LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for February 9, 2012

XBMC 11 "Eden"

LWN.net Weekly Edition for February 2, 2012

A tempest in a toybox

LWN.net Weekly Edition for January 26, 2012

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Wednesday's security updates

[Posted August 19, 2009 by corbet]

Wednesday's security updates
[Security] Posted Aug 19, 2009 18:05 UTC (Wed) by corbet

CentOS has updated libvorbis (C3, C5: input validation flaw) and pidgin (C3, C5: remote code execution).

Debian has updated kdegraphics (two code-execution vulnerabilities), kdelibs (three code-execution vulnerabilities), and kde4libs (ditto).

Gentoo has updated subversion (remotely exploitable integer and buffer overflows), cdf (buffer overflows), (Perl) Compress::Raw (denial of service), dhcpd (denial of service), dokuwiki (file inclusion), and dillo (integer overflow).

Mandriva has updated wget (certificate spoofing).

Red Hat has updated pidgin (remote code execution) and libvorbis (input validation flaw).

rPath has updated subversion (buffer overflow), apr (remote code execution), and kernel (null pointer dereference).

Slackware has updated kernel (null pointer dereference).

Ubuntu has updated kernel (null pointer dereference) and apache2 (fix for regression in previous update).

Comments (none posted)

Copyright © 2009, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds