[AusNOG] AusCERT Week in Review - Week Ending 31/10/2008 (AUSCERT#20073F686)
Jonathan Levine
jonathan at auscert.org.au
Fri Oct 31 17:16:09 EST 2008
AusCERT Week in Review
31 October 2008
AusCERT in the Media:
- ---------------------
University of Queensland advances Windows cluster trial
iT News, Australia
Oct 28, 2008
http://www.itnews.com.au/News/87727,university-of-queensland-advances-windows-cl
uster-trial.aspx
Papers, Articles and other documents:
- -------------------------------------
Web Log Entries:
- ----------------
Title: ICANN cans EstDomains
Date: 30 October 2008
URL: http://www.auscert.org.au/10027
Alerts, Advisories and Updates:
- -------------------------------
Title: AA-2008.0224 -- [UNIX/Linux] -- A security vulnerability has been
identified in Dovecot
Date: 31 October 2008
URL: http://www.auscert.org.au/10028
Title: AA-2008.0223 -- [Win][UNIX/Linux] -- Opera version 9.62 released fixing
several vulnerabilities
Date: 30 October 2008
URL: http://www.auscert.org.au/10026
Title: AA-2008.0222 -- [Win][Netware][Linux][Solaris] -- A vulnerability has
been identified in Novell eDirectory version 8.x
Date: 28 October 2008
URL: http://www.auscert.org.au/10020
Title: AA-2008.0221 -- [Linux] -- A number of vulnerabilities in the Linux
kernel have been corrected with the release of version 2.4.36.8
Date: 27 October 2008
URL: http://www.auscert.org.au/10018
External Security Bulletins:
- ----------------------------
Title: ESB-2008.1013 -- [Win] -- SonicWALL Content-Filtering Universal Script
Injection
Date: 31 October 2008
OS: Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista
URL: http://www.auscert.org.au/10025
Title: ESB-2008.1012 -- [Win][UNIX/Linux] -- IBM Tivoli Storage Manager
Express for Microsoft SQL Heap Overflow Vulnerability
Date: 31 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10024
Title: ESB-2008.1011 -- [Win][Mac][OSX] -- Adobe PageMaker Key Strings Stack
Buffer Overflow
Date: 31 October 2008
OS: Windows 2003, Windows 2000, Windows XP, Server 2008, Mac OS X, Windows
Vista
URL: http://www.auscert.org.au/10023
Title: ESB-2008.1010 -- [Win][UNIX/Linux] -- New OpenOffice.org packages fix
several vulnerabilities
Date: 30 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10022
Title: ESB-2008.1009 -- [Win] -- Vulnerability in Citrix Web Interface 5.0 for
Java Application Servers could result in failure to terminate Web
Interface user sessions
Date: 29 October 2008
OS: Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista
URL: http://www.auscert.org.au/10021
Title: ESB-2008.1008 -- [RedHat] -- Important: flash-plugin security update
Date: 29 October 2008
OS: Red Hat Linux
URL: http://www.auscert.org.au/10019
Title: ESB-2008.1007 -- [NetBSD] -- IPv6 Neighbor Discovery Protocol
Date: 28 October 2008
OS: Other BSD Variants
URL: http://www.auscert.org.au/10017
Title: ESB-2008.1006 -- [Win][UNIX/Linux] -- Important: lynx security update
Date: 28 October 2008
OS: Windows Vista, AIX, HP-UX, Mac OS X, Red Hat Linux, Server 2008,
Windows XP, Other Linux Variants, FreeBSD, Windows 2000, OpenBSD,
Windows 2003, IRIX, Other BSD Variants, Debian GNU/Linux, Ubuntu, HP
Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/10016
Title: ESB-2008.1005 -- [Win][UNIX/Linux] -- New clamav packages fix denial of
service
Date: 27 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10015
Title: ESB-2008.1004 -- [Win][UNIX/Linux] -- Moodle vulnerability
Date: 27 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10014
Title: ESB-2008.1003 -- [Win][RedHat][HP-UX][Solaris] -- A patch has been
released to fix a vulnerability in Sun Java System LDAP JDK
Date: 26 October 2008
OS: Solaris, HP-UX, Red Hat Linux, Server 2008, Windows Vista, Windows
2003, Windows 2000, Windows XP
URL: http://www.auscert.org.au/10013
Title: ESB-2008.1002 -- [RedHat] -- Critical: java-1.6.0-ibm security update
Date: 27 October 2008
OS: Red Hat Linux
URL: http://www.auscert.org.au/10012
Title: ESB-2008.1001 -- [RedHat] -- Moderate: java-1.5.0-ibm security update
Date: 27 October 2008
OS: Red Hat Linux
URL: http://www.auscert.org.au/10011
Title: ESB-2008.0931 -- [Win][Linux] -- HP Insight Diagnostics, Remote
Unauthorized Access to Files
Date: 28 October 2008
OS: Red Hat Linux, Server 2008, Windows 2000, Windows 2003, Debian
GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/9910
Title: ESB-2008.0738 -- [NetBSD] -- BIND cache poisoning
Date: 28 October 2008
OS: Other BSD Variants
URL: http://www.auscert.org.au/9633
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list