Thursday Security Updates

Debian fixes mysql (SQL injection vulnerability) and tiff (arbitrary code execution).

Fedora Legacy fixes mozilla (multiple vulnerabilities), x.org (buffer overflow), ipsec-tools (denial of service) squirrelmail (multiple vulnerabilities) and firefox (multiple vulnerabilities).

Fedora Core 4 fixes squirrelmail (file inclusion vulnerability).

Fedora Core 5 fixes squirrelmail (file inclusion vulnerability).

Gentoo fixes dia (format string vulnerabilities), tor (multiple vulnerabilities), pound (http request smuggling) and awstats (remote code execution).

Mandriva fixes openldap (buffer overflow), mysql (SQL injection vulnerability) and postgresql (SQL injection vulnerabilities).

rPath fixes spamasassin (remote access vulnerability) and gdm (privilege escalation).

Ubuntu fixes tiff (buffer overflow), awstats (privilege escalation) and freetype (multiple vulnerabilities).

Comments (none posted)