Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Dec 29, 2002

  • Gentoo Linux Advisory: cyrus-sasl (2002-12-29 00:05:39)
    "'Insufficient buffer length checking in user name canonicalization may allow attacker to execute arbitrary code on servers using Cyrus SASL library...'"

  • Debian GNU/Linux Advisory: typespeed (2002-12-29 00:04:40)
    "A problem has been discovered in the typespeed, a game that lets you measure your typematic speed. By overflowing a buffer a local attacker could execute arbitrary commands under the group id games..."

  • Conectiva Linux Advisory: cyrus-imapd (2002-12-29 00:03:25)
    "Timo Sirainen discovered a remotely exploitable pre-login buffer overflow in cyrus imapd. The problem resides in the way memory is managed (an integer overflow can cause less memory than needed to be allocated)..."