The just released latest version of OpenOffice.org 3.1.1 for Windows
distributes (once again) a completely outdated and vulnerable MSVC++
runtime.
The unpacked installation archive contains in subdirectory \REDIST\
the installer of the Microsoft Visual C++ 2008 Redistributable,
VCRedist_x86.exe,
==
Secunia Research 01/09/2009
- OpenOffice.org Word Document Table Parsing Integer Underflow -
==
Table of Contents
Affected
==
Secunia Research 01/09/2009
- OpenOffice.org Word Document Table Parsing Buffer Overflow -
==
Table of Contents
Affected
Thought Drupal was open source and non-profit? Not anymore.
This brings back memories of when Mambo and Joomla split.
If you want to build a website based around this GPL+MIT framework,
you should read the fine print. For your convenience of course,
it's governed by the laws and regulations of
SEC Consult Security Advisory 20090901-0
===
title: File disclosure vulnerability in JSFTemplating,
Mojarra Scales and GlassFish Application Server v3 Admin
console
Pwning Opera Unite with Inferno's Eleven
Complete Post at
http://securethoughts.com/2009/08/pwning-opera-unite-with-infernos-eleven/
Opera Unite, the upcoming version of the Opera browser has a strong vision
to change how we look at the web. For those who
BLUE MOON SECURITY ADVISORY 2009-06
===
:Title: Remote code execution in BKAV eOffice
:Severity: Critical
:Reporter: Blue Moon Consulting
:Products: eOffice v5.1.5
:Fixed in: --
Description
---
We could not find out the definitive description for eOffice
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2009:197
http://www.mandriva.com/security/
dru...@hush.com wrote:
Thought Drupal was open source and non-profit? Not anymore.
This seems like a relatively minor issue. I thought the fact that it is
written by newbs in PHP (if they weren't newbs they wouldn't still be coding
php) and therefore a remote root server would be enough to keep
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-1876-1 secur...@debian.org
http://www.debian.org/security/ Florian Weimer
September 01, 2009
Which version of nipper will you be using? 0.10.x or 0.12.6?
Which one is not governed by the new Titania license?
Sent from my Verizon Wireless BlackBerry
___
Full-Disclosure - We believe in it.
Charter:
===
Ubuntu Security Notice USN-827-1 September 01, 2009
dnsmasq vulnerabilities
CVE-2009-2957, CVE-2009-2958
===
A security issue affects the following Ubuntu releases:
Ubuntu
Which version of nipper will you be using? 0.10.x or 0.12.6?
Which one is not governed by the new Titania license?
Sent from my Verizon Wireless BlackBerry
___
Full-Disclosure - We believe in it.
Charter:
===
Ubuntu Security Notice USN-810-2 September 02, 2009
nss regression
https://launchpad.net/bugs/409864
===
A security issue affects the following Ubuntu releases:
Ubuntu 8.04
14 matches
Mail list logo