CVE Reference Map for Source MLIST

Source MLIST
Description generic reference form for miscellaneous mailing lists
Notes This is used for identifying miscellaneous mailing lists.

This reference map lists the various references for MLIST and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2014-04-16.

Note that the list of references may not be complete.

MLIST:20040507 Bug in IO bitmap handling? Probably exploitable (2.6.5) CVE-2004-2536
MLIST:20040507 Re: Bug in IO bitmap handling? Probably exploitable (2.6.5) CVE-2004-2536
MLIST:20041026 [Mimedefang] SECURITY: Patch for MIME-tools CVE-2004-1098
MLIST:20050422 Chora 1.2.3 (final) CVE-2005-1317
MLIST:20070902 Oops in pwc v4l driver CVE-2007-5093
MLIST:20070903 Re: Oops in pwc v4l driver CVE-2007-5093
MLIST:20071021 [Xen-ia64-devel] PATCH: check r2 value for VTi mov rr[r3]=r2 CVE-2007-6207
MLIST:VIM 20070130 Source VERIFY: nsGalPHP RFI CVE-2007-0573
MLIST:[0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T CVE-2004-1627
MLIST:[ANNOUNCE] 20070907 balsa-2.3.20 released CVE-2007-5007
MLIST:[ANNOUNCE] 20130220 Git v1.8.1.4 CVE-2013-0308
MLIST:[AWFFULL] 20070123 Regarding the fixes in 3.7.2 CVE-2007-0510
MLIST:[AWFFULL] 20070505 awffull 3.7.1 bug with search string keywords CVE-2007-3299
MLIST:[AWFFULL] 20070507 Announcing AWFFull v3.7.4 CVE-2007-3299
MLIST:[Acl-Devel] 20050205 [FIX] Long-standing xattr sharing bug CVE-2005-2801
MLIST:[Announce] 20080326 GnuPG 1.4.9 released CVE-2008-1530
MLIST:[Announce] 20090723 ANNOUNCE: strongswan-2.8.11 and strongswan-4.2.17 released CVE-2009-2661
MLIST:[Announce] 20121130 Qt Project Security Advisory: QML XmlHttpRequest Insecure Redirection CVE-2012-5624
MLIST:[Announce] 20130102 Qt Project Security Advisory: QSslSocket may report incorrect errors when certificate verification fails CVE-2012-6093
MLIST:[Announcements] 20071206 MySQL 5.0.51 has been released CVE-2007-5969
MLIST:[Backup-manager-commits] 20070102 r528 - in backup-manager/trunk: . doc lib man po CVE-2007-2766
MLIST:[BackupPC-devel] 20110118 XSS's in Browse.pm CVE-2011-3361
MLIST:[Bug-tar] 20060220 tar 1.15.90 released CVE-2006-0300
MLIST:[Buildbot-devel] 20090812 [SECURITY ALERT] Cross-site scripting vulnerability CVE-2009-2959
MLIST:[Buildbot-devel] 20090813 Re: Cross-site scripting vulnerability CVE-2009-2967
MLIST:[CGit] 20130527 [ANNOUNCE] CGIT v0.9.2 Released CVE-2013-2117
MLIST:[Cache-News] 20040303 Security Alert CVE-2004-2683
MLIST:[Cache-News] 20040305 Security Alert Correction CVE-2004-2683
MLIST:[Cache-News] 20040309 Security Alert - %template CVE-2004-2684
MLIST:[Cache-News] 20040310 Updated Security Alert - %template CVE-2004-2684
MLIST:[Cache-News] 20070718 Security Alert: User passed parameter values via CSP CVE-2007-4427
MLIST:[Canvas] 20120207 VulnDisco Pack Professional 9.17 CVE-2012-0882
MLIST:[Canvas] 20120223 VulnDisco MySQL 0day CVE-2012-0882
MLIST:[CentOS-announce] 20130515 CentOS-6 CVE-2013-2094 Kernel Issue CVE-2013-2094
MLIST:[CentOS-announce] 20130517 CESA-2013:0830 Important CentOS 6 kernel Update CVE-2013-2094
MLIST:[Clamav-announce] 20070530 announcing ClamAV 0.90.3 CVE-2007-3023 CVE-2007-3024 CVE-2007-3025 CVE-2007-3122 CVE-2007-3123
MLIST:[Commits] 20130305 Rev 3682: TODO-424 geometry query crashes server. in file:///home/hf/wmar/todo-424/ CVE-2013-1861
MLIST:[Cyrus-CVS] 20090902 src/sieve by brong CVE-2009-2632
MLIST:[Dailydave] 20040323 dtlogin advisory CVE-2004-0368
MLIST:[Dailydave] 20040514 Mozilla bug might even get fixed! CVE-2004-0478
MLIST:[Dailydave] 20050704 !!! pre-authenticated remote code inclusion vulnerability inside phppgadmin !!! CVE-2005-2256
MLIST:[Dailydave] 20050714 SPIKE actually scores. CVE-2005-1218
MLIST:[Dailydave] 20051129 Webmin miniserv.pl format string vulnerability CVE-2005-3912
MLIST:[Dailydave] 20060105 WMF goes away :< CVE-2006-0106
MLIST:[Dailydave] 20060203 ProtoVer vs Lotus Domino Server 7.0 CVE-2006-0580
MLIST:[Dailydave] 20060207 ProFTPD bug CVE-2005-4816
MLIST:[Dailydave] 20060208 Sun Directory Server 5.2 fun CVE-2006-0647
MLIST:[Dailydave] 20060210 ??? Sun Directory Server 5.2 fun ??? CVE-2006-0647
MLIST:[Dailydave] 20060211 IBM Tivoli Directory Server 0day CVE-2006-0717
MLIST:[Dailydave] 20060213 eddy 0day CVE-2006-0710
MLIST:[Dailydave] 20060214 MailSite (WorldMail) fun CVE-2006-0790
MLIST:[Dailydave] 20060221 word dos 4fun CVE-2006-0935
MLIST:[Dailydave] 20060226 fun with FreeBSD kernel CVE-2006-0900
MLIST:[Dailydave] 20060430 Non disclosure from security vendors: Truecrypt exemple CVE-2006-2183
MLIST:[Dailydave] 20060721 GnuPG 1.4.4 fun CVE-2006-3746
MLIST:[Dailydave] 20061208 Madwifi SIOCSIWSCAN vulnerability (CVE-2006-6332) CVE-2006-6332
MLIST:[Dailydave] 20080101 0day RealPlayer exploit demo CVE-2008-0098
MLIST:[Darklab] 20060131 SAP security/auditing CVE-2005-4815
MLIST:[Darklab] 20060905 SAP security/auditing CVE-2005-4815
MLIST:[Darklab] 20060907 Re: SAP security/auditing CVE-2005-4815
MLIST:[Darklab] 20060908 Re: SAP security/auditing CVE-2005-4815
MLIST:[Dbmail-dev] 20071216 [DBMail 0000662]: Ability to bypass authentication. CVE-2007-6714
MLIST:[Dbmail] 20030725 WARNING SECURITY FLAW IN IMAPSERVER CVE-2003-1523
MLIST:[Debian-audit] 20041229 More temporary filenames/dirs related bugs CVE-2004-2605
MLIST:[Dovecot-news] 20061119 Security hole #2: Off-by-one buffer overflow with mmap_disable=yes CVE-2006-5973
MLIST:[Dovecot-news] 20071221 Security hole #4: Specific LDAP + auth cache configuration may mix up user logins CVE-2007-6598
MLIST:[Dovecot-news] 20071229 v1.0.10 released CVE-2007-6598
MLIST:[Dovecot-news] 20080309 Security hole #6: Some passdbs allowed users to log in without a valid password CVE-2008-1218
MLIST:[Dovecot-news] 20080309 v1.0.13 and v1.1.rc3 released CVE-2008-1218
MLIST:[Dovecot-news] 20080504 v1.0.11 released CVE-2008-1199
MLIST:[Dovecot-news] 20081005 v1.1.4 released CVE-2008-4577 CVE-2008-4578
MLIST:[Dovecot-news] 20081030 v1.1.6 released CVE-2008-4907
MLIST:[Dovecot-news] 20090914 Security holes in CMU Sieve plugin CVE-2009-2632 CVE-2009-3235
MLIST:[Dovecot-news] 20091119 1.0.rc15 released CVE-2006-5973
MLIST:[Dovecot-news] 20131103 v2.2.7 released CVE-2013-6171
MLIST:[Dovecot] 20050303 hanging imap... and users getting other users' emails! CVE-2007-5794
MLIST:[Dovecot] 20050409 Authentication and the wrong mailbox? CVE-2007-5794
MLIST:[Dovecot] 20060208 1.0beta3 released CVE-2006-0730
MLIST:[Dovecot] 20081117 ManageSieve SECURITY hole: virtual users can edit scripts of other virtual users (all versions) CVE-2008-5301
MLIST:[Ekiga-list] 20070213 Ekiga 2.0.5 available CVE-2007-1006
MLIST:[Ethereal-dev] 20040416 Possibly incorrect CVE entry CAN-2004-0367 CVE-2004-0367
MLIST:[Ethereal-users] 20040503 Re: HotSIP sip-messages crasching ethereal CVE-2004-0504
MLIST:[Evolution-hackers] 20070619 Evolution 2.11.4 , Evolution-Data-Server 1.11.4 , GtkHTML 3.15.4 and Evolution-Exchange 2.11.4 released CVE-2007-3257
MLIST:[Exim] 20021204 Minor security problem in both Exim 3 and 4 CVE-2002-1381
MLIST:[Exim] 20030814 Minor security bug CVE-2003-0743
MLIST:[Exim] 20030815 Minor security bug CVE-2003-0743
MLIST:[Expat-discuss] 20120304 Announcement: Expat 2.1.0 Beta can be tested CVE-2012-0876
MLIST:[Flightgear-devel] 20120309 Flightgear and Simgear multiple format string vulnerabilities CVE-2012-2090 CVE-2012-2091
MLIST:[Flightgear-devel] 20120320 Re: Flightgear and Simgear multiple format string vulnerabilities CVE-2012-2090 CVE-2012-2091
MLIST:[Forensics] 20050511 DCO discovery & removal, capabilities of imaging & wiping tools CVE-2005-1578
MLIST:[FreeNX-kNX] 20050217 Security: Serious bug in authority handling found and fixed CVE-2005-0579
MLIST:[Freeipa-users] 20120424 named-dyndb-ldap looses connection when the LDAP server is under high load CVE-2012-2134
MLIST:[Freeipmi-devel] 20130222 The Infamous Cipher Zero, I presume? CVE-2013-4782 CVE-2013-4783 CVE-2013-4784
MLIST:[Ganglia-developers] 20090113 patches for: [Sec] Gmetad server BoF and network overload + [Feature] multiple requests per conn on interactive port CVE-2009-0241 CVE-2009-0242
MLIST:[Ganglia-developers] 20090123 Re: CVE CVE-2009-0242
MLIST:[Gnump3d-users] 20051028 New release - security fixes. CVE-2005-3123 CVE-2005-3424
MLIST:[Gnupg-announce] 20131005 [Announce] [security fix] GnuPG 1.4.15 released CVE-2013-4402
MLIST:[Gnupg-announce] 20131005 [Announce] [security fix] GnuPG 2.0.22 released CVE-2013-4402
MLIST:[Gnupg-devel] 20060725 Re: [Dailydave] GnuPG 1.4.4 fun CVE-2006-3746
MLIST:[Gpsd-announce] 20050127 Announcing release 2.8 of gpsd CVE-2004-1388
MLIST:[Greasemonkey] 20050718 greasemonkey for secure data over insecure networks / sites CVE-2005-2455
MLIST:[Horde-announce] 20051113 Horde 2.2.9 (final) CVE-2005-3570
MLIST:[HostAP] 20050213 wpa_supplicant - new stable releases v0.3.8 and v0.2.7 CVE-2005-0470
MLIST:[IRCServices] 20070324 Regarding Founder Passwords CVE-2007-3246
MLIST:[IRCServices] 20070324 Services 5.0.60 released CVE-2007-3246
MLIST:[IRCServices] 20070608 NS REGISTER and LINK CVE-2007-3245
MLIST:[IRCServices] 20070610 NS REGISTER and LINK CVE-2007-3245
MLIST:[IRCServices] 20070610 Services 5.1pre3 / 5.0.62 released CVE-2007-3245
MLIST:[IRCServices] 20071121 Services 5.0.63 released CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.7 released CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.9 released CVE-2007-6123
MLIST:[ISN] 20070326 Windows weakness can lead to network traffic hijacks CVE-2007-1692
MLIST:[ISSForum] 20040128 Third party BlackICE advisory CVE-2004-2125
MLIST:[Info-gnu-radius] 20040915 GNU Radius 1.2.94. CVE-2004-0849
MLIST:[Ipsec-tools-devel] 20070406 Ipsec-tools 0.6.7 released CVE-2007-1841
MLIST:[KVIrc] 20100517 Proposal for a stable release of kvirc4 CVE-2010-2451 CVE-2010-2452
MLIST:[Koha] 20140122 SECURITY release: MARC::File::XML 1.0.2 CVE-2014-1626
MLIST:[Libguestfs] 20101019 CVE-2010-3851libguestfs:missing disk format specifier when adding a disk CVE-2010-3851
MLIST:[Libguestfs] 20101021 [PATCH 0/2] First part of fix for CVE-2010-3851 CVE-2010-3851
MLIST:[Libguestfs] 20101022 [PATCH 0/8 v2] Complete fix for CVE-2010-3851. CVE-2010-3851
MLIST:[Libguestfs] 20120521 [ANNOUNCE] libguestfs 1.18 released - tools for managing virtual machines and disk images CVE-2012-2690
MLIST:[Libguestfs] 20131017 ANNOUNCE: CVE-2013-4419: insecure temporary directory handling for guestfish's network socket CVE-2013-4419
MLIST:[LightDM] 20111102 Version 1.0.6 released CVE-2011-4105
MLIST:[LightDM] 20131030 lightdm 1.9.2 released CVE-2013-4459
MLIST:[LightDM] 20131031 lightdm 1.8.4 released CVE-2013-4459
MLIST:[Logwatch-devel] 20110216 Remote command execution issue with root privileges CVE-2011-1018
MLIST:[Lurker-users] 20060302 Serious security vulnerabilities found CVE-2006-1062 CVE-2006-1063 CVE-2006-1064
MLIST:[MPlayer-announce] 20070605 MPlayer 1.0rc1try3 released CVE-2007-2948
MLIST:[Macsec] 20011229 MacOSX ppp CVE-2001-1565
MLIST:[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates CVE-2007-4985 CVE-2007-4986 CVE-2007-4987 CVE-2007-4988
MLIST:[Mailman-Announce] 20031231 RELEASED Mailman 2.1.4 CVE-2003-0965
MLIST:[Mailman-Announce] 20040208 RELEASED: Mailman 2.0.14 patch-only release CVE-2003-0991
MLIST:[Mailman-Announce] 20040515 RELEASED Mailman 2.1.5 CVE-2004-0412
MLIST:[Mailman-Announce] 20060407 Released: Mailman 2.1.8 release candidate CVE-2006-1712
MLIST:[Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9 CVE-2006-2191 CVE-2006-2941 CVE-2006-3636 CVE-2006-4624
MLIST:[Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released) CVE-2008-0564
MLIST:[Mailman-Users] 20050912 Uncaught runner exception: 'utf8' codeccan'tdecode bytes in position 1-4: invalid data CVE-2005-3573
MLIST:[MediaWiki-announce] 20060327 MediaWiki 1.5.8, 1.4.15 released [SECURITY] CVE-2006-1498
MLIST:[MediaWiki-announce] 20060606 MediaWiki 1.6.7 released CVE-2006-2895
MLIST:[MediaWiki-announce] 20070204 MediaWiki 1.9.2 released CVE-2007-0788
MLIST:[MediaWiki-announce] 20070910 MediaWiki 1.11.0, 1.10.2, 1.9.4, 1.8.5 released CVE-2007-4828 CVE-2007-4883
MLIST:[MediaWiki-announce] 20080124 MediaWiki 1.11.1, 1.10.3, 1.9.5 released CVE-2008-0460
MLIST:[MediaWiki-announce] 20080307 MediaWiki 1.11.2 released (security) CVE-2008-1318
MLIST:[MediaWiki-announce] 20081002 MediaWiki 1.13.2, 1.12.1 security update CVE-2008-4408
MLIST:[MediaWiki-announce] 20090207 MediaWiki releases: security update and new major branch CVE-2009-0737
MLIST:[MediaWiki-announce] 20100303 MediaWiki security update: 1.15.2 CVE-2010-1189 CVE-2010-1190
MLIST:[MediaWiki-announce] 20100528 MediaWiki security update: 1.15.4 and 1.16.0beta3 CVE-2010-1647 CVE-2010-1648
MLIST:[MediaWiki-announce] 20110104 MediaWiki security release 1.16.1 CVE-2011-0003
MLIST:[MediaWiki-announce] 20110201 MediaWiki security release 1.16.2 CVE-2011-0047 CVE-2011-0537
MLIST:[MediaWiki-announce] 20120322 MediaWiki security and maintenance release 1.17.3 CVE-2012-1578 CVE-2012-1579 CVE-2012-1580 CVE-2012-1581 CVE-2012-1582 CVE-2012-4885
MLIST:[MediaWiki-announce] 20120322 MediaWiki security and maintenance release 1.18.2 CVE-2012-1578 CVE-2012-1579 CVE-2012-1580 CVE-2012-1581 CVE-2012-1582 CVE-2012-4885
MLIST:[MediaWiki-announce] 20120613 MediaWiki security release 1.17.5 CVE-2012-2698
MLIST:[MediaWiki-announce] 20120613 MediaWiki security release 1.18.4 CVE-2012-2698
MLIST:[MediaWiki-announce] 20120613 MediaWiki security release 1.19.1 CVE-2012-2698
MLIST:[MediaWiki-announce] 20130430 MediaWiki Security Release: 1.20.5 and 1.19.6 CVE-2013-2031 CVE-2013-2032
MLIST:[MediaWiki-announce] 20130521 MediaWiki Security Release: 1.20.6 and 1.19.7 CVE-2013-2114
MLIST:[MediaWiki-announce] 20130903 MediaWiki Security Release: 1.21.2, 1.20.7 and 1.19.8 CVE-2013-4301 CVE-2013-4302 CVE-2013-4304 CVE-2013-4305 CVE-2013-4306 CVE-2013-4307 CVE-2013-4308
MLIST:[MediaWiki-announce] 20131114 MediaWiki Security Release: 1.21.3, 1.20.8 and 1.19.9 CVE-2012-5394 CVE-2013-4567 CVE-2013-4568 CVE-2013-4569 CVE-2013-4573
MLIST:[MediaWiki-announce] 20140128 MediaWiki Security Releases: 1.22.2, 1.21.5 and 1.19.11 CVE-2014-1610
MLIST:[Mesa-dev] 20130523 [PATCH:mesa 1/2] integer overflow in XF86DRIOpenConnection() [CVE-2013-1993 1/2] CVE-2013-1993
MLIST:[Mesa-dev] 20130523 [PATCH:mesa 2/2] integer overflow in XF86DRIGetClientDriverName() [CVE-2013-1993 2/2] CVE-2013-1993
MLIST:[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2 CVE-2007-6612
MLIST:[Mongrel] 20071229 Regarding the 1.1.3 security release CVE-2007-6612
MLIST:[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2) CVE-2007-6612
MLIST:[Mono-dev] 20080726 [PATCH] HTML encode attributes that might need encoding CVE-2008-3422
MLIST:[Monotone-devel] 20060308 [ANNOUNCE] Monotone 0.25.2 -- security fix release CVE-2006-1166
MLIST:[Nano-devel] 20100407 New prerelease for security tweaks CVE-2010-1160 CVE-2010-1161
MLIST:[Ntop-dev] 20050331 Minor security issue w/ ntop.init (RedHat Packages directory) CVE-2005-3387
MLIST:[OATH-Toolkit-help] 20131209 libpam-oath vulnerable to replay of OTP as result of incorrectly parsing comments in users file? CVE-2013-7322
MLIST:[OATH-Toolkit-help] 20131214 Re: libpam-oath vulnerable to replay of OTP as result of incorrectly parsing comments in users file? CVE-2013-7322
MLIST:[OPEN-ILS-GENERAL] 20140121 SECURITY release: MARC::File::XML 1.0.2 CVE-2014-1626
MLIST:[OTR-dev] 20120727 Re: otrl_base64_otr_decode() function... CVE-2012-3461
MLIST:[OTR-dev] 20120727 otrl_base64_otr_decode() function... CVE-2012-3461
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.4.4 available CVE-2007-1507
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.5.17 release available CVE-2007-1507
MLIST:[OpenAFS-announce] 20070320 OpenAFS Security Advisory 2007-001: privilege escalation in Unix-based clients CVE-2007-1507
MLIST:[OpenAFS-announce] 20071220 OpenAFS Security Advisory 2007-003: denial of service in OpenAFS fileserver CVE-2007-6599
MLIST:[OpenBSD] 20011202 Code that crashes kernel at will + proposed patch CVE-2001-1559
MLIST:[OpenJDK] 20120612 IcedTea6 1.10.8 & 1.11.3 Released CVE-2012-1711 CVE-2012-1713 CVE-2012-1716 CVE-2012-1717 CVE-2012-1718 CVE-2012-1719 CVE-2012-1723 CVE-2012-1724 CVE-2012-1725
MLIST:[Opencryptoki-tech] 20120223 opencryptoki version 2.4.1 released CVE-2012-4454
MLIST:[Opencryptoki-tech] 20120427 opencryptoki release 2.4.2 CVE-2012-4455
MLIST:[Openstack] 20120329 [OSSA 2012-003] Long server names grow nova-api log files significantly (CVE-2012-1585) CVE-2012-1585
MLIST:[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs CVE-2007-5934
MLIST:[Packetfence-announce] 20120413 PacketFence 3.3.0 released! CVE-2012-4740 CVE-2012-4741
MLIST:[Pcsclite-cvs-commit] 20101103 r5370 - /trunk/PCSC/src/atrhandler.c CVE-2010-4531
MLIST:[Pen-Test] 20051104 Paros 3.2.7 release CVE-2005-4668
MLIST:[Pixman] 20131110 [ANNOUNCE] pixman release 0.32.0 now available CVE-2013-6425
MLIST:[Postfixbuch-users] 20110222 proxy-reject: END-OF-MESSAGE: 451 4.3.0 Error: queue file write error CVE-2010-4777
MLIST:[Qemu-devel] 20070428 Qemu crashes on AAM 0 CVE-2007-1366
MLIST:[Qemu-devel] 20070429 Re: Qemu crashes on AAM 0 CVE-2007-1366
MLIST:[Qemu-devel] 20080428 [4277] add format= to drive options (CVE-2008-2004) CVE-2008-2004
MLIST:[Qemu-devel] 20110330 Re: virtio-blk.c handling of i/o which is not a 512 multiple CVE-2011-1750
MLIST:[Qemu-devel] 20110330 virtio-blk.c handling of i/o which is not a 512 multiple CVE-2011-1750
MLIST:[Qemu-devel] 20110519 [PATCH] Ignore pci unplug requests for unpluggable devices CVE-2011-1751
MLIST:[Qemu-devel] 20121205 [PATCH] e1000: Discard oversized packets based on SBP|LPE CVE-2012-6075
MLIST:[Qemu-devel] 20130920 [PATCH 11/11] virtio-pci: add device_unplugged callback CVE-2013-4377
MLIST:[Qt-interest] 20020915 assistant leaves port unfiltered CVE-2002-1883
MLIST:[Rt-announce] 20080623 Security vulnerability in RT 3.0 and up CVE-2008-3502
MLIST:[SAP DB Dev] 20030422 Security Alert: Development Tools CVE-2003-1033
MLIST:[ScryMUD] 20070223 ScryMUD 2.1.11 (stable) has been released. CVE-2007-1098
MLIST:[Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages CVE-2007-3108 CVE-2007-4572 CVE-2007-5116 CVE-2007-5135 CVE-2007-5191 CVE-2007-5360 CVE-2007-5398
MLIST:[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1 CVE-2005-2090 CVE-2006-7195 CVE-2007-0450 CVE-2007-2788
MLIST:[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates CVE-2006-7228 CVE-2007-2052 CVE-2007-4308 CVE-2007-4965 CVE-2007-6015
MLIST:[Security-announce] 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package CVE-2007-5497
MLIST:[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package CVE-2007-6284
MLIST:[Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus CVE-2006-7228 CVE-2007-1660 CVE-2007-5846 CVE-2008-0003
MLIST:[Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix CVE-2006-4814 CVE-2007-5001 CVE-2007-6151 CVE-2007-6206 CVE-2008-0007 CVE-2008-1105 CVE-2008-1367 CVE-2008-1375 CVE-2008-1669
MLIST:[Security-announce] 20081030 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff CVE-2008-3281
MLIST:[Security-announce] 20081106 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues CVE-2008-4281 CVE-2008-4915
MLIST:[Security-announce] 20090710 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl CVE-2009-0034 CVE-2009-0037 CVE-2009-1185
MLIST:[Server-cvs] 20070131 protocol/rtsp rtspprot.cpp,1.80,1.81 CVE-2006-6026
MLIST:[Shorewall-announce] 20040628 URGENT: Shorewall Security Vulnerability CVE-2004-0647
MLIST:[Siteframe-Announce] 20051030 URGENT: additional security vulnerability, release 3.2.2 CVE-2005-4824
MLIST:[Siteframe-Announce] 20060621 WARNING: Security Vulnerability identified in Siteframe 3.x CVE-2005-1965
MLIST:[Snort-announce] 20011129 Snort 1.8.3 Released CVE-2001-1558
MLIST:[Snort-devel] 20060531 Snort Uricontent Bypass Vulnerability CVE-2006-2769
MLIST:[Spacewalk-announce-list] 20111222 Spacewalk 1.6 has been released CVE-2011-1594 CVE-2011-2919 CVE-2011-2920 CVE-2011-2927 CVE-2011-3344
MLIST:[Speex-dev] 20080406 libfishsound 0.9.1 Release CVE-2008-1686
MLIST:[Spip-en] 20120423 New stable releases SPIP 1.9.2o, 2.0.18 et 2.1.13 are availables CVE-2012-2151 CVE-2012-4331
MLIST:[Swan-announce] 20130514 CVE-2013-2052: Libreswan remote buffer overflow in atodn() CVE-2013-2052 CVE-2013-2053 CVE-2013-2054
MLIST:[Swan-announce] 20131211 Libreswan 3.7 released CVE-2013-4564 CVE-2013-7283 CVE-2013-7294
MLIST:[Swfdec] 20080409 Swfdec 0.6.4 released CVE-2008-1834
MLIST:[TLS] 20050602 ANNOUNCE: PureTLS 0.9b5 CVE-2005-4839
MLIST:[TYPO3-announce] 20061219 Pre-announcement for important security update CVE-2006-6690
MLIST:[TYPO3-announce] 20061220 TYPO3 Security Bulletin TYPO3-20061220-1: Remote Command Execution in TYPO3 CVE-2006-6690
MLIST:[TYPO3-announce] 20120417 Announcing TYPO3 4.4.15, 4.5.15 and 4.6.8 CVE-2012-2112
MLIST:[TYPO3-announce] 20120417 Cross-Site Scripting Vulnerability in TYPO3 Core CVE-2012-2112
MLIST:[Telepathy] 20130304 Announce: telepathy-gabble 0.16.5 CVE-2013-1769
MLIST:[Telepathy] 20130304 Announce: telepathy-gabble 0.17.3 CVE-2013-1769
MLIST:[Trac] 20051205 SECURITY: Trac 0.9.2 Released CVE-2005-4065
MLIST:[Uim] 20050928 uim 0.5.0.1 released CVE-2005-3149
MLIST:[Uim] 20050928 uim-0.4.9.1 released CVE-2005-3149
MLIST:[Unbound-users] 20091007 Release of unbound 1.3.4 CVE-2009-3602
MLIST:[Users] 20070822 New version: 0.8.3 beta CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070822 SECURITY: root privilege escalation / trivial reveal of stored passwords CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070823 New version: 0.8.3 beta CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20130729 [strongSwan] charon crash right after xauth+rsa client connects (strongswan-5.0.4, ubuntu 12.04) CVE-2013-5018
MLIST:[VIM] 20070821 Recent DB2 Vulnerabilities CVE-2007-4270 CVE-2007-4271 CVE-2007-4272 CVE-2007-4273 CVE-2007-4275 CVE-2007-4276 CVE-2007-4417 CVE-2007-4418 CVE-2007-4423
MLIST:[VIM] 20070911 MIL 4383 CVE-2007-4817
MLIST:[VIM] 20100203 Re: disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection CVE-2010-0158
MLIST:[VIM] 20100203 disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection CVE-2010-0158
MLIST:[VIM] 20101109 osTicket 1.6 - Local File Inclusion CVE-2010-4634
MLIST:[VOIPSEC] 20070319 Asterisk SDP DOS vulnerability CVE-2007-1561 CVE-2007-1594
MLIST:[VOIPSEC] 20071216 Trixbox Arbitrary Command Execution Vulnerability CVE-2007-6424
MLIST:[VOIPSEC] 20071219 Trixbox Arbitrary Command Execution Vulnerability CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vuln (CVE-2007-6424) - PoC exploit code CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vulnerability fluff CVE-2007-6424
MLIST:[Vortex] 20070530 [ANN] Vortex Library 1.0.3 "Hands open release" is ready! CVE-2007-3046
MLIST:[Vserver] 20031218 SMP oops 2.4.23 v1.22 CVE-2003-1288
MLIST:[Vserver] 20031219 Re: SMP oops 2.4.23 v1.22 CVE-2003-1288
MLIST:[Vserver] 20031220 Re: SMP oops 2.4.23 v1.22 CVE-2003-1288
MLIST:[Vserver] 20050108 [Advisory] procfs in vserver CVE-2004-2613
MLIST:[Vserver] 20060428 [SECURITY] ccaps not limited to root inside a guest CVE-2006-2110
MLIST:[WWW-Mobile-Code] 20030706 can - IIS Version Disclosure CVE-2003-1306
MLIST:[Webcollab-announce] 20131018 Webcollab 3.31 Released CVE-2013-2652
MLIST:[Wikitech-l] 20060523 MediaWiki 1.6.5 JavaScript Execution Vulnerability # 2 CVE-2006-2611
MLIST:[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released CVE-2013-4376
MLIST:[Xen-announce] 20120612 Xen Security Advisory 8 (CVE-2012-0218) - syscall/enter guest DoS CVE-2012-0218
MLIST:[Xen-announce] 20120612 [Xen-announce] Xen Security Advisory 9 (CVE-2012-2934) - PV guest host DoS (AMD erratum #121) CVE-2012-2934
MLIST:[Xen-announce] 20120905 Xen Security Advisory 12 (CVE-2012-3494) - hypercall set_debugreg vulnerability CVE-2012-3494
MLIST:[Xen-announce] 20120905 Xen Security Advisory 13 (CVE-2012-3495) - hypercall physdev_get_free_pirq vulnerability CVE-2012-3495
MLIST:[Xen-announce] 20120905 Xen Security Advisory 14 (CVE-2012-3496) - XENMEM_populate_physmap DoS vulnerability CVE-2012-3496
MLIST:[Xen-announce] 20120905 Xen Security Advisory 15 (CVE-2012-3497) - multiple TMEM hypercall vulnerabilities CVE-2012-3497 CVE-2012-6030 CVE-2012-6031 CVE-2012-6032 CVE-2012-6033 CVE-2012-6034 CVE-2012-6035 CVE-2012-6036
MLIST:[Xen-announce] 20120905 Xen Security Advisory 16 (CVE-2012-3498) - PHYSDEVOP_map_pirq index vulnerability CVE-2012-3498
MLIST:[Xen-announce] 20120905 Xen Security Advisory 17 (CVE-2012-3515) - Qemu VT100 emulation vulnerability CVE-2012-3515
MLIST:[Xen-announce] 20120906 Xen Security Advisory 19 - guest administrator can access qemu monitor console CVE-2012-4411
MLIST:[Xen-announce] 20120907 Xen Security Advisory 19 (CVE-2012-4411) - guest administrator can access qemu monitor console CVE-2012-4411
MLIST:[Xen-announce] 20121113 Xen Security Advisory 20 (CVE-2012-4535) - Timer overflow DoS vulnerability CVE-2012-4535
MLIST:[Xen-announce] 20121113 Xen Security Advisory 21 (CVE-2012-4536) - pirq range check DoS vulnerability CVE-2012-4536
MLIST:[Xen-announce] 20121113 Xen Security Advisory 22 (CVE-2012-4537) - Memory mapping failure DoS vulnerability CVE-2012-4537
MLIST:[Xen-announce] 20121113 Xen Security Advisory 23 (CVE-2012-4538) - Unhooking empty PAE entries DoS vulnerability CVE-2012-4538
MLIST:[Xen-announce] 20121113 Xen Security Advisory 24 (CVE-2012-4539) - Grant table hypercall infinite loop DoS vulnerability CVE-2012-4539
MLIST:[Xen-announce] 20121203 Xen Security Advisory 31 (CVE-2012-5515) - Several memory hypercall operations allow invalid extent order values CVE-2012-5515
MLIST:[Xen-announce] 20130404 Xen Security Advisory 47 (CVE-2013-1920) - Potential use of freed memory in event channel operations CVE-2013-1920
MLIST:[Xen-announce] 20131210 Xen Security Advisory 80 (CVE-2013-6400) - IOMMU TLB flushing may be inadvertently suppressed CVE-2013-6400
MLIST:[Xen-devel] 20071029 [PATCH] x86: allow pv guests to disable TSC for applications CVE-2007-5907
MLIST:[Xen-devel] 20071031 [PATCH, fixed] x86: fix debug register handling CVE-2007-5906
MLIST:[Xen-devel] 20080521 [PATCH] ioemu: Fix PVFB backend to limit frame buffer size CVE-2008-1952
MLIST:[Xen-devel] 20090513 [PATCH] linux/i386: hypervisor_callback adjustments CVE-2009-1758
MLIST:[Xen-devel] 20110509 Re: Xen security advisory CVE-2011-1583 - pv kernel image validation CVE-2011-1583 CVE-2011-3262
MLIST:[Xen-devel] 20110509 Xen security advisory CVE-2011-1583 - pv kernel image validation CVE-2011-1583 CVE-2011-3262
MLIST:[Xen-devel] 20110616 IOMMU faults CVE-2011-3131
MLIST:[Xen-devel] 20110812 Xen Advisory 5 (CVE-2011-3131) IOMMU fault livelock CVE-2011-3131
MLIST:[Xen-devel] 20120727 Xen Security Advisory 10 (CVE-2012-3432) - HVM user mode MMIO emul DoS CVE-2012-3432
MLIST:[Xen-devel] 20120809 Xen Security Advisory 11 (CVE-2012-3433) - HVM destroy p2m host DoS CVE-2012-3433
MLIST:[Xen-devel] 20130701 [PATCH] libxl: suppress device assignment to HVM guest when there is no IOMMU CVE-2013-4329
MLIST:[Xorg] 20040613 DRI merging CVE-2006-6730
MLIST:[Zope-Annce] 20060821 Hotfix for Further reST Integration Issue CVE-2006-4684
MLIST:[Zope-announce] 20060706 Serious security problem with Zope 2 CVE-2006-3458
MLIST:[Zope-dev] 20090706 zope.html with FCKEditor security fix CVE-2009-2265
MLIST:[Zope] 20080812 Script (Python) insecure ? CVE-2008-5102
MLIST:[alerts] 20070530 VMS83A_PASRTL-V0100, ECO Kit Release CVE-2007-2998
MLIST:[alerts] 20070530 VMS83I_PASRTL-V0100, ECO Kit Release CVE-2007-2998
MLIST:[alerts] 20080820 VMS732_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS821I_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS82A_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS831H1I_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS83A_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS83I_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[announce] 20061013 ViewVC 1.0.3 released [SECURITY FIXES] CVE-2006-5442
MLIST:[announce] 20070314 Horde 3.1.4 (final) CVE-2007-1473 CVE-2007-1474
MLIST:[announce] 20070314 IMP H3 (4.1.4) (final) CVE-2007-1515
MLIST:[announce] 20070712 MySQL Community Server 5.0.45 has been released! CVE-2007-2691 CVE-2007-2692 CVE-2007-3780 CVE-2007-3781 CVE-2007-3782
MLIST:[announce] 20080109 Horde 3.1.6 (final) CVE-2007-6018 CVE-2008-7218
MLIST:[announce] 20080109 Horde Groupware 1.0.3 (final) CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Kronolith H3 (2.1.7) (final) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Mnemo H3 (2.1.2) (final) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Nag H3 (2.1.4) (final) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Turba H3 (2.1.6) (final) CVE-2008-7218
MLIST:[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final) CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Horde 3.2-RC2 CVE-2008-7218
MLIST:[announce] 20080122 Kronolith H3 (2.2-RC2) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Mnemo H3 (2.2-RC2) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Nag H3 (2.2-RC2) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Turba H3 (2.2-RC2) CVE-2008-7218
MLIST:[announce] 20080206 Horde Groupware 1.1-RC2 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080215 Horde Groupware 1.0.4 (final) CVE-2008-0807
MLIST:[announce] 20080215 Horde Groupware Webmail Edition 1.0.5 (final) CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.1.7) (final) CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.2-RC3) CVE-2008-0807
MLIST:[announce] 20080307 Horde Groupware 1.0.5 (final) CVE-2008-1284
MLIST:[announce] 20080307 Horde Groupware Webmail Edition 1.0.6 (final) CVE-2008-1284
MLIST:[announce] 20080307 Horde 3.1.7 (final) CVE-2008-1284
MLIST:[announce] 20080613 Turba H3 (2.2.1) (final) CVE-2008-6746
MLIST:[announce] 20081210 Turba 2.3.1 (final) CVE-2008-4182
MLIST:[announce] 20090108 NTP 4.2.4p6 Released CVE-2009-0021
MLIST:[announce] 20090127 Horde 3.2.4 (final) CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde 3.3.3 (final) CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde Groupware 1.1.5 (final) CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 IMP 4.2.2 (final) CVE-2009-0930
MLIST:[announce] 20090127 IMP 4.3.3 (final) CVE-2009-0930
MLIST:[announce] 20090705 Passwd H3 (3.1.1) (final) CVE-2009-2360
MLIST:[announce] 20091107 CVE-2009-3555 - apache/mod_ssl vulnerability and mitigation CVE-2009-3555
MLIST:[announce] 20091208 NTP 4.2.4p8 Released CVE-2009-3563
MLIST:[announce] 20091215 Horde 3.3.6 (final) CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20091216 Horde Groupware 1.2.5 (final) CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20091217 Horde Groupware Webmail Edition 1.2.5 (final) CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20100928 DIMP H3 (1.1.5) (final) CVE-2010-3693
MLIST:[announce] 20100928 Gollem H3 (1.1.2) (final) CVE-2010-3447
MLIST:[announce] 20100928 Horde 3.3.9 (final) CVE-2010-3077 CVE-2010-3694
MLIST:[announce] 20100928 Horde Groupware Webmail Edition 1.2.7 (final) CVE-2010-3693 CVE-2010-3695
MLIST:[announce] 20100928 IMP H3 (4.3.8) (final) CVE-2010-3695
MLIST:[announce] 20110302 [SECURITY] Tomcat 7 ignores @ServletSecurity annotations CVE-2011-1088 CVE-2011-1419
MLIST:[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \(CVE-2011-3192\) CVE-2011-3192
MLIST:[announce] 20111005 Advisory: mod_proxy reverse proxy exposure (CVE-2011-3368) CVE-2011-3368
MLIST:[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability CVE-2011-4858
MLIST:[announce] 20120514 Kronolith H4 (3.0.17) (final) CVE-2012-6620
MLIST:[announce] 20120529 Horde Groupware Webmail Edition 4.0.8 (final) CVE-2012-5566
MLIST:[announce] 20120626 IMP H4 (5.0.22) (final) CVE-2012-6640
MLIST:[announce] 20120821 [ANNOUNCEMENT] Apache HTTP Server 2.4.3 Released CVE-2012-2687 CVE-2012-3502
MLIST:[announce] 20121114 Horde Groupware Webmail Edition 4.0.9 (final) CVE-2012-5565 CVE-2012-6640
MLIST:[announce] 20121114 IMP H4 (5.0.24) (final) CVE-2012-5565
MLIST:[announce] 20121114 Kronolith H4 (3.0.18) (final) CVE-2012-5567
MLIST:[announce] Horde 3.2.3 (final) CVE-2008-5917
MLIST:[announce] Horde 3.3.1 (final) CVE-2008-5917
MLIST:[apache-announce] 20090808 [ANNOUNCE] Apache ODE 1.3.3 CVE-2008-2370
MLIST:[apache-announce] 20100725 [ANNOUNCEMENT] Apache HTTP Server 2.2.16 Released CVE-2010-1452 CVE-2010-2068
MLIST:[apache-cvs] 20040307 cvs commit: apache-1.3/src/modules/standard mod_access.c CVE-2003-0993
MLIST:[apache-cvs] 20040307 cvs commit: httpd-2.0/modules/ssl ssl_engine_io.c CVE-2004-0113
MLIST:[apache-cvs] 20070801 svn commit: r561616 - in /httpd/httpd/trunk: CHANGES CVE-2007-3847
MLIST:[apache-db-general] 20100519 [ANNOUNCE] Apache Derby 10.6.1.0 released CVE-2009-4269
MLIST:[apache-http-dev] 20070328 Re: [Fwd: iDefense Final Notice [IDEF1445]] CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-http-dev] 20070328 [Fwd: iDefense Final Notice [IDEF1445]] CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-httpd-announce] 20030120 [ANNOUNCE] Apache 2.0.44 Released CVE-2003-0016
MLIST:[apache-httpd-announce] 20051014 Apache HTTP Server 2.0.55 Released CVE-2005-2088
MLIST:[apache-httpd-dev] 20020925 CGI bucket needed CVE-2002-1850
MLIST:[apache-httpd-dev] 20070622 Re: PID table changes (was Re: svn commit: r547987 - in /httpd/httpd/trunk) CVE-2007-3304
MLIST:[apache-httpd-dev] 20070629 Re: [PATCH] pid safety checks for 2.2.x CVE-2007-3304
MLIST:[apache-httpd-dev] 20070801 Re: svn commit: r561616 - in /httpd/httpd/trunk: CHANGES modules/proxy/proxy_util.c CVE-2007-3847
MLIST:[apache-httpd-dev] 20090423 Includes vs IncludesNoExec security issue - help needed CVE-2009-1195
MLIST:[apache-httpd-dev] 20090628 mod_deflate DoS CVE-2009-1891
MLIST:[apache-httpd-dev] 20090703 Re: mod_deflate DoS CVE-2009-1891
MLIST:[apache-modssl] 20040716 [ANNOUNCE] mod_ssl 2.8.19 for Apache 1.3.31 CVE-2004-0700
MLIST:[apache-modssl] 20050902 [ANNOUNCE] mod_ssl 2.8.24-1.3.33 CVE-2005-2700
MLIST:[apache] 20101107 [ANNOUNCE] mod_fcgid 2.3.6 is released CVE-2010-3872
MLIST:[apr-commits] 20120115 svn commit: r1231605 - /apr/apr/trunk/tables/apr_hash.c CVE-2012-0840
MLIST:[apr-dev] 20090602 [PATCH] prevent "billion laughs" attack against expat CVE-2009-1955
MLIST:[archiva-users] 20101129 Apache Archiva CSRF Vulnerability CVE-2010-3449 CVE-2010-4408
MLIST:[asterisk-dev] 20111108 Summary: SIP, NAT, security concerns, oh my! CVE-2011-4597
MLIST:[ath9k-devel] 20131110 Security Bug: MAC address not properly configured CVE-2013-4579
MLIST:[audacity-devel] 20090110 Audacity "String_parse::get_nonspace_quoted()" Buffer Overflow CVE-2009-0490
MLIST:[automake-patches] 20091128 [PATCH] do not put world-writable directories in distribution tarballs CVE-2009-4029
MLIST:[automake] 20091208 CVE-2009-4029 Automake security fix for 'make dist*' CVE-2009-4029
MLIST:[automake] 20091208 GNU Automake 1.10.3 released CVE-2009-4029
MLIST:[automake] 20091208 GNU Automake 1.11.1 released CVE-2009-4029
MLIST:[automake] 20091208 Re: CVE-2009-4029 Automake security fix for 'make dist*' CVE-2009-4029
MLIST:[automake] 20120709 CVE-2012-3386 Automake security fix for 'make distcheck' CVE-2012-3386
MLIST:[automake] 20120709 GNU Automake 1.11.6 released (fixes a SECURITY VULNERABILITY!) CVE-2012-3386
MLIST:[automake] 20120709 GNU Automake 1.12.2 released (fixes a SECURITY VULNERABILITY!) CVE-2012-3386
MLIST:[avahi-tickets] 20061106 [Avahi] #69: Avahi needs to check the originating process of netlink messages CVE-2006-5461
MLIST:[b.a.t.m.a.n] 20111210 bat_socket_read missing checks CVE-2011-4604
MLIST:[balsa-list] 20070704 balsa-2.3.17 released CVE-2007-1558
MLIST:[bcfg-dev] 20110816 Security flaw in 1.1.x; testers wanted CVE-2011-3211
MLIST:[bcfg-dev] 20120612 Major security flaw in Trigger plugin CVE-2012-3366
MLIST:[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1 CVE-2006-2916 CVE-2006-4447
MLIST:[bind-announce] 20061103 Internet Systems Consortium Security Advisory. [revised] CVE-2006-2937 CVE-2006-2940 CVE-2006-4339
MLIST:[bind-announce] 20070125 Internet Systems Consortium Security Advisory. CVE-2007-0493 CVE-2007-0494
MLIST:[bind-announce] 20080919 BIND 9.3.5-P2-W2 is now available. CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.4.2-P2-W2 is now available. CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.5.0-P2-W2 is now available. CVE-2008-4163
MLIST:[bind-announce] 20100928 Security Advisory Regarding Unexpected ACL Behavior in BIND 9.7.2 CVE-2010-0218
MLIST:[bitcoin-development] 20120228 Duplicate transactions vulnerability CVE-2012-1909
MLIST:[bk-commits-head] 20050319 [PATCH] Fix crash while reading /proc/net/route CVE-2005-1041
MLIST:[bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data CVE-2005-4881
MLIST:[bluez-devel] 20050804 Possible security vulnerability in hcid when calling pin helper CVE-2005-2547
MLIST:[bluez-devel] 20080616 SDP payload processing vulnerability CVE-2008-2374
MLIST:[bug-anubis] 20040228 Important security update CVE-2004-0353 CVE-2004-0354
MLIST:[bug-binutils] 20060418 [Bug binutils/2584] New: SIGSEGV in strings tool when the file is crafted. CVE-2006-2362
MLIST:[bug-coreutils] 20091208 Re: build: distcheck: do not leave a $TMPDIR/coreutils directory behind CVE-2009-4135
MLIST:[bug-coreutils] 20091209 [PATCH] doc: NEWS: mention the "make distcheck" vulnerability CVE-2009-4135
MLIST:[bug-ed] 20080821 Version 1.0 of GNU ed released CVE-2008-3916
MLIST:[bug-gnu-utils] 19990625 Re: bug in gzip: segfault when doing "gzip -t" on a broken file CVE-2005-2458
MLIST:[bug-grep] 20121217 Re: Exploit in grep.. CVE-2012-5667
MLIST:[bug-gzip] 20091002 gzip-1.3.13 released [major] CVE-2009-2624
MLIST:[bug-patch] 20101230 Directory traversal vulnerability in patch (or dpkg-source) (fwd) CVE-2010-4651
MLIST:[bug-wget] 20090922 Release: GNU Wget 1.12 CVE-2009-3490
MLIST:[bug-wget] 20100520 Re: security risk of unexpected download filenames CVE-2010-2252
MLIST:[bug-wget] 20100520 security risk of unexpected download filenames CVE-2010-2252
MLIST:[bug-wget] 20100521 Re: security risk of unexpected download filenames CVE-2010-2252
MLIST:[busybox] 20130722 1.21.0 is released CVE-2013-1813
MLIST:[cacti-announce] 20050701 Cacti 0.8.6f Released CVE-2005-2148 CVE-2005-2149
MLIST:[cadaver] 20070123 release 0.22.5 CVE-2007-0157
MLIST:[caml-list] 20111230 Hashtbl and security CVE-2012-0839
MLIST:[caml-list] 20111230 Re: Hashtbl and security CVE-2012-0839
MLIST:[cedet-devel] 20120109 Security flaw in EDE CVE-2012-0035
MLIST:[cedet-devel] 20120111 CEDET 1.0.1 available online CVE-2012-0035
MLIST:[cgiirc-general] 20110207 CGI:IRC 0.5.10 released to fix XSS issue (CVE-2011-0050) CVE-2011-0050
MLIST:[cgit] 20110722 [PATCH] Fix potential XSS vulnerability in rename hint CVE-2011-2711
MLIST:[cgit] 20120703 avoid stack-smash when processing unusual commit CVE-2012-4465
MLIST:[chicken-announce] 20130926 [SECURITY] Buffer overrun in some uses of read-string! procedure from "extras" CVE-2013-4385
MLIST:[chicken-announce] 20130927 Re: [SECURITY] Buffer overrun in some uses of read-string! procedure from "extras" CVE-2013-4385
MLIST:[chicken-announce] 20131003 Chicken 4.8.0.5 released CVE-2013-4385
MLIST:[chrony-announce] 20130808 chrony-1.29 released (security) CVE-2012-4502 CVE-2012-4503
MLIST:[cisco-nsp] 20070817 About the posting entitled "Heads up: "sh ip bgp regexp" crashing router" CVE-2007-4430
MLIST:[cisco-nsp] 20070817 Heads up: "sh ip bgp regexp" crashing router CVE-2007-4430
MLIST:[cisco-nsp] 20120202 Ambiguous ACL "log" in 12.2(58)SE2? CVE-2012-0362
MLIST:[clamav-announce] 20081126 announcing ClamAV 0.94.2 CVE-2008-5314
MLIST:[clamav-devel] 20070418 Bug in OLE2 file parser CVE-2007-2650
MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.55.2.18,1.55.2.19 CVE-2009-4248
MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.85,1.86 CVE-2009-4248
MLIST:[client-dev] 20080117 CR: fix for bug 211210 CVE-2009-4248
MLIST:[cloudstack-dev] 20121007 [CVE-2012-4501] CloudStack security announcement CVE-2012-4501
MLIST:[cluster-devel] 20070619 cluster/cman/daemon daemon.c CVE-2007-3373 CVE-2007-3374
MLIST:[cluster-devel] 20100525 [PATCH 3/3] GFS2: Fix permissions checking for setflags ioctl() CVE-2010-1641
MLIST:[cluster-devel] 20110912 [PATCH] GFS2: rewrite fallocate code to write blocks directly CVE-2011-4098
MLIST:[commits] 20060504 bk commit into 4.1 tree (bar:1.2474) CVE-2006-4226
MLIST:[commits] 20060620 bk commit into 5.0 tree (kroki:1.2168) BUG#18630 CVE-2006-4227
MLIST:[commits] 20081124 bzr commit into mysql-6.0-backup branch (ingo.struewing:2744) Bug#39277 CVE-2008-7247
MLIST:[commits] 20091020 bzr commit into mysql-4.1 branch (joro:2709) Bug#47320 CVE-2009-4028
MLIST:[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167 CVE-2009-4030
MLIST:[commits] 20100113 bzr commit into mysql-5.0-bugteam branch (ramil:2838) Bug#50227 CVE-2009-4484
MLIST:[commits] 20100824 Horde branch master updated. 025a1bfbe69622036f8e3a27a6edd39c02dcd4ea CVE-2010-3447
MLIST:[common-cvs] 20070703 util hxurl.cpp,1.24.4.1,1.24.4.1.4.1 CVE-2010-0416
MLIST:[common-cvs] 20080114 util rlstate.cpp,1.9,1.10 CVE-2010-0417
MLIST:[commons-dev] 20110812 [AANNOUNCE] Apache Commons Daemon 1.0.7 released CVE-2011-2729
MLIST:[commons-dev] 20140206 [SECURITY] CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS CVE-2014-0050
MLIST:[conquest] 20070303 Re: security bugs in conquest CVE-2007-1371
MLIST:[continuum-users] 20110210 [SECURITY] CVE-2010-3449: Apache Continuum CSRF vulnerability CVE-2010-3449
MLIST:[continuum-users] 20110210 [SECURITY] CVE-2011-0533: Apache Continuum cross-site scripting vulnerability CVE-2011-0533
MLIST:[core-libs-dev] 20120522 Review Request CR#7118743 : Alternative Hashing for String with Hash-based Maps CVE-2012-2739
MLIST:[cosmo-dev] 20071207 Chandler Server (Cosmo) 0.10.1 released CVE-2007-6383
MLIST:[couchdb-dev] 20110128 CVE-2010-3854: Apache CouchDB Cross Site Scripting Issue CVE-2010-3854
MLIST:[couchdb-user] 20130114 CVE-2012-5650 Apache CouchDB DOM based Cross-Site Scripting via Futon UI CVE-2012-5650
MLIST:[courier-announce] 20080608 courier-authlib 0.60.6 released CVE-2008-2667
MLIST:[courier-users] 20050824 Re: [SECUNIA] Vulnerability in SqWebMail CVE-2005-2724
MLIST:[courier-users] 20080314 Re: [courier-users] [Fwd: Re: authmysql vs apostrophe] CVE-2008-2667
MLIST:[cryptography] 20091105 OpenSSL 0.9.8l released CVE-2009-3555
MLIST:[cscope-cvs] 20090410 CVS: cscope/src snprintf.c, NONE, 1.1 build.c, 1.14, 1.15 command.c, 1.32, 1.33 dir.c, 1.30, 1.31 display.c, 1.29, 1.30 edit.c, 1.6, 1.7 exec.c, 1.11, 1.12 find.c, 1.20, 1.21 global.h, 1.36, 1.37 main.c, 1.45, 1.46 Makefile.am, 1.12, 1.13 Makefile.in, 1.15, 1.16 vpaccess.c, 1.2, 1.3 vpfopen.c, 1.3, 1.4 vpopen.c, 1.4, 1.5 CVE-2009-0148
MLIST:[cumin-developers] 20120306 r5238 - in trunk: cumin/python/cumin cumin/python/cumin/grid cumin/python/cumin/inventory cumin/python/cumin/messaging rosemary/python/rosemary wooly/python/wooly CVE-2012-1575
MLIST:[curl-users] 20030529 Re: https, redirection and authentication using POST CVE-2003-1311 CVE-2003-1312
MLIST:[current-users] 20061110 [Security Fix] ptrace insufficient bounds checking CVE-2006-6014
MLIST:[cvs-all] 20081102 cvs commit: ports/emulators/qemu Makefile ports/emulators/qemu/files patch-CVE-2008-4539 ports/emulators/qemu-devel Makefile ports/emulators/qemu-devel/files patch-CVE-2008-4539 CVE-2008-4539
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/ CVE-2009-1553
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/java/com/sun/enterprise/tools/admingui/handlers/CommonHandlers.java CVE-2009-1553
MLIST:[cvs] 20090321 CVS update: /woodstock/webui/src/runtime/com/sun/webui/theme/ThemeServlet.java CVE-2009-1554
MLIST:[cvs] 20090322 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/configuration/ CVE-2009-1553
MLIST:[cxf-users] 20100616 Important - Apache CXF security advisory CVE-2010-2076 CVE-2010-2076
MLIST:[cygwin-announce] 20080805 Updated: Setup.exe updated to version 2.573.2.3 CVE-2008-3323
MLIST:[cygwin-developers] 20071108 Re: cygwin1.dll up to 1.5.22 overflow CVE-2007-6181
MLIST:[cygwin-developers] 20071120 Re: cygwin1.dll up to 1.5.22 overflow CVE-2007-6181
MLIST:[cyrus-announce] 20041122 Cyrus IMAPd 2.2.9 Released CVE-2004-1011 CVE-2004-1012 CVE-2004-1013
MLIST:[cyrus-announce] 20041123 Cyrus IMAPd 2.2.10 Released CVE-2004-1015
MLIST:[cyrus-announce] 20110908 Cyrus 2.3.17 Released CVE-2011-3208
MLIST:[cyrus-announce] 20110908 Cyrus 2.4.11 Released CVE-2011-3208
MLIST:[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2) CVE-2006-0454
MLIST:[dailydave] 20070110 Algorithmic Bugs CVE-2006-6931
MLIST:[dailydave] 20070130 Vista speach recognition CVE-2007-0675
MLIST:[dailydave] 20070131 Vista speach recognition CVE-2007-0675
MLIST:[dailydave] 20070216 Minor Virtualization Vulnerability CVE-2007-1222
MLIST:[dailydave] 20070227 Wow, free kernel zero day? CVE-2007-1189
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption CVE-2007-1922
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero) CVE-2007-1921
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption CVE-2007-1922
MLIST:[dailydave] 20070706 (no subject) CVE-2007-3634 CVE-2007-3637
MLIST:[dailydave] 20070708 SquirrelMail GPG Plugin vuln CVE-2007-3634 CVE-2007-3778
MLIST:[dailydave] 20070709 SquirrelMail GPG Plugin vuln CVE-2007-3634 CVE-2007-3636 CVE-2007-3778
MLIST:[dailydave] 20080811 A new datapoint for 0day lifetime CVE-2008-4434
MLIST:[dailydave] 20081002 TCP Resource Exhaustion DoS Attack Speculation CVE-2008-4609
MLIST:[dailydave] 20081107 All Ur WiFi(WPA) R Belong 2 PacSec CVE-2008-5230
MLIST:[dailydave] 20090219 SSL MITM fun. CVE-2009-0652
MLIST:[dailydave] 20090220 SSL MITM fun. CVE-2009-0652
MLIST:[dailydave] 20100106 0day demos CVE-2009-4484
MLIST:[dailydave] 20100119 We hold these axioms to be self evident CVE-2010-0232
MLIST:[dailydave] 20100120 Sun Web Server digest auth overflow CVE-2010-0387
MLIST:[dailydave] 20100126 New db bugs CVE-2009-4484
MLIST:[dailydave] 20100304 Perforce CVE-2010-0929 CVE-2010-0930 CVE-2010-0931 CVE-2010-0932 CVE-2010-0933 CVE-2010-0934 CVE-2010-0935
MLIST:[dailydave] 20100401 0day, it may not be CVE-2009-4764 CVE-2010-1240 CVE-2010-1241
MLIST:[dailydave] 20100402 0day, it may not be CVE-2009-0836
MLIST:[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability CVE-2011-1652
MLIST:[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection CVE-2010-4562 CVE-2010-4563
MLIST:[dailydave] 20111130 The Vampire Diaries CVE-2011-4161
MLIST:[dailydave] 20111206 Flash 0day CVE-2011-4693 CVE-2011-4694 CVE-2011-4695
MLIST:[dailydave] 20120106 Apache Struts CVE-2012-0392
MLIST:[datatype-cvs] 20080722 image/gif/common gifcodec.cpp, 1.6, 1.7 gifimage.cpp, 1.5, 1.6 CVE-2009-4245
MLIST:[datatype-cvs] 20080909 image/gif/common gifcodec.cpp,1.7,1.8 CVE-2009-4242
MLIST:[datatype-cvs] 20080916 smil/common smlpkt.cpp,1.11,1.12 CVE-2009-4257
MLIST:[dbus] 20070317 D-Bus daemon endianness issue CVE-2011-2200
MLIST:[dbus] 20080227 [ANNOUNCE] CVE-2008-0595 D-Bus Security Releases - D-Bus 1.0.3 and D-Bus 1.1.20 CVE-2008-0595
MLIST:[dbus] 20081205 [CVE-2008-4311] DBus 1.2.6 CVE-2008-4311
MLIST:[dbus] 20110530 D-Bus daemon big and little endian issue CVE-2011-2200
MLIST:[dbus] 20130613 CVE-2013-2168: dbus: DoS in system services caused by _dbus_printf_string_upper_bound CVE-2013-2168
MLIST:[dccp] 20070328 [PATCH 1/1] getsockopt: Fix DCCP_SOCKOPT_[SEND,RECV]_CSCOV CVE-2007-1730
MLIST:[debian-apache] 20050119 Bug#290974: marked as done (apache: Temporary usage bugs that can be used in symlink attacks) CVE-2004-1387
MLIST:[debian-bugs-dist] 20090810 Bug#540865: libxml2: CVE-2009-2414, CVE-2009-2416 pointer-user-after-free and stack overflow because of function recursion CVE-2009-2414 CVE-2009-2416
MLIST:[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd CVE-2008-5983 CVE-2009-0316
MLIST:[debian-bugs-rc] 20090430 Bug#526258: CVE-2009-1339: CSRF Vulnerability with Image Tag CVE-2009-1339
MLIST:[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory CVE-2008-5983
MLIST:[debian-changes] 20100128 Accepted lintian 1.24.2.1+lenny1 (source all) CVE-2009-4013 CVE-2009-4014 CVE-2009-4015
MLIST:[debian-devel-changes] 20030909 Accepted kdbg 1.2.9-1 (i386 source) CVE-2003-0644
MLIST:[debian-devel-changes] 20081101 Accepted qemu 0.9.1+svn20081101-1 (source amd64) CVE-2008-4539
MLIST:[debian-devel-changes] 20100105 Accepted transmission 1.77-1 (source all amd64) CVE-2010-0012
MLIST:[debian-devel-changes] 20131025 Accepted ikiwiki-hosting 0.20131025 (source all amd64) CVE-2013-6047
MLIST:[debian-devel] 20080811 Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-4474 CVE-2008-4475
MLIST:[debian-devel] 20080811 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-5135 CVE-2008-5136 CVE-2008-5137 CVE-2008-5138 CVE-2008-5139 CVE-2008-5140 CVE-2008-5141 CVE-2008-5142 CVE-2008-5143 CVE-2008-5144 CVE-2008-5145 CVE-2008-5366 CVE-2008-5367 CVE-2008-5368 CVE-2008-5369 CVE-2008-5370 CVE-2008-5371 CVE-2008-5372 CVE-2008-5378 CVE-2008-5379 CVE-2008-5380 CVE-2008-6398
MLIST:[debian-devel] 20080812 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-4476 CVE-2008-4477 CVE-2008-6397
MLIST:[debian-devel] 20080813 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-5146 CVE-2008-5147 CVE-2008-5148 CVE-2008-5149 CVE-2008-5150 CVE-2008-5151 CVE-2008-5152 CVE-2008-5153 CVE-2008-5154 CVE-2008-5155 CVE-2008-5156 CVE-2008-5157 CVE-2008-5373 CVE-2008-5374 CVE-2008-5375 CVE-2008-5376 CVE-2008-5377
MLIST:[debian-kernel] 20050809 Re: ACL patches in Debian 2.4 series kernel. CVE-2005-2801
MLIST:[debian-openoffice] 20100212 ./packages/openofficeorg/3.1.1/unstable r1866: merge 1:3.1.1-15+squeeze1 CVE-2010-0136
MLIST:[debian-security-announce] 20071003 [SECURITY] [DSA 1379-1] New quagga packages fix denial of service CVE-2007-4826
MLIST:[debian-security-tracker] 20110908 Security Fix for mantis stable 1.1.8 CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[debian-security] 20080219 qemu unchecked block read/write vulnerability CVE-2008-0928
MLIST:[debian-security] 20110510 Re: World writable pid and lock files. CVE-2011-1784 CVE-2011-2147
MLIST:[debian-security] 20110510 World writable pid and lock files. CVE-2011-1784 CVE-2011-2147
MLIST:[debian-security] 20110511 Re: World writable pid and lock files. CVE-2011-1784
MLIST:[debian-sparc] 20060128 `date -s' on sparc64 CVE-2006-0482
MLIST:[debian-testing-security-announce] 20090211 Security update for Debian Testing - 2009-02-12 CVE-2009-0359
MLIST:[debian-testing-security-announce] 20090213 Security update for Debian Testing - 2009-02-14 CVE-2009-0363
MLIST:[dev-crypto] 20071109 Bouncy Castle Crypto Provider Package version 1.36 now available CVE-2007-6721
MLIST:[dev-tech-nspr] 20131113 [ANNOUNCE] NSPR 4.10.2 Release CVE-2013-5607
MLIST:[dev] 20070813 Geronimo 2.0 Release suspended due to security issue found before release CVE-2007-4548
MLIST:[dev] 20090319 [DSECRG] Sun Glassfish Multiple Security Vulnerabilities CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090411 Re: [DSECRG] Sun Glassfish Multiple Security Vulnerabilities CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090424 Buffer overflow in apr_brigade_vprintf() ? CVE-2009-1956
MLIST:[dev] 20090424 Re: Buffer overflow in apr_brigade_vprintf() ? CVE-2009-1956
MLIST:[dev] 20090806 Patch to 1.4.x branch for CVE-2009-2411 CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.5.7 Released CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.6.4 Released CVE-2009-2411
MLIST:[dev] 20100806 Two exploitable OpenOffice.org bugs! CVE-2010-2935 CVE-2010-2936
MLIST:[dev] 20101104 "svn blame -g" causing svnserve to hang & mem usage to hit 2GB CVE-2010-4644
MLIST:[dev] 20110303 Subversion 1.6.16 Released CVE-2011-0715
MLIST:[dev] 20110510 Re: Apache Portable Runtime 1.4.4 [...] Released CVE-2011-0419
MLIST:[dev] 20110510 Re: fnmatch rewrite in apr, apr 1.4.3 CVE-2011-0419
MLIST:[dev] 20110511 Re: Apache Portable Runtime 1.4.4 [...] Released CVE-2011-0419
MLIST:[dev] 20110823 Re: DoS with mod_deflate & range requests CVE-2011-3192
MLIST:[dev] 20120105 Hash collision vectors in APR? CVE-2012-0840
MLIST:[dev] 20120113 Re: Hash collision vectors in APR? CVE-2012-0840
MLIST:[dev] 20120114 Re: Hash collision vectors in APR? CVE-2012-0840
MLIST:[dev] 20120417 [ANNOUNCEMENT] Apache HTTP Server 2.4.2 Released CVE-2012-0883
MLIST:[dev] 20121022 [DISCUSS] - ActiveMQ out of the box - Should not include the demos CVE-2012-6551 CVE-2013-3060
MLIST:[dev] 20130327 [RCD] zero day vulnerability (tested on v8.0 to 9.0) CVE-2013-1904
MLIST:[dev] 20131008 [ANNOUNCE] mod_fcgid 2.3.9 released CVE-2013-4365
MLIST:[dev] 20140401 CVE-2013-5704, mod_headers and chunked trailer fields CVE-2013-5704
MLIST:[devel] 20090528 [patch] libpurple/protocols/oscar: OOM and die on misparsed ICQWebMessage as ICQSMS CVE-2009-1889
MLIST:[devel] 20090910 New version available [was: Is there a specific security contact address?] CVE-2009-2937
MLIST:[devkit-devel] 20140310 udisks 2.1.3 / 1.0.5 security updates CVE-2014-0004
MLIST:[dhcp-users] 20101207 nagios check_tcp kills failover, then dhcp failure. CVE-2010-3616
MLIST:[dhcpcd-discuss] 20110406 [CVE-2011-996] dhcpcd does not strip or escape shell meta characters CVE-2011-0996
MLIST:[dia-list] 20060329 Vulnerability in xfig import code CVE-2006-1550
MLIST:[distcc] 20040826 Exploit in distcc ( got compromised ;( ) CVE-2004-2687
MLIST:[distro-pkg-dev] 20090211 changeset in /hg/icedtea6: 2009-02-11 Omair Majid <omajid at redh... CVE-2009-0794
MLIST:[distro-pkg-dev] 20121107 IcedTea-Web 1.1.7, 1.2.2 and 1.3.1 [security releases] released! CVE-2012-4540
MLIST:[distro-pkg-dev] 20130304 [SECURITY] IcedTea6 1.11.9 and 1.12.4 Released! CVE-2013-0809 CVE-2013-1493
MLIST:[distro-pkg-dev] 20130417 IcedTea-Web 1.3.2 and 1.2.3 released! CVE-2013-1926 CVE-2013-1927
MLIST:[distro-pkg-dev] 20130417 [SECURITY] IcedTea 1.11.10 for OpenJDK 6 Released! CVE-2013-0401 CVE-2013-1488 CVE-2013-1518 CVE-2013-1537 CVE-2013-1557 CVE-2013-1569 CVE-2013-2383 CVE-2013-2384 CVE-2013-2415 CVE-2013-2417 CVE-2013-2419 CVE-2013-2420 CVE-2013-2421 CVE-2013-2422 CVE-2013-2424 CVE-2013-2426 CVE-2013-2429 CVE-2013-2430 CVE-2013-2431
MLIST:[distro-pkg-dev] 20130708 [SECURITY] IcedTea 2.4.1 for OpenJDK 7 Released! CVE-2013-4160
MLIST:[distro-pkg-dev] 20130919 IcedTea-Web 1.4.1 released! CVE-2012-4540
MLIST:[distro-pkg-dev] 20140305 IcedTea-Web 1.4.2 released! CVE-2013-6493
MLIST:[djabberd] 20110604 CVE-2011-1757: djabberd billion laughs vulnerability CVE-2011-1757
MLIST:[djabberd] 20110613 Security Release DJabberd 0.85 CVE-2011-2206
MLIST:[django-developers] 20130914 Set a reasonable upper bound on password length CVE-2013-1443
MLIST:[dl-ticket-service] 20100311 dl 0.7 released CVE-2010-0963
MLIST:[dns] 20090225 djbdns misformats some long response packets; patch and example CVE-2009-0858
MLIST:[dns] 20090304 djbdns<=1.05 lets AXFRed subdomains overwrite domains CVE-2009-0858
MLIST:[dnsmasq-discuss] 20080720 dnsmasq 2.44 available. CVE-2008-3350
MLIST:[dokuwiki] 20110614 Hotfix Release "2011-05-25a Rincewind" CVE-2011-2510
MLIST:[dovecot-cvs] 20070330 dovecot/src/lib-storage/index/mbox mbox-storage.c, 1.145.2.14, 1.145.2.15 CVE-2007-2231
MLIST:[dovecot-news] 20070330 Security hole #3: zlib plugin allows opening any gziped mboxes CVE-2007-2231
MLIST:[dovecot-news] 20070801 v1.0.3 released CVE-2007-4211
MLIST:[dovecot-news] 20091120 v1.2.8 released CVE-2009-3897
MLIST:[dovecot-news] 20100308 v1.2.11 released CVE-2010-0745
MLIST:[dovecot-news] 20100724 v1.2.13 released CVE-2010-3304
MLIST:[dovecot-news] 20111117 v2.0.16 released CVE-2011-4318
MLIST:[dovecot] 20100219 segfault - (imap|pop3)-login during nessus scan CVE-2010-0433
MLIST:[dovecot] 20100227 Possible CPU Denial-Of-Service attack to dovecot IMAP. CVE-2010-0745
MLIST:[dovecot] 20101002 ACL handling bugs in v1.2.8+ and v2.0 CVE-2010-3706 CVE-2010-3707 CVE-2010-3779
MLIST:[dovecot] 20101002 v1.2.15 released CVE-2010-3706 CVE-2010-3707 CVE-2010-3779 CVE-2010-3780
MLIST:[dovecot] 20101002 v2.0.5 released CVE-2010-3706 CVE-2010-3707
MLIST:[dovecot] 20110511 v1.2.17 released CVE-2011-1929
MLIST:[dovecot] 20110511 v2.0.13 released CVE-2011-1929 CVE-2011-2166 CVE-2011-2167
MLIST:[dropbear] 20051211 Dropbear 0.47 (and security fix) CVE-2005-4178
MLIST:[dtcannounce] 20110303 Fwd: [SECURITY] [DSA 2179-1] dtc security update CVE-2011-0434 CVE-2011-0435 CVE-2011-0436 CVE-2011-0437
MLIST:[ebd-devel] 20060502 actualización de seguridad CVE-2006-2349
MLIST:[ecryptfs-devel] 20081222 Re: [PATCH, v5] eCryptfs: check readlink result was not an error before using it CVE-2009-0269
MLIST:[egroupware-german] 20110805 new EGroupware SECURITY & maintenance release 1.8.001.20110805 CVE-2011-4948 CVE-2011-4949 CVE-2011-4950 CVE-2011-4951
MLIST:[ekiga-list] 20070917 [ANNOUNCE] Ekiga 2.0.10 released CVE-2007-4924
MLIST:[elfutils-devel] 20140409 [PATCH] CVE-2014-0172 Check for overflow before calling malloc to uncompress data. CVE-2014-0172
MLIST:[elinks-users] 20080204 [ANNOUNCE] ELinks 0.11.4rc0 CVE-2008-7224
MLIST:[emacs-devel] 20071003 temp file hole? CVE-2007-5377
MLIST:[emacs-devel] 20071004 Re: temp file hole? CVE-2007-5377
MLIST:[emacs-devel] 20080510 [mwelinder@bogus.example.com: Emacs security bug] CVE-2008-2142
MLIST:[emacs-devel] 20080905 Vulnerability in Emacs python integration CVE-2008-3949
MLIST:[emacs-devel] 20120109 Security flaw in EDE; new release plans CVE-2012-0035
MLIST:[emdros-announce] 20061201 Emdros version 1.2.0.pre231 released CVE-2006-6395
MLIST:[enomalism] 20081212 ECP 2.1.1 Released CVE-2008-4990
MLIST:[eoc] 20061213 EoC 1.2.4 -- security problem fixed, please upgrade immediately CVE-2006-5875
MLIST:[esapi-dev] 20130821 ESAPI Java and Authenticated encryption implementation CVE-2013-5679 CVE-2013-5960
MLIST:[ethereal-dev] 20040318 ethereal radius dissector vulnerability CVE-2004-0365
MLIST:[ewg] 20101021 [PATCH] security fix in openibd script CVE-2010-1693
MLIST:[exim-announce] 20020219 Exim 3.35 released CVE-2002-0274
MLIST:[exim-announce] 20110125 Exim 4.74 Release CVE-2011-0017
MLIST:[exim-announce] 20110509 Exim 4.76 Release CVE-2011-1407
MLIST:[exim-announce] 20110512 Exim 4.76 Release: updated impact assessment CVE-2011-1407
MLIST:[exim-announce] 20121026 Exim 4.80.1 Security Release CVE-2012-5671
MLIST:[exim-dev] 20100524 Security issues in exim4 local delivery CVE-2010-2023 CVE-2010-2024
MLIST:[exim-dev] 20101207 Remote root vulnerability in Exim CVE-2010-4344 CVE-2010-4345
MLIST:[exim-dev] 20101209 Re: [Exim-maintainers] Remote root vulnerability in Exim CVE-2010-4345
MLIST:[exim-dev] 20101210 Re: Remote root vulnerability in Exim CVE-2010-4344 CVE-2010-4345
MLIST:[exim] 20050104 2 smallish security issues CVE-2005-0021 CVE-2005-0022
MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences CVE-2009-3720
MLIST:[expat-bugs] 20091108 [ expat-Bugs-2894085 ] expat: buffer over-read and crash in big2_toUtf8() CVE-2009-3560
MLIST:[exploits] 20061201 0-day BlazeHDTV v2.1 Malformed PLF Buffer Overflow Exploit CVE-2006-6199
MLIST:[fail2ban-users] 20121206 0.8.8 release CVE-2012-5642
MLIST:[fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1 CVE-2003-0989 CVE-2004-0055 CVE-2004-0057
MLIST:[fedora-announce] 20040422 Fedora alert FEDORA-2004-111 (kernel) CVE-2004-0394
MLIST:[fedora-desktop-list] 20070918 Re: fuse (Was Re: early-gdm redux) CVE-2007-5159
MLIST:[fedora-devel-list] 20070122 Re: rawhide report: 20070120 changes CVE-2007-0003
MLIST:[fedora-package-announce] 20070604 [SECURITY] Fedora 7 Update: NetworkManager-0.6.5-3.fc7 CVE-2007-2874
MLIST:[fedora-security-commits] 20080620 fedora-security/audit f10, 1.7, 1.8 f8, 1.225, 1.226 f9, 1.215, 1.216 CVE-2008-2725 CVE-2008-2726
MLIST:[fedora-security-list] 20090612 git daemon DoS CVE-2009-2108
MLIST:[ffmpeg-cvslog] 20080812 r14714 - trunk/libavformat/utils.c CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080812 r14715 - trunk/libavformat/avformat.h CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080816 r14787 - trunk/libavcodec/utils.c CVE-2008-4868
MLIST:[ffmpeg-cvslog] 20080823 r14917 - trunk/libavcodec/dca.c CVE-2008-4867
MLIST:[ffmpeg-devel] 20101229 [PATCH] Fix a couple of errors with bad Vorbis headers CVE-2011-0480
MLIST:[ffmpeg-user] 20121204 Re: Unable to analyze/transcode mp3 CVE-2012-6618
MLIST:[file] 20070302 file-4.20 is now available CVE-2007-1536
MLIST:[file] 20090501 file 5.01 is now available CVE-2009-1515
MLIST:[file] 20090504 file-5.02 is now available CVE-2009-3930
MLIST:[file] 20120221 file-5.11 is now available CVE-2012-1571
MLIST:[file] 20140211 segfault in magic_buffer CVE-2014-1943
MLIST:[file] 20140213 segfault in magic_buffer CVE-2014-1943
MLIST:[file] 20142010 segfault in magic_buffer CVE-2014-1943
MLIST:[fishcart] 20050521 Re: Concerned about security CVE-2005-1486
MLIST:[flex-announce] 20060222 flex 2.5.33 released CVE-2006-0459
MLIST:[fm-news] 20010713 Newsletter for Friday, July 13th 2001 CVE-2001-1081
MLIST:[fm-news] 20041001 Newsletter for Thursday, September 30th 2004 CVE-2004-2153
MLIST:[fm-news] 20041102 Newsletter for Monday, November 01st 2004 CVE-2004-2217
MLIST:[fm-news] 20041123 Newsletter for Monday, November 22nd 2004 CVE-2004-2485
MLIST:[fm-news] 20051208 Newsletter for Thursday, December 08th 2005 CVE-2005-4132
MLIST:[fm-news] 20060204 Newsletter for Friday, February 03rd 2006 CVE-2006-0751
MLIST:[fm-news] 20080113 Newsletter for Saturday, January 12th 2008 CVE-2008-7189 CVE-2008-7197
MLIST:[fm-news] 20080123 Newsletter for Tuesday, January 22nd 2008 CVE-2008-7198
MLIST:[fm-news] 20080126 Newsletter for Friday, January 25th 2008 CVE-2008-7196 CVE-2008-7202
MLIST:[fm-news] 20080206 Newsletter for Tuesday, February 05th 2008 CVE-2008-7228
MLIST:[focus-sun] 20031022 Information disclosure with SMC webserver on Solaris 9 CVE-2004-1354
MLIST:[foswiki-announce] 20090427 Security Alert CVE-2009-1434: Foswiki Page View Cross-Site Request Forgery (CSRF) CVE-2009-1434
MLIST:[foswiki-announce] 20101110 [ANNOUNCE] Foswiki Security Alert CVE-2010-4215 - User can alter topic preferences using the "Edit topic preference settings" feature and save them even though he has no privileges to edit the topic. CVE-2010-4215
MLIST:[foswiki-announce] 20121212 Security Alert CVE-2012-6329: Foswiki MAKETEXT Variable Allows Arbitrary Shell Command Execution CVE-2012-6329 CVE-2012-6330
MLIST:[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c CVE-2006-5483
MLIST:[freebsd-cvs-src] 20060531 cvs commit: src/sys/ufs/ufs ufs_vnops.c CVE-2006-5482
MLIST:[freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff CVE-2005-0109
MLIST:[freebsd-security] 19961025 Vadim Kolontsov: BoS: Linux & BSD's lpr exploit CVE-1999-0032
MLIST:[freebsd-security] 20021109 Security issue in net/cvsup-mirror port CVE-2002-2382
MLIST:[freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff] CVE-2005-0109
MLIST:[freebsd-security] 20060728 Ruby vulnerability? CVE-2006-3694
MLIST:[freebsd-security] 20060730 Ruby vulnerability? CVE-2006-3694
MLIST:[freebsd-security] 20061002 FreeBSD Security Advisory FreeBSD-SA-06:22.openssh CVE-2006-5051
MLIST:[freebsd-security] 20061206 Intel LAN Driver Buffer Overflow Local Privilege Escalation CVE-2006-6385
MLIST:[freebsd-security] 20070114 MOAB advisories CVE-2006-5679 CVE-2006-5824 CVE-2007-0229 CVE-2007-0267
MLIST:[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team CVE-2011-4862
MLIST:[freebsd-security] 20120820 [HEADSUP] geli(4) weak master key generation on -CURRENT CVE-2012-4578
MLIST:[freeradius-users] 20090909 Version 1.1.8 has been released CVE-2009-3111
MLIST:[freetype-devel] 20110708 Re: details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype-devel] 20110708 details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype-devel] 20110709 Re: details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype-devel] 20110711 Re: details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype] 20100712 FreeType 2.4.0 has been released CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520 CVE-2010-2527
MLIST:[frox-user] 20050204 Frox 0.7.18 - security fixes. CVE-2005-2808
MLIST:[frugalware-git] 20081014 kernel2627: ndiswrapper-1.53-6-i686 CVE-2008-4395
MLIST:[ft-devel] 20070427 Bug in fuzzed TTF file CVE-2007-2754
MLIST:[funsec] 20060110 Another WMF flaw without a Microsoft patch CVE-2006-0020
MLIST:[funsec] 20060308 DOSing Outlook 2003 CVE-2006-1305
MLIST:[gcc-bugs] 20020506 c/6586: -ftrapv doesn't catch multiplication overflow CVE-2000-1219
MLIST:[gcc-bugs] 20060417 [Bug c/27180] New: pointer arithmetic overflow handling broken CVE-2006-1902
MLIST:[gcc-bugs] 20060417 [Bug middle-end/27180] New: pointer arithmetic overflow handling broken CVE-2006-1902
MLIST:[gcc-patches] 20080306 Re: [PATCH, i386]: Emit cld instruction when stringops are used CVE-2008-1367
MLIST:[gcc-patches] 20080306 [PATCH, i386]: Emit cld instruction when stringops are used CVE-2008-1367
MLIST:[gcc-patches] 20080307 Re: [PATCH, i386]: Emit cld instruction when stringops are used CVE-2008-1367
MLIST:[gcc-patches] 20120829 [PATCH] PR other/54411: libiberty: objalloc_alloc integer overflows (CVE-2012-3509) CVE-2012-3509
MLIST:[gdb-patches] 20110429 Re: [RFA] Add $pdir as entry for libthread-db-search-path. CVE-2011-4355
MLIST:[gdb-patches] 20110506 Re: [RFA] Add $pdir as entry for libthread-db-search-path. CVE-2011-4355
MLIST:[gdm-list] 20110328 GDM 2.32.1 released CVE-2011-0727
MLIST:[git-commits-head] 20060311 [PATCH] selinux: tracer SID fix CVE-2006-1052
MLIST:[git-commits-head] 20080307 x86: clear DF before calling signal handler CVE-2008-1367
MLIST:[git-commits-head] 20080507 sparc: Fix mmap VA span checking. CVE-2008-2137
MLIST:[git-commits-head] 20090205 shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM CVE-2009-0859
MLIST:[git-commits-head] 20091208 net: Automatically allocate per namespace data. CVE-2011-2189
MLIST:[git] 20080716 [PATCH] Fix buffer overflow in git diff CVE-2008-3546
MLIST:[git] 20081220 [Security] gitweb local privilege escalation (fix) CVE-2008-5916
MLIST:[git] 20110305 [ANNOUNCE] CGIT 0.8.3.5 CVE-2011-1027
MLIST:[glbs-security-announce] 20070517 Globus Security Advisory 2007-03: Nexus vulnerability CVE-2007-2784
MLIST:[gnome-announce-list] 20130304 GNOME Online Accounts 3.6.3 released CVE-2013-0240 CVE-2013-1799
MLIST:[gnome-announce-list] 20130305 GNOME Online Accounts 3.7.91 released CVE-2013-1799
MLIST:[gnome-announce] 20020503 Patch for serious bug in 1.0.3 CVE-2002-1765
MLIST:[gnome-networkmanager-list] 20050728 format string bug in nm_info_handler CVE-2005-2410
MLIST:[gnome-networkmanager-list] 20050729 Re: format string bug in nm_info_handler CVE-2005-2410
MLIST:[gnupg-announce] 20060215 False positive signature verification in GnuPG CVE-2006-0455
MLIST:[gnupg-announce] 20060309 [Announce] GnuPG does not detect injection of unsigned data CVE-2006-0049
MLIST:[gnupg-announce] 20061127 GnuPG 1.4 and 2.0 buffer overflow CVE-2006-6169
MLIST:[gnupg-announce] 20100723 [Announce] Security Alert for GnuPG 2.0 - Realloc bug in GPGSM CVE-2010-2547
MLIST:[gnupg-announce] 20130725 [Announce] [security fix] GnuPG 1.4.14 released CVE-2013-4242
MLIST:[gnupg-announce] GnuPG: remotely controllable function pointer [CVE-2006-6235] CVE-2006-6235
MLIST:[gnupg-devel] 20060215 [Announce] False positive signature verification in GnuPG CVE-2006-0455
MLIST:[gnupg-devel] 20131218 [Announce] [security fix] GnuPG 1.4.16 released CVE-2013-4576
MLIST:[gnupg-users] 20070306 [Announce] Multiple Messages Problem in GnuPG and GPGME CVE-2007-1263 CVE-2007-1264 CVE-2007-1265 CVE-2007-1266 CVE-2007-1267 CVE-2007-1268 CVE-2007-1269
MLIST:[gnutls-dev] 20040802 gnutls 1.0.17 CVE-2004-2531
MLIST:[gnutls-dev] 20050428 GnuTLS 1.2.3 and 1.0.25 CVE-2005-1431
MLIST:[gnutls-dev] 20060209 GnuTLS 1.2.10 - Security release CVE-2006-0645
MLIST:[gnutls-dev] 20060209 GnuTLS 1.3.4 - Experimental - Security release CVE-2006-0645
MLIST:[gnutls-dev] 20060209 Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release CVE-2006-0645
MLIST:[gnutls-dev] 20060812 GnuTLS 1.4.2 CVE-2006-7239
MLIST:[gnutls-dev] 20060812 Re: [Fwd: crash in GNUTLS-1.4.0] CVE-2006-7239
MLIST:[gnutls-dev] 20060908 Variant of Bleichenbacher's crypto 06 rump session attack CVE-2006-4790
MLIST:[gnutls-dev] 20060912 Re: Variant of Bleichenbacher's crypto 06 rump session attack CVE-2006-4790
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1] CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.5 - Brown paper bag release CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 Re: GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1] CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080630 Details on the gnutls_handshake local crash problem [GNUTLS-SA-2008-2] CVE-2008-2377
MLIST:[gnutls-devel] 20080630 GnuTLS 2.4.1 CVE-2008-2377
MLIST:[gnutls-devel] 20081110 Analysis of vulnerability GNUTLS-SA-2008-3 CVE-2008-4989 CVE-2008-4989
MLIST:[gnutls-devel] 20081110 GnuTLS 2.6.1 - Security release [GNUTLS-SA-2008-3] CVE-2008-4989
MLIST:[gnutls-devel] 20090109 Re: gnutls fails to use Verisign CA cert without a Basic Constraint CVE-2009-5138
MLIST:[gnutls-devel] 20090423 Re: some crashes on using DSA keys CVE-2009-1415
MLIST:[gnutls-devel] 20090430 All DSA keys generated using GnuTLS 2.6.x are corrupt [GNUTLS-SA-2009-2] [CVE-2009-1416] CVE-2009-1416
MLIST:[gnutls-devel] 20090430 Certificate expiration not checked by gnutls-cli [GNUTLS-SA-2009-3] [CVE-2009-1417] CVE-2009-1417
MLIST:[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415] CVE-2009-1415
MLIST:[gnutls-devel] 20091105 Re: TLS renegotiation MITM CVE-2009-3555
MLIST:[gnutls-devel] 20111108 Possible buffer overflow on gnutls_session_get_data CVE-2011-4128
MLIST:[gnutls-devel] 20120224 gnutls 3.0.14 CVE-2012-1663
MLIST:[gnutls-devel] 20120302 gnutls 2.12.16 CVE-2012-1573
MLIST:[gnutls-devel] 20120302 gnutls 3.0.15 CVE-2012-1573
MLIST:[gnutls-devel] 20120316 gnutls 3.0.16 CVE-2012-1569
MLIST:[gnutls-devel] 20131023 gnutls 3.1.15 CVE-2013-4466
MLIST:[gnutls-devel] 20131023 gnutls 3.2.5 CVE-2013-4466
MLIST:[gosa] 20070115 GOsa 2.5.8 released (security fixes!) CVE-2007-0313
MLIST:[gpa-dev] 20050531 S/MIME signing fails on a SUSE 9.3 system CVE-2005-2023
MLIST:[gpa-dev] 20050603 Re: S/MIME signing fails on a SUSE 9.3 system CVE-2005-2023
MLIST:[gpsd-dev] 20130501 3.9 is released CVE-2013-2038
MLIST:[gs-cvs] 20100106 [gs-commits] rev 10590 - trunk/gs/base CVE-2010-4054
MLIST:[gtk-devel-list] 20030529 Algorimic Complexity Attack on GLIB 2.2.1 CVE-2012-0039
MLIST:[gtk-devel-list] 20071107 GLib 2.14.3 CVE-2007-1659 CVE-2007-1660 CVE-2007-1661 CVE-2007-1662 CVE-2007-4766 CVE-2007-4767 CVE-2007-4768
MLIST:[haproxy] 20130617 [ANNOUNCE] haproxy-1.5-dev19 and 1.4.24 (security update) CVE-2013-2175
MLIST:[havp-devel] 20080715 Infinite loop which causes havp to block completely CVE-2008-3688
MLIST:[heimdal-discuss] 20060206 Heimdal 0.7.2 and 0.6.6 CVE-2006-0582 CVE-2006-0677
MLIST:[helix-client-dev] 20090828 CR: 249097 - Security fix - urgent CR requested CVE-2009-4247
MLIST:[help-gnutls] 20090420 Encryption using DSA keys CVE-2009-1416
MLIST:[help-libtasn1] 20120319 GNU Libtasn1 2.12 released CVE-2012-1569
MLIST:[help-libtasn1] 20120319 minimal fix to security issue CVE-2012-1569
MLIST:[horde-announce] 20041026 Horde 2.2.7 (final) CVE-2004-2741
MLIST:[horde-announce] 20051122 Horde 3.0.7 (final) CVE-2005-3759
MLIST:[horde-announce] 20051211 Horde 3.0.8 (final) CVE-2005-4190
MLIST:[horde-announce] 20051211 Kronolith H3 (2.0.6) (final) CVE-2005-4189
MLIST:[horde-announce] 20051211 Mnemo H3 (2.0.3) (final) CVE-2005-4192
MLIST:[horde-announce] 20051211 Nag H3 (2.0.4) (final) CVE-2005-4191
MLIST:[horde-announce] 20051211 Turba H3 (2.0.5) (final) CVE-2005-4242
MLIST:[horde-announce] 20060817 Horde 3.1.3 (final) CVE-2006-4256
MLIST:[horde-announce] 20060817 IMP H3 (4.1.3) (final) CVE-2006-4255
MLIST:[horde-announce] 20061018 Ingo H3 (1.1.2) (final) CVE-2006-5449
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.0.7) (final) CVE-2006-6175
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.1.4) (final) CVE-2006-6175
MLIST:[horde-announce] 20070114 Horde Groupware 1.0 (final) CVE-2007-0579
MLIST:[horde-announce] 20070114 Horde Groupware Webmail Edition 1.0 (final) CVE-2007-0579
MLIST:[horde-announce] 20080614 [announce] Horde Groupware Webmail Edition 1.1.1 (final) CVE-2008-3650
MLIST:[horde-announce] 20080910 Horde 3.1.9 (final) CVE-2008-3824
MLIST:[horde-announce] 20080910 [SECURITY] Horde 3.2.2 (final) CVE-2008-3823 CVE-2008-3824
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.1.6 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.2.4 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.1.6 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.2.4 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.2.5 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.3.5 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20120213 [SECURITY] Remote execution backdoor after server hack (CVE-2012-0209) CVE-2012-0209
MLIST:[httpclient-users] 20110224 Proxy-Authorization header received on server side CVE-2011-1498
MLIST:[httpclient-users] 20110224 RE: Proxy-Authorization header received on server side CVE-2011-1498
MLIST:[httpclient-users] 20110224 Re: Proxy-Authorization header received on server side CVE-2011-1498
MLIST:[httpd-announce] 20100611 [advisory] httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068 CVE-2010-2068
MLIST:[httpd-announce] 20110519 Regressions in httpd 2.2.18, apr 1.4.4, and apr-util 1.3.11 CVE-2011-1928
MLIST:[httpd-python-dev] 20040416 Re: possible bug in filter.write() CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 patch for filterobject.c CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 possible bug in filter.write() CVE-2004-2680
MLIST:[hylafax-announce] 20050111 **ANOUNCE** hylafax-4.2.1 released CVE-2004-1182
MLIST:[hylafax-users] 20051212 Re: proceedure for hylafax setup for PAM authentiation CVE-2005-3538
MLIST:[icu-support] 20080122 ICU Patch for bugs in Regular Expressions CVE-2007-4770 CVE-2007-4771
MLIST:[ietf-openpgp] 20060827 Bleichenbacher's RSA signature forgery based on implementation error CVE-2006-4339 CVE-2006-4340
MLIST:[imap-uw] 20081031 Security bug in tmail and dmail CVE-2008-5005
MLIST:[imp] 20050422 IMP 3.2.8 (final) CVE-2005-1319
MLIST:[incubator-cloudstack-users] 20130110 CVE-2012-5616: Apache CloudStack information disclosure vulnerability CVE-2012-5616
MLIST:[info-cyrus] 20050214 Cyrus IMAPd 2.2.11 Released CVE-2005-0546
MLIST:[interchange-announce] 20040329 Security Problem in Interchange CVE-2004-0374
MLIST:[interchange-announce] 20050922 Important: Security flaw found in Interchange demo catalog. CVE-2005-3073
MLIST:[interchange-announce] 20050923 Important: Security flaw found in Interchange demo - Addendum CVE-2005-3073
MLIST:[internals] 20120203 [PHP-DEV] The case of HTTP response splitting protection in PHP CVE-2011-1398 CVE-2012-4388
MLIST:[ipsec-tools-announce] 20080724 Ipsec-tools 0.7.1 released CVE-2008-3651
MLIST:[ipsec-tools-announce] 20090422 Ipsec-tools 0.7.2 released CVE-2009-1632
MLIST:[ipsec-tools-devel] 20050312 potential remote crash in racoon CVE-2005-0398
MLIST:[ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools CVE-2005-3732
MLIST:[ipsec-tools-devel] 20080724 Ipsec-tools 0.7.1 released CVE-2008-3651
MLIST:[ipsec-tools-devel] 20080811 [PATCH] Track and delete orphaned ph1s CVE-2008-3652
MLIST:[ircd-ratbox] 20070514 IMPORTANT: potential DoS found in ircd-ratbox CVE-2007-2786
MLIST:[ircd-ratbox] 20100125 ircd-ratbox-2.2.9 released CVE-2009-4016 CVE-2010-0300
MLIST:[iscsitarget-devel] 20100701 [patch] fix iSNS bounds checking CVE-2010-2221
MLIST:[isn] 20031215 The mysteriously persistently exploitable program explained. CVE-2004-2768
MLIST:[jabberd2] 20110531 jabberd-2.2.14 release CVE-2011-1755
MLIST:[jabberd2] 20120821 Fwd: [Security] Vulnerability in XMPP Server Dialback Implementations CVE-2012-3525
MLIST:[jabberd] 20040919 Jabberd 1.4 critical bug CVE-2004-1378
MLIST:[java-apache-users] 20000929 jserv wrapper error CVE-2000-1247
MLIST:[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update CVE-2007-1354
MLIST:[jenkinsci-advisories] 20111109 Security advisory in Jenkins Core CVE-2011-4344
MLIST:[karrigell-main] 20050731 SECURITY: python namespace exposure CVE-2005-2483
MLIST:[karrigell-main] 20050802 Re: SECURITY: python namespace exposure CVE-2005-2483
MLIST:[kde-announce] 20070309 KTorrent 2.1.2 is out CVE-2007-1384 CVE-2007-1385
MLIST:[kerberos-announce] 20120531 krb5-1.10.2 is released CVE-2012-1013
MLIST:[kerberos] 20101222 LDAP handle unavailable: Can't contact LDAP server CVE-2011-0281
MLIST:[kernel-svn-changes] 20050816 r3920 - in branches/dist/sarge-security: . kernel kernel/i386 kernel/source kernel/source/kernel-source-2.6.8-2.6.8/debian CVE-2005-0136
MLIST:[kernel-team] 20130731 [CVE-2013-1060] perf configuration file vunerability CVE-2013-1060
MLIST:[kernel-team] 20130731 [lucid CVE 1/1] UBUNTU: [Packaging] supply perf with appropriate prefix to ensure use of local config CVE-2013-1060
MLIST:[kernel] 20111225 Buildworld loop seg-fault update -- I believe it is hardware CVE-2013-6885
MLIST:[kmail-devel] 20050215 [Bug 96020] HTML Allows Spoofing of Emails Content CVE-2005-0404
MLIST:[kolab-users] 20040420 Possible Kolab LDAP configuration information disclosure CVE-2004-1997
MLIST:[kronolith] 20050422 Kronolith 1.1.4 (final) CVE-2005-1314
MLIST:[kronolith] 20080427 Kronolith H3 (2.1.8) (final) CVE-2008-1974
MLIST:[kvm] 20090702 KVM crashes when using certain USB device CVE-2010-0297
MLIST:[kvm] 20090721 Re: KVM crashes when using certain USB device CVE-2010-0297
MLIST:[kvm] 20100129 KVM: PIT: control word is write-only CVE-2010-0309
MLIST:[kvm] 20100728 [PATCH 1/2] Fix segfault in mmio subpage handling code CVE-2010-2784
MLIST:[kvm] 20101030 [patch v2] x86: kvm: x86: fix information leak to userland CVE-2010-3881
MLIST:[kvm] 20111214 [PATCH 1/2] KVM: x86: Prevent starting PIT timers in the absence of irqchip support CVE-2011-4622
MLIST:[libc-alpha] 20111215 integer overflow to heap overrun exploit in glibc CVE-2009-5029
MLIST:[libc-alpha] 20120202 [PATCH] vfprintf: validate nargs and positional offsets CVE-2012-0864
MLIST:[libc-alpha] 20120812 Fix strtod integer/buffer overflow (bug 14459) CVE-2012-3480
MLIST:[libc-alpha] 20130129 [PATCH] Fix buffer overrun in regexp matcher CVE-2013-0242
MLIST:[libc-alpha] 20130812 The GNU C Library version 2.18 is now available CVE-2013-2207
MLIST:[libc-alpha] 20131022 [PATCH][BZ #16072] Fix stack overflow due to large AF_INET6 requests CVE-2013-4458
MLIST:[libc-hacker] 20101018 [PATCH] Never expand $ORIGIN in privileged programs CVE-2010-3847
MLIST:[libc-hacker] 20101022 [PATCH] Require suid bit on audit objects in privileged programs CVE-2010-3856
MLIST:[libc-hacker] [PATCH] Fix LD_HWCAP_MASK handling CVE-2007-3508
MLIST:[libcdio-devel] 20071231 buffer overrun in cd-info and iso-info and a release? CVE-2007-6613
MLIST:[libcg-devel] 20101115 Fwd: libcgroup netlink CVE-2011-1022
MLIST:[libcg-devel] 20110218 [PATCH 2/2] cgrulesengd: Ignore netlink messages that don't come from the kernel. CVE-2011-1022
MLIST:[libcloud] 20100929 [jira] Closed: (LIBCLOUD-55) this python project is vulnerable to MITM as it fails to verify the ssl validity of the remote destination. CVE-2010-4340
MLIST:[libcloud] 20101108 SSL certs checking CVE-2010-4340
MLIST:[libexif-devel] 20091113 libexif project security advisory CVE-2009-3895
MLIST:[libexif-devel] 20120712 libexif project security advisory July 12, 2012 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2012-2845
MLIST:[libgadu-devel] 20081024 libgadu 1.8.2 CVE-2008-4776
MLIST:[libtar] 20131009 ANNOUNCE: libtar version 1.2.20 CVE-2013-4397
MLIST:[libtar] 20150213 Fw: Re: Validation of file names CVE-2013-4420
MLIST:[libtool] 20091116 Backport of libltdl changes to branch-1-5 CVE-2009-3736
MLIST:[libtool] 20091116 GNU Libtool 2.2.6b released CVE-2009-3736
MLIST:[libvir-list] 20090127 [libvirt] [PATCH] proxy: Fix use of uninitalized memory CVE-2009-0036
MLIST:[libvir-list] 20090128 Re: [libvirt] [PATCH] proxy: Fix use of uninitalized memory CVE-2009-0036
MLIST:[libvir-list] 20130516 [libvirt] [PATCH] daemon: fix leak after listing all volumes CVE-2013-1962
MLIST:[libvirt] 20081217 [SECURITY] PATCH: Fix missing read-only access checks (CVE-2008-5086) CVE-2008-5086
MLIST:[libvirt] 20110323 [PATCH] Make error reporting in libvirtd thread safe CVE-2011-1486
MLIST:[libvirt] 20110531 [PATCH] security: plug regression introduced in disk probe logic CVE-2011-2178
MLIST:[libvirt] 20110624 [PATCH 2/2] remote: protect against integer overflow CVE-2011-2511
MLIST:[libvirt] 20120428 [PATCH 0/3] usb devices with same vendor, productID hotplug support CVE-2012-2693
MLIST:[libvirt] 20120730 [PATCH] daemon: Fix crash in virTypedParameterArrayClear CVE-2012-3445
MLIST:[libvirt] 20120912 [PATCH] Fix libvirtd crash possibility CVE-2012-4423
MLIST:[libvirt] 20130829 [PATCH 01/12] Add bounds checking on virDomainMigrate*Params RPC calls (CVE-2013-4292) CVE-2013-4292
MLIST:[libvirt] 20131220 SECURITY: CVE-2013-6436: libvirtd daemon crash when reading memory tunables for LXC guest in shutoff status CVE-2013-6436
MLIST:[libvirt] 20131220 [PATCH] libxl: avoid crashing if calling `virsh numatune' on inactive domain CVE-2013-6457
MLIST:[libvirt] 20131224 CVE-2013-6457 Re: [PATCH] libxl: avoid crashing if calling `virsh numatune' on inactive domain CVE-2013-6457
MLIST:[libvirt] 20140115 [PATCH 0/4] CVE-2014-0028: domain events vs. ACL filtering CVE-2014-0028
MLIST:[libzip-discuss] 20120320 libzip-0.10.1 security fix release CVE-2012-1162 CVE-2012-1163
MLIST:[linux-audit] 20080330 audit 1.7 released CVE-2008-1628
MLIST:[linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. CVE-2011-2492
MLIST:[linux-cifs-client] 20090406 [PATCH] cifs: Fix insufficient memory allocation for nativeFileSystem field CVE-2009-1439
MLIST:[linux-cifs-client] 20100402 [patch] skip posix open if nameidata is null CVE-2010-1148
MLIST:[linux-cifs-client] 20100404 [patch] skip posix open if nameidata is null CVE-2010-1148
MLIST:[linux-cifs] 20110405 Re: Repeatable crash in 2.6.38 related to O_DIRECT CVE-2011-1771
MLIST:[linux-cifs] 20110405 Repeatable crash in 2.6.38 related to O_DIRECT CVE-2011-1771
MLIST:[linux-cifs] 20140214 [PATCH] cifs: ensure that uncached writes handle unmapped areas correctly CVE-2014-0069
MLIST:[linux-crypto] 20130917 [PATCH] ansi_cprng: Fix off by one error in non-block size request CVE-2013-4345
MLIST:[linux-ext4] 20110603 [PATCH 1/2] ext4: Fix max file size and logical block counting of extent format file CVE-2011-2695
MLIST:[linux-ia64] 20040916 Re: [Patch] Per CPU MCA/INIT data save areas CVE-2005-0136
MLIST:[linux-ia64] [PATCH 1/1] ia64: perfmon.c trips BUG_ON in put_page_testzero CVE-2006-0558
MLIST:[linux-input] 20130828 [PATCH 01/14] HID: validate HID report id size CVE-2013-2888
MLIST:[linux-input] 20130828 [PATCH 03/14] HID: zeroplus: validate output report details CVE-2013-2889
MLIST:[linux-input] 20130828 [PATCH 04/14] HID: sony: validate HID output report details CVE-2013-2890
MLIST:[linux-input] 20130828 [PATCH 05/14] HID: steelseries: validate output report details CVE-2013-2891
MLIST:[linux-input] 20130828 [PATCH 06/14] HID: pantherlord: validate output report details CVE-2013-2892
MLIST:[linux-input] 20130828 [PATCH 07/14] HID: LG: validate HID output report details CVE-2013-2893
MLIST:[linux-input] 20130828 [PATCH 08/14] HID: lenovo-tpkbd: validate output report details CVE-2013-2894
MLIST:[linux-input] 20130828 [PATCH 09/14] HID: logitech-dj: validate output report details CVE-2013-2895
MLIST:[linux-input] 20130828 [PATCH 10/14] HID: ntrig: validate feature report details CVE-2013-2896
MLIST:[linux-input] 20130828 [PATCH 11/14] HID: multitouch: validate feature report details CVE-2013-2897
MLIST:[linux-input] 20130828 [PATCH 12/14] HID: sensor-hub: validate feature report details CVE-2013-2898
MLIST:[linux-input] 20130828 [PATCH 13/14] HID: picolcd_core: validate output report details CVE-2013-2899
MLIST:[linux-kernel] 20020417 Re: SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20020417 SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20020418 Re: SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20020422 Re: SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20031105 BK2CVS problem CVE-2003-1161
MLIST:[linux-kernel] 20031105 Re: BK2CVS problem CVE-2003-1161
MLIST:[linux-kernel] 20040105 linux-2.4.24 released CVE-2003-0985
MLIST:[linux-kernel] 20040219 Re: Oopsing cryptoapi (or loop device?) on 2.6.* CVE-2004-2135 CVE-2004-2136
MLIST:[linux-kernel] 20040402 Re: disable-cap-mlock CVE-2004-0491
MLIST:[linux-kernel] 20040408 [PATCH]: 2.4/2.6 do_fork() error path memory leak CVE-2004-0427
MLIST:[linux-kernel] 20040416 Re: [CHECKER] Probable security holes in 2.6.5 CVE-2004-2607
MLIST:[linux-kernel] 20040609 timer + fpu stuff locks my console race CVE-2004-0554
MLIST:[linux-kernel] 20040911 [PATCH] exec: fix posix-timers leak and pending signal loss CVE-2005-3271
MLIST:[linux-kernel] 20041111 a.out issue CVE-2004-1074
MLIST:[linux-kernel] 20041114 [PATCH] linux 2.9.10-rc1: Fix oops in unix_dgram_sendmsg when using CVE-2004-1069
MLIST:[linux-kernel] 20041130 Buffer overrun in arch/x86_64/sys_ia32.c:sys32_ni_syscall() CVE-2004-1151
MLIST:[linux-kernel] 20041216 [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050105 Re: [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.4.29-pre3-bk4] fs/coda Re: [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.6.10-mm2] fs/coda Re: [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050301 Re: Breakage from patch: Only root should be able to set the N_MOUSE line discipline. CVE-2005-0839
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in pktcdvd CVE-2005-1589
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in raw device CVE-2005-1264
MLIST:[linux-kernel] 20050805 [PATCH] Fix hugepage crash on failing mmap() CVE-2005-4811
MLIST:[linux-kernel] 20050817 [PATCH 2.6.12.5] NPTL signal delivery deadlock fix CVE-2005-3847
MLIST:[linux-kernel] 20050817 [PATCH] fix dst_entry leak in icmp_push_reply() CVE-2005-3848
MLIST:[linux-kernel] 20050818 Re: [PATCH] fix dst_entry leak in icmp_push_reply() CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 2/7] [PATCH] NPTL signal delivery deadlock fix CVE-2005-3847
MLIST:[linux-kernel] 20050826 [PATCH 4/7] [IPV4]: Fix DST leak in icmp_push_reply() CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 7/7] [IPV6]: Fix SKB leak in ip6_input_finish() CVE-2005-3858
MLIST:[linux-kernel] 20050829 Re: Linux 2.6.12.6 CVE-2005-3858
MLIST:[linux-kernel] 20050912 [PATCH] nfs client, kernel 2.4.31: readlink result overflow CVE-2005-4798
MLIST:[linux-kernel] 20050925 [BUG/PATCH/RFC] Oops while completing async USB via usbdevio CVE-2005-3055
MLIST:[linux-kernel] 20051112 Re: local denial-of-service with file leases CVE-2005-3857
MLIST:[linux-kernel] 20051113 [GIT] Fix memory leak in lease code CVE-2005-3807 CVE-2005-3857
MLIST:[linux-kernel] 20051122 [patch 11/23] [PATCH] [NETFILTER] ctnetlink: check if protoinfo is present CVE-2005-3809
MLIST:[linux-kernel] 20051122 [patch 13/23] [PATCH] [NETFILTER] ctnetlink: Fix oops when no ICMP ID info in message CVE-2005-3810
MLIST:[linux-kernel] 20051123 32bit integer overflow in invalidate_inode_pages2() (local DoS) CVE-2005-3808
MLIST:[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host) CVE-2006-5158
MLIST:[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host) CVE-2006-5158
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: Zero key material before free to avoid information leak CVE-2006-0095
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: zero key before freeing it CVE-2006-0095
MLIST:[linux-kernel] 20060207 Linux 2.6.15.3 CVE-2006-0454
MLIST:[linux-kernel] 20060207 Re: Linux 2.6.15.3 CVE-2006-0454
MLIST:[linux-kernel] 20060207 [PATCH] arch/x86_64/kernel/traps.c PTRACE_SINGLESTEP oops CVE-2006-1066
MLIST:[linux-kernel] 20060411 [PATCH] __group_complete_signal: remove bogus BUG_ON CVE-2006-1523
MLIST:[linux-kernel] 20060419 RE: Linux 2.6.16.9 CVE-2006-1056
MLIST:[linux-kernel] 20060426 [PATCH] LSM: add missing hook to do_compat_readv_writev() CVE-2006-1856
MLIST:[linux-kernel] 20060526 PROBLEM: /proc (procfs) task exit race condition causes a kernelcrash CVE-2006-2629
MLIST:[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks CVE-2006-2445
MLIST:[linux-kernel] 20060717 [patch 25/45] splice: fix problems with sys_tee() CVE-2007-0997
MLIST:[linux-kernel] 20061105 Linux 2.6.16.31-rc1 CVE-2006-4572 CVE-2006-5174 CVE-2006-5619
MLIST:[linux-kernel] 20061215 [patch 24/24] Bluetooth: Add packet size checks for CAPI messages (CVE-2006-6106) CVE-2006-6106
MLIST:[linux-kernel] 20061219 BUG: wedged processes, test program supplied CVE-2006-6921
MLIST:[linux-kernel] 20061219 Linux 2.6.18.6 CVE-2006-6106
MLIST:[linux-kernel] 20061220 Re: BUG: wedged processes, test program supplied CVE-2006-6921
MLIST:[linux-kernel] 20070508 Re: [PATCH -utrace] Move utrace into task_struct CVE-2008-2365
MLIST:[linux-kernel] 20070608 Linux 2.6.20.13 CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070608 Linux 2.6.21.4 CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070720 [PATCH] splice: fix bad unlock_page() in error case CVE-2008-4302
MLIST:[linux-kernel] 20070731 Re: [PATCH] add check do_direct_IO() return val CVE-2007-6716
MLIST:[linux-kernel] 20070921 Linux 2.6.22.7 CVE-2007-4573
MLIST:[linux-kernel] 20070921 Re: Linux 2.6.22.7 CVE-2007-4573
MLIST:[linux-kernel] 20071108 Buffer overflow in CIFS VFS. CVE-2007-5904
MLIST:[linux-kernel] 20071108 [PATCH] time: fix sysfs_show_{available,current}_clocksources() buffer overflow problem CVE-2007-5908
MLIST:[linux-kernel] 20071109 Re: Fw: Buffer overflow in CIFS VFS. CVE-2007-5904
MLIST:[linux-kernel] 20071116 Linux 2.6.23.8 CVE-2007-5501
MLIST:[linux-kernel] 20071122 [PATCH] PPC: CHRP - fix possible NULL pointer dereference CVE-2007-6694
MLIST:[linux-kernel] 20071128 [PATCH] tmpfs: restore missing clear_highpage CVE-2007-6417
MLIST:[linux-kernel] 20071212 Re: [PATCH] tmpfs: restore missing clear_highpage CVE-2007-6417
MLIST:[linux-kernel] 20071215 Re: [PATCH] tmpfs: restore missing clear_highpage CVE-2007-6417
MLIST:[linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007) CVE-2008-0007
MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit CVE-2008-0600
MLIST:[linux-kernel] 20080229 [BUG] soft lockup detected with ipcs CVE-2009-0859
MLIST:[linux-kernel] 20080305 Linux doesn't follow x86/x86-64 ABI wrt direction flag CVE-2008-1367
MLIST:[linux-kernel] 20080429 [04/12] tehuti: check register size (CVE-2008-1675) CVE-2008-1675
MLIST:[linux-kernel] 20080429 [26/37] tehuti: check register size (CVE-2008-1675) CVE-2008-1675
MLIST:[linux-kernel] 20080429 [27/37] tehuti: move ioctl perm check closer to function start CVE-2008-1675
MLIST:[linux-kernel] 20080430 Re: Page Faults slower in 2.6.25-rc9 than 2.6.23 CVE-2008-2372
MLIST:[linux-kernel] 20080501 Linux 2.6.24.6 CVE-2008-1375
MLIST:[linux-kernel] 20080501 Linux 2.6.25.1 CVE-2008-1375
MLIST:[linux-kernel] 20080509 Re: When should kfree_skb be used? CVE-2008-2136
MLIST:[linux-kernel] 20080513 [patch 25/37] sparc: Fix mremap address range validation. CVE-2008-6107
MLIST:[linux-kernel] 20080702 Is VFS behavior fine? CVE-2008-3275
MLIST:[linux-kernel] 20080723 Re: [PATCH 1/2] signals: kill(-1) should only signal processes in the same namespace CVE-2009-1338
MLIST:[linux-kernel] 20080726 tmpfs: kernel BUG at mm/shmem.c:814 CVE-2008-3534
MLIST:[linux-kernel] 20080730 2.6.27-rc1: IP: iov_iter_advance+0x2e/0x90 CVE-2008-3535
MLIST:[linux-kernel] 20080730 [patch 40/62] V4L: uvcvideo: Fix a buffer overflow in format descriptor parsing CVE-2008-3496
MLIST:[linux-kernel] 20080807 OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175 CVE-2008-3686
MLIST:[linux-kernel] 20080808 Re: OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175 CVE-2008-3686
MLIST:[linux-kernel] 20080823 [GIT]: Networking CVE-2008-3792
MLIST:[linux-kernel] 20080830 Re: buffer overflow in /proc/sys/sunrpc/transports CVE-2008-3911
MLIST:[linux-kernel] 20080830 buffer overflow in /proc/sys/sunrpc/transports CVE-2008-3911
MLIST:[linux-kernel] 20080903 [patch 05/16] nfsd: fix buffer overrun decoding NFSv4 acl CVE-2008-3915
MLIST:[linux-kernel] 20080913 [PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption CVE-2008-3528
MLIST:[linux-kernel] 20080913 [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption CVE-2008-3528
MLIST:[linux-kernel] 20080918 Re: [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption CVE-2008-3528
MLIST:[linux-kernel] 20081005 [PATCH 04/19] ib700wdt: Fix off by one CVE-2008-5702
MLIST:[linux-kernel] 20081006 [patch 58/71] sctp: Fix oops when INIT-ACK indicates that peer doesnt support AUTH CVE-2008-4576
MLIST:[linux-kernel] 20081220 [Security] gitweb local privilege escalation (fix) CVE-2008-5916
MLIST:[linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning CVE-2009-0029
MLIST:[linux-kernel] 20090127 [PATCH 1/2] fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM CVE-2009-0859
MLIST:[linux-kernel] 20090130 [PATCH] Fix memory corruption in console selection CVE-2009-1046
MLIST:[linux-kernel] 20090131 [patch 03/43] inotify: clean up inotify_read and fix locking CVE-2009-0935
MLIST:[linux-kernel] 20090202 Re: [PATCH] Fix memory corruption in console selection CVE-2009-1046
MLIST:[linux-kernel] 20090212 [PATCH] 4 bytes kernel memory disclosure in SO_BSDCOMPAT gsopt try #2 CVE-2009-0676
MLIST:[linux-kernel] 20090223 net: amend the fix for SO_BSDCOMPAT gsopt infoleak CVE-2009-0676
MLIST:[linux-kernel] 20090225 Re: [PATCH 2/2] exit_notify: kill the wrong capable(CAP_KILL) check CVE-2009-1337
MLIST:[linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes CVE-2009-0834 CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole CVE-2009-0834
MLIST:[linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole CVE-2009-0835
MLIST:[linux-kernel] 20090311 VFS, NFS security bug? Should CAP_MKNOD and CAP_LINUX_IMMUTABLE be added to CAP_FS_MASK? CVE-2009-1072
MLIST:[linux-kernel] 20090502 Linux 2.6.27.21 CVE-2009-1184
MLIST:[linux-kernel] 20090502 Linux 2.6.28.10 CVE-2009-1184
MLIST:[linux-kernel] 20090608 [Security, resend] Instant crash with rtl8169 and large packets CVE-2009-1389
MLIST:[linux-kernel] 20090622 Fix for shared flat binary format in 2.6.30 CVE-2009-2768
MLIST:[linux-kernel] 20090623 [PATCH 0/1] mm_for_maps: simplify, use ptrace_may_access() CVE-2009-2691
MLIST:[linux-kernel] 20090623 [PATCH 1/1] mm_for_maps: simplify, use ptrace_may_access() CVE-2009-2691
MLIST:[linux-kernel] 20090706 Re: PROBLEM: tun/tap crashes if open() /dev/net/tun and then poll() it. CVE-2009-1897
MLIST:[linux-kernel] 20090710 [PATCH 1/2] mm_for_maps: shift down_read(mmap_sem) to the caller CVE-2009-2691
MLIST:[linux-kernel] 20090710 [PATCH 2/2] mm_for_maps: take ->cred_guard_mutex to fix the race CVE-2009-2691
MLIST:[linux-kernel] 20090720 Re: [PATCH] sgi-gru: Fix kernel stack buffer overrun CVE-2009-2584
MLIST:[linux-kernel] 20090721 [PATCH] sgi-gru: Fix kernel stack buffer overrun CVE-2009-2584
MLIST:[linux-kernel] 20090801 [PATCH v2] execve: must clear current->clear_child_tid CVE-2009-2848
MLIST:[linux-kernel] 20090804 Re: [PATCH] posix-timers: fix oops in clock_nanosleep() with CLOCK_MONOTONIC_RAW CVE-2009-2767
MLIST:[linux-kernel] 20090819 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 CVE-2009-3043
MLIST:[linux-kernel] 20090819 v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 CVE-2009-3043
MLIST:[linux-kernel] 20090820 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 CVE-2009-3043
MLIST:[linux-kernel] 20090902 [BUG] 2.6.31-rc8 readcd Oops CVE-2009-3288
MLIST:[linux-kernel] 20090903 [PATCH] sg: fix oops in the error path in sg_build_indirect() CVE-2009-3288
MLIST:[linux-kernel] 20090916 [patch 15/45] perf_counter: Fix buffer overflow in perf_copy_attr() CVE-2009-3234
MLIST:[linux-kernel] 20090921 [git pull] drm tree. CVE-2009-3620
MLIST:[linux-kernel] 20091001 [tip:x86/urgent] x86: Don't leak 64-bit kernel register values to 32-bit processes CVE-2009-2910
MLIST:[linux-kernel] 20091002 Re: [PATCH 0/8] SECURITY ISSUE with connector CVE-2009-3725
MLIST:[linux-kernel] 20091002 [071/136] net ax25: Fix signed comparison in the sockopt handler CVE-2009-2909
MLIST:[linux-kernel] 20091014 fs/pipe.c null pointer dereference CVE-2009-3547
MLIST:[linux-kernel] 20091019 Re: [PATCH] AF_UNIX: Fix deadlock on connecting to shutdown socket CVE-2009-3621
MLIST:[linux-kernel] 20091021 Re: [PATCH v4 1/1]: fs: pipe.c null pointer dereference + really sign off + unmangled diffs CVE-2009-3547
MLIST:[linux-kernel] 20091205 [RFC][PATCHSET] mremap/mmap mess CVE-2010-0291
MLIST:[linux-kernel] 20091209 [GIT PULL] ext4 updates for v2.6.33 CVE-2009-4131 CVE-2009-4307
MLIST:[linux-kernel] 20100114 [PATCH 01/52] untangle the do_mremap() mess CVE-2010-0291
MLIST:[linux-kernel] 20100205 PROBLEM: hda-intel divide by zero kernel crash in azx_position_ok() CVE-2010-1085
MLIST:[linux-kernel] 20100221 [80/93] USB: usbfs: properly clean up the as structure on error paths CVE-2010-1083
MLIST:[linux-kernel] 20100303 [PATCH v2] hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[linux-kernel] 20100311 [PATCH 3/3] GFS2: Skip check for mandatory locks when unlocking CVE-2010-0727
MLIST:[linux-kernel] 20100330 [48/89] USB: usbfs: properly clean up the as structure on error paths CVE-2010-1083
MLIST:[linux-kernel] 20100408 [PATCH #3] reiserfs: Fix permissions on .reiserfs_priv CVE-2010-1146
MLIST:[linux-kernel] 20100422 [PATCH 0/1][BUG][IMPORTANT] KEYRINGS: find_keyring_by_name() can gain the freed keyring CVE-2010-1437
MLIST:[linux-kernel] 20100430 [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring CVE-2010-1437
MLIST:[linux-kernel] 20100503 Re: [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring CVE-2010-1437
MLIST:[linux-kernel] 20100510 [071/117] kgdb: dont needlessly skip PAGE_USER test for Fsl booke CVE-2010-1446
MLIST:[linux-kernel] 20100518 [PATCH] btrfs: should add a permission check for setfacl CVE-2010-2071
MLIST:[linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer CVE-2010-4243
MLIST:[linux-kernel] 20100827 [PATCH] wireless: fix 64K kernel heap content leak via ioctl CVE-2010-2955
MLIST:[linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer CVE-2010-4243
MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless extensions: fix kernel heap content leak CVE-2010-2955
MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless: fix 64K kernel heap content leak via ioctl CVE-2010-2955
MLIST:[linux-kernel] 20100830 [PATCH] wireless extensions: fix kernel heap content leak CVE-2010-2955
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory CVE-2010-3296
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/eql.c: prevent reading uninitialized stack memory CVE-2010-3297
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/usb/hso.c: prevent reading uninitialized memory CVE-2010-3298
MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/amiserial.c: prevent reading uninitialized stack memory CVE-2010-4076
MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/nozomi.c: prevent reading uninitialized stackmemory CVE-2010-4077
MLIST:[linux-kernel] 20100915 [PATCH] drivers/media/video/ivtv/ivtvfb.c: prevent reading uninitialized stack memory CVE-2010-4079
MLIST:[linux-kernel] 20100915 [PATCH] drivers/serial/serial_core.c: prevent readinguninitialized stack memory CVE-2010-4075
MLIST:[linux-kernel] 20100915 [PATCH] drivers/usb/serial/mos*: prevent reading uninitialized stack memory CVE-2010-4074
MLIST:[linux-kernel] 20100915 [PATCH] drivers/video/via/ioctl.c: prevent reading uninitializedstack memory CVE-2010-4082
MLIST:[linux-kernel] 20100925 [PATCH] sound/pci/rme9652: prevent reading uninitialized stack memory CVE-2010-4080 CVE-2010-4081
MLIST:[linux-kernel] 20101001 [PATCH] Fix out-of-bounds reading in sctp_asoc_get_hmac() CVE-2010-3705
MLIST:[linux-kernel] 20101006 [PATCH v3] IPC: Initialize structure memory to zero for compat functions CVE-2010-4073
MLIST:[linux-kernel] 20101006 [PATCH] ipc: initialize structure memory to zero for shmctl CVE-2010-4072
MLIST:[linux-kernel] 20101007 Peculiar stuff in hci_ath3k/badness in hci_uart CVE-2010-4242
MLIST:[linux-kernel] 20101007 [PATCH] net: clear heap allocations for privileged ethtool actions CVE-2010-4655
MLIST:[linux-kernel] 20101123 Unix socket local DOS (OOM) CVE-2010-4249
MLIST:[linux-kernel] 20101124 [PATCH net-next-2.6] scm: lower SCM_MAX_FD CVE-2010-4249
MLIST:[linux-kernel] 20101125 Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect :( CVE-2010-4249
MLIST:[linux-kernel] 20101129 Re: [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() CVE-2010-4668
MLIST:[linux-kernel] 20101129 [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() CVE-2010-4668
MLIST:[linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer CVE-2010-4243
MLIST:[linux-kernel] 20101201 Re: [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. CVE-2010-4258
MLIST:[linux-kernel] 20101201 [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. CVE-2010-4258
MLIST:[linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check. CVE-2010-4346
MLIST:[linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls. CVE-2011-1082
MLIST:[linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110225 [PATCH] optimize epoll loop detection CVE-2011-1083
MLIST:[linux-kernel] 20110226 Re: [PATCH] optimize epoll loop detection CVE-2011-1083
MLIST:[linux-kernel] 20110228 Re: [PATCH] optimize epoll loop detection CVE-2011-1083
MLIST:[linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
MLIST:[linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172
MLIST:[linux-kernel] 20110311 [PATCH] proc: protect mm start_code/end_code in /proc/pid/stat CVE-2011-0726
MLIST:[linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads CVE-2011-1494 CVE-2011-1495
MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow CVE-2011-1746 CVE-2011-1747
MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes CVE-2011-1745 CVE-2011-2022
MLIST:[linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) CVE-2011-1593
MLIST:[linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow CVE-2011-1746
MLIST:[linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length CVE-2011-1770
MLIST:[linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length CVE-2011-1770
MLIST:[linux-kernel] 20110523 Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values CVE-2011-2184
MLIST:[linux-kernel] 20110524 Re: Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values CVE-2011-2184
MLIST:[linux-kernel] 20110525 Re: [Security] Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values CVE-2011-2184
MLIST:[linux-kernel] 20110608 [BUG] hfs_find_init() sb->ext_tree NULL pointer dereference CVE-2011-2203
MLIST:[linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode CVE-2011-2484
MLIST:[linux-kernel] 20110624 [PATCH] Bluetooth: Prevent buffer overflow in l2cap config request CVE-2011-2497
MLIST:[linux-kernel] 20111109 [BUG][SECURITY] Kernel stack overflow in hfs_mac2asc() CVE-2011-4330
MLIST:[linux-kernel] 20111115 [PATCH] KEYS: Fix a NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[linux-kernel] 20120207 [PATCH 5/5] kmod: make __request_module() killable CVE-2012-4398
MLIST:[linux-kernel] 20120612 [PATCH] NFC: prevent multiple buffer overflows in NCI CVE-2012-3364
MLIST:[linux-kernel] 20130124 [PATCH 00/13] Corrections and customization of the SG_IO command whitelist (CVE-2012-4542) CVE-2012-4542
MLIST:[linux-kernel] 20130124 [PATCH 04/13] sg_io: resolve conflicts between commands assigned to multiple classes (CVE-2012-4542) CVE-2012-4542
MLIST:[linux-kernel] 20130311 [PATCH] drm/i915: bounds check execbuffer relocations CVE-2013-0913
MLIST:[linux-kernel] 20130412 Re: sw_perf_event_destroy() oops while fuzzing CVE-2013-2094
MLIST:[linux-kernel] 20130412 sw_perf_event_destroy() oops while fuzzing CVE-2013-2094
MLIST:[linux-kernel] 20130413 Re: sw_perf_event_destroy() oops while fuzzing CVE-2013-2094
MLIST:[linux-kernel] 20130414 Linux 3.9-rc7 CVE-2013-3222 CVE-2013-3223 CVE-2013-3224 CVE-2013-3225 CVE-2013-3226 CVE-2013-3227 CVE-2013-3228 CVE-2013-3229 CVE-2013-3230 CVE-2013-3231 CVE-2013-3232 CVE-2013-3233 CVE-2013-3234 CVE-2013-3235 CVE-2013-3236 CVE-2013-3237
MLIST:[linux-kernel] 20130417 Device driver memory 'mmap()' function helper cleanup CVE-2013-2596
MLIST:[linux-kernel] 20130603 [patch] cciss: info leak in cciss_ioctl32_passthru() CVE-2013-2147
MLIST:[linux-kernel] 20130603 [patch] cpqarray: info leak in ida_locked_ioctl() CVE-2013-2147
MLIST:[linux-kernel] 20130603 [patch] fanotify: info leak in copy_event_to_user() CVE-2013-2148
MLIST:[linux-kernel] 20130606 [PATCH 1/8] block: do not pass disk names as format strings CVE-2013-2851
MLIST:[linux-kernel] 20130911 [PATCH net V2] tuntap: correctly handle error in tun_set_iff() CVE-2013-4343
MLIST:[linux-kernel] 20140110 Re: Sanitize CPU-state when switching tasks (was sanitize CPU-state when switching from virtual-8086 mode to other task) CVE-2014-1438
MLIST:[linux-kernel] 20140227 kernel BUG at security/keys/keyring.c:1003! CVE-2014-0102
MLIST:[linux-kernel] 20140320 [PATCH v3] core, nfqueue, openvswitch: Orphan frags in skb_zerocopy and handle errors CVE-2014-2568
MLIST:[linux-kernel] 20140329 [PATCH v2] rds: prevent dereference of a NULL device in rds_iw_laddr_check CVE-2014-2678
MLIST:[linux-kernel] 20140411 net: ipv4: current group_info should be put after using. CVE-2014-2851
MLIST:[linux-lvm] 20100728 lvm2-cluster (clvmd) security fix (Moderate) CVE-2010-2526
MLIST:[linux-mm-commits] 20091203 + hfs-fix-a-potential-buffer-overflow.patch added to -mm tree CVE-2009-4020
MLIST:[linux-mm] 20100128 DoS on x86_64 CVE-2010-0307
MLIST:[linux-mtd] 20070822 [JFFS2] Fix ACL vs. mode handling. CVE-2007-4849
MLIST:[linux-netdev] 20060304 BUG: Small information leak in SO_ORIGINAL_DST (2.4 and 2.6) and CVE-2006-1342 CVE-2006-1343
MLIST:[linux-netdev] 20070316 [PATCH 2.6.21-rc3] IPV6: ipv6_fl_socklist is inadvertently shared. CVE-2007-1592
MLIST:[linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets CVE-2007-6282
MLIST:[linux-netdev] 20080821 [PATCH] sctp: fix potential panics in the SCTP-AUTH API. CVE-2008-3792
MLIST:[linux-netdev] 20081106 UNIX sockets kernel panic CVE-2008-5029
MLIST:[linux-netdev] 20081120 soft lockups/OOM after unix socket fixes CVE-2008-5300
MLIST:[linux-netdev] 20081125 [PATCH] Fix soft lockups/OOM issues w/ unix garbage collector CVE-2008-5300
MLIST:[linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table CVE-2008-5079
MLIST:[linux-netdev] 20090214 r8169: instant crash if receiving packet larger than MTU CVE-2009-1389
MLIST:[linux-netdev] 20091228 [PATCH RFC] r8169: straighten out overlength frame detection CVE-2009-4537
MLIST:[linux-netdev] 20100114 [PATCH]: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo(). CVE-2010-0006
MLIST:[linux-netdev] 20100920 [PATCH] rose: Fix signedness issues wrt. digi count. CVE-2010-3310
MLIST:[linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling CVE-2010-4175
MLIST:[linux-netdev] 20120416 [PATCH 3/6] macvtap: zerocopy: validate vector length before pinning user pages CVE-2012-2119
MLIST:[linux-nfs] 20081022 kernel oops in nfs4_proc_lock CVE-2009-3726
MLIST:[linux-nfs] 20090509 [NFS] [PATCH] nfs: Fix NFS v4 client handling of MAY_EXEC in nfs_permission. CVE-2009-1630
MLIST:[linux-nfs] 20110622 [PATCH] nfs: fix host_reliable_addrinfo (try #2) CVE-2011-2500
MLIST:[linux-nfs] 20130402 Re: [PATCH] Avoid PTR lookups when possible CVE-2013-1923
MLIST:[linux-nfs] 20130403 Re: [PATCH] Avoid PTR lookups when possible CVE-2013-1923
MLIST:[linux-parisc] 20080729 [PATCH] fix unwind crash - was: Re: 2.6.26 kernel crash CVE-2008-5395
MLIST:[linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers CVE-2011-0695
MLIST:[linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback CVE-2011-0695
MLIST:[linux-rdma] 20120413 [ANNOUNCE] ibacm release 1.0.6 CVE-2012-4517
MLIST:[linux-scsi] 20100521 [PATCH 1/2] bfa: fix system crash when reading sysfs fc_host statistics CVE-2010-4343
MLIST:[linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl CVE-2010-4157
MLIST:[linux-sctp] 20080827 [PATCH 0/2] sctp: additional overflow fixes CVE-2008-4445
MLIST:[linux-sctp] 20080827 [PATCH 2/2] sctp: fix random memory dereference with SCTP_HMAC_IDENT option. CVE-2008-4445
MLIST:[linux-security-module] 20050928 readv/writev syscalls are not checked by lsm CVE-2006-1856
MLIST:[linux-security] 19961122 LSF Update#14: Vulnerability of the lpr program. CVE-1999-0032
MLIST:[linux-sparc] 20060130 Attempts to set date with 'date -s' hang the machine CVE-2006-0482
MLIST:[linux-sparc] 20060130 Re: Attempts to set date with 'date -s' hang the machine CVE-2006-0482
MLIST:[linux-sparc] 20100219 Execution possible in non-executable mappings in recent 2.6 kernels CVE-2010-1451
MLIST:[linux-sparc] 20100219 Re: Execution possible in non-executable mappings in recent 2.6 kernels CVE-2010-1451
MLIST:[linux-wireless] 20081029 [PATCH] libertas: fix buffer overrun CVE-2008-5134
MLIST:[linux-xfs] 20100620 [PATCH 0/4, V2] xfs: validate inode numbers in file handles correctly CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 2/4] xfs: validate untrusted inode numbers during lookup CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 3/4] xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 4/4] xfs: remove block number from inode lookup code CVE-2010-2943
MLIST:[listar-dev] 20060115 [EDev] Re: Potential vulnerability -- who to contact? CVE-2006-0332
MLIST:[listar-dev] 20060119 [EDev] Re: Potential vulnerability -- who to contact? CVE-2006-0332
MLIST:[lkml-patch] 20060821 dvb-core: Proper handling ULE SNDU length of 0 CVE-2006-4623
MLIST:[lkml] 20070129 [PATCH] Don't allow the stack to grow into hugetlb reserved regions CVE-2007-3739
MLIST:[lsh-bugs] 20050316 ANNOUNCE: LSH-2.0.1, fix for denial of service bug CVE-2005-0814
MLIST:[lsh-bugs] SECURITY: lshd leaks fd:s to user shells CVE-2006-0353
MLIST:[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR CVE-2009-4497
MLIST:[mad-dev] 20080112 Initite loop bug in libid3tag-0.15.0b CVE-2008-2109
MLIST:[mailman-announce] 20100905 Mailman security patch. CVE-2010-3089
MLIST:[mailman-announce] 20100909 Mailman security patch. CVE-2010-3089
MLIST:[mailman-announce] 20110213 Mailman Security Patch Announcement CVE-2011-0707
MLIST:[mailman-announce] 20110218 Mailman Security Patch Announcement CVE-2011-0707
MLIST:[mantisbt-announce] 20100914 MantisBT 1.2.3 Released CVE-2010-3070
MLIST:[mapserver-users] 20090326 MapServer 5.2.2 and 4.10.4 released with security fixes CVE-2009-0839 CVE-2009-0840 CVE-2009-0841 CVE-2009-0842 CVE-2009-0843 CVE-2009-1176 CVE-2009-1177
MLIST:[mapserver-users] 20100709 MapServer 5.6.4 and 4.10.6 released with important security fixes CVE-2010-2539 CVE-2010-2540
MLIST:[mapserver-users] 20110713 MapServer 6.0.1, 5.6.7 and 4.10.7 releases with security fixes CVE-2011-2703 CVE-2011-2704 CVE-2011-2975
MLIST:[mathopd] 20120202 security alert: directory traversal when using * in Location CVE-2012-1050
MLIST:[mediawiki-announce] 20081215 MediaWiki 1.13.3, 1.12.2, 1.6.11 security update CVE-2008-5249 CVE-2008-5250 CVE-2008-5252 CVE-2008-5687 CVE-2008-5688
MLIST:[mediawiki-announce] 20090713 MediaWiki security update: 1.15.1 and 1.14.1 CVE-2009-4589
MLIST:[mediawiki-announce] 20100407 MediaWiki security update: 1.15.3 and 1.16.0beta2 CVE-2010-1150
MLIST:[mediawiki-announce] 20100728 MediaWiki security release: 1.16.0 and 1.15.5 CVE-2010-2787 CVE-2010-2788 CVE-2010-2789
MLIST:[mediawiki-announce] 20110412 MediaWiki security release 1.16.3 CVE-2011-1578 CVE-2011-1579 CVE-2011-1580
MLIST:[mediawiki-announce] 20110414 MediaWiki security release 1.16.4 CVE-2011-1587
MLIST:[mediawiki-announce] 20110505 MediaWiki security release 1.16.5 CVE-2011-1765 CVE-2011-1766
MLIST:[mediawiki-announce] 20111128 MediaWiki security release 1.17.1 CVE-2011-4360 CVE-2011-4361
MLIST:[mediawiki-announce] 20140228 MediaWiki Security and Maintenance Releases: 1.22.3, 1.21.6 and 1.19.12 CVE-2014-2242 CVE-2014-2243 CVE-2014-2244
MLIST:[mhonarc-dev] 20101230 [bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS) CVE-2010-4524
MLIST:[mhonarc-dev] 20101230 [bug #32014] CVE-2010-1677: DoS when processing html messages with deep tag nesting CVE-2010-1677
MLIST:[mimedefang] 20070209 SECURITY: MIMEDefang 2.61 is Released CVE-2007-0884
MLIST:[misc] 20071010 OpenBSD XSS ;) CVE-2007-6700
MLIST:[mm-commits] 20100923 + sys_semctl-fix-kernel-stack-leakage.patch added to -mm tree CVE-2010-4083
MLIST:[mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree CVE-2011-1012
MLIST:[mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree CVE-2011-1163
MLIST:[mm-commits] 20110314 + proc-protect-mm-start_code-end_code-in-proc-pid-stat.patch added to -mm tree CVE-2011-0726
MLIST:[mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree CVE-2011-1577
MLIST:[mnemo] 20050422 Mnemo 1.1.4 (final) CVE-2005-1320
MLIST:[mod-security-users] 20130527 Availability of ModSecurity 2.7.4 Stable Release CVE-2013-2765
MLIST:[mod_python] 20040122 [ANNOUNCE] Mod_python 2.7.10 CVE-2004-0096
MLIST:[modperl-cvs] 20090401 svn commit: r761081 - in /perl/modperl/branches/1.x: Changes lib/Apache/Status.pm CVE-2009-0796
MLIST:[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status CVE-2009-0796
MLIST:[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack CVE-2006-5467
MLIST:[monkeysphere] 20101025 resolved monkeysphere security vulnerability CVE-2010-4096
MLIST:[mono-devel-list] 20080726 [Mono-dev] [PATCH] HTML encode attributes that might need encoding CVE-2008-3422
MLIST:[mono-patches] 20101012 [mono/mono] d3985be4: Search for dllimported shared libs in the base directory, not cwd. CVE-2010-4159
MLIST:[mpg123-devel] 20090405 mpg123 1.7.2 is out -- important security fix! CVE-2009-1301
MLIST:[mpm-itk] 20110321 CVE 2011-1176: Sometimes runs as root instead of the default Apache user CVE-2011-1176
MLIST:[mpm-itk] 20110321 mpm-itk version 2.2.17-01 released CVE-2011-1176
MLIST:[musl] 20120417 musl security advisory #001: stack buffer overflow in vfprintf with long output CVE-2012-2114
MLIST:[mute-net-discuss] 20050317 Houston, Houston we have problem! CVE-2005-4726
MLIST:[mute-net-discuss] 20050318 Re: Houston, Houston we have problem! CVE-2005-4726
MLIST:[mutt-dev] 20061004 security problem with temp files [was Re: mutt_adv_mktemp() ?] CVE-2006-5297 CVE-2006-5298
MLIST:[myserver-commit] 20070210 SF.net SVN: myserver: [2183] trunk/myserver/source/server.cpp CVE-2007-1588
MLIST:[nag] 20050422 Nag 1.1.3 (final) CVE-2005-1322
MLIST:[nagios-devel] 20081107 Security fixes completed CVE-2008-5027 CVE-2008-5028
MLIST:[nanog] 20090817 RE: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E01100" ? CVE-2009-2055
MLIST:[nanog] 20100827 Did your BGP crash today? CVE-2010-3035
MLIST:[nas-commits] 20120122 SF.net SVN: nas:[285] trunk/server/os/aulog.c CVE-2013-4258
MLIST:[nas] 20130807 nas: Multiple Vulnerabilities in nas 1.9.3 CVE-2013-4256 CVE-2013-4258
MLIST:[nas] 20130808 nas: Multiple Vulnerabilities in nas 1.9.3 CVE-2013-4258
MLIST:[nbd-general] 20131201 [Nbd] 3.5 released CVE-2013-6410
MLIST:[neon] 20070107 invalid chars cause sigserv in neon CVE-2007-0157
MLIST:[neon] 20080820 CVE-2008-3746: NULL pointer dereference in Digest domain support CVE-2008-3746
MLIST:[neon] 20080820 neon: release 0.28.3 (SECURITY) CVE-2008-3746
MLIST:[neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat CVE-2009-2473
MLIST:[neon] 20090818 CVE-2009-2474: fix handling of NUL in SSL cert subject names CVE-2009-2474
MLIST:[neon] 20090818 neon: release 0.28.6 (SECURITY) CVE-2009-2473 CVE-2009-2474
MLIST:[net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug CVE-2005-2177
MLIST:[net-snmp-announce] 20140225 Multiple Security-fix Net-SNMP Releases: 5.5.2.1, 5.6.2.1, and 5.7.2.1 CVE-2014-2284
MLIST:[netbsd-announce] 20051031 Announcing update 2.0.3 - source only CVE-2005-4691 CVE-2005-4779 CVE-2005-4783
MLIST:[netdev] 20050124 Re: skb_checksum_help CVE-2005-0449
MLIST:[netdev] 20090128 [PATCH] drivers/net/skfp: if !capable(CAP_NET_ADMIN): inverted logic CVE-2009-0675
MLIST:[netdev] 20090409 Oops in tun: bisected to Limit amount of queued packets per device CVE-2009-1897
MLIST:[netdev] 20100302 [PATCH 1/8] net: add limit for socket backlog CVE-2010-4251 CVE-2010-4805
MLIST:[netdev] 20100428 Re: [PATCH]: sctp: Fix skb_over_panic resulting from multiple invalid parameter errors (CVE-2010-1173) (v4) CVE-2010-1173
MLIST:[netdev] 20100521 tc: RTM_GETQDISC causes kernel OOPS CVE-2011-2525
MLIST:[netdev] 20100628 [PATCH net-2.6 1/2] ethtool: Fix potential kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[netdev] 20100705 bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference CVE-2011-0709
MLIST:[netdev] 20100706 Re: bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference CVE-2011-0709
MLIST:[netdev] 20100830 [PATCH] irda: Correctly clean up self->ias_obj on irda_bind() failure. CVE-2010-2954
MLIST:[netdev] 20100907 [PATCH net-2.6] niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL CVE-2010-3084
MLIST:[netdev] 20100915 [PATCH] net: SCTP remote/local Denial of Service vulnerability description and fix CVE-2010-3432
MLIST:[netdev] 20101021 TIPC security issues CVE-2010-3859
MLIST:[netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() CVE-2010-3859 CVE-2010-4160
MLIST:[netdev] 20101027 [PATCH 0/4] RFC: tipc int vs size_t fixes CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 3/4] tipc: Update arguments to use size_t for iovec array sizes CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 4/4] tipc: Fix bugs in sending of large amounts of byte-stream data CVE-2010-3859
MLIST:[netdev] 20101028 Re: [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() CVE-2010-3859
MLIST:[netdev] 20101028 Re: [Security] TIPC security issues CVE-2010-3865
MLIST:[netdev] 20101031 [PATCH 1/3] net: ax25: fix information leak to userland CVE-2010-3875
MLIST:[netdev] 20101031 [PATCH 2/3] net: packet: fix information leak to userland CVE-2010-3876
MLIST:[netdev] 20101031 [PATCH 3/3] net: tipc: fix information leak to userland CVE-2010-3877
MLIST:[netdev] 20101031 [SECURITY] L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[netdev] 20101102 Re: [SECURITY] CAN info leak/minor heap overflow CVE-2010-4565
MLIST:[netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow CVE-2010-3874 CVE-2010-4565
MLIST:[netdev] 20101102 [SECURITY] memory corruption in X.25 facilities parsing CVE-2010-3873
MLIST:[netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited. CVE-2010-3880
MLIST:[netdev] 20101104 Re: [SECURITY] memory corruption in X.25 facilities parsing CVE-2010-3873
MLIST:[netdev] 20101109 Re: [PATCH] Fix CAN info leak/minor heap overflow CVE-2010-4565
MLIST:[netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters CVE-2010-4158
MLIST:[netdev] 20101110 Re: [PATCH] Fix CAN info leak/minor heap overflow CVE-2010-4565
MLIST:[netdev] 20101110 Re: [PATCH] Prevent reading uninitialized memory with socket filters CVE-2010-4161
MLIST:[netdev] 20101110 Re: possible kernel oops from user MSS CVE-2010-4165
MLIST:[netdev] 20101110 can-bcm: fix minor heap overflow CVE-2010-3874
MLIST:[netdev] 20101110 possible kernel oops from user MSS CVE-2010-4165
MLIST:[netdev] 20101111 [SECURITY] [PATCH] Prevent crashing when parsing bad X.25 CVE-2010-4164
MLIST:[netdev] 20101124 [PATCH] af_unix: limit unix_tot_inflight CVE-2010-4249
MLIST:[netdev] 20101209 NULL dereference in econet AUN-over-UDP receive CVE-2010-4342
MLIST:[netdev] 20101209 Re: NULL dereference in econet AUN-over-UDP receive CVE-2010-4342
MLIST:[netdev] 20101222 [PATCH] irda: prevent integer underflow in IRLMP_ENUMDEVICES CVE-2010-4529
MLIST:[netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network CVE-2011-1173
MLIST:[netdev] 20110420 Add missing socket check in can/bcm release. CVE-2011-1598
MLIST:[netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release CVE-2011-1748
MLIST:[netdev] 20110601 Re: inet_diag insufficient validation? CVE-2011-2213
MLIST:[netdev] 20110601 inet_diag insufficient validation? CVE-2011-2213
MLIST:[netdev] 20110603 Re: inet_diag insufficient validation? CVE-2011-2213
MLIST:[netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit() CVE-2011-2213
MLIST:[netdev] 20130911 Use-after-free in TUNSETIFF CVE-2013-4343
MLIST:[netdev] 20140310 [PATCH 0/5] skbuff: fix skb_segment with zero copy skbs CVE-2014-0131
MLIST:[netdev] 20140310 [PATCH 5/5] skbuff: skb_segment: orphan frags before copying CVE-2014-0131
MLIST:[netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
MLIST:[netfilter-devel] 20110317 [PATCH v2] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
MLIST:[netfilter-devel] 20120330 Re: `iptables -m tcp --syn` doesn't do what the man says CVE-2012-2663
MLIST:[netfilter] 20110310 [PATCH] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
MLIST:[nfsv4] 20061116 Status of execute permissions in NFSv4 ACLs ? CVE-2009-1630
MLIST:[nfsv4] 20061117 [Patch] Re: Status of execute permissions in NFSv4 ACLs ? CVE-2009-1630
MLIST:[ngIRCd-ML] 20050126 ngIRCd 0.8.2 CVE-2005-0199
MLIST:[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security CVE-2007-6062
MLIST:[ngIRCd-ML] 20130215 ngIRCd 20.2 CVE-2013-1747
MLIST:[ngIRCd-ML] 20130217 ngIRCd 20.2 CVE-2013-1747
MLIST:[nginx-announce] 20120605 security advisory CVE-2011-4963
MLIST:[nginx-announce] 20130507 nginx security advisory (CVE-2013-2028) CVE-2013-2028
MLIST:[nginx-announce] 20130513 nginx security advisory (CVE-2013-2070) CVE-2013-2070
MLIST:[nginx-announce] 20131119 nginx security advisory (CVE-2013-4547) CVE-2013-4547
MLIST:[nginx-announce] 20140318 nginx security advisory (CVE-2014-0133) CVE-2014-0133
MLIST:[nginx] 20091030 Re: null pointer dereference vulnerability in 0.1.0-0.8.13. CVE-2009-3896
MLIST:[ngircd-ml] 20130823 ngIRCd 20.3 CVE-2013-5580
MLIST:[nss-pam-ldapd-announce] 20110309 nss-pam-ldapd security advisory (CVE-2011-0438) CVE-2011-0438
MLIST:[nss-pam-ldapd-announce] 20130218 nss-pam-ldapd security advisory (CVE-2013-0288) CVE-2013-0288
MLIST:[ocfs2-devel] 20110217 [PATCH] Treat writes as new when holes span across page boundaries CVE-2011-0463
MLIST:[ode-user] 20090808 [ANNOUNCE] Apache ODE 1.3.3 CVE-2008-2370
MLIST:[oneclickorgs-devspace] 20111117 Announce: One Click Orgs 1.2.3 CVE-2011-4552 CVE-2011-4553 CVE-2011-4554 CVE-2011-4555 CVE-2011-4677 CVE-2011-4678
MLIST:[onnv-notify] 20081011 6507173 Sockets should allocate minor numbers from higher order arena CVE-2009-0480
MLIST:[onnv-notify] 20081021 6300710 recursive mutex_enter in nfs4rename_persistent_fh() CVE-2009-0069
MLIST:[openbsd-cvs] 20070103 CVS: cvs.openbsd.org: www CVE-2007-0085
MLIST:[openbsd-cvs] 20070103 Re: CVS: cvs.openbsd.org: src CVE-2007-0085
MLIST:[openbsd-cvs] 20080708 CVS: cvs.openbsd.org: src CVE-2008-3196
MLIST:[openbsd-cvs] 20080708 Re: CVS: cvs.openbsd.org: src CVE-2008-3196
MLIST:[openbsd-misc] 20050304 Re: FreeBSD hiding security stuff CVE-2005-0109
MLIST:[openbsd-misc] 20070627 Intel Core 2 CVE-2006-7215
MLIST:[openbsd-ports] 20040717 UPDATE: cyrus-sasl-2.1.19 CVE-2005-0373
MLIST:[openbsd-security-announce] 20040513 procfs vulnerability CVE-2004-0482
MLIST:[openbsd-security-announce] 20080111 errata 005 for OpenBSD 4.2: local users can provoke a kernel panic CVE-2008-0384
MLIST:[openbsd-security-announce] 20091005 OpenBSD patch: XMM exceptions incorrectly handled in i386 kernel CVE-2009-3572
MLIST:[openldap-announce] 20060801 OpenLDAP 2.3.25 available CVE-2006-4600
MLIST:[openldap-announce] 20071026 OpenLDAP 2.3.39 available CVE-2007-5707 CVE-2007-5708
MLIST:[openldap-announce] 20110212 OpenLDAP 2.4.24 available CVE-2011-1024 CVE-2011-1025 CVE-2011-1081
MLIST:[openldap-bugs] 20070411 (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash CVE-2007-6698
MLIST:[openldap-bugs] 20070411 Re: (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash CVE-2007-6698
MLIST:[openldap-technical] 20100429 ppolicy master/slave issue CVE-2011-1024
MLIST:[opensc-announce] 20080731 OpenSC Security Vulnerability and new Versions of OpenSC, OpenCT, LibP11, Pam_P11, Engine_PKCS11 CVE-2008-2235
MLIST:[opensc-announce] 20080827 opensc 0.11.6 with fixed security update CVE-2008-3972
MLIST:[opensc-announce] 20090226 OpenSC Security Advisory CVE-2009-0368
MLIST:[opensc-announce] 20090508 OpenSC 0.11.8 released with security update CVE-2009-1603
MLIST:[openssh-unix-announce] 20050901 Announce: OpenSSH 4.2 released CVE-2005-2797 CVE-2005-2798
MLIST:[openssh-unix-dev] 20040127 OpenSSH - Connection problem when LoginGraceTime exceeds time CVE-2004-2069
MLIST:[openssh-unix-dev] 20040128 Re: OpenSSH - Connection problem when LoginGraceTime exceeds time CVE-2004-2069
MLIST:[openssh-unix-dev] 20060927 Announce: OpenSSH 4.4 released CVE-2006-4924 CVE-2006-5051 CVE-2006-5052
MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_0_9_8-stable: openssl/ CHANGES openssl/crypto/b... CVE-2009-3245
MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_1_0_0-stable: openssl/crypto/bn/ bn_div.c bn_gf... CVE-2009-3245
MLIST:[openssl-cvs] 20100223 OpenSSL: openssl/crypto/bn/ bn_div.c bn_gf2m.c openssl/crypto/ec... CVE-2009-3245
MLIST:[openssl-dev] 20060829 Crash inside SMIME_read_PKCS7 if input is not MIME CVE-2006-7250
MLIST:[openssl-dev] 20080512 possible memory leak in zlib compression CVE-2008-1678
MLIST:[openssl-dev] 20090516 [openssl.org #1930] [PATCH] DTLS record buffer limitation bug CVE-2009-1377
MLIST:[openssl-dev] 20090516 [openssl.org #1931] [PATCH] DTLS fragment handling memory leak CVE-2009-1378
MLIST:[openssl-dev] 20090518 Re: [openssl.org #1931] [PATCH] DTLS fragment handling memory leak CVE-2009-1378
MLIST:[openssl-dev] 20100807 Re: openssl-1.0.0a and glibc detected sthg ;) CVE-2010-2939
MLIST:[openssl-dev] 20100807 openssl-1.0.0a and glibc detected sthg ;) CVE-2010-2939
MLIST:[openssl-dev] 20100808 Re: openssl-1.0.0a and glibc detected sthg ;) CVE-2010-2939
MLIST:[openssl-dev] 20120210 [openssl.org #2711] Fix possible NULL dereference on bad MIME headers CVE-2006-7250
MLIST:[openstack-announce] 20130219 [OSSA 2013-004] Information leak and Denial of Service using XML entities (CVE-2013-1664, CVE-2013-1665) CVE-2013-1664 CVE-2013-1665
MLIST:[openstack-announce] 20130509 [OSSA 2013-010] Nova uses insecure keystone middleware tmpdir by default (CVE-2013-2030) CVE-2013-2030
MLIST:[openstack-announce] 20130516 [OSSA 2013-012] Nova fails to verify image virtual size (CVE-2013-2096) CVE-2013-2096
MLIST:[openstack-announce] 20130828 [OSSA 2013-024] Resource limit circumvention in Nova private flavors (CVE-2013-4278) CVE-2013-4278
MLIST:[openstack-announce] 20131218 [OSSA 2013-037] Nova compute DoS through ephemeral disk backing files (CVE-2013-6437) CVE-2013-6437
MLIST:[openstack] 20111213 [OSSA 2011-001] Path traversal issues registering malicious images using EC2 API (CVE-2011-4596) CVE-2011-4596
MLIST:[openstack] 20120111 [OSSA 2012-001] Tenant bypass by authenticated users using OpenStack API (CVE-2012-0030) CVE-2012-0030
MLIST:[openstack] 20120417 [OSSA 2012-004] XSS vulnerability in Horizon log viewer CVE-2012-2094
MLIST:[openstack] 20120419 [OSSA 2012-005] No quota enforced on security group rules CVE-2012-2101
MLIST:[openstack] 20120603 [OSSA 2012-008] Arbitrary file injection/corruption through directory traversal issues (CVE-2012-3360, CVE-2012-3361) CVE-2012-3360 CVE-2012-3361
MLIST:[openstack] 20120606 [OSSA 2012-007] Security groups fail to be set correctly (CVE-2012-2654) CVE-2012-2654
MLIST:[openstack] 20120711 [OSSA 2012-009] Scheduler denial of service through scheduler_hints (CVE-2012-3371) CVE-2012-3371
MLIST:[openstack] 20120830 Re: [OSSA 2012-012] Horizon, Open redirect through 'next' parameter (CVE-2012-3540) CVE-2012-3540
MLIST:[openstack] 20120830 [OSSA 2012-012] Horizon, Open redirect through 'next' parameter (CVE-2012-3542) CVE-2012-3540
MLIST:[openstack] 20120830 [OSSA 2012-013] Keystone, Lack of authorization for adding users to tenants (CVE-2012-3542) CVE-2012-3542
MLIST:[openstack] 20120928 [OSSA 2012-015] Some actions in Keystone admin API do not validate token (CVE-2012-4456) CVE-2012-4456
MLIST:[openstack] 20120928 [OSSA 2012-016] Token authorization for a user in a disabled tenant is allowed (CVE-2012-4457) CVE-2012-4457
MLIST:[openstack] 20130129 [OSSA 2013-002] Backend password leak in Glance error message (CVE-2013-0212) CVE-2013-0212
MLIST:[openstack] 20130314 [OSSA 2013-008] Nova DoS by allocating all Fixed IPs (CVE-2013-1838) CVE-2013-1838
MLIST:[opensuse-security] 20120325 SQL injection attack possible when connecting to PostgreSQL 9.1 with version 8.1 JDBC driver CVE-2012-1618
MLIST:[opensuse-updates] 20100810 openSUSE-SU-2010:0496-1 (important): strongswan: fixing snprintf overflows CVE-2010-2628
MLIST:[opensuse-updates] 20101022 openSUSE-SU-2010:0756-1 (moderate): festival security update CVE-2010-3996
MLIST:[opensuse-updates] 20110314 openSUSE-SU-2011:0171-1 (moderate): aaa_base security update CVE-2011-0461
MLIST:[opensuse-updates] 20110322 openSUSE-SU-2011:0207-1 (moderate): aaa_base security update CVE-2011-0468
MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0313-1 (critical): moonlight security update CVE-2011-0989 CVE-2011-0990 CVE-2011-0991 CVE-2011-0992
MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0314-1 (moderate): python-feedparser security update CVE-2009-5065 CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[opensuse-updates] 20110512 openSUSE-SU-2011:0483-1 (moderate): New pure-ftpd version fix STARTTLS issues (CVE-2011-1575). CVE-2011-1575
MLIST:[openvms-alerts] 20071003 VMS83A_LAN-V0200, ECO Kit Release CVE-2007-5241 CVE-2007-5242
MLIST:[openvms-alerts] 20071003 VMS83I_LAN-V0600, ECO Kit Release CVE-2007-5241 CVE-2007-5242
MLIST:[openwall-announce] 20070814 Linux 2.4.35-ow2 CVE-2007-3848
MLIST:[or-announce] 20050811 Tor security advisory: DH handshake flaw CVE-2005-2643
MLIST:[or-announce] 20060829 Tor security advisory: clients will route traffic CVE-2006-4508
MLIST:[or-announce] 20070525 Tor 0.1.2.14 is released CVE-2007-3165
MLIST:[or-announce] 20070723 Tor 0.1.2.15 is released CVE-2007-4096 CVE-2007-4097 CVE-2007-4098 CVE-2007-4099
MLIST:[or-announce] 20070802 Tor 0.1.2.16 is released CVE-2007-4174
MLIST:[or-announce] 20070901 Tor security advisory: cross-protocol http form attack CVE-2007-4174
MLIST:[or-announce] 20090122 Tor 0.2.0.33 is released CVE-2009-0414
MLIST:[or-announce] 20090209 Tor 0.2.0.34 is released (security fixes) CVE-2009-0936 CVE-2009-0937 CVE-2009-0938 CVE-2009-0939
MLIST:[or-announce] 20090625 Tor 0.2.0.35 is released CVE-2009-2425 CVE-2009-2426
MLIST:[or-announce] 20100121 Tor 0.2.1.22 is released (security fix) CVE-2010-0383 CVE-2010-0385
MLIST:[or-announce] 20101220 Tor 0.2.1.28 is released (security patches) CVE-2010-1676
MLIST:[or-announce] 20110117 Tor 0.2.1.29 is released (security patches) CVE-2011-0015 CVE-2011-0016 CVE-2011-0427 CVE-2011-0490 CVE-2011-0491 CVE-2011-0492 CVE-2011-0493
MLIST:[or-talk] 20070225 "Low-Resource Routing Attacks Against Anonymous Systems" CVE-2007-1103
MLIST:[or-talk] 20070225 Re: "Low-Resource Routing Attacks Against Anonymous Systems" CVE-2007-1103
MLIST:[or-talk] 20070225 Re: ISP controlling entry/exti ("Low-Resource Routing Attacks Against Anonymous Systems") CVE-2007-1103
MLIST:[or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18 CVE-2007-6722 CVE-2007-6723 CVE-2007-6724
MLIST:[or-talk] 20071031 Re: Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18 CVE-2007-6723
MLIST:[or-talk] 20100120 Re: Tor Project infrastructure updates in response to security breach CVE-2010-0383
MLIST:[or-talk] 20100120 Tor 0.2.2.7-alpha is out CVE-2010-0383 CVE-2010-0384 CVE-2010-0385
MLIST:[or-talk] 20100120 Tor Project infrastructure updates in response to security breach CVE-2010-0383
MLIST:[oracle-l] 20061201 Re: Oracle 9i on Windows 2003 -- Vulnerability Question CVE-2007-2110
MLIST:[oss-sec] 20140320 CVE request -- kernel: net: potential information leak when ubuf backed skbs are skb_zerocopy()ied CVE-2014-2568
MLIST:[oss-secuirty] 20130325 Re: CVE request: ibutils improper use of files in /tmp CVE-2013-2561
MLIST:[oss-secuirty] 20130326 Re: CVE request: ibutils improper use of files in /tmp CVE-2013-2561
MLIST:[oss-secuirty] 20130806 [OSSA 2013-020] Denial of Service in Nova network source security groups (CVE-2013-4185) CVE-2013-4185
MLIST:[oss-secuirty] 20131210 CVE-2012-6303 WaveSurfer and Snack Sound Toolkit buffer overflows CVE-2012-6303
MLIST:[oss-securit] 20131211 CVE request: devscripts (uscan) command execution flaw CVE-2013-7050
MLIST:[oss-securit] 20131211 Re: CVE request: devscripts (uscan) command execution flaw CVE-2013-7050
MLIST:[oss-security 20080701 Re: [oss-security] openldap DoS CVE-2008-2952
MLIST:[oss-security] 20080311 CVE request: insecure X11 handling in ltsp CVE-2008-1293
MLIST:[oss-security] 20080312 Re: CVE request: insecure X11 handling in ltsp CVE-2008-1293
MLIST:[oss-security] 20080401 CVE id request: squid CVE-2008-1612
MLIST:[oss-security] 20080406 Re: Security fixes in m4-1.4.11 CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080406 Security fixes in m4-1.4.11 CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080407 Re: Security fixes in m4-1.4.11 CVE-2008-1687
MLIST:[oss-security] 20080411 CVE request: openfire <3.5.0 Denial of Service CVE-2008-1728
MLIST:[oss-security] 20080422 CVE Request: inspircd CVE-2008-1925
MLIST:[oss-security] 20080425 CVE request: licq denial of service CVE-2008-1996
MLIST:[oss-security] 20080502 CVE Request (PHP) CVE-2007-4850 CVE-2008-0599 CVE-2008-0674 CVE-2008-2050 CVE-2008-2051
MLIST:[oss-security] 20080514 Re: CVE id request: uudeview CVE-2008-2266
MLIST:[oss-security] 20080520 Re: CVE ID request: GNUTLS CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[oss-security] 20080521 New Xen ioemu: PVFB backend issue CVE-2008-1952
MLIST:[oss-security] 20080521 Re: CVE request: mtr CVE-2008-2357
MLIST:[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) CVE-2007-5962
MLIST:[oss-security] 20080521 vsftpd CVE-2007-5962 (Red Hat / Fedora specific) CVE-2007-5962
MLIST:[oss-security] 20080529 CVE-2008-2363: pan - heap overflow CVE-2008-2363
MLIST:[oss-security] 20080530 Re: CVE id request: uudeview CVE-2008-2266
MLIST:[oss-security] 20080531 Re: CVE id request: ikiwiki CVE-2008-0169
MLIST:[oss-security] 20080604 CVE id request: slash CVE-2008-2231
MLIST:[oss-security] 20080604 Re: CVE id request: slash CVE-2008-2231
MLIST:[oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing CVE-2008-0960
MLIST:[oss-security] 20080610 Re: exploitability of off-by-one in motion webserver CVE-2008-2654
MLIST:[oss-security] 20080610 exploitability of off-by-one in motion webserver CVE-2008-2654
MLIST:[oss-security] 20080611 CVE id request: nasm off-by-one CVE-2008-2719
MLIST:[oss-security] 20080611 Re: CVE id request: nasm off-by-one CVE-2008-2719
MLIST:[oss-security] 20080611 Re: exploitability of off-by-one in motion webserver CVE-2008-2654
MLIST:[oss-security] 20080613 CVE Id Request: fetchmail <= 6.3.8 DoS when logging long headers in -v -v mode CVE-2008-2711
MLIST:[oss-security] 20080615 CVE id request: Clamav CVE-2008-2713
MLIST:[oss-security] 20080616 CVE Id request: vim CVE-2008-2712
MLIST:[oss-security] 20080617 Re: CVE id request: Clamav CVE-2008-2713
MLIST:[oss-security] 20080619 CVE request: php 5.2.6 ext/imap buffer overflows CVE-2008-2829
MLIST:[oss-security] 20080619 Re: query on a pppol2tp_recvmsg() fix - security relevant? CVE-2008-2750
MLIST:[oss-security] 20080624 Re: CVE request: php 5.2.6 ext/imap buffer overflows CVE-2008-2829
MLIST:[oss-security] 20080626 CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25 CVE-2008-2365
MLIST:[oss-security] 20080627 CVE Request (pidgin) CVE-2008-2956 CVE-2008-2957
MLIST:[oss-security] 20080630 CVE id request mercurial:Insufficient input validation CVE-2008-2942
MLIST:[oss-security] 20080630 CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080630 CVE-2008-2375 older vsftpd authentication memory leak CVE-2008-2375
MLIST:[oss-security] 20080701 Re: CVE id request mercurial:Insufficient input validation CVE-2008-2942
MLIST:[oss-security] 20080701 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080702 More ruby integer overflows (rb_ary_fill / Array#fill) CVE-2008-2376
MLIST:[oss-security] 20080702 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080703 2.6.25.10 security fixes, please assign CVE id CVE-2008-2812 CVE-2008-3077
MLIST:[oss-security] 20080703 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080703 Re: Re: CVE Request (pidgin) CVE-2008-2927
MLIST:[oss-security] 20080704 Re: Re: CVE Request (pidgin) CVE-2008-2927
MLIST:[oss-security] 20080707 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080708 CVE-2008-2931 kernel: missing check before setting mount propagation CVE-2008-2931
MLIST:[oss-security] 20080708 Re: CVE id request: Clamav CVE-2008-3215
MLIST:[oss-security] 20080708 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080708 Re: CVE request: moodle xss in < 1.8.5 CVE-2008-1502
MLIST:[oss-security] 20080708 Re: CVE-2008-2931 kernel: missing check before setting mount propagation CVE-2008-2931
MLIST:[oss-security] 20080708 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080709 CVE id request: projectl CVE-2008-3216
MLIST:[oss-security] 20080709 CVE request: PowerDNS recursor source port randomization CVE-2008-3217
MLIST:[oss-security] 20080710 CVE id request: libavformat CVE-2008-3162
MLIST:[oss-security] 20080710 CVE request: multiple drupal issues in < 6.3,5.8 CVE-2008-3218 CVE-2008-3219 CVE-2008-3220 CVE-2008-3221 CVE-2008-3222 CVE-2008-3223
MLIST:[oss-security] 20080710 Re: DNS vulnerability: other relevant software CVE-2008-3217
MLIST:[oss-security] 20080710 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080712 CVE id request: op CVE-2008-3229
MLIST:[oss-security] 20080712 CVE request: phpbb < 3.0.2 CVE-2008-3224
MLIST:[oss-security] 20080712 CVE requests: joomla <1.5.4 CVE-2008-3225 CVE-2008-3226 CVE-2008-3227 CVE-2008-3228
MLIST:[oss-security] 20080712 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080713 CVE requests: crashers by zzuf CVE-2008-3230 CVE-2008-3231
MLIST:[oss-security] 20080713 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080713 Re: openldap DoS CVE-2008-2952
MLIST:[oss-security] 20080714 CVE request: dotclear < 1.2.8 CVE-2008-3232
MLIST:[oss-security] 20080714 Re: CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25 CVE-2008-2365
MLIST:[oss-security] 20080715 CVE request: Wordpress XSS CVE-2008-3233
MLIST:[oss-security] 20080715 CVE request: phpmyadmin < 2.11.7.1 CVE-2008-3197
MLIST:[oss-security] 20080715 Re: CVE id request: Clamav CVE-2008-3215
MLIST:[oss-security] 20080715 Re: Re: More arbitrary code executions in Netrw CVE-2008-3074 CVE-2008-3075 CVE-2008-3432
MLIST:[oss-security] 20080716 Re: CVE id request: libavformat CVE-2008-3162
MLIST:[oss-security] 20080716 Re: CVE request: PowerDNS recursor source port randomization CVE-2008-3217
MLIST:[oss-security] 20080716 Re: CVE request: Wordpress XSS CVE-2008-3233
MLIST:[oss-security] 20080716 Re: CVE request: phpmyadmin < 2.11.7.1 CVE-2008-2960
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw CVE-2008-3432
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080801 Re: CVE request: phpwebgallery < 1.7.2 CVE-2008-3451
MLIST:[oss-security] 20080804 CVE id request: openttd CVE-2008-3547
MLIST:[oss-security] 20080805 Re: CVE id request: openttd CVE-2008-3547
MLIST:[oss-security] 20080807 Re: CVE id request: openttd CVE-2008-3547
MLIST:[oss-security] 20080808 CVE request: php-5.2.6 overflow issues CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080808 Re: CVE request: php-5.2.6 overflow issues CVE-2008-3659
MLIST:[oss-security] 20080813 Re: CVE request: php-5.2.6 overflow issues CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080815 CVE request for neon CVE-2008-3746
MLIST:[oss-security] 20080815 CVE-2008-3276 Linux kernel dccp_setsockopt_change() integer overflow CVE-2008-3276
MLIST:[oss-security] 20080819 Re: swfdec 0.6.8 stable update CVE-2008-3796
MLIST:[oss-security] 20080819 swfdec 0.6.8 stable update CVE-2008-3796
MLIST:[oss-security] 20080819 wordpress 2.6.1 CVE-2008-3747
MLIST:[oss-security] 20080820 FW: CVE-2008-1668 - ftpd 2.4 - unauthorized root access - patch details CVE-2008-1668
MLIST:[oss-security] 20080820 Re: CVE request for neon CVE-2008-3746
MLIST:[oss-security] 20080820 Re: wordpress 2.6.1 CVE-2008-3747
MLIST:[oss-security] 20080824 Re: CVE id request: vlc CVE-2008-3794
MLIST:[oss-security] 20080825 CVE Request (gpicview) CVE-2008-3791
MLIST:[oss-security] 20080825 CVE Request (ruby) CVE-2008-3790
MLIST:[oss-security] 20080825 CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API CVE-2008-3792
MLIST:[oss-security] 20080826 CVE Request (samba) CVE-2008-3789
MLIST:[oss-security] 20080826 CVE-2008-3526 Linux kernel sctp_setsockopt_auth_key() integer overflow CVE-2008-3526
MLIST:[oss-security] 20080826 Re: CVE Request (gpicview) CVE-2008-3791
MLIST:[oss-security] 20080826 Re: CVE Request (ruby) CVE-2008-3790
MLIST:[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API CVE-2008-3792
MLIST:[oss-security] 20080827 CVE request: mono Sys.Web header injection CVE-2008-3906
MLIST:[oss-security] 20080829 CVE-2008-3525 kernel: missing capability checks in sbni_ioctl() CVE-2008-3525
MLIST:[oss-security] 20080831 Re: CVE Request (gpicview) CVE-2008-3904
MLIST:[oss-security] 20080901 CVE id request: newsbeuter CVE-2008-3907
MLIST:[oss-security] 20080903 CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) CVE-2008-3905
MLIST:[oss-security] 20080903 Re: CVE Request (gpicview) CVE-2008-3904
MLIST:[oss-security] 20080903 django CSRF vuln CVE-2008-3909
MLIST:[oss-security] 20080903 request for CVE: clamav 0.94 release CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080904 CVE id request: dns2tcp CVE-2008-3910
MLIST:[oss-security] 20080904 CVE request: kernel: dio: zero struct dio with kzalloc instead of manually CVE-2007-6716
MLIST:[oss-security] 20080904 CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl CVE-2008-3915
MLIST:[oss-security] 20080904 CVE request: kernel: sunrpc: fix possible overrun on read of /proc/sys/sunrpc/transports CVE-2008-3911
MLIST:[oss-security] 20080904 Re: CVE Request (ruby -- DNS spoofing vulnerability CVE-2008-3905
MLIST:[oss-security] 20080904 Re: CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl CVE-2008-3915
MLIST:[oss-security] 20080904 Re: request for CVE: clamav 0.94 release CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080906 CVE id requests: gmanedit CVE-2008-3971
MLIST:[oss-security] 20080906 CVE request: pam_mount < 0.47 missing security checks CVE-2008-3970
MLIST:[oss-security] 20080908 Re: CVE request for bitlbee CVE-2008-3969
MLIST:[oss-security] 20080909 CVE request (libpng) CVE-2008-3964
MLIST:[oss-security] 20080909 CVE request: MySQL empty bit-string literal server crash CVE-2008-3963
MLIST:[oss-security] 20080909 CVE request: mybb < 1.4.1 CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE id requests: gmanedit CVE-2008-3971
MLIST:[oss-security] 20080909 Re: CVE request (libpng) CVE-2008-3964
MLIST:[oss-security] 20080909 Re: CVE request for bitlbee CVE-2008-3969
MLIST:[oss-security] 20080909 Re: CVE request: MySQL empty bit-string literal server crash CVE-2008-3963
MLIST:[oss-security] 20080909 Re: CVE request: MySQL incomplete fix for CVE-2008-2079 CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080909 Re: CVE request: mybb < 1.4.1 CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE request: pam_mount < 0.47 missing security checks CVE-2008-3970
MLIST:[oss-security] 20080909 Re: cve request: punbb < 1.2.20 xss CVE-2008-3968
MLIST:[oss-security] 20080909 Re: opensc 0.11.6 with fixed security update CVE-2008-3972
MLIST:[oss-security] 20080909 Re: ssmtp =2.62 unitialized memory disclosure CVE-2008-3962
MLIST:[oss-security] 20080909 cve request: punbb < 1.2.20 xss CVE-2008-3968
MLIST:[oss-security] 20080909 ssmtp =2.62 unitialized memory disclosure CVE-2008-3962
MLIST:[oss-security] 20080910 [oCERT-2008-012] Horde, Popoon frameworks common input sanitization errors (XSS) CVE-2008-3823 CVE-2008-3824
MLIST:[oss-security] 20080911 CVE request for Joomla multiple vuln. CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: joomla < 1.5.7 CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: wordpress < 2.6.2 CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080911 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080911 Re: [oss-list] CVE request (vim) CVE-2008-4101
MLIST:[oss-security] 20080911 Re: ssmtp =2.62 unitialized memory disclosure CVE-2008-3962
MLIST:[oss-security] 20080911 [oss-list] CVE request (vim) CVE-2008-4101
MLIST:[oss-security] 20080913 CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection CVE-2008-4094
MLIST:[oss-security] 20080915 CVE Request (python) CVE-2008-4108
MLIST:[oss-security] 20080915 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080915 Re: CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection CVE-2008-4094
MLIST:[oss-security] 20080915 Re: [oss-list] CVE request (vim) CVE-2008-4101
MLIST:[oss-security] 20080915 Re: phpMyAdmin code execution (CVE request) CVE-2008-4096
MLIST:[oss-security] 20080915 phpMyAdmin code execution (CVE request) CVE-2008-4096
MLIST:[oss-security] 20080916 CVE request: kernel: splice: fix bad unlock_page() in error case CVE-2008-4302
MLIST:[oss-security] 20080916 Re: CVE Request (python) CVE-2008-4108
MLIST:[oss-security] 20080916 Re: CVE request: MySQL incomplete fix for CVE-2008-2079 CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080916 Re: CVE request: joomla < 1.5.7 CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080916 Re: CVE request: wordpress < 2.6.2 CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080918 CVE Request (mercurial) CVE-2008-4297
MLIST:[oss-security] 20080918 CVE Request (openswan, emacspeak, cman) CVE-2008-4192
MLIST:[oss-security] 20080918 CVE-2008-3528 Linux kernel ext[234] directory corruption DoS CVE-2008-3528
MLIST:[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080919 viewvc security flaw? CVE-2008-4325
MLIST:[oss-security] 20080920 Re: viewvc security flaw? CVE-2008-4325
MLIST:[oss-security] 20080923 CVE req: phpmyadmin < 2.11.9.2 xss CVE-2008-4326
MLIST:[oss-security] 20080923 Re: CVE Request (openswan, emacspeak, cman) CVE-2008-4192
MLIST:[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080924 CVE request: kernel: open() call allows setgid bit when user is not in new file's group CVE-2008-4210
MLIST:[oss-security] 20080924 Re: CVE id request: fraud2 CVE-2008-4201
MLIST:[oss-security] 20080924 Re: CVE request: kernel: open() call allows setgid bit when user is not in new file's group CVE-2008-4210
MLIST:[oss-security] 20080925 CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-4445
MLIST:[oss-security] 20080926 CVE Request (lighttpd) CVE-2008-4298
MLIST:[oss-security] 20080926 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-3792 CVE-2008-4113 CVE-2008-4445
MLIST:[oss-security] 20080927 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-4445
MLIST:[oss-security] 20080929 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-4445
MLIST:[oss-security] 20080930 CVE Request (xen) CVE-2008-4405
MLIST:[oss-security] 20080930 Re: CVE request: lighttpd issues CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20080930 Re: Re: CVE request: lighttpd issues CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20081001 CVE id request: sabre CVE-2008-4406
MLIST:[oss-security] 20081002 CVE request: XSS in mediawiki 1.13.1 and 1.12.0 CVE-2008-4408
MLIST:[oss-security] 20081002 CVE-2008-3832 kernel: null pointer dereference in utrace_control CVE-2008-3832
MLIST:[oss-security] 20081002 libxml2 "ampproblem" DoS CVE-2008-4409
MLIST:[oss-security] 20081003 CVE request: kernel: x86: Fix broken LDT access in VMI CVE-2008-4410
MLIST:[oss-security] 20081003 CVE-2008-3833 kernel: remove SUID when splicing into an inode CVE-2008-3833
MLIST:[oss-security] 20081003 Re: regarding CVE-2008-4382 & CVE-2008-4381 CVE-2008-4381
MLIST:[oss-security] 20081003 regarding CVE-2008-4382 & CVE-2008-4381 CVE-2008-4381
MLIST:[oss-security] 20081004 Re: CVE Request (xen) CVE-2008-4405
MLIST:[oss-security] 20081006 CVE request - (vim : netrw plugin - ftp user credentials disclosure) CVE-2008-4677
MLIST:[oss-security] 20081006 CVE request: kernel: sctp: Fix kernel panic while process protocol violation parameter CVE-2008-4618
MLIST:[oss-security] 20081007 CVE request: crashers / potential security risks in mplayer CVE-2007-6718 CVE-2008-4610
MLIST:[oss-security] 20081008 CVE request: kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH CVE-2008-4576
MLIST:[oss-security] 20081009 lynx lynxcgi handler flaw CVE-2008-4690
MLIST:[oss-security] 20081013 CVE id request: qemu CVE-2008-4553
MLIST:[oss-security] 20081013 CVE request: kernel: don't allow splice() to files opened with O_APPEND CVE-2008-4554
MLIST:[oss-security] 20081013 Re: CVE Request CVE-2008-4579 CVE-2008-4580
MLIST:[oss-security] 20081014 Re: CVE id request: qemu CVE-2008-4553
MLIST:[oss-security] 20081014 Re: CVE request: kernel: don't allow splice() to files opened with O_APPEND CVE-2008-4554
MLIST:[oss-security] 20081015 CVE request: jhead CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Re: CVE request: jhead CVE-2008-4575 CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Vim CVE issues cleanup (plugins tar.vim, zip.vim) - CVE-2008-3074 and CVE-2008-3075 CVE-2008-2712 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20081016 CVE request - Vim netrw.plugin CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081016 Re: CVE Request CVE-2008-4580
MLIST:[oss-security] 20081016 Re: CVE request: jhead CVE-2008-4639 CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081019 CVE id request: vlc CVE-2008-4654 CVE-2008-4686
MLIST:[oss-security] 20081019 CVE request: mantisbt < 1.1.4: RCE CVE-2008-4687
MLIST:[oss-security] 20081020 CVE request (vim) CVE-2008-3074 CVE-2008-3075 CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081020 Re: CVE request: mantisbt < 1.1.4: RCE CVE-2008-4688 CVE-2008-4689
MLIST:[oss-security] 20081021 CVE Request: Opera 9.60 with security fixes CVE-2008-4694 CVE-2008-4695
MLIST:[oss-security] 20081021 CVE req: drupal < 5.11/6.5 CVE-2008-4789 CVE-2008-4790 CVE-2008-4791 CVE-2008-4792 CVE-2008-4793
MLIST:[oss-security] 20081021 Re: CVE Request: Opera 9.60 with security fixes CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 CVE Request (netpbm) CVE-2008-4799
MLIST:[oss-security] 20081022 Re: CVE Request: Opera 9.60 with security fixes CVE-2008-4694 CVE-2008-4695 CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 Re: CVE id request: vlc CVE-2008-4686
MLIST:[oss-security] 20081023 CVE request for ecryptfs CVE-2008-5188
MLIST:[oss-security] 20081023 Re: CVE Request (netpbm) CVE-2008-4799
MLIST:[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw CVE-2006-7234
MLIST:[oss-security] 20081025 Regarding SA32329 (Smarty "_expand_quoted_text()" Security Bypass) CVE-2008-4810 CVE-2008-4811
MLIST:[oss-security] 20081027 CVE id request: blender CVE-2008-4863
MLIST:[oss-security] 20081027 CVE request -- Python imageop#3 CVE-2008-4864
MLIST:[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw CVE-2008-4865
MLIST:[oss-security] 20081027 XSS in HTML Tidy plugin used in WYSIWYG HTML editors CVE-2008-4761
MLIST:[oss-security] 20081028 CVE-2008-4619 / milw0rm6775 CVE-2008-4619
MLIST:[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw CVE-2008-4865
MLIST:[oss-security] 20081029 CVE Request (dovecot) CVE-2008-4870
MLIST:[oss-security] 20081029 CVE Request - Python imageop CVE-2008-4864
MLIST:[oss-security] 20081029 Fwd: [Full-disclosure] [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities CVE-2008-4866 CVE-2008-4867 CVE-2008-4868 CVE-2008-4869
MLIST:[oss-security] 20081029 Re: CVE request for ecryptfs CVE-2008-5188
MLIST:[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw CVE-2008-4865
MLIST:[oss-security] 20081029 Re: CVE-2008-4619 / milw0rm6775 CVE-2008-4619
MLIST:[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire CVE-2003-0308 CVE-2008-3883 CVE-2008-3927 CVE-2008-3928 CVE-2008-3929 CVE-2008-3930 CVE-2008-3931 CVE-2008-4085 CVE-2008-4190 CVE-2008-4191 CVE-2008-4192 CVE-2008-4440 CVE-2008-4474 CVE-2008-4475 CVE-2008-4476 CVE-2008-4477 CVE-2008-4553 CVE-2008-4935 CVE-2008-4936 CVE-2008-4937 CVE-2008-4938 CVE-2008-4939 CVE-2008-4940 CVE-2008-4941 CVE-2008-4942 CVE-2008-4943 CVE-2008-4944 CVE-2008-4945 CVE-2008-4946 CVE-2008-4947 CVE-2008-4948 CVE-2008-4949 CVE-2008-4950 CVE-2008-4951 CVE-2008-4952 CVE-2008-4953 CVE-2008-4954 CVE-2008-4955 CVE-2008-4956 CVE-2008-4957 CVE-2008-4958 CVE-2008-4959 CVE-2008-4960 CVE-2008-4964 CVE-2008-4965 CVE-2008-4966 CVE-2008-4967 CVE-2008-4968 CVE-2008-4969 CVE-2008-4970 CVE-2008-4971 CVE-2008-4972 CVE-2008-4973 CVE-2008-4974 CVE-2008-4975 CVE-2008-4976 CVE-2008-4977 CVE-2008-4978 CVE-2008-4979 CVE-2008-4980 CVE-2008-4981 CVE-2008-4982 CVE-2008-4983 CVE-2008-4984 CVE-2008-4985 CVE-2008-4986 CVE-2008-4987 CVE-2008-4988 CVE-2008-4993 CVE-2008-4994 CVE-2008-4995 CVE-2008-4996 CVE-2008-4997 CVE-2008-4998 CVE-2008-5007 CVE-2008-5034
MLIST:[oss-security] 20081031 New net-snmp DoS CVE-2008-4309
MLIST:[oss-security] 20081031 Re: CVE-2008-4619 / milw0rm6775 CVE-2008-4619
MLIST:[oss-security] 20081101 CVE request (Fwd: MyBB 1.4.2: Multiple Vulnerabilties) CVE-2008-4928 CVE-2008-4929 CVE-2008-4930
MLIST:[oss-security] 20081101 CVE-2008-4796: snoopy triage CVE-2008-4796
MLIST:[oss-security] 20081102 CVE id request: htop CVE-2008-5076
MLIST:[oss-security] 20081103 CVE Request (libsamplerate) CVE-2008-5008
MLIST:[oss-security] 20081103 CVE request - uw-imap CVE-2008-5005
MLIST:[oss-security] 20081103 CVE requests: kernel: hfsplus-related bugs CVE-2008-4933 CVE-2008-4934
MLIST:[oss-security] 20081103 Re: CVE request - uw-imap CVE-2008-5005 CVE-2008-5006
MLIST:[oss-security] 20081105 CVE Request - Python string expandtabs CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 CVE id request: vlc CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081105 CVE request: libcdaudio CVE-2008-5030
MLIST:[oss-security] 20081105 Re: CVE Request - Python string expandtabs CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 VideoLAN security advisory 0810 CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081106 CVE request: Nagios (two issues) CVE-2008-5027 CVE-2008-5028
MLIST:[oss-security] 20081106 CVE request: kernel: Unix sockets kernel panic CVE-2008-5029
MLIST:[oss-security] 20081107 Re: CVE request: libcdaudio CVE-2008-5030
MLIST:[oss-security] 20081110 GeSHi: Clarification about the recent security (non-)issues (SA32559) CVE-2008-5186
MLIST:[oss-security] 20081110 Re: CVE id request: vlc CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081110 Re: CVE requests: kernel: hfsplus-related bugs CVE-2008-5025
MLIST:[oss-security] 20081111 CVE request: kernel: libertas: fix buffer overrun CVE-2008-5134
MLIST:[oss-security] 20081111 Re: CVE request: libcdaudio CVE-2008-5030
MLIST:[oss-security] 20081111 Re: CVE requests: kernel: hfsplus-related bugs CVE-2008-5025
MLIST:[oss-security] 20081112 CVE Request - Zope 2 - PythonScripts local DoS CVE-2008-5102
MLIST:[oss-security] 20081112 CVE Request -- OptiPNG CVE-2008-5101
MLIST:[oss-security] 20081113 CVE request: wordpress can be subject of delayed attacks via cookies CVE-2008-5113
MLIST:[oss-security] 20081114 Re: CVE id request: htop CVE-2008-5076
MLIST:[oss-security] 20081117 CVE Request (syslog-ng) CVE-2008-5110
MLIST:[oss-security] 20081119 CVE request: CUPS DoS via RSS subscriptions CVE-2008-5183 CVE-2008-5184
MLIST:[oss-security] 20081119 Re: CVE request: CUPS DoS via RSS subscriptions CVE-2008-5183
MLIST:[oss-security] 20081120 CVE Request: imlib2 CVE-2008-5187
MLIST:[oss-security] 20081120 CVE id request: another geshi issue (was: [oss-security] GeSHi: Clarification about the recent security (non-)issues (SA32559)) CVE-2008-5185
MLIST:[oss-security] 20081120 CVE request: no-ip DUC buffer overflow CVE-2008-5297
MLIST:[oss-security] 20081120 Re: CVE request: CUPS DoS via RSS subscriptions CVE-2008-5183
MLIST:[oss-security] 20081124 CVE Request -- wireshark CVE-2008-5285
MLIST:[oss-security] 20081127 Re: CVE request: jhead CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks CVE-2008-5312 CVE-2008-5313
MLIST:[oss-security] 20081128 CVE request: lcms (old issues) CVE-2008-5316 CVE-2008-5317
MLIST:[oss-security] 20081128 Re: [oss-security] CVE Request - cups, dovecot-managesieve, perl, wireshark CVE-2008-5302 CVE-2008-5303
MLIST:[oss-security] 20081201 (sort of urgent) CVE Request -- cups (repost) CVE-2008-5286
MLIST:[oss-security] 20081201 CVE request: clamav 0.94.2 CVE-2008-5314
MLIST:[oss-security] 20081203 CVE Request (zaptel) CVE-2008-5396
MLIST:[oss-security] 20081204 CVE for SE-2008-06 in PHP 5.2.7 (ZipArchive) CVE-2008-5658
MLIST:[oss-security] 20081204 ruby CVE-2008-4310 (Red Hat specific) CVE-2008-4310
MLIST:[oss-security] 20081206 CVE request: weak PRNG in GNU Classpath CVE-2008-5659
MLIST:[oss-security] 20081209 CVE request: Four issues in PunBB CVE-2008-5433 CVE-2008-5434 CVE-2008-5435
MLIST:[oss-security] 20081209 CVE request: kernel: MIPS: Fix potential DOS by untrusted user app CVE-2008-5701
MLIST:[oss-security] 20081209 CVE request: kernel: enforce a minimum SG_IO timeout CVE-2008-5700
MLIST:[oss-security] 20081209 CVE request: moodle (XSS) CVE-2008-5432
MLIST:[oss-security] 20081210 CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug CVE-2008-5702
MLIST:[oss-security] 20081212 CVE Request - roundcubemail CVE-2008-5619
MLIST:[oss-security] 20081214 Avahi daemon DoS (CVE-2008-5081) CVE-2008-5081
MLIST:[oss-security] 20081216 CVE id request: gpsdrive CVE-2008-5703 CVE-2008-5704
MLIST:[oss-security] 20081216 CVE id request: verlihub CVE-2008-5705 CVE-2008-5706
MLIST:[oss-security] 20081216 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug CVE-2008-5702
MLIST:[oss-security] 20081217 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug CVE-2008-5702
MLIST:[oss-security] 20081219 CVE Request - Incomplete dahdi/zaptel tor2.c patch for CVE-2008-5396 CVE-2008-5744
MLIST:[oss-security] 20081219 CVE Request -- Xen (Upstream patch for CVE-2008-4405 is incomplete) CVE-2008-5716
MLIST:[oss-security] 20081219 CVE request - pdfjam CVE-2008-5743
MLIST:[oss-security] 20081223 CVE request: kernel: soft lockup occurs when network load is very high CVE-2008-5713
MLIST:[oss-security] 20081228 Re: CVE request - pdfjam CVE-2008-5843
MLIST:[oss-security] 20081230 CVE id request: audiofile CVE-2008-5824
MLIST:[oss-security] 20090105 CVE request: kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID CVE-2009-0065
MLIST:[oss-security] 20090106 Fwd: Using xdg-open in /etc/mailcap causes hole in Firefox (Demonstration/Exploit included) CVE-2009-0068
MLIST:[oss-security] 20090108 CVE request: ktorrent CVE-2008-5905 CVE-2008-5906
MLIST:[oss-security] 20090109 libpng non issue CVE-2008-5907
MLIST:[oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto CVE-2009-0124 CVE-2009-0125 CVE-2009-0126 CVE-2009-0127 CVE-2009-0128 CVE-2009-0129 CVE-2009-0130
MLIST:[oss-security] 20090112 CVE request: xrdp CVE-2008-5902 CVE-2008-5903 CVE-2008-5904
MLIST:[oss-security] 20090112 CVE-2009-0024 kernel: local privilege escalation in sys_remap_file_pages CVE-2009-0024
MLIST:[oss-security] 20090113 CVE Request -- libmikmod CVE-2007-6720 CVE-2009-0179
MLIST:[oss-security] 20090113 CVE-2008-4307 kernel: local denial of service in locks_remove_flock CVE-2008-4307
MLIST:[oss-security] 20090114 CVE Request -- amarok CVE-2009-0135 CVE-2009-0136
MLIST:[oss-security] 20090114 update on CVE-2008-5718 CVE-2008-5718
MLIST:[oss-security] 20090115 CVE request -- git CVE-2008-5916
MLIST:[oss-security] 20090118 CVE request: WebSVN CVE-2009-0240
MLIST:[oss-security] 20090119 CVE-2009-0031 kernel: local denial of service in keyctl_join_session_keyring CVE-2009-0031
MLIST:[oss-security] 20090120 Re: CVE request -- git CVE-2008-5516 CVE-2008-5517 CVE-2008-5916
MLIST:[oss-security] 20090121 CVE Request -- openoffice.org (CVE-2008-4841) CVE-2009-0259
MLIST:[oss-security] 20090121 Re: CVE request -- git CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090121 mod-auth-mysql: SQL injection CVE-2008-2384
MLIST:[oss-security] 20090123 Re: CVE id request: typo3 SA-2009-001 CVE-2009-0258
MLIST:[oss-security] 20090123 Re: CVE request -- git CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090126 CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) CVE-2008-5983 CVE-2008-5984 CVE-2008-5985 CVE-2008-5986 CVE-2008-5987 CVE-2009-0314 CVE-2009-0315 CVE-2009-0316 CVE-2009-0317 CVE-2009-0318
MLIST:[oss-security] 20090127 CVE Request: MoinMoin CVE-2009-0312
MLIST:[oss-security] 20090128 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) CVE-2008-5983
MLIST:[oss-security] 20090129 CVE Request (trickle) CVE-2009-0415
MLIST:[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version) CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 CVE-2009-0398
MLIST:[oss-security] 20090130 CVE Request - php (PHP BZ#27421) CVE-2009-0754
MLIST:[oss-security] 20090130 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) CVE-2008-5983
MLIST:[oss-security] 20090203 CVE Request: sblim-sfcb genSslCert.sh temp race CVE-2009-0416
MLIST:[oss-security] 20090203 Re: CVE Request - php (PHP BZ#27421) CVE-2009-0754
MLIST:[oss-security] 20090204 CVS request - Moodle CVE-2009-0499 CVE-2009-0500 CVE-2009-0501 CVE-2009-0502
MLIST:[oss-security] 20090206 CVE Request - Wicd <= 1.5.8 CVE-2009-0489
MLIST:[oss-security] 20090206 CVE request: phpbb < 3.0.4 CVE-2008-6506 CVE-2008-6507
MLIST:[oss-security] 20090206 Re: CVE request: jhead CVE-2008-4639
MLIST:[oss-security] 20090207 CVE Request: pycrypto CVE-2009-0544
MLIST:[oss-security] 20090208 CVE-2008-6049 is bogus CVE-2008-6049
MLIST:[oss-security] 20090210 CVE Request -- evolution CVE-2009-0547
MLIST:[oss-security] 20090210 CVE request: typo3 xss (typo3-sa-2009-002) CVE-2009-0815 CVE-2009-0816
MLIST:[oss-security] 20090210 libvirt_proxy heads up CVE-2009-0036
MLIST:[oss-security] 20090211 CVE request for proftpd CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090211 Re: CVE request for proftpd CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090212 CVE Request -- net-snmp (sensitive host information disclosure) CVE-2008-6123
MLIST:[oss-security] 20090212 CVE-2008-5621 is a duplicate (was: Re: CVE request: phpMyAdmin < 3.1.1.0 (SQL injection through XSRF on several pages )) CVE-2008-5621
MLIST:[oss-security] 20090212 Re: CVE Request -- net-snmp (sensitive host information disclosure) CVE-2008-6123
MLIST:[oss-security] 20090212 Re: CVE Request: pycrypto CVE-2009-0544
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel CVE-2009-1046
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel issue CVE-2009-1046
MLIST:[oss-security] 20090212 http://www.securityfocus.com/bid/33672/info kernel issue CVE-2009-1046
MLIST:[oss-security] 20090213 CVE Request: Poppler -Two Denial of Service Vulnerabilities CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090219 CVE request for yaws CVE-2009-0751
MLIST:[oss-security] 20090219 Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090220 CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt CVE-2009-0676
MLIST:[oss-security] 20090220 CVE request: kernel: skfp_ioctl inverted logic flaw CVE-2009-0675
MLIST:[oss-security] 20090223 CVE request: mldonkey arbitrary file download vulnerability CVE-2009-0753
MLIST:[oss-security] 20090224 CVE request: optipng security release CVE-2009-0749
MLIST:[oss-security] 20090224 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt CVE-2009-0676
MLIST:[oss-security] 20090225 CVE request: Psi <0.12.1 DoS CVE-2008-6393
MLIST:[oss-security] 20090225 Re: CVE Request - php (PHP BZ#27421) CVE-2009-0754
MLIST:[oss-security] 20090225 Re: CVE request: optipng security release CVE-2009-0749
MLIST:[oss-security] 20090226 OpenSC Security Advisory CVE-2009-0368
MLIST:[oss-security] 20090301 CVE id request: znc CVE-2009-0759
MLIST:[oss-security] 20090302 CVE Request: mpfr (Buffer Overflow) CVE-2009-0757
MLIST:[oss-security] 20090302 CVE id request: avahi CVE-2009-0758
MLIST:[oss-security] 20090302 CVE id request: dkim-milter CVE-2009-0770
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole CVE-2009-0835
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole CVE-2009-0834
MLIST:[oss-security] 20090302 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt CVE-2009-0676
MLIST:[oss-security] 20090305 CVE Request -- pam CVE-2009-0887
MLIST:[oss-security] 20090306 CVE request: kernel: inotify local DoS CVE-2009-0935
MLIST:[oss-security] 20090306 CVE request: kernel: shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM CVE-2009-0859
MLIST:[oss-security] 20090307 CVE Request: Opera <9.64: Execution of arbitrary code CVE-2009-0914
MLIST:[oss-security] 20090311 CVE request -- postgresql CVE-2009-0922
MLIST:[oss-security] 20090311 CVE-2009-0778 kernel: rt_cache leak CVE-2009-0778
MLIST:[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows CVE-2008-4316 CVE-2009-0585 CVE-2009-0586 CVE-2009-0587
MLIST:[oss-security] 20090316 CVE request: XSS in MUC logs of ejabberd CVE-2009-0934
MLIST:[oss-security] 20090316 CVE-2009-0876 (VirtualBox) references CVE-2009-0876
MLIST:[oss-security] 20090317 CVE request -- firefox, vlc, WeeChat CVE-2009-1045
MLIST:[oss-security] 20090317 Re: CVE request -- firefox, vlc, WeeChat CVE-2009-0661
MLIST:[oss-security] 20090317 Re: CVE-2009-0876 (VirtualBox) references CVE-2009-0876
MLIST:[oss-security] 20090317 Re: [oCERT-2008-015] glib and glib-predecessor heap overflows CVE-2008-4316
MLIST:[oss-security] 20090318 Re: CVE request: kernel: inotify local DoS CVE-2009-0935
MLIST:[oss-security] 20090319 Re: CVE request: kernel: inotify local DoS CVE-2009-0935
MLIST:[oss-security] 20090323 CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap CVE-2009-1073
MLIST:[oss-security] 20090323 CVE request: API key disclosure in piwik CVE-2009-1085
MLIST:[oss-security] 20090323 CVE request: kernel: nfsd did not drop CAP_MKNOD for non-root CVE-2009-1072
MLIST:[oss-security] 20090324 CVE id request: ldns CVE-2009-1086
MLIST:[oss-security] 20090324 Re: CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap CVE-2009-1073
MLIST:[oss-security] 20090325 CVE request -- zsh, XFree86-xfs/xorg-x11-xfs, screen CVE-2009-1214 CVE-2009-1215
MLIST:[oss-security] 20090330 [Fwd: Cross-Site Scripting in Banshee DAAP Extension] CVE-2009-1175
MLIST:[oss-security] 20090401 CVE id rquest: xfig insecure tmp files CVE-2009-1962
MLIST:[oss-security] 20090401 CVE request -- bibtex, pam_ssh CVE-2009-1284
MLIST:[oss-security] 20090401 CVE request -- ghostscript CVE-2007-6725 CVE-2008-6679
MLIST:[oss-security] 20090401 CVE request: PHP 5.2.9 CVE-2009-1271 CVE-2009-1272
MLIST:[oss-security] 20090401 CVE request: kernel: KVM: VMX: Dont allow uninhibited access to EFER on i386 CVE-2009-1242
MLIST:[oss-security] 20090401 CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure CVE-2009-1243
MLIST:[oss-security] 20090405 CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1439
MLIST:[oss-security] 20090406 CVE request: kernel: NFS: Fix an Oops in encode_lookup() CVE-2009-1336
MLIST:[oss-security] 20090407 CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check CVE-2009-1337
MLIST:[oss-security] 20090407 Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive CVE-2008-6680 CVE-2009-1241 CVE-2009-1270
MLIST:[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1439
MLIST:[oss-security] 20090408 CVE request: apt CVE-2009-1300
MLIST:[oss-security] 20090408 CVE-2008-5519: mod_jk session information leak vulnerability CVE-2008-5519
MLIST:[oss-security] 20090408 CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user frame size CVE-2009-1265
MLIST:[oss-security] 20090409 Re: CVE request: PHP 5.2.9 CVE-2009-1272
MLIST:[oss-security] 20090413 CVE request: silverstripe - two sql injections CVE-2008-6753
MLIST:[oss-security] 20090415 Re: Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090415 Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090415 Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090416 CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace CVE-2009-1338
MLIST:[oss-security] 20090416 CVE-2009-1189: invalid fix for CVE-2008-3834 (dbus) CVE-2009-1189
MLIST:[oss-security] 20090417 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace CVE-2009-1338
MLIST:[oss-security] 20090417 Re: CVE request: kernel: NFS: Fix an Oops in encode_lookup() CVE-2009-1336
MLIST:[oss-security] 20090417 Re: CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check CVE-2009-1337
MLIST:[oss-security] 20090421 CVE Request -- libmodplug CVE-2009-1438
MLIST:[oss-security] 20090421 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace CVE-2009-1338
MLIST:[oss-security] 20090422 CVE id request: amule CVE-2009-1440
MLIST:[oss-security] 20090422 CVE-2009-1192 kernel: agp: zero pages before sending to userspace CVE-2009-1192
MLIST:[oss-security] 20090424 Re: Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090428 Re: Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090429 Re: CVE Request -- libmodplug CVE-2009-1513
MLIST:[oss-security] 20090429 Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090429 ipsec-tools 0.7.2 CVE-2009-1574 CVE-2009-1632
MLIST:[oss-security] 20090501 CVE request (sort of): Quagga BGP crasher CVE-2009-1572
MLIST:[oss-security] 20090501 Re: CVE request (sort of): Quagga BGP crasher CVE-2009-1572
MLIST:[oss-security] 20090504 CVE request: kernel: ptrace_attach: fix the usage of ->cred_exec_mutex CVE-2009-1527
MLIST:[oss-security] 20090504 CVE-2009-1184 selinux: skipped node/port send checks in the compat_net=1 case CVE-2009-1184
MLIST:[oss-security] 20090504 Re: ipsec-tools 0.7.2 CVE-2009-1574
MLIST:[oss-security] 20090505 CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg) CVE-2009-1573
MLIST:[oss-security] 20090505 Old cscope buffer overflow CVE-2009-1577
MLIST:[oss-security] 20090505 Re: CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg) CVE-2009-1573
MLIST:[oss-security] 20090506 CVE id request: coccinelle CVE-2009-1753
MLIST:[oss-security] 20090506 Re: Old cscope buffer overflow CVE-2009-0148 CVE-2009-1577
MLIST:[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations CVE-2009-1194
MLIST:[oss-security] 20090508 OpenSC 0.11.8 released with security update CVE-2009-1603
MLIST:[oss-security] 20090511 [oCERT-2009-004] AjaxTerm session id collision CVE-2009-1629
MLIST:[oss-security] 20090512 CVE Request (evolution) CVE-2009-1631
MLIST:[oss-security] 20090512 Re: ipsec-tools 0.7.2 CVE-2009-1632
MLIST:[oss-security] 20090513 CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission CVE-2009-1630
MLIST:[oss-security] 20090514 CVE Request: XEN local denial of service CVE-2009-1758
MLIST:[oss-security] 20090514 Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090514 Update - Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090515 Re: Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090518 CVE id request: slim CVE-2009-1756
MLIST:[oss-security] 20090518 Re: Two OpenSSL DTLS remote DoS CVE-2009-1379
MLIST:[oss-security] 20090518 Two OpenSSL DTLS remote DoS CVE-2009-1377 CVE-2009-1378
MLIST:[oss-security] 20090519 CVE id request: nsd CVE-2009-1755
MLIST:[oss-security] 20090520 CVE request: ctorrent CVE-2009-1759
MLIST:[oss-security] 20090521 CVE request: transmission <1.61 CSRF CVE-2009-1757
MLIST:[oss-security] 20090522 [oCERT-2009-006] Android improper package verification when using shared uids CVE-2009-1754
MLIST:[oss-security] 20090527 CVE assignment notification (pam_krb5 CVE-2009-1384) CVE-2009-1384
MLIST:[oss-security] 20090529 CVE Request (irssi) CVE-2009-1959
MLIST:[oss-security] 20090529 CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090530 Re: CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090602 Re: CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090602 Re: Two OpenSSL DTLS remote DoS CVE-2009-1386 CVE-2009-1387
MLIST:[oss-security] 20090603 CVE request: "billion laughs" attack against Apache APR CVE-2009-1955
MLIST:[oss-security] 20090603 CVE request: kernel: sparc64: Fix crash with /proc/iomem CVE-2009-1914
MLIST:[oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service CVE-2009-1385
MLIST:[oss-security] 20090603 Re: CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090605 CVE Request (apr-util) CVE-2009-1956
MLIST:[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage() CVE-2009-1882
MLIST:[oss-security] 20090610 CVE-2009-1389 kernel: r8169: fix crash when large packets are received CVE-2009-1389
MLIST:[oss-security] 20090610 Mutt 1.5.19 SSL chain verification flaw CVE-2009-1390
MLIST:[oss-security] 20090612 Git daemon infinite loop CVE-2009-2108
MLIST:[oss-security] 20090621 libtiff buffer underflow in LZWDecodeCompat CVE-2009-2285
MLIST:[oss-security] 20090623 Re: libtiff buffer underflow in LZWDecodeCompat CVE-2009-2285
MLIST:[oss-security] 20090629 CVE Request -- libtiff [was: Re: libtiff buffer underflow in LZWDecodeCompat] CVE-2009-2285
MLIST:[oss-security] 20090629 CVE id request: compface CVE-2009-2286
MLIST:[oss-security] 20090629 Re: CVE id request: compface CVE-2009-2286
MLIST:[oss-security] 20090630 CVE Request: kernel: kvm: failure to validate cr3 after KVM_SET_SREGS CVE-2009-2287
MLIST:[oss-security] 20090701 Re: incorrect upstream fix for CVE-2009-0840 (mapserver) CVE-2009-2281
MLIST:[oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock CVE-2009-1388
MLIST:[oss-security] 20090703 Re: CVE id request: compface CVE-2009-2286
MLIST:[oss-security] 20090716 [oCERT-2009-011] Android improper camera and audio permission verification CVE-2009-2348
MLIST:[oss-security] 20090717 Linux 2.6.30+/SELinux/RHEL5 test kernel 0day, exploiting the unexploitable CVE-2009-1897
MLIST:[oss-security] 20090720 squid DoS in external auth header parser CVE-2009-2855
MLIST:[oss-security] 20090721 CVE Request -- WordPress CVE-2009-2851
MLIST:[oss-security] 20090721 CVE Request -- znc CVE-2009-2658
MLIST:[oss-security] 20090722 Re: CVE request: Wireshark <1.2.1 Multiple DoS CVE-2009-2560
MLIST:[oss-security] 20090724 md raid null ptr dereference (when sysfs is writable) CVE-2009-2849
MLIST:[oss-security] 20090724 nilfs-utils privilege escalation CVE-2009-2657
MLIST:[oss-security] 20090725 Re: CVE Request -- HTMLDOC CVE-2009-3050
MLIST:[oss-security] 20090725 camlimages: Integer overflows in GIF and JPEG readers CVE-2009-2660
MLIST:[oss-security] 20090726 Re: CVE Request -- HTMLDOC CVE-2009-3050
MLIST:[oss-security] 20090726 Re: md raid null ptr dereference (when sysfs is writable) CVE-2009-2849
MLIST:[oss-security] 20090727 CVE id request: strongswan CVE-2009-2661
MLIST:[oss-security] 20090729 CVE Request (django) CVE-2009-2659
MLIST:[oss-security] 20090803 Re: squid DoS in external auth header parser CVE-2009-2855
MLIST:[oss-security] 20090804 CVE request - kernel: execve: must clear current->clear_child_tid CVE-2009-2848
MLIST:[oss-security] 20090804 CVE request - kernel: information leak in sigaltstack CVE-2009-2847
MLIST:[oss-security] 20090804 CVE request: Wordpress CVE-2009-2853 CVE-2009-2854
MLIST:[oss-security] 20090804 Re: squid DoS in external auth header parser CVE-2009-2855
MLIST:[oss-security] 20090805 Re: CVE request - kernel: execve: must clear current->clear_child_tid CVE-2009-2848
MLIST:[oss-security] 20090805 Re: CVE request - kernel: information leak in sigaltstack CVE-2009-2847
MLIST:[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate CVE-2009-2666
MLIST:[oss-security] 20090806 CVE request: kernel: clock_nanosleep() with CLOCK_MONOTONIC_RAW NULL pointer dereference CVE-2009-2767
MLIST:[oss-security] 20090809 CVE id request: groff (pdfroff) CVE-2009-5044 CVE-2009-5078
MLIST:[oss-security] 20090810 CVE request: kernel: parisc: isa-eeprom missing lower bound check CVE-2009-2846
MLIST:[oss-security] 20090810 Re: CVE id request: groff (pdfroff) CVE-2009-5044 CVE-2009-5078
MLIST:[oss-security] 20090811 CVE-2009-2691 kernel: /proc/$pid/maps visible during initial setuid ELF loading CVE-2009-2691
MLIST:[oss-security] 20090813 CVE request: kernel: flat: fix uninitialized ptr with shared libs CVE-2009-2768
MLIST:[oss-security] 20090814 CVE request: Common Data Format (CDF) library multiple heap-based buffer overflows CVE-2009-2850
MLIST:[oss-security] 20090814 CVE-2009-2692 kernel: uninit op in SOCKOPS_WRAP() leads to privesc CVE-2009-2692
MLIST:[oss-security] 20090814 GnuTLS CVE-2009-2730 Patches (Was Re: GnuTLS 2.8.2) CVE-2009-2730
MLIST:[oss-security] 20090814 Re: CVE id request: groff (pdfroff) CVE-2009-5044 CVE-2009-5079 CVE-2009-5080 CVE-2009-5081 CVE-2009-5082
MLIST:[oss-security] 20090815 mailfilter 0.8.2 fixes CVE-2007-1558 (APOP) CVE-2007-1558
MLIST:[oss-security] 20090817 CVE request: kernel: cfg80211: missing NULL pointer checks CVE-2009-2844
MLIST:[oss-security] 20090817 Re: CVE request: kernel: cfg80211: missing NULL pointer checks CVE-2009-2844
MLIST:[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695) CVE-2009-2695
MLIST:[oss-security] 20090818 Re: CVE request: kernel: parisc: isa-eeprom missing lower bound check CVE-2009-2846
MLIST:[oss-security] 20090818 Re: CVE-2007-1558 update (was: mailfilter 0.8.2 fixes CVE-2007-1558 (APOP)) CVE-2007-1558
MLIST:[oss-security] 20090819 CVE Request pidgin CVE-2009-3025
MLIST:[oss-security] 20090821 expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090824 CVE id request: pidgin CVE-2009-3026
MLIST:[oss-security] 20090825 CVE-2009-2698 kernel: udp socket NULL ptr dereference CVE-2009-2698
MLIST:[oss-security] 20090826 CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure CVE-2009-3001
MLIST:[oss-security] 20090826 Re: CVE request - kernel: information leak in sigaltstack CVE-2009-2847
MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090826 Re: expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090827 Re: CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure CVE-2009-3002
MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090828 CVE request: perl-IO-Socket-SSL certificate hostname compare bug CVE-2009-3024
MLIST:[oss-security] 20090829 Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug CVE-2009-3024
MLIST:[oss-security] 20090831 CVE id request: silc-toolkit CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090831 CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc CVE-2009-3043
MLIST:[oss-security] 20090831 Re: Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug CVE-2009-3024
MLIST:[oss-security] 20090901 Re: CVE Request -- HTMLDOC CVE-2009-3050
MLIST:[oss-security] 20090903 CVE request: kernel: tc: uninitialised kernel memory leak CVE-2009-3228
MLIST:[oss-security] 20090903 More CVE-2009-2408 like issues CVE-2009-2408 CVE-2009-3490 CVE-2009-3765 CVE-2009-3766 CVE-2009-3767
MLIST:[oss-security] 20090903 Re: CVE id request: silc-toolkit CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090903 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc CVE-2009-3043
MLIST:[oss-security] 20090904 CVE request: kernel: NULL pointer dereference in sg_build_indirect() CVE-2009-3288
MLIST:[oss-security] 20090904 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc CVE-2009-3043
MLIST:[oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430 CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090908 CVE Request - glib symlink copying permission exposure CVE-2009-3289
MLIST:[oss-security] 20090908 CVE request - Debian/Ubuntu PAM auth module selection CVE-2009-3232
MLIST:[oss-security] 20090909 CVE Request -- FreeRADIUS 1.1.8 CVE-2009-3111
MLIST:[oss-security] 20090910 Re: OpenOffice.org CVE-2009-2139 CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090911 Re: OpenOffice.org CVE-2009-2139 CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090912 CVE request(?): Thin: Client IP spoofing CVE-2009-3287
MLIST:[oss-security] 20090914 CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams CVE-2009-2903
MLIST:[oss-security] 20090914 Re: CVE for recent cyrus-imap issue CVE-2009-2632 CVE-2009-3235
MLIST:[oss-security] 20090914 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams CVE-2009-2903
MLIST:[oss-security] 20090915 CVE-2009-1883 kernel: missing capability check in z90crypt CVE-2009-1883
MLIST:[oss-security] 20090915 Re: CVE-2009-1883 kernel: missing capability check in z90crypt CVE-2009-1883
MLIST:[oss-security] 20090916 CVE id request: changetrack CVE-2009-3233
MLIST:[oss-security] 20090916 CVE request: kernel: cfg80211: fix looping soft lockup in find_ie() CVE-2009-3280
MLIST:[oss-security] 20090916 CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr() CVE-2009-3234
MLIST:[oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr() CVE-2009-3234
MLIST:[oss-security] 20090917 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams CVE-2009-2903
MLIST:[oss-security] 20090917 Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request CVE-2009-2562 CVE-2009-2563
MLIST:[oss-security] 20090917 Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request CVE-2009-2563
MLIST:[oss-security] 20090918 CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 CVE-2009-3290
MLIST:[oss-security] 20090918 Insecure pid directory permissions for postfix on Debian / Ubuntu CVE-2009-2939
MLIST:[oss-security] 20090920 Re: CVE Request -- PHP 5 - 5.2.11 CVE-2009-3294
MLIST:[oss-security] 20090921 CVE request: kernel: issue with O_EXCL creates on NFSv4 CVE-2009-3286
MLIST:[oss-security] 20090921 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 CVE-2009-3290
MLIST:[oss-security] 20090922 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 CVE-2009-3290
MLIST:[oss-security] 20090922 Re: [oss-security] OpenOffice.org CVE-2009-2139 CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090923 Re: More CVE-2009-2408 like issues CVE-2009-3490 CVE-2009-3765 CVE-2009-3767
MLIST:[oss-security] 20090925 CVE Request -- Xen -- PyGrub CVE-2009-3525
MLIST:[oss-security] 20091001 CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091001 Re: CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091002 Re: CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091006 Kernel ecryptfs CVE id (CVE-2009-2908) CVE-2009-2908
MLIST:[oss-security] 20091007 More kernel CVE info (CVE-2009-2909) CVE-2009-2909
MLIST:[oss-security] 20091009 CVE request: Unbound CVE-2009-3602
MLIST:[oss-security] 20091009 Re: CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091009 Re: CVE request: Unbound CVE-2009-3602
MLIST:[oss-security] 20091013 Re: Duplicate CVE assignment notification [was: CVE id request: django] CVE-2009-3695
MLIST:[oss-security] 20091014 CVE Request - backintime CVE-2009-3611
MLIST:[oss-security] 20091014 CVE Request -- phpMyAdmin CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091014 CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE Request - backintime CVE-2009-3611
MLIST:[oss-security] 20091014 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2009-3612
MLIST:[oss-security] 20091015 Re: CVE Request -- PHP 5 - 5.2.11 CVE-2009-3546
MLIST:[oss-security] 20091015 Re: CVE Request -- phpMyAdmin CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091015 Re: CVE request kernel: flood ping cause CVE-2009-3613
MLIST:[oss-security] 20091015 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 CVE-2009-3612
MLIST:[oss-security] 20091016 CVE Request - aria2 - 1.6.2 CVE-2009-3617
MLIST:[oss-security] 20091016 QEMU VNC use-after-free CVE-2009-3616
MLIST:[oss-security] 20091016 Re: CVE Request - aria2 - 1.6.2 CVE-2009-3617
MLIST:[oss-security] 20091016 Re: QEMU VNC use-after-free CVE-2009-3616
MLIST:[oss-security] 20091016 Re: viewvc: CVE request: XSS and illegal characters while printing name-value pairs CVE-2009-3618 CVE-2009-3619
MLIST:[oss-security] 20091019 CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket CVE-2009-3621
MLIST:[oss-security] 20091019 CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised CVE-2009-3620
MLIST:[oss-security] 20091019 Re: CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket CVE-2009-3621
MLIST:[oss-security] 20091019 Re: CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised CVE-2009-3620
MLIST:[oss-security] 20091021 CVE assignment notification -- CVE-2009-2911 - Three SystemTap-1.0 DoS issues CVE-2009-2911
MLIST:[oss-security] 20091021 CVE request: Wordpress Trackback DoS CVE-2009-3622
MLIST:[oss-security] 20091021 Re: CVE request: Wordpress Trackback DoS CVE-2009-3622
MLIST:[oss-security] 20091022 CVE Request -- Sahana CVE-2009-3625
MLIST:[oss-security] 20091022 CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases CVE-2009-3624
MLIST:[oss-security] 20091022 CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client CVE-2009-3623
MLIST:[oss-security] 20091022 Re: CVE Request -- Sahana CVE-2009-3625
MLIST:[oss-security] 20091022 Re: CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases CVE-2009-3624
MLIST:[oss-security] 20091022 Re: CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client CVE-2009-3623
MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430 CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091022 Regarding expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20091023 CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid() CVE-2009-3638
MLIST:[oss-security] 20091023 CVE request: kvm: update_cr8_intercept() NULL pointer dereference CVE-2009-3640
MLIST:[oss-security] 20091023 CVE-2009-3626 assigment notification - Perl - perl-5.10.1 CVE-2009-3626
MLIST:[oss-security] 20091023 CVE-2009-3627 assignment notification - HTML-Parser-3.63 CVE-2009-3627
MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091023 Re: CVE id request: typo3 CVE-2009-3628 CVE-2009-3629 CVE-2009-3630 CVE-2009-3631 CVE-2009-3632 CVE-2009-3633 CVE-2009-3634 CVE-2009-3635 CVE-2009-3636
MLIST:[oss-security] 20091023 Re: CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid() CVE-2009-3638
MLIST:[oss-security] 20091023 Re: proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification CVE-2009-3639
MLIST:[oss-security] 20091023 proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification CVE-2009-3639
MLIST:[oss-security] 20091024 Re: CVE request: kvm: update_cr8_intercept() NULL pointer dereference CVE-2009-3640
MLIST:[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1 CVE-2009-3641
MLIST:[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1 CVE-2009-3641
MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091026 Re: CVE-2009-3239 is a duplicate of CVE-2009-2139 and CVE-2009-2140 CVE-2009-2139
MLIST:[oss-security] 20091026 Re: More CVE-2009-2408 like issues CVE-2009-3766
MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] CVE-2009-3720
MLIST:[oss-security] 20091029 CVE request: kvm: check cpl before emulating debug register access CVE-2009-3722
MLIST:[oss-security] 20091029 Re: CVE request: kvm: check cpl before emulating debug register access CVE-2009-3722
MLIST:[oss-security] 20091102 CVE request: kernel: connector security bypass CVE-2009-3725
MLIST:[oss-security] 20091102 Re: CVE request: kernel: connector security bypass CVE-2009-3725
MLIST:[oss-security] 20091103 CVE-2009-3547 kernel: fs: pipe.c null pointer dereference CVE-2009-3547
MLIST:[oss-security] 20091105 CVE request: kernel: NULL pointer dereference in nfs4_proc_lock() CVE-2009-3726
MLIST:[oss-security] 20091105 CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091105 Re: CVE request: kernel: NULL pointer dereference in nfs4_proc_lock() CVE-2009-3726
MLIST:[oss-security] 20091105 Re: CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091107 Re: CVE Request - Asterisk (AST-2009-008.html) CVE-2008-7220
MLIST:[oss-security] 20091107 Re: CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091107 Re: [TLS] CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091109 CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff() CVE-2009-3888
MLIST:[oss-security] 20091113 CVE request: kernel: bad permissions on megaraid_sas sysfs files CVE-2009-3889 CVE-2009-3939
MLIST:[oss-security] 20091113 Re: CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff() CVE-2009-3888
MLIST:[oss-security] 20091113 Re: CVE request: kernel: bad permissions on megaraid_sas sysfs files CVE-2009-3889
MLIST:[oss-security] 20091115 CVE Id request: request-tracker CVE-2009-3892
MLIST:[oss-security] 20091115 CVE request: Wordpress 2.8.6 CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091115 Re: CVE request: Wordpress 2.8.6 CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091116 Re: CVE Id request: request-tracker CVE-2009-3892
MLIST:[oss-security] 20091116 Re: CVE request: Wordpress 2.8.6 CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091119 CVE assignment (libexif) CVE-2009-3895
MLIST:[oss-security] 20091119 CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer CVE-2009-4021
MLIST:[oss-security] 20091119 mysql-5.1.41 CVE-2009-4028 CVE-2009-4030
MLIST:[oss-security] 20091120 CVE Assignment nginx CVE-2009-3896
MLIST:[oss-security] 20091120 CVE request: php 5.3.1 update CVE-2009-3292 CVE-2009-3294 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[oss-security] 20091120 CVE request: v1.2.8 released to fix the 0777 base_dir creation issue CVE-2009-3897
MLIST:[oss-security] 20091120 CVEs for nginx CVE-2009-3555 CVE-2009-3896 CVE-2009-3898
MLIST:[oss-security] 20091120 Re: CVE request: php 5.3.1 update CVE-2009-3292 CVE-2009-3294 CVE-2009-3546 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[oss-security] 20091121 CVE Request - Dovecot - 1.2.8 CVE-2009-3897
MLIST:[oss-security] 20091121 CVE Request - MySQL - 5.0.88 CVE-2009-4019 CVE-2009-4028
MLIST:[oss-security] 20091121 Re: CVE Request - MySQL - 5.0.88 CVE-2009-4019
MLIST:[oss-security] 20091122 Re: CVE request: php 5.3.1 update CVE-2009-4018
MLIST:[oss-security] 20091123 CVE request: Argument injections in multiple PEAR packages CVE-2009-4023 CVE-2009-4025 CVE-2009-4111
MLIST:[oss-security] 20091123 Re: CVE Request - Dovecot - 1.2.8 CVE-2009-3897
MLIST:[oss-security] 20091123 Re: CVE Request - MySQL - 5.0.88 CVE-2009-4019
MLIST:[oss-security] 20091123 Re: CVE request: php 5.3.1 - proc_open() bypass PHP Bug #49026 [was: Re: CVE request: php 5.3.1 update] CVE-2009-4018
MLIST:[oss-security] 20091123 Re: CVE request: v1.2.8 released to fix the 0777 base_dir creation issue CVE-2009-3897
MLIST:[oss-security] 20091123 Re: CVEs for nginx CVE-2009-3555 CVE-2009-3896 CVE-2009-3898
MLIST:[oss-security] 20091123 Re: mysql-5.1.41 CVE-2009-4028
MLIST:[oss-security] 20091124 CVE request: BIND 9 bug involving DNSSEC and the additional section CVE-2009-4022
MLIST:[oss-security] 20091124 Re: CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer CVE-2009-4021
MLIST:[oss-security] 20091124 Re: a new bind issue CVE-2009-4022
MLIST:[oss-security] 20091124 Re: mysql-5.1.41 CVE-2008-7247 CVE-2009-4030
MLIST:[oss-security] 20091124 a new bind issue CVE-2009-4022
MLIST:[oss-security] 20091125 CVE Request - Cacti - 0.8.7e CVE-2009-4032
MLIST:[oss-security] 20091125 CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes CVE-2009-4031
MLIST:[oss-security] 20091125 Re: CVE Request - Cacti - 0.8.7e CVE-2009-4032
MLIST:[oss-security] 20091125 Re: CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes CVE-2009-4031
MLIST:[oss-security] 20091126 Re: CVE Request - Cacti - 0.8.7e CVE-2009-4032 CVE-2009-4112
MLIST:[oss-security] 20091127 CVE request: ruby on rails XSS Weakness in strip_tags CVE-2009-4214
MLIST:[oss-security] 20091128 CVE request: Ruby on Rails: CSRF circumvention (from 2008) CVE-2008-7248
MLIST:[oss-security] 20091128 Re: CVE request: Argument injections in multiple PEAR packages CVE-2009-4111
MLIST:[oss-security] 20091130 Need more information on recent poppler issues CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091130 Re: CVE Request - Cacti - 0.8.7e CVE-2009-4032 CVE-2009-4112
MLIST:[oss-security] 20091130 Re: Need more information on recent poppler issues CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091201 CVE request: kernel: mac80211: fix two remote exploits CVE-2009-4026
MLIST:[oss-security] 20091201 Re: Need more information on recent poppler issues CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091202 Re: CVE request: Ruby on Rails: CSRF circumvention (from 2008) CVE-2008-7248
MLIST:[oss-security] 20091203 CVE Request -- xfig CVE-2009-4227
MLIST:[oss-security] 20091204 CVE-2009-4020 kernel: hfs buffer overflow CVE-2009-4020
MLIST:[oss-security] 20091208 CVE Request -- coreutils -- unsafe temporary directory location use CVE-2009-4135
MLIST:[oss-security] 20091208 Re: CVE Request -- coreutils -- unsafe temporary directory location use CVE-2009-4135
MLIST:[oss-security] 20091208 Re: CVE request: ruby on rails XSS Weakness in strip_tags CVE-2009-4214
MLIST:[oss-security] 20091209 Piwik <= 0.4.5 Cookie Unserialize() Vulnerability CVE-2009-4137
MLIST:[oss-security] 20091210 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability CVE-2009-4137
MLIST:[oss-security] 20091212 CVE request: polipo DoS via overly large "Content-Length" header CVE-2009-4413
MLIST:[oss-security] 20091214 CVE Request - Open Flash Chart v2 CVE-2009-4140
MLIST:[oss-security] 20091214 Re: CVE Request - Open Flash Chart v2 CVE-2009-4140
MLIST:[oss-security] 20091214 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability CVE-2009-4137
MLIST:[oss-security] 20091215 CVE-2009-4138 kernel: firewire: ohci: handle receive packets with a data length of zero CVE-2009-4138
MLIST:[oss-security] 20091216 NetworkManager CVE assignment CVE-2009-4144 CVE-2009-4145
MLIST:[oss-security] 20091217 [oCERT-2009-019] Ganeti path sanitization errors CVE-2009-4261
MLIST:[oss-security] 20091217 possible vulnerability in ghostscript >= 8.64 CVE-2009-4270
MLIST:[oss-security] 20091218 Re: possible vulnerability in ghostscript >= 8.64 CVE-2009-4270
MLIST:[oss-security] 20091220 CVE request: phpgroupware CVE-2009-4414 CVE-2009-4415 CVE-2009-4416
MLIST:[oss-security] 20091221 CVE request: Serendipity < 1.5 upload of files with *.php.* possible CVE-2009-4412
MLIST:[oss-security] 20091223 CVE request - kernel: fuse_ioctl_copy_user() dos CVE-2009-4410
MLIST:[oss-security] 20091223 CVE request: acl 2.2.47 always follows symlinks CVE-2009-4411
MLIST:[oss-security] 20091224 OpenTTD remote DoS CVE-2009-4007
MLIST:[oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20100102 CVE request - pidgin MSN arbitrary file upload CVE-2010-0013
MLIST:[oss-security] 20100106 CVE Request: Transmission CVE-2010-0012
MLIST:[oss-security] 20100106 CVE request - uzbl remote code execution CVE-2010-0011
MLIST:[oss-security] 20100106 Re: CVE Request: Transmission CVE-2010-0012
MLIST:[oss-security] 20100106 Re: CVE request - uzbl remote code execution CVE-2010-0011
MLIST:[oss-security] 20100107 CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100107 Re: CVE request - pidgin MSN arbitrary file upload CVE-2010-0013 CVE-2010-0277
MLIST:[oss-security] 20100108 Re: CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100109 Re: CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100111 CVE Request: viewvc CVE-2010-0004 CVE-2010-0005
MLIST:[oss-security] 20100111 Re: CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100112 CVE request - kernel: infoleak if print-fatal-signals=1 CVE-2010-0003
MLIST:[oss-security] 20100113 CVE Request: kernel ebtables perm check CVE-2010-0007
MLIST:[oss-security] 20100113 Re: CVE Request: viewvc CVE-2010-0004 CVE-2010-0005
MLIST:[oss-security] 20100113 Re: CVE request - kernel: infoleak if print-fatal-signals=1 CVE-2010-0003
MLIST:[oss-security] 20100113 [PATCH] memory consumption (DoS) in openssl CVE-2009-4355 CVE-2009-4355
MLIST:[oss-security] 20100114 CVE-2010-0006 - kernel: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo() CVE-2010-0006
MLIST:[oss-security] 20100114 Re: CVE Request: kernel ebtables perm check CVE-2010-0007
MLIST:[oss-security] 20100114 Re: CVE Request: viewvc CVE-2010-0004
MLIST:[oss-security] 20100119 BIND CVE-2009-4022 fix incomplete CVE-2010-0290
MLIST:[oss-security] 20100119 CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100119 Re: CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100120 CVE-2009-3556 kernel: qla2xxx NPIV vport management pseudofiles are world writable CVE-2009-3556
MLIST:[oss-security] 20100120 CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock CVE-2009-4272
MLIST:[oss-security] 20100120 Re: BIND CVE-2009-4022 fix incomplete CVE-2010-0290
MLIST:[oss-security] 20100120 Re: CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100120 Re: CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock CVE-2009-4272
MLIST:[oss-security] 20100121 CVE request: MoinMoin information disclosure CVE-2010-0667
MLIST:[oss-security] 20100121 Re: CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100127 CVE id request: maildrop CVE-2010-0301
MLIST:[oss-security] 20100127 Re: CVE id request: postgresql bitsubstr overflow CVE-2010-0442
MLIST:[oss-security] 20100128 Re: CVE id request: maildrop CVE-2010-0301
MLIST:[oss-security] 20100129 CVE Request -- ejabberd CVE-2010-0305
MLIST:[oss-security] 20100129 Re: CVE Request -- ejabberd CVE-2010-0305
MLIST:[oss-security] 20100129 Re: CVE id request: Wireshark CVE-2010-0304
MLIST:[oss-security] 20100129 Re: CVE id: hybserv CVE-2010-0303
MLIST:[oss-security] 20100201 CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100201 Re: CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100202 CVE request - kvm: cat /dev/port in the guest can cause host DoS CVE-2010-0309
MLIST:[oss-security] 20100202 KVM possible security issues fixed CVE-2010-0297
MLIST:[oss-security] 20100202 Re: CVE request - kvm: cat /dev/port in the guest can cause host DoS CVE-2010-0309
MLIST:[oss-security] 20100202 lighttpd: slow request dos/oom attack [CVE-2010-0295] CVE-2010-0295
MLIST:[oss-security] 20100203 CVE Request -- GMime-2.4.15 CVE-2010-0409
MLIST:[oss-security] 20100203 CVE request: kernel OOM/crash in drivers/connector CVE-2010-0410
MLIST:[oss-security] 20100203 Re: CVE Request -- GMime-2.4.15 CVE-2010-0409
MLIST:[oss-security] 20100203 Re: CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100203 Re: CVE request: kernel OOM/crash in drivers/connector CVE-2010-0410
MLIST:[oss-security] 20100204 Re: CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100204 Re: KVM possible security issues fixed CVE-2010-0297
MLIST:[oss-security] 20100204 systemtap DoS issue (CVE-2010-0411) CVE-2010-0411
MLIST:[oss-security] 20100205 Re: Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100205 Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100206 Re: Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100207 CVE request: information leak / potential crash in sys_move_pages CVE-2010-0415
MLIST:[oss-security] 20100207 Re: CVE request: information leak / potential crash in sys_move_pages CVE-2010-0415
MLIST:[oss-security] 20100208 Re: CVE request: information leak / potential crash in sys_move_pages CVE-2010-0415
MLIST:[oss-security] 20100209 CVE Request -- cURL/libCURL 7.20.0 CVE-2010-0734
MLIST:[oss-security] 20100209 CVE request - kernel: futex: Handle user space corruption gracefully CVE-2010-0622
MLIST:[oss-security] 20100209 vulnerability in netpbm (CVE-2009-4274) CVE-2009-4274
MLIST:[oss-security] 20100211 CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference CVE-2010-0437
MLIST:[oss-security] 20100211 Re: CVE request - kernel: futex: Handle user space corruption gracefully CVE-2010-0622 CVE-2010-0623
MLIST:[oss-security] 20100212 CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100212 CVE Request: gnome-screensaver termination by pressing "Enter" CVE-2010-0732
MLIST:[oss-security] 20100212 Re: CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100212 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100212 Re: gnome-screensaver vulnerability (CVE-2010-0414) CVE-2010-0422
MLIST:[oss-security] 20100215 CVE Request -- MoinMoin -- 1.8.7 CVE-2010-0667 CVE-2010-0668 CVE-2010-0669 CVE-2010-0717
MLIST:[oss-security] 20100215 Re: CVE Request -- MoinMoin -- 1.8.7 CVE-2010-0667 CVE-2010-0668 CVE-2010-0669
MLIST:[oss-security] 20100217 CVE request: kernel information leak via userspace USB interface CVE-2010-1083
MLIST:[oss-security] 20100217 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100217 additional memory leak in USB userspace handling CVE-2010-1083
MLIST:[oss-security] 20100218 Re: CVE request: kernel information leak via userspace USB interface CVE-2010-1083
MLIST:[oss-security] 20100219 Re: CVE request: kernel information leak via userspace USB interface CVE-2010-1083
MLIST:[oss-security] 20100219 Re: additional memory leak in USB userspace handling CVE-2010-1083
MLIST:[oss-security] 20100221 Re: CVE Request -- MoinMoin -- 1.8.7 CVE-2010-0667 CVE-2010-0668 CVE-2010-0669
MLIST:[oss-security] 20100222 CVE request: kernel: ALSA: hda-intel: Avoid divide by zero crash CVE-2010-1085
MLIST:[oss-security] 20100222 CVE-2005-4886 assigned to old remote oops CVE-2005-4886
MLIST:[oss-security] 20100223 CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set CVE-2010-0427
MLIST:[oss-security] 20100224 CVE request: kernel: NFS DoS related to "automount" symlinks CVE-2010-1088
MLIST:[oss-security] 20100224 Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set CVE-2010-0427
MLIST:[oss-security] 20100224 kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only) CVE-2010-1451
MLIST:[oss-security] 20100301 CVE request: kernel: dvb-core: ULE decapsulation DoS CVE-2010-1086
MLIST:[oss-security] 20100303 CVE Request: libesmtp does not check NULL bytes in commonName CVE-2010-1192 CVE-2010-1194
MLIST:[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file CVE-2010-1087
MLIST:[oss-security] 20100303 OpenSSL (with KRB5) remote crash - CVE-2010-0433 CVE-2010-0433
MLIST:[oss-security] 20100304 Re: CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference CVE-2010-0437
MLIST:[oss-security] 20100304 kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100305 Re: CVE Request: gnome-screensaver termination by pressing "Enter" CVE-2010-0732
MLIST:[oss-security] 20100305 Re: Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100309 CVE Request: postgresql integer overflow in hash table size calculation CVE-2010-0733
MLIST:[oss-security] 20100309 Re: CVE Request -- cURL/libCURL 7.20.0 CVE-2010-0734
MLIST:[oss-security] 20100309 Re: CVE Request: libesmtp does not check NULL bytes in commonName CVE-2010-1192 CVE-2010-1194
MLIST:[oss-security] 20100310 CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header CVE-2010-0745
MLIST:[oss-security] 20100310 CVE Request -- aMSN -- improper SSL certificate validation (MITM) CVE-2010-0744
MLIST:[oss-security] 20100310 CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input CVE-2010-0736
MLIST:[oss-security] 20100312 CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS CVE-2010-0969
MLIST:[oss-security] 20100312 CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extension CVE-2010-0397
MLIST:[oss-security] 20100312 CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw CVE-2010-0727
MLIST:[oss-security] 20100312 CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach() CVE-2010-0729
MLIST:[oss-security] 20100316 Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS CVE-2010-0969
MLIST:[oss-security] 20100316 Re: CVE Request -- cURL/libCURL 7.20.0 CVE-2010-0734
MLIST:[oss-security] 20100316 Re: CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input CVE-2010-0736
MLIST:[oss-security] 20100316 Re: CVE Request: postgresql integer overflow in hash table size calculation CVE-2010-0733
MLIST:[oss-security] 20100316 Re: Re: CVE Request: gnome-screensaver termination by pressing "Enter" CVE-2010-0732
MLIST:[oss-security] 20100317 CVE-2009-4271 kernel: 32bit process on 64bit system DoS CVE-2009-4271
MLIST:[oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service CVE-2010-0008
MLIST:[oss-security] 20100323 CVE request: kernel: bluetooth: potential bad memory access with sysfs files CVE-2010-1084
MLIST:[oss-security] 20100329 CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS) CVE-2010-1188
MLIST:[oss-security] 20100329 CVE-2010-0741 qemu: Improper handling of erroneous data provided by Linux virtio-net driver CVE-2010-0741
MLIST:[oss-security] 20100330 CVE request: kernel: tipc: Fix oops on send prior to entering networked mode CVE-2010-1187
MLIST:[oss-security] 20100331 Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode CVE-2010-1187
MLIST:[oss-security] 20100331 iscsitarget/scsi-target-tuils format string CVE assignment CVE-2010-0743
MLIST:[oss-security] 20100401 CVE Request: policykit (minor) CVE-2010-0750
MLIST:[oss-security] 20100401 Re: CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header CVE-2010-0745
MLIST:[oss-security] 20100401 Re: CVE Request -- aMSN -- improper SSL certificate validation (MITM) CVE-2010-0744
MLIST:[oss-security] 20100401 Re: CVE Request: DeviceKit privilege escalation via pluggable storage device labels CVE-2010-0746
MLIST:[oss-security] 20100401 Re: CVE Request: policykit (minor) CVE-2010-0750
MLIST:[oss-security] 20100402 RE: CVE Request -- Zabbix v1.8.2 and v.1.6.9 CVE-2009-4498
MLIST:[oss-security] 20100403 CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message CVE-2010-1147
MLIST:[oss-security] 20100405 CVE request: kernel: cifs: cifs_create() NULL pointer dereference CVE-2010-1148
MLIST:[oss-security] 20100405 Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference CVE-2010-1148
MLIST:[oss-security] 20100406 CVE Request: MediaWiki 1.15.3 -- Login CSRF CVE-2010-1150
MLIST:[oss-security] 20100406 ClamAV small issues CVE-2010-0098
MLIST:[oss-security] 20100406 Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message CVE-2010-1147
MLIST:[oss-security] 20100407 Re: CVE Request: MediaWiki 1.15.3 -- Login CSRF CVE-2010-1150
MLIST:[oss-security] 20100407 Re: ClamAV small issues CVE-2010-0098
MLIST:[oss-security] 20100408 CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities CVE-2010-3441
MLIST:[oss-security] 20100408 CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) CVE-2010-1158
MLIST:[oss-security] 20100408 CVE request -- memcached CVE-2010-1152
MLIST:[oss-security] 20100408 Re: CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities CVE-2010-3441
MLIST:[oss-security] 20100408 Re: CVE request -- memcached CVE-2010-1152
MLIST:[oss-security] 20100410 CVE request: typo3 remote command execution CVE-2010-1153
MLIST:[oss-security] 20100411 CVE request: irssi 0.8.15 CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100412 Re: CVE request: irssi 0.8.15 CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100412 Re: CVE request: typo3 remote command execution CVE-2010-1153
MLIST:[oss-security] 20100413 Re: CVE request: irssi 0.8.15 CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100414 CVE request: GNU nano (minor) CVE-2010-1160 CVE-2010-1161
MLIST:[oss-security] 20100414 Couple of kernel issues CVE-2010-1162 CVE-2010-1488
MLIST:[oss-security] 20100414 Re: CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) CVE-2010-1158
MLIST:[oss-security] 20100414 Re: Couple of kernel issues CVE-2010-1162
MLIST:[oss-security] 20100415 CVE request: kernel: tty: release_one_tty() forgets to put pids CVE-2010-1162
MLIST:[oss-security] 20100415 Re: CVE request: kernel: tty: release_one_tty() forgets to put pids CVE-2010-1162
MLIST:[oss-security] 20100416 CVE Request: JIRA Issues CVE-2010-1164 CVE-2010-1165
MLIST:[oss-security] 20100416 Re: CVE Request: JIRA Issues CVE-2010-1164 CVE-2010-1165
MLIST:[oss-security] 20100417 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100419 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100427 CVE request - gfs2 kernel issue CVE-2010-1436
MLIST:[oss-security] 20100427 CVE request - kernel: find_keyring_by_name() can gain the freed keyring CVE-2010-1437
MLIST:[oss-security] 20100427 Re: CVE request - gfs2 kernel issue CVE-2010-1436
MLIST:[oss-security] 20100427 Re: CVE request - kernel: find_keyring_by_name() can gain the freed keyring CVE-2010-1437
MLIST:[oss-security] 20100427 Re: wafp insecure temporary directory CVE-2010-1438
MLIST:[oss-security] 20100427 wafp insecure temporary directory CVE-2010-1438
MLIST:[oss-security] 20100429 CVE request - Linux Kernel KGDB/ppc issue CVE-2010-1446
MLIST:[oss-security] 20100429 CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors CVE-2010-1173
MLIST:[oss-security] 20100429 Re: CVE request - Linux Kernel KGDB/ppc issue CVE-2010-1446
MLIST:[oss-security] 20100429 Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors CVE-2010-1173
MLIST:[oss-security] 20100430 Re: CVE request - Linux Kernel KGDB/ppc issue CVE-2010-1446
MLIST:[oss-security] 20100503 CVE request: lxr CVE-2010-1448
MLIST:[oss-security] 20100503 Re: CVE request: lxr CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100505 CVE Request - Piwik 0.5.5 - XSS vulnerability CVE-2010-1453
MLIST:[oss-security] 20100505 Re: CVE Request - Piwik 0.5.5 - XSS vulnerability CVE-2010-1453
MLIST:[oss-security] 20100505 Re: CVE Request [was Re: kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)] CVE-2010-1451
MLIST:[oss-security] 20100506 Re: CVE request: lxr CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100507 CVE Assignment (gnustep) CVE-2010-1457
MLIST:[oss-security] 20100507 CVE-2010-0730 xen: emulator instruction decoding inconsistency CVE-2010-0730
MLIST:[oss-security] 20100507 Re: CVE Assignment (gnustep) CVE-2010-1620
MLIST:[oss-security] 20100507 Re: CVE Assignment (wireshark) CVE-2010-1455
MLIST:[oss-security] 20100510 Re: A mysql flaw. CVE-2010-1626
MLIST:[oss-security] 20100511 Re: CVE assignment: ghostscript stack-based overflow CVE-2010-1628
MLIST:[oss-security] 20100513 KDENetwork vulnerabilities CVE-2010-1000 CVE-2010-1511
MLIST:[oss-security] 20100514 Re: CVE request: lxr CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100517 CVE request: phorum < 5.2.15 backend XSS CVE-2010-1629
MLIST:[oss-security] 20100517 CVE request: phpbb 3.0.7 and before 3.0.5 CVE-2010-1627 CVE-2010-1630
MLIST:[oss-security] 20100517 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100517 [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251 CVE-2010-2252 CVE-2010-2253
MLIST:[oss-security] 20100518 Re: A mysql flaw. CVE-2010-1626
MLIST:[oss-security] 20100518 Re: CVE assignment: ghostscript stack-based overflow CVE-2010-1628
MLIST:[oss-security] 20100518 Re: CVE request: phorum < 5.2.15 backend XSS CVE-2010-1629
MLIST:[oss-security] 20100518 Re: CVE request: phpbb 3.0.7 and before 3.0.5 CVE-2010-1627 CVE-2010-1630
MLIST:[oss-security] 20100518 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100518 Re: kernel: btrfs: check for read permission on src file in the clone ioctl CVE-2010-1636
MLIST:[oss-security] 20100518 kernel: btrfs: check for read permission on src file in the clone ioctl CVE-2010-1636
MLIST:[oss-security] 20100519 Re: CVE request: phpbb 3.0.7 and before 3.0.5 CVE-2010-1630
MLIST:[oss-security] 20100519 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100520 CVE-2010-1974 reject request (dupe of CVE-2010-1168) and CVE-2010-1447 description modification request CVE-2010-1168 CVE-2010-1169 CVE-2010-1170 CVE-2010-1447
MLIST:[oss-security] 20100520 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251 CVE-2010-2252
MLIST:[oss-security] 20100521 CVE Request: off by one DoS in pe_icons.c CVE-2010-1640
MLIST:[oss-security] 20100521 Re: [core] CVE Request for Horde and Squirrelmail CVE-2010-1638
MLIST:[oss-security] 20100521 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100524 Re: [core] CVE Request for Horde and Squirrelmail CVE-2010-1638
MLIST:[oss-security] 20100525 CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership CVE-2010-1641
MLIST:[oss-security] 20100525 Re: CVE Request for Horde and Squirrelmail CVE-2010-1637
MLIST:[oss-security] 20100525 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership CVE-2010-1641
MLIST:[oss-security] 20100525 Re: kernel: btrfs: check for read permission on src file in the clone ioctl CVE-2010-1636
MLIST:[oss-security] 20100526 CVE request - kernel: nfsd: fix vm overcommit crash CVE-2010-1643
MLIST:[oss-security] 20100526 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership CVE-2010-1641
MLIST:[oss-security] 20100526 Re: CVE request - kernel: nfsd: fix vm overcommit crash CVE-2010-1643
MLIST:[oss-security] 20100527 Re: CVE request - kernel: nfsd: fix vm overcommit crash CVE-2008-7256
MLIST:[oss-security] 20100529 Fwd: emesene preditable temporary filename CVE-2010-2053
MLIST:[oss-security] 20100601 SFCB vulnerabilities CVE-2010-1937 CVE-2010-2054
MLIST:[oss-security] 20100602 CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059
MLIST:[oss-security] 20100602 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100602 prewikka permission bug CVE-2010-2058
MLIST:[oss-security] 20100603 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100604 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100607 CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files CVE-2010-2066
MLIST:[oss-security] 20100608 Re: jar, fastjar directory traversal vulnerabilities CVE-2005-1080 CVE-2010-0831
MLIST:[oss-security] 20100608 jar, fastjar directory traversal vulnerabilities CVE-2005-1080 CVE-2010-0831 CVE-2010-2322
MLIST:[oss-security] 20100609 Re: CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files CVE-2010-2066
MLIST:[oss-security] 20100609 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251 CVE-2010-2252 CVE-2010-2253
MLIST:[oss-security] 20100610 CVE request for new wireshark vulnerabilities CVE-2010-2283 CVE-2010-2284 CVE-2010-2285 CVE-2010-2286 CVE-2010-2287
MLIST:[oss-security] 20100610 CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc CVE-2010-2444 CVE-2010-2445
MLIST:[oss-security] 20100610 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251
MLIST:[oss-security] 20100611 CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own CVE-2010-2071
MLIST:[oss-security] 20100611 CVE-2010-2070 kernel-xen: ia64-xen: unset be from the task psr CVE-2010-2070
MLIST:[oss-security] 20100613 CVE request - pyftpd default username and password vulnerability CVE-2010-2073
MLIST:[oss-security] 20100613 CVE request - pyftpd insecure usage of temporary directory CVE-2010-2072
MLIST:[oss-security] 20100614 CVE Request: w3m does not check null bytes CN/subjAltName CVE-2010-2074
MLIST:[oss-security] 20100614 Re: CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own CVE-2010-2071
MLIST:[oss-security] 20100614 Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution CVE-2009-4893 CVE-2010-2075
MLIST:[oss-security] 20100615 CVE Request - kernel: put_tty_queue NULL pointer deref CVE-2009-4895
MLIST:[oss-security] 20100615 Re: CVE Request - kernel: put_tty_queue NULL pointer deref CVE-2009-4895
MLIST:[oss-security] 20100617 CVE request - kernel: xfs swapext ioctl issue CVE-2010-2226
MLIST:[oss-security] 20100618 Re: CVE request - kernel: xfs swapext ioctl issue CVE-2010-2226
MLIST:[oss-security] 20100621 Re: CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities CVE-2010-2228 CVE-2010-2229 CVE-2010-2230 CVE-2010-2231
MLIST:[oss-security] 20100621 Re: [SquirrelMail-Security] CVE Request for Horde and Squirrelmail CVE-2010-1637
MLIST:[oss-security] 20100623 CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100623 CVE Request: avahi DoS CVE-2010-2244
MLIST:[oss-security] 20100623 CVE requests: LibTIFF CVE-2010-1411 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-2481 CVE-2010-2483 CVE-2010-2595 CVE-2010-2596
MLIST:[oss-security] 20100623 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100623 kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100623 kernel: thinkpad-acpi: lock down video output state access CVE-2010-3448
MLIST:[oss-security] 20100624 Re: CVE requests: LibTIFF CVE-2010-2443 CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100624 Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc CVE-2010-2444 CVE-2010-2445
MLIST:[oss-security] 20100625 CVE request: feh CVE-2010-2246
MLIST:[oss-security] 20100625 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100625 Re: CVE Request: avahi DoS CVE-2010-2244
MLIST:[oss-security] 20100626 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100628 CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server CVE-2010-2248
MLIST:[oss-security] 20100628 Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server CVE-2010-2248
MLIST:[oss-security] 20100628 Re: CVE request: feh CVE-2010-2246
MLIST:[oss-security] 20100629 CVE request: XSS in python paste CVE-2010-2477
MLIST:[oss-security] 20100629 Re: CVE requests: LibTIFF CVE-2010-2443 CVE-2010-2481 CVE-2010-2483
MLIST:[oss-security] 20100629 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[oss-security] 20100629 kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[oss-security] 20100630 Re: CVE request: XSS in python paste CVE-2010-2477
MLIST:[oss-security] 20100630 Re: CVE requests: LibTIFF CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100630 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[oss-security] 20100630 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100701 CVE request: moin multiple XSS CVE-2010-2487 CVE-2010-2969 CVE-2010-2970
MLIST:[oss-security] 20100701 Re: CVE requests: LibTIFF CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100702 CVE Request -- Roundup: XSS by processing PageTemplate template for a named page CVE-2010-2491
MLIST:[oss-security] 20100702 CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE CVE-2010-2489
MLIST:[oss-security] 20100702 Re: CVE Request -- Roundup: XSS by processing PageTemplate template for a named page CVE-2010-2491
MLIST:[oss-security] 20100702 Re: CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE CVE-2010-2489
MLIST:[oss-security] 20100702 Re: CVE request: moin multiple XSS CVE-2010-2487 CVE-2010-2969 CVE-2010-2970
MLIST:[oss-security] 20100704 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100704 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100704 Re: kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100705 Re: Request CVE ID for bogofilter base64 decoder CVE-2010-2494
MLIST:[oss-security] 20100705 Request CVE ID for bogofilter base64 decoder CVE-2010-2494
MLIST:[oss-security] 20100706 CVE Request: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100706 REPOST: CVE request for bogofilter CVE-2010-2494
MLIST:[oss-security] 20100706 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100706 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100706 Re: Request CVE ID for bogofilter base64 decoder CVE-2010-2494
MLIST:[oss-security] 20100706 patch for remote buffer overflows and local message spoofing in mipv6 daemon CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100707 CVE request - kernel: nfsd4: bug in read_buf CVE-2010-2521
MLIST:[oss-security] 20100707 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100707 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100708 Re: CVE request - kernel: nfsd4: bug in read_buf CVE-2010-2521
MLIST:[oss-security] 20100708 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100712 CVE request: NetSMB BSD kernel module (minor) CVE-2010-2530
MLIST:[oss-security] 20100713 CVE request, php var_export CVE-2010-2531
MLIST:[oss-security] 20100713 Multiple bugs in freetype CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520
MLIST:[oss-security] 20100714 Re: Multiple bugs in freetype CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520 CVE-2010-2527
MLIST:[oss-security] 20100715 CVE request: lxsession-logout CVE-2010-2532
MLIST:[oss-security] 20100715 Re: CVE request: lxsession-logout CVE-2010-2532
MLIST:[oss-security] 20100716 Re: CVE request: NetSMB BSD kernel module (minor) CVE-2010-2530
MLIST:[oss-security] 20100716 Re: Re: CVE request, php var_export CVE-2010-2531
MLIST:[oss-security] 20100720 CVE request for OpenTTD CVE-2010-2534
MLIST:[oss-security] 20100720 [oCERT-2010-002] Joomla input sanitization errors (XSS) CVE-2010-2535
MLIST:[oss-security] 20100721 CVE id request: mapserver CVE-2010-2539 CVE-2010-2540
MLIST:[oss-security] 20100721 CVE request: git CVE-2010-2542
MLIST:[oss-security] 20100721 CVE request: kernel: btrfs CVE-2010-2537 CVE-2010-2538
MLIST:[oss-security] 20100721 Re: CVE id request: mapserver CVE-2010-2539 CVE-2010-2540
MLIST:[oss-security] 20100721 Re: CVE request: kernel: btrfs CVE-2010-2537 CVE-2010-2538
MLIST:[oss-security] 20100721 Re: Universal XSS in Rekonq CVE-2010-2536
MLIST:[oss-security] 20100721 Re: [oCERT-2010-002] Joomla input sanitization errors (XSS) CVE-2010-2535
MLIST:[oss-security] 20100721 Universal XSS in Rekonq CVE-2010-2536
MLIST:[oss-security] 20100722 Cacti XSS fixes in 0.8.7g CVE-2010-2543 CVE-2010-2544 CVE-2010-2545
MLIST:[oss-security] 20100722 Re: CVE request: git CVE-2010-2542
MLIST:[oss-security] 20100726 CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100726 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100726 Re: Cacti XSS fixes in 0.8.7g CVE-2010-2543 CVE-2010-2544 CVE-2010-2545
MLIST:[oss-security] 20100728 CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter CVE-2010-2785
MLIST:[oss-security] 20100728 CVE Request: Piwik < 0.6.4 Arbitrary file inclusion CVE-2010-2786
MLIST:[oss-security] 20100729 Re: CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter CVE-2010-2785
MLIST:[oss-security] 20100729 Re: CVE Request: Piwik < 0.6.4 Arbitrary file inclusion CVE-2010-2786
MLIST:[oss-security] 20100729 Re: CVE request: mediawiki CVE-2010-2787 CVE-2010-2788 CVE-2010-2789
MLIST:[oss-security] 20100730 CVE-2010-2791: mod_proxy information leak affecting 2.2.9 only CVE-2010-2791
MLIST:[oss-security] 20100801 CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates CVE-2010-3901
MLIST:[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode CVE-2010-2800 CVE-2010-2801
MLIST:[oss-security] 20100802 CVE request: cmsmadesimple < 1.8.1 CVE-2010-2797
MLIST:[oss-security] 20100802 CVE request: kernel: gfs2: rename cases kernel panic CVE-2010-2798
MLIST:[oss-security] 20100802 CVE-2010-2524 kernel: dns_resolver upcall security issue CVE-2010-2524
MLIST:[oss-security] 20100802 Re: CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates CVE-2010-3901
MLIST:[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode CVE-2010-2800 CVE-2010-2801
MLIST:[oss-security] 20100802 Re: CVE request: cmsmadesimple < 1.8.1 CVE-2010-2797
MLIST:[oss-security] 20100802 Re: CVE request: kernel: gfs2: rename cases kernel panic CVE-2010-2798
MLIST:[oss-security] 20100802 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100802 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue CVE-2010-2524
MLIST:[oss-security] 20100803 CVE 2009 request: twiki before 4.3.2 CSRF CVE-2009-4898
MLIST:[oss-security] 20100803 CVE request: Attachment XSS in mantis < 1.2.2 CVE-2010-2802
MLIST:[oss-security] 20100803 Re: CVE 2009 request: twiki before 4.3.2 CSRF CVE-2009-4898
MLIST:[oss-security] 20100803 Re: CVE request: Attachment XSS in mantis < 1.2.2 CVE-2010-2802
MLIST:[oss-security] 20100803 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue CVE-2010-2524
MLIST:[oss-security] 20100806 CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts CVE-2010-2808
MLIST:[oss-security] 20100806 CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config CVE-2010-2809
MLIST:[oss-security] 20100806 Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more CVE-2010-2805 CVE-2010-2806 CVE-2010-2807 CVE-2010-2808
MLIST:[oss-security] 20100806 Re: CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config CVE-2010-2809
MLIST:[oss-security] 20100809 CVE Request - ZNC CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100809 CVE request: Lynx CVE-2010-2810
MLIST:[oss-security] 20100809 Re: CVE Request - ZNC CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100809 Re: CVE request: Lynx CVE-2010-2810
MLIST:[oss-security] 20100810 Re: Re: CVE Request - ZNC CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100811 CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow CVE-2010-2935 CVE-2010-2936
MLIST:[oss-security] 20100811 Re: CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow CVE-2010-2935 CVE-2010-2936
MLIST:[oss-security] 20100812 Re: CVE Request: openssl double free CVE-2010-2939
MLIST:[oss-security] 20100816 CVE request - kernel: integer overflow in ext4_ext_get_blocks() CVE-2010-3015
MLIST:[oss-security] 20100816 Minor security flaw with pam_xauth CVE-2010-3316
MLIST:[oss-security] 20100816 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() CVE-2010-3015
MLIST:[oss-security] 20100817 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() CVE-2010-3015
MLIST:[oss-security] 20100818 CVE request - kernel: net sched memleak CVE-2010-2942
MLIST:[oss-security] 20100818 CVE request - kernel: xfs: stale data exposure CVE-2010-2943
MLIST:[oss-security] 20100818 CVE request: zope-ldapuser CVE-2010-2944
MLIST:[oss-security] 20100819 CVE Request: SLiM insecure PATH assignment CVE-2010-2945
MLIST:[oss-security] 20100819 Re: CVE request - kernel: net sched memleak CVE-2010-2942
MLIST:[oss-security] 20100819 Re: CVE request - kernel: xfs: stale data exposure CVE-2010-2943
MLIST:[oss-security] 20100819 Re: CVE request: zope-ldapuser CVE-2010-2944
MLIST:[oss-security] 20100819 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100820 CVE Request: heap-based buffer overflow in libHX CVE-2010-2947
MLIST:[oss-security] 20100820 CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others CVE-2010-2946
MLIST:[oss-security] 20100820 Re: CVE Request: SLiM insecure PATH assignment CVE-2010-2945
MLIST:[oss-security] 20100820 Re: CVE Request: heap-based buffer overflow in libHX CVE-2010-2947
MLIST:[oss-security] 20100820 Re: CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others CVE-2010-2946
MLIST:[oss-security] 20100820 kernel: can: add limit for nframes and clean up signed/unsigned variables CVE-2010-2959
MLIST:[oss-security] 20100824 CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request CVE-2010-2948 CVE-2010-2949
MLIST:[oss-security] 20100824 CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present CVE-2010-2951
MLIST:[oss-security] 20100825 CVE id request: libc fortify source information disclosure CVE-2010-3192
MLIST:[oss-security] 20100825 CVE request: CouchDB insecure library loading (Debian/Ubuntu only) CVE-2010-2953
MLIST:[oss-security] 20100825 CVE request: VLC media player - DLL preloading vulnerability CVE-2010-3124
MLIST:[oss-security] 20100825 Re: CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request CVE-2010-2948 CVE-2010-2949
MLIST:[oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present CVE-2010-2951
MLIST:[oss-security] 20100825 Re: CVE request: VLC media player - DLL preloading vulnerability CVE-2010-3124
MLIST:[oss-security] 20100826 Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only) CVE-2010-2953
MLIST:[oss-security] 20100829 CVE request: serendipity < 1.5.4 xss CVE-2010-2957
MLIST:[oss-security] 20100829 Hardening the linker (was Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only)) CVE-2010-2953
MLIST:[oss-security] 20100831 CVE-2010-2955 kernel: wireless: fix 64K kernel heap content leak via ioctl CVE-2010-2955
MLIST:[oss-security] 20100831 Re: CVE id request: libc fortify source information disclosure CVE-2010-3192
MLIST:[oss-security] 20100831 Re: CVE request: serendipity < 1.5.4 xss CVE-2010-2957
MLIST:[oss-security] 20100901 CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) CVE-2010-2958
MLIST:[oss-security] 20100901 CVE-2010-2954 kernel: irda null ptr deref CVE-2010-2954
MLIST:[oss-security] 20100901 Re: CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) CVE-2010-2958
MLIST:[oss-security] 20100902 CVE-2010-2960 kernel: keyctl_session_to_parent null ptr deref CVE-2010-2960
MLIST:[oss-security] 20100902 Re: CVE id request: libc fortify source information disclosure CVE-2010-3192
MLIST:[oss-security] 20100903 CVE request: XSS in nusoap CVE-2010-3070
MLIST:[oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials CVE-2010-3071
MLIST:[oss-security] 20100905 CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100905 CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) CVE-2010-3072
MLIST:[oss-security] 20100905 CVE request: smbind Sql Injection CVE-2010-3076
MLIST:[oss-security] 20100905 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100907 CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak CVE-2010-3078
MLIST:[oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials CVE-2010-3071
MLIST:[oss-security] 20100907 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100907 Re: CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) CVE-2010-3072
MLIST:[oss-security] 20100907 Re: CVE request: XSS in nusoap CVE-2010-3070
MLIST:[oss-security] 20100907 Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak CVE-2010-3078
MLIST:[oss-security] 20100907 Re: CVE request: smbind Sql Injection CVE-2010-3076
MLIST:[oss-security] 20100908 CVE-2010-3080 kernel: /dev/sequencer open failure is not handled correctly CVE-2010-3080
MLIST:[oss-security] 20100909 CVE Assignment: django CVE-2010-3082
MLIST:[oss-security] 20100909 CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100909 CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL CVE-2010-3084
MLIST:[oss-security] 20100909 CVE request: mednafen stack manipulation CVE-2010-3085
MLIST:[oss-security] 20100910 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100910 Re: CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL CVE-2010-3084
MLIST:[oss-security] 20100910 Re: CVE request: mednafen stack manipulation CVE-2010-3085
MLIST:[oss-security] 20100911 CVE id requests: drupal CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686
MLIST:[oss-security] 20100913 CVE Request: mailman CVE-2010-3089
MLIST:[oss-security] 20100913 CVE Request: pidgin-knotify remote command injection CVE-2010-3088
MLIST:[oss-security] 20100913 Re: CVE Request: mailman CVE-2010-3089
MLIST:[oss-security] 20100913 Re: CVE Request: pidgin-knotify remote command injection CVE-2010-3088
MLIST:[oss-security] 20100913 Re: CVE id requests: drupal CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686
MLIST:[oss-security] 20100914 CVE request: kernel: numerous infoleaks CVE-2010-3296 CVE-2010-3297 CVE-2010-3298
MLIST:[oss-security] 20100914 CVE request: mantis before 1.2.3 (XSS) CVE-2010-2574 CVE-2010-3070 CVE-2010-3303 CVE-2010-3763
MLIST:[oss-security] 20100914 CVE request: xss in pecl-apc before 3.1.4 CVE-2010-3294
MLIST:[oss-security] 20100914 Re: CVE request: kernel: numerous infoleaks CVE-2010-3296 CVE-2010-3297 CVE-2010-3298
MLIST:[oss-security] 20100914 Re: CVE request: mantis before 1.2.3 (XSS) CVE-2010-2574 CVE-2010-3070 CVE-2010-3303 CVE-2010-3763
MLIST:[oss-security] 20100914 Re: CVE request: xss in pecl-apc before 3.1.4 CVE-2010-3294
MLIST:[oss-security] 20100916 CVE request: weborf: directory traversal CVE-2010-3306
MLIST:[oss-security] 20100916 CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow CVE-2010-3081
MLIST:[oss-security] 20100916 CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability CVE-2010-3301
MLIST:[oss-security] 20100916 CVE-identifier request for Dovecot ACL security bug CVE-2010-3304
MLIST:[oss-security] 20100916 Re: CVE request: mantis before 1.2.3 (XSS) CVE-2010-3303
MLIST:[oss-security] 20100916 Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability CVE-2010-3301
MLIST:[oss-security] 20100916 Re: CVE-identifier request for Dovecot ACL security bug CVE-2010-3304
MLIST:[oss-security] 20100917 CVE request: epiphany not checking ssl certs CVE-2010-3312
MLIST:[oss-security] 20100917 Re: CVE request: epiphany not checking ssl certs CVE-2010-3312 CVE-2010-3900
MLIST:[oss-security] 20100917 Re: CVE request: weborf: directory traversal CVE-2010-3306
MLIST:[oss-security] 20100917 Re: [oCERT-2010-003] Free Simple CMS path sanitization errors CVE-2010-3307
MLIST:[oss-security] 20100917 [oCERT-2010-003] Free Simple CMS path sanitization errors CVE-2010-3307
MLIST:[oss-security] 20100920 Re: CVE request: epiphany not checking ssl certs CVE-2010-3312
MLIST:[oss-security] 20100921 CVE request: kernel: Heap corruption in ROSE CVE-2010-3310
MLIST:[oss-security] 20100921 Re: CVE request: egroupware remote code and xss CVE-2010-3313 CVE-2010-3314
MLIST:[oss-security] 20100921 Re: CVE request: epiphany not checking ssl certs CVE-2010-3312
MLIST:[oss-security] 20100921 Re: CVE request: kernel: Heap corruption in ROSE CVE-2010-3310
MLIST:[oss-security] 20100921 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20100921 bzip2 CVE-2010-0405 integer overflow CVE-2010-0405
MLIST:[oss-security] 20100922 CVE request: clamav < 0.96.3 pdf bounds checking CVE-2010-3434
MLIST:[oss-security] 20100922 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100924 CVE Request -- Linux/SCTP DoS in sctp_packet_config() CVE-2010-3432
MLIST:[oss-security] 20100924 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100924 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20100925 CVE request: multiple kernel stack memory disclosures CVE-2010-4074 CVE-2010-4075 CVE-2010-4076 CVE-2010-4077 CVE-2010-4078 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083
MLIST:[oss-security] 20100925 Re: CVE Request -- Linux/SCTP DoS in sctp_packet_config() CVE-2010-3432
MLIST:[oss-security] 20100927 Re: CVE request: clamav < 0.96.3 pdf bounds checking CVE-2010-3434
MLIST:[oss-security] 20100927 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20100928 CVE request - kernel: pktcdvd ioctl dev_minor missing range check CVE-2010-3437
MLIST:[oss-security] 20100928 Re: CVE Request -- MySQL v5.1.49 -- multiple DoS flaws CVE-2010-3676 CVE-2010-3677 CVE-2010-3678 CVE-2010-3679 CVE-2010-3680 CVE-2010-3681 CVE-2010-3682 CVE-2010-3683
MLIST:[oss-security] 20100928 Re: CVE request - kernel: pktcdvd ioctl dev_minor missing range check CVE-2010-3437
MLIST:[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking CVE-2010-3434
MLIST:[oss-security] 20100928 Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel CVE-2010-3448
MLIST:[oss-security] 20100928 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435 CVE-2010-4708
MLIST:[oss-security] 20100928 [oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference CVE-2010-3429
MLIST:[oss-security] 20100929 CVE request - kernel: prevent heap corruption in snd_ctl_new() CVE-2010-3442
MLIST:[oss-security] 20100929 CVE request - phpCAS: prevent symlink attacks, directory traversal and XSS during a proxy callback CVE-2010-3690 CVE-2010-3691 CVE-2010-3692
MLIST:[oss-security] 20100929 CVE request: Horde Gollem <1.1.2 XSS in view.php CVE-2010-3447
MLIST:[oss-security] 20100929 Re: CVE request - kernel: prevent heap corruption in snd_ctl_new() CVE-2010-3442
MLIST:[oss-security] 20100929 Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel CVE-2010-3448
MLIST:[oss-security] 20100930 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php CVE-2010-3447 CVE-2010-3693 CVE-2010-3695
MLIST:[oss-security] 20100930 Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel CVE-2010-3448
MLIST:[oss-security] 20101001 CVE request: freeradius CVE-2010-3696 CVE-2010-3697
MLIST:[oss-security] 20101001 Re: CVE request - phpCAS: prevent symlink attacks, directory traversal and XSS during a proxy callback CVE-2010-3690 CVE-2010-3691 CVE-2010-3692
MLIST:[oss-security] 20101001 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php CVE-2010-3693 CVE-2010-3695
MLIST:[oss-security] 20101001 Re: CVE request: freeradius CVE-2010-3696 CVE-2010-3697
MLIST:[oss-security] 20101001 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark CVE-2010-3445
MLIST:[oss-security] 20101004 CVE Request: more dovecot ACL issues CVE-2010-3706 CVE-2010-3707
MLIST:[oss-security] 20101004 CVE request: kernel: SCTP memory corruption in HMAC handling CVE-2010-3705
MLIST:[oss-security] 20101004 Re: CVE Request: more dovecot ACL issues CVE-2010-3706 CVE-2010-3707
MLIST:[oss-security] 20101004 Re: CVE request: kernel: SCTP memory corruption in HMAC handling CVE-2010-3705
MLIST:[oss-security] 20101004 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark CVE-2010-3702 CVE-2010-3703 CVE-2010-3704
MLIST:[oss-security] 20101004 Re: Minor security flaw with pam_xauth CVE-2010-3430 CVE-2010-3431 CVE-2010-4706 CVE-2010-4707
MLIST:[oss-security] 20101006 Re: CVE request: multiple kernel stack memory disclosures CVE-2010-4072 CVE-2010-4073 CVE-2010-4074 CVE-2010-4075 CVE-2010-4076 CVE-2010-4077 CVE-2010-4078 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083
MLIST:[oss-security] 20101007 qpidd SSL connection DoS (CVE-2010-3083) CVE-2010-3083
MLIST:[oss-security] 20101008 CVE request: mybb before 1.4.11 and before 1.4.12 CVE-2009-4448 CVE-2009-4449 CVE-2010-4624 CVE-2010-4625 CVE-2010-4626 CVE-2010-4627 CVE-2010-4628 CVE-2010-4629
MLIST:[oss-security] 20101008 CVE request: usebb before 1.0.11 unauthorized access to content CVE-2010-3713
MLIST:[oss-security] 20101011 CVE request: joomla before 1.5.21 XSS CVE-2010-3712
MLIST:[oss-security] 20101011 Re: CVE request: joomla before 1.5.21 XSS CVE-2010-3712
MLIST:[oss-security] 20101011 Re: CVE request: mybb before 1.4.11 and before 1.4.12 CVE-2009-4448 CVE-2009-4449 CVE-2010-4624 CVE-2010-4625 CVE-2010-4626 CVE-2010-4627 CVE-2010-4628 CVE-2010-4629
MLIST:[oss-security] 20101011 Re: CVE request: usebb before 1.0.11 unauthorized access to content CVE-2010-3713
MLIST:[oss-security] 20101011 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark CVE-2010-3445
MLIST:[oss-security] 20101013 CVE Request -- cURL / mingw32-cURL -- Did not strip directory parts separated by backslashes, when downloading files CVE-2010-3842
MLIST:[oss-security] 20101013 Re: CVE Request -- cURL / mingw32-cURL -- Did not strip directory parts separated by backslashes, when downloading files CVE-2010-3842
MLIST:[oss-security] 20101021 CVE request: kernel: setup_arg_pages: diagnose excessive argument size CVE-2010-3858
MLIST:[oss-security] 20101022 CVE request: kernel: heap overflow in TIPC CVE-2010-3859
MLIST:[oss-security] 20101022 CVE-2010-1693: OFED openibd startup script uses predictable tmpfile CVE-2010-1693
MLIST:[oss-security] 20101022 Re: CVE request: kernel: heap overflow in TIPC CVE-2010-3859
MLIST:[oss-security] 20101022 Re: CVE request: kernel: setup_arg_pages: diagnose excessive argument size CVE-2010-3858
MLIST:[oss-security] 20101025 CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL CVE-2010-3861
MLIST:[oss-security] 20101025 Re: CVE request: multiple kernel stack memory disclosures CVE-2010-4072 CVE-2010-4073 CVE-2010-4074 CVE-2010-4075 CVE-2010-4076 CVE-2010-4077 CVE-2010-4078 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083
MLIST:[oss-security] 20101025 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20101026 Re: CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL CVE-2010-3861
MLIST:[oss-security] 20101029 CVE request: kernel: iovec overflow in rds_rdma_pages() CVE-2010-3865
MLIST:[oss-security] 20101101 Re: CVE request: kernel: iovec overflow in rds_rdma_pages() CVE-2010-3865
MLIST:[oss-security] 20101101 Re: Proftpd pre-authentication buffer overflow in Telnet code CVE-2010-3867
MLIST:[oss-security] 20101102 CVE request: kernel stack infoleaks CVE-2010-3875 CVE-2010-3876 CVE-2010-3877
MLIST:[oss-security] 20101102 Re: CVE request: kernel stack infoleaks CVE-2010-3876
MLIST:[oss-security] 20101102 Re: utf-8 security issue in php CVE-2010-3870
MLIST:[oss-security] 20101102 utf-8 security issue in php CVE-2010-3870
MLIST:[oss-security] 20101103 CVE request: X.25 remote DoS CVE-2010-3873
MLIST:[oss-security] 20101103 CVE request: kernel: CAN information leak CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101103 Re: utf-8 security issue in php CVE-2010-3870
MLIST:[oss-security] 20101104 CVE request: fuse CVE-2010-3879
MLIST:[oss-security] 20101104 CVE request: kernel: kvm kernel stack leakage CVE-2010-3881
MLIST:[oss-security] 20101104 CVE request: kernel: logic error in INET_DIAG bytecode auditing CVE-2010-3880
MLIST:[oss-security] 20101104 Re: CVE request: X.25 remote DoS CVE-2010-3873
MLIST:[oss-security] 20101104 Re: CVE request: kernel stack infoleaks CVE-2010-3875 CVE-2010-3876 CVE-2010-3877
MLIST:[oss-security] 20101104 Re: CVE request: kernel: CAN information leak CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101105 Re: CVE request: fuse CVE-2010-3879
MLIST:[oss-security] 20101105 Re: CVE request: kernel: kvm kernel stack leakage CVE-2010-3881
MLIST:[oss-security] 20101105 Re: CVE request: kernel: logic error in INET_DIAG bytecode auditing CVE-2010-3880
MLIST:[oss-security] 20101107 CVE Request: PHP 5.3.3, libmbfl, mb_strcut CVE-2010-4156
MLIST:[oss-security] 20101107 Re: CVE request: moodle 1.9.10 CVE-2010-4207 CVE-2010-4208 CVE-2010-4209
MLIST:[oss-security] 20101108 CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101108 Re: CVE Request: PHP 5.3.3, libmbfl, mb_strcut CVE-2010-4156
MLIST:[oss-security] 20101108 Re: CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101109 Re: CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101110 CVE request: kernel: L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[oss-security] 20101110 CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4162 CVE-2010-4163
MLIST:[oss-security] 20101110 CVE request: mono loading shared libs from cwd CVE-2010-4159
MLIST:[oss-security] 20101110 CVE-2010-3086 kernel panic via futex CVE-2010-3086
MLIST:[oss-security] 20101110 Re: CVE request: kernel: L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[oss-security] 20101110 Re: CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101110 Re: CVE request: mono loading shared libs from cwd CVE-2010-4159
MLIST:[oss-security] 20101111 CVE request: kernel: remote DoS in X.25 CVE-2010-4164
MLIST:[oss-security] 20101112 CVE request: ImageMagick opens config files in $CWD CVE-2010-4167
MLIST:[oss-security] 20101112 CVE request: Joomla 1.5.21 SQL Injection and Information Disclosure CVE-2010-4166 CVE-2010-4696
MLIST:[oss-security] 20101112 CVE request: kernel: possible kernel oops from user MSS CVE-2010-4165
MLIST:[oss-security] 20101112 Re: CVE request: Joomla 1.5.21 SQL Injection and Information Disclosure CVE-2010-4166 CVE-2010-4696
MLIST:[oss-security] 20101112 Re: CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4162 CVE-2010-4163
MLIST:[oss-security] 20101112 Re: CVE request: kernel: possible kernel oops from user MSS CVE-2010-4165
MLIST:[oss-security] 20101112 Re: CVE request: kernel: remote DoS in X.25 CVE-2010-4164
MLIST:[oss-security] 20101114 CVE request for OpenTTD CVE-2010-4168
MLIST:[oss-security] 20101115 CVE request: kernel: perf bug CVE-2010-4169
MLIST:[oss-security] 20101115 Re: CVE request for OpenTTD CVE-2010-4168
MLIST:[oss-security] 20101115 Re: CVE request: ImageMagick opens config files in $CWD CVE-2010-4167
MLIST:[oss-security] 20101115 Re: CVE request: kernel: perf bug CVE-2010-4169
MLIST:[oss-security] 20101116 CVE Request: libsdp CVE-2010-4173
MLIST:[oss-security] 20101116 Re: CVE Request: libsdp CVE-2010-4173
MLIST:[oss-security] 20101117 CVE request: kernel: integer overflow in RDS CVE-2010-4175
MLIST:[oss-security] 20101118 NULL byte poisoning fix in php 5.3.4+ CVE-2006-7243
MLIST:[oss-security] 20101118 Re: CVE request: kernel: integer overflow in RDS CVE-2010-4175
MLIST:[oss-security] 20101118 Re: NULL byte poisoning fix in php 5.3.4+ CVE-2006-7243
MLIST:[oss-security] 20101121 CVE Request: gif2png: command-line buffer overflow problem CVE-2009-5018 CVE-2010-4694
MLIST:[oss-security] 20101121 Re: CVE Request: gif2png: command-line buffer overflow problem CVE-2009-5018 CVE-2010-4694
MLIST:[oss-security] 20101122 CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads CVE-2010-4243
MLIST:[oss-security] 20101122 Re: CVE Request: gif2png: command-line buffer overflow problem CVE-2009-5018 CVE-2010-4694
MLIST:[oss-security] 20101122 Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads CVE-2010-4243
MLIST:[oss-security] 20101123 CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec CVE-2010-4248
MLIST:[oss-security] 20101123 CVE request: xen: request-processing loop is unbounded in blkback CVE-2010-4247
MLIST:[oss-security] 20101123 Can I request a cve for pfsense regarding --> "pfSense "graph.php" Cross-Site Scripting Vulnerabilities" CVE-2010-4246 CVE-2010-4412
MLIST:[oss-security] 20101124 CVE request: kernel: unix socket local dos CVE-2010-4249
MLIST:[oss-security] 20101124 Re: CVE request: kernel: L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[oss-security] 20101124 Re: CVE request: kernel: inotify memory leak CVE-2010-4250
MLIST:[oss-security] 20101124 Re: CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec CVE-2010-4248
MLIST:[oss-security] 20101124 Re: CVE request: kernel: unix socket local dos CVE-2010-4249
MLIST:[oss-security] 20101124 Re: CVE request: xen: request-processing loop is unbounded in blkback CVE-2010-4247
MLIST:[oss-security] 20101124 Re: Can I request a cve for pfsense regarding --> "pfSense "graph.php" Cross-Site Scripting Vulnerabilities" CVE-2010-4246 CVE-2010-4412
MLIST:[oss-security] 20101129 Re: CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4163 CVE-2010-4668
MLIST:[oss-security] 20101129 kernel: Multiple vulnerabilities in AF_ECONET CVE-2010-3848 CVE-2010-3849 CVE-2010-3850
MLIST:[oss-security] 20101130 CVE request: kernel: pipe_fcntl local DoS CVE-2010-4256
MLIST:[oss-security] 20101130 CVE request: xen: x86-64: don't crash Xen upon direct pv guest access CVE-2010-4255
MLIST:[oss-security] 20101130 Re: CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4668
MLIST:[oss-security] 20101130 Re: CVE request: kernel: pipe_fcntl local DoS CVE-2010-4256
MLIST:[oss-security] 20101130 Re: CVE request: xen: x86-64: don't crash Xen upon direct pv guest access CVE-2010-4255
MLIST:[oss-security] 20101201 CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part) CVE-2010-2761 CVE-2010-4410
MLIST:[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part) CVE-2010-2761 CVE-2010-4410 CVE-2010-4411
MLIST:[oss-security] 20101202 CVE Request -- FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header CVE-2010-4259
MLIST:[oss-security] 20101202 CVE request: kernel: failure to revert address limit override in OOPS error path CVE-2010-4258
MLIST:[oss-security] 20101202 Re: CVE Request -- FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header CVE-2010-4259
MLIST:[oss-security] 20101202 Re: CVE request: kernel: failure to revert address limit override in OOPS error path CVE-2010-4258
MLIST:[oss-security] 20101202 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101202 kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101203 CVE Request -- Xfig: Stack-based buffer overflow by processing FIG image with crafted color definition CVE-2010-4262
MLIST:[oss-security] 20101203 Re: clamav 0.96.5 released CVE-2010-4260 CVE-2010-4261 CVE-2010-4479
MLIST:[oss-security] 20101203 clamav 0.96.5 released CVE-2010-4260 CVE-2010-4261 CVE-2010-4479
MLIST:[oss-security] 20101206 CVE request: kernel: igb panics when receiving tag vlan packet CVE-2010-4263
MLIST:[oss-security] 20101206 Re: CVE Request -- Xfig: Stack-based buffer overflow by processing FIG image with crafted color definition CVE-2010-4262
MLIST:[oss-security] 20101206 Re: CVE request: kernel: igb panics when receiving tag vlan packet CVE-2010-4263
MLIST:[oss-security] 20101206 Re: CVE request: mybb before 1.4.11 and before 1.4.12 CVE-2009-4448 CVE-2009-4449 CVE-2010-4624 CVE-2010-4625 CVE-2010-4626 CVE-2010-4627 CVE-2010-4628 CVE-2010-4629
MLIST:[oss-security] 20101206 Re: Can I request a cve for pfsense regarding --> "pfSense "graph.php" Cross-Site Scripting Vulnerabilities" CVE-2010-4412
MLIST:[oss-security] 20101208 CVE request: kernel: NULL pointer dereference in AF_ECONET CVE-2010-4342
MLIST:[oss-security] 20101208 CVE request: kernel: bfa driver sysfs crash CVE-2010-4343
MLIST:[oss-security] 20101208 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101209 Re: CVE request: kernel: NULL pointer dereference in AF_ECONET CVE-2010-4342
MLIST:[oss-security] 20101209 Re: CVE request: kernel: bfa driver sysfs crash CVE-2010-4343
MLIST:[oss-security] 20101209 Re: CVE requests: IO::Socket::SSL, cakephp, collectd, gnash, ocrodjvu, hypermail, libcloud, piwigo CVE-2010-4334
MLIST:[oss-security] 20101209 Re: Re: NULL byte poisoning fix in php 5.3.4+ CVE-2006-7243
MLIST:[oss-security] 20101209 Re: [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] CVE-2010-4346
MLIST:[oss-security] 20101209 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101209 [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] CVE-2010-4346
MLIST:[oss-security] 20101210 Exim remote root CVE-2010-4344 CVE-2010-4345
MLIST:[oss-security] 20101210 Re: Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check CVE-2010-4346
MLIST:[oss-security] 20101210 Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check CVE-2010-4346
MLIST:[oss-security] 20101213 Re: Issues without CVE names in PHP 5.3.4/5.2.15 release CVE-2011-0752
MLIST:[oss-security] 20101215 CVE Request: local privilege escalation via /sys/kernel/debug/acpi/custom_method CVE-2010-4347
MLIST:[oss-security] 20101215 CVE request: MantisBT <=1.2.3 (db_type) Cross-Site Scripting & Path Disclosure Vulnerability CVE-2010-4348 CVE-2010-4349
MLIST:[oss-security] 20101215 CVE request: MantisBT <=1.2.3 (db_type) Local File Inclusion Vulnerability CVE-2010-4350
MLIST:[oss-security] 20101215 Re: CVE Request: local privilege escalation via /sys/kernel/debug/acpi/custom_method CVE-2010-4347
MLIST:[oss-security] 20101216 CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants CVE-2010-4352
MLIST:[oss-security] 20101216 CVE request: Drupal views module CSRF/XSS before 2.11, XSS before 2.12 CVE-2010-4519 CVE-2010-4520 CVE-2010-4521
MLIST:[oss-security] 20101216 Re: CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants CVE-2010-4352
MLIST:[oss-security] 20101216 Re: CVE request: MantisBT <=1.2.3 (db_type) Cross-Site Scripting & Path Disclosure Vulnerability CVE-2010-4348 CVE-2010-4349
MLIST:[oss-security] 20101216 Re: CVE request: MantisBT <=1.2.3 (db_type) Local File Inclusion Vulnerability CVE-2010-4350
MLIST:[oss-security] 20101220 CVE Request: MyBB XSS bugs CVE-2010-4522
MLIST:[oss-security] 20101220 CVE request: kernel: CAN information leak, 2nd attempt CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101220 Re: CVE request: kernel: CAN information leak, 2nd attempt CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101221 CVE Request -- MHonArc: Improper escaping of certain HTML sequences (XSS) CVE-2010-4524
MLIST:[oss-security] 20101221 CVE request: opensc buffer overflow CVE-2010-4523
MLIST:[oss-security] 20101221 Re: CVE Request -- MHonArc: Improper escaping of certain HTML sequences (XSS) CVE-2010-4524
MLIST:[oss-security] 20101221 Re: CVE Request: MyBB XSS bugs CVE-2010-4522
MLIST:[oss-security] 20101221 Re: CVE request: Drupal views module CSRF/XSS before 2.11, XSS before 2.12 CVE-2010-4519 CVE-2010-4520 CVE-2010-4521
MLIST:[oss-security] 20101221 Re: Re: CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants CVE-2010-4352
MLIST:[oss-security] 20101222 CVE Request -- 1, ccid -- int.overflow leading to array index error 2, pcsc-lite stack-based buffer overflow in ATR decoder [was: CVE request: opensc buffer overflow ] CVE-2010-4530 CVE-2010-4531
MLIST:[oss-security] 20101222 Re: CVE request: opensc buffer overflow CVE-2010-4523
MLIST:[oss-security] 20101223 CVE Request -- Django 1.2.4, Django 1.1.3 and Django 1.3 beta 1 -- addressing two security flaws CVE-2010-4534 CVE-2010-4535
MLIST:[oss-security] 20101223 CVE request: kernel: irda: prevent integer underflow in IRLMP_ENUMDEVICES CVE-2010-4529
MLIST:[oss-security] 20101224 IO::Socket::SSL perl module: CVE-2010-4501/CVE-2010-4334 dupe CVE-2010-4334
MLIST:[oss-security] 20101227 CVE Request -- Pidgin v2.7.6 <= x <= v2.7.8 -- MSN DirectConnect DoS (crash due NULL ptr dereference) after receiving a short P2P message CVE-2010-4528
MLIST:[oss-security] 20101230 CVE request: kernel: buffer overflow in OSS load_mixer_volumes CVE-2010-4527
MLIST:[oss-security] 20101230 CVE request: wordpress before 3.0.4 XSS CVE-2010-4536
MLIST:[oss-security] 20101231 CVE Request: CrawlTrack < 3.2.7 - remote php code execution CVE-2010-4537
MLIST:[oss-security] 20101231 CVE Request: Wireshark CVE-2010-4538
MLIST:[oss-security] 20101231 Re: CVE Request -- Pidgin v2.7.6 <= x <= v2.7.8 -- MSN DirectConnect DoS (crash due NULL ptr dereference) after receiving a short P2P message CVE-2010-4528
MLIST:[oss-security] 20101231 Re: CVE request: kernel: buffer overflow in OSS load_mixer_volumes CVE-2010-4527
MLIST:[oss-security] 20110102 CVE request for subversion CVE-2010-4539 CVE-2010-4644
MLIST:[oss-security] 20110103 CVE request for buffer overflows in gimp CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543
MLIST:[oss-security] 20110103 Re: CVE Request -- 1, ccid -- int.overflow leading to array index error 2, pcsc-lite stack-based buffer overflow in ATR decoder [was: CVE request: opensc buffer overflow ] CVE-2010-4530 CVE-2010-4531
MLIST:[oss-security] 20110103 Re: CVE Request -- Django 1.2.4, Django 1.1.3 and Django 1.3 beta 1 -- addressing two security flaws CVE-2010-4534 CVE-2010-4535
MLIST:[oss-security] 20110103 Re: CVE Request: CrawlTrack < 3.2.7 - remote php code execution CVE-2010-4537
MLIST:[oss-security] 20110103 Re: CVE Request: Wireshark CVE-2010-4538
MLIST:[oss-security] 20110103 Re: CVE request for subversion CVE-2010-4539
MLIST:[oss-security] 20110103 Re: CVE request: kernel: irda: prevent integer underflow in IRLMP_ENUMDEVICES CVE-2010-4529
MLIST:[oss-security] 20110104 (possible) CVE request: Clickjacking in Mediawiki CVE-2011-0003
MLIST:[oss-security] 20110104 CVE request: silverstripe before 2.4.4 CVE-2010-4822 CVE-2010-4823 CVE-2010-4824 CVE-2010-5078 CVE-2010-5079 CVE-2010-5080 CVE-2010-5087 CVE-2010-5088
MLIST:[oss-security] 20110104 CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() CVE-2010-4526
MLIST:[oss-security] 20110104 Re: (possible) CVE request: Clickjacking in Mediawiki CVE-2011-0003
MLIST:[oss-security] 20110104 Re: CVE request for buffer overflows in gimp CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543
MLIST:[oss-security] 20110104 Re: CVE request for subversion CVE-2010-4539 CVE-2010-4644
MLIST:[oss-security] 20110104 Re: CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() CVE-2010-4526
MLIST:[oss-security] 20110105 CVE Request: Multiple XSS Vulnerabiliies < Piwik 1.1 CVE-2011-0004
MLIST:[oss-security] 20110105 CVE request: patch directory traversal flaw CVE-2010-4651
MLIST:[oss-security] 20110105 CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleak CVE-2010-4525
MLIST:[oss-security] 20110105 Re: CVE request for subversion CVE-2010-4539 CVE-2010-4644
MLIST:[oss-security] 20110105 Re: CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleak CVE-2010-4525
MLIST:[oss-security] 20110105 Re: possible flaw in widely used strtod.c implementation CVE-2010-4645
MLIST:[oss-security] 20110105 possible flaw in widely used strtod.c implementation CVE-2010-4645
MLIST:[oss-security] 20110106 CVE Request: Eclipse IDE Version: 3.6.1 | Help Server Local Cross Site Scripting (XSS) CVE-2010-4647
MLIST:[oss-security] 20110106 CVE request: hastymail before 1.01 XSS CVE-2010-4646
MLIST:[oss-security] 20110106 Re: CVE Request: Eclipse IDE Version: 3.6.1 | Help Server Local Cross Site Scripting (XSS) CVE-2010-4647
MLIST:[oss-security] 20110106 Re: CVE Request: Multiple XSS Vulnerabiliies < Piwik 1.1 CVE-2011-0004
MLIST:[oss-security] 20110106 Re: CVE Request: kernel [Re: Security review of 2.6.32.28] CVE-2010-4648 CVE-2010-4650 CVE-2011-0006
MLIST:[oss-security] 20110106 Re: CVE request: hastymail before 1.01 XSS CVE-2010-4646
MLIST:[oss-security] 20110106 Re: CVE request: patch directory traversal flaw CVE-2010-4651
MLIST:[oss-security] 20110106 Re: CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleak CVE-2010-4525
MLIST:[oss-security] 20110106 Re: possible flaw in widely used strtod.c implementation CVE-2010-4645
MLIST:[oss-security] 20110107 CVE Request - pimd - Insecure file creation in /var/tmp CVE-2011-0007
MLIST:[oss-security] 20110107 Re: CVE Request - pimd - Insecure file creation in /var/tmp CVE-2011-0007
MLIST:[oss-security] 20110110 CVE request: qemu-kvm: Setting VNC password to empty string silently disables all authentication CVE-2011-0011
MLIST:[oss-security] 20110110 Re: CVE request: qemu-kvm: Setting VNC password to empty string silently disables all authentication CVE-2011-0011
MLIST:[oss-security] 20110111 CVE request: sudo does not ask for password on GID changes CVE-2011-0010
MLIST:[oss-security] 20110112 Re: CVE request: qemu-kvm: Setting VNC password to empty string silently disables all authentication CVE-2011-0011
MLIST:[oss-security] 20110112 Re: CVE request: sudo does not ask for password on GID changes CVE-2011-0010
MLIST:[oss-security] 20110113 CVE requests: ftpls, xdigger, lbreakout2, calibre, typo3 CVE-2010-5097 CVE-2010-5098 CVE-2010-5099 CVE-2010-5100 CVE-2010-5101 CVE-2010-5102 CVE-2010-5103 CVE-2010-5104
MLIST:[oss-security] 20110118 CVE request: heap corruption in libpango CVE-2011-0020
MLIST:[oss-security] 20110118 Re: CVE request: tor CVE-2011-0015 CVE-2011-0016
MLIST:[oss-security] 20110119 2 acpid flaws CVE-2011-1159
MLIST:[oss-security] 20110119 CVE request: heap corruption in VLC media player CVE-2011-0021
MLIST:[oss-security] 20110120 Re: CVE request: heap corruption in VLC media player CVE-2011-0021
MLIST:[oss-security] 20110120 Re: CVE request: heap corruption in libpango CVE-2011-0020
MLIST:[oss-security] 20110123 CVE request: MaraDNS DoS via long queries CVE-2011-0520
MLIST:[oss-security] 20110124 CVE request: linux kernel heap issues CVE-2010-4655 CVE-2010-4656
MLIST:[oss-security] 20110124 CVE request: multiple gypsy vulnerabilities CVE-2011-0523 CVE-2011-0524
MLIST:[oss-security] 20110124 Re: CVE request: MaraDNS DoS via long queries CVE-2011-0520
MLIST:[oss-security] 20110124 Re: CVE request: linux kernel heap issues CVE-2010-4655 CVE-2010-4656
MLIST:[oss-security] 20110125 CVE Request: VLC Subtitle StripTags heap corruption CVE-2011-0522
MLIST:[oss-security] 20110125 Linux kernel av7110 negative array offset CVE-2011-0521
MLIST:[oss-security] 20110125 Re: CVE Request: VLC Subtitle StripTags heap corruption CVE-2011-0522
MLIST:[oss-security] 20110125 Re: CVE request: linux kernel heap issues CVE-2010-4655 CVE-2010-4656
MLIST:[oss-security] 20110125 Re: CVE request: multiple gypsy vulnerabilities CVE-2011-0523 CVE-2011-0524
MLIST:[oss-security] 20110125 Re: Linux kernel av7110 negative array offset CVE-2011-0521
MLIST:[oss-security] 20110127 CVE Request:Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability CVE-2011-0526
MLIST:[oss-security] 20110127 CVE request: puppet CVE-2011-0528
MLIST:[oss-security] 20110127 Re: CVE Request:Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability CVE-2011-0526
MLIST:[oss-security] 20110127 Re: CVE request: puppet CVE-2011-0528
MLIST:[oss-security] 20110128 CVE Request -- NDB: CVE-2005-3534 reintroduced in upstream nbd-v2.9.0 version CVE-2011-0530
MLIST:[oss-security] 20110128 Re: CVE request: linux kernel heap issues CVE-2010-4655
MLIST:[oss-security] 20110131 CVE request: code execution in VLC media player CVE-2011-0531
MLIST:[oss-security] 20110131 Re: CVE Request -- NDB: CVE-2005-3534 reintroduced in upstream nbd-v2.9.0 version CVE-2011-0530
MLIST:[oss-security] 20110131 Re: CVE request: code execution in VLC media player CVE-2011-0531
MLIST:[oss-security] 20110201 CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability CVE-2011-0535
MLIST:[oss-security] 20110201 CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.1 CVE-2011-0537
MLIST:[oss-security] 20110201 CVE request: fuse CVE-2011-0541 CVE-2011-0542 CVE-2011-0543
MLIST:[oss-security] 20110203 CVE request: glibc CVE-2010-3847 fix regression CVE-2011-0536
MLIST:[oss-security] 20110203 Re: CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability CVE-2011-0535
MLIST:[oss-security] 20110203 Re: CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.1 CVE-2011-0537
MLIST:[oss-security] 20110203 Re: CVE request: fuse CVE-2011-0541 CVE-2011-0542 CVE-2011-0543
MLIST:[oss-security] 20110203 Re: CVE request: glibc CVE-2010-3847 fix regression CVE-2011-0536
MLIST:[oss-security] 20110204 Re: [vendor-sec] OpenSSH security advisory: legacy certificate signing in 5.6/5.7 CVE-2011-0539
MLIST:[oss-security] 20110204 Wireshark: Freeing uninitialized pointer CVE-2011-0538
MLIST:[oss-security] 20110208 Re: CVE request: fuse CVE-2011-0541 CVE-2011-0542 CVE-2011-0543
MLIST:[oss-security] 20110209 CVE request for feh CVE-2011-0702
MLIST:[oss-security] 20110209 CVE request: wordpress before 3.0.5 CVE-2011-0700 CVE-2011-0701
MLIST:[oss-security] 20110209 Django multiple flaws (CVEs inside) CVE-2011-0696 CVE-2011-0697 CVE-2011-0698
MLIST:[oss-security] 20110209 Re: CVE request for feh CVE-2011-0702
MLIST:[oss-security] 20110209 Re: CVE request: wordpress before 3.0.5 CVE-2011-0700 CVE-2011-0701
MLIST:[oss-security] 20110214 PHP Exif 64bit Casting Vulnerability, CVE request CVE-2011-0708
MLIST:[oss-security] 20110216 CVE request - kernel: bridge br_multicast NULL pointer dereference CVE-2011-0709
MLIST:[oss-security] 20110216 CVE request - kernel: s390 task_show_regs infoleak CVE-2011-0710
MLIST:[oss-security] 20110216 CVE request - kernel: xfs infoleak CVE-2011-0711
MLIST:[oss-security] 20110216 Re: CVE request - kernel: bridge br_multicast NULL pointer dereference CVE-2011-0709
MLIST:[oss-security] 20110216 Re: CVE request - kernel: s390 task_show_regs infoleak CVE-2011-0710
MLIST:[oss-security] 20110216 Re: CVE request - kernel: xfs infoleak CVE-2011-0711
MLIST:[oss-security] 20110216 Re: Re: PHP Exif 64bit Casting Vulnerability, CVE request CVE-2011-0708
MLIST:[oss-security] 20110216 Re: kernel: ALSA: caiaq - Fix possible string-buffer overflow CVE-2011-0712
MLIST:[oss-security] 20110216 kernel: ALSA: caiaq - Fix possible string-buffer overflow CVE-2011-0712
MLIST:[oss-security] 20110216 wireshark dct3trace buffer overflow CVE-2011-0713
MLIST:[oss-security] 20110217 CVE id request: telepathy-gabble CVE-2011-1000
MLIST:[oss-security] 20110217 CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack CVE-2011-0999
MLIST:[oss-security] 20110217 Re: CVE id request: telepathy-gabble CVE-2011-1000
MLIST:[oss-security] 20110217 Re: CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack CVE-2011-0999
MLIST:[oss-security] 20110217 Re: CVE request -- kernel: deficiency in processing igmp host membership reports in br_multicast CVE-2011-0716
MLIST:[oss-security] 20110218 CVE request: avahi daemon remote denial of service by sending NULL UDP CVE-2011-1002
MLIST:[oss-security] 20110218 Re: CVE request: avahi daemon remote denial of service by sending NULL UDP CVE-2011-1002
MLIST:[oss-security] 20110221 CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE CVE-2011-1004 CVE-2011-1005
MLIST:[oss-security] 20110221 Re: CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE CVE-2011-1004 CVE-2011-1005
MLIST:[oss-security] 20110221 Re: clamav 0.97 CVE-2011-1003
MLIST:[oss-security] 20110221 clamav 0.97 CVE-2011-1003
MLIST:[oss-security] 20110222 CVE Request CVE-2011-1011
MLIST:[oss-security] 20110222 CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110222 CVE request: kernel: fs/partitions: validate map_count in mac partition tables CVE-2011-1010
MLIST:[oss-security] 20110222 CVE request: simple machines forum before 1.1.13 CVE-2011-1127 CVE-2011-1128 CVE-2011-1129 CVE-2011-1130 CVE-2011-1131
MLIST:[oss-security] 20110222 CVE-2011-0436: dtc sends password of new users to site admin by unencrypted email CVE-2011-0436
MLIST:[oss-security] 20110222 Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110222 Re: CVE request: kernel: fs/partitions: validate map_count in mac partition tables CVE-2011-1010
MLIST:[oss-security] 20110222 Re: [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP CVE-2011-1002
MLIST:[oss-security] 20110223 CVE request: Information disclosure in CGIHTTPServer from Python CVE-2011-1015
MLIST:[oss-security] 20110223 CVE request: kernel: Corrupted LDM partition table issues CVE-2011-1012
MLIST:[oss-security] 20110223 CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-1017
MLIST:[oss-security] 20110223 Re: CVE Request CVE-2011-1011
MLIST:[oss-security] 20110223 Re: CVE request: kernel: Corrupted LDM partition table issues CVE-2011-1012
MLIST:[oss-security] 20110223 Re: CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-1017
MLIST:[oss-security] 20110223 Re: Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110224 CVE Request -- OpenLDAP -- two issues CVE-2011-1024 CVE-2011-1025
MLIST:[oss-security] 20110224 CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names CVE-2011-1018
MLIST:[oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[oss-security] 20110224 CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 CVE-2011-1016
MLIST:[oss-security] 20110224 CVE request: libcgroup: Failure to verify netlink messages CVE-2011-1022
MLIST:[oss-security] 20110224 Re: CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names CVE-2011-1018
MLIST:[oss-security] 20110224 Re: CVE request: Information disclosure in CGIHTTPServer from Python CVE-2011-1015
MLIST:[oss-security] 20110224 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 CVE-2011-1016
MLIST:[oss-security] 20110224 Re: CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-1017
MLIST:[oss-security] 20110224 Re: Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issue CVE-2011-1025
MLIST:[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issues CVE-2011-1024
MLIST:[oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[oss-security] 20110225 Re: CVE request: kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions CVE-2011-1021
MLIST:[oss-security] 20110225 Re: CVE request: kernel: CAP_SYS_MODULE bypass via CAP_NET_ADMIN CVE-2011-1019
MLIST:[oss-security] 20110225 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 CVE-2011-1016
MLIST:[oss-security] 20110225 Re: CVE request: libcgroup: Failure to verify netlink messages CVE-2011-1022
MLIST:[oss-security] 20110228 CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack CVE-2011-1072
MLIST:[oss-security] 20110228 CVE request: FreeBSD/OS X crontab information leakage CVE-2011-1073 CVE-2011-1074
MLIST:[oss-security] 20110228 Re: CVE Request -- OpenLDAP -- two issues CVE-2011-1081
MLIST:[oss-security] 20110228 Re: CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack CVE-2011-1072 CVE-2011-1144
MLIST:[oss-security] 20110228 Re: CVE request: FreeBSD/OS X crontab information leakage CVE-2011-1073 CVE-2011-1074
MLIST:[oss-security] 20110228 Re: cve request: eglibc memory corruption CVE-2011-1071
MLIST:[oss-security] 20110228 cve request: eglibc memory corruption CVE-2011-1071
MLIST:[oss-security] 20110301 CVE request: kernel: Multiple DoS issues in epoll CVE-2011-1082 CVE-2011-1083
MLIST:[oss-security] 20110301 Re: CVE Request -- OpenLDAP -- two issues CVE-2011-1081
MLIST:[oss-security] 20110301 Re: CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack CVE-2011-1072 CVE-2011-1144
MLIST:[oss-security] 20110301 Re: CVE request: kernel: two bluetooth and one ebtables infoleaks/DoSes CVE-2011-1078 CVE-2011-1079 CVE-2011-1080
MLIST:[oss-security] 20110302 CVE request: VLC bookmark buffer overflow CVE-2011-1087
MLIST:[oss-security] 20110302 Re: CVE request: kernel: Multiple DoS issues in epoll CVE-2011-1082 CVE-2011-1083
MLIST:[oss-security] 20110302 Re: CVE request: simple machines forum before 1.1.13 CVE-2011-1127 CVE-2011-1128 CVE-2011-1129 CVE-2011-1130 CVE-2011-1131
MLIST:[oss-security] 20110303 CVE-2011-1023 kernel: rds: prevent BUG_ON triggering on congestion map updates CVE-2011-1023
MLIST:[oss-security] 20110303 Re: CVE request: VLC bookmark buffer overflow CVE-2011-1087
MLIST:[oss-security] 20110303 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110303 Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110304 CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110304 CVE-2011-1076 kernel: DNS: Fix a NULL pointer deref when trying to read an error key CVE-2011-1076
MLIST:[oss-security] 20110304 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110304 Re: Re: CVE request: More Evince overflows CVE-2011-5244
MLIST:[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110305 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110306 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab CVE-2011-1090
MLIST:[oss-security] 20110307 Re: CVE Request -- logrotate -- nine issues CVE-2009-5064 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab CVE-2011-1090
MLIST:[oss-security] 20110307 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110307 Re: ldd can execute an app unexpectedly CVE-2009-5064
MLIST:[oss-security] 20110307 cgit convert_query_hexchar infinite loop (CVE-2011-1027) CVE-2011-1027
MLIST:[oss-security] 20110307 ldd can execute an app unexpectedly CVE-2009-5064
MLIST:[oss-security] 20110308 CVE request, php's shm CVE-2011-1092
MLIST:[oss-security] 20110308 CVE request: kernel: dccp: fix oops on Reset after close CVE-2011-1093
MLIST:[oss-security] 20110308 CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd CVE-2011-0714
MLIST:[oss-security] 20110308 KDE SSL name check issue CVE-2011-1094
MLIST:[oss-security] 20110308 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110308 Re: CVE request, php's shm CVE-2011-1092
MLIST:[oss-security] 20110308 Re: CVE request: kernel: dccp: fix oops on Reset after close CVE-2011-1093
MLIST:[oss-security] 20110308 Re: KDE SSL name check issue CVE-2011-1094
MLIST:[oss-security] 20110308 Re: glibc locale escaping issue CVE-2011-1095
MLIST:[oss-security] 20110308 Re: ldd can execute an app unexpectedly CVE-2009-5064
MLIST:[oss-security] 20110308 glibc locale escaping issue CVE-2011-1095
MLIST:[oss-security] 20110309 CVE request: libvirt: several API calls do not honour read-only connection CVE-2011-1146
MLIST:[oss-security] 20110309 Re: CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd CVE-2011-0714
MLIST:[oss-security] 20110310 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110310 Re: CVE request: libvirt: several API calls do not honour read-only connection CVE-2011-1146
MLIST:[oss-security] 20110311 CVE Request -- Asterisk AST-2011-002 / Multiple array overflow and crash vulnerabilities in UDPTL code CVE-2011-1147
MLIST:[oss-security] 20110311 CVE-2011-0695 kernel: panic in ib_cm:cm_work_handler CVE-2011-0695
MLIST:[oss-security] 20110311 Re: CVE Request -- Asterisk AST-2011-002 / Multiple array overflow and crash vulnerabilities in UDPTL code CVE-2011-1147
MLIST:[oss-security] 20110311 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110313 CVE request: PHP substr_replace() use-after-free CVE-2011-1148
MLIST:[oss-security] 20110313 Re: CVE request: PHP substr_replace() use-after-free CVE-2011-1148
MLIST:[oss-security] 20110314 CVE Request: Joomla! 1.6.0 | Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110314 CVE request for python-feedparser CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[oss-security] 20110314 CVE request: format-string vulnerability in PHP Phar extension CVE-2011-1153
MLIST:[oss-security] 20110314 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110314 Re: CVE Request: Joomla! 1.6.0 | Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110314 Re: CVE request: format-string vulnerability in PHP Phar extension CVE-2011-1153
MLIST:[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110315 CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure CVE-2011-1163
MLIST:[oss-security] 20110315 Re: 2 acpid flaws CVE-2011-1159
MLIST:[oss-security] 20110315 Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure CVE-2011-1163
MLIST:[oss-security] 20110315 Re: CVE request for python-feedparser CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[oss-security] 20110315 Re: CVE requests - kernel: tpm infoleaks CVE-2011-1160
MLIST:[oss-security] 20110315 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110317 CVE request for Asterisk flaws CVE-2011-1174 CVE-2011-1175
MLIST:[oss-security] 20110318 CVE Request: Geeklog 1.7.1 <= Cross Site Scripting Vulnerability CVE-2011-4942
MLIST:[oss-security] 20110318 CVE Request: Joomla! 1.5.20 <= Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110318 CVE request: kernel: AudioScience HPI driver CVE-2011-1169
MLIST:[oss-security] 20110318 CVE request: kernel: netfilter & econet infoleaks CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1173 CVE-2011-2534
MLIST:[oss-security] 20110318 Re: CVE Request: Joomla! 1.6.0 | Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110318 Re: CVE request: kernel: AudioScience HPI driver CVE-2011-1169
MLIST:[oss-security] 20110320 CVE request: MPM-ITK module for Apache HTTPD CVE-2011-1176
MLIST:[oss-security] 20110321 Re: CVE request for Asterisk flaws CVE-2011-1174 CVE-2011-1175
MLIST:[oss-security] 20110321 Re: CVE request: MPM-ITK module for Apache HTTPD CVE-2011-1176
MLIST:[oss-security] 20110321 Re: CVE request: kernel: netfilter & econet infoleaks CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1173 CVE-2011-2534
MLIST:[oss-security] 20110322 CVE Request: libpng memory leak CVE-2006-7244 CVE-2009-5063
MLIST:[oss-security] 20110322 Re: CVE requests - kernel: irda/decnet issues CVE-2011-1180
MLIST:[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110323 CVE Request: PHP-Nuke 8.x <= "chng_uid" Blind SQL Injection Vulnerability CVE-2011-1480
MLIST:[oss-security] 20110323 CVE Request: PHP-Nuke 8.x <= Cross Site Request Forgery (CSRF) / Anti-CSRF Bypass Vulnerability CVE-2011-1482
MLIST:[oss-security] 20110323 CVE Request: PHP-Nuke 8.x <= Cross Site Scripting Vulnerability CVE-2011-1481
MLIST:[oss-security] 20110323 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550 CVE-2011-1551
MLIST:[oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request) CVE-2011-1182
MLIST:[oss-security] 20110324 CVE Request -- Python (urllib, urllib2): Improper management of ftp:// and file:// URL schemes CVE-2011-1521
MLIST:[oss-security] 20110324 CVE request: roundcube < 0.5.1 CSRF CVE-2011-1491 CVE-2011-1492
MLIST:[oss-security] 20110324 Re: CVE request: roundcube < 0.5.1 CSRF CVE-2011-1491 CVE-2011-1492
MLIST:[oss-security] 20110325 CVE Request -- Nagios -- XSS in the network status map CGI script CVE-2011-1523
MLIST:[oss-security] 20110325 CVE Request -- php-doctrine-Doctrine -- SQL injection flaw CVE-2011-1522
MLIST:[oss-security] 20110325 Re: CVE request: kernel: two OSS fixes CVE-2011-1476 CVE-2011-1477
MLIST:[oss-security] 20110328 CVE-2011-1478 kernel: gro: reset dev and skb_iff on skb reuse CVE-2011-1478
MLIST:[oss-security] 20110328 Re: CVE Request -- Nagios -- XSS in the network status map CGI script CVE-2011-1523
MLIST:[oss-security] 20110328 Re: CVE Request -- Python (urllib, urllib2): Improper management of ftp:// and file:// URL schemes CVE-2011-1521
MLIST:[oss-security] 20110328 Re: CVE Request -- php-doctrine-Doctrine -- SQL injection flaw CVE-2011-1522
MLIST:[oss-security] 20110328 Re: CVE Request: libpng memory leak CVE-2006-7244 CVE-2009-5063
MLIST:[oss-security] 20110328 Re: CVE request: VLC bookmark buffer overflow CVE-2011-1087
MLIST:[oss-security] 20110329 CVE request: cmsmadesimple before 1.9.1 CVE-2010-4663
MLIST:[oss-security] 20110329 CVE requests : Liferay 6.0.6 CVE-2011-1502 CVE-2011-1503 CVE-2011-1504 CVE-2011-1570 CVE-2011-1571
MLIST:[oss-security] 20110330 Re: CVE Request: PHP-Nuke 8.x <= "chng_uid" Blind SQL Injection Vulnerability CVE-2011-1480
MLIST:[oss-security] 20110330 Re: CVE Request: PHP-Nuke 8.x <= Cross Site Request Forgery (CSRF) / Anti-CSRF Bypass Vulnerability CVE-2011-1482
MLIST:[oss-security] 20110330 Re: CVE Request: PHP-Nuke 8.x <= Cross Site Scripting Vulnerability CVE-2011-1481
MLIST:[oss-security] 20110330 Re: CVE request: cmsmadesimple before 1.9.1 CVE-2010-4663
MLIST:[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110401 CVE Request -- perl -- lc(), uc() routines are laundering tainted data CVE-2011-1487
MLIST:[oss-security] 20110401 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110404 Re: CVE Request -- perl -- lc(), uc() routines are laundering tainted data CVE-2011-1487
MLIST:[oss-security] 20110404 Re: CVE request: roundcube < 0.5.1 CSRF CVE-2011-1491 CVE-2011-1492
MLIST:[oss-security] 20110405 CVE request: kernel: two issues in mpt2sas CVE-2011-1494 CVE-2011-1495
MLIST:[oss-security] 20110405 Re: CVE request: kernel: multiple issues in ROSE CVE-2011-1493
MLIST:[oss-security] 20110406 Moonlight release 2.4.1 with security fixes CVE-2011-0989 CVE-2011-0990 CVE-2011-0991 CVE-2011-0992
MLIST:[oss-security] 20110406 Re: CVE request: kernel: two issues in mpt2sas CVE-2011-1494 CVE-2011-1495
MLIST:[oss-security] 20110407 Apache HttpClient CVE request [VU#153049] CVE-2011-1498
MLIST:[oss-security] 20110407 CVE request: tinyproxy runs as an open proxy when attempting to restrict allowable IP ranges CVE-2011-1499
MLIST:[oss-security] 20110408 CVE request for pithos information disclosure CVE-2011-1500
MLIST:[oss-security] 20110408 Re: Apache HttpClient CVE request [VU#153049] CVE-2011-1498
MLIST:[oss-security] 20110408 Re: CVE request for pithos information disclosure CVE-2011-1500
MLIST:[oss-security] 20110408 Re: CVE request: tinyproxy runs as an open proxy when attempting to restrict allowable IP ranges CVE-2011-1499
MLIST:[oss-security] 20110408 Re: CVE requests : Liferay 6.0.6 CVE-2011-1502 CVE-2011-1503 CVE-2011-1504 CVE-2011-1570 CVE-2011-1571
MLIST:[oss-security] 20110409 CVE id request: gitolite CVE-2011-1572
MLIST:[oss-security] 20110411 CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set CVE-2011-1573
MLIST:[oss-security] 20110411 CVE request for libmodplug CVE-2011-1574
MLIST:[oss-security] 20110411 Re: CVE id request: gitolite CVE-2011-1572
MLIST:[oss-security] 20110411 Re: CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set CVE-2011-1573
MLIST:[oss-security] 20110411 Re: CVE request for libmodplug CVE-2011-1574
MLIST:[oss-security] 20110411 Re: CVE request: kernel: inotify memory leak CVE-2011-1479
MLIST:[oss-security] 20110411 Re: CVE requests : Liferay 6.0.6 CVE-2011-1502 CVE-2011-1503 CVE-2011-1504 CVE-2011-1570 CVE-2011-1571
MLIST:[oss-security] 20110411 Re: pure-ftpd STARTTLS command injection / new CVE? CVE-2011-1575
MLIST:[oss-security] 20110411 pure-ftpd STARTTLS command injection / new CVE? CVE-2011-1575
MLIST:[oss-security] 20110412 CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops CVE-2011-1577
MLIST:[oss-security] 20110412 CVE id request: vlc CVE-2011-1684
MLIST:[oss-security] 20110412 libtiff CVE assignments CVE-2009-5022 CVE-2010-4665
MLIST:[oss-security] 20110413 CVE request - kernel: bonding: Incorrect TX queue offset CVE-2011-1581
MLIST:[oss-security] 20110413 CVE request: dotclear before 2.2.3 CVE-2011-1584
MLIST:[oss-security] 20110413 Re: CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops CVE-2011-1577
MLIST:[oss-security] 20110413 Re: CVE id request: vlc CVE-2011-1684
MLIST:[oss-security] 20110413 Re: CVE request - kernel: bonding: Incorrect TX queue offset CVE-2011-1581
MLIST:[oss-security] 20110413 Re: CVE request: mediawiki 1.16.3 CVE-2011-1578 CVE-2011-1579 CVE-2011-1580
MLIST:[oss-security] 20110414 Re: CVE request: dotclear before 2.2.3 CVE-2011-1584
MLIST:[oss-security] 20110415 Re: CVE Request: cifs session reuse CVE-2011-1585
MLIST:[oss-security] 20110415 Re: CVE Request: incomplete fix for CVE-2010-1000 in KDE network CVE-2011-1586
MLIST:[oss-security] 20110415 Re: CVE request: dotclear before 2.2.3 CVE-2011-1584
MLIST:[oss-security] 20110416 CVE request: Mojolicious directory traversal vulnerability CVE-2011-1589
MLIST:[oss-security] 20110418 CVE request: Mojolicious CVE-2011-1589
MLIST:[oss-security] 20110418 Re: CVE request: Mojolicious directory traversal vulnerability CVE-2011-1589
MLIST:[oss-security] 20110418 Re: CVE request: mediawiki 1.16.4, incomplete fix of CVE-2011-1578 CVE-2011-1587
MLIST:[oss-security] 20110418 Re: Wireshark 1.2.16 / 1.4.5 CVE-2011-1590 CVE-2011-1591 CVE-2011-1592
MLIST:[oss-security] 20110418 Wireshark 1.2.16 / 1.4.5 CVE-2011-1590 CVE-2011-1591 CVE-2011-1592
MLIST:[oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() CVE-2011-1593
MLIST:[oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598
MLIST:[oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() CVE-2011-1593
MLIST:[oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598
MLIST:[oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp CVE-2011-1745 CVE-2011-1746 CVE-2011-1747 CVE-2011-2022
MLIST:[oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598 CVE-2011-1748
MLIST:[oss-security] 20110422 Re: CVE Request -- Asterisk Security Vulnerability CVE-2011-1599
MLIST:[oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp CVE-2011-1745 CVE-2011-1746 CVE-2011-1747 CVE-2011-2022
MLIST:[oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598 CVE-2011-1748
MLIST:[oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598 CVE-2011-1748
MLIST:[oss-security] 20110429 CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110429 vulnerability in sssd 1.5.0+ (CVE-2011-1758) CVE-2011-1758
MLIST:[oss-security] 20110430 Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110502 Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110502 Re: CVE request: kernel (ARM): heap corruption in OABI semtimedop CVE-2011-1759
MLIST:[oss-security] 20110503 Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110503 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-2471 CVE-2011-2472 CVE-2011-2473
MLIST:[oss-security] 20110505 Re: CVE requests - kernel network vulns CVE-2011-1767 CVE-2011-1768
MLIST:[oss-security] 20110506 CVE request: tigervnc CVE-2011-1775
MLIST:[oss-security] 20110509 CVE-2011-1771 kernel: cifs oops when creating file with O_DIRECT set CVE-2011-1771
MLIST:[oss-security] 20110509 Re: CVE request: tigervnc CVE-2011-1775
MLIST:[oss-security] 20110510 CVE request: keepalived pid file permissions issue CVE-2011-1784
MLIST:[oss-security] 20110510 Re: CVE request: kernel: validate size of EFI GUID partition entries CVE-2011-1776
MLIST:[oss-security] 20110510 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760 CVE-2011-2471 CVE-2011-2472 CVE-2011-2473
MLIST:[oss-security] 20110511 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760 CVE-2011-2471 CVE-2011-2472 CVE-2011-2473
MLIST:[oss-security] 20110516 CVE Request -- pmake -- Use of insecure temporary file for 'depend' target CVE-2011-1920
MLIST:[oss-security] 20110516 Re: CVE Request -- pmake -- Use of insecure temporary file for 'depend' target CVE-2011-1920
MLIST:[oss-security] 20110516 Re: CVE request: keepalived pid file permissions issue CVE-2011-1784
MLIST:[oss-security] 20110517 CVE Request -- Cyrus-IMAP STARTTLS issue -- [was: Re: pure-ftpd STARTTLS command injection / new CVE?] CVE-2011-1926
MLIST:[oss-security] 20110517 CVE request: nbd-server CVE-2011-1925
MLIST:[oss-security] 20110517 Re: CVE Request -- Cyrus-IMAP STARTTLS issue -- [was: Re: pure-ftpd STARTTLS command injection / new CVE?] CVE-2011-1926
MLIST:[oss-security] 20110518 Dovecot releases CVE-2011-1929 CVE-2011-2166 CVE-2011-2167
MLIST:[oss-security] 20110518 Re: CVE request: kernel: net: ip_expire() must revalidate route CVE-2011-1927
MLIST:[oss-security] 20110519 CVE Request: viewvc DoS CVE-2009-5024
MLIST:[oss-security] 20110519 CVE request: DoS in apr due to CVE-2011-0419 fix CVE-2011-1928
MLIST:[oss-security] 20110519 CVE-2011-1751 qemu: acpi_piix4: missing hotplug check during device removal CVE-2011-1751
MLIST:[oss-security] 20110519 Re: CVE Request: viewvc DoS CVE-2009-5024
MLIST:[oss-security] 20110519 Re: CVE request: DoS in apr due to CVE-2011-0419 fix CVE-2011-1928
MLIST:[oss-security] 20110519 Re: Dovecot releases CVE-2011-1929
MLIST:[oss-security] 20110520 systemtap divide-by-zero issues (CVE-2011-1769, CVE-2011-1781) CVE-2011-1769 CVE-2011-1781
MLIST:[oss-security] 20110522 CVE Request: Webmin Local Privilege Escalation Vulnerability CVE-2011-1937
MLIST:[oss-security] 20110523 CVE request: PHP socket_connect() - stack buffer overflow CVE-2011-1938
MLIST:[oss-security] 20110524 Re: CVE Request: Webmin Local Privilege Escalation Vulnerability CVE-2011-1937
MLIST:[oss-security] 20110524 Re: CVE request: PHP socket_connect() - stack buffer overflow CVE-2011-1938
MLIST:[oss-security] 20110526 CVE Request -- syslog-ng -- Possible DoS CVE-2011-1951
MLIST:[oss-security] 20110530 CVE request for fetchmail STARTTLS hang (Denial of Service) CVE-2011-1947
MLIST:[oss-security] 20110530 CVE request: libgnomesu privilege escalation CVE-2011-1946
MLIST:[oss-security] 20110531 CVE request for Wireshark 1.4.5 TCP DoS issue CVE-2011-1956
MLIST:[oss-security] 20110531 CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175
MLIST:[oss-security] 20110531 CVE request: NetworkManager-openvpn logs cert password CVE-2011-1943
MLIST:[oss-security] 20110531 CVE request: firefox doesn't (re)validate certificates when loading HTTPS page CVE-2011-0082
MLIST:[oss-security] 20110531 Re: CVE request for fetchmail STARTTLS hang (Denial of Service) CVE-2011-1947
MLIST:[oss-security] 20110531 Re: CVE request: NetworkManager-openvpn logs cert password CVE-2011-1943
MLIST:[oss-security] 20110531 Re: CVE request: firefox doesn't (re)validate certificates when loading HTTPS page CVE-2011-0082
MLIST:[oss-security] 20110531 Re: CVE request: libgnomesu privilege escalation CVE-2011-1946
MLIST:[oss-security] 20110531 Re: CVE request: libxml vulnerability and interesting integer issues CVE-2011-1944
MLIST:[oss-security] 20110601 CVE request: XSS in nagios CVE-2011-2179
MLIST:[oss-security] 20110601 Re: CVE request for Wireshark 1.4.5 TCP DoS issue CVE-2011-1956
MLIST:[oss-security] 20110601 Re: CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175
MLIST:[oss-security] 20110601 Re: CVE request for fetchmail STARTTLS hang (Denial of Service) CVE-2011-1947
MLIST:[oss-security] 20110602 CVE Request -- Cherokee -- server admin vulnerable to csrf CVE-2011-2191
MLIST:[oss-security] 20110602 CVE request: Multiple security vulnerabilities in ARSC Really Simple Chat CVE-2011-2180 CVE-2011-2181 CVE-2011-2470
MLIST:[oss-security] 20110602 Re: CVE request: Multiple security vulnerabilities in ARSC Really Simple Chat CVE-2011-2180 CVE-2011-2181 CVE-2011-2470
MLIST:[oss-security] 20110602 Re: CVE request: XSS in nagios CVE-2011-2179
MLIST:[oss-security] 20110603 CVE Request -- fabric -- Use of insecure temporary file by uploading templates and projects to remote hosts CVE-2011-2185
MLIST:[oss-security] 20110603 CVE request: kernel: set cred->user_ns in key_replace_session_keyring CVE-2011-2184
MLIST:[oss-security] 20110603 Re: CVE Request -- Cherokee -- server admin vulnerable to csrf CVE-2011-2190
MLIST:[oss-security] 20110603 Security issue in cherokee CVE-2011-2191
MLIST:[oss-security] 20110605 Re: CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-2182
MLIST:[oss-security] 20110606 CVE Request -- LuaExpat -- Prone to XML "billion laughs attack" CVE-2011-2188
MLIST:[oss-security] 20110606 Re: CVE Request -- Cherokee -- server admin vulnerable to csrf CVE-2011-2190
MLIST:[oss-security] 20110606 Re: CVE Request -- LuaExpat -- Prone to XML "billion laughs attack" CVE-2011-2188
MLIST:[oss-security] 20110606 Re: CVE Request -- fabric -- Use of insecure temporary file by uploading templates and projects to remote hosts CVE-2011-2185
MLIST:[oss-security] 20110606 Re: CVE Request -- vsftpd -- Do not create network namespace per connection CVE-2011-2189
MLIST:[oss-security] 20110606 Re: CVE request: kernel: ksm: race between ksmd and exiting task CVE-2011-2183
MLIST:[oss-security] 20110606 Re: CVE request: kernel: set cred->user_ns in key_replace_session_keyring CVE-2011-2184
MLIST:[oss-security] 20110606 Re: Security issue in cherokee CVE-2011-2191
MLIST:[oss-security] 20110608 CVE Request -- Coppermine Photo Gallery -- cpg1.4.27 / cpg1.5.12 -- XSS flaw CVE-2010-4667 CVE-2011-2476
MLIST:[oss-security] 20110608 Re: CVE Request -- Coppermine Photo Gallery -- cpg1.4.27 / cpg1.5.12 -- XSS flaw CVE-2010-4667 CVE-2011-2476
MLIST:[oss-security] 20110609 CVE Request: Ruby on Rails 3/rails_xss XSS CVE-2011-2197
MLIST:[oss-security] 20110612 Bug#629938: Info received (CVE Request -- dbus -- Local DoS via messages with non-native byte order) CVE-2011-2200
MLIST:[oss-security] 20110612 CVE Request -- Data-FormValidator -- Reports invalid field as valid when untaint_all_constraints used CVE-2011-2201
MLIST:[oss-security] 20110612 CVE Request -- dbus -- Local DoS via messages with non-native byte order CVE-2011-2200
MLIST:[oss-security] 20110612 CVE Request: PHP File upload filename CVE-2011-2202
MLIST:[oss-security] 20110613 Re: CVE Request -- Data-FormValidator -- Reports invalid field as valid when untaint_all_constraints used CVE-2011-2201
MLIST:[oss-security] 20110613 Re: CVE Request -- dbus -- Local DoS via messages with non-native byte order CVE-2011-2200
MLIST:[oss-security] 20110613 Re: CVE Request: PHP File upload filename CVE-2011-2202
MLIST:[oss-security] 20110613 Re: CVE Request: Ruby on Rails 3/rails_xss XSS CVE-2011-2197
MLIST:[oss-security] 20110613 Re: CVE request: buffer overflow in tftp-hpa CVE-2011-2199
MLIST:[oss-security] 20110613 Re: CVE request: kernel: hfs_find_init() sb->ext_tree NULL pointer dereference CVE-2011-2203
MLIST:[oss-security] 20110614 CVE Request: prosody DoS, djabberd external entity injection CVE-2011-2205 CVE-2011-2206
MLIST:[oss-security] 20110615 Re: CVE Request: prosody DoS, djabberd external entity injection CVE-2011-2205 CVE-2011-2206
MLIST:[oss-security] 20110615 Re: CVE request: kernel: alpha: fix several security issues CVE-2011-2208 CVE-2011-2209 CVE-2011-2210 CVE-2011-2211
MLIST:[oss-security] 20110620 CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2488
MLIST:[oss-security] 20110620 CVE request: kernel: inet_diag: fix inet_diag_bc_audit() CVE-2011-2213
MLIST:[oss-security] 20110620 Re: CVE request: kernel: inet_diag: fix inet_diag_bc_audit() CVE-2011-2213
MLIST:[oss-security] 20110620 Re: CVE request: kernel: thp: madvise on top of /dev/zero private mapping can lead to panic CVE-2011-2479
MLIST:[oss-security] 20110622 CVE request: kernel: taskstats local DoS CVE-2011-2484
MLIST:[oss-security] 20110622 CVE requests: opie off by one and setuid() failure CVE-2011-2489 CVE-2011-2490
MLIST:[oss-security] 20110622 Re: CVE request: kernel: taskstats local DoS CVE-2011-2484
MLIST:[oss-security] 20110623 Re: CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2488
MLIST:[oss-security] 20110623 Re: CVE request: kernel: NLM: Don't hang forever on NLM unlock requests CVE-2011-2491
MLIST:[oss-security] 20110623 Re: CVE requests: opie off by one and setuid() failure CVE-2011-2489 CVE-2011-2490
MLIST:[oss-security] 20110624 CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace CVE-2011-2492
MLIST:[oss-security] 20110624 CVE request: kernel: remote buffer overflow in bluetooth CVE-2011-2497
MLIST:[oss-security] 20110624 Re: CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace CVE-2011-2492
MLIST:[oss-security] 20110624 Re: CVE request: kernel: ext4: init timer earlier to avoid a kernel panic in __save_error_info CVE-2011-2493
MLIST:[oss-security] 20110627 CVE request for libpng regression (CVE-2004-0421) CVE-2011-2501
MLIST:[oss-security] 20110627 Re: CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2891 CVE-2011-3695 CVE-2011-3696 CVE-2011-3697 CVE-2011-3698 CVE-2011-3699 CVE-2011-3700 CVE-2011-3701 CVE-2011-3702 CVE-2011-3703 CVE-2011-3704 CVE-2011-3705 CVE-2011-3706 CVE-2011-3707 CVE-2011-3708 CVE-2011-3709 CVE-2011-3710 CVE-2011-3711 CVE-2011-3712 CVE-2011-3713 CVE-2011-3714 CVE-2011-3715 CVE-2011-3716 CVE-2011-3717 CVE-2011-3718 CVE-2011-3719 CVE-2011-3720 CVE-2011-3721 CVE-2011-3722 CVE-2011-3723 CVE-2011-3724 CVE-2011-3725 CVE-2011-3726 CVE-2011-3727 CVE-2011-3728 CVE-2011-3729 CVE-2011-3730 CVE-2011-3731 CVE-2011-3732 CVE-2011-3733 CVE-2011-3734 CVE-2011-3735 CVE-2011-3736 CVE-2011-3737 CVE-2011-3738 CVE-2011-3739 CVE-2011-3740 CVE-2011-3741 CVE-2011-3742 CVE-2011-3743 CVE-2011-3744 CVE-2011-3745 CVE-2011-3746 CVE-2011-3747 CVE-2011-3748 CVE-2011-3749 CVE-2011-3750 CVE-2011-3751 CVE-2011-3752 CVE-2011-3753 CVE-2011-3754 CVE-2011-3755 CVE-2011-3756 CVE-2011-3757 CVE-2011-3758 CVE-2011-3759 CVE-2011-3760 CVE-2011-3761 CVE-2011-3762 CVE-2011-3763 CVE-2011-3764 CVE-2011-3765 CVE-2011-3766 CVE-2011-3767 CVE-2011-3768 CVE-2011-3769 CVE-2011-3770 CVE-2011-3771 CVE-2011-3772 CVE-2011-3773 CVE-2011-3774 CVE-2011-3775 CVE-2011-3776 CVE-2011-3777 CVE-2011-3778 CVE-2011-3779 CVE-2011-3780 CVE-2011-3781 CVE-2011-3782 CVE-2011-3783 CVE-2011-3784 CVE-2011-3785 CVE-2011-3786 CVE-2011-3787 CVE-2011-3788 CVE-2011-3789 CVE-2011-3790 CVE-2011-3791 CVE-2011-3792 CVE-2011-3793 CVE-2011-3794 CVE-2011-3795 CVE-2011-3796 CVE-2011-3797 CVE-2011-3798 CVE-2011-3799 CVE-2011-3800 CVE-2011-3801 CVE-2011-3802 CVE-2011-3803 CVE-2011-3804 CVE-2011-3805 CVE-2011-3806 CVE-2011-3807 CVE-2011-3808 CVE-2011-3809 CVE-2011-3810 CVE-2011-3811 CVE-2011-3812 CVE-2011-3813 CVE-2011-3814 CVE-2011-3815 CVE-2011-3816 CVE-2011-3817 CVE-2011-3818 CVE-2011-3819 CVE-2011-3820 CVE-2011-3821 CVE-2011-3822 CVE-2011-3823 CVE-2011-3824 CVE-2011-3825 CVE-2011-3826
MLIST:[oss-security] 20110627 Re: CVE request: kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions CVE-2011-2496
MLIST:[oss-security] 20110627 Re: CVE request: kernel: remote buffer overflow in bluetooth CVE-2011-2497
MLIST:[oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak CVE-2011-2494 CVE-2011-2495
MLIST:[oss-security] 20110628 CVE Request -- DokuWiki -- XSS in DokuWiki's RSS embedding mechanism CVE-2011-2510
MLIST:[oss-security] 20110628 CVE Request: Joomla! 1.6.3 and lower | Multiple Cross Site Scripting (XSS) Vulnerabilities CVE-2011-2509
MLIST:[oss-security] 20110628 CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110628 CVE request: libvirt: integer overflow in VirDomainGetVcpus CVE-2011-2511
MLIST:[oss-security] 20110628 CVE request: qemu-kvm: OOB memory access caused by negative vq notifies CVE-2011-2512
MLIST:[oss-security] 20110628 Re: CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110628 Re: CVE request for libpng regression (CVE-2004-0421) CVE-2011-2501
MLIST:[oss-security] 20110628 Re: [Phpmyadmin-security] CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110629 Re: CVE Request -- DokuWiki -- XSS in DokuWiki's RSS embedding mechanism CVE-2011-2510
MLIST:[oss-security] 20110629 Re: CVE Request: Joomla! 1.6.3 and lower | Multiple Cross Site Scripting (XSS) Vulnerabilities CVE-2011-2509
MLIST:[oss-security] 20110629 Re: CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110629 Re: CVE request: qemu-kvm: OOB memory access caused by negative vq notifies CVE-2011-2512
MLIST:[oss-security] 20110701 Re: CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2889 CVE-2011-2890
MLIST:[oss-security] 20110701 Re: CVE request: kernel: nl80211: missing check for valid SSID size in scan operations CVE-2011-2517
MLIST:[oss-security] 20110701 Re: CVE request: kernel: tomoyo: oops in tomoyo_mount_acl() CVE-2011-2518
MLIST:[oss-security] 20110701 Re: Re: php ZipArchive::addGlob() crashes on invalid flags CVE-2011-1657
MLIST:[oss-security] 20110701 Re: php ZipArchive::addGlob() crashes on invalid flags CVE-2011-1657
MLIST:[oss-security] 20110701 php ZipArchive::addGlob() crashes on invalid flags CVE-2011-1657
MLIST:[oss-security] 20110704 CVE request: plone privilege escalation flaw CVE-2011-2528
MLIST:[oss-security] 20110706 Re: CVE request: kernel: perf, x86: fix Intel fixed counters base initialization CVE-2011-2521
MLIST:[oss-security] 20110706 libreoffice/openoffice.org CVE id request CVE-2011-2685
MLIST:[oss-security] 20110707 CVE-2011-1780, CVE-2011-1936, kernel/xen issues CVE-2011-1780 CVE-2011-1936
MLIST:[oss-security] 20110708 SSL renegotiation DoS CVE-2011-1473 CVE-2011-1473 CVE-2011-5094
MLIST:[oss-security] 20110711 CVE Request -- Drupal 7 -- Access bypass in node listings (SA-CORE-2011-002) CVE-2011-2687
MLIST:[oss-security] 20110711 CVE Request: ruby PRNG fixes CVE-2011-2686 CVE-2011-2705
MLIST:[oss-security] 20110712 CVE Request: qemu -runas does not clear supplementary groups CVE-2011-2527
MLIST:[oss-security] 20110712 CVE id request: apache mod-auth-external CVE-2011-2688
MLIST:[oss-security] 20110712 CVE-2011-2525 kernel: kernel: net_sched: fix qdisc_notify() CVE-2011-2525
MLIST:[oss-security] 20110712 Re: CVE Request -- Drupal 7 -- Access bypass in node listings (SA-CORE-2011-002) CVE-2011-2687
MLIST:[oss-security] 20110712 Re: CVE Request: qemu -runas does not clear supplementary groups CVE-2011-2527
MLIST:[oss-security] 20110712 Re: CVE Request: ruby PRNG fixes CVE-2011-2686 CVE-2011-2705
MLIST:[oss-security] 20110712 Re: CVE id request: apache mod-auth-external CVE-2011-2688
MLIST:[oss-security] 20110712 Re: CVE request: plone privilege escalation flaw CVE-2011-2528
MLIST:[oss-security] 20110712 Re: libreoffice/openoffice.org CVE id request CVE-2011-2685
MLIST:[oss-security] 20110713 CVE Request: hplip/foomatic-filters CVE-2011-2697 CVE-2011-2964
MLIST:[oss-security] 20110713 CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksize CVE-2011-2689
MLIST:[oss-security] 20110713 Re: [oCERT-2011-001] Chyrp input sanitization errors CVE-2011-2744 CVE-2011-2745 CVE-2011-2780
MLIST:[oss-security] 20110713 Security issues fixed in libpng 1.5.4 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692
MLIST:[oss-security] 20110713 [oCERT-2011-001] Chyrp input sanitization errors CVE-2011-2744 CVE-2011-2745 CVE-2011-2780
MLIST:[oss-security] 20110714 CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110714 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110714 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110715 CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file CVE-2011-2695
MLIST:[oss-security] 20110715 CVE request: vulnerability in FreeRADIUS (OCSP) CVE-2011-2701
MLIST:[oss-security] 20110715 Re: CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file CVE-2011-2695
MLIST:[oss-security] 20110715 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110715 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110718 CVE-2011-2520: flaw in system-config-firewall's usage of pickle allows privilege escalation CVE-2011-2520
MLIST:[oss-security] 20110718 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110718 Re: CVE Request: hplip/foomatic-filters CVE-2011-2697 CVE-2011-2964
MLIST:[oss-security] 20110718 Re: CVE request: vulnerability in FreeRADIUS (OCSP) CVE-2011-2701
MLIST:[oss-security] 20110719 CVE Request -- MapServer -- SQL injections in OGC filter encoding and in WMS time support. CVE-2011-2703
MLIST:[oss-security] 20110719 CVE Request -- MapServer -- Stack based buffer overflow [was: Re: Re: CVE Request -- MapServer -- SQL injections in OGC filter encoding and in WMS time support.] CVE-2011-2703 CVE-2011-2704
MLIST:[oss-security] 20110719 CVE Request -- Wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector CVE-2011-2698
MLIST:[oss-security] 20110720 CVE request: kernel: si4713-i2c: avoid potential buffer overflow on si4713 CVE-2011-2700
MLIST:[oss-security] 20110720 Re: CVE Request -- MapServer -- Stack based buffer overflow [was: Re: Re: CVE Request -- MapServer -- SQL injections in OGC filter encoding and in WMS time support.] CVE-2011-2703 CVE-2011-2704
MLIST:[oss-security] 20110720 Re: CVE Request -- Wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector CVE-2011-2698
MLIST:[oss-security] 20110720 Re: CVE Request: ruby PRNG fixes CVE-2011-2686 CVE-2011-2705 CVE-2011-3009
MLIST:[oss-security] 20110720 Re: CVE request: kernel: arbitrary kernel read in xtensa CVE-2011-2707
MLIST:[oss-security] 20110720 Re: CVE request: kernel: ipv6: make fragment identifications less predictable CVE-2011-2699
MLIST:[oss-security] 20110720 Re: CVE request: kernel: si4713-i2c: avoid potential buffer overflow on si4713 CVE-2011-2700
MLIST:[oss-security] 20110720 Re: CVE request: vulnerability in FreeRADIUS (OCSP) CVE-2011-2701
MLIST:[oss-security] 20110721 CVE Request -- libgssapi, libgssglue -- Ability to load untrusted configuration file, when loading GSS mechanisms and their definitions during initialization CVE-2011-2709
MLIST:[oss-security] 20110722 CVE Request -- cGit -- XSS flaw in rename hint CVE-2011-2711
MLIST:[oss-security] 20110722 CVE Request: Joomla! 1.7.0-RC and lower | Cross Site Scripting Vulnerabilities CVE-2011-2710
MLIST:[oss-security] 20110722 Re: CVE Request -- cGit -- XSS flaw in rename hint CVE-2011-2711
MLIST:[oss-security] 20110722 Re: CVE Request -- libgssapi, libgssglue -- Ability to load untrusted configuration file, when loading GSS mechanisms and their definitions during initialization CVE-2011-2709
MLIST:[oss-security] 20110722 Re: CVE Request: Joomla! 1.7.0-RC and lower | Cross Site Scripting Vulnerabilities CVE-2011-2710
MLIST:[oss-security] 20110724 Re: Re: CVE Request -- cGit -- XSS flaw in rename hint CVE-2011-2711
MLIST:[oss-security] 20110725 CVE Request -- GLPI -- Properly blacklist some sensitive fields CVE-2011-2720
MLIST:[oss-security] 20110725 CVE-Request -- phpMyAdmin -- PMASA-2011-11 and PMASA-2011-12 CVE-2011-2718 CVE-2011-2719
MLIST:[oss-security] 20110726 CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes CVE-2011-2721
MLIST:[oss-security] 20110726 Re: CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes CVE-2011-2721
MLIST:[oss-security] 20110726 Re: CVE Request -- GLPI -- Properly blacklist some sensitive fields CVE-2011-2720
MLIST:[oss-security] 20110726 Re: CVE request: hplip: insecure tmp file handling CVE-2011-2722
MLIST:[oss-security] 20110726 Re: CVE-Request -- phpMyAdmin -- PMASA-2011-11 and PMASA-2011-12 CVE-2011-2718 CVE-2011-2719
MLIST:[oss-security] 20110728 CVE request: kernel: gro: Only reset frag0 when skb can be pulled CVE-2011-2723
MLIST:[oss-security] 20110728 Re: CVE Request: hplip/foomatic-filters CVE-2011-2697 CVE-2011-2964
MLIST:[oss-security] 20110729 CVE-2011-2724 assignment notification -- samba -- incomplete fix for CVE-2010-0547 issue CVE-2011-2724
MLIST:[oss-security] 20110729 Re: CVE request: kernel: gro: Only reset frag0 when skb can be pulled CVE-2011-2723
MLIST:[oss-security] 20110803 CVE id request: shttpd/mongoose/yassl embedded webserver CVE-2011-2900
MLIST:[oss-security] 20110803 Re: CVE id request: shttpd/mongoose/yassl embedded webserver CVE-2011-2900
MLIST:[oss-security] 20110803 Re: CVE request: Linux kernel af_packet information leak CVE-2011-2898
MLIST:[oss-security] 20110808 CVE request: zabbix XSS flaw CVE-2011-2904
MLIST:[oss-security] 20110809 Re: CVE request: heap overflow in tcptrack < 1.4.2 CVE-2011-2903
MLIST:[oss-security] 20110809 Re: CVE request: perf: may parse user-controlled config file CVE-2011-2905
MLIST:[oss-security] 20110809 Re: CVE request: zabbix XSS flaw CVE-2011-2904
MLIST:[oss-security] 20110810 CVE-2011-2907: authentication bypass in torque CVE-2011-2907
MLIST:[oss-security] 20110810 LZW decompression issues CVE-2011-2895 CVE-2011-2896
MLIST:[oss-security] 20110810 Re: CVE requests: Two kernel issues CVE-2011-2906
MLIST:[oss-security] 20110812 Re: CVE Request -- libgssapi, libgssglue -- Ability to load untrusted configuration file, when loading GSS mechanisms and their definitions during initialization CVE-2011-2709
MLIST:[oss-security] 20110812 Re: CVE Request: Mambo CMS 4.6.x (4.6.5) | SQL Injection CVE-2011-2917
MLIST:[oss-security] 20110812 Re: CVE requests: Two kernel issues CVE-2011-2909
MLIST:[oss-security] 20110813 Re: CVE request: multiple vulnerabilities in dtc CVE-2011-3195 CVE-2011-3196 CVE-2011-3197 CVE-2011-3198 CVE-2011-3199 CVE-2011-5272
MLIST:[oss-security] 20110816 Re: CVE request -- kernel: perf: fix software event overflow CVE-2011-2918
MLIST:[oss-security] 20110817 CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110818 CVE request: heap overflow in perl while decoding Unicode string CVE-2011-2939
MLIST:[oss-security] 20110818 CVE request: roundcube XSS before 0.5.4 CVE-2011-2937
MLIST:[oss-security] 20110819 CVE request: Linux: ZERO_SIZE_PTR dereference for long symlinks in Be FS CVE-2011-2928
MLIST:[oss-security] 20110819 CVE request: MantisBT <1.2.7 search.php multiple XSS vulnerabilities CVE-2011-2938
MLIST:[oss-security] 20110819 CVE request: stunnel 4.4x heap overflow flaw CVE-2011-2940
MLIST:[oss-security] 20110819 Re: CVE request: Linux: ZERO_SIZE_PTR dereference for long symlinks in Be FS CVE-2011-2928
MLIST:[oss-security] 20110819 Re: CVE request: MantisBT <1.2.7 search.php multiple XSS vulnerabilities CVE-2011-2938
MLIST:[oss-security] 20110819 Re: CVE request: heap overflow in perl while decoding Unicode string CVE-2011-2939
MLIST:[oss-security] 20110819 Re: CVE request: roundcube XSS before 0.5.4 CVE-2011-2937
MLIST:[oss-security] 20110819 Re: CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110819 Re: CVE request: stunnel 4.4x heap overflow flaw CVE-2011-2940
MLIST:[oss-security] 20110820 CVE request: Pidgin crash CVE-2011-2943
MLIST:[oss-security] 20110820 Re: CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110822 CVE assignment php NULL pointer dereference - CVE-2011-3182 CVE-2011-3182
MLIST:[oss-security] 20110822 Re: CVE request: Pidgin crash CVE-2011-2943 CVE-2011-3184 CVE-2011-3185
MLIST:[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110823 CVE assignment - PHP salt flaw CVE-2011-3189 CVE-2011-3189
MLIST:[oss-security] 20110823 Re: CVE request: kernel: change in how tcp seq numbers are generated CVE-2011-3188
MLIST:[oss-security] 20110824 Re: CVE request: kernel: cifs: singedness issue in CIFSFindNext() CVE-2011-3191
MLIST:[oss-security] 20110824 Re: Re: CVE request: multiple vulnerabilities in dtc CVE-2011-3195 CVE-2011-3196 CVE-2011-3197 CVE-2011-3198 CVE-2011-3199 CVE-2011-5272
MLIST:[oss-security] 20110826 Security issue in hammerhead CVE-2011-3204
MLIST:[oss-security] 20110829 CVE-request(?): squid: buffer overflow in Gopher reply parser CVE-2011-3205
MLIST:[oss-security] 20110830 Re: CVE-request(?): squid: buffer overflow in Gopher reply parser CVE-2011-3205
MLIST:[oss-security] 20110830 Re: Security issue in hammerhead CVE-2011-3204
MLIST:[oss-security] 20110830 kernel: CVE-2011-2482/2519 CVE-2011-2482
MLIST:[oss-security] 20110831 Re: CVE request: heap overflow in tcptrack < 1.4.2 CVE-2011-2903
MLIST:[oss-security] 20110901 CVE request for bcfg2 (remote root) CVE-2011-3211
MLIST:[oss-security] 20110902 CVE request for OpenTTD CVE-2011-3341 CVE-2011-3342 CVE-2011-3343
MLIST:[oss-security] 20110902 Xen Security Advisory 4 (CVE-2011-2901) - Xen 3.3 vaddr validation CVE-2011-2901
MLIST:[oss-security] 20110904 CVE requests: <mantisbt-1.2.8 multiple vulnerabilities (1xLFI+XSS, 2xXSS) CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[oss-security] 20110904 Re: CVE requests: <mantisbt-1.2.8 multiple vulnerabilities (1xLFI+XSS, 2xXSS) CVE-2011-3357 CVE-2011-3578
MLIST:[oss-security] 20110906 CVE Request: OFED 1.5.2 /proc/net/sdpstats reading local denial of service/crash CVE-2011-3345
MLIST:[oss-security] 20110906 Re: CVE request for OpenTTD CVE-2011-3341 CVE-2011-3342 CVE-2011-3343
MLIST:[oss-security] 20110906 Re: CVE request for bcfg2 (remote root) CVE-2011-3211
MLIST:[oss-security] 20110907 Re: CVE Request: OFED 1.5.2 /proc/net/sdpstats reading local denial of service/crash CVE-2011-3345
MLIST:[oss-security] 20110908 CVE Request -- libfcgi-perl / perl-FCGI: Certain environment variables shared between first and subsequent HTTP requests CVE-2011-2766
MLIST:[oss-security] 20110908 CVE request: Quassel < 0.7.3 CTCP request core DoS CVE-2011-3354
MLIST:[oss-security] 20110908 Re: CVE Request -- libfcgi-perl / perl-FCGI: Certain environment variables shared between first and subsequent HTTP requests CVE-2011-2766
MLIST:[oss-security] 20110909 Re: CVE request -- kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message CVE-2011-3353
MLIST:[oss-security] 20110909 Re: CVE request: Quassel < 0.7.3 CTCP request core DoS CVE-2011-3354
MLIST:[oss-security] 20110909 Re: CVE requests: <mantisbt-1.2.8 multiple vulnerabilities (1xLFI+XSS, 2xXSS) CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[oss-security] 20110910 D-Link DCS-2121 Semicolon Vulnerability CVE-2010-4964
MLIST:[oss-security] 20110911 CVE Request -- Django: v1.3.1, v1.2.7 multiple security flaws CVE-2011-1521 CVE-2011-4136 CVE-2011-4137 CVE-2011-4138 CVE-2011-4139 CVE-2011-4140
MLIST:[oss-security] 20110913 CVE Request: BackupPC 3.2.1 fixes cross site scripting CVE-2011-3361
MLIST:[oss-security] 20110913 CVE Request: Multiple issues fixed in wireshark 1.6.2 CVE-2011-3360 CVE-2011-3482 CVE-2011-3483 CVE-2011-3484
MLIST:[oss-security] 20110913 CVE request: ffmpeg/libav insufficuent boundary check in CAVS decoding CVE-2011-3362
MLIST:[oss-security] 20110913 Re: CVE Request -- Django: v1.3.1, v1.2.7 multiple security flaws CVE-2011-1521 CVE-2011-4136 CVE-2011-4137 CVE-2011-4138 CVE-2011-4139 CVE-2011-4140
MLIST:[oss-security] 20110914 Re: CVE Request: BackupPC 3.2.1 fixes cross site scripting CVE-2011-3361
MLIST:[oss-security] 20110914 Re: CVE Request: Multiple issues fixed in wireshark 1.6.2 CVE-2011-3360 CVE-2011-3482 CVE-2011-3483 CVE-2011-3484
MLIST:[oss-security] 20110914 Re: CVE request -- kernel: b43: allocate receive buffers big enough for max frame len + offset CVE-2011-3359
MLIST:[oss-security] 20110914 Re: CVE request -- kernel: cifs: always do is_path_accessible check in cifs_mount CVE-2011-3363
MLIST:[oss-security] 20110914 Re: CVE request: ffmpeg/libav insufficuent boundary check in CAVS decoding CVE-2011-3362
MLIST:[oss-security] 20110914 Re: D-Link DCS-2121 Semicolon Vulnerability CVE-2010-4964
MLIST:[oss-security] 20110916 Re: CVE Request -- Django: v1.3.1, v1.2.7 multiple security flaws CVE-2011-1521 CVE-2011-4137
MLIST:[oss-security] 20110918 CVE request: PunBB multiple XSS issues CVE-2011-3371
MLIST:[oss-security] 20110919 CVE Request? etherape remote crash (denial of service) CVE-2011-3369
MLIST:[oss-security] 20110922 CVE Request: Missing input sanitation in various X GLX calls CVE-2010-4818
MLIST:[oss-security] 20110922 CVE Request: X.org ProcRenderGlyps input sanitation issue CVE-2010-4819
MLIST:[oss-security] 20110922 Re: CVE Request? etherape remote crash (denial of service) CVE-2011-3369
MLIST:[oss-security] 20110922 Re: CVE request: PunBB multiple XSS issues CVE-2011-3371
MLIST:[oss-security] 20110923 Re: CVE Request: Missing input sanitation in various X GLX calls CVE-2010-4818
MLIST:[oss-security] 20110923 Re: CVE Request: X.org ProcRenderGlyps input sanitation issue CVE-2010-4819
MLIST:[oss-security] 20110924 CVE request: heap-based buffer overflow in ldns CVE-2011-3581
MLIST:[oss-security] 20110927 rpm/librpm/rpm-python memory corruption pre-verification CVE-2011-3378
MLIST:[oss-security] 20110930 Re: CVE request: heap-based buffer overflow in ldns CVE-2011-3581
MLIST:[oss-security] 20111004 CVE Request -- phpPgAdmin -- Multiple XSS flaws fixed in v5.0.3 CVE-2011-3598
MLIST:[oss-security] 20111004 Re: CVE Request -- phpPgAdmin -- Multiple XSS flaws fixed in v5.0.3 CVE-2011-3598
MLIST:[oss-security] 20111005 CVE Request -- perl-Crypt-DSA -- Cryptographically insecure method used for random numbers generation on systems without /dev/random CVE-2011-3599
MLIST:[oss-security] 20111005 Re: CVE Request -- perl-Crypt-DSA -- Cryptographically insecure method used for random numbers generation on systems without /dev/random CVE-2011-3599
MLIST:[oss-security] 20111007 radvd 1.8.2 released with security fixes CVE-2011-3601 CVE-2011-3604 CVE-2011-3605
MLIST:[oss-security] 20111009 CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue CVE-2011-3616
MLIST:[oss-security] 20111009 CVE request: simple machines forum before 2.0.1 and 1.1.15 CVE-2011-3615 CVE-2011-4173
MLIST:[oss-security] 20111010 Re: CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue CVE-2011-3616
MLIST:[oss-security] 20111010 Re: CVE request: simple machines forum before 2.0.1 and 1.1.15 CVE-2011-3615 CVE-2011-4173
MLIST:[oss-security] 20111016 Duplicate CVE assigned: CVE-2011-2708 CVE-2011-2710 CVE-2011-2710
MLIST:[oss-security] 20111017 CVE request: double-free vulnerability in logsurfer CVE-2011-3626
MLIST:[oss-security] 20111017 Re: CVE request: double-free vulnerability in logsurfer CVE-2011-3626
MLIST:[oss-security] 20111017 Re: CVE request: kernel/AppArmor local denial of service CVE-2011-3619
MLIST:[oss-security] 20111018 CVE request: recursion level crash in clamav before 0.97.3 CVE-2011-3627
MLIST:[oss-security] 20111018 Re: MySQL executable comment execution on MySQL slave server (from 2009) CVE-2009-5026
MLIST:[oss-security] 20111020 qemu: CVE-2011-3346 CVE-2011-3346
MLIST:[oss-security] 20111024 CVE request: phpldapadmin <= 1.2.1.1 XSS and and code injection flaws CVE-2011-4074 CVE-2011-4075
MLIST:[oss-security] 20111024 Re: CVE Request -- kernel: ext4: ext4_ext_insert_extent() kernel oops CVE-2011-3638
MLIST:[oss-security] 20111024 kernel; CVE-2011-2942 and CVE-2011-3209 CVE-2011-2942 CVE-2011-3209
MLIST:[oss-security] 20111025 Re: CVE request: phpldapadmin <= 1.2.1.1 XSS and and code injection flaws CVE-2011-4074 CVE-2011-4075
MLIST:[oss-security] 20111026 CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink() CVE-2011-4077
MLIST:[oss-security] 20111026 CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow CVE-2011-4079
MLIST:[oss-security] 20111026 Re: CVE Request -- Round Cube Webmail -- DoS (unavailability to access user's INBOX) after receiving an email message with the URL in the Subject CVE-2011-4078
MLIST:[oss-security] 20111026 Re: CVE Request -- kernel: sysctl: restrict write access to dmesg_restrict CVE-2011-4080
MLIST:[oss-security] 20111026 Re: CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink() CVE-2011-4077
MLIST:[oss-security] 20111026 Re: CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow CVE-2011-4079
MLIST:[oss-security] 20111027 CVE Request: Security issue in backuppc CVE-2011-4923
MLIST:[oss-security] 20111027 Re: CVE request: kernel: crypto: ghash: null pointer deref if no key is set CVE-2011-4081
MLIST:[oss-security] 20111028 Re: CVE Request: Multiple remote denial of service in Linux bridge networking code 2.6.37-3.0 CVE-2011-4087
MLIST:[oss-security] 20111030 Re: CVE request: 3 flaws in libobby and libnet6 CVE-2011-4092
MLIST:[oss-security] 20111031 CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record CVE-2011-4096
MLIST:[oss-security] 20111031 Re: CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record CVE-2011-4096
MLIST:[oss-security] 20111031 Re: CVE request: 3 flaws in libobby and libnet6 CVE-2011-4091 CVE-2011-4092 CVE-2011-4093
MLIST:[oss-security] 20111031 Re: CVE request: kernel: oom: fix integer overflow of points in oom_badness CVE-2011-4097
MLIST:[oss-security] 20111101 Re: CVE request for wireshark flaws CVE-2011-4100 CVE-2011-4101 CVE-2011-4102
MLIST:[oss-security] 20111102 Re: Re: [LightDM] Version 1.0.6 released CVE-2011-4105
MLIST:[oss-security] 20111102 Re: [LightDM] Version 1.0.6 released CVE-2011-4105
MLIST:[oss-security] 20111103 CVE Request -- phpMyAdmin -- Arbitrary local file read flaw by loading XML strings / importing XML files CVE-2011-4107
MLIST:[oss-security] 20111103 Re: CVE Request -- phpMyAdmin -- Arbitrary local file read flaw by loading XML strings / importing XML files CVE-2011-4107
MLIST:[oss-security] 20111103 Re: CVE request: wordpress plugin timthumb before 2.0 remote code execution CVE-2011-4106
MLIST:[oss-security] 20111104 CVE request: Mahara CVE-2011-4118
MLIST:[oss-security] 20111104 CVE request: unsafe use of /tmp in multiple CPAN modules CVE-2011-4114
MLIST:[oss-security] 20111104 Re: CVE Request -- Drupal (v6.x based) Views module - SQL injection due improper escaping of database parameters for certain filters / arguments (SA-CONTRIB-2011-052) CVE-2011-4113
MLIST:[oss-security] 20111104 Re: CVE request: Mahara CVE-2011-4118
MLIST:[oss-security] 20111104 Re: CVE request: unsafe use of /tmp in multiple CPAN modules CVE-2011-4114
MLIST:[oss-security] 20111108 CVE request: Android: vold stack buffer overflow CVE-2011-3874
MLIST:[oss-security] 20111108 CVE request: gnutls possible DoS (GNUTLS-SA-2011-2) CVE-2011-4128
MLIST:[oss-security] 20111108 Re: CVE request: Android: vold stack buffer overflow CVE-2011-3874
MLIST:[oss-security] 20111109 CVE Request -- libsocialweb -- Untrusted connection opened to Twitter social service without user's approval upon service start via dbus CVE-2011-4129
MLIST:[oss-security] 20111109 Re: CVE Request -- libsocialweb -- Untrusted connection opened to Twitter social service without user's approval upon service start via dbus CVE-2011-4129
MLIST:[oss-security] 20111109 Re: CVE request: gnutls possible DoS (GNUTLS-SA-2011-2) CVE-2011-4128
MLIST:[oss-security] 20111109 Re: Re: CVE request: Android: vold stack buffer overflow CVE-2011-3874
MLIST:[oss-security] 20111111 CVE Request -- kernel: jbd/jbd2: invalid value of first log block leads to oops CVE-2011-4132
MLIST:[oss-security] 20111111 Re: CVE Request -- kernel: nfs4_getfacl decoding kernel oops CVE-2011-4131
MLIST:[oss-security] 20111113 CVE request: ResourceSpace before 4.2.2833 insufficient access check CVE-2011-4311
MLIST:[oss-security] 20111113 Re: CVE Request -- kernel: jbd/jbd2: invalid value of first log block leads to oops CVE-2011-4132
MLIST:[oss-security] 20111113 Re: Fwd: DSA 2338-1 moodle security update CVE-2011-4133 CVE-2011-4278 CVE-2011-4279 CVE-2011-4280 CVE-2011-4281 CVE-2011-4282 CVE-2011-4283 CVE-2011-4284 CVE-2011-4285 CVE-2011-4286 CVE-2011-4287 CVE-2011-4288 CVE-2011-4289 CVE-2011-4290 CVE-2011-4291 CVE-2011-4292 CVE-2011-4293 CVE-2011-4294 CVE-2011-4295 CVE-2011-4296 CVE-2011-4297
MLIST:[oss-security] 20111114 Re: CVE request: ResourceSpace before 4.2.2833 insufficient access check CVE-2011-4311
MLIST:[oss-security] 20111115 CVE Request -- ReviewBoard v1.5.7 && v1.6.3 -- XSS in the commenting system (diff viewer and screenshot pages components) CVE-2011-4312
MLIST:[oss-security] 20111115 Re: CVE Request -- ReviewBoard v1.5.7 && v1.6.3 -- XSS in the commenting system (diff viewer and screenshot pages components) CVE-2011-4312
MLIST:[oss-security] 20111116 CVE Request: openid4java not properly verifying the signature of Attribute Exchange (AX) information CVE-2011-4314
MLIST:[oss-security] 20111116 Re: CVE Request: openid4java not properly verifying the signature of Attribute Exchange (AX) information CVE-2011-4314
MLIST:[oss-security] 20111117 CVE Request: nginx resolver heap overflow CVE-2011-4315
MLIST:[oss-security] 20111117 Re: CVE Request: nginx resolver heap overflow CVE-2011-4315
MLIST:[oss-security] 20111118 Re: CVE Request -- Dovecot -- Validate certificate's CN against requested remote server hostname when proxying CVE-2011-4318
MLIST:[oss-security] 20111118 Re: CVE Request -- Ruby on Rails / rubygem-actionpack -- XSS in the 'translate' helper method CVE-2011-4319
MLIST:[oss-security] 20111119 CVE request: ejabberd before 2.1.9 CVE-2011-4320
MLIST:[oss-security] 20111119 Re: CVE request: ejabberd before 2.1.9 CVE-2011-4320
MLIST:[oss-security] 20111120 Re: CVE request: joomla 1.5 before 1.5.25 password change vulnerability CVE-2011-4321
MLIST:[oss-security] 20111121 CVE Request (minor) -- gnash -- Unsafe management of HTTP cookies CVE-2011-4328
MLIST:[oss-security] 20111121 CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[oss-security] 20111121 CVE-2011-4112 kernel: null ptr deref at dev_queue_xmit+0x35/0x4d0 CVE-2011-4112
MLIST:[oss-security] 20111121 Re: CVE Request (minor) -- gnash -- Unsafe management of HTTP cookies CVE-2011-4328
MLIST:[oss-security] 20111121 Re: CVE Request -- kernel: wrong headroom check in udp6_ufo_fragment() CVE-2011-4326
MLIST:[oss-security] 20111121 Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[oss-security] 20111121 Re: CVE-request: Contao 2.10.1 Cross-site scripting vulnerability CVE-2011-4335
MLIST:[oss-security] 20111121 Re: Fwd: Support Incident Tracker <= 3.65 (translate.php) Remote Code Execution Vulnerability CVE-2011-4337 CVE-2011-5075
MLIST:[oss-security] 20111121 Re: Fwd: XSS vulnerability in Joomla 1.6.3 CVE-2011-4332
MLIST:[oss-security] 20111121 Re: Fwd: XSS vulnerability in Joomla 1.6.3 - CVE-2011-2710 / CVE-2011-2708 issue CVE-2011-2710
MLIST:[oss-security] 20111121 Re: kernel: hfs: add sanity check for file name length CVE-2011-4330
MLIST:[oss-security] 20111121 kernel: hfs: add sanity check for file name length CVE-2011-4330
MLIST:[oss-security] 20111122 CVE-request: Contao 2.10.1 Cross-site scripting vulnerability CVE-2011-4335
MLIST:[oss-security] 20111122 Fwd: Wordpress plugin BackWPup Remote and Local Code Execution Vulnerability - SOS-11-003 CVE-2011-4342
MLIST:[oss-security] 20111122 RE: Fwd: Wordpress plugin BackWPup Remote and Local Code Execution Vulnerability - SOS-11-003 CVE-2011-4342
MLIST:[oss-security] 20111122 Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[oss-security] 20111122 Re: CVE-request: Symphony CMS Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (NS-11-008) CVE-2011-4340 CVE-2011-4341
MLIST:[oss-security] 20111123 CVE request: jenkins CVE-2011-4344
MLIST:[oss-security] 20111123 Re: CVE request: jenkins CVE-2011-4344
MLIST:[oss-security] 20111124 Re: CVE request -- kernel: kvm: device assignment DoS CVE-2011-4347
MLIST:[oss-security] 20111125 Re: CVE Request: colord sql injections CVE-2011-4349
MLIST:[oss-security] 20111127 CVE Request -- ClearSilver (neo_cgi) -- Format string flaw by processing CGI error messages in Python module CVE-2011-4357
MLIST:[oss-security] 20111129 CVE Request: lighttpd/mod_auth out-of-bounds read due to signedness error CVE-2011-4362
MLIST:[oss-security] 20111129 CVE request: mediawiki before 1.17.1 CVE-2011-4360 CVE-2011-4361
MLIST:[oss-security] 20111129 Re: CVE Request: lighttpd/mod_auth out-of-bounds read due to signedness error CVE-2011-4362
MLIST:[oss-security] 20111129 Re: CVE request: mediawiki before 1.17.1 CVE-2011-4360 CVE-2011-4361
MLIST:[oss-security] 20111130 CVE request: Proc::ProcessTable perl module CVE-2011-4363
MLIST:[oss-security] 20111130 Re: CVE request: Proc::ProcessTable perl module CVE-2011-4363
MLIST:[oss-security] 20111201 CVE-2011-4354 OpenSSL 0.9.8g (32-bit builds) bug leaks ECC private keys CVE-2011-4354
MLIST:[oss-security] 20111206 Re: CVE request: acpid CVE-2011-4578
MLIST:[oss-security] 20111207 Disputing CVE-2011-4122 CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111208 Re: CVE Request -- kernel: send(m)msg: user pointer dereferences CVE-2011-4594
MLIST:[oss-security] 20111208 Re: Disputing CVE-2011-4122 CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111209 CVE Request -- Asterisk -- AST-2011-013 and AST-2011-014 CVE-2011-4597 CVE-2011-4598
MLIST:[oss-security] 20111209 CVE Request: icu out of bounds access CVE-2011-4599
MLIST:[oss-security] 20111209 CVE request: Pidgin crash CVE-2011-4601
MLIST:[oss-security] 20111209 Re: CVE Request -- Asterisk -- AST-2011-013 and AST-2011-014 CVE-2011-4597 CVE-2011-4598
MLIST:[oss-security] 20111209 Re: CVE Request: icu out of bounds access CVE-2011-4599
MLIST:[oss-security] 20111210 Re: CVE request: Pidgin crash CVE-2011-4601
MLIST:[oss-security] 20111211 Fwd: Re: cve request: bat_socket_read memory corruption CVE-2011-4604
MLIST:[oss-security] 20111212 CVE request: putty does not wipe keyboard-interactive replies from memory after authentication CVE-2011-4607
MLIST:[oss-security] 20111212 CVE request: rocksndiamonds world-writable working/config directory CVE-2011-4606
MLIST:[oss-security] 20111212 Re: CVE request: putty does not wipe keyboard-interactive replies from memory after authentication CVE-2011-4607
MLIST:[oss-security] 20111212 Re: CVE request: rocksndiamonds world-writable working/config directory CVE-2011-4606
MLIST:[oss-security] 20111213 OpenIPMI: IPMI event daemon creates PID file with world writeable permissions CVE-2011-4339
MLIST:[oss-security] 20111215 Re: CVE request - kernel: perf, powerpc: Handle events that raise an exception without overflowing CVE-2011-4611
MLIST:[oss-security] 20111216 TYPO3 typo3-core-sa-2011-004 CVE-2011-4614
MLIST:[oss-security] 20111218 CVE for HTML-Template-Pro 0.9506 XSS CVE-2011-4616
MLIST:[oss-security] 20111219 CVE id request: python-virtualenv CVE-2011-4617
MLIST:[oss-security] 20111219 Re: CVE id request: python-virtualenv CVE-2011-4617
MLIST:[oss-security] 20111219 Re: CVE-request: WordPress advanced-text-widget XSS advancedtext.php?page= CVE-2011-4618
MLIST:[oss-security] 20111221 Re: CVE Request -- kernel: tight loop and no preemption can cause system stall CVE-2011-4621
MLIST:[oss-security] 20111221 Re: kernel: kvm: pit timer with no irqchip crashes the system CVE-2011-4622
MLIST:[oss-security] 20111221 plib ulSetError() buffer overflow - CVE-2011-4620 CVE-2011-4620
MLIST:[oss-security] 20111222 CVE-2011-4127 kernel: possible privilege escalation via SG_IO ioctl CVE-2011-4127
MLIST:[oss-security] 20111222 Re: CVE Request -- rsyslog -- DoS due integer signedness error while extending rsyslog counted string buffer CVE-2011-4623
MLIST:[oss-security] 20111224 CVE Request for Apache ActiveMQ DoS CVE-2011-4905
MLIST:[oss-security] 20111224 CVE-request 2006: Joomla Web Link Submission title Parameter SQL injection CVE-2006-7247
MLIST:[oss-security] 20111224 Re: CVE-request 2006: Joomla Web Link Submission title Parameter SQL injection CVE-2006-7247
MLIST:[oss-security] 20111224 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111225 CVE-request for three 2009 Joomla issues (second part) CVE-2011-4909 CVE-2011-4910 CVE-2011-4911
MLIST:[oss-security] 20111225 Re: CVE Request for Apache ActiveMQ DoS CVE-2011-4905
MLIST:[oss-security] 20111225 Re: CVE-request for three 2009 Joomla issues (second part) CVE-2011-4909 CVE-2011-4910 CVE-2011-4911
MLIST:[oss-security] 20111226 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111227 Re: CVE request: kernel: multiple issues in ROSE CVE-2011-4913 CVE-2011-4914
MLIST:[oss-security] 20111228 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111231 Re: CVE-request: Elxis CMS two XSS-vulnerabilities CVE-2011-4918
MLIST:[oss-security] 20120102 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20120103 CVE request: maradns hash table collision cpu dos CVE-2011-5055 CVE-2012-0024
MLIST:[oss-security] 20120103 Re: CVE request: maradns hash table collision cpu dos CVE-2011-5055 CVE-2012-0024
MLIST:[oss-security] 20120104 Re: CVE Request: Security issue in backuppc CVE-2011-4923
MLIST:[oss-security] 20120104 Re: CVE request: Pidgin CVE-2011-4922
MLIST:[oss-security] 20120104 Re: CVE-request: Multiple e107 vulnerabilities CVE-2011-4920 CVE-2011-4921
MLIST:[oss-security] 20120105 CVE request: TORQUE Munge Authentication Security Bypass CVE-2011-4925
MLIST:[oss-security] 20120105 CVE-request: WordPress plugin Adminimize XSS CVE-2011-4926
MLIST:[oss-security] 20120105 Re: CVE request: TORQUE Munge Authentication Security Bypass CVE-2011-4925
MLIST:[oss-security] 20120105 Re: CVE-request: WordPress plugin Adminimize XSS CVE-2011-4926
MLIST:[oss-security] 20120106 CVE request: redmine issues CVE-2011-4927 CVE-2011-4928 CVE-2011-4929
MLIST:[oss-security] 20120106 Re: CVE request: redmine issues CVE-2011-4927 CVE-2011-4928 CVE-2011-4929
MLIST:[oss-security] 20120107 CVE request for OpenTTD CVE-2012-0048
MLIST:[oss-security] 20120109 CVE Request: CEDET/Emacs global-ede-mode file loading vulnerability CVE-2012-0035
MLIST:[oss-security] 20120109 Re: CVE request: znc CVE-2012-0033
MLIST:[oss-security] 20120109 Re: Re: CVE Request: CEDET/Emacs global-ede-mode file loading vulnerability CVE-2012-0035
MLIST:[oss-security] 20120110 CVE-2012-0207 kernel: igmp: Avoid zero delay when receiving odd mixture of IGMP queries CVE-2012-0207
MLIST:[oss-security] 20120110 Re: CVE request: kernel: xfs heap overflow CVE-2012-0038
MLIST:[oss-security] 20120110 glib2 hash dos oCert-2011-003 CVE-2012-0039
MLIST:[oss-security] 20120111 Re: CVE request - kernel: drm: integer overflow in drm_mode_dirtyfb_ioctl() CVE-2012-0044
MLIST:[oss-security] 20120111 Re: CVE request -- kernel: kvm: syscall instruction induced guest panic CVE-2012-0045
MLIST:[oss-security] 20120111 Re: CVE request: Wireshark multiple vulnerabilities CVE-2012-0041 CVE-2012-0042 CVE-2012-0043 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068
MLIST:[oss-security] 20120113 CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120113 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120113 Re: CVE request for OpenTTD CVE-2012-0048
MLIST:[oss-security] 20120114 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120115 CVE-request: NGS00109 remote code execution in ImpressPages CMS CVE-2011-4932
MLIST:[oss-security] 20120115 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120117 CVE-request: golismero symlink vulnerability CVE-2012-0054
MLIST:[oss-security] 20120117 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120117 Re: CVE request: kernel: Unused iocbs in a batch should not be accounted as active CVE-2012-0058
MLIST:[oss-security] 20120117 Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120117 Re: CVE-request: golismero symlink vulnerability CVE-2012-0054
MLIST:[oss-security] 20120118 CVE request - Batavi 1.2.1 Fixes Blind SQL Injection vulnerability in boxToReload parameter of ajax.php CVE-2012-0069
MLIST:[oss-security] 20120118 CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120118 Re: CVE-request: NGS00109 remote code execution in ImpressPages CMS CVE-2011-4932
MLIST:[oss-security] 20120118 Re: Screen locking programs on Xorg 1.11 CVE-2012-0064
MLIST:[oss-security] 20120119 CVE request: usbmuxd 1.0.7 "receive_packet()" Buffer Overflow Vulnerability CVE-2012-0065
MLIST:[oss-security] 20120119 Re: CVE request - Batavi 1.2.1 Fixes Blind SQL Injection CVE-2012-0069
MLIST:[oss-security] 20120119 Re: CVE request: Wireshark multiple vulnerabilities CVE-2012-0041 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068
MLIST:[oss-security] 20120119 Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120119 Re: CVE request: usbmuxd 1.0.7 "receive_packet()" Buffer Overflow Vulnerability CVE-2012-0065
MLIST:[oss-security] 20120120 CVE Request -- Asterisk AST-2012-001 / Remote DoS while processing crypto line for media stream with non-existing RTP CVE-2012-0885
MLIST:[oss-security] 20120120 Re: CVE Request -- Asterisk AST-2012-001 / Remote DoS while processing crypto line for media stream with non-existing RTP CVE-2012-0885
MLIST:[oss-security] 20120120 Re: CVE request: simpleSAMLphp 1.8.2 cross site scripting CVE-2012-0040 CVE-2012-0908
MLIST:[oss-security] 20120120 Re: CVE request: smokeping XSS CVE-2012-0790
MLIST:[oss-security] 20120121 Re: Re: CVE Request -- Horde IMP -- Multiple XSS flaws CVE-2012-0791 CVE-2012-0909
MLIST:[oss-security] 20120122 Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120123 Re: CVE request: spamdyke buffer overflow vulnerability CVE-2012-0802
MLIST:[oss-security] 20120124 CVE request: bip buffer overflow CVE-2012-0806
MLIST:[oss-security] 20120124 CVE requests: Suhosin extension / as31 CVE-2012-0807 CVE-2012-0808
MLIST:[oss-security] 20120124 Re: CVE request: bip buffer overflow CVE-2012-0806
MLIST:[oss-security] 20120124 Re: CVE requests: Suhosin extension / as31 CVE-2012-0807 CVE-2012-0808
MLIST:[oss-security] 20120125 Fwd Joomla! Security News 2012-01 CVE-2012-0819 CVE-2012-0820 CVE-2012-0821 CVE-2012-0822
MLIST:[oss-security] 20120125 Re: Fwd Joomla! Security News 2012-01 CVE-2012-0819 CVE-2012-0820 CVE-2012-0821 CVE-2012-0822
MLIST:[oss-security] 20120126 CVE Request: Debian (others?) openssh-server: Forced Command handling leaks private information to ssh clients CVE-2012-0814
MLIST:[oss-security] 20120126 CVE request: wicd writes sensitive information in log files (password, passphrase...) CVE-2012-0813
MLIST:[oss-security] 20120126 Re: CVE Request: Debian (others?) openssh-server: Forced Command handling leaks private information to ssh clients CVE-2012-0814
MLIST:[oss-security] 20120126 Re: CVE request: wicd writes sensitive information in log files (password, passphrase...) CVE-2012-0813
MLIST:[oss-security] 20120126 Re: Fwd Joomla! Security News 2012-01 CVE-2012-0819 CVE-2012-0820 CVE-2012-0821 CVE-2012-0822
MLIST:[oss-security] 20120127 Re: CVE Request: Debian (others?) openssh-server: Forced Command handling leaks private information to ssh clients CVE-2012-0814
MLIST:[oss-security] 20120128 (maybe) CVE request: libvpx before 1.0 crasher CVE-2012-0823
MLIST:[oss-security] 20120129 Re: (maybe) CVE request: libvpx before 1.0 crasher CVE-2012-0823
MLIST:[oss-security] 20120129 Re: Fwd Joomla! Security News 2012-01 CVE-2012-0819 CVE-2012-0820 CVE-2012-0821 CVE-2012-0822
MLIST:[oss-security] 20120201 Re: CVE Requests for FFmpeg 0.9.1 CVE-2012-0847 CVE-2012-0848 CVE-2012-0849 CVE-2012-0850 CVE-2012-0854 CVE-2012-0855 CVE-2012-0856 CVE-2012-0857
MLIST:[oss-security] 20120202 CVE request: phpldapadmin "base" Cross-Site Scripting Vulnerability CVE-2012-0834
MLIST:[oss-security] 20120202 PHP remote code execution introduced via HashDoS fix CVE-2012-0830
MLIST:[oss-security] 20120202 Re: XSS hiding CSRF (was: Re: Mibew messenger multiple XSS) CVE-2012-0829
MLIST:[oss-security] 20120203 CVE-request: Joomla! Security News 2012-02-03 CVE-2012-0835 CVE-2012-0836 CVE-2012-0837
MLIST:[oss-security] 20120203 Re: CVE request: phpldapadmin "base" Cross-Site Scripting Vulnerability CVE-2012-0834
MLIST:[oss-security] 20120203 Re: CVE-request: Joomla! Security News 2012-02-03 CVE-2012-0835 CVE-2012-0836 CVE-2012-0837
MLIST:[oss-security] 20120203 Re: PHP remote code execution introduced via HashDoS fix CVE-2012-0830
MLIST:[oss-security] 20120206 CVE request: Hash DoS vulnerability (ocert-2011-003) CVE-2012-0839
MLIST:[oss-security] 20120206 CVE-2011-3637 Linux kernel: proc: fix Oops on invalid /proc/<pid>/maps access CVE-2011-3637
MLIST:[oss-security] 20120206 Re: CVE request: Hash DoS vulnerability (ocert-2011-003) CVE-2012-0839
MLIST:[oss-security] 20120206 Re: CVE-2011-4324 kernel: nfsv4: mknod(2) DoS CVE-2011-4324
MLIST:[oss-security] 20120208 CVE request: apr - Hash DoS vulnerability CVE-2012-0840
MLIST:[oss-security] 20120208 Re: CVE request: apr - Hash DoS vulnerability CVE-2012-0840
MLIST:[oss-security] 20120211 CVE-request: Webcalendar 1.2.4 location XSS CVE-2012-0846
MLIST:[oss-security] 20120211 Re: CVE-request: Webcalendar 1.2.4 location XSS CVE-2012-0846
MLIST:[oss-security] 20120212 CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability CVE-2012-0865
MLIST:[oss-security] 20120212 Re: CVE-request: Webcalendar 1.2.4 location XSS CVE-2012-0846
MLIST:[oss-security] 20120213 Re: CVE Request -- python (SimpleXMLRPCServer): DoS (excessive CPU usage) via malformed XML-RPC / HTTP POST request CVE-2012-0845
MLIST:[oss-security] 20120213 Re: CVE-request: Webcalendar 1.2.4 location XSS CVE-2012-0846
MLIST:[oss-security] 20120213 Re: CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability CVE-2012-0865
MLIST:[oss-security] 20120214 Re: CVE Requests for FFmpeg 0.9.1 CVE-2012-0847 CVE-2012-0848 CVE-2012-0849 CVE-2012-0850 CVE-2012-0851 CVE-2012-0852 CVE-2012-0853 CVE-2012-0854 CVE-2012-0855 CVE-2012-0856 CVE-2012-0857 CVE-2012-0858 CVE-2012-0859
MLIST:[oss-security] 20120215 CVE request: mumble local information disclosure CVE-2012-0863
MLIST:[oss-security] 20120215 Re: CVE request: mumble local information disclosure CVE-2012-0863
MLIST:[oss-security] 20120217 Re: CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability CVE-2012-0865
MLIST:[oss-security] 20120218 TORCS 1.3.2 xml buffer overflow - CVE-2012-1189 CVE-2012-1189
MLIST:[oss-security] 20120220 Re: Dolphin 7.0.7 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0873
MLIST:[oss-security] 20120220 Re: OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0872
MLIST:[oss-security] 20120220 Re: Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2. CVE-2012-0869 CVE-2012-1293
MLIST:[oss-security] 20120220 Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2. CVE-2012-0869 CVE-2012-1293
MLIST:[oss-security] 20120221 Dolphin 7.0.7 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0873
MLIST:[oss-security] 20120221 OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0872
MLIST:[oss-security] 20120222 CVE-2012-0875: systemtap memory disclosure/kernel panic when processing malformed DWARF unwind data CVE-2012-0875
MLIST:[oss-security] 20120222 libxml2: hash table collisions CPU usage DoS CVE-2012-0841
MLIST:[oss-security] 20120223 CVE Request -- python-paste-script: Supplementary groups not dropped when started an application with "paster serve" as root CVE-2012-0878
MLIST:[oss-security] 20120223 Re: CVE Request -- python-paste-script: Supplementary groups not dropped when started an application with "paster serve" as root CVE-2012-0878
MLIST:[oss-security] 20120223 Re: CVE request -- kernel: block: CLONE_IO io_context refcounting issues CVE-2012-0879
MLIST:[oss-security] 20120223 Re: Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2. CVE-2012-0869 CVE-2012-1293
MLIST:[oss-security] 20120224 Re: MySQL 0-day - does it need a CVE? CVE-2012-0882
MLIST:[oss-security] 20120227 CVE Status Clarification / Request -- kadu: Stored XSS by parsing contact's status and sms messages in history CVE-2012-1410
MLIST:[oss-security] 20120227 CVE request: openssl: null pointer dereference issue CVE-2006-7250
MLIST:[oss-security] 20120227 Case YVS Image Gallery CVE-2012-1564
MLIST:[oss-security] 20120227 Re: Case YVS Image Gallery CVE-2012-1564 CVE-2012-5304
MLIST:[oss-security] 20120227 Re: Re: CVE Status Clarification / Request -- kadu: Stored XSS by parsing contact's status and sms messages in history CVE-2012-1410
MLIST:[oss-security] 20120228 CVE Request (minor) -- osc: Improper sanitization of terminal emulator escape sequences when displaying build log and build status CVE-2012-1095
MLIST:[oss-security] 20120228 Re: CVE Request (minor) -- osc: Improper sanitization of terminal emulator escape sequences when displaying build log and build status CVE-2012-1095
MLIST:[oss-security] 20120228 Re: CVE request -- kernel: cifs: dentry refcount leak when opening a FIFO on lookup leads to panic on unmount CVE-2012-1090
MLIST:[oss-security] 20120228 Re: CVE request: openssl: null pointer dereference issue CVE-2006-7250
MLIST:[oss-security] 20120301 Re: Re: CVE Request (minor) -- osc: Improper sanitization of terminal emulator escape sequences when displaying build log and build status CVE-2012-1095
MLIST:[oss-security] 20120302 CVE Request -- Ruby on Rails (v3.0.12) / rubygem-actionpack: Two XSS flaws CVE-2012-1098 CVE-2012-1099
MLIST:[oss-security] 20120302 Re: CVE Request -- Ruby on Rails (v3.0.12) / rubygem-actionpack: Two XSS flaws CVE-2012-1098 CVE-2012-1099
MLIST:[oss-security] 20120304 CVE request: notmuch CVE-2012-1103
MLIST:[oss-security] 20120304 Re: CVE request: notmuch CVE-2012-1103
MLIST:[oss-security] 20120305 CVE-2011-3593 kernel: vlan: fix panic when handling priority tagged frames CVE-2011-3593
MLIST:[oss-security] 20120305 CVE-2011-4348 kernel: incomplete fix for CVE-2011-2482 CVE-2011-4348
MLIST:[oss-security] 20120305 CVE-2012-1097 kernel: regset: Prevent null pointer reference on readonly regsets CVE-2012-1097
MLIST:[oss-security] 20120305 Re: CVE-Request taglib vulnerabilities CVE-2012-1107 CVE-2012-1108 CVE-2012-1584
MLIST:[oss-security] 20120305 Re: Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-1110
MLIST:[oss-security] 20120305 Re: Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability CVE-2012-1112
MLIST:[oss-security] 20120305 Re: TORCS 1.3.2 xml buffer overflow - CVE-2012-1189 CVE-2012-1189
MLIST:[oss-security] 20120306 CVE-request: Joomla! Security News 2012-03 CVE-2012-1116 CVE-2012-1117
MLIST:[oss-security] 20120306 CVE-request: Kish Guest Posting Plugin for WordPress File Upload Remote PHP Code Execution CVE-2012-1125
MLIST:[oss-security] 20120306 Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-1110
MLIST:[oss-security] 20120306 Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability CVE-2012-1112
MLIST:[oss-security] 20120306 Re: CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.9 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144
MLIST:[oss-security] 20120306 Re: CVE request: mantisbt before 1.2.9 CVE-2012-1118 CVE-2012-1119 CVE-2012-1120 CVE-2012-1121 CVE-2012-1122 CVE-2012-1123
MLIST:[oss-security] 20120306 Re: CVE-request: Joomla! Security News 2012-03 CVE-2012-1116 CVE-2012-1117
MLIST:[oss-security] 20120306 Re: CVE-request: Kish Guest Posting Plugin for WordPress File Upload Remote PHP Code Execution CVE-2012-1125
MLIST:[oss-security] 20120307 Re: CVE request -- kernel: mm: memcg: unregistring of events attached to the same eventfd can lead to oops CVE-2012-1146
MLIST:[oss-security] 20120308 CVE-request: Parallels Plesk Panel admin/plib/api-rpc/Agent.php Unspecified SQL Injection CVE-2012-1557
MLIST:[oss-security] 20120308 CVE-request: phpMyFAQ index.php URI XSS CVE-2010-4821
MLIST:[oss-security] 20120308 Re: CVE-request: Kish Guest Posting Plugin for WordPress File Upload Remote PHP Code Execution CVE-2012-1125 CVE-2012-5318
MLIST:[oss-security] 20120308 Re: CVE-request: phpMyFAQ index.php URI XSS CVE-2010-4821
MLIST:[oss-security] 20120309 CVE Request -- libdbd-pg-perl / perl-DBD-Pg && libyaml-libyaml-perl / perl-YAML-LibYAML: Multiple format string flaws CVE-2012-1151 CVE-2012-1152
MLIST:[oss-security] 20120309 CVE-request: appRain CMF uploadify.php File Upload Remote PHP Code Execution CVE-2012-1153
MLIST:[oss-security] 20120309 Re: CVE Request -- libdbd-pg-perl / perl-DBD-Pg && libyaml-libyaml-perl / perl-YAML-LibYAML: Multiple format string flaws CVE-2012-1151 CVE-2012-1152
MLIST:[oss-security] 20120309 Re: CVE Request: Python Hash DoS (Issue 13703) CVE-2012-1150
MLIST:[oss-security] 20120309 Re: CVE-request: appRain CMF uploadify.php File Upload Remote PHP Code Execution CVE-2012-1153
MLIST:[oss-security] 20120312 Re: CVE request: openssl: null pointer dereference issue CVE-2012-1165
MLIST:[oss-security] 20120313 Re: CVE request for PHP 5.3.x Corrupted $_FILES indices lead to security concern CVE-2012-1172
MLIST:[oss-security] 20120314 CVE Request: libgdata did not verify SSL certificates CVE-2012-1177
MLIST:[oss-security] 20120314 CVE request: gnash integer overflow CVE-2012-1175
MLIST:[oss-security] 20120314 CVE request: pyfribidi buffer overflow flaw CVE-2012-1176
MLIST:[oss-security] 20120314 Re: CVE Request: libgdata did not verify SSL certificates CVE-2012-1177
MLIST:[oss-security] 20120314 Re: CVE request: gnash integer overflow CVE-2012-1175
MLIST:[oss-security] 20120314 Re: CVE request: pyfribidi buffer overflow flaw CVE-2012-1176
MLIST:[oss-security] 20120315 CVE Request: nginx fix for malformed HTTP responses from upstream servers CVE-2012-1180
MLIST:[oss-security] 20120315 CVE Requests CVE-2012-1671
MLIST:[oss-security] 20120315 CVE-2012-1179 kernel: thp: __split_huge_page() mapcount != page_mapcount BUG_ON() CVE-2012-1179
MLIST:[oss-security] 20120315 CVE-request: apache's mod-fcgid does not respect configured FcgidMaxProcessesPerClass in VirtualHost CVE-2012-1181
MLIST:[oss-security] 20120315 Re: CVE Request: nginx fix for malformed HTTP responses from upstream servers CVE-2012-1180
MLIST:[oss-security] 20120315 Re: CVE Requests CVE-2012-1671
MLIST:[oss-security] 20120315 Re: CVE-request: apache's mod-fcgid does not respect configured FcgidMaxProcessesPerClass in VirtualHost CVE-2012-1181
MLIST:[oss-security] 20120316 CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws CVE-2012-1183 CVE-2012-1184
MLIST:[oss-security] 20120316 CVE-request: Drupal Finder SA-CONTRIB-2012-017 CVE-2012-1561 CVE-2012-1641 CVE-2012-6645
MLIST:[oss-security] 20120316 Re: CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws CVE-2012-1183 CVE-2012-1184
MLIST:[oss-security] 20120316 [Notification] CVE-2012-1174 systemd: TOCTOU race condition by removing user session CVE-2012-1174
MLIST:[oss-security] 20120318 Re: CVE request: piwik before 1.6 CVE-2011-4941
MLIST:[oss-security] 20120319 CVE request: eZ Publish: insecure direct object reference CVE-2012-1565
MLIST:[oss-security] 20120319 CVE request: maradns deleted domain record cache persistance flaw CVE-2012-1570
MLIST:[oss-security] 20120319 CVE-2012-1185 / CVE-2012-1186 assignment notification - incomplete ImageMagick fixes for CVE-2012-0247 / CVE-2012-0248 CVE-2012-1185
MLIST:[oss-security] 20120319 Re: CVE request: eZ Publish: insecure direct object reference CVE-2012-1565
MLIST:[oss-security] 20120319 Re: CVE request: piwik before 1.6 CVE-2011-4941
MLIST:[oss-security] 20120319 Re: CVE-request: Drupal Finder SA-CONTRIB-2012-017 CVE-2012-1561 CVE-2012-1641 CVE-2012-6645
MLIST:[oss-security] 20120319 Re: Case YVS Image Gallery CVE-2012-1564 CVE-2012-5304
MLIST:[oss-security] 20120319 Subject: CVE-2012-1185 / CVE-2012-1186 assignment notification - incomplete ImageMagick fixes for CVE-2012-0247 / CVE-2012-0248 CVE-2012-1186
MLIST:[oss-security] 20120320 CVE request: libtasn1 "asn1_get_length_der()" DER decoding issue CVE-2012-1569
MLIST:[oss-security] 20120320 Re: CVE request -- kernel: execshield: predictable ascii armour base address CVE-2012-1568
MLIST:[oss-security] 20120320 Re: CVE request: libtasn1 "asn1_get_length_der()" DER decoding issue CVE-2012-1569
MLIST:[oss-security] 20120320 Re: CVE request: maradns deleted domain record cache persistance flaw CVE-2012-1570
MLIST:[oss-security] 20120321 CVE request: GnuTLS TLS record handling issue / MU-201202-01 CVE-2012-1573
MLIST:[oss-security] 20120321 CVE-2012-1162 / -1163: Incorrect loop construct and numeric overflow in libzip CVE-2012-1162 CVE-2012-1163
MLIST:[oss-security] 20120321 Re: CVE request -- kernel: execshield: predictable ascii armour base address CVE-2012-1568
MLIST:[oss-security] 20120321 Re: CVE request: GnuTLS TLS record handling issue / MU-201202-01 CVE-2012-1569 CVE-2012-1573
MLIST:[oss-security] 20120321 Re: CVE-Request taglib vulnerabilities CVE-2012-1584
MLIST:[oss-security] 20120321 atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour CVE-2012-1576
MLIST:[oss-security] 20120322 MediaWiki security and maintenance release 1.18.2 CVE-2012-1578 CVE-2012-1579 CVE-2012-1580 CVE-2012-1581 CVE-2012-1582 CVE-2012-4885
MLIST:[oss-security] 20120322 Re: atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour CVE-2012-1576
MLIST:[oss-security] 20120323 CVE Request: Geeklog 1.7.1 <= Cross Site Scripting Vulnerability CVE-2011-4942
MLIST:[oss-security] 20120323 CVE-request: MyBB 1.6 <= SQL Injection CVE-2010-5096
MLIST:[oss-security] 20120323 CVE-request: OpenKM 5.1.7 Privilege Escalation / OS Command Execution (XSRF based) CVE-2012-2315 CVE-2012-2316
MLIST:[oss-security] 20120323 CVEs for MediaWiki security and maintenance release 1.18.2 CVE-2012-1578 CVE-2012-1579 CVE-2012-1580 CVE-2012-1581 CVE-2012-1582 CVE-2012-4885
MLIST:[oss-security] 20120323 Re: CVE-request: OpenKM 5.1.7 Privilege Escalation / OS Command Execution (XSRF based) CVE-2012-2315 CVE-2012-2316
MLIST:[oss-security] 20120325 Re: CVE-request: MyBB 1.6 <= SQL Injection CVE-2010-5096
MLIST:[oss-security] 20120326 Re: CVE-Request taglib vulnerabilities CVE-2012-1584
MLIST:[oss-security] 20120327 CVE Request: PolicyKit change allows users in "wheel" group to become root without a password CVE-2011-4945
MLIST:[oss-security] 20120327 CVE id request: cifs-utils CVE-2012-1586
MLIST:[oss-security] 20120327 CVE request: distutils creates ~/.pypirc insecurely CVE-2011-4944
MLIST:[oss-security] 20120327 Re: CVE Request: PolicyKit change allows users in "wheel" group to become root without a password CVE-2011-4945
MLIST:[oss-security] 20120327 Re: CVE id request: cifs-utils CVE-2012-1586
MLIST:[oss-security] 20120327 Re: CVE request: distutils creates ~/.pypirc insecurely CVE-2011-4944
MLIST:[oss-security] 20120328 CVE-request: e107 HTB23004 CVE-2011-4946 CVE-2011-4947
MLIST:[oss-security] 20120328 Re: CVE Request: Multiple wireshark security flaws resolved in 1.4.12 and 1.6.6 CVE-2012-1593 CVE-2012-1594 CVE-2012-1595 CVE-2012-1596
MLIST:[oss-security] 20120328 Re: CVE request: egroupware before 1.8.002 various security issues CVE-2011-4948 CVE-2011-4949 CVE-2011-4950 CVE-2011-4951
MLIST:[oss-security] 20120328 Re: CVE-request: Joomla 20120305 / 20120306 CVE-2012-1598 CVE-2012-1599
MLIST:[oss-security] 20120328 Re: CVE-request: e107 HTB23004 CVE-2011-4946 CVE-2011-4947
MLIST:[oss-security] 20120329 CVE-request: NextBBS 0.6.0 waraxe-2012-SA#080 CVE-2012-1602 CVE-2012-1603 CVE-2012-1604
MLIST:[oss-security] 20120329 Re: CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency CVE-2012-1601
MLIST:[oss-security] 20120329 Re: CVE request: TYPO3-CORE-SA-2012-001 CVE-2012-1605 CVE-2012-1606 CVE-2012-1607 CVE-2012-1608
MLIST:[oss-security] 20120329 Re: CVE request: egroupware before 1.8.002 various security issues CVE-2011-4948 CVE-2011-4949 CVE-2011-4950 CVE-2011-4951
MLIST:[oss-security] 20120329 Re: CVE-2012-1162 / -1163: Incorrect loop construct and numeric overflow in libzip CVE-2012-1162 CVE-2012-1163
MLIST:[oss-security] 20120329 Re: CVE-request: NextBBS 0.6.0 waraxe-2012-SA#080 CVE-2012-1602 CVE-2012-1603 CVE-2012-1604
MLIST:[oss-security] 20120330 CVE DISPUTE notification: postgresql-jdbc: SQL injection due improper escaping of JDBC statement parameters CVE-2012-1618
MLIST:[oss-security] 20120330 CVE-request: Coppermine 1.5.18 waraxe-2012-SA#081 CVE-2012-1613 CVE-2012-1614
MLIST:[oss-security] 20120330 Re: CVE-request: Coppermine 1.5.18 waraxe-2012-SA#081 CVE-2012-1613 CVE-2012-1614
MLIST:[oss-security] 20120330 postgresql-jdbc 8.1 SQL injection with postgresql server 9.1 CVE-2012-1618
MLIST:[oss-security] 20120331 SQL injection attack possible when connecting to PostgreSQL 9.1 with version 8.1 JDBC driver CVE-2012-1618
MLIST:[oss-security] 20120402 CVE request: OSClass directory traversal vulnerability CVE-2012-1617
MLIST:[oss-security] 20120402 Re: CVE request: OSClass directory traversal vulnerability CVE-2012-1617
MLIST:[oss-security] 20120402 Re: [JDBC] CVE DISPUTE notification: postgresql-jdbc: SQL injection due improper escaping of JDBC statement parameters CVE-2012-1618
MLIST:[oss-security] 20120403 CVE-request: Joomla 2012-04 398-20120307 399-20120308 CVE-2012-1611 CVE-2012-1612
MLIST:[oss-security] 20120403 Re: CVE request: OSClass directory traversal vulnerability CVE-2012-1617
MLIST:[oss-security] 20120403 Re: CVE-request: Coppermine 1.5.18 waraxe-2012-SA#081 CVE-2012-1613 CVE-2012-1614
MLIST:[oss-security] 20120403 Re: CVE-request: Joomla 2012-04 398-20120307 399-20120308 CVE-2012-1611 CVE-2012-1612
MLIST:[oss-security] 20120404 CVE-2012-1610 assignment notification: ImageMagick insufficient patch for CVE-2012-0259 CVE-2012-1610
MLIST:[oss-security] 20120404 Re: CVE DISPUTE notification: postgresql-jdbc: SQL injection due improper escaping of JDBC statement parameters CVE-2012-1618
MLIST:[oss-security] 20120404 Re: CVE request: OSClass directory traversal vulnerability CVE-2012-1617
MLIST:[oss-security] 20120404 Re: Re: [JDBC] CVE DISPUTE notification: postgresql-jdbc: SQL injection due improper escaping of JDBC statement parameters CVE-2012-1618
MLIST:[oss-security] 20120404 Re: Re: [pgsql-security] postgresql-jdbc 8.1 SQL injection with postgresql server 9.1 CVE-2012-1618
MLIST:[oss-security] 20120405 CVE Request: slock-0.9 displays modal box after locking CVE-2012-1620
MLIST:[oss-security] 20120405 Re: CVE Request: slock-0.9 displays modal box after locking CVE-2012-1620
MLIST:[oss-security] 20120406 CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments) CVE-2012-1561 CVE-2012-1623 CVE-2012-1624 CVE-2012-1625 CVE-2012-1626 CVE-2012-1627 CVE-2012-1628 CVE-2012-1629 CVE-2012-1630 CVE-2012-1631 CVE-2012-1632 CVE-2012-1633 CVE-2012-1634 CVE-2012-1635 CVE-2012-1636 CVE-2012-1638 CVE-2012-1639 CVE-2012-1640 CVE-2012-1641 CVE-2012-1642 CVE-2012-1643 CVE-2012-1644 CVE-2012-1645 CVE-2012-1646 CVE-2012-1647 CVE-2012-1648 CVE-2012-1649 CVE-2012-1650 CVE-2012-1651 CVE-2012-1652 CVE-2012-1653 CVE-2012-1654 CVE-2012-1655 CVE-2012-1656 CVE-2012-1657 CVE-2012-1658 CVE-2012-1659 CVE-2012-1660 CVE-2012-2056 CVE-2012-2057 CVE-2012-2058 CVE-2012-2059 CVE-2012-2060 CVE-2012-2061 CVE-2012-2062 CVE-2012-2063 CVE-2012-2064 CVE-2012-2065 CVE-2012-2066 CVE-2012-2067 CVE-2012-2068 CVE-2012-2069 CVE-2012-2070 CVE-2012-2071 CVE-2012-2072 CVE-2012-2073 CVE-2012-2074 CVE-2012-2075 CVE-2012-2076 CVE-2012-2077 CVE-2012-2080 CVE-2012-2081 CVE-2012-2082 CVE-2012-2083 CVE-2012-2084 CVE-2012-5007 CVE-2012-5233 CVE-2012-6645
MLIST:[oss-security] 20120408 CVE request: gajim - code execution and sql injection CVE-2012-2085 CVE-2012-2086
MLIST:[oss-security] 20120408 Re: CVE request: gajim - code execution and sql injection CVE-2012-2085 CVE-2012-2086
MLIST:[oss-security] 20120410 RE: gajim insecure file creation when using latex CVE-2012-2093
MLIST:[oss-security] 20120410 Re: CVE Request: FlightGear and Simgear Multiple vulnerabilities CVE-2012-2090 CVE-2012-2091
MLIST:[oss-security] 20120410 Re: CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments) CVE-2012-2296
MLIST:[oss-security] 20120410 gajim insecure file creation when using latex CVE-2012-2093
MLIST:[oss-security] 20120411 CVE Request for Drupal Contributed Advisories on 2012-04-11 CVE-2012-2096 CVE-2012-2097
MLIST:[oss-security] 20120411 CVE id request: wicd CVE-2012-2095
MLIST:[oss-security] 20120411 Re: CVE Request for Drupal Contributed Advisories on 2012-04-11 CVE-2012-2096 CVE-2012-2097
MLIST:[oss-security] 20120411 Re: CVE id request: wicd CVE-2012-2095
MLIST:[oss-security] 20120412 CVE-request: Wikidforum 2.10 multiple XSS and SQL-injection vulnerabilities SSCHADV2012-005 CVE-2012-2099
MLIST:[oss-security] 20120412 Re: CVE-request: Wikidforum 2.10 multiple XSS and SQL-injection vulnerabilities SSCHADV2012-005 CVE-2012-2099 CVE-2012-6520
MLIST:[oss-security] 20120412 Re: fix to CVE-2009-4307 CVE-2012-2100
MLIST:[oss-security] 20120412 nginx security advisory: mp4 module vulnerability, CVE-2012-2089 CVE-2012-2089
MLIST:[oss-security] 20120413 Re: CVE Request: Heap corruption in openjpeg CVE-2009-5030
MLIST:[oss-security] 20120413 Re: CVE request: mysql: Server crash on HANDLER READ NEXT after DELETE CVE-2012-2102
MLIST:[oss-security] 20120413 Re: CVE-request: Wikidforum 2.10 multiple XSS and SQL-injection vulnerabilities SSCHADV2012-005 CVE-2012-6520
MLIST:[oss-security] 20120415 CVE-request: WordPress BuddyPress-plugin SQL-injection 1.5.4 CVE-2012-2109
MLIST:[oss-security] 20120415 Re: CVE-request: Wikidforum 2.10 multiple XSS and SQL-injection vulnerabilities SSCHADV2012-005 CVE-2012-6520
MLIST:[oss-security] 20120416 CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2103 CVE-2012-2104 CVE-2012-4678
MLIST:[oss-security] 20120416 CVE Requests: Multiple security flaws in csound5 CVE-2012-2106 CVE-2012-2107 CVE-2012-2108
MLIST:[oss-security] 20120416 CVE-request: Timesheet Next Gen 1.5.2 Multiple SQLi CVE-2012-2105
MLIST:[oss-security] 20120416 Re: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2103 CVE-2012-2104 CVE-2012-4678
MLIST:[oss-security] 20120416 Re: CVE Requests: Multiple security flaws in csound5 CVE-2012-2106 CVE-2012-2107 CVE-2012-2108
MLIST:[oss-security] 20120416 Re: CVE-request: Timesheet Next Gen 1.5.2 Multiple SQLi CVE-2012-2105
MLIST:[oss-security] 20120416 Re: CVE-request: WordPress BuddyPress-plugin SQL-injection 1.5.4 CVE-2012-2109
MLIST:[oss-security] 20120417 RE: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147
MLIST:[oss-security] 20120417 Re: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147
MLIST:[oss-security] 20120417 CVE-request: OpenEMR 4.1.0 SQL-injection CVE-2012-2115
MLIST:[oss-security] 20120417 CVE-request: TYPO3-CORE-SA-2012-002 XSS in TYPO3 Core CVE-2012-2112
MLIST:[oss-security] 20120417 Re: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-4678
MLIST:[oss-security] 20120417 Re: CVE-request: TYPO3-CORE-SA-2012-002 XSS in TYPO3 Core CVE-2012-2112
MLIST:[oss-security] 20120418 CVE Request for Drupal Contributed Advisories on 2012-04-18 CVE-2012-2116 CVE-2012-2117
MLIST:[oss-security] 20120418 CVE request: Xorg input device format string flaw CVE-2012-2118
MLIST:[oss-security] 20120418 Re: Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147 CVE-2012-4678
MLIST:[oss-security] 20120418 Re: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147 CVE-2012-4678
MLIST:[oss-security] 20120418 Re: CVE Request for Drupal Contributed Advisories on 2012-04-18 CVE-2012-2116 CVE-2012-2117
MLIST:[oss-security] 20120418 Re: CVE request: Xorg input device format string flaw CVE-2012-2118
MLIST:[oss-security] 20120418 Re: CVE-request: OpenEMR 4.1.0 SQL-injection CVE-2012-2115
MLIST:[oss-security] 20120418 Re: Stack-based buffer overflow in musl libc 0.8.7 and earlier CVE-2012-2114
MLIST:[oss-security] 20120418 Stack-based buffer overflow in musl libc 0.8.7 and earlier CVE-2012-2114
MLIST:[oss-security] 20120419 CVE request: latex2man / texlive CVE-2012-2120
MLIST:[oss-security] 20120419 Re: CVE request -- kernel: kvm: device assignment page leak CVE-2012-2121
MLIST:[oss-security] 20120419 Re: CVE request -- kernel: macvtap: zerocopy: vector length is not validated before pinning user pages CVE-2012-2119
MLIST:[oss-security] 20120419 Re: CVE request: kernel: fcaps: clear the same personality flags as suid when fcaps are used CVE-2012-2123
MLIST:[oss-security] 20120419 Re: CVE request: latex2man / texlive CVE-2012-2120
MLIST:[oss-security] 20120419 Re: CVE-request: WordPress 3.1.1 CVE-2011-4956 CVE-2011-4957
MLIST:[oss-security] 20120419 Re: [Packaging] Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147 CVE-2012-4678
MLIST:[oss-security] 20120420 CVE-2012-2124 assignment notification: squirrelmail: CVE-2010-2813 not fixed in RHSA-2012:0103 CVE-2012-2124
MLIST:[oss-security] 20120420 Re: CVE Request -- rubygems: Two security fixes in upstream v1.8.23 version CVE-2012-2125 CVE-2012-2126
MLIST:[oss-security] 20120420 Re: CVE request: pid namespace leak in kernel 3.0 and 3.1 CVE-2012-2127
MLIST:[oss-security] 20120422 CVE Request -- DokuWiki: XSS and CSRF due improper escaping of 'target' parameter in preprocessing edit form data CVE-2012-2128 CVE-2012-2129
MLIST:[oss-security] 20120422 Re: CVE Request -- DokuWiki: XSS and CSRF due improper escaping of 'target' parameter in preprocessing edit form data CVE-2012-2128 CVE-2012-2129
MLIST:[oss-security] 20120422 Re: Re: CVE request: pid namespace leak in kernel 3.0 and 3.1 CVE-2012-2127
MLIST:[oss-security] 20120424 CVE Request: libsoup 2.32.2 sets ssl trusted flag despite no verification CVE-2012-2132
MLIST:[oss-security] 20120424 Re: CVE Request: libsoup 2.32.2 sets ssl trusted flag despite no verification CVE-2012-2132
MLIST:[oss-security] 20120424 Re: CVE Request: use after free bug in "quota" handling in hugetlb code CVE-2012-2133
MLIST:[oss-security] 20120424 Re: OpenSSL ASN1 BIO vulnerability (CVE-2012-2110) CVE-2012-2131
MLIST:[oss-security] 20120425 CVE Request: Python 3.2/3.3 utf-16 decoder unicode_decode_call_errorhandler aligned_end is not updated CVE-2012-2135
MLIST:[oss-security] 20120425 CVE request: two flaws fixed in rubygem-mail 2.4.4 CVE-2012-2139 CVE-2012-2140
MLIST:[oss-security] 20120425 Re: CVE Request: Python 3.2/3.3 utf-16 decoder unicode_decode_call_errorhandler aligned_end is not updated CVE-2012-2135
MLIST:[oss-security] 20120425 Re: CVE request: two flaws fixed in rubygem-mail 2.4.4 CVE-2012-2139 CVE-2012-2140
MLIST:[oss-security] 20120426 CVE Request -- net-snmp: Array index error, leading to out-of heap-based buffer read (snmpd crash) CVE-2012-2141
MLIST:[oss-security] 20120426 Re: CVE Request -- net-snmp: Array index error, leading to out-of heap-based buffer read (snmpd crash) CVE-2012-2141
MLIST:[oss-security] 20120427 Fwd: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected) CVE-2012-0037
MLIST:[oss-security] 20120427 Re: Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147 CVE-2012-4678
MLIST:[oss-security] 20120427 Re: CVE-request: OpenKM 5.1.7 Privilege Escalation / OS Command Execution (XSRF based) CVE-2012-2315 CVE-2012-2316
MLIST:[oss-security] 20120427 weak use of crypto in python-elixir can lead to information disclosure (CVE and peer review request) CVE-2012-2146
MLIST:[oss-security] 20120428 Re: weak use of crypto in python-elixir can lead to information disclosure (CVE and peer review request) CVE-2012-2146
MLIST:[oss-security] 20120429 Re: Bug#668667: CVE Request (minor) -- Two Munin graphing framework flaws CVE-2012-2147 CVE-2012-4678
MLIST:[oss-security] 20120429 Re: weak use of crypto in python-elixir can lead to information disclosure (CVE and peer review request) CVE-2012-2146
MLIST:[oss-security] 20120430 CVE request: spip before 1.9.2.o, 2.0.18 and 2.1.13 multiple XSS CVE-2012-2151
MLIST:[oss-security] 20120430 CVE-request: SilverStripe before 2.4.4 CVE-2010-4822 CVE-2010-4823 CVE-2010-4824 CVE-2010-5078 CVE-2010-5079 CVE-2010-5080 CVE-2010-5087 CVE-2010-5088 CVE-2010-5089 CVE-2010-5090 CVE-2010-5091 CVE-2010-5092 CVE-2010-5093 CVE-2010-5094 CVE-2010-5095 CVE-2010-5187 CVE-2011-4959 CVE-2011-4960 CVE-2011-4961 CVE-2011-4962 CVE-2012-4968
MLIST:[oss-security] 20120430 Re: CVE Request: libsoup 2.32.2 sets ssl trusted flag despite no verification CVE-2012-2132
MLIST:[oss-security] 20120430 Re: CVE-request: SilverStripe before 2.4.4 CVE-2010-4822 CVE-2010-4823 CVE-2010-4824 CVE-2010-5078 CVE-2010-5079 CVE-2010-5080 CVE-2010-5087 CVE-2010-5088 CVE-2010-5089 CVE-2010-5090 CVE-2010-5091 CVE-2010-5092 CVE-2010-5093 CVE-2010-5094 CVE-2010-5095 CVE-2010-5187 CVE-2011-4959 CVE-2011-4960 CVE-2011-4961 CVE-2011-4962 CVE-2012-0976 CVE-2012-4968
MLIST:[oss-security] 20120501 Re: CVE request: spip before 1.9.2.o, 2.0.18 and 2.1.13 multiple XSS CVE-2012-2151
MLIST:[oss-security] 20120501 Re: CVE-request: SilverStripe before 2.4.4 CVE-2010-4822 CVE-2010-4823 CVE-2010-4824 CVE-2010-5078 CVE-2010-5079 CVE-2010-5080 CVE-2010-5087 CVE-2010-5088 CVE-2010-5089 CVE-2010-5090 CVE-2010-5091 CVE-2010-5092 CVE-2010-5093 CVE-2010-5094 CVE-2010-5095 CVE-2010-5187 CVE-2010-5188
MLIST:[oss-security] 20120502 CVE Request for Drupal contributed modules CVE-2012-2154 CVE-2012-2155 CVE-2012-2296 CVE-2012-2297 CVE-2012-2298 CVE-2012-2299 CVE-2012-2300 CVE-2012-2302 CVE-2012-2303 CVE-2012-2304 CVE-2012-2305 CVE-2012-2306 CVE-2012-2307 CVE-2012-2308 CVE-2012-2309 CVE-2012-2310
MLIST:[oss-security] 20120502 CVE Request: dhcpcd 3.2.3 remote stack overflow / denial of service CVE-2012-2152
MLIST:[oss-security] 20120502 CVE request: libmodplugin stack-buffer overflow CVE-2011-1761
MLIST:[oss-security] 20120502 Re: CVE Request for Drupal contributed modules CVE-2012-2154 CVE-2012-2155 CVE-2012-2296 CVE-2012-2297 CVE-2012-2298 CVE-2012-2299 CVE-2012-2300 CVE-2012-2302 CVE-2012-2303 CVE-2012-2304 CVE-2012-2305 CVE-2012-2306 CVE-2012-2307 CVE-2012-2308 CVE-2012-2309 CVE-2012-2310
MLIST:[oss-security] 20120502 Re: CVE Request: dhcpcd 3.2.3 remote stack overflow / denial of service CVE-2012-2152
MLIST:[oss-security] 20120502 Re: CVE Request: libsoup 2.32.2 sets ssl trusted flag despite no verification CVE-2012-2132
MLIST:[oss-security] 20120502 Re: CVE request: libmodplugin stack-buffer overflow CVE-2011-1761
MLIST:[oss-security] 20120502 temporary file issue in Config::IniFiles Config-IniFiles perl-Config-IniFiles CVE-2012-2451
MLIST:[oss-security] 20120503 Security issue in libav/ffmpeg CVE-2012-0947
MLIST:[oss-security] 20120504 CVE Request -- anaconda: Weak permissions by writing password configuration file in bootloader configuration module CVE-2012-2314
MLIST:[oss-security] 20120504 Debian/Ubuntu php_crypt_revamped.patch CVE-2012-2317
MLIST:[oss-security] 20120504 Re: CVE Request -- anaconda: Weak permissions by writing password configuration file in bootloader configuration module CVE-2012-2314
MLIST:[oss-security] 20120504 Re: CVE Request: more tight ioctl permissions in dl2k driver CVE-2012-2313
MLIST:[oss-security] 20120504 Re: CVE-request: OpenKM 5.1.7 Privilege Escalation / OS Command Execution (XSRF based) CVE-2012-2315 CVE-2012-2316
MLIST:[oss-security] 20120505 Re: Debian/Ubuntu php_crypt_revamped.patch CVE-2012-2317
MLIST:[oss-security] 20120505 [OSSA 2012-006] Horizon session fixation and reuse CVE-2012-2144
MLIST:[oss-security] 20120507 CVE request: mybb before 1.6.7 CVE-2012-2324 CVE-2012-2325 CVE-2012-2326 CVE-2012-2327
MLIST:[oss-security] 20120507 Re: CVE request: Linux kernel: Buffer overflow in HFS plus filesystem CVE-2012-2319
MLIST:[oss-security] 20120507 Re: CVE request: mybb before 1.6.7 CVE-2012-2324 CVE-2012-2325 CVE-2012-2326 CVE-2012-2327
MLIST:[oss-security] 20120507 Re: connman heads up / CVE requests CVE-2012-2320 CVE-2012-2321 CVE-2012-2322
MLIST:[oss-security] 20120507 connman heads up / CVE requests CVE-2012-2320 CVE-2012-2321 CVE-2012-2322
MLIST:[oss-security] 20120508 CVE request: XSS and SQL injection in serendipity before 1.7.1 CVE-2012-2331 CVE-2012-2332
MLIST:[oss-security] 20120508 CVE request: node.js <0.6.17/0.7.8 HTTP server information disclosure CVE-2012-2330
MLIST:[oss-security] 20120508 CVE-request: MyBB before 1.6.1 CVE-2010-5096
MLIST:[oss-security] 20120508 Re: CVE Request -- kernel: futex: clear robust_list on execve CVE-2012-0028
MLIST:[oss-security] 20120508 Re: CVE request: XSS and SQL injection in serendipity before 1.7.1 CVE-2012-2331 CVE-2012-2332
MLIST:[oss-security] 20120508 Re: CVE request: node.js <0.6.17/0.7.8 HTTP server information disclosure CVE-2012-2330
MLIST:[oss-security] 20120508 Re: CVE-request: MyBB before 1.6.1 CVE-2010-5096
MLIST:[oss-security] 20120509 CVE-2012-0862 assignment notification: xinetd enables unintentional services over tcpmux port CVE-2012-0862
MLIST:[oss-security] 20120510 Re: CVE-request: TYPO3 TYPO3-SA-2010-022 still without CVE CVE-2010-5097 CVE-2010-5098 CVE-2010-5099 CVE-2010-5100 CVE-2010-5101 CVE-2010-5102 CVE-2010-5103 CVE-2010-5104
MLIST:[oss-security] 20120510 CVE Request for Drupal contributed modules - 2012-05-10 CVE-2012-2339 CVE-2012-2340
MLIST:[oss-security] 20120510 CVE-request: galette sql injection CVE-2012-2338
MLIST:[oss-security] 20120510 Re: CVE Request for Drupal contributed modules - 2012-05-10 CVE-2012-2339 CVE-2012-2340
MLIST:[oss-security] 20120510 Re: CVE-2012-0862 assignment notification: xinetd enables unintentional services over tcpmux port CVE-2012-0862
MLIST:[oss-security] 20120510 Re: CVE-request: galette sql injection CVE-2012-2338
MLIST:[oss-security] 20120511 CVE request: mahara CVE-2012-2351
MLIST:[oss-security] 20120511 CVE request: sympa (try again) CVE-2012-2352
MLIST:[oss-security] 20120511 CVE-2012-1597: XSS in eZ Publish CVE-2012-1597
MLIST:[oss-security] 20120511 CVE-request: TYPO3 TYPO3-SA-2010-022 still without CVE CVE-2010-5097 CVE-2010-5098 CVE-2010-5099 CVE-2010-5100 CVE-2010-5101 CVE-2010-5102 CVE-2010-5103 CVE-2010-5104
MLIST:[oss-security] 20120511 Re: CVE request: sympa (try again) CVE-2012-2352
MLIST:[oss-security] 20120512 Re: CVE request: mahara CVE-2012-2351
MLIST:[oss-security] 20120512 Re: CVE request: sympa (try again) CVE-2012-2352
MLIST:[oss-security] 20120512 Re: CVE-request: TYPO3 TYPO3-SA-2010-022 still without CVE CVE-2010-5097 CVE-2010-5098 CVE-2010-5099 CVE-2010-5101 CVE-2010-5102 CVE-2010-5103 CVE-2010-5104
MLIST:[oss-security] 20120514 CVE request: Bytemark Symbiosis CVE-2012-2368
MLIST:[oss-security] 20120514 Re: CVE request: Bytemark Symbiosis CVE-2012-2368
MLIST:[oss-security] 20120514 socat security advisory CVE-2012-0219
MLIST:[oss-security] 20120515 CVE Request: gdk-pixbuf Integer overflow in XBM file loader CVE-2012-2370
MLIST:[oss-security] 20120515 CVE-request: WordPress wp-facethumb plugin reflected XSS vulnerability CVE-2012-2371
MLIST:[oss-security] 20120515 Re: CVE Request: gdk-pixbuf Integer overflow in XBM file loader CVE-2012-2370
MLIST:[oss-security] 20120515 Re: CVE-request: WordPress wp-facethumb plugin reflected XSS vulnerability CVE-2012-2371
MLIST:[oss-security] 20120516 Format string security flaw in pidgin-otr CVE-2012-2369
MLIST:[oss-security] 20120518 CVE Request -- Tornado (python-tornado): Tornado v2.2.1 tornado.web.RequestHandler.set_header() fix to prevent header injection CVE-2012-2374
MLIST:[oss-security] 20120518 CVE id request: devotee (debian vote engine) cryptographically weak random numbers permit discovery of secret ballot submissions CVE-2012-2387
MLIST:[oss-security] 20120518 Re: CVE Request -- Tornado (python-tornado): Tornado v2.2.1 tornado.web.RequestHandler.set_header() fix to prevent header injection CVE-2012-2374
MLIST:[oss-security] 20120518 Re: CVE Request -- kernel: incomplete fix for CVE-2011-4131 CVE-2012-2375
MLIST:[oss-security] 20120518 Re: CVE Request -- kernel: mm: read_pmd_atomic: 32bit PAE pmd walk vs pmd_populate SMP race condition CVE-2012-2373
MLIST:[oss-security] 20120519 Re: CVE Request: PHP 5.4.3 on Windows com_print_typeinfo() Buffer Overflow (?) CVE-2012-2376
MLIST:[oss-security] 20120521 Re: CVE id request: devotee (debian vote engine) cryptographically weak random numbers permit discovery of secret ballot submissions CVE-2012-2387
MLIST:[oss-security] 20120522 CVE id request: devotee (debian vote engine) cryptographically weak random numbers permit discovery of secret ballot submissions CVE-2012-2387
MLIST:[oss-security] 20120522 Re: CVE Request -- mosh (and probably vte too): mosh server DoS (long loop) due improper parsing of terminal parameters in terminal dispatcher CVE-2012-2385
MLIST:[oss-security] 20120522 Re: CVE Request -- mosh (and probably vte too): mosh server DoS (long loop) due improper parsing of terminal parameters in terminal dispatcher CVE-2012-2738
MLIST:[oss-security] 20120522 Re: CVE Request: some drm overflow checks CVE-2012-2383 CVE-2012-2384
MLIST:[oss-security] 20120522 Re: CVE request: PHP Phar - arbitrary code execution CVE-2012-2386
MLIST:[oss-security] 20120523 CVE request(?): hostapd: improper file permissions of hostapd's config leaks credentials CVE-2012-2389
MLIST:[oss-security] 20120523 CVE request: cobbler command injection CVE-2012-2395
MLIST:[oss-security] 20120523 CVE request: haproxy trash buffer overflow flaw CVE-2012-2391 CVE-2012-2942
MLIST:[oss-security] 20120523 Moodle security notifications public CVE-2012-2353 CVE-2012-2354 CVE-2012-2355 CVE-2012-2356 CVE-2012-2357 CVE-2012-2358 CVE-2012-2359 CVE-2012-2360 CVE-2012-2361 CVE-2012-2362 CVE-2012-2363 CVE-2012-2364 CVE-2012-2365 CVE-2012-2366 CVE-2012-2367
MLIST:[oss-security] 20120523 Re: CVE Request -- kernel: huge pages: memory leak on mmap failure CVE-2012-2390
MLIST:[oss-security] 20120523 Re: CVE request(?): hostapd: improper file permissions of hostapd's config leaks credentials CVE-2012-2389
MLIST:[oss-security] 20120523 Re: CVE request: cobbler command injection CVE-2012-2395
MLIST:[oss-security] 20120523 Re: CVE request: haproxy trash buffer overflow flaw CVE-2012-2391 CVE-2012-2942
MLIST:[oss-security] 20120524 CVE-2012-2417 - PyCrypto <= 2.5 insecure ElGamal key generation CVE-2012-2417
MLIST:[oss-security] 20120524 Re: CVE Request: powerdns does not clear supplementary groups CVE-2012-2653
MLIST:[oss-security] 20120525 Re: CVE Request: powerdns does not clear supplementary groups CVE-2012-2653
MLIST:[oss-security] 20120528 Duplicate CVE identifiers (CVE-2012-2391 and CVE-2012-2942) assigned to HAProxy issue CVE-2012-2391 CVE-2012-2942
MLIST:[oss-security] 20120528 Kind request to update upstream CVE-2012-2334 advisories they to reflect arbitrary code execution possibility too and OSS list notification CVE-2012-2334
MLIST:[oss-security] 20120529 CVE id request: Multiple buffer overflow in unixODBC CVE-2012-2657 CVE-2012-2658
MLIST:[oss-security] 20120529 Re: CVE id request: Multiple buffer overflow in unixODBC CVE-2012-2657 CVE-2012-2658
MLIST:[oss-security] 20120530 Re: CVE id request: Multiple buffer overflow in unixODBC CVE-2012-2657 CVE-2012-2658
MLIST:[oss-security] 20120530 ScriptFu Server Buffer Overflow in GIMP <= 2.6 CVE-2012-2763
MLIST:[oss-security] 20120531 Re: CVE id request: Multiple buffer overflow in unixODBC CVE-2012-2657 CVE-2012-2658
MLIST:[oss-security] 20120604 CVE Request -- Symfony / php-symfony-symfony: Session fixation flaw corrected in upstream 1.4.18 version CVE-2012-2667
MLIST:[oss-security] 20120604 Re: CVE Request -- Symfony / php-symfony-symfony: Session fixation flaw corrected in upstream 1.4.18 version CVE-2011-4964
MLIST:[oss-security] 20120605 CVE request: openldap does not honor TLSCipherSuite configuration option CVE-2012-2668
MLIST:[oss-security] 20120605 Re: CVE Request -- Symfony / php-symfony-symfony: Session fixation flaw corrected in upstream 1.4.18 version CVE-2012-2667
MLIST:[oss-security] 20120605 Re: CVE id request: Multiple buffer overflow in unixODBC CVE-2012-2657 CVE-2012-2658
MLIST:[oss-security] 20120605 Re: CVE request: openldap does not honor TLSCipherSuite configuration option CVE-2012-2668
MLIST:[oss-security] 20120605 memory allocator upstream patches CVE-2012-2673 CVE-2012-2674 CVE-2012-2675 CVE-2012-2676 CVE-2012-2677
MLIST:[oss-security] 20120606 Arbitrary File Upload/Execution in Collabtive CVE-2012-2670
MLIST:[oss-security] 20120606 CVE request: Mojarra allows deployed web applications to read FacesContext from other applications CVE-2012-2672
MLIST:[oss-security] 20120606 CVE request: rack-cache caches sensitive headers (Set-Cookie) CVE-2012-2671
MLIST:[oss-security] 20120606 Re: Arbitrary File Upload/Execution in Collabtive CVE-2012-2670
MLIST:[oss-security] 20120606 Re: CVE request: Mojarra allows deployed web applications to read FacesContext from other applications CVE-2012-2672
MLIST:[oss-security] 20120606 Re: CVE request: openldap does not honor TLSCipherSuite configuration option CVE-2012-2668
MLIST:[oss-security] 20120606 Re: CVE request: rack-cache caches sensitive headers (Set-Cookie) CVE-2012-2671
MLIST:[oss-security] 20120606 Re: CVE-Request: hyper-v daemon CVE-2012-2669
MLIST:[oss-security] 20120607 Re: memory allocator upstream patches CVE-2012-2673 CVE-2012-2674 CVE-2012-2675 CVE-2012-2676 CVE-2012-2677
MLIST:[oss-security] 20120609 CVE requests (x2) for Mantis Bug Tracker (MantisBT) before 1.2.11 CVE-2012-2691 CVE-2012-2692
MLIST:[oss-security] 20120609 Security vulnerability in MySQL/MariaDB sql/password.c CVE-2012-2122
MLIST:[oss-security] 20120611 CVE request -- libvirt: address bus= device= when identicle vendor ID/product IDs usb devices attached are ignored CVE-2012-2693
MLIST:[oss-security] 20120611 Re: CVE request -- libvirt: address bus= device= when identicle vendor ID/product IDs usb devices attached are ignored CVE-2012-2693
MLIST:[oss-security] 20120611 Re: CVE requests (x2) for Mantis Bug Tracker (MantisBT) before 1.2.11 CVE-2012-2691 CVE-2012-2692
MLIST:[oss-security] 20120613 Re: CVE Request for Drupal contributed modules CVE-2010-2021 CVE-2012-2339 CVE-2012-2340 CVE-2012-2341 CVE-2012-2699 CVE-2012-2700 CVE-2012-2701 CVE-2012-2702 CVE-2012-2703 CVE-2012-2704 CVE-2012-2705 CVE-2012-2706 CVE-2012-2707 CVE-2012-2708 CVE-2012-2709 CVE-2012-2710 CVE-2012-2711 CVE-2012-2712 CVE-2012-2713 CVE-2012-2715 CVE-2012-2717 CVE-2012-2719 CVE-2012-2720 CVE-2012-2721 CVE-2012-2722 CVE-2012-2723 CVE-2012-2725 CVE-2012-2726 CVE-2012-2727 CVE-2012-2728 CVE-2012-2729 CVE-2012-2730 CVE-2012-2731 CVE-2012-2907 CVE-2012-3799 CVE-2012-3800 CVE-2012-3801 CVE-2012-3802
MLIST:[oss-security] 20120613 Re: CVE request: XSS in uselang http parameter (mediawiki) CVE-2012-2698
MLIST:[oss-security] 20120614 CVE-2012-3345: symlink attack in ioquake3 >= r1773, < r2253 CVE-2012-3345
MLIST:[oss-security] 20120615 CVE request: java hashdos vulnerability CVE-2012-2739
MLIST:[oss-security] 20120615 Re: CVE Request -- mosh (and probably vte too): mosh server DoS (long loop) due improper parsing of terminal parameters in terminal dispatcher CVE-2012-2738
MLIST:[oss-security] 20120615 Re: CVE Request for Drupal contributed modules CVE-2012-2339 CVE-2012-2340 CVE-2012-2341 CVE-2012-2699 CVE-2012-2700 CVE-2012-2701
MLIST:[oss-security] 20120616 CVE request: phplist before 2.10.18 XSS and sql injection CVE-2012-2740 CVE-2012-2741
MLIST:[oss-security] 20120616 Re: CVE request: java hashdos vulnerability CVE-2012-2739
MLIST:[oss-security] 20120616 Re: CVE request: phplist before 2.10.18 XSS and sql injection CVE-2012-2740 CVE-2012-2741
MLIST:[oss-security] 20120618 CVE Request -- Revelation: 1) Limits effective password length to 32 characters 2) Doesn't iterate the passphrase through SHA algorithm to derive the encryption key CVE-2012-2742 CVE-2012-2743
MLIST:[oss-security] 20120618 Re: CVE Request -- Revelation: 1) Limits effective password length to 32 characters 2) Doesn't iterate the passphrase through SHA algorithm to derive the encryption key CVE-2012-2742 CVE-2012-2743
MLIST:[oss-security] 20120619 Re: Joomla! Security News 2012-06-19 CVE-2012-2747 CVE-2012-2748
MLIST:[oss-security] 20120621 Re: mod_security CVE request CVE-2009-5031 CVE-2012-2751
MLIST:[oss-security] 20120621 mod_security CVE request CVE-2009-5031 CVE-2012-2751
MLIST:[oss-security] 20120624 CVE request: CSRF in eXtplorer CVE-2012-3362
MLIST:[oss-security] 20120624 CVE request: Full path disclosure in DokuWiki CVE-2012-3354
MLIST:[oss-security] 20120624 Re: CVE request: CSRF in eXtplorer CVE-2012-3362
MLIST:[oss-security] 20120624 Re: CVE request: Full path disclosure in DokuWiki CVE-2012-3354
MLIST:[oss-security] 20120625 CVE 2011-* Request -- rhythmbox (context plug-in): Insecure temporary directory use by loading template files for 'Album', 'Lyrics', and 'Artist' tabs CVE-2012-3355
MLIST:[oss-security] 20120625 Re: CVE 2011-* Request -- rhythmbox (context plug-in): Insecure temporary directory use by loading template files for 'Album', 'Lyrics', and 'Artist' tabs CVE-2012-3355
MLIST:[oss-security] 20120625 Re: CVE Request: viewvc CVE-2012-3356 CVE-2012-3357
MLIST:[oss-security] 20120626 Re: CVE request: CSRF in eXtplorer CVE-2012-3362
MLIST:[oss-security] 20120626 Re: XXE in Zend CVE-2012-3363 CVE-2012-6531
MLIST:[oss-security] 20120626 XXE in Zend CVE-2012-3363 CVE-2012-6531
MLIST:[oss-security] 20120627 Re: CVE Request for Drupal contributed modules CVE-2012-2709 CVE-2012-2907
MLIST:[oss-security] 20120627 Re: CVE Request: Kernel [PATCH] NFC: prevent multiple buffer overflows in NCI CVE-2012-3364
MLIST:[oss-security] 20120627 Re: CVE request: CSRF in eXtplorer CVE-2012-3362
MLIST:[oss-security] 20120627 Re: XXE in Zend CVE-2012-3363 CVE-2012-6531
MLIST:[oss-security] 20120628 accountsservice local file disclosure flaw (CVE-2012-2737) CVE-2012-2737
MLIST:[oss-security] 20120630 Re: ScriptFu Server Buffer Overflow in GIMP <= 2.6 CVE-2012-2763
MLIST:[oss-security] 20120702 CVE #'s for WordPress 3.4.1 release CVE-2012-3383 CVE-2012-3384 CVE-2012-3385
MLIST:[oss-security] 20120704 Re: CVE Request -- kernel: epoll: can leak file descriptors when returning -ELOOP CVE-2012-3375
MLIST:[oss-security] 20120705 Three CVE requests: at-spi2-atk, as31, naxsi CVE-2012-0808 CVE-2012-3378 CVE-2012-3379 CVE-2012-3380
MLIST:[oss-security] 20120706 CVE Request: sblim-sfcb: insecure LD_LIBRARY_PATH usage CVE-2012-3381
MLIST:[oss-security] 20120706 CVE request: VLC / Asterisk CVE-2012-3377
MLIST:[oss-security] 20120706 Re: CVE Request: XSS in a Mono System.web error page CVE-2012-3382
MLIST:[oss-security] 20120706 Re: CVE Request: sblim-sfcb: insecure LD_LIBRARY_PATH usage CVE-2012-3381
MLIST:[oss-security] 20120706 Re: CVE request: VLC / Asterisk CVE-2012-3377
MLIST:[oss-security] 20120706 Re: Three CVE requests: at-spi2-atk, as31, naxsi CVE-2012-0808 CVE-2012-3378 CVE-2012-3379 CVE-2012-3380
MLIST:[oss-security] 20120707 Re: CVE #'s for WordPress 3.4.1 release CVE-2012-3383 CVE-2012-3384 CVE-2012-3385
MLIST:[oss-security] 20120709 CVE-2012-3881 RTG and RTG2: 95.php/rtg.php/view.php SQL injection CVE-2012-3881
MLIST:[oss-security] 20120709 Re: CVE Request: Stability fixes in UDF Logical Volume Descriptor handling CVE-2012-3400
MLIST:[oss-security] 20120709 Re: CVE-request: Basilic 1.5.14 diff.php remote code execution vulnerability CVE-2012-3399
MLIST:[oss-security] 20120710 CVE-request: Basilic 1.5.14 diff.php remote code execution vulnerability CVE-2012-3399
MLIST:[oss-security] 20120710 libdbus hardening CVE-2012-3524
MLIST:[oss-security] 20120711 CVE Request: Overflow fix in bash 4.2 patch 33 CVE-2012-3410
MLIST:[oss-security] 20120711 Openjpeg: heap-buffer overflow when processing JPEG2000 image files CVE-2012-3358
MLIST:[oss-security] 20120711 Re: CVE request: glibc formatted printing vulnerabilities CVE-2012-3404 CVE-2012-3405 CVE-2012-3406
MLIST:[oss-security] 20120711 [OSSA 2012-009] Scheduler denial of service through scheduler_hints (CVE-2012-3371) CVE-2012-3371
MLIST:[oss-security] 20120712 GLPI 0.83.2 CVE-2012-4002 CSRF and CVE-2012-4003 XSS CVE-2012-4002 CVE-2012-4003
MLIST:[oss-security] 20120712 Re: CVE Request: Overflow fix in bash 4.2 patch 33 CVE-2012-3410
MLIST:[oss-security] 20120712 Re: Re: CVE Request -- dnsmasq: When being run by libvirt open DNS proxy (reachable out-of the virtual network set for the particular guest domain too) is created CVE-2012-3411
MLIST:[oss-security] 20120713 CVE Request: KDE Pim CVE-2012-3413
MLIST:[oss-security] 20120713 Re: CVE Request: KDE Pim CVE-2012-3413
MLIST:[oss-security] 20120716 CVE id request: libjs-swfupload CVE-2012-3414
MLIST:[oss-security] 20120716 Re: CVE Request: KDE Pim CVE-2012-3413
MLIST:[oss-security] 20120717 Moodle security notifications public CVE-2012-3387 CVE-2012-3388 CVE-2012-3389 CVE-2012-3390 CVE-2012-3391 CVE-2012-3392 CVE-2012-3393 CVE-2012-3394 CVE-2012-3395 CVE-2012-3396 CVE-2012-3397 CVE-2012-3398
MLIST:[oss-security] 20120717 Re: CVE Request: KDE Pim CVE-2012-3413
MLIST:[oss-security] 20120717 Re: CVE id request: libjs-swfupload CVE-2012-3414
MLIST:[oss-security] 20120717 libjpeg-turbo: Heap-based buffer overflow when decompressing corrupt JPEG images CVE-2012-2806
MLIST:[oss-security] 20120719 CVE Request: quota: incorrect use of tcp_wrappers CVE-2008-4552 CVE-2012-3417
MLIST:[oss-security] 20120719 CVE-2012-4024 and CVE-2012-4025: Squashfs overflows CVE-2012-4024 CVE-2012-4025
MLIST:[oss-security] 20120719 Re: CVE Request: quota: incorrect use of tcp_wrappers CVE-2008-4552 CVE-2012-3417
MLIST:[oss-security] 20120719 Re: tiff2pdf: Heap-based buffer overflow due to improper initialization of T2P context struct pointer CVE-2012-3401
MLIST:[oss-security] 20120719 tiff2pdf: Heap-based buffer overflow due to improper initialization of T2P context struct pointer CVE-2012-3401
MLIST:[oss-security] 20120720 CVE for JBOSS EAP 5.0(twiddle and jmx invocations) ? CVE-2009-5066
MLIST:[oss-security] 20120723 Re: CVE for JBOSS EAP 5.0(twiddle and jmx invocations) ? CVE-2009-5066
MLIST:[oss-security] 20120724 CVE Request: libpng: Out-of heap-based buffer read by inflating certain PNG images CVE-2012-3425
MLIST:[oss-security] 20120724 CVE-request: WordPress plugin Count Per Day XSS (SSCHADV2012-015) CVE-2012-3434
MLIST:[oss-security] 20120724 Re: CVE Request: libpng: Out-of heap-based buffer read by inflating certain PNG images CVE-2012-3425
MLIST:[oss-security] 20120726 Re: CVE Request -- kernel: recv{from,msg}() on an rds socket can leak kernel memory CVE-2012-3430
MLIST:[oss-security] 20120726 Re: libdbus hardening CVE-2012-3524
MLIST:[oss-security] 20120727 CVE request for OpenTTD CVE-2012-3436
MLIST:[oss-security] 20120727 Re: CVE-request: WordPress plugin Count Per Day XSS (SSCHADV2012-015) CVE-2012-3434
MLIST:[oss-security] 20120727 Zabbix SQL injection flaw (CVE request) CVE-2012-3435
MLIST:[oss-security] 20120727 [OSSA 2012-010] Various Keystone token expiration issues (CVE-2012-3426) CVE-2012-3426
MLIST:[oss-security] 20120728 Re: CVE request for OpenTTD CVE-2012-3436
MLIST:[oss-security] 20120728 Re: Zabbix SQL injection flaw (CVE request) CVE-2012-3435
MLIST:[oss-security] 20120730 CVE Request: Django 1.3.1 and 1.4.0 security issues CVE-2012-3442 CVE-2012-3443 CVE-2012-3444
MLIST:[oss-security] 20120730 CVE Request: icinga sample db creation scripts CVE-2012-3441
MLIST:[oss-security] 20120730 Re: CVE Request: Django 1.3.1 and 1.4.0 security issues CVE-2012-3442 CVE-2012-3443 CVE-2012-3444
MLIST:[oss-security] 20120730 Re: CVE Request: icinga sample db creation scripts CVE-2012-3441
MLIST:[oss-security] 20120731 CVE Request -- libvirt: crash in virTypedParameterArrayClear CVE-2012-3445
MLIST:[oss-security] 20120731 Re: CVE Request -- libvirt: crash in virTypedParameterArrayClear CVE-2012-3445
MLIST:[oss-security] 20120731 Re: CVE request for OpenTTD CVE-2012-3436
MLIST:[oss-security] 20120801 CVE Request: NVidia Linux driver CVE-2012-4225
MLIST:[oss-security] 20120801 Re: CVE request: Ganglia Web 3.5.1 CVE-2012-3448
MLIST:[oss-security] 20120802 CVE Request: php5 pdo array overread/crash CVE-2012-3450
MLIST:[oss-security] 20120802 Re: CVE Request for Drupal contributed modules CVE-2012-2922
MLIST:[oss-security] 20120802 Re: CVE Request: php5 pdo array overread/crash CVE-2012-3450
MLIST:[oss-security] 20120802 bind-dyndb-ldap DoS CVE-2012-3429 CVE-2012-3429
MLIST:[oss-security] 20120802 openvswitch world writable directories (CVE-2012-3449) CVE-2012-3449
MLIST:[oss-security] 20120803 CVE ASSIGNMENT: extplorer: creates world writable directory /var/lib/extplorer/ftp_tmp CVE-2012-3454
MLIST:[oss-security] 20120803 CVE ASSIGNMENT: logol: creates world writable directory: /var/lib/logol/results CVE-2012-3453
MLIST:[oss-security] 20120803 Re: gnome-screensaver 3.4.2 locked only active screen CVE-2012-3452
MLIST:[oss-security] 20120803 Re: openvswitch world writable directories (CVE-2012-3449) CVE-2012-3449
MLIST:[oss-security] 20120803 Remote DoS in Linux sfc driver through TCP MSS option (CVE-2012-3412) CVE-2012-3412
MLIST:[oss-security] 20120803 gnome-screensaver 3.4.2 locked only active screen CVE-2012-3452
MLIST:[oss-security] 20120804 CVE request for Calligra CVE-2012-3455 CVE-2012-3456
MLIST:[oss-security] 20120804 Re: CVE request for Calligra CVE-2012-3455 CVE-2012-3456
MLIST:[oss-security] 20120805 Re: CVE request for Calligra CVE-2012-3455 CVE-2012-3456
MLIST:[oss-security] 20120806 CVE ASSIGN: pnp4nagios: process_perfdata.cfg world readable CVE-2012-3457
MLIST:[oss-security] 20120806 Re: CVE ASSIGN: pnp4nagios: process_perfdata.cfg world readable CVE-2012-3457
MLIST:[oss-security] 20120806 Re: CVE request for Calligra CVE-2012-3455 CVE-2012-3456
MLIST:[oss-security] 20120807 [OSSA 2012-011] Compute node filesystem injection/corruption (CVE-2012-3447) CVE-2012-3447
MLIST:[oss-security] 20120808 Re: CVE Request: NVidia Linux driver CVE-2012-4225
MLIST:[oss-security] 20120808 Re: CVE Request: gnome-keyring: improper caching of gpg password/passphrase CVE-2012-3466
MLIST:[oss-security] 20120809 CVE Request: gnome-keyring: improper caching of gpg password/passphrase CVE-2012-3466
MLIST:[oss-security] 20120809 CVE-2012-3467: Unauthorized access (authentication bypass) from client to broker due to use of NullAuthenticator in shadow connections CVE-2012-3467
MLIST:[oss-security] 20120809 Re: CVE request for Ushahidi CVE-2012-3468 CVE-2012-3469 CVE-2012-3470 CVE-2012-3471 CVE-2012-3472 CVE-2012-3473 CVE-2012-3474 CVE-2012-3475 CVE-2012-3476
MLIST:[oss-security] 20120809 Xen Security Advisory 11 (CVE-2012-3433) - HVM destroy p2m host DoS CVE-2012-3433
MLIST:[oss-security] 20120810 CVE Request: rssh command-line parsing vulnerability CVE-2012-3478
MLIST:[oss-security] 20120810 CVE request: libmodplug: multiple vulnerabilities reported in <= 0.8.8.3 CVE-2011-2911 CVE-2011-2912 CVE-2011-2913 CVE-2011-2914 CVE-2011-2915
MLIST:[oss-security] 20120810 Re: CVE Request: rssh command-line parsing vulnerability CVE-2012-3478
MLIST:[oss-security] 20120810 Re: CVE request for Calligra CVE-2012-3455 CVE-2012-3456
MLIST:[oss-security] 20120810 ownCloud - matching CVEs to fix information and vice versa CVE-2012-2269 CVE-2012-2270 CVE-2012-2397 CVE-2012-2398 CVE-2012-4392 CVE-2012-4393 CVE-2012-4394 CVE-2012-4395 CVE-2012-4396 CVE-2012-4397 CVE-2012-4752
MLIST:[oss-security] 20120812 Re: CVE request: libmodplug: multiple vulnerabilities reported in <= 0.8.8.3 CVE-2011-2911 CVE-2011-2912 CVE-2011-2913 CVE-2011-2914 CVE-2011-2915
MLIST:[oss-security] 20120812 Re: Security flaw in GNU Emacs file-local variables CVE-2012-3479
MLIST:[oss-security] 20120812 Re: Tunnel Blick: Multiple Vulnerabilities to Local Root and DoS (OS X) CVE-2012-3483 CVE-2012-3484 CVE-2012-3485 CVE-2012-3486 CVE-2012-3487 CVE-2012-4676
MLIST:[oss-security] 20120813 ANN: Beaker 1.6.4 released with important security update CVE-2012-3458
MLIST:[oss-security] 20120813 CVE ID request for fetchmail segfault in NTLM protocol exchange CVE-2012-3482
MLIST:[oss-security] 20120813 CVE Request -- glibc: Integer overflows, leading to stack-based buffer overflows in strto* related routines CVE-2012-3480
MLIST:[oss-security] 20120813 Re: CVE ID request for fetchmail segfault in NTLM protocol exchange CVE-2012-3482
MLIST:[oss-security] 20120813 Re: CVE Request -- glibc: Integer overflows, leading to stack-based buffer overflows in strto* related routines CVE-2012-3480
MLIST:[oss-security] 20120813 Security flaw in GNU Emacs file-local variables CVE-2012-3479
MLIST:[oss-security] 20120813 TCExam Edit SQL Injection CVE-2012-4237
MLIST:[oss-security] 20120813 Total Shop UK eCommerce Generic Cross-Site Scripting CVE-2012-4236
MLIST:[oss-security] 20120816 CVE Request: SquidClamav insufficient escaping flaws CVE-2012-3501 CVE-2012-4667
MLIST:[oss-security] 20120816 GIMP Scriptfu Python Remote Command Execution CVE-2012-4245
MLIST:[oss-security] 20120816 Re: CVE Request: SquidClamav insufficient escaping flaws CVE-2012-3501 CVE-2012-4667
MLIST:[oss-security] 20120816 pcp: Multiple security flaws CVE-2012-3418 CVE-2012-3419 CVE-2012-3420 CVE-2012-3421
MLIST:[oss-security] 20120817 CVE request: tinyproxy CVE-2012-3505
MLIST:[oss-security] 20120817 Re: [Full-disclosure] GIMP Scriptfu Python Remote Command Execution CVE-2012-4245
MLIST:[oss-security] 20120818 Re: CVE request: tinyproxy CVE-2012-3505
MLIST:[oss-security] 20120820 CVE-request: Roundcube XSS issues CVE-2012-3507 CVE-2012-3508 CVE-2012-4668
MLIST:[oss-security] 20120820 RE: [Full-disclosure] GIMP Scriptfu Python Remote Command Execution CVE-2012-4245
MLIST:[oss-security] 20120820 Re: CVE Request -- kernel: mm: use-after-free in madvise_remove() CVE-2012-3511
MLIST:[oss-security] 20120820 Re: CVE Request -- kernel: taskstats: use-after-free in xacct_add_tsk() CVE-2012-3510
MLIST:[oss-security] 20120820 Re: CVE-request: Roundcube XSS issues CVE-2012-3507 CVE-2012-3508 CVE-2012-4668
MLIST:[oss-security] 20120820 The Gimp CEL plug-in CVE-2012-3403 issue CVE-2012-3403
MLIST:[oss-security] 20120820 The Gimp GIF plug-in CVE-2012-3481 issue CVE-2012-3481
MLIST:[oss-security] 20120820 The Gimp PSD plug-in CVE-2012-3402 issue CVE-2012-3402
MLIST:[oss-security] 20120820 Two munin issues, now with CVEs CVE-2012-3512 CVE-2012-3513
MLIST:[oss-security] 20120820 ocaml-xml-light: hash table collisions CPU usage DoS CVE-2012-3514 CVE-2012-3514
MLIST:[oss-security] 20120821 Re: CVE Request -- Tor 0.2.2.38: Three issues CVE-2012-3517 CVE-2012-3518 CVE-2012-3519
MLIST:[oss-security] 20120822 CVE Request -- jabberd2: Prone to unsolicited XMPP Dialback attacks CVE-2012-3525
MLIST:[oss-security] 20120822 CVE Request: Apache mod RPAF denial of service CVE-2012-3526
MLIST:[oss-security] 20120822 CVE request: libqt4: two memory issues CVE-2011-3193 CVE-2011-3194
MLIST:[oss-security] 20120822 CVE-2012-3520 kernel: af_netlink: invalid handling of SCM_CREDENTIALS passing CVE-2012-3520
MLIST:[oss-security] 20120822 Re: CVE Request -- jabberd2: Prone to unsolicited XMPP Dialback attacks CVE-2012-3525
MLIST:[oss-security] 20120822 Re: CVE Request: Apache mod RPAF denial of service CVE-2012-3526
MLIST:[oss-security] 20120822 Re: CVE request: Typo3 CVE-2012-3527 CVE-2012-3528 CVE-2012-3529 CVE-2012-3530 CVE-2012-3531
MLIST:[oss-security] 20120824 Re: CVE Request: SquidClamav insufficient escaping flaws CVE-2012-4667
MLIST:[oss-security] 20120824 Re: CVE request: libqt4: two memory issues CVE-2011-3193 CVE-2011-3194
MLIST:[oss-security] 20120824 information request on security bug fix in GNU Gatekeeper 3.1 CVE-2012-3534
MLIST:[oss-security] 20120824 oVirt 3.1 does not validate server certificates in python sdk and cli (CVE-2012-3533) CVE-2012-3533
MLIST:[oss-security] 20120825 Re: CVE request: libqt4: two memory issues CVE-2011-3193
MLIST:[oss-security] 20120825 Re: information request on security bug fix in GNU Gatekeeper 3.1 CVE-2012-3534
MLIST:[oss-security] 20120826 Re: Re: information request on security bug fix in GNU Gatekeeper 3.1 CVE-2012-3534
MLIST:[oss-security] 20120826 Re: oVirt 3.1 does not validate server certificates in python sdk and cli (CVE-2012-3533) CVE-2012-3533
MLIST:[oss-security] 20120827 CVE Request: Heap-based buffer overflow in openjpeg CVE-2012-3535
MLIST:[oss-security] 20120827 CVE request: crowbar ohai plugin: local privilege (root) escalation due to insecure tmp file handling CVE-2012-3537
MLIST:[oss-security] 20120827 Re: CVE Request: Heap-based buffer overflow in openjpeg CVE-2012-3535
MLIST:[oss-security] 20120827 Re: CVE Request: Java 7 code execution 0day CVE-2012-3539
MLIST:[oss-security] 20120827 Re: CVE request: crowbar ohai plugin: local privilege (root) escalation due to insecure tmp file handling CVE-2012-3537
MLIST:[oss-security] 20120827 Re: CVE request: joomla before 1.5.26 password change CVE-2012-1598
MLIST:[oss-security] 20120828 CVE for FreeBSD SCTP remote DoS? CVE-2012-3549
MLIST:[oss-security] 20120829 CVE-2012-3509: objalloc_alloc integer overflows in libiberty CVE-2012-3509
MLIST:[oss-security] 20120829 Re: CVE Request -- wireshark (X >= 1.6.8): DoS (excessive CPU use and infinite loop) in DRDA dissector CVE-2012-3548
MLIST:[oss-security] 20120829 Re: CVE request: FreeBSD SCTP remote DoS CVE-2012-3549
MLIST:[oss-security] 20120829 php header() header injection detection bypass CVE-2011-1398 CVE-2012-4388
MLIST:[oss-security] 20120830 Re: CVE request: crowbar XSS CVE-2012-3551
MLIST:[oss-security] 20120830 Re: [Openstack] [OSSA 2012-012] Horizon, Open redirect through 'next' parameter (CVE-2012-3540) CVE-2012-3540
MLIST:[oss-security] 20120830 [OSSA 2012-012] Horizon, Open redirect through 'next' parameter (CVE-2012-3542) CVE-2012-3540
MLIST:[oss-security] 20120830 [OSSA 2012-013] Keystone, Lack of authorization for adding users to tenants (CVE-2012-3542) CVE-2012-3542
MLIST:[oss-security] 20120831 Information on security issues fixed in ffmpeg 0.11? CVE-2012-2772 CVE-2012-2774 CVE-2012-2775 CVE-2012-2776 CVE-2012-2777 CVE-2012-2779 CVE-2012-2782 CVE-2012-2783 CVE-2012-2784 CVE-2012-2785 CVE-2012-2786 CVE-2012-2787 CVE-2012-2788 CVE-2012-2789 CVE-2012-2790 CVE-2012-2791 CVE-2012-2792 CVE-2012-2793 CVE-2012-2794 CVE-2012-2795 CVE-2012-2796 CVE-2012-2797 CVE-2012-2798 CVE-2012-2799 CVE-2012-2800 CVE-2012-2801 CVE-2012-2802 CVE-2012-2803 CVE-2012-2804
MLIST:[oss-security] 20120831 Re: CVE Request -- kernel: net: slab corruption due to improper synchronization around inet->opt CVE-2012-3552
MLIST:[oss-security] 20120831 Re: Three CVE requests: at-spi2-atk, as31, naxsi CVE-2012-0808 CVE-2012-3379
MLIST:[oss-security] 20120831 [Notification] CVE-2012-3500 - rpmdevtools, devscripts: TOCTOU race condition in annotate-output CVE-2012-3500
MLIST:[oss-security] 20120901 CVE request: Apache Struts S2-010 and S2-011 CVE-2012-4386 CVE-2012-4387
MLIST:[oss-security] 20120901 Re: CVE - ownCloud CVE-2012-2269 CVE-2012-2270 CVE-2012-2397 CVE-2012-2398 CVE-2012-4389 CVE-2012-4390 CVE-2012-4391 CVE-2012-4392 CVE-2012-4393 CVE-2012-4394 CVE-2012-4395 CVE-2012-4396 CVE-2012-4397 CVE-2012-4752
MLIST:[oss-security] 20120901 Re: CVE request: Apache Struts S2-010 and S2-011 CVE-2012-4386 CVE-2012-4387
MLIST:[oss-security] 20120901 Re: php header() header injection detection bypass CVE-2012-4388
MLIST:[oss-security] 20120902 CVE Request -- kernel: request_module() OOM local DoS CVE-2012-4398
MLIST:[oss-security] 20120902 Re: Information on security issues fixed in ffmpeg 0.11? CVE-2012-2772 CVE-2012-2774 CVE-2012-2775 CVE-2012-2776 CVE-2012-2777 CVE-2012-2779 CVE-2012-2782 CVE-2012-2783 CVE-2012-2784 CVE-2012-2785 CVE-2012-2786 CVE-2012-2787 CVE-2012-2788 CVE-2012-2789 CVE-2012-2790 CVE-2012-2791 CVE-2012-2792 CVE-2012-2793 CVE-2012-2794 CVE-2012-2795 CVE-2012-2796 CVE-2012-2797 CVE-2012-2798 CVE-2012-2799 CVE-2012-2800 CVE-2012-2801 CVE-2012-2802 CVE-2012-2803 CVE-2012-2804
MLIST:[oss-security] 20120903 CVE-request: CakePHP XXE injection CVE-2012-4399
MLIST:[oss-security] 20120903 Re: CVE-request: CakePHP XXE injection CVE-2012-4399
MLIST:[oss-security] 20120904 CVE request: moinmoin incorrect ACL evaluation for virtual groups CVE-2012-4404
MLIST:[oss-security] 20120904 Re: CVE request: moinmoin incorrect ACL evaluation for virtual groups CVE-2012-4404
MLIST:[oss-security] 20120905 CVE-Request: openstack pickle de-serialization CVE-2012-4406
MLIST:[oss-security] 20120905 Re: CVE-Request: openstack pickle de-serialization CVE-2012-4406
MLIST:[oss-security] 20120905 Re: php header() header injection detection bypass CVE-2011-1398 CVE-2012-4388
MLIST:[oss-security] 20120905 Xen Security Advisory 12 (CVE-2012-3494) - hypercall set_debugreg vulnerability CVE-2012-3494
MLIST:[oss-security] 20120905 Xen Security Advisory 13 (CVE-2012-3495) - hypercall physdev_get_free_pirq vulnerability CVE-2012-3495
MLIST:[oss-security] 20120905 Xen Security Advisory 14 (CVE-2012-3496) - XENMEM_populate_physmap DoS vulnerability CVE-2012-3496
MLIST:[oss-security] 20120905 Xen Security Advisory 15 (CVE-2012-3497) - multiple TMEM hypercall vulnerabilities CVE-2012-3497 CVE-2012-6030 CVE-2012-6031 CVE-2012-6032 CVE-2012-6033 CVE-2012-6034 CVE-2012-6035 CVE-2012-6036
MLIST:[oss-security] 20120905 Xen Security Advisory 16 (CVE-2012-3498) - PHYSDEVOP_map_pirq index vulnerability CVE-2012-3498
MLIST:[oss-security] 20120905 Xen Security Advisory 17 (CVE-2012-3515) - Qemu VT100 emulation vulnerability CVE-2012-3515
MLIST:[oss-security] 20120905 Xen Security Advisory 18 (CVE-2012-3516) - grant table entry swaps have inadequate bounds checking CVE-2012-3516
MLIST:[oss-security] 20120906 CVE request: opencryptoki insecure lock files handling CVE-2012-4454 CVE-2012-4455
MLIST:[oss-security] 20120906 Re: CVE request - mcrypt buffer overflow flaw CVE-2012-4409 CVE-2012-4426
MLIST:[oss-security] 20120906 Re: Re: php header() header injection detection bypass CVE-2012-4388
MLIST:[oss-security] 20120906 Re: Xen Security Advisory 19 - guest administrator can access qemu monitor console CVE-2012-4411
MLIST:[oss-security] 20120906 Xen Security Advisory 19 - guest administrator can access qemu monitor console CVE-2012-4411
MLIST:[oss-security] 20120907 Re: CVE request: opencryptoki insecure lock files handling CVE-2012-4454 CVE-2012-4455
MLIST:[oss-security] 20120907 Xen Security Advisory 19 (CVE-2012-4411) - guest administrator can access qemu monitor console CVE-2012-4411
MLIST:[oss-security] 20120909 Re: CVE request: opencryptoki insecure lock files handling CVE-2012-4454 CVE-2012-4455
MLIST:[oss-security] 20120909 note on gnome shell extensions CVE-2012-4427
MLIST:[oss-security] 20120910 Re: CVE request - mcrypt buffer overflow flaw CVE-2012-4426
MLIST:[oss-security] 20120910 [PRE-SA-2012-06] FreeRADIUS: Stack Overflow in TLS-based EAP Methods CVE-2012-3547
MLIST:[oss-security] 20120911 CVE id request: guacd CVE-2012-4415
MLIST:[oss-security] 20120911 CVE-2012-4405 ghostscript, argyllcms: Array index error leading to heap-based bufer OOB write CVE-2012-4405
MLIST:[oss-security] 20120911 Multiple SQL injections in MySQL/MariaDB CVE-2012-4414
MLIST:[oss-security] 20120911 Re: CVE id request: guacd CVE-2012-4415
MLIST:[oss-security] 20120912 CVE Request: Apache Axis2 XML Signature Wrapping Attack CVE-2012-4418
MLIST:[oss-security] 20120912 CVE id request: tor CVE-2012-4922
MLIST:[oss-security] 20120912 Re: CVE Request: Apache Axis2 XML Signature Wrapping Attack CVE-2012-4418
MLIST:[oss-security] 20120912 Re: CVE id request: tor CVE-2012-4419
MLIST:[oss-security] 20120912 Re: CVEs for wordpress 3.4.2 release CVE-2012-3383
MLIST:[oss-security] 20120912 [OSSA 2012-014] Revoking a role does not affect existing tokens (CVE-2012-4413) CVE-2012-4413
MLIST:[oss-security] 20120912 libdbus CVE-2012-3524 fix CVE-2012-3524 CVE-2012-4425
MLIST:[oss-security] 20120913 CVE request: information leak in vino CVE-2012-4429
MLIST:[oss-security] 20120913 Re: CVE Request -- libvirt: null function pointer invocation in virNetServerProgramDispatchCall() CVE-2012-4423
MLIST:[oss-security] 20120913 Re: CVE request - mcrypt buffer overflow flaw CVE-2012-4426
MLIST:[oss-security] 20120913 Re: CVE request: information leak in vino CVE-2012-4429
MLIST:[oss-security] 20120913 Re: CVEs for wordpress 3.4.2 release CVE-2012-4421 CVE-2012-4422
MLIST:[oss-security] 20120913 Re: Re: note on gnome shell extensions CVE-2012-4427
MLIST:[oss-security] 20120913 Re: note on gnome shell extensions CVE-2012-4427
MLIST:[oss-security] 20120914 CVE request: bacula: Console ACL Bypass CVE-2012-4430
MLIST:[oss-security] 20120914 Re: CVE request: bacula: Console ACL Bypass CVE-2012-4430
MLIST:[oss-security] 20120914 Re: CVE-request: WordPress insufficient permissions verification on XMLRPC interface CVE-2010-5106
MLIST:[oss-security] 20120914 Re: Re: CVE request: bacula: Console ACL Bypass CVE-2012-4430
MLIST:[oss-security] 20120914 Re: libdbus CVE-2012-3524 fix CVE-2012-3524 CVE-2012-4425
MLIST:[oss-security] 20120917 CVE request: OptiPNG Palette Reduction Use-After-Free Vulnerability CVE-2012-4432
MLIST:[oss-security] 20120917 Moodle security notifications public CVE-2012-4400 CVE-2012-4401 CVE-2012-4402 CVE-2012-4403 CVE-2012-4407 CVE-2012-4408
MLIST:[oss-security] 20120917 Re: CVE request: OptiPNG Palette Reduction Use-After-Free Vulnerability CVE-2012-4432
MLIST:[oss-security] 20120917 Re: libdbus CVE-2012-3524 fix CVE-2012-3524 CVE-2012-4425
MLIST:[oss-security] 20120918 Re: Re: note on gnome shell extensions CVE-2012-4427
MLIST:[oss-security] 20120919 CVE Request -- fwknop 2.0.3: Multiple security issues CVE-2012-4435 CVE-2012-4436
MLIST:[oss-security] 20120919 CVE Request Smarty / php-Smarty: XSS in Smarty exception messages CVE-2012-4437
MLIST:[oss-security] 20120919 Re: CVE Request -- fwknop 2.0.3: Multiple security issues CVE-2012-4435 CVE-2012-4436
MLIST:[oss-security] 20120919 Re: CVE Request Smarty / php-Smarty: XSS in Smarty exception messages CVE-2012-4437
MLIST:[oss-security] 20120920 Notification of upstream Condor security fixes CVE-2012-3491 CVE-2012-3492 CVE-2012-3493
MLIST:[oss-security] 20120920 Re: CVE request: opencryptoki insecure lock files handling CVE-2012-4454 CVE-2012-4455
MLIST:[oss-security] 20120920 Re: CVE-request: monkey fails to drop supplemental groups when lowering privileges CVE-2012-4442
MLIST:[oss-security] 20120921 Re: CVE-request: monkey CGI scripts executed without dropping RUID/RGID root CVE-2012-4443
MLIST:[oss-security] 20120924 Re: CVE request: opencryptoki insecure lock files handling CVE-2012-4454 CVE-2012-4455
MLIST:[oss-security] 20120925 CVE Request: libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression CVE-2012-4447
MLIST:[oss-security] 20120925 Re: CVE Request - phpMyAdmin: PMASA-2012-5 incident CVE-2012-5159
MLIST:[oss-security] 20120925 Re: CVE Request -- WordPress (3,4.2): CSRF in the incoming links section of the dashboard CVE-2012-4448
MLIST:[oss-security] 20120925 Re: CVE Request: libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression CVE-2012-4447
MLIST:[oss-security] 20120926 CVE Request -- 389-ds-base: Change on SLAPI_MODRDN_NEWSUPERIOR is not evaluated in ACL (ACL rules bypass possible) CVE-2012-4450
MLIST:[oss-security] 20120926 Re: CVE Request -- 389-ds-base: Change on SLAPI_MODRDN_NEWSUPERIOR is not evaluated in ACL (ACL rules bypass possible) CVE-2012-4450
MLIST:[oss-security] 20120927 CVE-2009-4030 regression in mysql CVE-2012-4452
MLIST:[oss-security] 20120927 Re: CVE request: opencryptoki insecure lock files handling CVE-2012-4454 CVE-2012-4455
MLIST:[oss-security] 20120927 Re: dracut creates non-world readable initramfs images CVE-2012-4453
MLIST:[oss-security] 20120927 Re: dracut creates world readable initramfs images CVE-2012-4453
MLIST:[oss-security] 20120927 dracut creates non-world readable initramfs images CVE-2012-4453
MLIST:[oss-security] 20120928 [OSSA 2012-015] Some actions in Keystone admin API do not validate token (CVE-2012-4456) CVE-2012-4456
MLIST:[oss-security] 20120928 [OSSA 2012-016] Token authorization for a user in a disabled tenant is allowed (CVE-2012-4457) CVE-2012-4457
MLIST:[oss-security] 20120930 cgit: heap buffer overflow CVE-2012-4465
MLIST:[oss-security] 20121002 CVE Request: Ruby safe level bypasses CVE-2012-4464 CVE-2012-4466
MLIST:[oss-security] 20121002 CVE-2012-3504: insecure temporary file usage in genkey perl script CVE-2012-3504
MLIST:[oss-security] 20121003 CVE Request (minor) -- mc: Improper sanitization of MC_EXT_SELECTED variable when viewing multiple files CVE-2012-4463
MLIST:[oss-security] 20121003 Re: CVE Request (minor) -- mc: Improper sanitization of MC_EXT_SELECTED var