CVE Reference Map for Source MLIST

Source MLIST
Description generic reference form for miscellaneous mailing lists
Notes This is used for identifying miscellaneous mailing lists.

This reference map lists the various references for MLIST and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2012-05-16.

Note that the list of references may not be complete.

MLIST:20040507 Bug in IO bitmap handling? Probably exploitable (2.6.5) CVE-2004-2536
MLIST:20040507 Re: Bug in IO bitmap handling? Probably exploitable (2.6.5) CVE-2004-2536
MLIST:20041026 [Mimedefang] SECURITY: Patch for MIME-tools CVE-2004-1098
MLIST:20050422 Chora 1.2.3 (final) CVE-2005-1317
MLIST:20070902 Oops in pwc v4l driver CVE-2007-5093
MLIST:20070903 Re: Oops in pwc v4l driver CVE-2007-5093
MLIST:20071021 [Xen-ia64-devel] PATCH: check r2 value for VTi mov rr[r3]=r2 CVE-2007-6207
MLIST:VIM 20070130 Source VERIFY: nsGalPHP RFI CVE-2007-0573
MLIST:[0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T CVE-2004-1627
MLIST:[ANNOUNCE] 20070907 balsa-2.3.20 released CVE-2007-5007
MLIST:[AWFFULL] 20070123 Regarding the fixes in 3.7.2 CVE-2007-0510
MLIST:[AWFFULL] 20070505 awffull 3.7.1 bug with search string keywords CVE-2007-3299
MLIST:[AWFFULL] 20070507 Announcing AWFFull v3.7.4 CVE-2007-3299
MLIST:[Acl-Devel] 20050205 [FIX] Long-standing xattr sharing bug CVE-2005-2801
MLIST:[Announce] 20080326 GnuPG 1.4.9 released CVE-2008-1530
MLIST:[Announce] 20090723 ANNOUNCE: strongswan-2.8.11 and strongswan-4.2.17 released CVE-2009-2661
MLIST:[Announcements] 20071206 MySQL 5.0.51 has been released CVE-2007-5969
MLIST:[Backup-manager-commits] 20070102 r528 - in backup-manager/trunk: . doc lib man po CVE-2007-2766
MLIST:[BackupPC-devel] 20110118 XSS's in Browse.pm CVE-2011-3361
MLIST:[Bug-tar] 20060220 tar 1.15.90 released CVE-2006-0300
MLIST:[Buildbot-devel] 20090812 [SECURITY ALERT] Cross-site scripting vulnerability CVE-2009-2959
MLIST:[Buildbot-devel] 20090813 Re: Cross-site scripting vulnerability CVE-2009-2967
MLIST:[Cache-News] 20040303 Security Alert CVE-2004-2683
MLIST:[Cache-News] 20040305 Security Alert Correction CVE-2004-2683
MLIST:[Cache-News] 20040309 Security Alert - %template CVE-2004-2684
MLIST:[Cache-News] 20040310 Updated Security Alert - %template CVE-2004-2684
MLIST:[Cache-News] 20070718 Security Alert: User passed parameter values via CSP CVE-2007-4427
MLIST:[Clamav-announce] 20070530 announcing ClamAV 0.90.3 CVE-2007-3023 CVE-2007-3024 CVE-2007-3025 CVE-2007-3122 CVE-2007-3123
MLIST:[Cyrus-CVS] 20090902 src/sieve by brong CVE-2009-2632
MLIST:[Dailydave] 20040323 dtlogin advisory CVE-2004-0368
MLIST:[Dailydave] 20040514 Mozilla bug might even get fixed! CVE-2004-0478
MLIST:[Dailydave] 20050704 !!! pre-authenticated remote code inclusion vulnerability inside phppgadmin !!! CVE-2005-2256
MLIST:[Dailydave] 20050714 SPIKE actually scores. CVE-2005-1218
MLIST:[Dailydave] 20051129 Webmin miniserv.pl format string vulnerability CVE-2005-3912
MLIST:[Dailydave] 20060105 WMF goes away :< CVE-2006-0106
MLIST:[Dailydave] 20060203 ProtoVer vs Lotus Domino Server 7.0 CVE-2006-0580
MLIST:[Dailydave] 20060207 ProFTPD bug CVE-2005-4816
MLIST:[Dailydave] 20060208 Sun Directory Server 5.2 fun CVE-2006-0647
MLIST:[Dailydave] 20060210 ??? Sun Directory Server 5.2 fun ??? CVE-2006-0647
MLIST:[Dailydave] 20060211 IBM Tivoli Directory Server 0day CVE-2006-0717
MLIST:[Dailydave] 20060213 eddy 0day CVE-2006-0710
MLIST:[Dailydave] 20060214 MailSite (WorldMail) fun CVE-2006-0790
MLIST:[Dailydave] 20060221 word dos 4fun CVE-2006-0935
MLIST:[Dailydave] 20060226 fun with FreeBSD kernel CVE-2006-0900
MLIST:[Dailydave] 20060430 Non disclosure from security vendors: Truecrypt exemple CVE-2006-2183
MLIST:[Dailydave] 20060721 GnuPG 1.4.4 fun CVE-2006-3746
MLIST:[Dailydave] 20061208 Madwifi SIOCSIWSCAN vulnerability (CVE-2006-6332) CVE-2006-6332
MLIST:[Dailydave] 20080101 0day RealPlayer exploit demo CVE-2008-0098
MLIST:[Darklab] 20060131 SAP security/auditing CVE-2005-4815
MLIST:[Darklab] 20060905 SAP security/auditing CVE-2005-4815
MLIST:[Darklab] 20060907 Re: SAP security/auditing CVE-2005-4815
MLIST:[Darklab] 20060908 Re: SAP security/auditing CVE-2005-4815
MLIST:[Dbmail-dev] 20071216 [DBMail 0000662]: Ability to bypass authentication. CVE-2007-6714
MLIST:[Dbmail] 20030725 WARNING SECURITY FLAW IN IMAPSERVER CVE-2003-1523
MLIST:[Debian-audit] 20041229 More temporary filenames/dirs related bugs CVE-2004-2605
MLIST:[Dovecot-news] 20061119 Security hole #2: Off-by-one buffer overflow with mmap_disable=yes CVE-2006-5973
MLIST:[Dovecot-news] 20071221 Security hole #4: Specific LDAP + auth cache configuration may mix up user logins CVE-2007-6598
MLIST:[Dovecot-news] 20071229 v1.0.10 released CVE-2007-6598
MLIST:[Dovecot-news] 20080309 Security hole #6: Some passdbs allowed users to log in without a valid password CVE-2008-1218
MLIST:[Dovecot-news] 20080309 v1.0.13 and v1.1.rc3 released CVE-2008-1218
MLIST:[Dovecot-news] 20080504 v1.0.11 released CVE-2008-1199
MLIST:[Dovecot-news] 20081005 v1.1.4 released CVE-2008-4577 CVE-2008-4578
MLIST:[Dovecot-news] 20081030 v1.1.6 released CVE-2008-4907
MLIST:[Dovecot-news] 20090914 Security holes in CMU Sieve plugin CVE-2009-2632 CVE-2009-3235
MLIST:[Dovecot-news] 20091119 1.0.rc15 released CVE-2006-5973
MLIST:[Dovecot] 20050303 hanging imap... and users getting other users' emails! CVE-2007-5794
MLIST:[Dovecot] 20050409 Authentication and the wrong mailbox? CVE-2007-5794
MLIST:[Dovecot] 20060208 1.0beta3 released CVE-2006-0730
MLIST:[Dovecot] 20081117 ManageSieve SECURITY hole: virtual users can edit scripts of other virtual users (all versions) CVE-2008-5301
MLIST:[Ekiga-list] 20070213 Ekiga 2.0.5 available CVE-2007-1006
MLIST:[Ethereal-dev] 20040416 Possibly incorrect CVE entry CAN-2004-0367 CVE-2004-0367
MLIST:[Ethereal-users] 20040503 Re: HotSIP sip-messages crasching ethereal CVE-2004-0504
MLIST:[Evolution-hackers] 20070619 Evolution 2.11.4 , Evolution-Data-Server 1.11.4 , GtkHTML 3.15.4 and Evolution-Exchange 2.11.4 released CVE-2007-3257
MLIST:[Exim] 20021204 Minor security problem in both Exim 3 and 4 CVE-2002-1381
MLIST:[Exim] 20030814 Minor security bug CVE-2003-0743
MLIST:[Exim] 20030815 Minor security bug CVE-2003-0743
MLIST:[Forensics] 20050511 DCO discovery & removal, capabilities of imaging & wiping tools CVE-2005-1578
MLIST:[FreeNX-kNX] 20050217 Security: Serious bug in authority handling found and fixed CVE-2005-0579
MLIST:[Ganglia-developers] 20090113 patches for: [Sec] Gmetad server BoF and network overload + [Feature] multiple requests per conn on interactive port CVE-2009-0241 CVE-2009-0242
MLIST:[Ganglia-developers] 20090123 Re: CVE CVE-2009-0242
MLIST:[Gnump3d-users] 20051028 New release - security fixes. CVE-2005-3123 CVE-2005-3424
MLIST:[Gnupg-devel] 20060725 Re: [Dailydave] GnuPG 1.4.4 fun CVE-2006-3746
MLIST:[Gpsd-announce] 20050127 Announcing release 2.8 of gpsd CVE-2004-1388
MLIST:[Greasemonkey] 20050718 greasemonkey for secure data over insecure networks / sites CVE-2005-2455
MLIST:[Horde-announce] 20051113 Horde 2.2.9 (final) CVE-2005-3570
MLIST:[HostAP] 20050213 wpa_supplicant - new stable releases v0.3.8 and v0.2.7 CVE-2005-0470
MLIST:[IRCServices] 20070324 Regarding Founder Passwords CVE-2007-3246
MLIST:[IRCServices] 20070324 Services 5.0.60 released CVE-2007-3246
MLIST:[IRCServices] 20070608 NS REGISTER and LINK CVE-2007-3245
MLIST:[IRCServices] 20070610 NS REGISTER and LINK CVE-2007-3245
MLIST:[IRCServices] 20070610 Services 5.1pre3 / 5.0.62 released CVE-2007-3245
MLIST:[IRCServices] 20071121 Services 5.0.63 released CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.7 released CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.9 released CVE-2007-6123
MLIST:[ISN] 20070326 Windows weakness can lead to network traffic hijacks CVE-2007-1692
MLIST:[ISSForum] 20040128 Third party BlackICE advisory CVE-2004-2125
MLIST:[Info-gnu-radius] 20040915 GNU Radius 1.2.94. CVE-2004-0849
MLIST:[Ipsec-tools-devel] 20070406 Ipsec-tools 0.6.7 released CVE-2007-1841
MLIST:[KVIrc] 20100517 Proposal for a stable release of kvirc4 CVE-2010-2451 CVE-2010-2452
MLIST:[Libguestfs] 20101019 CVE-2010-3851libguestfs:missing disk format specifier when adding a disk CVE-2010-3851
MLIST:[Libguestfs] 20101021 [PATCH 0/2] First part of fix for CVE-2010-3851 CVE-2010-3851
MLIST:[Libguestfs] 20101022 [PATCH 0/8 v2] Complete fix for CVE-2010-3851. CVE-2010-3851
MLIST:[LightDM] 20111102 Version 1.0.6 released CVE-2011-4105
MLIST:[Logwatch-devel] 20110216 Remote command execution issue with root privileges CVE-2011-1018
MLIST:[Lurker-users] 20060302 Serious security vulnerabilities found CVE-2006-1062 CVE-2006-1063 CVE-2006-1064
MLIST:[MPlayer-announce] 20070605 MPlayer 1.0rc1try3 released CVE-2007-2948
MLIST:[Macsec] 20011229 MacOSX ppp CVE-2001-1565
MLIST:[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates CVE-2007-4985 CVE-2007-4986 CVE-2007-4987 CVE-2007-4988
MLIST:[Mailman-Announce] 20031231 RELEASED Mailman 2.1.4 CVE-2003-0965
MLIST:[Mailman-Announce] 20040208 RELEASED: Mailman 2.0.14 patch-only release CVE-2003-0991
MLIST:[Mailman-Announce] 20040515 RELEASED Mailman 2.1.5 CVE-2004-0412
MLIST:[Mailman-Announce] 20060407 Released: Mailman 2.1.8 release candidate CVE-2006-1712
MLIST:[Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9 CVE-2006-2191 CVE-2006-2941 CVE-2006-3636 CVE-2006-4624
MLIST:[Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released) CVE-2008-0564
MLIST:[Mailman-Users] 20050912 Uncaught runner exception: 'utf8' codeccan'tdecode bytes in position 1-4: invalid data CVE-2005-3573
MLIST:[MediaWiki-announce] 20060327 MediaWiki 1.5.8, 1.4.15 released [SECURITY] CVE-2006-1498
MLIST:[MediaWiki-announce] 20060606 MediaWiki 1.6.7 released CVE-2006-2895
MLIST:[MediaWiki-announce] 20070204 MediaWiki 1.9.2 released CVE-2007-0788
MLIST:[MediaWiki-announce] 20070910 MediaWiki 1.11.0, 1.10.2, 1.9.4, 1.8.5 released CVE-2007-4828 CVE-2007-4883
MLIST:[MediaWiki-announce] 20080124 MediaWiki 1.11.1, 1.10.3, 1.9.5 released CVE-2008-0460
MLIST:[MediaWiki-announce] 20080307 MediaWiki 1.11.2 released (security) CVE-2008-1318
MLIST:[MediaWiki-announce] 20081002 MediaWiki 1.13.2, 1.12.1 security update CVE-2008-4408
MLIST:[MediaWiki-announce] 20090207 MediaWiki releases: security update and new major branch CVE-2009-0737
MLIST:[MediaWiki-announce] 20100303 MediaWiki security update: 1.15.2 CVE-2010-1189 CVE-2010-1190
MLIST:[MediaWiki-announce] 20100528 MediaWiki security update: 1.15.4 and 1.16.0beta3 CVE-2010-1647 CVE-2010-1648
MLIST:[MediaWiki-announce] 20110104 MediaWiki security release 1.16.1 CVE-2011-0003
MLIST:[MediaWiki-announce] 20110201 MediaWiki security release 1.16.2 CVE-2011-0047 CVE-2011-0537
MLIST:[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2 CVE-2007-6612
MLIST:[Mongrel] 20071229 Regarding the 1.1.3 security release CVE-2007-6612
MLIST:[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2) CVE-2007-6612
MLIST:[Mono-dev] 20080726 [PATCH] HTML encode attributes that might need encoding CVE-2008-3422
MLIST:[Monotone-devel] 20060308 [ANNOUNCE] Monotone 0.25.2 -- security fix release CVE-2006-1166
MLIST:[Nano-devel] 20100407 New prerelease for security tweaks CVE-2010-1160 CVE-2010-1161
MLIST:[Ntop-dev] 20050331 Minor security issue w/ ntop.init (RedHat Packages directory) CVE-2005-3387
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.4.4 available CVE-2007-1507
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.5.17 release available CVE-2007-1507
MLIST:[OpenAFS-announce] 20070320 OpenAFS Security Advisory 2007-001: privilege escalation in Unix-based clients CVE-2007-1507
MLIST:[OpenAFS-announce] 20071220 OpenAFS Security Advisory 2007-003: denial of service in OpenAFS fileserver CVE-2007-6599
MLIST:[OpenBSD] 20011202 Code that crashes kernel at will + proposed patch CVE-2001-1559
MLIST:[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs CVE-2007-5934
MLIST:[Pcsclite-cvs-commit] 20101103 r5370 - /trunk/PCSC/src/atrhandler.c CVE-2010-4531
MLIST:[Pen-Test] 20051104 Paros 3.2.7 release CVE-2005-4668
MLIST:[Qemu-devel] 20070428 Qemu crashes on AAM 0 CVE-2007-1366
MLIST:[Qemu-devel] 20070429 Re: Qemu crashes on AAM 0 CVE-2007-1366
MLIST:[Qemu-devel] 20080428 [4277] add format= to drive options (CVE-2008-2004) CVE-2008-2004
MLIST:[Qt-interest] 20020915 assistant leaves port unfiltered CVE-2002-1883
MLIST:[Rt-announce] 20080623 Security vulnerability in RT 3.0 and up CVE-2008-3502
MLIST:[SAP DB Dev] 20030422 Security Alert: Development Tools CVE-2003-1033
MLIST:[ScryMUD] 20070223 ScryMUD 2.1.11 (stable) has been released. CVE-2007-1098
MLIST:[Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages CVE-2007-3108 CVE-2007-4572 CVE-2007-5116 CVE-2007-5135 CVE-2007-5191 CVE-2007-5360 CVE-2007-5398
MLIST:[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1 CVE-2005-2090 CVE-2006-7195 CVE-2007-0450 CVE-2007-2788
MLIST:[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates CVE-2006-7228 CVE-2007-2052 CVE-2007-4308 CVE-2007-4965 CVE-2007-6015
MLIST:[Security-announce] 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package CVE-2007-5497
MLIST:[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package CVE-2007-6284
MLIST:[Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus CVE-2006-7228 CVE-2007-1660 CVE-2007-5846 CVE-2008-0003
MLIST:[Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix CVE-2006-4814 CVE-2007-5001 CVE-2007-6151 CVE-2007-6206 CVE-2008-0007 CVE-2008-1105 CVE-2008-1367 CVE-2008-1375 CVE-2008-1669
MLIST:[Security-announce] 20081030 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff CVE-2008-3281
MLIST:[Security-announce] 20081106 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues CVE-2008-4281 CVE-2008-4915
MLIST:[Security-announce] 20090710 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl CVE-2009-0034 CVE-2009-0037 CVE-2009-1185
MLIST:[Server-cvs] 20070131 protocol/rtsp rtspprot.cpp,1.80,1.81 CVE-2006-6026
MLIST:[Shorewall-announce] 20040628 URGENT: Shorewall Security Vulnerability CVE-2004-0647
MLIST:[Siteframe-Announce] 20051030 URGENT: additional security vulnerability, release 3.2.2 CVE-2005-4824
MLIST:[Siteframe-Announce] 20060621 WARNING: Security Vulnerability identified in Siteframe 3.x CVE-2005-1965
MLIST:[Snort-announce] 20011129 Snort 1.8.3 Released CVE-2001-1558
MLIST:[Snort-devel] 20060531 Snort Uricontent Bypass Vulnerability CVE-2006-2769
MLIST:[Speex-dev] 20080406 libfishsound 0.9.1 Release CVE-2008-1686
MLIST:[Swfdec] 20080409 Swfdec 0.6.4 released CVE-2008-1834
MLIST:[TLS] 20050602 ANNOUNCE: PureTLS 0.9b5 CVE-2005-4839
MLIST:[TYPO3-announce] 20061219 Pre-announcement for important security update CVE-2006-6690
MLIST:[TYPO3-announce] 20061220 TYPO3 Security Bulletin TYPO3-20061220-1: Remote Command Execution in TYPO3 CVE-2006-6690
MLIST:[Trac] 20051205 SECURITY: Trac 0.9.2 Released CVE-2005-4065
MLIST:[Uim] 20050928 uim 0.5.0.1 released CVE-2005-3149
MLIST:[Uim] 20050928 uim-0.4.9.1 released CVE-2005-3149
MLIST:[Unbound-users] 20091007 Release of unbound 1.3.4 CVE-2009-3602
MLIST:[Users] 20070822 New version: 0.8.3 beta CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070822 SECURITY: root privilege escalation / trivial reveal of stored passwords CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070823 New version: 0.8.3 beta CVE-2007-4500 CVE-2007-4501
MLIST:[VIM] 20070821 Recent DB2 Vulnerabilities CVE-2007-4270 CVE-2007-4271 CVE-2007-4272 CVE-2007-4273 CVE-2007-4275 CVE-2007-4276 CVE-2007-4417 CVE-2007-4418 CVE-2007-4423
MLIST:[VIM] 20070911 MIL 4383 CVE-2007-4817
MLIST:[VIM] 20100203 Re: disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection CVE-2010-0158
MLIST:[VIM] 20100203 disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection CVE-2010-0158
MLIST:[VIM] 20101109 osTicket 1.6 - Local File Inclusion CVE-2010-4634
MLIST:[VOIPSEC] 20070319 Asterisk SDP DOS vulnerability CVE-2007-1561 CVE-2007-1594
MLIST:[VOIPSEC] 20071216 Trixbox Arbitrary Command Execution Vulnerability CVE-2007-6424
MLIST:[VOIPSEC] 20071219 Trixbox Arbitrary Command Execution Vulnerability CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vuln (CVE-2007-6424) - PoC exploit code CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vulnerability fluff CVE-2007-6424
MLIST:[Vortex] 20070530 [ANN] Vortex Library 1.0.3 "Hands open release" is ready! CVE-2007-3046
MLIST:[Vserver] 20031218 SMP oops 2.4.23 v1.22 CVE-2003-1288
MLIST:[Vserver] 20031219 Re: SMP oops 2.4.23 v1.22 CVE-2003-1288
MLIST:[Vserver] 20031220 Re: SMP oops 2.4.23 v1.22 CVE-2003-1288
MLIST:[Vserver] 20050108 [Advisory] procfs in vserver CVE-2004-2613
MLIST:[Vserver] 20060428 [SECURITY] ccaps not limited to root inside a guest CVE-2006-2110
MLIST:[WWW-Mobile-Code] 20030706 can - IIS Version Disclosure CVE-2003-1306
MLIST:[Wikitech-l] 20060523 MediaWiki 1.6.5 JavaScript Execution Vulnerability # 2 CVE-2006-2611
MLIST:[Xen-devel] 20071029 [PATCH] x86: allow pv guests to disable TSC for applications CVE-2007-5907
MLIST:[Xen-devel] 20071031 [PATCH, fixed] x86: fix debug register handling CVE-2007-5906
MLIST:[Xen-devel] 20080521 [PATCH] ioemu: Fix PVFB backend to limit frame buffer size CVE-2008-1952
MLIST:[Xen-devel] 20090513 [PATCH] linux/i386: hypervisor_callback adjustments CVE-2009-1758
MLIST:[Xen-devel] 20110509 Re: Xen security advisory CVE-2011-1583 - pv kernel image validation CVE-2011-1583 CVE-2011-3262
MLIST:[Xen-devel] 20110509 Xen security advisory CVE-2011-1583 - pv kernel image validation CVE-2011-1583 CVE-2011-3262
MLIST:[Xorg] 20040613 DRI merging CVE-2006-6730
MLIST:[Zope-Annce] 20060821 Hotfix for Further reST Integration Issue CVE-2006-4684
MLIST:[Zope-announce] 20060706 Serious security problem with Zope 2 CVE-2006-3458
MLIST:[Zope-dev] 20090706 zope.html with FCKEditor security fix CVE-2009-2265
MLIST:[Zope] 20080812 Script (Python) insecure ? CVE-2008-5102
MLIST:[alerts] 20070530 VMS83A_PASRTL-V0100, ECO Kit Release CVE-2007-2998
MLIST:[alerts] 20070530 VMS83I_PASRTL-V0100, ECO Kit Release CVE-2007-2998
MLIST:[alerts] 20080820 VMS732_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS821I_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS82A_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS831H1I_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS83A_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[alerts] 20080820 VMS83I_SMGRTL-V0100, ECO Kit Release CVE-2008-4052
MLIST:[announce] 20061013 ViewVC 1.0.3 released [SECURITY FIXES] CVE-2006-5442
MLIST:[announce] 20070314 Horde 3.1.4 (final) CVE-2007-1473 CVE-2007-1474
MLIST:[announce] 20070314 IMP H3 (4.1.4) (final) CVE-2007-1515
MLIST:[announce] 20070712 MySQL Community Server 5.0.45 has been released! CVE-2007-2691 CVE-2007-2692 CVE-2007-3780 CVE-2007-3781 CVE-2007-3782
MLIST:[announce] 20080109 Horde 3.1.6 (final) CVE-2007-6018 CVE-2008-7218
MLIST:[announce] 20080109 Horde Groupware 1.0.3 (final) CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Kronolith H3 (2.1.7) (final) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Mnemo H3 (2.1.2) (final) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Nag H3 (2.1.4) (final) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Turba H3 (2.1.6) (final) CVE-2008-7218
MLIST:[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final) CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Horde 3.2-RC2 CVE-2008-7218
MLIST:[announce] 20080122 Kronolith H3 (2.2-RC2) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Mnemo H3 (2.2-RC2) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Nag H3 (2.2-RC2) CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Turba H3 (2.2-RC2) CVE-2008-7218
MLIST:[announce] 20080206 Horde Groupware 1.1-RC2 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080215 Horde Groupware 1.0.4 (final) CVE-2008-0807
MLIST:[announce] 20080215 Horde Groupware Webmail Edition 1.0.5 (final) CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.1.7) (final) CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.2-RC3) CVE-2008-0807
MLIST:[announce] 20080307 Horde Groupware 1.0.5 (final) CVE-2008-1284
MLIST:[announce] 20080307 Horde Groupware Webmail Edition 1.0.6 (final) CVE-2008-1284
MLIST:[announce] 20080307 Horde 3.1.7 (final) CVE-2008-1284
MLIST:[announce] 20080613 Turba H3 (2.2.1) (final) CVE-2008-6746
MLIST:[announce] 20081210 Turba 2.3.1 (final) CVE-2008-4182
MLIST:[announce] 20090108 NTP 4.2.4p6 Released CVE-2009-0021
MLIST:[announce] 20090127 Horde 3.2.4 (final) CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde 3.3.3 (final) CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde Groupware 1.1.5 (final) CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 IMP 4.2.2 (final) CVE-2009-0930
MLIST:[announce] 20090127 IMP 4.3.3 (final) CVE-2009-0930
MLIST:[announce] 20090705 Passwd H3 (3.1.1) (final) CVE-2009-2360
MLIST:[announce] 20091107 CVE-2009-3555 - apache/mod_ssl vulnerability and mitigation CVE-2009-3555
MLIST:[announce] 20091208 NTP 4.2.4p8 Released CVE-2009-3563
MLIST:[announce] 20091215 Horde 3.3.6 (final) CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20091216 Horde Groupware 1.2.5 (final) CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20091217 Horde Groupware Webmail Edition 1.2.5 (final) CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20100928 DIMP H3 (1.1.5) (final) CVE-2010-3693
MLIST:[announce] 20100928 Gollem H3 (1.1.2) (final) CVE-2010-3447
MLIST:[announce] 20100928 Horde 3.3.9 (final) CVE-2010-3077 CVE-2010-3694
MLIST:[announce] 20100928 Horde Groupware Webmail Edition 1.2.7 (final) CVE-2010-3693 CVE-2010-3695
MLIST:[announce] 20100928 IMP H3 (4.3.8) (final) CVE-2010-3695
MLIST:[announce] 20110302 [SECURITY] Tomcat 7 ignores @ServletSecurity annotations CVE-2011-1088 CVE-2011-1419
MLIST:[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x \(CVE-2011-3192\) CVE-2011-3192
MLIST:[announce] 20111005 Advisory: mod_proxy reverse proxy exposure (CVE-2011-3368) CVE-2011-3368
MLIST:[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability CVE-2011-4858
MLIST:[announce] Horde 3.2.3 (final) CVE-2008-5917
MLIST:[announce] Horde 3.3.1 (final) CVE-2008-5917
MLIST:[apache-announce] 20090808 [ANNOUNCE] Apache ODE 1.3.3 CVE-2008-2370
MLIST:[apache-announce] 20100725 [ANNOUNCEMENT] Apache HTTP Server 2.2.16 Released CVE-2010-1452 CVE-2010-2068
MLIST:[apache-cvs] 20040307 cvs commit: apache-1.3/src/modules/standard mod_access.c CVE-2003-0993
MLIST:[apache-cvs] 20040307 cvs commit: httpd-2.0/modules/ssl ssl_engine_io.c CVE-2004-0113
MLIST:[apache-cvs] 20070801 svn commit: r561616 - in /httpd/httpd/trunk: CHANGES CVE-2007-3847
MLIST:[apache-db-general] 20100519 [ANNOUNCE] Apache Derby 10.6.1.0 released CVE-2009-4269
MLIST:[apache-http-dev] 20070328 Re: [Fwd: iDefense Final Notice [IDEF1445]] CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-http-dev] 20070328 [Fwd: iDefense Final Notice [IDEF1445]] CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-httpd-announce] 20030120 [ANNOUNCE] Apache 2.0.44 Released CVE-2003-0016
MLIST:[apache-httpd-announce] 20051014 Apache HTTP Server 2.0.55 Released CVE-2005-2088
MLIST:[apache-httpd-dev] 20020925 CGI bucket needed CVE-2002-1850
MLIST:[apache-httpd-dev] 20070622 Re: PID table changes (was Re: svn commit: r547987 - in /httpd/httpd/trunk) CVE-2007-3304
MLIST:[apache-httpd-dev] 20070629 Re: [PATCH] pid safety checks for 2.2.x CVE-2007-3304
MLIST:[apache-httpd-dev] 20070801 Re: svn commit: r561616 - in /httpd/httpd/trunk: CHANGES modules/proxy/proxy_util.c CVE-2007-3847
MLIST:[apache-httpd-dev] 20090423 Includes vs IncludesNoExec security issue - help needed CVE-2009-1195
MLIST:[apache-httpd-dev] 20090628 mod_deflate DoS CVE-2009-1891
MLIST:[apache-httpd-dev] 20090703 Re: mod_deflate DoS CVE-2009-1891
MLIST:[apache-modssl] 20040716 [ANNOUNCE] mod_ssl 2.8.19 for Apache 1.3.31 CVE-2004-0700
MLIST:[apache-modssl] 20050902 [ANNOUNCE] mod_ssl 2.8.24-1.3.33 CVE-2005-2700
MLIST:[apache] 20101107 [ANNOUNCE] mod_fcgid 2.3.6 is released CVE-2010-3872
MLIST:[apr-commits] 20120115 svn commit: r1231605 - /apr/apr/trunk/tables/apr_hash.c CVE-2012-0840
MLIST:[apr-dev] 20090602 [PATCH] prevent "billion laughs" attack against expat CVE-2009-1955
MLIST:[archiva-users] 20101129 Apache Archiva CSRF Vulnerability CVE-2010-3449 CVE-2010-4408
MLIST:[audacity-devel] 20090110 Audacity "String_parse::get_nonspace_quoted()" Buffer Overflow CVE-2009-0490
MLIST:[automake-patches] 20091128 [PATCH] do not put world-writable directories in distribution tarballs CVE-2009-4029
MLIST:[automake] 20091208 CVE-2009-4029 Automake security fix for 'make dist*' CVE-2009-4029
MLIST:[automake] 20091208 GNU Automake 1.10.3 released CVE-2009-4029
MLIST:[automake] 20091208 GNU Automake 1.11.1 released CVE-2009-4029
MLIST:[automake] 20091208 Re: CVE-2009-4029 Automake security fix for 'make dist*' CVE-2009-4029
MLIST:[avahi-tickets] 20061106 [Avahi] #69: Avahi needs to check the originating process of netlink messages CVE-2006-5461
MLIST:[balsa-list] 20070704 balsa-2.3.17 released CVE-2007-1558
MLIST:[bcfg-dev] 20110816 Security flaw in 1.1.x; testers wanted CVE-2011-3211
MLIST:[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1 CVE-2006-2916 CVE-2006-4447
MLIST:[bind-announce] 20061103 Internet Systems Consortium Security Advisory. [revised] CVE-2006-2937 CVE-2006-2940 CVE-2006-4339
MLIST:[bind-announce] 20070125 Internet Systems Consortium Security Advisory. CVE-2007-0493 CVE-2007-0494
MLIST:[bind-announce] 20080919 BIND 9.3.5-P2-W2 is now available. CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.4.2-P2-W2 is now available. CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.5.0-P2-W2 is now available. CVE-2008-4163
MLIST:[bind-announce] 20100928 Security Advisory Regarding Unexpected ACL Behavior in BIND 9.7.2 CVE-2010-0218
MLIST:[bk-commits-head] 20050319 [PATCH] Fix crash while reading /proc/net/route CVE-2005-1041
MLIST:[bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data CVE-2005-4881
MLIST:[bluez-devel] 20050804 Possible security vulnerability in hcid when calling pin helper CVE-2005-2547
MLIST:[bluez-devel] 20080616 SDP payload processing vulnerability CVE-2008-2374
MLIST:[bug-anubis] 20040228 Important security update CVE-2004-0353 CVE-2004-0354
MLIST:[bug-binutils] 20060418 [Bug binutils/2584] New: SIGSEGV in strings tool when the file is crafted. CVE-2006-2362
MLIST:[bug-coreutils] 20091208 Re: build: distcheck: do not leave a $TMPDIR/coreutils directory behind CVE-2009-4135
MLIST:[bug-coreutils] 20091209 [PATCH] doc: NEWS: mention the "make distcheck" vulnerability CVE-2009-4135
MLIST:[bug-ed] 20080821 Version 1.0 of GNU ed released CVE-2008-3916
MLIST:[bug-gnu-utils] 19990625 Re: bug in gzip: segfault when doing "gzip -t" on a broken file CVE-2005-2458
MLIST:[bug-gzip] 20091002 gzip-1.3.13 released [major] CVE-2009-2624
MLIST:[bug-patch] 20101230 Directory traversal vulnerability in patch (or dpkg-source) (fwd) CVE-2010-4651
MLIST:[bug-wget] 20090922 Release: GNU Wget 1.12 CVE-2009-3490
MLIST:[bug-wget] 20100520 Re: security risk of unexpected download filenames CVE-2010-2252
MLIST:[bug-wget] 20100520 security risk of unexpected download filenames CVE-2010-2252
MLIST:[bug-wget] 20100521 Re: security risk of unexpected download filenames CVE-2010-2252
MLIST:[cacti-announce] 20050701 Cacti 0.8.6f Released CVE-2005-2148 CVE-2005-2149
MLIST:[cadaver] 20070123 release 0.22.5 CVE-2007-0157
MLIST:[caml-list] 20111230 Hashtbl and security CVE-2012-0839
MLIST:[caml-list] 20111230 Re: Hashtbl and security CVE-2012-0839
MLIST:[cedet-devel] 20120109 Security flaw in EDE CVE-2012-0035
MLIST:[cedet-devel] 20120111 CEDET 1.0.1 available online CVE-2012-0035
MLIST:[cgiirc-general] 20110207 CGI:IRC 0.5.10 released to fix XSS issue (CVE-2011-0050) CVE-2011-0050
MLIST:[cgit] 20110722 [PATCH] Fix potential XSS vulnerability in rename hint CVE-2011-2711
MLIST:[cisco-nsp] 20070817 About the posting entitled "Heads up: "sh ip bgp regexp" crashing router" CVE-2007-4430
MLIST:[cisco-nsp] 20070817 Heads up: "sh ip bgp regexp" crashing router CVE-2007-4430
MLIST:[cisco-nsp] 20120202 Ambiguous ACL "log" in 12.2(58)SE2? CVE-2012-0362
MLIST:[clamav-announce] 20081126 announcing ClamAV 0.94.2 CVE-2008-5314
MLIST:[clamav-devel] 20070418 Bug in OLE2 file parser CVE-2007-2650
MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.55.2.18,1.55.2.19 CVE-2009-4248
MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.85,1.86 CVE-2009-4248
MLIST:[client-dev] 20080117 CR: fix for bug 211210 CVE-2009-4248
MLIST:[cluster-devel] 20070619 cluster/cman/daemon daemon.c CVE-2007-3373 CVE-2007-3374
MLIST:[cluster-devel] 20100525 [PATCH 3/3] GFS2: Fix permissions checking for setflags ioctl() CVE-2010-1641
MLIST:[commits] 20060504 bk commit into 4.1 tree (bar:1.2474) CVE-2006-4226
MLIST:[commits] 20060620 bk commit into 5.0 tree (kroki:1.2168) BUG#18630 CVE-2006-4227
MLIST:[commits] 20081124 bzr commit into mysql-6.0-backup branch (ingo.struewing:2744) Bug#39277 CVE-2008-7247
MLIST:[commits] 20091020 bzr commit into mysql-4.1 branch (joro:2709) Bug#47320 CVE-2009-4028
MLIST:[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167 CVE-2009-4030
MLIST:[commits] 20100113 bzr commit into mysql-5.0-bugteam branch (ramil:2838) Bug#50227 CVE-2009-4484
MLIST:[commits] 20100824 Horde branch master updated. 025a1bfbe69622036f8e3a27a6edd39c02dcd4ea CVE-2010-3447
MLIST:[common-cvs] 20070703 util hxurl.cpp,1.24.4.1,1.24.4.1.4.1 CVE-2010-0416
MLIST:[common-cvs] 20080114 util rlstate.cpp,1.9,1.10 CVE-2010-0417
MLIST:[commons-dev] 20110812 [AANNOUNCE] Apache Commons Daemon 1.0.7 released CVE-2011-2729
MLIST:[conquest] 20070303 Re: security bugs in conquest CVE-2007-1371
MLIST:[continuum-users] 20110210 [SECURITY] CVE-2010-3449: Apache Continuum CSRF vulnerability CVE-2010-3449
MLIST:[continuum-users] 20110210 [SECURITY] CVE-2011-0533: Apache Continuum cross-site scripting vulnerability CVE-2011-0533
MLIST:[cosmo-dev] 20071207 Chandler Server (Cosmo) 0.10.1 released CVE-2007-6383
MLIST:[couchdb-dev] 20110128 CVE-2010-3854: Apache CouchDB Cross Site Scripting Issue CVE-2010-3854
MLIST:[courier-announce] 20080608 courier-authlib 0.60.6 released CVE-2008-2667
MLIST:[courier-users] 20050824 Re: [SECUNIA] Vulnerability in SqWebMail CVE-2005-2724
MLIST:[courier-users] 20080314 Re: [courier-users] [Fwd: Re: authmysql vs apostrophe] CVE-2008-2667
MLIST:[cryptography] 20091105 OpenSSL 0.9.8l released CVE-2009-3555
MLIST:[cscope-cvs] 20090410 CVS: cscope/src snprintf.c, NONE, 1.1 build.c, 1.14, 1.15 command.c, 1.32, 1.33 dir.c, 1.30, 1.31 display.c, 1.29, 1.30 edit.c, 1.6, 1.7 exec.c, 1.11, 1.12 find.c, 1.20, 1.21 global.h, 1.36, 1.37 main.c, 1.45, 1.46 Makefile.am, 1.12, 1.13 Makefile.in, 1.15, 1.16 vpaccess.c, 1.2, 1.3 vpfopen.c, 1.3, 1.4 vpopen.c, 1.4, 1.5 CVE-2009-0148
MLIST:[cumin-developers] 20120306 r5238 - in trunk: cumin/python/cumin cumin/python/cumin/grid cumin/python/cumin/inventory cumin/python/cumin/messaging rosemary/python/rosemary wooly/python/wooly CVE-2012-1575
MLIST:[curl-users] 20030529 Re: https, redirection and authentication using POST CVE-2003-1311 CVE-2003-1312
MLIST:[current-users] 20061110 [Security Fix] ptrace insufficient bounds checking CVE-2006-6014
MLIST:[cvs-all] 20081102 cvs commit: ports/emulators/qemu Makefile ports/emulators/qemu/files patch-CVE-2008-4539 ports/emulators/qemu-devel Makefile ports/emulators/qemu-devel/files patch-CVE-2008-4539 CVE-2008-4539
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/ CVE-2009-1553
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/java/com/sun/enterprise/tools/admingui/handlers/CommonHandlers.java CVE-2009-1553
MLIST:[cvs] 20090321 CVS update: /woodstock/webui/src/runtime/com/sun/webui/theme/ThemeServlet.java CVE-2009-1554
MLIST:[cvs] 20090322 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/configuration/ CVE-2009-1553
MLIST:[cxf-users] 20100616 Important - Apache CXF security advisory CVE-2010-2076 CVE-2010-2076
MLIST:[cygwin-announce] 20080805 Updated: Setup.exe updated to version 2.573.2.3 CVE-2008-3323
MLIST:[cygwin-developers] 20071108 Re: cygwin1.dll up to 1.5.22 overflow CVE-2007-6181
MLIST:[cygwin-developers] 20071120 Re: cygwin1.dll up to 1.5.22 overflow CVE-2007-6181
MLIST:[cyrus-announce] 20041122 Cyrus IMAPd 2.2.9 Released CVE-2004-1011 CVE-2004-1012 CVE-2004-1013
MLIST:[cyrus-announce] 20041123 Cyrus IMAPd 2.2.10 Released CVE-2004-1015
MLIST:[cyrus-announce] 20110908 Cyrus 2.3.17 Released CVE-2011-3208
MLIST:[cyrus-announce] 20110908 Cyrus 2.4.11 Released CVE-2011-3208
MLIST:[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2) CVE-2006-0454
MLIST:[dailydave] 20070110 Algorithmic Bugs CVE-2006-6931
MLIST:[dailydave] 20070130 Vista speach recognition CVE-2007-0675
MLIST:[dailydave] 20070131 Vista speach recognition CVE-2007-0675
MLIST:[dailydave] 20070216 Minor Virtualization Vulnerability CVE-2007-1222
MLIST:[dailydave] 20070227 Wow, free kernel zero day? CVE-2007-1189
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption CVE-2007-1922
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero) CVE-2007-1921
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption CVE-2007-1922
MLIST:[dailydave] 20070706 (no subject) CVE-2007-3634 CVE-2007-3637
MLIST:[dailydave] 20070708 SquirrelMail GPG Plugin vuln CVE-2007-3634 CVE-2007-3778
MLIST:[dailydave] 20070709 SquirrelMail GPG Plugin vuln CVE-2007-3634 CVE-2007-3636 CVE-2007-3778
MLIST:[dailydave] 20080811 A new datapoint for 0day lifetime CVE-2008-4434
MLIST:[dailydave] 20081002 TCP Resource Exhaustion DoS Attack Speculation CVE-2008-4609
MLIST:[dailydave] 20081107 All Ur WiFi(WPA) R Belong 2 PacSec CVE-2008-5230
MLIST:[dailydave] 20090219 SSL MITM fun. CVE-2009-0652
MLIST:[dailydave] 20090220 SSL MITM fun. CVE-2009-0652
MLIST:[dailydave] 20100106 0day demos CVE-2009-4484
MLIST:[dailydave] 20100119 We hold these axioms to be self evident CVE-2010-0232
MLIST:[dailydave] 20100120 Sun Web Server digest auth overflow CVE-2010-0387
MLIST:[dailydave] 20100126 New db bugs CVE-2009-4484
MLIST:[dailydave] 20100304 Perforce CVE-2010-0929 CVE-2010-0930 CVE-2010-0931 CVE-2010-0932 CVE-2010-0933 CVE-2010-0934 CVE-2010-0935
MLIST:[dailydave] 20100401 0day, it may not be CVE-2009-4764 CVE-2010-1240 CVE-2010-1241
MLIST:[dailydave] 20100402 0day, it may not be CVE-2009-0836
MLIST:[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability CVE-2011-1652
MLIST:[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection CVE-2010-4562 CVE-2010-4563
MLIST:[dailydave] 20111130 The Vampire Diaries CVE-2011-4161
MLIST:[dailydave] 20111206 Flash 0day CVE-2011-4693 CVE-2011-4694 CVE-2011-4695
MLIST:[dailydave] 20120106 Apache Struts CVE-2012-0392
MLIST:[datatype-cvs] 20080722 image/gif/common gifcodec.cpp, 1.6, 1.7 gifimage.cpp, 1.5, 1.6 CVE-2009-4245
MLIST:[datatype-cvs] 20080909 image/gif/common gifcodec.cpp,1.7,1.8 CVE-2009-4242
MLIST:[datatype-cvs] 20080916 smil/common smlpkt.cpp,1.11,1.12 CVE-2009-4257
MLIST:[dbus] 20070317 D-Bus daemon endianness issue CVE-2011-2200
MLIST:[dbus] 20080227 [ANNOUNCE] CVE-2008-0595 D-Bus Security Releases - D-Bus 1.0.3 and D-Bus 1.1.20 CVE-2008-0595
MLIST:[dbus] 20081205 [CVE-2008-4311] DBus 1.2.6 CVE-2008-4311
MLIST:[dbus] 20110530 D-Bus daemon big and little endian issue CVE-2011-2200
MLIST:[dccp] 20070328 [PATCH 1/1] getsockopt: Fix DCCP_SOCKOPT_[SEND,RECV]_CSCOV CVE-2007-1730
MLIST:[debian-apache] 20050119 Bug#290974: marked as done (apache: Temporary usage bugs that can be used in symlink attacks) CVE-2004-1387
MLIST:[debian-bugs-dist] 20090810 Bug#540865: libxml2: CVE-2009-2414, CVE-2009-2416 pointer-user-after-free and stack overflow because of function recursion CVE-2009-2414 CVE-2009-2416
MLIST:[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd CVE-2008-5983 CVE-2009-0316
MLIST:[debian-bugs-rc] 20090430 Bug#526258: CVE-2009-1339: CSRF Vulnerability with Image Tag CVE-2009-1339
MLIST:[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory CVE-2008-5983
MLIST:[debian-changes] 20100128 Accepted lintian 1.24.2.1+lenny1 (source all) CVE-2009-4013 CVE-2009-4014 CVE-2009-4015
MLIST:[debian-devel-changes] 20030909 Accepted kdbg 1.2.9-1 (i386 source) CVE-2003-0644
MLIST:[debian-devel-changes] 20081101 Accepted qemu 0.9.1+svn20081101-1 (source amd64) CVE-2008-4539
MLIST:[debian-devel-changes] 20100105 Accepted transmission 1.77-1 (source all amd64) CVE-2010-0012
MLIST:[debian-devel] 20080811 Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-4474 CVE-2008-4475
MLIST:[debian-devel] 20080811 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-5135 CVE-2008-5136 CVE-2008-5137 CVE-2008-5138 CVE-2008-5139 CVE-2008-5140 CVE-2008-5141 CVE-2008-5142 CVE-2008-5143 CVE-2008-5144 CVE-2008-5145 CVE-2008-5366 CVE-2008-5367 CVE-2008-5368 CVE-2008-5369 CVE-2008-5370 CVE-2008-5371 CVE-2008-5372 CVE-2008-5378 CVE-2008-5379 CVE-2008-5380 CVE-2008-6398
MLIST:[debian-devel] 20080812 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-4476 CVE-2008-4477 CVE-2008-6397
MLIST:[debian-devel] 20080813 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages CVE-2008-5146 CVE-2008-5147 CVE-2008-5148 CVE-2008-5149 CVE-2008-5150 CVE-2008-5151 CVE-2008-5152 CVE-2008-5153 CVE-2008-5154 CVE-2008-5155 CVE-2008-5156 CVE-2008-5157 CVE-2008-5373 CVE-2008-5374 CVE-2008-5375 CVE-2008-5376 CVE-2008-5377
MLIST:[debian-kernel] 20050809 Re: ACL patches in Debian 2.4 series kernel. CVE-2005-2801
MLIST:[debian-openoffice] 20100212 ./packages/openofficeorg/3.1.1/unstable r1866: merge 1:3.1.1-15+squeeze1 CVE-2010-0136
MLIST:[debian-security-announce] 20071003 [SECURITY] [DSA 1379-1] New quagga packages fix denial of service CVE-2007-4826
MLIST:[debian-security-tracker] 20110908 Security Fix for mantis stable 1.1.8 CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[debian-security] 20080219 qemu unchecked block read/write vulnerability CVE-2008-0928
MLIST:[debian-security] 20110510 Re: World writable pid and lock files. CVE-2011-1784 CVE-2011-2147
MLIST:[debian-security] 20110510 World writable pid and lock files. CVE-2011-1784 CVE-2011-2147
MLIST:[debian-security] 20110511 Re: World writable pid and lock files. CVE-2011-1784
MLIST:[debian-sparc] 20060128 `date -s' on sparc64 CVE-2006-0482
MLIST:[debian-testing-security-announce] 20090211 Security update for Debian Testing - 2009-02-12 CVE-2009-0359
MLIST:[debian-testing-security-announce] 20090213 Security update for Debian Testing - 2009-02-14 CVE-2009-0363
MLIST:[dev-crypto] 20071109 Bouncy Castle Crypto Provider Package version 1.36 now available CVE-2007-6721
MLIST:[dev] 20070813 Geronimo 2.0 Release suspended due to security issue found before release CVE-2007-4548
MLIST:[dev] 20090319 [DSECRG] Sun Glassfish Multiple Security Vulnerabilities CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090411 Re: [DSECRG] Sun Glassfish Multiple Security Vulnerabilities CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090424 Buffer overflow in apr_brigade_vprintf() ? CVE-2009-1956
MLIST:[dev] 20090424 Re: Buffer overflow in apr_brigade_vprintf() ? CVE-2009-1956
MLIST:[dev] 20090806 Patch to 1.4.x branch for CVE-2009-2411 CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.5.7 Released CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.6.4 Released CVE-2009-2411
MLIST:[dev] 20100806 Two exploitable OpenOffice.org bugs! CVE-2010-2935 CVE-2010-2936
MLIST:[dev] 20101104 "svn blame -g" causing svnserve to hang & mem usage to hit 2GB CVE-2010-4644
MLIST:[dev] 20110303 Subversion 1.6.16 Released CVE-2011-0715
MLIST:[dev] 20110510 Re: Apache Portable Runtime 1.4.4 [...] Released CVE-2011-0419
MLIST:[dev] 20110510 Re: fnmatch rewrite in apr, apr 1.4.3 CVE-2011-0419
MLIST:[dev] 20110511 Re: Apache Portable Runtime 1.4.4 [...] Released CVE-2011-0419
MLIST:[dev] 20110823 Re: DoS with mod_deflate & range requests CVE-2011-3192
MLIST:[dev] 20120105 Hash collision vectors in APR? CVE-2012-0840
MLIST:[dev] 20120113 Re: Hash collision vectors in APR? CVE-2012-0840
MLIST:[dev] 20120114 Re: Hash collision vectors in APR? CVE-2012-0840
MLIST:[dev] 20120417 [ANNOUNCEMENT] Apache HTTP Server 2.4.2 Released CVE-2012-0883
MLIST:[devel] 20090528 [patch] libpurple/protocols/oscar: OOM and die on misparsed ICQWebMessage as ICQSMS CVE-2009-1889
MLIST:[devel] 20090910 New version available [was: Is there a specific security contact address?] CVE-2009-2937
MLIST:[dhcp-users] 20101207 nagios check_tcp kills failover, then dhcp failure. CVE-2010-3616
MLIST:[dhcpcd-discuss] 20110406 [CVE-2011-996] dhcpcd does not strip or escape shell meta characters CVE-2011-0996
MLIST:[dia-list] 20060329 Vulnerability in xfig import code CVE-2006-1550
MLIST:[distcc] 20040826 Exploit in distcc ( got compromised ;( ) CVE-2004-2687
MLIST:[distro-pkg-dev] 20090211 changeset in /hg/icedtea6: 2009-02-11 Omair Majid <omajid at redh... CVE-2009-0794
MLIST:[djabberd] 20110604 CVE-2011-1757: djabberd billion laughs vulnerability CVE-2011-1757
MLIST:[djabberd] 20110613 Security Release DJabberd 0.85 CVE-2011-2206
MLIST:[dl-ticket-service] 20100311 dl 0.7 released CVE-2010-0963
MLIST:[dns] 20090225 djbdns misformats some long response packets; patch and example CVE-2009-0858
MLIST:[dns] 20090304 djbdns<=1.05 lets AXFRed subdomains overwrite domains CVE-2009-0858
MLIST:[dnsmasq-discuss] 20080720 dnsmasq 2.44 available. CVE-2008-3350
MLIST:[dokuwiki] 20110614 Hotfix Release "2011-05-25a Rincewind" CVE-2011-2510
MLIST:[dovecot-cvs] 20070330 dovecot/src/lib-storage/index/mbox mbox-storage.c, 1.145.2.14, 1.145.2.15 CVE-2007-2231
MLIST:[dovecot-news] 20070330 Security hole #3: zlib plugin allows opening any gziped mboxes CVE-2007-2231
MLIST:[dovecot-news] 20070801 v1.0.3 released CVE-2007-4211
MLIST:[dovecot-news] 20091120 v1.2.8 released CVE-2009-3897
MLIST:[dovecot-news] 20100308 v1.2.11 released CVE-2010-0745
MLIST:[dovecot-news] 20100724 v1.2.13 released CVE-2010-3304
MLIST:[dovecot] 20100219 segfault - (imap|pop3)-login during nessus scan CVE-2010-0433
MLIST:[dovecot] 20100227 Possible CPU Denial-Of-Service attack to dovecot IMAP. CVE-2010-0745
MLIST:[dovecot] 20101002 ACL handling bugs in v1.2.8+ and v2.0 CVE-2010-3706 CVE-2010-3707 CVE-2010-3779
MLIST:[dovecot] 20101002 v1.2.15 released CVE-2010-3706 CVE-2010-3707 CVE-2010-3779 CVE-2010-3780
MLIST:[dovecot] 20101002 v2.0.5 released CVE-2010-3706 CVE-2010-3707
MLIST:[dovecot] 20110511 v1.2.17 released CVE-2011-1929
MLIST:[dovecot] 20110511 v2.0.13 released CVE-2011-1929 CVE-2011-2166 CVE-2011-2167
MLIST:[dropbear] 20051211 Dropbear 0.47 (and security fix) CVE-2005-4178
MLIST:[dtcannounce] 20110303 Fwd: [SECURITY] [DSA 2179-1] dtc security update CVE-2011-0434 CVE-2011-0435 CVE-2011-0436 CVE-2011-0437
MLIST:[ebd-devel] 20060502 actualización de seguridad CVE-2006-2349
MLIST:[ecryptfs-devel] 20081222 Re: [PATCH, v5] eCryptfs: check readlink result was not an error before using it CVE-2009-0269
MLIST:[ekiga-list] 20070917 [ANNOUNCE] Ekiga 2.0.10 released CVE-2007-4924
MLIST:[elinks-users] 20080204 [ANNOUNCE] ELinks 0.11.4rc0 CVE-2008-7224
MLIST:[emacs-devel] 20071003 temp file hole? CVE-2007-5377
MLIST:[emacs-devel] 20071004 Re: temp file hole? CVE-2007-5377
MLIST:[emacs-devel] 20080510 [mwelinder@bogus.example.com: Emacs security bug] CVE-2008-2142
MLIST:[emacs-devel] 20080905 Vulnerability in Emacs python integration CVE-2008-3949
MLIST:[emacs-devel] 20120109 Security flaw in EDE; new release plans CVE-2012-0035
MLIST:[emdros-announce] 20061201 Emdros version 1.2.0.pre231 released CVE-2006-6395
MLIST:[enomalism] 20081212 ECP 2.1.1 Released CVE-2008-4990
MLIST:[eoc] 20061213 EoC 1.2.4 -- security problem fixed, please upgrade immediately CVE-2006-5875
MLIST:[ethereal-dev] 20040318 ethereal radius dissector vulnerability CVE-2004-0365
MLIST:[ewg] 20101021 [PATCH] security fix in openibd script CVE-2010-1693
MLIST:[exim-announce] 20020219 Exim 3.35 released CVE-2002-0274
MLIST:[exim-announce] 20110125 Exim 4.74 Release CVE-2011-0017
MLIST:[exim-announce] 20110509 Exim 4.76 Release CVE-2011-1407
MLIST:[exim-announce] 20110512 Exim 4.76 Release: updated impact assessment CVE-2011-1407
MLIST:[exim-dev] 20100524 Security issues in exim4 local delivery CVE-2010-2023 CVE-2010-2024
MLIST:[exim-dev] 20101207 Remote root vulnerability in Exim CVE-2010-4344 CVE-2010-4345
MLIST:[exim-dev] 20101209 Re: [Exim-maintainers] Remote root vulnerability in Exim CVE-2010-4345
MLIST:[exim-dev] 20101210 Re: Remote root vulnerability in Exim CVE-2010-4344 CVE-2010-4345
MLIST:[exim] 20050104 2 smallish security issues CVE-2005-0021 CVE-2005-0022
MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences CVE-2009-3720
MLIST:[expat-bugs] 20091108 [ expat-Bugs-2894085 ] expat: buffer over-read and crash in big2_toUtf8() CVE-2009-3560
MLIST:[exploits] 20061201 0-day BlazeHDTV v2.1 Malformed PLF Buffer Overflow Exploit CVE-2006-6199
MLIST:[fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1 CVE-2003-0989 CVE-2004-0055 CVE-2004-0057
MLIST:[fedora-announce] 20040422 Fedora alert FEDORA-2004-111 (kernel) CVE-2004-0394
MLIST:[fedora-desktop-list] 20070918 Re: fuse (Was Re: early-gdm redux) CVE-2007-5159
MLIST:[fedora-devel-list] 20070122 Re: rawhide report: 20070120 changes CVE-2007-0003
MLIST:[fedora-package-announce] 20070604 [SECURITY] Fedora 7 Update: NetworkManager-0.6.5-3.fc7 CVE-2007-2874
MLIST:[fedora-security-commits] 20080620 fedora-security/audit f10, 1.7, 1.8 f8, 1.225, 1.226 f9, 1.215, 1.216 CVE-2008-2725 CVE-2008-2726
MLIST:[fedora-security-list] 20090612 git daemon DoS CVE-2009-2108
MLIST:[ffmpeg-cvslog] 20080812 r14714 - trunk/libavformat/utils.c CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080812 r14715 - trunk/libavformat/avformat.h CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080816 r14787 - trunk/libavcodec/utils.c CVE-2008-4868
MLIST:[ffmpeg-cvslog] 20080823 r14917 - trunk/libavcodec/dca.c CVE-2008-4867
MLIST:[ffmpeg-devel] 20101229 [PATCH] Fix a couple of errors with bad Vorbis headers CVE-2011-0480
MLIST:[file] 20070302 file-4.20 is now available CVE-2007-1536
MLIST:[file] 20090501 file 5.01 is now available CVE-2009-1515
MLIST:[file] 20090504 file-5.02 is now available CVE-2009-3930
MLIST:[fishcart] 20050521 Re: Concerned about security CVE-2005-1486
MLIST:[flex-announce] 20060222 flex 2.5.33 released CVE-2006-0459
MLIST:[fm-news] 20010713 Newsletter for Friday, July 13th 2001 CVE-2001-1081
MLIST:[fm-news] 20041001 Newsletter for Thursday, September 30th 2004 CVE-2004-2153
MLIST:[fm-news] 20041102 Newsletter for Monday, November 01st 2004 CVE-2004-2217
MLIST:[fm-news] 20041123 Newsletter for Monday, November 22nd 2004 CVE-2004-2485
MLIST:[fm-news] 20051208 Newsletter for Thursday, December 08th 2005 CVE-2005-4132
MLIST:[fm-news] 20060204 Newsletter for Friday, February 03rd 2006 CVE-2006-0751
MLIST:[fm-news] 20080113 Newsletter for Saturday, January 12th 2008 CVE-2008-7189 CVE-2008-7197
MLIST:[fm-news] 20080123 Newsletter for Tuesday, January 22nd 2008 CVE-2008-7198
MLIST:[fm-news] 20080126 Newsletter for Friday, January 25th 2008 CVE-2008-7196 CVE-2008-7202
MLIST:[fm-news] 20080206 Newsletter for Tuesday, February 05th 2008 CVE-2008-7228
MLIST:[focus-sun] 20031022 Information disclosure with SMC webserver on Solaris 9 CVE-2004-1354
MLIST:[foswiki-announce] 20090427 Security Alert CVE-2009-1434: Foswiki Page View Cross-Site Request Forgery (CSRF) CVE-2009-1434
MLIST:[foswiki-announce] 20101110 [ANNOUNCE] Foswiki Security Alert CVE-2010-4215 - User can alter topic preferences using the "Edit topic preference settings" feature and save them even though he has no privileges to edit the topic. CVE-2010-4215
MLIST:[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c CVE-2006-5483
MLIST:[freebsd-cvs-src] 20060531 cvs commit: src/sys/ufs/ufs ufs_vnops.c CVE-2006-5482
MLIST:[freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff CVE-2005-0109
MLIST:[freebsd-security] 19961025 Vadim Kolontsov: BoS: Linux & BSD's lpr exploit CVE-1999-0032
MLIST:[freebsd-security] 20021109 Security issue in net/cvsup-mirror port CVE-2002-2382
MLIST:[freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff] CVE-2005-0109
MLIST:[freebsd-security] 20060728 Ruby vulnerability? CVE-2006-3694
MLIST:[freebsd-security] 20060730 Ruby vulnerability? CVE-2006-3694
MLIST:[freebsd-security] 20061002 FreeBSD Security Advisory FreeBSD-SA-06:22.openssh CVE-2006-5051
MLIST:[freebsd-security] 20061206 Intel LAN Driver Buffer Overflow Local Privilege Escalation CVE-2006-6385
MLIST:[freebsd-security] 20070114 MOAB advisories CVE-2006-5679 CVE-2006-5824 CVE-2007-0229 CVE-2007-0267
MLIST:[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team CVE-2011-4862
MLIST:[freeradius-users] 20090909 Version 1.1.8 has been released CVE-2009-3111
MLIST:[freetype-devel] 20110708 Re: details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype-devel] 20110708 details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype-devel] 20110709 Re: details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype-devel] 20110711 Re: details on iPhone exploit caused by FreeType? CVE-2011-0226
MLIST:[freetype] 20100712 FreeType 2.4.0 has been released CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520 CVE-2010-2527
MLIST:[frox-user] 20050204 Frox 0.7.18 - security fixes. CVE-2005-2808
MLIST:[frugalware-git] 20081014 kernel2627: ndiswrapper-1.53-6-i686 CVE-2008-4395
MLIST:[ft-devel] 20070427 Bug in fuzzed TTF file CVE-2007-2754
MLIST:[funsec] 20060110 Another WMF flaw without a Microsoft patch CVE-2006-0020
MLIST:[funsec] 20060308 DOSing Outlook 2003 CVE-2006-1305
MLIST:[gcc-bugs] 20020506 c/6586: -ftrapv doesn't catch multiplication overflow CVE-2000-1219
MLIST:[gcc-bugs] 20060417 [Bug c/27180] New: pointer arithmetic overflow handling broken CVE-2006-1902
MLIST:[gcc-bugs] 20060417 [Bug middle-end/27180] New: pointer arithmetic overflow handling broken CVE-2006-1902
MLIST:[gcc-patches] 20080306 Re: [PATCH, i386]: Emit cld instruction when stringops are used CVE-2008-1367
MLIST:[gcc-patches] 20080306 [PATCH, i386]: Emit cld instruction when stringops are used CVE-2008-1367
MLIST:[gcc-patches] 20080307 Re: [PATCH, i386]: Emit cld instruction when stringops are used CVE-2008-1367
MLIST:[gdm-list] 20110328 GDM 2.32.1 released CVE-2011-0727
MLIST:[git-commits-head] 20060311 [PATCH] selinux: tracer SID fix CVE-2006-1052
MLIST:[git-commits-head] 20080307 x86: clear DF before calling signal handler CVE-2008-1367
MLIST:[git-commits-head] 20080507 sparc: Fix mmap VA span checking. CVE-2008-2137
MLIST:[git-commits-head] 20090205 shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM CVE-2009-0859
MLIST:[git-commits-head] 20091208 net: Automatically allocate per namespace data. CVE-2011-2189
MLIST:[git] 20080716 [PATCH] Fix buffer overflow in git diff CVE-2008-3546
MLIST:[git] 20081220 [Security] gitweb local privilege escalation (fix) CVE-2008-5916
MLIST:[git] 20110305 [ANNOUNCE] CGIT 0.8.3.5 CVE-2011-1027
MLIST:[glbs-security-announce] 20070517 Globus Security Advisory 2007-03: Nexus vulnerability CVE-2007-2784
MLIST:[gnome-announce] 20020503 Patch for serious bug in 1.0.3 CVE-2002-1765
MLIST:[gnome-networkmanager-list] 20050728 format string bug in nm_info_handler CVE-2005-2410
MLIST:[gnome-networkmanager-list] 20050729 Re: format string bug in nm_info_handler CVE-2005-2410
MLIST:[gnupg-announce] 20060215 False positive signature verification in GnuPG CVE-2006-0455
MLIST:[gnupg-announce] 20060309 [Announce] GnuPG does not detect injection of unsigned data CVE-2006-0049
MLIST:[gnupg-announce] 20061127 GnuPG 1.4 and 2.0 buffer overflow CVE-2006-6169
MLIST:[gnupg-announce] 20100723 [Announce] Security Alert for GnuPG 2.0 - Realloc bug in GPGSM CVE-2010-2547
MLIST:[gnupg-announce] GnuPG: remotely controllable function pointer [CVE-2006-6235] CVE-2006-6235
MLIST:[gnupg-devel] 20060215 [Announce] False positive signature verification in GnuPG CVE-2006-0455
MLIST:[gnupg-users] 20070306 [Announce] Multiple Messages Problem in GnuPG and GPGME CVE-2007-1263 CVE-2007-1264 CVE-2007-1265 CVE-2007-1266 CVE-2007-1267 CVE-2007-1268 CVE-2007-1269
MLIST:[gnutls-dev] 20040802 gnutls 1.0.17 CVE-2004-2531
MLIST:[gnutls-dev] 20050428 GnuTLS 1.2.3 and 1.0.25 CVE-2005-1431
MLIST:[gnutls-dev] 20060209 GnuTLS 1.2.10 - Security release CVE-2006-0645
MLIST:[gnutls-dev] 20060209 GnuTLS 1.3.4 - Experimental - Security release CVE-2006-0645
MLIST:[gnutls-dev] 20060209 Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release CVE-2006-0645
MLIST:[gnutls-dev] 20060812 GnuTLS 1.4.2 CVE-2006-7239
MLIST:[gnutls-dev] 20060812 Re: [Fwd: crash in GNUTLS-1.4.0] CVE-2006-7239
MLIST:[gnutls-dev] 20060908 Variant of Bleichenbacher's crypto 06 rump session attack CVE-2006-4790
MLIST:[gnutls-dev] 20060912 Re: Variant of Bleichenbacher's crypto 06 rump session attack CVE-2006-4790
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1] CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.5 - Brown paper bag release CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 Re: GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1] CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080630 Details on the gnutls_handshake local crash problem [GNUTLS-SA-2008-2] CVE-2008-2377
MLIST:[gnutls-devel] 20080630 GnuTLS 2.4.1 CVE-2008-2377
MLIST:[gnutls-devel] 20081110 Analysis of vulnerability GNUTLS-SA-2008-3 CVE-2008-4989 CVE-2008-4989
MLIST:[gnutls-devel] 20081110 GnuTLS 2.6.1 - Security release [GNUTLS-SA-2008-3] CVE-2008-4989
MLIST:[gnutls-devel] 20090423 Re: some crashes on using DSA keys CVE-2009-1415
MLIST:[gnutls-devel] 20090430 All DSA keys generated using GnuTLS 2.6.x are corrupt [GNUTLS-SA-2009-2] [CVE-2009-1416] CVE-2009-1416
MLIST:[gnutls-devel] 20090430 Certificate expiration not checked by gnutls-cli [GNUTLS-SA-2009-3] [CVE-2009-1417] CVE-2009-1417
MLIST:[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415] CVE-2009-1415
MLIST:[gnutls-devel] 20091105 Re: TLS renegotiation MITM CVE-2009-3555
MLIST:[gnutls-devel] 20111108 Possible buffer overflow on gnutls_session_get_data CVE-2011-4128
MLIST:[gnutls-devel] 20120224 gnutls 3.0.14 CVE-2012-1663
MLIST:[gnutls-devel] 20120302 gnutls 2.12.16 CVE-2012-1573
MLIST:[gnutls-devel] 20120302 gnutls 3.0.15 CVE-2012-1573
MLIST:[gnutls-devel] 20120316 gnutls 3.0.16 CVE-2012-1569
MLIST:[gosa] 20070115 GOsa 2.5.8 released (security fixes!) CVE-2007-0313
MLIST:[gpa-dev] 20050531 S/MIME signing fails on a SUSE 9.3 system CVE-2005-2023
MLIST:[gpa-dev] 20050603 Re: S/MIME signing fails on a SUSE 9.3 system CVE-2005-2023
MLIST:[gs-cvs] 20100106 [gs-commits] rev 10590 - trunk/gs/base CVE-2010-4054
MLIST:[gtk-devel-list] 20030529 Algorimic Complexity Attack on GLIB 2.2.1 CVE-2012-0039
MLIST:[gtk-devel-list] 20071107 GLib 2.14.3 CVE-2007-1659 CVE-2007-1660 CVE-2007-1661 CVE-2007-1662 CVE-2007-4766 CVE-2007-4767 CVE-2007-4768
MLIST:[havp-devel] 20080715 Infinite loop which causes havp to block completely CVE-2008-3688
MLIST:[heimdal-discuss] 20060206 Heimdal 0.7.2 and 0.6.6 CVE-2006-0582 CVE-2006-0677
MLIST:[helix-client-dev] 20090828 CR: 249097 - Security fix - urgent CR requested CVE-2009-4247
MLIST:[help-gnutls] 20090420 Encryption using DSA keys CVE-2009-1416
MLIST:[help-libtasn1] 20120319 GNU Libtasn1 2.12 released CVE-2012-1569
MLIST:[help-libtasn1] 20120319 minimal fix to security issue CVE-2012-1569
MLIST:[horde-announce] 20041026 Horde 2.2.7 (final) CVE-2004-2741
MLIST:[horde-announce] 20051122 Horde 3.0.7 (final) CVE-2005-3759
MLIST:[horde-announce] 20051211 Horde 3.0.8 (final) CVE-2005-4190
MLIST:[horde-announce] 20051211 Kronolith H3 (2.0.6) (final) CVE-2005-4189
MLIST:[horde-announce] 20051211 Mnemo H3 (2.0.3) (final) CVE-2005-4192
MLIST:[horde-announce] 20051211 Nag H3 (2.0.4) (final) CVE-2005-4191
MLIST:[horde-announce] 20051211 Turba H3 (2.0.5) (final) CVE-2005-4242
MLIST:[horde-announce] 20060817 Horde 3.1.3 (final) CVE-2006-4256
MLIST:[horde-announce] 20060817 IMP H3 (4.1.3) (final) CVE-2006-4255
MLIST:[horde-announce] 20061018 Ingo H3 (1.1.2) (final) CVE-2006-5449
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.0.7) (final) CVE-2006-6175
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.1.4) (final) CVE-2006-6175
MLIST:[horde-announce] 20070114 Horde Groupware 1.0 (final) CVE-2007-0579
MLIST:[horde-announce] 20070114 Horde Groupware Webmail Edition 1.0 (final) CVE-2007-0579
MLIST:[horde-announce] 20080614 [announce] Horde Groupware Webmail Edition 1.1.1 (final) CVE-2008-3650
MLIST:[horde-announce] 20080910 Horde 3.1.9 (final) CVE-2008-3824
MLIST:[horde-announce] 20080910 [SECURITY] Horde 3.2.2 (final) CVE-2008-3823 CVE-2008-3824
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.1.6 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.2.4 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.1.6 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.2.4 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.2.5 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.3.5 (final) CVE-2009-3236 CVE-2009-3237
MLIST:[httpclient-users] 20110224 Proxy-Authorization header received on server side CVE-2011-1498
MLIST:[httpclient-users] 20110224 RE: Proxy-Authorization header received on server side CVE-2011-1498
MLIST:[httpclient-users] 20110224 Re: Proxy-Authorization header received on server side CVE-2011-1498
MLIST:[httpd-announce] 20100611 [advisory] httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068 CVE-2010-2068
MLIST:[httpd-announce] 20110519 Regressions in httpd 2.2.18, apr 1.4.4, and apr-util 1.3.11 CVE-2011-1928
MLIST:[httpd-python-dev] 20040416 Re: possible bug in filter.write() CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 patch for filterobject.c CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 possible bug in filter.write() CVE-2004-2680
MLIST:[hylafax-announce] 20050111 **ANOUNCE** hylafax-4.2.1 released CVE-2004-1182
MLIST:[hylafax-users] 20051212 Re: proceedure for hylafax setup for PAM authentiation CVE-2005-3538
MLIST:[icu-support] 20080122 ICU Patch for bugs in Regular Expressions CVE-2007-4770 CVE-2007-4771
MLIST:[ietf-openpgp] 20060827 Bleichenbacher's RSA signature forgery based on implementation error CVE-2006-4339 CVE-2006-4340
MLIST:[imap-uw] 20081031 Security bug in tmail and dmail CVE-2008-5005
MLIST:[imp] 20050422 IMP 3.2.8 (final) CVE-2005-1319
MLIST:[info-cyrus] 20050214 Cyrus IMAPd 2.2.11 Released CVE-2005-0546
MLIST:[interchange-announce] 20040329 Security Problem in Interchange CVE-2004-0374
MLIST:[interchange-announce] 20050922 Important: Security flaw found in Interchange demo catalog. CVE-2005-3073
MLIST:[interchange-announce] 20050923 Important: Security flaw found in Interchange demo - Addendum CVE-2005-3073
MLIST:[ipsec-tools-announce] 20080724 Ipsec-tools 0.7.1 released CVE-2008-3651
MLIST:[ipsec-tools-announce] 20090422 Ipsec-tools 0.7.2 released CVE-2009-1632
MLIST:[ipsec-tools-devel] 20050312 potential remote crash in racoon CVE-2005-0398
MLIST:[ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools CVE-2005-3732
MLIST:[ipsec-tools-devel] 20080724 Ipsec-tools 0.7.1 released CVE-2008-3651
MLIST:[ipsec-tools-devel] 20080811 [PATCH] Track and delete orphaned ph1s CVE-2008-3652
MLIST:[ircd-ratbox] 20070514 IMPORTANT: potential DoS found in ircd-ratbox CVE-2007-2786
MLIST:[ircd-ratbox] 20100125 ircd-ratbox-2.2.9 released CVE-2009-4016 CVE-2010-0300
MLIST:[iscsitarget-devel] 20100701 [patch] fix iSNS bounds checking CVE-2010-2221
MLIST:[isn] 20031215 The mysteriously persistently exploitable program explained. CVE-2004-2768
MLIST:[jabberd2] 20110531 jabberd-2.2.14 release CVE-2011-1755
MLIST:[jabberd] 20040919 Jabberd 1.4 critical bug CVE-2004-1378
MLIST:[java-apache-users] 20000929 jserv wrapper error CVE-2000-1247
MLIST:[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update CVE-2007-1354
MLIST:[jenkinsci-advisories] 20111109 Security advisory in Jenkins Core CVE-2011-4344
MLIST:[karrigell-main] 20050731 SECURITY: python namespace exposure CVE-2005-2483
MLIST:[karrigell-main] 20050802 Re: SECURITY: python namespace exposure CVE-2005-2483
MLIST:[kde-announce] 20070309 KTorrent 2.1.2 is out CVE-2007-1384 CVE-2007-1385
MLIST:[kerberos] 20101222 LDAP handle unavailable: Can't contact LDAP server CVE-2011-0281
MLIST:[kernel-svn-changes] 20050816 r3920 - in branches/dist/sarge-security: . kernel kernel/i386 kernel/source kernel/source/kernel-source-2.6.8-2.6.8/debian CVE-2005-0136
MLIST:[kmail-devel] 20050215 [Bug 96020] HTML Allows Spoofing of Emails Content CVE-2005-0404
MLIST:[kolab-users] 20040420 Possible Kolab LDAP configuration information disclosure CVE-2004-1997
MLIST:[kronolith] 20050422 Kronolith 1.1.4 (final) CVE-2005-1314
MLIST:[kronolith] 20080427 Kronolith H3 (2.1.8) (final) CVE-2008-1974
MLIST:[kvm] 20090702 KVM crashes when using certain USB device CVE-2010-0297
MLIST:[kvm] 20090721 Re: KVM crashes when using certain USB device CVE-2010-0297
MLIST:[kvm] 20100129 KVM: PIT: control word is write-only CVE-2010-0309
MLIST:[kvm] 20100728 [PATCH 1/2] Fix segfault in mmio subpage handling code CVE-2010-2784
MLIST:[kvm] 20101030 [patch v2] x86: kvm: x86: fix information leak to userland CVE-2010-3881
MLIST:[kvm] 20111214 [PATCH 1/2] KVM: x86: Prevent starting PIT timers in the absence of irqchip support CVE-2011-4622
MLIST:[libc-hacker] 20101018 [PATCH] Never expand $ORIGIN in privileged programs CVE-2010-3847
MLIST:[libc-hacker] 20101022 [PATCH] Require suid bit on audit objects in privileged programs CVE-2010-3856
MLIST:[libc-hacker] [PATCH] Fix LD_HWCAP_MASK handling CVE-2007-3508
MLIST:[libcdio-devel] 20071231 buffer overrun in cd-info and iso-info and a release? CVE-2007-6613
MLIST:[libcg-devel] 20101115 Fwd: libcgroup netlink CVE-2011-1022
MLIST:[libcg-devel] 20110218 [PATCH 2/2] cgrulesengd: Ignore netlink messages that don't come from the kernel. CVE-2011-1022
MLIST:[libcloud] 20100929 [jira] Closed: (LIBCLOUD-55) this python project is vulnerable to MITM as it fails to verify the ssl validity of the remote destination. CVE-2010-4340
MLIST:[libcloud] 20101108 SSL certs checking CVE-2010-4340
MLIST:[libexif-devel] 20091113 libexif project security advisory CVE-2009-3895
MLIST:[libgadu-devel] 20081024 libgadu 1.8.2 CVE-2008-4776
MLIST:[libtool] 20091116 Backport of libltdl changes to branch-1-5 CVE-2009-3736
MLIST:[libtool] 20091116 GNU Libtool 2.2.6b released CVE-2009-3736
MLIST:[libvir-list] 20090127 [libvirt] [PATCH] proxy: Fix use of uninitalized memory CVE-2009-0036
MLIST:[libvir-list] 20090128 Re: [libvirt] [PATCH] proxy: Fix use of uninitalized memory CVE-2009-0036
MLIST:[libvirt] 20081217 [SECURITY] PATCH: Fix missing read-only access checks (CVE-2008-5086) CVE-2008-5086
MLIST:[libvirt] 20110323 [PATCH] Make error reporting in libvirtd thread safe CVE-2011-1486
MLIST:[libvirt] 20110531 [PATCH] security: plug regression introduced in disk probe logic CVE-2011-2178
MLIST:[libvirt] 20110624 [PATCH 2/2] remote: protect against integer overflow CVE-2011-2511
MLIST:[linux-audit] 20080330 audit 1.7 released CVE-2008-1628
MLIST:[linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. CVE-2011-2492
MLIST:[linux-cifs-client] 20090406 [PATCH] cifs: Fix insufficient memory allocation for nativeFileSystem field CVE-2009-1439
MLIST:[linux-cifs-client] 20100402 [patch] skip posix open if nameidata is null CVE-2010-1148
MLIST:[linux-cifs-client] 20100404 [patch] skip posix open if nameidata is null CVE-2010-1148
MLIST:[linux-cifs] 20110405 Re: Repeatable crash in 2.6.38 related to O_DIRECT CVE-2011-1771
MLIST:[linux-cifs] 20110405 Repeatable crash in 2.6.38 related to O_DIRECT CVE-2011-1771
MLIST:[linux-ext4] 20110603 [PATCH 1/2] ext4: Fix max file size and logical block counting of extent format file CVE-2011-2695
MLIST:[linux-ia64] 20040916 Re: [Patch] Per CPU MCA/INIT data save areas CVE-2005-0136
MLIST:[linux-ia64] [PATCH 1/1] ia64: perfmon.c trips BUG_ON in put_page_testzero CVE-2006-0558
MLIST:[linux-kernel] 20020417 Re: SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20020417 SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20020418 Re: SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20020422 Re: SSE related security hole CVE-2002-1571
MLIST:[linux-kernel] 20031105 BK2CVS problem CVE-2003-1161
MLIST:[linux-kernel] 20031105 Re: BK2CVS problem CVE-2003-1161
MLIST:[linux-kernel] 20040105 linux-2.4.24 released CVE-2003-0985
MLIST:[linux-kernel] 20040219 Re: Oopsing cryptoapi (or loop device?) on 2.6.* CVE-2004-2135 CVE-2004-2136
MLIST:[linux-kernel] 20040402 Re: disable-cap-mlock CVE-2004-0491
MLIST:[linux-kernel] 20040408 [PATCH]: 2.4/2.6 do_fork() error path memory leak CVE-2004-0427
MLIST:[linux-kernel] 20040416 Re: [CHECKER] Probable security holes in 2.6.5 CVE-2004-2607
MLIST:[linux-kernel] 20040609 timer + fpu stuff locks my console race CVE-2004-0554
MLIST:[linux-kernel] 20040911 [PATCH] exec: fix posix-timers leak and pending signal loss CVE-2005-3271
MLIST:[linux-kernel] 20041111 a.out issue CVE-2004-1074
MLIST:[linux-kernel] 20041114 [PATCH] linux 2.9.10-rc1: Fix oops in unix_dgram_sendmsg when using CVE-2004-1069
MLIST:[linux-kernel] 20041130 Buffer overrun in arch/x86_64/sys_ia32.c:sys32_ni_syscall() CVE-2004-1151
MLIST:[linux-kernel] 20041216 [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050105 Re: [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.4.29-pre3-bk4] fs/coda Re: [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.6.10-mm2] fs/coda Re: [Coverity] Untrusted user data in kernel CVE-2005-0124
MLIST:[linux-kernel] 20050301 Re: Breakage from patch: Only root should be able to set the N_MOUSE line discipline. CVE-2005-0839
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in pktcdvd CVE-2005-1589
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in raw device CVE-2005-1264
MLIST:[linux-kernel] 20050805 [PATCH] Fix hugepage crash on failing mmap() CVE-2005-4811
MLIST:[linux-kernel] 20050817 [PATCH 2.6.12.5] NPTL signal delivery deadlock fix CVE-2005-3847
MLIST:[linux-kernel] 20050817 [PATCH] fix dst_entry leak in icmp_push_reply() CVE-2005-3848
MLIST:[linux-kernel] 20050818 Re: [PATCH] fix dst_entry leak in icmp_push_reply() CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 2/7] [PATCH] NPTL signal delivery deadlock fix CVE-2005-3847
MLIST:[linux-kernel] 20050826 [PATCH 4/7] [IPV4]: Fix DST leak in icmp_push_reply() CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 7/7] [IPV6]: Fix SKB leak in ip6_input_finish() CVE-2005-3858
MLIST:[linux-kernel] 20050829 Re: Linux 2.6.12.6 CVE-2005-3858
MLIST:[linux-kernel] 20050912 [PATCH] nfs client, kernel 2.4.31: readlink result overflow CVE-2005-4798
MLIST:[linux-kernel] 20050925 [BUG/PATCH/RFC] Oops while completing async USB via usbdevio CVE-2005-3055
MLIST:[linux-kernel] 20051112 Re: local denial-of-service with file leases CVE-2005-3857
MLIST:[linux-kernel] 20051113 [GIT] Fix memory leak in lease code CVE-2005-3807 CVE-2005-3857
MLIST:[linux-kernel] 20051122 [patch 11/23] [PATCH] [NETFILTER] ctnetlink: check if protoinfo is present CVE-2005-3809
MLIST:[linux-kernel] 20051122 [patch 13/23] [PATCH] [NETFILTER] ctnetlink: Fix oops when no ICMP ID info in message CVE-2005-3810
MLIST:[linux-kernel] 20051123 32bit integer overflow in invalidate_inode_pages2() (local DoS) CVE-2005-3808
MLIST:[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host) CVE-2006-5158
MLIST:[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host) CVE-2006-5158
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: Zero key material before free to avoid information leak CVE-2006-0095
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: zero key before freeing it CVE-2006-0095
MLIST:[linux-kernel] 20060207 Linux 2.6.15.3 CVE-2006-0454
MLIST:[linux-kernel] 20060207 Re: Linux 2.6.15.3 CVE-2006-0454
MLIST:[linux-kernel] 20060207 [PATCH] arch/x86_64/kernel/traps.c PTRACE_SINGLESTEP oops CVE-2006-1066
MLIST:[linux-kernel] 20060411 [PATCH] __group_complete_signal: remove bogus BUG_ON CVE-2006-1523
MLIST:[linux-kernel] 20060419 RE: Linux 2.6.16.9 CVE-2006-1056
MLIST:[linux-kernel] 20060426 [PATCH] LSM: add missing hook to do_compat_readv_writev() CVE-2006-1856
MLIST:[linux-kernel] 20060526 PROBLEM: /proc (procfs) task exit race condition causes a kernelcrash CVE-2006-2629
MLIST:[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks CVE-2006-2445
MLIST:[linux-kernel] 20060717 [patch 25/45] splice: fix problems with sys_tee() CVE-2007-0997
MLIST:[linux-kernel] 20061105 Linux 2.6.16.31-rc1 CVE-2006-4572 CVE-2006-5174 CVE-2006-5619
MLIST:[linux-kernel] 20061215 [patch 24/24] Bluetooth: Add packet size checks for CAPI messages (CVE-2006-6106) CVE-2006-6106
MLIST:[linux-kernel] 20061219 BUG: wedged processes, test program supplied CVE-2006-6921
MLIST:[linux-kernel] 20061219 Linux 2.6.18.6 CVE-2006-6106
MLIST:[linux-kernel] 20061220 Re: BUG: wedged processes, test program supplied CVE-2006-6921
MLIST:[linux-kernel] 20070508 Re: [PATCH -utrace] Move utrace into task_struct CVE-2008-2365
MLIST:[linux-kernel] 20070608 Linux 2.6.20.13 CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070608 Linux 2.6.21.4 CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070720 [PATCH] splice: fix bad unlock_page() in error case CVE-2008-4302
MLIST:[linux-kernel] 20070731 Re: [PATCH] add check do_direct_IO() return val CVE-2007-6716
MLIST:[linux-kernel] 20070921 Linux 2.6.22.7 CVE-2007-4573
MLIST:[linux-kernel] 20070921 Re: Linux 2.6.22.7 CVE-2007-4573
MLIST:[linux-kernel] 20071108 Buffer overflow in CIFS VFS. CVE-2007-5904
MLIST:[linux-kernel] 20071108 [PATCH] time: fix sysfs_show_{available,current}_clocksources() buffer overflow problem CVE-2007-5908
MLIST:[linux-kernel] 20071109 Re: Fw: Buffer overflow in CIFS VFS. CVE-2007-5904
MLIST:[linux-kernel] 20071116 Linux 2.6.23.8 CVE-2007-5501
MLIST:[linux-kernel] 20071122 [PATCH] PPC: CHRP - fix possible NULL pointer dereference CVE-2007-6694
MLIST:[linux-kernel] 20071128 [PATCH] tmpfs: restore missing clear_highpage CVE-2007-6417
MLIST:[linux-kernel] 20071212 Re: [PATCH] tmpfs: restore missing clear_highpage CVE-2007-6417
MLIST:[linux-kernel] 20071215 Re: [PATCH] tmpfs: restore missing clear_highpage CVE-2007-6417
MLIST:[linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007) CVE-2008-0007
MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit CVE-2008-0600
MLIST:[linux-kernel] 20080229 [BUG] soft lockup detected with ipcs CVE-2009-0859
MLIST:[linux-kernel] 20080305 Linux doesn't follow x86/x86-64 ABI wrt direction flag CVE-2008-1367
MLIST:[linux-kernel] 20080429 [04/12] tehuti: check register size (CVE-2008-1675) CVE-2008-1675
MLIST:[linux-kernel] 20080429 [26/37] tehuti: check register size (CVE-2008-1675) CVE-2008-1675
MLIST:[linux-kernel] 20080429 [27/37] tehuti: move ioctl perm check closer to function start CVE-2008-1675
MLIST:[linux-kernel] 20080430 Re: Page Faults slower in 2.6.25-rc9 than 2.6.23 CVE-2008-2372
MLIST:[linux-kernel] 20080501 Linux 2.6.24.6 CVE-2008-1375
MLIST:[linux-kernel] 20080501 Linux 2.6.25.1 CVE-2008-1375
MLIST:[linux-kernel] 20080509 Re: When should kfree_skb be used? CVE-2008-2136
MLIST:[linux-kernel] 20080513 [patch 25/37] sparc: Fix mremap address range validation. CVE-2008-6107
MLIST:[linux-kernel] 20080702 Is VFS behavior fine? CVE-2008-3275
MLIST:[linux-kernel] 20080723 Re: [PATCH 1/2] signals: kill(-1) should only signal processes in the same namespace CVE-2009-1338
MLIST:[linux-kernel] 20080726 tmpfs: kernel BUG at mm/shmem.c:814 CVE-2008-3534
MLIST:[linux-kernel] 20080730 2.6.27-rc1: IP: iov_iter_advance+0x2e/0x90 CVE-2008-3535
MLIST:[linux-kernel] 20080730 [patch 40/62] V4L: uvcvideo: Fix a buffer overflow in format descriptor parsing CVE-2008-3496
MLIST:[linux-kernel] 20080807 OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175 CVE-2008-3686
MLIST:[linux-kernel] 20080808 Re: OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175 CVE-2008-3686
MLIST:[linux-kernel] 20080823 [GIT]: Networking CVE-2008-3792
MLIST:[linux-kernel] 20080830 Re: buffer overflow in /proc/sys/sunrpc/transports CVE-2008-3911
MLIST:[linux-kernel] 20080830 buffer overflow in /proc/sys/sunrpc/transports CVE-2008-3911
MLIST:[linux-kernel] 20080903 [patch 05/16] nfsd: fix buffer overrun decoding NFSv4 acl CVE-2008-3915
MLIST:[linux-kernel] 20080913 [PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption CVE-2008-3528
MLIST:[linux-kernel] 20080913 [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption CVE-2008-3528
MLIST:[linux-kernel] 20080918 Re: [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption CVE-2008-3528
MLIST:[linux-kernel] 20081005 [PATCH 04/19] ib700wdt: Fix off by one CVE-2008-5702
MLIST:[linux-kernel] 20081006 [patch 58/71] sctp: Fix oops when INIT-ACK indicates that peer doesnt support AUTH CVE-2008-4576
MLIST:[linux-kernel] 20081220 [Security] gitweb local privilege escalation (fix) CVE-2008-5916
MLIST:[linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning CVE-2009-0029
MLIST:[linux-kernel] 20090127 [PATCH 1/2] fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM CVE-2009-0859
MLIST:[linux-kernel] 20090130 [PATCH] Fix memory corruption in console selection CVE-2009-1046
MLIST:[linux-kernel] 20090131 [patch 03/43] inotify: clean up inotify_read and fix locking CVE-2009-0935
MLIST:[linux-kernel] 20090202 Re: [PATCH] Fix memory corruption in console selection CVE-2009-1046
MLIST:[linux-kernel] 20090212 [PATCH] 4 bytes kernel memory disclosure in SO_BSDCOMPAT gsopt try #2 CVE-2009-0676
MLIST:[linux-kernel] 20090223 net: amend the fix for SO_BSDCOMPAT gsopt infoleak CVE-2009-0676
MLIST:[linux-kernel] 20090225 Re: [PATCH 2/2] exit_notify: kill the wrong capable(CAP_KILL) check CVE-2009-1337
MLIST:[linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes CVE-2009-0834 CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole CVE-2009-0834
MLIST:[linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole CVE-2009-0835
MLIST:[linux-kernel] 20090311 VFS, NFS security bug? Should CAP_MKNOD and CAP_LINUX_IMMUTABLE be added to CAP_FS_MASK? CVE-2009-1072
MLIST:[linux-kernel] 20090502 Linux 2.6.27.21 CVE-2009-1184
MLIST:[linux-kernel] 20090502 Linux 2.6.28.10 CVE-2009-1184
MLIST:[linux-kernel] 20090608 [Security, resend] Instant crash with rtl8169 and large packets CVE-2009-1389
MLIST:[linux-kernel] 20090622 Fix for shared flat binary format in 2.6.30 CVE-2009-2768
MLIST:[linux-kernel] 20090623 [PATCH 0/1] mm_for_maps: simplify, use ptrace_may_access() CVE-2009-2691
MLIST:[linux-kernel] 20090623 [PATCH 1/1] mm_for_maps: simplify, use ptrace_may_access() CVE-2009-2691
MLIST:[linux-kernel] 20090706 Re: PROBLEM: tun/tap crashes if open() /dev/net/tun and then poll() it. CVE-2009-1897
MLIST:[linux-kernel] 20090710 [PATCH 1/2] mm_for_maps: shift down_read(mmap_sem) to the caller CVE-2009-2691
MLIST:[linux-kernel] 20090710 [PATCH 2/2] mm_for_maps: take ->cred_guard_mutex to fix the race CVE-2009-2691
MLIST:[linux-kernel] 20090720 Re: [PATCH] sgi-gru: Fix kernel stack buffer overrun CVE-2009-2584
MLIST:[linux-kernel] 20090721 [PATCH] sgi-gru: Fix kernel stack buffer overrun CVE-2009-2584
MLIST:[linux-kernel] 20090801 [PATCH v2] execve: must clear current->clear_child_tid CVE-2009-2848
MLIST:[linux-kernel] 20090804 Re: [PATCH] posix-timers: fix oops in clock_nanosleep() with CLOCK_MONOTONIC_RAW CVE-2009-2767
MLIST:[linux-kernel] 20090819 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 CVE-2009-3043
MLIST:[linux-kernel] 20090819 v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 CVE-2009-3043
MLIST:[linux-kernel] 20090820 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008 CVE-2009-3043
MLIST:[linux-kernel] 20090902 [BUG] 2.6.31-rc8 readcd Oops CVE-2009-3288
MLIST:[linux-kernel] 20090903 [PATCH] sg: fix oops in the error path in sg_build_indirect() CVE-2009-3288
MLIST:[linux-kernel] 20090916 [patch 15/45] perf_counter: Fix buffer overflow in perf_copy_attr() CVE-2009-3234
MLIST:[linux-kernel] 20090921 [git pull] drm tree. CVE-2009-3620
MLIST:[linux-kernel] 20091001 [tip:x86/urgent] x86: Don't leak 64-bit kernel register values to 32-bit processes CVE-2009-2910
MLIST:[linux-kernel] 20091002 Re: [PATCH 0/8] SECURITY ISSUE with connector CVE-2009-3725
MLIST:[linux-kernel] 20091002 [071/136] net ax25: Fix signed comparison in the sockopt handler CVE-2009-2909
MLIST:[linux-kernel] 20091014 fs/pipe.c null pointer dereference CVE-2009-3547
MLIST:[linux-kernel] 20091019 Re: [PATCH] AF_UNIX: Fix deadlock on connecting to shutdown socket CVE-2009-3621
MLIST:[linux-kernel] 20091021 Re: [PATCH v4 1/1]: fs: pipe.c null pointer dereference + really sign off + unmangled diffs CVE-2009-3547
MLIST:[linux-kernel] 20091205 [RFC][PATCHSET] mremap/mmap mess CVE-2010-0291
MLIST:[linux-kernel] 20091209 [GIT PULL] ext4 updates for v2.6.33 CVE-2009-4131 CVE-2009-4307
MLIST:[linux-kernel] 20100114 [PATCH 01/52] untangle the do_mremap() mess CVE-2010-0291
MLIST:[linux-kernel] 20100205 PROBLEM: hda-intel divide by zero kernel crash in azx_position_ok() CVE-2010-1085
MLIST:[linux-kernel] 20100221 [80/93] USB: usbfs: properly clean up the as structure on error paths CVE-2010-1083
MLIST:[linux-kernel] 20100303 [PATCH v2] hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[linux-kernel] 20100311 [PATCH 3/3] GFS2: Skip check for mandatory locks when unlocking CVE-2010-0727
MLIST:[linux-kernel] 20100330 [48/89] USB: usbfs: properly clean up the as structure on error paths CVE-2010-1083
MLIST:[linux-kernel] 20100408 [PATCH #3] reiserfs: Fix permissions on .reiserfs_priv CVE-2010-1146
MLIST:[linux-kernel] 20100422 [PATCH 0/1][BUG][IMPORTANT] KEYRINGS: find_keyring_by_name() can gain the freed keyring CVE-2010-1437
MLIST:[linux-kernel] 20100430 [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring CVE-2010-1437
MLIST:[linux-kernel] 20100503 Re: [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring CVE-2010-1437
MLIST:[linux-kernel] 20100510 [071/117] kgdb: dont needlessly skip PAGE_USER test for Fsl booke CVE-2010-1446
MLIST:[linux-kernel] 20100518 [PATCH] btrfs: should add a permission check for setfacl CVE-2010-2071
MLIST:[linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer CVE-2010-4243
MLIST:[linux-kernel] 20100827 [PATCH] wireless: fix 64K kernel heap content leak via ioctl CVE-2010-2955
MLIST:[linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer CVE-2010-4243
MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless extensions: fix kernel heap content leak CVE-2010-2955
MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless: fix 64K kernel heap content leak via ioctl CVE-2010-2955
MLIST:[linux-kernel] 20100830 [PATCH] wireless extensions: fix kernel heap content leak CVE-2010-2955
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory CVE-2010-3296
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/eql.c: prevent reading uninitialized stack memory CVE-2010-3297
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/usb/hso.c: prevent reading uninitialized memory CVE-2010-3298
MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/amiserial.c: prevent reading uninitialized stack memory CVE-2010-4076
MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/nozomi.c: prevent reading uninitialized stackmemory CVE-2010-4077
MLIST:[linux-kernel] 20100915 [PATCH] drivers/media/video/ivtv/ivtvfb.c: prevent reading uninitialized stack memory CVE-2010-4079
MLIST:[linux-kernel] 20100915 [PATCH] drivers/serial/serial_core.c: prevent readinguninitialized stack memory CVE-2010-4075
MLIST:[linux-kernel] 20100915 [PATCH] drivers/usb/serial/mos*: prevent reading uninitialized stack memory CVE-2010-4074
MLIST:[linux-kernel] 20100915 [PATCH] drivers/video/via/ioctl.c: prevent reading uninitializedstack memory CVE-2010-4082
MLIST:[linux-kernel] 20100925 [PATCH] sound/pci/rme9652: prevent reading uninitialized stack memory CVE-2010-4080 CVE-2010-4081
MLIST:[linux-kernel] 20101001 [PATCH] Fix out-of-bounds reading in sctp_asoc_get_hmac() CVE-2010-3705
MLIST:[linux-kernel] 20101006 [PATCH v3] IPC: Initialize structure memory to zero for compat functions CVE-2010-4073
MLIST:[linux-kernel] 20101006 [PATCH] ipc: initialize structure memory to zero for shmctl CVE-2010-4072
MLIST:[linux-kernel] 20101007 Peculiar stuff in hci_ath3k/badness in hci_uart CVE-2010-4242
MLIST:[linux-kernel] 20101007 [PATCH] net: clear heap allocations for privileged ethtool actions CVE-2010-4655
MLIST:[linux-kernel] 20101123 Unix socket local DOS (OOM) CVE-2010-4249
MLIST:[linux-kernel] 20101124 [PATCH net-next-2.6] scm: lower SCM_MAX_FD CVE-2010-4249
MLIST:[linux-kernel] 20101125 Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect :( CVE-2010-4249
MLIST:[linux-kernel] 20101129 Re: [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() CVE-2010-4668
MLIST:[linux-kernel] 20101129 [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() CVE-2010-4668
MLIST:[linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer CVE-2010-4243
MLIST:[linux-kernel] 20101201 Re: [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. CVE-2010-4258
MLIST:[linux-kernel] 20101201 [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. CVE-2010-4258
MLIST:[linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check. CVE-2010-4346
MLIST:[linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls. CVE-2011-1082
MLIST:[linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[linux-kernel] 20110225 [PATCH] optimize epoll loop detection CVE-2011-1083
MLIST:[linux-kernel] 20110226 Re: [PATCH] optimize epoll loop detection CVE-2011-1083
MLIST:[linux-kernel] 20110228 Re: [PATCH] optimize epoll loop detection CVE-2011-1083
MLIST:[linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace CVE-2011-1171
MLIST:[linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace CVE-2011-1172
MLIST:[linux-kernel] 20110311 [PATCH] proc: protect mm start_code/end_code in /proc/pid/stat CVE-2011-0726
MLIST:[linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads CVE-2011-1494 CVE-2011-1495
MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow CVE-2011-1746 CVE-2011-1747
MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes CVE-2011-1745 CVE-2011-2022
MLIST:[linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) CVE-2011-1593
MLIST:[linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow CVE-2011-1746
MLIST:[linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length CVE-2011-1770
MLIST:[linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length CVE-2011-1770
MLIST:[linux-kernel] 20110523 Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values CVE-2011-2184
MLIST:[linux-kernel] 20110524 Re: Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values CVE-2011-2184
MLIST:[linux-kernel] 20110525 Re: [Security] Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values CVE-2011-2184
MLIST:[linux-kernel] 20110608 [BUG] hfs_find_init() sb->ext_tree NULL pointer dereference CVE-2011-2203
MLIST:[linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode CVE-2011-2484
MLIST:[linux-kernel] 20110624 [PATCH] Bluetooth: Prevent buffer overflow in l2cap config request CVE-2011-2497
MLIST:[linux-kernel] 20111109 [BUG][SECURITY] Kernel stack overflow in hfs_mac2asc() CVE-2011-4330
MLIST:[linux-kernel] 20111115 [PATCH] KEYS: Fix a NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[linux-lvm] 20100728 lvm2-cluster (clvmd) security fix (Moderate) CVE-2010-2526
MLIST:[linux-mm-commits] 20091203 + hfs-fix-a-potential-buffer-overflow.patch added to -mm tree CVE-2009-4020
MLIST:[linux-mm] 20100128 DoS on x86_64 CVE-2010-0307
MLIST:[linux-mtd] 20070822 [JFFS2] Fix ACL vs. mode handling. CVE-2007-4849
MLIST:[linux-netdev] 20060304 BUG: Small information leak in SO_ORIGINAL_DST (2.4 and 2.6) and CVE-2006-1342 CVE-2006-1343
MLIST:[linux-netdev] 20070316 [PATCH 2.6.21-rc3] IPV6: ipv6_fl_socklist is inadvertently shared. CVE-2007-1592
MLIST:[linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets CVE-2007-6282
MLIST:[linux-netdev] 20080821 [PATCH] sctp: fix potential panics in the SCTP-AUTH API. CVE-2008-3792
MLIST:[linux-netdev] 20081106 UNIX sockets kernel panic CVE-2008-5029
MLIST:[linux-netdev] 20081120 soft lockups/OOM after unix socket fixes CVE-2008-5300
MLIST:[linux-netdev] 20081125 [PATCH] Fix soft lockups/OOM issues w/ unix garbage collector CVE-2008-5300
MLIST:[linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table CVE-2008-5079
MLIST:[linux-netdev] 20090214 r8169: instant crash if receiving packet larger than MTU CVE-2009-1389
MLIST:[linux-netdev] 20091228 [PATCH RFC] r8169: straighten out overlength frame detection CVE-2009-4537
MLIST:[linux-netdev] 20100114 [PATCH]: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo(). CVE-2010-0006
MLIST:[linux-netdev] 20100920 [PATCH] rose: Fix signedness issues wrt. digi count. CVE-2010-3310
MLIST:[linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling CVE-2010-4175
MLIST:[linux-nfs] 20081022 kernel oops in nfs4_proc_lock CVE-2009-3726
MLIST:[linux-nfs] 20090509 [NFS] [PATCH] nfs: Fix NFS v4 client handling of MAY_EXEC in nfs_permission. CVE-2009-1630
MLIST:[linux-parisc] 20080729 [PATCH] fix unwind crash - was: Re: 2.6.26 kernel crash CVE-2008-5395
MLIST:[linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers CVE-2011-0695
MLIST:[linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback CVE-2011-0695
MLIST:[linux-scsi] 20100521 [PATCH 1/2] bfa: fix system crash when reading sysfs fc_host statistics CVE-2010-4343
MLIST:[linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl CVE-2010-4157
MLIST:[linux-sctp] 20080827 [PATCH 0/2] sctp: additional overflow fixes CVE-2008-4445
MLIST:[linux-sctp] 20080827 [PATCH 2/2] sctp: fix random memory dereference with SCTP_HMAC_IDENT option. CVE-2008-4445
MLIST:[linux-security-module] 20050928 readv/writev syscalls are not checked by lsm CVE-2006-1856
MLIST:[linux-security] 19961122 LSF Update#14: Vulnerability of the lpr program. CVE-1999-0032
MLIST:[linux-sparc] 20060130 Attempts to set date with 'date -s' hang the machine CVE-2006-0482
MLIST:[linux-sparc] 20060130 Re: Attempts to set date with 'date -s' hang the machine CVE-2006-0482
MLIST:[linux-sparc] 20100219 Execution possible in non-executable mappings in recent 2.6 kernels CVE-2010-1451
MLIST:[linux-sparc] 20100219 Re: Execution possible in non-executable mappings in recent 2.6 kernels CVE-2010-1451
MLIST:[linux-wireless] 20081029 [PATCH] libertas: fix buffer overrun CVE-2008-5134
MLIST:[linux-xfs] 20100620 [PATCH 0/4, V2] xfs: validate inode numbers in file handles correctly CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 2/4] xfs: validate untrusted inode numbers during lookup CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 3/4] xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 4/4] xfs: remove block number from inode lookup code CVE-2010-2943
MLIST:[listar-dev] 20060115 [EDev] Re: Potential vulnerability -- who to contact? CVE-2006-0332
MLIST:[listar-dev] 20060119 [EDev] Re: Potential vulnerability -- who to contact? CVE-2006-0332
MLIST:[lkml-patch] 20060821 dvb-core: Proper handling ULE SNDU length of 0 CVE-2006-4623
MLIST:[lkml] 20070129 [PATCH] Don't allow the stack to grow into hugetlb reserved regions CVE-2007-3739
MLIST:[lsh-bugs] 20050316 ANNOUNCE: LSH-2.0.1, fix for denial of service bug CVE-2005-0814
MLIST:[lsh-bugs] SECURITY: lshd leaks fd:s to user shells CVE-2006-0353
MLIST:[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR CVE-2009-4497
MLIST:[mad-dev] 20080112 Initite loop bug in libid3tag-0.15.0b CVE-2008-2109
MLIST:[mailman-announce] 20100905 Mailman security patch. CVE-2010-3089
MLIST:[mailman-announce] 20100909 Mailman security patch. CVE-2010-3089
MLIST:[mailman-announce] 20110213 Mailman Security Patch Announcement CVE-2011-0707
MLIST:[mailman-announce] 20110218 Mailman Security Patch Announcement CVE-2011-0707
MLIST:[mantisbt-announce] 20100914 MantisBT 1.2.3 Released CVE-2010-3070
MLIST:[mapserver-users] 20090326 MapServer 5.2.2 and 4.10.4 released with security fixes CVE-2009-0839 CVE-2009-0840 CVE-2009-0841 CVE-2009-0842 CVE-2009-0843 CVE-2009-1176 CVE-2009-1177
MLIST:[mapserver-users] 20100709 MapServer 5.6.4 and 4.10.6 released with important security fixes CVE-2010-2539 CVE-2010-2540
MLIST:[mapserver-users] 20110713 MapServer 6.0.1, 5.6.7 and 4.10.7 releases with security fixes CVE-2011-2703 CVE-2011-2704 CVE-2011-2975
MLIST:[mathopd] 20120202 security alert: directory traversal when using * in Location CVE-2012-1050
MLIST:[mediawiki-announce] 20081215 MediaWiki 1.13.3, 1.12.2, 1.6.11 security update CVE-2008-5249 CVE-2008-5250 CVE-2008-5252 CVE-2008-5687 CVE-2008-5688
MLIST:[mediawiki-announce] 20090713 MediaWiki security update: 1.15.1 and 1.14.1 CVE-2009-4589
MLIST:[mediawiki-announce] 20100407 MediaWiki security update: 1.15.3 and 1.16.0beta2 CVE-2010-1150
MLIST:[mediawiki-announce] 20100728 MediaWiki security release: 1.16.0 and 1.15.5 CVE-2010-2787 CVE-2010-2788 CVE-2010-2789
MLIST:[mediawiki-announce] 20110412 MediaWiki security release 1.16.3 CVE-2011-1578 CVE-2011-1579 CVE-2011-1580
MLIST:[mediawiki-announce] 20110414 MediaWiki security release 1.16.4 CVE-2011-1587
MLIST:[mediawiki-announce] 20110505 MediaWiki security release 1.16.5 CVE-2011-1765 CVE-2011-1766
MLIST:[mediawiki-announce] 20111128 MediaWiki security release 1.17.1 CVE-2011-4360 CVE-2011-4361
MLIST:[mhonarc-dev] 20101230 [bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS) CVE-2010-4524
MLIST:[mhonarc-dev] 20101230 [bug #32014] CVE-2010-1677: DoS when processing html messages with deep tag nesting CVE-2010-1677
MLIST:[mimedefang] 20070209 SECURITY: MIMEDefang 2.61 is Released CVE-2007-0884
MLIST:[misc] 20071010 OpenBSD XSS ;) CVE-2007-6700
MLIST:[mm-commits] 20100923 + sys_semctl-fix-kernel-stack-leakage.patch added to -mm tree CVE-2010-4083
MLIST:[mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree CVE-2011-1012
MLIST:[mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree CVE-2011-1163
MLIST:[mm-commits] 20110314 + proc-protect-mm-start_code-end_code-in-proc-pid-stat.patch added to -mm tree CVE-2011-0726
MLIST:[mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree CVE-2011-1577
MLIST:[mnemo] 20050422 Mnemo 1.1.4 (final) CVE-2005-1320
MLIST:[mod_python] 20040122 [ANNOUNCE] Mod_python 2.7.10 CVE-2004-0096
MLIST:[modperl-cvs] 20090401 svn commit: r761081 - in /perl/modperl/branches/1.x: Changes lib/Apache/Status.pm CVE-2009-0796
MLIST:[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status CVE-2009-0796
MLIST:[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack CVE-2006-5467
MLIST:[monkeysphere] 20101025 resolved monkeysphere security vulnerability CVE-2010-4096
MLIST:[mono-devel-list] 20080726 [Mono-dev] [PATCH] HTML encode attributes that might need encoding CVE-2008-3422
MLIST:[mono-patches] 20101012 [mono/mono] d3985be4: Search for dllimported shared libs in the base directory, not cwd. CVE-2010-4159
MLIST:[mpg123-devel] 20090405 mpg123 1.7.2 is out -- important security fix! CVE-2009-1301
MLIST:[mpm-itk] 20110321 CVE 2011-1176: Sometimes runs as root instead of the default Apache user CVE-2011-1176
MLIST:[mpm-itk] 20110321 mpm-itk version 2.2.17-01 released CVE-2011-1176
MLIST:[mute-net-discuss] 20050317 Houston, Houston we have problem! CVE-2005-4726
MLIST:[mute-net-discuss] 20050318 Re: Houston, Houston we have problem! CVE-2005-4726
MLIST:[mutt-dev] 20061004 security problem with temp files [was Re: mutt_adv_mktemp() ?] CVE-2006-5297 CVE-2006-5298
MLIST:[myserver-commit] 20070210 SF.net SVN: myserver: [2183] trunk/myserver/source/server.cpp CVE-2007-1588
MLIST:[nag] 20050422 Nag 1.1.3 (final) CVE-2005-1322
MLIST:[nagios-devel] 20081107 Security fixes completed CVE-2008-5027 CVE-2008-5028
MLIST:[nanog] 20090817 RE: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E01100" ? CVE-2009-2055
MLIST:[nanog] 20100827 Did your BGP crash today? CVE-2010-3035
MLIST:[neon] 20070107 invalid chars cause sigserv in neon CVE-2007-0157
MLIST:[neon] 20080820 CVE-2008-3746: NULL pointer dereference in Digest domain support CVE-2008-3746
MLIST:[neon] 20080820 neon: release 0.28.3 (SECURITY) CVE-2008-3746
MLIST:[neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat CVE-2009-2473
MLIST:[neon] 20090818 CVE-2009-2474: fix handling of NUL in SSL cert subject names CVE-2009-2474
MLIST:[neon] 20090818 neon: release 0.28.6 (SECURITY) CVE-2009-2473 CVE-2009-2474
MLIST:[net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug CVE-2005-2177
MLIST:[netbsd-announce] 20051031 Announcing update 2.0.3 - source only CVE-2005-4691 CVE-2005-4779 CVE-2005-4783
MLIST:[netdev] 20050124 Re: skb_checksum_help CVE-2005-0449
MLIST:[netdev] 20090128 [PATCH] drivers/net/skfp: if !capable(CAP_NET_ADMIN): inverted logic CVE-2009-0675
MLIST:[netdev] 20090409 Oops in tun: bisected to Limit amount of queued packets per device CVE-2009-1897
MLIST:[netdev] 20100302 [PATCH 1/8] net: add limit for socket backlog CVE-2010-4251 CVE-2010-4805
MLIST:[netdev] 20100428 Re: [PATCH]: sctp: Fix skb_over_panic resulting from multiple invalid parameter errors (CVE-2010-1173) (v4) CVE-2010-1173
MLIST:[netdev] 20100521 tc: RTM_GETQDISC causes kernel OOPS CVE-2011-2525
MLIST:[netdev] 20100628 [PATCH net-2.6 1/2] ethtool: Fix potential kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[netdev] 20100705 bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference CVE-2011-0709
MLIST:[netdev] 20100706 Re: bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference CVE-2011-0709
MLIST:[netdev] 20100830 [PATCH] irda: Correctly clean up self->ias_obj on irda_bind() failure. CVE-2010-2954
MLIST:[netdev] 20100907 [PATCH net-2.6] niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL CVE-2010-3084
MLIST:[netdev] 20100915 [PATCH] net: SCTP remote/local Denial of Service vulnerability description and fix CVE-2010-3432
MLIST:[netdev] 20101021 TIPC security issues CVE-2010-3859
MLIST:[netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() CVE-2010-3859 CVE-2010-4160
MLIST:[netdev] 20101027 [PATCH 0/4] RFC: tipc int vs size_t fixes CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 3/4] tipc: Update arguments to use size_t for iovec array sizes CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 4/4] tipc: Fix bugs in sending of large amounts of byte-stream data CVE-2010-3859
MLIST:[netdev] 20101028 Re: [PATCH 2/4] tipc: Fix bugs in tipc_msg_build() CVE-2010-3859
MLIST:[netdev] 20101028 Re: [Security] TIPC security issues CVE-2010-3865
MLIST:[netdev] 20101031 [PATCH 1/3] net: ax25: fix information leak to userland CVE-2010-3875
MLIST:[netdev] 20101031 [PATCH 2/3] net: packet: fix information leak to userland CVE-2010-3876
MLIST:[netdev] 20101031 [PATCH 3/3] net: tipc: fix information leak to userland CVE-2010-3877
MLIST:[netdev] 20101031 [SECURITY] L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[netdev] 20101102 Re: [SECURITY] CAN info leak/minor heap overflow CVE-2010-4565
MLIST:[netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow CVE-2010-3874 CVE-2010-4565
MLIST:[netdev] 20101102 [SECURITY] memory corruption in X.25 facilities parsing CVE-2010-3873
MLIST:[netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited. CVE-2010-3880
MLIST:[netdev] 20101104 Re: [SECURITY] memory corruption in X.25 facilities parsing CVE-2010-3873
MLIST:[netdev] 20101109 Re: [PATCH] Fix CAN info leak/minor heap overflow CVE-2010-4565
MLIST:[netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters CVE-2010-4158
MLIST:[netdev] 20101110 Re: [PATCH] Fix CAN info leak/minor heap overflow CVE-2010-4565
MLIST:[netdev] 20101110 Re: [PATCH] Prevent reading uninitialized memory with socket filters CVE-2010-4161
MLIST:[netdev] 20101110 Re: possible kernel oops from user MSS CVE-2010-4165
MLIST:[netdev] 20101110 can-bcm: fix minor heap overflow CVE-2010-3874
MLIST:[netdev] 20101110 possible kernel oops from user MSS CVE-2010-4165
MLIST:[netdev] 20101111 [SECURITY] [PATCH] Prevent crashing when parsing bad X.25 CVE-2010-4164
MLIST:[netdev] 20101124 [PATCH] af_unix: limit unix_tot_inflight CVE-2010-4249
MLIST:[netdev] 20101209 NULL dereference in econet AUN-over-UDP receive CVE-2010-4342
MLIST:[netdev] 20101209 Re: NULL dereference in econet AUN-over-UDP receive CVE-2010-4342
MLIST:[netdev] 20101222 [PATCH] irda: prevent integer underflow in IRLMP_ENUMDEVICES CVE-2010-4529
MLIST:[netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network CVE-2011-1173
MLIST:[netdev] 20110420 Add missing socket check in can/bcm release. CVE-2011-1598
MLIST:[netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release CVE-2011-1748
MLIST:[netdev] 20110601 Re: inet_diag insufficient validation? CVE-2011-2213
MLIST:[netdev] 20110601 inet_diag insufficient validation? CVE-2011-2213
MLIST:[netdev] 20110603 Re: inet_diag insufficient validation? CVE-2011-2213
MLIST:[netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit() CVE-2011-2213
MLIST:[netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace CVE-2011-1170
MLIST:[netfilter-devel] 20110317 [PATCH v2] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
MLIST:[netfilter] 20110310 [PATCH] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow CVE-2011-2534
MLIST:[nfsv4] 20061116 Status of execute permissions in NFSv4 ACLs ? CVE-2009-1630
MLIST:[nfsv4] 20061117 [Patch] Re: Status of execute permissions in NFSv4 ACLs ? CVE-2009-1630
MLIST:[ngIRCd-ML] 20050126 ngIRCd 0.8.2 CVE-2005-0199
MLIST:[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security CVE-2007-6062
MLIST:[nginx] 20091030 Re: null pointer dereference vulnerability in 0.1.0-0.8.13. CVE-2009-3896
MLIST:[nss-pam-ldapd-announce] 20110309 nss-pam-ldapd security advisory (CVE-2011-0438) CVE-2011-0438
MLIST:[ocfs2-devel] 20110217 [PATCH] Treat writes as new when holes span across page boundaries CVE-2011-0463
MLIST:[ode-user] 20090808 [ANNOUNCE] Apache ODE 1.3.3 CVE-2008-2370
MLIST:[oneclickorgs-devspace] 20111117 Announce: One Click Orgs 1.2.3 CVE-2011-4552 CVE-2011-4553 CVE-2011-4554 CVE-2011-4555 CVE-2011-4677 CVE-2011-4678
MLIST:[onnv-notify] 20081011 6507173 Sockets should allocate minor numbers from higher order arena CVE-2009-0480
MLIST:[onnv-notify] 20081021 6300710 recursive mutex_enter in nfs4rename_persistent_fh() CVE-2009-0069
MLIST:[openbsd-cvs] 20070103 CVS: cvs.openbsd.org: www CVE-2007-0085
MLIST:[openbsd-cvs] 20070103 Re: CVS: cvs.openbsd.org: src CVE-2007-0085
MLIST:[openbsd-cvs] 20080708 CVS: cvs.openbsd.org: src CVE-2008-3196
MLIST:[openbsd-cvs] 20080708 Re: CVS: cvs.openbsd.org: src CVE-2008-3196
MLIST:[openbsd-misc] 20050304 Re: FreeBSD hiding security stuff CVE-2005-0109
MLIST:[openbsd-misc] 20070627 Intel Core 2 CVE-2006-7215
MLIST:[openbsd-ports] 20040717 UPDATE: cyrus-sasl-2.1.19 CVE-2005-0373
MLIST:[openbsd-security-announce] 20040513 procfs vulnerability CVE-2004-0482
MLIST:[openbsd-security-announce] 20080111 errata 005 for OpenBSD 4.2: local users can provoke a kernel panic CVE-2008-0384
MLIST:[openbsd-security-announce] 20091005 OpenBSD patch: XMM exceptions incorrectly handled in i386 kernel CVE-2009-3572
MLIST:[openldap-announce] 20060801 OpenLDAP 2.3.25 available CVE-2006-4600
MLIST:[openldap-announce] 20071026 OpenLDAP 2.3.39 available CVE-2007-5707 CVE-2007-5708
MLIST:[openldap-announce] 20110212 OpenLDAP 2.4.24 available CVE-2011-1024 CVE-2011-1025 CVE-2011-1081
MLIST:[openldap-bugs] 20070411 (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash CVE-2007-6698
MLIST:[openldap-bugs] 20070411 Re: (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash CVE-2007-6698
MLIST:[openldap-technical] 20100429 ppolicy master/slave issue CVE-2011-1024
MLIST:[opensc-announce] 20080731 OpenSC Security Vulnerability and new Versions of OpenSC, OpenCT, LibP11, Pam_P11, Engine_PKCS11 CVE-2008-2235
MLIST:[opensc-announce] 20080827 opensc 0.11.6 with fixed security update CVE-2008-3972
MLIST:[opensc-announce] 20090226 OpenSC Security Advisory CVE-2009-0368
MLIST:[opensc-announce] 20090508 OpenSC 0.11.8 released with security update CVE-2009-1603
MLIST:[openssh-unix-announce] 20050901 Announce: OpenSSH 4.2 released CVE-2005-2797 CVE-2005-2798
MLIST:[openssh-unix-dev] 20040127 OpenSSH - Connection problem when LoginGraceTime exceeds time CVE-2004-2069
MLIST:[openssh-unix-dev] 20040128 Re: OpenSSH - Connection problem when LoginGraceTime exceeds time CVE-2004-2069
MLIST:[openssh-unix-dev] 20060927 Announce: OpenSSH 4.4 released CVE-2006-4924 CVE-2006-5051 CVE-2006-5052
MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_0_9_8-stable: openssl/ CHANGES openssl/crypto/b... CVE-2009-3245
MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_1_0_0-stable: openssl/crypto/bn/ bn_div.c bn_gf... CVE-2009-3245
MLIST:[openssl-cvs] 20100223 OpenSSL: openssl/crypto/bn/ bn_div.c bn_gf2m.c openssl/crypto/ec... CVE-2009-3245
MLIST:[openssl-dev] 20060829 Crash inside SMIME_read_PKCS7 if input is not MIME CVE-2006-7250
MLIST:[openssl-dev] 20080512 possible memory leak in zlib compression CVE-2008-1678
MLIST:[openssl-dev] 20090516 [openssl.org #1930] [PATCH] DTLS record buffer limitation bug CVE-2009-1377
MLIST:[openssl-dev] 20090516 [openssl.org #1931] [PATCH] DTLS fragment handling memory leak CVE-2009-1378
MLIST:[openssl-dev] 20090518 Re: [openssl.org #1931] [PATCH] DTLS fragment handling memory leak CVE-2009-1378
MLIST:[openssl-dev] 20100807 Re: openssl-1.0.0a and glibc detected sthg ;) CVE-2010-2939
MLIST:[openssl-dev] 20100807 openssl-1.0.0a and glibc detected sthg ;) CVE-2010-2939
MLIST:[openssl-dev] 20100808 Re: openssl-1.0.0a and glibc detected sthg ;) CVE-2010-2939
MLIST:[openssl-dev] 20120210 [openssl.org #2711] Fix possible NULL dereference on bad MIME headers CVE-2006-7250
MLIST:[openstack] 20111213 [OSSA 2011-001] Path traversal issues registering malicious images using EC2 API (CVE-2011-4596) CVE-2011-4596
MLIST:[openstack] 20120111 [OSSA 2012-001] Tenant bypass by authenticated users using OpenStack API (CVE-2012-0030) CVE-2012-0030
MLIST:[opensuse-updates] 20100810 openSUSE-SU-2010:0496-1 (important): strongswan: fixing snprintf overflows CVE-2010-2628
MLIST:[opensuse-updates] 20101022 openSUSE-SU-2010:0756-1 (moderate): festival security update CVE-2010-3996
MLIST:[opensuse-updates] 20110314 openSUSE-SU-2011:0171-1 (moderate): aaa_base security update CVE-2011-0461
MLIST:[opensuse-updates] 20110322 openSUSE-SU-2011:0207-1 (moderate): aaa_base security update CVE-2011-0468
MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0313-1 (critical): moonlight security update CVE-2011-0989 CVE-2011-0990 CVE-2011-0991 CVE-2011-0992
MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0314-1 (moderate): python-feedparser security update CVE-2009-5065 CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[opensuse-updates] 20110512 openSUSE-SU-2011:0483-1 (moderate): New pure-ftpd version fix STARTTLS issues (CVE-2011-1575). CVE-2011-1575
MLIST:[openvms-alerts] 20071003 VMS83A_LAN-V0200, ECO Kit Release CVE-2007-5241 CVE-2007-5242
MLIST:[openvms-alerts] 20071003 VMS83I_LAN-V0600, ECO Kit Release CVE-2007-5241 CVE-2007-5242
MLIST:[openwall-announce] 20070814 Linux 2.4.35-ow2 CVE-2007-3848
MLIST:[or-announce] 20050811 Tor security advisory: DH handshake flaw CVE-2005-2643
MLIST:[or-announce] 20060829 Tor security advisory: clients will route traffic CVE-2006-4508
MLIST:[or-announce] 20070525 Tor 0.1.2.14 is released CVE-2007-3165
MLIST:[or-announce] 20070723 Tor 0.1.2.15 is released CVE-2007-4096 CVE-2007-4097 CVE-2007-4098 CVE-2007-4099
MLIST:[or-announce] 20070802 Tor 0.1.2.16 is released CVE-2007-4174
MLIST:[or-announce] 20070901 Tor security advisory: cross-protocol http form attack CVE-2007-4174
MLIST:[or-announce] 20090122 Tor 0.2.0.33 is released CVE-2009-0414
MLIST:[or-announce] 20090209 Tor 0.2.0.34 is released (security fixes) CVE-2009-0936 CVE-2009-0937 CVE-2009-0938 CVE-2009-0939
MLIST:[or-announce] 20090625 Tor 0.2.0.35 is released CVE-2009-2425 CVE-2009-2426
MLIST:[or-announce] 20100121 Tor 0.2.1.22 is released (security fix) CVE-2010-0383 CVE-2010-0385
MLIST:[or-announce] 20101220 Tor 0.2.1.28 is released (security patches) CVE-2010-1676
MLIST:[or-announce] 20110117 Tor 0.2.1.29 is released (security patches) CVE-2011-0015 CVE-2011-0016 CVE-2011-0427 CVE-2011-0490 CVE-2011-0491 CVE-2011-0492 CVE-2011-0493
MLIST:[or-talk] 20070225 "Low-Resource Routing Attacks Against Anonymous Systems" CVE-2007-1103
MLIST:[or-talk] 20070225 Re: "Low-Resource Routing Attacks Against Anonymous Systems" CVE-2007-1103
MLIST:[or-talk] 20070225 Re: ISP controlling entry/exti ("Low-Resource Routing Attacks Against Anonymous Systems") CVE-2007-1103
MLIST:[or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18 CVE-2007-6722 CVE-2007-6723 CVE-2007-6724
MLIST:[or-talk] 20071031 Re: Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18 CVE-2007-6723
MLIST:[or-talk] 20100120 Re: Tor Project infrastructure updates in response to security breach CVE-2010-0383
MLIST:[or-talk] 20100120 Tor 0.2.2.7-alpha is out CVE-2010-0383 CVE-2010-0384 CVE-2010-0385
MLIST:[or-talk] 20100120 Tor Project infrastructure updates in response to security breach CVE-2010-0383
MLIST:[oracle-l] 20061201 Re: Oracle 9i on Windows 2003 -- Vulnerability Question CVE-2007-2110
MLIST:[oss-security 20080701 Re: [oss-security] openldap DoS CVE-2008-2952
MLIST:[oss-security] 20080311 CVE request: insecure X11 handling in ltsp CVE-2008-1293
MLIST:[oss-security] 20080312 Re: CVE request: insecure X11 handling in ltsp CVE-2008-1293
MLIST:[oss-security] 20080401 CVE id request: squid CVE-2008-1612
MLIST:[oss-security] 20080406 Re: Security fixes in m4-1.4.11 CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080406 Security fixes in m4-1.4.11 CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080407 Re: Security fixes in m4-1.4.11 CVE-2008-1687
MLIST:[oss-security] 20080411 CVE request: openfire <3.5.0 Denial of Service CVE-2008-1728
MLIST:[oss-security] 20080422 CVE Request: inspircd CVE-2008-1925
MLIST:[oss-security] 20080425 CVE request: licq denial of service CVE-2008-1996
MLIST:[oss-security] 20080502 CVE Request (PHP) CVE-2007-4850 CVE-2008-0599 CVE-2008-0674 CVE-2008-2050 CVE-2008-2051
MLIST:[oss-security] 20080514 Re: CVE id request: uudeview CVE-2008-2266
MLIST:[oss-security] 20080520 Re: CVE ID request: GNUTLS CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[oss-security] 20080521 New Xen ioemu: PVFB backend issue CVE-2008-1952
MLIST:[oss-security] 20080521 Re: CVE request: mtr CVE-2008-2357
MLIST:[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) CVE-2007-5962
MLIST:[oss-security] 20080521 vsftpd CVE-2007-5962 (Red Hat / Fedora specific) CVE-2007-5962
MLIST:[oss-security] 20080529 CVE-2008-2363: pan - heap overflow CVE-2008-2363
MLIST:[oss-security] 20080530 Re: CVE id request: uudeview CVE-2008-2266
MLIST:[oss-security] 20080531 Re: CVE id request: ikiwiki CVE-2008-0169
MLIST:[oss-security] 20080604 CVE id request: slash CVE-2008-2231
MLIST:[oss-security] 20080604 Re: CVE id request: slash CVE-2008-2231
MLIST:[oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing CVE-2008-0960
MLIST:[oss-security] 20080610 Re: exploitability of off-by-one in motion webserver CVE-2008-2654
MLIST:[oss-security] 20080610 exploitability of off-by-one in motion webserver CVE-2008-2654
MLIST:[oss-security] 20080611 CVE id request: nasm off-by-one CVE-2008-2719
MLIST:[oss-security] 20080611 Re: CVE id request: nasm off-by-one CVE-2008-2719
MLIST:[oss-security] 20080611 Re: exploitability of off-by-one in motion webserver CVE-2008-2654
MLIST:[oss-security] 20080613 CVE Id Request: fetchmail <= 6.3.8 DoS when logging long headers in -v -v mode CVE-2008-2711
MLIST:[oss-security] 20080615 CVE id request: Clamav CVE-2008-2713
MLIST:[oss-security] 20080616 CVE Id request: vim CVE-2008-2712
MLIST:[oss-security] 20080617 Re: CVE id request: Clamav CVE-2008-2713
MLIST:[oss-security] 20080619 CVE request: php 5.2.6 ext/imap buffer overflows CVE-2008-2829
MLIST:[oss-security] 20080619 Re: query on a pppol2tp_recvmsg() fix - security relevant? CVE-2008-2750
MLIST:[oss-security] 20080624 Re: CVE request: php 5.2.6 ext/imap buffer overflows CVE-2008-2829
MLIST:[oss-security] 20080626 CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25 CVE-2008-2365
MLIST:[oss-security] 20080627 CVE Request (pidgin) CVE-2008-2956 CVE-2008-2957
MLIST:[oss-security] 20080630 CVE id request mercurial:Insufficient input validation CVE-2008-2942
MLIST:[oss-security] 20080630 CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080630 CVE-2008-2375 older vsftpd authentication memory leak CVE-2008-2375
MLIST:[oss-security] 20080701 Re: CVE id request mercurial:Insufficient input validation CVE-2008-2942
MLIST:[oss-security] 20080701 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080702 More ruby integer overflows (rb_ary_fill / Array#fill) CVE-2008-2376
MLIST:[oss-security] 20080702 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080703 2.6.25.10 security fixes, please assign CVE id CVE-2008-2812 CVE-2008-3077
MLIST:[oss-security] 20080703 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080703 Re: Re: CVE Request (pidgin) CVE-2008-2927
MLIST:[oss-security] 20080704 Re: Re: CVE Request (pidgin) CVE-2008-2927
MLIST:[oss-security] 20080707 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080708 CVE-2008-2931 kernel: missing check before setting mount propagation CVE-2008-2931
MLIST:[oss-security] 20080708 Re: CVE id request: Clamav CVE-2008-3215
MLIST:[oss-security] 20080708 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080708 Re: CVE request: moodle xss in < 1.8.5 CVE-2008-1502
MLIST:[oss-security] 20080708 Re: CVE-2008-2931 kernel: missing check before setting mount propagation CVE-2008-2931
MLIST:[oss-security] 20080708 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080709 CVE id request: projectl CVE-2008-3216
MLIST:[oss-security] 20080709 CVE request: PowerDNS recursor source port randomization CVE-2008-3217
MLIST:[oss-security] 20080710 CVE id request: libavformat CVE-2008-3162
MLIST:[oss-security] 20080710 CVE request: multiple drupal issues in < 6.3,5.8 CVE-2008-3218 CVE-2008-3219 CVE-2008-3220 CVE-2008-3221 CVE-2008-3222 CVE-2008-3223
MLIST:[oss-security] 20080710 Re: DNS vulnerability: other relevant software CVE-2008-3217
MLIST:[oss-security] 20080710 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080712 CVE id request: op CVE-2008-3229
MLIST:[oss-security] 20080712 CVE request: phpbb < 3.0.2 CVE-2008-3224
MLIST:[oss-security] 20080712 CVE requests: joomla <1.5.4 CVE-2008-3225 CVE-2008-3226 CVE-2008-3227 CVE-2008-3228
MLIST:[oss-security] 20080712 Re: CVE request for dnsmasq DoS CVE-2008-3214
MLIST:[oss-security] 20080713 CVE requests: crashers by zzuf CVE-2008-3230 CVE-2008-3231
MLIST:[oss-security] 20080713 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080713 Re: openldap DoS CVE-2008-2952
MLIST:[oss-security] 20080714 CVE request: dotclear < 1.2.8 CVE-2008-3232
MLIST:[oss-security] 20080714 Re: CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25 CVE-2008-2365
MLIST:[oss-security] 20080715 CVE request: Wordpress XSS CVE-2008-3233
MLIST:[oss-security] 20080715 CVE request: phpmyadmin < 2.11.7.1 CVE-2008-3197
MLIST:[oss-security] 20080715 Re: CVE id request: Clamav CVE-2008-3215
MLIST:[oss-security] 20080715 Re: Re: More arbitrary code executions in Netrw CVE-2008-3074 CVE-2008-3075 CVE-2008-3432
MLIST:[oss-security] 20080716 Re: CVE id request: libavformat CVE-2008-3162
MLIST:[oss-security] 20080716 Re: CVE request: PowerDNS recursor source port randomization CVE-2008-3217
MLIST:[oss-security] 20080716 Re: CVE request: Wordpress XSS CVE-2008-3233
MLIST:[oss-security] 20080716 Re: CVE request: phpmyadmin < 2.11.7.1 CVE-2008-2960
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw CVE-2008-3432
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080801 Re: CVE request: phpwebgallery < 1.7.2 CVE-2008-3451
MLIST:[oss-security] 20080804 CVE id request: openttd CVE-2008-3547
MLIST:[oss-security] 20080805 Re: CVE id request: openttd CVE-2008-3547
MLIST:[oss-security] 20080807 Re: CVE id request: openttd CVE-2008-3547
MLIST:[oss-security] 20080808 CVE request: php-5.2.6 overflow issues CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080808 Re: CVE request: php-5.2.6 overflow issues CVE-2008-3659
MLIST:[oss-security] 20080813 Re: CVE request: php-5.2.6 overflow issues CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080815 CVE request for neon CVE-2008-3746
MLIST:[oss-security] 20080815 CVE-2008-3276 Linux kernel dccp_setsockopt_change() integer overflow CVE-2008-3276
MLIST:[oss-security] 20080819 Re: swfdec 0.6.8 stable update CVE-2008-3796
MLIST:[oss-security] 20080819 swfdec 0.6.8 stable update CVE-2008-3796
MLIST:[oss-security] 20080819 wordpress 2.6.1 CVE-2008-3747
MLIST:[oss-security] 20080820 FW: CVE-2008-1668 - ftpd 2.4 - unauthorized root access - patch details CVE-2008-1668
MLIST:[oss-security] 20080820 Re: CVE request for neon CVE-2008-3746
MLIST:[oss-security] 20080820 Re: wordpress 2.6.1 CVE-2008-3747
MLIST:[oss-security] 20080824 Re: CVE id request: vlc CVE-2008-3794
MLIST:[oss-security] 20080825 CVE Request (gpicview) CVE-2008-3791
MLIST:[oss-security] 20080825 CVE Request (ruby) CVE-2008-3790
MLIST:[oss-security] 20080825 CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API CVE-2008-3792
MLIST:[oss-security] 20080826 CVE Request (samba) CVE-2008-3789
MLIST:[oss-security] 20080826 CVE-2008-3526 Linux kernel sctp_setsockopt_auth_key() integer overflow CVE-2008-3526
MLIST:[oss-security] 20080826 Re: CVE Request (gpicview) CVE-2008-3791
MLIST:[oss-security] 20080826 Re: CVE Request (ruby) CVE-2008-3790
MLIST:[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API CVE-2008-3792
MLIST:[oss-security] 20080827 CVE request: mono Sys.Web header injection CVE-2008-3906
MLIST:[oss-security] 20080829 CVE-2008-3525 kernel: missing capability checks in sbni_ioctl() CVE-2008-3525
MLIST:[oss-security] 20080831 Re: CVE Request (gpicview) CVE-2008-3904
MLIST:[oss-security] 20080901 CVE id request: newsbeuter CVE-2008-3907
MLIST:[oss-security] 20080903 CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) CVE-2008-3905
MLIST:[oss-security] 20080903 Re: CVE Request (gpicview) CVE-2008-3904
MLIST:[oss-security] 20080903 django CSRF vuln CVE-2008-3909
MLIST:[oss-security] 20080903 request for CVE: clamav 0.94 release CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080904 CVE id request: dns2tcp CVE-2008-3910
MLIST:[oss-security] 20080904 CVE request: kernel: dio: zero struct dio with kzalloc instead of manually CVE-2007-6716
MLIST:[oss-security] 20080904 CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl CVE-2008-3915
MLIST:[oss-security] 20080904 CVE request: kernel: sunrpc: fix possible overrun on read of /proc/sys/sunrpc/transports CVE-2008-3911
MLIST:[oss-security] 20080904 Re: CVE Request (ruby -- DNS spoofing vulnerability CVE-2008-3905
MLIST:[oss-security] 20080904 Re: CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl CVE-2008-3915
MLIST:[oss-security] 20080904 Re: request for CVE: clamav 0.94 release CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080906 CVE id requests: gmanedit CVE-2008-3971
MLIST:[oss-security] 20080906 CVE request: pam_mount < 0.47 missing security checks CVE-2008-3970
MLIST:[oss-security] 20080908 Re: CVE request for bitlbee CVE-2008-3969
MLIST:[oss-security] 20080909 CVE request (libpng) CVE-2008-3964
MLIST:[oss-security] 20080909 CVE request: MySQL empty bit-string literal server crash CVE-2008-3963
MLIST:[oss-security] 20080909 CVE request: mybb < 1.4.1 CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE id requests: gmanedit CVE-2008-3971
MLIST:[oss-security] 20080909 Re: CVE request (libpng) CVE-2008-3964
MLIST:[oss-security] 20080909 Re: CVE request for bitlbee CVE-2008-3969
MLIST:[oss-security] 20080909 Re: CVE request: MySQL empty bit-string literal server crash CVE-2008-3963
MLIST:[oss-security] 20080909 Re: CVE request: MySQL incomplete fix for CVE-2008-2079 CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080909 Re: CVE request: mybb < 1.4.1 CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE request: pam_mount < 0.47 missing security checks CVE-2008-3970
MLIST:[oss-security] 20080909 Re: cve request: punbb < 1.2.20 xss CVE-2008-3968
MLIST:[oss-security] 20080909 Re: opensc 0.11.6 with fixed security update CVE-2008-3972
MLIST:[oss-security] 20080909 Re: ssmtp =2.62 unitialized memory disclosure CVE-2008-3962
MLIST:[oss-security] 20080909 cve request: punbb < 1.2.20 xss CVE-2008-3968
MLIST:[oss-security] 20080909 ssmtp =2.62 unitialized memory disclosure CVE-2008-3962
MLIST:[oss-security] 20080910 [oCERT-2008-012] Horde, Popoon frameworks common input sanitization errors (XSS) CVE-2008-3823 CVE-2008-3824
MLIST:[oss-security] 20080911 CVE request for Joomla multiple vuln. CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: joomla < 1.5.7 CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: wordpress < 2.6.2 CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080911 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080911 Re: [oss-list] CVE request (vim) CVE-2008-4101
MLIST:[oss-security] 20080911 Re: ssmtp =2.62 unitialized memory disclosure CVE-2008-3962
MLIST:[oss-security] 20080911 [oss-list] CVE request (vim) CVE-2008-4101
MLIST:[oss-security] 20080913 CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection CVE-2008-4094
MLIST:[oss-security] 20080915 CVE Request (python) CVE-2008-4108
MLIST:[oss-security] 20080915 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb) CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080915 Re: CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection CVE-2008-4094
MLIST:[oss-security] 20080915 Re: [oss-list] CVE request (vim) CVE-2008-4101
MLIST:[oss-security] 20080915 Re: phpMyAdmin code execution (CVE request) CVE-2008-4096
MLIST:[oss-security] 20080915 phpMyAdmin code execution (CVE request) CVE-2008-4096
MLIST:[oss-security] 20080916 CVE request: kernel: splice: fix bad unlock_page() in error case CVE-2008-4302
MLIST:[oss-security] 20080916 Re: CVE Request (python) CVE-2008-4108
MLIST:[oss-security] 20080916 Re: CVE request: MySQL incomplete fix for CVE-2008-2079 CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080916 Re: CVE request: joomla < 1.5.7 CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080916 Re: CVE request: wordpress < 2.6.2 CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080918 CVE Request (mercurial) CVE-2008-4297
MLIST:[oss-security] 20080918 CVE Request (openswan, emacspeak, cman) CVE-2008-4192
MLIST:[oss-security] 20080918 CVE-2008-3528 Linux kernel ext[234] directory corruption DoS CVE-2008-3528
MLIST:[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080919 viewvc security flaw? CVE-2008-4325
MLIST:[oss-security] 20080920 Re: viewvc security flaw? CVE-2008-4325
MLIST:[oss-security] 20080923 CVE req: phpmyadmin < 2.11.9.2 xss CVE-2008-4326
MLIST:[oss-security] 20080923 Re: CVE Request (openswan, emacspeak, cman) CVE-2008-4192
MLIST:[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080924 CVE request: kernel: open() call allows setgid bit when user is not in new file's group CVE-2008-4210
MLIST:[oss-security] 20080924 Re: CVE id request: fraud2 CVE-2008-4201
MLIST:[oss-security] 20080924 Re: CVE request: kernel: open() call allows setgid bit when user is not in new file's group CVE-2008-4210
MLIST:[oss-security] 20080925 CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-4445
MLIST:[oss-security] 20080926 CVE Request (lighttpd) CVE-2008-4298
MLIST:[oss-security] 20080926 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-3792 CVE-2008-4113 CVE-2008-4445
MLIST:[oss-security] 20080927 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-4445
MLIST:[oss-security] 20080929 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option CVE-2008-4445
MLIST:[oss-security] 20080930 CVE Request (xen) CVE-2008-4405
MLIST:[oss-security] 20080930 Re: CVE request: lighttpd issues CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20080930 Re: Re: CVE request: lighttpd issues CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20081001 CVE id request: sabre CVE-2008-4406
MLIST:[oss-security] 20081002 CVE request: XSS in mediawiki 1.13.1 and 1.12.0 CVE-2008-4408
MLIST:[oss-security] 20081002 CVE-2008-3832 kernel: null pointer dereference in utrace_control CVE-2008-3832
MLIST:[oss-security] 20081002 libxml2 "ampproblem" DoS CVE-2008-4409
MLIST:[oss-security] 20081003 CVE request: kernel: x86: Fix broken LDT access in VMI CVE-2008-4410
MLIST:[oss-security] 20081003 CVE-2008-3833 kernel: remove SUID when splicing into an inode CVE-2008-3833
MLIST:[oss-security] 20081003 Re: regarding CVE-2008-4382 & CVE-2008-4381 CVE-2008-4381
MLIST:[oss-security] 20081003 regarding CVE-2008-4382 & CVE-2008-4381 CVE-2008-4381
MLIST:[oss-security] 20081004 Re: CVE Request (xen) CVE-2008-4405
MLIST:[oss-security] 20081006 CVE request - (vim : netrw plugin - ftp user credentials disclosure) CVE-2008-4677
MLIST:[oss-security] 20081006 CVE request: kernel: sctp: Fix kernel panic while process protocol violation parameter CVE-2008-4618
MLIST:[oss-security] 20081007 CVE request: crashers / potential security risks in mplayer CVE-2007-6718 CVE-2008-4610
MLIST:[oss-security] 20081008 CVE request: kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH CVE-2008-4576
MLIST:[oss-security] 20081009 lynx lynxcgi handler flaw CVE-2008-4690
MLIST:[oss-security] 20081013 CVE id request: qemu CVE-2008-4553
MLIST:[oss-security] 20081013 CVE request: kernel: don't allow splice() to files opened with O_APPEND CVE-2008-4554
MLIST:[oss-security] 20081013 Re: CVE Request CVE-2008-4579 CVE-2008-4580
MLIST:[oss-security] 20081014 Re: CVE id request: qemu CVE-2008-4553
MLIST:[oss-security] 20081014 Re: CVE request: kernel: don't allow splice() to files opened with O_APPEND CVE-2008-4554
MLIST:[oss-security] 20081015 CVE request: jhead CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Re: CVE request: jhead CVE-2008-4575 CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Vim CVE issues cleanup (plugins tar.vim, zip.vim) - CVE-2008-3074 and CVE-2008-3075 CVE-2008-2712 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20081016 CVE request - Vim netrw.plugin CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081016 Re: CVE Request CVE-2008-4580
MLIST:[oss-security] 20081016 Re: CVE request: jhead CVE-2008-4639 CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081019 CVE id request: vlc CVE-2008-4654 CVE-2008-4686
MLIST:[oss-security] 20081019 CVE request: mantisbt < 1.1.4: RCE CVE-2008-4687
MLIST:[oss-security] 20081020 CVE request (vim) CVE-2008-3074 CVE-2008-3075 CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081020 Re: CVE request: mantisbt < 1.1.4: RCE CVE-2008-4688 CVE-2008-4689
MLIST:[oss-security] 20081021 CVE Request: Opera 9.60 with security fixes CVE-2008-4694 CVE-2008-4695
MLIST:[oss-security] 20081021 CVE req: drupal < 5.11/6.5 CVE-2008-4789 CVE-2008-4790 CVE-2008-4791 CVE-2008-4792 CVE-2008-4793
MLIST:[oss-security] 20081021 Re: CVE Request: Opera 9.60 with security fixes CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 CVE Request (netpbm) CVE-2008-4799
MLIST:[oss-security] 20081022 Re: CVE Request: Opera 9.60 with security fixes CVE-2008-4694 CVE-2008-4695 CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 Re: CVE id request: vlc CVE-2008-4686
MLIST:[oss-security] 20081023 CVE request for ecryptfs CVE-2008-5188
MLIST:[oss-security] 20081023 Re: CVE Request (netpbm) CVE-2008-4799
MLIST:[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw CVE-2006-7234
MLIST:[oss-security] 20081025 Regarding SA32329 (Smarty "_expand_quoted_text()" Security Bypass) CVE-2008-4810 CVE-2008-4811
MLIST:[oss-security] 20081027 CVE id request: blender CVE-2008-4863
MLIST:[oss-security] 20081027 CVE request -- Python imageop#3 CVE-2008-4864
MLIST:[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw CVE-2008-4865
MLIST:[oss-security] 20081027 XSS in HTML Tidy plugin used in WYSIWYG HTML editors CVE-2008-4761
MLIST:[oss-security] 20081028 CVE-2008-4619 / milw0rm6775 CVE-2008-4619
MLIST:[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw CVE-2008-4865
MLIST:[oss-security] 20081029 CVE Request (dovecot) CVE-2008-4870
MLIST:[oss-security] 20081029 CVE Request - Python imageop CVE-2008-4864
MLIST:[oss-security] 20081029 Fwd: [Full-disclosure] [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities CVE-2008-4866 CVE-2008-4867 CVE-2008-4868 CVE-2008-4869
MLIST:[oss-security] 20081029 Re: CVE request for ecryptfs CVE-2008-5188
MLIST:[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw CVE-2008-4865
MLIST:[oss-security] 20081029 Re: CVE-2008-4619 / milw0rm6775 CVE-2008-4619
MLIST:[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire CVE-2003-0308 CVE-2008-3883 CVE-2008-3927 CVE-2008-3928 CVE-2008-3929 CVE-2008-3930 CVE-2008-3931 CVE-2008-4085 CVE-2008-4190 CVE-2008-4191 CVE-2008-4192 CVE-2008-4440 CVE-2008-4474 CVE-2008-4475 CVE-2008-4476 CVE-2008-4477 CVE-2008-4553 CVE-2008-4935 CVE-2008-4936 CVE-2008-4937 CVE-2008-4938 CVE-2008-4939 CVE-2008-4940 CVE-2008-4941 CVE-2008-4942 CVE-2008-4943 CVE-2008-4944 CVE-2008-4945 CVE-2008-4946 CVE-2008-4947 CVE-2008-4948 CVE-2008-4949 CVE-2008-4950 CVE-2008-4951 CVE-2008-4952 CVE-2008-4953 CVE-2008-4954 CVE-2008-4955 CVE-2008-4956 CVE-2008-4957 CVE-2008-4958 CVE-2008-4959 CVE-2008-4960 CVE-2008-4964 CVE-2008-4965 CVE-2008-4966 CVE-2008-4967 CVE-2008-4968 CVE-2008-4969 CVE-2008-4970 CVE-2008-4971 CVE-2008-4972 CVE-2008-4973 CVE-2008-4974 CVE-2008-4975 CVE-2008-4976 CVE-2008-4977 CVE-2008-4978 CVE-2008-4979 CVE-2008-4980 CVE-2008-4981 CVE-2008-4982 CVE-2008-4983 CVE-2008-4984 CVE-2008-4985 CVE-2008-4986 CVE-2008-4987 CVE-2008-4988 CVE-2008-4993 CVE-2008-4994 CVE-2008-4995 CVE-2008-4996 CVE-2008-4997 CVE-2008-4998 CVE-2008-5007 CVE-2008-5034
MLIST:[oss-security] 20081031 New net-snmp DoS CVE-2008-4309
MLIST:[oss-security] 20081031 Re: CVE-2008-4619 / milw0rm6775 CVE-2008-4619
MLIST:[oss-security] 20081101 CVE request (Fwd: MyBB 1.4.2: Multiple Vulnerabilties) CVE-2008-4928 CVE-2008-4929 CVE-2008-4930
MLIST:[oss-security] 20081101 CVE-2008-4796: snoopy triage CVE-2008-4796
MLIST:[oss-security] 20081102 CVE id request: htop CVE-2008-5076
MLIST:[oss-security] 20081103 CVE Request (libsamplerate) CVE-2008-5008
MLIST:[oss-security] 20081103 CVE request - uw-imap CVE-2008-5005
MLIST:[oss-security] 20081103 CVE requests: kernel: hfsplus-related bugs CVE-2008-4933 CVE-2008-4934
MLIST:[oss-security] 20081103 Re: CVE request - uw-imap CVE-2008-5005 CVE-2008-5006
MLIST:[oss-security] 20081105 CVE Request - Python string expandtabs CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 CVE id request: vlc CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081105 CVE request: libcdaudio CVE-2008-5030
MLIST:[oss-security] 20081105 Re: CVE Request - Python string expandtabs CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 VideoLAN security advisory 0810 CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081106 CVE request: Nagios (two issues) CVE-2008-5027 CVE-2008-5028
MLIST:[oss-security] 20081106 CVE request: kernel: Unix sockets kernel panic CVE-2008-5029
MLIST:[oss-security] 20081107 Re: CVE request: libcdaudio CVE-2008-5030
MLIST:[oss-security] 20081110 GeSHi: Clarification about the recent security (non-)issues (SA32559) CVE-2008-5186
MLIST:[oss-security] 20081110 Re: CVE id request: vlc CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081110 Re: CVE requests: kernel: hfsplus-related bugs CVE-2008-5025
MLIST:[oss-security] 20081111 CVE request: kernel: libertas: fix buffer overrun CVE-2008-5134
MLIST:[oss-security] 20081111 Re: CVE request: libcdaudio CVE-2008-5030
MLIST:[oss-security] 20081111 Re: CVE requests: kernel: hfsplus-related bugs CVE-2008-5025
MLIST:[oss-security] 20081112 CVE Request - Zope 2 - PythonScripts local DoS CVE-2008-5102
MLIST:[oss-security] 20081112 CVE Request -- OptiPNG CVE-2008-5101
MLIST:[oss-security] 20081113 CVE request: wordpress can be subject of delayed attacks via cookies CVE-2008-5113
MLIST:[oss-security] 20081114 Re: CVE id request: htop CVE-2008-5076
MLIST:[oss-security] 20081117 CVE Request (syslog-ng) CVE-2008-5110
MLIST:[oss-security] 20081119 CVE request: CUPS DoS via RSS subscriptions CVE-2008-5183 CVE-2008-5184
MLIST:[oss-security] 20081119 Re: CVE request: CUPS DoS via RSS subscriptions CVE-2008-5183
MLIST:[oss-security] 20081120 CVE Request: imlib2 CVE-2008-5187
MLIST:[oss-security] 20081120 CVE id request: another geshi issue (was: [oss-security] GeSHi: Clarification about the recent security (non-)issues (SA32559)) CVE-2008-5185
MLIST:[oss-security] 20081120 CVE request: no-ip DUC buffer overflow CVE-2008-5297
MLIST:[oss-security] 20081120 Re: CVE request: CUPS DoS via RSS subscriptions CVE-2008-5183
MLIST:[oss-security] 20081124 CVE Request -- wireshark CVE-2008-5285
MLIST:[oss-security] 20081127 Re: CVE request: jhead CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks CVE-2008-5312 CVE-2008-5313
MLIST:[oss-security] 20081128 CVE request: lcms (old issues) CVE-2008-5316 CVE-2008-5317
MLIST:[oss-security] 20081128 Re: [oss-security] CVE Request - cups, dovecot-managesieve, perl, wireshark CVE-2008-5302 CVE-2008-5303
MLIST:[oss-security] 20081201 (sort of urgent) CVE Request -- cups (repost) CVE-2008-5286
MLIST:[oss-security] 20081201 CVE request: clamav 0.94.2 CVE-2008-5314
MLIST:[oss-security] 20081203 CVE Request (zaptel) CVE-2008-5396
MLIST:[oss-security] 20081204 CVE for SE-2008-06 in PHP 5.2.7 (ZipArchive) CVE-2008-5658
MLIST:[oss-security] 20081204 ruby CVE-2008-4310 (Red Hat specific) CVE-2008-4310
MLIST:[oss-security] 20081206 CVE request: weak PRNG in GNU Classpath CVE-2008-5659
MLIST:[oss-security] 20081209 CVE request: Four issues in PunBB CVE-2008-5433 CVE-2008-5434 CVE-2008-5435
MLIST:[oss-security] 20081209 CVE request: kernel: MIPS: Fix potential DOS by untrusted user app CVE-2008-5701
MLIST:[oss-security] 20081209 CVE request: kernel: enforce a minimum SG_IO timeout CVE-2008-5700
MLIST:[oss-security] 20081209 CVE request: moodle (XSS) CVE-2008-5432
MLIST:[oss-security] 20081210 CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug CVE-2008-5702
MLIST:[oss-security] 20081212 CVE Request - roundcubemail CVE-2008-5619
MLIST:[oss-security] 20081214 Avahi daemon DoS (CVE-2008-5081) CVE-2008-5081
MLIST:[oss-security] 20081216 CVE id request: gpsdrive CVE-2008-5703 CVE-2008-5704
MLIST:[oss-security] 20081216 CVE id request: verlihub CVE-2008-5705 CVE-2008-5706
MLIST:[oss-security] 20081216 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug CVE-2008-5702
MLIST:[oss-security] 20081217 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug CVE-2008-5702
MLIST:[oss-security] 20081219 CVE Request - Incomplete dahdi/zaptel tor2.c patch for CVE-2008-5396 CVE-2008-5744
MLIST:[oss-security] 20081219 CVE Request -- Xen (Upstream patch for CVE-2008-4405 is incomplete) CVE-2008-5716
MLIST:[oss-security] 20081219 CVE request - pdfjam CVE-2008-5743
MLIST:[oss-security] 20081223 CVE request: kernel: soft lockup occurs when network load is very high CVE-2008-5713
MLIST:[oss-security] 20081228 Re: CVE request - pdfjam CVE-2008-5843
MLIST:[oss-security] 20081230 CVE id request: audiofile CVE-2008-5824
MLIST:[oss-security] 20090105 CVE request: kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID CVE-2009-0065
MLIST:[oss-security] 20090106 Fwd: Using xdg-open in /etc/mailcap causes hole in Firefox (Demonstration/Exploit included) CVE-2009-0068
MLIST:[oss-security] 20090108 CVE request: ktorrent CVE-2008-5905 CVE-2008-5906
MLIST:[oss-security] 20090109 libpng non issue CVE-2008-5907
MLIST:[oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto CVE-2009-0124 CVE-2009-0125 CVE-2009-0126 CVE-2009-0127 CVE-2009-0128 CVE-2009-0129 CVE-2009-0130
MLIST:[oss-security] 20090112 CVE request: xrdp CVE-2008-5902 CVE-2008-5903 CVE-2008-5904
MLIST:[oss-security] 20090112 CVE-2009-0024 kernel: local privilege escalation in sys_remap_file_pages CVE-2009-0024
MLIST:[oss-security] 20090113 CVE Request -- libmikmod CVE-2007-6720 CVE-2009-0179
MLIST:[oss-security] 20090113 CVE-2008-4307 kernel: local denial of service in locks_remove_flock CVE-2008-4307
MLIST:[oss-security] 20090114 CVE Request -- amarok CVE-2009-0135 CVE-2009-0136
MLIST:[oss-security] 20090114 update on CVE-2008-5718 CVE-2008-5718
MLIST:[oss-security] 20090115 CVE request -- git CVE-2008-5916
MLIST:[oss-security] 20090118 CVE request: WebSVN CVE-2009-0240
MLIST:[oss-security] 20090119 CVE-2009-0031 kernel: local denial of service in keyctl_join_session_keyring CVE-2009-0031
MLIST:[oss-security] 20090120 Re: CVE request -- git CVE-2008-5516 CVE-2008-5517 CVE-2008-5916
MLIST:[oss-security] 20090121 CVE Request -- openoffice.org (CVE-2008-4841) CVE-2009-0259
MLIST:[oss-security] 20090121 Re: CVE request -- git CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090121 mod-auth-mysql: SQL injection CVE-2008-2384
MLIST:[oss-security] 20090123 Re: CVE id request: typo3 SA-2009-001 CVE-2009-0258
MLIST:[oss-security] 20090123 Re: CVE request -- git CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090126 CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) CVE-2008-5983 CVE-2008-5984 CVE-2008-5985 CVE-2008-5986 CVE-2008-5987 CVE-2009-0314 CVE-2009-0315 CVE-2009-0316 CVE-2009-0317 CVE-2009-0318
MLIST:[oss-security] 20090127 CVE Request: MoinMoin CVE-2009-0312
MLIST:[oss-security] 20090128 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) CVE-2008-5983
MLIST:[oss-security] 20090129 CVE Request (trickle) CVE-2009-0415
MLIST:[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version) CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 CVE-2009-0398
MLIST:[oss-security] 20090130 CVE Request - php (PHP BZ#27421) CVE-2009-0754
MLIST:[oss-security] 20090130 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric) CVE-2008-5983
MLIST:[oss-security] 20090203 CVE Request: sblim-sfcb genSslCert.sh temp race CVE-2009-0416
MLIST:[oss-security] 20090203 Re: CVE Request - php (PHP BZ#27421) CVE-2009-0754
MLIST:[oss-security] 20090204 CVS request - Moodle CVE-2009-0499 CVE-2009-0500 CVE-2009-0501 CVE-2009-0502
MLIST:[oss-security] 20090206 CVE Request - Wicd <= 1.5.8 CVE-2009-0489
MLIST:[oss-security] 20090206 CVE request: phpbb < 3.0.4 CVE-2008-6506 CVE-2008-6507
MLIST:[oss-security] 20090206 Re: CVE request: jhead CVE-2008-4639
MLIST:[oss-security] 20090207 CVE Request: pycrypto CVE-2009-0544
MLIST:[oss-security] 20090208 CVE-2008-6049 is bogus CVE-2008-6049
MLIST:[oss-security] 20090210 CVE Request -- evolution CVE-2009-0547
MLIST:[oss-security] 20090210 CVE request: typo3 xss (typo3-sa-2009-002) CVE-2009-0815 CVE-2009-0816
MLIST:[oss-security] 20090210 libvirt_proxy heads up CVE-2009-0036
MLIST:[oss-security] 20090211 CVE request for proftpd CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090211 Re: CVE request for proftpd CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090212 CVE Request -- net-snmp (sensitive host information disclosure) CVE-2008-6123
MLIST:[oss-security] 20090212 CVE-2008-5621 is a duplicate (was: Re: CVE request: phpMyAdmin < 3.1.1.0 (SQL injection through XSRF on several pages )) CVE-2008-5621
MLIST:[oss-security] 20090212 Re: CVE Request -- net-snmp (sensitive host information disclosure) CVE-2008-6123
MLIST:[oss-security] 20090212 Re: CVE Request: pycrypto CVE-2009-0544
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel CVE-2009-1046
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel issue CVE-2009-1046
MLIST:[oss-security] 20090212 http://www.securityfocus.com/bid/33672/info kernel issue CVE-2009-1046
MLIST:[oss-security] 20090213 CVE Request: Poppler -Two Denial of Service Vulnerabilities CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090219 CVE request for yaws CVE-2009-0751
MLIST:[oss-security] 20090219 Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090220 CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt CVE-2009-0676
MLIST:[oss-security] 20090220 CVE request: kernel: skfp_ioctl inverted logic flaw CVE-2009-0675
MLIST:[oss-security] 20090223 CVE request: mldonkey arbitrary file download vulnerability CVE-2009-0753
MLIST:[oss-security] 20090224 CVE request: optipng security release CVE-2009-0749
MLIST:[oss-security] 20090224 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt CVE-2009-0676
MLIST:[oss-security] 20090225 CVE request: Psi <0.12.1 DoS CVE-2008-6393
MLIST:[oss-security] 20090225 Re: CVE Request - php (PHP BZ#27421) CVE-2009-0754
MLIST:[oss-security] 20090225 Re: CVE request: optipng security release CVE-2009-0749
MLIST:[oss-security] 20090226 OpenSC Security Advisory CVE-2009-0368
MLIST:[oss-security] 20090301 CVE id request: znc CVE-2009-0759
MLIST:[oss-security] 20090302 CVE Request: mpfr (Buffer Overflow) CVE-2009-0757
MLIST:[oss-security] 20090302 CVE id request: avahi CVE-2009-0758
MLIST:[oss-security] 20090302 CVE id request: dkim-milter CVE-2009-0770
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole CVE-2009-0835
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole CVE-2009-0834
MLIST:[oss-security] 20090302 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt CVE-2009-0676
MLIST:[oss-security] 20090305 CVE Request -- pam CVE-2009-0887
MLIST:[oss-security] 20090306 CVE request: kernel: inotify local DoS CVE-2009-0935
MLIST:[oss-security] 20090306 CVE request: kernel: shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM CVE-2009-0859
MLIST:[oss-security] 20090307 CVE Request: Opera <9.64: Execution of arbitrary code CVE-2009-0914
MLIST:[oss-security] 20090311 CVE request -- postgresql CVE-2009-0922
MLIST:[oss-security] 20090311 CVE-2009-0778 kernel: rt_cache leak CVE-2009-0778
MLIST:[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows CVE-2008-4316 CVE-2009-0585 CVE-2009-0586 CVE-2009-0587
MLIST:[oss-security] 20090316 CVE request: XSS in MUC logs of ejabberd CVE-2009-0934
MLIST:[oss-security] 20090316 CVE-2009-0876 (VirtualBox) references CVE-2009-0876
MLIST:[oss-security] 20090317 CVE request -- firefox, vlc, WeeChat CVE-2009-1045
MLIST:[oss-security] 20090317 Re: CVE request -- firefox, vlc, WeeChat CVE-2009-0661
MLIST:[oss-security] 20090317 Re: CVE-2009-0876 (VirtualBox) references CVE-2009-0876
MLIST:[oss-security] 20090317 Re: [oCERT-2008-015] glib and glib-predecessor heap overflows CVE-2008-4316
MLIST:[oss-security] 20090318 Re: CVE request: kernel: inotify local DoS CVE-2009-0935
MLIST:[oss-security] 20090319 Re: CVE request: kernel: inotify local DoS CVE-2009-0935
MLIST:[oss-security] 20090323 CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap CVE-2009-1073
MLIST:[oss-security] 20090323 CVE request: API key disclosure in piwik CVE-2009-1085
MLIST:[oss-security] 20090323 CVE request: kernel: nfsd did not drop CAP_MKNOD for non-root CVE-2009-1072
MLIST:[oss-security] 20090324 CVE id request: ldns CVE-2009-1086
MLIST:[oss-security] 20090324 Re: CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap CVE-2009-1073
MLIST:[oss-security] 20090325 CVE request -- zsh, XFree86-xfs/xorg-x11-xfs, screen CVE-2009-1214 CVE-2009-1215
MLIST:[oss-security] 20090330 [Fwd: Cross-Site Scripting in Banshee DAAP Extension] CVE-2009-1175
MLIST:[oss-security] 20090401 CVE id rquest: xfig insecure tmp files CVE-2009-1962
MLIST:[oss-security] 20090401 CVE request -- bibtex, pam_ssh CVE-2009-1284
MLIST:[oss-security] 20090401 CVE request -- ghostscript CVE-2007-6725 CVE-2008-6679
MLIST:[oss-security] 20090401 CVE request: PHP 5.2.9 CVE-2009-1271 CVE-2009-1272
MLIST:[oss-security] 20090401 CVE request: kernel: KVM: VMX: Dont allow uninhibited access to EFER on i386 CVE-2009-1242
MLIST:[oss-security] 20090401 CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure CVE-2009-1243
MLIST:[oss-security] 20090405 CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1439
MLIST:[oss-security] 20090406 CVE request: kernel: NFS: Fix an Oops in encode_lookup() CVE-2009-1336
MLIST:[oss-security] 20090407 CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check CVE-2009-1337
MLIST:[oss-security] 20090407 Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive CVE-2008-6680 CVE-2009-1241 CVE-2009-1270
MLIST:[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1439
MLIST:[oss-security] 20090408 CVE request: apt CVE-2009-1300
MLIST:[oss-security] 20090408 CVE-2008-5519: mod_jk session information leak vulnerability CVE-2008-5519
MLIST:[oss-security] 20090408 CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user frame size CVE-2009-1265
MLIST:[oss-security] 20090409 Re: CVE request: PHP 5.2.9 CVE-2009-1272
MLIST:[oss-security] 20090413 CVE request: silverstripe - two sql injections CVE-2008-6753
MLIST:[oss-security] 20090415 Re: Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090415 Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090415 Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090416 CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace CVE-2009-1338
MLIST:[oss-security] 20090416 CVE-2009-1189: invalid fix for CVE-2008-3834 (dbus) CVE-2009-1189
MLIST:[oss-security] 20090417 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace CVE-2009-1338
MLIST:[oss-security] 20090417 Re: CVE request: kernel: NFS: Fix an Oops in encode_lookup() CVE-2009-1336
MLIST:[oss-security] 20090417 Re: CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check CVE-2009-1337
MLIST:[oss-security] 20090421 CVE Request -- libmodplug CVE-2009-1438
MLIST:[oss-security] 20090421 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace CVE-2009-1338
MLIST:[oss-security] 20090422 CVE id request: amule CVE-2009-1440
MLIST:[oss-security] 20090422 CVE-2009-1192 kernel: agp: zero pages before sending to userspace CVE-2009-1192
MLIST:[oss-security] 20090424 Re: Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090428 Re: Re: Some fun with tcp_wrappers CVE-2009-0786
MLIST:[oss-security] 20090429 Re: CVE Request -- libmodplug CVE-2009-1513
MLIST:[oss-security] 20090429 Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090429 ipsec-tools 0.7.2 CVE-2009-1574 CVE-2009-1632
MLIST:[oss-security] 20090501 CVE request (sort of): Quagga BGP crasher CVE-2009-1572
MLIST:[oss-security] 20090501 Re: CVE request (sort of): Quagga BGP crasher CVE-2009-1572
MLIST:[oss-security] 20090504 CVE request: kernel: ptrace_attach: fix the usage of ->cred_exec_mutex CVE-2009-1527
MLIST:[oss-security] 20090504 CVE-2009-1184 selinux: skipped node/port send checks in the compat_net=1 case CVE-2009-1184
MLIST:[oss-security] 20090504 Re: ipsec-tools 0.7.2 CVE-2009-1574
MLIST:[oss-security] 20090505 CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg) CVE-2009-1573
MLIST:[oss-security] 20090505 Old cscope buffer overflow CVE-2009-1577
MLIST:[oss-security] 20090505 Re: CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg) CVE-2009-1573
MLIST:[oss-security] 20090506 CVE id request: coccinelle CVE-2009-1753
MLIST:[oss-security] 20090506 Re: Old cscope buffer overflow CVE-2009-0148 CVE-2009-1577
MLIST:[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations CVE-2009-1194
MLIST:[oss-security] 20090508 OpenSC 0.11.8 released with security update CVE-2009-1603
MLIST:[oss-security] 20090511 [oCERT-2009-004] AjaxTerm session id collision CVE-2009-1629
MLIST:[oss-security] 20090512 CVE Request (evolution) CVE-2009-1631
MLIST:[oss-security] 20090512 Re: ipsec-tools 0.7.2 CVE-2009-1632
MLIST:[oss-security] 20090513 CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission CVE-2009-1630
MLIST:[oss-security] 20090514 CVE Request: XEN local denial of service CVE-2009-1758
MLIST:[oss-security] 20090514 Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090514 Update - Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090515 Re: Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.* CVE-2009-1633
MLIST:[oss-security] 20090518 CVE id request: slim CVE-2009-1756
MLIST:[oss-security] 20090518 Re: Two OpenSSL DTLS remote DoS CVE-2009-1379
MLIST:[oss-security] 20090518 Two OpenSSL DTLS remote DoS CVE-2009-1377 CVE-2009-1378
MLIST:[oss-security] 20090519 CVE id request: nsd CVE-2009-1755
MLIST:[oss-security] 20090520 CVE request: ctorrent CVE-2009-1759
MLIST:[oss-security] 20090521 CVE request: transmission <1.61 CSRF CVE-2009-1757
MLIST:[oss-security] 20090522 [oCERT-2009-006] Android improper package verification when using shared uids CVE-2009-1754
MLIST:[oss-security] 20090527 CVE assignment notification (pam_krb5 CVE-2009-1384) CVE-2009-1384
MLIST:[oss-security] 20090529 CVE Request (irssi) CVE-2009-1959
MLIST:[oss-security] 20090529 CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090530 Re: CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090602 Re: CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090602 Re: Two OpenSSL DTLS remote DoS CVE-2009-1386 CVE-2009-1387
MLIST:[oss-security] 20090603 CVE request: "billion laughs" attack against Apache APR CVE-2009-1955
MLIST:[oss-security] 20090603 CVE request: kernel: sparc64: Fix crash with /proc/iomem CVE-2009-1914
MLIST:[oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service CVE-2009-1385
MLIST:[oss-security] 20090603 Re: CVE request: kernel: splice local denial of service CVE-2009-1961
MLIST:[oss-security] 20090605 CVE Request (apr-util) CVE-2009-1956
MLIST:[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage() CVE-2009-1882
MLIST:[oss-security] 20090610 CVE-2009-1389 kernel: r8169: fix crash when large packets are received CVE-2009-1389
MLIST:[oss-security] 20090610 Mutt 1.5.19 SSL chain verification flaw CVE-2009-1390
MLIST:[oss-security] 20090612 Git daemon infinite loop CVE-2009-2108
MLIST:[oss-security] 20090621 libtiff buffer underflow in LZWDecodeCompat CVE-2009-2285
MLIST:[oss-security] 20090623 Re: libtiff buffer underflow in LZWDecodeCompat CVE-2009-2285
MLIST:[oss-security] 20090629 CVE Request -- libtiff [was: Re: libtiff buffer underflow in LZWDecodeCompat] CVE-2009-2285
MLIST:[oss-security] 20090629 CVE id request: compface CVE-2009-2286
MLIST:[oss-security] 20090629 Re: CVE id request: compface CVE-2009-2286
MLIST:[oss-security] 20090630 CVE Request: kernel: kvm: failure to validate cr3 after KVM_SET_SREGS CVE-2009-2287
MLIST:[oss-security] 20090701 Re: incorrect upstream fix for CVE-2009-0840 (mapserver) CVE-2009-2281
MLIST:[oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock CVE-2009-1388
MLIST:[oss-security] 20090703 Re: CVE id request: compface CVE-2009-2286
MLIST:[oss-security] 20090716 [oCERT-2009-011] Android improper camera and audio permission verification CVE-2009-2348
MLIST:[oss-security] 20090717 Linux 2.6.30+/SELinux/RHEL5 test kernel 0day, exploiting the unexploitable CVE-2009-1897
MLIST:[oss-security] 20090720 squid DoS in external auth header parser CVE-2009-2855
MLIST:[oss-security] 20090721 CVE Request -- WordPress CVE-2009-2851
MLIST:[oss-security] 20090721 CVE Request -- znc CVE-2009-2658
MLIST:[oss-security] 20090722 Re: CVE request: Wireshark <1.2.1 Multiple DoS CVE-2009-2560
MLIST:[oss-security] 20090724 md raid null ptr dereference (when sysfs is writable) CVE-2009-2849
MLIST:[oss-security] 20090724 nilfs-utils privilege escalation CVE-2009-2657
MLIST:[oss-security] 20090725 Re: CVE Request -- HTMLDOC CVE-2009-3050
MLIST:[oss-security] 20090725 camlimages: Integer overflows in GIF and JPEG readers CVE-2009-2660
MLIST:[oss-security] 20090726 Re: CVE Request -- HTMLDOC CVE-2009-3050
MLIST:[oss-security] 20090726 Re: md raid null ptr dereference (when sysfs is writable) CVE-2009-2849
MLIST:[oss-security] 20090727 CVE id request: strongswan CVE-2009-2661
MLIST:[oss-security] 20090729 CVE Request (django) CVE-2009-2659
MLIST:[oss-security] 20090803 Re: squid DoS in external auth header parser CVE-2009-2855
MLIST:[oss-security] 20090804 CVE request - kernel: execve: must clear current->clear_child_tid CVE-2009-2848
MLIST:[oss-security] 20090804 CVE request - kernel: information leak in sigaltstack CVE-2009-2847
MLIST:[oss-security] 20090804 CVE request: Wordpress CVE-2009-2853 CVE-2009-2854
MLIST:[oss-security] 20090804 Re: squid DoS in external auth header parser CVE-2009-2855
MLIST:[oss-security] 20090805 Re: CVE request - kernel: execve: must clear current->clear_child_tid CVE-2009-2848
MLIST:[oss-security] 20090805 Re: CVE request - kernel: information leak in sigaltstack CVE-2009-2847
MLIST:[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate CVE-2009-2666
MLIST:[oss-security] 20090806 CVE request: kernel: clock_nanosleep() with CLOCK_MONOTONIC_RAW NULL pointer dereference CVE-2009-2767
MLIST:[oss-security] 20090809 CVE id request: groff (pdfroff) CVE-2009-5044 CVE-2009-5078
MLIST:[oss-security] 20090810 CVE request: kernel: parisc: isa-eeprom missing lower bound check CVE-2009-2846
MLIST:[oss-security] 20090810 Re: CVE id request: groff (pdfroff) CVE-2009-5044 CVE-2009-5078
MLIST:[oss-security] 20090811 CVE-2009-2691 kernel: /proc/$pid/maps visible during initial setuid ELF loading CVE-2009-2691
MLIST:[oss-security] 20090813 CVE request: kernel: flat: fix uninitialized ptr with shared libs CVE-2009-2768
MLIST:[oss-security] 20090814 CVE request: Common Data Format (CDF) library multiple heap-based buffer overflows CVE-2009-2850
MLIST:[oss-security] 20090814 CVE-2009-2692 kernel: uninit op in SOCKOPS_WRAP() leads to privesc CVE-2009-2692
MLIST:[oss-security] 20090814 GnuTLS CVE-2009-2730 Patches (Was Re: GnuTLS 2.8.2) CVE-2009-2730
MLIST:[oss-security] 20090814 Re: CVE id request: groff (pdfroff) CVE-2009-5044 CVE-2009-5079 CVE-2009-5080 CVE-2009-5081 CVE-2009-5082
MLIST:[oss-security] 20090815 mailfilter 0.8.2 fixes CVE-2007-1558 (APOP) CVE-2007-1558
MLIST:[oss-security] 20090817 CVE request: kernel: cfg80211: missing NULL pointer checks CVE-2009-2844
MLIST:[oss-security] 20090817 Re: CVE request: kernel: cfg80211: missing NULL pointer checks CVE-2009-2844
MLIST:[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695) CVE-2009-2695
MLIST:[oss-security] 20090818 Re: CVE request: kernel: parisc: isa-eeprom missing lower bound check CVE-2009-2846
MLIST:[oss-security] 20090818 Re: CVE-2007-1558 update (was: mailfilter 0.8.2 fixes CVE-2007-1558 (APOP)) CVE-2007-1558
MLIST:[oss-security] 20090819 CVE Request pidgin CVE-2009-3025
MLIST:[oss-security] 20090821 expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090824 CVE id request: pidgin CVE-2009-3026
MLIST:[oss-security] 20090825 CVE-2009-2698 kernel: udp socket NULL ptr dereference CVE-2009-2698
MLIST:[oss-security] 20090826 CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure CVE-2009-3001
MLIST:[oss-security] 20090826 Re: CVE request - kernel: information leak in sigaltstack CVE-2009-2847
MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090826 Re: expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090827 Re: CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure CVE-2009-3002
MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20090828 CVE request: perl-IO-Socket-SSL certificate hostname compare bug CVE-2009-3024
MLIST:[oss-security] 20090829 Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug CVE-2009-3024
MLIST:[oss-security] 20090831 CVE id request: silc-toolkit CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090831 CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc CVE-2009-3043
MLIST:[oss-security] 20090831 Re: Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug CVE-2009-3024
MLIST:[oss-security] 20090901 Re: CVE Request -- HTMLDOC CVE-2009-3050
MLIST:[oss-security] 20090903 CVE request: kernel: tc: uninitialised kernel memory leak CVE-2009-3228
MLIST:[oss-security] 20090903 More CVE-2009-2408 like issues CVE-2009-2408 CVE-2009-3490 CVE-2009-3765 CVE-2009-3766 CVE-2009-3767
MLIST:[oss-security] 20090903 Re: CVE id request: silc-toolkit CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090903 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc CVE-2009-3043
MLIST:[oss-security] 20090904 CVE request: kernel: NULL pointer dereference in sg_build_indirect() CVE-2009-3288
MLIST:[oss-security] 20090904 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc CVE-2009-3043
MLIST:[oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430 CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090908 CVE Request - glib symlink copying permission exposure CVE-2009-3289
MLIST:[oss-security] 20090908 CVE request - Debian/Ubuntu PAM auth module selection CVE-2009-3232
MLIST:[oss-security] 20090909 CVE Request -- FreeRADIUS 1.1.8 CVE-2009-3111
MLIST:[oss-security] 20090910 Re: OpenOffice.org CVE-2009-2139 CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090911 Re: OpenOffice.org CVE-2009-2139 CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090912 CVE request(?): Thin: Client IP spoofing CVE-2009-3287
MLIST:[oss-security] 20090914 CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams CVE-2009-2903
MLIST:[oss-security] 20090914 Re: CVE for recent cyrus-imap issue CVE-2009-2632 CVE-2009-3235
MLIST:[oss-security] 20090914 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams CVE-2009-2903
MLIST:[oss-security] 20090915 CVE-2009-1883 kernel: missing capability check in z90crypt CVE-2009-1883
MLIST:[oss-security] 20090915 Re: CVE-2009-1883 kernel: missing capability check in z90crypt CVE-2009-1883
MLIST:[oss-security] 20090916 CVE id request: changetrack CVE-2009-3233
MLIST:[oss-security] 20090916 CVE request: kernel: cfg80211: fix looping soft lockup in find_ie() CVE-2009-3280
MLIST:[oss-security] 20090916 CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr() CVE-2009-3234
MLIST:[oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr() CVE-2009-3234
MLIST:[oss-security] 20090917 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams CVE-2009-2903
MLIST:[oss-security] 20090917 Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request CVE-2009-2562 CVE-2009-2563
MLIST:[oss-security] 20090917 Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request CVE-2009-2563
MLIST:[oss-security] 20090918 CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 CVE-2009-3290
MLIST:[oss-security] 20090918 Insecure pid directory permissions for postfix on Debian / Ubuntu CVE-2009-2939
MLIST:[oss-security] 20090920 Re: CVE Request -- PHP 5 - 5.2.11 CVE-2009-3294
MLIST:[oss-security] 20090921 CVE request: kernel: issue with O_EXCL creates on NFSv4 CVE-2009-3286
MLIST:[oss-security] 20090921 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 CVE-2009-3290
MLIST:[oss-security] 20090922 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0 CVE-2009-3290
MLIST:[oss-security] 20090922 Re: [oss-security] OpenOffice.org CVE-2009-2139 CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090923 Re: More CVE-2009-2408 like issues CVE-2009-3490 CVE-2009-3765 CVE-2009-3767
MLIST:[oss-security] 20090925 CVE Request -- Xen -- PyGrub CVE-2009-3525
MLIST:[oss-security] 20091001 CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091001 Re: CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091002 Re: CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091006 Kernel ecryptfs CVE id (CVE-2009-2908) CVE-2009-2908
MLIST:[oss-security] 20091007 More kernel CVE info (CVE-2009-2909) CVE-2009-2909
MLIST:[oss-security] 20091009 CVE request: Unbound CVE-2009-3602
MLIST:[oss-security] 20091009 Re: CVE Request (kernel) CVE-2009-2910
MLIST:[oss-security] 20091009 Re: CVE request: Unbound CVE-2009-3602
MLIST:[oss-security] 20091013 Re: Duplicate CVE assignment notification [was: CVE id request: django] CVE-2009-3695
MLIST:[oss-security] 20091014 CVE Request - backintime CVE-2009-3611
MLIST:[oss-security] 20091014 CVE Request -- phpMyAdmin CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091014 CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE Request - backintime CVE-2009-3611
MLIST:[oss-security] 20091014 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE request: kernel: tc: uninitialised kernel memory leak CVE-2009-3612
MLIST:[oss-security] 20091015 Re: CVE Request -- PHP 5 - 5.2.11 CVE-2009-3546
MLIST:[oss-security] 20091015 Re: CVE Request -- phpMyAdmin CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091015 Re: CVE request kernel: flood ping cause CVE-2009-3613
MLIST:[oss-security] 20091015 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7 CVE-2009-3612
MLIST:[oss-security] 20091016 CVE Request - aria2 - 1.6.2 CVE-2009-3617
MLIST:[oss-security] 20091016 QEMU VNC use-after-free CVE-2009-3616
MLIST:[oss-security] 20091016 Re: CVE Request - aria2 - 1.6.2 CVE-2009-3617
MLIST:[oss-security] 20091016 Re: QEMU VNC use-after-free CVE-2009-3616
MLIST:[oss-security] 20091016 Re: viewvc: CVE request: XSS and illegal characters while printing name-value pairs CVE-2009-3618 CVE-2009-3619
MLIST:[oss-security] 20091019 CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket CVE-2009-3621
MLIST:[oss-security] 20091019 CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised CVE-2009-3620
MLIST:[oss-security] 20091019 Re: CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket CVE-2009-3621
MLIST:[oss-security] 20091019 Re: CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised CVE-2009-3620
MLIST:[oss-security] 20091021 CVE assignment notification -- CVE-2009-2911 - Three SystemTap-1.0 DoS issues CVE-2009-2911
MLIST:[oss-security] 20091021 CVE request: Wordpress Trackback DoS CVE-2009-3622
MLIST:[oss-security] 20091021 Re: CVE request: Wordpress Trackback DoS CVE-2009-3622
MLIST:[oss-security] 20091022 CVE Request -- Sahana CVE-2009-3625
MLIST:[oss-security] 20091022 CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases CVE-2009-3624
MLIST:[oss-security] 20091022 CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client CVE-2009-3623
MLIST:[oss-security] 20091022 Re: CVE Request -- Sahana CVE-2009-3625
MLIST:[oss-security] 20091022 Re: CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases CVE-2009-3624
MLIST:[oss-security] 20091022 Re: CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client CVE-2009-3623
MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430 CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091022 Regarding expat bug 1990430 CVE-2009-3720
MLIST:[oss-security] 20091023 CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid() CVE-2009-3638
MLIST:[oss-security] 20091023 CVE request: kvm: update_cr8_intercept() NULL pointer dereference CVE-2009-3640
MLIST:[oss-security] 20091023 CVE-2009-3626 assigment notification - Perl - perl-5.10.1 CVE-2009-3626
MLIST:[oss-security] 20091023 CVE-2009-3627 assignment notification - HTML-Parser-3.63 CVE-2009-3627
MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091023 Re: CVE id request: typo3 CVE-2009-3628 CVE-2009-3629 CVE-2009-3630 CVE-2009-3631 CVE-2009-3632 CVE-2009-3633 CVE-2009-3634 CVE-2009-3635 CVE-2009-3636
MLIST:[oss-security] 20091023 Re: CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid() CVE-2009-3638
MLIST:[oss-security] 20091023 Re: proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification CVE-2009-3639
MLIST:[oss-security] 20091023 proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification CVE-2009-3639
MLIST:[oss-security] 20091024 Re: CVE request: kvm: update_cr8_intercept() NULL pointer dereference CVE-2009-3640
MLIST:[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1 CVE-2009-3641
MLIST:[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1 CVE-2009-3641
MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091026 Re: CVE-2009-3239 is a duplicate of CVE-2009-2139 and CVE-2009-2140 CVE-2009-2139
MLIST:[oss-security] 20091026 Re: More CVE-2009-2408 like issues CVE-2009-3766
MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] CVE-2009-3720
MLIST:[oss-security] 20091029 CVE request: kvm: check cpl before emulating debug register access CVE-2009-3722
MLIST:[oss-security] 20091029 Re: CVE request: kvm: check cpl before emulating debug register access CVE-2009-3722
MLIST:[oss-security] 20091102 CVE request: kernel: connector security bypass CVE-2009-3725
MLIST:[oss-security] 20091102 Re: CVE request: kernel: connector security bypass CVE-2009-3725
MLIST:[oss-security] 20091103 CVE-2009-3547 kernel: fs: pipe.c null pointer dereference CVE-2009-3547
MLIST:[oss-security] 20091105 CVE request: kernel: NULL pointer dereference in nfs4_proc_lock() CVE-2009-3726
MLIST:[oss-security] 20091105 CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091105 Re: CVE request: kernel: NULL pointer dereference in nfs4_proc_lock() CVE-2009-3726
MLIST:[oss-security] 20091105 Re: CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091107 Re: CVE Request - Asterisk (AST-2009-008.html) CVE-2008-7220
MLIST:[oss-security] 20091107 Re: CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091107 Re: [TLS] CVE-2009-3555 for TLS renegotiation MITM attacks CVE-2009-3555
MLIST:[oss-security] 20091109 CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff() CVE-2009-3888
MLIST:[oss-security] 20091113 CVE request: kernel: bad permissions on megaraid_sas sysfs files CVE-2009-3889 CVE-2009-3939
MLIST:[oss-security] 20091113 Re: CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff() CVE-2009-3888
MLIST:[oss-security] 20091113 Re: CVE request: kernel: bad permissions on megaraid_sas sysfs files CVE-2009-3889
MLIST:[oss-security] 20091115 CVE Id request: request-tracker CVE-2009-3892
MLIST:[oss-security] 20091115 CVE request: Wordpress 2.8.6 CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091115 Re: CVE request: Wordpress 2.8.6 CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091116 Re: CVE Id request: request-tracker CVE-2009-3892
MLIST:[oss-security] 20091116 Re: CVE request: Wordpress 2.8.6 CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091119 CVE assignment (libexif) CVE-2009-3895
MLIST:[oss-security] 20091119 CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer CVE-2009-4021
MLIST:[oss-security] 20091119 mysql-5.1.41 CVE-2009-4028 CVE-2009-4030
MLIST:[oss-security] 20091120 CVE Assignment nginx CVE-2009-3896
MLIST:[oss-security] 20091120 CVE request: php 5.3.1 update CVE-2009-3292 CVE-2009-3294 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[oss-security] 20091120 CVE request: v1.2.8 released to fix the 0777 base_dir creation issue CVE-2009-3897
MLIST:[oss-security] 20091120 CVEs for nginx CVE-2009-3555 CVE-2009-3896 CVE-2009-3898
MLIST:[oss-security] 20091120 Re: CVE request: php 5.3.1 update CVE-2009-3292 CVE-2009-3294 CVE-2009-3546 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[oss-security] 20091121 CVE Request - Dovecot - 1.2.8 CVE-2009-3897
MLIST:[oss-security] 20091121 CVE Request - MySQL - 5.0.88 CVE-2009-4019 CVE-2009-4028
MLIST:[oss-security] 20091121 Re: CVE Request - MySQL - 5.0.88 CVE-2009-4019
MLIST:[oss-security] 20091122 Re: CVE request: php 5.3.1 update CVE-2009-4018
MLIST:[oss-security] 20091123 CVE request: Argument injections in multiple PEAR packages CVE-2009-4023 CVE-2009-4025 CVE-2009-4111
MLIST:[oss-security] 20091123 Re: CVE Request - Dovecot - 1.2.8 CVE-2009-3897
MLIST:[oss-security] 20091123 Re: CVE Request - MySQL - 5.0.88 CVE-2009-4019
MLIST:[oss-security] 20091123 Re: CVE request: php 5.3.1 - proc_open() bypass PHP Bug #49026 [was: Re: CVE request: php 5.3.1 update] CVE-2009-4018
MLIST:[oss-security] 20091123 Re: CVE request: v1.2.8 released to fix the 0777 base_dir creation issue CVE-2009-3897
MLIST:[oss-security] 20091123 Re: CVEs for nginx CVE-2009-3555 CVE-2009-3896 CVE-2009-3898
MLIST:[oss-security] 20091123 Re: mysql-5.1.41 CVE-2009-4028
MLIST:[oss-security] 20091124 CVE request: BIND 9 bug involving DNSSEC and the additional section CVE-2009-4022
MLIST:[oss-security] 20091124 Re: CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer CVE-2009-4021
MLIST:[oss-security] 20091124 Re: a new bind issue CVE-2009-4022
MLIST:[oss-security] 20091124 Re: mysql-5.1.41 CVE-2008-7247 CVE-2009-4030
MLIST:[oss-security] 20091124 a new bind issue CVE-2009-4022
MLIST:[oss-security] 20091125 CVE Request - Cacti - 0.8.7e CVE-2009-4032
MLIST:[oss-security] 20091125 CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes CVE-2009-4031
MLIST:[oss-security] 20091125 Re: CVE Request - Cacti - 0.8.7e CVE-2009-4032
MLIST:[oss-security] 20091125 Re: CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes CVE-2009-4031
MLIST:[oss-security] 20091126 Re: CVE Request - Cacti - 0.8.7e CVE-2009-4032 CVE-2009-4112
MLIST:[oss-security] 20091127 CVE request: ruby on rails XSS Weakness in strip_tags CVE-2009-4214
MLIST:[oss-security] 20091128 CVE request: Ruby on Rails: CSRF circumvention (from 2008) CVE-2008-7248
MLIST:[oss-security] 20091128 Re: CVE request: Argument injections in multiple PEAR packages CVE-2009-4111
MLIST:[oss-security] 20091130 Need more information on recent poppler issues CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091130 Re: CVE Request - Cacti - 0.8.7e CVE-2009-4032 CVE-2009-4112
MLIST:[oss-security] 20091130 Re: Need more information on recent poppler issues CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091201 CVE request: kernel: mac80211: fix two remote exploits CVE-2009-4026
MLIST:[oss-security] 20091201 Re: Need more information on recent poppler issues CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091202 Re: CVE request: Ruby on Rails: CSRF circumvention (from 2008) CVE-2008-7248
MLIST:[oss-security] 20091203 CVE Request -- xfig CVE-2009-4227
MLIST:[oss-security] 20091204 CVE-2009-4020 kernel: hfs buffer overflow CVE-2009-4020
MLIST:[oss-security] 20091208 CVE Request -- coreutils -- unsafe temporary directory location use CVE-2009-4135
MLIST:[oss-security] 20091208 Re: CVE Request -- coreutils -- unsafe temporary directory location use CVE-2009-4135
MLIST:[oss-security] 20091208 Re: CVE request: ruby on rails XSS Weakness in strip_tags CVE-2009-4214
MLIST:[oss-security] 20091209 Piwik <= 0.4.5 Cookie Unserialize() Vulnerability CVE-2009-4137
MLIST:[oss-security] 20091210 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability CVE-2009-4137
MLIST:[oss-security] 20091212 CVE request: polipo DoS via overly large "Content-Length" header CVE-2009-4413
MLIST:[oss-security] 20091214 CVE Request - Open Flash Chart v2 CVE-2009-4140
MLIST:[oss-security] 20091214 Re: CVE Request - Open Flash Chart v2 CVE-2009-4140
MLIST:[oss-security] 20091214 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability CVE-2009-4137
MLIST:[oss-security] 20091215 CVE-2009-4138 kernel: firewire: ohci: handle receive packets with a data length of zero CVE-2009-4138
MLIST:[oss-security] 20091216 NetworkManager CVE assignment CVE-2009-4144 CVE-2009-4145
MLIST:[oss-security] 20091217 [oCERT-2009-019] Ganeti path sanitization errors CVE-2009-4261
MLIST:[oss-security] 20091217 possible vulnerability in ghostscript >= 8.64 CVE-2009-4270
MLIST:[oss-security] 20091218 Re: possible vulnerability in ghostscript >= 8.64 CVE-2009-4270
MLIST:[oss-security] 20091220 CVE request: phpgroupware CVE-2009-4414 CVE-2009-4415 CVE-2009-4416
MLIST:[oss-security] 20091221 CVE request: Serendipity < 1.5 upload of files with *.php.* possible CVE-2009-4412
MLIST:[oss-security] 20091223 CVE request - kernel: fuse_ioctl_copy_user() dos CVE-2009-4410
MLIST:[oss-security] 20091223 CVE request: acl 2.2.47 always follows symlinks CVE-2009-4411
MLIST:[oss-security] 20091224 OpenTTD remote DoS CVE-2009-4007
MLIST:[oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20100102 CVE request - pidgin MSN arbitrary file upload CVE-2010-0013
MLIST:[oss-security] 20100106 CVE Request: Transmission CVE-2010-0012
MLIST:[oss-security] 20100106 CVE request - uzbl remote code execution CVE-2010-0011
MLIST:[oss-security] 20100106 Re: CVE Request: Transmission CVE-2010-0012
MLIST:[oss-security] 20100106 Re: CVE request - uzbl remote code execution CVE-2010-0011
MLIST:[oss-security] 20100107 CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100107 Re: CVE request - pidgin MSN arbitrary file upload CVE-2010-0013 CVE-2010-0277
MLIST:[oss-security] 20100108 Re: CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100109 Re: CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100111 CVE Request: viewvc CVE-2010-0004 CVE-2010-0005
MLIST:[oss-security] 20100111 Re: CVE id request: GNU libc: NIS shadow password leakage CVE-2010-0015
MLIST:[oss-security] 20100112 CVE request - kernel: infoleak if print-fatal-signals=1 CVE-2010-0003
MLIST:[oss-security] 20100113 CVE Request: kernel ebtables perm check CVE-2010-0007
MLIST:[oss-security] 20100113 Re: CVE Request: viewvc CVE-2010-0004 CVE-2010-0005
MLIST:[oss-security] 20100113 Re: CVE request - kernel: infoleak if print-fatal-signals=1 CVE-2010-0003
MLIST:[oss-security] 20100113 [PATCH] memory consumption (DoS) in openssl CVE-2009-4355 CVE-2009-4355
MLIST:[oss-security] 20100114 CVE-2010-0006 - kernel: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo() CVE-2010-0006
MLIST:[oss-security] 20100114 Re: CVE Request: kernel ebtables perm check CVE-2010-0007
MLIST:[oss-security] 20100114 Re: CVE Request: viewvc CVE-2010-0004
MLIST:[oss-security] 20100119 BIND CVE-2009-4022 fix incomplete CVE-2010-0290
MLIST:[oss-security] 20100119 CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100119 Re: CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100120 CVE-2009-3556 kernel: qla2xxx NPIV vport management pseudofiles are world writable CVE-2009-3556
MLIST:[oss-security] 20100120 CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock CVE-2009-4272
MLIST:[oss-security] 20100120 Re: BIND CVE-2009-4022 fix incomplete CVE-2010-0290
MLIST:[oss-security] 20100120 Re: CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100120 Re: CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock CVE-2009-4272
MLIST:[oss-security] 20100121 CVE request: MoinMoin information disclosure CVE-2010-0667
MLIST:[oss-security] 20100121 Re: CVE request - kernel: untangle the do_mremap() mess CVE-2010-0291
MLIST:[oss-security] 20100127 CVE id request: maildrop CVE-2010-0301
MLIST:[oss-security] 20100127 Re: CVE id request: postgresql bitsubstr overflow CVE-2010-0442
MLIST:[oss-security] 20100128 Re: CVE id request: maildrop CVE-2010-0301
MLIST:[oss-security] 20100129 CVE Request -- ejabberd CVE-2010-0305
MLIST:[oss-security] 20100129 Re: CVE Request -- ejabberd CVE-2010-0305
MLIST:[oss-security] 20100129 Re: CVE id request: Wireshark CVE-2010-0304
MLIST:[oss-security] 20100129 Re: CVE id: hybserv CVE-2010-0303
MLIST:[oss-security] 20100201 CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100201 Re: CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100202 CVE request - kvm: cat /dev/port in the guest can cause host DoS CVE-2010-0309
MLIST:[oss-security] 20100202 KVM possible security issues fixed CVE-2010-0297
MLIST:[oss-security] 20100202 Re: CVE request - kvm: cat /dev/port in the guest can cause host DoS CVE-2010-0309
MLIST:[oss-security] 20100202 lighttpd: slow request dos/oom attack [CVE-2010-0295] CVE-2010-0295
MLIST:[oss-security] 20100203 CVE Request -- GMime-2.4.15 CVE-2010-0409
MLIST:[oss-security] 20100203 CVE request: kernel OOM/crash in drivers/connector CVE-2010-0410
MLIST:[oss-security] 20100203 Re: CVE Request -- GMime-2.4.15 CVE-2010-0409
MLIST:[oss-security] 20100203 Re: CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100203 Re: CVE request: kernel OOM/crash in drivers/connector CVE-2010-0410
MLIST:[oss-security] 20100204 Re: CVE request - kernel: DoS on x86_64 CVE-2010-0307
MLIST:[oss-security] 20100204 Re: KVM possible security issues fixed CVE-2010-0297
MLIST:[oss-security] 20100204 systemtap DoS issue (CVE-2010-0411) CVE-2010-0411
MLIST:[oss-security] 20100205 Re: Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100205 Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100206 Re: Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100207 CVE request: information leak / potential crash in sys_move_pages CVE-2010-0415
MLIST:[oss-security] 20100207 Re: CVE request: information leak / potential crash in sys_move_pages CVE-2010-0415
MLIST:[oss-security] 20100208 Re: CVE request: information leak / potential crash in sys_move_pages CVE-2010-0415
MLIST:[oss-security] 20100209 CVE Request -- cURL/libCURL 7.20.0 CVE-2010-0734
MLIST:[oss-security] 20100209 CVE request - kernel: futex: Handle user space corruption gracefully CVE-2010-0622
MLIST:[oss-security] 20100209 vulnerability in netpbm (CVE-2009-4274) CVE-2009-4274
MLIST:[oss-security] 20100211 CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference CVE-2010-0437
MLIST:[oss-security] 20100211 Re: CVE request - kernel: futex: Handle user space corruption gracefully CVE-2010-0622 CVE-2010-0623
MLIST:[oss-security] 20100212 CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100212 CVE Request: gnome-screensaver termination by pressing "Enter" CVE-2010-0732
MLIST:[oss-security] 20100212 Re: CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100212 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100212 Re: gnome-screensaver vulnerability (CVE-2010-0414) CVE-2010-0422
MLIST:[oss-security] 20100215 CVE Request -- MoinMoin -- 1.8.7 CVE-2010-0667 CVE-2010-0668 CVE-2010-0669 CVE-2010-0717
MLIST:[oss-security] 20100215 Re: CVE Request -- MoinMoin -- 1.8.7 CVE-2010-0667 CVE-2010-0668 CVE-2010-0669
MLIST:[oss-security] 20100217 CVE request: kernel information leak via userspace USB interface CVE-2010-1083
MLIST:[oss-security] 20100217 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one CVE-2010-0923
MLIST:[oss-security] 20100217 additional memory leak in USB userspace handling CVE-2010-1083
MLIST:[oss-security] 20100218 Re: CVE request: kernel information leak via userspace USB interface CVE-2010-1083
MLIST:[oss-security] 20100219 Re: CVE request: kernel information leak via userspace USB interface CVE-2010-1083
MLIST:[oss-security] 20100219 Re: additional memory leak in USB userspace handling CVE-2010-1083
MLIST:[oss-security] 20100221 Re: CVE Request -- MoinMoin -- 1.8.7 CVE-2010-0667 CVE-2010-0668 CVE-2010-0669
MLIST:[oss-security] 20100222 CVE request: kernel: ALSA: hda-intel: Avoid divide by zero crash CVE-2010-1085
MLIST:[oss-security] 20100222 CVE-2005-4886 assigned to old remote oops CVE-2005-4886
MLIST:[oss-security] 20100223 CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set CVE-2010-0427
MLIST:[oss-security] 20100224 CVE request: kernel: NFS DoS related to "automount" symlinks CVE-2010-1088
MLIST:[oss-security] 20100224 Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set CVE-2010-0427
MLIST:[oss-security] 20100224 kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only) CVE-2010-1451
MLIST:[oss-security] 20100301 CVE request: kernel: dvb-core: ULE decapsulation DoS CVE-2010-1086
MLIST:[oss-security] 20100303 CVE Request: libesmtp does not check NULL bytes in commonName CVE-2010-1192 CVE-2010-1194
MLIST:[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file CVE-2010-1087
MLIST:[oss-security] 20100303 OpenSSL (with KRB5) remote crash - CVE-2010-0433 CVE-2010-0433
MLIST:[oss-security] 20100304 Re: CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference CVE-2010-0437
MLIST:[oss-security] 20100304 kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100305 Re: CVE Request: gnome-screensaver termination by pressing "Enter" CVE-2010-0732
MLIST:[oss-security] 20100305 Re: Samba symlink 0day flaw CVE-2010-0926
MLIST:[oss-security] 20100309 CVE Request: postgresql integer overflow in hash table size calculation CVE-2010-0733
MLIST:[oss-security] 20100309 Re: CVE Request -- cURL/libCURL 7.20.0 CVE-2010-0734
MLIST:[oss-security] 20100309 Re: CVE Request: libesmtp does not check NULL bytes in commonName CVE-2010-1192 CVE-2010-1194
MLIST:[oss-security] 20100310 CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header CVE-2010-0745
MLIST:[oss-security] 20100310 CVE Request -- aMSN -- improper SSL certificate validation (MITM) CVE-2010-0744
MLIST:[oss-security] 20100310 CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input CVE-2010-0736
MLIST:[oss-security] 20100312 CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS CVE-2010-0969
MLIST:[oss-security] 20100312 CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extension CVE-2010-0397
MLIST:[oss-security] 20100312 CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw CVE-2010-0727
MLIST:[oss-security] 20100312 CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach() CVE-2010-0729
MLIST:[oss-security] 20100316 Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS CVE-2010-0969
MLIST:[oss-security] 20100316 Re: CVE Request -- cURL/libCURL 7.20.0 CVE-2010-0734
MLIST:[oss-security] 20100316 Re: CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input CVE-2010-0736
MLIST:[oss-security] 20100316 Re: CVE Request: postgresql integer overflow in hash table size calculation CVE-2010-0733
MLIST:[oss-security] 20100316 Re: Re: CVE Request: gnome-screensaver termination by pressing "Enter" CVE-2010-0732
MLIST:[oss-security] 20100317 CVE-2009-4271 kernel: 32bit process on 64bit system DoS CVE-2009-4271
MLIST:[oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service CVE-2010-0008
MLIST:[oss-security] 20100323 CVE request: kernel: bluetooth: potential bad memory access with sysfs files CVE-2010-1084
MLIST:[oss-security] 20100329 CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS) CVE-2010-1188
MLIST:[oss-security] 20100329 CVE-2010-0741 qemu: Improper handling of erroneous data provided by Linux virtio-net driver CVE-2010-0741
MLIST:[oss-security] 20100330 CVE request: kernel: tipc: Fix oops on send prior to entering networked mode CVE-2010-1187
MLIST:[oss-security] 20100331 Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode CVE-2010-1187
MLIST:[oss-security] 20100331 iscsitarget/scsi-target-tuils format string CVE assignment CVE-2010-0743
MLIST:[oss-security] 20100401 CVE Request: policykit (minor) CVE-2010-0750
MLIST:[oss-security] 20100401 Re: CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header CVE-2010-0745
MLIST:[oss-security] 20100401 Re: CVE Request -- aMSN -- improper SSL certificate validation (MITM) CVE-2010-0744
MLIST:[oss-security] 20100401 Re: CVE Request: policykit (minor) CVE-2010-0750
MLIST:[oss-security] 20100402 RE: CVE Request -- Zabbix v1.8.2 and v.1.6.9 CVE-2009-4498
MLIST:[oss-security] 20100403 CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message CVE-2010-1147
MLIST:[oss-security] 20100405 CVE request: kernel: cifs: cifs_create() NULL pointer dereference CVE-2010-1148
MLIST:[oss-security] 20100405 Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference CVE-2010-1148
MLIST:[oss-security] 20100406 CVE Request: MediaWiki 1.15.3 -- Login CSRF CVE-2010-1150
MLIST:[oss-security] 20100406 ClamAV small issues CVE-2010-0098
MLIST:[oss-security] 20100406 Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message CVE-2010-1147
MLIST:[oss-security] 20100407 Re: CVE Request: MediaWiki 1.15.3 -- Login CSRF CVE-2010-1150
MLIST:[oss-security] 20100407 Re: ClamAV small issues CVE-2010-0098
MLIST:[oss-security] 20100408 CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities CVE-2010-3441
MLIST:[oss-security] 20100408 CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) CVE-2010-1158
MLIST:[oss-security] 20100408 CVE request -- memcached CVE-2010-1152
MLIST:[oss-security] 20100408 Re: CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities CVE-2010-3441
MLIST:[oss-security] 20100408 Re: CVE request -- memcached CVE-2010-1152
MLIST:[oss-security] 20100410 CVE request: typo3 remote command execution CVE-2010-1153
MLIST:[oss-security] 20100411 CVE request: irssi 0.8.15 CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100412 Re: CVE request: irssi 0.8.15 CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100412 Re: CVE request: typo3 remote command execution CVE-2010-1153
MLIST:[oss-security] 20100413 Re: CVE request: irssi 0.8.15 CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100414 CVE request: GNU nano (minor) CVE-2010-1160 CVE-2010-1161
MLIST:[oss-security] 20100414 Couple of kernel issues CVE-2010-1162 CVE-2010-1488
MLIST:[oss-security] 20100414 Re: CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605) CVE-2010-1158
MLIST:[oss-security] 20100414 Re: Couple of kernel issues CVE-2010-1162
MLIST:[oss-security] 20100415 CVE request: kernel: tty: release_one_tty() forgets to put pids CVE-2010-1162
MLIST:[oss-security] 20100415 Re: CVE request: kernel: tty: release_one_tty() forgets to put pids CVE-2010-1162
MLIST:[oss-security] 20100416 CVE Request: JIRA Issues CVE-2010-1164 CVE-2010-1165
MLIST:[oss-security] 20100416 Re: CVE Request: JIRA Issues CVE-2010-1164 CVE-2010-1165
MLIST:[oss-security] 20100417 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100419 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100427 CVE request - gfs2 kernel issue CVE-2010-1436
MLIST:[oss-security] 20100427 CVE request - kernel: find_keyring_by_name() can gain the freed keyring CVE-2010-1437
MLIST:[oss-security] 20100427 Re: CVE request - gfs2 kernel issue CVE-2010-1436
MLIST:[oss-security] 20100427 Re: CVE request - kernel: find_keyring_by_name() can gain the freed keyring CVE-2010-1437
MLIST:[oss-security] 20100427 Re: wafp insecure temporary directory CVE-2010-1438
MLIST:[oss-security] 20100427 wafp insecure temporary directory CVE-2010-1438
MLIST:[oss-security] 20100429 CVE request - Linux Kernel KGDB/ppc issue CVE-2010-1446
MLIST:[oss-security] 20100429 CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors CVE-2010-1173
MLIST:[oss-security] 20100429 Re: CVE request - Linux Kernel KGDB/ppc issue CVE-2010-1446
MLIST:[oss-security] 20100429 Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors CVE-2010-1173
MLIST:[oss-security] 20100430 Re: CVE request - Linux Kernel KGDB/ppc issue CVE-2010-1446
MLIST:[oss-security] 20100503 CVE request: lxr CVE-2010-1448
MLIST:[oss-security] 20100503 Re: CVE request: lxr CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100505 CVE Request - Piwik 0.5.5 - XSS vulnerability CVE-2010-1453
MLIST:[oss-security] 20100505 Re: CVE Request - Piwik 0.5.5 - XSS vulnerability CVE-2010-1453
MLIST:[oss-security] 20100505 Re: CVE Request [was Re: kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)] CVE-2010-1451
MLIST:[oss-security] 20100506 Re: CVE request: lxr CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100507 CVE Assignment (gnustep) CVE-2010-1457
MLIST:[oss-security] 20100507 CVE-2010-0730 xen: emulator instruction decoding inconsistency CVE-2010-0730
MLIST:[oss-security] 20100507 Re: CVE Assignment (gnustep) CVE-2010-1620
MLIST:[oss-security] 20100507 Re: CVE Assignment (wireshark) CVE-2010-1455
MLIST:[oss-security] 20100510 Re: A mysql flaw. CVE-2010-1626
MLIST:[oss-security] 20100511 Re: CVE assignment: ghostscript stack-based overflow CVE-2010-1628
MLIST:[oss-security] 20100513 KDENetwork vulnerabilities CVE-2010-1000 CVE-2010-1511
MLIST:[oss-security] 20100514 Re: CVE request: lxr CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100517 CVE request: phorum < 5.2.15 backend XSS CVE-2010-1629
MLIST:[oss-security] 20100517 CVE request: phpbb 3.0.7 and before 3.0.5 CVE-2010-1627 CVE-2010-1630
MLIST:[oss-security] 20100517 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100517 [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251 CVE-2010-2252 CVE-2010-2253
MLIST:[oss-security] 20100518 Re: A mysql flaw. CVE-2010-1626
MLIST:[oss-security] 20100518 Re: CVE assignment: ghostscript stack-based overflow CVE-2010-1628
MLIST:[oss-security] 20100518 Re: CVE request: phorum < 5.2.15 backend XSS CVE-2010-1629
MLIST:[oss-security] 20100518 Re: CVE request: phpbb 3.0.7 and before 3.0.5 CVE-2010-1627 CVE-2010-1630
MLIST:[oss-security] 20100518 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100518 Re: kernel: btrfs: check for read permission on src file in the clone ioctl CVE-2010-1636
MLIST:[oss-security] 20100518 kernel: btrfs: check for read permission on src file in the clone ioctl CVE-2010-1636
MLIST:[oss-security] 20100519 Re: CVE request: phpbb 3.0.7 and before 3.0.5 CVE-2010-1630
MLIST:[oss-security] 20100519 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100520 CVE-2010-1974 reject request (dupe of CVE-2010-1168) and CVE-2010-1447 description modification request CVE-2010-1168 CVE-2010-1169 CVE-2010-1170 CVE-2010-1447
MLIST:[oss-security] 20100520 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251 CVE-2010-2252
MLIST:[oss-security] 20100521 CVE Request: off by one DoS in pe_icons.c CVE-2010-1640
MLIST:[oss-security] 20100521 Re: [core] CVE Request for Horde and Squirrelmail CVE-2010-1638
MLIST:[oss-security] 20100521 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2252
MLIST:[oss-security] 20100524 Re: [core] CVE Request for Horde and Squirrelmail CVE-2010-1638
MLIST:[oss-security] 20100525 CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership CVE-2010-1641
MLIST:[oss-security] 20100525 Re: CVE Request for Horde and Squirrelmail CVE-2010-1637
MLIST:[oss-security] 20100525 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership CVE-2010-1641
MLIST:[oss-security] 20100525 Re: kernel: btrfs: check for read permission on src file in the clone ioctl CVE-2010-1636
MLIST:[oss-security] 20100526 CVE request - kernel: nfsd: fix vm overcommit crash CVE-2010-1643
MLIST:[oss-security] 20100526 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership CVE-2010-1641
MLIST:[oss-security] 20100526 Re: CVE request - kernel: nfsd: fix vm overcommit crash CVE-2010-1643
MLIST:[oss-security] 20100527 Re: CVE request - kernel: nfsd: fix vm overcommit crash CVE-2008-7256
MLIST:[oss-security] 20100529 Fwd: emesene preditable temporary filename CVE-2010-2053
MLIST:[oss-security] 20100601 SFCB vulnerabilities CVE-2010-1937 CVE-2010-2054
MLIST:[oss-security] 20100602 CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059
MLIST:[oss-security] 20100602 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100602 prewikka permission bug CVE-2010-2058
MLIST:[oss-security] 20100603 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100604 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100607 CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files CVE-2010-2066
MLIST:[oss-security] 20100608 Re: jar, fastjar directory traversal vulnerabilities CVE-2005-1080 CVE-2010-0831
MLIST:[oss-security] 20100608 jar, fastjar directory traversal vulnerabilities CVE-2005-1080 CVE-2010-0831 CVE-2010-2322
MLIST:[oss-security] 20100609 Re: CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files CVE-2010-2066
MLIST:[oss-security] 20100609 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251 CVE-2010-2252 CVE-2010-2253
MLIST:[oss-security] 20100610 CVE request for new wireshark vulnerabilities CVE-2010-2283 CVE-2010-2284 CVE-2010-2285 CVE-2010-2286 CVE-2010-2287
MLIST:[oss-security] 20100610 CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc CVE-2010-2444 CVE-2010-2445
MLIST:[oss-security] 20100610 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability CVE-2010-2251
MLIST:[oss-security] 20100611 CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own CVE-2010-2071
MLIST:[oss-security] 20100611 CVE-2010-2070 kernel-xen: ia64-xen: unset be from the task psr CVE-2010-2070
MLIST:[oss-security] 20100613 CVE request - pyftpd default username and password vulnerability CVE-2010-2073
MLIST:[oss-security] 20100613 CVE request - pyftpd insecure usage of temporary directory CVE-2010-2072
MLIST:[oss-security] 20100614 CVE Request: w3m does not check null bytes CN/subjAltName CVE-2010-2074
MLIST:[oss-security] 20100614 Re: CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own CVE-2010-2071
MLIST:[oss-security] 20100614 Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution CVE-2009-4893 CVE-2010-2075
MLIST:[oss-security] 20100615 CVE Request - kernel: put_tty_queue NULL pointer deref CVE-2009-4895
MLIST:[oss-security] 20100615 Re: CVE Request - kernel: put_tty_queue NULL pointer deref CVE-2009-4895
MLIST:[oss-security] 20100617 CVE request - kernel: xfs swapext ioctl issue CVE-2010-2226
MLIST:[oss-security] 20100618 Re: CVE request - kernel: xfs swapext ioctl issue CVE-2010-2226
MLIST:[oss-security] 20100621 Re: CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities CVE-2010-2228 CVE-2010-2229 CVE-2010-2230 CVE-2010-2231
MLIST:[oss-security] 20100621 Re: [SquirrelMail-Security] CVE Request for Horde and Squirrelmail CVE-2010-1637
MLIST:[oss-security] 20100623 CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100623 CVE Request: avahi DoS CVE-2010-2244
MLIST:[oss-security] 20100623 CVE requests: LibTIFF CVE-2010-1411 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-2481 CVE-2010-2483 CVE-2010-2595 CVE-2010-2596
MLIST:[oss-security] 20100623 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100623 kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100623 kernel: thinkpad-acpi: lock down video output state access CVE-2010-3448
MLIST:[oss-security] 20100624 Re: CVE requests: LibTIFF CVE-2010-2443 CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100624 Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc CVE-2010-2444 CVE-2010-2445
MLIST:[oss-security] 20100625 CVE request: feh CVE-2010-2246
MLIST:[oss-security] 20100625 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100625 Re: CVE Request: avahi DoS CVE-2010-2244
MLIST:[oss-security] 20100626 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100628 CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server CVE-2010-2248
MLIST:[oss-security] 20100628 Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server CVE-2010-2248
MLIST:[oss-security] 20100628 Re: CVE request: feh CVE-2010-2246
MLIST:[oss-security] 20100629 CVE request: XSS in python paste CVE-2010-2477
MLIST:[oss-security] 20100629 Re: CVE requests: LibTIFF CVE-2010-2443 CVE-2010-2481 CVE-2010-2483
MLIST:[oss-security] 20100629 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[oss-security] 20100629 kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[oss-security] 20100630 Re: CVE request: XSS in python paste CVE-2010-2477
MLIST:[oss-security] 20100630 Re: CVE requests: LibTIFF CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100630 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL CVE-2010-2478
MLIST:[oss-security] 20100630 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100701 CVE request: moin multiple XSS CVE-2010-2487 CVE-2010-2969 CVE-2010-2970
MLIST:[oss-security] 20100701 Re: CVE requests: LibTIFF CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100702 CVE Request -- Roundup: XSS by processing PageTemplate template for a named page CVE-2010-2491
MLIST:[oss-security] 20100702 CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE CVE-2010-2489
MLIST:[oss-security] 20100702 Re: CVE Request -- Roundup: XSS by processing PageTemplate template for a named page CVE-2010-2491
MLIST:[oss-security] 20100702 Re: CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE CVE-2010-2489
MLIST:[oss-security] 20100702 Re: CVE request: moin multiple XSS CVE-2010-2487 CVE-2010-2969 CVE-2010-2970
MLIST:[oss-security] 20100704 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100704 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100704 Re: kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100705 Re: Request CVE ID for bogofilter base64 decoder CVE-2010-2494
MLIST:[oss-security] 20100705 Request CVE ID for bogofilter base64 decoder CVE-2010-2494
MLIST:[oss-security] 20100706 CVE Request: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100706 REPOST: CVE request for bogofilter CVE-2010-2494
MLIST:[oss-security] 20100706 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface CVE-2009-4896
MLIST:[oss-security] 20100706 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit CVE-2010-2495
MLIST:[oss-security] 20100706 Re: Request CVE ID for bogofilter base64 decoder CVE-2010-2494
MLIST:[oss-security] 20100706 patch for remote buffer overflows and local message spoofing in mipv6 daemon CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100707 CVE request - kernel: nfsd4: bug in read_buf CVE-2010-2521
MLIST:[oss-security] 20100707 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove CVE-2010-2653
MLIST:[oss-security] 20100707 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100708 Re: CVE request - kernel: nfsd4: bug in read_buf CVE-2010-2521
MLIST:[oss-security] 20100708 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100712 CVE request: NetSMB BSD kernel module (minor) CVE-2010-2530
MLIST:[oss-security] 20100713 CVE request, php var_export CVE-2010-2531
MLIST:[oss-security] 20100713 Multiple bugs in freetype CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520
MLIST:[oss-security] 20100714 Re: Multiple bugs in freetype CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520 CVE-2010-2527
MLIST:[oss-security] 20100715 CVE request: lxsession-logout CVE-2010-2532
MLIST:[oss-security] 20100715 Re: CVE request: lxsession-logout CVE-2010-2532
MLIST:[oss-security] 20100716 Re: CVE request: NetSMB BSD kernel module (minor) CVE-2010-2530
MLIST:[oss-security] 20100716 Re: Re: CVE request, php var_export CVE-2010-2531
MLIST:[oss-security] 20100720 CVE request for OpenTTD CVE-2010-2534
MLIST:[oss-security] 20100720 [oCERT-2010-002] Joomla input sanitization errors (XSS) CVE-2010-2535
MLIST:[oss-security] 20100721 CVE id request: mapserver CVE-2010-2539 CVE-2010-2540
MLIST:[oss-security] 20100721 CVE request: git CVE-2010-2542
MLIST:[oss-security] 20100721 CVE request: kernel: btrfs CVE-2010-2537 CVE-2010-2538
MLIST:[oss-security] 20100721 Re: CVE id request: mapserver CVE-2010-2539 CVE-2010-2540
MLIST:[oss-security] 20100721 Re: CVE request: kernel: btrfs CVE-2010-2537 CVE-2010-2538
MLIST:[oss-security] 20100721 Re: Universal XSS in Rekonq CVE-2010-2536
MLIST:[oss-security] 20100721 Re: [oCERT-2010-002] Joomla input sanitization errors (XSS) CVE-2010-2535
MLIST:[oss-security] 20100721 Universal XSS in Rekonq CVE-2010-2536
MLIST:[oss-security] 20100722 Cacti XSS fixes in 0.8.7g CVE-2010-2543 CVE-2010-2544 CVE-2010-2545
MLIST:[oss-security] 20100722 Re: CVE request: git CVE-2010-2542
MLIST:[oss-security] 20100726 CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100726 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100726 Re: Cacti XSS fixes in 0.8.7g CVE-2010-2543 CVE-2010-2544 CVE-2010-2545
MLIST:[oss-security] 20100728 CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter CVE-2010-2785
MLIST:[oss-security] 20100728 CVE Request: Piwik < 0.6.4 Arbitrary file inclusion CVE-2010-2786
MLIST:[oss-security] 20100729 Re: CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter CVE-2010-2785
MLIST:[oss-security] 20100729 Re: CVE Request: Piwik < 0.6.4 Arbitrary file inclusion CVE-2010-2786
MLIST:[oss-security] 20100729 Re: CVE request: mediawiki CVE-2010-2787 CVE-2010-2788 CVE-2010-2789
MLIST:[oss-security] 20100730 CVE-2010-2791: mod_proxy information leak affecting 2.2.9 only CVE-2010-2791
MLIST:[oss-security] 20100801 CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates CVE-2010-3901
MLIST:[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode CVE-2010-2800 CVE-2010-2801
MLIST:[oss-security] 20100802 CVE request: cmsmadesimple < 1.8.1 CVE-2010-2797
MLIST:[oss-security] 20100802 CVE request: kernel: gfs2: rename cases kernel panic CVE-2010-2798
MLIST:[oss-security] 20100802 CVE-2010-2524 kernel: dns_resolver upcall security issue CVE-2010-2524
MLIST:[oss-security] 20100802 Re: CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates CVE-2010-3901
MLIST:[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode CVE-2010-2800 CVE-2010-2801
MLIST:[oss-security] 20100802 Re: CVE request: cmsmadesimple < 1.8.1 CVE-2010-2797
MLIST:[oss-security] 20100802 Re: CVE request: kernel: gfs2: rename cases kernel panic CVE-2010-2798
MLIST:[oss-security] 20100802 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100802 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue CVE-2010-2524
MLIST:[oss-security] 20100803 CVE 2009 request: twiki before 4.3.2 CSRF CVE-2009-4898
MLIST:[oss-security] 20100803 CVE request: Attachment XSS in mantis < 1.2.2 CVE-2010-2802
MLIST:[oss-security] 20100803 Re: CVE 2009 request: twiki before 4.3.2 CSRF CVE-2009-4898
MLIST:[oss-security] 20100803 Re: CVE request: Attachment XSS in mantis < 1.2.2 CVE-2010-2802
MLIST:[oss-security] 20100803 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue CVE-2010-2524
MLIST:[oss-security] 20100806 CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts CVE-2010-2808
MLIST:[oss-security] 20100806 CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config CVE-2010-2809
MLIST:[oss-security] 20100806 Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more CVE-2010-2805 CVE-2010-2806 CVE-2010-2807 CVE-2010-2808
MLIST:[oss-security] 20100806 Re: CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config CVE-2010-2809
MLIST:[oss-security] 20100809 CVE Request - ZNC CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100809 CVE request: Lynx CVE-2010-2810
MLIST:[oss-security] 20100809 Re: CVE Request - ZNC CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100809 Re: CVE request: Lynx CVE-2010-2810
MLIST:[oss-security] 20100810 Re: Re: CVE Request - ZNC CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100811 CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow CVE-2010-2935 CVE-2010-2936
MLIST:[oss-security] 20100811 Re: CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow CVE-2010-2935 CVE-2010-2936
MLIST:[oss-security] 20100812 Re: CVE Request: openssl double free CVE-2010-2939
MLIST:[oss-security] 20100816 CVE request - kernel: integer overflow in ext4_ext_get_blocks() CVE-2010-3015
MLIST:[oss-security] 20100816 Minor security flaw with pam_xauth CVE-2010-3316
MLIST:[oss-security] 20100816 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() CVE-2010-3015
MLIST:[oss-security] 20100817 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks() CVE-2010-3015
MLIST:[oss-security] 20100818 CVE request - kernel: net sched memleak CVE-2010-2942
MLIST:[oss-security] 20100818 CVE request - kernel: xfs: stale data exposure CVE-2010-2943
MLIST:[oss-security] 20100818 CVE request: zope-ldapuser CVE-2010-2944
MLIST:[oss-security] 20100819 CVE Request: SLiM insecure PATH assignment CVE-2010-2945
MLIST:[oss-security] 20100819 Re: CVE request - kernel: net sched memleak CVE-2010-2942
MLIST:[oss-security] 20100819 Re: CVE request - kernel: xfs: stale data exposure CVE-2010-2943
MLIST:[oss-security] 20100819 Re: CVE request: zope-ldapuser CVE-2010-2944
MLIST:[oss-security] 20100819 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow CVE-2008-7258
MLIST:[oss-security] 20100820 CVE Request: heap-based buffer overflow in libHX CVE-2010-2947
MLIST:[oss-security] 20100820 CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others CVE-2010-2946
MLIST:[oss-security] 20100820 Re: CVE Request: SLiM insecure PATH assignment CVE-2010-2945
MLIST:[oss-security] 20100820 Re: CVE Request: heap-based buffer overflow in libHX CVE-2010-2947
MLIST:[oss-security] 20100820 Re: CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others CVE-2010-2946
MLIST:[oss-security] 20100820 kernel: can: add limit for nframes and clean up signed/unsigned variables CVE-2010-2959
MLIST:[oss-security] 20100824 CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request CVE-2010-2948 CVE-2010-2949
MLIST:[oss-security] 20100824 CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present CVE-2010-2951
MLIST:[oss-security] 20100825 CVE id request: libc fortify source information disclosure CVE-2010-3192
MLIST:[oss-security] 20100825 CVE request: CouchDB insecure library loading (Debian/Ubuntu only) CVE-2010-2953
MLIST:[oss-security] 20100825 CVE request: VLC media player - DLL preloading vulnerability CVE-2010-3124
MLIST:[oss-security] 20100825 Re: CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request CVE-2010-2948 CVE-2010-2949
MLIST:[oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present CVE-2010-2951
MLIST:[oss-security] 20100825 Re: CVE request: VLC media player - DLL preloading vulnerability CVE-2010-3124
MLIST:[oss-security] 20100826 Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only) CVE-2010-2953
MLIST:[oss-security] 20100829 CVE request: serendipity < 1.5.4 xss CVE-2010-2957
MLIST:[oss-security] 20100829 Hardening the linker (was Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only)) CVE-2010-2953
MLIST:[oss-security] 20100831 CVE-2010-2955 kernel: wireless: fix 64K kernel heap content leak via ioctl CVE-2010-2955
MLIST:[oss-security] 20100831 Re: CVE id request: libc fortify source information disclosure CVE-2010-3192
MLIST:[oss-security] 20100831 Re: CVE request: serendipity < 1.5.4 xss CVE-2010-2957
MLIST:[oss-security] 20100901 CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) CVE-2010-2958
MLIST:[oss-security] 20100901 CVE-2010-2954 kernel: irda null ptr deref CVE-2010-2954
MLIST:[oss-security] 20100901 Re: CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion) CVE-2010-2958
MLIST:[oss-security] 20100902 CVE-2010-2960 kernel: keyctl_session_to_parent null ptr deref CVE-2010-2960
MLIST:[oss-security] 20100902 Re: CVE id request: libc fortify source information disclosure CVE-2010-3192
MLIST:[oss-security] 20100903 CVE request: XSS in nusoap CVE-2010-3070
MLIST:[oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials CVE-2010-3071
MLIST:[oss-security] 20100905 CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100905 CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) CVE-2010-3072
MLIST:[oss-security] 20100905 CVE request: smbind Sql Injection CVE-2010-3076
MLIST:[oss-security] 20100905 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100907 CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak CVE-2010-3078
MLIST:[oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials CVE-2010-3071
MLIST:[oss-security] 20100907 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100907 Re: CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3) CVE-2010-3072
MLIST:[oss-security] 20100907 Re: CVE request: XSS in nusoap CVE-2010-3070
MLIST:[oss-security] 20100907 Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak CVE-2010-3078
MLIST:[oss-security] 20100907 Re: CVE request: smbind Sql Injection CVE-2010-3076
MLIST:[oss-security] 20100908 CVE-2010-3080 kernel: /dev/sequencer open failure is not handled correctly CVE-2010-3080
MLIST:[oss-security] 20100909 CVE Assignment: django CVE-2010-3082
MLIST:[oss-security] 20100909 CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100909 CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL CVE-2010-3084
MLIST:[oss-security] 20100909 CVE request: mednafen stack manipulation CVE-2010-3085
MLIST:[oss-security] 20100910 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100910 Re: CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL CVE-2010-3084
MLIST:[oss-security] 20100910 Re: CVE request: mednafen stack manipulation CVE-2010-3085
MLIST:[oss-security] 20100911 CVE id requests: drupal CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686
MLIST:[oss-security] 20100913 CVE Request: mailman CVE-2010-3089
MLIST:[oss-security] 20100913 CVE Request: pidgin-knotify remote command injection CVE-2010-3088
MLIST:[oss-security] 20100913 Re: CVE Request: mailman CVE-2010-3089
MLIST:[oss-security] 20100913 Re: CVE Request: pidgin-knotify remote command injection CVE-2010-3088
MLIST:[oss-security] 20100913 Re: CVE id requests: drupal CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686
MLIST:[oss-security] 20100914 CVE request: kernel: numerous infoleaks CVE-2010-3296 CVE-2010-3297 CVE-2010-3298
MLIST:[oss-security] 20100914 CVE request: mantis before 1.2.3 (XSS) CVE-2010-2574 CVE-2010-3070 CVE-2010-3303 CVE-2010-3763
MLIST:[oss-security] 20100914 CVE request: xss in pecl-apc before 3.1.4 CVE-2010-3294
MLIST:[oss-security] 20100914 Re: CVE request: kernel: numerous infoleaks CVE-2010-3296 CVE-2010-3297 CVE-2010-3298
MLIST:[oss-security] 20100914 Re: CVE request: mantis before 1.2.3 (XSS) CVE-2010-2574 CVE-2010-3070 CVE-2010-3303 CVE-2010-3763
MLIST:[oss-security] 20100914 Re: CVE request: xss in pecl-apc before 3.1.4 CVE-2010-3294
MLIST:[oss-security] 20100916 CVE request: weborf: directory traversal CVE-2010-3306
MLIST:[oss-security] 20100916 CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow CVE-2010-3081
MLIST:[oss-security] 20100916 CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability CVE-2010-3301
MLIST:[oss-security] 20100916 CVE-identifier request for Dovecot ACL security bug CVE-2010-3304
MLIST:[oss-security] 20100916 Re: CVE request: mantis before 1.2.3 (XSS) CVE-2010-3303
MLIST:[oss-security] 20100916 Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability CVE-2010-3301
MLIST:[oss-security] 20100916 Re: CVE-identifier request for Dovecot ACL security bug CVE-2010-3304
MLIST:[oss-security] 20100917 CVE request: epiphany not checking ssl certs CVE-2010-3312
MLIST:[oss-security] 20100917 Re: CVE request: epiphany not checking ssl certs CVE-2010-3312 CVE-2010-3900
MLIST:[oss-security] 20100917 Re: CVE request: weborf: directory traversal CVE-2010-3306
MLIST:[oss-security] 20100917 Re: [oCERT-2010-003] Free Simple CMS path sanitization errors CVE-2010-3307
MLIST:[oss-security] 20100917 [oCERT-2010-003] Free Simple CMS path sanitization errors CVE-2010-3307
MLIST:[oss-security] 20100920 Re: CVE request: epiphany not checking ssl certs CVE-2010-3312
MLIST:[oss-security] 20100921 CVE request: kernel: Heap corruption in ROSE CVE-2010-3310
MLIST:[oss-security] 20100921 Re: CVE request: egroupware remote code and xss CVE-2010-3313 CVE-2010-3314
MLIST:[oss-security] 20100921 Re: CVE request: epiphany not checking ssl certs CVE-2010-3312
MLIST:[oss-security] 20100921 Re: CVE request: kernel: Heap corruption in ROSE CVE-2010-3310
MLIST:[oss-security] 20100921 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20100921 bzip2 CVE-2010-0405 integer overflow CVE-2010-0405
MLIST:[oss-security] 20100922 CVE request: clamav < 0.96.3 pdf bounds checking CVE-2010-3434
MLIST:[oss-security] 20100922 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100924 CVE Request -- Linux/SCTP DoS in sctp_packet_config() CVE-2010-3432
MLIST:[oss-security] 20100924 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100924 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20100925 CVE request: multiple kernel stack memory disclosures CVE-2010-4074 CVE-2010-4075 CVE-2010-4076 CVE-2010-4077 CVE-2010-4078 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083
MLIST:[oss-security] 20100925 Re: CVE Request -- Linux/SCTP DoS in sctp_packet_config() CVE-2010-3432
MLIST:[oss-security] 20100927 Re: CVE request: clamav < 0.96.3 pdf bounds checking CVE-2010-3434
MLIST:[oss-security] 20100927 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20100928 CVE request - kernel: pktcdvd ioctl dev_minor missing range check CVE-2010-3437
MLIST:[oss-security] 20100928 Re: CVE Request -- MySQL v5.1.49 -- multiple DoS flaws CVE-2010-3676 CVE-2010-3677 CVE-2010-3678 CVE-2010-3679 CVE-2010-3680 CVE-2010-3681 CVE-2010-3682 CVE-2010-3683
MLIST:[oss-security] 20100928 Re: CVE request - kernel: pktcdvd ioctl dev_minor missing range check CVE-2010-3437
MLIST:[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking CVE-2010-3434
MLIST:[oss-security] 20100928 Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel CVE-2010-3448
MLIST:[oss-security] 20100928 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435 CVE-2010-4708
MLIST:[oss-security] 20100928 [oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference CVE-2010-3429
MLIST:[oss-security] 20100929 CVE request - kernel: prevent heap corruption in snd_ctl_new() CVE-2010-3442
MLIST:[oss-security] 20100929 CVE request - phpCAS: prevent symlink attacks, directory traversal and XSS during a proxy callback CVE-2010-3690 CVE-2010-3691 CVE-2010-3692
MLIST:[oss-security] 20100929 CVE request: Horde Gollem <1.1.2 XSS in view.php CVE-2010-3447
MLIST:[oss-security] 20100929 Re: CVE request - kernel: prevent heap corruption in snd_ctl_new() CVE-2010-3442
MLIST:[oss-security] 20100929 Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel CVE-2010-3448
MLIST:[oss-security] 20100930 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php CVE-2010-3447 CVE-2010-3693 CVE-2010-3695
MLIST:[oss-security] 20100930 Re: CVE requests: POE::Component::IRC, Alien Arena, Babiloo, Typo3, abcm2ps, ModSecurity, Linux kernel CVE-2010-3448
MLIST:[oss-security] 20101001 CVE request: freeradius CVE-2010-3696 CVE-2010-3697
MLIST:[oss-security] 20101001 Re: CVE request - phpCAS: prevent symlink attacks, directory traversal and XSS during a proxy callback CVE-2010-3690 CVE-2010-3691 CVE-2010-3692
MLIST:[oss-security] 20101001 Re: CVE request: Horde Gollem <1.1.2 XSS in view.php CVE-2010-3693 CVE-2010-3695
MLIST:[oss-security] 20101001 Re: CVE request: freeradius CVE-2010-3696 CVE-2010-3697
MLIST:[oss-security] 20101001 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark CVE-2010-3445
MLIST:[oss-security] 20101004 CVE Request: more dovecot ACL issues CVE-2010-3706 CVE-2010-3707
MLIST:[oss-security] 20101004 CVE request: kernel: SCTP memory corruption in HMAC handling CVE-2010-3705
MLIST:[oss-security] 20101004 Re: CVE Request: more dovecot ACL issues CVE-2010-3706 CVE-2010-3707
MLIST:[oss-security] 20101004 Re: CVE request: kernel: SCTP memory corruption in HMAC handling CVE-2010-3705
MLIST:[oss-security] 20101004 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark CVE-2010-3702 CVE-2010-3703 CVE-2010-3704
MLIST:[oss-security] 20101004 Re: Minor security flaw with pam_xauth CVE-2010-3430 CVE-2010-3431 CVE-2010-4706 CVE-2010-4707
MLIST:[oss-security] 20101006 Re: CVE request: multiple kernel stack memory disclosures CVE-2010-4072 CVE-2010-4073 CVE-2010-4074 CVE-2010-4075 CVE-2010-4076 CVE-2010-4077 CVE-2010-4078 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083
MLIST:[oss-security] 20101007 qpidd SSL connection DoS (CVE-2010-3083) CVE-2010-3083
MLIST:[oss-security] 20101008 CVE request: mybb before 1.4.11 and before 1.4.12 CVE-2009-4448 CVE-2009-4449 CVE-2010-4624 CVE-2010-4625 CVE-2010-4626 CVE-2010-4627 CVE-2010-4628 CVE-2010-4629
MLIST:[oss-security] 20101008 CVE request: usebb before 1.0.11 unauthorized access to content CVE-2010-3713
MLIST:[oss-security] 20101011 CVE request: joomla before 1.5.21 XSS CVE-2010-3712
MLIST:[oss-security] 20101011 Re: CVE request: joomla before 1.5.21 XSS CVE-2010-3712
MLIST:[oss-security] 20101011 Re: CVE request: mybb before 1.4.11 and before 1.4.12 CVE-2009-4448 CVE-2009-4449 CVE-2010-4624 CVE-2010-4625 CVE-2010-4626 CVE-2010-4627 CVE-2010-4628 CVE-2010-4629
MLIST:[oss-security] 20101011 Re: CVE request: usebb before 1.0.11 unauthorized access to content CVE-2010-3713
MLIST:[oss-security] 20101011 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark CVE-2010-3445
MLIST:[oss-security] 20101013 CVE Request -- cURL / mingw32-cURL -- Did not strip directory parts separated by backslashes, when downloading files CVE-2010-3842
MLIST:[oss-security] 20101013 Re: CVE Request -- cURL / mingw32-cURL -- Did not strip directory parts separated by backslashes, when downloading files CVE-2010-3842
MLIST:[oss-security] 20101021 CVE request: kernel: setup_arg_pages: diagnose excessive argument size CVE-2010-3858
MLIST:[oss-security] 20101022 CVE request: kernel: heap overflow in TIPC CVE-2010-3859
MLIST:[oss-security] 20101022 CVE-2010-1693: OFED openibd startup script uses predictable tmpfile CVE-2010-1693
MLIST:[oss-security] 20101022 Re: CVE request: kernel: heap overflow in TIPC CVE-2010-3859
MLIST:[oss-security] 20101022 Re: CVE request: kernel: setup_arg_pages: diagnose excessive argument size CVE-2010-3858
MLIST:[oss-security] 20101025 CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL CVE-2010-3861
MLIST:[oss-security] 20101025 Re: CVE request: multiple kernel stack memory disclosures CVE-2010-4072 CVE-2010-4073 CVE-2010-4074 CVE-2010-4075 CVE-2010-4076 CVE-2010-4077 CVE-2010-4078 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083
MLIST:[oss-security] 20101025 Re: Minor security flaw with pam_xauth CVE-2010-3316 CVE-2010-3430 CVE-2010-3431 CVE-2010-3435
MLIST:[oss-security] 20101026 Re: CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL CVE-2010-3861
MLIST:[oss-security] 20101029 CVE request: kernel: iovec overflow in rds_rdma_pages() CVE-2010-3865
MLIST:[oss-security] 20101101 Re: CVE request: kernel: iovec overflow in rds_rdma_pages() CVE-2010-3865
MLIST:[oss-security] 20101101 Re: Proftpd pre-authentication buffer overflow in Telnet code CVE-2010-3867
MLIST:[oss-security] 20101102 CVE request: kernel stack infoleaks CVE-2010-3875 CVE-2010-3876 CVE-2010-3877
MLIST:[oss-security] 20101102 Re: CVE request: kernel stack infoleaks CVE-2010-3876
MLIST:[oss-security] 20101102 Re: utf-8 security issue in php CVE-2010-3870
MLIST:[oss-security] 20101102 utf-8 security issue in php CVE-2010-3870
MLIST:[oss-security] 20101103 CVE request: X.25 remote DoS CVE-2010-3873
MLIST:[oss-security] 20101103 CVE request: kernel: CAN information leak CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101103 Re: utf-8 security issue in php CVE-2010-3870
MLIST:[oss-security] 20101104 CVE request: fuse CVE-2010-3879
MLIST:[oss-security] 20101104 CVE request: kernel: kvm kernel stack leakage CVE-2010-3881
MLIST:[oss-security] 20101104 CVE request: kernel: logic error in INET_DIAG bytecode auditing CVE-2010-3880
MLIST:[oss-security] 20101104 Re: CVE request: X.25 remote DoS CVE-2010-3873
MLIST:[oss-security] 20101104 Re: CVE request: kernel stack infoleaks CVE-2010-3875 CVE-2010-3876 CVE-2010-3877
MLIST:[oss-security] 20101104 Re: CVE request: kernel: CAN information leak CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101105 Re: CVE request: fuse CVE-2010-3879
MLIST:[oss-security] 20101105 Re: CVE request: kernel: kvm kernel stack leakage CVE-2010-3881
MLIST:[oss-security] 20101105 Re: CVE request: kernel: logic error in INET_DIAG bytecode auditing CVE-2010-3880
MLIST:[oss-security] 20101107 CVE Request: PHP 5.3.3, libmbfl, mb_strcut CVE-2010-4156
MLIST:[oss-security] 20101107 Re: CVE request: moodle 1.9.10 CVE-2010-4207 CVE-2010-4208 CVE-2010-4209
MLIST:[oss-security] 20101108 CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101108 Re: CVE Request: PHP 5.3.3, libmbfl, mb_strcut CVE-2010-4156
MLIST:[oss-security] 20101108 Re: CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101109 Re: CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101110 CVE request: kernel: L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[oss-security] 20101110 CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4162 CVE-2010-4163
MLIST:[oss-security] 20101110 CVE request: mono loading shared libs from cwd CVE-2010-4159
MLIST:[oss-security] 20101110 CVE-2010-3086 kernel panic via futex CVE-2010-3086
MLIST:[oss-security] 20101110 Re: CVE request: kernel: L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[oss-security] 20101110 Re: CVE request: kernel: gdth: integer overflow in ioc_general() CVE-2010-4157
MLIST:[oss-security] 20101110 Re: CVE request: mono loading shared libs from cwd CVE-2010-4159
MLIST:[oss-security] 20101111 CVE request: kernel: remote DoS in X.25 CVE-2010-4164
MLIST:[oss-security] 20101112 CVE request: ImageMagick opens config files in $CWD CVE-2010-4167
MLIST:[oss-security] 20101112 CVE request: Joomla 1.5.21 SQL Injection and Information Disclosure CVE-2010-4166 CVE-2010-4696
MLIST:[oss-security] 20101112 CVE request: kernel: possible kernel oops from user MSS CVE-2010-4165
MLIST:[oss-security] 20101112 Re: CVE request: Joomla 1.5.21 SQL Injection and Information Disclosure CVE-2010-4166 CVE-2010-4696
MLIST:[oss-security] 20101112 Re: CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4162 CVE-2010-4163
MLIST:[oss-security] 20101112 Re: CVE request: kernel: possible kernel oops from user MSS CVE-2010-4165
MLIST:[oss-security] 20101112 Re: CVE request: kernel: remote DoS in X.25 CVE-2010-4164
MLIST:[oss-security] 20101114 CVE request for OpenTTD CVE-2010-4168
MLIST:[oss-security] 20101115 CVE request: kernel: perf bug CVE-2010-4169
MLIST:[oss-security] 20101115 Re: CVE request for OpenTTD CVE-2010-4168
MLIST:[oss-security] 20101115 Re: CVE request: ImageMagick opens config files in $CWD CVE-2010-4167
MLIST:[oss-security] 20101115 Re: CVE request: kernel: perf bug CVE-2010-4169
MLIST:[oss-security] 20101116 CVE Request: libsdp CVE-2010-4173
MLIST:[oss-security] 20101116 Re: CVE Request: libsdp CVE-2010-4173
MLIST:[oss-security] 20101117 CVE request: kernel: integer overflow in RDS CVE-2010-4175
MLIST:[oss-security] 20101118 NULL byte poisoning fix in php 5.3.4+ CVE-2006-7243
MLIST:[oss-security] 20101118 Re: CVE request: kernel: integer overflow in RDS CVE-2010-4175
MLIST:[oss-security] 20101118 Re: NULL byte poisoning fix in php 5.3.4+ CVE-2006-7243
MLIST:[oss-security] 20101121 CVE Request: gif2png: command-line buffer overflow problem CVE-2009-5018 CVE-2010-4694
MLIST:[oss-security] 20101121 Re: CVE Request: gif2png: command-line buffer overflow problem CVE-2009-5018 CVE-2010-4694
MLIST:[oss-security] 20101122 CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads CVE-2010-4243
MLIST:[oss-security] 20101122 Re: CVE Request: gif2png: command-line buffer overflow problem CVE-2009-5018 CVE-2010-4694
MLIST:[oss-security] 20101122 Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads CVE-2010-4243
MLIST:[oss-security] 20101123 CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec CVE-2010-4248
MLIST:[oss-security] 20101123 CVE request: xen: request-processing loop is unbounded in blkback CVE-2010-4247
MLIST:[oss-security] 20101123 Can I request a cve for pfsense regarding --> "pfSense "graph.php" Cross-Site Scripting Vulnerabilities" CVE-2010-4246 CVE-2010-4412
MLIST:[oss-security] 20101124 CVE request: kernel: unix socket local dos CVE-2010-4249
MLIST:[oss-security] 20101124 Re: CVE request: kernel: L2TP send buffer allocation size overflows CVE-2010-4160
MLIST:[oss-security] 20101124 Re: CVE request: kernel: posix-cpu-timers: workaround to suppress the problems with mt exec CVE-2010-4248
MLIST:[oss-security] 20101124 Re: CVE request: kernel: unix socket local dos CVE-2010-4249
MLIST:[oss-security] 20101124 Re: CVE request: xen: request-processing loop is unbounded in blkback CVE-2010-4247
MLIST:[oss-security] 20101124 Re: Can I request a cve for pfsense regarding --> "pfSense "graph.php" Cross-Site Scripting Vulnerabilities" CVE-2010-4246 CVE-2010-4412
MLIST:[oss-security] 20101129 Re: CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4163 CVE-2010-4668
MLIST:[oss-security] 20101129 kernel: Multiple vulnerabilities in AF_ECONET CVE-2010-3848 CVE-2010-3849 CVE-2010-3850
MLIST:[oss-security] 20101130 CVE request: kernel: pipe_fcntl local DoS CVE-2010-4256
MLIST:[oss-security] 20101130 CVE request: xen: x86-64: don't crash Xen upon direct pv guest access CVE-2010-4255
MLIST:[oss-security] 20101130 Re: CVE request: kernel: Multiple DoS issues in block layer CVE-2010-4668
MLIST:[oss-security] 20101130 Re: CVE request: kernel: pipe_fcntl local DoS CVE-2010-4256
MLIST:[oss-security] 20101130 Re: CVE request: xen: x86-64: don't crash Xen upon direct pv guest access CVE-2010-4255
MLIST:[oss-security] 20101201 CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part) CVE-2010-2761 CVE-2010-4410
MLIST:[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part) CVE-2010-2761 CVE-2010-4410 CVE-2010-4411
MLIST:[oss-security] 20101202 CVE Request -- FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header CVE-2010-4259
MLIST:[oss-security] 20101202 CVE request: kernel: failure to revert address limit override in OOPS error path CVE-2010-4258
MLIST:[oss-security] 20101202 Re: CVE Request -- FontForge: Stack-based buffer overflow by processing specially-crafted CHARSET_REGISTRY font file header CVE-2010-4259
MLIST:[oss-security] 20101202 Re: CVE request: kernel: failure to revert address limit override in OOPS error path CVE-2010-4258
MLIST:[oss-security] 20101202 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101202 kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101203 CVE Request -- Xfig: Stack-based buffer overflow by processing FIG image with crafted color definition CVE-2010-4262
MLIST:[oss-security] 20101203 Re: clamav 0.96.5 released CVE-2010-4260 CVE-2010-4261 CVE-2010-4479
MLIST:[oss-security] 20101203 clamav 0.96.5 released CVE-2010-4260 CVE-2010-4261 CVE-2010-4479
MLIST:[oss-security] 20101206 CVE request: kernel: igb panics when receiving tag vlan packet CVE-2010-4263
MLIST:[oss-security] 20101206 Re: CVE Request -- Xfig: Stack-based buffer overflow by processing FIG image with crafted color definition CVE-2010-4262
MLIST:[oss-security] 20101206 Re: CVE request: kernel: igb panics when receiving tag vlan packet CVE-2010-4263
MLIST:[oss-security] 20101206 Re: CVE request: mybb before 1.4.11 and before 1.4.12 CVE-2009-4448 CVE-2009-4449 CVE-2010-4624 CVE-2010-4625 CVE-2010-4626 CVE-2010-4627 CVE-2010-4628 CVE-2010-4629
MLIST:[oss-security] 20101206 Re: Can I request a cve for pfsense regarding --> "pfSense "graph.php" Cross-Site Scripting Vulnerabilities" CVE-2010-4412
MLIST:[oss-security] 20101208 CVE request: kernel: NULL pointer dereference in AF_ECONET CVE-2010-4342
MLIST:[oss-security] 20101208 CVE request: kernel: bfa driver sysfs crash CVE-2010-4343
MLIST:[oss-security] 20101208 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101209 Re: CVE request: kernel: NULL pointer dereference in AF_ECONET CVE-2010-4342
MLIST:[oss-security] 20101209 Re: CVE request: kernel: bfa driver sysfs crash CVE-2010-4343
MLIST:[oss-security] 20101209 Re: CVE requests: IO::Socket::SSL, cakephp, collectd, gnash, ocrodjvu, hypermail, libcloud, piwigo CVE-2010-4334
MLIST:[oss-security] 20101209 Re: Re: NULL byte poisoning fix in php 5.3.4+ CVE-2006-7243
MLIST:[oss-security] 20101209 Re: [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] CVE-2010-4346
MLIST:[oss-security] 20101209 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses CVE-2010-4258
MLIST:[oss-security] 20101209 [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] CVE-2010-4346
MLIST:[oss-security] 20101210 Exim remote root CVE-2010-4344 CVE-2010-4345
MLIST:[oss-security] 20101210 Re: Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check CVE-2010-4346
MLIST:[oss-security] 20101210 Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check CVE-2010-4346
MLIST:[oss-security] 20101213 Re: Issues without CVE names in PHP 5.3.4/5.2.15 release CVE-2011-0752
MLIST:[oss-security] 20101215 CVE Request: local privilege escalation via /sys/kernel/debug/acpi/custom_method CVE-2010-4347
MLIST:[oss-security] 20101215 CVE request: MantisBT <=1.2.3 (db_type) Cross-Site Scripting & Path Disclosure Vulnerability CVE-2010-4348 CVE-2010-4349
MLIST:[oss-security] 20101215 CVE request: MantisBT <=1.2.3 (db_type) Local File Inclusion Vulnerability CVE-2010-4350
MLIST:[oss-security] 20101215 Re: CVE Request: local privilege escalation via /sys/kernel/debug/acpi/custom_method CVE-2010-4347
MLIST:[oss-security] 20101216 CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants CVE-2010-4352
MLIST:[oss-security] 20101216 CVE request: Drupal views module CSRF/XSS before 2.11, XSS before 2.12 CVE-2010-4519 CVE-2010-4520 CVE-2010-4521
MLIST:[oss-security] 20101216 Re: CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants CVE-2010-4352
MLIST:[oss-security] 20101216 Re: CVE request: MantisBT <=1.2.3 (db_type) Cross-Site Scripting & Path Disclosure Vulnerability CVE-2010-4348 CVE-2010-4349
MLIST:[oss-security] 20101216 Re: CVE request: MantisBT <=1.2.3 (db_type) Local File Inclusion Vulnerability CVE-2010-4350
MLIST:[oss-security] 20101220 CVE Request: MyBB XSS bugs CVE-2010-4522
MLIST:[oss-security] 20101220 CVE request: kernel: CAN information leak, 2nd attempt CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101220 Re: CVE request: kernel: CAN information leak, 2nd attempt CVE-2010-3874 CVE-2010-4565
MLIST:[oss-security] 20101221 CVE Request -- MHonArc: Improper escaping of certain HTML sequences (XSS) CVE-2010-4524
MLIST:[oss-security] 20101221 CVE request: opensc buffer overflow CVE-2010-4523
MLIST:[oss-security] 20101221 Re: CVE Request -- MHonArc: Improper escaping of certain HTML sequences (XSS) CVE-2010-4524
MLIST:[oss-security] 20101221 Re: CVE Request: MyBB XSS bugs CVE-2010-4522
MLIST:[oss-security] 20101221 Re: CVE request: Drupal views module CSRF/XSS before 2.11, XSS before 2.12 CVE-2010-4519 CVE-2010-4520 CVE-2010-4521
MLIST:[oss-security] 20101221 Re: Re: CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants CVE-2010-4352
MLIST:[oss-security] 20101222 CVE Request -- 1, ccid -- int.overflow leading to array index error 2, pcsc-lite stack-based buffer overflow in ATR decoder [was: CVE request: opensc buffer overflow ] CVE-2010-4530 CVE-2010-4531
MLIST:[oss-security] 20101222 Re: CVE request: opensc buffer overflow CVE-2010-4523
MLIST:[oss-security] 20101223 CVE Request -- Django 1.2.4, Django 1.1.3 and Django 1.3 beta 1 -- addressing two security flaws CVE-2010-4534 CVE-2010-4535
MLIST:[oss-security] 20101223 CVE request: kernel: irda: prevent integer underflow in IRLMP_ENUMDEVICES CVE-2010-4529
MLIST:[oss-security] 20101224 IO::Socket::SSL perl module: CVE-2010-4501/CVE-2010-4334 dupe CVE-2010-4334
MLIST:[oss-security] 20101227 CVE Request -- Pidgin v2.7.6 <= x <= v2.7.8 -- MSN DirectConnect DoS (crash due NULL ptr dereference) after receiving a short P2P message CVE-2010-4528
MLIST:[oss-security] 20101230 CVE request: kernel: buffer overflow in OSS load_mixer_volumes CVE-2010-4527
MLIST:[oss-security] 20101230 CVE request: wordpress before 3.0.4 XSS CVE-2010-4536
MLIST:[oss-security] 20101231 CVE Request: CrawlTrack < 3.2.7 - remote php code execution CVE-2010-4537
MLIST:[oss-security] 20101231 CVE Request: Wireshark CVE-2010-4538
MLIST:[oss-security] 20101231 Re: CVE Request -- Pidgin v2.7.6 <= x <= v2.7.8 -- MSN DirectConnect DoS (crash due NULL ptr dereference) after receiving a short P2P message CVE-2010-4528
MLIST:[oss-security] 20101231 Re: CVE request: kernel: buffer overflow in OSS load_mixer_volumes CVE-2010-4527
MLIST:[oss-security] 20110102 CVE request for subversion CVE-2010-4539 CVE-2010-4644
MLIST:[oss-security] 20110103 CVE request for buffer overflows in gimp CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543
MLIST:[oss-security] 20110103 Re: CVE Request -- 1, ccid -- int.overflow leading to array index error 2, pcsc-lite stack-based buffer overflow in ATR decoder [was: CVE request: opensc buffer overflow ] CVE-2010-4530 CVE-2010-4531
MLIST:[oss-security] 20110103 Re: CVE Request -- Django 1.2.4, Django 1.1.3 and Django 1.3 beta 1 -- addressing two security flaws CVE-2010-4534 CVE-2010-4535
MLIST:[oss-security] 20110103 Re: CVE Request: CrawlTrack < 3.2.7 - remote php code execution CVE-2010-4537
MLIST:[oss-security] 20110103 Re: CVE Request: Wireshark CVE-2010-4538
MLIST:[oss-security] 20110103 Re: CVE request for subversion CVE-2010-4539
MLIST:[oss-security] 20110103 Re: CVE request: kernel: irda: prevent integer underflow in IRLMP_ENUMDEVICES CVE-2010-4529
MLIST:[oss-security] 20110104 (possible) CVE request: Clickjacking in Mediawiki CVE-2011-0003
MLIST:[oss-security] 20110104 CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() CVE-2010-4526
MLIST:[oss-security] 20110104 Re: (possible) CVE request: Clickjacking in Mediawiki CVE-2011-0003
MLIST:[oss-security] 20110104 Re: CVE request for buffer overflows in gimp CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543
MLIST:[oss-security] 20110104 Re: CVE request for subversion CVE-2010-4539 CVE-2010-4644
MLIST:[oss-security] 20110104 Re: CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() CVE-2010-4526
MLIST:[oss-security] 20110105 CVE Request: Multiple XSS Vulnerabiliies < Piwik 1.1 CVE-2011-0004
MLIST:[oss-security] 20110105 CVE request: patch directory traversal flaw CVE-2010-4651
MLIST:[oss-security] 20110105 CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleak CVE-2010-4525
MLIST:[oss-security] 20110105 Re: CVE request for subversion CVE-2010-4539 CVE-2010-4644
MLIST:[oss-security] 20110105 Re: CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleak CVE-2010-4525
MLIST:[oss-security] 20110105 Re: possible flaw in widely used strtod.c implementation CVE-2010-4645
MLIST:[oss-security] 20110105 possible flaw in widely used strtod.c implementation CVE-2010-4645
MLIST:[oss-security] 20110106 CVE Request: Eclipse IDE Version: 3.6.1 | Help Server Local Cross Site Scripting (XSS) CVE-2010-4647
MLIST:[oss-security] 20110106 CVE request: hastymail before 1.01 XSS CVE-2010-4646
MLIST:[oss-security] 20110106 Re: CVE Request: Eclipse IDE Version: 3.6.1 | Help Server Local Cross Site Scripting (XSS) CVE-2010-4647
MLIST:[oss-security] 20110106 Re: CVE Request: Multiple XSS Vulnerabiliies < Piwik 1.1 CVE-2011-0004
MLIST:[oss-security] 20110106 Re: CVE request: hastymail before 1.01 XSS CVE-2010-4646
MLIST:[oss-security] 20110106 Re: CVE request: patch directory traversal flaw CVE-2010-4651
MLIST:[oss-security] 20110106 Re: CVE-2010-4525 kvm: x86: zero kvm_vcpu_events->interrupt.pad infoleak CVE-2010-4525
MLIST:[oss-security] 20110106 Re: possible flaw in widely used strtod.c implementation CVE-2010-4645
MLIST:[oss-security] 20110107 CVE Request - pimd - Insecure file creation in /var/tmp CVE-2011-0007
MLIST:[oss-security] 20110107 Re: CVE Request - pimd - Insecure file creation in /var/tmp CVE-2011-0007
MLIST:[oss-security] 20110111 CVE request: sudo does not ask for password on GID changes CVE-2011-0010
MLIST:[oss-security] 20110112 Re: CVE request: sudo does not ask for password on GID changes CVE-2011-0010
MLIST:[oss-security] 20110118 CVE request: heap corruption in libpango CVE-2011-0020
MLIST:[oss-security] 20110118 Re: CVE request: tor CVE-2011-0015 CVE-2011-0016
MLIST:[oss-security] 20110119 2 acpid flaws CVE-2011-1159
MLIST:[oss-security] 20110119 CVE request: heap corruption in VLC media player CVE-2011-0021
MLIST:[oss-security] 20110120 Re: CVE request: heap corruption in VLC media player CVE-2011-0021
MLIST:[oss-security] 20110120 Re: CVE request: heap corruption in libpango CVE-2011-0020
MLIST:[oss-security] 20110123 CVE request: MaraDNS DoS via long queries CVE-2011-0520
MLIST:[oss-security] 20110124 CVE request: linux kernel heap issues CVE-2010-4655 CVE-2010-4656
MLIST:[oss-security] 20110124 Re: CVE request: MaraDNS DoS via long queries CVE-2011-0520
MLIST:[oss-security] 20110124 Re: CVE request: linux kernel heap issues CVE-2010-4655 CVE-2010-4656
MLIST:[oss-security] 20110125 CVE Request: VLC Subtitle StripTags heap corruption CVE-2011-0522
MLIST:[oss-security] 20110125 Linux kernel av7110 negative array offset CVE-2011-0521
MLIST:[oss-security] 20110125 Re: CVE Request: VLC Subtitle StripTags heap corruption CVE-2011-0522
MLIST:[oss-security] 20110125 Re: CVE request: linux kernel heap issues CVE-2010-4655 CVE-2010-4656
MLIST:[oss-security] 20110125 Re: Linux kernel av7110 negative array offset CVE-2011-0521
MLIST:[oss-security] 20110127 CVE Request:Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability CVE-2011-0526
MLIST:[oss-security] 20110127 Re: CVE Request:Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability CVE-2011-0526
MLIST:[oss-security] 20110128 CVE Request -- NDB: CVE-2005-3534 reintroduced in upstream nbd-v2.9.0 version CVE-2011-0530
MLIST:[oss-security] 20110128 Re: CVE request: linux kernel heap issues CVE-2010-4655
MLIST:[oss-security] 20110131 CVE request: code execution in VLC media player CVE-2011-0531
MLIST:[oss-security] 20110131 Re: CVE Request -- NDB: CVE-2005-3534 reintroduced in upstream nbd-v2.9.0 version CVE-2011-0530
MLIST:[oss-security] 20110131 Re: CVE request: code execution in VLC media player CVE-2011-0531
MLIST:[oss-security] 20110201 CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability CVE-2011-0535
MLIST:[oss-security] 20110201 CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.1 CVE-2011-0537
MLIST:[oss-security] 20110201 CVE request: fuse CVE-2011-0541 CVE-2011-0542 CVE-2011-0543
MLIST:[oss-security] 20110203 CVE request: glibc CVE-2010-3847 fix regression CVE-2011-0536
MLIST:[oss-security] 20110203 Re: CVE Request: Zikula CMS 1.2.4 <= Cross Site Request Forgery (CSRF) Vulnerability CVE-2011-0535
MLIST:[oss-security] 20110203 Re: CVE request: Server-side arbitrary script inclusion vulnerability in MediaWiki <=1.16.1 CVE-2011-0537
MLIST:[oss-security] 20110203 Re: CVE request: fuse CVE-2011-0541 CVE-2011-0542 CVE-2011-0543
MLIST:[oss-security] 20110203 Re: CVE request: glibc CVE-2010-3847 fix regression CVE-2011-0536
MLIST:[oss-security] 20110204 Re: [vendor-sec] OpenSSH security advisory: legacy certificate signing in 5.6/5.7 CVE-2011-0539
MLIST:[oss-security] 20110204 Wireshark: Freeing uninitialized pointer CVE-2011-0538
MLIST:[oss-security] 20110208 Re: CVE request: fuse CVE-2011-0541 CVE-2011-0542 CVE-2011-0543
MLIST:[oss-security] 20110209 CVE request for feh CVE-2011-0702
MLIST:[oss-security] 20110209 CVE request: wordpress before 3.0.5 CVE-2011-0700 CVE-2011-0701
MLIST:[oss-security] 20110209 Django multiple flaws (CVEs inside) CVE-2011-0696 CVE-2011-0697 CVE-2011-0698
MLIST:[oss-security] 20110209 Re: CVE request for feh CVE-2011-0702
MLIST:[oss-security] 20110209 Re: CVE request: wordpress before 3.0.5 CVE-2011-0700 CVE-2011-0701
MLIST:[oss-security] 20110214 PHP Exif 64bit Casting Vulnerability, CVE request CVE-2011-0708
MLIST:[oss-security] 20110216 CVE request - kernel: bridge br_multicast NULL pointer dereference CVE-2011-0709
MLIST:[oss-security] 20110216 CVE request - kernel: s390 task_show_regs infoleak CVE-2011-0710
MLIST:[oss-security] 20110216 CVE request - kernel: xfs infoleak CVE-2011-0711
MLIST:[oss-security] 20110216 Re: CVE request - kernel: bridge br_multicast NULL pointer dereference CVE-2011-0709
MLIST:[oss-security] 20110216 Re: CVE request - kernel: s390 task_show_regs infoleak CVE-2011-0710
MLIST:[oss-security] 20110216 Re: CVE request - kernel: xfs infoleak CVE-2011-0711
MLIST:[oss-security] 20110216 Re: Re: PHP Exif 64bit Casting Vulnerability, CVE request CVE-2011-0708
MLIST:[oss-security] 20110216 Re: kernel: ALSA: caiaq - Fix possible string-buffer overflow CVE-2011-0712
MLIST:[oss-security] 20110216 kernel: ALSA: caiaq - Fix possible string-buffer overflow CVE-2011-0712
MLIST:[oss-security] 20110216 wireshark dct3trace buffer overflow CVE-2011-0713
MLIST:[oss-security] 20110217 CVE id request: telepathy-gabble CVE-2011-1000
MLIST:[oss-security] 20110217 CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack CVE-2011-0999
MLIST:[oss-security] 20110217 Re: CVE id request: telepathy-gabble CVE-2011-1000
MLIST:[oss-security] 20110217 Re: CVE request - kernel: thp: prevent hugepages during args/env copying into the user stack CVE-2011-0999
MLIST:[oss-security] 20110218 CVE request: avahi daemon remote denial of service by sending NULL UDP CVE-2011-1002
MLIST:[oss-security] 20110218 Re: CVE request: avahi daemon remote denial of service by sending NULL UDP CVE-2011-1002
MLIST:[oss-security] 20110221 CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE CVE-2011-1004 CVE-2011-1005
MLIST:[oss-security] 20110221 Re: CVE request: ruby: FileUtils is vulnerable to symlink race attacks + Exception methods can bypass $SAFE CVE-2011-1004 CVE-2011-1005
MLIST:[oss-security] 20110221 Re: clamav 0.97 CVE-2011-1003
MLIST:[oss-security] 20110221 clamav 0.97 CVE-2011-1003
MLIST:[oss-security] 20110222 CVE Request CVE-2011-1011
MLIST:[oss-security] 20110222 CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110222 CVE request: kernel: fs/partitions: validate map_count in mac partition tables CVE-2011-1010
MLIST:[oss-security] 20110222 CVE request: simple machines forum before 1.1.13 CVE-2011-1127 CVE-2011-1128 CVE-2011-1129 CVE-2011-1130 CVE-2011-1131
MLIST:[oss-security] 20110222 CVE-2011-0436: dtc sends password of new users to site admin by unencrypted email CVE-2011-0436
MLIST:[oss-security] 20110222 Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110222 Re: CVE request: kernel: fs/partitions: validate map_count in mac partition tables CVE-2011-1010
MLIST:[oss-security] 20110222 Re: [oss-security] CVE request: avahi daemon remote denial of service by sending NULL UDP CVE-2011-1002
MLIST:[oss-security] 20110223 CVE request: Information disclosure in CGIHTTPServer from Python CVE-2011-1015
MLIST:[oss-security] 20110223 CVE request: kernel: Corrupted LDM partition table issues CVE-2011-1012
MLIST:[oss-security] 20110223 CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-1017
MLIST:[oss-security] 20110223 Re: CVE Request CVE-2011-1011
MLIST:[oss-security] 20110223 Re: CVE request: kernel: Corrupted LDM partition table issues CVE-2011-1012
MLIST:[oss-security] 20110223 Re: CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-1017
MLIST:[oss-security] 20110223 Re: Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110224 CVE Request -- OpenLDAP -- two issues CVE-2011-1024 CVE-2011-1025
MLIST:[oss-security] 20110224 CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names CVE-2011-1018
MLIST:[oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[oss-security] 20110224 CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 CVE-2011-1016
MLIST:[oss-security] 20110224 CVE request: libcgroup: Failure to verify netlink messages CVE-2011-1022
MLIST:[oss-security] 20110224 Re: CVE Request -- logwatch: Privilege escalation due improper sanitization of special characters in log file names CVE-2011-1018
MLIST:[oss-security] 20110224 Re: CVE request: Information disclosure in CGIHTTPServer from Python CVE-2011-1015
MLIST:[oss-security] 20110224 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 CVE-2011-1016
MLIST:[oss-security] 20110224 Re: CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables CVE-2011-1017
MLIST:[oss-security] 20110224 Re: Re: CVE Request -- rt3 -- two issues: 1) Improper management of form data resubmittion upon user log out 2) SQL queries information leak by user account transition CVE-2011-1007 CVE-2011-1008
MLIST:[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issue CVE-2011-1025
MLIST:[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issues CVE-2011-1024
MLIST:[oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec CVE-2011-1020
MLIST:[oss-security] 20110225 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 CVE-2011-1016
MLIST:[oss-security] 20110225 Re: CVE request: libcgroup: Failure to verify netlink messages CVE-2011-1022
MLIST:[oss-security] 20110228 CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack CVE-2011-1072
MLIST:[oss-security] 20110228 CVE request: FreeBSD/OS X crontab information leakage CVE-2011-1073 CVE-2011-1074
MLIST:[oss-security] 20110228 Re: CVE Request -- OpenLDAP -- two issues CVE-2011-1081
MLIST:[oss-security] 20110228 Re: CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack CVE-2011-1072 CVE-2011-1144
MLIST:[oss-security] 20110228 Re: CVE request: FreeBSD/OS X crontab information leakage CVE-2011-1073 CVE-2011-1074
MLIST:[oss-security] 20110228 Re: cve request: eglibc memory corruption CVE-2011-1071
MLIST:[oss-security] 20110228 cve request: eglibc memory corruption CVE-2011-1071
MLIST:[oss-security] 20110301 CVE request: kernel: Multiple DoS issues in epoll CVE-2011-1082 CVE-2011-1083
MLIST:[oss-security] 20110301 Re: CVE Request -- OpenLDAP -- two issues CVE-2011-1081
MLIST:[oss-security] 20110301 Re: CVE Request: PEAR Installer 1.9.1 <= - Symlink Attack CVE-2011-1072 CVE-2011-1144
MLIST:[oss-security] 20110302 CVE request: VLC bookmark buffer overflow CVE-2011-1087
MLIST:[oss-security] 20110302 Re: CVE request: kernel: Multiple DoS issues in epoll CVE-2011-1082 CVE-2011-1083
MLIST:[oss-security] 20110302 Re: CVE request: simple machines forum before 1.1.13 CVE-2011-1127 CVE-2011-1128 CVE-2011-1129 CVE-2011-1130 CVE-2011-1131
MLIST:[oss-security] 20110303 Re: CVE request: VLC bookmark buffer overflow CVE-2011-1087
MLIST:[oss-security] 20110303 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110303 Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110304 CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110304 CVE-2011-1076 kernel: DNS: Fix a NULL pointer deref when trying to read an error key CVE-2011-1076
MLIST:[oss-security] 20110304 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110304 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110305 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110305 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110306 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab CVE-2011-1090
MLIST:[oss-security] 20110307 Re: CVE Request -- logrotate -- nine issues CVE-2009-5064 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab CVE-2011-1090
MLIST:[oss-security] 20110307 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110307 Re: ldd can execute an app unexpectedly CVE-2009-5064
MLIST:[oss-security] 20110307 cgit convert_query_hexchar infinite loop (CVE-2011-1027) CVE-2011-1027
MLIST:[oss-security] 20110307 ldd can execute an app unexpectedly CVE-2009-5064
MLIST:[oss-security] 20110308 CVE request, php's shm CVE-2011-1092
MLIST:[oss-security] 20110308 CVE request: kernel: dccp: fix oops on Reset after close CVE-2011-1093
MLIST:[oss-security] 20110308 CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd CVE-2011-0714
MLIST:[oss-security] 20110308 KDE SSL name check issue CVE-2011-1094
MLIST:[oss-security] 20110308 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110308 Re: CVE request, php's shm CVE-2011-1092
MLIST:[oss-security] 20110308 Re: CVE request: kernel: dccp: fix oops on Reset after close CVE-2011-1093
MLIST:[oss-security] 20110308 Re: KDE SSL name check issue CVE-2011-1094
MLIST:[oss-security] 20110308 Re: glibc locale escaping issue CVE-2011-1095
MLIST:[oss-security] 20110308 Re: ldd can execute an app unexpectedly CVE-2009-5064
MLIST:[oss-security] 20110308 glibc locale escaping issue CVE-2011-1095
MLIST:[oss-security] 20110309 CVE request: libvirt: several API calls do not honour read-only connection CVE-2011-1146
MLIST:[oss-security] 20110309 Re: CVE-2011-0714 kernel: deficiency in handling of invalid data packets in lockd CVE-2011-0714
MLIST:[oss-security] 20110310 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110310 Re: CVE request: libvirt: several API calls do not honour read-only connection CVE-2011-1146
MLIST:[oss-security] 20110311 CVE Request -- Asterisk AST-2011-002 / Multiple array overflow and crash vulnerabilities in UDPTL code CVE-2011-1147
MLIST:[oss-security] 20110311 CVE-2011-0695 kernel: panic in ib_cm:cm_work_handler CVE-2011-0695
MLIST:[oss-security] 20110311 Re: CVE Request -- Asterisk AST-2011-002 / Multiple array overflow and crash vulnerabilities in UDPTL code CVE-2011-1147
MLIST:[oss-security] 20110311 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110313 CVE request: PHP substr_replace() use-after-free CVE-2011-1148
MLIST:[oss-security] 20110313 Re: CVE request: PHP substr_replace() use-after-free CVE-2011-1148
MLIST:[oss-security] 20110314 CVE Request: Joomla! 1.6.0 | Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110314 CVE request for python-feedparser CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[oss-security] 20110314 CVE request: format-string vulnerability in PHP Phar extension CVE-2011-1153
MLIST:[oss-security] 20110314 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550
MLIST:[oss-security] 20110314 Re: CVE Request: Joomla! 1.6.0 | Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110314 Re: CVE request: format-string vulnerability in PHP Phar extension CVE-2011-1153
MLIST:[oss-security] 20110314 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110315 CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure CVE-2011-1163
MLIST:[oss-security] 20110315 Re: 2 acpid flaws CVE-2011-1159
MLIST:[oss-security] 20110315 Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure CVE-2011-1163
MLIST:[oss-security] 20110315 Re: CVE request for python-feedparser CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[oss-security] 20110315 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110317 CVE request for Asterisk flaws CVE-2011-1174 CVE-2011-1175
MLIST:[oss-security] 20110318 CVE Request: Joomla! 1.5.20 <= Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110318 CVE request: kernel: AudioScience HPI driver CVE-2011-1169
MLIST:[oss-security] 20110318 CVE request: kernel: netfilter & econet infoleaks CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1173 CVE-2011-2534
MLIST:[oss-security] 20110318 Re: CVE Request: Joomla! 1.6.0 | Cross Site Scripting (XSS) Vulnerability CVE-2010-3712
MLIST:[oss-security] 20110318 Re: CVE request: kernel: AudioScience HPI driver CVE-2011-1169
MLIST:[oss-security] 20110320 CVE request: MPM-ITK module for Apache HTTPD CVE-2011-1176
MLIST:[oss-security] 20110321 Re: CVE request for Asterisk flaws CVE-2011-1174 CVE-2011-1175
MLIST:[oss-security] 20110321 Re: CVE request: MPM-ITK module for Apache HTTPD CVE-2011-1176
MLIST:[oss-security] 20110321 Re: CVE request: kernel: netfilter & econet infoleaks CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1173 CVE-2011-2534
MLIST:[oss-security] 20110322 CVE Request: libpng memory leak CVE-2006-7244 CVE-2009-5063
MLIST:[oss-security] 20110322 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110323 CVE Request: PHP-Nuke 8.x <= "chng_uid" Blind SQL Injection Vulnerability CVE-2011-1480
MLIST:[oss-security] 20110323 CVE Request: PHP-Nuke 8.x <= Cross Site Request Forgery (CSRF) / Anti-CSRF Bypass Vulnerability CVE-2011-1482
MLIST:[oss-security] 20110323 CVE Request: PHP-Nuke 8.x <= Cross Site Scripting Vulnerability CVE-2011-1481
MLIST:[oss-security] 20110323 Re: CVE Request -- logrotate -- nine issues CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1548 CVE-2011-1549 CVE-2011-1550 CVE-2011-1551
MLIST:[oss-security] 20110324 CVE Request -- Python (urllib, urllib2): Improper management of ftp:// and file:// URL schemes CVE-2011-1521
MLIST:[oss-security] 20110324 CVE request: roundcube < 0.5.1 CSRF CVE-2011-1491 CVE-2011-1492
MLIST:[oss-security] 20110324 Re: CVE request: roundcube < 0.5.1 CSRF CVE-2011-1491 CVE-2011-1492
MLIST:[oss-security] 20110325 CVE Request -- Nagios -- XSS in the network status map CGI script CVE-2011-1523
MLIST:[oss-security] 20110325 CVE Request -- php-doctrine-Doctrine -- SQL injection flaw CVE-2011-1522
MLIST:[oss-security] 20110328 CVE-2011-1478 kernel: gro: reset dev and skb_iff on skb reuse CVE-2011-1478
MLIST:[oss-security] 20110328 Re: CVE Request -- Nagios -- XSS in the network status map CGI script CVE-2011-1523
MLIST:[oss-security] 20110328 Re: CVE Request -- Python (urllib, urllib2): Improper management of ftp:// and file:// URL schemes CVE-2011-1521
MLIST:[oss-security] 20110328 Re: CVE Request -- php-doctrine-Doctrine -- SQL injection flaw CVE-2011-1522
MLIST:[oss-security] 20110328 Re: CVE Request: libpng memory leak CVE-2006-7244 CVE-2009-5063
MLIST:[oss-security] 20110328 Re: CVE request: VLC bookmark buffer overflow CVE-2011-1087
MLIST:[oss-security] 20110329 CVE request: cmsmadesimple before 1.9.1 CVE-2010-4663
MLIST:[oss-security] 20110329 CVE requests : Liferay 6.0.6 CVE-2011-1502 CVE-2011-1503 CVE-2011-1504 CVE-2011-1570 CVE-2011-1571
MLIST:[oss-security] 20110330 Re: CVE Request: PHP-Nuke 8.x <= "chng_uid" Blind SQL Injection Vulnerability CVE-2011-1480
MLIST:[oss-security] 20110330 Re: CVE Request: PHP-Nuke 8.x <= Cross Site Request Forgery (CSRF) / Anti-CSRF Bypass Vulnerability CVE-2011-1482
MLIST:[oss-security] 20110330 Re: CVE Request: PHP-Nuke 8.x <= Cross Site Scripting Vulnerability CVE-2011-1481
MLIST:[oss-security] 20110330 Re: CVE request: cmsmadesimple before 1.9.1 CVE-2010-4663
MLIST:[oss-security] 20110331 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110401 CVE Request -- perl -- lc(), uc() routines are laundering tainted data CVE-2011-1487
MLIST:[oss-security] 20110401 Re: Suid mount helpers fail to anticipate RLIMIT_FSIZE CVE-2011-1089 CVE-2011-1675 CVE-2011-1676 CVE-2011-1677 CVE-2011-1678 CVE-2011-1679 CVE-2011-1680 CVE-2011-1681
MLIST:[oss-security] 20110404 Re: CVE Request -- perl -- lc(), uc() routines are laundering tainted data CVE-2011-1487
MLIST:[oss-security] 20110404 Re: CVE request: roundcube < 0.5.1 CSRF CVE-2011-1491 CVE-2011-1492
MLIST:[oss-security] 20110405 CVE request: kernel: two issues in mpt2sas CVE-2011-1494 CVE-2011-1495
MLIST:[oss-security] 20110406 Moonlight release 2.4.1 with security fixes CVE-2011-0989 CVE-2011-0990 CVE-2011-0991 CVE-2011-0992
MLIST:[oss-security] 20110406 Re: CVE request: kernel: two issues in mpt2sas CVE-2011-1494 CVE-2011-1495
MLIST:[oss-security] 20110407 Apache HttpClient CVE request [VU#153049] CVE-2011-1498
MLIST:[oss-security] 20110407 CVE request: tinyproxy runs as an open proxy when attempting to restrict allowable IP ranges CVE-2011-1499
MLIST:[oss-security] 20110408 CVE request for pithos information disclosure CVE-2011-1500
MLIST:[oss-security] 20110408 Re: Apache HttpClient CVE request [VU#153049] CVE-2011-1498
MLIST:[oss-security] 20110408 Re: CVE request for pithos information disclosure CVE-2011-1500
MLIST:[oss-security] 20110408 Re: CVE request: tinyproxy runs as an open proxy when attempting to restrict allowable IP ranges CVE-2011-1499
MLIST:[oss-security] 20110408 Re: CVE requests : Liferay 6.0.6 CVE-2011-1502 CVE-2011-1503 CVE-2011-1504 CVE-2011-1570 CVE-2011-1571
MLIST:[oss-security] 20110409 CVE id request: gitolite CVE-2011-1572
MLIST:[oss-security] 20110411 CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set CVE-2011-1573
MLIST:[oss-security] 20110411 CVE request for libmodplug CVE-2011-1574
MLIST:[oss-security] 20110411 Re: CVE id request: gitolite CVE-2011-1572
MLIST:[oss-security] 20110411 Re: CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set CVE-2011-1573
MLIST:[oss-security] 20110411 Re: CVE request for libmodplug CVE-2011-1574
MLIST:[oss-security] 20110411 Re: CVE requests : Liferay 6.0.6 CVE-2011-1502 CVE-2011-1503 CVE-2011-1504 CVE-2011-1570 CVE-2011-1571
MLIST:[oss-security] 20110411 Re: pure-ftpd STARTTLS command injection / new CVE? CVE-2011-1575
MLIST:[oss-security] 20110411 pure-ftpd STARTTLS command injection / new CVE? CVE-2011-1575
MLIST:[oss-security] 20110412 CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops CVE-2011-1577
MLIST:[oss-security] 20110412 CVE id request: vlc CVE-2011-1684
MLIST:[oss-security] 20110412 libtiff CVE assignments CVE-2009-5022 CVE-2010-4665
MLIST:[oss-security] 20110413 CVE request - kernel: bonding: Incorrect TX queue offset CVE-2011-1581
MLIST:[oss-security] 20110413 CVE request: dotclear before 2.2.3 CVE-2011-1584
MLIST:[oss-security] 20110413 Re: CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops CVE-2011-1577
MLIST:[oss-security] 20110413 Re: CVE id request: vlc CVE-2011-1684
MLIST:[oss-security] 20110413 Re: CVE request - kernel: bonding: Incorrect TX queue offset CVE-2011-1581
MLIST:[oss-security] 20110413 Re: CVE request: mediawiki 1.16.3 CVE-2011-1578 CVE-2011-1579 CVE-2011-1580
MLIST:[oss-security] 20110414 Re: CVE request: dotclear before 2.2.3 CVE-2011-1584
MLIST:[oss-security] 20110415 Re: CVE Request: incomplete fix for CVE-2010-1000 in KDE network CVE-2011-1586
MLIST:[oss-security] 20110415 Re: CVE request: dotclear before 2.2.3 CVE-2011-1584
MLIST:[oss-security] 20110416 CVE request: Mojolicious directory traversal vulnerability CVE-2011-1589
MLIST:[oss-security] 20110418 CVE request: Mojolicious CVE-2011-1589
MLIST:[oss-security] 20110418 Re: CVE request: Mojolicious directory traversal vulnerability CVE-2011-1589
MLIST:[oss-security] 20110418 Re: CVE request: mediawiki 1.16.4, incomplete fix of CVE-2011-1578 CVE-2011-1587
MLIST:[oss-security] 20110418 Re: Wireshark 1.2.16 / 1.4.5 CVE-2011-1590 CVE-2011-1591 CVE-2011-1592
MLIST:[oss-security] 20110418 Wireshark 1.2.16 / 1.4.5 CVE-2011-1590 CVE-2011-1591 CVE-2011-1592
MLIST:[oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() CVE-2011-1593
MLIST:[oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598
MLIST:[oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() CVE-2011-1593
MLIST:[oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598
MLIST:[oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp CVE-2011-1745 CVE-2011-1746 CVE-2011-1747 CVE-2011-2022
MLIST:[oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598 CVE-2011-1748
MLIST:[oss-security] 20110422 Re: CVE Request -- Asterisk Security Vulnerability CVE-2011-1599
MLIST:[oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp CVE-2011-1745 CVE-2011-1746 CVE-2011-1747 CVE-2011-2022
MLIST:[oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598 CVE-2011-1748
MLIST:[oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release CVE-2011-1598 CVE-2011-1748
MLIST:[oss-security] 20110429 CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110429 vulnerability in sssd 1.5.0+ (CVE-2011-1758) CVE-2011-1758
MLIST:[oss-security] 20110430 Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110502 Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110503 Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760
MLIST:[oss-security] 20110503 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-2471 CVE-2011-2472 CVE-2011-2473
MLIST:[oss-security] 20110506 CVE request: tigervnc CVE-2011-1775
MLIST:[oss-security] 20110509 CVE-2011-1771 kernel: cifs oops when creating file with O_DIRECT set CVE-2011-1771
MLIST:[oss-security] 20110509 Re: CVE request: tigervnc CVE-2011-1775
MLIST:[oss-security] 20110510 CVE request: keepalived pid file permissions issue CVE-2011-1784
MLIST:[oss-security] 20110510 Re: CVE request: kernel: validate size of EFI GUID partition entries CVE-2011-1776
MLIST:[oss-security] 20110510 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760 CVE-2011-2471 CVE-2011-2472 CVE-2011-2473
MLIST:[oss-security] 20110511 Re: Re: CVE Request -- oprofile -- Local privilege escalation via crafted opcontrol event parameter when authorized by sudo CVE-2011-1760 CVE-2011-2471 CVE-2011-2472 CVE-2011-2473
MLIST:[oss-security] 20110516 CVE Request -- pmake -- Use of insecure temporary file for 'depend' target CVE-2011-1920
MLIST:[oss-security] 20110516 Re: CVE Request -- pmake -- Use of insecure temporary file for 'depend' target CVE-2011-1920
MLIST:[oss-security] 20110516 Re: CVE request: keepalived pid file permissions issue CVE-2011-1784
MLIST:[oss-security] 20110517 CVE Request -- Cyrus-IMAP STARTTLS issue -- [was: Re: pure-ftpd STARTTLS command injection / new CVE?] CVE-2011-1926
MLIST:[oss-security] 20110517 CVE request: nbd-server CVE-2011-1925
MLIST:[oss-security] 20110517 Re: CVE Request -- Cyrus-IMAP STARTTLS issue -- [was: Re: pure-ftpd STARTTLS command injection / new CVE?] CVE-2011-1926
MLIST:[oss-security] 20110518 Dovecot releases CVE-2011-1929 CVE-2011-2166 CVE-2011-2167
MLIST:[oss-security] 20110519 CVE Request: viewvc DoS CVE-2009-5024
MLIST:[oss-security] 20110519 CVE request: DoS in apr due to CVE-2011-0419 fix CVE-2011-1928
MLIST:[oss-security] 20110519 Re: CVE Request: viewvc DoS CVE-2009-5024
MLIST:[oss-security] 20110519 Re: CVE request: DoS in apr due to CVE-2011-0419 fix CVE-2011-1928
MLIST:[oss-security] 20110519 Re: Dovecot releases CVE-2011-1929
MLIST:[oss-security] 20110520 systemtap divide-by-zero issues (CVE-2011-1769, CVE-2011-1781) CVE-2011-1769 CVE-2011-1781
MLIST:[oss-security] 20110522 CVE Request: Webmin Local Privilege Escalation Vulnerability CVE-2011-1937
MLIST:[oss-security] 20110523 CVE request: PHP socket_connect() - stack buffer overflow CVE-2011-1938
MLIST:[oss-security] 20110524 Re: CVE Request: Webmin Local Privilege Escalation Vulnerability CVE-2011-1937
MLIST:[oss-security] 20110524 Re: CVE request: PHP socket_connect() - stack buffer overflow CVE-2011-1938
MLIST:[oss-security] 20110526 CVE Request -- syslog-ng -- Possible DoS CVE-2011-1951
MLIST:[oss-security] 20110530 CVE request for fetchmail STARTTLS hang (Denial of Service) CVE-2011-1947
MLIST:[oss-security] 20110530 CVE request: libgnomesu privilege escalation CVE-2011-1946
MLIST:[oss-security] 20110531 CVE request for Wireshark 1.4.5 TCP DoS issue CVE-2011-1956
MLIST:[oss-security] 20110531 CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175
MLIST:[oss-security] 20110531 CVE request: NetworkManager-openvpn logs cert password CVE-2011-1943
MLIST:[oss-security] 20110531 CVE request: firefox doesn't (re)validate certificates when loading HTTPS page CVE-2011-0082
MLIST:[oss-security] 20110531 Re: CVE request for fetchmail STARTTLS hang (Denial of Service) CVE-2011-1947
MLIST:[oss-security] 20110531 Re: CVE request: NetworkManager-openvpn logs cert password CVE-2011-1943
MLIST:[oss-security] 20110531 Re: CVE request: firefox doesn't (re)validate certificates when loading HTTPS page CVE-2011-0082
MLIST:[oss-security] 20110531 Re: CVE request: libgnomesu privilege escalation CVE-2011-1946
MLIST:[oss-security] 20110531 Re: CVE request: libxml vulnerability and interesting integer issues CVE-2011-1944
MLIST:[oss-security] 20110601 CVE request: XSS in nagios CVE-2011-2179
MLIST:[oss-security] 20110601 Re: CVE request for Wireshark 1.4.5 TCP DoS issue CVE-2011-1956
MLIST:[oss-security] 20110601 Re: CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues CVE-2011-1957 CVE-2011-1958 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175
MLIST:[oss-security] 20110601 Re: CVE request for fetchmail STARTTLS hang (Denial of Service) CVE-2011-1947
MLIST:[oss-security] 20110602 CVE Request -- Cherokee -- server admin vulnerable to csrf CVE-2011-2191
MLIST:[oss-security] 20110602 CVE request: Multiple security vulnerabilities in ARSC Really Simple Chat CVE-2011-2180 CVE-2011-2181 CVE-2011-2470
MLIST:[oss-security] 20110602 Re: CVE request: Multiple security vulnerabilities in ARSC Really Simple Chat CVE-2011-2180 CVE-2011-2181 CVE-2011-2470
MLIST:[oss-security] 20110602 Re: CVE request: XSS in nagios CVE-2011-2179
MLIST:[oss-security] 20110603 CVE Request -- fabric -- Use of insecure temporary file by uploading templates and projects to remote hosts CVE-2011-2185
MLIST:[oss-security] 20110603 CVE request: kernel: set cred->user_ns in key_replace_session_keyring CVE-2011-2184
MLIST:[oss-security] 20110603 Re: CVE Request -- Cherokee -- server admin vulnerable to csrf CVE-2011-2190
MLIST:[oss-security] 20110603 Security issue in cherokee CVE-2011-2191
MLIST:[oss-security] 20110606 CVE Request -- LuaExpat -- Prone to XML "billion laughs attack" CVE-2011-2188
MLIST:[oss-security] 20110606 Re: CVE Request -- Cherokee -- server admin vulnerable to csrf CVE-2011-2190
MLIST:[oss-security] 20110606 Re: CVE Request -- LuaExpat -- Prone to XML "billion laughs attack" CVE-2011-2188
MLIST:[oss-security] 20110606 Re: CVE Request -- fabric -- Use of insecure temporary file by uploading templates and projects to remote hosts CVE-2011-2185
MLIST:[oss-security] 20110606 Re: CVE Request -- vsftpd -- Do not create network namespace per connection CVE-2011-2189
MLIST:[oss-security] 20110606 Re: CVE request: kernel: set cred->user_ns in key_replace_session_keyring CVE-2011-2184
MLIST:[oss-security] 20110606 Re: Security issue in cherokee CVE-2011-2191
MLIST:[oss-security] 20110608 CVE Request -- Coppermine Photo Gallery -- cpg1.4.27 / cpg1.5.12 -- XSS flaw CVE-2010-4667 CVE-2011-2476
MLIST:[oss-security] 20110608 Re: CVE Request -- Coppermine Photo Gallery -- cpg1.4.27 / cpg1.5.12 -- XSS flaw CVE-2010-4667 CVE-2011-2476
MLIST:[oss-security] 20110609 CVE Request: Ruby on Rails 3/rails_xss XSS CVE-2011-2197
MLIST:[oss-security] 20110612 Bug#629938: Info received (CVE Request -- dbus -- Local DoS via messages with non-native byte order) CVE-2011-2200
MLIST:[oss-security] 20110612 CVE Request -- Data-FormValidator -- Reports invalid field as valid when untaint_all_constraints used CVE-2011-2201
MLIST:[oss-security] 20110612 CVE Request -- dbus -- Local DoS via messages with non-native byte order CVE-2011-2200
MLIST:[oss-security] 20110612 CVE Request: PHP File upload filename CVE-2011-2202
MLIST:[oss-security] 20110613 Re: CVE Request -- Data-FormValidator -- Reports invalid field as valid when untaint_all_constraints used CVE-2011-2201
MLIST:[oss-security] 20110613 Re: CVE Request -- dbus -- Local DoS via messages with non-native byte order CVE-2011-2200
MLIST:[oss-security] 20110613 Re: CVE Request: PHP File upload filename CVE-2011-2202
MLIST:[oss-security] 20110613 Re: CVE Request: Ruby on Rails 3/rails_xss XSS CVE-2011-2197
MLIST:[oss-security] 20110613 Re: CVE request: kernel: hfs_find_init() sb->ext_tree NULL pointer dereference CVE-2011-2203
MLIST:[oss-security] 20110614 CVE Request: prosody DoS, djabberd external entity injection CVE-2011-2205 CVE-2011-2206
MLIST:[oss-security] 20110615 Re: CVE Request: prosody DoS, djabberd external entity injection CVE-2011-2205 CVE-2011-2206
MLIST:[oss-security] 20110620 CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2488
MLIST:[oss-security] 20110620 CVE request: kernel: inet_diag: fix inet_diag_bc_audit() CVE-2011-2213
MLIST:[oss-security] 20110620 Re: CVE request: kernel: inet_diag: fix inet_diag_bc_audit() CVE-2011-2213
MLIST:[oss-security] 20110622 CVE request: kernel: taskstats local DoS CVE-2011-2484
MLIST:[oss-security] 20110622 CVE requests: opie off by one and setuid() failure CVE-2011-2489 CVE-2011-2490
MLIST:[oss-security] 20110622 Re: CVE request: kernel: taskstats local DoS CVE-2011-2484
MLIST:[oss-security] 20110623 Re: CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2488
MLIST:[oss-security] 20110623 Re: CVE requests: opie off by one and setuid() failure CVE-2011-2489 CVE-2011-2490
MLIST:[oss-security] 20110624 CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace CVE-2011-2492
MLIST:[oss-security] 20110624 CVE request: kernel: remote buffer overflow in bluetooth CVE-2011-2497
MLIST:[oss-security] 20110624 Re: CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace CVE-2011-2492
MLIST:[oss-security] 20110627 CVE request for libpng regression (CVE-2004-0421) CVE-2011-2501
MLIST:[oss-security] 20110627 Re: CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2891 CVE-2011-3695 CVE-2011-3696 CVE-2011-3697 CVE-2011-3698 CVE-2011-3699 CVE-2011-3700 CVE-2011-3701 CVE-2011-3702 CVE-2011-3703 CVE-2011-3704 CVE-2011-3705 CVE-2011-3706 CVE-2011-3707 CVE-2011-3708 CVE-2011-3709 CVE-2011-3710 CVE-2011-3711 CVE-2011-3712 CVE-2011-3713 CVE-2011-3714 CVE-2011-3715 CVE-2011-3716 CVE-2011-3717 CVE-2011-3718 CVE-2011-3719 CVE-2011-3720 CVE-2011-3721 CVE-2011-3722 CVE-2011-3723 CVE-2011-3724 CVE-2011-3725 CVE-2011-3726 CVE-2011-3727 CVE-2011-3728 CVE-2011-3729 CVE-2011-3730 CVE-2011-3731 CVE-2011-3732 CVE-2011-3733 CVE-2011-3734 CVE-2011-3735 CVE-2011-3736 CVE-2011-3737 CVE-2011-3738 CVE-2011-3739 CVE-2011-3740 CVE-2011-3741 CVE-2011-3742 CVE-2011-3743 CVE-2011-3744 CVE-2011-3745 CVE-2011-3746 CVE-2011-3747 CVE-2011-3748 CVE-2011-3749 CVE-2011-3750 CVE-2011-3751 CVE-2011-3752 CVE-2011-3753 CVE-2011-3754 CVE-2011-3755 CVE-2011-3756 CVE-2011-3757 CVE-2011-3758 CVE-2011-3759 CVE-2011-3760 CVE-2011-3761 CVE-2011-3762 CVE-2011-3763 CVE-2011-3764 CVE-2011-3765 CVE-2011-3766 CVE-2011-3767 CVE-2011-3768 CVE-2011-3769 CVE-2011-3770 CVE-2011-3771 CVE-2011-3772 CVE-2011-3773 CVE-2011-3774 CVE-2011-3775 CVE-2011-3776 CVE-2011-3777 CVE-2011-3778 CVE-2011-3779 CVE-2011-3780 CVE-2011-3781 CVE-2011-3782 CVE-2011-3783 CVE-2011-3784 CVE-2011-3785 CVE-2011-3786 CVE-2011-3787 CVE-2011-3788 CVE-2011-3789 CVE-2011-3790 CVE-2011-3791 CVE-2011-3792 CVE-2011-3793 CVE-2011-3794 CVE-2011-3795 CVE-2011-3796 CVE-2011-3797 CVE-2011-3798 CVE-2011-3799 CVE-2011-3800 CVE-2011-3801 CVE-2011-3802 CVE-2011-3803 CVE-2011-3804 CVE-2011-3805 CVE-2011-3806 CVE-2011-3807 CVE-2011-3808 CVE-2011-3809 CVE-2011-3810 CVE-2011-3811 CVE-2011-3812 CVE-2011-3813 CVE-2011-3814 CVE-2011-3815 CVE-2011-3816 CVE-2011-3817 CVE-2011-3818 CVE-2011-3819 CVE-2011-3820 CVE-2011-3821 CVE-2011-3822 CVE-2011-3823 CVE-2011-3824 CVE-2011-3825 CVE-2011-3826
MLIST:[oss-security] 20110627 Re: CVE request: kernel: remote buffer overflow in bluetooth CVE-2011-2497
MLIST:[oss-security] 20110628 CVE Request -- DokuWiki -- XSS in DokuWiki's RSS embedding mechanism CVE-2011-2510
MLIST:[oss-security] 20110628 CVE Request: Joomla! 1.6.3 and lower | Multiple Cross Site Scripting (XSS) Vulnerabilities CVE-2011-2509
MLIST:[oss-security] 20110628 CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110628 CVE request: libvirt: integer overflow in VirDomainGetVcpus CVE-2011-2511
MLIST:[oss-security] 20110628 Re: CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110628 Re: CVE request for libpng regression (CVE-2004-0421) CVE-2011-2501
MLIST:[oss-security] 20110628 Re: [Phpmyadmin-security] CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110629 Re: CVE Request -- DokuWiki -- XSS in DokuWiki's RSS embedding mechanism CVE-2011-2510
MLIST:[oss-security] 20110629 Re: CVE Request: Joomla! 1.6.3 and lower | Multiple Cross Site Scripting (XSS) Vulnerabilities CVE-2011-2509
MLIST:[oss-security] 20110629 Re: CVE Request: phpMyAdmin 3.4 Multiple Vulnerabilities CVE-2011-2505 CVE-2011-2506 CVE-2011-2507 CVE-2011-2508
MLIST:[oss-security] 20110701 Re: CVE request: Joomla unspecified information disclosure vulnerability CVE-2011-2889 CVE-2011-2890
MLIST:[oss-security] 20110701 Re: Re: php ZipArchive::addGlob() crashes on invalid flags CVE-2011-1657
MLIST:[oss-security] 20110701 Re: php ZipArchive::addGlob() crashes on invalid flags CVE-2011-1657
MLIST:[oss-security] 20110701 php ZipArchive::addGlob() crashes on invalid flags CVE-2011-1657
MLIST:[oss-security] 20110704 CVE request: plone privilege escalation flaw CVE-2011-2528
MLIST:[oss-security] 20110706 libreoffice/openoffice.org CVE id request CVE-2011-2685
MLIST:[oss-security] 20110711 CVE Request -- Drupal 7 -- Access bypass in node listings (SA-CORE-2011-002) CVE-2011-2687
MLIST:[oss-security] 20110711 CVE Request: ruby PRNG fixes CVE-2011-2686 CVE-2011-2705
MLIST:[oss-security] 20110712 CVE id request: apache mod-auth-external CVE-2011-2688
MLIST:[oss-security] 20110712 CVE-2011-2525 kernel: kernel: net_sched: fix qdisc_notify() CVE-2011-2525
MLIST:[oss-security] 20110712 Re: CVE Request -- Drupal 7 -- Access bypass in node listings (SA-CORE-2011-002) CVE-2011-2687
MLIST:[oss-security] 20110712 Re: CVE Request: ruby PRNG fixes CVE-2011-2686 CVE-2011-2705
MLIST:[oss-security] 20110712 Re: CVE id request: apache mod-auth-external CVE-2011-2688
MLIST:[oss-security] 20110712 Re: CVE request: plone privilege escalation flaw CVE-2011-2528
MLIST:[oss-security] 20110712 Re: libreoffice/openoffice.org CVE id request CVE-2011-2685
MLIST:[oss-security] 20110713 CVE Request: hplip/foomatic-filters CVE-2011-2697 CVE-2011-2964
MLIST:[oss-security] 20110713 CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksize CVE-2011-2689
MLIST:[oss-security] 20110713 Re: [oCERT-2011-001] Chyrp input sanitization errors CVE-2011-2744 CVE-2011-2745 CVE-2011-2780
MLIST:[oss-security] 20110713 Security issues fixed in libpng 1.5.4 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692
MLIST:[oss-security] 20110713 [oCERT-2011-001] Chyrp input sanitization errors CVE-2011-2744 CVE-2011-2745 CVE-2011-2780
MLIST:[oss-security] 20110714 CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110714 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110714 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110715 CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file CVE-2011-2695
MLIST:[oss-security] 20110715 CVE request: vulnerability in FreeRADIUS (OCSP) CVE-2011-2701
MLIST:[oss-security] 20110715 Re: CVE Request -- kernel: ext4: kernel panic when writing data to the last block of sparse file CVE-2011-2695
MLIST:[oss-security] 20110715 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110715 Re: Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110718 CVE-2011-2520: flaw in system-config-firewall's usage of pickle allows privilege escalation CVE-2011-2520
MLIST:[oss-security] 20110718 Re: CVE Request -- libsndfile -- Integer overflow by processing certain PAF files CVE-2011-2696
MLIST:[oss-security] 20110718 Re: CVE Request: hplip/foomatic-filters CVE-2011-2697 CVE-2011-2964
MLIST:[oss-security] 20110718 Re: CVE request: vulnerability in FreeRADIUS (OCSP) CVE-2011-2701
MLIST:[oss-security] 20110719 CVE Request -- MapServer -- SQL injections in OGC filter encoding and in WMS time support. CVE-2011-2703
MLIST:[oss-security] 20110719 CVE Request -- MapServer -- Stack based buffer overflow [was: Re: Re: CVE Request -- MapServer -- SQL injections in OGC filter encoding and in WMS time support.] CVE-2011-2703 CVE-2011-2704
MLIST:[oss-security] 20110719 CVE Request -- Wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector CVE-2011-2698
MLIST:[oss-security] 20110720 CVE request: kernel: si4713-i2c: avoid potential buffer overflow on si4713 CVE-2011-2700
MLIST:[oss-security] 20110720 Re: CVE Request -- MapServer -- Stack based buffer overflow [was: Re: Re: CVE Request -- MapServer -- SQL injections in OGC filter encoding and in WMS time support.] CVE-2011-2703 CVE-2011-2704
MLIST:[oss-security] 20110720 Re: CVE Request -- Wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector CVE-2011-2698
MLIST:[oss-security] 20110720 Re: CVE Request: ruby PRNG fixes CVE-2011-2686 CVE-2011-2705 CVE-2011-3009
MLIST:[oss-security] 20110720 Re: CVE request: kernel: si4713-i2c: avoid potential buffer overflow on si4713 CVE-2011-2700
MLIST:[oss-security] 20110720 Re: CVE request: vulnerability in FreeRADIUS (OCSP) CVE-2011-2701
MLIST:[oss-security] 20110722 CVE Request -- cGit -- XSS flaw in rename hint CVE-2011-2711
MLIST:[oss-security] 20110722 CVE Request: Joomla! 1.7.0-RC and lower | Cross Site Scripting Vulnerabilities CVE-2011-2710
MLIST:[oss-security] 20110722 Re: CVE Request -- cGit -- XSS flaw in rename hint CVE-2011-2711
MLIST:[oss-security] 20110722 Re: CVE Request: Joomla! 1.7.0-RC and lower | Cross Site Scripting Vulnerabilities CVE-2011-2710
MLIST:[oss-security] 20110724 Re: Re: CVE Request -- cGit -- XSS flaw in rename hint CVE-2011-2711
MLIST:[oss-security] 20110725 CVE Request -- GLPI -- Properly blacklist some sensitive fields CVE-2011-2720
MLIST:[oss-security] 20110725 CVE-Request -- phpMyAdmin -- PMASA-2011-11 and PMASA-2011-12 CVE-2011-2718 CVE-2011-2719
MLIST:[oss-security] 20110726 CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes CVE-2011-2721
MLIST:[oss-security] 20110726 Re: CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes CVE-2011-2721
MLIST:[oss-security] 20110726 Re: CVE Request -- GLPI -- Properly blacklist some sensitive fields CVE-2011-2720
MLIST:[oss-security] 20110726 Re: CVE-Request -- phpMyAdmin -- PMASA-2011-11 and PMASA-2011-12 CVE-2011-2718 CVE-2011-2719
MLIST:[oss-security] 20110728 CVE request: kernel: gro: Only reset frag0 when skb can be pulled CVE-2011-2723
MLIST:[oss-security] 20110728 Re: CVE Request: hplip/foomatic-filters CVE-2011-2697 CVE-2011-2964
MLIST:[oss-security] 20110729 CVE-2011-2724 assignment notification -- samba -- incomplete fix for CVE-2010-0547 issue CVE-2011-2724
MLIST:[oss-security] 20110729 Re: CVE request: kernel: gro: Only reset frag0 when skb can be pulled CVE-2011-2723
MLIST:[oss-security] 20110803 CVE id request: shttpd/mongoose/yassl embedded webserver CVE-2011-2900
MLIST:[oss-security] 20110803 Re: CVE id request: shttpd/mongoose/yassl embedded webserver CVE-2011-2900
MLIST:[oss-security] 20110808 CVE request: zabbix XSS flaw CVE-2011-2904
MLIST:[oss-security] 20110809 Re: CVE request: heap overflow in tcptrack < 1.4.2 CVE-2011-2903
MLIST:[oss-security] 20110809 Re: CVE request: zabbix XSS flaw CVE-2011-2904
MLIST:[oss-security] 20110810 CVE-2011-2907: authentication bypass in torque CVE-2011-2907
MLIST:[oss-security] 20110810 LZW decompression issues CVE-2011-2895 CVE-2011-2896
MLIST:[oss-security] 20110812 Re: CVE Request: Mambo CMS 4.6.x (4.6.5) | SQL Injection CVE-2011-2917
MLIST:[oss-security] 20110817 CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110818 CVE request: heap overflow in perl while decoding Unicode string CVE-2011-2939
MLIST:[oss-security] 20110818 CVE request: roundcube XSS before 0.5.4 CVE-2011-2937
MLIST:[oss-security] 20110819 CVE request: Linux: ZERO_SIZE_PTR dereference for long symlinks in Be FS CVE-2011-2928
MLIST:[oss-security] 20110819 CVE request: MantisBT <1.2.7 search.php multiple XSS vulnerabilities CVE-2011-2938
MLIST:[oss-security] 20110819 CVE request: stunnel 4.4x heap overflow flaw CVE-2011-2940
MLIST:[oss-security] 20110819 Re: CVE request: Linux: ZERO_SIZE_PTR dereference for long symlinks in Be FS CVE-2011-2928
MLIST:[oss-security] 20110819 Re: CVE request: MantisBT <1.2.7 search.php multiple XSS vulnerabilities CVE-2011-2938
MLIST:[oss-security] 20110819 Re: CVE request: heap overflow in perl while decoding Unicode string CVE-2011-2939
MLIST:[oss-security] 20110819 Re: CVE request: roundcube XSS before 0.5.4 CVE-2011-2937
MLIST:[oss-security] 20110819 Re: CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110819 Re: CVE request: stunnel 4.4x heap overflow flaw CVE-2011-2940
MLIST:[oss-security] 20110820 CVE request: Pidgin crash CVE-2011-2943
MLIST:[oss-security] 20110820 Re: CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110822 CVE assignment php NULL pointer dereference - CVE-2011-3182 CVE-2011-3182
MLIST:[oss-security] 20110822 Re: CVE request: Pidgin crash CVE-2011-2943 CVE-2011-3184 CVE-2011-3185
MLIST:[oss-security] 20110822 Re: CVE request: ruby on rails flaws (4) CVE-2011-2929 CVE-2011-2930 CVE-2011-2931 CVE-2011-2932 CVE-2011-3186 CVE-2011-3187
MLIST:[oss-security] 20110823 CVE assignment - PHP salt flaw CVE-2011-3189 CVE-2011-3189
MLIST:[oss-security] 20110826 Security issue in hammerhead CVE-2011-3204
MLIST:[oss-security] 20110829 CVE-request(?): squid: buffer overflow in Gopher reply parser CVE-2011-3205
MLIST:[oss-security] 20110830 Re: CVE-request(?): squid: buffer overflow in Gopher reply parser CVE-2011-3205
MLIST:[oss-security] 20110830 Re: Security issue in hammerhead CVE-2011-3204
MLIST:[oss-security] 20110831 Re: CVE request: heap overflow in tcptrack < 1.4.2 CVE-2011-2903
MLIST:[oss-security] 20110901 CVE request for bcfg2 (remote root) CVE-2011-3211
MLIST:[oss-security] 20110902 CVE request for OpenTTD CVE-2011-3341 CVE-2011-3342 CVE-2011-3343
MLIST:[oss-security] 20110904 CVE requests: <mantisbt-1.2.8 multiple vulnerabilities (1xLFI+XSS, 2xXSS) CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[oss-security] 20110904 Re: CVE requests: <mantisbt-1.2.8 multiple vulnerabilities (1xLFI+XSS, 2xXSS) CVE-2011-3357 CVE-2011-3578
MLIST:[oss-security] 20110906 CVE Request: OFED 1.5.2 /proc/net/sdpstats reading local denial of service/crash CVE-2011-3345
MLIST:[oss-security] 20110906 Re: CVE request for OpenTTD CVE-2011-3341 CVE-2011-3342 CVE-2011-3343
MLIST:[oss-security] 20110906 Re: CVE request for bcfg2 (remote root) CVE-2011-3211
MLIST:[oss-security] 20110907 Re: CVE Request: OFED 1.5.2 /proc/net/sdpstats reading local denial of service/crash CVE-2011-3345
MLIST:[oss-security] 20110908 CVE Request -- libfcgi-perl / perl-FCGI: Certain environment variables shared between first and subsequent HTTP requests CVE-2011-2766
MLIST:[oss-security] 20110908 CVE request: Quassel < 0.7.3 CTCP request core DoS CVE-2011-3354
MLIST:[oss-security] 20110908 Re: CVE Request -- libfcgi-perl / perl-FCGI: Certain environment variables shared between first and subsequent HTTP requests CVE-2011-2766
MLIST:[oss-security] 20110909 Re: CVE request: Quassel < 0.7.3 CTCP request core DoS CVE-2011-3354
MLIST:[oss-security] 20110909 Re: CVE requests: <mantisbt-1.2.8 multiple vulnerabilities (1xLFI+XSS, 2xXSS) CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[oss-security] 20110910 D-Link DCS-2121 Semicolon Vulnerability CVE-2010-4964
MLIST:[oss-security] 20110911 CVE Request -- Django: v1.3.1, v1.2.7 multiple security flaws CVE-2011-1521 CVE-2011-4136 CVE-2011-4137 CVE-2011-4138 CVE-2011-4139 CVE-2011-4140
MLIST:[oss-security] 20110913 CVE Request: BackupPC 3.2.1 fixes cross site scripting CVE-2011-3361
MLIST:[oss-security] 20110913 CVE Request: Multiple issues fixed in wireshark 1.6.2 CVE-2011-3360 CVE-2011-3482 CVE-2011-3483 CVE-2011-3484
MLIST:[oss-security] 20110913 CVE request: ffmpeg/libav insufficuent boundary check in CAVS decoding CVE-2011-3362
MLIST:[oss-security] 20110913 Re: CVE Request -- Django: v1.3.1, v1.2.7 multiple security flaws CVE-2011-1521 CVE-2011-4136 CVE-2011-4137 CVE-2011-4138 CVE-2011-4139 CVE-2011-4140
MLIST:[oss-security] 20110914 Re: CVE Request: BackupPC 3.2.1 fixes cross site scripting CVE-2011-3361
MLIST:[oss-security] 20110914 Re: CVE Request: Multiple issues fixed in wireshark 1.6.2 CVE-2011-3360 CVE-2011-3482 CVE-2011-3483 CVE-2011-3484
MLIST:[oss-security] 20110914 Re: CVE request: ffmpeg/libav insufficuent boundary check in CAVS decoding CVE-2011-3362
MLIST:[oss-security] 20110914 Re: D-Link DCS-2121 Semicolon Vulnerability CVE-2010-4964
MLIST:[oss-security] 20110916 Re: CVE Request -- Django: v1.3.1, v1.2.7 multiple security flaws CVE-2011-1521 CVE-2011-4137
MLIST:[oss-security] 20110918 CVE request: PunBB multiple XSS issues CVE-2011-3371
MLIST:[oss-security] 20110919 CVE Request? etherape remote crash (denial of service) CVE-2011-3369
MLIST:[oss-security] 20110922 Re: CVE Request? etherape remote crash (denial of service) CVE-2011-3369
MLIST:[oss-security] 20110922 Re: CVE request: PunBB multiple XSS issues CVE-2011-3371
MLIST:[oss-security] 20110924 CVE request: heap-based buffer overflow in ldns CVE-2011-3581
MLIST:[oss-security] 20110927 rpm/librpm/rpm-python memory corruption pre-verification CVE-2011-3378
MLIST:[oss-security] 20110930 Re: CVE request: heap-based buffer overflow in ldns CVE-2011-3581
MLIST:[oss-security] 20111004 CVE Request -- phpPgAdmin -- Multiple XSS flaws fixed in v5.0.3 CVE-2011-3598
MLIST:[oss-security] 20111004 Re: CVE Request -- phpPgAdmin -- Multiple XSS flaws fixed in v5.0.3 CVE-2011-3598
MLIST:[oss-security] 20111005 CVE Request -- perl-Crypt-DSA -- Cryptographically insecure method used for random numbers generation on systems without /dev/random CVE-2011-3599
MLIST:[oss-security] 20111005 Re: CVE Request -- perl-Crypt-DSA -- Cryptographically insecure method used for random numbers generation on systems without /dev/random CVE-2011-3599
MLIST:[oss-security] 20111009 CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue CVE-2011-3616
MLIST:[oss-security] 20111009 CVE request: simple machines forum before 2.0.1 and 1.1.15 CVE-2011-3615 CVE-2011-4173
MLIST:[oss-security] 20111010 Re: CVE Request -- Conky 1.8.1 "/tmp/.cesf" Insecure Temporary File Security Issue CVE-2011-3616
MLIST:[oss-security] 20111010 Re: CVE request: simple machines forum before 2.0.1 and 1.1.15 CVE-2011-3615 CVE-2011-4173
MLIST:[oss-security] 20111016 Duplicate CVE assigned: CVE-2011-2708 CVE-2011-2710 CVE-2011-2710
MLIST:[oss-security] 20111017 CVE request: double-free vulnerability in logsurfer CVE-2011-3626
MLIST:[oss-security] 20111017 Re: CVE request: double-free vulnerability in logsurfer CVE-2011-3626
MLIST:[oss-security] 20111018 CVE request: recursion level crash in clamav before 0.97.3 CVE-2011-3627
MLIST:[oss-security] 20111024 CVE request: phpldapadmin <= 1.2.1.1 XSS and and code injection flaws CVE-2011-4074 CVE-2011-4075
MLIST:[oss-security] 20111025 Re: CVE request: phpldapadmin <= 1.2.1.1 XSS and and code injection flaws CVE-2011-4074 CVE-2011-4075
MLIST:[oss-security] 20111026 CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink() CVE-2011-4077
MLIST:[oss-security] 20111026 CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow CVE-2011-4079
MLIST:[oss-security] 20111026 Re: CVE Request -- Round Cube Webmail -- DoS (unavailability to access user's INBOX) after receiving an email message with the URL in the Subject CVE-2011-4078
MLIST:[oss-security] 20111026 Re: CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink() CVE-2011-4077
MLIST:[oss-security] 20111026 Re: CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow CVE-2011-4079
MLIST:[oss-security] 20111027 CVE Request: Security issue in backuppc CVE-2011-4923
MLIST:[oss-security] 20111031 CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record CVE-2011-4096
MLIST:[oss-security] 20111031 Re: CVE Request -- Squid v3.1.16 -- Invalid free by processing CNAME DNS record pointing to another CNAME record pointing to an empty A-record CVE-2011-4096
MLIST:[oss-security] 20111101 Re: CVE request for wireshark flaws CVE-2011-4100 CVE-2011-4101 CVE-2011-4102
MLIST:[oss-security] 20111102 Re: Re: [LightDM] Version 1.0.6 released CVE-2011-4105
MLIST:[oss-security] 20111102 Re: [LightDM] Version 1.0.6 released CVE-2011-4105
MLIST:[oss-security] 20111104 CVE request: Mahara CVE-2011-4118
MLIST:[oss-security] 20111104 CVE request: unsafe use of /tmp in multiple CPAN modules CVE-2011-4114
MLIST:[oss-security] 20111104 Re: CVE Request -- Drupal (v6.x based) Views module - SQL injection due improper escaping of database parameters for certain filters / arguments (SA-CONTRIB-2011-052) CVE-2011-4113
MLIST:[oss-security] 20111104 Re: CVE request: Mahara CVE-2011-4118
MLIST:[oss-security] 20111104 Re: CVE request: unsafe use of /tmp in multiple CPAN modules CVE-2011-4114
MLIST:[oss-security] 20111108 CVE request: Android: vold stack buffer overflow CVE-2011-3874
MLIST:[oss-security] 20111108 CVE request: gnutls possible DoS (GNUTLS-SA-2011-2) CVE-2011-4128
MLIST:[oss-security] 20111108 Re: CVE request: Android: vold stack buffer overflow CVE-2011-3874
MLIST:[oss-security] 20111109 Re: CVE request: gnutls possible DoS (GNUTLS-SA-2011-2) CVE-2011-4128
MLIST:[oss-security] 20111109 Re: Re: CVE request: Android: vold stack buffer overflow CVE-2011-3874
MLIST:[oss-security] 20111111 CVE Request -- kernel: jbd/jbd2: invalid value of first log block leads to oops CVE-2011-4132
MLIST:[oss-security] 20111113 CVE request: ResourceSpace before 4.2.2833 insufficient access check CVE-2011-4311
MLIST:[oss-security] 20111113 Re: CVE Request -- kernel: jbd/jbd2: invalid value of first log block leads to oops CVE-2011-4132
MLIST:[oss-security] 20111114 Re: CVE request: ResourceSpace before 4.2.2833 insufficient access check CVE-2011-4311
MLIST:[oss-security] 20111115 CVE Request -- ReviewBoard v1.5.7 && v1.6.3 -- XSS in the commenting system (diff viewer and screenshot pages components) CVE-2011-4312
MLIST:[oss-security] 20111115 Re: CVE Request -- ReviewBoard v1.5.7 && v1.6.3 -- XSS in the commenting system (diff viewer and screenshot pages components) CVE-2011-4312
MLIST:[oss-security] 20111116 CVE Request: openid4java not properly verifying the signature of Attribute Exchange (AX) information CVE-2011-4314
MLIST:[oss-security] 20111116 Re: CVE Request: openid4java not properly verifying the signature of Attribute Exchange (AX) information CVE-2011-4314
MLIST:[oss-security] 20111117 CVE Request: nginx resolver heap overflow CVE-2011-4315
MLIST:[oss-security] 20111117 Re: CVE Request: nginx resolver heap overflow CVE-2011-4315
MLIST:[oss-security] 20111118 Re: CVE Request -- Ruby on Rails / rubygem-actionpack -- XSS in the 'translate' helper method CVE-2011-4319
MLIST:[oss-security] 20111119 CVE request: ejabberd before 2.1.9 CVE-2011-4320
MLIST:[oss-security] 20111119 Re: CVE request: ejabberd before 2.1.9 CVE-2011-4320
MLIST:[oss-security] 20111120 Re: CVE request: joomla 1.5 before 1.5.25 password change vulnerability CVE-2011-4321
MLIST:[oss-security] 20111121 CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[oss-security] 20111121 Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[oss-security] 20111121 Re: CVE-request: Contao 2.10.1 Cross-site scripting vulnerability CVE-2011-4335
MLIST:[oss-security] 20111121 Re: Fwd: Support Incident Tracker <= 3.65 (translate.php) Remote Code Execution Vulnerability CVE-2011-4337 CVE-2011-5075
MLIST:[oss-security] 20111121 Re: Fwd: XSS vulnerability in Joomla 1.6.3 CVE-2011-4332
MLIST:[oss-security] 20111121 Re: Fwd: XSS vulnerability in Joomla 1.6.3 - CVE-2011-2710 / CVE-2011-2708 issue CVE-2011-2710
MLIST:[oss-security] 20111121 Re: kernel: hfs: add sanity check for file name length CVE-2011-4330
MLIST:[oss-security] 20111121 kernel: hfs: add sanity check for file name length CVE-2011-4330
MLIST:[oss-security] 20111122 CVE-request: Contao 2.10.1 Cross-site scripting vulnerability CVE-2011-4335
MLIST:[oss-security] 20111122 Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type CVE-2011-4110
MLIST:[oss-security] 20111122 Re: CVE-request: Symphony CMS Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (NS-11-008) CVE-2011-4340 CVE-2011-4341
MLIST:[oss-security] 20111123 CVE request: jenkins CVE-2011-4344
MLIST:[oss-security] 20111123 Re: CVE request: jenkins CVE-2011-4344
MLIST:[oss-security] 20111125 Re: CVE Request: colord sql injections CVE-2011-4349
MLIST:[oss-security] 20111127 CVE Request -- ClearSilver (neo_cgi) -- Format string flaw by processing CGI error messages in Python module CVE-2011-4357
MLIST:[oss-security] 20111129 CVE Request: lighttpd/mod_auth out-of-bounds read due to signedness error CVE-2011-4362
MLIST:[oss-security] 20111129 CVE request: mediawiki before 1.17.1 CVE-2011-4360 CVE-2011-4361
MLIST:[oss-security] 20111129 Re: CVE Request: lighttpd/mod_auth out-of-bounds read due to signedness error CVE-2011-4362
MLIST:[oss-security] 20111129 Re: CVE request: mediawiki before 1.17.1 CVE-2011-4360 CVE-2011-4361
MLIST:[oss-security] 20111201 CVE-2011-4354 OpenSSL 0.9.8g (32-bit builds) bug leaks ECC private keys CVE-2011-4354
MLIST:[oss-security] 20111207 Disputing CVE-2011-4122 CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111208 Re: Disputing CVE-2011-4122 CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111209 CVE Request -- Asterisk -- AST-2011-013 and AST-2011-014 CVE-2011-4597 CVE-2011-4598
MLIST:[oss-security] 20111209 Re: CVE Request -- Asterisk -- AST-2011-013 and AST-2011-014 CVE-2011-4597 CVE-2011-4598
MLIST:[oss-security] 20111212 CVE request: rocksndiamonds world-writable working/config directory CVE-2011-4606
MLIST:[oss-security] 20111212 Re: CVE request: rocksndiamonds world-writable working/config directory CVE-2011-4606
MLIST:[oss-security] 20111213 OpenIPMI: IPMI event daemon creates PID file with world writeable permissions CVE-2011-4339
MLIST:[oss-security] 20111216 TYPO3 typo3-core-sa-2011-004 CVE-2011-4614
MLIST:[oss-security] 20111218 CVE for HTML-Template-Pro 0.9506 XSS CVE-2011-4616
MLIST:[oss-security] 20111219 CVE id request: python-virtualenv CVE-2011-4617
MLIST:[oss-security] 20111219 Re: CVE id request: python-virtualenv CVE-2011-4617
MLIST:[oss-security] 20111221 Re: kernel: kvm: pit timer with no irqchip crashes the system CVE-2011-4622
MLIST:[oss-security] 20111221 plib ulSetError() buffer overflow - CVE-2011-4620 CVE-2011-4620
MLIST:[oss-security] 20111224 CVE Request for Apache ActiveMQ DoS CVE-2011-4905
MLIST:[oss-security] 20111224 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111225 Re: CVE Request for Apache ActiveMQ DoS CVE-2011-4905
MLIST:[oss-security] 20111226 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20111228 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20120102 Re: Disputing CVE-2011-4122 CVE-2011-5054
MLIST:[oss-security] 20120103 CVE request: maradns hash table collision cpu dos CVE-2011-5055 CVE-2012-0024
MLIST:[oss-security] 20120103 Re: CVE request: maradns hash table collision cpu dos CVE-2011-5055 CVE-2012-0024
MLIST:[oss-security] 20120104 Re: CVE Request: Security issue in backuppc CVE-2011-4923
MLIST:[oss-security] 20120104 Re: CVE-request: Multiple e107 vulnerabilities CVE-2011-4920 CVE-2011-4921
MLIST:[oss-security] 20120105 CVE request: TORQUE Munge Authentication Security Bypass CVE-2011-4925
MLIST:[oss-security] 20120105 Re: CVE request: TORQUE Munge Authentication Security Bypass CVE-2011-4925
MLIST:[oss-security] 20120109 CVE Request: CEDET/Emacs global-ede-mode file loading vulnerability CVE-2012-0035
MLIST:[oss-security] 20120109 Re: Re: CVE Request: CEDET/Emacs global-ede-mode file loading vulnerability CVE-2012-0035
MLIST:[oss-security] 20120110 glib2 hash dos oCert-2011-003 CVE-2012-0039
MLIST:[oss-security] 20120111 Re: CVE request: Wireshark multiple vulnerabilities CVE-2012-0041 CVE-2012-0042 CVE-2012-0043 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068
MLIST:[oss-security] 20120113 CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120113 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120114 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120115 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120117 CVE-request: golismero symlink vulnerability CVE-2012-0054
MLIST:[oss-security] 20120117 Re: CVE affected for PHP 5.3.9 ? CVE-2012-0057
MLIST:[oss-security] 20120117 Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120117 Re: CVE-request: golismero symlink vulnerability CVE-2012-0054
MLIST:[oss-security] 20120118 CVE request - Batavi 1.2.1 Fixes Blind SQL Injection vulnerability in boxToReload parameter of ajax.php CVE-2012-0069
MLIST:[oss-security] 20120118 CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120119 Re: CVE request - Batavi 1.2.1 Fixes Blind SQL Injection CVE-2012-0069
MLIST:[oss-security] 20120119 Re: CVE request: Wireshark multiple vulnerabilities CVE-2012-0041 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068
MLIST:[oss-security] 20120119 Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120120 CVE Request -- Asterisk AST-2012-001 / Remote DoS while processing crypto line for media stream with non-existing RTP CVE-2012-0885
MLIST:[oss-security] 20120120 Re: CVE Request -- Asterisk AST-2012-001 / Remote DoS while processing crypto line for media stream with non-existing RTP CVE-2012-0885
MLIST:[oss-security] 20120120 Re: CVE request: simpleSAMLphp 1.8.2 cross site scripting CVE-2012-0040 CVE-2012-0908
MLIST:[oss-security] 20120120 Re: CVE request: smokeping XSS CVE-2012-0790
MLIST:[oss-security] 20120121 Re: Re: CVE Request -- Horde IMP -- Multiple XSS flaws CVE-2012-0791 CVE-2012-0909
MLIST:[oss-security] 20120122 Re: CVE request: kernel: proc: clean up and fix /proc/<pid>/mem handling CVE-2012-0056
MLIST:[oss-security] 20120124 CVE request: bip buffer overflow CVE-2012-0806
MLIST:[oss-security] 20120124 CVE requests: Suhosin extension / as31 CVE-2012-0807 CVE-2012-0808
MLIST:[oss-security] 20120124 Re: CVE request: bip buffer overflow CVE-2012-0806
MLIST:[oss-security] 20120124 Re: CVE requests: Suhosin extension / as31 CVE-2012-0807 CVE-2012-0808
MLIST:[oss-security] 20120126 CVE Request: Debian (others?) openssh-server: Forced Command handling leaks private information to ssh clients CVE-2012-0814
MLIST:[oss-security] 20120126 Re: CVE Request: Debian (others?) openssh-server: Forced Command handling leaks private information to ssh clients CVE-2012-0814
MLIST:[oss-security] 20120127 Re: CVE Request: Debian (others?) openssh-server: Forced Command handling leaks private information to ssh clients CVE-2012-0814
MLIST:[oss-security] 20120128 (maybe) CVE request: libvpx before 1.0 crasher CVE-2012-0823
MLIST:[oss-security] 20120129 Re: (maybe) CVE request: libvpx before 1.0 crasher CVE-2012-0823
MLIST:[oss-security] 20120202 CVE request: phpldapadmin "base" Cross-Site Scripting Vulnerability CVE-2012-0834
MLIST:[oss-security] 20120202 PHP remote code execution introduced via HashDoS fix CVE-2012-0830
MLIST:[oss-security] 20120202 Re: XSS hiding CSRF (was: Re: Mibew messenger multiple XSS) CVE-2012-0829
MLIST:[oss-security] 20120203 Re: CVE request: phpldapadmin "base" Cross-Site Scripting Vulnerability CVE-2012-0834
MLIST:[oss-security] 20120203 Re: PHP remote code execution introduced via HashDoS fix CVE-2012-0830
MLIST:[oss-security] 20120206 CVE request: Hash DoS vulnerability (ocert-2011-003) CVE-2012-0839
MLIST:[oss-security] 20120206 Re: CVE request: Hash DoS vulnerability (ocert-2011-003) CVE-2012-0839
MLIST:[oss-security] 20120208 CVE request: apr - Hash DoS vulnerability CVE-2012-0840
MLIST:[oss-security] 20120208 Re: CVE request: apr - Hash DoS vulnerability CVE-2012-0840
MLIST:[oss-security] 20120212 CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability CVE-2012-0865
MLIST:[oss-security] 20120213 Re: CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability CVE-2012-0865
MLIST:[oss-security] 20120215 CVE request: mumble local information disclosure CVE-2012-0863
MLIST:[oss-security] 20120215 Re: CVE request: mumble local information disclosure CVE-2012-0863
MLIST:[oss-security] 20120217 Re: CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability CVE-2012-0865
MLIST:[oss-security] 20120220 Re: Dolphin 7.0.7 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0873
MLIST:[oss-security] 20120220 Re: OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0872
MLIST:[oss-security] 20120221 Dolphin 7.0.7 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0873
MLIST:[oss-security] 20120221 OxWall 1.1.1 <= Multiple Cross Site Scripting Vulnerabilities CVE-2012-0872
MLIST:[oss-security] 20120223 CVE Request -- python-paste-script: Supplementary groups not dropped when started an application with "paster serve" as root CVE-2012-0878
MLIST:[oss-security] 20120223 Re: CVE Request -- python-paste-script: Supplementary groups not dropped when started an application with "paster serve" as root CVE-2012-0878
MLIST:[oss-security] 20120227 CVE Status Clarification / Request -- kadu: Stored XSS by parsing contact's status and sms messages in history CVE-2012-1410
MLIST:[oss-security] 20120227 CVE request: openssl: null pointer dereference issue CVE-2006-7250
MLIST:[oss-security] 20120227 Re: Re: CVE Status Clarification / Request -- kadu: Stored XSS by parsing contact's status and sms messages in history CVE-2012-1410
MLIST:[oss-security] 20120228 Re: CVE request: openssl: null pointer dereference issue CVE-2006-7250
MLIST:[oss-security] 20120302 CVE Request -- Ruby on Rails (v3.0.12) / rubygem-actionpack: Two XSS flaws CVE-2012-1098 CVE-2012-1099
MLIST:[oss-security] 20120302 Re: CVE Request -- Ruby on Rails (v3.0.12) / rubygem-actionpack: Two XSS flaws CVE-2012-1098 CVE-2012-1099
MLIST:[oss-security] 20120306 Re: CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.9 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144
MLIST:[oss-security] 20120308 CVE-request: Parallels Plesk Panel admin/plib/api-rpc/Agent.php Unspecified SQL Injection CVE-2012-1557
MLIST:[oss-security] 20120312 Re: CVE request: openssl: null pointer dereference issue CVE-2012-1165
MLIST:[oss-security] 20120315 CVE Request: nginx fix for malformed HTTP responses from upstream servers CVE-2012-1180
MLIST:[oss-security] 20120315 CVE-request: apache's mod-fcgid does not respect configured FcgidMaxProcessesPerClass in VirtualHost CVE-2012-1181
MLIST:[oss-security] 20120315 Re: CVE Request: nginx fix for malformed HTTP responses from upstream servers CVE-2012-1180
MLIST:[oss-security] 20120315 Re: CVE-request: apache's mod-fcgid does not respect configured FcgidMaxProcessesPerClass in VirtualHost CVE-2012-1181
MLIST:[oss-security] 20120319 CVE request: maradns deleted domain record cache persistance flaw CVE-2012-1570
MLIST:[oss-security] 20120320 CVE request: libtasn1 "asn1_get_length_der()" DER decoding issue CVE-2012-1569
MLIST:[oss-security] 20120320 Re: CVE request: libtasn1 "asn1_get_length_der()" DER decoding issue CVE-2012-1569
MLIST:[oss-security] 20120320 Re: CVE request: maradns deleted domain record cache persistance flaw CVE-2012-1570
MLIST:[oss-security] 20120321 CVE request: GnuTLS TLS record handling issue / MU-201202-01 CVE-2012-1573
MLIST:[oss-security] 20120321 Re: CVE request: GnuTLS TLS record handling issue / MU-201202-01 CVE-2012-1569 CVE-2012-1573
MLIST:[oss-security] 20120328 Re: CVE Request: Multiple wireshark security flaws resolved in 1.4.12 and 1.6.6 CVE-2012-1593 CVE-2012-1594 CVE-2012-1595 CVE-2012-1596
MLIST:[oss-security] 20120412 nginx security advisory: mp4 module vulnerability, CVE-2012-2089 CVE-2012-2089
MLIST:[oss-security] 20120424 Re: OpenSSL ASN1 BIO vulnerability (CVE-2012-2110) CVE-2012-2131
MLIST:[oss-security] Re: 20090212 CVE Request -- net-snmp (sensitive host information disclosure) CVE-2008-6123
MLIST:[oss-security] Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request CVE-2009-2562 CVE-2009-2563
MLIST:[oss-security] Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request CVE-2009-2562
MLIST:[owl-users] 20040619 Linux 2.4.26-ow2 CVE-2004-0447 CVE-2004-0565
MLIST:[owm-announce] 20060502 OpenWebMail version 2.52 CVE-2006-2190
MLIST:[pam-list] 20070123 Linux-PAM 0.99.7.1 released CVE-2007-0003
MLIST:[pam-list] 20090309 Linux-PAM 1.0.4 released CVE-2009-0579
MLIST:[pam-mount-user] 20080905 pam_mount 0.47 released CVE-2008-3970
MLIST:[pdns-users] 20080806 Security update: PowerDNS Authoritative Server 2.9.21.1 released CVE-2008-3337
MLIST:[pennmush-announce] 20070311 PennMUSH 1.8.2p3 and 1.8.3p1 Released CVE-2007-1431
MLIST:[pgsql-admin] 20020821 Re: OT: password encryption (salt theory) CVE-2002-1657
MLIST:[pgsql-announce] 20020824 PostgreSQL 7.2.2: Security Release CVE-2002-1402
MLIST:[pgsql-announce] 20021003 v7.2.3 Released to fix Potentially Critical Bug CVE-2002-1642
MLIST:[pgsql-announce] 20050201 PostgreSQL Security Release CVE-2005-0227
MLIST:[pgsql-announce] 20050502 IMPORTANT: two new PostgreSQL security problems found CVE-2005-1409 CVE-2005-1410
MLIST:[pgsql-announce] 20060109 CRITICAL RELEASE: Minor Releases to Fix DoS Vulnerability CVE-2006-0105
MLIST:[pgsql-announce] 20060214 Minor Releases 7.3 thru 8.1 Available to Fix Security Issue CVE-2006-0553
MLIST:[pgsql-announce] 20060523 Security Releases for All Active Versions CVE-2006-2313 CVE-2006-2314
MLIST:[pgsql-bugs] 20050121 Privilege escalation via LOAD CVE-2005-0227
MLIST:[pgsql-bugs] 20090227 BUG #4680: Server crashed if using wrong (mismatch) conversion functions CVE-2009-0922
MLIST:[pgsql-bugs] 20090227 Re: BUG #4680: Server crashed if using wrong (mismatch) conversion functions CVE-2009-0922
MLIST:[pgsql-bugs] 20091028 BUG #5145: Complex query with lots of LEFT JOIN causes segfault CVE-2010-0733
MLIST:[pgsql-bugs] 20091029 Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault CVE-2010-0733
MLIST:[pgsql-bugs] 20091030 Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault CVE-2010-0733
MLIST:[pgsql-committers] 20050121 pgsql: Prevent overrunning a heap-allocated buffer is more than 1024 CVE-2005-0245
MLIST:[pgsql-committers] 20050127 pgsql: Fix security and 64-bit issues in contrib/intagg. CVE-2005-0246
MLIST:[pgsql-committers] 20050207 pgsql: Prevent 4 more buffer overruns in the PL/PgSQL parser. CVE-2005-0245 CVE-2005-0247
MLIST:[pgsql-committers] 20100107 pgsql: Make bit/varbit substring() treat any negative length as meaning CVE-2010-0442
MLIST:[pgsql-hackers] 20050127 Permissions on aggregate component functions CVE-2005-0244
MLIST:[pgsql-hackers] 20100107 Re: Patch: Allow substring/replace() to get/set bit values CVE-2010-0442
MLIST:[pgsql-patches] 20050120 Re: WIP: pl/pgsql cleanup CVE-2005-0245
MLIST:[pgsql-www] 20090909 Re: Incorrect CVE reference on security page CVE-2009-3230
MLIST:[php-announce] 20091119 5.3.1 Release announcement CVE-2009-3292 CVE-2009-3294 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[php-cvs] 20060330 cvs: php-src /ext/standard info.c CVE-2006-0996
MLIST:[php-dev] 20070209 PHP 5.2.1 crashing Apache/IIS... CVE-2007-0911
MLIST:[php-dev] 20070210 Re: PHP 5.2.1 crashing Apache/IIS... CVE-2007-0911
MLIST:[php-general] 20070410 Decoding from unknown charsets (inc. ks_c_5601-1987) CVE-2010-4699
MLIST:[phpgroupware-users] 20100512 Phpgroupware security release 0.9.16.016 CVE-2010-0403 CVE-2010-0404
MLIST:[phpmyadmin-news] 20080915 phpMyAdmin 2.11.9.1 is released CVE-2008-4096
MLIST:[phppgadmin-news] 20111003 [ppa-news] phpPgAdmin 5.0.3 released CVE-2011-3598
MLIST:[phpwiki-talk] 20070408 Important UpLoad security fix! was [Fwd: [phpwiki - Open Discussion] RE: upload security risk] CVE-2007-2025
MLIST:[phpwiki-talk] 20070413 Fwd: Critical phpwiki c99shell exploit CVE-2007-2024
MLIST:[pkgsrc-changes] 20090610 CVS commit: pkgsrc/lang/ruby18-base CVE-2009-1904
MLIST:[plash] 20070301 TTY ioctl() vulnerability CVE-2007-1400
MLIST:[png-mng-implement] 20070911 FW: Compiler warnings for pngrtran.c CVE-2007-5268
MLIST:[png-mng-implement] 20070911 FW: Suspicious `sizeof' line 694 of pngset.c CVE-2007-5266
MLIST:[png-mng-implement] 20070914 libpng-1.0.29beta1 and libpng-1.2.21beta1 CVE-2007-5266 CVE-2007-5268
MLIST:[png-mng-implement] 20071004 Libpng-1.2.21 and libpng-1.0.29 released CVE-2007-5268 CVE-2007-5269
MLIST:[png-mng-implement] 20071005 libpng 1.2.21 iCCP chunk handling bug CVE-2007-5267
MLIST:[png-mng-implement] 20071015 libpng 1.2.21 iCCP chunk handling bug CVE-2007-5267
MLIST:[png-mng-implement] 20080918 libpng-1.0.40 and libpng-1.2.32 available CVE-2008-3964
MLIST:[png-mng-implement] 20081126 Memory overwriting bug in png_check_keyword() CVE-2008-5907
MLIST:[png-mng-implement] 20090219 libpng-1.2.35 and libpng-1.0.43 fix security vulnerability CVE-2009-0040
MLIST:[poppler] 20090123 poppler/JBIG2Stream.cc CVE-2009-0756
MLIST:[poppler] 20090128 poppler/Form.cc CVE-2009-0755
MLIST:[postfix-announce] 20080814 Postfix local privilege escalation via hardlinked symlinks CVE-2008-2936
MLIST:[postfix-announce] 20110509 Memory corruption in Postfix SMTP server Cyrus SASL support (CVE-2011-1720) CVE-2011-1720
MLIST:[postgrey] 20050414 ANNOUNCE: Postgrey 1.21 (SECURITY) CVE-2005-1127
MLIST:[postgrey] 20050414 Problem with crashing postgrey CVE-2005-1127
MLIST:[postgrey] 20050414 Re: Problem with crashing postgrey CVE-2005-1127
MLIST:[pound-list] 20051020 ANNOUNCE: Pound - reverse proxy and load balancer - v1.9.4 CVE-2005-3751
MLIST:[pound_list] 20050426 remote buffer overflow in pound 1.8.2 + question abotu Host header CVE-2005-1391
MLIST:[productinfo] 20080611 Ingate Firewall and SIParator affected by SNMPv3 vulnerability CVE-2008-0960
MLIST:[protocol-cvs] 20090828 rtsp rtspclnt.cpp,1.244,1.245 CVE-2009-4247
MLIST:[public-webapps] 20090918 fyi: Strict Transport Security specification CVE-2008-7294
MLIST:[pulseaudio-discuss] 20080124 [ANNOUNCE] PulseAudio 0.9.9 CVE-2008-0008
MLIST:[puppet-announce] 20100105 ANNOUNCE: Puppet 0.25.2 "Zoe" now available! CVE-2010-0156
MLIST:[puppet-announce] 20100108 ANNOUNCE: Puppet 0.24.9 is available CVE-2010-0156
MLIST:[pure-ftpd] 20110308 Pure-FTPd 1.0.30 has been released CVE-2011-1575
MLIST:[pure-ftpd] 20110308 Re: Pure-FTPd 1.0.30 has been released CVE-2011-1575
MLIST:[pylons-discuss] 20100624 Paste 1.7.4, security fix for XSS hole CVE-2010-2477
MLIST:[python-dev] 20070824 tarfile and directory traversal vulnerability CVE-2007-4559
MLIST:[python-dev] 20070825 tarfile and directory traversal vulnerability CVE-2007-4559
MLIST:[qemu-devel] 20081123 [PATCH] Fix off-by-one bug limiting VNC passwords to 7 chars CVE-2008-5714
MLIST:[qemu-devel] 20081210 Re: [RESEND] [PATCH v2] Fix off-by-one bug limiting VNC passwords to 7 chars CVE-2008-5714
MLIST:[qemu-devel] 20090525 Re: [STABLE] [BUG] VNC mode can crash QEMU CVE-2009-3616
MLIST:[qemu-devel] 20091029 Re: qemu-kvm-0.11 regression, crashes on older guests with virtio network CVE-2010-0741
MLIST:[qemu-devel] 20091029 [PATCH] whitelist host virtio networking features [was Re: qemu-kvm-0.11 regression, crashes on older ...] CVE-2010-0741
MLIST:[quagga-dev] 20060329 quagga locks with command sh ip bgp community 1:* CVE-2006-2276
MLIST:[quagga-dev] 20090203 [quagga-dev 6391] [PATCH] BGP 4-byte ASN bug fixes CVE-2009-1572
MLIST:[quartzcomposer-dev] 20050510 Quartz Quicktime embedded in remote webpages... CVE-2005-1579
MLIST:[quartzcomposer-dev] 20050511 Re: Quartz Quicktime embedded in remote webpages... CVE-2005-1579
MLIST:[rdesktop-announce] 20110418 rdesktop 1.7.0 released CVE-2011-1595
MLIST:[rdiffweb-discuss] 20070329 New features and changes to rdiffweb CVE-2007-2747
MLIST:[release-team] 20090312 Another Evolution-Data-Server freeze break CVE-2009-0582
MLIST:[roundup-devel] 20100701 Roundup Issue Tracker 1.4.14 released CVE-2010-2491
MLIST:[rsync-announce] 20080408 Rsync 3.0.2 released w/xattr security fix (attn: 2.6.9 onward) CVE-2008-1720
MLIST:[rsync] 20110122 rsync -rcv printing out filenames when content identical CVE-2011-1097
MLIST:[rsyncrypto-devel] 20080523 Advisory - Rsyncrypto maybe affected from Debian OpenSSL reduced entropy problem CVE-2008-0166
MLIST:[rt-announce] 20090914 RT 3.6.9 Released CVE-2009-3892
MLIST:[rt-announce] 20090914 RT 3.8.5 Released CVE-2009-3892
MLIST:[rt-announce] 20091130 SECURITY - RT 3.6.10 Released CVE-2009-3585 CVE-2009-4151
MLIST:[rt-announce] 20091130 SECURITY - Session Fixation Vulnerability in RT 3.0.0-3.8.5 CVE-2009-3585 CVE-2009-4151
MLIST:[rt-announce] 20110119 Security vulnerability in RT 3.0 and up CVE-2011-0009
MLIST:[rt-announce] 20110216 RT 3.8.9 Released CVE-2011-1007 CVE-2011-1008
MLIST:[rt-announce] 20110414 RT 3.6.11 Released - Security Release CVE-2011-1686 CVE-2011-1687 CVE-2011-1688 CVE-2011-1689 CVE-2011-1690
MLIST:[rt-announce] 20110414 RT 3.8.10 Released - Security Release CVE-2011-1685 CVE-2011-1686 CVE-2011-1687 CVE-2011-1688 CVE-2011-1689 CVE-2011-1690
MLIST:[rt-announce] 20110414 Security vulnerabilities in RT CVE-2011-1685 CVE-2011-1686 CVE-2011-1687 CVE-2011-1688 CVE-2011-1689 CVE-2011-1690
MLIST:[ruby-list] 20100619 ANN: ActiveScriptRuby 1.8.7 CVE-2012-1241
MLIST:[ruby-talk] 20100702 Re: [ANN][Security] Ruby 1.9.1-p429 is out CVE-2010-2489
MLIST:[ruby-talk] 20111228 [ANN] ruby 1.8.7 patchlevel 357 released CVE-2011-4815
MLIST:[rubyonrails-security] 20090610 DoS Vulnerability in Ruby (CVE-2009-1904) CVE-2009-1904
MLIST:[rubyonrails-security] 20090904 XSS Vulnerability in Ruby on Rails CVE-2009-3009
MLIST:[rubyonrails-security] 20091127 XSS Weakness in strip_tags CVE-2009-4214
MLIST:[rubyonrails-security] 20110209 CSRF Protection Bypass in Ruby on Rails CVE-2011-0447
MLIST:[rubyonrails-security] 20110209 Filter Problems on Case-Insensitive Filesystems CVE-2011-0449
MLIST:[rubyonrails-security] 20110209 Potential SQL Injection in Rails 3.0.x CVE-2011-0448
MLIST:[rubyonrails-security] 20110209 Potential XSS Problem with mail_to :encode => :javascript CVE-2011-0446
MLIST:[rubyonrails-security] 20110607 Potential XSS Vulnerability in Ruby on Rails Applications CVE-2011-2197
MLIST:[rubyonrails-security] 20110816 Filter Skipping Vulnerability in Ruby on Rails 3.0 CVE-2011-2929
MLIST:[rubyonrails-security] 20110816 Response Splitting Vulnerability in Ruby on Rails CVE-2011-3186
MLIST:[rubyonrails-security] 20110816 SQL Injection Vulnerability in quote_table_name CVE-2011-2930
MLIST:[rubyonrails-security] 20110816 XSS Vulnerability in strip_tags helper CVE-2011-2931
MLIST:[rubyonrails-security] 20110816 XSS Vulnerability in the escaping function in Ruby on Rails CVE-2011-2932
MLIST:[rubyonrails-security] 20111118 XSS vulnerability in the translate helper method in Ruby on Rails CVE-2011-4319
MLIST:[rubyonrails-security] 20120301 Possible XSS Security Vulnerability in SafeBuffer#[] CVE-2012-1098
MLIST:[rubyonrails-security] 20120301 XSS Vulnerability in the select helper CVE-2012-1099
MLIST:[sahana-maindev] 20091019 SEVERE Security Vulnerability in Sahana Identified and Patched CVE-2009-3625
MLIST:[samba-announce] 20100308 Security problem with Samba on Linux - affects 3.5.0, 3.4.6 and 3.3.11 CVE-2010-0728
MLIST:[samba-announce] 20100616 Samba 3.3.13 Security Release Available for Download CVE-2010-2063
MLIST:[samba-technical] 20020613 struct enum_csc_policy isn't terminated CVE-2002-2196
MLIST:[samba-technical] 20100205 Claimed Zero Day exploit in Samba. CVE-2010-0926
MLIST:[samba-technical] 20100205 Re: Claimed Zero Day exploit in Samba. CVE-2010-0926
MLIST:[samba-technical] 20100205 re: Claimed Zero Day exploit in Samba. CVE-2010-0926
MLIST:[samba-technical] 20100206 Re: Claimed Zero Day exploit in Samba. CVE-2010-0926
MLIST:[samba-technical] 20100207 Re: Claimed Zero Day exploit in Samba. CVE-2010-0926
MLIST:[scadasec] 20081211 Checkpoint Sources plus SPLAT Remote Root Exploit. CVE-2008-5850
MLIST:[scm-commits] 20100215 rpms/systemtap/devel systemtap-1.1-tighten-server-params.patch, NONE, 1.1 systemtap.spec, 1.59, 1.60 CVE-2009-4273 CVE-2010-0412
MLIST:[screen-users] 20061023 Secfix release for screen: screen-4.0.3 CVE-2006-4573
MLIST:[secure-testing-announce] 20050828 [DTSA-6-1] New cgiwrap packages fix multiple vulnerabilities CVE-2005-3254 CVE-2005-3255
MLIST:[secure-testing-commits] 20081103 r10251 - data/CVE CVE-2008-4539
MLIST:[secureideas-base-devel] 20060328 3 XSS in BASE 1.2.4 CVE-2006-1590
MLIST:[security-announce] 20060815 Proxy Generation Tool Vulnerability CVE-2006-4232
MLIST:[security-announce] 20060815 Temporary File Handling Vulnerability CVE-2006-4233
MLIST:[security-announce] 20070206 rPSA-2007-0025-1 postgresql postgresql-server CVE-2007-0555 CVE-2007-0556
MLIST:[security-announce] 20070208 rPSA-2007-0028-1 gd CVE-2007-0455
MLIST:[security-announce] 20070209 rPSA-2006-0233-1 dbus dbus-glib dbus-qt dbus-x11 CVE-2006-6107
MLIST:[security-announce] 20070409 Globus Security Advisory 2007-02: GSI-OpenSSH vulnerability CVE-2006-4924 CVE-2006-5051
MLIST:[security-announce] 20070906 rPSA-2007-0179-2 krb5 krb5-server krb5-services krb5-test krb5-workstation CVE-2007-3999
MLIST:[security-announce] 20080317 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues CVE-2006-2937 CVE-2006-2940 CVE-2006-4339 CVE-2006-4343 CVE-2007-5269 CVE-2007-5618 CVE-2008-0923 CVE-2008-1340 CVE-2008-1361 CVE-2008-1362 CVE-2008-1363 CVE-2008-1364 CVE-2008-1392
MLIST:[security-announce] 20080403 Globus Security Advisory 2008-01: GSI-OpenSSH vulnerability CVE-2008-1483
MLIST:[security-announce] 20080918 VMSA-2008-0015 Updated ESXi and ESX 3.5 packages address critical security issue in openwsman CVE-2008-2234
MLIST:[security-announce] 20090403 VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues CVE-2008-3761 CVE-2008-4916 CVE-2009-0177 CVE-2009-0518 CVE-2009-0908 CVE-2009-0909 CVE-2009-0910 CVE-2009-1146 CVE-2009-1147
MLIST:[security-announce] 20090410 VMSA-2009-0006 VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability CVE-2009-1244
MLIST:[security-announce] 20090701 VMSA-2009-0008 ESX Service Console update for krb5 CVE-2009-0846
MLIST:[security-announce] 20090820 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server CVE-2006-5752 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CVE-2007-5000 CVE-2007-6388 CVE-2008-0005 CVE-2009-0040
MLIST:[security-announce] 20090831 VMSA-2009-0011 VMware Studio 2.0 addresses a security issue in the public beta version of Studio 2.0 CVE-2009-2968
MLIST:[security-announce] 20090904 VMSA-2009-0012 VMware Movie Decoder, VMware Workstation, VMware Player, and VMware ACE resolve security issues. CVE-2009-0199 CVE-2009-2628
MLIST:[security-announce] 20091001 VMSA-2009-0013 VMware Fusion resolves two security issues CVE-2009-3281 CVE-2009-3282
MLIST:[security-announce] 20091027 VMSA-2009-0015 VMware hosted products and ESX patches resolve two security issues CVE-2009-2267 CVE-2009-3733
MLIST:[security-announce] 20091215 VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues CVE-2009-3731
MLIST:[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates CVE-2008-3916 CVE-2008-4316 CVE-2008-4552 CVE-2009-0115 CVE-2009-0590 CVE-2009-1189 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2009-2695 CVE-2009-2849 CVE-2009-2904 CVE-2009-2905 CVE-2009-2908 CVE-2009-3228 CVE-2009-3286 CVE-2009-3547 CVE-2009-3560 CVE-2009-3563 CVE-2009-3612 CVE-2009-3613 CVE-2009-3620 CVE-2009-3621 CVE-2009-3720 CVE-2009-3726 CVE-2009-4022
MLIST:[security-announce] 20100329 VMSA-2010-0005 VMware products address vulnerabilities in WebAccess CVE-2009-2277 CVE-2010-0686 CVE-2010-1137 CVE-2010-1193
MLIST:[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues CVE-2009-1564 CVE-2009-1565 CVE-2009-2042 CVE-2009-3707 CVE-2009-3732 CVE-2009-4811 CVE-2010-1138 CVE-2010-1139 CVE-2010-1140 CVE-2010-1141 CVE-2010-1142
MLIST:[security-announce] 20100505 VMSA-2010-0008 VMware View 3.1.3 addresses an important cross-site scripting vulnerability CVE-2010-1143
MLIST:[security-announce] 20100712 VMSA-2010-0011 VMware Studio 2.1 addresses security vulnerabilities in virtual appliances created with Studio 2.0 CVE-2010-2427 CVE-2010-2667
MLIST:[security-announce] 20100923 VMSA-2010-0014 VMware Workstation, Player, and ACE address several security issues CVE-2010-0205 CVE-2010-0425 CVE-2010-0434 CVE-2010-1205 CVE-2010-2249 CVE-2010-3277
MLIST:[security-announce] 20101202 VMSA-2010-0018 VMware hosted products and ESX patches resolve multiple security issues CVE-2010-4294 CVE-2010-4295 CVE-2010-4296 CVE-2010-4297
MLIST:[security-announce] 20101221 VMSA-2010-0020 VMware ESXi 4.1 Update Installer SFCB Authentication Flaw CVE-2010-4573
MLIST:[security-announce] 20110118 Globus Security Advisory 2011-01: myproxy-logon identity checking of server CVE-2011-0738
MLIST:[security-announce] 20110207 VMSA-2011-0002 Cisco Nexus 1000V VEM updates address denial of service in VMware ESX/ESXi CVE-2011-0355
MLIST:[security-announce] 20110307 VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm CVE-2010-2059 CVE-2010-3316 CVE-2010-3435 CVE-2010-3609 CVE-2010-3613 CVE-2010-3614 CVE-2010-3762 CVE-2010-3853
MLIST:[security-announce] 20110330 UPDATED VMSA-2011-0006.1 VMware vmrun utility local privilege escalation CVE-2011-1126
MLIST:[security-announce] 20110428 VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console CVE-2010-1323 CVE-2010-1324 CVE-2010-2240 CVE-2010-4020 CVE-2010-4021 CVE-2011-1785 CVE-2011-1786
MLIST:[security-announce] 20110505 VMSA-2011-0008 VMware vCenter Server and vSphere Client security vulnerabilities CVE-2011-0426 CVE-2011-1788 CVE-2011-1789
MLIST:[security] 20060906 Re: mailman 2.1.5-8sarge3: screwup between security and maintainer upload CVE-2006-2191
MLIST:[security] 20070321 MyOpenID CVE-2007-1651 CVE-2007-1652
MLIST:[security] 20070322 MyOpenID CVE-2007-1651 CVE-2007-1652
MLIST:[selinux] 20060313 [SECURITY] SELinux ptrace bug (CVE-2006-1052) CVE-2006-1052
MLIST:[shttpd-general] 20071203 Security bugs in SHTTPD CVE-2007-6404 CVE-2007-6405
MLIST:[sleuthkit-announce] 20070614 TSK 2.09 Released and new Wiki CVE-2007-4195 CVE-2007-4196 CVE-2007-4197 CVE-2007-4198 CVE-2007-4199 CVE-2007-4200
MLIST:[smb4k-announce] 20061221 Smb4K 0.8.0 and security fixes released CVE-2007-0472 CVE-2007-0473 CVE-2007-0474 CVE-2007-0475
MLIST:[sork] 20050422 Accounts 2.1.2 (final) CVE-2005-1316
MLIST:[sork] 20050422 Forwards 2.2.2 (final) CVE-2005-1318
MLIST:[sork] 20050422 Passwd 2.2.2 (final) CVE-2005-1313
MLIST:[sork] 20050422 Vacation 2.2.2 (final) CVE-2005-1321
MLIST:[source-changes] 20050913 CVS commit: [netbsd-3] src/sys/compat/freebsd CVE-2005-4776
MLIST:[source-changes] 20051021 CVS commit: src/sys/kern CVE-2005-4782
MLIST:[source-changes] 20070226 CVS: cvs.openbsd.org: src CVE-2007-1365
MLIST:[source-changes] 20081017 CVS: cvs.openbsd.org: src CVE-2008-3831
MLIST:[spamassassin-announce] 20040805 [SA-Announce] SpamAssassin 2.64 is released! CVE-2004-0796
MLIST:[spamassassin-announce] 20050615 Denial of Service Vulnerability in Apache SpamAssassin 3.0.1-3.0.3 CVE-2005-1266
MLIST:[spamassassin-devel] 20051101 [Bug 4570] Mail with lots of To addresses in header triggers Bus error in Perl [CVE-2005-3351] CVE-2005-3351
MLIST:[squid-announce[ 20080322 Advisory Squid-2007:2 updated CVE-2008-1612
MLIST:[squid-users] 20100824 Squid 3.1.7 is available CVE-2010-2951
MLIST:[squirrelmail-cvs] 20040427 [SM-CVS] CVS: squirrelmail/functions abook_database.php,1.15.2.1,1.15.2.2 CVE-2004-0521
MLIST:[squirrelmail-cvs] 20040523 [SM-CVS] CVS: squirrelmail/functions mime.php,1.265.2.27,1.265.2.28 CVE-2004-0520
MLIST:[squirrelmail-devel] 20040511 [SM-DEVEL] SquirrelMail 1.4.3-RC1 Release CVE-2004-0521
MLIST:[squirrelmail-devel] 20071213 [SM-DEVEL] SECURITY: 1.4.12 Package Compromise CVE-2007-6348
MLIST:[squirrelmail-devel] 20071214 Re: [SM-DEVEL] SECURITY: 1.4.12 Package Compromise CVE-2007-6348
MLIST:[sssd-devel] 20110429 SSSD Security Release 1.5.7 CVE-2011-1758
MLIST:[stgt] 20100701 1.0.6 released CVE-2010-2221
MLIST:[stgt] 20110309 [PATCH] iscsi: fix buffer overflow before login CVE-2011-0001
MLIST:[strongSwan] 20090527 [strongSwan] ANNOUNCE: strongSwan 4.3.1 and 4.2.15 released CVE-2009-1957 CVE-2009-1958
MLIST:[struts-devel] 20060122 Re: Validation Security Hole? CVE-2006-1546
MLIST:[struts-user] 20060121 Validation Security Hole? CVE-2006-1546
MLIST:[stunnel-announce] 20080503 stunnel 4.23 released CVE-2008-2400
MLIST:[stunnel-announce] 20080519 stunnel 4.24 released CVE-2008-2420
MLIST:[stunnel-announce] 20110818 stunnel 4.42 released CVE-2011-2940
MLIST:[suPHP] 20080330 SECURITY ISSUE: Immediate update advised CVE-2008-1614
MLIST:[subversion-users] 20101104 apache coredump in mod_dav_svn CVE-2010-4539
MLIST:[subversion-users] 20101104 svnserve.exe (Win32) using 2GB of memory and then crashing? CVE-2010-4644
MLIST:[support] 20101227 Pidgin 2.7.9 released CVE-2010-4528
MLIST:[swfdec] 20080729 Swfdec 0.6.8 released CVE-2008-3796
MLIST:[syslog-ng-announce] 20110110 syslog-ng Premium Edition 3.0.6a has been released CVE-2009-0590 CVE-2009-2409 CVE-2009-3245 CVE-2010-0433 CVE-2010-0740 CVE-2010-0742 CVE-2010-3864 CVE-2011-0343
MLIST:[syslog-ng-announce] 20110110 syslog-ng Premium Edition 3.2.1a has been released CVE-2009-0590 CVE-2009-2409 CVE-2009-3245 CVE-2010-0433 CVE-2010-0740 CVE-2010-0742 CVE-2010-3864 CVE-2011-0343
MLIST:[systemtap] 20100115 SystemTap release 1.1 CVE-2009-4273
MLIST:[systemtap] 20101117 important systemtap security fix CVE-2010-4170 CVE-2010-4171
MLIST:[tavi-devel] 20020102 "Tavi security advisory CVE-2002-2106
MLIST:[tcpdump-workers] 20011015 Bug in print-bgp.c? CVE-2002-1350
MLIST:[tcpdump-workers] 20031224 Seg fault of tcpdump (v 3.8.1 and below) with malformed l2tp packets CVE-2003-1029
MLIST:[tcpdump-workers] multiple vulnerabilities in tcpdump 3.8.1 CVE-2004-0055 CVE-2004-0057
MLIST:[tech-security] 20061116 Re: [Full-disclosure] NetBSD all versions FireWire IOCTL kernel integer overflow information disclousure CVE-2006-6013
MLIST:[tech-security] 20061214 NetBSD Security Note 20061214-1: Kernel memory leakage in firewire interface CVE-2006-6013
MLIST:[tep-commits] 20031217 [TEP-COMMIT] CVS: catalog/catalog/includes/functions html_output.php,1.58,1.59 CVE-2003-1219
MLIST:[thttpd] 20060305 Re: htpasswd.c security issues CVE-2006-1078 CVE-2006-1079
MLIST:[thttpd] 20060305 htpasswd.c security issues CVE-2006-1078 CVE-2006-1079
MLIST:[tigervnc-devel] 20110504 Re: potential vulnerability in TLS secType? CVE-2011-1775
MLIST:[tigervnc-devel] 20110504 potential vulnerability in TLS secType? CVE-2011-1775
MLIST:[tigervnc-devel] 20110505 Re: potential vulnerability in TLS secType? CVE-2011-1775
MLIST:[tls] 20091104 MITM attack on delayed TLS-client auth through renegotiation CVE-2009-3555
MLIST:[tls] 20091104 TLS renegotiation issue CVE-2009-3555
MLIST:[tomcat-announce] 20110812 [SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat) CVE-2011-2729
MLIST:[tomcat-dev] 20050103 Re: Fwd: XSS in Jakarta Tomcat 5.5.6 CVE-2005-4838
MLIST:[tomcat-dev] 20050103 [PATCH jakarta-servletapi-5] Re: Fwd: XSS in Jakarta Tomcat 5.5.6 CVE-2005-4838
MLIST:[tomcat-dev] 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability CVE-2008-5519
MLIST:[tomcat-user] 20080602 [SECURITY] CVE-2008-1947: Tomcat host-manager XSS vulnerability CVE-2008-1947
MLIST:[tomcat-users] 20071015 [Security] - Important vulnerability disclosed in Apache Tomcat webdav servlet CVE-2007-5461
MLIST:[tor-announce] 20110228 Tor 0.2.1.30 is released CVE-2011-1924
MLIST:[torqueusers] 20110809 TORQUE authorization security vulnerability CVE-2011-2907
MLIST:[turba] 20050422 Turba 1.2.5 (final) CVE-2005-1315
MLIST:[turbogears-announce] 20090811 Critical security update for tg2 users! CVE-2009-5014 CVE-2009-5015
MLIST:[twiki-announce] 20090430 Announcement: TWiki 4.3.1 Production Release CVE-2009-1339
MLIST:[uim] 20050220 uim 0.4.5.1 released CVE-2005-0503
MLIST:[unbound-users] 20100311 Unbound 1.4.3 release CVE-2010-0969
MLIST:[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release) CVE-2007-3846
MLIST:[users] 20100802 ANNOUNCE: strongswan-4.4.1 released CVE-2010-2628
MLIST:[users] 20110302 Re: @DenyAll does nothing CVE-2011-1088 CVE-2011-1419
MLIST:[users] 20110309 [SECURITY] Tomcat 7 ignores @ServletSecurity annotations CVE-2011-1419
MLIST:[uzbl-dev] 20100102 Fw: Uzbl: security issue CVE-2010-0011
MLIST:[valgrind-announce] 20090103 Valgrind-3.4.0 is available CVE-2008-4865
MLIST:[vim-dev] 20070426 feedkeys() allowed in sandbox CVE-2007-2438
MLIST:[vim-dev] 20070428 Re: feedkeys() allowed in sandbox CVE-2007-2438
MLIST:[vim-dev] 20080903 Patch 7.2.010 CVE-2008-4101
MLIST:[vim] 20100811 clearBudget v0.9.8 Remote File Include Vulnerability CVE-2010-4924
MLIST:[vim] 20100816 PHP-Fusion Local File Inclusion Vulnerability CVE-2010-4931
MLIST:[vim_dev] 20080817 Re: Anyone fixing SA31464? CVE-2008-4677
MLIST:[vim_dev] 20080824 Bug with v_K and potentially K command CVE-2008-4101
MLIST:[vimannounce] 20070512 Stable Vim version 7.1 has been released CVE-2007-2438
MLIST:[vlc-devel] 20070102 Security hole in VLC media player for Mac... CVE-2007-0017
MLIST:[vlc-devel] 20070626 subtitle processing overflows CVE-2007-6681
MLIST:[vlc-devel] 20070630 vlc: svn commit r20715 (fenrir) CVE-2007-6681
MLIST:[vlc-devel] 20070915 vlc: svn commit r22023 (courmisch) CVE-2007-6684
MLIST:[vlc-devel] 20071226 Regarding "obscure" security problem CVE-2007-6683
MLIST:[vlc-devel] 20080824 commit: MMS integers handling fixes, including buffer overflow ( Rémi Denis-Courmont ) CVE-2008-3794
MLIST:[vlc-devel] 20110116 Security: Subtitle StripTags heap corruption, potentially exploitable. Patch included CVE-2011-0522
MLIST:[vlc-devel] 20110117 Security: Subtitle StripTags heap corruption, potentially exploitable. Patch included CVE-2011-0522
MLIST:[vnc-list] 20060513 Version 4.1.2 CVE-2006-2369
MLIST:[vnc-list] 20081126 VNC Viewer Vulnerability CVE-2008-4770 CVE-2008-4770
MLIST:[webcalendar-announce] 20070304 Announce: Release 1.0.5 (security patch) CVE-2007-1343 CVE-2007-1483 CVE-2008-2836
MLIST:[websecurity] 20090519 [WEB SECURITY] Trustwave's SpiderLabs Security Advisory TWSL2009-001 and EnableSecurity Advisory ES-20090500 CVE-2009-1593 CVE-2009-1594
MLIST:[wget-notify] 20090805 [bug #27183] Wget likely suffers from the \0 SSL cert vulnerability CVE-2009-3490
MLIST:[wget] 20040517 Re: Wget race condition vulnerability (fwd) CVE-2004-2014
MLIST:[wget] 20040517 Wget race condition vulnerability (fwd) CVE-2004-2014
MLIST:[whatwg] 20110314 Canvas and drawWindow CVE-2011-2366 CVE-2011-2599
MLIST:[www-announce] 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability CVE-2008-5519
MLIST:[www-announce] 20101124 Apache Subversion 1.6.15 Released CVE-2010-4539 CVE-2010-4644
MLIST:[www-announce] 20110517 [SECURITY] CVE-2011-1582 Apache Tomcat security constraint bypass CVE-2011-1582
MLIST:[www-announce] 20110519 Regressions in httpd 2.2.18, apr 1.4.4, and apr-util 1.3.11 CVE-2011-1928
MLIST:[x-org announce] 20070109 X.Org Security Advisory: multiple integer overflows in dbe and render extensions CVE-2006-6101 CVE-2006-6102 CVE-2006-6103
MLIST:[xapian-discuss] 20090909 Cross-site scripting issue in Omega CVE-2009-2947
MLIST:[xchat-announce] 20040405 xchat 2.0.x Socks5 Vulnerability CVE-2004-0409
MLIST:[xen-dev] 20080718 [PATCH][XSM][FLASK] Argument handling bugs in XSM:FLASK CVE-2008-3687
MLIST:[xen-dev] 20110512 Xen security advisory CVE-2011-1898 - VT-d (PCI passthrough) MSI CVE-2011-1898
MLIST:[xen-devel] 20080930 Re: [PATCH] [Xend] Move some backend configuration CVE-2008-4405
MLIST:[xen-devel] 20080930 [PATCH] [Xend] Move some backend configuration CVE-2008-4405
MLIST:[xen-devel] 20081218 PATCH: Actually make /local/domain/$DOMID readonly to the guest CVE-2008-5716
MLIST:[xen-devel] 20081218 Re: PATCH: Actually make /local/domain/$DOMID readonly to the guest CVE-2008-5716
MLIST:[xen-devel] 20101129 [PATCH] x86-64: don't crash Xen upon direct pv guest access CVE-2010-4255
MLIST:[xfs-masters] 20100906 [PATCH] xfs: prevent reading uninitialized stack memory CVE-2010-3078
MLIST:[xfs] 20100616 Re: [Security] XFS swapext ioctl minor security issues CVE-2010-2226
MLIST:[xfs] 20100617 [PATCH] xfsqa: test open_by_handle() on unlinked and freed inode clusters V2 CVE-2010-2943
MLIST:[xfs] 20100618 Re: [PATCH] xfsqa: test open_by_handle() on unlinked and freed inode clusters V2 CVE-2010-2943
MLIST:[xfs] 20111018 [PATCH] Fix possible memory corruption in xfs_readlink CVE-2011-4077
MLIST:[xml-dev] 20030202 Re: Elliotte Rusty Harold on Web Services CVE-2003-1564
MLIST:[xml] 20080820 Security fix for libxml2 CVE-2003-1564 CVE-2008-3281
MLIST:[xml] 20101104 Release of libxml2-2.7.8 CVE-2010-4008
MLIST:[xmlsec] 20110331 New xmlsec 1.2.17 release CVE-2011-1425
MLIST:[xorg-announce] 20070403 various integer overflow vulnerabilites in xserver, libX11 and libXfont CVE-2007-1003 CVE-2007-1351 CVE-2007-1352 CVE-2007-1667
MLIST:[xorg-announce] 20070906 xorg-server 1.4 CVE-2007-4730
MLIST:[xorg-announce] 20071002 [ANNOUNCE] X.Org security advisory: multiple vulnerabilities in X font server CVE-2007-4568 CVE-2007-4990
MLIST:[xorg-announce] 20110405 X.Org security advisory: root hole via rogue hostname CVE-2011-0465
MLIST:[xorg-announce] 20110405 xrdb 1.0.9 CVE-2011-0465
MLIST:[xorg-announce] 20110810 X.Org security advisory: libXfont LZW decompression heap corruption CVE-2011-2895
MLIST:[xorg-announce] 20110810 [ANNOUNCE] libXfont 1.4.4 CVE-2011-2895
MLIST:[xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension CVE-2006-1526
MLIST:[xorg] 20060620 X.Org security advisory: setuid return value check problems CVE-2006-4447
MLIST:[xorg] 20080117 X.Org security advisory: multiple vulnerabilities in the X server CVE-2007-5760 CVE-2007-5958 CVE-2007-6427 CVE-2007-6428 CVE-2007-6429 CVE-2008-0006
MLIST:[xorg] 20080611 X.Org security advisory june 2008 - Multiple vulnerabilities in X server extensions CVE-2008-1377 CVE-2008-1379 CVE-2008-2360 CVE-2008-2361 CVE-2008-2362
MLIST:[zone-announce] 20110628 Security Hotfix 20110622 released CVE-2011-2528
MLIST:[zope-announce] 20090806 CVE-2009-0668 and CVE-2009-0669: Releases to fix ZODB ZEO server vulnerabilities CVE-2009-0668 CVE-2009-0669
MLIST:[zope-announce] 20090901 CVE-2009-2701: Releases to fix ZODB ZEO server vulnerability CVE-2009-2701
MLIST:[zope-announce] 20100112 New Zope2 releases available CVE-2010-1104
MLIST:[zope-announce] 20100901 Annoucement: Zope 2.10.12 and 2.11.7 Released CVE-2010-3198
MLIST:[zsh-workers] 20071202 difflog.pl and "security" CVE-2007-6209
MLIST:[zsh-workers] 20071203 Re: difflog.pl and "security" CVE-2007-6209
 
Page Last Updated: May 16, 2012