Showing all newswire headlines

View by date, instead?

« Previous ( 1 ... 5522 5523 5524 5525 5526 5527 5528 5529 5530 5531 5532 ... 5576 ) Next »

Debian alert: New kdeutils packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 24, 2003 4:38 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Debian alert: New kdegames packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 23, 2003 9:51 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Debian alert: New kdesdk packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 23, 2003 6:56 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Debian alert: New kdepim packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 23, 2003 5:12 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Debian alert: New kdenetwork packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 23, 2003 4:57 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

SuSE alert: cvs

  • Mailing list (Posted by dave on Jan 22, 2003 7:38 AM EDT)
  • Story Type: Security; Groups: SUSE
CVS (Concurrent Versions System) is a version control system which helps to manage concurrent editing of files by various authors. Stefan Esser of e-matters reported a "double free" bug in CVS server code for handling directory requests. This free() call allows an attacker with CVS read access to compromise a CVS server. Additionally two features ('Update-prog' and 'Checkin-prog') were disabled to stop clients with write access to execute arbitrary code on the server. These features may be configurable at run-time in future releases of CVS server.

Debian alert: New kdelibs packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 22, 2003 5:36 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Debian alert: New kdegraphics packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 22, 2003 5:26 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Debian alert: New kdeadmin packages fix several vulnerabilities

  • Mailing list (Posted by dave on Jan 22, 2003 5:17 AM EDT)
  • Story Type: Security; Groups: Debian
The KDE team discovered several vulnerabilities in the K Desktop Environment. In some instances KDE fails to properly quote parameters of instructions passed to a command shell for execution. These parameters may incorporate data such as URLs, filenames and e-mail addresses, and this data may be provided remotely to a victim in an e-mail, a webpage or files on a network filesystem or other untrusted source.

Mandrake alert: Updated printer-drivers packages fix local vulnerabilities

Karol Wiesek and iDefense disovered three vulnerabilities in the printer-drivers package and tools it installs. These vulnerabilities allow a local attacker to empty or create any file on the filesystem.

Slackware alert: New CVS packages available

New cvs packages are available to fix a security vulnerability.

Red Hat alert: Updated python packages fix predictable temporary file

  • Mailing list (Posted by dave on Jan 21, 2003 11:00 AM EDT)
  • Story Type: Security; Groups: Red Hat
An insecure use of a temporary file has been found in Python. This erratum provides updated Python packages.

Mandrake alert: Updated printer-drivers packages fix local vulnerabilities

Karol Wiesek and iDefense disovered three vulnerabilities in the printer-drivers package and tools it installs. These vulnerabilities allow a local attacker to empty or create any file on the filesystem.

Disabled to Get Greater Access to Linux

Linux is chasing Microsoft's Windows into every market where the two operating systems can compete. A case in point: Today, an Oakland organization will announce it is developing standards to make Linux accessible to people with disabilities. The Free Standards Group has created a task force to establish the standards.

Software Vulnerabilities and the Future of Liability Reform

  • LinuxInsider (Posted by dave on Jan 21, 2003 8:00 AM EDT)
  • Story Type: News Story
If you were to make up your own list of the top 10 issues likely to affect computing over the next five to 10 years, would you include liability reform in the American legal system? I think you should, even if you live, as I do, in Canada or some other country where American law doesn't apply directly. But change is coming, and that change will affect anyone who works with hardware or software made or sold by American companies.

SGI Launches Initiative To Improve Linux Visualization

  • LinuxInsider (Posted by dave on Jan 21, 2003 8:00 AM EDT)
  • Groups: SGI; Story Type: News Story
Silicon Graphics this week launched an initiative that will bring the company's graphics technology to computers running Linux. The initiative consists of two elements: SGI's collaboration with various open-source graphics projects, including Chromium, and SGI's release of a tool kit for developers.

SuSE Linux on IBM Hardware Earns Higher Security Cert

IBM and SuSE Linux -- now owned by Novell -- announced they have reached new heights in Linux security with a standards certification that the companies claim will boost Linux adoption in government agencies, including the U.S. Department of Defense. The newly earned certification is a step up from the companies' security certification earned last August.

Novell Completes Acquisition of Leading European Linux Distributor

The dispute over the future of the now freely distributed Linux operating system is a global one, but this week it focused on Utah and two warring computer companies with common roots. Novell, the one-time networking software giant seeking rejuvenation in Linux-related development, completed a $210 million acquisition of SuSE Linux, Europe's leading Linux distributor.

Wintel Doesn't Matter: Gaining Strategic Advantage with Linux

  • LinuxInsider (Posted by dave on Jan 21, 2003 8:00 AM EDT)
  • Story Type: News Story
The publication of an article by Nicholas Carr titled "IT Doesn't Matter" raised much controversy. Carr's fundamental argument is that every widely used business technology conferred significant strategic advantage on early adopters but lost that potency as it matured. In his own context, he's absolutely right: Limit IT to Wintel, and IT doesn't matter; step outside his assumptions, however, and he's dead wrong.

Microsoft To Offer Free Unix-Windows Integration Tool

Microsoft Thursday is expected to make available for free its Services for Unix software, which helps integrate Unix and Windows and supports migrations of Unix applications to the Microsoft platform. The software is seen as a key tool in Microsoft's battle against Unix and Linux.

« Previous ( 1 ... 5522 5523 5524 5525 5526 5527 5528 5529 5530 5531 5532 ... 5576 ) Next »