From johnsonm@rpath.com Thu Feb 23 13:47:03 2006 Received: from ms-smtp-01-eri0.southeast.rr.com (ms-smtp-01-lbl.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k1NIkwgQ021712; Thu, 23 Feb 2006 13:47:03 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k1NIkgfs020462; Thu, 23 Feb 2006 13:46:43 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k1NIkg7S023958 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 23 Feb 2006 13:46:42 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k1NIkg2t023934; Thu, 23 Feb 2006 13:46:42 -0500 From: "Michael K. Johnson" Message-Id: <200602231846.k1NIkg2t023934@lambchop.rdu.rpath.com> Date: Thu, 23 Feb 2006 13:46:42 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com, distro-list@lists.rpath.com User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-Mailman-Approved-At: Thu, 23 Feb 2006 13:50:36 -0500 Subject: -owner rPSA-2006-0001-1 postgresql X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Feb 2006 18:47:03 -0000 rPath Security Advisory: 2006-0001-1 Published: 2006-02-14 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Local System User Deterministic Privilege Escalation Updated Versions: postgresql=/conary.rpath.com@rpl:devel//1/8.1.3-1 References: http://www.postgresql.org/about/news.476 Description: PostgreSQL minor version 8.1.3 has been released, containing a patch for a serious security issue present in the 8.1 branch. All users of 8.1 are urged to upgrade at the earliest opportunity. The security issue in 8.1.x allows an authenticated database user to escalate his ROLE privileges by exploiting knowledge of the backend protocol. While there are no known exploits in the wild for this, users are urged not to wait until they encounter one. 8.1.3 also contains a number of other bug fixes, most of them for very specific (rare) database configurations and schema issues, but including a number of crash fixes. Notable also is a fix to the TSearch2 GiST index generation code which will significantly speed up creation of TSearch2 indexes. From johnsonm@rpath.com Thu Feb 23 13:57:34 2006 Received: from ms-smtp-03-eri0.southeast.rr.com (ms-smtp-03-lbl.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k1NIvTMs021797; Thu, 23 Feb 2006 13:57:33 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k1NIvC9s007994; Thu, 23 Feb 2006 13:57:13 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k1NIvCs3027519 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 23 Feb 2006 13:57:12 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k1NIvC01027517; Thu, 23 Feb 2006 13:57:12 -0500 From: "Michael K. Johnson" Message-Id: <200602231857.k1NIvC01027517@lambchop.rdu.rpath.com> Date: Thu, 23 Feb 2006 13:57:12 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com, distro-list@lists.rpath.com User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Subject: -owner rPSA-2006-0002-1 gnupg X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Feb 2006 18:57:34 -0000 rPath Security Advisory: 2006-0002-1 Published: 2006-02-15 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Non-deterministic Weakness Updated Versions: gnupg=/conary.rpath.com@rpl:devel//1/1.4.2.1-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0455 http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000211.html Description: The Gentoo project identified a security related bug in GnuPG. When using any current version of GnuPG for unattended signature verification (e.g. by scripts and mail programs), false positive signature verification of detached signatures may occur. This problem affects the tool *gpgv*, as well as using "gpg --verify" to imitate gpgv, if only the exit code of the process is used to decide whether a detached signature is valid. This is a plausible mode of operation for gpgv. If, as suggested, the --status-fd generated output is used to decide whether a signature is valid, no problem exists. In particular applications making use of the GPGME library[2] are not affected. From johnsonm@rpath.com Thu Feb 23 14:01:01 2006 Received: from ms-smtp-02-eri0.southeast.rr.com (ms-smtp-02-lbl.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k1NJ0xSJ021856; Thu, 23 Feb 2006 14:01:01 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k1NJ0dxM019590; Thu, 23 Feb 2006 14:00:43 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k1NJ0dF2029041 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 23 Feb 2006 14:00:39 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k1NJ0dtm029039; Thu, 23 Feb 2006 14:00:39 -0500 From: "Michael K. Johnson" Message-Id: <200602231900.k1NJ0dtm029039@lambchop.rdu.rpath.com> Date: Thu, 23 Feb 2006 14:00:39 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com, distro-list@lists.rpath.com Subject: rPSA-2006-0003-1 httpd mod_ssl User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Feb 2006 19:01:01 -0000 rPath Security Advisory: 2006-0003-1 Published: 2006-02-21 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote System User Deterministic Vulnerability Updated Versions: httpd=/conary.rpath.com@rpl:devel//1/2.0.55-10-0.1 mod_ssl=/conary.rpath.com@rpl:devel//1/2.0.55-10-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3352 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3357 http://issues.apache.org/bugzilla/show_bug.cgi?id=37874 http://issues.apache.org/bugzilla/show_bug.cgi?id=37791 Description: mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote attackers to cause a denial of service (application crash) via a non-SSL request to an SSL port, which triggers a NULL pointer dereference. A flaw in the imagemap processing module, mod_imap, in versions of Apache httpd 1.3, 2.0 and 2.2 can in some circumstances cause the referer header to be output without being escaped in HTML. This could allow an attacker who is able to influence the referer header the ability to do cross-site scripting attacks against sites using mod_imap in a vulnerable configuration. This flaw only affects sites using mod_imap with a map file that contains the "referer" directive. In order to exploit this flaw the attacker would need to control the referer header and therefore would need to entice a victim to visit a URL under the attackers control. A sucessful cross-site scripting attack using this flaw would be limited to certain browsers. Firefox and Mozilla browsers for example already escape suspect characters in a URL which blocks this from being exploited. From johnsonm@rpath.com Tue Mar 7 15:55:15 2006 Received: from ms-smtp-04-eri0.southeast.rr.com (ms-smtp-04-lbl.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k27KtFJK007344; Tue, 7 Mar 2006 15:55:15 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k27Kst2O027669; Tue, 7 Mar 2006 15:54:55 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k27KssSY031098 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 7 Mar 2006 15:54:54 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k27Kss7t031097; Tue, 7 Mar 2006 15:54:54 -0500 From: "Michael K. Johnson" Message-Id: <200603072054.k27Kss7t031097@lambchop.rdu.rpath.com> Date: Tue, 07 Mar 2006 15:54:54 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0011-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Mar 2006 20:55:16 -0000 rPath Security Advisory: 2006-0011-1 Published: 2006-03-07 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local User Deterministic Denial of Service Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.15.6-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0554 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0555 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0741 Description: Update to upstream linux kernel version 2.6.15.6 to fix CVE-2006-0554, CVE-2006-0555, and CVE-2006-0741. The most severe vulnerability in this list is CVE-2006-0555, which allows any normal user that has the capability to execute arbitrary code to panic the kernel if an NFS filesystem is mounted. Upstream change log message: - SECURITY: XFS ftruncate() bug could expose stale data (CVE-2006-0554) - SECURITY: Normal user can panic NFS client with direct I/O (CVE-2006-0555) - SECURITY: x86_64: Check for bad elf entry address (CVE-2006-0741) - SECURITY: [IA64] die_if_kernel() can return (CVE-2006-0742) - Fix deadlock in br_stp_disable_bridge - Fix a severe bug - i386: Move phys_proc_id/early intel workaround to correct function - ramfs: update dir mtime and ctime - sys_mbind sanity checking - Fix s390 build failure. - Revert skb_copy_datagram_iovec() recursion elimination. - s390: add #ifdef __KERNEL__ to asm-s390/setup.h - netfilter missing symbol has_bridge_parent - hugetlbfs mmap ENOMEM failure - IB/mthca: max_inline_data handling tweaks - it87: Fix oops on removal - hwmon it87: Probe i2c 0x2d only - reiserfs: disable automatic enabling of reiserfs inode attributes - Fix snd-usb-audio in 32-bit compat environment - dm: missing bdput/thaw_bdev at removal - dm: free minor after unlink gendisk - gbefb: IP32 gbefb depth change fix - shmdt cannot detach not-alined shm segment cleanly. - Address autoconfiguration does not work after device down/up cycle - gbefb: Set default of FB_GBE_MEM to 4 MB - sys_signal: initialize ->sa_mask - do_sigaction: cleanup ->sa_mask manipulation - fix zap_thread's ptrace related problems - fix deadlock in ext2 - cfi: init wait queue in chip struct - sd: fix memory corruption with broken mode page headers - sbp2: fix another deadlock after disconnection - skge: speed setting - skge: fix NAPI/irq race - skge: genesis phy initialization fix - skge: fix SMP race - alsa: fix bogus snd_device_free() in opl3-oss.c - ppc32: Put cache flush routines back into .relocate_code section - sys32_signal() forgets to initialize ->sa_mask - Don't reset rskq_defer_accept in reqsk_queue_alloc - fs/nfs/direct.c compile fix - mempolicy.c compile fix, make sure BITS_PER_BYTE is defined From johnsonm@rpath.com Fri Mar 10 11:43:45 2006 Received: from ms-smtp-02-eri0.southeast.rr.com (ms-smtp-02-lbl.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k2AGhjRd020288; Fri, 10 Mar 2006 11:43:45 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k2AGhN5o014443; Fri, 10 Mar 2006 11:43:24 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k2AGhMqU016462 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 10 Mar 2006 11:43:22 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k2AGhMvT016461; Fri, 10 Mar 2006 11:43:22 -0500 From: "Michael K. Johnson" Message-Id: <200603101643.k2AGhMvT016461@lambchop.rdu.rpath.com> Date: Fri, 10 Mar 2006 11:43:22 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0015-1 gnupg User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Mar 2006 16:43:45 -0000 rPath Security Advisory: 2006-0015-1 Published: 2006-03-10 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Non-deterministic Weakness Updated Versions: gnupg=/conary.rpath.com@rpl:devel//1/1.4.2.2-0.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0049 http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000216.html Description: When using GnuPG to verify attached signatures succeeds if any signature is good, rather than if all signatures are good. This allows an attacker to inject arbitrary data into a message that has a attached signature and attach a new signature that verifies the modified file. The signature check will now complete successfully in vulnerable versions of GnuPG. This attack does not affect detached signatures, in which the signature is presented in a separate file from the message. GnuPG 1.4.2.2 has this security weakness fixed. All versions of GnuPG prior to 1.4.2.2 are affected by this security weakness. From johnsonm@rpath.com Tue Mar 14 10:10:00 2006 Received: from ms-smtp-03-eri0.southeast.rr.com (ms-smtp-03-lbl.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k2EFA0AT029597; Tue, 14 Mar 2006 10:10:00 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k2EF9aDa019634; Tue, 14 Mar 2006 10:09:37 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k2EF9aKm018353 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 14 Mar 2006 10:09:36 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k2EF9asH018351; Tue, 14 Mar 2006 10:09:36 -0500 From: "Michael K. Johnson" Message-Id: <200603141509.k2EF9asH018351@lambchop.rdu.rpath.com> Date: Tue, 14 Mar 2006 10:09:36 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0019-1 tar User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Mar 2006 15:10:01 -0000 rPath Security Advisory: 2006-0019-1 Published: 2006-03-14 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: User Non-deterministic Weakness Updated Versions: tar=/conary.rpath.com@rpl:devel//1/1.15.1-7-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0300 Description: A buffer overflow in tar 1.14 through 1.15.90 can at least allow a denial of service (application crash) and possibly execute arbitrary code. To exploit this weakness, an attacker must trick a user into extracting a maliciously-created or tampered tar archive. This buffer overflow has been fixed. From johnsonm@rpath.com Tue Mar 14 10:10:20 2006 Received: from ms-smtp-03-eri0.southeast.rr.com (ms-smtp-03-lbl.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k2EFAKUp029615; Tue, 14 Mar 2006 10:10:20 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k2EF9va8019993; Tue, 14 Mar 2006 10:09:58 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k2EF9v88018592 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 14 Mar 2006 10:09:57 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k2EF9v4Y018591; Tue, 14 Mar 2006 10:09:57 -0500 From: "Michael K. Johnson" Message-Id: <200603141509.k2EF9v4Y018591@lambchop.rdu.rpath.com> Date: Tue, 14 Mar 2006 10:09:57 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0020-1 squirrelmail User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Mar 2006 15:10:21 -0000 rPath Security Advisory: 2006-0020-1 Published: 2006-03-14 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote System User Deterministic Privilege Escalation Updated Versions: squirrelmail=/conary.rpath.com@rpl:devel//1/1.4.6-2-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0195 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0377 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0188 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1769 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2095 http://www.squirrelmail.org/changelog.php Description: This version of squirrelmail includes fixes for bugs first introduced when fixing CVE-2005-1769 and CVE-2005-2095, as well as fixes for new security bugs documented in CVE-2006-0195 (cross-site scripting), CVE-2006-0377 (IMAP injection), and CVE-2006-0188 (more cross-site scripting). From johnsonm@rpath.com Mon Mar 20 17:22:22 2006 Received: from ms-smtp-01-eri0.southeast.rr.com (ms-smtp-01-lbl.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.4/8.13.4) with ESMTP id k2KMMMYt027993; Mon, 20 Mar 2006 17:22:22 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k2KMLuAN009270; Mon, 20 Mar 2006 17:21:57 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.4/8.13.4) with ESMTP id k2KMLurI002436 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 20 Mar 2006 17:21:56 -0500 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.4/8.13.4/Submit) id k2KMLusf002423; Mon, 20 Mar 2006 17:21:56 -0500 From: "Michael K. Johnson" Message-Id: <200603202221.k2KMLusf002423@lambchop.rdu.rpath.com> Date: Mon, 20 Mar 2006 17:21:56 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0023-1 curl User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 20 Mar 2006 22:22:23 -0000 rPath Security Advisory: 2006-0023-1 Published: 2006-03-20 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local User Non-deterministic Weakness Updated Versions: curl=/conary.rpath.com@rpl:devel//1/7.15.3-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1061 Description: This release fixes a buffer overflow in cURL when it fetches a tftp:// URL with a size of >66000 characters. The buffer overflow only applies for URLs that start with "tftp://", then a valid hostname, and then another slash. Successfully exploiting this vulnerability allows attackers to execute code within the context of cURL. If cURL is configured to follow HTTP redirects, for example by using its -L command line option, any web resource can redirect to a tftp:// URL that causes this overflow. From jmforbes@rpath.com Thu Mar 23 01:36:58 2006 Received: from ms-smtp-01-eri0.southeast.rr.com (ms-smtp-01-lbl.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k2N6awsW021328; Thu, 23 Mar 2006 01:36:58 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k2N6aVtY005302; Thu, 23 Mar 2006 01:36:32 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k2N6aVLg016103 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 23 Mar 2006 01:36:31 -0500 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k2N6aVuX016102; Thu, 23 Mar 2006 01:36:31 -0500 From: "Justin M. Forbes" Message-Id: <200603230636.k2N6aVuX016102@lambchop.rdu.rpath.com> Date: Thu, 23 Mar 2006 01:36:31 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0028-1 sendmail sendmail-cf User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Mar 2006 06:36:59 -0000 rPath Security Advisory: 2006-0028-1 Published: 2006-03-23 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote Root Non-deterministic Unauthorized Access Updated Versions: sendmail=/conary.rpath.com@rpl:devel//1/8.13.6-1-0.1 sendmail-cf=/conary.rpath.com@rpl:devel//1/8.13.6-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0058 http://www.sendmail.com/company/advisory/ http://www.us-cert.gov/cas/techalerts/TA06-081A.html http://www.sendmail.org/8.13.6.html Description: A remote, unauthenticated attacker could execute arbitrary code with the privileges of the Sendmail process, which runs as the root user, potentially subverting the system. At the time of this announcement, there is no known public exploit of this vulnerability, which is highly dependent on precise timing. The default configuration of sendmail in rPath Linux is not remotely vulnerable because it does not listen to external connections. An installation of sendmail will be remotely vulnerable only if the line in /etc/mail/sendmail.m4 DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl has been removed or commented out. If that line has not been removed or commented out, then the system will be vulnerable only to attacks from local users. rPath recommends that all users of sendmail update at the earliest possible opportunity. From jmforbes@rpath.com Tue Mar 28 19:41:46 2006 Received: from ms-smtp-02-eri0.southeast.rr.com (ms-smtp-02-lbl.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k2T0fjV8019903; Tue, 28 Mar 2006 19:41:45 -0500 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k2T0fHC4021976; Tue, 28 Mar 2006 19:41:17 -0500 (EST) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k2T0fGQn027818 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 28 Mar 2006 19:41:16 -0500 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k2T0fG4e027817; Tue, 28 Mar 2006 19:41:16 -0500 From: "Justin M. Forbes" Message-Id: <200603290041.k2T0fG4e027817@lambchop.rdu.rpath.com> Date: Tue, 28 Mar 2006 19:41:16 -0500 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0031-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Mar 2006 00:41:46 -0000 rPath Security Advisory: 2006-0031-1 Published: 2006-03-28 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Remote Deterministic Weakness Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.15.7-0.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1242 http://lwn.net/Articles/177398/ Description: Previous Linux kernels have a weakness in which the TCP stack increments the IP ID field after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended preventions against such attacks, against machines to which they can connect via TCP. The information disclosed by this weakness, while it does not itself create any vulnerability, may make it easier for an attacker to quietly discover other vulnerabilities. Also, cramfs images created by the mkcramfs utility from util-linux (as shipped in rPath Linux) which contained empty regular files incorrectly provided corrupt contents instead of no contents for those empty regular files. This bug is fixed by this update. From jmforbes@rpath.com Tue Apr 4 11:06:35 2006 Received: from ms-smtp-01-eri0.southeast.rr.com (ms-smtp-01-lbl.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k34F6ZKC022636; Tue, 4 Apr 2006 11:06:35 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k34F64S1024018; Tue, 4 Apr 2006 11:06:04 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k34F63aW024681 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 4 Apr 2006 11:06:03 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k34F63ns024677; Tue, 4 Apr 2006 11:06:03 -0400 From: "Justin M. Forbes" Message-Id: <200604041506.k34F63ns024677@lambchop.rdu.rpath.com> Date: Tue, 04 Apr 2006 11:06:03 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0037-1 poppler User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Apr 2006 15:06:35 -0000 rPath Security Advisory: 2006-0037-1 Published: 2006-04-04 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote User Non-deterministic Weakness Updated Versions: poppler=/conary.rpath.com@rpl:devel//1/0.4.5-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0301 Description: A heap-based buffer overflow allows attackers to cause a denial of service via crafted splash images that produce certain values that exceed the width or height of the associated bitmap. The poppler library is used by various programs that display PDF files. From johnsonm@rpath.com Fri Apr 14 16:22:21 2006 Received: from ms-smtp-04-eri0.southeast.rr.com (ms-smtp-04-lbl.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k3EKMKW5011494; Fri, 14 Apr 2006 16:22:21 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04-eri0.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k3EKLkh7022326; Fri, 14 Apr 2006 16:21:46 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k3EKLjkI001199 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 14 Apr 2006 16:21:45 -0400 Received: (from johnsonm@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k3EKLjJQ001198; Fri, 14 Apr 2006 16:21:45 -0400 From: "Michael K. Johnson" Message-Id: <200604142021.k3EKLjJQ001198@lambchop.rdu.rpath.com> Date: Fri, 14 Apr 2006 16:21:45 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0046-1 firefox User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Apr 2006 20:22:21 -0000 rPath Security Advisory: 2006-0046-1 Published: 2006-04-14 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote User Deterministic Unauthorized Access Updated Versions: firefox=/conary.rpath.com@rpl:devel//1/1.5.0.2-2-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0749 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1529 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1530 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1531 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1723 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1724 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1725 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1726 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1727 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1728 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1729 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1730 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1731 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1732 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1733 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1734 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1735 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1736 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1737 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1738 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1739 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1740 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1741 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1742 http://secunia.com/advisories/19631/ http://www.mozilla.org/security/announce/2006/mfsa2006-09.html http://www.mozilla.org/security/announce/2006/mfsa2006-10.html http://www.mozilla.org/security/announce/2006/mfsa2006-11.html http://www.mozilla.org/security/announce/2006/mfsa2006-12.html http://www.mozilla.org/security/announce/2006/mfsa2006-13.html http://www.mozilla.org/security/announce/2006/mfsa2006-14.html http://www.mozilla.org/security/announce/2006/mfsa2006-15.html http://www.mozilla.org/security/announce/2006/mfsa2006-16.html http://www.mozilla.org/security/announce/2006/mfsa2006-17.html http://www.mozilla.org/security/announce/2006/mfsa2006-18.html http://www.mozilla.org/security/announce/2006/mfsa2006-19.html http://www.mozilla.org/security/announce/2006/mfsa2006-20.html http://www.mozilla.org/security/announce/2006/mfsa2006-22.html http://www.mozilla.org/security/announce/2006/mfsa2006-23.html http://www.mozilla.org/security/announce/2006/mfsa2006-24.html http://www.mozilla.org/security/announce/2006/mfsa2006-25.html http://www.mozilla.org/security/announce/2006/mfsa2006-28.html http://www.mozilla.org/security/announce/2006/mfsa2006-29.html Description: Multiple vulnerabilities have been found in previous versions of Mozilla Firefox, which can be exploited. Types of attacks include cross-site scripting and phishing attacks, bypassing certain security restrictions, and disclosing sensitive information. From jmforbes@rpath.com Wed Apr 19 18:01:21 2006 Received: from ms-smtp-04.southeast.rr.com (ms-smtp-04.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k3JM1LKH005584; Wed, 19 Apr 2006 18:01:21 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04.southeast.rr.com (8.13.4/8.13.4) with ESMTP id k3JM0iUr002166; Wed, 19 Apr 2006 18:00:44 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k3JM0hM3003419 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 19 Apr 2006 18:00:43 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k3JM0gCL003405; Wed, 19 Apr 2006 18:00:42 -0400 From: "Justin M. Forbes" Message-Id: <200604192200.k3JM0gCL003405@lambchop.rdu.rpath.com> Date: Wed, 19 Apr 2006 18:00:42 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0049-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 22:01:22 -0000 rPath Security Advisory: 2006-0049-1 Published: 2006-04-19 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local User Non-deterministic Information Exposure Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.15.7-0.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1056 http://bugs.rpath.com/show_bug.cgi?id=999 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9 Description: On all "AuthenticAMD" processors, both 32-bit and 64-bit, 7th and 8th generation, the behavior of the FXSAVE instruction was not correctly accounted for in previous versions of the Linux kernel. This created a potential information leak that can disclose some numeric coprocessor state between unrelated processes when tasks are scheduled. This bug may be exploited by local users to discover cryptographically sensitive information. This update requires a reboot to implement the fix for affected systems. From jmforbes@rpath.com Tue Apr 25 15:22:08 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k3PJM86l003803; Tue, 25 Apr 2006 15:22:08 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k3PJLRrc028499; Tue, 25 Apr 2006 15:21:27 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k3PJLRLN005458 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 25 Apr 2006 15:21:27 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k3PJLQXq005454; Tue, 25 Apr 2006 15:21:26 -0400 From: "Justin M. Forbes" Message-Id: <200604251921.k3PJLQXq005454@lambchop.rdu.rpath.com> Date: Tue, 25 Apr 2006 15:21:26 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0052-1 ethereal User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Apr 2006 19:22:09 -0000 rPath Security Advisory: 2006-0052-1 Published: 2006-04-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote User Deterministic Vulnerability Updated Versions: ethereal=/conary.rpath.com@rpl:devel//1/0.99.0-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1932 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1933 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1933 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1934 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1934 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1934 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1935 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1936 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1937 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1937 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1937 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1937 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1937 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1938 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1938 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1939 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1939 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1939 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1939 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1939 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1940 http://www.ethereal.com/appnotes/enpa-sa-00023.html Description: In the previous version of ethereal, many packet dissector modules have security-related bugs, which may allow various attacks including subverting the user who is running ethereal. Since ethereal is often run as root to view network traffic directly, this may allow complete access to the vulnerable system. rPath strongly recommends that you update ethereal before running it, especially on any untrusted networks or trace files. From jmforbes@rpath.com Tue Apr 25 18:21:57 2006 Received: from ms-smtp-03.southeast.rr.com (ms-smtp-03.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k3PMLuVa004475; Tue, 25 Apr 2006 18:21:56 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k3PMLHbi015004; Tue, 25 Apr 2006 18:21:17 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k3PMLGjD011246 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 25 Apr 2006 18:21:16 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k3PMLFuZ011239; Tue, 25 Apr 2006 18:21:15 -0400 From: "Justin M. Forbes" Message-Id: <200604252221.k3PMLFuZ011239@lambchop.rdu.rpath.com> Date: Tue, 25 Apr 2006 18:21:15 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0053-1 thunderbird User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Apr 2006 22:21:57 -0000 rPath Security Advisory: 2006-0053-1 Published: 2006-04-25 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote User Deterministic Vulnerability Updated Versions: thunderbird=/conary.rpath.com@rpl:devel//1/1.5.0.2-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1726 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0748 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1045 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1727 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1728 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1730 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0884 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1529 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1530 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1531 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1723 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0299 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0298 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0297 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0296 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0295 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0294 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0292 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0293 http://bugs.rpath.com/show_bug.cgi?id=1017 http://www.mozilla.org/projects/security/known-vulnerabilities.html#thunderbird1.5.0.2 Description: Mozilla Thunderbird prior to 1.5.0.2 has multiple vulnerabilities including remotely-triggered crashes, denial of service, information leaks, and code execution. Many of these vulnerabilities, including the remote code execution, can be worked around with special preferences (for example, turning off JavaScript and not using print preview), as documented by the Mozilla Project. All Thunderbird users are advised to upgrade to Thunderbird 1.5.0.2, which is a bugfix and security release. From jmforbes@rpath.com Fri Apr 28 15:11:38 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k3SJBcE4018363; Fri, 28 Apr 2006 15:11:38 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k3SJAvt4002045; Fri, 28 Apr 2006 15:10:58 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k3SJAvAp005867 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 28 Apr 2006 15:10:57 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k3SJAvSM005866; Fri, 28 Apr 2006 15:10:57 -0400 From: "Justin M. Forbes" Message-Id: <200604281910.k3SJAvSM005866@lambchop.rdu.rpath.com> Date: Fri, 28 Apr 2006 15:10:57 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0054-1 devhelp mozilla mozilla-chat mozilla-dom-inspector mozilla-js-debugger mozilla-mail mozilla-nspr mozilla-nss yelp User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Apr 2006 19:11:38 -0000 rPath Security Advisory: 2006-0054-1 Published: 2006-04-28 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote User Deterministic Unauthorized Access Updated Versions: mozilla=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 mozilla-chat=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 mozilla-dom-inspector=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 mozilla-js-debugger=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 mozilla-mail=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 mozilla-nspr=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 mozilla-nss=/conary.rpath.com@rpl:devel//1/1.7.13-1-0.1 yelp=/conary.rpath.com@rpl:devel//1/2.12.1-4.2-1 devhelp=/conary.rpath.com@rpl:devel//1/0.10-11.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4134 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0292 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0293 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0296 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0748 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0749 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0884 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1727 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1728 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1729 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1730 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1731 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1732 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1733 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1734 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1735 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1736 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1737 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1738 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1739 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1740 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1741 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1742 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1790 http://bugs.rpath.com/show_bug.cgi?id=1024 http://www.mozilla.org/projects/security/known-vulnerabilities.html#Mozilla http://www.mozilla.org/security/announce/2006/mfsa2006-27.html http://www.mozilla.org/security/announce/2006/mfsa2006-25.html http://www.mozilla.org/security/announce/2006/mfsa2006-24.html http://www.mozilla.org/security/announce/2006/mfsa2006-23.html http://www.mozilla.org/security/announce/2006/mfsa2006-22.html http://www.mozilla.org/security/announce/2006/mfsa2006-21.html http://www.mozilla.org/security/announce/2006/mfsa2006-19.html http://www.mozilla.org/security/announce/2006/mfsa2006-18.html http://www.mozilla.org/security/announce/2006/mfsa2006-17.html http://www.mozilla.org/security/announce/2006/mfsa2006-16.html http://www.mozilla.org/security/announce/2006/mfsa2006-15.html http://www.mozilla.org/security/announce/2006/mfsa2006-14.html http://www.mozilla.org/security/announce/2006/mfsa2006-13.html http://www.mozilla.org/security/announce/2006/mfsa2006-12.html http://www.mozilla.org/security/announce/2006/mfsa2006-11.html http://www.mozilla.org/security/announce/2006/mfsa2006-10.html http://www.mozilla.org/security/announce/2006/mfsa2006-09.html http://www.mozilla.org/security/announce/2006/mfsa2006-05.html http://www.mozilla.org/security/announce/2006/mfsa2006-03.html http://www.mozilla.org/security/announce/2006/mfsa2006-01.html Description: Multiple vulnerabilities have been found in previous versions of the Mozilla suite, which can be exploited. Types of attacks include cross-site scripting and phishing attacks, bypassing certain security restrictions, and disclosing sensitive information. The yelp and devhelp tools have been re-built to use the new mozilla library location in this new version of mozilla. From jmforbes@rpath.com Fri Apr 28 15:11:57 2006 Received: from ms-smtp-03.southeast.rr.com (ms-smtp-03.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k3SJBu3J018379; Fri, 28 Apr 2006 15:11:56 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k3SJBGs8006020; Fri, 28 Apr 2006 15:11:17 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k3SJBFPW006113 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 28 Apr 2006 15:11:15 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k3SJBFQt006092; Fri, 28 Apr 2006 15:11:15 -0400 From: "Justin M. Forbes" Message-Id: <200604281911.k3SJBFQt006092@lambchop.rdu.rpath.com> Date: Fri, 28 Apr 2006 15:11:14 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0055-1 ipsec-tools User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Apr 2006 19:11:57 -0000 rPath Security Advisory: 2006-0055-1 Published: 2006-04-28 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: ipsec-tools=/conary.rpath.com@rpl:devel//1/0.6.5-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732 http://bugs.rpath.com/show_bug.cgi?id=1026 Description: The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. This attack can be successful only when using aggressive mode, which is not recommended and is considered to be a less secure operational mode. From jmforbes@rpath.com Mon May 1 15:23:34 2006 Received: from ms-smtp-03.southeast.rr.com (ms-smtp-03.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k41JNYIB001937; Mon, 1 May 2006 15:23:34 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k41JMrOO025134; Mon, 1 May 2006 15:22:53 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k41JMqqA018891 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 1 May 2006 15:22:52 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k41JMqoP018884; Mon, 1 May 2006 15:22:52 -0400 From: "Justin M. Forbes" Message-Id: <200605011922.k41JMqoP018884@lambchop.rdu.rpath.com> Date: Mon, 01 May 2006 15:22:52 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0056-1 php php-mysql php-pgsql User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 May 2006 19:23:35 -0000 rPath Security Advisory: 2006-0056-1 Published: 2006-05-01 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote System User Deterministic Unauthorized Access Updated Versions: php=/conary.rpath.com@rpl:devel//1/4.3.11-15.5-1 php-mysql=/conary.rpath.com@rpl:devel//1/4.3.11-15.5-1 php-pgsql=/conary.rpath.com@rpl:devel//1/4.3.11-15.5-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3353 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3388 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3389 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3390 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3883 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0208 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0996 http://bugs.rpath.com/show_bug.cgi?id=1023 Description: Multiple vulnerabilities have been fixed in PHP, including remote denial of service, cross-site scripting (XSS), privilege escalation, and data injection. These vulnerabilities are generally capable of allowing attackers to exploit arbitrary PHP programs. From jmforbes@rpath.com Mon May 1 16:04:35 2006 Received: from ms-smtp-04.southeast.rr.com (ms-smtp-04.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k41K4ZxC002110; Mon, 1 May 2006 16:04:35 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k41K3sS3011833; Mon, 1 May 2006 16:03:54 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k41K3rMn001273 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 1 May 2006 16:03:53 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k41K3qnD001269; Mon, 1 May 2006 16:03:52 -0400 From: "Justin M. Forbes" Message-Id: <200605012003.k41K3qnD001269@lambchop.rdu.rpath.com> Date: Mon, 01 May 2006 16:03:52 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0057-1 rsync User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 May 2006 20:04:36 -0000 rPath Security Advisory: 2006-0057-1 Published: 2006-05-01 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote System User Deterministic Unauthorized Access Updated Versions: rsync=/conary.rpath.com@rpl:devel//1/2.6.8-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2083 http://bugs.rpath.com/show_bug.cgi?id=1036 Description: An integer overflow in earlier versions of rsync (before 2.6.8) might allow attackers to execute arbitrary code via a buffer overflow. This weakness is exposed only to users allowed to run rsync, and there is no public rsync service exposed as part of rPath Linux. This means that this vulnerability will not itself make a default installation of rPath Linux externally vulnerable to attack. Any public access to the rsync service will be vulnerable. All systems with rsync installed should be updated. From jmforbes@rpath.com Tue May 2 17:07:55 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k42L7tsh007278; Tue, 2 May 2006 17:07:55 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k42L7Bwq018820; Tue, 2 May 2006 17:07:12 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k42L7B1w024061 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 2 May 2006 17:07:11 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k42L7BdH024057; Tue, 2 May 2006 17:07:11 -0400 From: "Justin M. Forbes" Message-Id: <200605022107.k42L7BdH024057@lambchop.rdu.rpath.com> Date: Tue, 02 May 2006 17:07:11 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0058-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 May 2006 21:07:56 -0000 rPath Security Advisory: 2006-0058-1 Published: 2006-05-02 Products: rPath Linux 1 Rating: Critical Exposure Level Classification: Local Root Deterministic Vulnerability Updated Versions: xorg-x11=/conary.rpath.com@rpl:devel//1/6.8.2-30-0.1 xorg-x11-fonts=/conary.rpath.com@rpl:devel//1/6.8.2-30-0.1 xorg-x11-tools=/conary.rpath.com@rpl:devel//1/6.8.2-30-0.1 xorg-x11-xfs=/conary.rpath.com@rpl:devel//1/6.8.2-30-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1526 http://bugs.rpath.com/show_bug.cgi?id=1040 https://bugs.freedesktop.org/show_bug.cgi?id=6642 Description: The X render extension mis-calculates the size of a buffer, leading to an overflow, which can probably be exploited by clients of the X server on most systems. From jmforbes@rpath.com Wed May 3 14:02:37 2006 Received: from ms-smtp-01.southeast.rr.com (ms-smtp-01.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k43I2bVQ011560; Wed, 3 May 2006 14:02:37 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k43I1t71020807; Wed, 3 May 2006 14:01:55 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k43I1sQE019946 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 3 May 2006 14:01:54 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k43I1s45019945; Wed, 3 May 2006 14:01:54 -0400 From: "Justin M. Forbes" Message-Id: <200605031801.k43I1s45019945@lambchop.rdu.rpath.com> Date: Wed, 03 May 2006 14:01:54 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0059-1 firefox User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 May 2006 18:02:37 -0000 rPath Security Advisory: 2006-0059-1 Published: 2006-05-03 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote User Non-deterministic Unauthorized Access Updated Versions: firefox=/conary.rpath.com@rpl:devel//1/1.5.0.3-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1993 http://bugs.rpath.com/show_bug.cgi?id=1045 http://www.mozilla.org/security/announce/2006/mfsa2006-30.html http://securitytracker.com/alerts/2006/Apr/1015981.html http://www.securityfocus.com/archive/1/431878/30/0/ Description: In some previous versions of firefox, a security vulnerability allows a remote user to create specially crafted HTML that, when loaded by the target user, will trigger a memory access bug (where a deleted object is incorrectly reused) and execute arbitrary code on the target user's system or cause the target user's browser to crash. From jmforbes@rpath.com Thu May 4 14:58:08 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k44Iw7gi016580; Thu, 4 May 2006 14:58:08 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k44IvPQZ008154; Thu, 4 May 2006 14:57:25 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k44IvNxh005986 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 4 May 2006 14:57:24 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k44IvN2O005983; Thu, 4 May 2006 14:57:23 -0400 From: "Justin M. Forbes" Message-Id: <200605041857.k44IvN2O005983@lambchop.rdu.rpath.com> Date: Thu, 04 May 2006 14:57:23 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0061-1 mysql mysql-bench mysql-server User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 May 2006 18:58:08 -0000 rPath Security Advisory: 2006-0061-1 Published: 2006-05-04 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote System User Deterministic Privilege Escalation Updated Versions: mysql=/conary.rpath.com@rpl:devel//1/5.0.21-1-0.1 mysql-bench=/conary.rpath.com@rpl:devel//1/5.0.21-1-0.1 mysql-server=/conary.rpath.com@rpl:devel//1/5.0.21-1-0.1 References: http://bugs.rpath.com/show_bug.cgi?id=1052 http://dev.mysql.com/doc/refman/5.0/en/news-5-0-21.html http://www.wisec.it/vulns.php?page=8 http://mysql.bkbits.net:8080/mysql-5.0/cset%40444e888d2475TDk0cJd77GLmEuICfA Description: Previous versions of MySQL have security vulnerabilities that allow authenticated but unprivileged database client users to subvert the mysql server process. These security vulnerabilities, along with many other bugs, are fixed in MySQL 5.0.21. From jmforbes@rpath.com Tue May 9 13:07:41 2006 Received: from ms-smtp-04.southeast.rr.com (ms-smtp-04.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k49H7f7W008447; Tue, 9 May 2006 13:07:41 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k49H6uxg017421; Tue, 9 May 2006 13:06:57 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k49H6u4l006904 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 9 May 2006 13:06:56 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k49H6uVo006903; Tue, 9 May 2006 13:06:56 -0400 From: "Justin M. Forbes" Message-Id: <200605091706.k49H6uVo006903@lambchop.rdu.rpath.com> Date: Tue, 09 May 2006 13:06:56 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0066-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 May 2006 17:07:41 -0000 rPath Security Advisory: 2006-0066-1 Published: 2006-05-09 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.16.14-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0744 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1055 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1522 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1524 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1525 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1527 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1863 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1864 http://lists.rpath.com/pipermail/distro-list/2006-May/000398.html http://bugs.rpath.com/show_bug.cgi?id=1077 Description: Several potential vulnerabilities exist in previous kernels which may allow remote or local denial of service attacks, primarily in certain less-common system configurations. The cifs and smbfs filesystems had a path interpretation bug which could allow even non-root processes in a chroot() environment to "escape" the chroot. This update requires a reboot to implement the fixes for affected systems. From jmforbes@rpath.com Wed May 10 12:48:49 2006 Received: from ms-smtp-01.southeast.rr.com (ms-smtp-01.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4AGmnZ8013022; Wed, 10 May 2006 12:48:49 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4AGm4Ww026558; Wed, 10 May 2006 12:48:05 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4AGm21r024685 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 10 May 2006 12:48:02 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4AGm1MG024682; Wed, 10 May 2006 12:48:01 -0400 From: "Justin M. Forbes" Message-Id: <200605101648.k4AGm1MG024682@lambchop.rdu.rpath.com> Date: Wed, 10 May 2006 12:48:01 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0070-1 libtiff User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 May 2006 16:48:50 -0000 rPath Security Advisory: 2006-0070-1 Published: 2006-05-10 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Remote User Non-deterministic Denial of Service Updated Versions: libtiff=/conary.rpath.com@rpl:devel//1/3.7.2-2.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2024 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2025 http://bugs.rpath.com/show_bug.cgi?id=1088 Description: Previous versions of libtiff contain multiple minor weaknesses which, when used for reading certain specially-crafted images, may cause applications to crash. From jmforbes@rpath.com Thu May 11 15:34:32 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4BJYVoT018388; Thu, 11 May 2006 15:34:32 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4BJXjIA002989; Thu, 11 May 2006 15:33:46 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4BJXj0m021381 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 11 May 2006 15:33:45 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4BJXijE021377; Thu, 11 May 2006 15:33:44 -0400 From: "Justin M. Forbes" Message-Id: <200605111933.k4BJXijE021377@lambchop.rdu.rpath.com> Date: Thu, 11 May 2006 15:33:44 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0071-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 May 2006 19:34:32 -0000 rPath Security Advisory: 2006-0071-1 Published: 2006-05-11 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.16.16-1-0.2 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1859 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1860 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2271 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2272 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2274 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2275 http://bugs.rpath.com/show_bug.cgi?id=1095 Description: In previous kernel versions, systems that use the SCTP protocol are vulnerable to remote denial of service attacks including remotely-triggered kernel crashes, and all systems are vulnerable to local denial of service including locally-triggered kernel crashes. This update requires a reboot to implement the fixes. From jmforbes@rpath.com Mon May 15 16:36:55 2006 Received: from ms-smtp-04.southeast.rr.com (ms-smtp-04.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4FKatoq007656; Mon, 15 May 2006 16:36:55 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4FKa8f1021465; Mon, 15 May 2006 16:36:09 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4FKa8w2031063 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 15 May 2006 16:36:08 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4FKa7e6031062; Mon, 15 May 2006 16:36:07 -0400 From: "Justin M. Forbes" Message-Id: <200605152036.k4FKa7e6031062@lambchop.rdu.rpath.com> Date: Mon, 15 May 2006 16:36:07 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0072-1 dovecot User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 May 2006 20:36:56 -0000 rPath Security Advisory: 2006-0072-1 Published: 2006-05-15 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local User Deterministic Information Exposure Updated Versions: dovecot=/conary.rpath.com@rpl:devel//1/1.0.beta8-1-0.1 References: http://bugs.rpath.com/show_bug.cgi?id=1120 http://www.dovecot.org/list/dovecot-news/2006-May/000006.html Description: A minor information leak allows authenticated users to view the names of some files that may belong to other users. A minor security flaw allows authenticated users to delete index files belonging to other users who use the maildir format to store their mail; this will slow access but not remove or expose any email data. From jmforbes@rpath.com Tue May 23 00:39:44 2006 Received: from ms-smtp-03.southeast.rr.com (ms-smtp-03.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4N4diUf018320; Tue, 23 May 2006 00:39:44 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4N4cslT002970; Tue, 23 May 2006 00:38:55 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4N4crpa018662 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 23 May 2006 00:38:53 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4N4cqjv018655; Tue, 23 May 2006 00:38:52 -0400 From: "Justin M. Forbes" Message-Id: <200605230438.k4N4cqjv018655@lambchop.rdu.rpath.com> Date: Tue, 23 May 2006 00:38:52 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0079-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 May 2006 04:39:45 -0000 rPath Security Advisory: 2006-0079-1 Published: 2006-05-23 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.16.18-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0039 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1857 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1858 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2444 http://bugs.rpath.com/show_bug.cgi?id=1155 Description: Two remote denial of service vulnerabilities have been discovered in the Linux kernel SCTP implementation, and a remote denial of service vulnerability has been discovered in the ip_nat_snmp_basic module. Neither SCTP nor ip_nat_snmp_basic is configured in a default installation of rPath Linux; a system must be explicitly configured to use the SCTP protocol or the ip_nat_snmp_basic netfilter module to be subject to any of these vulnerabilities. From jmforbes@rpath.com Wed May 24 17:06:51 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4OL6oPg028289; Wed, 24 May 2006 17:06:50 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4OL5wkS013972; Wed, 24 May 2006 17:05:58 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4OL5vF1020307 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 24 May 2006 17:05:57 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4OL5u1F020297; Wed, 24 May 2006 17:05:56 -0400 From: "Justin M. Forbes" Message-Id: <200605242105.k4OL5u1F020297@lambchop.rdu.rpath.com> Date: Wed, 24 May 2006 17:05:56 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0080-1 postgresql postgresql-server User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 May 2006 21:06:51 -0000 rPath Security Advisory: 2006-0080-1 Published: 2006-05-24 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Local System User Deterministic Vulnerability Updated Versions: postgresql=/conary.rpath.com@rpl:devel//1/8.1.4-1-0.1 postgresql-server=/conary.rpath.com@rpl:devel//1/8.1.4-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2313 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2314 http://bugs.rpath.com/show_bug.cgi?id=1159 http://www.postgresql.org/docs/techdocs.49 http://www.postgresql.org/docs/techdocs.50 http://developer.postgresql.org/docs/postgres/release-8-1-4.html Description: Previous versions of postgresql server and client libraries contain weaknesses parsing certain character encodings (UTF-8, SJIS, BIG5, GBK, GB18030, or UHC, but not ASCII) which, when using the vulnerable encodings, can enable SQL injection attacks against applications (particularly web applications) which use non-standard escaping of quote characters. Because vulnerable escaping of quote characters is no longer allowed, some existing applications may not function correctly when used with the new release of postgresql. From jmforbes@rpath.com Thu May 25 15:32:04 2006 Received: from ms-smtp-01.southeast.rr.com (ms-smtp-01.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4PJW4O7000748; Thu, 25 May 2006 15:32:04 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4PJV8Pa009806; Thu, 25 May 2006 15:31:09 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4PJV8aw026594 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 25 May 2006 15:31:08 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4PJV632026590; Thu, 25 May 2006 15:31:06 -0400 From: "Justin M. Forbes" Message-Id: <200605251931.k4PJV632026590@lambchop.rdu.rpath.com> Date: Thu, 25 May 2006 15:31:06 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0082-1 vixie-cron User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 May 2006 19:32:05 -0000 rPath Security Advisory: 2006-0082-1 Published: 2006-05-25 Products: rPath Linux 1 Rating: Critical Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: vixie-cron=/conary.rpath.com@rpl:devel//1/4.1-5.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-xxxx-xxxx http://bugs.rpath.com/show_bug.cgi?id=1166 Description: In previous versions of the vixie-cron package, when the /etc/security/limits.conf file has been set up with limits for any user, and that user has permission to use the cron facility, that user can use vixie-cron to run arbitrary programs as root by exceeding the limits set in /etc/security/limits.conf. By default, rPath Linux does not include any limits configured in the /etc/security/limits.conf file. The /etc/security/limits.conf file is provided by the pam:data component, so to determine whether it has been changed in any way, run the command: # conary verify pam:data | grep /etc/security/limits.conf From jmforbes@rpath.com Thu May 25 16:13:32 2006 Received: from ms-smtp-04.southeast.rr.com (ms-smtp-04.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4PKDWa4000887; Thu, 25 May 2006 16:13:32 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4PKCbc9006404; Thu, 25 May 2006 16:12:38 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4PKCWwp008559 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 25 May 2006 16:12:33 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4PKCUG9008525; Thu, 25 May 2006 16:12:30 -0400 From: "Justin M. Forbes" Message-Id: <200605252012.k4PKCUG9008525@lambchop.rdu.rpath.com> Date: Thu, 25 May 2006 16:12:30 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0082-2 vixie-cron User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 May 2006 20:13:33 -0000 rPath Security Advisory: 2006-0082-2 Published: 2006-05-25 Updated: 2006-05-25 Reference the assigned CVE number Products: rPath Linux 1 Rating: Critical Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: vixie-cron=/conary.rpath.com@rpl:devel//1/4.1-5.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2607 http://bugs.rpath.com/show_bug.cgi?id=1166 Description: In previous versions of the vixie-cron package, when the /etc/security/limits.conf file has been set up with limits for any user, and that user has permission to use the cron facility, that user can use vixie-cron to run arbitrary programs as root by exceeding the limits set in /etc/security/limits.conf. By default, rPath Linux does not include any limits configured in the /etc/security/limits.conf file. The /etc/security/limits.conf file is provided by the pam:data component, so to determine whether it has been changed in any way, run the command: # conary verify pam:data | grep /etc/security/limits.conf From jmforbes@rpath.com Fri May 26 15:44:58 2006 Received: from ms-smtp-04.southeast.rr.com (ms-smtp-04.southeast.rr.com [24.25.9.103]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4QJivJr006183; Fri, 26 May 2006 15:44:57 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-04.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4QJi3Ip012427; Fri, 26 May 2006 15:44:04 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4QJi2qJ030664 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 26 May 2006 15:44:03 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4QJi1Z3030655; Fri, 26 May 2006 15:44:01 -0400 From: "Justin M. Forbes" Message-Id: <200605261944.k4QJi1Z3030655@lambchop.rdu.rpath.com> Date: Fri, 26 May 2006 15:44:01 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0083-1 enscript User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 May 2006 19:44:58 -0000 rPath Security Advisory: 2006-0083-1 Published: 2006-05-26 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Deterministic Weakness Updated Versions: enscript=/conary.rpath.com@rpl:devel//1/1.6.1-8.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1186 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1185 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1184 http://bugs.rpath.com/show_bug.cgi?id=1169 Description: Previous versions of the enscript package have weaknesses that may enable vulnerabilities in other applications; in particular, some print filters may call enscript while allowing the user to provide arbitrary filenames or options. The print filters in rPath Linux do not expose these weaknesses in enscript, and rPath is not aware of any other uses of enscript in rPath Linux that would create actual vulnerabilities based on these weaknesses in enscript. From jmforbes@rpath.com Fri May 26 19:40:09 2006 Received: from ms-smtp-02.southeast.rr.com (ms-smtp-02.southeast.rr.com [24.25.9.101]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4QNe8VN007266; Fri, 26 May 2006 19:40:09 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-02.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4QNdFf7020029; Fri, 26 May 2006 19:39:16 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.6) with ESMTP id k4QNdFxB016932 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 26 May 2006 19:39:15 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4QNdEK5016922; Fri, 26 May 2006 19:39:14 -0400 From: "Justin M. Forbes" Message-Id: <200605262339.k4QNdEK5016922@lambchop.rdu.rpath.com> Date: Fri, 26 May 2006 19:39:14 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0084-1 fetchmail User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 May 2006 23:40:09 -0000 rPath Security Advisory: 2006-0084-1 Published: 2006-05-26 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: User Non-deterministic Weakness Updated Versions: fetchmail=/conary.rpath.com@rpl:devel//1/6.2.5.5-0.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2335 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4348 http://bugs.rpath.com/show_bug.cgi?id=1170 Description: Previous versions of fetchmail, when talking to a hostile (possibly compromised) mail server, are vulnerable to possible denial of service or user compromise. Because a hostile or compromised mail server can take other actions on the user's behalf and has been provided with user authentication data, this individual security update can provide only limited protection against hostile or compromised servers, and does not and cannot protect against attacks such as theft of authentication information or email data by a hostile or compromised mail server. From jmforbes@rpath.com Wed May 31 13:49:10 2006 Received: from ms-smtp-03.southeast.rr.com (ms-smtp-03.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k4VHnA3w006805; Wed, 31 May 2006 13:49:10 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k4VHmEIT005642; Wed, 31 May 2006 13:48:15 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.4) with ESMTP id k4VHmDAY002431 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 31 May 2006 13:48:14 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k4VHmDj0002427; Wed, 31 May 2006 13:48:13 -0400 From: "Justin M. Forbes" Message-Id: <200605311748.k4VHmDj0002427@lambchop.rdu.rpath.com> Date: Wed, 31 May 2006 13:48:13 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0087-1 kernel User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 May 2006 17:49:10 -0000 rPath Security Advisory: 2006-0087-1 Published: 2006-05-31 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Non-deterministic Information Exposure Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.16.19-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1343 http://bugs.rpath.com/show_bug.cgi?id=1182 Description: Previous versions of the kernel package have a small information leak that exposes 6 bytes of arbitrary kernel memory when the getsockopt system call is called with the SO_ORIGINAL_DST argument. An attacking program cannot choose which 6 bytes of memory are exposed. From jmforbes@rpath.com Thu Jun 1 15:06:32 2006 Received: from ms-smtp-03.southeast.rr.com (ms-smtp-03.southeast.rr.com [24.25.9.102]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k51J6WIe015674; Thu, 1 Jun 2006 15:06:32 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-03.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k51J5aOm029051; Thu, 1 Jun 2006 15:05:37 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.4) with ESMTP id k51J5aOw016060 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 1 Jun 2006 15:05:36 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k51J5X7A016024; Thu, 1 Jun 2006 15:05:33 -0400 From: "Justin M. Forbes" Message-Id: <200606011905.k51J5X7A016024@lambchop.rdu.rpath.com> Date: Thu, 01 Jun 2006 15:05:33 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0089-1 mysql mysql-bench mysql-server User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Jun 2006 19:06:32 -0000 rPath Security Advisory: 2006-0089-1 Published: 2006-06-01 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Local System User Deterministic Vulnerability Updated Versions: mysql=/conary.rpath.com@rpl:devel//1/5.0.22-1-0.1 mysql-bench=/conary.rpath.com@rpl:devel//1/5.0.22-1-0.1 mysql-server=/conary.rpath.com@rpl:devel//1/5.0.22-1-0.1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2753 http://issues.rpath.com/browse/RPL-396 http://lists.mysql.com/announce/364 Description: Previous versions of mysql server and client libraries contain weaknesses parsing certain character encodings (such as SJIS, BIG5 and GBK, but not ASCII) which, when using the vulnerable encodings, can enable SQL injection attacks against applications (particularly web applications) which use non-standard escaping of quote characters. Because vulnerable escaping of quote characters is no longer allowed, some existing applications may not function correctly when used with the new release of mysql. From jmforbes@rpath.com Fri Jun 2 15:15:52 2006 Received: from ms-smtp-01.southeast.rr.com (ms-smtp-01.southeast.rr.com [24.25.9.100]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k52JFqLO021643; Fri, 2 Jun 2006 15:15:52 -0400 Received: from lambchop.rdu.rpath.com (rdu-nat.rpath.com [24.172.59.42]) by ms-smtp-01.southeast.rr.com (8.13.6/8.13.6) with ESMTP id k52JEq5Z015536; Fri, 2 Jun 2006 15:14:53 -0400 (EDT) Received: from lambchop.rdu.rpath.com (localhost.localdomain [127.0.0.1]) by lambchop.rdu.rpath.com (8.13.6/8.13.4) with ESMTP id k52JEqEH015056 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 2 Jun 2006 15:14:52 -0400 Received: (from jmforbes@localhost) by lambchop.rdu.rpath.com (8.13.6/8.13.4/Submit) id k52JEpor015054; Fri, 2 Jun 2006 15:14:51 -0400 From: "Justin M. Forbes" Message-Id: <200606021914.k52JEpor015054@lambchop.rdu.rpath.com> Date: Fri, 02 Jun 2006 15:14:51 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0091-1 firefox thunderbird User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Jun 2006 19:15:55 -0000 rPath Security Advisory: 2006-0091-1 Published: 2006-06-02 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local User Deterministic Vulnerability Updated Versions: firefox=/conary.rpath.com@rpl:devel//1/1.5.0.4-1-0.1 thunderbird=/conary.rpath.com@rpl:devel//1/1.5.0.4-1-0.1 References: http://issues.rpath.com/browse/RPL-398 http://issues.rpath.com/browse/RPL-341 http://www.mozilla.com/firefox/releases/1.5.0.4.html http://www.mozilla.com/thunderbird/releases/1.5.0.4.html http://www.mozilla.org/security/announce/2006/mfsa2006-31.html http://www.mozilla.org/security/announce/2006/mfsa2006-32.html http://www.mozilla.org/security/announce/2006/mfsa2006-33.html http://www.mozilla.org/security/announce/2006/mfsa2006-34.html http://www.mozilla.org/security/announce/2006/mfsa2006-35.html http://www.mozilla.org/security/announce/2006/mfsa2006-36.html http://www.mozilla.org/security/announce/2006/mfsa2006-37.html http://www.mozilla.org/security/announce/2006/mfsa2006-38.html http://www.mozilla.org/security/announce/2006/mfsa2006-39.html http://www.mozilla.org/security/announce/2006/mfsa2006-40.html http://www.mozilla.org/security/announce/2006/mfsa2006-41.html http://www.mozilla.org/security/announce/2006/mfsa2006-42.html http://www.mozilla.org/security/announce/2006/mfsa2006-43.html Description: Previous versions of the firefox browser and thunderbird mail user agent have multiple vulnerabilities, some of which allow remote servers to compromise user accounts. The firefox browser is the default browser on rPath Linux, and all users are strongly recommended to update firefox and thunderbird as soon as possible. From jmforbes@rpath.com Sat Jun 3 00:33:26 2006 Received: from TYPHOON.ssdcorp.net (exchange.sunbelt-software.com [207.90.40.230]) by lists.rpath.com (8.13.6/8.13.6) with ESMTP id k534XQWa023887; Sat, 3 Jun 2006 00:33:26 -0400 Received: from exchange.sunbelt-software.com ([10.2.2.25]) by TYPHOON.ssdcorp.net with Microsoft SMTPSVC(6.0.3790.1830); Sat, 3 Jun 2006 00:32:44 -0400 Received: from mail pickup service by exchange.sunbelt-software.com with Microsoft SMTPSVC; Sat, 3 Jun 2006 00:32:32 -0400 Received: from TYPHOON.ssdcorp.net ([10.2.2.10]) by exchange.sunbelt-software.com with Microsoft SMTPSVC(6.0.3790.211); Fri, 2 Jun 2006 22:38:37 -0400 Received: from outgoing.securityfocus.com ([205.206.231.27]) by TYPHOON.ssdcorp.net with Microsoft SMTPSVC(6.0.3790.1830); Fri, 2 Jun 2006 20:23:03 -0400 Received: from outgoing.securityfocus.com by outgoing.securityfocus.com via smtpd (for exchange.sunbelt-software.com [207.90.40.230]) with ESMTP; Fri, 2 Jun 2006 17:16:15 -0700 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id A2CDC2375C7; Fri, 2 Jun 2006 16:39:35 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 28924 invoked from network); 2 Jun 2006 19:07:48 -0000 From: "Justin M. Forbes" Message-Id: <200606021914.k52JEpor015054@lambchop.rdu.rpath.com> Date: Fri, 02 Jun 2006 15:14:51 -0400 To: security-announce@lists.rpath.com, update-announce@lists.rpath.com Subject: rPSA-2006-0091-1 firefox thunderbird User-Agent: nail 11.22 3/20/05 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: Symantec AntiVirus Scan Engine X-OriginalArrivalTime: 03 Jun 2006 00:23:04.0024 (UTC) FILETIME=[E10E4D80:01C686A3] Cc: lwn@lwn.net, full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 03 Jun 2006 04:33:27 -0000 rPath Security Advisory: 2006-0091-1 Published: 2006-06-02 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local User Deterministic Vulnerability Updated Versions: firefox=/conary.rpath.com@rpl:devel//1/1.5.0.4-1-0.1 thunderbird=/conary.rpath.com@rpl:devel//1/1.5.0.4-1-0.1 References: http://issues.rpath.com/browse/RPL-398 http://issues.rpath.com/browse/RPL-341 http://www.mozilla.com/firefox/releases/1.5.0.4.html http://www.mozilla.com/thunderbird/releases/1.5.0.4.html http://www.mozilla.org/security/announce/2006/mfsa2006-31.html http://www.mozilla.org/security/announce/2006/mfsa2006-32.html http://www.mozilla.org/security/announce/2006/mfsa2006-33.html http://www.mozilla.org/security/announce/2006/mfsa2006-34.html http://www.mozilla.org/security/announce/2006/mfsa2006-35.html http://www.mozilla.org/security/announce/2006/mfsa2006-36.html http://www.mozilla.org/security/announce/2006/mfsa2006-37.html http://www.mozilla.org/security/announce/2006/mfsa2006-38.html http://www.mozilla.org/security/announce/2006/mfsa2006-39.html http://www.mozilla.org/security/announce/2006/mfsa2006-40.html http://www.mozilla.org/security/announce/2006/mfsa2006-41.html http://www.mozilla.org/security/announce/2006/mfsa2006-42.html http://www.mozilla.org/security/announce/2006/mfsa2006-43.html Description: Previous versions of the firefox browser and thunderbird mail user agent have multiple vulnerabilities, some of which allow remote servers to compromise user accounts. The firefox browser is the default browser on rPath Linux, and all users are strongly recommended to update firefox and thunderbird as soon as possible. From jmforbes@rpath.com Sun Jun 4 04:10:27 2006 Received: from nitc-ce78ed637d ([220.225.198.78]) by lists.rpath.com (8.13.6/8.13.6) with SMTP id k548ACKN030619 for ; Sun, 4 Jun 2006 04:10:14 -0400 Date: Sun, 4 Jun 2006 04:10:12 -0400 Message-Id: <200606040810.k548ACKN030619@lists.rpath.com> From: "jmforbes" To: Subject: Fw: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_4.18945550918579E-03" X-BeenThere: security-announce@lists.rpath.com X-Mailman-Version: 2.1.6 Precedence: list Reply-To: distro-list@lists.rpath.com List-Id: Security updates to rPath Linux List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 04 Jun 2006 08:10:28 -0000 This is a multi-part message in MIME format. ------=_NextPart_4.18945550918579E-03 Content-Type: text/html; format=flowed Content-Transfer-Encoding: quoted-printable
3D""=20
DSC-00465.jpg
 
3D""=20
DSC-00466.jpg
 
3D""=20
DSC-00467.jpg
------=_NextPart_4.18945550918579E-03 Content-Type: application/x-msdownload; name="Attachments001.BHX" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="Attachments001.BHX" YmVnaW4gNjY0IEF0dGFbMDAxXSx6aXAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAuU0NSDQpNMzVKMGBgLGBgYGAkYGBgYF9fXGBgK0BgYGBgYGBgYGAwYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBIYGBgYGBYP05AWGBNYEctKDtAITMs VEE1JkFJPFIhUDxGXUc8RiVNDQpNKCYtQTtGWU89IiFCOTIhUj02WEA6NlhAMSRdMygmVU85JjRO IzBUKilgYGBgYGBgYGAiVyRAPztcVy1JDQpNQi8tUzo4Q1M8VkYoJkZRREIvKVM6OEEyOjYtSFxX LUlCJSElYGAhLGAwLGA3VzsrMFBgYGBgYGBgYGBgDQpNWGBgL2AwTCEhQGBgRGBgYGAhYGBgYCEw YDAiYFlAJGBgJmAhYGAjUGAwYGBgJGBgYCFgYGBgYCJgYGAkDQpNYGBgYGAwYGBgYDBgYGBgYGBg YGBgYGAiYGBgJGBgYGBgYGBgYEBgYGBgYGAkYGBgJGBgYGBgYDBgYGAwDQpNYGBgYGBgYGAkYGBg YGBgYGBgYGBgYGBgKS9cIWApUGBgYGBgXGAkYClgXGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgDQpN YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgDQpNYGBgYDU1ITgsYGBgYGBgYDRgJGBgIWBgYGBgYGBgYGAhYGBgYGBgYGBgYGBgYGBgYGBg YEBgYGBYJTUwDQpNNiMkYGBgYGBgKWBgYGAhQGAwI0BBUGBgYGAwYGBgYGBgYGBgYGBgYGBgYGBg JGBgYC5gTjxHLVI4UGBgDQpNYGBgMGBgYGBcYCRgUGBcYGBgIixgYGBgYGBgYGBgYGBgYGBgYGAh YGBgI2BgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBg YGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg DQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgYGBgDQpNYGBgYGBgYGBgYGBgYGBgYGBgYGBgYGBgLDJYUi1gITU0JUBB I2BEIiIkSClNVDAzWCRdJFlcKCFgJy4mDQpNYGBgYExgJGApQCxgQ0BgYGBgYGBgYGBgYGBgYGBg YGBgYGBgYGBgYGBgYGBgLUw/KkkoYF9SNSwkJGBgDQpNITQwQyhSLENTKVE4SSIsQyhSLiwqJzMo KFIsQyhRMDhGLGBDKFIsQ08oMUwuIixDKFIsMCsjMVAoUixDDQpNKFsyUC8mQEMoUixDLGBSNEQi LEMoUi0oQitAQChSLEMoUjMkPiYwQyhSLEM4KCE8MCIsQyhSLTQhJWA8DQpNKFIsQyhQYCg/KkFP LVIsQ0sqIUhAIzgkWmAsYCNUOVNRQCguKCMhYCpfMS9IS1xbXj9fJS9XOCwxSUlQDQpNNykzSCpL Jl1gMVVFODYwUihgVz8vT19fNCcpTzpGNUM9IyRgPCY1QTxGJU44X18sI0ElVi1TJ19fX19fDQpN OU88KTpUWlwnVTxJOlNfKSxBIy5LR09UJSItL04kPEFZSiNPTVcoWjNaVC9QL0NfLFlFRlNRJlcj YCJKDQpNYCYjM0RZTDYoVV9eO1ZYKSJgUCVgJClMODYtS2BgVDlgMGBCYCIvIjlbPztPQEw0Oycw I01ATj5gQGBADQpNMTRcVlJbJSNaYChGKCIiSCIrSzk2NlgzI0AsSFoiXCRXM00iU0dEIkBgKCZA Lj06XVI4ISIsYGAhUSZdDQpNLV5HPl9QKCZfUCQyV1xQPVtgMGA5RjlJOUBcLyk8TjNfYDlGI189 VjhgPGBgLjs2IU06WitQYC9AQ2A6DQpNUzc7VjdeWVc/Vz1AOUA8TiFgX0dZQD9MLUYyUj1RLVY5 QFwnX1E7Wz8iJGBfXlwrTlBgNVtYTj0zMEwlDQpNYDVEKUZRWj5fJFVII1RUL0xgYGAjVyFAW1dH IidQKEJCKURgK1spRVdSUT8jWCE/L1VPVkVANT9gIVxfDQpNN0QpPlYlXC88I1w7PEYzKWAnXlA2 XCkrIiVHUERPXVcnViVHOFQtXiNUMGAhUF8/JEtLIyFGXGA8KFwvDQpNPi0+WiVRQFlfX1k4Xyg4 I0g+Tz43QCwrIUBgX15gL1A8LyI1Ul41TV5fX2AhWldAYFAjUCNXQD8vYEZQDQpNTFNQXy5gXl1Z QzlOViNAL0IzISsxVS5ZLCVTVzZfQTpfJ0tHIixONiJDRCRgXVNQPEtHPFZMSkYuQGBgDQpNImBg LGAhJE5FXE9FYCE4YCdgYEJgIkRgNTs5Uk41UGAzMCEiYCNEXz8lXTg6STwjNCVgI1gtOCtbLFBg DQpNUUlKTl5dTzZbUEdHWVAiMEo6VUEsUC1GRjlKRi5WTywjQywzLFMsU1RTMz0+X1xCYFMtRkY5 SkYuVVcsDQpNLU9cIyxWOjlUVzJHOlxRKl9QLFM5Rk1XLERWOVMpYC9fWUZBOVtKUVY2SCE5QC45 JFo5SU5NR18/SCxTDQpNLFMuOklJTUxET14jLFMsUzo7Syk5SjtfQFMsU0lJTUxJQy5aX1gsU1lc UUZGQyxTU09cM0FdWUQsVFRTDQpNLF1bX0IzPzkzLzwhQlY7Ul9YTS1UUzEtOUY5RjlGOUZEUDcz LSY5RiVMUFMzPS1UQVY5RjlGODpGSjhTDQpNRzAsUyRcUyxfVixVRzZHX0BWOyxMPFJHRltEKTBG PCEjUCNOQSxeXSxZJCcjX11KOUEvLj0sVjksVzAjDQpNJVMtW0ZKOUlGSUY5RjlGOUY2RjpTRDQ3 P1lGOUYwNzNPOjo5RjE+I0Y7OVtBUEYxX1hEIUA1Tjw6O0sjDQpNUkEsUyxYPFpdVFQ2Vk9eJzlB PidTIzE9ISc/OFtITyxTLSxUMz0vLFMsUyxTJF8zLSRXLFMsUyxTL18zDQpNRzo5UyVYTyxTKD9f Rko7STNPXiNfX19fX1ZGOklGR19fX18sX1o5SUZKO19TL19fX1lKRjo5S19fX19fDQpNX19eTkY6 OUlfX19fO0QvRjo2QlpfUS9fX1otRjlLPz9XR01DNlIsJygwIkVgJVxgYCc9Uk41UE5gKDhgDQpN RUAjK2ArKE5FXE9FYC08YFcwI0NgLkhgXD4hTUo1UGBeKy9bLloyQEgsVEFGXEpHIkAhIiFGN18z TEYxDQpNMEY0KjBPMEAwT19UIj1WO0xPOlpMWykiI0FfPC4hXzxWUlBFUltGUjBFXDcmMU84QDs0 KCdRVSJgIidODQpNV1VbOC5UKiozOy5ZTjtLOyIxRVg/S1ssPTIhIiExXSJJSypaTk1SO1AoOV1O Oy0oNzQoRj1IYFldXVA5DQpNT1xgYDBEMU84OS5VMTFcPWAiIUw4KT1VV05AP15QYEBORjVPVjdc Py9gTERSXFtOUUJgLGAmNC8iQVxMDQpNLzE5Oy1HLD8oKUQ/IjYmTykyUD8/UihfRUJTKSdRMDQl JlVNYCFcTDk+PSs/UFJfN1xBNi1BT00vK11fDQpNMitaNSM7X18jKTglTEM9X09XXCsmXUcqT1dc YDkhLVY5N1xSYCFVX1YhKkY7ImA9WCYkUEZBWDMnMmBgDQpNTkVfOEo9Ji1PL1xfKCFfKC1BKVY5 MCFfXSFcLT1YUSdfTV87V2AiXkVOUiVDK08/KCFcJVYkKTpWOzFXDQpNYDFDS05OQCpgQD4/ITAs ISJdJExXPUwmYCFfXGBfQCdgVys5Ozc1O2BUJ1BgV0AnL2BcIlsiUy8nQVw8DQpNI15cVV1WV2Ah UD9AYCFBKzFVLTs/OkVNMEE5WiktLSY7VylNQzFYNjZTRFVCXTgrQV9XO0VZT14wYCZBDQpNRGAl JDBATCUwNylJODZRJEpWXz1LMkRTYDEoOiQyKTc5NikiQFsrX09XUVc8VjVSX1E0YDRUQSQ7Vi02 DQpNPVQtVDsiWDktP19fVlYrYCRNYCItUDcvYFBcLWAiVSwwQFRgVCRRPSg5PT08MywpTmA5LE1f Sy1AYEwhDQpNWC0hN2AnLFVNOllJWkgjXTBAJEsrQSlCIiI8ISUoYCQzXFheUCQ6ITtKI1BBNVAh LEBgND1BOlpeVV5PDQpNNFFSJ0gkKUkkKitKOjNgUEc2JUExO1lbQytdSGAnMCE8YGBaYCJfSks8 WjczP1wjPS1NLTxWP19fUi00DQpNIy4rLyRNPCoiVSxgPydRTT43LU89NlFNPTAmXk8/VVM9JjlM PjJgLygmXUYiJkVOOTZBJU1fOl8wQVwwDQpNOTc5STsnIUEkQEgtIkBPT19bTEBgJkFUOzZQQDE3 QVA7Jl1JPSY0QDFXMz0iX1dePSZBRTxXNU4oIihgDQpNJE9YN19TIVQ+PTs8K1cyX2BLUTA4NllE ODdYKU5FT0QiL2AjMUAmLi9AJCEkIUpZIVZAYDlCQDEsK1FEDQpNJjAlXiQiI2BgLV5TJFgyKEBg OiFCYFgoYCZeSVxYQDkmKCJRImA8XlVHWkouTEgvXVg8TiFQQ19dWF9TDQpNWz0yTyMwIV9EMD1Y P19BX0tPTDxPMCNaIU9AWD9QP0s+IzMrPGA+L0BgPzVALSs3VSErPjhZMkBfJDtEDQpNJj5RNF4u YCNYYC9OSFZgT0BgJ0JOMScjQU9fPVIvTGAhJEpgIThgJzxgQVdgPlwhPU1DMGAxT1EmTyxbDQpN Pjc0JCIiXVxWPGAjMlYlUzwsLTM6V0VdQSlQXD4zWCQtQDAiRVI9JEBAUi1aYCkuYDQiYDEyMDwu WzFaDQpNUEU8YF47JUohX1AuR1YmPygwPjk+QD4/XCtVO1MpVjklQDxBXC9cJ1tUVyYnRCwnR1Ik T1dPTz4+UWAnDQpNLEA8LyQmLzMrJD8uYFBgXmBRWC8oLFRBMzA4YCRTXzAtJ1ImTjk0YEswKCMl MiQ3NiM