A vulnerability was discovered in aria2, a download client. The “name”
attribute of the “file” element of metalink files is not properly
sanitised before using it to download files. If a user is tricked into
downloading from a specially crafted metalink file, this can be
exploited to download files to directories outside of the intended
download directory.
Read the full story: DSA-2047 aria2 – insufficient input sanitising: http://www.debian.org/security/2010/dsa-2047
Anibal Sacco discovered that cups, a general printing system for UNIX
systems, suffers from null pointer dereference because of its handling
of two consecutive IPP packets with certain tag attributes that are
treated as IPP_TAG_UNSUPPORTED tags. This allows unauthenticated attackers
to perform denial of service attacks by crashing the cups daemon.
Read the full story: DSA-1811 cups, cupsys – null ptr dereference: http://www.debian.org/security/2009/dsa-1811
An information disclosure flaw was found in mod_jk, the Tomcat Connector
module for Apache. If a buggy client included the “Content-Length” header
without providing request body data, or if a client sent repeated
requests very quickly, one client could obtain a response intended for
another client.
Read the full story: DSA-1810 libapache-mod-jk – information disclosure: http://www.debian.org/security/2009/dsa-1810