Советы по безопасности за 2007 год

[29.12.2007] DSA-1442 libsndfile - переполнение буфера
[28.12.2007] DSA-1441 peercast - buffer overflow
[28.12.2007] DSA-1440 inotify-tools - buffer overflow
[28.12.2007] DSA-1439 typo3-src - missing input sanitising
[28.12.2007] DSA-1438 tar - several vulnerabilities
[26.12.2007] DSA-1437 cupsys - several vulnerabilities
[20.12.2007] DSA-1436 linux-2.6 - several vulnerabilities
[19.12.2007] DSA-1435 clamav - several vulnerabilities
[16.12.2007] DSA-1434 mydns - buffer overflow
[16.12.2007] DSA-1433 centericq - переполнение буфера
[16.12.2007] DSA-1432 link-grammar - buffer overflow
[11.12.2007] DSA-1431 ruby-gnome2 - format string
[11.12.2007] DSA-1430 libnss-ldap - denial of service
[11.12.2007] DSA-1429 htdig - cross site scripting
[11.12.2007] DSA-1428 linux-2.6 - several vulnerabilities
[10.12.2007] DSA-1427 samba - buffer overflow
[08.12.2007] DSA-1426 qt-x11-free - several vulnerabilities
[08.12.2007] DSA-1425 xulrunner - several vulnerabilities
[08.12.2007] DSA-1424 iceweasel - several vulnerabilities
[07.12.2007] DSA-1423 sitebar - several vulnerabilities
[07.12.2007] DSA-1422 e2fsprogs - integer overflows
[06.12.2007] DSA-1421 wesnoth - directory traversal
[05.12.2007] DSA-1420 zabbix - ошибка программирования
[05.12.2007] DSA-1419 openoffice.org - programming error
[02.12.2007] DSA-1418 cacti - отсутствие очистки ввода
[02.12.2007] DSA-1417 asterisk - missing input sanitising
[27.11.2007] DSA-1416 tk8.3 - buffer overflow
[27.11.2007] DSA-1415 tk8.4 - buffer overflow
[27.11.2007] DSA-1414 wireshark - several vulnerabilities
[26.11.2007] DSA-1413 mysql - multiple vulnerabilities
[24.11.2007] DSA-1412 ruby1.9 - programming error
[24.11.2007] DSA-1411 libopenssl-ruby - programming error
[24.11.2007] DSA-1410 ruby1.8 - programming error
[29.11.2007] DSA-1409 samba - several vulnerabilities
[21.11.2007] DSA-1408 kdegraphics - переполнение буфера
[18.11.2007] DSA-1407 cupsys - buffer overflow
[09.11.2007] DSA-1406 horde3 - several vulnerabilities
[09.11.2007] DSA-1405 zope-cmfplone - отсутствие очистки ввода
[08.11.2007] DSA-1404 gallery2 - programming error
[08.11.2007] DSA-1403 phpmyadmin - missing input sanitising
[07.11.2007] DSA-1402 gforge - insecure temporary files
[05.11.2007] DSA-1401 iceape - several vulnerabilities
[06.11.2007] DSA-1400 perl - heap overflow
[05.11.2007] DSA-1399 pcre3 - several vulnerabilities
[05.11.2007] DSA-1398 perdition - format string error
[03.11.2007] DSA-1397 mono - переполнение буфера
[27.10.2007] DSA-1396 iceweasel - several vulnerabilities
[25.10.2007] DSA-1395 xen-utils - insecure temporary files
[23.10.2007] DSA-1394 reprepro - authentication bypass
[23.10.2007] DSA-1393 xfce4-terminal - insecure execution
[20.10.2007] DSA-1392 xulrunner - several vulnerabilities
[19.10.2007] DSA-1391 icedove - several vulnerabilities
[18.10.2007] DSA-1390 t1lib - buffer overflow
[18.10.2007] DSA-1389 zoph - отсутствие очистки ввода
[29.10.2007] DSA-1388 dhcp - buffer overflow
[15.10.2007] DSA-1387 librpcsecgss - buffer overflow
[15.10.2007] DSA-1386 wesnoth - programming error
[09.10.2007] DSA-1385 xfs - several vulnerabilities
[05.10.2007] DSA-1384 xen-utils - several vulnerabilities
[04.10.2007] DSA-1383 gforge - cross site scripting
[01.10.2007] DSA-1382 quagga - null pointer dereference
[02.10.2007] DSA-1381 linux-2.6 - several vulnerabilities
[02.10.2007] DSA-1380 elinks - ошибка программирования
[02.10.2007] DSA-1379 openssl - off-by-one error/buffer overflow
[28.09.2007] DSA-1378 linux-2.6 - several vulnerabilities
[21.09.2007] DSA-1377 fetchmail - null pointer dereference
[21.09.2007] DSA-1376 kdebase - ошибка программирования
[17.09.2007] DSA-1375 openoffice.org - buffer overflow
[11.09.2007] DSA-1374 jffnms - several vulnerabilities
[11.09.2007] DSA-1373 ktorrent - directory traversal
[09.09.2007] DSA-1372 xorg-server - переполнение буфера
[11.09.2007] DSA-1371 phpwiki - several vulnerabilities
[09.09.2007] DSA-1370 phpmyadmin - several vulnerabilities
[06.09.2007] DSA-1369 gforge - отсутствуие очистки ввода
[04.09.2007] DSA-1368 librpcsecgss - переполнение буфера
[04.09.2007] DSA-1367 krb5 - переполнение буфера
[01.09.2007] DSA-1366 clamav - several vulnerabilities
[02.10.2007] DSA-1365 id3lib3.8.3 - programming error
[19.09.2007] DSA-1364 vim - several vulnerabilities
[31.08.2007] DSA-1363 linux-2.6 - several vulnerabilities
[29.08.2007] DSA-1362 lighttpd - several vulnerabilities
[29.08.2007] DSA-1361 postfix-policyd - buffer overflow
[28.08.2007] DSA-1360 rsync - переполнение буфера
[28.08.2007] DSA-1359 dovecot - directory traversal
[26.08.2007] DSA-1358 asterisk - several vulnerabilities
[19.08.2007] DSA-1357 koffice - integer overflow
[15.08.2007] DSA-1356 linux-2.6 - several vulnerabilities
[13.08.2007] DSA-1355 kdegraphics - integer overflow
[13.08.2007] DSA-1354 gpdf - integer overflow
[11.08.2007] DSA-1353 tcpdump - integer overflow
[07.08.2007] DSA-1352 pdfkit.framework - integer overflow
[07.08.2007] DSA-1351 bochs - buffer overflow
[06.08.2007] DSA-1350 tetex-bin - integer overflow
[05.08.2007] DSA-1349 libextractor - integer overflow
[04.08.2007] DSA-1348 poppler - integer overflow
[04.08.2007] DSA-1347 xpdf - переполнение целых чисел
[04.08.2007] DSA-1346 iceape - several vulnerabilities
[04.08.2007] DSA-1345 xulrunner - several vulnerabilities
[03.08.2007] DSA-1344 iceweasel - several vulnerabilities
[31.07.2007] DSA-1343 file - переполнение целых чисел
[30.07.2007] DSA-1342 xfs - race condition
[25.07.2007] DSA-1341 bind9 - design error
[24.07.2007] DSA-1340 clamav - null pointer dereference
[23.07.2007] DSA-1339 iceape - several vulnerabilities
[23.07.2007] DSA-1338 iceweasel - several vulnerabilities
[22.07.2007] DSA-1337 xulrunner - several vulnerabilities
[22.07.2007] DSA-1336 mozilla-firefox - several vulnerabilities
[18.07.2007] DSA-1335 gimp - several vulnerabilities
[18.07.2007] DSA-1334 freetype - переполнение целых чисел
[18.07.2007] DSA-1333 libcurl3-gnutls - отсутствие проверки ввода
[09.07.2007] DSA-1332 vlc - several vulnerabilities
[07.07.2007] DSA-1331 php4 - several vulnerabilities
[07.07.2007] DSA-1330 php5 - several vulnerabilities
[05.07.2007] DSA-1329 gfax - insecure temporary files
[01.07.2007] DSA-1328 unicon-imc2 - переполнение буфера
[01.07.2007] DSA-1327 gsambad - небезопасные временные файлы
[01.07.2007] DSA-1326 fireflier-server - insecure temporary files
[29.06.2007] DSA-1325 evolution - several vulnerabilities
[28.06.2007] DSA-1324 hiki - отсутствие очистки ввода
[28.06.2007] DSA-1323 krb5 - several vulnerabilities
[27.06.2007] DSA-1322 wireshark - several vulnerabilities
[23.06.2007] DSA-1321 evolution-data-server - programming error
[23.06.2007] DSA-1320 clamav - several vulnerabilities
[23.06.2007] DSA-1319 maradns - memory leaks
[22.06.2007] DSA-1318 ekg - several vulnerabilities
[23.06.2007] DSA-1317 tinymux - переполнение буфера
[21.06.2007] DSA-1316 emacs21 - отказ в обслуживании
[21.06.2007] DSA-1315 libphp-phpmailer - missing input validation
[19.06.2007] DSA-1314 open-iscsi - several vulnerabilities
[19.06.2007] DSA-1313 mplayer - buffer overflow
[18.06.2007] DSA-1312 libapache-mod-jk - programming error
[17.06.2007] DSA-1311 postgresql-7.4 - programming error
[16.06.2007] DSA-1310 libexif - переполнение целых чисел
[16.06.2007] DSA-1309 postgresql-8.1 - programming error
[14.06.2007] DSA-1308 iceweasel - several vulnerabilities
[12.06.2007] DSA-1307 openoffice.org - heap overflow
[12.06.2007] DSA-1306 xulrunner - several vulnerabilities
[13.06.2007] DSA-1305 icedove - several vulnerabilities
[16.06.2007] DSA-1304 kernel-source-2.6.8 - several vulnerabilities
[10.06.2007] DSA-1303 lighttpd - denial of service
[10.06.2007] DSA-1302 freetype - переполнение целых чисел
[09.06.2007] DSA-1301 gimp - buffer overflow
[07.06.2007] DSA-1300 iceape - several vulnerabilities
[07.06.2007] DSA-1299 ipsec-tools - отсутствие очистки ввода
[28.05.2007] DSA-1298 otrs2 - отсутствие очистки ввода
[24.05.2007] DSA-1297 gforge-plugin-scmcvs - missing input sanitising
[21.05.2007] DSA-1296 php4 - missing input sanitising
[19.05.2007] DSA-1295 php5 - several vulnerabilities
[17.05.2007] DSA-1294 xfree86 - several vulnerabilities
[17.05.2007] DSA-1293 quagga - out of boundary read
[15.05.2007] DSA-1292 qt4-x11 - missing input validation
[15.05.2007] DSA-1291 samba - several vulnerabilities
[13.05.2007] DSA-1290 squirrelmail - missing input sanitising
[13.05.2007] DSA-1289 linux-2.6 - several vulnerabilities
[08.05.2007] DSA-1288 pptpd - programming error
[07.05.2007] DSA-1287 ldap-account-manager - multiple vulnerabilities
[02.05.2007] DSA-1286 linux-2.6 - several vulnerabilities
[01.05.2007] DSA-1285 wordpress - several vulnerabilities
[01.05.2007] DSA-1284 qemu - several vulnerabilities
[29.04.2007] DSA-1283 php5 - several vulnerabilities
[26.04.2007] DSA-1282 php4 - several vulnerabilities
[25.04.2007] DSA-1281 clamav - several vulnerabilities
[24.04.2007] DSA-1280 aircrack-ng - buffer overflow
[22.04.2007] DSA-1279 webcalendar - missing input sanitising
[06.04.2007] DSA-1278 man-db - buffer overflow
[04.04.2007] DSA-1277 XMMS - several vulnerabilities
[03.04.2007] DSA-1276 krb5 - several vulnerabilities
[02.04.2007] DSA-1275 zope2.7 - cross-site scripting
[02.04.2007] DSA-1274 file - buffer overflow
[27.03.2007] DSA-1273 nas - several vulnerabilities
[22.03.2007] DSA-1272 tcpdump - buffer overflow
[20.03.2007] DSA-1271 openafs - design error
[20.03.2007] DSA-1270 openoffice.org - several vulnerabilities
[18.03.2007] DSA-1269 lookup-el - insecure temporary file
[17.03.2007] DSA-1268 libwpd - integer overflow
[15.03.2007] DSA-1267 webcalendar - отсутствие очистки ввода
[13.03.2007] DSA-1266 gnupg - several vulnerabilities
[10.03.2007] DSA-1265 mozilla - several vulnerabilities
[07.03.2007] DSA-1264 php4 - several vulnerabilities
[06.03.2007] DSA-1263 clamav - several vulnerabilities
[04.03.2007] DSA-1262 gnomemeeting - format string
[15.02.2007] DSA-1261 postgresql - several vulnerabilities
[14.02.2007] DSA-1260 imagemagick - buffer overflow
[14.02.2007] DSA-1259 fetchmail - programming error
[07.02.2007] DSA-1258 mozilla-thunderbird - several vulnerabilities
[05.02.2007] DSA-1257 samba - several vulnerabilities
[31.01.2007] DSA-1256 gtk+2.0 - programming error
[31.01.2007] DSA-1255 libgtop2 - buffer overflow
[27.01.2007] DSA-1254 bind9 - insufficient input sanitising
[27.01.2007] DSA-1253 mozilla-firefox - several vulnerabilities
[27.01.2007] DSA-1252 vlc - format string
[21.01.2007] DSA-1251 netrick - insufficient escaping
[17.01.2007] DSA-1250 cacti - missing input sanitising
[15.01.2007] DSA-1249 xfree86 - several vulnerabilities
[12.01.2007] DSA-1248 libsoup - missing input sanitising
[08.01.2007] DSA-1247 libapache-mod-auth-kerb - heap overflow
[08.01.2007] DSA-1246 openoffice.org - переполнение буфера
[07.01.2007] DSA-1245 proftpd - programming error

Вы можете получать последние анонсы о безопасности в Debian, подписавшись на список рассылки debian-security-announce. Архив списка рассылки доступен здесь.