Advisory | The Debian Hack Shop

Posts Tagged ‘advisory’

DSA-1730 proftpd-dfsg – SQL injection vulnerabilites

Tuesday, March 24th, 2009

The security update for proftpd-dfsg in DSA-1727-1 caused a regression
with the postgresql backend. This update corrects the flaw. Also it was
discovered that the oldstable distribution (etch) is not affected by the
security issues. For reference the original advisory follows.

Read the full story: DSA-1730 proftpd-dfsg – SQL injection vulnerabilites: http://www.debian.org/security/2009/dsa-1730

Tags: advisory, Debian, DSA, etch, Security, stable, update
Posted in Debian Security | No Comments »

DSA-1695 ruby1.8, ruby1.9 – memory leak

Sunday, January 18th, 2009

The regular expression engine of Ruby, a scripting language, contains a
memory leak which can be triggered remotely under certain circumstances,
leading to a denial of service condition ( CVE-2008-3443).

Read the full story: DSA-1695 ruby1.8, ruby1.9 – memory leak: http://www.debian.org/security/2009/dsa-1695

Tags: advisory, Debian, DSA, Linux, Security
Posted in Debian Security | No Comments »

DSA-1694 xterm – design flaw

Sunday, January 18th, 2009

Paul Szabo discovered that xterm, a terminal emulator for the X Window
System, places arbitrary characters into the input buffer when
displaying certain crafted escape sequences ( CVE-2008-2383).

Read the full story: DSA-1694 xterm – design flaw: http://www.debian.org/security/2009/dsa-1694

Tags: advisory, Debian, DSA, Security
Posted in Debian Security | No Comments »

The Debian Hack Shop

Posts Tagged ‘advisory’

DSA-1730 proftpd-dfsg – SQL injection vulnerabilites

DSA-1695 ruby1.8, ruby1.9 – memory leak

DSA-1694 xterm – design flaw

Categories

Recent Posts

Meta

Favourite Links

Forums