[AusNOG] AusCERT Week in Review - Week Ending 20/03/2009 (AUSCERT#20073f686)

Patrick Mannion patrick at auscert.org.au
Mon Mar 23 10:19:07 EST 2009


Alerts, Advisories and Updates:
-------------------------------
Title: AL-2009.0020 -- [Win][UNIX/Linux] -- Symantec Products Update
       Vulnerable Autonomy KeyView Module 
Date:  18 March 2009
URL:   http://www.auscert.org.au/10659

Title: AA-2009.0059 -- [Win][UNIX/Linux] -- Possible application source file
       exposure in IBM WebSphere Application Server 
Date:  16 March 2009
URL:   http://www.auscert.org.au/10650


External Security Bulletins:
----------------------------
Title: ESB-2009.0259 -- [UNIX/Linux][RedHat] -- Moderate: ghostscript security
       update 
Date:  20 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10666

Title: ESB-2009.0258 -- [RedHat] -- Moderate: curl security update 
Date:  20 March 2009
OS:    Red Hat Linux 
URL:   http://www.auscert.org.au/10665

Title: ESB-2009.0257 -- [UNIX/Linux][RedHat] -- Moderate: lcms security update
Date:  20 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10664

Title: ESB-2009.0256 -- [UNIX/Linux][RedHat] -- Moderate: libvirt security
       update 
Date:  20 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10663

Title: ESB-2009.0255 -- [Ubuntu] -- NSS vulnerability 
Date:  19 March 2009
OS:    Ubuntu 
URL:   http://www.auscert.org.au/10662

Title: ESB-2009.0254 -- [UNIX/Linux][Debian] -- New weechat packages fix
       denial of service 
Date:  19 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10661

Title: ESB-2009.0253 -- [Win][UNIX/Linux] -- A vulnerability has been
       identified in Tasklist (Drupal third-party module) 
Date:  19 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
       Windows Vista 
URL:   http://www.auscert.org.au/10660

Title: ESB-2009.0252 -- [Win][UNIX/Linux][Ubuntu] -- GStreamer Base Plugins
       vulnerability 
Date:  18 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
       Windows Vista 
URL:   http://www.auscert.org.au/10657

Title: ESB-2009.0251 -- [UNIX/Linux][Ubuntu] -- GLib vulnerability 
Date:  18 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10656

Title: ESB-2009.0250 -- [Solaris] -- A Security Vulnerability in Kerberos
       Incremental Propagation May Lead to a Denial of Service (DoS) Against
       Slave KDC Systems 
Date:  18 March 2009
OS:    Solaris 
URL:   http://www.auscert.org.au/10655

Title: ESB-2009.0249 -- [Solaris] -- Security Vulnerabilities in the UFS File
       System 
Date:  18 March 2009
OS:    Solaris 
URL:   http://www.auscert.org.au/10654

Title: ESB-2009.0248 -- [UNIX/Linux][RedHat] -- Moderate: libsoup security
       update 
Date:  17 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10653

Title: ESB-2009.0247 -- [UNIX/Linux][RedHat] -- Moderate: evolution security
       updates 
Date:  17 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10652

Title: ESB-2009.0246 -- [UNIX/Linux] -- A vulnerability has been discovered in
       avahi 
Date:  17 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/10651

Title: ESB-2009.0245 -- [Win][UNIX/Linux][Debian] -- New yaws packages fix
       denial of service 
Date:  16 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
       Windows Vista 
URL:   http://www.auscert.org.au/10649

Title: ESB-2009.0244 -- [Debian] -- New libsnd packages fix arbitrary code
       execution 
Date:  16 March 2009
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/10648

Title: ESB-2009.0243 -- [Solaris] -- Security Vulnerability in the Solaris
       keysock 
Date:  16 March 2009
OS:    Solaris 
URL:   http://www.auscert.org.au/10647

Title: ESB-2009.0242 -- [Win][Linux][OSX] -- New psi (Jabber client) packages
       fix denial of service 
Date:  16 March 2009
OS:    Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, Windows
       Vista 
URL:   http://www.auscert.org.au/10646

Title: ESB-2009.0241 -- [Win][UNIX/Linux][Debian] -- New mldonkey packages fix
       information disclosure 
Date:  16 March 2009
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
       Windows Vista 
URL:   http://www.auscert.org.au/10645

Title: ESB-2009.0231 -- [Solaris] -- Multiple Security Issues in the Doors
       Kernel Functionality 
Date:  16 March 2009
OS:    Solaris 
URL:   http://www.auscert.org.au/10631



===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert at auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================



More information about the AusNOG mailing list