Security News

SUSE

• Linux kernel security update
• Mozilla Firefox security update
• Acrobat Reader security update
• IBM Java 5 update
• Linux kernel security update

Debian

• DSA-2076 gnupg2 – use-after-free
• DSA-2075 xulrunner – several vulnerabilities
• DSA-2074 ncompress – integer underflow
• DSA-2073 mlmmj – insufficient input sanitising
• DSA-2072 libpng – several vulnerabilities

Redhat

• RHSA-2010:0576-1: Low: Red Hat Enterprise Linux 3 – 3-Month End Of Life Notice
• RHSA-2010:0577-1: Important: freetype security update
• RHSA-2010:0578-1: Important: freetype security update
• RHBA-2010:0536-1: kvm bug fix update
• RHBA-2010:0537-1: vdsm22 bug fix update

Mandriva

• MDVSA-2010:143: gnupg2
• MDVSA-2010:142: openldap
• MDVSA-2010:141: samba
• MDVSA-2010:140: php
• MDVSA-2010:139: php

Fedora

Error: Feed has a error or is not valid

Gentoo

• GLSA 201006-21 (High): unrealircd
• GLSA 201006-20 (Normal): asterisk
• GLSA 201006-19 (Normal): bugzilla
• GLSA 201006-18 (Normal): sun-jre-bin (and 2
• GLSA 201006-17 (Normal): lighttpd

Ubuntu

Error: Feed has a error or is not valid

Heise Security

• Microsoft will LNK-Lücke Montag schließen
• Angriff auf VMware mit Metasploit
• Handygespräche schnell entschlüsseln
• Apps telefonieren nach Hause [Update]
• Schwachstellen-Oscars verliehen

Security Focus

• Vuln: Pidgin 'X-Status' Message Denial of Service Vulnerability
• Vuln: KVIrc '\r' Carriage Return in DCC Handshake Remote Command Execution Vulnerability
• Vuln: HTML Email Creator HTML Tags Multiple Buffer Overflow Vulnerabilities
• Vuln: IBM Tivoli Directory Server 'DIGEST-MD5' Denial of Service Vulnerability
• Bugtraq: Akamai Download Manager arbitrary file download & execution

Linux Security

• Google Fights Android Piracy
• Black Hat gets its video feed hacked
• Sourcefire Debuts Integrated Security Tool
• Mariposa Botnet Creator Arrested
• ATMs At Risk, Researcher Warns At Black Hat