[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CPNI INFOSEC ADVISORY - 006/07 - 10 Mandriva Security Advisories: MDKSA-2007:031 - MDKSA-2007:040

To: <infosec@xxxxxxxxxxx>
Subject: CPNI INFOSEC ADVISORY - 006/07 - 10 Mandriva Security Advisories: MDKSA-2007:031 - MDKSA-2007:040
From: "CPNI Infosec Helpdesk" <infosec@xxxxxxxxxxx>
Date: Fri, 9 Feb 2007 14:00:02 -0000
Cc: <interim@xxxxxxxxxxxxxxxxx>
Delivered-to: mailing list interim@xxxxxxxxxxxxxxxxx
Delivered-to: moderator for interim@xxxxxxxxxxxxxxxxx
List-help: <mailto:interim-help@lists.cpni.gov.uk>
List-post: <mailto:interim@lists.cpni.gov.uk>
List-subscribe: <mailto:interim-subscribe@lists.cpni.gov.uk>
List-unsubscribe: <mailto:interim-unsubscribe@lists.cpni.gov.uk>
Mailing-list: contact interim-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: CPNI
Reply-to: <infosec@xxxxxxxxxxx>
Thread-index: AcdMUlwxbKxWqcV/SWGHVneHfyRCgg==

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

______________________________________________________________________________

 CPNI INFOSEC ADVISORY - 006/07 dated 09.02.07 time 12:00

 Centre for the Protection of National Infrastructure
______________________________________________________________________________

 Further details about CPNI, including information about our products can be

 found at www.cpni.gov.uk
______________________________________________________________________________

Title
=====

10 Mandriva Security Advisories: MDKSA-2007:031 - MDKSA-2007:040

Detail
======

Package name: kernel 
Date: February 7th, 2007 
Advisory ID: MDKSA-2007:040 
Affected versions: 2007.0 
Synopsis: Updated kernel packages fix multiple vulnerabilities and bugs 
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:040

Package name: gtk+2.0 
Date: February 7th, 2007 
Advisory ID: MDKSA-2007:039 
Affected versions: CS3.0, 2007.0, CS4.0 
Synopsis: Updated gtk+2.0 packages address DoS, LSB issues, several bugs 
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:039

Package name: php 
Date: February 6th, 2007 
Advisory ID: MDKSA-2007:038 
Affected versions: CS3.0, MNF2.0, 2006.0, 2007.0, CS4.0 
Synopsis: Updated php packages to address multiple issues 
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:038

Package name: postgresql 
Date: February 6th, 2007 
Advisory ID: MDKSA-2007:037 
Affected versions: CS3.0, 2006.0, 2007.0, CS4.0 
Synopsis: Updated postgresql packages address multiple vulnerabilities
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:037

Package name: libwmf 
Date: February 6th, 2007 
Advisory ID: MDKSA-2007:036 
Affected: versions CS3.0, 2006.0, 2007.0, CS4.0 
Synopsis: Updated libwmf packages fix embedded gd DoS vulnerability
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:036

Package name: gd 
Date: February 6th, 2007 
Advisory ID: MDKSA-2007:035 
Affected versions: CS3.0, 2006.0, 2007.0, CS4.0 
Synopsis: Updated gd packages fix DoS vulnerability
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:035

Package name: samba 
Date: February 5th, 2007 
Advisory ID: MDKSA-2007:034 
Affected versions: CS3.0, 2006.0, 2007.0, CS4.0 
Synopsis: Updated samba packages address multiple vulnerabilities
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:034

Package name: wireshark 
Date: February 2nd, 2007 
Advisory ID: MDKSA-2007:033 
Affected versions: 2007.0, CS4.0 
Synopsis: Updated wireshark packages fix multiple vulnerabilities 
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:033

Package name: mpg123 
Date: February 2nd, 2007 
Advisory ID: MDKSA-2007:032 
Affected versions: CS3.0, 2006.0, 2007.0 
Synopsis: Updated mpg123 packages fix DoS vulnerability 
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:032

Package name: kdelibs 
Date: February 2nd, 2007 
Advisory ID: MDKSA-2007:031 
Affected versions: CS3.0, 2007.0, CS4.0 
Synopsis: Updated kdelibs packages fix KHTML vulnerability 
Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2007:031


_____________________________________________________________________________

CPNI values your feedback.

1. Which of the following most reflects the value of the advisory to you?
(Place an 'X' next to your choice)

Very useful:__ Useful:__ Not useful:__

2. If you did not find it useful, why not?


3. Any other comments? How could we improve our advisories?


Thank you for your contribution.
______________________________________________________________________________

For additional information or assistance, please contact our help desk by
telephone. 

You may send Not Protectively Marked information via e-mail to
infosec@xxxxxxxxxxxx

Office hours:

Mon - Fri: 09:00 - 16:30 hours
Tel: +44 (0) 870 487 0748 and follow the voice prompts
Fax: +44 (0) 870 487 0749

On-call duty officer outside office hours:
Tel: +44 (0) 870 487 0748 and follow the voice prompts

______________________________________________________________________________

CPNI wishes to acknowledge the contributions of Mandriva for the information
contained in this advisory.
______________________________________________________________________________

This advisory contains information released by the original author. Some of the
information may have changed since it was released. If the issue affects you,
it may be prudent to retrieve the advisory from the site of the original
source to ensure that you receive the most current information concerning that
problem.

Reference to any specific commercial product, process, or service by trade
name, trademark manufacturer, or otherwise, does not constitute or imply its
endorsement, recommendation, or favouring by CPNI. The views and opinions of
authors expressed within this notice shall not be used for advertising or
product endorsement purposes.

CPNI shall not accept responsibility for any errors or omissions contained
within this advisory. In particular, they shall not be liable for any loss or
damage whatsoever, arising from or in connection with the usage of information
contained within this advisory.

CPNI is a member of the Forum of Incident Response and Security Teams (FIRST)
and has contacts with other international Incident Response Teams (IRTs) in
order to foster cooperation and coordination in incident prevention, to prompt
rapid reaction to incidents, and to promote information sharing amongst its
members and the community at large.
______________________________________________________________________________

<End of CPNI Advisory>


-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQEVAwUBRcx92CKQGgncZloDAQLoPQf7BOq19LiNbbF8KklBZK0HMmS5+fGpN2vl
GAlfZavJ7G5ypmRL6+okjuGcY/mRy4t42bqhjcSQe1hC4/eRjV/VEz3GJmh+R4ZO
9h+HKVMrgurYo54mgd320ODml/O3HB1YrQ97n5tJBlKdKrzvWVfTF9Lro7k2am8X
XxXfa8R8NkLOSeRLV22o3nW3I1e/1LdtZSN8ZfGD653h1gNw9qT6OQJ/tyDlommG
Ydbos4YY5gPt73Ml3jL1P2rGDN1aPcpCP/3B/WAuITLdS8FUmftabQTizK2dTsr6
jrYYfDO4p71nDOQ2Gqb70zCRRJhoFl2lUxk0szuO+ZGlN8Rz/rkwXg==
=K2hF
-----END PGP SIGNATURE-----


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

Prev by Date: CPNI INFOSEC ADVISORY - CPNI INFOSEC ADVISORY - 005/07 - Three iDefense Security Advisories
Next by Date: CPNI INFOSEC ADVISORY - 008/07 - Two Debian Advisories: DSA 1257-1 samba, DSA 1258-1 mozilla-firefox
Previous by thread: CPNI INFOSEC ADVISORY - CPNI INFOSEC ADVISORY - 005/07 - Three iDefense Security Advisories
Next by thread: CPNI INFOSEC ADVISORY - 008/07 - Two Debian Advisories: DSA 1257-1 samba, DSA 1258-1 mozilla-firefox
Index(es):
- Date
- Thread