Mailing List Archive by Gossamer Threads http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/ en-us (c) Gossamer Threads Inc. All rights reserved. 08 Nov 2009 20:27:28 -0800 120 75 23 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/ http://www.gossamer-threads.com/images/lists/rss_logo.jpg -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 08 Nov 2009 13:20:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70747 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 08 Nov 2009 11:47:33 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70746 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 08 Nov 2009 02:07:37 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70744 For those who were not yet aware, there is at least 3 public exploits since 11/05/2009 for CVE-2009-3547 targeting *all* linux kernels from 2.6.0 to 2 07 Nov 2009 11:37:13 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70740 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 06 Nov 2009 16:46:57 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70741 Hi Full-disclosure I have a SPAM filter and virus firewall testing. So, I want to get the real SPAM is sent to a specific email address. What better 06 Nov 2009 11:11:11 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70728 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200911-01 - - - 06 Nov 2009 05:36:49 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70720 Good day! I recently encountered a problem with the implementation of SQL injection. I wanted to write a file with the code interpreter to execute 06 Nov 2009 04:55:22 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70719 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 05 Nov 2009 16:52:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70698 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1 05 Nov 2009 16:51:43 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70716 For complete post with images, please visit http://securethoughts.com/2009/11/using-blended-browser-threats-involving-ch rome-to-steal-files-on-your-c 05 Nov 2009 16:47:37 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70699 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1 05 Nov 2009 14:03:48 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70715 It might not work with up-to-date OpenSSL. Fixing that is left as an exercise for the reader. -- Pavel Kankovsky aka Peak / 05 Nov 2009 13:54:48 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70697 =========================================================== Ubuntu Security Notice USN-855-1 November 05, 2009 libhtml-parser-perl vulnerabil 05 Nov 2009 12:28:34 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70696 =========================================================== Ubuntu Security Notice USN-854-1 November 05, 2009 libgd2 vulnerabilities CVE-200 05 Nov 2009 11:30:10 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70695 ZDI-09-081: Hewlett-Packard Power Manager Administration Web Server Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-08 05 Nov 2009 10:08:36 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70712 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ 05 Nov 2009 09:12:52 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70694 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1 05 Nov 2009 08:21:03 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70714 eoCMS SQL injection vulnerability 1. General information eoCMS is an open source code software which is used to develop Internet forum (http://eocm 04 Nov 2009 21:22:29 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70692 hi, I have written a piece of code to demonstrate the new serv-u bug. Attached please find the source code for Win2k3 SP2 + DEP. Perhaps you shoul 04 Nov 2009 19:41:12 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70691 Dear Madame/Sir, CONFidence is the one of the most technical conference in Eastern Europe. You can find videos from the latest edition here: http://2 04 Nov 2009 17:13:15 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70713 Moderate vulnerability in argentinean ARNET isp webmail. well, there is some kind of weakened authentication on the webmail of Arnet (webmail.arnet. 04 Nov 2009 15:00:20 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70718 Asterisk Project Security Advisory - AST-2009-009 +------------------------------------------------------------------------+ | Product 04 Nov 2009 12:12:42 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70673 Asterisk Project Security Advisory - AST-2009-008 +------------------------------------------------------------------------+ | Product 04 Nov 2009 12:12:22 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70672 ZDI-09-080: Sun Java Runtime Environment JPEGImageReader Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-080 November 4 04 Nov 2009 11:50:57 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70711 ZDI-09-079: Sun Java Runtime AWT setBytePixels Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-079 November 4, 2009 -- 04 Nov 2009 11:50:55 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70710 ZDI-09-078: Sun Java Runtime AWT setDifflCM Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-078 November 4, 2009 -- A 04 Nov 2009 11:50:38 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70709 ZDI-09-077: Sun Java Web Start Arbitrary Command Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-077 November 4, 2009 -- A 04 Nov 2009 11:50:32 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70708 ZDI-09-076: Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-076 November 4, 200 04 Nov 2009 11:50:23 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70707 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 04 Nov 2009 11:33:20 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70675 ===============================ADVISORY=============================== Name: Autocomplete Data Theft in Mozilla Firefox Systems Affecte 04 Nov 2009 10:35:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70674 Nothing new here, but thought this might be useful to some people...Tries to maintain current working directory when you use 'cd'. http://codepad.o 04 Nov 2009 05:41:14 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70662 We are mourning a good friend today. I first begun talking to str0ke when I started publishing exploit codes onto this mailing list, he would always b 04 Nov 2009 05:19:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70660 ====================================================================== Secunia Research 04/11/2009 - IBM Tivoli Storage 04 Nov 2009 04:35:24 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70663 The answer is both more mundane and more alarming. Prosecutors are using the FBI's massive surveillance system, DCSNet, which stands for Digital Colle 03 Nov 2009 17:55:45 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70654 Vendor: Bractus (http://bract.us) Product: SunTrack (http://bract.us/demo/login.jsp) Multiple stored XSS vulnerabilities exist in the Bractus SunTrac 03 Nov 2009 16:21:11 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70652 Vendor: e-Courier (http://www.ecouriersoftware.com/) Product: CMS Tracking Site Issue: Cross-Site Scripting. Description: Nearly all pages include the 03 Nov 2009 16:20:06 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70653 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 03 Nov 2009 10:31:01 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70650 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 03 Nov 2009 08:16:01 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70647 ZDI-09-075: Novell eDirectory LDAP Null Base DN Denial of Service Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-075 November 2, 200 02 Nov 2009 15:32:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70648 About QuahogCon QuahogCon is a new regional conference for the hacker culture in all forms. Hardware, Software, Security, Social, Eco Hacking, Zero 02 Nov 2009 15:24:14 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70649 =========================================================== Ubuntu Security Notice USN-850-3 November 02, 2009 poppler vulnerabilities CVE-20 02 Nov 2009 13:46:33 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70646 _________________________________________ Security Advisory NSOADV-2009-001 _________________________________________ ________________________________ 02 Nov 2009 12:14:51 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70645 == DeepSec In-Depth Security Conference 2009 "TripleSec" == This is a reminder for the third DeepSec conference, taking place between 17th and 20th N 01 Nov 2009 15:42:42 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70642 Hello list, the vulnerability named "RhinoSoft.com Serv-U 9.0.0.5 WebClient Remote Buffer Overflow" can be found at http://www.rangos.de/ServU-ADV.tx 01 Nov 2009 14:18:39 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70641 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 01 Nov 2009 03:08:54 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70637 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 01 Nov 2009 03:08:44 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70636 KC Security is born. ___________________ View the announcement PDF here: http://rangos.de/KC%20Security.pdf - http://www.rangos.de Everything securi 31 Oct 2009 17:08:58 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70638 Hello participants of Full-Disclosure! After my articles about different attacks via redirectors - Redirectors: the phantom menace (http://websecuri 31 Oct 2009 13:24:50 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70635 =========================================================== Ubuntu Security Notice USN-853-1 October 31, 2009 firefox-3.0, firefox-3.5, xulr 30 Oct 2009 20:23:04 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70634 CubeCart 4 Session Management Bypass Release Date: 2009/10/29 Author: Bogdan Calin (bogdan [at] acunetix [dot] com) Severity: Critical Vendor Status: 30 Oct 2009 06:07:43 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70632 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [ Multiple BSD printf(1) and multiple dtoa/*printf(3) vulnerabilities ] Author: Maksymilian Arciemowic 30 Oct 2009 05:36:01 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70633 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi. This vulnerability was ranked 10.0 (for Windows) in CPUoct2009 and related to improper AUTH_SESSKE 30 Oct 2009 03:32:09 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70629 SafeNet SoftRemote Local Buffer Overflow - Security Advisory - SOS-09-008 Release Date. 30-Oct-2009 Vendor Notification Date. 29 Oct 2009 23:17:03 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70628 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory D 29 Oct 2009 18:04:20 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70631 Mr full-disclosure, I cannot find: http://security.ubuntu.com/ubuntu/pool/main/p/poppler/libpoppler4_0.10.5-1ubuntu2.4_i386.deb I get the following: 29 Oct 2009 13:52:35 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70630 [ONSEC-09-020] Mura CMS root folder disclosure Objective: Mura CMS <= 5.1 Type: Disclosure of ways Threat: Medium Date Discovered: 22.09.2009 Dat 29 Oct 2009 13:38:37 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70627 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 29 Oct 2009 13:03:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70626 ======================================== 2WIRE REMOTE DENIAL OF SERVICE ======================================== 29 Oct 2009 10:18:38 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70624 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 29 Oct 2009 08:57:01 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70623 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 28 Oct 2009 14:13:30 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70615 ZDI-09-074: Multiple Vendor Hummingbird STR Service Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-074 October 28, 20 28 Oct 2009 14:08:22 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70619 Hi all, we've developed a Wireshark plugin that will allow you to view obfuscated pcaps of traffic from a Mariposa infected client and actually decry 28 Oct 2009 13:14:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70618 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 10.28.09 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 28, 2009 28 Oct 2009 12:42:18 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70614 Hijacking Opera's Native Page using malicious RSS payloads ---------------------------------------------------------------------------- --------- For 28 Oct 2009 06:55:47 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70613 """ > FRHACK: By Hackers, For Hackers! http://www.frhack.org ########################################################## FRHACK is the First Internat 28 Oct 2009 06:30:37 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70622 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 28 Oct 2009 02:39:18 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70620 ====================================================================== Secunia Research 28/10/2009 - Mozilla Firefox Floatin 28 Oct 2009 01:58:02 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70621 ________________________________________________________________________ McAfee multiple products - Generic PDF detection bypass __________ 27 Oct 2009 15:26:40 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70611 ________________________________________________________________________ F-SECURE multiple products - Generic PDF detection bypass ________ 27 Oct 2009 15:23:33 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70610 ________________________________________________________________________ Symantec multiple products - Generic PDF bypass _______________ 27 Oct 2009 15:19:08 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70609 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 27 Oct 2009 13:21:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70608 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ VMware Se 27 Oct 2009 12:39:08 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70607 Invalid #PF Exception Code in VMware can result in Guest Privilege Escalation ------------------------------------------------------------------------ 27 Oct 2009 12:15:31 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70606 Dear list readers, for unknown reason I decided to create very lame honeypot. I took WXP, enabled IIS and forwarded ports 80 and 135 (both TCP and UDP 27 Oct 2009 01:12:57 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70605 How to disable McAfee/NOD32/GDATA/Norton/AVG/Kaspersky/DrWeb ? !!!!! http://www.esiea-recherche.eu/data/pwn2rm.pdf"]http://www.esiea-recherche.eu/dat 27 Oct 2009 01:08:33 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70600 For the record : /usr/bin/shasum advisory.txt 9fefeeb9d3ebf7c6822961e59ae94cfb655bcd53 advisory.txt Regards, 26 Oct 2009 19:08:17 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70599 Asterisk Project Security Advisory - AST-2009-007 +------------------------------------------------------------------------+ | Product 26 Oct 2009 13:26:49 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70598 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 26 Oct 2009 12:37:31 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70603 Advisory -------- Date 2009-10-26 Program squidGuard URL http://squidguard.org/ Found by Matthieu BOUTHORS App 26 Oct 2009 11:09:58 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70597 Disclaimer: [.This code is for Educational Purposes , I would Not be responsible for any misuse of this code] [*] Download Page : http://www.cherokee 26 Oct 2009 06:03:03 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70604 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200910-03 - - - 25 Oct 2009 11:56:23 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70596 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 25 Oct 2009 09:24:59 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70602 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 25 Oct 2009 05:00:02 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70601 Jetty 6.x and 7.x Multiple Vulnerabilities Name Multiple Vulnerabilities in Jetty Systems Affected Jetty 7.0.0 and earlier versions 24 Oct 2009 15:30:48 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70595 Ladies and gentlemen, The PATRIOT act is a bill that has been rushed through congress. Our impulse reactions to a single attack caused up to jump an 24 Oct 2009 10:23:46 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70594 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 23 Oct 2009 17:19:04 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70593 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 23 Oct 2009 17:12:00 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70592 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA 23 Oct 2009 16:50:26 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70591 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 23 Oct 2009 16:31:02 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70590 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1 23 Oct 2009 08:58:04 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70589 http://risky.biz/metasploit_sold 22 Oct 2009 16:14:19 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70576 ============================================= - Date: October 22th, 2009 - Discovered by: Laurent Gaffié - Severity: Low ============================= 22 Oct 2009 14:56:52 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70575 =========================================================== Ubuntu Security Notice USN-850-2 October 22, 2009 poppler regression https://lau 22 Oct 2009 12:38:35 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70573 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200910-02 - - - 22 Oct 2009 12:09:24 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70572 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory D 22 Oct 2009 11:33:58 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70580 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advi 22 Oct 2009 10:04:01 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70571 debian:~# uname -a Linux debian 2.6.18-6-686 #1 SMP Thu Aug 20 21:56:59 UTC 2009 i686 GNU/Linux debian:~# cat /etc/issue Debian GNU/Linux 4.0 \n \l d 22 Oct 2009 09:35:53 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70582 Hi all, this message is for the Israeli community. :o) ×'ו×�ו לשתות ×'יר×' ×¢×� מנכ"ל SANS. תשל×-ו לי ×�ימייל ×�×� ×�ת×� ×¨× 22 Oct 2009 05:45:20 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70581 ************************************************************** Product: Everfocus EDR1600 Version affected: all Website: http://www.everfocus.com/ Dis 22 Oct 2009 02:48:27 -0800 http://www.gossamer-threads.com/lists/fulldisc/full-disclosure/70569