Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Aug 07, 2002

  • Conectiva Linux Advisory: krb5 (2003-05-05 20:27:01)
    "Nalin Dahyabhai discovered buffer overrun and underrun problems in the code that handles Kerberos principal names..."

  • EnGarde Secure Linux Advisory: openssl, openssl-misc (2002-08-07 21:31:14)
    "This update adds some fixes from OpenSSL's CVS which corrects the implementation of the recent ASN.1 parsing vulnerability fixes..."

  • Conectiva Linux Advisory: krb5 (2002-08-07 21:29:19)
    "There is a vulnerability present in the remote administration service, 'kadmind', that could potentially be used by an attacker to execute arbitrary commands with administrator privileges..."

  • Debian GNU/Linux Advisory: tinyproxy (2002-08-07 21:29:12)
    " The authors of tinyproxy, a lightweight HTTP proxy, discovered a bug in the handling of some invalid proxy requests. Under some circumstances, an invalid request may result in a allocated memory being freed twice..."

  • eWeek: Flaw Affects Solaris, Linux, Mac OS X (2002-08-07 14:30:25)
    "There is a buffer overflow in the 'xdr_array' function in the Sun library, and therefore in the numerous libraries derived from it that other vendors have implemented in their applications..."

  • ZDNet UK: Old Game Machine Turned into Linux Hacker Tool (2002-08-07 09:00:57)
    "Security researchers at the Defcon hacker conference turn Dreamcast consoles and other innocuous gadgets into stealthy [Linux-based] network monitoring devices..."