[AusNOG] AusCERT Week in Review - Week Ending 20/03/2009 (AUSCERT#20073f686)
Patrick Mannion
patrick at auscert.org.au
Mon Mar 23 10:19:07 EST 2009
Alerts, Advisories and Updates:
-------------------------------
Title: AL-2009.0020 -- [Win][UNIX/Linux] -- Symantec Products Update
Vulnerable Autonomy KeyView Module
Date: 18 March 2009
URL: http://www.auscert.org.au/10659
Title: AA-2009.0059 -- [Win][UNIX/Linux] -- Possible application source file
exposure in IBM WebSphere Application Server
Date: 16 March 2009
URL: http://www.auscert.org.au/10650
External Security Bulletins:
----------------------------
Title: ESB-2009.0259 -- [UNIX/Linux][RedHat] -- Moderate: ghostscript security
update
Date: 20 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10666
Title: ESB-2009.0258 -- [RedHat] -- Moderate: curl security update
Date: 20 March 2009
OS: Red Hat Linux
URL: http://www.auscert.org.au/10665
Title: ESB-2009.0257 -- [UNIX/Linux][RedHat] -- Moderate: lcms security update
Date: 20 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10664
Title: ESB-2009.0256 -- [UNIX/Linux][RedHat] -- Moderate: libvirt security
update
Date: 20 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10663
Title: ESB-2009.0255 -- [Ubuntu] -- NSS vulnerability
Date: 19 March 2009
OS: Ubuntu
URL: http://www.auscert.org.au/10662
Title: ESB-2009.0254 -- [UNIX/Linux][Debian] -- New weechat packages fix
denial of service
Date: 19 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10661
Title: ESB-2009.0253 -- [Win][UNIX/Linux] -- A vulnerability has been
identified in Tasklist (Drupal third-party module)
Date: 19 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10660
Title: ESB-2009.0252 -- [Win][UNIX/Linux][Ubuntu] -- GStreamer Base Plugins
vulnerability
Date: 18 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10657
Title: ESB-2009.0251 -- [UNIX/Linux][Ubuntu] -- GLib vulnerability
Date: 18 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10656
Title: ESB-2009.0250 -- [Solaris] -- A Security Vulnerability in Kerberos
Incremental Propagation May Lead to a Denial of Service (DoS) Against
Slave KDC Systems
Date: 18 March 2009
OS: Solaris
URL: http://www.auscert.org.au/10655
Title: ESB-2009.0249 -- [Solaris] -- Security Vulnerabilities in the UFS File
System
Date: 18 March 2009
OS: Solaris
URL: http://www.auscert.org.au/10654
Title: ESB-2009.0248 -- [UNIX/Linux][RedHat] -- Moderate: libsoup security
update
Date: 17 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10653
Title: ESB-2009.0247 -- [UNIX/Linux][RedHat] -- Moderate: evolution security
updates
Date: 17 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10652
Title: ESB-2009.0246 -- [UNIX/Linux] -- A vulnerability has been discovered in
avahi
Date: 17 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/10651
Title: ESB-2009.0245 -- [Win][UNIX/Linux][Debian] -- New yaws packages fix
denial of service
Date: 16 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10649
Title: ESB-2009.0244 -- [Debian] -- New libsnd packages fix arbitrary code
execution
Date: 16 March 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/10648
Title: ESB-2009.0243 -- [Solaris] -- Security Vulnerability in the Solaris
keysock
Date: 16 March 2009
OS: Solaris
URL: http://www.auscert.org.au/10647
Title: ESB-2009.0242 -- [Win][Linux][OSX] -- New psi (Jabber client) packages
fix denial of service
Date: 16 March 2009
OS: Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, Windows
Vista
URL: http://www.auscert.org.au/10646
Title: ESB-2009.0241 -- [Win][UNIX/Linux][Debian] -- New mldonkey packages fix
information disclosure
Date: 16 March 2009
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/10645
Title: ESB-2009.0231 -- [Solaris] -- Multiple Security Issues in the Doors
Kernel Functionality
Date: 16 March 2009
OS: Solaris
URL: http://www.auscert.org.au/10631
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list