oss-security March 2010 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: By Thread

oss-security By Thread

SubjectAuthor Date
[oss-security] CVE Request -- Apache CouchDB v.0.11.0 -- timing attacks flawJan Lieskovsky31 Mar 2010
Re: [oss-security] CVE Request -- Apache CouchDB v.0.11.0 -- timing attacks flawAlex Legler31 Mar 2010
[oss-security] iscsitarget/scsi-target-tuils format string CVE assignmentJosh Bressers31 Mar 2010
[oss-security] CVE request: kernel: tipc: Fix oops on send prior to entering networked modeEugene Teo30 Mar 2010
Re: [oss-security] CVE request: kernel: tipc: Fix oops on send prior to entering networked modeSteven M. Christey30 Mar 2010
--> Re: [oss-security] CVE request: kernel: tipc: Fix oops on send prior to entering networked modeEugene Teo31 Mar 2010
[oss-security] CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' inputReed Loden29 Mar 2010
Re: [oss-security] CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' inputSecunia Research30 Mar 2010
Re: [oss-security] CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' inputReed Loden30 Mar 2010
--> Re: [oss-security] CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' inputReed Loden30 Mar 2010
--> Re: [oss-security] CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' inputSteven M. Christey30 Mar 2010
[oss-security] CVE-2010-0741 qemu: Improper handling of erroneous data provided by Linux virtio-net driverPetr Matousek29 Mar 2010
[oss-security] CVE Request -- Quake II Server -- two security issues affecting also Alien ArenaJan Lieskovsky29 Mar 2010
[oss-security] RE: CVE Request -- Quake II Server -- two security issues affecting also Alien ArenaRichard Stanway29 Mar 2010
[oss-security] OpenSSL: CVE-2010-0740 and CVE-2009-3245 appear to be dupesFlorian Weimer29 Mar 2010
Re: [oss-security] OpenSSL: CVE-2010-0740 and CVE-2009-3245 appear to be dupesFlorian Weimer29 Mar 2010
[oss-security] CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS)Eugene Teo29 Mar 2010
Re: [oss-security] CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS)Steven M. Christey30 Mar 2010
--> Re: [oss-security] CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS)Eugene Teo31 Mar 2010
[oss-security] [HITB-Announce] HITBSecConf2009 - Malaysia Videos Released! *Correction*Hafez Kamal24 Mar 2010
[oss-security] kernel: bluetooth: Fix kernel crash on L2CAP stress testsEugene Teo24 Mar 2010
[oss-security] CVE requests 6x kernel vulns still pendingEugene Teo23 Mar 2010
Re: [oss-security] CVE requests 6x kernel vulns still pendingSteven M. Christey24 Mar 2010
--> Re: [oss-security] CVE requests 6x kernel vulns still pendingEugene Teo24 Mar 2010
[oss-security] [HITB-Announce] HITBSecConf2009 - Malaysia Videos Released!Hafez Kamal23 Mar 2010
[oss-security] CVE request: kernel: bluetooth: potential bad memory access with sysfs filesEugene Teo23 Mar 2010
[oss-security] CVE Request -- Sahana -- v0.6.2.2 -- Authentication bypass via "acl_enable_acl" URLsJan Lieskovsky19 Mar 2010
Re: [oss-security] CVE Request -- Sahana -- v0.6.2.2 -- Authentication bypass via "acl_enable_acl" URLsSteven M. Christey30 Mar 2010
[oss-security] CVE Request -- Transmission v1.92Jan Lieskovsky17 Mar 2010
[oss-security] CVE id request: ikiwikiNico Golde17 Mar 2010
Re: [oss-security] CVE id request: ikiwikiSteven M. Christey30 Mar 2010
[oss-security] CVE-2010-0008 kernel: sctp remote denial of serviceEugene Teo17 Mar 2010
[oss-security] CVE-2009-4271 kernel: 32bit process on 64bit system DoSEugene Teo17 Mar 2010
Re: [oss-security] CVE-2009-4271 kernel: 32bit process on 64bit system DoSMarcus Meissner17 Mar 2010
[oss-security] Re: CVE Request -- cURL/libCURL 7.20.0Vincent Danen16 Mar 2010
[oss-security] [HITB-Announce] HITBSecConf2010 - Dubai Agenda ReleasedHafez Kamal14 Mar 2010
[oss-security] Call for papers: ISP-10, USA, July 2010James Heralds12 Mar 2010
[oss-security] CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extensionRaphael Geissert12 Mar 2010
[oss-security] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoSJan Lieskovsky12 Mar 2010
Re: [oss-security] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoSVincent Danen16 Mar 2010
--> Re: [oss-security] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoSTomas Hoger16 Mar 2010
--> Re: [oss-security] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoSVincent Danen16 Mar 2010
--> Re: [oss-security] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoSSteven M. Christey18 Mar 2010
--> Re: [oss-security] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoSVincent Danen18 Mar 2010
[oss-security] CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach()Eugene Teo12 Mar 2010
[oss-security] CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flawEugene Teo12 Mar 2010
Re: [oss-security] CVE request: kernel: connector security bypassdann frazier11 Mar 2010
[oss-security] Re: [Drbd-dev] [oss-security] CVE request: kernel: connector security bypassLars Ellenberg12 Mar 2010
--> [oss-security] Re: [Drbd-dev] [oss-security] CVE request: kernel: connector security bypassdann frazier12 Mar 2010
[oss-security] CVE id request: mydmsNico Golde11 Mar 2010
[oss-security] CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form inputReed Loden10 Mar 2010
Re: [oss-security] CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form inputVincent Danen16 Mar 2010
[oss-security] CVE Request: DeviceKit privilege escalation via pluggable storage device labelsVincent Danen10 Mar 2010
[oss-security] CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge headerJan Lieskovsky10 Mar 2010
[oss-security] CVE Request -- aMSN -- improper SSL certificate validation (MITM)Jan Lieskovsky10 Mar 2010
[oss-security] CVE Request -- SpamAssassin Mail Filter -- arbitrary shell command injection (priv esc)Jan Lieskovsky10 Mar 2010
Re: [oss-security] CVE Request -- SpamAssassin Mail Filter -- arbitrary shell command injection (priv esc)Steven M. Christey26 Mar 2010
[oss-security] phpmyvisites 2.3Henri Salo10 Mar 2010
Re: [oss-security] phpmyvisites 2.3Anthon Pang10 Mar 2010
Re: [oss-security] phpmyvisites 2.3Steven M. Christey30 Mar 2010
--> Re: [oss-security] phpmyvisites 2.3Anthon Pang30 Mar 2010
[oss-security] CVE Request -- MediaWiki - v1.15.2Jan Lieskovsky09 Mar 2010
Re: [oss-security] CVE Request -- MediaWiki - v1.15.2Nico Golde16 Mar 2010
Re: [oss-security] CVE Request -- MediaWiki - v1.15.2Henri Salo24 Mar 2010
Re: [oss-security] CVE Request -- MediaWiki - v1.15.2Steven M. Christey30 Mar 2010
[oss-security] CVE Request: postgresql integer overflow in hash table size calculationVincent Danen09 Mar 2010
Re: [oss-security] CVE Request: postgresql integer overflow in hash table size calculationVincent Danen16 Mar 2010
Re: [oss-security] CVE Request -- cURL/libCURL 7.20.0Jan Lieskovsky09 Mar 2010
[oss-security] CVE Request -- Drupal v6.16 / v5.22 SA-CORE-2010-001Jan Lieskovsky08 Mar 2010
Re: [oss-security] WANTED: mikmod patchesKees Cook06 Mar 2010
[oss-security] Re: CVE Request: gnome-screensaver termination by pressing "Enter"Marcus Meissner05 Mar 2010
Re: [oss-security] Re: CVE Request: gnome-screensaver termination by pressing "Enter"Vincent Danen16 Mar 2010
Re: [oss-security] Samba symlink 0day flawLudwig Nussel05 Mar 2010
Re: [oss-security] Samba symlink 0day flawSteven M. Christey05 Mar 2010
[oss-security] kernel: hvc_console: Fix race between hvc_close and hvc_removeEugene Teo04 Mar 2010
Re: [oss-security] CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereferenceEugene Teo04 Mar 2010
Re: [oss-security] CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereferenceJosh Bressers04 Mar 2010
[oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameKees Cook03 Mar 2010
Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameJan Lieskovsky09 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel10 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford11 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel11 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford11 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel11 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford11 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford15 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameArkanoiD16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNamePeter Sylvester16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameArkanoiD16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel17 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford17 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameLudwig Nussel17 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameArkanoiD17 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameBrian Stafford17 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameArkanoiD17 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameJoe Orton16 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameGeoff Keating11 Mar 2010
--> Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameJoe Orton11 Mar 2010
Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameEmily Ratliff17 Mar 2010
Re: [oss-security] CVE Request: libesmtp does not check NULL bytes in commonNameSteven M. Christey30 Mar 2010
[oss-security] OpenSSL (with KRB5) remote crash - CVE-2010-0433Tomas Hoger03 Mar 2010
[oss-security] [cansecwest] Advanced PHP HackingLaurent OUDOT at TEHTRI-Security03 Mar 2010
[oss-security] CFPs and con invitations on the list (was: [cansecwest] Advanced PHP Hacking)Solar Designer03 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listSolar Designer12 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listJon Oberheide12 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listSolar Designer14 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listJosh Bressers15 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listSolar Designer25 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listJosh Bressers25 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listMatthias Andree25 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listJonathan Brossard25 Mar 2010
--> Re: [oss-security] CFPs and con invitations on the listJosh Bressers26 Mar 2010
[oss-security] CVE request: kernel: NFS: Fix an Oops when truncating a fileEugene Teo03 Mar 2010
[oss-security] CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names?Vincent Danen02 Mar 2010
Re: [oss-security] CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names?Vincent Danen02 Mar 2010
[oss-security] Re: CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names?Steven M. Christey03 Mar 2010
--> [oss-security] Re: CVE-2009-3297 samba/ncpfs/fuse issues granted individual 2010 CVE names?Vincent Danen04 Mar 2010
[oss-security] CVE request: kernel: dvb-core: ULE decapsulation DoSEugene Teo01 Mar 2010