Archive for the ‘Debian Security’ Category

DSA-1976 dokuwiki – several vulnerabilities

Saturday, January 23rd, 2010

Several vulnerabilities have been discovered in dokuwiki, a standards compliant
simple to use wiki.
The Common Vulnerabilities and Exposures project identifies the
following problems:

Read the full story: DSA-1976 dokuwiki – several vulnerabilities: http://www.debian.org/security/2010/dsa-1976

DSA-1974 gzip – several vulnerabilities

Thursday, January 21st, 2010

Several vulnerabilities have been found in gzip, the GNU compression
utilities. The Common Vulnerabilities and Exposures project identifies
the following problems:

Read the full story: DSA-1974 gzip – several vulnerabilities: http://www.debian.org/security/2010/dsa-1974

DSA-1973 glibc, eglibc – information disclosure

Thursday, January 21st, 2010

Christoph Pleger has discovered that the GNU C Library (aka glibc) and
its derivatives add information from the passwd.adjunct.byname map to
entries in the passwd map, which allows local users to obtain the
encrypted passwords of NIS accounts by calling the getpwnam function.

Read the full story: DSA-1973 glibc, eglibc – information disclosure: http://www.debian.org/security/2010/dsa-1973