Several vulnerabilities have been discovered in the interpreter for
the Ruby language, which may lead to denial of service and other
security problems. The Common Vulnerabilities and Exposures project
identifies the following problems:
Read the full story: DSA-1652 ruby1.9 - several vulnerabilities: http://www.debian.org/security/2008/dsa-1652
Several remote vulnerabilities have been discovered in the Iceweasel web
browser, an unbranded version of the Firefox browser. The Common
Vulnerabilities and Exposures project identifies the following problems:
Read the full story: DSA-1649 iceweasel - several vulnerabilities: http://www.debian.org/security/2008/dsa-1649
Dmitry E. Oboukhov discovered that the test.alert script used in one of the
alert functions in mon, a system to monitor hosts or services and alert
about problems, creates temporary files insecurely, which may lead to a local
denial of service through symlink attacks.
Read the full story: DSA-1648 mon - insecure temporary files: http://www.debian.org/security/2008/dsa-1648