3 (2.1.7) (final) |
CVE-2008-0807
|
| MLIST:[announce] 20080215 Turba H3 (2.2-RC3) |
CVE-2008-0807
|
| MLIST:[announce] 20080307 Horde Groupware 1.0.5 (final) |
CVE-2008-1284
|
| MLIST:[announce] 20080307 Horde Groupware Webmail Edition 1.0.6 (final) |
CVE-2008-1284
|
| MLIST:[announce] 20080307 Horde 3.1.7 (final) |
CVE-2008-1284
|
| MLIST:[announce] 20080613 Turba H3 (2.2.1) (final) |
CVE-2008-6746
|
| MLIST:[announce] 20081210 Turba 2.3.1 (final) |
CVE-2008-4182
|
| MLIST:[announce] 20090108 NTP 4.2.4p6 Released |
CVE-2009-0021
|
| MLIST:[announce] 20090127 Horde 3.2.4 (final) |
CVE-2009-0931
CVE-2009-0932
|
| MLIST:[announce] 20090127 Horde 3.3.3 (final) |
CVE-2009-0931
CVE-2009-0932
|
| MLIST:[announce] 20090127 Horde Groupware 1.1.5 (final) |
CVE-2009-0931
CVE-2009-0932
|
| MLIST:[announce] 20090127 IMP 4.2.2 (final) |
CVE-2009-0930
|
| MLIST:[announce] 20090127 IMP 4.3.3 (final) |
CVE-2009-0930
|
| MLIST:[announce] 20090705 Passwd H3 (3.1.1) (final) |
CVE-2009-2360
|
| MLIST:[announce] 20091107 CVE-2009-3555 - apache/mod_ssl vulnerability and mitigation |
CVE-2009-3555
|
| MLIST:[announce] 20091208 NTP 4.2.4p8 Released |
CVE-2009-3563
|
| MLIST:[announce] 20091215 Horde 3.3.6 (final) |
CVE-2009-3701
CVE-2009-4363
|
| MLIST:[announce] 20091216 Horde Groupware 1.2.5 (final) |
CVE-2009-3701
CVE-2009-4363
|
| MLIST:[announce] 20091217 Horde Groupware Webmail Edition 1.2.5 (final) |
CVE-2009-3701
CVE-2009-4363
|
| MLIST:[announce] 20100928 DIMP H3 (1.1.5) (final) |
CVE-2010-3693
|
| MLIST:[announce] 20100928 Gollem H3 (1.1.2) (final) |
CVE-2010-3447
|
| MLIST:[announce] 20100928 Horde 3.3.9 (final) |
CVE-2010-3077
CVE-2010-3694
|
| MLIST:[announce] 20100928 Horde Groupware Webmail Edition 1.2.7 (final) |
CVE-2010-3693
CVE-2010-3695
|
| MLIST:[announce] 20100928 IMP H3 (4.3.8) (final) |
CVE-2010-3695
|
| MLIST:[announce] 20110302 [SECURITY] Tomcat 7 ignores @ServletSecurity annotations |
CVE-2011-1088
CVE-2011-1419
|
| MLIST:[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \(CVE-2011-3192\) |
CVE-2011-3192
|
| MLIST:[announce] 20111005 Advisory: mod_proxy reverse proxy exposure (CVE-2011-3368) |
CVE-2011-3368
|
| MLIST:[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability |
CVE-2011-4858
|
| MLIST:[announce] Horde 3.2.3 (final) |
CVE-2008-5917
|
| MLIST:[announce] Horde 3.3.1 (final) |
CVE-2008-5917
|
| MLIST:[apache-announce] 20090808 [ANNOUNCE] Apache ODE 1.3.3 |
CVE-2008-2370
|
| MLIST:[apache-announce] 20100725 [ANNOUNCEMENT] Apache HTTP Server 2.2.16 Released |
CVE-2010-1452
CVE-2010-2068
|
| MLIST:[apache-cvs] 20040307 cvs commit: apache-1.3/src/modules/standard mod_access.c |
CVE-2003-0993
|
| MLIST:[apache-cvs] 20040307 cvs commit: httpd-2.0/modules/ssl ssl_engine_io.c |
CVE-2004-0113
|
| MLIST:[apache-cvs] 20070801 svn commit: r561616 - in /httpd/httpd/trunk: CHANGES |
CVE-2007-3847
|
| MLIST:[apache-db-general] 20100519 [ANNOUNCE] Apache Derby 10.6.1.0 released |
CVE-2009-4269
|
| MLIST:[apache-http-dev] 20070328 Re: [Fwd: iDefense Final Notice [IDEF1445]] |
CVE-2007-1741
CVE-2007-1742
CVE-2007-1743
|
| MLIST:[apache-http-dev] 20070328 [Fwd: iDefense Final Notice [IDEF1445]] |
CVE-2007-1741
CVE-2007-1742
CVE-2007-1743
|
| MLIST:[apache-httpd-announce] 20030120 [ANNOUNCE] Apache 2.0.44 Released |
CVE-2003-0016
|
| MLIST:[apache-httpd-announce] 20051014 Apache HTTP Server 2.0.55 Released |
CVE-2005-2088
|
| MLIST:[apache-httpd-dev] 20020925 CGI bucket needed |
CVE-2002-1850
|
| MLIST:[apache-httpd-dev] 20070622 Re: PID table changes (was Re: svn commit: r547987 - in /httpd/httpd/trunk) |
CVE-2007-3304
|
| MLIST:[apache-httpd-dev] 20070629 Re: [PATCH] pid safety checks for 2.2.x |
CVE-2007-3304
|
| MLIST:[apache-httpd-dev] 20070801 Re: svn commit: r561616 - in /httpd/httpd/trunk: CHANGES modules/proxy/proxy_util.c |
CVE-2007-3847
|
| MLIST:[apache-httpd-dev] 20090423 Includes vs IncludesNoExec security issue - help needed |
CVE-2009-1195
|
| MLIST:[apache-httpd-dev] 20090628 mod_deflate DoS |
CVE-2009-1891
|
| MLIST:[apache-httpd-dev] 20090703 Re: mod_deflate DoS |
CVE-2009-1891
|
| MLIST:[apache-modssl] 20040716 [ANNOUNCE] mod_ssl 2.8.19 for Apache 1.3.31 |
CVE-2004-0700
|
| MLIST:[apache-modssl] 20050902 [ANNOUNCE] mod_ssl 2.8.24-1.3.33 |
CVE-2005-2700
|
| MLIST:[apache] 20101107 [ANNOUNCE] mod_fcgid 2.3.6 is released |
CVE-2010-3872
|
| MLIST:[apr-dev] 20090602 [PATCH] prevent "billion laughs" attack against expat |
CVE-2009-1955
|
| MLIST:[archiva-users] 20101129 Apache Archiva CSRF Vulnerability |
CVE-2010-3449
CVE-2010-4408
|
| MLIST:[audacity-devel] 20090110 Audacity "String_parse::get_nonspace_quoted()" Buffer Overflow |
CVE-2009-0490
|
| MLIST:[automake-patches] 20091128 [PATCH] do not put world-writable directories in distribution tarballs |
CVE-2009-4029
|
| MLIST:[automake] 20091208 CVE-2009-4029 Automake security fix for 'make dist*' |
CVE-2009-4029
|
| MLIST:[automake] 20091208 GNU Automake 1.10.3 released |
CVE-2009-4029
|
| MLIST:[automake] 20091208 GNU Automake 1.11.1 released |
CVE-2009-4029
|
| MLIST:[automake] 20091208 Re: CVE-2009-4029 Automake security fix for 'make dist*' |
CVE-2009-4029
|
| MLIST:[avahi-tickets] 20061106 [Avahi] #69: Avahi needs to check the originating process of netlink messages |
CVE-2006-5461
|
| MLIST:[balsa-list] 20070704 balsa-2.3.17 released |
CVE-2007-1558
|
| MLIST:[bcfg-dev] 20110816 Security flaw in 1.1.x; testers wanted |
CVE-2011-3211
|
| MLIST:[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1 |
CVE-2006-2916
CVE-2006-4447
|
| MLIST:[bind-announce] 20061103 Internet Systems Consortium Security Advisory. [revised] |
CVE-2006-2937
CVE-2006-2940
CVE-2006-4339
|
| MLIST:[bind-announce] 20070125 Internet Systems Consortium Security Advisory. |
CVE-2007-0493
CVE-2007-0494
|
| MLIST:[bind-announce] 20080919 BIND 9.3.5-P2-W2 is now available. |
CVE-2008-4163
|
| MLIST:[bind-announce] 20080919 BIND 9.4.2-P2-W2 is now available. |
CVE-2008-4163
|
| MLIST:[bind-announce] 20080919 BIND 9.5.0-P2-W2 is now available. |
CVE-2008-4163
|
| MLIST:[bind-announce] 20100928 Security Advisory Regarding Unexpected ACL Behavior in BIND 9.7.2 |
CVE-2010-0218
|
| MLIST:[bk-commits-head] 20050319 [PATCH] Fix crash while reading /proc/net/route |
CVE-2005-1041
|
| MLIST:[bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data |
CVE-2005-4881
|
| MLIST:[bluez-devel] 20050804 Possible security vulnerability in hcid when calling pin helper |
CVE-2005-2547
|
| MLIST:[bluez-devel] 20080616 SDP payload processing vulnerability |
CVE-2008-2374
|
| MLIST:[bug-anubis] 20040228 Important security update |
CVE-2004-0353
CVE-2004-0354
|
| MLIST:[bug-binutils] 20060418 [Bug binutils/2584] New: SIGSEGV in strings tool when the file is crafted. |
CVE-2006-2362
|
| MLIST:[bug-coreutils] 20091208 Re: build: distcheck: do not leave a $TMPDIR/coreutils directory behind |
CVE-2009-4135
|
| MLIST:[bug-coreutils] 20091209 [PATCH] doc: NEWS: mention the "make distcheck" vulnerability |
CVE-2009-4135
|
| MLIST:[bug-ed] 20080821 Version 1.0 of GNU ed released |
CVE-2008-3916
|
| MLIST:[bug-gnu-utils] 19990625 Re: bug in gzip: segfault when doing "gzip -t" on a broken file |
CVE-2005-2458
|
| MLIST:[bug-gzip] 20091002 gzip-1.3.13 released [major] |
CVE-2009-2624
|
| MLIST:[bug-patch] 20101230 Directory traversal vulnerability in patch (or dpkg-source) (fwd) |
CVE-2010-4651
|
| MLIST:[bug-wget] 20090922 Release: GNU Wget 1.12 |
CVE-2009-3490
|
| MLIST:[bug-wget] 20100520 Re: security risk of unexpected download filenames |
CVE-2010-2252
|
| MLIST:[bug-wget] 20100520 security risk of unexpected download filenames |
CVE-2010-2252
|
| MLIST:[bug-wget] 20100521 Re: security risk of unexpected download filenames |
CVE-2010-2252
|
| MLIST:[cacti-announce] 20050701 Cacti 0.8.6f Released |
CVE-2005-2148
CVE-2005-2149
|
| MLIST:[cadaver] 20070123 release 0.22.5 |
CVE-2007-0157
|
| MLIST:[cedet-devel] 20120109 Security flaw in EDE |
CVE-2012-0035
|
| MLIST:[cedet-devel] 20120111 CEDET 1.0.1 available online |
CVE-2012-0035
|
| MLIST:[cgiirc-general] 20110207 CGI:IRC 0.5.10 released to fix XSS issue (CVE-2011-0050) |
CVE-2011-0050
|
| MLIST:[cgit] 20110722 [PATCH] Fix potential XSS vulnerability in rename hint |
CVE-2011-2711
|
| MLIST:[cisco-nsp] 20070817 About the posting entitled "Heads up: "sh ip bgp regexp" crashing router" |
CVE-2007-4430
|
| MLIST:[cisco-nsp] 20070817 Heads up: "sh ip bgp regexp" crashing router |
CVE-2007-4430
|
| MLIST:[clamav-announce] 20081126 announcing ClamAV 0.94.2 |
CVE-2008-5314
|
| MLIST:[clamav-devel] 20070418 Bug in OLE2 file parser |
CVE-2007-2650
|
| MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.55.2.18,1.55.2.19 |
CVE-2009-4248
|
| MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.85,1.86 |
CVE-2009-4248
|
| MLIST:[client-dev] 20080117 CR: fix for bug 211210 |
CVE-2009-4248
|
| MLIST:[cluster-devel] 20070619 cluster/cman/daemon daemon.c |
CVE-2007-3373
CVE-2007-3374
|
| MLIST:[cluster-devel] 20100525 [PATCH 3/3] GFS2: Fix permissions checking for setflags ioctl() |
CVE-2010-1641
|
| MLIST:[commits] 20060504 bk commit into 4.1 tree (bar:1.2474) |
CVE-2006-4226
|
| MLIST:[commits] 20060620 bk commit into 5.0 tree (kroki:1.2168) BUG#18630 |
CVE-2006-4227
|
| MLIST:[commits] 20081124 bzr commit into mysql-6.0-backup branch (ingo.struewing:2744) Bug#39277 |
CVE-2008-7247
|
| MLIST:[commits] 20091020 bzr commit into mysql-4.1 branch (joro:2709) Bug#47320 |
CVE-2009-4028
|
| MLIST:[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167 |
CVE-2009-4030
|
| MLIST:[commits] 20100113 bzr commit into mysql-5.0-bugteam branch (ramil:2838) Bug#50227 |
CVE-2009-4484
|
| MLIST:[commits] 20100824 Horde branch master updated. 025a1bfbe69622036f8e3a27a6edd39c02dcd4ea |
CVE-2010-3447
|
| MLIST:[common-cvs] 20070703 util hxurl.cpp,1.24.4.1,1.24.4.1.4.1 |
CVE-2010-0416
|
| MLIST:[common-cvs] 20080114 util rlstate.cpp,1.9,1.10 |
CVE-2010-0417
|
| MLIST:[commons-dev] 20110812 [AANNOUNCE] Apache Commons Daemon 1.0.7 released |
CVE-2011-2729
|
| MLIST:[conquest] 20070303 Re: security bugs in conquest |
CVE-2007-1371
|
| MLIST:[continuum-users] 20110210 [SECURITY] CVE-2010-3449: Apache Continuum CSRF vulnerability |
CVE-2010-3449
|
| MLIST:[continuum-users] 20110210 [SECURITY] CVE-2011-0533: Apache Continuum cross-site scripting vulnerability |
CVE-2011-0533
|
| MLIST:[cosmo-dev] 20071207 Chandler Server (Cosmo) 0.10.1 released |
CVE-2007-6383
|
| MLIST:[couchdb-dev] 20110128 CVE-2010-3854: Apache CouchDB Cross Site Scripting Issue |
CVE-2010-3854
|
| MLIST:[courier-announce] 20080608 courier-authlib 0.60.6 released |
CVE-2008-2667
|
| MLIST:[courier-users] 20050824 Re: [SECUNIA] Vulnerability in SqWebMail |
CVE-2005-2724
|
| MLIST:[courier-users] 20080314 Re: [courier-users] [Fwd: Re: authmysql vs apostrophe] |
CVE-2008-2667
|
| MLIST:[cryptography] 20091105 OpenSSL 0.9.8l released |
CVE-2009-3555
|
| MLIST:[cscope-cvs] 20090410 CVS: cscope/src snprintf.c, NONE, 1.1 build.c, 1.14, 1.15 command.c, 1.32, 1.33 dir.c, 1.30, 1.31 display.c, 1.29, 1.30 edit.c, 1.6, 1.7 exec.c, 1.11, 1.12 find.c, 1.20, 1.21 global.h, 1.36, 1.37 main.c, 1.45, 1.46 Makefile.am, 1.12, 1.13 Makefile.in, 1.15, 1.16 vpaccess.c, 1.2, 1.3 vpfopen.c, 1.3, 1.4 vpopen.c, 1.4, 1.5 |
CVE-2009-0148
|
| MLIST:[curl-users] 20030529 Re: https, redirection and authentication using POST |
CVE-2003-1311
CVE-2003-1312
|
| MLIST:[current-users] 20061110 [Security Fix] ptrace insufficient bounds checking |
CVE-2006-6014
|
| MLIST:[cvs-all] 20081102 cvs commit: ports/emulators/qemu Makefile ports/emulators/qemu/files patch-CVE-2008-4539 ports/emulators/qemu-devel Makefile ports/emulators/qemu-devel/files patch-CVE-2008-4539 |
CVE-2008-4539
|
| MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/ |
CVE-2009-1553
|
| MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/java/com/sun/enterprise/tools/admingui/handlers/CommonHandlers.java |
CVE-2009-1553
|
| MLIST:[cvs] 20090321 CVS update: /woodstock/webui/src/runtime/com/sun/webui/theme/ThemeServlet.java |
CVE-2009-1554
|
| MLIST:[cvs] 20090322 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/configuration/ |
CVE-2009-1553
|
| MLIST:[cxf-users] 20100616 Important - Apache CXF security advisory CVE-2010-2076 |
CVE-2010-2076
|
| MLIST:[cygwin-announce] 20080805 Updated: Setup.exe updated to version 2.573.2.3 |
CVE-2008-3323
|
| MLIST:[cygwin-developers] 20071108 Re: cygwin1.dll up to 1.5.22 overflow |
CVE-2007-6181
|
| MLIST:[cygwin-developers] 20071120 Re: cygwin1.dll up to 1.5.22 overflow |
CVE-2007-6181
|
| MLIST:[cyrus-announce] 20041122 Cyrus IMAPd 2.2.9 Released |
CVE-2004-1011
CVE-2004-1012
CVE-2004-1013
|
| MLIST:[cyrus-announce] 20041123 Cyrus IMAPd 2.2.10 Released |
CVE-2004-1015
|
| MLIST:[cyrus-announce] 20110908 Cyrus 2.3.17 Released |
CVE-2011-3208
|
| MLIST:[cyrus-announce] 20110908 Cyrus 2.4.11 Released |
CVE-2011-3208
|
| MLIST:[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2) |
CVE-2006-0454
|
| MLIST:[dailydave] 20070110 Algorithmic Bugs |
CVE-2006-6931
|
| MLIST:[dailydave] 20070130 Vista speach recognition |
CVE-2007-0675
|
| MLIST:[dailydave] 20070131 Vista speach recognition |
CVE-2007-0675
|
| MLIST:[dailydave] 20070216 Minor Virtualization Vulnerability |
CVE-2007-1222
|
| MLIST:[dailydave] 20070227 Wow, free kernel zero day? |
CVE-2007-1189
|
| MLIST:[dailydave] 20070406 AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption |
CVE-2007-1922
|
| MLIST:[dailydave] 20070406 AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero) |
CVE-2007-1921
|
| MLIST:[dailydave] 20070406 AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption |
CVE-2007-1922
|
| MLIST:[dailydave] 20070706 (no subject) |
CVE-2007-3634
CVE-2007-3637
|
| MLIST:[dailydave] 20070708 SquirrelMail GPG Plugin vuln |
CVE-2007-3634
CVE-2007-3778
|
| MLIST:[dailydave] 20070709 SquirrelMail GPG Plugin vuln |
CVE-2007-3634
CVE-2007-3636
CVE-2007-3778
|
| MLIST:[dailydave] 20080811 A new datapoint for 0day lifetime |
CVE-2008-4434
|
| MLIST:[dailydave] 20081002 TCP Resource Exhaustion DoS Attack Speculation |
CVE-2008-4609
|
| MLIST:[dailydave] 20081107 All Ur WiFi(WPA) R Belong 2 PacSec |
CVE-2008-5230
|
| MLIST:[dailydave] 20090219 SSL MITM fun. |
CVE-2009-0652
|
| MLIST:[dailydave] 20090220 SSL MITM fun. |
CVE-2009-0652
|
| MLIST:[dailydave] 20100106 0day demos |
CVE-2009-4484
|
| MLIST:[dailydave] 20100119 We hold these axioms to be self evident |
CVE-2010-0232
|
| MLIST:[dailydave] 20100120 Sun Web Server digest auth overflow |
CVE-2010-0387
|
| MLIST:[dailydave] 20100126 New db bugs |
CVE-2009-4484
|
| MLIST:[dailydave] 20100304 Perforce |
CVE-2010-0929
CVE-2010-0930
CVE-2010-0931
CVE-2010-0932
CVE-2010-0933
CVE-2010-0934
CVE-2010-0935
|
| MLIST:[dailydave] 20100401 0day, it may not be |
CVE-2009-4764
CVE-2010-1240
CVE-2010-1241
|
| MLIST:[dailydave] 20100402 0day, it may not be |
CVE-2009-0836
|
| MLIST:[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability |
CVE-2011-1652
|
| MLIST:[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection |
CVE-2010-4562
CVE-2010-4563
|
| MLIST:[dailydave] 20111130 The Vampire Diaries |
CVE-2011-4161
|
| MLIST:[dailydave] 20111206 Flash 0day |
CVE-2011-4693
CVE-2011-4694
CVE-2011-4695
|
| MLIST:[dailydave] 20120106 Apache Struts |
CVE-2012-0392
|
| MLIST:[datatype-cvs] 20080722 image/gif/common gifcodec.cpp, 1.6, 1.7 gifimage.cpp, 1.5, 1.6 |
CVE-2009-4245
|
| MLIST:[datatype-cvs] 20080909 image/gif/common gifcodec.cpp,1.7,1.8 |
CVE-2009-4242
|
| MLIST:[datatype-cvs] 20080916 smil/common smlpkt.cpp,1.11,1.12 |
CVE-2009-4257
|
| MLIST:[dbus] 20070317 D-Bus daemon endianness issue |
CVE-2011-2200
|
| MLIST:[dbus] 20080227 [ANNOUNCE] CVE-2008-0595 D-Bus Security Releases - D-Bus 1.0.3 and D-Bus 1.1.20 |
CVE-2008-0595
|
| MLIST:[dbus] 20081205 [CVE-2008-4311] DBus 1.2.6 |
CVE-2008-4311
|
| MLIST:[dbus] 20110530 D-Bus daemon big and little endian issue |
CVE-2011-2200
|
| MLIST:[dccp] 20070328 [PATCH 1/1] getsockopt: Fix DCCP_SOCKOPT_[SEND,RECV]_CSCOV |
CVE-2007-1730
|
| MLIST:[debian-apache] 20050119 Bug#290974: marked as done (apache: Temporary usage bugs that can be used in symlink attacks) |
CVE-2004-1387
|
| MLIST:[debian-bugs-dist] 20090810 Bug#540865: libxml2: CVE-2009-2414, CVE-2009-2416 pointer-user-after-free and stack overflow because of function recursion |
CVE-2009-2414
CVE-2009-2416
|
| MLIST:[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd |
CVE-2008-5983
CVE-2009-0316
|
| MLIST:[debian-bugs-rc] 20090430 Bug#526258: CVE-2009-1339: CSRF Vulnerability with Image Tag |
CVE-2009-1339
|
| MLIST:[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory |
CVE-2008-5983
|
| MLIST:[debian-changes] 20100128 Accepted lintian 1.24.2.1+lenny1 (source all) |
CVE-2009-4013
CVE-2009-4014
CVE-2009-4015
|
| MLIST:[debian-devel-changes] 20030909 Accepted kdbg 1.2.9-1 (i386 source) |
CVE-2003-0644
|
| MLIST:[debian-devel-changes] 20081101 Accepted qemu 0.9.1+svn20081101-1 (source amd64) |
CVE-2008-4539
|
| MLIST:[debian-devel-changes] 20100105 Accepted transmission 1.77-1 (source all amd64) |
CVE-2010-0012
|
| MLIST:[debian-devel] 20080811 Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages |
CVE-2008-4474
CVE-2008-4475
|
| MLIST:[debian-devel] 20080811 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages |
CVE-2008-5135
CVE-2008-5136
CVE-2008-5137
CVE-2008-5138
CVE-2008-5139
CVE-2008-5140
CVE-2008-5141
CVE-2008-5142
CVE-2008-5143
CVE-2008-5144
CVE-2008-5145
CVE-2008-5366
CVE-2008-5367
CVE-2008-5368
CVE-2008-5369
CVE-2008-5370
CVE-2008-5371
CVE-2008-5372
CVE-2008-5378
CVE-2008-5379
CVE-2008-5380
CVE-2008-6398
|
| MLIST:[debian-devel] 20080812 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages |
CVE-2008-4476
CVE-2008-4477
CVE-2008-6397
|
| MLIST:[debian-devel] 20080813 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages |
CVE-2008-5146
CVE-2008-5147
CVE-2008-5148
CVE-2008-5149
CVE-2008-5150
CVE-2008-5151
CVE-2008-5152
CVE-2008-5153
CVE-2008-5154
CVE-2008-5155
CVE-2008-5156
CVE-2008-5157
CVE-2008-5373
CVE-2008-5374
CVE-2008-5375
CVE-2008-5376
CVE-2008-5377
|
| MLIST:[debian-kernel] 20050809 Re: ACL patches in Debian 2.4 series kernel. |
CVE-2005-2801
|
| MLIST:[debian-openoffice] 20100212 ./packages/openofficeorg/3.1.1/unstable r1866: merge 1:3.1.1-15+squeeze1 |
CVE-2010-0136
|
| MLIST:[debian-security-announce] 20071003 [SECURITY] [DSA 1379-1] New quagga packages fix denial of service |
CVE-2007-4826
|
| MLIST:[debian-security-tracker] 20110908 Security Fix for mantis stable 1.1.8 |
CVE-2011-3356
CVE-2011-3357
CVE-2011-3358
CVE-2011-3578
|
| MLIST:[debian-security] 20080219 qemu unchecked block read/write vulnerability |
CVE-2008-0928
|
| MLIST:[debian-security] 20110510 Re: World writable pid and lock files. |
CVE-2011-1784
CVE-2011-2147
|
| MLIST:[debian-security] 20110510 World writable pid and lock files. |
CVE-2011-1784
CVE-2011-2147
|
| MLIST:[debian-security] 20110511 Re: World writable pid and lock files. |
CVE-2011-1784
|
| MLIST:[debian-sparc] 20060128 `date -s' on sparc64 |
CVE-2006-0482
|
| MLIST:[debian-testing-security-announce] 20090211 Security update for Debian Testing - 2009-02-12 |
CVE-2009-0359
|
| MLIST:[debian-testing-security-announce] 20090213 Security update for Debian Testing - 2009-02-14 |
CVE-2009-0363
|
| MLIST:[dev-crypto] 20071109 Bouncy Castle Crypto Provider Package version 1.36 now available |
CVE-2007-6721
|
| MLIST:[dev] 20070813 Geronimo 2.0 Release suspended due to security issue found before release |
CVE-2007-4548
|
| MLIST:[dev] 20090319 [DSECRG] Sun Glassfish Multiple Security Vulnerabilities |
CVE-2009-1553
CVE-2009-1554
|
| MLIST:[dev] 20090411 Re: [DSECRG] Sun Glassfish Multiple Security Vulnerabilities |
CVE-2009-1553
CVE-2009-1554
|
| MLIST:[dev] 20090424 Buffer overflow in apr_brigade_vprintf() ? |
CVE-2009-1956
|
| MLIST:[dev] 20090424 Re: Buffer overflow in apr_brigade_vprintf() ? |
CVE-2009-1956
|
| MLIST:[dev] 20090806 Patch to 1.4.x branch for CVE-2009-2411 |
CVE-2009-2411
|
| MLIST:[dev] 20090806 Subversion 1.5.7 Released |
CVE-2009-2411
|
| MLIST:[dev] 20090806 Subversion 1.6.4 Released |
CVE-2009-2411
|
| MLIST:[dev] 20100806 Two exploitable OpenOffice.org bugs! |
CVE-2010-2935
CVE-2010-2936
|
| MLIST:[dev] 20101104 "svn blame -g" causing svnserve to hang & mem usage to hit 2GB |
CVE-2010-4644
|
| MLIST:[dev] 20110303 Subversion 1.6.16 Released |
CVE-2011-0715
|
| MLIST:[dev] 20110510 Re: Apache Portable Runtime 1.4.4 [...] Released |
CVE-2011-0419
|
| MLIST:[dev] 20110510 Re: fnmatch rewrite in apr, apr 1.4.3 |
CVE-2011-0419
|
| MLIST:[dev] 20110511 Re: Apache Portable Runtime 1.4.4 [...] Released |
CVE-2011-0419
|
| MLIST:[dev] 20110823 Re: DoS with mod_deflate & range requests |
CVE-2011-3192
|
| MLIST:[devel] 20090528 [patch] libpurple/protocols/oscar: OOM and die on misparsed ICQWebMessage as ICQSMS |
CVE-2009-1889
|
| MLIST:[devel] 20090910 New version available [was: Is there a specific security contact address?] |
CVE-2009-2937
|
| MLIST:[dhcp-users] 20101207 nagios check_tcp kills failover, then dhcp failure. |
CVE-2010-3616
|
| MLIST:[dhcpcd-discuss] 20110406 [CVE-2011-996] dhcpcd does not strip or escape shell meta characters |
CVE-2011-0996
|
| MLIST:[dia-list] 20060329 Vulnerability in xfig import code |
CVE-2006-1550
|
| MLIST:[distcc] 20040826 Exploit in distcc ( got compromised ;( ) |
CVE-2004-2687
|
| MLIST:[distro-pkg-dev] 20090211 changeset in /hg/icedtea6: 2009-02-11 Omair Majid <omajid at redh... |
CVE-2009-0794
|
| MLIST:[djabberd] 20110604 CVE-2011-1757: djabberd billion laughs vulnerability |
CVE-2011-1757
|
| MLIST:[djabberd] 20110613 Security Release DJabberd 0.85 |
CVE-2011-2206
|
| MLIST:[dl-ticket-service] 20100311 dl 0.7 released |
CVE-2010-0963
|
| MLIST:[dns] 20090225 djbdns misformats some long response packets; patch and example |
CVE-2009-0858
|
| MLIST:[dns] 20090304 djbdns<=1.05 lets AXFRed subdomains overwrite domains |
CVE-2009-0858
|
| MLIST:[dnsmasq-discuss] 20080720 dnsmasq 2.44 available. |
CVE-2008-3350
|
| MLIST:[dokuwiki] 20110614 Hotfix Release "2011-05-25a Rincewind" |
CVE-2011-2510
|
| MLIST:[dovecot-cvs] 20070330 dovecot/src/lib-storage/index/mbox mbox-storage.c, 1.145.2.14, 1.145.2.15 |
CVE-2007-2231
|
| MLIST:[dovecot-news] 20070330 Security hole #3: zlib plugin allows opening any gziped mboxes |
CVE-2007-2231
|
| MLIST:[dovecot-news] 20070801 v1.0.3 released |
CVE-2007-4211
|
| MLIST:[dovecot-news] 20091120 v1.2.8 released |
CVE-2009-3897
|
| MLIST:[dovecot-news] 20100308 v1.2.11 released |
CVE-2010-0745
|
| MLIST:[dovecot-news] 20100724 v1.2.13 released |
CVE-2010-3304
|
| MLIST:[dovecot] 20100219 segfault - (imap|pop3)-login during nessus scan |
CVE-2010-0433
|
| MLIST:[dovecot] 20100227 Possible CPU Denial-Of-Service attack to dovecot IMAP. |
CVE-2010-0745
|
| MLIST:[dovecot] 20101002 ACL handling bugs in v1.2.8+ and v2.0 |
CVE-2010-3706
CVE-2010-3707
CVE-2010-3779
|
| MLIST:[dovecot] 20101002 v1.2.15 released |
CVE-2010-3706
CVE-2010-3707
CVE-2010-3779
CVE-2010-3780
|
| MLIST:[dovecot] 20101002 v2.0.5 released |
CVE-2010-3706
CVE-2010-3707
|
| MLIST:[dovecot] 20110511 v1.2.17 released |
CVE-2011-1929
|
| MLIST:[dovecot] 20110511 v2.0.13 released |
CVE-2011-1929
CVE-2011-2166
CVE-2011-2167
|
| MLIST:[dropbear] 20051211 Dropbear 0.47 (and security fix) |
CVE-2005-4178
|
| MLIST:[dtcannounce] 20110303 Fwd: [SECURITY] [DSA 2179-1] dtc security update |
CVE-2011-0434
CVE-2011-0435
CVE-2011-0436
CVE-2011-0437
|
| MLIST:[ebd-devel] 20060502 actualización de seguridad |
CVE-2006-2349
|
| MLIST:[ecryptfs-devel] 20081222 Re: [PATCH, v5] eCryptfs: check readlink result was not an error before using it |
CVE-2009-0269
|
| MLIST:[ekiga-list] 20070917 [ANNOUNCE] Ekiga 2.0.10 released |
CVE-2007-4924
|
| MLIST:[elinks-users] 20080204 [ANNOUNCE] ELinks 0.11.4rc0 |
CVE-2008-7224
|
| MLIST:[emacs-devel] 20071003 temp file hole? |
CVE-2007-5377
|
| MLIST:[emacs-devel] 20071004 Re: temp file hole? |
CVE-2007-5377
|
| MLIST:[emacs-devel] 20080510 [mwelinder@bogus.example.com: Emacs security bug] |
CVE-2008-2142
|
| MLIST:[emacs-devel] 20080905 Vulnerability in Emacs python integration |
CVE-2008-3949
|
| MLIST:[emacs-devel] 20120109 Security flaw in EDE; new release plans |
CVE-2012-0035
|
| MLIST:[emdros-announce] 20061201 Emdros version 1.2.0.pre231 released |
CVE-2006-6395
|
| MLIST:[enomalism] 20081212 ECP 2.1.1 Released |
CVE-2008-4990
|
| MLIST:[eoc] 20061213 EoC 1.2.4 -- security problem fixed, please upgrade immediately |
CVE-2006-5875
|
| MLIST:[ethereal-dev] 20040318 ethereal radius dissector vulnerability |
CVE-2004-0365
|
| MLIST:[ewg] 20101021 [PATCH] security fix in openibd script |
CVE-2010-1693
|
| MLIST:[exim-announce] 20020219 Exim 3.35 released |
CVE-2002-0274
|
| MLIST:[exim-announce] 20110125 Exim 4.74 Release |
CVE-2011-0017
|
| MLIST:[exim-announce] 20110509 Exim 4.76 Release |
CVE-2011-1407
|
| MLIST:[exim-announce] 20110512 Exim 4.76 Release: updated impact assessment |
CVE-2011-1407
|
| MLIST:[exim-dev] 20100524 Security issues in exim4 local delivery |
CVE-2010-2023
CVE-2010-2024
|
| MLIST:[exim-dev] 20101207 Remote root vulnerability in Exim |
CVE-2010-4344
CVE-2010-4345
|
| MLIST:[exim-dev] 20101209 Re: [Exim-maintainers] Remote root vulnerability in Exim |
CVE-2010-4345
|
| MLIST:[exim-dev] 20101210 Re: Remote root vulnerability in Exim |
CVE-2010-4344
CVE-2010-4345
|
| MLIST:[exim] 20050104 2 smallish security issues |
CVE-2005-0021
CVE-2005-0022
|
| MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences |
CVE-2009-3720
|
| MLIST:[expat-bugs] 20091108 [ expat-Bugs-2894085 ] expat: buffer over-read and crash in big2_toUtf8() |
CVE-2009-3560
|
| MLIST:[exploits] 20061201 0-day BlazeHDTV v2.1 Malformed PLF Buffer Overflow Exploit |
CVE-2006-6199
|
| MLIST:[fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1 |
CVE-2003-0989
CVE-2004-0055
CVE-2004-0057
|
| MLIST:[fedora-announce] 20040422 Fedora alert FEDORA-2004-111 (kernel) |
CVE-2004-0394
|
| MLIST:[fedora-desktop-list] 20070918 Re: fuse (Was Re: early-gdm redux) |
CVE-2007-5159
|
| MLIST:[fedora-devel-list] 20070122 Re: rawhide report: 20070120 changes |
CVE-2007-0003
|
| MLIST:[fedora-package-announce] 20070604 [SECURITY] Fedora 7 Update: NetworkManager-0.6.5-3.fc7 |
CVE-2007-2874
|
| MLIST:[fedora-security-commits] 20080620 fedora-security/audit f10, 1.7, 1.8 f8, 1.225, 1.226 f9, 1.215, 1.216 |
CVE-2008-2725
CVE-2008-2726
|
| MLIST:[fedora-security-list] 20090612 git daemon DoS |
CVE-2009-2108
|
| MLIST:[ffmpeg-cvslog] 20080812 r14714 - trunk/libavformat/utils.c |
CVE-2008-4866
|
| MLIST:[ffmpeg-cvslog] 20080812 r14715 - trunk/libavformat/avformat.h |
CVE-2008-4866
|
| MLIST:[ffmpeg-cvslog] 20080816 r14787 - trunk/libavcodec/utils.c |
CVE-2008-4868
|
| MLIST:[ffmpeg-cvslog] 20080823 r14917 - trunk/libavcodec/dca.c |
CVE-2008-4867
|
| MLIST:[ffmpeg-devel] 20101229 [PATCH] Fix a couple of errors with bad Vorbis headers |
CVE-2011-0480
|
| MLIST:[file] 20070302 file-4.20 is now available |
CVE-2007-1536
|
| MLIST:[file] 20090501 file 5.01 is now available |
CVE-2009-1515
|
| MLIST:[file] 20090504 file-5.02 is now available |
CVE-2009-3930
|
| MLIST:[fishcart] 20050521 Re: Concerned about security |
CVE-2005-1486
|
| MLIST:[flex-announce] 20060222 flex 2.5.33 released |
CVE-2006-0459
|
| MLIST:[fm-news] 20010713 Newsletter for Friday, July 13th 2001 |
CVE-2001-1081
|
| MLIST:[fm-news] 20041001 Newsletter for Thursday, September 30th 2004 |
CVE-2004-2153
|
| MLIST:[fm-news] 20041102 Newsletter for Monday, November 01st 2004 |
CVE-2004-2217
|
| MLIST:[fm-news] 20041123 Newsletter for Monday, November 22nd 2004 |
CVE-2004-2485
|
| MLIST:[fm-news] 20051208 Newsletter for Thursday, December 08th 2005 |
CVE-2005-4132
|
| MLIST:[fm-news] 20060204 Newsletter for Friday, February 03rd 2006 |
CVE-2006-0751
|
| MLIST:[fm-news] 20080113 Newsletter for Saturday, January 12th 2008 |
CVE-2008-7189
CVE-2008-7197
|
| MLIST:[fm-news] 20080123 Newsletter for Tuesday, January 22nd 2008 |
CVE-2008-7198
|
| MLIST:[fm-news] 20080126 Newsletter for Friday, January 25th 2008 |
CVE-2008-7196
CVE-2008-7202
|
| MLIST:[fm-news] 20080206 Newsletter for Tuesday, February 05th 2008 |
CVE-2008-7228
|
| MLIST:[focus-sun] 20031022 Information disclosure with SMC webserver on Solaris 9 |
CVE-2004-1354
|
| MLIST:[foswiki-announce] 20090427 Security Alert CVE-2009-1434: Foswiki Page View Cross-Site Request Forgery (CSRF) |
CVE-2009-1434
|
| MLIST:[foswiki-announce] 20101110 [ANNOUNCE] Foswiki Security Alert CVE-2010-4215 - User can alter topic preferences using the "Edit topic preference settings" feature and save them even though he has no privileges to edit the topic. |
CVE-2010-4215
|
| MLIST:[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c |
CVE-2006-5483
|
| MLIST:[freebsd-cvs-src] 20060531 cvs commit: src/sys/ufs/ufs ufs_vnops.c |
CVE-2006-5482
|
| MLIST:[freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff |
CVE-2005-0109
|
| MLIST:[freebsd-security] 19961025 Vadim Kolontsov: BoS: Linux & BSD's lpr exploit |
CVE-1999-0032
|
| MLIST:[freebsd-security] 20021109 Security issue in net/cvsup-mirror port |
CVE-2002-2382
|
| MLIST:[freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff] |
CVE-2005-0109
|
| MLIST:[freebsd-security] 20060728 Ruby vulnerability? |
CVE-2006-3694
|
| MLIST:[freebsd-security] 20060730 Ruby vulnerability? |
CVE-2006-3694
|
| MLIST:[freebsd-security] 20061002 FreeBSD Security Advisory FreeBSD-SA-06:22.openssh |
CVE-2006-5051
|
| MLIST:[freebsd-security] 20061206 Intel LAN Driver Buffer Overflow Local Privilege Escalation |
CVE-2006-6385
|
| MLIST:[freebsd-security] 20070114 MOAB advisories |
CVE-2006-5679
CVE-2006-5824
CVE-2007-0229
CVE-2007-0267
|
| MLIST:[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team |
CVE-2011-4862
|
| MLIST:[freeradius-users] 20090909 Version 1.1.8 has been released |
CVE-2009-3111
|
| MLIST:[freetype-devel] 20110708 Re: details on iPhone exploit caused by FreeType? |
CVE-2011-0226
|
| MLIST:[freetype-devel] 20110708 details on iPhone exploit caused by FreeType? |
CVE-2011-0226
|
| MLIST:[freetype-devel] 20110709 Re: details on iPhone exploit caused by FreeType? |
CVE-2011-0226
|
| MLIST:[freetype-devel] 20110711 Re: details on iPhone exploit caused by FreeType? |
CVE-2011-0226
|
| MLIST:[freetype] 20100712 FreeType 2.4.0 has been released |
CVE-2010-2497
CVE-2010-2498
CVE-2010-2499
CVE-2010-2500
CVE-2010-2519
CVE-2010-2520
CVE-2010-2527
|
| MLIST:[frox-user] 20050204 Frox 0.7.18 - security fixes. |
CVE-2005-2808
|
| MLIST:[frugalware-git] 20081014 kernel2627: ndiswrapper-1.53-6-i686 |
CVE-2008-4395
|
| MLIST:[ft-devel] 20070427 Bug in fuzzed TTF file |
CVE-2007-2754
|
| MLIST:[funsec] 20060110 Another WMF flaw without a Microsoft patch |
CVE-2006-0020
|
| MLIST:[funsec] 20060308 DOSing Outlook 2003 |
CVE-2006-1305
|
| MLIST:[gcc-bugs] 20020506 c/6586: -ftrapv doesn't catch multiplication overflow |
CVE-2000-1219
|
| MLIST:[gcc-bugs] 20060417 [Bug c/27180] New: pointer arithmetic overflow handling broken |
CVE-2006-1902
|
| MLIST:[gcc-bugs] 20060417 [Bug middle-end/27180] New: pointer arithmetic overflow handling broken |
CVE-2006-1902
|
| MLIST:[gcc-patches] 20080306 Re: [PATCH, i386]: Emit cld instruction when stringops are used |
CVE-2008-1367
|
| MLIST:[gcc-patches] 20080306 [PATCH, i386]: Emit cld instruction when stringops are used |
CVE-2008-1367
|
| MLIST:[gcc-patches] 20080307 Re: [PATCH, i386]: Emit cld instruction when stringops are used |
CVE-2008-1367
|
| MLIST:[gdm-list] 20110328 GDM 2.32.1 released |
CVE-2011-0727
|
| MLIST:[git-commits-head] 20060311 [PATCH] selinux: tracer SID fix |
CVE-2006-1052
|
| MLIST:[git-commits-head] 20080307 x86: clear DF before calling signal handler |
CVE-2008-1367
|
| MLIST:[git-commits-head] 20080507 sparc: Fix mmap VA span checking. |
CVE-2008-2137
|
| MLIST:[git-commits-head] 20090205 shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM |
CVE-2009-0859
|
| MLIST:[git-commits-head] 20091208 net: Automatically allocate per namespace data. |
CVE-2011-2189
|
| MLIST:[git] 20080716 [PATCH] Fix buffer overflow in git diff |
CVE-2008-3546
|
| MLIST:[git] 20081220 [Security] gitweb local privilege escalation (fix) |
CVE-2008-5916
|
| MLIST:[git] 20110305 [ANNOUNCE] CGIT 0.8.3.5 |
CVE-2011-1027
|
| MLIST:[glbs-security-announce] 20070517 Globus Security Advisory 2007-03: Nexus vulnerability |
CVE-2007-2784
|
| MLIST:[gnome-announce] 20020503 Patch for serious bug in 1.0.3 |
CVE-2002-1765
|
| MLIST:[gnome-networkmanager-list] 20050728 format string bug in nm_info_handler |
CVE-2005-2410
|
| MLIST:[gnome-networkmanager-list] 20050729 Re: format string bug in nm_info_handler |
CVE-2005-2410
|
| MLIST:[gnupg-announce] 20060215 False positive signature verification in GnuPG |
CVE-2006-0455
|
| MLIST:[gnupg-announce] 20060309 [Announce] GnuPG does not detect injection of unsigned data |
CVE-2006-0049
|
| MLIST:[gnupg-announce] 20061127 GnuPG 1.4 and 2.0 buffer overflow |
CVE-2006-6169
|
| MLIST:[gnupg-announce] 20100723 [Announce] Security Alert for GnuPG 2.0 - Realloc bug in GPGSM |
CVE-2010-2547
|
| MLIST:[gnupg-announce] GnuPG: remotely controllable function pointer [CVE-2006-6235] |
CVE-2006-6235
|
| MLIST:[gnupg-devel] 20060215 [Announce] False positive signature verification in GnuPG |
CVE-2006-0455
|
| MLIST:[gnupg-users] 20070306 [Announce] Multiple Messages Problem in GnuPG and GPGME |
CVE-2007-1263
CVE-2007-1264
CVE-2007-1265
CVE-2007-1266
CVE-2007-1267
CVE-2007-1268
CVE-2007-1269
|
| MLIST:[gnutls-dev] 20040802 gnutls 1.0.17 |
CVE-2004-2531
|
| MLIST:[gnutls-dev] 20050428 GnuTLS 1.2.3 and 1.0.25 |
CVE-2005-1431
|
| MLIST:[gnutls-dev] 20060209 GnuTLS 1.2.10 - Security release |
CVE-2006-0645
|
| MLIST:[gnutls-dev] 20060209 GnuTLS 1.3.4 - Experimental - Security release |
CVE-2006-0645
|
| MLIST:[gnutls-dev] 20060209 Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release |
CVE-2006-0645
|
| MLIST:[gnutls-dev] 20060812 GnuTLS 1.4.2 |
CVE-2006-7239
|
| MLIST:[gnutls-dev] 20060812 Re: [Fwd: crash in GNUTLS-1.4.0] |
CVE-2006-7239
|
| MLIST:[gnutls-dev] 20060908 Variant of Bleichenbacher's crypto 06 rump session attack |
CVE-2006-4790
|
| MLIST:[gnutls-dev] 20060912 Re: Variant of Bleichenbacher's crypto 06 rump session attack |
CVE-2006-4790
|
| MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1] |
CVE-2008-1948
CVE-2008-1949
CVE-2008-1950
|
| MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.5 - Brown paper bag release |
CVE-2008-1948
CVE-2008-1949
CVE-2008-1950
|
| MLIST:[gnutls-devel] 20080519 Re: GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1] |
CVE-2008-1948
CVE-2008-1949
CVE-2008-1950
|
| MLIST:[gnutls-devel] 20080630 Details on the gnutls_handshake local crash problem [GNUTLS-SA-2008-2] |
CVE-2008-2377
|
| MLIST:[gnutls-devel] 20080630 GnuTLS 2.4.1 |
CVE-2008-2377
|
| MLIST:[gnutls-devel] 20081110 Analysis of vulnerability GNUTLS-SA-2008-3 CVE-2008-4989 |
CVE-2008-4989
|
| MLIST:[gnutls-devel] 20081110 GnuTLS 2.6.1 - Security release [GNUTLS-SA-2008-3] |
CVE-2008-4989
|
| MLIST:[gnutls-devel] 20090423 Re: some crashes on using DSA keys |
CVE-2009-1415
|
| MLIST:[gnutls-devel] 20090430 All DSA keys generated using GnuTLS 2.6.x are corrupt [GNUTLS-SA-2009-2] [CVE-2009-1416] |
CVE-2009-1416
|
| MLIST:[gnutls-devel] 20090430 Certificate expiration not checked by gnutls-cli [GNUTLS-SA-2009-3] [CVE-2009-1417] |
CVE-2009-1417
|
| MLIST:[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415] |
CVE-2009-1415
|
| MLIST:[gnutls-devel] 20091105 Re: TLS renegotiation MITM |
CVE-2009-3555
|
| MLIST:[gnutls-devel] 20111108 Possible buffer overflow on gnutls_session_get_data |
CVE-2011-4128
|
| MLIST:[gosa] 20070115 GOsa 2.5.8 released (security fixes!) |
CVE-2007-0313
|
| MLIST:[gpa-dev] 20050531 S/MIME signing fails on a SUSE 9.3 system |
CVE-2005-2023
|
| MLIST:[gpa-dev] 20050603 Re: S/MIME signing fails on a SUSE 9.3 system |
CVE-2005-2023
|
| MLIST:[gs-cvs] 20100106 [gs-commits] rev 10590 - trunk/gs/base |
CVE-2010-4054
|
| MLIST:[gtk-devel-list] 20030529 Algorimic Complexity Attack on GLIB 2.2.1 |
CVE-2012-0039
|
| MLIST:[gtk-devel-list] 20071107 GLib 2.14.3 |
CVE-2007-1659
CVE-2007-1660
CVE-2007-1661
CVE-2007-1662
CVE-2007-4766
CVE-2007-4767
CVE-2007-4768
|
| MLIST:[havp-devel] 20080715 Infinite loop which causes havp to block completely |
CVE-2008-3688
|
| MLIST:[heimdal-discuss] 20060206 Heimdal 0.7.2 and 0.6.6 |
CVE-2006-0582
CVE-2006-0677
|
| MLIST:[helix-client-dev] 20090828 CR: 249097 - Security fix - urgent CR requested |
CVE-2009-4247
|
| MLIST:[help-gnutls] 20090420 Encryption using DSA keys |
CVE-2009-1416
|
| MLIST:[horde-announce] 20041026 Horde 2.2.7 (final) |
CVE-2004-2741
|
| MLIST:[horde-announce] 20051122 Horde 3.0.7 (final) |
CVE-2005-3759
|
| MLIST:[horde-announce] 20051211 Horde 3.0.8 (final) |
CVE-2005-4190
|
| MLIST:[horde-announce] 20051211 Kronolith H3 (2.0.6) (final) |
CVE-2005-4189
|
| MLIST:[horde-announce] 20051211 Mnemo H3 (2.0.3) (final) |
CVE-2005-4192
|
| MLIST:[horde-announce] 20051211 Nag H3 (2.0.4) (final) |
CVE-2005-4191
|
| MLIST:[horde-announce] 20051211 Turba H3 (2.0.5) (final) |
CVE-2005-4242
|
| MLIST:[horde-announce] 20060817 Horde 3.1.3 (final) |
CVE-2006-4256
|
| MLIST:[horde-announce] 20060817 IMP H3 (4.1.3) (final) |
CVE-2006-4255
|
| MLIST:[horde-announce] 20061018 Ingo H3 (1.1.2) (final) |
CVE-2006-5449
|
| MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.0.7) (final) |
CVE-2006-6175
|
| MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.1.4) (final) |
CVE-2006-6175
|
| MLIST:[horde-announce] 20070114 Horde Groupware 1.0 (final) |
CVE-2007-0579
|
| MLIST:[horde-announce] 20070114 Horde Groupware Webmail Edition 1.0 (final) |
CVE-2007-0579
|
| MLIST:[horde-announce] 20080614 [announce] Horde Groupware Webmail Edition 1.1.1 (final) |
CVE-2008-3650
|
| MLIST:[horde-announce] 20080910 Horde 3.1.9 (final) |
CVE-2008-3824
|
| MLIST:[horde-announce] 20080910 [SECURITY] Horde 3.2.2 (final) |
CVE-2008-3823
CVE-2008-3824
|
| MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.1.6 (final) |
CVE-2009-3236
CVE-2009-3237
|
| MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.2.4 (final) |
CVE-2009-3236
CVE-2009-3237
|
| MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.1.6 (final) |
CVE-2009-3236
CVE-2009-3237
|
| MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.2.4 (final) |
CVE-2009-3236
CVE-2009-3237
|
| MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.2.5 (final) |
CVE-2009-3236
CVE-2009-3237
|
| MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.3.5 (final) |
CVE-2009-3236
CVE-2009-3237
|
| MLIST:[httpclient-users] 20110224 Proxy-Authorization header received on server side |
CVE-2011-1498
|
| MLIST:[httpclient-users] 20110224 RE: Proxy-Authorization header received on server side |
CVE-2011-1498
|
| MLIST:[httpclient-users] 20110224 Re: Proxy-Authorization header received on server side |
CVE-2011-1498
|
| MLIST:[httpd-announce] 20100611 [advisory] httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068 |
CVE-2010-2068
|
| MLIST:[httpd-announce] 20110519 Regressions in httpd 2.2.18, apr 1.4.4, and apr-util 1.3.11 |
CVE-2011-1928
|
| MLIST:[httpd-python-dev] 20040416 Re: possible bug in filter.write() |
CVE-2004-2680
|
| MLIST:[httpd-python-dev] 20040416 patch for filterobject.c |
CVE-2004-2680
|
| MLIST:[httpd-python-dev] 20040416 possible bug in filter.write() |
CVE-2004-2680
|
| MLIST:[hylafax-announce] 20050111 **ANOUNCE** hylafax-4.2.1 released |
CVE-2004-1182
|
| MLIST:[hylafax-users] 20051212 Re: proceedure for hylafax setup for PAM authentiation |
CVE-2005-3538
|
| MLIST:[icu-support] 20080122 ICU Patch for bugs in Regular Expressions |
CVE-2007-4770
CVE-2007-4771
|
| MLIST:[ietf-openpgp] 20060827 Bleichenbacher's RSA signature forgery based on implementation error |
CVE-2006-4339
CVE-2006-4340
|
| MLIST:[imap-uw] 20081031 Security bug in tmail and dmail |
CVE-2008-5005
|
| MLIST:[imp] 20050422 IMP 3.2.8 (final) |
CVE-2005-1319
|
| MLIST:[info-cyrus] 20050214 Cyrus IMAPd 2.2.11 Released |
CVE-2005-0546
|
| MLIST:[interchange-announce] 20040329 Security Problem in Interchange |
CVE-2004-0374
|
| MLIST:[interchange-announce] 20050922 Important: Security flaw found in Interchange demo catalog. |
CVE-2005-3073
|
| MLIST:[interchange-announce] 20050923 Important: Security flaw found in Interchange demo - Addendum |
CVE-2005-3073
|
| MLIST:[ipsec-tools-announce] 20080724 Ipsec-tools 0.7.1 released |
CVE-2008-3651
|
| MLIST:[ipsec-tools-announce] 20090422 Ipsec-tools 0.7.2 released |
CVE-2009-1632
|
| MLIST:[ipsec-tools-devel] 20050312 potential remote crash in racoon |
CVE-2005-0398
|
| MLIST:[ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools |
CVE-2005-3732
|
| MLIST:[ipsec-tools-devel] 20080724 Ipsec-tools 0.7.1 released |
CVE-2008-3651
|
| MLIST:[ipsec-tools-devel] 20080811 [PATCH] Track and delete orphaned ph1s |
CVE-2008-3652
|
| MLIST:[ircd-ratbox] 20070514 IMPORTANT: potential DoS found in ircd-ratbox |
CVE-2007-2786
|
| MLIST:[ircd-ratbox] 20100125 ircd-ratbox-2.2.9 released |
CVE-2009-4016
CVE-2010-0300
|
| MLIST:[iscsitarget-devel] 20100701 [patch] fix iSNS bounds checking |
CVE-2010-2221
|
| MLIST:[isn] 20031215 The mysteriously persistently exploitable program explained. |
CVE-2004-2768
|
| MLIST:[jabberd2] 20110531 jabberd-2.2.14 release |
CVE-2011-1755
|
| MLIST:[jabberd] 20040919 Jabberd 1.4 critical bug |
CVE-2004-1378
|
| MLIST:[java-apache-users] 20000929 jserv wrapper error |
CVE-2000-1247
|
| MLIST:[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update |
CVE-2007-1354
|
| MLIST:[jenkinsci-advisories] 20111109 Security advisory in Jenkins Core |
CVE-2011-4344
|
| MLIST:[karrigell-main] 20050731 SECURITY: python namespace exposure |
CVE-2005-2483
|
| MLIST:[karrigell-main] 20050802 Re: SECURITY: python namespace exposure |
CVE-2005-2483
|
| MLIST:[kde-announce] 20070309 KTorrent 2.1.2 is out |
CVE-2007-1384
CVE-2007-1385
|
| MLIST:[kerberos] 20101222 LDAP handle unavailable: Can't contact LDAP server |
CVE-2011-0281
|
| MLIST:[kernel-svn-changes] 20050816 r3920 - in branches/dist/sarge-security: . kernel kernel/i386 kernel/source kernel/source/kernel-source-2.6.8-2.6.8/debian |
CVE-2005-0136
|
| MLIST:[kmail-devel] 20050215 [Bug 96020] HTML Allows Spoofing of Emails Content |
CVE-2005-0404
|
| MLIST:[kolab-users] 20040420 Possible Kolab LDAP configuration information disclosure |
CVE-2004-1997
|
| MLIST:[kronolith] 20050422 Kronolith 1.1.4 (final) |
CVE-2005-1314
|
| MLIST:[kronolith] 20080427 Kronolith H3 (2.1.8) (final) |
CVE-2008-1974
|
| MLIST:[kvm] 20090702 KVM crashes when using certain USB device |
CVE-2010-0297
|
| MLIST:[kvm] 20090721 Re: KVM crashes when using certain USB device |
CVE-2010-0297
|
| MLIST:[kvm] 20100129 KVM: PIT: control word is write-only |
CVE-2010-0309
|
| MLIST:[kvm] 20100728 [PATCH 1/2] Fix segfault in mmio subpage handling code |
CVE-2010-2784
|
| MLIST:[kvm] 20101030 [patch v2] x86: kvm: x86: fix information leak to userland |
CVE-2010-3881
|
| MLIST:[kvm] 20111214 [PATCH 1/2] KVM: x86: Prevent starting PIT timers in the absence of irqchip support |
CVE-2011-4622
|
| MLIST:[libc-hacker] 20101018 [PATCH] Never expand $ORIGIN in privileged programs |
CVE-2010-3847
|
| MLIST:[libc-hacker] 20101022 [PATCH] Require suid bit on audit objects in privileged programs |
CVE-2010-3856
|
| MLIST:[libc-hacker] [PATCH] Fix LD_HWCAP_MASK handling |
CVE-2007-3508
|
| MLIST:[libcdio-devel] 20071231 buffer overrun in cd-info and iso-info and a release? |
CVE-2007-6613
|
| MLIST:[libcg-devel] 20101115 Fwd: libcgroup netlink |
CVE-2011-1022
|
| MLIST:[libcg-devel] 20110218 [PATCH 2/2] cgrulesengd: Ignore netlink messages that don't come from the kernel. |
CVE-2011-1022
|
| MLIST:[libcloud] 20100929 [jira] Closed: (LIBCLOUD-55) this python project is vulnerable to MITM as it fails to verify the ssl validity of the remote destination. |
CVE-2010-4340
|
| MLIST:[libcloud] 20101108 SSL certs checking |
CVE-2010-4340
|
| MLIST:[libexif-devel] 20091113 libexif project security advisory |
CVE-2009-3895
|
| MLIST:[libgadu-devel] 20081024 libgadu 1.8.2 |
CVE-2008-4776
|
| MLIST:[libtool] 20091116 Backport of libltdl changes to branch-1-5 |
CVE-2009-3736
|
| MLIST:[libtool] 20091116 GNU Libtool 2.2.6b released |
CVE-2009-3736
|
| MLIST:[libvir-list] 20090127 [libvirt] [PATCH] proxy: Fix use of uninitalized memory |
CVE-2009-0036
|
| MLIST:[libvir-list] 20090128 Re: [libvirt] [PATCH] proxy: Fix use of uninitalized memory |
CVE-2009-0036
|
| MLIST:[libvirt] 20081217 [SECURITY] PATCH: Fix missing read-only access checks (CVE-2008-5086) |
CVE-2008-5086
|
| MLIST:[libvirt] 20110323 [PATCH] Make error reporting in libvirtd thread safe |
CVE-2011-1486
|
| MLIST:[libvirt] 20110531 [PATCH] security: plug regression introduced in disk probe logic |
CVE-2011-2178
|
| MLIST:[libvirt] 20110624 [PATCH 2/2] remote: protect against integer overflow |
CVE-2011-2511
|
| MLIST:[linux-audit] 20080330 audit 1.7 released |
CVE-2008-1628
|
| MLIST:[linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. |
CVE-2011-2492
|
| MLIST:[linux-cifs-client] 20090406 [PATCH] cifs: Fix insufficient memory allocation for nativeFileSystem field |
CVE-2009-1439
|
| MLIST:[linux-cifs-client] 20100402 [patch] skip posix open if nameidata is null |
CVE-2010-1148
|
| MLIST:[linux-cifs-client] 20100404 [patch] skip posix open if nameidata is null |
CVE-2010-1148
|
| MLIST:[linux-cifs] 20110405 Re: Repeatable crash in 2.6.38 related to O_DIRECT |
CVE-2011-1771
|
| MLIST:[linux-cifs] 20110405 Repeatable crash in 2.6.38 related to O_DIRECT |
CVE-2011-1771
|
| MLIST:[linux-ext4] 20110603 [PATCH 1/2] ext4: Fix max file size and logical block counting of extent format file |
CVE-2011-2695
|
| MLIST:[linux-ia64] 20040916 Re: [Patch] Per CPU MCA/INIT data save areas |
CVE-2005-0136
|
| MLIST:[linux-ia64] [PATCH 1/1] ia64: perfmon.c trips BUG_ON in put_page_testzero |
CVE-2006-0558
|
| MLIST:[linux-kernel] 20020417 Re: SSE related security hole |
CVE-2002-1571
|
| MLIST:[linux-kernel] 20020417 SSE related security hole |
CVE-2002-1571
|
| MLIST:[linux-kernel] 20020418 Re: SSE related security hole |
CVE-2002-1571
|
| MLIST:[linux-kernel] 20020422 Re: SSE related security hole |
CVE-2002-1571
|
| MLIST:[linux-kernel] 20031105 BK2CVS problem |
CVE-2003-1161
|
| MLIST:[linux-kernel] 20031105 Re: BK2CVS problem |
CVE-2003-1161
|
| MLIST:[linux-kernel] 20040105 linux-2.4.24 released |
CVE-2003-0985
|
| MLIST:[linux-kernel] 20040219 Re: Oopsing cryptoapi (or loop device?) on 2.6.* |
CVE-2004-2135
CVE-2004-2136
|
| MLIST:[linux-kernel] 20040402 Re: disable-cap-mlock |
CVE-2004-0491
|
| MLIST:[linux-kernel] 20040408 [PATCH]: 2.4/2.6 do_fork() error path memory leak |
CVE-2004-0427
|
| MLIST:[linux-kernel] 20040416 Re: [CHECKER] Probable security holes in 2.6.5 |
CVE-2004-2607
|
| MLIST:[linux-kernel] 20040609 timer + fpu stuff locks my console race |
CVE-2004-0554
|
| MLIST:[linux-kernel] 20040911 [PATCH] exec: fix posix-timers leak and pending signal loss |
CVE-2005-3271
|
| MLIST:[linux-kernel] 20041111 a.out issue |
CVE-2004-1074
|
| MLIST:[linux-kernel] 20041114 [PATCH] linux 2.9.10-rc1: Fix oops in unix_dgram_sendmsg when using |
CVE-2004-1069
|
| MLIST:[linux-kernel] 20041130 Buffer overrun in arch/x86_64/sys_ia32.c:sys32_ni_syscall() |
CVE-2004-1151
|
| MLIST:[linux-kernel] 20041216 [Coverity] Untrusted user data in kernel |
CVE-2005-0124
|
| MLIST:[linux-kernel] 20050105 Re: [Coverity] Untrusted user data in kernel |
CVE-2005-0124
|
| MLIST:[linux-kernel] 20050107 [PATCH 2.4.29-pre3-bk4] fs/coda Re: [Coverity] Untrusted user data in kernel |
CVE-2005-0124
|
| MLIST:[linux-kernel] 20050107 [PATCH 2.6.10-mm2] fs/coda Re: [Coverity] Untrusted user data in kernel |
CVE-2005-0124
|
| MLIST:[linux-kernel] 20050301 Re: Breakage from patch: Only root should be able to set the N_MOUSE line discipline. |
CVE-2005-0839
|
| MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in pktcdvd |
CVE-2005-1589
|
| MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in raw device |
CVE-2005-1264
|
| MLIST:[linux-kernel] 20050805 [PATCH] Fix hugepage crash on failing mmap() |
CVE-2005-4811
|
| MLIST:[linux-kernel] 20050817 [PATCH 2.6.12.5] NPTL signal delivery deadlock fix |
CVE-2005-3847
|
| MLIST:[linux-kernel] 20050817 [PATCH] fix dst_entry leak in icmp_push_reply() |
CVE-2005-3848
|
| MLIST:[linux-kernel] 20050818 Re: [PATCH] fix dst_entry leak in icmp_push_reply() |
CVE-2005-3848
|
| MLIST:[linux-kernel] 20050826 [PATCH 2/7] [PATCH] NPTL signal delivery deadlock fix |
CVE-2005-3847
|
| MLIST:[linux-kernel] 20050826 [PATCH 4/7] [IPV4]: Fix DST leak in icmp_push_reply() |
CVE-2005-3848
|
| MLIST:[linux-kernel] 20050826 [PATCH 7/7] [IPV6]: Fix SKB leak in ip6_input_finish() |
CVE-2005-3858
|
| MLIST:[linux-kernel] 20050829 Re: Linux 2.6.12.6 |
CVE-2005-3858
|
| MLIST:[linux-kernel] 20050912 [PATCH] nfs client, kernel 2.4.31: readlink result overflow |
CVE-2005-4798
|
| MLIST:[linux-kernel] 20050925 [BUG/PATCH/RFC] Oops while completing async USB via usbdevio |
CVE-2005-3055
|
| MLIST:[linux-kernel] 20051112 Re: local denial-of-service with file leases |
CVE-2005-3857
|
| MLIST:[linux-kernel] 20051113 [GIT] Fix memory leak in lease code |
CVE-2005-3807
CVE-2005-3857
|
| MLIST:[linux-kernel] 20051122 [patch 11/23] [PATCH] [NETFILTER] ctnetlink: check if protoinfo is present |
CVE-2005-3809
|
| MLIST:[linux-kernel] 20051122 [patch 13/23] [PATCH] [NETFILTER] ctnetlink: Fix oops when no ICMP ID info in message |
CVE-2005-3810
|
| MLIST:[linux-kernel] 20051123 32bit integer overflow in invalidate_inode_pages2() (local DoS) |
CVE-2005-3808
|
| MLIST:[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host) |
CVE-2006-5158
|
| MLIST:[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host) |
CVE-2006-5158
|
| MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: Zero key material before free to avoid information leak |
CVE-2006-0095
|
| MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: zero key before freeing it |
CVE-2006-0095
|
| MLIST:[linux-kernel] 20060207 Linux 2.6.15.3 |
CVE-2006-0454
|
| MLIST:[linux-kernel] 20060207 Re: Linux 2.6.15.3 |
CVE-2006-0454
|
| MLIST:[linux-kernel] 20060207 [PATCH] arch/x86_64/kernel/traps.c PTRACE_SINGLESTEP oops |
CVE-2006-1066
|
| MLIST:[linux-kernel] 20060411 [PATCH] __group_complete_signal: remove bogus BUG_ON |
CVE-2006-1523
|
| MLIST:[linux-kernel] 20060419 RE: Linux 2.6.16.9 |
CVE-2006-1056
|
| MLIST:[linux-kernel] 20060426 [PATCH] LSM: add missing hook to do_compat_readv_writev() |
CVE-2006-1856
|
| MLIST:[linux-kernel] 20060526 PROBLEM: /proc (procfs) task exit race condition causes a kernelcrash |
CVE-2006-2629
|
| MLIST:[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks |
CVE-2006-2445
|
| MLIST:[linux-kernel] 20060717 [patch 25/45] splice: fix problems with sys_tee() |
CVE-2007-0997
|
| MLIST:[linux-kernel] 20061105 Linux 2.6.16.31-rc1 |
CVE-2006-4572
CVE-2006-5174
CVE-2006-5619
|
| MLIST:[linux-kernel] 20061215 [patch 24/24] Bluetooth: Add packet size checks for CAPI messages (CVE-2006-6106) |
CVE-2006-6106
|
| MLIST:[linux-kernel] 20061219 BUG: wedged processes, test program supplied |
CVE-2006-6921
|
| MLIST:[linux-kernel] 20061219 Linux 2.6.18.6 |
CVE-2006-6106
|
| MLIST:[linux-kernel] 20061220 Re: BUG: wedged processes, test program supplied |
CVE-2006-6921
|
| MLIST:[linux-kernel] 20070508 Re: [PATCH -utrace] Move utrace into task_struct |
CVE-2008-2365
|
| MLIST:[linux-kernel] 20070608 Linux 2.6.20.13 |
CVE-2007-2453
CVE-2007-2876
|
| MLIST:[linux-kernel] 20070608 Linux 2.6.21.4 |
CVE-2007-2453
CVE-2007-2876
|
| MLIST:[linux-kernel] 20070720 [PATCH] splice: fix bad unlock_page() in error case |
CVE-2008-4302
|
| MLIST:[linux-kernel] 20070731 Re: [PATCH] add check do_direct_IO() return val |
CVE-2007-6716
|
| MLIST:[linux-kernel] 20070921 Linux 2.6.22.7 |
CVE-2007-4573
|
| MLIST:[linux-kernel] 20070921 Re: Linux 2.6.22.7 |
CVE-2007-4573
|
| MLIST:[linux-kernel] 20071108 Buffer overflow in CIFS VFS. |
CVE-2007-5904
|
| MLIST:[linux-kernel] 20071108 [PATCH] time: fix sysfs_show_{available,current}_clocksources() buffer overflow problem |
CVE-2007-5908
|
| MLIST:[linux-kernel] 20071109 Re: Fw: Buffer overflow in CIFS VFS. |
CVE-2007-5904
|
| MLIST:[linux-kernel] 20071116 Linux 2.6.23.8 |
CVE-2007-5501
|
| MLIST:[linux-kernel] 20071122 [PATCH] PPC: CHRP - fix possible NULL pointer dereference |
CVE-2007-6694
|
| MLIST:[linux-kernel] 20071128 [PATCH] tmpfs: restore missing clear_highpage |
CVE-2007-6417
|
| MLIST:[linux-kernel] 20071212 Re: [PATCH] tmpfs: restore missing clear_highpage |
CVE-2007-6417
|
| MLIST:[linux-kernel] 20071215 Re: [PATCH] tmpfs: restore missing clear_highpage |
CVE-2007-6417
|
| MLIST:[linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007) |
CVE-2008-0007
|
| MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit |
CVE-2008-0600
|
| MLIST:[linux-kernel] 20080229 [BUG] soft lockup detected with ipcs |
CVE-2009-0859
|
| MLIST:[linux-kernel] 20080305 Linux doesn't follow x86/x86-64 ABI wrt direction flag |
CVE-2008-1367
|
| MLIST:[linux-kernel] 20080429 [04/12] tehuti: check register size (CVE-2008-1675) |
CVE-2008-1675
|
| MLIST:[linux-kernel] 20080429 [26/37] tehuti: check register size (CVE-2008-1675) |
CVE-2008-1675
|
| MLIST:[linux-kernel] 20080429 [27/37] tehuti: move ioctl perm check closer to function start |
CVE-2008-1675
|
| MLIST:[linux-kernel] 20080430 Re: Page Faults slower in 2.6.25-rc9 than 2.6.23 |
CVE-2008-2372
|
| MLIST:[linux-kernel] 20080501 Linux 2.6.24.6 |
CVE-2008-1375
|
| MLIST:[linux-kernel] 20080501 Linux 2.6.25.1 |
CVE-2008-1375
|
| MLIST:[linux-kernel] 20080509 Re: When should kfree_skb be used? |
CVE-2008-2136
|
| MLIST:[linux-kernel] 20080513 [patch 25/37] sparc: Fix mremap address range validation. |
CVE-2008-6107
|
| MLIST:[linux-kernel] 20080702 Is VFS behavior fine? |
CVE-2008-3275
|
| MLIST:[linux-kernel] 20080723 Re: [PATCH 1/2] signals: kill(-1) should only signal processes in the same namespace |
CVE-2009-1338
|
| MLIST:[linux-kernel] 20080726 tmpfs: kernel BUG at mm/shmem.c:814 |
CVE-2008-3534
|
| MLIST:[linux-kernel] 20080730 2.6.27-rc1: IP: iov_iter_advance+0x2e/0x90 |
CVE-2008-3535
|
| MLIST:[linux-kernel] 20080730 [patch 40/62] V4L: uvcvideo: Fix a buffer overflow in format descriptor parsing |
CVE-2008-3496
|
| MLIST:[linux-kernel] 20080807 OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175 |
CVE-2008-3686
|
| MLIST:[linux-kernel] 20080808 Re: OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175 |
CVE-2008-3686
|
| MLIST:[linux-kernel] 20080823 [GIT]: Networking |
CVE-2008-3792
|
| MLIST:[linux-kernel] 20080830 Re: buffer overflow in /proc/sys/sunrpc/transports |
CVE-2008-3911
|
| MLIST:[linux-kernel] 20080830 buffer overflow in /proc/sys/sunrpc/transports |
CVE-2008-3911
|
| MLIST:[linux-kernel] 20080903 [patch 05/16] nfsd: fix buffer overrun decoding NFSv4 acl |
CVE-2008-3915
|
| MLIST:[linux-kernel] 20080913 [PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption |
CVE-2008-3528
|
| MLIST:[linux-kernel] 20080913 [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption |
CVE-2008-3528
|
| MLIST:[linux-kernel] 20080918 Re: [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption |
CVE-2008-3528
|
| MLIST:[linux-kernel] 20081005 [PATCH 04/19] ib700wdt: Fix off by one |
CVE-2008-5702
|
| MLIST:[linux-kernel] 20081006 [patch 58/71] sctp: Fix oops when INIT-ACK indicates that peer doesnt support AUTH |
CVE-2008-4576
|
| MLIST:[linux-kernel] 20081220 [Security] gitweb local privilege escalation (fix) |
CVE-2008-5916
|
| MLIST:[linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning |
CVE-2009-0029
|
| MLIST:[linux-kernel] 20090127 [PATCH 1/2] fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM |
CVE-2009-0859
|
| MLIST:[linux-kernel] 20090130 [PATCH] Fix memory corruption in console selection |
CVE-2009-1046
|
| MLIST:[linux-kernel] 20090131 [patch 03/43] inotify: clean up inotify_read and fix locking |
CVE-2009-0935
|
| MLIST:[linux-kernel] 20090202 Re: [PATCH] Fix memory corruption in console selection |
CVE-2009-1046
|
| MLIST:[linux-kernel] 20090212 [PATCH] 4 bytes kernel memory disclosure in SO_BSDCOMPAT gsopt try #2 |
CVE-2009-0676
|
| MLIST:[linux-kernel] 20090223 net: amend the fix for SO_BSDCOMPAT gsopt infoleak |
CVE-2009-0676
|
| MLIST:[linux-kernel] 20090225 Re: [PATCH 2/2] exit_notify: kill the wrong capable(CAP_KILL) check |
CVE-2009-1337
|
| MLIST:[linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole |
CVE-2009-0835
|
| MLIST:[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes |
CVE-2009-0834
CVE-2009-0835
|
| MLIST:[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole |
CVE-2009-0834
|
| MLIST:[linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole |
CVE-2009-0835
|
| MLIST:[linux-kernel] 20090311 VFS, NFS security bug? Should CAP_MKNOD and CAP_LINUX_IMMUTABLE be added to CAP_FS_MASK? |
CVE-2009-1072
|
| MLIST:[linux-kernel] 20090502 Linux 2.6.27.21 |
CVE-2009-1184
|
| MLIST:[linux-kernel] 20090502 Linux 2.6.28.10 |
CVE-2009-1184
|
| MLIST:[linux-kernel] 20090608 [Security, resend] Instant crash with rtl8169 and large packets |
CVE-2009-1389
|
| MLIST:[linux-kernel] 20090622 Fix for shared flat binary format in 2.6.30 |
CVE-2009-2768
|
| MLIST:[linux-kernel] 20090623 [PATCH 0/1] mm_for_maps: simplify, use ptrace_may_access() |
CVE-2009-2691
|
| MLIST:[linux-kernel] 20090623 [PATCH 1/1] mm_for_maps: simplify, use ptrace_may_access() |
CVE-2009-2691
|
| MLIST:[linux-kernel] 20090706 Re: PROBLEM: tun/tap crashes if open() /dev/net/tun and then poll() it. |
CVE-2009-1897
|
| MLIST:[linux-kernel] 20090710 [PATCH 1/2] mm_for_maps: shift down_read(mmap_sem) to the caller |
CVE-2009-2691
|
| MLIST:[linux-kernel] 20090710 [PATCH 2/2] mm_for_maps: take ->cred_guard_mutex to fix the race |
CVE-2009-2691
|
| MLIST:[linux-kernel] 20090720 Re: [PATCH] sgi-gru: Fix kernel stack buffer overrun |
CVE-2009-2584
|
| MLIST:[linux-kernel] 20090721 [PATCH] sgi-gru: Fix kernel stack buffer overrun |
CVE-2009-2584
|
| MLIST:[linux-kernel] 20090801 [PATCH v2] execve: must clear current->clear_child_tid |
CVE-2009-2848
|
| MLIST:[linux-kernel] 20090804 Re: [PATCH] posix-timers: fix oops in clock_nanosleep() with CLOCK_MONOTONIC_RAW |
CVE-2009-2767
|
| MLIST:[linux-kernel] 20090819 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 |
CVE-2009-3043
|
| MLIST:[linux-kernel] 20090819 v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 |
CVE-2009-3043
|
| MLIST:[linux-kernel] 20090820 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 |
CVE-2009-3043
|
| MLIST:[linux-kernel] 20090902 [BUG] 2.6.31-rc8 readcd Oops |
CVE-2009-3288
|
| MLIST:[linux-kernel] 20090903 [PATCH] sg: fix oops in the error path in sg_build_indirect() |
CVE-2009-3288
|
| MLIST:[linux-kernel] 20090916 [patch 15/45] perf_counter: Fix buffer overflow in perf_copy_attr() |
CVE-2009-3234
|
| MLIST:[linux-kernel] 20090921 [git pull] drm tree. |
CVE-2009-3620
|
| MLIST:[linux-kernel] 20091001 [tip:x86/urgent] x86: Don't leak 64-bit kernel register values to 32-bit processes |
CVE-2009-2910
|
| MLIST:[linux-kernel] 20091002 Re: [PATCH 0/8] SECURITY ISSUE with connector |
CVE-2009-3725
|
| MLIST:[linux-kernel] 20091002 [071/136] net ax25: Fix signed comparison in the sockopt handler |
CVE-2009-2909
|
| MLIST:[linux-kernel] 20091014 fs/pipe.c null pointer dereference |
CVE-2009-3547
|
| MLIST:[linux-kernel] 20091019 Re: [PATCH] AF_UNIX: Fix deadlock on connecting to shutdown socket |
CVE-2009-3621
|
| MLIST:[linux-kernel] 20091021 Re: [PATCH v4 1/1]: fs: pipe.c null pointer dereference + really sign off + unmangled diffs |
CVE-2009-3547
|
| MLIST:[linux-kernel] 20091205 [RFC][PATCHSET] mremap/mmap mess |
CVE-2010-0291
|
| MLIST:[linux-kernel] 20091209 [GIT PULL] ext4 updates for v2.6.33 |
CVE-2009-4131
CVE-2009-4307
|
| MLIST:[linux-kernel] 20100114 [PATCH 01/52] untangle the do_mremap() mess |
CVE-2010-0291
|
| MLIST:[linux-kernel] 20100205 PROBLEM: hda-intel divide by zero kernel crash in azx_position_ok() |
CVE-2010-1085
|
| MLIST:[linux-kernel] 20100221 [80/93] USB: usbfs: properly clean up the as structure on error paths |
CVE-2010-1083
|
| MLIST:[linux-kernel] 20100303 [PATCH v2] hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[linux-kernel] 20100311 [PATCH 3/3] GFS2: Skip check for mandatory locks when unlocking |
CVE-2010-0727
|
| MLIST:[linux-kernel] 20100330 [48/89] USB: usbfs: properly clean up the as structure on error paths |
CVE-2010-1083
|
| MLIST:[linux-kernel] 20100408 [PATCH #3] reiserfs: Fix permissions on .reiserfs_priv |
CVE-2010-1146
|
| MLIST:[linux-kernel] 20100422 [PATCH 0/1][BUG][IMPORTANT] KEYRINGS: find_keyring_by_name() can gain the freed keyring |
CVE-2010-1437
|
| MLIST:[linux-kernel] 20100430 [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring |
CVE-2010-1437
|
| MLIST:[linux-kernel] 20100503 Re: [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring |
CVE-2010-1437
|
| MLIST:[linux-kernel] 20100510 [071/117] kgdb: dont needlessly skip PAGE_USER test for Fsl booke |
CVE-2010-1446
|
| MLIST:[linux-kernel] 20100518 [PATCH] btrfs: should add a permission check for setfacl |
CVE-2010-2071
|
| MLIST:[linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer |
CVE-2010-4243
|
| MLIST:[linux-kernel] 20100827 [PATCH] wireless: fix 64K kernel heap content leak via ioctl |
CVE-2010-2955
|
| MLIST:[linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer |
CVE-2010-4243
|
| MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless extensions: fix kernel heap content leak |
CVE-2010-2955
|
| MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless: fix 64K kernel heap content leak via ioctl |
CVE-2010-2955
|
| MLIST:[linux-kernel] 20100830 [PATCH] wireless extensions: fix kernel heap content leak |
CVE-2010-2955
|
| MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory |
CVE-2010-3296
|
| MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/eql.c: prevent reading uninitialized stack memory |
CVE-2010-3297
|
| MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/usb/hso.c: prevent reading uninitialized memory |
CVE-2010-3298
|
| MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/amiserial.c: prevent reading uninitialized stack memory |
CVE-2010-4076
|
| MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/nozomi.c: prevent reading uninitialized stackmemory |
CVE-2010-4077
|
| MLIST:[linux-kernel] 20100915 [PATCH] drivers/media/video/ivtv/ivtvfb.c: prevent reading uninitialized stack memory |
CVE-2010-4079
|
| MLIST:[linux-kernel] 20100915 [PATCH] drivers/serial/serial_core.c: prevent readinguninitialized stack memory |
CVE-2010-4075
|
| MLIST:[linux-kernel] 20100915 [PATCH] drivers/usb/serial/mos*: prevent reading uninitialized stack memory |
CVE-2010-4074
|
| MLIST:[linux-kernel] 20100915 [PATCH] drivers/video/via/ioctl.c: prevent reading uninitializedstack memory |
CVE-2010-4082
|
| MLIST:[linux-kernel] 20100925 [PATCH] sound/pci/rme9652: prevent reading uninitialized stack memory |
CVE-2010-4080
CVE-2010-4081
|
| MLIST:[linux-kernel] 20101001 [PATCH] Fix out-of-bounds reading in sctp_asoc_get_hmac() |
CVE-2010-3705
|
| MLIST:[linux-kernel] 20101006 [PATCH v3] IPC: Initialize structure memory to zero for compat functions |
CVE-2010-4073
|
| MLIST:[linux-kernel] 20101006 [PATCH] ipc: initialize structure memory to zero for shmctl |
CVE-2010-4072
|
| MLIST:[linux-kernel] 20101007 Peculiar stuff in hci_ath3k/badness in hci_uart |
CVE-2010-4242
|
| MLIST:[linux-kernel] 20101007 [PATCH] net: clear heap allocations for privileged ethtool actions |
CVE-2010-4655
|
| MLIST:[linux-kernel] 20101123 Unix socket local DOS (OOM) |
CVE-2010-4249
|
| MLIST:[linux-kernel] 20101124 [PATCH net-next-2.6] scm: lower SCM_MAX_FD |
CVE-2010-4249
|
| MLIST:[linux-kernel] 20101125 Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect :( |
CVE-2010-4249
|
| MLIST:[linux-kernel] 20101129 Re: [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() |
CVE-2010-4668
|
| MLIST:[linux-kernel] 20101129 [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() |
CVE-2010-4668
|
| MLIST:[linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer |
CVE-2010-4243
|
| MLIST:[linux-kernel] 20101201 Re: [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. |
CVE-2010-4258
|
| MLIST:[linux-kernel] 20101201 [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. |
CVE-2010-4258
|
| MLIST:[linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check. |
CVE-2010-4346
|
| MLIST:[linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls. |
CVE-2011-1082
|
| MLIST:[linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec |
CVE-2011-1020
|
| MLIST:[linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec |
CVE-2011-1020
|
| MLIST:[linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec |
CVE-2011-1020
|
| MLIST:[linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec |
CVE-2011-1020
|
| MLIST:[linux-kernel] 20110225 [PATCH] optimize epoll loop detection |
CVE-2011-1083
|
| MLIST:[linux-kernel] 20110226 Re: [PATCH] optimize epoll loop detection |
CVE-2011-1083
|
| MLIST:[linux-kernel] 20110228 Re: [PATCH] optimize epoll loop detection |
CVE-2011-1083
|
| MLIST:[linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace |
CVE-2011-1171
|
| MLIST:[linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace |
CVE-2011-1172
|
| MLIST:[linux-kernel] 20110311 [PATCH] proc: protect mm start_code/end_code in /proc/pid/stat |
CVE-2011-0726
|
| MLIST:[linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads |
CVE-2011-1494
CVE-2011-1495
|
| MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow |
CVE-2011-1746
CVE-2011-1747
|
| MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes |
CVE-2011-1745
CVE-2011-2022
|
| MLIST:[linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) |
CVE-2011-1593
|
| MLIST:[linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow |
CVE-2011-1746
|
| MLIST:[linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length |
CVE-2011-1770
|
| MLIST:[linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length |
CVE-2011-1770
|
| MLIST:[linux-kernel] 20110523 Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values |
CVE-2011-2184
|
| MLIST:[linux-kernel] 20110524 Re: Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values |
CVE-2011-2184
|
| MLIST:[linux-kernel] 20110525 Re: [Security] Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values |
CVE-2011-2184
|
| MLIST:[linux-kernel] 20110608 [BUG] hfs_find_init() sb->ext_tree NULL pointer dereference |
CVE-2011-2203
|
| MLIST:[linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode |
CVE-2011-2484
|
| MLIST:[linux-kernel] 20110624 [PATCH] Bluetooth: Prevent buffer overflow in l2cap config request |
CVE-2011-2497
|
| MLIST:[linux-kernel] 20111109 [BUG][SECURITY] Kernel stack overflow in hfs_mac2asc() |
CVE-2011-4330
|
| MLIST:[linux-kernel] 20111115 [PATCH] KEYS: Fix a NULL pointer deref in the user-defined key type |
CVE-2011-4110
|
| MLIST:[linux-lvm] 20100728 lvm2-cluster (clvmd) security fix (Moderate) |
CVE-2010-2526
|
| MLIST:[linux-mm-commits] 20091203 + hfs-fix-a-potential-buffer-overflow.patch added to -mm tree |
CVE-2009-4020
|
| MLIST:[linux-mm] 20100128 DoS on x86_64 |
CVE-2010-0307
|
| MLIST:[linux-mtd] 20070822 [JFFS2] Fix ACL vs. mode handling. |
CVE-2007-4849
|
| MLIST:[linux-netdev] 20060304 BUG: Small information leak in SO_ORIGINAL_DST (2.4 and 2.6) and |
CVE-2006-1342
CVE-2006-1343
|
| MLIST:[linux-netdev] 20070316 [PATCH 2.6.21-rc3] IPV6: ipv6_fl_socklist is inadvertently shared. |
CVE-2007-1592
|
| MLIST:[linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets |
CVE-2007-6282
|
| MLIST:[linux-netdev] 20080821 [PATCH] sctp: fix potential panics in the SCTP-AUTH API. |
CVE-2008-3792
|
| MLIST:[linux-netdev] 20081106 UNIX sockets kernel panic |
CVE-2008-5029
|
| MLIST:[linux-netdev] 20081120 soft lockups/OOM after unix socket fixes |
CVE-2008-5300
|
| MLIST:[linux-netdev] 20081125 [PATCH] Fix soft lockups/OOM issues w/ unix garbage collector |
CVE-2008-5300
|
| MLIST:[linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table |
CVE-2008-5079
|
| MLIST:[linux-netdev] 20090214 r8169: instant crash if receiving packet larger than MTU |
CVE-2009-1389
|
| MLIST:[linux-netdev] 20091228 [PATCH RFC] r8169: straighten out overlength frame detection |
CVE-2009-4537
|
| MLIST:[linux-netdev] 20100114 [PATCH]: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo(). |
CVE-2010-0006
|
| MLIST:[linux-netdev] 20100920 [PATCH] rose: Fix signedness issues wrt. digi count. |
CVE-2010-3310
|
| MLIST:[linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling |
CVE-2010-4175
|
| MLIST:[linux-nfs] 20081022 kernel oops in nfs4_proc_lock |
CVE-2009-3726
|
| MLIST:[linux-nfs] 20090509 [NFS] [PATCH] nfs: Fix NFS v4 client handling of MAY_EXEC in nfs_permission. |
CVE-2009-1630
|
| MLIST:[linux-parisc] 20080729 [PATCH] fix unwind crash - was: Re: 2.6.26 kernel crash |
CVE-2008-5395
|
| MLIST:[linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers |
CVE-2011-0695
|
| MLIST:[linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback |
CVE-2011-0695
|
| MLIST:[linux-scsi] 20100521 [PATCH 1/2] bfa: fix system crash when reading sysfs fc_host statistics |
CVE-2010-4343
|
| MLIST:[linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl |
CVE-2010-4157
|
| MLIST:[linux-sctp] 20080827 [PATCH 0/2] sctp: additional overflow fixes |
CVE-2008-4445
|
| MLIST:[linux-sctp] 20080827 [PATCH 2/2] sctp: fix random memory dereference with SCTP_HMAC_IDENT option. |
CVE-2008-4445
|
| MLIST:[linux-security-module] 20050928 readv/writev syscalls are not checked by lsm |
CVE-2006-1856
|
| MLIST:[linux-security] 19961122 LSF Update#14: Vulnerability of the lpr program. |
CVE-1999-0032
|
| MLIST:[linux-sparc] 20060130 Attempts to set date with 'date -s' hang the machine |
CVE-2006-0482
|
| MLIST:[linux-sparc] 20060130 Re: Attempts to set date with 'date -s' hang the machine |
CVE-2006-0482
|
| MLIST:[linux-sparc] 20100219 Execution possible in non-executable mappings in recent 2.6 kernels |
CVE-2010-1451
|
| MLIST:[linux-sparc] 20100219 Re: Execution possible in non-executable mappings in recent 2.6 kernels |
CVE-2010-1451
|
| MLIST:[linux-wireless] 20081029 [PATCH] libertas: fix buffer overrun |
CVE-2008-5134
|
| MLIST:[linux-xfs] 20100620 [PATCH 0/4, V2] xfs: validate inode numbers in file handles correctly |
CVE-2010-2943
|
| MLIST:[linux-xfs] 20100620 [PATCH 2/4] xfs: validate untrusted inode numbers during lookup |
CVE-2010-2943
|
| MLIST:[linux-xfs] 20100620 [PATCH 3/4] xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED |
CVE-2010-2943
|
| MLIST:[linux-xfs] 20100620 [PATCH 4/4] xfs: remove block number from inode lookup code |
CVE-2010-2943
|
| MLIST:[listar-dev] 20060115 [EDev] Re: Potential vulnerability -- who to contact? |
CVE-2006-0332
|
| MLIST:[listar-dev] 20060119 [EDev] Re: Potential vulnerability -- who to contact? |
CVE-2006-0332
|
| MLIST:[lkml-patch] 20060821 dvb-core: Proper handling ULE SNDU length of 0 |
CVE-2006-4623
|
| MLIST:[lkml] 20070129 [PATCH] Don't allow the stack to grow into hugetlb reserved regions |
CVE-2007-3739
|
| MLIST:[lsh-bugs] 20050316 ANNOUNCE: LSH-2.0.1, fix for denial of service bug |
CVE-2005-0814
|
| MLIST:[lsh-bugs] SECURITY: lshd leaks fd:s to user shells |
CVE-2006-0353
|
| MLIST:[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR |
CVE-2009-4497
|
| MLIST:[mad-dev] 20080112 Initite loop bug in libid3tag-0.15.0b |
CVE-2008-2109
|
| MLIST:[mailman-announce] 20100905 Mailman security patch. |
CVE-2010-3089
|
| MLIST:[mailman-announce] 20100909 Mailman security patch. |
CVE-2010-3089
|
| MLIST:[mailman-announce] 20110213 Mailman Security Patch Announcement |
CVE-2011-0707
|
| MLIST:[mailman-announce] 20110218 Mailman Security Patch Announcement |
CVE-2011-0707
|
| MLIST:[mantisbt-announce] 20100914 MantisBT 1.2.3 Released |
CVE-2010-3070
|
| MLIST:[mapserver-users] 20090326 MapServer 5.2.2 and 4.10.4 released with security fixes |
CVE-2009-0839
CVE-2009-0840
CVE-2009-0841
CVE-2009-0842
CVE-2009-0843
CVE-2009-1176
CVE-2009-1177
|
| MLIST:[mapserver-users] 20100709 MapServer 5.6.4 and 4.10.6 released with important security fixes |
CVE-2010-2539
CVE-2010-2540
|
| MLIST:[mapserver-users] 20110713 MapServer 6.0.1, 5.6.7 and 4.10.7 releases with security fixes |
CVE-2011-2703
CVE-2011-2704
CVE-2011-2975
|
| MLIST:[mediawiki-announce] 20081215 MediaWiki 1.13.3, 1.12.2, 1.6.11 security update |
CVE-2008-5249
CVE-2008-5250
CVE-2008-5252
CVE-2008-5687
CVE-2008-5688
|
| MLIST:[mediawiki-announce] 20090713 MediaWiki security update: 1.15.1 and 1.14.1 |
CVE-2009-4589
|
| MLIST:[mediawiki-announce] 20100407 MediaWiki security update: 1.15.3 and 1.16.0beta2 |
CVE-2010-1150
|
| MLIST:[mediawiki-announce] 20100728 MediaWiki security release: 1.16.0 and 1.15.5 |
CVE-2010-2787
CVE-2010-2788
CVE-2010-2789
|
| MLIST:[mediawiki-announce] 20110412 MediaWiki security release 1.16.3 |
CVE-2011-1578
CVE-2011-1579
CVE-2011-1580
|
| MLIST:[mediawiki-announce] 20110414 MediaWiki security release 1.16.4 |
CVE-2011-1587
|
| MLIST:[mediawiki-announce] 20110505 MediaWiki security release 1.16.5 |
CVE-2011-1765
CVE-2011-1766
|
| MLIST:[mediawiki-announce] 20111128 MediaWiki security release 1.17.1 |
CVE-2011-4360
CVE-2011-4361
|
| MLIST:[mhonarc-dev] 20101230 [bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS) |
CVE-2010-4524
|
| MLIST:[mhonarc-dev] 20101230 [bug #32014] CVE-2010-1677: DoS when processing html messages with deep tag nesting |
CVE-2010-1677
|
| MLIST:[mimedefang] 20070209 SECURITY: MIMEDefang 2.61 is Released |
CVE-2007-0884
|
| MLIST:[misc] 20071010 OpenBSD XSS ;) |
CVE-2007-6700
|
| MLIST:[mm-commits] 20100923 + sys_semctl-fix-kernel-stack-leakage.patch added to -mm tree |
CVE-2010-4083
|
| MLIST:[mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree |
CVE-2011-1012
|
| MLIST:[mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree |
CVE-2011-1163
|
| MLIST:[mm-commits] 20110314 + proc-protect-mm-start_code-end_code-in-proc-pid-stat.patch added to -mm tree |
CVE-2011-0726
|
| MLIST:[mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree |
CVE-2011-1577
|
| MLIST:[mnemo] 20050422 Mnemo 1.1.4 (final) |
CVE-2005-1320
|
| MLIST:[mod_python] 20040122 [ANNOUNCE] Mod_python 2.7.10 |
CVE-2004-0096
|
| MLIST:[modperl-cvs] 20090401 svn commit: r761081 - in /perl/modperl/branches/1.x: Changes lib/Apache/Status.pm |
CVE-2009-0796
|
| MLIST:[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status |
CVE-2009-0796
|
| MLIST:[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack |
CVE-2006-5467
|
| MLIST:[monkeysphere] 20101025 resolved monkeysphere security vulnerability |
CVE-2010-4096
|
| MLIST:[mono-devel-list] 20080726 [Mono-dev] [PATCH] HTML encode attributes that might need encoding |
CVE-2008-3422
|
| MLIST:[mono-patches] 20101012 [mono/mono] d3985be4: Search for dllimported shared libs in the base directory, not cwd. |
CVE-2010-4159
|
| MLIST:[mpg123-devel] 20090405 mpg123 1.7.2 is out -- important security fix! |
CVE-2009-1301
|
| MLIST:[mpm-itk] 20110321 CVE 2011-1176: Sometimes runs as root instead of the default Apache user |
CVE-2011-1176
|
| MLIST:[mpm-itk] 20110321 mpm-itk version 2.2.17-01 released |
CVE-2011-1176
|
| MLIST:[mute-net-discuss] 20050317 Houston, Houston we have problem! |
CVE-2005-4726
|
| MLIST:[mute-net-discuss] 20050318 Re: Houston, Houston we have problem! |
CVE-2005-4726
|
| MLIST:[mutt-dev] 20061004 security problem with temp files [was Re: mutt_adv_mktemp() ?] |
CVE-2006-5297
CVE-2006-5298
|
| MLIST:[myserver-commit] 20070210 SF.net SVN: myserver: [2183] trunk/myserver/source/server.cpp |
CVE-2007-1588
|
| MLIST:[nag] 20050422 Nag 1.1.3 (final) |
CVE-2005-1322
|
| MLIST:[nagios-devel] 20081107 Security fixes completed |
CVE-2008-5027
CVE-2008-5028
|
| MLIST:[nanog] 20090817 RE: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E01100" ? |
CVE-2009-2055
|
| MLIST:[nanog] 20100827 Did your BGP crash today? |
CVE-2010-3035
|
| MLIST:[neon] 20070107 invalid chars cause sigserv in neon |
CVE-2007-0157
|
| MLIST:[neon] 20080820 CVE-2008-3746: NULL pointer dereference in Digest domain support |
CVE-2008-3746
|
| MLIST:[neon] 20080820 neon: release 0.28.3 (SECURITY) |
CVE-2008-3746
|
| MLIST:[neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat |
CVE-2009-2473
|
| MLIST:[neon] 20090818 CVE-2009-2474: fix handling of NUL in SSL cert subject names |
CVE-2009-2474
|
| MLIST:[neon] 20090818 neon: release 0.28.6 (SECURITY) |
CVE-2009-2473
CVE-2009-2474
|
| MLIST:[net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug |
CVE-2005-2177
|
| MLIST:[netbsd-announce] 20051031 Announcing update 2.0.3 - source only |
CVE-2005-4691
CVE-2005-4779
CVE-2005-4783
|
| MLIST:[netdev] 20050124 Re: skb_checksum_help |
CVE-2005-0449
|
| MLIST:[netdev] 20090128 [PATCH] drivers/net/skfp: if !capable(CAP_NET_ADMIN): inverted logic |
CVE-2009-0675
|
| MLIST:[netdev] 20090409 Oops in tun: bisected to Limit amount of queued packets per device |
CVE-2009-1897
|
| MLIST:[netdev] 20100302 [PATCH 1/8] net: add limit for socket backlog |
CVE-2010-4251
CVE-2010-4805
|
| MLIST:[netdev] 20100428 Re: [PATCH]: sctp: Fix skb_over_panic resulting from multiple invalid parameter errors (CVE-2010-1173) (v4) |
CVE-2010-1173
|
| MLIST:[netdev] 20100521 tc: RTM_GETQDISC causes kernel OOPS |
CVE-2011-2525
|
| MLIST:[netdev] 20100628 [PATCH net-2.6 1/2] ethtool: Fix potential kernel buffer overflow in ETHTOOL_GRXCLSRLALL |
CVE-2010-2478
|
| MLIST:[netdev] 20100705 bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference |
CVE-2011-0709
|
| MLIST:[netdev] 20100706 Re: bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference |
CVE-2011-0709
|
| MLIST:[netdev] 20100830 [PATCH] irda: Correctly clean up self->ias_obj on irda_bind() failure. |
CVE-2010-2954
|
| MLIST:[netdev] 20100907 [PATCH net-2.6] niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL |
CVE-2010-3084
|
| MLIST:[netdev] 20100915 [PATCH] net: SCTP remote/local Denial of Service vulnerability description and fix |
CVE-2010-3432
|
| MLIST:[netdev] 20101021 TIPC security issues |
CVE-2010-3859
|
| MLIST:[netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() |
CVE-2010-3859
CVE-2010-4160
|
| MLIST:[netdev] 20101027 [PATCH 0/4] RFC: tipc int vs size_t fixes |
CVE-2010-3859
|
| MLIST:[netdev] 20101027 [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() |
CVE-2010-3859
|
| MLIST:[netdev] 20101027 [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() |
CVE-2010-3859
|
| MLIST:[netdev] 20101027 [PATCH 3/4] tipc: Update arguments to use size_t for iovec array sizes |
CVE-2010-3859
|
| MLIST:[netdev] 20101027 [PATCH 4/4] tipc: Fix bugs in sending of large amounts of byte-stream data |
CVE-2010-3859
|
| MLIST:[netdev] 20101028 Re: [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() |
CVE-2010-3859
|
| MLIST:[netdev] 20101028 Re: [Security] TIPC security issues |
CVE-2010-3865
|
| MLIST:[netdev] 20101031 [PATCH 1/3] net: ax25: fix information leak to userland |
CVE-2010-3875
|
| MLIST:[netdev] 20101031 [PATCH 2/3] net: packet: fix information leak to userland |
CVE-2010-3876
|
| MLIST:[netdev] 20101031 [PATCH 3/3] net: tipc: fix information leak to userland |
CVE-2010-3877
|
| MLIST:[netdev] 20101031 [SECURITY] L2TP send buffer allocation size overflows |
CVE-2010-4160
|
| MLIST:[netdev] 20101102 Re: [SECURITY] CAN info leak/minor heap overflow |
CVE-2010-4565
|
| MLIST:[netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow |
CVE-2010-3874
CVE-2010-4565
|
| MLIST:[netdev] 20101102 [SECURITY] memory corruption in X.25 facilities parsing |
CVE-2010-3873
|
| MLIST:[netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited. |
CVE-2010-3880
|
| MLIST:[netdev] 20101104 Re: [SECURITY] memory corruption in X.25 facilities parsing |
CVE-2010-3873
|
| MLIST:[netdev] 20101109 Re: [PATCH] Fix CAN info leak/minor heap overflow |
CVE-2010-4565
|
| MLIST:[netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters |
CVE-2010-4158
|
| MLIST:[netdev] 20101110 Re: [PATCH] Fix CAN info leak/minor heap overflow |
CVE-2010-4565
|
| MLIST:[netdev] 20101110 Re: [PATCH] Prevent reading uninitialized memory with socket filters |
CVE-2010-4161
|
| MLIST:[netdev] 20101110 Re: possible kernel oops from user MSS |
CVE-2010-4165
|
| MLIST:[netdev] 20101110 can-bcm: fix minor heap overflow |
CVE-2010-3874
|
| MLIST:[netdev] 20101110 possible kernel oops from user MSS |
CVE-2010-4165
|
| MLIST:[netdev] 20101111 [SECURITY] [PATCH] Prevent crashing when parsing bad X.25 |
CVE-2010-4164
|
| MLIST:[netdev] 20101124 [PATCH] af_unix: limit unix_tot_inflight |
CVE-2010-4249
|
| MLIST:[netdev] 20101209 NULL dereference in econet AUN-over-UDP receive |
CVE-2010-4342
|
| MLIST:[netdev] 20101209 Re: NULL dereference in econet AUN-over-UDP receive |
CVE-2010-4342
|
| MLIST:[netdev] 20101222 [PATCH] irda: prevent integer underflow in IRLMP_ENUMDEVICES |
CVE-2010-4529
|
| MLIST:[netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network |
CVE-2011-1173
|
| MLIST:[netdev] 20110420 Add missing socket check in can/bcm release. |
CVE-2011-1598
|
| MLIST:[netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release |
CVE-2011-1748
|
| MLIST:[netdev] 20110601 Re: inet_diag insufficient validation? |
CVE-2011-2213
|
| MLIST:[netdev] 20110601 inet_diag insufficient validation? |
CVE-2011-2213
|
| MLIST:[netdev] 20110603 Re: inet_diag insufficient validation? |
CVE-2011-2213
|
| MLIST:[netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit() |
CVE-2011-2213
|
| MLIST:[netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace |
CVE-2011-1170
|
| MLIST:[netfilter-devel] 20110317 [PATCH v2] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow |
CVE-2011-2534
|
| MLIST:[netfilter] 20110310 [PATCH] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow |
CVE-2011-2534
|
| MLIST:[nfsv4] 20061116 Status of execute permissions in NFSv4 ACLs ? |
CVE-2009-1630
|
| MLIST:[nfsv4] 20061117 [Patch] Re: Status of execute permissions in NFSv4 ACLs ? |
CVE-2009-1630
|
| MLIST:[ngIRCd-ML] 20050126 ngIRCd 0.8.2 |
CVE-2005-0199
|
| MLIST:[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security |
CVE-2007-6062
|
| MLIST:[nginx] 20091030 Re: null pointer dereference vulnerability in 0.1.0-0.8.13. |
CVE-2009-3896
|
| MLIST:[nss-pam-ldapd-announce] 20110309 nss-pam-ldapd security advisory (CVE-2011-0438) |
CVE-2011-0438
|
| MLIST:[ocfs2-devel] 20110217 [PATCH] Treat writes as new when holes span across page boundaries |
CVE-2011-0463
|
| MLIST:[ode-user] 20090808 [ANNOUNCE] Apache ODE 1.3.3 |
CVE-2008-2370
|
| MLIST:[oneclickorgs-devspace] 20111117 Announce: One Click Orgs 1.2.3 |
CVE-2011-4552
CVE-2011-4553
CVE-2011-4554
CVE-2011-4555
CVE-2011-4677
CVE-2011-4678
|
| MLIST:[onnv-notify] 20081011 6507173 Sockets should allocate minor numbers from higher order arena |
CVE-2009-0480
|
| MLIST:[onnv-notify] 20081021 6300710 recursive mutex_enter in nfs4rename_persistent_fh() |
CVE-2009-0069
|
| MLIST:[openbsd-cvs] 20070103 CVS: cvs.openbsd.org: www |
CVE-2007-0085
|
| MLIST:[openbsd-cvs] 20070103 Re: CVS: cvs.openbsd.org: src |
CVE-2007-0085
|
| MLIST:[openbsd-cvs] 20080708 CVS: cvs.openbsd.org: src |
CVE-2008-3196
|
| MLIST:[openbsd-cvs] 20080708 Re: CVS: cvs.openbsd.org: src |
CVE-2008-3196
|
| MLIST:[openbsd-misc] 20050304 Re: FreeBSD hiding security stuff |
CVE-2005-0109
|
| MLIST:[openbsd-misc] 20070627 Intel Core 2 |
CVE-2006-7215
|
| MLIST:[openbsd-ports] 20040717 UPDATE: cyrus-sasl-2.1.19 |
CVE-2005-0373
|
| MLIST:[openbsd-security-announce] 20040513 procfs vulnerability |
CVE-2004-0482
|
| MLIST:[openbsd-security-announce] 20080111 errata 005 for OpenBSD 4.2: local users can provoke a kernel panic |
CVE-2008-0384
|
| MLIST:[openbsd-security-announce] 20091005 OpenBSD patch: XMM exceptions incorrectly handled in i386 kernel |
CVE-2009-3572
|
| MLIST:[openldap-announce] 20060801 OpenLDAP 2.3.25 available |
CVE-2006-4600
|
| MLIST:[openldap-announce] 20071026 OpenLDAP 2.3.39 available |
CVE-2007-5707
CVE-2007-5708
|
| MLIST:[openldap-announce] 20110212 OpenLDAP 2.4.24 available |
CVE-2011-1024
CVE-2011-1025
CVE-2011-1081
|
| MLIST:[openldap-bugs] 20070411 (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash |
CVE-2007-6698
|
| MLIST:[openldap-bugs] 20070411 Re: (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash |
CVE-2007-6698
|
| MLIST:[openldap-technical] 20100429 ppolicy master/slave issue |
CVE-2011-1024
|
| MLIST:[opensc-announce] 20080731 OpenSC Security Vulnerability and new Versions of OpenSC, OpenCT, LibP11, Pam_P11, Engine_PKCS11 |
CVE-2008-2235
|
| MLIST:[opensc-announce] 20080827 opensc 0.11.6 with fixed security update |
CVE-2008-3972
|
| MLIST:[opensc-announce] 20090226 OpenSC Security Advisory |
CVE-2009-0368
|
| MLIST:[opensc-announce] 20090508 OpenSC 0.11.8 released with security update |
CVE-2009-1603
|
| MLIST:[openssh-unix-announce] 20050901 Announce: OpenSSH 4.2 released |
CVE-2005-2797
CVE-2005-2798
|
| MLIST:[openssh-unix-dev] 20040127 OpenSSH - Connection problem when LoginGraceTime exceeds time |
CVE-2004-2069
|
| MLIST:[openssh-unix-dev] 20040128 Re: OpenSSH - Connection problem when LoginGraceTime exceeds time |
CVE-2004-2069
|
| MLIST:[openssh-unix-dev] 20060927 Announce: OpenSSH 4.4 released |
CVE-2006-4924
CVE-2006-5051
CVE-2006-5052
|
| MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_0_9_8-stable: openssl/ CHANGES openssl/crypto/b... |
CVE-2009-3245
|
| MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_1_0_0-stable: openssl/crypto/bn/ bn_div.c bn_gf... |
CVE-2009-3245
|
| MLIST:[openssl-cvs] 20100223 OpenSSL: openssl/crypto/bn/ bn_div.c bn_gf2m.c openssl/crypto/ec... |
CVE-2009-3245
|
| MLIST:[openssl-dev] 20080512 possible memory leak in zlib compression |
CVE-2008-1678
|
| MLIST:[openssl-dev] 20090516 [openssl.org #1930] [PATCH] DTLS record buffer limitation bug |
CVE-2009-1377
|
| MLIST:[openssl-dev] 20090516 [openssl.org #1931] [PATCH] DTLS fragment handling memory leak |
CVE-2009-1378
|
| MLIST:[openssl-dev] 20090518 Re: [openssl.org #1931] [PATCH] DTLS fragment handling memory leak |
CVE-2009-1378
|
| MLIST:[openssl-dev] 20100807 Re: openssl-1.0.0a and glibc detected sthg ;) |
CVE-2010-2939
|
| MLIST:[openssl-dev] 20100807 openssl-1.0.0a and glibc detected sthg ;) |
CVE-2010-2939
|
| MLIST:[openssl-dev] 20100808 Re: openssl-1.0.0a and glibc detected sthg ;) |
CVE-2010-2939
|
| MLIST:[openstack] 20111213 [OSSA 2011-001] Path traversal issues registering malicious images using EC2 API (CVE-2011-4596) |
CVE-2011-4596
|
| MLIST:[openstack] 20120111 [OSSA 2012-001] Tenant bypass by authenticated users using OpenStack API (CVE-2012-0030) |
CVE-2012-0030
|
| MLIST:[opensuse-updates] 20100810 openSUSE-SU-2010:0496-1 (important): strongswan: fixing snprintf overflows |
CVE-2010-2628
|
| MLIST:[opensuse-updates] 20101022 openSUSE-SU-2010:0756-1 (moderate): festival security update |
CVE-2010-3996
|
| MLIST:[opensuse-updates] 20110314 openSUSE-SU-2011:0171-1 (moderate): aaa_base security update |
CVE-2011-0461
|
| MLIST:[opensuse-updates] 20110322 openSUSE-SU-2011:0207-1 (moderate): aaa_base security update |
CVE-2011-0468
|
| MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0313-1 (critical): moonlight security update |
CVE-2011-0989
CVE-2011-0990
CVE-2011-0991
CVE-2011-0992
|
| MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0314-1 (moderate): python-feedparser security update |
CVE-2009-5065
CVE-2011-1156
CVE-2011-1157
CVE-2011-1158
|
| MLIST:[opensuse-updates] 20110512 openSUSE-SU-2011:0483-1 (moderate): New pure-ftpd version fix STARTTLS issues (CVE-2011-1575). |
CVE-2011-1575
|
| MLIST:[openvms-alerts] 20071003 VMS83A_LAN-V0200, ECO Kit Release |
CVE-2007-5241
CVE-2007-5242
|
| MLIST:[openvms-alerts] 20071003 VMS83I_LAN-V0600, ECO Kit Release |
CVE-2007-5241
CVE-2007-5242
|
| MLIST:[openwall-announce] 20070814 Linux 2.4.35-ow2 |
CVE-2007-3848
|
| MLIST:[or-announce] 20050811 Tor security advisory: DH handshake flaw |
CVE-2005-2643
|
| MLIST:[or-announce] 20060829 Tor security advisory: clients will route traffic |
CVE-2006-4508
|
| MLIST:[or-announce] 20070525 Tor 0.1.2.14 is released |
CVE-2007-3165
|
| MLIST:[or-announce] 20070723 Tor 0.1.2.15 is released |
CVE-2007-4096
CVE-2007-4097
CVE-2007-4098
CVE-2007-4099
|
| MLIST:[or-announce] 20070802 Tor 0.1.2.16 is released |
CVE-2007-4174
|
| MLIST:[or-announce] 20070901 Tor security advisory: cross-protocol http form attack |
CVE-2007-4174
|
| MLIST:[or-announce] 20090122 Tor 0.2.0.33 is released |
CVE-2009-0414
|
| MLIST:[or-announce] 20090209 Tor 0.2.0.34 is released (security fixes) |
CVE-2009-0936
CVE-2009-0937
CVE-2009-0938
CVE-2009-0939
|
| MLIST:[or-announce] 20090625 Tor 0.2.0.35 is released |
CVE-2009-2425
CVE-2009-2426
|
| MLIST:[or-announce] 20100121 Tor 0.2.1.22 is released (security fix) |
CVE-2010-0383
CVE-2010-0385
|
| MLIST:[or-announce] 20101220 Tor 0.2.1.28 is released (security patches) |
CVE-2010-1676
|
| MLIST:[or-announce] 20110117 Tor 0.2.1.29 is released (security patches) |
CVE-2011-0015
CVE-2011-0016
CVE-2011-0427
CVE-2011-0490
CVE-2011-0491
CVE-2011-0492
CVE-2011-0493
|
| MLIST:[or-talk] 20070225 "Low-Resource Routing Attacks Against Anonymous Systems" |
CVE-2007-1103
|
| MLIST:[or-talk] 20070225 Re: "Low-Resource Routing Attacks Against Anonymous Systems" |
CVE-2007-1103
|
| MLIST:[or-talk] 20070225 Re: ISP controlling entry/exti ("Low-Resource Routing Attacks Against Anonymous Systems") |
CVE-2007-1103
|
| MLIST:[or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18 |
CVE-2007-6722
CVE-2007-6723
CVE-2007-6724
|
| MLIST:[or-talk] 20071031 Re: Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18 |
CVE-2007-6723
|
| MLIST:[or-talk] 20100120 Re: Tor Project infrastructure updates in response to security breach |
CVE-2010-0383
|
| MLIST:[or-talk] 20100120 Tor 0.2.2.7-alpha is out |
CVE-2010-0383
CVE-2010-0384
CVE-2010-0385
|
| MLIST:[or-talk] 20100120 Tor Project infrastructure updates in response to security breach |
CVE-2010-0383
|
| MLIST:[oracle-l] 20061201 Re: Oracle 9i on Windows 2003 -- Vulnerability Question |
CVE-2007-2110
|
| MLIST:[oss-security 20080701 Re: [oss-security] openldap DoS |
CVE-2008-2952
|
| MLIST:[oss-security] 20080311 CVE request: insecure X11 handling in ltsp |
CVE-2008-1293
|
| MLIST:[oss-security] 20080312 Re: CVE request: insecure X11 handling in ltsp |
CVE-2008-1293
|
| MLIST:[oss-security] 20080401 CVE id request: squid |
CVE-2008-1612
|
| MLIST:[oss-security] 20080406 Re: Security fixes in m4-1.4.11 |
CVE-2008-1687
CVE-2008-1688
|
| MLIST:[oss-security] 20080406 Security fixes in m4-1.4.11 |
CVE-2008-1687
CVE-2008-1688
|
| MLIST:[oss-security] 20080407 Re: Security fixes in m4-1.4.11 |
CVE-2008-1687
|
| MLIST:[oss-security] 20080411 CVE request: openfire <3.5.0 Denial of Service |
CVE-2008-1728
|
| MLIST:[oss-security] 20080422 CVE Request: inspircd |
CVE-2008-1925
|
| MLIST:[oss-security] 20080425 CVE request: licq denial of service |
CVE-2008-1996
|
| MLIST:[oss-security] 20080502 CVE Request (PHP) |
CVE-2007-4850
CVE-2008-0599
CVE-2008-0674
CVE-2008-2050
CVE-2008-2051
|
| MLIST:[oss-security] 20080514 Re: CVE id request: uudeview |
CVE-2008-2266
|
| MLIST:[oss-security] 20080520 Re: CVE ID request: GNUTLS |
CVE-2008-1948
CVE-2008-1949
CVE-2008-1950
|
| MLIST:[oss-security] 20080521 New Xen ioemu: PVFB backend issue |
CVE-2008-1952
|
| MLIST:[oss-security] 20080521 Re: CVE request: mtr |
CVE-2008-2357
|
| MLIST:[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) |
CVE-2007-5962
|
| MLIST:[oss-security] 20080521 vsftpd CVE-2007-5962 (Red Hat / Fedora specific) |
CVE-2007-5962
|
| MLIST:[oss-security] 20080529 CVE-2008-2363: pan - heap overflow |
CVE-2008-2363
|
| MLIST:[oss-security] 20080530 Re: CVE id request: uudeview |
CVE-2008-2266
|
| MLIST:[oss-security] 20080531 Re: CVE id request: ikiwiki |
CVE-2008-0169
|
| MLIST:[oss-security] 20080604 CVE id request: slash |
CVE-2008-2231
|
| MLIST:[oss-security] 20080604 Re: CVE id request: slash |
CVE-2008-2231
|
| MLIST:[oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing |
CVE-2008-0960
|
| MLIST:[oss-security] 20080610 Re: exploitability of off-by-one in motion webserver |
CVE-2008-2654
|
| MLIST:[oss-security] 20080610 exploitability of off-by-one in motion webserver |
CVE-2008-2654
|
| MLIST:[oss-security] 20080611 CVE id request: nasm off-by-one |
CVE-2008-2719
|
| MLIST:[oss-security] 20080611 Re: CVE id request: nasm off-by-one |
CVE-2008-2719
|
| MLIST:[oss-security] 20080611 Re: exploitability of off-by-one in motion webserver |
CVE-2008-2654
|
| MLIST:[oss-security] 20080613 CVE Id Request: fetchmail <= 6.3.8 DoS when logging long headers in -v -v mode |
CVE-2008-2711
|
| MLIST:[oss-security] 20080615 CVE id request: Clamav |
CVE-2008-2713
|
| MLIST:[oss-security] 20080616 CVE Id request: vim |
CVE-2008-2712
|
| MLIST:[oss-security] 20080617 Re: CVE id request: Clamav |
CVE-2008-2713
|
| MLIST:[oss-security] 20080619 CVE request: php 5.2.6 ext/imap buffer overflows |
CVE-2008-2829
|
| MLIST:[oss-security] 20080619 Re: query on a pppol2tp_recvmsg() fix - security relevant? |
CVE-2008-2750
|
| MLIST:[oss-security] 20080624 Re: CVE request: php 5.2.6 ext/imap buffer overflows |
CVE-2008-2829
|
| MLIST:[oss-security] 20080626 CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25 |
CVE-2008-2365
|
| MLIST:[oss-security] 20080627 CVE Request (pidgin) |
CVE-2008-2956
CVE-2008-2957
|
| MLIST:[oss-security] 20080630 CVE id request mercurial:Insufficient input validation |
CVE-2008-2942
|
| MLIST:[oss-security] 20080630 CVE request for dnsmasq DoS |
CVE-2008-3214
|
| MLIST:[oss-security] 20080630 CVE-2008-2375 older vsftpd authentication memory leak |
CVE-2008-2375
|
| MLIST:[oss-security] 20080701 Re: CVE id request mercurial:Insufficient input validation |
CVE-2008-2942
|
| MLIST:[oss-security] 20080701 Re: CVE request for dnsmasq DoS |
CVE-2008-3214
|
| MLIST:[oss-security] 20080702 More ruby integer overflows (rb_ary_fill / Array#fill) |
CVE-2008-2376
|
| MLIST:[oss-security] 20080702 Re: CVE request for dnsmasq DoS |
CVE-2008-3214
|
| MLIST:[oss-security] 20080703 2.6.25.10 security fixes, please assign CVE id |
CVE-2008-2812
CVE-2008-3077
|
| MLIST:[oss-security] 20080703 Re: CVE request for dnsmasq DoS |
CVE-2008-3214
|
| MLIST:[oss-security] 20080703 Re: Re: CVE Request (pidgin) |
CVE-2008-2927
|
| MLIST:[oss-security] 20080704 Re: Re: CVE Request (pidgin) |
CVE-2008-2927
|
| MLIST:[oss-security] 20080707 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 |
CVE-2008-3074
CVE-2008-3075
CVE-2008-3076
|
| MLIST:[oss-security] 20080708 CVE-2008-2931 kernel: missing check before setting mount propagation |
CVE-2008-2931
|
| MLIST:[oss-security] 20080708 Re: CVE id request: Clamav |
CVE-2008-3215
|
| MLIST:[oss-security] 20080708 Re: CVE request for dnsmasq DoS |
CVE-2008-3214
|
| MLIST:[oss-security] 20080708 Re: CVE request: moodle xss in < 1.8.5 |
CVE-2008-1502
|
| MLIST:[oss-security] 20080708 Re: CVE-2008-2931 kernel: missing check before setting mount propagation |
CVE-2008-2931
|
| MLIST:[oss-security] 20080708 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 |
CVE-2008-3074
CVE-2008-3075
CVE-2008-3076
|
| MLIST:[oss-security] 20080709 CVE id request: projectl |
CVE-2008-3216
|
| MLIST:[oss-security] 20080709 CVE request: PowerDNS recursor source port randomization |
CVE-2008-3217
|
| MLIST:[oss-security] 20080710 CVE id request: libavformat |
CVE-2008-3162
|
| MLIST:[oss-security] 20080710 CVE request: multiple drupal issues in < 6.3,5.8 |
CVE-2008-3218
CVE-2008-3219
CVE-2008-3220
CVE-2008-3221
CVE-2008-3222
CVE-2008-3223
|
| MLIST:[oss-security] 20080710 Re: DNS vulnerability: other relevant software |
CVE-2008-3217
|
| MLIST:[oss-security] 20080710 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 |
CVE-2008-3074
CVE-2008-3075
|
| MLIST:[oss-security] 20080712 CVE id request: op |
CVE-2008-3229
|
| MLIST:[oss-security] 20080712 CVE request: phpbb < 3.0.2 |
CVE-2008-3224
|
| MLIST:[oss-security] 20080712 CVE requests: joomla <1.5.4 |
CVE-2008-3225
CVE-2008-3226
CVE-2008-3227
CVE-2008-3228
|
| MLIST:[oss-security] 20080712 Re: CVE request for dnsmasq DoS |
CVE-2008-3214
|
| MLIST:[oss-security] 20080713 CVE requests: crashers by zzuf |
CVE-2008-3230
CVE-2008-3231
|
| MLIST:[oss-security] 20080713 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 |
CVE-2008-3074
CVE-2008-3075
|
| MLIST:[oss-security] 20080713 Re: openldap DoS |
CVE-2008-2952
|
| MLIST:[oss-security] 20080714 CVE request: dotclear < 1.2.8 |
CVE-2008-3232
|
| MLIST:[oss-security] 20080714 Re: CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25 |
CVE-2008-2365
|
| MLIST:[oss-security] 20080715 CVE request: Wordpress XSS |
CVE-2008-3233
|
| MLIST:[oss-security] 20080715 CVE request: phpmyadmin < 2.11.7.1 |
CVE-2008-3197
|
| MLIST:[oss-security] 20080715 Re: CVE id request: Clamav |
CVE-2008-3215
|
| MLIST:[oss-security] 20080715 Re: Re: More arbitrary code executions in Netrw |
CVE-2008-3074
CVE-2008-3075
CVE-2008-3432
|
| MLIST:[oss-security] 20080716 Re: CVE id request: libavformat |
CVE-2008-3162
|
| MLIST:[oss-security] 20080716 Re: CVE request: PowerDNS recursor source port randomization |
CVE-2008-3217
|
| MLIST:[oss-security] 20080716 Re: CVE request: Wordpress XSS |
CVE-2008-3233
|
| MLIST:[oss-security] 20080716 Re: CVE request: phpmyadmin < 2.11.7.1 |
CVE-2008-2960
|
| MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw |
CVE-2008-3432
|
| MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 |
CVE-2008-3074
CVE-2008-3075
|
| MLIST:[oss-security] 20080801 Re: CVE request: phpwebgallery < 1.7.2 |
CVE-2008-3451
|
| MLIST:[oss-security] 20080804 CVE id request: openttd |
CVE-2008-3547
|
| MLIST:[oss-security] 20080805 Re: CVE id request: openttd |
CVE-2008-3547
|
| MLIST:[oss-security] 20080807 Re: CVE id request: openttd |
CVE-2008-3547
|
| MLIST:[oss-security] 20080808 CVE request: php-5.2.6 overflow issues |
CVE-2008-3658
CVE-2008-3659
CVE-2008-3660
|
| MLIST:[oss-security] 20080808 Re: CVE request: php-5.2.6 overflow issues |
CVE-2008-3659
|
| MLIST:[oss-security] 20080813 Re: CVE request: php-5.2.6 overflow issues |
CVE-2008-3658
CVE-2008-3659
CVE-2008-3660
|
| MLIST:[oss-security] 20080815 CVE request for neon |
CVE-2008-3746
|
| MLIST:[oss-security] 20080815 CVE-2008-3276 Linux kernel dccp_setsockopt_change() integer overflow |
CVE-2008-3276
|
| MLIST:[oss-security] 20080819 Re: swfdec 0.6.8 stable update |
CVE-2008-3796
|
| MLIST:[oss-security] 20080819 swfdec 0.6.8 stable update |
CVE-2008-3796
|
| MLIST:[oss-security] 20080819 wordpress 2.6.1 |
CVE-2008-3747
|
| MLIST:[oss-security] 20080820 FW: CVE-2008-1668 - ftpd 2.4 - unauthorized root access - patch details |
CVE-2008-1668
|
| MLIST:[oss-security] 20080820 Re: CVE request for neon |
CVE-2008-3746
|
| MLIST:[oss-security] 20080820 Re: wordpress 2.6.1 |
CVE-2008-3747
|
| MLIST:[oss-security] 20080824 Re: CVE id request: vlc |
CVE-2008-3794
|
| MLIST:[oss-security] 20080825 CVE Request (gpicview) |
CVE-2008-3791
|
| MLIST:[oss-security] 20080825 CVE Request (ruby) |
CVE-2008-3790
|
| MLIST:[oss-security] 20080825 CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API |
CVE-2008-3792
|
| MLIST:[oss-security] 20080826 CVE Request (samba) |
CVE-2008-3789
|
| MLIST:[oss-security] 20080826 CVE-2008-3526 Linux kernel sctp_setsockopt_auth_key() integer overflow |
CVE-2008-3526
|
| MLIST:[oss-security] 20080826 Re: CVE Request (gpicview) |
CVE-2008-3791
|
| MLIST:[oss-security] 20080826 Re: CVE Request (ruby) |
CVE-2008-3790
|
| MLIST:[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API |
CVE-2008-3792
|
| MLIST:[oss-security] 20080827 CVE request: mono Sys.Web header injection |
CVE-2008-3906
|
| MLIST:[oss-security] 20080829 CVE-2008-3525 kernel: missing capability checks in sbni_ioctl() |
CVE-2008-3525
|
| MLIST:[oss-security] 20080831 Re: CVE Request (gpicview) |
CVE-2008-3904
|
| MLIST:[oss-security] 20080901 CVE id request: newsbeuter |
CVE-2008-3907
|
| MLIST:[oss-security] 20080903 CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) |
CVE-2008-3905
|
| MLIST:[oss-security] 20080903 Re: CVE Request (gpicview) |
CVE-2008-3904
|
| MLIST:[oss-security] 20080903 django CSRF vuln |
CVE-2008-3909
|
| MLIST:[oss-security] 20080903 request for CVE: clamav 0.94 release |
CVE-2008-3912
CVE-2008-3913
CVE-2008-3914
|
| MLIST:[oss-security] 20080904 CVE id request: dns2tcp |
CVE-2008-3910
|
| MLIST:[oss-security] 20080904 CVE request: kernel: dio: zero struct dio with kzalloc instead of manually |
CVE-2007-6716
|
| MLIST:[oss-security] 20080904 CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl |
CVE-2008-3915
|
| MLIST:[oss-security] 20080904 CVE request: kernel: sunrpc: fix possible overrun on read of /proc/sys/sunrpc/transports |
CVE-2008-3911
|
| MLIST:[oss-security] 20080904 Re: CVE Request (ruby -- DNS spoofing vulnerability |
CVE-2008-3905
|
| MLIST:[oss-security] 20080904 Re: CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl |
CVE-2008-3915
|
| MLIST:[oss-security] 20080904 Re: request for CVE: clamav 0.94 release |
CVE-2008-3912
CVE-2008-3913
CVE-2008-3914
|
| MLIST:[oss-security] 20080906 CVE id requests: gmanedit |
CVE-2008-3971
|
| MLIST:[oss-security] 20080906 CVE request: pam_mount < 0.47 missing security checks |
CVE-2008-3970
|
| MLIST:[oss-security] 20080908 Re: CVE request for bitlbee |
CVE-2008-3969
|
| MLIST:[oss-security] 20080909 CVE request (libpng) |
CVE-2008-3964
|
| MLIST:[oss-security] 20080909 CVE request: MySQL empty bit-string literal server crash |
CVE-2008-3963
|
| MLIST:[oss-security] 20080909 CVE request: mybb < 1.4.1 |
CVE-2008-3965
CVE-2008-3966
CVE-2008-3967
|
| MLIST:[oss-security] 20080909 Re: CVE id requests: gmanedit |
CVE-2008-3971
|
| MLIST:[oss-security] 20080909 Re: CVE request (libpng) |
CVE-2008-3964
|
| MLIST:[oss-security] 20080909 Re: CVE request for bitlbee |
CVE-2008-3969
|
| MLIST:[oss-security] 20080909 Re: CVE request: MySQL empty bit-string literal server crash |
CVE-2008-3963
|
| MLIST:[oss-security] 20080909 Re: CVE request: MySQL incomplete fix for CVE-2008-2079 |
CVE-2008-4097
CVE-2008-4098
|
| MLIST:[oss-security] 20080909 Re: CVE request: mybb < 1.4.1 |
CVE-2008-3965
CVE-2008-3966
CVE-2008-3967
|
| MLIST:[oss-security] 20080909 Re: CVE request: pam_mount < 0.47 missing security checks |
CVE-2008-3970
|
| MLIST:[oss-security] 20080909 Re: cve request: punbb < 1.2.20 xss |
CVE-2008-3968
|
| MLIST:[oss-security] 20080909 Re: opensc 0.11.6 with fixed security update |
CVE-2008-3972
|
| MLIST:[oss-security] 20080909 Re: ssmtp =2.62 unitialized memory disclosure |
CVE-2008-3962
|
| MLIST:[oss-security] 20080909 cve request: punbb < 1.2.20 xss |
CVE-2008-3968
|
| MLIST:[oss-security] 20080909 ssmtp =2.62 unitialized memory disclosure |
CVE-2008-3962
|
| MLIST:[oss-security] 20080910 [oCERT-2008-012] Horde, Popoon frameworks common input sanitization errors (XSS) |
CVE-2008-3823
CVE-2008-3824
|
| MLIST:[oss-security] 20080911 CVE request for Joomla multiple vuln. |
CVE-2008-4102
CVE-2008-4103
CVE-2008-4104
CVE-2008-4105
|
| MLIST:[oss-security] 20080911 CVE request: joomla < 1.5.7 |
CVE-2008-4102
CVE-2008-4103
CVE-2008-4104
CVE-2008-4105
|
| MLIST:[oss-security] 20080911 CVE request: wordpress < 2.6.2 |
CVE-2008-4106
CVE-2008-4107
|
| MLIST:[oss-security] 20080911 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) |
CVE-2008-4099
CVE-2008-4100
CVE-2008-4126
|
| MLIST:[oss-security] 20080911 Re: [oss-list] CVE request (vim) |
CVE-2008-4101
|
| MLIST:[oss-security] 20080911 Re: ssmtp =2.62 unitialized memory disclosure |
CVE-2008-3962
|
| MLIST:[oss-security] 20080911 [oss-list] CVE request (vim) |
CVE-2008-4101
|
| MLIST:[oss-security] 20080913 CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection |
CVE-2008-4094
|
| MLIST:[oss-security] 20080915 CVE Request (python) |
CVE-2008-4108
|
| MLIST:[oss-security] 20080915 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) |
CVE-2008-4099
CVE-2008-4100
CVE-2008-4126
|
| MLIST:[oss-security] 20080915 Re: CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection |
CVE-2008-4094
|
| MLIST:[oss-security] 20080915 Re: [oss-list] CVE request (vim) |
CVE-2008-4101
|
| MLIST:[oss-security] 20080915 Re: phpMyAdmin code execution (CVE request) |
CVE-2008-4096
|
| MLIST:[oss-security] 20080915 phpMyAdmin code execution (CVE request) |
CVE-2008-4096
|
| MLIST:[oss-security] 20080916 CVE request: kernel: splice: fix bad unlock_page() in error case |
CVE-2008-4302
|
| MLIST:[oss-security] 20080916 Re: CVE Request (python) |
CVE-2008-4108
|
| MLIST:[oss-security] 20080916 Re: CVE request: MySQL incomplete fix for CVE-2008-2079 |
CVE-2008-4097
CVE-2008-4098
|
| MLIST:[oss-security] 20080916 Re: CVE request: joomla < 1.5.7 |
CVE-2008-4102
CVE-2008-4103
CVE-2008-4104
CVE-2008-4105
|
| MLIST:[oss-security] 20080916 Re: CVE request: wordpress < 2.6.2 |
CVE-2008-4106
CVE-2008-4107
|
| MLIST:[oss-security] 20080918 CVE Request (mercurial) |
CVE-2008-4297
|
| MLIST:[oss-security] 20080918 CVE Request (openswan, emacspeak, cman) |
CVE-2008-4192
|
| MLIST:[oss-security] 20080918 CVE-2008-3528 Linux kernel ext[234] directory corruption DoS |
CVE-2008-3528
|
| MLIST:[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities |
CVE-2008-4195
CVE-2008-4196
CVE-2008-4197
CVE-2008-4198
CVE-2008-4199
CVE-2008-4200
CVE-2008-4292
|
| MLIST:[oss-security] 20080919 viewvc security flaw? |
CVE-2008-4325
|
| MLIST:[oss-security] 20080920 Re: viewvc security flaw? |
CVE-2008-4325
|
| MLIST:[oss-security] 20080923 CVE req: phpmyadmin < 2.11.9.2 xss |
CVE-2008-4326
|
| MLIST:[oss-security] 20080923 Re: CVE Request (openswan, emacspeak, cman) |
CVE-2008-4192
|
| MLIST:[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities |
CVE-2008-4195
CVE-2008-4196
CVE-2008-4197
CVE-2008-4198
CVE-2008-4199
CVE-2008-4200
CVE-2008-4292
|
| MLIST:[oss-security] 20080924 CVE request: kernel: open() call allows setgid bit when user is not in new file's group |
CVE-2008-4210
|
| MLIST:[oss-security] 20080924 Re: CVE id request: fraud2 |
CVE-2008-4201
|
| MLIST:[oss-security] 20080924 Re: CVE request: kernel: open() call allows setgid bit when user is not in new file's group |
CVE-2008-4210
|
| MLIST:[oss-security] 20080925 CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option |
CVE-2008-4445
|
| MLIST:[oss-security] 20080926 CVE Request (lighttpd) |
CVE-2008-4298
|
| MLIST:[oss-security] 20080926 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option |
CVE-2008-3792
CVE-2008-4113
CVE-2008-4445
|
| MLIST:[oss-security] 20080927 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option |
CVE-2008-4445
|
| MLIST:[oss-security] 20080929 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option |
CVE-2008-4445
|
| MLIST:[oss-security] 20080930 CVE Request (xen) |
CVE-2008-4405
|
| MLIST:[oss-security] 20080930 Re: CVE request: lighttpd issues |
CVE-2008-4359
CVE-2008-4360
|
| MLIST:[oss-security] 20080930 Re: Re: CVE request: lighttpd issues |
CVE-2008-4359
CVE-2008-4360
|
| MLIST:[oss-security] 20081001 CVE id request: sabre |
CVE-2008-4406
|
| MLIST:[oss-security] 20081002 CVE request: XSS in mediawiki 1.13.1 and 1.12.0 |
CVE-2008-4408
|
| MLIST:[oss-security] 20081002 CVE-2008-3832 kernel: null pointer dereference in utrace_control |
CVE-2008-3832
|
| MLIST:[oss-security] 20081002 libxml2 "ampproblem" DoS |
CVE-2008-4409
|
| MLIST:[oss-security] 20081003 CVE request: kernel: x86: Fix broken LDT access in VMI |
CVE-2008-4410
|
| MLIST:[oss-security] 20081003 CVE-2008-3833 kernel: remove SUID when splicing into an inode |
CVE-2008-3833
|
| MLIST:[oss-security] 20081003 Re: regarding CVE-2008-4382 & CVE-2008-4381 |
CVE-2008-4381
|
| MLIST:[oss-security] 20081003 regarding CVE-2008-4382 & CVE-2008-4381 |
CVE-2008-4381
|
| MLIST:[oss-security] 20081004 Re: CVE Request (xen) |
CVE-2008-4405
|
| MLIST:[oss-security] 20081006 CVE request - (vim : netrw plugin - ftp user credentials disclosure) |
CVE-2008-4677
|
| MLIST:[oss-security] 20081006 CVE request: kernel: sctp: Fix kernel panic while process protocol violation parameter |
CVE-2008-4618
|
| MLIST:[oss-security] 20081007 CVE request: crashers / potential security risks in mplayer |
CVE-2007-6718
CVE-2008-4610
|
| MLIST:[oss-security] 20081008 CVE request: kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH |
CVE-2008-4576
|
| MLIST:[oss-security] 20081009 lynx lynxcgi handler flaw |
CVE-2008-4690
|
| MLIST:[oss-security] 20081013 CVE id request: qemu |
CVE-2008-4553
|
| MLIST:[oss-security] 20081013 CVE request: kernel: don't allow splice() to files opened with O_APPEND |
CVE-2008-4554
|
| MLIST:[oss-security] 20081013 Re: CVE Request |
CVE-2008-4579
CVE-2008-4580
|
| MLIST:[oss-security] 20081014 Re: CVE id request: qemu |
CVE-2008-4553
|
| MLIST:[oss-security] 20081014 Re: CVE request: kernel: don't allow splice() to files opened with O_APPEND |
CVE-2008-4554
|
| MLIST:[oss-security] 20081015 CVE request: jhead |
CVE-2008-4639
CVE-2008-4641
|
| MLIST:[oss-security] 20081015 Re: CVE request: jhead |
CVE-2008-4575
CVE-2008-4639
CVE-2008-4641
|
| MLIST:[oss-security] 20081015 Vim CVE issues cleanup (plugins tar.vim, zip.vim) - CVE-2008-3074 and CVE-2008-3075 |
CVE-2008-2712
CVE-2008-3074
CVE-2008-3075
|
| MLIST:[oss-security] 20081016 CVE request - Vim netrw.plugin |
CVE-2008-3076
CVE-2008-4677
CVE-2008-6235
|
| MLIST:[oss-security] 20081016 Re: CVE Request |
CVE-2008-4580
|
| MLIST:[oss-security] 20081016 Re: CVE request: jhead |
CVE-2008-4639
CVE-2008-4640
CVE-2008-4641
|
| MLIST:[oss-security] 20081019 CVE id request: vlc |
CVE-2008-4654
CVE-2008-4686
|
| MLIST:[oss-security] 20081019 CVE request: mantisbt < 1.1.4: RCE |
CVE-2008-4687
|
| MLIST:[oss-security] 20081020 CVE request (vim) |
CVE-2008-3074
CVE-2008-3075
CVE-2008-3076
CVE-2008-4677
CVE-2008-6235
|
| MLIST:[oss-security] 20081020 Re: CVE request: mantisbt < 1.1.4: RCE |
CVE-2008-4688
CVE-2008-4689
|
| MLIST:[oss-security] 20081021 CVE Request: Opera 9.60 with security fixes |
CVE-2008-4694
CVE-2008-4695
|
| MLIST:[oss-security] 20081021 CVE req: drupal < 5.11/6.5 |
CVE-2008-4789
CVE-2008-4790
CVE-2008-4791
CVE-2008-4792
CVE-2008-4793
|
| MLIST:[oss-security] 20081021 Re: CVE Request: Opera 9.60 with security fixes |
CVE-2008-4696
CVE-2008-4697
CVE-2008-4698
CVE-2008-4725
|
| MLIST:[oss-security] 20081022 CVE Request (netpbm) |
CVE-2008-4799
|
| MLIST:[oss-security] 20081022 Re: CVE Request: Opera 9.60 with security fixes |
CVE-2008-4694
CVE-2008-4695
CVE-2008-4696
CVE-2008-4697
CVE-2008-4698
CVE-2008-4725
|
| MLIST:[oss-security] 20081022 Re: CVE id request: vlc |
CVE-2008-4686
|
| MLIST:[oss-security] 20081023 CVE request for ecryptfs |
CVE-2008-5188
|
| MLIST:[oss-security] 20081023 Re: CVE Request (netpbm) |
CVE-2008-4799
|
| MLIST:[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw |
CVE-2006-7234
|
| MLIST:[oss-security] 20081025 Regarding SA32329 (Smarty "_expand_quoted_text()" Security Bypass) |
CVE-2008-4810
CVE-2008-4811
|
| MLIST:[oss-security] 20081027 CVE id request: blender |
CVE-2008-4863
|
| MLIST:[oss-security] 20081027 CVE request -- Python imageop#3 |
CVE-2008-4864
|
| MLIST:[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw |
CVE-2008-4865
|
| MLIST:[oss-security] 20081027 XSS in HTML Tidy plugin used in WYSIWYG HTML editors |
CVE-2008-4761
|
| MLIST:[oss-security] 20081028 CVE-2008-4619 / milw0rm6775 |
CVE-2008-4619
|
| MLIST:[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw |
CVE-2008-4865
|
| MLIST:[oss-security] 20081029 CVE Request (dovecot) |
CVE-2008-4870
|
| MLIST:[oss-security] 20081029 CVE Request - Python imageop |
CVE-2008-4864
|
| MLIST:[oss-security] 20081029 Fwd: [Full-disclosure] [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities |
CVE-2008-4866
CVE-2008-4867
CVE-2008-4868
CVE-2008-4869
|
| MLIST:[oss-security] 20081029 Re: CVE request for ecryptfs |
CVE-2008-5188
|
| MLIST:[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw |
CVE-2008-4865
|
| MLIST:[oss-security] 20081029 Re: CVE-2008-4619 / milw0rm6775 |
CVE-2008-4619
|
| MLIST:[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire |
CVE-2003-0308
CVE-2008-3883
CVE-2008-3927
CVE-2008-3928
CVE-2008-3929
CVE-2008-3930
CVE-2008-3931
CVE-2008-4085
CVE-2008-4190
CVE-2008-4191
CVE-2008-4192
CVE-2008-4440
CVE-2008-4474
CVE-2008-4475
CVE-2008-4476
CVE-2008-4477
CVE-2008-4553
CVE-2008-4935
CVE-2008-4936
CVE-2008-4937
CVE-2008-4938
CVE-2008-4939
CVE-2008-4940
CVE-2008-4941
CVE-2008-4942
CVE-2008-4943
CVE-2008-4944
CVE-2008-4945
CVE-2008-4946
CVE-2008-4947
CVE-2008-4948
CVE-2008-4949
CVE-2008-4950
CVE-2008-4951
CVE-2008-4952
CVE-2008-4953
CVE-2008-4954
CVE-2008-4955
CVE-2008-4956
CVE-2008-4957
CVE-2008-4958
CVE-2008-4959
CVE-2008-4960
CVE-2008-4964
CVE-2008-4965
CVE-2008-4966
CVE-2008-4967
CVE-2008-4968
CVE-2008-4969
CVE-2008-4970
CVE-2008-4971
CVE-2008-4972
CVE-2008-4973
CVE-2008-4974
CVE-2008-4975
CVE-2008-4976
CVE-2008-4977
CVE-2008-4978
CVE-2008-4979
CVE-2008-4980
CVE-2008-4981
CVE-2008-4982
CVE-2008-4983
CVE-2008-4984
CVE-2008-4985
CVE-2008-4986
CVE-2008-4987
CVE-2008-4988
CVE-2008-4993
CVE-2008-4994
CVE-2008-4995
CVE-2008-4996
CVE-2008-4997
CVE-2008-4998
CVE-2008-5007
CVE-2008-5034
|
| MLIST:[oss-security] 20081031 New net-snmp DoS |
CVE-2008-4309
|
| MLIST:[oss-security] 20081031 Re: CVE-2008-4619 / milw0rm6775 |
CVE-2008-4619
|
| MLIST:[oss-security] 20081101 CVE request (Fwd: MyBB 1.4.2: Multiple Vulnerabilties) |
CVE-2008-4928
CVE-2008-4929
CVE-2008-4930
|
| MLIST:[oss-security] 20081101 CVE-2008-4796: snoopy triage |
CVE-2008-4796
|
| MLIST:[oss-security] 20081102 CVE id request: htop |
CVE-2008-5076
|
| MLIST:[oss-security] 20081103 CVE Request (libsamplerate) |
CVE-2008-5008
|
| MLIST:[oss-security] 20081103 CVE request - uw-imap |
CVE-2008-5005
|
| MLIST:[oss-security] 20081103 CVE requests: kernel: hfsplus-related bugs |
CVE-2008-4933
CVE-2008-4934
|
| MLIST:[oss-security] 20081103 Re: CVE request - uw-imap |
CVE-2008-5005
CVE-2008-5006
|
| MLIST:[oss-security] 20081105 CVE Request - Python string expandtabs |
CVE-2008-2315
CVE-2008-5031
|
| MLIST:[oss-security] 20081105 CVE id request: vlc |
CVE-2008-5032
CVE-2008-5036
|
| MLIST:[oss-security] 20081105 CVE request: libcdaudio |
CVE-2008-5030
|
| MLIST:[oss-security] 20081105 Re: CVE Request - Python string expandtabs |
CVE-2008-2315
CVE-2008-5031
|
| MLIST:[oss-security] 20081105 VideoLAN security advisory 0810 |
CVE-2008-5032
CVE-2008-5036
|
| MLIST:[oss-security] 20081106 CVE request: Nagios (two issues) |
CVE-2008-5027
CVE-2008-5028
|
| MLIST:[oss-security] 20081106 CVE request: kernel: Unix sockets kernel panic |
CVE-2008-5029
|
| MLIST:[oss-security] 20081107 Re: CVE request: libcdaudio |
CVE-2008-5030
|
| MLIST:[oss-security] 20081110 GeSHi: Clarification about the recent security (non-)issues (SA32559) |
CVE-2008-5186
|
| MLIST:[oss-security] 20081110 Re: CVE id request: vlc |
CVE-2008-5032
CVE-2008-5036
|
| MLIST:[oss-security] 20081110 Re: CVE requests: kernel: hfsplus-related bugs |
CVE-2008-5025
|
| MLIST:[oss-security] 20081111 CVE request: kernel: libertas: fix buffer overrun |
CVE-2008-5134
|
| MLIST:[oss-security] 20081111 Re: CVE request: libcdaudio |
CVE-2008-5030
|
| MLIST:[oss-security] 20081111 Re: CVE requests: kernel: hfsplus-related bugs |
CVE-2008-5025
|
| MLIST:[oss-security] 20081112 CVE Request - Zope 2 - PythonScripts local DoS |
CVE-2008-5102
|
| MLIST:[oss-security] 20081112 CVE Request -- OptiPNG |
CVE-2008-5101
|
| MLIST:[oss-security] 20081113 CVE request: wordpress can be subject of delayed attacks via cookies |
CVE-2008-5113
|
| MLIST:[oss-security] 20081114 Re: CVE id request: htop |
CVE-2008-5076
|
| MLIST:[oss-security] 20081117 CVE Request (syslog-ng) |
CVE-2008-5110
|
| MLIST:[oss-security] 20081119 CVE request: CUPS DoS via RSS subscriptions |
CVE-2008-5183
CVE-2008-5184
|
| MLIST:[oss-security] 20081119 Re: CVE request: CUPS DoS via RSS subscriptions |
CVE-2008-5183
|
| MLIST:[oss-security] 20081120 CVE Request: imlib2 |
CVE-2008-5187
|
| MLIST:[oss-security] 20081120 CVE id request: another geshi issue (was: [oss-security] GeSHi: Clarification about the recent security (non-)issues (SA32559)) |
CVE-2008-5185
|
| MLIST:[oss-security] 20081120 CVE request: no-ip DUC buffer overflow |
CVE-2008-5297
|
| MLIST:[oss-security] 20081120 Re: CVE request: CUPS DoS via RSS subscriptions |
CVE-2008-5183
|
| MLIST:[oss-security] 20081124 CVE Request -- wireshark |
CVE-2008-5285
|
| MLIST:[oss-security] 20081127 Re: CVE request: jhead |
CVE-2008-4640
CVE-2008-4641
|
| MLIST:[oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks |
CVE-2008-5312
CVE-2008-5313
|
| MLIST:[oss-security] 20081128 CVE request: lcms (old issues) |
CVE-2008-5316
CVE-2008-5317
|
| MLIST:[oss-security] 20081128 Re: [oss-security] CVE Request - cups, dovecot-managesieve, perl, wireshark |
CVE-2008-5302
CVE-2008-5303
|
| MLIST:[oss-security] 20081201 (sort of urgent) CVE Request -- cups (repost) |
CVE-2008-5286
|
| MLIST:[oss-security] 20081201 CVE request: clamav 0.94.2 |
CVE-2008-5314
|
| MLIST:[oss-security] 20081203 CVE Request (zaptel) |
CVE-2008-5396
|
| MLIST:[oss-security] 20081204 CVE for SE-2008-06 in PHP 5.2.7 (ZipArchive) |
CVE-2008-5658
|
| MLIST:[oss-security] 20081204 ruby CVE-2008-4310 (Red Hat specific) |
CVE-2008-4310
|
| MLIST:[oss-security] 20081206 CVE request: weak PRNG in GNU Classpath |
CVE-2008-5659
|
| MLIST:[oss-security] 20081209 CVE request: Four issues in PunBB |
CVE-2008-5433
CVE-2008-5434
CVE-2008-5435
|
| MLIST:[oss-security] 20081209 CVE request: kernel: MIPS: Fix potential DOS by untrusted user app |
CVE-2008-5701
|
| MLIST:[oss-security] 20081209 CVE request: kernel: enforce a minimum SG_IO timeout |
CVE-2008-5700
|
| MLIST:[oss-security] 20081209 CVE request: moodle (XSS) |
CVE-2008-5432
|
| MLIST:[oss-security] 20081210 CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug |
CVE-2008-5702
|
| MLIST:[oss-security] 20081212 CVE Request - roundcubemail |
CVE-2008-5619
|
| MLIST:[oss-security] 20081214 Avahi daemon DoS (CVE-2008-5081) |
CVE-2008-5081
|
| MLIST:[oss-security] 20081216 CVE id request: gpsdrive |
CVE-2008-5703
CVE-2008-5704
|
| MLIST:[oss-security] 20081216 CVE id request: verlihub |
CVE-2008-5705
CVE-2008-5706
|
| MLIST:[oss-security] 20081216 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug |
CVE-2008-5702
|
| MLIST:[oss-security] 20081217 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug |
CVE-2008-5702
|
| MLIST:[oss-security] 20081219 CVE Request - Incomplete dahdi/zaptel tor2.c patch for CVE-2008-5396 |
CVE-2008-5744
|
| MLIST:[oss-security] 20081219 CVE Request -- Xen (Upstream patch for CVE-2008-4405 is incomplete) |
CVE-2008-5716
|
| MLIST:[oss-security] 20081219 CVE request - pdfjam |
CVE-2008-5743
|
| MLIST:[oss-security] 20081223 CVE request: kernel: soft lockup occurs when network load is very high |
CVE-2008-5713
|
| MLIST:[oss-security] 20081228 Re: CVE request - pdfjam |
CVE-2008-5843
|
| MLIST:[oss-security] 20081230 CVE id request: audiofile |
CVE-2008-5824
|
| MLIST:[oss-security] 20090105 CVE request: kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID |
CVE-2009-0065
|
| MLIST:[oss-security] 20090106 Fwd: Using xdg-open in /etc/mailcap causes hole in Firefox (Demonstration/Exploit included) |
CVE-2009-0068
|
| MLIST:[oss-security] 20090108 CVE request: ktorrent |
CVE-2008-5905
CVE-2008-5906
|
| MLIST:[oss-security] 20090109 libpng non issue |
CVE-2008-5907
|
| MLIST:[oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto |
CVE-2009-0124
CVE-2009-0125
CVE-2009-0126
CVE-2009-0127
CVE-2009-0128
CVE-2009-0129
CVE-2009-0130
|
| MLIST:[oss-security] 20090112 CVE request: xrdp |
CVE-2008-5902
CVE-2008-5903
CVE-2008-5904
|
| MLIST:[oss-security] 20090112 CVE-2009-0024 kernel: local privilege escalation in sys_remap_file_pages |
CVE-2009-0024
|
| MLIST:[oss-security] 20090113 CVE Request -- libmikmod |
CVE-2007-6720
CVE-2009-0179
|
| MLIST:[oss-security] 20090113 CVE-2008-4307 kernel: local denial of service in locks_remove_flock |
CVE-2008-4307
|
| MLIST:[oss-security] 20090114 CVE Request -- amarok |
CVE-2009-0135
CVE-2009-0136
|
| MLIST:[oss-security] 20090114 update on CVE-2008-5718 |
CVE-2008-5718
|
| MLIST:[oss-security] 20090115 CVE request -- git |
CVE-2008-5916
|
| MLIST:[oss-security] 20090118 CVE request: WebSVN |
CVE-2009-0240
|
| MLIST:[oss-security] 20090119 CVE-2009-0031 kernel: local denial of service in keyctl_join_session_keyring |
CVE-2009-0031
|
| MLIST:[oss-security] 20090120 Re: CVE request -- git |
CVE-2008-5516
CVE-2008-5517
CVE-2008-5916
|
| MLIST:[oss-security] 20090121 CVE Request -- openoffice.org (CVE-2008-4841) |
CVE-2009-0259
|
| MLIST:[oss-security] 20090121 Re: CVE request -- git |
CVE-2008-5516
CVE-2008-5517
|
| MLIST:[oss-security] 20090121 mod-auth-mysql: SQL injection |
CVE-2008-2384
|
| MLIST:[oss-security] 20090123 Re: CVE id request: typo3 SA-2009-001 |
CVE-2009-0258
|
| MLIST:[oss-security] 20090123 Re: CVE request -- git |
CVE-2008-5516
CVE-2008-5517
|
| MLIST:[oss-security] 20090126 CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) |
CVE-2008-5983
CVE-2008-5984
CVE-2008-5985
CVE-2008-5986
CVE-2008-5987
CVE-2009-0314
CVE-2009-0315
CVE-2009-0316
CVE-2009-0317
CVE-2009-0318
|
| MLIST:[oss-security] 20090127 CVE Request: MoinMoin |
CVE-2009-0312
|
| MLIST:[oss-security] 20090128 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) |
CVE-2008-5983
|
| MLIST:[oss-security] 20090129 CVE Request (trickle) |
CVE-2009-0415
|
| MLIST:[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version) |
CVE-2009-0386
CVE-2009-0387
CVE-2009-0397
CVE-2009-0398
|
| MLIST:[oss-security] 20090130 CVE Request - php (PHP BZ#27421) |
CVE-2009-0754
|
| MLIST:[oss-security] 20090130 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) |
CVE-2008-5983
|
| MLIST:[oss-security] 20090203 CVE Request: sblim-sfcb genSslCert.sh temp race |
CVE-2009-0416
|
| MLIST:[oss-security] 20090203 Re: CVE Request - php (PHP BZ#27421) |
CVE-2009-0754
|
| MLIST:[oss-security] 20090204 CVS request - Moodle |
CVE-2009-0499
CVE-2009-0500
CVE-2009-0501
CVE-2009-0502
|
| MLIST:[oss-security] 20090206 CVE Request - Wicd <= 1.5.8 |
CVE-2009-0489
|
| MLIST:[oss-security] 20090206 CVE request: phpbb < 3.0.4 |
CVE-2008-6506
CVE-2008-6507
|
| MLIST:[oss-security] 20090206 Re: CVE request: jhead |
CVE-2008-4639
|
| MLIST:[oss-security] 20090207 CVE Request: pycrypto |
CVE-2009-0544
|
| MLIST:[oss-security] 20090208 CVE-2008-6049 is bogus |
CVE-2008-6049
|
| MLIST:[oss-security] 20090210 CVE Request -- evolution |
CVE-2009-0547
|
| MLIST:[oss-security] 20090210 CVE request: typo3 xss (typo3-sa-2009-002) |
CVE-2009-0815
CVE-2009-0816
|
| MLIST:[oss-security] 20090210 libvirt_proxy heads up |
CVE-2009-0036
|
| MLIST:[oss-security] 20090211 CVE request for proftpd |
CVE-2009-0542
CVE-2009-0543
|
| MLIST:[oss-security] 20090211 Re: CVE request for proftpd |
CVE-2009-0542
CVE-2009-0543
|
| MLIST:[oss-security] 20090212 CVE Request -- net-snmp (sensitive host information disclosure) |
CVE-2008-6123
|
| MLIST:[oss-security] 20090212 CVE-2008-5621 is a duplicate (was: Re: CVE request: phpMyAdmin < 3.1.1.0 (SQL injection through XSRF on several pages )) |
CVE-2008-5621
|
| MLIST:[oss-security] 20090212 Re: CVE Request -- net-snmp (sensitive host information disclosure) |
CVE-2008-6123
|
| MLIST:[oss-security] 20090212 Re: CVE Request: pycrypto |
CVE-2009-0544
|
| MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel |
CVE-2009-1046
|
| MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel issue |
CVE-2009-1046
|
| MLIST:[oss-security] 20090212 http://www.securityfocus.com/bid/33672/info kernel issue |
CVE-2009-1046
|
| MLIST:[oss-security] 20090213 CVE Request: Poppler -Two Denial of Service Vulnerabilities |
CVE-2009-0755
CVE-2009-0756
|
| MLIST:[oss-security] 20090219 CVE request for yaws |
CVE-2009-0751
|
| MLIST:[oss-security] 20090219 Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities |
CVE-2009-0755
CVE-2009-0756
|
| MLIST:[oss-security] 20090220 CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt |
CVE-2009-0676
|
| MLIST:[oss-security] 20090220 CVE request: kernel: skfp_ioctl inverted logic flaw |
CVE-2009-0675
|
| MLIST:[oss-security] 20090223 CVE request: mldonkey arbitrary file download vulnerability |
CVE-2009-0753
|
| MLIST:[oss-security] 20090224 CVE request: optipng security release |
CVE-2009-0749
|
| MLIST:[oss-security] 20090224 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt |
CVE-2009-0676
|
| MLIST:[oss-security] 20090225 CVE request: Psi <0.12.1 DoS |
CVE-2008-6393
|
| MLIST:[oss-security] 20090225 Re: CVE Request - php (PHP BZ#27421) |
CVE-2009-0754
|
| MLIST:[oss-security] 20090225 Re: CVE request: optipng security release |
CVE-2009-0749
|
| MLIST:[oss-security] 20090226 OpenSC Security Advisory |
CVE-2009-0368
|
| MLIST:[oss-security] 20090301 CVE id request: znc |
CVE-2009-0759
|
| MLIST:[oss-security] 20090302 CVE Request: mpfr (Buffer Overflow) |
CVE-2009-0757
|
| MLIST:[oss-security] 20090302 CVE id request: avahi |
CVE-2009-0758
|
| MLIST:[oss-security] 20090302 CVE id request: dkim-milter |
CVE-2009-0770
|
| MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole |
CVE-2009-0835
|
| MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole |
CVE-2009-0834
|
| MLIST:[oss-security] 20090302 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt |
CVE-2009-0676
|
| MLIST:[oss-security] 20090305 CVE Request -- pam |
CVE-2009-0887
|
| MLIST:[oss-security] 20090306 CVE request: kernel: inotify local DoS |
CVE-2009-0935
|
| MLIST:[oss-security] 20090306 CVE request: kernel: shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM |
CVE-2009-0859
|
| MLIST:[oss-security] 20090307 CVE Request: Opera <9.64: Execution of arbitrary code |
CVE-2009-0914
|
| MLIST:[oss-security] 20090311 CVE request -- postgresql |
CVE-2009-0922
|
| MLIST:[oss-security] 20090311 CVE-2009-0778 kernel: rt_cache leak |
CVE-2009-0778
|
| MLIST:[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows |
CVE-2008-4316
CVE-2009-0585
CVE-2009-0586
CVE-2009-0587
|
| MLIST:[oss-security] 20090316 CVE request: XSS in MUC logs of ejabberd |
CVE-2009-0934
|
| MLIST:[oss-security] 20090316 CVE-2009-0876 (VirtualBox) references |
CVE-2009-0876
|
| MLIST:[oss-security] 20090317 CVE request -- firefox, vlc, WeeChat |
CVE-2009-1045
|
| MLIST:[oss-security] 20090317 Re: CVE request -- firefox, vlc, WeeChat |
CVE-2009-0661
|
| MLIST:[oss-security] 20090317 Re: CVE-2009-0876 (VirtualBox) references |
CVE-2009-0876
|
| MLIST:[oss-security] 20090317 Re: [oCERT-2008-015] glib and glib-predecessor heap overflows |
CVE-2008-4316
|
| MLIST:[oss-security] 20090318 Re: CVE request: kernel: inotify local DoS |
CVE-2009-0935
|
| MLIST:[oss-security] 20090319 Re: CVE request: kernel: inotify local DoS |
CVE-2009-0935
|
| MLIST:[oss-security] 20090323 CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap |
CVE-2009-1073
|
| MLIST:[oss-security] 20090323 CVE request: API key disclosure in piwik |
CVE-2009-1085
|
| MLIST:[oss-security] 20090323 CVE request: kernel: nfsd did not drop CAP_MKNOD for non-root |
CVE-2009-1072
|
| MLIST:[oss-security] 20090324 CVE id request: ldns |
CVE-2009-1086
|
| MLIST:[oss-security] 20090324 Re: CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap |
CVE-2009-1073
|
| MLIST:[oss-security] 20090325 CVE request -- zsh, XFree86-xfs/xorg-x11-xfs, screen |
CVE-2009-1214
CVE-2009-1215
|
| MLIST:[oss-security] 20090330 [Fwd: Cross-Site Scripting in Banshee DAAP Extension] |
CVE-2009-1175
|
| MLIST:[oss-security] 20090401 CVE id rquest: xfig insecure tmp files |
CVE-2009-1962
|
| MLIST:[oss-security] 20090401 CVE request -- bibtex, pam_ssh |
CVE-2009-1284
|
| MLIST:[oss-security] 20090401 CVE request -- ghostscript |
CVE-2007-6725
CVE-2008-6679
|
| MLIST:[oss-security] 20090401 CVE request: PHP 5.2.9 |
CVE-2009-1271
CVE-2009-1272
|
| MLIST:[oss-security] 20090401 CVE request: kernel: KVM: VMX: Dont allow uninhibited access to EFER on i386 |
CVE-2009-1242
|
| MLIST:[oss-security] 20090401 CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure |
CVE-2009-1243
|
| MLIST:[oss-security] 20090405 CVE request? buffer overflow in CIFS in 2.6.* |
CVE-2009-1439
|
| MLIST:[oss-security] 20090406 CVE request: kernel: NFS: Fix an Oops in encode_lookup() |
CVE-2009-1336
|
| MLIST:[oss-security] 20090407 CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check |
CVE-2009-1337
|
| MLIST:[oss-security] 20090407 Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive |
CVE-2008-6680
CVE-2009-1241
CVE-2009-1270
|
| MLIST:[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.* |
CVE-2009-1439
|
| MLIST:[oss-security] 20090408 CVE request: apt |
CVE-2009-1300
|
| MLIST:[oss-security] 20090408 CVE-2008-5519: mod_jk session information leak vulnerability |
CVE-2008-5519
|
| MLIST:[oss-security] 20090408 CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user frame size |
CVE-2009-1265
|
| MLIST:[oss-security] 20090409 Re: CVE request: PHP 5.2.9 |
CVE-2009-1272
|
| MLIST:[oss-security] 20090413 CVE request: silverstripe - two sql injections |
CVE-2008-6753
|
| MLIST:[oss-security] 20090415 Re: Re: Some fun with tcp_wrappers |
CVE-2009-0786
|
| MLIST:[oss-security] 20090415 Re: Some fun with tcp_wrappers |
CVE-2009-0786
|
| MLIST:[oss-security] 20090415 Some fun with tcp_wrappers |
CVE-2009-0786
|
| MLIST:[oss-security] 20090416 CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace |
CVE-2009-1338
|
| MLIST:[oss-security] 20090416 CVE-2009-1189: invalid fix for CVE-2008-3834 (dbus) |
CVE-2009-1189
|
| MLIST:[oss-security] 20090417 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace |
CVE-2009-1338
|
| MLIST:[oss-security] 20090417 Re: CVE request: kernel: NFS: Fix an Oops in encode_lookup() |
CVE-2009-1336
|
| MLIST:[oss-security] 20090417 Re: CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check |
CVE-2009-1337
|
| MLIST:[oss-security] 20090421 CVE Request -- libmodplug |
CVE-2009-1438
|
| MLIST:[oss-security] 20090421 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace |
CVE-2009-1338
|
| MLIST:[oss-security] 20090422 CVE id request: amule |
CVE-2009-1440
|
| MLIST:[oss-security] 20090422 CVE-2009-1192 kernel: agp: zero pages before sending to userspace |
CVE-2009-1192
|
| MLIST:[oss-security] 20090424 Re: Re: Some fun with tcp_wrappers |
CVE-2009-0786
|
| MLIST:[oss-security] 20090428 Re: Re: Some fun with tcp_wrappers |
CVE-2009-0786
|
| MLIST:[oss-security] 20090429 Re: CVE Request -- libmodplug |
CVE-2009-1513
|
| MLIST:[oss-security] 20090429 Re: CVE request? buffer overflow in CIFS in 2.6.* |
CVE-2009-1633
|
| MLIST:[oss-security] 20090429 ipsec-tools 0.7.2 |
CVE-2009-1574
CVE-2009-1632
|
| MLIST:[oss-security] 20090501 CVE request (sort of): Quagga BGP crasher |
CVE-2009-1572
|
| MLIST:[oss-security] 20090501 Re: CVE request (sort of): Quagga BGP crasher |
CVE-2009-1572
|
| MLIST:[oss-security] 20090504 CVE request: kernel: ptrace_attach: fix the usage of ->cred_exec_mutex |
CVE-2009-1527
|
| MLIST:[oss-security] 20090504 CVE-2009-1184 selinux: skipped node/port send checks in the compat_net=1 case |
CVE-2009-1184
|
| MLIST:[oss-security] 20090504 Re: ipsec-tools 0.7.2 |
CVE-2009-1574
|
| MLIST:[oss-security] 20090505 CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg) |
CVE-2009-1573
|
| MLIST:[oss-security] 20090505 Old cscope buffer overflow |
CVE-2009-1577
|
| MLIST:[oss-security] 20090505 Re: CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg) |
CVE-2009-1573
|
| MLIST:[oss-security] 20090506 CVE id request: coccinelle |
CVE-2009-1753
|
| MLIST:[oss-security] 20090506 Re: Old cscope buffer overflow |
CVE-2009-0148
CVE-2009-1577
|
| MLIST:[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations |
CVE-2009-1194
|
| MLIST:[oss-security] 20090508 OpenSC 0.11.8 released with security update |
CVE-2009-1603
|
| MLIST:[oss-security] 20090511 [oCERT-2009-004] AjaxTerm session id collision |
CVE-2009-1629
|
| MLIST:[oss-security] 20090512 CVE Request (evolution) |
CVE-2009-1631
|
| MLIST:[oss-security] 20090512 Re: ipsec-tools 0.7.2 |
CVE-2009-1632
|
| MLIST:[oss-security] 20090513 CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission |
CVE-2009-1630
|
| MLIST:[oss-security] 20090514 CVE Request: XEN local denial of service |
CVE-2009-1758
|
| MLIST:[oss-security] 20090514 Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.* |
CVE-2009-1633
|
| MLIST:[oss-security] 20090514 Update - Re: CVE request? buffer overflow in CIFS in 2.6.* |
CVE-2009-1633
|
| MLIST:[oss-security] 20090515 Re: Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.* |
CVE-2009-1633
|
| MLIST:[oss-security] 20090518 CVE id request: slim |
CVE-2009-1756
|
| MLIST:[oss-security] 20090518 Re: Two OpenSSL DTLS remote DoS |
CVE-2009-1379
|
| MLIST:[oss-security] 20090518 Two OpenSSL DTLS remote DoS |
CVE-2009-1377
CVE-2009-1378
|
| MLIST:[oss-security] 20090519 CVE id request: nsd |
CVE-2009-1755
|
| MLIST:[oss-security] 20090520 CVE request: ctorrent |
CVE-2009-1759
|
| MLIST:[oss-security] 20090521 CVE request: transmission <1.61 CSRF |
CVE-2009-1757
|
| MLIST:[oss-security] 20090522 [oCERT-2009-006] Android improper package verification when using shared uids |
CVE-2009-1754
|
| MLIST:[oss-security] 20090527 CVE assignment notification (pam_krb5 CVE-2009-1384) |
CVE-2009-1384
|
| MLIST:[oss-security] 20090529 CVE Request (irssi) |
CVE-2009-1959
|
| MLIST:[oss-security] 20090529 CVE request: kernel: splice local denial of service |
CVE-2009-1961
|
| MLIST:[oss-security] 20090530 Re: CVE request: kernel: splice local denial of service |
CVE-2009-1961
|
| MLIST:[oss-security] 20090602 Re: CVE request: kernel: splice local denial of service |
CVE-2009-1961
|
| MLIST:[oss-security] 20090602 Re: Two OpenSSL DTLS remote DoS |
CVE-2009-1386
CVE-2009-1387
|
| MLIST:[oss-security] 20090603 CVE request: "billion laughs" attack against Apache APR |
CVE-2009-1955
|
| MLIST:[oss-security] 20090603 CVE request: kernel: sparc64: Fix crash with /proc/iomem |
CVE-2009-1914
|
| MLIST:[oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service |
CVE-2009-1385
|
| MLIST:[oss-security] 20090603 Re: CVE request: kernel: splice local denial of service |
CVE-2009-1961
|
| MLIST:[oss-security] 20090605 CVE Request (apr-util) |
CVE-2009-1956
|
| MLIST:[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage() |
CVE-2009-1882
|
| MLIST:[oss-security] 20090610 CVE-2009-1389 kernel: r8169: fix crash when large packets are received |
CVE-2009-1389
|
| MLIST:[oss-security] 20090610 Mutt 1.5.19 SSL chain verification flaw |
CVE-2009-1390
|
| MLIST:[oss-security] 20090612 Git daemon infinite loop |
CVE-2009-2108
|
| MLIST:[oss-security] 20090621 libtiff buffer underflow in LZWDecodeCompat |
CVE-2009-2285
|
| MLIST:[oss-security] 20090623 Re: libtiff buffer underflow in LZWDecodeCompat |
CVE-2009-2285
|
| MLIST:[oss-security] 20090629 CVE Request -- libtiff [was: Re: libtiff buffer underflow in LZWDecodeCompat] |
CVE-2009-2285
|
| MLIST:[oss-security] 20090629 CVE id request: compface |
CVE-2009-2286
|
| MLIST:[oss-security] 20090629 Re: CVE id request: compface |
CVE-2009-2286
|
| MLIST:[oss-security] 20090630 CVE Request: kernel: kvm: failure to validate cr3 after KVM_SET_SREGS |
CVE-2009-2287
|
| MLIST:[oss-security] 20090701 Re: incorrect upstream fix for CVE-2009-0840 (mapserver) |
CVE-2009-2281
|
| MLIST:[oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock |
CVE-2009-1388
|
| MLIST:[oss-security] 20090703 Re: CVE id request: compface |
CVE-2009-2286
|
| MLIST:[oss-security] 20090716 [oCERT-2009-011] Android improper camera and audio permission verification |
CVE-2009-2348
|
| MLIST:[oss-security] 20090717 Linux 2.6.30+/SELinux/RHEL5 test kernel 0day, exploiting the unexploitable |
CVE-2009-1897
|
| MLIST:[oss-security] 20090720 squid DoS in external auth header parser |
CVE-2009-2855
|
| MLIST:[oss-security] 20090721 CVE Request -- WordPress |
CVE-2009-2851
|
| MLIST:[oss-security] 20090721 CVE Request -- znc |
CVE-2009-2658
|
| MLIST:[oss-security] 20090722 Re: CVE request: Wireshark <1.2.1 Multiple DoS |
CVE-2009-2560
|
| MLIST:[oss-security] 20090724 md raid null ptr dereference (when sysfs is writable) |
CVE-2009-2849
|
| MLIST:[oss-security] 20090724 nilfs-utils privilege escalation |
CVE-2009-2657
|
| MLIST:[oss-security] 20090725 Re: CVE Request -- HTMLDOC |
CVE-2009-3050
|
| MLIST:[oss-security] 20090725 camlimages: Integer overflows in GIF and JPEG readers |
CVE-2009-2660
|
| MLIST:[oss-security] 20090726 Re: CVE Request -- HTMLDOC |
CVE-2009-3050
|
| MLIST:[oss-security] 20090726 Re: md raid null ptr dereference (when sysfs is writable) |
CVE-2009-2849
|
| MLIST:[oss-security] 20090727 CVE id request: strongswan |
CVE-2009-2661
|
| MLIST:[oss-security] 20090729 CVE Request (django) |
CVE-2009-2659
|
| MLIST:[oss-security] 20090803 Re: squid DoS in external auth header parser |
CVE-2009-2855
|
| MLIST:[oss-security] 20090804 CVE request - kernel: execve: must clear current->clear_child_tid |
CVE-2009-2848
|
| MLIST:[oss-security] 20090804 CVE request - kernel: information leak in sigaltstack |
CVE-2009-2847
|
| MLIST:[oss-security] 20090804 CVE request: Wordpress |
CVE-2009-2853
CVE-2009-2854
|
| MLIST:[oss-security] 20090804 Re: squid DoS in external auth header parser |
CVE-2009-2855
|
| MLIST:[oss-security] 20090805 Re: CVE request - kernel: execve: must clear current->clear_child_tid |
CVE-2009-2848
|
| MLIST:[oss-security] 20090805 Re: CVE request - kernel: information leak in sigaltstack |
CVE-2009-2847
|
| MLIST:[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate |
CVE-2009-2666
|
| MLIST:[oss-security] 20090806 CVE request: kernel: clock_nanosleep() with CLOCK_MONOTONIC_RAW NULL pointer dereference |
CVE-2009-2767
|
| MLIST:[oss-security] 20090809 CVE id request: groff (pdfroff) |
CVE-2009-5044
CVE-2009-5078
|
| MLIST:[oss-security] 20090810 CVE request: kernel: parisc: isa-eeprom missing lower bound check |
CVE-2009-2846
|
| MLIST:[oss-security] 20090810 Re: CVE id request: groff (pdfroff) |
CVE-2009-5044
CVE-2009-5078
|
| MLIST:[oss-security] 20090811 CVE-2009-2691 kernel: /proc/$pid/maps visible during initial setuid ELF loading |
CVE-2009-2691
|
| MLIST:[oss-security] 20090813 CVE request: kernel: flat: fix uninitialized ptr with shared libs |
CVE-2009-2768
|
| MLIST:[oss-security] 20090814 CVE request: Common Data Format (CDF) library multiple heap-based buffer overflows |
CVE-2009-2850
|
| MLIST:[oss-security] 20090814 CVE-2009-2692 kernel: uninit op in SOCKOPS_WRAP() leads to privesc |
CVE-2009-2692
|
| MLIST:[oss-security] 20090814 GnuTLS CVE-2009-2730 Patches (Was Re: GnuTLS 2.8.2) |
CVE-2009-2730
|
| MLIST:[oss-security] 20090814 Re: CVE id request: groff (pdfroff) |
CVE-2009-5044
CVE-2009-5079
CVE-2009-5080
CVE-2009-5081
CVE-2009-5082
|
| MLIST:[oss-security] 20090815 mailfilter 0.8.2 fixes CVE-2007-1558 (APOP) |
CVE-2007-1558
|
| MLIST:[oss-security] 20090817 CVE request: kernel: cfg80211: missing NULL pointer checks |
CVE-2009-2844
|
| MLIST:[oss-security] 20090817 Re: CVE request: kernel: cfg80211: missing NULL pointer checks |
CVE-2009-2844
|
| MLIST:[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695) |
CVE-2009-2695
|
| MLIST:[oss-security] 20090818 Re: CVE request: kernel: parisc: isa-eeprom missing lower bound check |
CVE-2009-2846
|
| MLIST:[oss-security] 20090818 Re: CVE-2007-1558 update (was: mailfilter 0.8.2 fixes CVE-2007-1558 (APOP)) |
CVE-2007-1558
|
| MLIST:[oss-security] 20090819 CVE Request pidgin |
CVE-2009-3025
|
| MLIST:[oss-security] 20090821 expat bug 1990430 |
CVE-2009-3720
|
| MLIST:[oss-security] 20090824 CVE id request: pidgin |
CVE-2009-3026
|
| MLIST:[oss-security] 20090825 CVE-2009-2698 kernel: udp socket NULL ptr dereference |
CVE-2009-2698
|
| MLIST:[oss-security] 20090826 CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure |
CVE-2009-3001
|
| MLIST:[oss-security] 20090826 Re: CVE request - kernel: information leak in sigaltstack |
CVE-2009-2847
|
| MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430 |
CVE-2009-3720
|
| MLIST:[oss-security] 20090826 Re: expat bug 1990430 |
CVE-2009-3720
|
| MLIST:[oss-security] 20090827 Re: CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure |
CVE-2009-3002
|
| MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430 |
CVE-2009-3720
|
| MLIST:[oss-security] 20090828 CVE request: perl-IO-Socket-SSL certificate hostname compare bug |
CVE-2009-3024
|
| MLIST:[oss-security] 20090829 Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug |
CVE-2009-3024
|
| MLIST:[oss-security] 20090831 CVE id request: silc-toolkit |
CVE-2008-7159
CVE-2008-7160
CVE-2009-3051
CVE-2009-3163
|
| MLIST:[oss-security] 20090831 CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc |
CVE-2009-3043
|
| MLIST:[oss-security] 20090831 Re: Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug |
CVE-2009-3024
|
| MLIST:[oss-security] 20090901 Re: CVE Request -- HTMLDOC |
CVE-2009-3050
|
| MLIST:[oss-security] 20090903 CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2009-3228
|
| MLIST:[oss-security] 20090903 More CVE-2009-2408 like issues |
CVE-2009-2408
CVE-2009-3490
CVE-2009-3765
CVE-2009-3766
CVE-2009-3767
|
| MLIST:[oss-security] 20090903 Re: CVE id request: silc-toolkit |
CVE-2008-7159
CVE-2008-7160
CVE-2009-3051
CVE-2009-3163
|
| MLIST:[oss-security] 20090903 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc |
CVE-2009-3043
|
| MLIST:[oss-security] 20090904 CVE request: kernel: NULL pointer dereference in sg_build_indirect() |
CVE-2009-3288
|
| MLIST:[oss-security] 20090904 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc |
CVE-2009-3043
|
| MLIST:[oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2005-4881
CVE-2009-3228
|
| MLIST:[oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2005-4881
CVE-2009-3228
|
| MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430 |
CVE-2009-2625
CVE-2009-3720
|
| MLIST:[oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2005-4881
CVE-2009-3228
|
| MLIST:[oss-security] 20090908 CVE Request - glib symlink copying permission exposure |
CVE-2009-3289
|
| MLIST:[oss-security] 20090908 CVE request - Debian/Ubuntu PAM auth module selection |
CVE-2009-3232
|
| MLIST:[oss-security] 20090909 CVE Request -- FreeRADIUS 1.1.8 |
CVE-2009-3111
|
| MLIST:[oss-security] 20090910 Re: OpenOffice.org CVE-2009-2139 |
CVE-2009-2139
CVE-2009-2140
|
| MLIST:[oss-security] 20090911 Re: OpenOffice.org CVE-2009-2139 |
CVE-2009-2139
CVE-2009-2140
|
| MLIST:[oss-security] 20090912 CVE request(?): Thin: Client IP spoofing |
CVE-2009-3287
|
| MLIST:[oss-security] 20090914 CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams |
CVE-2009-2903
|
| MLIST:[oss-security] 20090914 Re: CVE for recent cyrus-imap issue |
CVE-2009-2632
CVE-2009-3235
|
| MLIST:[oss-security] 20090914 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams |
CVE-2009-2903
|
| MLIST:[oss-security] 20090915 CVE-2009-1883 kernel: missing capability check in z90crypt |
CVE-2009-1883
|
| MLIST:[oss-security] 20090915 Re: CVE-2009-1883 kernel: missing capability check in z90crypt |
CVE-2009-1883
|
| MLIST:[oss-security] 20090916 CVE id request: changetrack |
CVE-2009-3233
|
| MLIST:[oss-security] 20090916 CVE request: kernel: cfg80211: fix looping soft lockup in find_ie() |
CVE-2009-3280
|
| MLIST:[oss-security] 20090916 CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr() |
CVE-2009-3234
|
| MLIST:[oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2005-4881
CVE-2009-3228
|
| MLIST:[oss-security] 20090917 Re: CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr() |
CVE-2009-3234
|
| MLIST:[oss-security] 20090917 Re: CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2005-4881
CVE-2009-3228
|
| MLIST:[oss-security] 20090917 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams |
CVE-2009-2903
|
| MLIST:[oss-security] 20090917 Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request |
CVE-2009-2562
CVE-2009-2563
|
| MLIST:[oss-security] 20090917 Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request |
CVE-2009-2563
|
| MLIST:[oss-security] 20090918 CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 |
CVE-2009-3290
|
| MLIST:[oss-security] 20090918 Insecure pid directory permissions for postfix on Debian / Ubuntu |
CVE-2009-2939
|
| MLIST:[oss-security] 20090920 Re: CVE Request -- PHP 5 - 5.2.11 |
CVE-2009-3294
|
| MLIST:[oss-security] 20090921 CVE request: kernel: issue with O_EXCL creates on NFSv4 |
CVE-2009-3286
|
| MLIST:[oss-security] 20090921 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 |
CVE-2009-3290
|
| MLIST:[oss-security] 20090922 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 |
CVE-2009-3290
|
| MLIST:[oss-security] 20090922 Re: [oss-security] OpenOffice.org CVE-2009-2139 |
CVE-2009-2139
CVE-2009-2140
|
| MLIST:[oss-security] 20090923 Re: More CVE-2009-2408 like issues |
CVE-2009-3490
CVE-2009-3765
CVE-2009-3767
|
| MLIST:[oss-security] 20090925 CVE Request -- Xen -- PyGrub |
CVE-2009-3525
|
| MLIST:[oss-security] 20091001 CVE Request (kernel) |
CVE-2009-2910
|
| MLIST:[oss-security] 20091001 Re: CVE Request (kernel) |
CVE-2009-2910
|
| MLIST:[oss-security] 20091002 Re: CVE Request (kernel) |
CVE-2009-2910
|
| MLIST:[oss-security] 20091006 Kernel ecryptfs CVE id (CVE-2009-2908) |
CVE-2009-2908
|
| MLIST:[oss-security] 20091007 More kernel CVE info (CVE-2009-2909) |
CVE-2009-2909
|
| MLIST:[oss-security] 20091009 CVE request: Unbound |
CVE-2009-3602
|
| MLIST:[oss-security] 20091009 Re: CVE Request (kernel) |
CVE-2009-2910
|
| MLIST:[oss-security] 20091009 Re: CVE request: Unbound |
CVE-2009-3602
|
| MLIST:[oss-security] 20091013 Re: Duplicate CVE assignment notification [was: CVE id request: django] |
CVE-2009-3695
|
| MLIST:[oss-security] 20091014 CVE Request - backintime |
CVE-2009-3611
|
| MLIST:[oss-security] 20091014 CVE Request -- phpMyAdmin |
CVE-2009-3696
CVE-2009-3697
|
| MLIST:[oss-security] 20091014 CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 |
CVE-2009-3612
|
| MLIST:[oss-security] 20091014 Re: CVE Request - backintime |
CVE-2009-3611
|
| MLIST:[oss-security] 20091014 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 |
CVE-2009-3612
|
| MLIST:[oss-security] 20091014 Re: CVE request: kernel: tc: uninitialised kernel memory leak |
CVE-2009-3612
|
| MLIST:[oss-security] 20091015 Re: CVE Request -- PHP 5 - 5.2.11 |
CVE-2009-3546
|
| MLIST:[oss-security] 20091015 Re: CVE Request -- phpMyAdmin |
CVE-2009-3696
CVE-2009-3697
|
| MLIST:[oss-security] 20091015 Re: CVE request kernel: flood ping cause |
CVE-2009-3613
|
| MLIST:[oss-security] 20091015 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 |
CVE-2009-3612
|
| MLIST:[oss-security] 20091016 CVE Request - aria2 - 1.6.2 |
CVE-2009-3617
|
| MLIST:[oss-security] 20091016 QEMU VNC use-after-free |
CVE-2009-3616
|
| MLIST:[oss-security] 20091016 Re: CVE Request - aria2 - 1.6.2 |
CVE-2009-3617
|
| MLIST:[oss-security] 20091016 Re: QEMU VNC use-after-free |
CVE-2009-3616
|
| MLIST:[oss-security] 20091016 Re: viewvc: CVE request: XSS and illegal characters while printing name-value pairs |
CVE-2009-3618
CVE-2009-3619
|
| MLIST:[oss-security] 20091019 CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket |
CVE-2009-3621
|
| MLIST:[oss-security] 20091019 CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised |
CVE-2009-3620
|
| MLIST:[oss-security] 20091019 Re: CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket |
CVE-2009-3621
|
| MLIST:[oss-security] 20091019 Re: CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised |
CVE-2009-3620
|
| MLIST:[oss-security] 20091021 CVE assignment notification -- CVE-2009-2911 - Three SystemTap-1.0 DoS issues |
CVE-2009-2911
|
| MLIST:[oss-security] 20091021 CVE request: Wordpress Trackback DoS |
CVE-2009-3622
|
| MLIST:[oss-security] 20091021 Re: CVE request: Wordpress Trackback DoS |
CVE-2009-3622
|
| MLIST:[oss-security] 20091022 CVE Request -- Sahana |
CVE-2009-3625
|
| MLIST:[oss-security] 20091022 CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases |
CVE-2009-3624
|
| MLIST:[oss-security] 20091022 CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client |
CVE-2009-3623
|
| MLIST:[oss-security] 20091022 Re: CVE Request -- Sahana |
CVE-2009-3625
|
| MLIST:[oss-security] 20091022 Re: CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases |
CVE-2009-3624
|
| MLIST:[oss-security] 20091022 Re: CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client |
CVE-2009-3623
|
| MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430 |
CVE-2009-3720
|
| MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430 |
CVE-2009-2625
CVE-2009-3720
|
| MLIST:[oss-security] 20091022 Regarding expat bug 1990430 |
CVE-2009-3720
|
| MLIST:[oss-security] 20091023 CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid() |
CVE-2009-3638
|
| MLIST:[oss-security] 20091023 CVE request: kvm: update_cr8_intercept() NULL pointer dereference |
CVE-2009-3640
|
| MLIST:[oss-security] 20091023 CVE-2009-3626 assigment notification - Perl - perl-5.10.1 |
CVE-2009-3626
|
| MLIST:[oss-security] 20091023 CVE-2009-3627 assignment notification - HTML-Parser-3.63 |
CVE-2009-3627
|
| MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] |
CVE-2009-2625
CVE-2009-3720
|
| MLIST:[oss-security] 20091023 Re: CVE id request: typo3 |
CVE-2009-3628
CVE-2009-3629
CVE-2009-3630
CVE-2009-3631
CVE-2009-3632
CVE-2009-3633
CVE-2009-3634
CVE-2009-3635
CVE-2009-3636
|
| MLIST:[oss-security] 20091023 Re: CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid() |
CVE-2009-3638
|
| MLIST:[oss-security] 20091023 Re: proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification |
CVE-2009-3639
|
| MLIST:[oss-security] 20091023 proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification |
CVE-2009-3639
|
| MLIST:[oss-security] 20091024 Re: CVE request: kvm: update_cr8_intercept() NULL pointer dereference |
CVE-2009-3640
|
| MLIST:[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1 |
CVE-2009-3641
|
| MLIST:[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1 |
CVE-2009-3641
|
| MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] |
CVE-2009-2625
CVE-2009-3720
|
| MLIST:[oss-security] 20091026 Re: CVE-2009-3239 is a duplicate of CVE-2009-2139 and CVE-2009-2140 |
CVE-2009-2139
|
| MLIST:[oss-security] 20091026 Re: More CVE-2009-2408 like issues |
CVE-2009-3766
|
| MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] |
CVE-2009-3720
|
| MLIST:[oss-security] 20091029 CVE request: kvm: check cpl before emulating debug register access |
CVE-2009-3722
|
| MLIST:[oss-security] 20091029 Re: CVE request: kvm: check cpl before emulating debug register access |
CVE-2009-3722
|
| MLIST:[oss-security] 20091102 CVE request: kernel: connector security bypass |
CVE-2009-3725
|
| MLIST:[oss-security] 20091102 Re: CVE request: kernel: connector security bypass |
CVE-2009-3725
|
| MLIST:[oss-security] 20091103 CVE-2009-3547 kernel: fs: pipe.c null pointer dereference |
CVE-2009-3547
|
| MLIST:[oss-security] 20091105 CVE request: kernel: NULL pointer dereference in nfs4_proc_lock() |
CVE-2009-3726
|
| MLIST:[oss-security] 20091105 CVE-2009-3555 for TLS renegotiation MITM attacks |
CVE-2009-3555
|
| MLIST:[oss-security] 20091105 Re: CVE request: kernel: NULL pointer dereference in nfs4_proc_lock() |
CVE-2009-3726
|
| MLIST:[oss-security] 20091105 Re: CVE-2009-3555 for TLS renegotiation MITM attacks |
CVE-2009-3555
|
| MLIST:[oss-security] 20091107 Re: CVE Request - Asterisk (AST-2009-008.html) |
CVE-2008-7220
|
| MLIST:[oss-security] 20091107 Re: CVE-2009-3555 for TLS renegotiation MITM attacks |
CVE-2009-3555
|
| MLIST:[oss-security] 20091107 Re: [TLS] CVE-2009-3555 for TLS renegotiation MITM attacks |
CVE-2009-3555
|
| MLIST:[oss-security] 20091109 CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff() |
CVE-2009-3888
|
| MLIST:[oss-security] 20091113 CVE request: kernel: bad permissions on megaraid_sas sysfs files |
CVE-2009-3889
CVE-2009-3939
|
| MLIST:[oss-security] 20091113 Re: CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff() |
CVE-2009-3888
|
| MLIST:[oss-security] 20091113 Re: CVE request: kernel: bad permissions on megaraid_sas sysfs files |
CVE-2009-3889
|
| MLIST:[oss-security] 20091115 CVE Id request: request-tracker |
CVE-2009-3892
|
| MLIST:[oss-security] 20091115 CVE request: Wordpress 2.8.6 |
CVE-2009-3890
CVE-2009-3891
|
| MLIST:[oss-security] 20091115 Re: CVE request: Wordpress 2.8.6 |
CVE-2009-3890
CVE-2009-3891
|
| MLIST:[oss-security] 20091116 Re: CVE Id request: request-tracker |
CVE-2009-3892
|
| MLIST:[oss-security] 20091116 Re: CVE request: Wordpress 2.8.6 |
CVE-2009-3890
CVE-2009-3891
|
| MLIST:[oss-security] 20091119 CVE assignment (libexif) |
CVE-2009-3895
|
| MLIST:[oss-security] 20091119 CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer |
CVE-2009-4021
|
| MLIST:[oss-security] 20091119 mysql-5.1.41 |
CVE-2009-4028
CVE-2009-4030
|
| MLIST:[oss-security] 20091120 CVE Assignment nginx |
CVE-2009-3896
|
| MLIST:[oss-security] 20091120 CVE request: php 5.3.1 update |
CVE-2009-3292
CVE-2009-3294
CVE-2009-3557
CVE-2009-3558
CVE-2009-3559
CVE-2009-4017
|
| MLIST:[oss-security] 20091120 CVE request: v1.2.8 released to fix the 0777 base_dir creation issue |
CVE-2009-3897
|
| MLIST:[oss-security] 20091120 CVEs for nginx |
CVE-2009-3555
CVE-2009-3896
CVE-2009-3898
|
| MLIST:[oss-security] 20091120 Re: CVE request: php 5.3.1 update |
CVE-2009-3292
CVE-2009-3294
CVE-2009-3546
CVE-2009-3557
CVE-2009-3558
CVE-2009-3559
CVE-2009-4017
|
| MLIST:[oss-security] 20091121 CVE Request - Dovecot - 1.2.8 |
CVE-2009-3897
|
| MLIST:[oss-security] 20091121 CVE Request - MySQL - 5.0.88 |
CVE-2009-4019
CVE-2009-4028
|
| MLIST:[oss-security] 20091121 Re: CVE Request - MySQL - 5.0.88 |
CVE-2009-4019
|
| MLIST:[oss-security] 20091122 Re: CVE request: php 5.3.1 update |
CVE-2009-4018
|
| MLIST:[oss-security] 20091123 CVE request: Argument injections in multiple PEAR packages |
CVE-2009-4023
CVE-2009-4025
CVE-2009-4111
|
| MLIST:[oss-security] 20091123 Re: CVE Request - Dovecot - 1.2.8 |
CVE-2009-3897
|
| MLIST:[oss-security] 20091123 Re: CVE Request - MySQL - 5.0.88 |
CVE-2009-4019
|
| MLIST:[oss-security] 20091123 Re: CVE request: php 5.3.1 - proc_open() bypass PHP Bug #49026 [was: Re: CVE request: php 5.3.1 update] |
CVE-2009-4018
|
| MLIST:[oss-security] 20091123 Re: CVE request: v1.2.8 released to fix the 0777 base_dir creation issue |
CVE-2009-3897
|
| MLIST:[oss-security] 20091123 Re: CVEs for nginx |
CVE-2009-3555
CVE-2009-3896
CVE-2009-3898
|
| MLIST:[oss-security] 20091123 Re: mysql-5.1.41 |
CVE-2009-4028
|
| MLIST:[oss-security] 20091124 CVE request: BIND 9 bug involving DNSSEC and the additional section |
CVE-2009-4022
|
| MLIST:[oss-security] 20091124 Re: CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer |
CVE-2009-4021
|
| MLIST:[oss-security] 20091124 Re: a new bind issue |
CVE-2009-4022
|
| MLIST:[oss-security] 20091124 Re: mysql-5.1.41 |
CVE-2008-7247
CVE-2009-4030
|
| MLIST:[oss-security] 20091124 a new bind issue |
CVE-2009-4022
|
| MLIST:[oss-security] 20091125 CVE Request - Cacti - 0.8.7e |
CVE-2009-4032
|
| MLIST:[oss-security] 20091125 CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes |
CVE-2009-4031
|
| MLIST:[oss-security] 20091125 Re: CVE Request - Cacti - 0.8.7e |
CVE-2009-4032
|
| MLIST:[oss-security] 20091125 Re: CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes |
CVE-2009-4031
|
| MLIST:[oss-security] 20091126 Re: CVE Request - Cacti - 0.8.7e |
CVE-2009-4032
CVE-2009-4112
|
| MLIST:[oss-security] 20091127 CVE request: ruby on rails XSS Weakness in strip_tags |
CVE-2009-4214
|
| MLIST:[oss-security] 20091128 CVE request: Ruby on Rails: CSRF circumvention (from 2008) |
CVE-2008-7248
|
| MLIST:[oss-security] 20091128 Re: CVE request: Argument injections in multiple PEAR packages |
CVE-2009-4111
|
| MLIST:[oss-security] 20091130 Need more information on recent poppler issues |
CVE-2009-3606
CVE-2009-3607
CVE-2009-3608
|
| MLIST:[oss-security] 20091130 Re: CVE Request - Cacti - 0.8.7e |
CVE-2009-4032
CVE-2009-4112
|
| MLIST:[oss-security] 20091130 Re: Need more information on recent poppler issues |
CVE-2009-3606
CVE-2009-3607
CVE-2009-3608
|
| MLIST:[oss-security] 20091201 CVE request: kernel: mac80211: fix two remote exploits |
CVE-2009-4026
|
| MLIST:[oss-security] 20091201 Re: Need more information on recent poppler issues |
CVE-2009-3606
CVE-2009-3607
CVE-2009-3608
|
| MLIST:[oss-security] 20091202 Re: CVE request: Ruby on Rails: CSRF circumvention (from 2008) |
CVE-2008-7248
|
| MLIST:[oss-security] 20091203 CVE Request -- xfig |
CVE-2009-4227
|
| MLIST:[oss-security] 20091204 CVE-2009-4020 kernel: hfs buffer overflow |
CVE-2009-4020
|
| MLIST:[oss-security] 20091208 CVE Request -- coreutils -- unsafe temporary directory location use |
CVE-2009-4135
|
| MLIST:[oss-security] 20091208 Re: CVE Request -- coreutils -- unsafe temporary directory location use |
CVE-2009-4135
|
| MLIST:[oss-security] 20091208 Re: CVE request: ruby on rails XSS Weakness in strip_tags |
CVE-2009-4214
|
| MLIST:[oss-security] 20091209 Piwik <= 0.4.5 Cookie Unserialize() Vulnerability |
CVE-2009-4137
|
| MLIST:[oss-security] 20091210 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability |
CVE-2009-4137
|
| MLIST:[oss-security] 20091212 CVE request: polipo DoS via overly large "Content-Length" header |
CVE-2009-4413
|
| MLIST:[oss-security] 20091214 CVE Request - Open Flash Chart v2 |
CVE-2009-4140
|
| MLIST:[oss-security] 20091214 Re: CVE Request - Open Flash Chart v2 |
CVE-2009-4140
|
| MLIST:[oss-security] 20091214 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability |
CVE-2009-4137
|
| MLIST:[oss-security] 20091215 CVE-2009-4138 kernel: firewire: ohci: handle receive packets with a data length of zero |
CVE-2009-4138
|
| MLIST:[oss-security] 20091216 NetworkManager CVE assignment |
CVE-2009-4144
CVE-2009-4145
|
| MLIST:[oss-security] 20091217 [oCERT-2009-019] Ganeti path sanitization errors |
CVE-2009-4261
|
| MLIST:[oss-security] 20091217 possible vulnerability in ghostscript >= 8.64 |
CVE-2009-4270
|
| MLIST:[oss-security] 20091218 Re: possible vulnerability in ghostscript >= 8.64 |
CVE-2009-4270
|
| MLIST:[oss-security] 20091220 CVE request: phpgroupware |
CVE-2009-4414
CVE-2009-4415
CVE-2009-4416
|
| MLIST:[oss-security] 20091221 CVE request: Serendipity < 1.5 upload of files with *.php.* possible |
CVE-2009-4412
|
| MLIST:[oss-security] 20091223 CVE request - kernel: fuse_ioctl_copy_user() dos |
CVE-2009-4410
|
| MLIST:[oss-security] 20091223 CVE request: acl 2.2.47 always follows symlinks |
CVE-2009-4411
|
| MLIST:[oss-security] 20091224 OpenTTD remote DoS |
CVE-2009-4007
|
| MLIST:[oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389 |
CVE-2009-4536
CVE-2009-4537
CVE-2009-4538
|
| MLIST:[oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 |
CVE-2009-4536
CVE-2009-4537
CVE-2009-4538
|
| MLIST:[oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 |
CVE-2009-4536
CVE-2009-4537
CVE-2009-4538
|
| MLIST:[oss-security] 20100102 CVE request - pidgin MSN arbitrary file upload |
CVE-2010-0013
|
| MLIST:[oss-security] 20100106 CVE Request: Transmission |
CVE-2010-0012
|
| MLIST:[oss-security] 20100106 CVE request - uzbl remote code execution |
CVE-2010-0011
|
| MLIST:[oss-security] 20100106 Re: CVE Request: Transmission |
CVE-2010-0012
|
| MLIST:[oss-security] 20100106 Re: CVE request - uzbl remote code execution |
CVE-2010-0011
|
| MLIST:[oss-security] 20100107 CVE id request: GNU libc: NIS shadow password leakage |
CVE-2010-0015
|
| MLIST:[oss-security] 20100107 Re: CVE request - pidgin MSN arbitrary file upload |
CVE-2010-0013
CVE-2010-0277
|
| MLIST:[oss-security] 20100108 Re: CVE id request: GNU libc: NIS shadow password leakage |
CVE-2010-0015
|
| MLIST:[oss-security] 20100109 Re: CVE id request: GNU libc: NIS shadow password leakage |
CVE-2010-0015
|
| MLIST:[oss-security] 20100111 CVE Request: viewvc |
CVE-2010-0004
CVE-2010-0005
|
| MLIST:[oss-security] 20100111 Re: CVE id request: GNU libc: NIS shadow password leakage |
CVE-2010-0015
|
| MLIST:[oss-security] 20100112 CVE request - kernel: infoleak if print-fatal-signals=1 |
CVE-2010-0003
|
| MLIST:[oss-security] 20100113 CVE Request: kernel ebtables perm check |
CVE-2010-0007
|
| MLIST:[oss-security] 20100113 Re: CVE Request: viewvc |
CVE-2010-0004
CVE-2010-0005
|
| MLIST:[oss-security] 20100113 Re: CVE request - kernel: infoleak if print-fatal-signals=1 |
CVE-2010-0003
|
| MLIST:[oss-security] 20100113 [PATCH] memory consumption (DoS) in openssl CVE-2009-4355 |
CVE-2009-4355
|
| MLIST:[oss-security] 20100114 CVE-2010-0006 - kernel: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo() |
CVE-2010-0006
|
| MLIST:[oss-security] 20100114 Re: CVE Request: kernel ebtables perm check |
CVE-2010-0007
|
| MLIST:[oss-security] 20100114 Re: CVE Request: viewvc |
CVE-2010-0004
|
| MLIST:[oss-security] 20100119 BIND CVE-2009-4022 fix incomplete |
CVE-2010-0290
|
| MLIST:[oss-security] 20100119 CVE request - kernel: untangle the do_mremap() mess |
CVE-2010-0291
|
| MLIST:[oss-security] 20100119 Re: CVE request - kernel: untangle the do_mremap() mess |
CVE-2010-0291
|
| MLIST:[oss-security] 20100120 CVE-2009-3556 kernel: qla2xxx NPIV vport management pseudofiles are world writable |
CVE-2009-3556
|
| MLIST:[oss-security] 20100120 CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock |
CVE-2009-4272
|
| MLIST:[oss-security] 20100120 Re: BIND CVE-2009-4022 fix incomplete |
CVE-2010-0290
|
| MLIST:[oss-security] 20100120 Re: CVE request - kernel: untangle the do_mremap() mess |
CVE-2010-0291
|
| MLIST:[oss-security] 20100120 Re: CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock |
CVE-2009-4272
|
| MLIST:[oss-security] 20100121 CVE request: MoinMoin information disclosure |
CVE-2010-0667
|
| MLIST:[oss-security] 20100121 Re: CVE request - kernel: untangle the do_mremap() mess |
CVE-2010-0291
|
| MLIST:[oss-security] 20100127 CVE id request: maildrop |
CVE-2010-0301
|
| MLIST:[oss-security] 20100127 Re: CVE id request: postgresql bitsubstr overflow |
CVE-2010-0442
|
| MLIST:[oss-security] 20100128 Re: CVE id request: maildrop |
CVE-2010-0301
|
| MLIST:[oss-security] 20100129 CVE Request -- ejabberd |
CVE-2010-0305
|
| MLIST:[oss-security] 20100129 Re: CVE Request -- ejabberd |
CVE-2010-0305
|
| MLIST:[oss-security] 20100129 Re: CVE id request: Wireshark |
CVE-2010-0304
|
| MLIST:[oss-security] 20100129 Re: CVE id: hybserv |
CVE-2010-0303
|
| MLIST:[oss-security] 20100201 CVE request - kernel: DoS on x86_64 |
CVE-2010-0307
|
| MLIST:[oss-security] 20100201 Re: CVE request - kernel: DoS on x86_64 |
CVE-2010-0307
|
| MLIST:[oss-security] 20100202 CVE request - kvm: cat /dev/port in the guest can cause host DoS |
CVE-2010-0309
|
| MLIST:[oss-security] 20100202 KVM possible security issues fixed |
CVE-2010-0297
|
| MLIST:[oss-security] 20100202 Re: CVE request - kvm: cat /dev/port in the guest can cause host DoS |
CVE-2010-0309
|
| MLIST:[oss-security] 20100202 lighttpd: slow request dos/oom attack [CVE-2010-0295] |
CVE-2010-0295
|
| MLIST:[oss-security] 20100203 CVE Request -- GMime-2.4.15 |
CVE-2010-0409
|
| MLIST:[oss-security] 20100203 CVE request: kernel OOM/crash in drivers/connector |
CVE-2010-0410
|
| MLIST:[oss-security] 20100203 Re: CVE Request -- GMime-2.4.15 |
CVE-2010-0409
|
| MLIST:[oss-security] 20100203 Re: CVE request - kernel: DoS on x86_64 |
CVE-2010-0307
|
| MLIST:[oss-security] 20100203 Re: CVE request: kernel OOM/crash in drivers/connector |
CVE-2010-0410
|
| MLIST:[oss-security] 20100204 Re: CVE request - kernel: DoS on x86_64 |
CVE-2010-0307
|
| MLIST:[oss-security] 20100204 Re: KVM possible security issues fixed |
CVE-2010-0297
|
| MLIST:[oss-security] 20100204 systemtap DoS issue (CVE-2010-0411) |
CVE-2010-0411
|
| MLIST:[oss-security] 20100205 Re: Samba symlink 0day flaw |
CVE-2010-0926
|
| MLIST:[oss-security] 20100205 Samba symlink 0day flaw |
CVE-2010-0926
|
| MLIST:[oss-security] 20100206 Re: Samba symlink 0day flaw |
CVE-2010-0926
|
| MLIST:[oss-security] 20100207 CVE request: information leak / potential crash in sys_move_pages |
CVE-2010-0415
|
| MLIST:[oss-security] 20100207 Re: CVE request: information leak / potential crash in sys_move_pages |
CVE-2010-0415
|
| MLIST:[oss-security] 20100208 Re: CVE request: information leak / potential crash in sys_move_pages |
CVE-2010-0415
|
| MLIST:[oss-security] 20100209 CVE Request -- cURL/libCURL 7.20.0 |
CVE-2010-0734
|
| MLIST:[oss-security] 20100209 CVE request - kernel: futex: Handle user space corruption gracefully |
CVE-2010-0622
|
| MLIST:[oss-security] 20100209 vulnerability in netpbm (CVE-2009-4274) |
CVE-2009-4274
|
| MLIST:[oss-security] 20100211 CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference |
CVE-2010-0437
|
| MLIST:[oss-security] 20100211 Re: CVE request - kernel: futex: Handle user space corruption gracefully |
CVE-2010-0622
CVE-2010-0623
|
| MLIST:[oss-security] 20100212 CVE Request: KDE screensaver unlock issue similar to GNOME one |
CVE-2010-0923
|
| MLIST:[oss-security] 20100212 CVE Request: gnome-screensaver termination by pressing "Enter" |
CVE-2010-0732
|
| MLIST:[oss-security] 20100212 Re: CVE Request: KDE screensaver unlock issue similar to GNOME one |
CVE-2010-0923
|
| MLIST:[oss-security] 20100212 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one |
CVE-2010-0923
|
| MLIST:[oss-security] 20100212 Re: gnome-screensaver vulnerability (CVE-2010-0414) |
CVE-2010-0422
|
| MLIST:[oss-security] 20100215 CVE Request -- MoinMoin -- 1.8.7 |
CVE-2010-0667
CVE-2010-0668
CVE-2010-0669
CVE-2010-0717
|
| MLIST:[oss-security] 20100215 Re: CVE Request -- MoinMoin -- 1.8.7 |
CVE-2010-0667
CVE-2010-0668
CVE-2010-0669
|
| MLIST:[oss-security] 20100217 CVE request: kernel information leak via userspace USB interface |
CVE-2010-1083
|
| MLIST:[oss-security] 20100217 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one |
CVE-2010-0923
|
| MLIST:[oss-security] 20100217 additional memory leak in USB userspace handling |
CVE-2010-1083
|
| MLIST:[oss-security] 20100218 Re: CVE request: kernel information leak via userspace USB interface |
CVE-2010-1083
|
| MLIST:[oss-security] 20100219 Re: CVE request: kernel information leak via userspace USB interface |
CVE-2010-1083
|
| MLIST:[oss-security] 20100219 Re: additional memory leak in USB userspace handling |
CVE-2010-1083
|
| MLIST:[oss-security] 20100221 Re: CVE Request -- MoinMoin -- 1.8.7 |
CVE-2010-0667
CVE-2010-0668
CVE-2010-0669
|
| MLIST:[oss-security] 20100222 CVE request: kernel: ALSA: hda-intel: Avoid divide by zero crash |
CVE-2010-1085
|
| MLIST:[oss-security] 20100222 CVE-2005-4886 assigned to old remote oops |
CVE-2005-4886
|
| MLIST:[oss-security] 20100223 CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set |
CVE-2010-0427
|
| MLIST:[oss-security] 20100224 CVE request: kernel: NFS DoS related to "automount" symlinks |
CVE-2010-1088
|
| MLIST:[oss-security] 20100224 Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set |
CVE-2010-0427
|
| MLIST:[oss-security] 20100224 kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only) |
CVE-2010-1451
|
| MLIST:[oss-security] 20100301 CVE request: kernel: dvb-core: ULE decapsulation DoS |
CVE-2010-1086
|
| MLIST:[oss-security] 20100303 CVE Request: libesmtp does not check NULL bytes in commonName |
CVE-2010-1192
CVE-2010-1194
|
| MLIST:[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file |
CVE-2010-1087
|
| MLIST:[oss-security] 20100303 OpenSSL (with KRB5) remote crash - CVE-2010-0433 |
CVE-2010-0433
|
| MLIST:[oss-security] 20100304 Re: CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference |
CVE-2010-0437
|
| MLIST:[oss-security] 20100304 kernel: hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[oss-security] 20100305 Re: CVE Request: gnome-screensaver termination by pressing "Enter" |
CVE-2010-0732
|
| MLIST:[oss-security] 20100305 Re: Samba symlink 0day flaw |
CVE-2010-0926
|
| MLIST:[oss-security] 20100309 CVE Request: postgresql integer overflow in hash table size calculation |
CVE-2010-0733
|
| MLIST:[oss-security] 20100309 Re: CVE Request -- cURL/libCURL 7.20.0 |
CVE-2010-0734
|
| MLIST:[oss-security] 20100309 Re: CVE Request: libesmtp does not check NULL bytes in commonName |
CVE-2010-1192
CVE-2010-1194
|
| MLIST:[oss-security] 20100310 CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header |
CVE-2010-0745
|
| MLIST:[oss-security] 20100310 CVE Request -- aMSN -- improper SSL certificate validation (MITM) |
CVE-2010-0744
|
| MLIST:[oss-security] 20100310 CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input |
CVE-2010-0736
|
| MLIST:[oss-security] 20100312 CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS |
CVE-2010-0969
|
| MLIST:[oss-security] 20100312 CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extension |
CVE-2010-0397
|
| MLIST:[oss-security] 20100312 CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw |
CVE-2010-0727
|
| MLIST:[oss-security] 20100312 CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach() |
CVE-2010-0729
|
| MLIST:[oss-security] 20100316 Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS |
CVE-2010-0969
|
| MLIST:[oss-security] 20100316 Re: CVE Request -- cURL/libCURL 7.20.0 |
CVE-2010-0734
|
| MLIST:[oss-security] 20100316 Re: CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input |
CVE-2010-0736
|
| MLIST:[oss-security] 20100316 Re: CVE Request: postgresql integer overflow in hash table size calculation |
CVE-2010-0733
|
| MLIST:[oss-security] 20100316 Re: Re: CVE Request: gnome-screensaver termination by pressing "Enter" |
CVE-2010-0732
|
| MLIST:[oss-security] 20100317 CVE-2009-4271 kernel: 32bit process on 64bit system DoS |
CVE-2009-4271
|
| MLIST:[oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service |
CVE-2010-0008
|
| MLIST:[oss-security] 20100323 CVE request: kernel: bluetooth: potential bad memory access with sysfs files |
CVE-2010-1084
|
| MLIST:[oss-security] 20100329 CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS) |
CVE-2010-1188
|
| MLIST:[oss-security] 20100329 CVE-2010-0741 qemu: Improper handling of erroneous data provided by Linux virtio-net driver |
CVE-2010-0741
|
| MLIST:[oss-security] 20100330 CVE request: kernel: tipc: Fix oops on send prior to entering networked mode |
CVE-2010-1187
|
| MLIST:[oss-security] 20100331 Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode |
CVE-2010-1187
|
| MLIST:[oss-security] 20100331 iscsitarget/scsi-target-tuils format string CVE assignment |
CVE-2010-0743
|
| MLIST:[oss-security] 20100401 CVE Request: policykit (minor) |
CVE-2010-0750
|
| MLIST:[oss-security] 20100401 Re: CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header |
CVE-2010-0745
|
| MLIST:[oss-security] 20100401 Re: CVE Request -- aMSN -- improper SSL certificate validation (MITM) |
CVE-2010-0744
|
| MLIST:[oss-security] 20100401 Re: CVE Request: policykit (minor) |
CVE-2010-0750
|
| MLIST:[oss-security] 20100402 RE: CVE Request -- Zabbix v1.8.2 and v.1.6.9 |
CVE-2009-4498
|
| MLIST:[oss-security] 20100403 CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message |
CVE-2010-1147
|
| MLIST:[oss-security] 20100405 CVE request: kernel: cifs: cifs_create() NULL pointer dereference |
CVE-2010-1148
|
| MLIST:[oss-security] 20100405 Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference |
CVE-2010-1148
|
| MLIST:[oss-security] 20100406 CVE Request: MediaWiki 1.15.3 -- Login CSRF |
CVE-2010-1150
|
| MLIST:[oss-security] 20100406 ClamAV small issues |
CVE-2010-0098
|
| MLIST:[oss-security] 20100406 Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message |
CVE-2010-1147
|
| MLIST:[oss-security] 20100407 Re: CVE Request: MediaWiki 1.15.3 -- Login CSRF |
CVE-2010-1150
|
| MLIST:[oss-security] 20100407 Re: ClamAV small issues |
CVE-2010-0098
|
| MLIST:[oss-security] 20100408 CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities |
CVE-2010-3441
|
| MLIST:[oss-security] 20100408 CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) |
CVE-2010-1158
|
| MLIST:[oss-security] 20100408 CVE request -- memcached |
CVE-2010-1152
|
| MLIST:[oss-security] 20100408 Re: CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities |
CVE-2010-3441
|
| MLIST:[oss-security] 20100408 Re: CVE request -- memcached |
CVE-2010-1152
|
| MLIST:[oss-security] 20100410 CVE request: typo3 remote command execution |
CVE-2010-1153
|
| MLIST:[oss-security] 20100411 CVE request: irssi 0.8.15 |
CVE-2010-1155
CVE-2010-1156
|
| MLIST:[oss-security] 20100412 Re: CVE request: irssi 0.8.15 |
CVE-2010-1155
CVE-2010-1156
|
| MLIST:[oss-security] 20100412 Re: CVE request: typo3 remote command execution |
CVE-2010-1153
|
| MLIST:[oss-security] 20100413 Re: CVE request: irssi 0.8.15 |
CVE-2010-1155
CVE-2010-1156
|
| MLIST:[oss-security] 20100414 CVE request: GNU nano (minor) |
CVE-2010-1160
CVE-2010-1161
|
| MLIST:[oss-security] 20100414 Couple of kernel issues |
CVE-2010-1162
CVE-2010-1488
|
| MLIST:[oss-security] 20100414 Re: CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) |
CVE-2010-1158
|
| MLIST:[oss-security] 20100414 Re: Couple of kernel issues |
CVE-2010-1162
|
| MLIST:[oss-security] 20100415 CVE request: kernel: tty: release_one_tty() forgets to put pids |
CVE-2010-1162
|
| MLIST:[oss-security] 20100415 Re: CVE request: kernel: tty: release_one_tty() forgets to put pids |
CVE-2010-1162
|
| MLIST:[oss-security] 20100416 CVE Request: JIRA Issues |
CVE-2010-1164
CVE-2010-1165
|
| MLIST:[oss-security] 20100416 Re: CVE Request: JIRA Issues |
CVE-2010-1164
CVE-2010-1165
|
| MLIST:[oss-security] 20100417 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[oss-security] 20100419 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[oss-security] 20100427 CVE request - gfs2 kernel issue |
CVE-2010-1436
|
| MLIST:[oss-security] 20100427 CVE request - kernel: find_keyring_by_name() can gain the freed keyring |
CVE-2010-1437
|
| MLIST:[oss-security] 20100427 Re: CVE request - gfs2 kernel issue |
CVE-2010-1436
|
| MLIST:[oss-security] 20100427 Re: CVE request - kernel: find_keyring_by_name() can gain the freed keyring |
CVE-2010-1437
|
| MLIST:[oss-security] 20100427 Re: wafp insecure temporary directory |
CVE-2010-1438
|
| MLIST:[oss-security] 20100427 wafp insecure temporary directory |
CVE-2010-1438
|
| MLIST:[oss-security] 20100429 CVE request - Linux Kernel KGDB/ppc issue |
CVE-2010-1446
|
| MLIST:[oss-security] 20100429 CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors |
CVE-2010-1173
|
| MLIST:[oss-security] 20100429 Re: CVE request - Linux Kernel KGDB/ppc issue |
CVE-2010-1446
|
| MLIST:[oss-security] 20100429 Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors |
CVE-2010-1173
|
| MLIST:[oss-security] 20100430 Re: CVE request - Linux Kernel KGDB/ppc issue |
CVE-2010-1446
|
| MLIST:[oss-security] 20100503 CVE request: lxr |
CVE-2010-1448
|
| MLIST:[oss-security] 20100503 Re: CVE request: lxr |
CVE-2010-1448
CVE-2010-1625
|
| MLIST:[oss-security] 20100505 CVE Request - Piwik 0.5.5 - XSS vulnerability |
CVE-2010-1453
|
| MLIST:[oss-security] 20100505 Re: CVE Request - Piwik 0.5.5 - XSS vulnerability |
CVE-2010-1453
|
| MLIST:[oss-security] 20100505 Re: CVE Request [was Re: kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)] |
CVE-2010-1451
|
| MLIST:[oss-security] 20100506 Re: CVE request: lxr |
CVE-2010-1448
CVE-2010-1625
|
| MLIST:[oss-security] 20100507 CVE Assignment (gnustep) |
CVE-2010-1457
|
| MLIST:[oss-security] 20100507 CVE-2010-0730 xen: emulator instruction decoding inconsistency |
CVE-2010-0730
|
| MLIST:[oss-security] 20100507 Re: CVE Assignment (gnustep) |
CVE-2010-1620
|
| MLIST:[oss-security] 20100507 Re: CVE Assignment (wireshark) |
CVE-2010-1455
|
| MLIST:[oss-security] 20100510 Re: A mysql flaw. |
CVE-2010-1626
|
| MLIST:[oss-security] 20100511 Re: CVE assignment: ghostscript stack-based overflow |
CVE-2010-1628
|
| MLIST:[oss-security] 20100513 KDENetwork vulnerabilities |
CVE-2010-1000
CVE-2010-1511
|
| MLIST:[oss-security] 20100514 Re: CVE request: lxr |
CVE-2010-1448
CVE-2010-1625
|
| MLIST:[oss-security] 20100517 CVE request: phorum < 5.2.15 backend XSS |
CVE-2010-1629
|
| MLIST:[oss-security] 20100517 CVE request: phpbb 3.0.7 and before 3.0.5 |
CVE-2010-1627
CVE-2010-1630
|
| MLIST:[oss-security] 20100517 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2252
|
| MLIST:[oss-security] 20100517 [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2251
CVE-2010-2252
CVE-2010-2253
|
| MLIST:[oss-security] 20100518 Re: A mysql flaw. |
CVE-2010-1626
|
| MLIST:[oss-security] 20100518 Re: CVE assignment: ghostscript stack-based overflow |
CVE-2010-1628
|
| MLIST:[oss-security] 20100518 Re: CVE request: phorum < 5.2.15 backend XSS |
CVE-2010-1629
|
| MLIST:[oss-security] 20100518 Re: CVE request: phpbb 3.0.7 and before 3.0.5 |
CVE-2010-1627
CVE-2010-1630
|
| MLIST:[oss-security] 20100518 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2252
|
| MLIST:[oss-security] 20100518 Re: kernel: btrfs: check for read permission on src file in the clone ioctl |
CVE-2010-1636
|
| MLIST:[oss-security] 20100518 kernel: btrfs: check for read permission on src file in the clone ioctl |
CVE-2010-1636
|
| MLIST:[oss-security] 20100519 Re: CVE request: phpbb 3.0.7 and before 3.0.5 |
CVE-2010-1630
|
| MLIST:[oss-security] 20100519 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2252
|
| MLIST:[oss-security] 20100520 CVE-2010-1974 reject request (dupe of CVE-2010-1168) and CVE-2010-1447 description modification request |
CVE-2010-1168
CVE-2010-1169
CVE-2010-1170
CVE-2010-1447
|
| MLIST:[oss-security] 20100520 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2251
CVE-2010-2252
|
| MLIST:[oss-security] 20100521 CVE Request: off by one DoS in pe_icons.c |
CVE-2010-1640
|
| MLIST:[oss-security] 20100521 Re: [core] CVE Request for Horde and Squirrelmail |
CVE-2010-1638
|
| MLIST:[oss-security] 20100521 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2252
|
| MLIST:[oss-security] 20100524 Re: [core] CVE Request for Horde and Squirrelmail |
CVE-2010-1638
|
| MLIST:[oss-security] 20100525 CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership |
CVE-2010-1641
|
| MLIST:[oss-security] 20100525 Re: CVE Request for Horde and Squirrelmail |
CVE-2010-1637
|
| MLIST:[oss-security] 20100525 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership |
CVE-2010-1641
|
| MLIST:[oss-security] 20100525 Re: kernel: btrfs: check for read permission on src file in the clone ioctl |
CVE-2010-1636
|
| MLIST:[oss-security] 20100526 CVE request - kernel: nfsd: fix vm overcommit crash |
CVE-2010-1643
|
| MLIST:[oss-security] 20100526 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership |
CVE-2010-1641
|
| MLIST:[oss-security] 20100526 Re: CVE request - kernel: nfsd: fix vm overcommit crash |
CVE-2010-1643
|
| MLIST:[oss-security] 20100527 Re: CVE request - kernel: nfsd: fix vm overcommit crash |
CVE-2008-7256
|
| MLIST:[oss-security] 20100529 Fwd: emesene preditable temporary filename |
CVE-2010-2053
|
| MLIST:[oss-security] 20100601 SFCB vulnerabilities |
CVE-2010-1937
CVE-2010-2054
|
| MLIST:[oss-security] 20100602 CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) |
CVE-2010-2059
|
| MLIST:[oss-security] 20100602 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) |
CVE-2010-2059
CVE-2010-2198
|
| MLIST:[oss-security] 20100602 prewikka permission bug |
CVE-2010-2058
|
| MLIST:[oss-security] 20100603 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) |
CVE-2010-2059
CVE-2010-2198
|
| MLIST:[oss-security] 20100604 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) |
CVE-2010-2059
CVE-2010-2198
|
| MLIST:[oss-security] 20100607 CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files |
CVE-2010-2066
|
| MLIST:[oss-security] 20100608 Re: jar, fastjar directory traversal vulnerabilities |
CVE-2005-1080
CVE-2010-0831
|
| MLIST:[oss-security] 20100608 jar, fastjar directory traversal vulnerabilities |
CVE-2005-1080
CVE-2010-0831
CVE-2010-2322
|
| MLIST:[oss-security] 20100609 Re: CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files |
CVE-2010-2066
|
| MLIST:[oss-security] 20100609 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2251
CVE-2010-2252
CVE-2010-2253
|
| MLIST:[oss-security] 20100610 CVE request for new wireshark vulnerabilities |
CVE-2010-2283
CVE-2010-2284
CVE-2010-2285
CVE-2010-2286
CVE-2010-2287
|
| MLIST:[oss-security] 20100610 CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc |
CVE-2010-2444
CVE-2010-2445
|
| MLIST:[oss-security] 20100610 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability |
CVE-2010-2251
|
| MLIST:[oss-security] 20100611 CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own |
CVE-2010-2071
|
| MLIST:[oss-security] 20100611 CVE-2010-2070 kernel-xen: ia64-xen: unset be from the task psr |
CVE-2010-2070
|
| MLIST:[oss-security] 20100613 CVE request - pyftpd default username and password vulnerability |
CVE-2010-2073
|
| MLIST:[oss-security] 20100613 CVE request - pyftpd insecure usage of temporary directory |
CVE-2010-2072
|
| MLIST:[oss-security] 20100614 CVE Request: w3m does not check null bytes CN/subjAltName |
CVE-2010-2074
|
| MLIST:[oss-security] 20100614 Re: CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own |
CVE-2010-2071
|
| MLIST:[oss-security] 20100614 Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution |
CVE-2009-4893
CVE-2010-2075
|
| MLIST:[oss-security] 20100615 CVE Request - kernel: put_tty_queue NULL pointer deref |
CVE-2009-4895
|
| MLIST:[oss-security] 20100615 Re: CVE Request - kernel: put_tty_queue NULL pointer deref |
CVE-2009-4895
|
| MLIST:[oss-security] 20100617 CVE request - kernel: xfs swapext ioctl issue |
CVE-2010-2226
|
| MLIST:[oss-security] 20100618 Re: CVE request - kernel: xfs swapext ioctl issue |
CVE-2010-2226
|
| MLIST:[oss-security] 20100621 Re: CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities |
CVE-2010-2228
CVE-2010-2229
CVE-2010-2230
CVE-2010-2231
|
| MLIST:[oss-security] 20100621 Re: [SquirrelMail-Security] CVE Request for Horde and Squirrelmail |
CVE-2010-1637
|
| MLIST:[oss-security] 20100623 CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface |
CVE-2009-4896
|
| MLIST:[oss-security] 20100623 CVE Request: avahi DoS |
CVE-2010-2244
|
| MLIST:[oss-security] 20100623 CVE requests: LibTIFF |
CVE-2010-1411
CVE-2010-2065
CVE-2010-2067
CVE-2010-2233
CVE-2010-2481
CVE-2010-2483
CVE-2010-2595
CVE-2010-2596
|
| MLIST:[oss-security] 20100623 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface |
CVE-2009-4896
|
| MLIST:[oss-security] 20100623 kernel: l2tp: Fix oops in pppol2tp_xmit |
CVE-2010-2495
|
| MLIST:[oss-security] 20100623 kernel: thinkpad-acpi: lock down video output state access |
CVE-2010-3448
|
| MLIST:[oss-security] 20100624 Re: CVE requests: LibTIFF |
CVE-2010-2443
CVE-2010-2481
CVE-2010-2482
CVE-2010-2483
|
| MLIST:[oss-security] 20100624 Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc |
CVE-2010-2444
CVE-2010-2445
|
| MLIST:[oss-security] 20100625 CVE request: feh |
CVE-2010-2246
|
| MLIST:[oss-security] 20100625 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface |
CVE-2009-4896
|
| MLIST:[oss-security] 20100625 Re: CVE Request: avahi DoS |
CVE-2010-2244
|
| MLIST:[oss-security] 20100626 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface |
CVE-2009-4896
|
| MLIST:[oss-security] 20100628 CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server |
CVE-2010-2248
|
| MLIST:[oss-security] 20100628 Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server |
CVE-2010-2248
|
| MLIST:[oss-security] 20100628 Re: CVE request: feh |
CVE-2010-2246
|
| MLIST:[oss-security] 20100629 CVE request: XSS in python paste |
CVE-2010-2477
|
| MLIST:[oss-security] 20100629 Re: CVE requests: LibTIFF |
CVE-2010-2443
CVE-2010-2481
CVE-2010-2483
|
| MLIST:[oss-security] 20100629 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL |
CVE-2010-2478
|
| MLIST:[oss-security] 20100629 kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL |
CVE-2010-2478
|
| MLIST:[oss-security] 20100630 Re: CVE request: XSS in python paste |
CVE-2010-2477
|
| MLIST:[oss-security] 20100630 Re: CVE requests: LibTIFF |
CVE-2010-2481
CVE-2010-2482
CVE-2010-2483
|
| MLIST:[oss-security] 20100630 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL |
CVE-2010-2478
|
| MLIST:[oss-security] 20100630 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[oss-security] 20100701 CVE request: moin multiple XSS |
CVE-2010-2487
CVE-2010-2969
CVE-2010-2970
|
| MLIST:[oss-security] 20100701 Re: CVE requests: LibTIFF |
CVE-2010-2481
CVE-2010-2482
CVE-2010-2483
|
| MLIST:[oss-security] 20100702 CVE Request -- Roundup: XSS by processing PageTemplate template for a named page |
CVE-2010-2491
|
| MLIST:[oss-security] 20100702 CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE |
CVE-2010-2489
|
| MLIST:[oss-security] 20100702 Re: CVE Request -- Roundup: XSS by processing PageTemplate template for a named page |
CVE-2010-2491
|
| MLIST:[oss-security] 20100702 Re: CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE |
CVE-2010-2489
|
| MLIST:[oss-security] 20100702 Re: CVE request: moin multiple XSS |
CVE-2010-2487
CVE-2010-2969
CVE-2010-2970
|
| MLIST:[oss-security] 20100704 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface |
CVE-2009-4896
|
| MLIST:[oss-security] 20100704 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit |
CVE-2010-2495
|
| MLIST:[oss-security] 20100704 Re: kernel: l2tp: Fix oops in pppol2tp_xmit |
CVE-2010-2495
|
| MLIST:[oss-security] 20100705 Re: Request CVE ID for bogofilter base64 decoder |
CVE-2010-2494
|
| MLIST:[oss-security] 20100705 Request CVE ID for bogofilter base64 decoder |
CVE-2010-2494
|
| MLIST:[oss-security] 20100706 CVE Request: kernel: hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[oss-security] 20100706 REPOST: CVE request for bogofilter |
CVE-2010-2494
|
| MLIST:[oss-security] 20100706 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface |
CVE-2009-4896
|
| MLIST:[oss-security] 20100706 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit |
CVE-2010-2495
|
| MLIST:[oss-security] 20100706 Re: Request CVE ID for bogofilter base64 decoder |
CVE-2010-2494
|
| MLIST:[oss-security] 20100706 patch for remote buffer overflows and local message spoofing in mipv6 daemon |
CVE-2010-2522
CVE-2010-2523
|
| MLIST:[oss-security] 20100707 CVE request - kernel: nfsd4: bug in read_buf |
CVE-2010-2521
|
| MLIST:[oss-security] 20100707 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove |
CVE-2010-2653
|
| MLIST:[oss-security] 20100707 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon |
CVE-2010-2522
CVE-2010-2523
|
| MLIST:[oss-security] 20100708 Re: CVE request - kernel: nfsd4: bug in read_buf |
CVE-2010-2521
|
| MLIST:[oss-security] 20100708 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon |
CVE-2010-2522
CVE-2010-2523
|
| MLIST:[oss-security] 20100712 CVE request: NetSMB BSD kernel module (minor) |
CVE-2010-2530
|
| MLIST:[oss-security] 20100713 CVE request, php var_export |
CVE-2010-2531
|
| MLIST:[oss-security] 20100713 Multiple bugs in freetype |
CVE-2010-2497
CVE-2010-2498
CVE-2010-2499
CVE-2010-2500
CVE-2010-2519
CVE-2010-2520
|
| MLIST:[oss-security] 20100714 Re: Multiple bugs in freetype |
CVE-2010-2497
CVE-2010-2498
CVE-2010-2499
CVE-2010-2500
CVE-2010-2519
CVE-2010-2520
CVE-2010-2527
|
| MLIST:[oss-security] 20100715 CVE request: lxsession-logout |
CVE-2010-2532
|
| MLIST:[oss-security] 20100715 Re: CVE request: lxsession-logout |
CVE-2010-2532
|
| MLIST:[oss-security] 20100716 Re: CVE request: NetSMB BSD kernel module (minor) |
CVE-2010-2530
|
| MLIST:[oss-security] 20100716 Re: Re: CVE request, php var_export |
CVE-2010-2531
|
| MLIST:[oss-security] 20100720 CVE request for OpenTTD |
CVE-2010-2534
|
| MLIST:[oss-security] 20100720 [oCERT-2010-002] Joomla input sanitization errors (XSS) |
CVE-2010-2535
|
| MLIST:[oss-security] 20100721 CVE id request: mapserver |
CVE-2010-2539
CVE-2010-2540
|
| MLIST:[oss-security] 20100721 CVE request: git |
CVE-2010-2542
|
| MLIST:[oss-security] 20100721 CVE request: kernel: btrfs |
CVE-2010-2537
CVE-2010-2538
|
| MLIST:[oss-security] 20100721 Re: CVE id request: mapserver |
CVE-2010-2539
CVE-2010-2540
|
| MLIST:[oss-security] 20100721 Re: CVE request: kernel: btrfs |
CVE-2010-2537
CVE-2010-2538
|
| MLIST:[oss-security] 20100721 Re: Universal XSS in Rekonq |
CVE-2010-2536
|
| MLIST:[oss-security] 20100721 Re: [oCERT-2010-002] Joomla input sanitization errors (XSS) |
CVE-2010-2535
|
| MLIST:[oss-security] 20100721 Universal XSS in Rekonq |
CVE-2010-2536
|
| MLIST:[oss-security] 20100722 Cacti XSS fixes in 0.8.7g |
CVE-2010-2543
CVE-2010-2544
CVE-2010-2545
|
| MLIST:[oss-security] 20100722 Re: CVE request: git |
CVE-2010-2542
|
| MLIST:[oss-security] 20100726 CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow |
CVE-2008-7258
|
| MLIST:[oss-security] 20100726 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow |
CVE-2008-7258
|
| MLIST:[oss-security] 20100726 Re: Cacti XSS fixes in 0.8.7g |
CVE-2010-2543
CVE-2010-2544
CVE-2010-2545
|
| MLIST:[oss-security] 20100728 CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter |
CVE-2010-2785
|
| MLIST:[oss-security] 20100728 CVE Request: Piwik < 0.6.4 Arbitrary file inclusion |
CVE-2010-2786
|
| MLIST:[oss-security] 20100729 Re: CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter |
CVE-2010-2785
|
| MLIST:[oss-security] 20100729 Re: CVE Request: Piwik < 0.6.4 Arbitrary file inclusion |
CVE-2010-2786
|
| MLIST:[oss-security] 20100729 Re: CVE request: mediawiki |
CVE-2010-2787
CVE-2010-2788
CVE-2010-2789
|
| MLIST:[oss-security] 20100730 CVE-2010-2791: mod_proxy information leak affecting 2.2.9 only |
CVE-2010-2791
|
| MLIST:[oss-security] 20100801 CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates |
CVE-2010-3901
|
| MLIST:[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode |
CVE-2010-2800
CVE-2010-2801
|
| MLIST:[oss-security] 20100802 CVE request: cmsmadesimple < 1.8.1 |
CVE-2010-2797
|
| MLIST:[oss-security] 20100802 CVE request: kernel: gfs2: rename cases kernel panic |
CVE-2010-2798
|
| MLIST:[oss-security] 20100802 CVE-2010-2524 kernel: dns_resolver upcall security issue |
CVE-2010-2524
|
| MLIST:[oss-security] 20100802 Re: CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates |
CVE-2010-3901
|
| MLIST:[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode |
CVE-2010-2800
CVE-2010-2801
|
| MLIST:[oss-security] 20100802 Re: CVE request: cmsmadesimple < 1.8.1 |
CVE-2010-2797
|
| MLIST:[oss-security] 20100802 Re: CVE request: kernel: gfs2: rename cases kernel panic |
CVE-2010-2798
|
| MLIST:[oss-security] 20100802 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow |
CVE-2008-7258
|
| MLIST:[oss-security] 20100802 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue |
CVE-2010-2524
|
| MLIST:[oss-security] 20100803 CVE 2009 request: twiki before 4.3.2 CSRF |
CVE-2009-4898
|
| MLIST:[oss-security] 20100803 CVE request: Attachment XSS in mantis < 1.2.2 |
CVE-2010-2802
|
| MLIST:[oss-security] 20100803 Re: CVE 2009 request: twiki before 4.3.2 CSRF |
CVE-2009-4898
|
| MLIST:[oss-security] 20100803 Re: CVE request: Attachment XSS in mantis < 1.2.2 |
CVE-2010-2802
|
| MLIST:[oss-security] 20100803 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue |
CVE-2010-2524
|
| MLIST:[oss-security] 20100806 CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts |
CVE-2010-2808
|
| MLIST:[oss-security] 20100806 CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config |
CVE-2010-2809
|
| MLIST:[oss-security] 20100806 Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more |
CVE-2010-2805
CVE-2010-2806
CVE-2010-2807
CVE-2010-2808
|
| MLIST:[oss-security] 20100806 Re: CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config |
CVE-2010-2809
|
| MLIST:[oss-security] 20100809 CVE Request - ZNC |
CVE-2010-2812
CVE-2010-2934
|
| MLIST:[oss-security] 20100809 CVE request: Lynx |
CVE-2010-2810
|
| MLIST:[oss-security] 20100809 Re: CVE Request - ZNC |
CVE-2010-2812
CVE-2010-2934
|
| MLIST:[oss-security] 20100809 Re: CVE request: Lynx |
CVE-2010-2810
|
| MLIST:[oss-security] 20100810 Re: Re: CVE Request - ZNC |
CVE-2010-2812
CVE-2010-2934
|
| MLIST:[oss-security] 20100811 CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow |
CVE-2010-2935
CVE-2010-2936
|
| MLIST:[oss-security] 20100811 Re: CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow |
CVE-2010-2935
CVE-2010-2936
|
| MLIST:[oss-security] 20100812 Re: CVE Request: openssl double free |
CVE-2010-2939
|
| MLIST:[oss-security] 20100816 CVE request - kernel: integer overflow in ext4_ext_get_blocks() |
CVE-2010-3015
|
| MLIST:[oss-security] 20100816 Minor security flaw with pam_xauth |
CVE-2010-3316
|
| MLIST:[oss-security] 20100816 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() |
CVE-2010-3015
|
| MLIST:[oss-security] 20100817 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() |
CVE-2010-3015
|
| MLIST:[oss-security] 20100818 CVE request - kernel: net sched memleak |
CVE-2010-2942
|
| MLIST:[oss-security] 20100818 CVE request - kernel: xfs: stale data exposure |
CVE-2010-2943
|
| MLIST:[oss-security] 20100818 CVE request: zope-ldapuser |
CVE-2010-2944
|
| MLIST:[oss-security] 20100819 CVE Request: SLiM insecure PATH assignment |
CVE-2010-2945
|
| MLIST:[oss-security] 20100819 Re: CVE request - kernel: net sched memleak |
CVE-2010-2942
|
| MLIST:[oss-security] 20100819 Re: CVE request - kernel: xfs: stale data exposure |
CVE-2010-2943
|
| MLIST:[oss-security] 20100819 Re: CVE request: zope-ldapuser |
CVE-2010-2944
|
| MLIST:[oss-security] 20100819 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow |
CVE-2008-7258
|
| MLIST:[oss-security] 20100820 CVE Request: heap-based buffer overflow in libHX |
CVE-2010-2947
|
| MLIST:[oss-security] 20100820 CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others |
CVE-2010-2946
|
| MLIST:[oss-security] 20100820 Re: CVE Request: SLiM insecure PATH assignment |
CVE-2010-2945
|
| MLIST:[oss-security] 20100820 Re: CVE Request: heap-based buffer overflow in libHX |
CVE-2010-2947
|
| MLIST:[oss-security] 20100820 Re: CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others |
CVE-2010-2946
|
| MLIST:[oss-security] 20100820 kernel: can: add limit for nframes and clean up signed/unsigned variables |
CVE-2010-2959
|
| MLIST:[oss-security] 20100824 CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request |
CVE-2010-2948
CVE-2010-2949
|
| MLIST:[oss-security] 20100824 CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present |
CVE-2010-2951
|
| MLIST:[oss-security] 20100825 CVE id request: libc fortify source information disclosure |
CVE-2010-3192
|
| MLIST:[oss-security] 20100825 CVE request: CouchDB insecure library loading (Debian/Ubuntu only) |
CVE-2010-2953
|
| MLIST:[oss-security] 20100825 CVE request: VLC media player - DLL preloading vulnerability |
CVE-2010-3124
|
| MLIST:[oss-security] 20100825 Re: CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request |
CVE-2010-2948
CVE-2010-2949
|
| MLIST:[oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present |
CVE-2010-2951
|
| MLIST:[oss-security] 20100825 Re: CVE request: VLC media player - DLL preloading vulnerability |
CVE-2010-3124
|
| MLIST:[oss-security] 20100826 Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only) |
CVE-2010-2953
|
| MLIST:[oss-security] 20100829 CVE request: serendipity < 1.5.4 xss |
CVE-2010-2957
|
| MLIST:[oss-security] 20100829 Hardening the linker (was Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only)) |
CVE-2010-2953
|
| MLIST:[oss-security] 20100831 CVE-2010-2955 kernel: wireless: fix 64K kernel heap content leak via ioctl |
CVE-2010-2955
|
| MLIST:[oss-security] 20100831 Re: CVE id request: libc fortify source information disclosure |
CVE-2010-3192
|
| MLIST:[oss-security] 20100831 Re: CVE request: serendipity < 1.5.4 xss |
CVE-2010-2957
|
| MLIST:[oss-security] 20100901 CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) |
CVE-2010-2958
|
| MLIST:[oss-security] 20100901 CVE-2010-2954 kernel: irda null ptr deref |
CVE-2010-2954
|
| MLIST:[oss-security] 20100901 Re: CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) |
CVE-2010-2958
|
| MLIST:[oss-security] 20100902 CVE-2010-2960 kernel: keyctl_session_to_parent null ptr deref |
CVE-2010-2960
|
| MLIST:[oss-security] 20100902 Re: CVE id request: libc fortify source information disclosure |
CVE-2010-3192
|
| MLIST:[oss-security] 20100903 CVE request: XSS in nusoap |
CVE-2010-3070
|
| MLIST:[oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials |
CVE-2010-3071
|
| MLIST:[oss-security] 20100905 CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS |
CVE-2010-3073
CVE-2010-3074
CVE-2010-3075
|
| MLIST:[oss-security] 20100905 CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) |
CVE-2010-3072
|
| MLIST:[oss-security] 20100905 CVE request: smbind Sql Injection |
CVE-2010-3076
|
| MLIST:[oss-security] 20100905 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS |
CVE-2010-3073
CVE-2010-3074
CVE-2010-3075
|
| MLIST:[oss-security] 20100907 CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak |
CVE-2010-3078
|
| MLIST:[oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials |
CVE-2010-3071
|
| MLIST:[oss-security] 20100907 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS |
CVE-2010-3073
CVE-2010-3074
CVE-2010-3075
|
| MLIST:[oss-security] 20100907 Re: CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) |
CVE-2010-3072
|
| MLIST:[oss-security] 20100907 Re: CVE request: XSS in nusoap |
CVE-2010-3070
|
| MLIST:[oss-security] 20100907 Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak |
CVE-2010-3078
|
| MLIST:[oss-security] 20100907 Re: CVE request: smbind Sql Injection |
CVE-2010-3076
|
| MLIST:[oss-security] 20100908 CVE-2010-3080 kernel: /dev/sequencer open failure is not handled correctly |
CVE-2010-3080
|
| MLIST:[oss-security] 20100909 CVE Assignment: django |
CVE-2010-3082
|
| MLIST:[oss-security] 20100909 CVE Request -- Python -- accept() implementation in async core is broken => more subcases |
CVE-2009-5010
CVE-2010-3492
CVE-2010-3493
CVE-2010-3494
CVE-2010-3495
|
| MLIST:[oss-security] 20100909 CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL |
CVE-2010-3084
|
| MLIST:[oss-security] 20100909 CVE request: mednafen stack manipulation |
CVE-2010-3085
|
| MLIST:[oss-security] 20100910 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases |
CVE-2009-5010
CVE-2010-3492
CVE-2010-3493
CVE-2010-3494
CVE-2010-3495
|
| MLIST:[oss-security] 20100910 Re: CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL |
CVE-2010-3084
|
| MLIST:[oss-security] 20100910 Re: CVE request: mednafen stack manipulation |
CVE-2010-3085
|
| MLIST:[oss-security] 20100911 CVE id requests: drupal |
CVE-2010-3091
CVE-2010-3092
CVE-2010-3093
CVE-2010-3094
CVE-2010-3685
CVE-2010-3686
|
| MLIST:[oss-security] 20100913 CVE Request: mailman |
CVE-2010-3089
|
| MLIST:[oss-security] 20100913 CVE Request: pidgin-knotify remote command injection |
CVE-2010-3088
|
| MLIST:[oss-security] 20100913 Re: CVE Request: mailman |
CVE-2010-3089
|
| MLIST:[oss-security] 20100913 Re: CVE Request: pidgin-knotify remote command injection |
CVE-2010-3088
|
| MLIST:[oss-security] 20100913 Re: CVE id requests: drupal |
CVE-2010-3091
CVE-2010-3092
CVE-2010-3093
CVE-2010-3094
CVE-2010-3685
CVE-2010-3686
|
| MLIST:[oss-security] 20100914 CVE request: kernel: numerous infoleaks |
CVE-2010-3296
CVE-2010-3297
CVE-2010-3298
|
| MLIST:[oss-security] 20100914 CVE request: mantis before 1.2.3 (XSS) |
CVE-2010-2574
CVE-2010-3070
CVE-2010-3303
CVE-2010-3763
|
| MLIST:[oss-security] 20100914 CVE request: xss in pecl-apc before 3.1.4 |
CVE-2010-3294
|
| MLIST:[oss-security] 20100914 Re: CVE request: kernel: numerous infoleaks |
CVE-2010-3296
CVE-2010-3297
CVE-2010-3298
|
| MLIST:[oss-security] 20100914 Re: CVE request: mantis before 1.2.3 (XSS) |
CVE-2010-2574
CVE-2010-3070
CVE-2010-3303
CVE-2010-3763
|
| MLIST:[oss-security] 20100914 Re: CVE request: xss in pecl-apc before 3.1.4 |
CVE-2010-3294
|
| MLIST:[oss-security] 20100916 CVE request: weborf: directory traversal |
CVE-2010-3306
|
| MLIST:[oss-security] 20100916 CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow |
CVE-2010-3081
|
| MLIST:[oss-security] 20100916 CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability |
CVE-2010-3301
|
| MLIST:[oss-security] 20100916 CVE-identifier request for Dovecot ACL security bug |
CVE-2010-3304
|
| MLIST:[oss-security] 20100916 Re: CVE request: mantis before 1.2.3 (XSS) |
CVE-2010-3303
|
| MLIST:[oss-security] 20100916 Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability |
CVE-2010-3301
|
| MLIST:[oss-security] 20100916 Re: CVE-identifier request for Dovecot ACL security bug |
CVE-2010-3304
|
| MLIST:[oss-security] 20100917 CVE request: epiphany not ch
|