[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CPNI INFOSEC ADVISORY - 019/07 - Three Debian Advisories: DSA-1259-1 fetchmail, DSA-1260-1 imagemagick, DSA-1261-1 postgresql

To: <infosec@xxxxxxxxxxx>
Subject: CPNI INFOSEC ADVISORY - 019/07 - Three Debian Advisories: DSA-1259-1 fetchmail, DSA-1260-1 imagemagick, DSA-1261-1 postgresql
From: "CPNI Infosec Helpdesk" <infosec@xxxxxxxxxxx>
Date: Fri, 23 Feb 2007 10:51:43 -0000
Cc: <interim@xxxxxxxxxxxxxxxxx>
Delivered-to: mailing list interim@xxxxxxxxxxxxxxxxx
Delivered-to: moderator for interim@xxxxxxxxxxxxxxxxx
List-help: <mailto:interim-help@lists.cpni.gov.uk>
List-post: <mailto:interim@lists.cpni.gov.uk>
List-subscribe: <mailto:interim-subscribe@lists.cpni.gov.uk>
List-unsubscribe: <mailto:interim-unsubscribe@lists.cpni.gov.uk>
Mailing-list: contact interim-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: CPNI
Reply-to: <infosec@xxxxxxxxxxx>
Thread-index: AcdXOISrvc0rn2H+RHiVt7/XFv9abw==

______________________________________________________________________________

 CPNI INFOSEC ADVISORY - 019/07 dated 23.02.07 time 10:50

 Centre for the Protection of National Infrastructure
______________________________________________________________________________

 Further details about CPNI, including information about our products can be

 found at www.cpni.gov.uk
______________________________________________________________________________

Title
=====

Three Debian Advisories: DSA-1259-1 fetchmail, DSA-1260-1 imagemagick, 
DSA-1261-1 postgresql

Detail
======

Package        : fetchmail
Vulnerability  : programming error
Problem-Type   : remote
Debian-specific: no
CVE ID         : CVE-2006-5867
Advisory URL   : http://www.debian.org/security/2007/dsa-1259

Package        : imagemagick
Vulnerability  : buffer overflow
Problem-Type   : local(remote)
Debian-specific: no
CVE ID         : CVE-2007-0770
Advisory URL   : http://www.debian.org/security/2007/dsa-1260

Package        : postgresql
Vulnerability  : several
Problem-Type   : remote
Debian-specific: no
CVE ID         : CVE-2007-0555
Advisory URL   : http://www.debian.org/security/2007/dsa-1261

______________________________________________________________________________

CPNI values your feedback.

1. Which of the following most reflects the value of the advisory to you?
(Place an 'X' next to your choice)

Very useful:__ Useful:__ Not useful:__

2. If you did not find it useful, why not?


3. Any other comments? How could we improve our advisories?


Thank you for your contribution.
______________________________________________________________________________

For additional information or assistance, please contact our help desk by
telephone. 

You may send Not Protectively Marked information via e-mail to
infosec@xxxxxxxxxxxx

Office hours:

Mon - Fri: 09:00 - 16:30 hours
Tel: +44 (0) 870 487 0748 and follow the voice prompts
Fax: +44 (0) 870 487 0749

On-call duty officer outside office hours:
Tel: +44 (0) 870 487 0748 and follow the voice prompts

______________________________________________________________________________

CPNI wishes to acknowledge the contributions of Debian for the information
contained in this advisory.
______________________________________________________________________________

This advisory contains information released by the original author. Some of the
information may have changed since it was released. If the issue affects you,
it may be prudent to retrieve the advisory from the site of the original
source to ensure that you receive the most current information concerning that
problem.

Reference to any specific commercial product, process, or service by trade
name, trademark manufacturer, or otherwise, does not constitute or imply its
endorsement, recommendation, or favouring by CPNI. The views and opinions of
authors expressed within this notice shall not be used for advertising or
product endorsement purposes.

CPNI shall not accept responsibility for any errors or omissions contained
within this advisory. In particular, they shall not be liable for any loss or
damage whatsoever, arising from or in connection with the usage of information
contained within this advisory.

CPNI is a member of the Forum of Incident Response and Security Teams (FIRST)
and has contacts with other international Incident Response Teams (IRTs) in
order to foster cooperation and coordination in incident prevention, to prompt
rapid reaction to incidents, and to promote information sharing amongst its
members and the community at large.
______________________________________________________________________________

<End of CPNI Advisory>



______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

Prev by Date: CPNI INFOSEC ADVISORY - 018/07 - Cisco Security Advisory: Cisco Unified IP Conference Station and IP Phone Vulnerabilities
Next by Date: CPNI INFOSEC ADVISORY - 020/07 - Two Red Hat Security Advisories: php, gnomemeeting
Previous by thread: CPNI INFOSEC ADVISORY - 018/07 - Cisco Security Advisory: Cisco Unified IP Conference Station and IP Phone Vulnerabilities
Next by thread: CPNI INFOSEC ADVISORY - 020/07 - Two Red Hat Security Advisories: php, gnomemeeting
Index(es):
- Date
- Thread