Articles / Red Hat

All articles tagged with Red Hat

August 24, 2009 14:16 Red Hat: Updated bind packages fix a security issue

0

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. A flaw was found in the way BIND handles dynamic update message packets containing the “ANY” record type. A remote attacker could use this flaw to send a specially-crafted dynamic update packet that could cause named to exit with an assertion failure. Updated packages are available from updates.redhat.com.

August 24, 2009 14:06 Red Hat: Updated python packages fix multiple security is...

0

Python is an interpreted, interactive, object-oriented programming language. When the assert() system call was disabled, an input sanitization flaw was revealed in the Python string object implementation that led to a buffer overflow. Multiple buffer and integer overflow flaws were found in the Python Unicode string processing and in the Python Unicode and string object implementations, leading to a denial of service. Multiple integer overflow flaws were found in the Python imageop module that could lead to a disclosure of sensitive information, crash or, potentially, execution of arbitrary code. Multiple integer underflow and overflow flaws were found in the Python snprintf() wrapper implementation that could be used to cause a denial of service. Multiple integer overflow flaws were found in various Python modules that could be used to cause a denial of service. Updated packages are available from updates.redhat.com.

August 24, 2009 14:04 Red Hat: Updated python packages fix multiple security is...

0

Python is an interpreted, interactive, object-oriented programming language. When the assert() system call was disabled, an input sanitization flaw was revealed in the Python string object implementation that led to a buffer overflow. Multiple buffer and integer overflow flaws were found in the Python Unicode string processing and in the Python Unicode and string object implementations, leading to a denial of service. Multiple integer overflow flaws were found in the Python imageop module that could lead to a disclosure of sensitive information, crash or, potentially, execution of arbitrary code. Multiple integer underflow and overflow flaws were found in the Python snprintf() wrapper implementation that could be used to cause a denial of service. Multiple integer overflow flaws were found in various Python modules that could be used to cause a denial of service. An integer signedness error, leading to a buffer overflow, was found in the Python zlib extension module leading to the execution of arbitrary code. Updated packages are available from updates.redhat.com.

August 24, 2009 13:30 Red Hat: Updated python packages fix multiple security is...

0

Python is an interpreted, interactive, object-oriented programming language. When the assert() system call was disabled, an input sanitization flaw was revealed in the Python string object implementation that led to a buffer overflow. Multiple buffer and integer overflow flaws were found in the Python Unicode string processing and in the Python Unicode and string object implementations, leading to a denial of service. Multiple integer overflow flaws were found in the Python imageop module that could lead to a disclosure of sensitive information, crash or, potentially, execution of arbitrary code. Multiple integer underflow and overflow flaws were found in the Python snprintf() wrapper implementation that could be used to cause a denial of service. Multiple integer overflow flaws were found in various Python modules that could be used to cause a denial of service. An integer signedness error, leading to a buffer overflow, was found in the Python zlib extension module leading to the execution of arbitrary code. A flaw was discovered in the strxfrm() function of the Python locale module, which could possibly cause disclosure of data stored in the memory of a Python application using this function. Updated packages are available from updates.redhat.com.

August 14, 2009 13:37 Red Hat: Updated tomcat packages fix several security issues

0

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. It was discovered that request dispatchers did not properly normalize user requests that have trailing query strings, allowing remote attackers to send specially-crafted requests that would cause an information leak. A flaw was found in the way the Tomcat AJP (Apache JServ Protocol) connector processes AJP connections. An attacker could use this flaw to send specially-crafted requests that would cause a temporary denial of service. It was discovered that the error checking methods of certain authentication classes did not have sufficient error checking, allowing remote attackers to enumerate (via brute force methods) usernames registered with applications running on Tomcat when FORM-based authentication was used. A cross-site scripting (XSS) flaw was found in the examples calendar application. With some web browsers, remote attackers could use this flaw to inject arbitrary web script or HTML via the “time” parameter. It was discovered that web applications containing their own XML parsers could replace the XML parser Tomcat uses to parse configuration files. A malicious web application running on a Tomcat instance could read or, potentially, modify the configuration and XML-based data of other web applications deployed on the same Tomcat instance. Updated packages are available from updates.redhat.com.

August 14, 2009 13:35 Red Hat: Updated seamonkey packages fix several security ...

0

SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey. Updated packages are available from updates.redhat.com.

August 14, 2009 13:34 Red Hat: Updated firefox packages fix several security is...

0

Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. Several flaws were found in the way Firefox handles malformed JavaScript code. A website containing malicious content could launch a cross-site scripting (XSS) attack or execute arbitrary JavaScript with the permissions of another website. Updated packages are available from updates.redhat.com.

August 14, 2009 13:00 Red Hat: Updated libtiff packages fix several security is...

0

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Several integer overflow flaws, leading to heap-based buffer overflows, were found in various libtiff color space conversion tools. An attacker could create a specially-crafted TIFF file, which once opened by an unsuspecting user, would cause the conversion tool to crash or, potentially, execute arbitrary code with the privileges of the user running the tool. A buffer underwrite flaw was found in libtiff’s Lempel-Ziv-Welch (LZW) compression algorithm decoder. An attacker could create a specially-crafted LZW-encoded TIFF file, which once opened by an unsuspecting user, would cause an application linked with libtiff to access an out-of-bounds memory location, leading to a denial of service (application crash). Updated packages are available from updates.redhat.com.

August 14, 2009 12:47 SuSE: New dhcp-client packages fix remote code execution

0

The DHCP client (dhclient) could be crashed by a malicious DHCP server sending an overlong subnet field. In theory a malicious DHCP server could exploit the flaw to execute arbitrary code as root on machines using dhclient to obtain network settings. Updated packages are available from download.opensuse.org.

August 14, 2009 12:44 Red Hat: Updated kernel-rt packages fix several security ...

0

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the Intel PRO/1000 network driver which could be used to send a specially-crafted packet that would cause a denial of service or code execution. Michael Tokarev reported a flaw in the Realtek r8169 Ethernet driver which could lead to a remote denial of service or code execution. Several flaws were found in the way the CIFS implementation handles Unicode strings, possibly leading to a denial of service or privilege escalation on the client mounting the CIFS share. Frank Filz reported the NFSv4 client was missing a file permission check for the execute bit in some situations, which could allow local, unprivileged users to run non-executable files on NFSv4 mounted file systems. A deadlock flaw was found in the Linux kernel splice implementation, possibly leading to a partial denial of service on the file system partition where the deadlock occurs. Updated packages are available from updates.redhat.com.

August 14, 2009 12:33 Red Hat: Updated httpd packages that fix multiple securit...

0

The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. A denial of service flaw was found in the Apache mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file. A flaw was found in the handling of the “Options” and “AllowOverride” directives used by the Apache HTTP Server. In configurations using the “AllowOverride” directive with certain “Options=” arguments, local users were not restricted from executing commands from a Server-Side-Include script as intended. Updated packages are available from updates.redhat.com.

August 14, 2009 12:30 Red Hat: Updated dhcp packages fix a security issue

0

The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The Mandriva Linux Engineering Team discovered a stack-based buffer overflow flaw in the ISC DHCP client. If the DHCP client were to receive a malicious DHCP response, it could crash or execute arbitrary code with the permissions of the client (root). Updated packages are available from updates.redhat.com.

August 14, 2009 09:47 Debian: New sork-passwd-h3 packages fix cross-site scripting

0

It was discovered that sork-passwd-h3, a Horde3 module for users to change their password, is prone to a cross-site scripting attack via the backend parameter. Updated packages are available from security.debian.org.

August 14, 2009 09:46 Red Hat: Updated httpd packages fix two security issues

0

The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. A denial of service flaw was found in the Apache mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file. Updated packages are available from updates.redhat.com.

August 14, 2009 09:34 Red Hat: Updated ruby packages fix multiple security issues

0

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to do system management tasks. A flaw was found in the way the Ruby POP module processed certain APOP authentication requests. By sending certain responses when the Ruby APOP module attempted to authenticate using APOP against a POP server, a remote attacker could, potentially, acquire certain portions of a user’s authentication credentials. It was discovered that Ruby did not properly check the return value when verifying X.509 certificates. This could, potentially, allow a remote attacker to present an invalid X.509 certificate, and have Ruby treat it as valid. A flaw was found in the way Ruby converted BigDecimal objects to Float numbers. If an attacker were able to provide certain input for the BigDecimal object converter, they could crash an application using this class. Updated packages are available from updates.redhat.com.

August 14, 2009 09:32 Red Hat: Updated pidgin packages fix one security issue

0

Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. The AOL Open System for CommunicAtion in Realtime (OSCAR) protocol is used by the AOL ICQ and AIM instant messaging systems. A denial of service flaw was found in the Pidgin OSCAR protocol implementation. If a remote ICQ user sent a web message to a local Pidgin user using this protocol, it would cause excessive memory usage, leading to a denial of service (Pidgin crash). Updated packages are available from updates.redhat.com.

August 14, 2009 09:31 Red Hat: Updated openswan packages fix multiple security ...

0

Openswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). Multiple insufficient input validation flaws were found in the way Openswan’s pluto IKE daemon processed some fields of X.509 certificates. A remote attacker could provide a specially-crafted X.509 certificate that would crash the pluto daemon. Updated packages are available from updates.redhat.com.

August 14, 2009 09:26 Red Hat: Updated seamonkey packages fix a security issue

0

SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way that SeaMonkey parsed malformed HTML mail messages. If a user opened a specially-crafted HTML mail message, it could cause SeaMonkey to crash or, possibly, to execute arbitrary code as the user running SeaMonkey. Updated packages are available from updates.redhat.com.

August 14, 2009 09:23 Red Hat: Updated kernel packages fix several security issues

0

The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the Intel PRO/1000 network driver. A remote attacker could use this flaw to send a specially-crafted packet that would cause a denial of service. The Network File System daemon (nfsd) implementation did not drop the CAP_MKNOD capability when handling requests from local, unprivileged users, which could possibly lead to an information leak or privilege escalation. Frank Filz reported the NFSv4 client was missing a file permission check for the execute bit in some situations, which could allow local, unprivileged users to run non-executable files on NFSv4 mounted file systems. A missing check was found in the hypervisor_callback() function, which could cause a denial of service of a 32-bit guest. A flaw was found in the AGPGART driver, which could possibly lead to an information leak. Updated packages are available from updates.redhat.com.

August 14, 2009 09:21 Red Hat: Updated kdelibs packages fix multiple security i...

0

The kdelibs packages provide libraries for the K Desktop Environment (KDE). A flaw was found in the way the KDE CSS parser handled content for the CSS “style” attribute. A remote attacker could create a specially-crafted CSS equipped HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. A flaw was found in the way the KDE HTML parser handled content for the HTML “head” element. A remote attacker could create a specially-crafted HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the KDE JavaScript garbage collector handled memory allocation requests. A remote attacker could create a specially-crafted HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. Updated packages are available from updates.redhat.com.

August 14, 2009 09:19 Red Hat: Updated kdegraphics packages fix two security is...

0

The kdegraphics packages contain applications for the K Desktop Environment (KDE). A use-after-free flaw was found in the KDE KSVG animation element implementation. A remote attacker could create a specially-crafted SVG image, which once opened by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. A NULL pointer dereference flaw was found in the KDE, KSVG SVGList interface implementation. A remote attacker could create a specially-crafted SVG image, which once opened by an unsuspecting user, would cause memory corruption, leading to a denial of service (Konqueror crash). Updated packages are available from updates.redhat.com.

August 14, 2009 09:18 Red Hat: Updated kdelibs packages fix one security issue

0

The kdelibs packages provide libraries for the K Desktop Environment (KDE). A flaw was found in the way the KDE CSS parser handled content for the CSS “style” attribute. A remote attacker could create a specially-crafted CSS equipped HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. Updated packages are available from updates.redhat.com.

July 07, 2009 09:54 Red Hat: Updated kdelibs packages fix one security issue

0

The kdelibs packages provide libraries for the K Desktop Environment (KDE). A flaw was found in the way the KDE CSS parser handled content for the CSS “style” attribute. A remote attacker could create a specially-crafted CSS equipped HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. Updated packages are available from updates.redhat.com.

July 07, 2009 09:53 Red Hat: An updated thunderbird package fixes several sec...

0

Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user running Thunderbird. Several flaws were found in the way malformed HTML mail content was processed. An HTML mail message containing malicious content could execute arbitrary JavaScript in the context of the mail message, possibly presenting misleading data to the user, or stealing sensitive information such as login credentials. A flaw was found in the way Thunderbird handled error responses returned from proxy servers. If an attacker is able to conduct a man-in-the-middle attack against a Thunderbird instance that is using a proxy server, they may be able to steal sensitive information from the site Thunderbird is displaying. Updated packages are available from updates.redhat.com.

July 07, 2009 09:51 Red Hat: An updated thunderbird package fixes several sec...

0

Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user running Thunderbird. Several flaws were found in the way malformed HTML mail content was processed. An HTML mail message containing malicious content could execute arbitrary JavaScript in the context of the mail message, possibly presenting misleading data to the user, or stealing sensitive information such as login credentials. Updated packages are available from updates.redhat.com.

July 07, 2009 09:50 Red Hat: Updated gstreamer-plugins-good packages fix mult...

0

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. GStreamer Good Plug-ins is a collection of well-supported, good quality GStreamer plug-ins. Multiple integer overflow flaws, that could lead to a buffer overflow, were found in the GStreamer Good Plug-ins PNG decoding handler. An attacker could create a specially-crafted PNG file that would cause an application using the GStreamer Good Plug-ins library to crash or, potentially, execute arbitrary code as the user running the application when parsed. Updated packages are available from updates.redhat.com.

July 07, 2009 09:50 Red Hat: Updated net-snmp packages fix a security issue

0

The Simple Network Management Protocol (SNMP) is a protocol used for network management. A divide-by-zero flaw was discovered in the snmpd daemon. A remote attacker could issue a specially-crafted GETBULK request that could crash the snmpd daemon. Updated packages are available from updates.redhat.com.

July 07, 2009 09:49 Red Hat: Updated icu packages that fix a security issue

0

The International Components for Unicode (ICU) library provides robust and full-featured Unicode services. A flaw was found in the way ICU processed certain, invalid byte sequences during Unicode conversion. If an application used ICU to decode malformed, multibyte character data, it may have been possible to bypass certain content protection mechanisms, or display information in a manner misleading to the user. Updated packages are available from updates.redhat.com.

July 07, 2009 09:46 Red Hat: Updated cyrus-imapd packages fix a security issue

0

The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. It was discovered that the Cyrus SASL library (cyrus-sasl) does not always reliably terminate output from the sasl_encode64() function used by programs using this library. The Cyrus IMAP server (cyrus-imapd) relied on this function’s output being properly terminated. Under certain conditions, improperly terminated output from sasl_encode64() could, potentially, cause cyrus-imapd to crash, disclose portions of its memory, or lead to SASL authentication failures. Updated packages are available from updates.redhat.com.

July 02, 2009 10:17 Red Hat: Updated acroread packages fix multiple security ...

0

Adobe Reader allows users to view and print documents in Portable Document Format (PDF). Multiple security flaws were discovered in Adobe Reader. A specially crafted PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. Updated packages are available from updates.redhat.com.

Screenshot

Project Spotlight

JFreeSVG

A fast, lightweight SVG generator for Java.

Screenshot

Project Spotlight

PHP MIME Mail decoder class

A PHP class to decode email messages.