Bugtraq (bugtraq) Mailing List

Bugtraq (bugtraq) Mailing List http://seclists.org/#bugtraq The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently! en-us60 [USN-612-6] OpenVPN regressionPosted by Jamie Strandboge on May 14 http://seclists.org/bugtraq/2008/May/0168.htmlhttp://seclists.org/bugtraq/2008/May/0168.html Wed, 14 May 2008 16:20:25 -0400 [ GLSA 200805-16 ] OpenOffice.org: Multiple vulnerabilitiesPosted by Robert Buchholz on May 14 http://seclists.org/bugtraq/2008/May/0167.htmlhttp://seclists.org/bugtraq/2008/May/0167.html Wed, 14 May 2008 19:58:06 +0200 Correction to BID 29112 quotApache Server HTML Injection and UTF-7 XSS VulnerabilityquotPosted by William A. Rowe Jr. on May 14 http://seclists.org/bugtraq/2008/May/0166.htmlhttp://seclists.org/bugtraq/2008/May/0166.html Wed, 14 May 2008 12:28:23 -0500 Re: Cisco BBSM Captive Portal Cross-site ScriptingPosted by Eloy Paris on May 14 http://seclists.org/bugtraq/2008/May/0165.htmlhttp://seclists.org/bugtraq/2008/May/0165.html Wed, 14 May 2008 12:55:27 -0400 Cisco Security Advisory: Cisco Unified Presence Denial of Service VulnerabilitiesPosted by Cisco Systems Product Security Incident Response Team on May 14 http://seclists.org/bugtraq/2008/May/0164.htmlhttp://seclists.org/bugtraq/2008/May/0164.html Wednesday, 14 May 2008 11:15:00 -0500 Cisco Security Advisory: Cisco Content Switching Module Memory Leak VulnerabilityPosted by Cisco Systems Product Security Incident Response Team on May 14 http://seclists.org/bugtraq/2008/May/0163.htmlhttp://seclists.org/bugtraq/2008/May/0163.html Wed, 14 May 2008 10:56:24 -0400 [ GLSA 200805-15 ] libid3tag: Denial of ServicePosted by Tobias Heinlein on May 14 http://seclists.org/bugtraq/2008/May/0162.htmlhttp://seclists.org/bugtraq/2008/May/0162.html Wed, 14 May 2008 16:48:41 +0200 [USN-612-5] OpenSSH updatePosted by Jamie Strandboge on May 14 http://seclists.org/bugtraq/2008/May/0161.htmlhttp://seclists.org/bugtraq/2008/May/0161.html Wed, 14 May 2008 13:12:09 -0400 Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service VulnerabilitiesPosted by Cisco Systems Product Security Incident Response Team on May 14 http://seclists.org/bugtraq/2008/May/0160.htmlhttp://seclists.org/bugtraq/2008/May/0160.html Wednesday, 14 May 2008 11:15:00 -0500 CFP: European Conference on Computer Network DefensePosted by Stefano Zanero on May 14 http://seclists.org/bugtraq/2008/May/0159.htmlhttp://seclists.org/bugtraq/2008/May/0159.html Wed, 14 May 2008 15:49:22 +0200 [SECURITY] [DSA 1576-1] New openssh packages fix predictable randomnessPosted by Florian Weimer on May 14 http://seclists.org/bugtraq/2008/May/0158.htmlhttp://seclists.org/bugtraq/2008/May/0158.html Wed, 14 May 2008 11:24:56 +0200 [USN-612-4] ssl-cert vulnerabilityPosted by Kees Cook on May 14 http://seclists.org/bugtraq/2008/May/0157.htmlhttp://seclists.org/bugtraq/2008/May/0157.html Wed, 14 May 2008 02:12:20 -0700 Malformed Acrobat Distiller 8 .joboptionsPosted by Paul Craig on May 14 http://seclists.org/bugtraq/2008/May/0156.htmlhttp://seclists.org/bugtraq/2008/May/0156.html Wed, 14 May 2008 15:58:21 +1200 Microsoft Office Publisher PUB File Parsing Remote Memory Corruption VulnerabilityPosted by cocoruder on May 14 http://seclists.org/bugtraq/2008/May/0155.htmlhttp://seclists.org/bugtraq/2008/May/0155.html Wed, 14 May 2008 08:52:46 +0800 [SECURITY] [DSA 1577-1] New gforge packages fix insecure temporary filesPosted by Thijs Kinkhorst on May 14 http://seclists.org/bugtraq/2008/May/0154.htmlhttp://seclists.org/bugtraq/2008/May/0154.html Wed, 14 May 2008 17:33:52 +0200 (CEST) Cisco BBSM Captive Portal Cross-site ScriptingPosted by brad.antoniewicz_at_foundstone.com on May 13 http://seclists.org/bugtraq/2008/May/0153.htmlhttp://seclists.org/bugtraq/2008/May/0153.html 13 May 2008 19:44:51 -0000 [ GLSA 200805-14 ] Common Data Format library: User-assisted execution of arbitrary codePosted by Pierre-Yves Rofes on May 13 http://seclists.org/bugtraq/2008/May/0152.htmlhttp://seclists.org/bugtraq/2008/May/0152.html Tue, 13 May 2008 22:38:43 +0200 iDefense Security Advisory 05.13.08: Microsoft Word CSS Processing Memory Corruption VulnerabilityPosted by iDefense Labs on May 13 http://seclists.org/bugtraq/2008/May/0151.htmlhttp://seclists.org/bugtraq/2008/May/0151.html Tue, 13 May 2008 15:43:43 -0400 ZDI-08-023: Microsoft Office RTF Parsing Engine Memory Corruption VulnerabilityPosted by zdi-disclosures_at_3com.com on May 13 http://seclists.org/bugtraq/2008/May/0150.htmlhttp://seclists.org/bugtraq/2008/May/0150.html Tue, 13 May 2008 14:19:38 -0500 TPTI-08-04: Microsoft Office Jet Database Engine Column Parsing Stack Overflow VulnerabilityPosted by DVLabs on May 13 http://seclists.org/bugtraq/2008/May/0149.htmlhttp://seclists.org/bugtraq/2008/May/0149.html Tue, 13 May 2008 13:48:36 -0500