oss-security March 2012 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: By Author

oss-security By Author

AuthorSubject Date
Adam D. Barratt
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE request: XML::Atom Perl module04 Mar 2012
Andreas Ericsson
 Re: [oss-security] CVE Requests19 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
Andres Gomez
 Re: [oss-security] Re: TORCS 1.3.2 xml buffer overflow - CVE-2012-118909 Mar 2012
 Re: [oss-security] Re: TORCS 1.3.2 xml buffer overflow - CVE-2012-118906 Mar 2012
 [oss-security] Re: TORCS 1.3.2 xml buffer overflow - CVE-2012-118905 Mar 2012
Andrew Alexeev
 [oss-security] CVE Request: nginx fix for malformed HTTP responses from upstream servers15 Mar 2012
ArkanoiD
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls09 Mar 2012
Dan Rosenberg
 [oss-security] Android CVE identifiers15 Mar 2012
Daniel Kahn Gillmor
 [oss-security] CVE-request: apache's mod-fcgid does not respect configured FcgidMaxProcessesPerClass in VirtualHost15 Mar 2012
David Black
 [oss-security] CVE request for bitlebee19 Mar 2012
David Hicks
 Re: [oss-security] CVE request: mantisbt before 1.2.906 Mar 2012
David Jorm
 [oss-security] CVE request: Struts2 xsltResult local code execution flaw28 Mar 2012
Dmitry Butskoy
 [oss-security] Re: CVE Request -- LDAP Account Manager Pro / PhpLDAPadmin -- Multiple XSS flaws06 Mar 2012
Eric Leblond
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls09 Mar 2012
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls09 Mar 2012
Eugene Teo
 Re: [oss-security] CVE request -- kernel: execshield: predictable ascii armour base address20 Mar 2012
 Re: [oss-security] CVE Requests19 Mar 2012
 [oss-security] CVE-2011-3593 kernel: vlan: fix panic when handling priority tagged frames05 Mar 2012
 [oss-security] CVE-2011-4348 kernel: incomplete fix for CVE-2011-248205 Mar 2012
 [oss-security] CVE-2012-1097 kernel: regset: Prevent null pointer reference on readonly regsets05 Mar 2012
Florian Weimer
 Re: [oss-security] postgresql-jdbc 8.1 SQL injection with postgresql server 9.130 Mar 2012
 [oss-security] CVE request: TYPO3-CORE-SA-2012-00129 Mar 2012
 Re: [oss-security] Interesting blog entry - Finding v6 hosts by efficiently mapping ip6.arpa29 Mar 2012
 [oss-security] CVE request: quake3 reflective DoS26 Mar 2012
 Re: [oss-security] CVE request: notmuch05 Mar 2012
 Re: [oss-security] CVE Request: XML entity expansion in the XML::Atom Perl module04 Mar 2012
 [oss-security] CVE Request: XML entity expansion in the XML::Atom Perl module04 Mar 2012
Greg Knaddison
 Re: [oss-security] Re: [security] Drupal CORE and Drupal Contrib20 Mar 2012
 [oss-security] Re: [security] Drupal CORE and Drupal Contrib16 Mar 2012
Hanno Böck
 Re: [oss-security] CVE request: egroupware before 1.8.002 various security issues29 Mar 2012
 [oss-security] CVE request: egroupware before 1.8.002 various security issues28 Mar 2012
 [oss-security] CVE request: phppgadmin before 5.0.4 XSS28 Mar 2012
 [oss-security] CVE request: mantisbt before 1.2.906 Mar 2012
Henri Salo
 Re: [oss-security] CVE request: phppgadmin before 5.0.4 XSS30 Mar 2012
 Re: [oss-security] CVE-request: Coppermine 1.5.18 waraxe-2012-SA#08130 Mar 2012
 [oss-security] CVE-request: Coppermine 1.5.18 waraxe-2012-SA#08130 Mar 2012
 [oss-security] CVE-request: NextBBS 0.6.0 waraxe-2012-SA#08029 Mar 2012
 [oss-security] CVE-request: Joomla 20120305 / 2012030628 Mar 2012
 [oss-security] CVE-request: Joomla core information disclosure 372-2011100328 Mar 2012
 [oss-security] CVE-request: clamav floating point exception in OLE2 scanner DoS (2007)28 Mar 2012
 [oss-security] CVE-request: e107 HTB2300428 Mar 2012
 Re: [oss-security] CVE-request: MyBB 1.6 <= SQL Injection25 Mar 2012
 [oss-security] CVE-request: OpenKM 5.1.7 Privilege Escalation / OS Command Execution (XSRF based)23 Mar 2012
 [oss-security] CVE Request: Geeklog 1.7.1 <= Cross Site Scripting Vulnerability23 Mar 2012
 [oss-security] CVE-request: MyBB 1.6 <= SQL Injection23 Mar 2012
 [oss-security] CVE-request: ImpressPages CMS Unspecified Remote Code Execution23 Mar 2012
 [oss-security] MediaWiki security and maintenance release 1.18.222 Mar 2012
 Re: [oss-security] CVE request: piwik before 1.618 Mar 2012
 [oss-security] Joomla! Security News 2012-03-1616 Mar 2012
 [oss-security] CVE-request: Drupal Finder SA-CONTRIB-2012-01716 Mar 2012
 [oss-security] CVE-request: appRain CMF uploadify.php File Upload Remote PHP Code Execution09 Mar 2012
 [oss-security] CVE-request: Ariadne 2.7.6 XSS09 Mar 2012
 Re: [oss-security] CVE-request: Parallels Plesk Panel admin/plib/api-rpc/Agent.php Unspecified SQL Injection09 Mar 2012
 [oss-security] CVE-request: Parallels Plesk Panel admin/plib/api-rpc/Agent.php Unspecified SQL Injection08 Mar 2012
 [oss-security] CVE-request: phpMyFAQ index.php URI XSS08 Mar 2012
 Re: [oss-security] CVE-request: Kish Guest Posting Plugin for WordPress File Upload Remote PHP Code Execution08 Mar 2012
 [oss-security] CVE-request: Joomla! Security News 2012-0306 Mar 2012
 [oss-security] CVE-request: Kish Guest Posting Plugin for WordPress File Upload Remote PHP Code Execution06 Mar 2012
 [oss-security] CVE-request: phxEventManager search.php search_terms Parameter SQL Injection06 Mar 2012
 [oss-security] CVE-request: systemd local denial of login or local users can create arbitrary services04 Mar 2012
 Re: [oss-security] CVE-request: Joomla core information disclosure 1.7.102 Mar 2012
 Re: [oss-security] CVE-request: Joomla core information disclosure 1.7.102 Mar 2012
 Re: [oss-security] CVE-request: Joomla core information disclosure 1.7.101 Mar 2012
 [oss-security] CVE-request: Joomla core information disclosure 1.7.101 Mar 2012
Huzaifa Sidhpurwala
 [oss-security] CVE Request: Multiple wireshark security flaws resolved in 1.4.12 and 1.6.628 Mar 2012
 Re: [oss-security] CVE request for PHP 5.3.x Corrupted $_FILES indices lead to security concern13 Mar 2012
Ivan Nestlerode
 [oss-security] Re: openssl security issue or not? (CVE Request?)23 Mar 2012
Jakub Wilk
 Re: [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
Jan Lieskovsky
 [oss-security] CVE DISPUTE notification: postgresql-jdbc: SQL injection due improper escaping of JDBC statement parameters30 Mar 2012
 [oss-security] CVE-2010 Request: quake3 / openarena-server: DDoS by processing 'getstatus' and 'rcon' packets26 Mar 2012
 Re: [oss-security] openssl security issue or not? (CVE Request?)23 Mar 2012
 [oss-security] Re: Bugs in "file" program VU#62174520 Mar 2012
 [oss-security] [Notification] CVE-2012-1174 systemd: TOCTOU race condition by removing user session16 Mar 2012
 [oss-security] CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws16 Mar 2012
 [oss-security] CVE Request -- openldap (slapd): Assertion failure by processing search queries requesting only attributes for particular entry12 Mar 2012
 Re: [oss-security] CVE Request -- LDAP Account Manager Pro / PhpLDAPadmin -- Multiple XSS flaws12 Mar 2012
 [oss-security] CVE Request -- libdbd-pg-perl / perl-DBD-Pg && libyaml-libyaml-perl / perl-YAML-LibYAML: Multiple format string flaws09 Mar 2012
 [oss-security] CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.906 Mar 2012
 [oss-security] CVE Request -- LDAP Account Manager Pro / PhpLDAPadmin -- Multiple XSS flaws05 Mar 2012
 [oss-security] CVE Request -- Ruby on Rails (v3.0.12) / rubygem-actionpack: Two XSS flaws02 Mar 2012
Jason A. Donenfeld
 Re: [oss-security] CVE request: init script x11-common creates directories in insecure manners01 Mar 2012
Jeff Law
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
Joachim Fritschi
 [oss-security] CVE Requests for phpCAS04 Mar 2012
Josh Bressers
 Re: [oss-security] running the distros lists19 Mar 2012
 Re: [oss-security] running the distros lists15 Mar 2012
Jussi Eronen
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls21 Mar 2012
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls02 Mar 2012
Kurt Seifried
 Re: [oss-security] SQL injection attack possible when connecting to PostgreSQL 9.1 with version 8.1 JDBC driver31 Mar 2012
 Re: [oss-security] CVE-request: Coppermine 1.5.18 waraxe-2012-SA#08130 Mar 2012
 Re: [oss-security] CVE request: TYPO3-CORE-SA-2012-00130 Mar 2012
 Re: [oss-security] CVE request: egroupware before 1.8.002 various security issues30 Mar 2012
 Re: [oss-security] CVE-request: NextBBS 0.6.0 waraxe-2012-SA#08030 Mar 2012
 Re: [oss-security] CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency30 Mar 2012
 [oss-security] Interesting blog entry - Finding v6 hosts by efficiently mapping ip6.arpa29 Mar 2012
 Re: [oss-security] CVE request: phppgadmin before 5.0.4 XSS29 Mar 2012
 Re: [oss-security] CVE-request: Joomla 20120305 / 2012030629 Mar 2012
 Re: [oss-security] CVE request: eZ Publish XSS29 Mar 2012
 Re: [oss-security] CVE-request: e107 HTB2300429 Mar 2012
 Re: [oss-security] CVE-request: clamav floating point exception in OLE2 scanner DoS (2007)29 Mar 2012
 Re: [oss-security] CVE request: egroupware before 1.8.002 various security issues29 Mar 2012
 Re: [oss-security] CVE Request: Multiple wireshark security flaws resolved in 1.4.12 and 1.6.628 Mar 2012
 Re: [oss-security] CVE request: Struts2 xsltResult local code execution flaw28 Mar 2012
 Re: [oss-security] CVE Request: PolicyKit change allows users in "wheel" group to become root without a password28 Mar 2012
 Re: [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
 Re: [oss-security] CVE id request: cifs-utils27 Mar 2012
 Re: [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
 Re: [oss-security] CVE-2010 Request: quake3 / openarena-server: DDoS by processing 'getstatus' and 'rcon' packets26 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities26 Mar 2012
 [oss-security] CVEs for MediaWiki security and maintenance release 1.18.224 Mar 2012
 Re: [oss-security] CVE-request: ImpressPages CMS Unspecified Remote Code Execution23 Mar 2012
 Re: [oss-security] CVE for OpenBSD random() bug?23 Mar 2012
 Re: [oss-security] CVE Request: Geeklog 1.7.1 <= Cross Site Scripting Vulnerability23 Mar 2012
 Re: [oss-security] CVE-request: MyBB 1.6 <= SQL Injection23 Mar 2012
 Re: [oss-security] CVE-request: OpenKM 5.1.7 Privilege Escalation / OS Command Execution (XSRF based)23 Mar 2012
 [oss-security] Re: atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour23 Mar 2012
 Re: [oss-security] MediaWiki security and maintenance release 1.18.223 Mar 2012
 [oss-security] CVE for OpenBSD random() bug?22 Mar 2012
 Re: [oss-security] Re: [security] Drupal CORE and Drupal Contrib22 Mar 2012
 Re: [oss-security] atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour22 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities21 Mar 2012
 Re: [oss-security] Re: Bugs in "file" program VU#62174520 Mar 2012
 Re: [oss-security] CVE request: maradns deleted domain record cache persistance flaw20 Mar 2012
 Re: [oss-security] CVE request: eZ Publish: insecure direct object reference20 Mar 2012
 Re: [oss-security] CVE request: libtasn1 "asn1_get_length_der()" DER decoding issue20 Mar 2012
 Re: [oss-security] CVE request -- kernel: execshield: predictable ascii armour base address20 Mar 2012
 [oss-security] LinuxMint - temp file creation vulns in mintNanny and mintUpdate19 Mar 2012
 Re: [oss-security] CVE request: eZ Publish: insecure direct object reference19 Mar 2012
 Re: [oss-security] Case YVS Image Gallery19 Mar 2012
 Re: [oss-security] Joomla! Security News 2012-03-1619 Mar 2012
 Re: [oss-security] Re: [security] Drupal CORE and Drupal Contrib19 Mar 2012
 Re: [oss-security] CVE-request: Drupal Finder SA-CONTRIB-2012-01719 Mar 2012
 Re: [oss-security] CVE request: piwik before 1.619 Mar 2012
 Re: [oss-security] CVE request for bitlebee19 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 [oss-security] Drupal CORE and Drupal Contrib16 Mar 2012
 Re: [oss-security] CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE-request: apache's mod-fcgid does not respect configured FcgidMaxProcessesPerClass in VirtualHost16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Request: nginx fix for malformed HTTP responses from upstream servers15 Mar 2012
 Re: [oss-security] CVE request: eZ Publish: unspecified vulnerability15 Mar 2012
 Re: [oss-security] running the distros lists15 Mar 2012
 Re: [oss-security] Was a CVE ever assigned for Python SimpleHTTPServer.py XSS?15 Mar 2012
 Re: [oss-security] running the distros lists14 Mar 2012
 Re: [oss-security] CVE request: pyfribidi buffer overflow flaw14 Mar 2012
 Re: [oss-security] CVE Request: libgdata did not verify SSL certificates14 Mar 2012
 Re: [oss-security] CVE request: Two Pidgin crashes14 Mar 2012
 Re: [oss-security] CVE request: gnash integer overflow14 Mar 2012
 Re: [oss-security] CVE Request: ldm (LTSP display manager)12 Mar 2012
 Re: [oss-security] CVE request: openssl: null pointer dereference issue12 Mar 2012
 Re: [oss-security] CVE request: openssl: null pointer dereference issue12 Mar 2012
 Re: [oss-security] CVE Request -- openldap (slapd): Assertion failure by processing search queries requesting only attributes for particular entry12 Mar 2012
 Re: [oss-security] CVE-request: Ariadne 2.7.6 XSS10 Mar 2012
 Re: [oss-security] CVE-request: appRain CMF uploadify.php File Upload Remote PHP Code Execution10 Mar 2012
 Re: [oss-security] CVE Request -- libdbd-pg-perl / perl-DBD-Pg && libyaml-libyaml-perl / perl-YAML-LibYAML: Multiple format string flaws10 Mar 2012
 Re: [oss-security] CVE Request: Python Hash DoS (Issue 13703)10 Mar 2012
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls10 Mar 2012
 [oss-security] CVE Request: Python Hash DoS (Issue 13703)10 Mar 2012
 Re: [oss-security] expat 2.1.0beta fixes 5 Denial of Service attacks, CVE's/details inside09 Mar 2012
 [oss-security] expat 2.1.0beta fixes 5 Denial of Service attacks, CVE's/details inside09 Mar 2012
 Re: [oss-security] CVE-request: phpMyFAQ index.php URI XSS08 Mar 2012
 Re: [oss-security] CVE-request: Parallels Plesk Panel admin/plib/api-rpc/Agent.php Unspecified SQL Injection08 Mar 2012
 Re: [oss-security] CVE request for PHP 5.3.x Corrupted $_FILES indices lead to security concern08 Mar 2012
 [oss-security] CVE request for PHP 5.3.x Corrupted $_FILES indices lead to security concern08 Mar 2012
 Re: [oss-security] CVE request -- kernel: mm: memcg: unregistring of events attached to the same eventfd can lead to oops07 Mar 2012
 Re: [oss-security] CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.906 Mar 2012
 Re: [oss-security] CVE-request: Joomla! Security News 2012-0306 Mar 2012
 Re: [oss-security] CVE-request: Joomla! Security News 2012-0306 Mar 2012
 Re: [oss-security] CVE-request: Kish Guest Posting Plugin for WordPress File Upload Remote PHP Code Execution06 Mar 2012
 Re: [oss-security] CVE-request: phxEventManager search.php search_terms Parameter SQL Injection06 Mar 2012
 Re: [oss-security] CVE request: mantisbt before 1.2.906 Mar 2012
 Re: [oss-security] CVE Request -- LDAP Account Manager Pro / PhpLDAPadmin -- Multiple XSS flaws05 Mar 2012
 Re: [oss-security] Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability05 Mar 2012
 Re: [oss-security] CVE Request: lightdm05 Mar 2012
 Re: [oss-security] Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities05 Mar 2012
 Re: [oss-security] CVE request: mwlib < 0.13.5 DoS flaw05 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities05 Mar 2012
 [oss-security] Ruby on Rails github compromise05 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities05 Mar 2012
 Re: [oss-security] CVE Requests for phpCAS05 Mar 2012
 Re: [oss-security] CVE request: notmuch05 Mar 2012
 Re: [oss-security] CVE Request: XML entity expansion in the XML::Atom Perl module05 Mar 2012
 Re: [oss-security] CVE-request: systemd local denial of login or local users can create arbitrary services05 Mar 2012
 Re: [oss-security] CVE Request -- Ruby on Rails (v3.0.12) / rubygem-actionpack: Two XSS flaws03 Mar 2012
 Re: [oss-security] CVE-request: Joomla core information disclosure 1.7.102 Mar 2012
 Re: [oss-security] Attack on badly configured Netfilter-based firewalls02 Mar 2012
 Re: [oss-security] CVE-request: Joomla core information disclosure 1.7.102 Mar 2012
 Re: [oss-security] CVE Request: NetworkManager arbitrary file access02 Mar 2012
 Re: [oss-security] Re: CVE Request (minor) -- osc: Improper sanitization of terminal emulator escape sequences when displaying build log and build status02 Mar 2012
 Re: [oss-security] CVE-request: Joomla core information disclosure 1.7.102 Mar 2012
Luc ABRIC
 [oss-security] CVE 2012-1565 Insecure object reference28 Mar 2012
 [oss-security] CVE request: eZ Publish XSS28 Mar 2012
 RE: [oss-security] CVE request: eZ Publish: insecure direct object reference20 Mar 2012
 [oss-security] CVE request: eZ Publish: insecure direct object reference19 Mar 2012
 [oss-security] CVE request: eZ Publish: unspecified vulnerability15 Mar 2012
Ludwig Nussel
 [oss-security] postgresql-jdbc 8.1 SQL injection with postgresql server 9.130 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities26 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities21 Mar 2012
 [oss-security] CVE Request: libgdata did not verify SSL certificates14 Mar 2012
Marc Deslauriers
 Re: [oss-security] CVE Request: libgdata did not verify SSL certificates14 Mar 2012
 [oss-security] CVE Request: ldm (LTSP display manager)12 Mar 2012
 [oss-security] CVE Request: lightdm05 Mar 2012
Marcus Meissner
 Re: [oss-security] Re: openssl security issue or not? (CVE Request?)23 Mar 2012
 [oss-security] openssl security issue or not? (CVE Request?)23 Mar 2012
 Re: [oss-security] CVE request -- kernel: execshield: predictable ascii armour base address20 Mar 2012
Mark Doliner
 [oss-security] CVE request: Two Pidgin crashes14 Mar 2012
Mark Stanislav
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 [oss-security] CVE Requests15 Mar 2012
Matt Watchinski
 [oss-security] Re: Vulnerabilities reported in ClamAV 0.96.421 Mar 2012
Matthew Jordan
 Re: [oss-security] CVE Request -- Asterisk: AST-2012-002 and AST-2012-003 flaws16 Mar 2012
Moritz Muehlenhoff
 Re: [oss-security] Re: [security] Drupal CORE and Drupal Contrib21 Mar 2012
 [oss-security] CVE request: XML::Atom Perl module04 Mar 2012
Moritz Mühlenhoff
 [oss-security] CVE request: notmuch04 Mar 2012
Nick Kralevich
 Re: [oss-security] CVE request -- kernel: execshield: predictable ascii armour base address20 Mar 2012
Nico Golde
 [oss-security] CVE id request: cifs-utils27 Mar 2012
Petr Matousek
 [oss-security] CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency29 Mar 2012
 Re: [oss-security] CVE request -- kernel: execshield: predictable ascii armour base address21 Mar 2012
 [oss-security] CVE request -- kernel: execshield: predictable ascii armour base address20 Mar 2012
 [oss-security] CVE-2012-1179 kernel: thp: __split_huge_page() mapcount != page_mapcount BUG_ON()15 Mar 2012
 [oss-security] CVE request -- kernel: mm: memcg: unregistring of events attached to the same eventfd can lead to oops07 Mar 2012
Robert Haas
 [oss-security] Re: [pgsql-security] postgresql-jdbc 8.1 SQL injection with postgresql server 9.130 Mar 2012
 [oss-security] Re: [pgsql-security] postgresql-jdbc 8.1 SQL injection with postgresql server 9.130 Mar 2012
Roland Gruber
 Re: [oss-security] CVE Request -- LDAP Account Manager Pro / PhpLDAPadmin -- Multiple XSS flaws12 Mar 2012
 [oss-security] Re: CVE Request -- LDAP Account Manager Pro / PhpLDAPadmin -- Multiple XSS flaws05 Mar 2012
Solar Designer
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
 [oss-security] Re: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected)29 Mar 2012
 [oss-security] Re: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected)27 Mar 2012
 [oss-security] Fwd: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected)27 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] running the distros lists16 Mar 2012
 Re: [oss-security] CVE request: eZ Publish: unspecified vulnerability15 Mar 2012
 Re: [oss-security] running the distros lists14 Mar 2012
 Re: [oss-security] running the distros lists13 Mar 2012
 Re: [oss-security] running the distros lists13 Mar 2012
 [oss-security] running the distros lists12 Mar 2012
Stefan Cornelius
 [oss-security] CVE request: GnuTLS TLS record handling issue / MU-201202-0121 Mar 2012
 [oss-security] CVE request: libtasn1 "asn1_get_length_der()" DER decoding issue20 Mar 2012
 [oss-security] CVE-2012-1185 / CVE-2012-1186 assignment notification - incomplete ImageMagick fixes for CVE-2012-0247 / CVE-2012-024819 Mar 2012
 [oss-security] CVE-2012-1106 assignment notification -- abrt: Setuid process core dump archived with unsafe GID permissions05 Mar 2012
Steffen Dettmer
 [oss-security] SQL injection attack possible when connecting to PostgreSQL 9.1 with version 8.1 JDBC driver31 Mar 2012
The Fungi
 Re: [oss-security] Re: atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour23 Mar 2012
Thomas Klausner
 Re: [oss-security] running the distros lists13 Mar 2012
Tim Brown
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] CVE Requests16 Mar 2012
 Re: [oss-security] running the distros lists14 Mar 2012
 [oss-security] Partial ASLR bypass02 Mar 2012
Tim Sammut
 [oss-security] CVE Request: PolicyKit change allows users in "wheel" group to become root without a password28 Mar 2012
Timo Warns
 Re: [oss-security] CVE-2012-1162 / -1163: Incorrect loop construct and numeric overflow in libzip29 Mar 2012
 [oss-security] CVE-2012-1162 / -1163: Incorrect loop construct and numeric overflow in libzip21 Mar 2012
Timothy D. Morgan
 [oss-security] Re: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected)27 Mar 2012
Todd C. Miller
 Re: [oss-security] CVE for OpenBSD random() bug?22 Mar 2012
Tomas Hoger
 Re: [oss-security] glibc crypt(3), crypt_r(3), PHP crypt() may use alloca()30 Mar 2012
 Re: [oss-security] CVE request: GnuTLS TLS record handling issue / MU-201202-0121 Mar 2012
 Re: [oss-security] CVE request: openssl: null pointer dereference issue13 Mar 2012
 Re: [oss-security] CVE request: openssl: null pointer dereference issue12 Mar 2012
 Re: [oss-security] Re: TORCS 1.3.2 xml buffer overflow - CVE-2012-118906 Mar 2012
Török Edwin
 [oss-security] Re: Vulnerabilities reported in ClamAV 0.96.421 Mar 2012
Vincent Danen
 Re: [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
 Re: [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
 Re: [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
 [oss-security] CVE request: distutils creates ~/.pypirc insecurely27 Mar 2012
 [oss-security] Re: Vulnerabilities reported in ClamAV 0.96.421 Mar 2012
 [oss-security] Vulnerabilities reported in ClamAV 0.96.421 Mar 2012
 [oss-security] CVE request: maradns deleted domain record cache persistance flaw20 Mar 2012
 [oss-security] Was a CVE ever assigned for Python SimpleHTTPServer.py XSS?14 Mar 2012
 [oss-security] CVE request: gnash integer overflow14 Mar 2012
 [oss-security] CVE request: pyfribidi buffer overflow flaw14 Mar 2012
 Re: [oss-security] CVE request: smokeping XSS06 Mar 2012
 [oss-security] CVE request: mwlib < 0.13.5 DoS flaw05 Mar 2012
vladz
 Re: [oss-security] CVE request: init script x11-common creates directories in insecure manners01 Mar 2012
VSR Advisories
 Re: [Full-disclosure] CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected)27 Mar 2012
Werner LEMBERG
 Re: [oss-security] CVE Request -- FreeType: Multiple security flaws to be fixed in v2.4.907 Mar 2012
William Pitcock
 [oss-security] Re: atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour22 Mar 2012
 [oss-security] atheme.org Security Advisory ASA-2012-03-01: Improper cleanup of CertFP entries may result in undefined behaviour21 Mar 2012
YGN Ethical Hacker Group
 [oss-security] Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities05 Mar 2012
 [oss-security] Open-Realty CMS 2.5.8 (2.x.x) <= "select_users_template" Local File Inclusion Vulnerability05 Mar 2012
Zubin Mithra
 Re: [oss-security] CVE-Request taglib vulnerabilities21 Mar 2012
 Re: [oss-security] CVE-Request taglib vulnerabilities05 Mar 2012
 [oss-security] CVE-Request taglib vulnerabilities04 Mar 2012