CVE-2012-0834
Cross-site scripting (XSS) vulnerability in lib/QueryRender.php in phpLDAPadmin 1.2.2 and ea ...
CVE-2012-0452
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, ...
CVE-2012-0840
tables/apr_hash.c in the Apache Portable Runtime (APR) library through 1.4.5 computes hash v ...
CVE-2012-0831
PHP before 5.3.10 does not properly perform a temporary change to the magic_quotes_gpc directive dur ...
CVE-2011-4534
ZenSysSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0 allows remote attackers to cause a denia ...
CVE-2011-4533
zenAdminSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0 allows remote attackers to cause a den ...
CVE-2011-4039
Invensys Wonderware HMI Reports 3.42.835.0304 and earlier, as used in Ocean Data Systems Dream Repor ...
CVE-2011-4038
Cross-site scripting (XSS) vulnerability in Invensys Wonderware HMI Reports 3.42.835.0304 an ...
CVE-2012-1046
Cross-site scripting (XSS) vulnerability in TM1 Web in IBM Cognos TM1 9.5.2 FP1 allows remot ...
CVE-2011-3972
The shader translator implementation in Google Chrome before 17.0.963.46 allows remote attackers to ...
Óâåäîìëåíèÿ 1 - 21 of 831
First | Prev. | 1 2 3 4 5 6 7 8 9 10 11 | Next | Last
[ MDVSA-2008:215 ] wireshark
A number of vulnerabilities were discovered in Wireshark that could cause it to crash or abort while processing malicious packets (CVE-2008-4680, CVE-2008-4681, CVE-2008-4682, CVE-2008-4683, CVE-2008-4684, CVE-2008-4685).
[ MDVA-2008:158 ] urpmi
Urpmi would crash when the syslog service wasn't running, and could also hang when then hdlist flag was not used alone.
[ MDVA-2008:156-1 ] kdebase4-workspace
This update adds the auto-hide feature to the KDE4 desktop panel.
[ MDVA-2008:157 ] hplip
It is mandatory to use UTF-8 encoding in communication on newer cups versions.
[ MDVA-2008:156 ] kdebase4-workspace
This update adds the auto-hide feature to the KDE4 desktop panel.
[ MDVA-2008:155 ] kdebase4-runtime
When an attachment file is opened in a KDE4 application, it is copied to a temporary directory and opened by a 'kioexec' process.
[ MDVA-2008:154 ] util-linux-ng
Several bugs were found in util-linux-ng package: - Using an offset on loopback device was broken - Creating an encrypted loopback with losetup -e was broken - Using fdisk to modify the partition table of an image file did not write the changes The updated package fixes these issues.
[ MDVA-2008:153 ] phonon
In Mandriva Linux 2009.0, phonon's signal availableAudioCaptureDevicesChanged was not connected, causing the KDE4 desktop to be unable to play OGG files.
[ MDVA-2008:152 ] totem-pl-parser
The totem playlist parser library was not exporting a symbol required by the python binding.
[ MDVA-2008:151 ] timezone
Updated timezone packages are being provided for older Mandriva Linux systems that do not contain new Daylight Savings Time information and Time Zone information for some locations.
[ MDVA-2008:150 ] banshee
Banshee failed on initial startup from the menu, due to its configuration directory to be missing.
[ MDVSA-2008:208-1 ] pam_mount
pam_mount 0.10 through 0.45, when luserconf is enabled, does not verify mountpoint and source ownership before mounting a user-defined volume, which allows local users to bypass intended access restrictions via a local mount.
[ MDVA-2008:149 ] drakx-net
The network applet would crash when the mandi monitoring daemon was restarted.
[ MDVA-2008:148 ] pulseaudio
Some issues relating to thread cancellation have been discovered in the pulseaudio package shipped with Mandriva Linux 2009.0.
[ MDVA-2008:147 ] rhythmbox
Previous Rhythmbox packages would crash with a formatted, but not yet initialized, iPod.
[ MDVA-2008:146 ] kdegames4
The kdegames4 package included in 2009.0 contains a bug, where the kdegames4-devel package did not require corresponding library packages, leading to broken symbolic links when linking kdegames.
[ MDVA-2008:144 ] ldetect-lst
An updated ldetect-lst package provides support for new hardware that was added in the latest kernel updates (ich9 and tg3).
[ MDVSA-2008:213 ] dbus
The D-Bus library did not correctly validate certain corrupted signatures which could cause a crash of applications linked against the D-Bus library if a local user were to send a specially crafted D-Bus request (CVE-2008-3834).
[ MDVSA-2008:212 ] libxml2
libxml2 version 2.7.0 and 2.7.1 did not properly handle predefined entities definitions in entities, which allowed context-dependent attackers to cause a denial of service (memory consumption and application crash) via certain XML documents (CVE-2008-4409).
Óâåäîìëåíèÿ 1 - 21 of 831
First | Prev. | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 | Next | Last