From sec-adv at secunia.com Mon Jan 4 10:28:37 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 19:28:37 +0100 Subject: [SEC] [SA38084] Acidcat CMS Information Disclosure Security Issue Message-ID: <201001041828.o04ISbfd018706@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Acidcat CMS Information Disclosure Security Issue SECUNIA ADVISORY ID: SA38084 VERIFY ADVISORY: http://secunia.com/advisories/38084/ DESCRIPTION: LionTurk has discovered a security issue in Acidcat CMS, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to improper access restrictions to the "acidcat_3.mdb" database file in the databases directory. This can be exploited to download the database and disclose admin credentials used to access the administration panel. The security issue is confirmed in version 3.5.3. Other versions may also be affected. SOLUTION: Restrict access to the the "acidcat_3.mdb" file in the databases directory. PROVIDED AND/OR DISCOVERED BY: LionTurk ORIGINAL ADVISORY: http://packetstormsecurity.org/1001-exploits/acidcatcms-disclose.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 11:28:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 20:28:44 +0100 Subject: [SEC] [SA38063] phpYellow File Upload Vulnerability Message-ID: <201001041928.o04JSiGX007844@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: phpYellow File Upload Vulnerability SECUNIA ADVISORY ID: SA38063 VERIFY ADVISORY: http://secunia.com/advisories/38063/ DESCRIPTION: indoushka has reported a vulnerability in phpYellow, which can be exploited by malicious users to compromise a vulnerable system. The vulnerability is caused due to the application not properly validating the extension of uploaded files, which can be exploited to upload and execute arbitrary PHP code. SOLUTION: Restrict access to .php files in the "userlogo" directory. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 12:28:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 21:28:43 +0100 Subject: [SEC] [SA37866] Joomla BF Survey Component "controller" Local File Inclusion Vulnerability Message-ID: <201001042028.o04KShHQ029397@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla BF Survey Component "controller" Local File Inclusion Vulnerability SECUNIA ADVISORY ID: SA37866 VERIFY ADVISORY: http://secunia.com/advisories/37866/ DESCRIPTION: A vulnerability has been reported in the BF Survey component for Joomla, which can be exploited by malicious people to disclose sensitive information. Input passed to the "controller" parameter in index.php (if "option" is set to "com_bfsurvey") is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks. SOLUTION: Upgrade to BF Survey Basic version 1.1 or later. PROVIDED AND/OR DISCOVERED BY: FL0RiX ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 13:28:50 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 22:28:50 +0100 Subject: [SEC] [SA38071] Imagevue Gallery "path" Cross-Site Scripting Vulnerability Message-ID: <201001042128.o04LSonK018539@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Imagevue Gallery "path" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38071 VERIFY ADVISORY: http://secunia.com/advisories/38071/ DESCRIPTION: A vulnerability has been reported in Imagevue Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "path" parameter in admin/upload.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. SOLUTION: Filter malicious characters and character sequences using a proxy. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 14:23:33 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 23:23:33 +0100 Subject: [SEC] [SA38043] VisionGate "url" Cross-Site Scripting Vulnerability Message-ID: <201001042223.o04MNXhY007460@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: VisionGate "url" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38043 VERIFY ADVISORY: http://secunia.com/advisories/38043/ DESCRIPTION: A vulnerability has been reported in VisionGate, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "url" parameter in login.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is reported in version 2.3. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 14:43:38 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 23:43:38 +0100 Subject: [SEC] [SA37966] BLOG:CMS Comments Script Insertion Vulnerability Message-ID: <201001042243.o04MhcZR027436@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: BLOG:CMS Comments Script Insertion Vulnerability SECUNIA ADVISORY ID: SA37966 VERIFY ADVISORY: http://secunia.com/advisories/37966/ DESCRIPTION: Francois Ropert has discovered a vulnerability in BLOG:CMS, which can be exploited by malicious users to conduct script insertion attacks. Input passed to the body when editing a comment is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which is executed in a user's browser session in context of an affected site when a malicious comment is viewed. The vulnerability is confirmed in version 4.2.1.c. Other versions may also be affected, SOLUTION: Update to version 4.2.1.e. http://blogcms.com/?item=download PROVIDED AND/OR DISCOVERED BY: Francois Ropert ORIGINAL ADVISORY: http://blogcms.com/?item=download ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 14:55:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Mon, 4 Jan 2010 23:55:44 +0100 Subject: [SEC] [SA38052] Hit Counter Cross-Site Scripting Vulnerabilities Message-ID: <201001042255.o04Mtint014684@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Hit Counter Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA38052 VERIFY ADVISORY: http://secunia.com/advisories/38052/ DESCRIPTION: Some vulnerabilities have been reported in Hit Counter, which can be exploited by malicious people to conduct cross-site scripting attacks. Input appended to the URL after index.php, inc/login.php, and admin/index.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in the context of an affected site. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 15:08:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 00:08:43 +0100 Subject: [SEC] [SA38075] Weatimages "path" Directory Traversal Vulnerability Message-ID: <201001042308.o04N8hGu001962@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Weatimages "path" Directory Traversal Vulnerability SECUNIA ADVISORY ID: SA38075 VERIFY ADVISORY: http://secunia.com/advisories/38075/ DESCRIPTION: e.wiZz! has discovered a vulnerability in Weatimages, which can be exploited by malicious people to disclose sensitive information. Input passed to the "path" parameter in index.php is not properly sanitised before being used to list directories. This can be exploited to list the content of parent directories via directory traversal sequences. Successful exploitation allows disclosing the content of arbitrary directories on Windows, and the content of the first two upper directories on Linux. The vulnerability is confirmed in version 1.7.2. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: e.wiZz! ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10846 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 15:23:30 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 00:23:30 +0100 Subject: [SEC] [SA38067] Fedora update for automake Message-ID: <201001042323.o04NNUaZ021729@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Fedora update for automake SECUNIA ADVISORY ID: SA38067 VERIFY ADVISORY: http://secunia.com/advisories/38067/ DESCRIPTION: Fedora has issued an update for automake. This fixes a security issue, which can be exploited by malicious, local users to manipulate certain data. For more information: SA37814 SOLUTION: Apply updated packages using the yum utility ("yum update automake"). ORIGINAL ADVISORY: FEDORA-2009-13157: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00012.html OTHER REFERENCES: SA37814: http://secunia.com/advisories/37814/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 15:43:48 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 00:43:48 +0100 Subject: [SEC] [SA38022] phpBannerExchange "bannerurl" Cross-Site Scripting Vulnerability Message-ID: <201001042343.o04NhmYg009299@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: phpBannerExchange "bannerurl" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38022 VERIFY ADVISORY: http://secunia.com/advisories/38022/ DESCRIPTION: indoushka has reported a vulnerability in phpBannerExchange, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the "bannerurl" parameter to signupconfirm.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 15:55:46 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 00:55:46 +0100 Subject: [SEC] [SA38070] Fedora update for slim Message-ID: <201001042355.o04NtkWi028958@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Fedora update for slim SECUNIA ADVISORY ID: SA38070 VERIFY ADVISORY: http://secunia.com/advisories/38070/ DESCRIPTION: Fedora has issued an update for slim. This fixes a security issue, which can be exploited by malicious, local users to disclose potentially sensitive information. For more information: SA35132 SOLUTION: Apply updated packages using the yum utility ("yum update slim"). ORIGINAL ADVISORY: FEDORA-2009-13551: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00000.html FEDORA-2009-13552: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00009.html OTHER REFERENCES: SA35132: http://secunia.com/advisories/35132/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 16:08:41 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 01:08:41 +0100 Subject: [SEC] [SA37706] PDF-XChange Viewer Content Parsing Memory Corruption Vulnerability Message-ID: <201001050008.o0508fov016226@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: PDF-XChange Viewer Content Parsing Memory Corruption Vulnerability SECUNIA ADVISORY ID: SA37706 VERIFY ADVISORY: http://secunia.com/advisories/37706/ DESCRIPTION: Secunia Research has discovered a vulnerability in PDF-XChange Viewer, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an input validation error in PDFXCview.exe when parsing certain content and can be exploited to corrupt memory via a specially crafted PDF file. Successful exploitation allows execution of arbitrary code when a user views a malicious PDF document. NOTE: The vulnerable code is e.g. also present in the bundled PDF-XChange shell extension (XCShInfo.dll), which is installed by default. This vector allows exploitation as soon as a user e.g. selects a malicious PDF file or hovers the mouse pointer over it. The vulnerability is confirmed in version 2.0.42.9. Other versions may also be affected. SOLUTION: Update to version 2.044. A fixed version is also bundled with version 4.0174 of the various PDF-XChange editions. PROVIDED AND/OR DISCOVERED BY: Carsten Eiram, Secunia Research. CHANGELOG: 2010-01-04: Added "PDF-XChange 4.x" as an affected product since older versions bundle the vulnerable PDF-XChange Viewer product. ORIGINAL ADVISORY: Secunia Research: http://secunia.com/secunia_research/2009-64/ Tracker Software Products: http://www.docu-track.com/news/show/80 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 16:23:39 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 01:23:39 +0100 Subject: [SEC] [SA38014] Joomla! Dailymeals Component "controller" Local File Inclusion Vulnerability Message-ID: <201001050023.o050NdBX003584@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla! Dailymeals Component "controller" Local File Inclusion Vulnerability SECUNIA ADVISORY ID: SA38014 VERIFY ADVISORY: http://secunia.com/advisories/38014/ DESCRIPTION: A vulnerability has been discovered in the Dailymeals component for Joomla!, which can be exploited by malicious people to disclose potentially sensitive information. Input passed to the "controller" parameter in index.php (if "option" is set to "com_dailymeals" and "view" is set to "dailymeals") is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks. The vulnerability is confirmed in version 1.0. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. PROVIDED AND/OR DISCOVERED BY: FL0RiX ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10928 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 16:43:40 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 01:43:40 +0100 Subject: [SEC] [SA38079] HLstatsX Community Edition "award" SQL Injection Vulnerability Message-ID: <201001050043.o050he64023554@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: HLstatsX Community Edition "award" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38079 VERIFY ADVISORY: http://secunia.com/advisories/38079/ DESCRIPTION: A vulnerability has been discovered in HLstatsX Community Edition, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "award" parameter in hlstats.php (if "mode" is set to "dailyawardinfo" and "game" is set to e.g. "tf" or "l4d") is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is confirmed in version 1.6.5. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: bnc ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10850 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 16:55:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 01:55:44 +0100 Subject: [SEC] [SA38118] Rezervi "root" File Inclusion Vulnerability Message-ID: <201001050055.o050tiDb010800@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Rezervi "root" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA38118 VERIFY ADVISORY: http://secunia.com/advisories/38118/ DESCRIPTION: A vulnerability has been reported in Rezervi, which can be exploited by malicious people to compromise a vulnerable system. Input passed to the "root" parameter in include/mail.inc.php is not properly verified before being used to include files. This can be exploited to include arbitrary files from local or external resources. Successful exploitation requires that "register_globals" is enabled. The vulnerability is confirmed in version 3.0.2. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. PROVIDED AND/OR DISCOVERED BY: r00t.h4x0r ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10967 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 17:08:37 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 02:08:37 +0100 Subject: [SEC] [SA38087] Fedora update for cacti Message-ID: <201001050108.o0518blp030495@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Fedora update for cacti SECUNIA ADVISORY ID: SA38087 VERIFY ADVISORY: http://secunia.com/advisories/38087/ DESCRIPTION: Fedora has issued an update for cacti. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to conduct cross-site scripting attacks. For more information: SA37481 SOLUTION: Apply updated packages using the yum utility ("yum update cacti"). ORIGINAL ADVISORY: FEDORA-2009-12560: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00166.html OTHER REFERENCES: SA37481: http://secunia.com/advisories/37481/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 17:23:40 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 02:23:40 +0100 Subject: [SEC] [SA37920] Xoops Cross-Site Scripting and SQL Injection Vulnerabilities Message-ID: <201001050123.o051NeDe017849@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Xoops Cross-Site Scripting and SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA37920 VERIFY ADVISORY: http://secunia.com/advisories/37920/ DESCRIPTION: Stefano Angaran has discovered two vulnerabilities in Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to conduct SQL injection attacks. 1) Input passed to the "op" parameter in modules/pm/readpmsg.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Successful exploitation requires that the Private Messaging module is installed. 2) Input passed to the "not_list" parameter in include/notification_update.php via third-party modules (e.g. News) is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerabilities are confirmed in version 2.4.2. Prior versions may also be affected. SOLUTION: Update to version 2.4.3. PROVIDED AND/OR DISCOVERED BY: Stefano Angaran, reported via Secunia. ORIGINAL ADVISORY: Xoops: http://www.xoops.org/modules/news/article.php?storyid=5178 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 17:43:34 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 02:43:34 +0100 Subject: [SEC] [SA37917] Joomla CARTwebERP Component "controller" File Inclusion Vulnerability Message-ID: <201001050143.o051hY6Y005404@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla CARTwebERP Component "controller" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA37917 VERIFY ADVISORY: http://secunia.com/advisories/37917/ DESCRIPTION: A vulnerability has been reported in the CARTwebERP component for Joomla, which can be exploited by malicious people to disclose potentially sensitive information. Input passed to the "controller" parameter in index.php (if "option" is set to "com_cartweberp") is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks. The vulnerability is reported in version 1.56.75. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. PROVIDED AND/OR DISCOVERED BY: FL0RiX ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10942 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 17:55:47 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 02:55:47 +0100 Subject: [SEC] [SA37926] Joomla! Memory Book! Component SQL Injection and File Upload Vulnerability Message-ID: <201001050155.o051tlgj025069@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla! Memory Book! Component SQL Injection and File Upload Vulnerability SECUNIA ADVISORY ID: SA37926 VERIFY ADVISORY: http://secunia.com/advisories/37926/ DESCRIPTION: Some vulnerabilities have been reported in the Memory Book! component for Joomla!, which can be exploited by malicious users to conduct SQL injection attacks and potentially compromise a vulnerable system. 1) Input passed to the event description when adding a new event is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation may require a valid user account. 2) The security issue is caused due to the application improperly validating uploaded files. This can be exploited to execute arbitrary PHP code by uploading a PHP file with e.g. an appended ".jpg" file extension. Successful exploitation may require a valid user account that Apache is not configured to handle the mime-type for uploadable media files. SOLUTION: Edit the source code to ensure that input is properly sanitised and verified. PROVIDED AND/OR DISCOVERED BY: jdc ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10731 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 18:08:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 03:08:44 +0100 Subject: [SEC] [SA38102] Gentoo update for adobe-flash Message-ID: <201001050208.o0528ibN012343@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Gentoo update for adobe-flash SECUNIA ADVISORY ID: SA38102 VERIFY ADVISORY: http://secunia.com/advisories/38102/ DESCRIPTION: Gentoo has issued an update for adobe-flash. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. For more information: SA37584 SOLUTION: Update to "www-plugins/adobe-flash-10.0.42.34" or later. ORIGINAL ADVISORY: GLSA-201001-02: http://www.gentoo.org/security/en/glsa/glsa-201001-02.xml OTHER REFERENCES: SA37584: http://secunia.com/advisories/37584/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 18:25:25 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 03:25:25 +0100 Subject: [SEC] [SA38099] Debian update for postgresql Message-ID: <201001050225.o052PPP0032186@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Debian update for postgresql SECUNIA ADVISORY ID: SA38099 VERIFY ADVISORY: http://secunia.com/advisories/38099/ DESCRIPTION: Debian has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct spoofing attacks. For more information: SA37663 SOLUTION: Apply updated packages. -- Debian GNU/Linux 4.0 alias etch -- Source archives: http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1.diff.gz Size/MD5 checksum: 40781 7e87c7dba806e8f17527ecd44f3b21ad http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19.orig.tar.gz Size/MD5 checksum: 11535709 64185bcc279f0787017d89596ad519a0 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27.orig.tar.gz Size/MD5 checksum: 10060890 ec501383ae38f79397c50ecf62e4eda5 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1.dsc Size/MD5 checksum: 1179 9a2edb5a2dfe632748f7ad720c7c9ea2 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1.diff.gz Size/MD5 checksum: 36672 7d7f09f39c682a1d618e3c1e82615410 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1.dsc Size/MD5 checksum: 1134 b7487381adfbf4dbbf4972c66cbe6c85 Architecture independent packages: http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-server-dev-7.4_7.4.27-0etch1_all.deb Size/MD5 checksum: 531632 739cdd7ee12a7ebd4b8becceba7ff010 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-doc-8.1_8.1.19-0etch1_all.deb Size/MD5 checksum: 1521982 29989a9668481d64a22906e8a8cb39e6 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-doc-7.4_7.4.27-0etch1_all.deb Size/MD5 checksum: 1193124 542a60916e16ac48b7b6651602c44891 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 4502226 e2dfd3a9f3f2a5a75c79928365ab9909 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 190990 89c0b64ed243f6700565d5bd9180b546 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 208112 db08e4d3ec3fd6cf9004aaf27af768cc http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 309566 d43ff3e642a9f5a8cf152c53e6eb0180 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_alpha.deb Size/MD5 checksum: 3564690 161bb786e8346cd468f7e34d1ab58163 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 408774 0808d56612830c11d0ec885f781e314c http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 202052 c3e002b2147c915eb931c2ca3f1f1586 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_alpha.deb Size/MD5 checksum: 130734 89c3fe836c139046efab77a24c40c863 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_alpha.deb Size/MD5 checksum: 135176 3d0354c8d4a60861454aa1b4aea815bd http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 636558 217e48ee927f9f6d04f15f090b749c33 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 395264 365955de78195ae80bdb71fdfc6f7866 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 201444 dcc95b6d02765eed0f62958ff07a816e http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_alpha.deb Size/MD5 checksum: 642668 8024d7e71c4d0c6ceeb7fd24250f5d3d http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_alpha.deb Size/MD5 checksum: 1178810 558adcd31507ecc690ab5898b6fc65f6 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 1531260 ab0f570730af883785c645d8a8b3d341 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_alpha.deb Size/MD5 checksum: 134020 900bb0daf468d3b3d6a0b40b823024a4 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 691856 4f8ad48774fbcf32c411eff4ee0cb315 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 216142 2acc502c13ae1be6175046f23319ff15 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_alpha.deb Size/MD5 checksum: 213714 c7b4c7a26729288aff50f6944011713b amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 656438 14df0774b67e18f1c41b1a186d3cd962 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_amd64.deb Size/MD5 checksum: 597174 a3c2f201ae8310a3e1ee225f0f1d514d http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 1480390 b2632a59e235fea5a2521f745c75fb46 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 200790 7fa613854da07118aaec3caf29d0f170 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 636894 793607b6eec9c02530f48ed103c31edb http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 200192 d397d82ee9b8c5d8c7e8530a0bf2cca1 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 382206 aecea199438ff3d8aa362764034b541b http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_amd64.deb Size/MD5 checksum: 1135084 b8df44d3616f063154896546409469b3 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_amd64.deb Size/MD5 checksum: 133374 406bb9a8b90d5b9dd1e95344f412ddb4 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 211782 19bac9b0140aee67391b1c3b7c546fae http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 364756 78d093848b91c945ce72bcb7924e16a0 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_amd64.deb Size/MD5 checksum: 129786 fe8737fe50a30c8a4643590783a00200 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 206526 061d4185a7541a368c39373d5468ac43 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 210772 75a09f316db5d7dd4f45b824bcd8cbc0 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 190058 f16105b82e7936939593b5a4dd6c4f50 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 4389894 1ed6f95456bc9ce64ca09f779fb36e5e http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_amd64.deb Size/MD5 checksum: 3463854 ce3b373df1bcd00e6514a0f764521b3a http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_amd64.deb Size/MD5 checksum: 302890 87895627f59fec38a42ac59e073fa1b6 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_amd64.deb Size/MD5 checksum: 134290 3308dd7ba774b2550dade127f98bce53 arm architecture (ARM) http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_arm.deb Size/MD5 checksum: 211412 ce7b7b5a1757e494bd43f26d2fc6467b http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 199058 67be91ec04255f305f5c6971e37f3eb5 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 625266 e378c5f25a4ce1873b6e2e708e579e75 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_arm.deb Size/MD5 checksum: 348232 dc0b092aba5a8555ab226ea8eec4681d http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 200350 cf7750771cb0d03972a0e4ab60c3e69c http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_arm.deb Size/MD5 checksum: 131666 ea9c474ef82b95a5ac1462eb05bfbbe7 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_arm.deb Size/MD5 checksum: 133820 83d193493b2a866ad9b7dcb4a9c7ed3b http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_arm.deb Size/MD5 checksum: 1109852 de773c44ef848d1305d267aa8bd46827 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_arm.deb Size/MD5 checksum: 369240 488289dae52742f084f425cf42a0702e http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_arm.deb Size/MD5 checksum: 3412046 87094ba163a63f2b0008c4efef971ff0 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_arm.deb Size/MD5 checksum: 189662 33ab9439063d71fee4df5fe998ddab4b http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_arm.deb Size/MD5 checksum: 207750 5eac3b23d8ab79dd5f9ff7b9773da7d4 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 203894 be5f83f199eb9350a785ef3d590bf0d3 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_arm.deb Size/MD5 checksum: 585724 1ae2df2837597772a1b0be17230268d8 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_arm.deb Size/MD5 checksum: 291560 9b0afef10eb0e6e8c3babe3b5f6416f7 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 1447782 8a3ea0a856b14b790b15542abe5c181a http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 4315824 bc7e934d07b131b6aa7a061cf8dec0b7 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_arm.deb Size/MD5 checksum: 637376 40fc145dfb00e4fa6461368f0bf1ee2b http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_arm.deb Size/MD5 checksum: 128404 f623428e23882a8c44944480842efe7c hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 304572 5449988b6f1964851867c539ab330935 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_hppa.deb Size/MD5 checksum: 136310 17c6807b10189d7725eb7e81c07ca7a3 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 684004 f0e87155bed82b664737cc18efee9ad8 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 217032 3aa1efea2149f53108f6605962f61bba http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_hppa.deb Size/MD5 checksum: 3890058 a7562d82aad35c12a76c0bec3b3c170e http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 369394 9f656480ff1b12c948a5fb8a08e8866d http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 208804 036f5f123a9c7aec955dba866f74625d http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 212958 2b4d415748be404269cfc7aa22947601 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_hppa.deb Size/MD5 checksum: 637300 b863e7e3124903a0415f655e7331bcf2 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_hppa.deb Size/MD5 checksum: 131048 364fb778bc3e30852a9bcf4b77d0372b http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_hppa.deb Size/MD5 checksum: 135824 c23e9ed7b62bc73211f80100adec12ae http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_hppa.deb Size/MD5 checksum: 1176958 072efc7c4232340b4bda102efa6b707b http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 391188 2d3129c860e278606f26ff16456d2b4e http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 191214 6ed8dbf535bef731d239e7f148ddc1a3 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 637226 21a7ff7e819ff6bf33fef73025551885 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 4829174 c007d19fe771134f0889136cdd4fa987 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 202380 a75e9d597a92ebf032c53058320589bf http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 202508 471d9a5dd6902fbe1e438cea3a095e33 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_hppa.deb Size/MD5 checksum: 1520740 286681948ce15913b2f657d486bbdefa i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_i386.deb Size/MD5 checksum: 131634 ac7e259c8b0de669ec429c51a9128dcd http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 1461532 df71d62f53e21de14be9387903954bfc http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 636052 5bde112ff217639b066968ea1d88fe11 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_i386.deb Size/MD5 checksum: 1117638 65b1a18c5ba96b369a192ed1cc3ddd19 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 4301750 35090ac594866140b8327bb8a635d77b http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 205886 cc5e76b3011c151b07c3a6419f1863f0 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_i386.deb Size/MD5 checksum: 298842 cf367d99c98cf398918b3cbf1a0a2e15 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_i386.deb Size/MD5 checksum: 133558 20b602d7613ecd793780c8a7b4e93159 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 198820 916c993c5ec43323fb29c21b93d65676 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_i386.deb Size/MD5 checksum: 3403214 a0fe0a5e813a480f79be05be1383aad6 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 623632 e628b01b30342c27dd526a7aa199fe81 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_i386.deb Size/MD5 checksum: 129400 62de3201b279c905be261c351ae2302a http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_i386.deb Size/MD5 checksum: 211304 cf69ce66e565a882a8d4e657a49f2d67 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_i386.deb Size/MD5 checksum: 377030 521dc1be7a37201d6621043854c359d6 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_i386.deb Size/MD5 checksum: 575468 524ec95f1d8239a9807b80b724814a28 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_i386.deb Size/MD5 checksum: 358058 64dd0ab7b06d4e3bc370e29ad54e6682 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_i386.deb Size/MD5 checksum: 189288 8d7be7bd4b8958d2d28f2cead71faffa http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_i386.deb Size/MD5 checksum: 200274 984a18ace8b12e0fd783fd579e58d357 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_i386.deb Size/MD5 checksum: 209634 cebfcc612b77a9cf896ff649b3053346 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 222064 be430fa159aa99d7b0500de132974169 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_ia64.deb Size/MD5 checksum: 141838 27d1f6dcf3f5aa4404a8f8a89d464d30 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_ia64.deb Size/MD5 checksum: 141504 072a8c4c441db866402395f0bc00f3f5 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 192742 497be82fae7349f7e9e3c0431883f51e http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 400666 3bbe96625d85513bb8217720ee9c896a http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 795808 7bbb5f219e8a2faadc59eed0b7aba3dd http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_ia64.deb Size/MD5 checksum: 721120 d1deed1029e1085bbe51955aebe0a035 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 217704 c63bebb3f4ca719c7121d1f5ca40a279 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 431224 924fb76d72887636428d715dacfdf488 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_ia64.deb Size/MD5 checksum: 1262366 20888c94d413a66e4cf3c14f86b84c13 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_ia64.deb Size/MD5 checksum: 133790 24031921129d1f75bce8e2209ce4fb2d http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_ia64.deb Size/MD5 checksum: 3930582 adacad2f73ef2170cc3c8818d764fb5a http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 326596 6b821b8771855d8f8992ef864ceeb0a8 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 1663530 93535ee9874ed2c6580a08cca48623a5 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 210802 1564f0471eb0034e6641e388965e2d73 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 636510 4dc60efda98c9da13660251bd263ab97 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 208338 ff38ad3bbe3273b0f2f076e25207321b http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 227980 df1908424b1ac06366b8014abc0febe0 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_ia64.deb Size/MD5 checksum: 5129152 baae5d0903c3b372d04fcb828e714c21 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_mips.deb Size/MD5 checksum: 3705738 04ada7ba0864b09709d86b1c20c7a3b7 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 634554 9f1daa7a1bc50141d619bd6eb0bb0416 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 199314 8cdec1ea5df86b34a199dc737a617110 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_mips.deb Size/MD5 checksum: 134178 8c71a1319b908ebab9cd8d636ae33cd4 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_mips.deb Size/MD5 checksum: 127186 85fde99e0713e9be58658fbb52bce54f http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 1481714 edb8ef2a832cb098de870a141c828517 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_mips.deb Size/MD5 checksum: 213544 9f5d91768c0fd2ede96ae88dcaf5a474 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_mips.deb Size/MD5 checksum: 377378 33c5dfd063b9e96b14dd4b4e9904d901 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_mips.deb Size/MD5 checksum: 189472 69a603c697e3132d16edebc8925d290c http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 200306 1c532ee685c26b1597d33cefc81a5a59 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_mips.deb Size/MD5 checksum: 208618 b4a3290510887c617ad4835a29c88623 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 201864 d52f4a685bc4c8ec8ebd1e6d3bab3d12 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_mips.deb Size/MD5 checksum: 367622 085ab051b044532ec3da74ed21adae00 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 636498 e60f0ca7182a9ccb23e43f3f5acbcf35 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_mips.deb Size/MD5 checksum: 580756 ed26e3f61ed76889e3192389a465301a http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_mips.deb Size/MD5 checksum: 1126966 eeabfbc6347a8693e5baeaedf6e58414 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_mips.deb Size/MD5 checksum: 4637638 f09c6fa7d89502000b22eae8b1f94749 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_mips.deb Size/MD5 checksum: 132944 0fe9c78c4a42ec8c8ede7f09083bc62d http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_mips.deb Size/MD5 checksum: 297636 c1ff957e831e8cb2d5f11906c3648cb1 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 297824 efad72ec7e5f2f976ac2842af709ce55 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 189472 4076d512818e63b19d60ac451dfcaf39 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_mipsel.deb Size/MD5 checksum: 580360 4d79b7592b37131e222c0ed61dd6d9c8 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 367902 7e12a1744fb5545b8300b84a3d4319e7 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_mipsel.deb Size/MD5 checksum: 127122 13c5dfa2c178868aa29d2e7ca118c898 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 200372 51e095c1350c0696d9f4eef2c8ffe4a6 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 1479770 deb0714f4377164a32b83fc2ab61997f http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 634346 912df6a0ae148e41cfcbd0419663893e http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_mipsel.deb Size/MD5 checksum: 134074 185c9c0c9b8864779df3c58f4f0bbbca http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_mipsel.deb Size/MD5 checksum: 1126392 91abf23c6077f8830e0999ed6bfab452 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_mipsel.deb Size/MD5 checksum: 133014 116ca5d0c22d3575b51caa52e52bd459 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 213648 061f8c622b3bed50543f3f154ccb4195 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 208654 d677573f1fc14996ee37d3d4b56eac27 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 4323924 d021dfced8d4ee3cbe1792c63d36fadb http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 201892 d3d268a6050e5560cea71c5e17b1531f http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 636502 c2e21c0bc19e48f235e486e5b3ad518f http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_mipsel.deb Size/MD5 checksum: 3395654 0cb537a89dfd3311225173afe4658dc5 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 199368 59f2d95497cab69085e6332550cea0a8 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_mipsel.deb Size/MD5 checksum: 374986 4336c3e7f80fa9a01d2cdfb2ecc9d543 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 201990 37e5f4a413cf2450b0b02ecfaea3f0f9 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_powerpc.deb Size/MD5 checksum: 1139818 97955e7b85890c16053afd0a812091c9 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 4697822 26c333e62db31e83ca6fd6a6524e468f http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 638424 fd804800216383a5f2f0d6718c2bd00f http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 1487994 134f48666b0c8d769ee12d0764740acd http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 677658 a209bdfca44324c9fbc2349ec06e7628 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 301040 bed18d6e6aeacb05614129bdc9c6cd3b http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 206500 329927714459cf81495e9e09aa2fbbf5 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_powerpc.deb Size/MD5 checksum: 633694 a933fea0b8b3dcecfb784f77cc9dc408 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 377178 58e8b40f135a407596d069948b3ff15d http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 200848 0dd49516fa2ddeee2472e8e5ba5b6dd4 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 214554 74b96aa6d810733eb538016f3536580f http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 211568 ba1a3aa88c40101a4489c307fe0067f6 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_powerpc.deb Size/MD5 checksum: 130374 a6b9be64584b7a4be9b05a1ba6efbf7a http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_powerpc.deb Size/MD5 checksum: 3773296 d2b6b114c08d0ae6a4ae57761710be02 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 359060 e9ad8fd2a270d756aad1ebc3ee4e5157 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_powerpc.deb Size/MD5 checksum: 135634 0246bea143e4db28f83cf5df31739c5d http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_powerpc.deb Size/MD5 checksum: 190712 e7b3a1accc98e108d2de0a104d21fa3f http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_powerpc.deb Size/MD5 checksum: 133708 7a97ee715cf8a23fa8d20073f89d7c79 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_s390.deb Size/MD5 checksum: 305136 a4e5e86eadde995e4f466a04260afbe3 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 4752988 47440422e258e60060e74fa0cfba8045 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_s390.deb Size/MD5 checksum: 133424 86ddc67e3272ba78fa6a807ac61f68ce http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_s390.deb Size/MD5 checksum: 190152 f5f09c634ae60429b3126048b6c76332 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_s390.deb Size/MD5 checksum: 377482 8a738ffeb0da2962e6ba405600a51ccc http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_s390.deb Size/MD5 checksum: 214234 423d5ccdac153d1b485e67fbbe59b737 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_s390.deb Size/MD5 checksum: 211534 b2ea78b40797f02c2c7675eba3cda750 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_s390.deb Size/MD5 checksum: 615328 b2e7fa98e781967efb08fdb42ba1de28 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_s390.deb Size/MD5 checksum: 128792 b76c564c9461a08897b932bc1bf2210b http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_s390.deb Size/MD5 checksum: 1143508 50717a15d5c8736cb909befc68575409 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_s390.deb Size/MD5 checksum: 366230 18c3d124c4bd835b0b95aeca60b3e394 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 200988 20f739061201211f9a6c7b7eb3a971db http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_s390.deb Size/MD5 checksum: 3822296 f7bf58f222eb945f79340fc46d5c11c8 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 1499798 0520a06ed3b27eef77aec54d06e4030e http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 201150 169bc4e0f42344b90836ac83b02a1069 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 666128 cb25242029785a795c2642cd64d9a57c http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 636530 d03c49c16a89170a89ab56e79c3fd64c http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_s390.deb Size/MD5 checksum: 205052 94658d8a375dc674c1b99080c37f5b2e http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_s390.deb Size/MD5 checksum: 134138 aec19cb58ad7ec9eeb66b866de9badaa sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plperl-7.4_7.4.27-0etch1_sparc.deb Size/MD5 checksum: 128860 8e05a33047766903da455dddaab16bfa http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq4_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 297178 c4e96241e2f39008fc575bd75802283f http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-7.4_7.4.27-0etch1_sparc.deb Size/MD5 checksum: 3699772 ce8ec7c98ca5a8a48a2d2aa95076ba9a http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 200272 6e28717aae8863e8bc0f0981ff9f7d62 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 637944 83000df4c900cc795810b10d87bd1fb3 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 635678 168c857d230a24faeb114850cdb93c07 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpq-dev_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 355620 08832615da490c0a3576059c9de7def3 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 188920 8dc243b802eb41f815d6f01861f6e286 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-pltcl-7.4_7.4.27-0etch1_sparc.deb Size/MD5 checksum: 134084 896764ec113c0778ccb6b54380aada82 http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg-dev_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 372622 481cea3ce04d544a9b56e977e1d922e0 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 205364 b920892abf90492d391b21be50f2a4e3 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 4626870 ed4a4cd6c1c7a14437ae5d1171ec0f1a http://security.debian.org/pool/updates/main/p/postgresql-8.1/libpgtypes2_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 209898 dbcfd68d23f0290697a749946270142b http://security.debian.org/pool/updates/main/p/postgresql-8.1/libecpg5_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 209286 32bbf38145049e0d4bb254367e8c5f05 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-plpython-7.4_7.4.27-0etch1_sparc.deb Size/MD5 checksum: 132300 3ad5d1a0540c7fb20704baf70d323be7 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-client-7.4_7.4.27-0etch1_sparc.deb Size/MD5 checksum: 1111328 4d005aebebbc91f4393b3bcd8b22af61 http://security.debian.org/pool/updates/main/p/postgresql-7.4/postgresql-contrib-7.4_7.4.27-0etch1_sparc.deb Size/MD5 checksum: 583614 1e51c128792597865b0b24fb4f61d7ca http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 199512 207f3f4ad1bdc33f801ebe90acad2a68 http://security.debian.org/pool/updates/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0etch1_sparc.deb Size/MD5 checksum: 1463082 16c516c4097f434b411d85d537110df8 -- Debian GNU/Linux 5.0 alias lenny -- - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1.dsc Size/MD5 checksum: 1665 1ef1bcb1f66dbf3aaedaa438ca96c6ae http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9.orig.tar.gz Size/MD5 checksum: 13850244 05088ab3b924a326914572eb77db541b http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1.diff.gz Size/MD5 checksum: 45140 0ab48c65a1c42e677e63c49a3198b65b Architecture independent packages: http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client_8.3.9-0lenny1_all.deb Size/MD5 checksum: 247808 063f66f5cde6932b9ce8565ec618b259 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql_8.3.9-0lenny1_all.deb Size/MD5 checksum: 247844 bb2a8b43ddcfd84d36534748fa282867 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-doc_8.3.9-0lenny1_all.deb Size/MD5 checksum: 247646 92f36e64dd46940994d3d6679c5a370e http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib_8.3.9-0lenny1_all.deb Size/MD5 checksum: 247706 fcef243b109aadb0afe5e24af72fadfd http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-doc-8.3_8.3.9-0lenny1_all.deb Size/MD5 checksum: 2155508 b0c862dd5a120683369859f098d58968 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 268236 67d08614516d9fa9e541f9c4da665f08 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 276772 23beca661eef639bfe73b0fb009f1db2 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 277714 3e173bec97c21b5ac451d1b2bd77ec94 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 5264286 0e026501523bcea7ab4401bf2f788aa3 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 1697648 e3e1c2f04947f2ade0d08c1b787911cc http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 275058 a198e915f70df2b364dcda6ad5b908cd http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 472794 e70e51b2bc70bbc93f876cd00f110c92 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 256766 ec01e3db1cfe18ce40a724e8f6157a1d http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 613852 1726b3c840ec56ddd77cd7d7533520d3 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 384382 27c62775ddbdc3347340fe6bf44391ea http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 821962 118a2dc034ebd1fcc079626ee61e2be0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 471076 b1a90b3d1add497c9a49142b6531fcdc http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_alpha.deb Size/MD5 checksum: 266582 cc36f36bc42e0f990a19e9eb76ba0592 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 453356 0f170ff7a42e00af152f9c2b288ea88a http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 612226 419b3c3e0d4a1a0437b0dc4e1dd30d9c http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 276816 428d8d2cd20a122d65142340ec32c5b0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 277180 372ba7ae746ad62c6f59802d33a9ac1f http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 466152 be4b24213d66e253af05ce6698422d9e http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 255740 8aa35e6a113374523a539798b03696bf http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 266560 ce5f990d90315f81e97a734f34f3b09d http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 1694580 11320c18bd0009df66155e9b491a56d0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 275448 c76f8848b2af512762cf888d1970829d http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 820824 9d43519ae4ab99c386f1116b9e83536d http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 5358478 636871575bcb4ac4c4a6e129e40bd206 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 385386 f6e759bac3f1470402c5c5c10cff27de http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_amd64.deb Size/MD5 checksum: 269122 8dc1266cc5b9aa1c1b9a475f24121f9b arm architecture (ARM) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 268358 9feff9b13a174308a523816cd8df8347 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 819744 5fcc6b29493cd27998383d77b4101d6c http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 254848 9fc372e347d832ed9ce3ed65c1c68c67 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 273360 47645bf95018da752fd0107e955987af http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 274128 acadf9d955e64374b4fe263bed0c8ffa http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 275610 dcc757493a2f5a452907e125e002beba http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 5228322 0b619f90803de6d2a67f33c1f76bda07 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 1654210 880ce8f91d9166ed49d4ef463d1c7c41 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 437154 9a08d0d937134bbc623c48e4a4510d8e http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 370840 0aad586eb653fadd50118b505cee355d http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 573360 2026f6813a891888e4b66c07a2643cd5 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 457392 6326a5d61707df865ac38667da8b423b http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_arm.deb Size/MD5 checksum: 266690 e3717d1cbef771dc89681a4165e8ce68 armel architecture (ARM EABI) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 589414 20adb8c4bbfc74dd9de0407ecbda21d2 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 254102 c3f25fd9d8630debd69b12da80744bf8 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 460916 0b4279a134ea8c5454e64b28bfc2a507 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 438588 a455e0aabe69a7330b8c09f7fc78c93f http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 275652 7bc6157e27defed8cc723a4b8cd73baa http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 273494 a89eb629078aca49e88ac4a5f9c8d2d7 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 371282 1b8d703dfc4eb140d650e2f8661601c3 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 266590 93de12082a928c733ea80ad48165f787 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 5241054 85458f8aa6e629db949a4dd821715e4f http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 817072 e95fa7f20e042a8f4771434b615de808 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 268524 a12f6519c56fc1eb7afd1bcab96c68a4 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 1657656 0e09164c856630b94937cb0b798bd700 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_armel.deb Size/MD5 checksum: 277794 bc5897df27ac2e8fca54ada8ff2d0496 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 825804 755128b0755b300160aee49985dbfd8a http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 270906 7e69604f167617e42073933381225a90 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 387260 6581800d34f0c87e7b4f42ae771445f1 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 277208 bb6bb3b8a648577fa7a7747d46439480 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 5810012 0abf86785c5e84f6db3ecf02dbd63d52 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 1730960 2475adb8bd96a240285dfc9147fcc5d8 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 256260 dd8ec5c44c48ac7066ae6a13155cfc19 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 627006 adf80e94f9fe38118836e40b69fe1cf8 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 281696 c73a56bb16889711c3479f6e391b39ab http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 456164 65a263005534e60de18495bc6e7503be http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 279924 a6b1cf995465256bc93a566d9f238795 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 473108 ccf5fc6be7313fda853f94e02c0b9a64 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_hppa.deb Size/MD5 checksum: 268172 7c91fda5b7851e066a51bd88f4d29a18 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 254864 0a2a7133b674bab426787ed16cb98ee5 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 265352 bea561d80fddd839554d3ca6c93d9ae0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 819722 559ea45c296e95648357fd543ee5e9f0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 1664860 137f4ca86aab020004fbfaa0b8664bef http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 275768 4f0e17c03222cb633769cfff540f93e5 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 273536 d8762bca2f54744fbc4783db6ae74708 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 5237200 bea3a11c86370a7cb86471c70e387f1f http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 441474 7e3641bd006806bac083ff9108c56f16 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 276428 372deb0521a5c848d745d628c5fa4e3b http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 576904 08c665f45f01603dcb4809bfaa926050 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 458124 5e4ebbede87bbb425c56802c53b7fbfd http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 266374 0f02afd659d1d32957ff4ad039c91fc6 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_i386.deb Size/MD5 checksum: 376552 9c96aef09b3c784e45c891942d135bfc ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 287750 b12d21e25f08988655d1995c9a6c30fc http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 1876570 eeb376c9abe35a009436615477b55483 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 518902 1e18303a8ffc51b64d897c8057d25ae6 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 728374 147f2d1cfa9bc6a5fdcaff54c16673f0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 281808 0448d4d77f6c39e302054c96de37d6f6 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 407882 dac8564fb7863d71cded2b8a78ca6515 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 6271492 708b76a16b8f9729d27e09315c2c1ce5 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 288482 609e72efae4c72b6642261822040255f http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 273448 3cf01c7726cbabb522aa98c72b7aec8f http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 258064 b506ee2e72ccd92f0ecab42885765cfe http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 828776 d6d443268b873f899541cbc4b3a80b31 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 293440 a074cfc38a5e4f85051ad2650282cf86 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_ia64.deb Size/MD5 checksum: 492890 3eabf7babd973be9808985d47afa9dda mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 5558868 8c5bb0c43379c9989e77a56f51601fa7 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 269314 05d8a1b09a5f04b6c09ad7c632d66926 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 814044 731002e6f7a208b3f211fd7ea600467f http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 267238 f02828c3072f3d7cd9b3bfccd077b3ad http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 1677092 fdd7ef4583e68c3c00ba0dd8bb45d7be http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 265734 31337550d9e4fe179ec27a2c2584f9eb http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 278050 90e6d07a377ce6b91574dcb5313cf758 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 275270 656bb23c9c559bfb2104e7757763ae8c http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 455686 f67f0c0132430e5f404cd4cfe21b3955 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 456702 1cb46822405d61a5405c51aacaa6c1d8 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 577224 aba62d997ab9fdef1e69d9cc63c97a6a http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 254556 dca2b9eb54900eb84580f974bab4a510 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_mips.deb Size/MD5 checksum: 376068 718801a51539264bdc9bf0fd72b05794 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 269142 362ac2d4bcb8d3cfb3c571c4317f76c2 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 573472 98e304223f757a311e113f9d38783754 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 1675002 a1d8d37d397ec768bdfd21eeeb1bb1b0 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 267118 e37ca6adaf9ba2b334dca715f33ff773 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 254506 f6a10c8e7cae388fc0a2df4705500f88 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 455832 208e627ca4f6715624cb6f2b68177885 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 453804 12c285c889305433f8845bfb76e891f8 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 275190 a3bddbd63abb6e75ed17258c34807f1f http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 277998 1f1476fd6ba61c7186a5644fb7bb74a2 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 265710 59791d423f233cddb85ed67c6012cd5b http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 814040 0d6f87e8b026f83598f65491a436be47 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 376096 7d4705265e33d6b0ddbf5d5c8a76f8a9 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_mipsel.deb Size/MD5 checksum: 5211194 22928b5b6576e8e7346e1472e18c8893 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 452678 c48c7df0dae91237abb4a362f0c6a7c5 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 255436 3e5729e6b9cb980126ad71edbdb36776 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 461396 0dfed32510c56f5a80a3dbb39510cd37 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 270738 e4d797f8dd6dc4c32a0a7e63947e08b3 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 382944 138cfa8981a85448b1f6e262534cd745 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 268902 623d6a1ab733ab60d0a89026ff40212f http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 1723214 ed5646eff9309dd711ce56cb4834b3cf http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 279498 65317441c45d7950e775e238351f13ab http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 658764 a7cbbcfa38695520d074eae171a48f9e http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 823298 8c93be6d8467699fd8bcc5f57837b185 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 5703432 63de08b404991e67edc08fb4046aa05e http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 277626 6097d9bbc3003e6786afc2b590a933a1 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_powerpc.deb Size/MD5 checksum: 276522 8b34023b66c36d4872fd5f25d1fceda0 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 470798 ac80ee42e8cbaf1db50baf39f9a5bb96 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 815848 f0d01cf7e6c265653307c4af1c78db84 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 1715234 75941fec73004909fa901f812ec503e6 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 269414 a35e2e63213cd96379cbb7336db96597 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 619478 6f45509c5ffd7950d25e38e61b8ae432 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 455518 be1ed544c9c801b3c74c331d998d3395 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 273252 0f8f813ca5e0487ff823784a27656c91 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 384350 145e02b86ab1a3e5eaf553c76617c425 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 278550 2e02a8feb0322cfb93a5cb2dfe1b1887 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 278328 98dac5a8fd8c8d73fab97f777b805481 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 266584 d0b04bf60cde3f40c9fce955c2605f86 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 255670 1ec45e7d6da21ba19e4d60c75c0d772f http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_s390.deb Size/MD5 checksum: 5749542 5580df4bb5795150ac7857d7ba7ae42c sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 266478 a7bea0b395e3d76fb8955b9c88930c32 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 5443482 b2f6fb9ef28a6546bfb16edb04174587 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq5_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 374030 93fd40c89f1e9514eae1ad82e3e8b1de http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-dev_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 447618 977c4a2bdaf20acd216168af8565ab8b http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 254358 03036816dbcae5e65f83d43f14c38248 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpgtypes3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 273542 d2209b4a6aaa5d080b806c071d10b158 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 265224 58500b63942c05de0669bb65672b4b8d http://security.debian.org/pool/updates/main/p/postgresql-8.3/libpq-dev_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 440782 4027e1c4ce92d74f2a8fd6940c961db1 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 1651946 b6c48822ca1f4ba96db475dc57c17517 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 272206 5fb169da135b3f58f3c3c9e3478916a9 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 819770 4944e6d2bd66050c967a2f35b268c600 http://security.debian.org/pool/updates/main/p/postgresql-8.3/libecpg6_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 273798 c312e645cbcad0bd289baf2c72296f83 http://security.debian.org/pool/updates/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0lenny1_sparc.deb Size/MD5 checksum: 570650 26bbe28936b26f0190327c934a0d32b4 ORIGINAL ADVISORY: DSA-1964-1: http://www.us.debian.org/security/2009/dsa-1964 OTHER REFERENCES: SA37663: http://secunia.com/advisories/37663/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 18:44:34 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 03:44:34 +0100 Subject: [SEC] [SA38100] Ubuntu update for PostgreSQL Message-ID: <201001050244.o052iYZn019707@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Ubuntu update for PostgreSQL SECUNIA ADVISORY ID: SA38100 VERIFY ADVISORY: http://secunia.com/advisories/38100/ DESCRIPTION: Ubuntu has issued an update for PostgreSQL. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges and by malicious people to conduct spoofing attacks. For more information: SA37663 SOLUTION: Apply updated packages. -- Ubuntu 6.06 LTS -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0ubuntu0.6.06.diff.gz Size/MD5: 32478 f8a8c08faa6856e6fca231d5af602ed9 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0ubuntu0.6.06.dsc Size/MD5: 1130 93e2b6f6e91963d4764a46eb76a4d99c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19.orig.tar.gz Size/MD5: 11535709 64185bcc279f0787017d89596ad519a0 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-doc-8.1_8.1.19-0ubuntu0.6.06_all.deb Size/MD5: 1522484 f831276b9a69c9f8387e9c1b30e733a4 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 188840 0739d7d9a7fa01544adf5daca220d0fd http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-dev_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 381554 45e117abe3d42721eb85c29123904bf3 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg5_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 209572 61cbf51c2fc372e970588de9df7503aa http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpgtypes2_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 210378 b0b6f440861adc00f1fead4eff1607ee http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq-dev_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 344162 361783e68757032477294519785f9de2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq4_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 242678 ccae63e46d338c6ef1cf53c4c54aa965 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 3193654 72edcbeb1ebd98fd46c707fef9cf41fb http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 820836 45a2e8ebb615e9c9acddd676eec487a2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 651358 412f25c826e62128b9ff820fd8af1846 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 205764 1a18279c23ffb00358412048d17455f0 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 199552 64f036bd26f5d4cce15c4478acac84be http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 199862 e486bab9deb31847581dfd2e1946b0f5 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0ubuntu0.6.06_amd64.deb Size/MD5: 635024 5291116f9d5921c0921eb1cd6cb79c5c i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 187850 313a0c389f200816c1111eb389dcb3d9 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-dev_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 371574 39fa5bdb2adde02f7473b281aff1e58e http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg5_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 207474 76737f80f0c506bb867a7c8dfec481ae http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpgtypes2_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 208750 27803eed6e591e4dfe7a01f4b96b3f1a http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq-dev_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 332568 338136da4e4c8cf6f21a85a7e45e3bb5 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq4_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 235726 5b8e253e273e5ed93afd2c9dfa8abb52 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 2995296 74a9fd38e42063151ef88a9584c187c2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 748148 68f168e7cbb7046d03a4283de6aa6011 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 605580 757a63020358d4aa3bab30eb309c761c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 203884 a8cbda0796ec5e9a5c298c2ac9aa93fd http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 196916 23e861a31b9d4be89fab17e4c474c0a9 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 198412 974331c8f70900ebe84551b0cb0f221b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0ubuntu0.6.06_i386.deb Size/MD5: 635028 31a9a493b1bd1d5f32ba90b93f8ffa4a powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 189554 aab48b2b8d5ba906affeeecfc4671ea4 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-dev_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 377336 ecdfb205b1d3f1c13bd6ab931c1175db http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg5_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 210394 f073624a2d7132f6b4a3a425616d68ac http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpgtypes2_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 212744 83d27f8b8b42bdb86c15bd198d9464b6 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq-dev_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 338650 64a181b4a9db1fc6a5446a0ad42c5a19 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq4_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 239300 10fd78d31759fb384d1f174d21a5f2b0 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 3490094 0f819969b08fdf9dd02b6ed6a7dcd1a0 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 821006 91625be2022a179e91b58695e35e8703 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 667966 2955e0d817fcb032cf9bd2359ba48e22 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 205496 318d649f9755676a9719bc212fb54bf2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 199584 2789116fa1d9e51b151bda087f71df34 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 200626 b441d7d8a1a1662aec3ebc6dd7e9618c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0ubuntu0.6.06_powerpc.deb Size/MD5: 635034 8f47d1bed3a92ca614bceb11c777d2c4 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-compat2_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 187560 e21f4c5cf196f0eadaa358f45e41880d http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg-dev_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 368588 fced5b4c689630e02dc28b996def16be http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libecpg5_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 207888 7f7b6b11cabf6955021090529476963c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpgtypes2_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 208364 1763062d7423f1470c30eaafcd97fc3f http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq-dev_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 334742 1af5635578d89410fafedff1cd8bff5d http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/libpq4_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 235982 56882e90b8efdb29fcaead4dc47d4576 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 3362678 5e77870976f3cf10beb0461cda20ba15 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-client-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 776560 73443b9451f02ef4f3cb46c8ef53073b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-contrib-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 625926 7ac6fe1c9b474e185395236be3dd9816 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plperl-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 204038 84570c4eed5594452cf5765480a288bb http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-plpython-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 197882 0b8defc74feeb0f2d784e44b67f60aa1 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-pltcl-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 198796 1f4e494dc3b3e65e1d33ec99215fd7e3 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.1/postgresql-server-dev-8.1_8.1.19-0ubuntu0.6.06_sparc.deb Size/MD5: 635044 b072653a778f642e327ca5b0e23204de -- Ubuntu 8.04 LTS -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04.diff.gz Size/MD5: 64519 f6aa8f8c0d5e69c39c2cf1fdd5ce314a http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04.dsc Size/MD5: 1303 d8f18ea259cdd1aefa15e35c3e9b504c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9.orig.tar.gz Size/MD5: 13850244 05088ab3b924a326914572eb77db541b Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client_8.3.9-0ubuntu8.04_all.deb Size/MD5: 245732 973455f4a0716e76a4a36f8becf94784 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib_8.3.9-0ubuntu8.04_all.deb Size/MD5: 245620 5d3d0dd16e6404fd48c34a339b0ef2eb http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-doc-8.3_8.3.9-0ubuntu8.04_all.deb Size/MD5: 1988738 28f73953a3e0e12dcdee2bd2b59c08a9 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-doc_8.3.9-0ubuntu8.04_all.deb Size/MD5: 3436 c654d174eb1808f0e54eb793dc45d500 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql_8.3.9-0ubuntu8.04_all.deb Size/MD5: 245752 9b2a60c285d0c7fc8ee57ab680ed686e amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 11614 f33427a49586eac374e46fa160bd88ae http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 222642 685ecddd2b14cd2cc4fbb8702aed931d http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 32384 7a4f7379eb42a7caaa5ac54b38c9349a http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 275040 04b5cc82e7d4b1d516f4d6fec8095df9 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 190102 e16e69f44e3461b8c059eccda1789ae8 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 310662 a809497df290423d7b3de04b4bb5ae27 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 3750038 87c3e5c8a433f5d8a648b09d7a69e173 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 735996 904e37e45da72bf5f59e99ea5ca857af http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 367778 44750aa7b5d3ab5b5b06dbee47ea0187 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 275558 2c7f18f75a6348a9692364b12b40b6a9 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 267650 b6c2ec172490f40144763b1cd1415ee0 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 265162 f711959043311e63d4ea154af9e4b9cc http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.04_amd64.deb Size/MD5: 813478 af7cf11ecec651126802b84e0e6e22d0 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 10606 99200b25298976d6bb0b151432dc745b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 213896 27550ef06c65984bf557d6cdf290ced2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 31406 7aefea1a022779249b0c3ac13cebda51 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 274540 3648a9c26739352844695f0b6d2141a0 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 182338 86bc6b8b1bc55b526dc25ede37e8eb98 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 306366 8121107495d3147fcfc5bdf36d28256a http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 3618990 54192c4212dac016cc45e3389e85f369 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 705834 f51cbee276eefc5ecb1b3c23efff3066 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 331864 44f030808f77badfe92f8d0c4f15bda3 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 273580 49bb22f05481e0cd11bf977ebb433678 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 264952 03432ec1a25f249e51b99a3382d87f90 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 264070 62a855a027b9f845f9bfc4f8a84f85bb http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.04_i386.deb Size/MD5: 811626 f031e7b6ab5eb669e6b49a6dbdd47bfa lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 10460 e40281bdd49efb44902ac983ac44e5b5 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 212624 1cad94dd1cbb9da566dd768f65a6485e http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 30854 301f789324e5ea2a015a408425fe098f http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 274190 0c0d1274f8d92ca3dc65cc38e0b905de http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 179626 b1ae21591def462276644b6b05511dd9 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 305506 1277f72af05bd0e7b991f3d8b2f01869 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 3604402 22c935c7fcc28453427811b0e391df59 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 702716 d2a8d7b36407461479d57437bb3458b0 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 329426 db3dc26b7874d07dd665ea5cb6433ee9 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 273892 63beb1ff7f44f764fae8a1a772ae9c37 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 265044 85ae3f62461087f4e02933193da60c65 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 264140 c9765fd1b1946d71932d4ba170d3bf44 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.04_lpia.deb Size/MD5: 811326 872f1d4332cae2d10d30b55281f12b96 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 11244 c979628a24bab4100ba09f40c9215494 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 217730 337e59af2777bfa5c51fb4adb8e12b00 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 33978 4502498e297b740b8f33fdf0b53924e7 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 277546 5d008adbbeb6617bac7ea826c2aa5d66 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 189904 9a0ed0c9eaf70b86c247242a338e5f68 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 310332 fdadab3ca7970411e45437ca13085d85 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 4100256 041bbd40358147ac5cd72d4465ef521e http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 768602 f5d5c5e5d005d583f13873feb7d14681 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 416882 c3ef9ba34a8a009d06b9870f18f3dea0 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 277168 c91de27061e9087dade523ba2ddf4e7f http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 269182 46128af522c52aed3034447d2e8e34dd http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 267416 e7bbcb5394d5a39c2b1bedbe34e72adc http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.04_powerpc.deb Size/MD5: 814270 5d637d6afe0abd296d96534a40011097 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 9848 c5850a767ba1a5cef330e1112aff0a5c http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 203898 f5297b6885a7a6ef7c03a620fe619099 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 29594 eced0d8a6156333e020fdb37bae3b825 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 271678 c995ede3f400483188925c7c577724db http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 178676 1ad133ac688b36877c5daacc5f54e92b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 302606 10b8d0a566f17bb22d738f671bed60dc http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 3858060 56a69360fa58320a7622358b5d83ffc2 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 704282 c7e2f233855cb5847672a45a8bb47cbe http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 327728 ba95b7e1c6f635e7650da30d9c4198ce http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 272208 7c46d489e1c8970be2d05d74442eadaa http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 264390 72c8812c7fd71adce0b3b31b8eb6490b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 263396 bdbf8ea9827c484516bc06b89f403745 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.04_sparc.deb Size/MD5: 812378 ffad92b640b79e262c028b8ffaa7678b -- Ubuntu 8.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10.diff.gz Size/MD5: 66839 37eaab5d0524a498e53a488ac9dd145c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10.dsc Size/MD5: 1681 9b897ccb01f40c23263009ff2921cd89 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9.orig.tar.gz Size/MD5: 13850244 05088ab3b924a326914572eb77db541b Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client_8.3.9-0ubuntu8.10_all.deb Size/MD5: 247818 e0bf82dc194eeb1456a4a8dd86a6c827 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib_8.3.9-0ubuntu8.10_all.deb Size/MD5: 247718 0c36ff07b855131e5cbb186169f35a6c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-doc-8.3_8.3.9-0ubuntu8.10_all.deb Size/MD5: 1990814 b71287e241302a70ba49b27a3bddda99 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-doc_8.3.9-0ubuntu8.10_all.deb Size/MD5: 3414 522ec1222f39df5cb1e16ad807c8f8bb http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql_8.3.9-0ubuntu8.10_all.deb Size/MD5: 247852 de7f38e73f7255f7a8a67da80a82a0b3 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 11540 543b6e62697ff166adbc6ae6b5547a8f http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 226334 ae0571c5a6576af88c777e98c213d954 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 32772 49f02c9ece8d813a5936efe54a1cc26b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 277504 2c2bb14c8d67b529295fd1c504317c97 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 192432 5d945cf9626adb93684e41a2f913399d http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 313880 54614d2a52ab96823225dda6e40000d5 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 3819860 2c301ef91c5b6aa5a220ee188056261b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 769210 33ef1d04a88a9a66c9857890924fad65 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 374950 ac316e7130fb65db400ad5e508bee920 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 275472 760cbde58bc0b32a1b34be15faa8c4cb http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 269606 430094642d55720b1332b6c70d44314e http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 267180 82d568868a788df397738c468321c10c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.10_amd64.deb Size/MD5: 819020 b49c5f3e0608f296b8181b2773504498 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 10692 bb3f4fb94170faad232f935abde60db2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 216332 ce83b48fd49c59d155864f9d79ac588f http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 32022 6b04948f08b653a49f3f34be2fe74c1d http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 276802 6f7a3ebd4bb27044bd657137c3aed338 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 184468 4b8cc9065c37766af671fb521ff97e47 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 309716 024289904f87a11ef5217d26d3776d89 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 3670458 5158a4f94d5712a48091e6aa52a96340 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 727672 5cf061dafe9389b75c3bda91c1d9e4a5 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 337208 8f9e4e9fefbdf4d7204fbad4ad48aa34 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 273786 31e77a5f53f70f150bfe03195ced3f1f http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 267194 0ab5f83ebc73c9a1e396b3cb81a44666 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 266214 aa2fe0fd84defb075433f9a180603c87 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.10_i386.deb Size/MD5: 814438 90d07d4fe20b876cf12cf4eb08e42683 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 10418 6ac55dc39264fa42dd04c91d4818201d http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 216400 05edb2951f42178b7e0a1cc93922f963 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 31226 66859e21741346736f8ead65c66feeba http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 276366 f147e9b90c44c9f1744fa922ecb2b836 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 181192 1815ad58cb93ee76e08db65222b1018b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 308508 fc06bd60e6db64a9ba9a20ebd4a1b6aa http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 3647390 57244f6e86fa922f3857cd1b6625863a http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 722306 ff5930adc5f425d8b59a0efe3dea7a87 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 333516 90147e77c537edccfcf50fb705db4f9d http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 274018 377be15e1a00430193cce0130a855df9 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 267122 6880ff9801b62f7e2739dbaab09f8447 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 266176 a25195084ffcd13c798cb154495ad4fd http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.10_lpia.deb Size/MD5: 813908 5758dde0c23d1f307fa2694a4b421624 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 11234 ecfac6cacc83e8464d77b63059b993d7 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 224106 82b33be9d0de96491a7605334cae9171 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 33840 f12807a20f299602e3f7ab7ddd5eddad http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 279882 ef78620a99f24e52642b19cb866ba9dc http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 190806 a9d775777607f7c65b1ff623bf772870 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 312420 388002d918e327b5f70321a59a32a637 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 4188698 81bef64ca89dea76c951633aaa08e3c7 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 797802 949fc80cc2f3fe67dfda90ffbef3172b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 425200 829d5a316ad7c2c862aa17ef4e5c3970 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 276706 d6c61ab36de5c19bdf31d37e78cad1b5 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 271138 335cdf9355ca5d48429769b8101aa566 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 269232 f9cbf0bc90d968a7d900567cfd0e3845 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.10_powerpc.deb Size/MD5: 820794 70c26efc461628b89bb628c2ab6da092 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 9850 b99861631dd5644201825ac799162605 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 208284 ca7c14007935d54393911c477006f18c http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 29424 638eb893cca5b2126ba8bcb0574b2707 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 273652 0577dbfb7309670fbc526472d6eaa9c1 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 179348 e4a97ba572ae4e5d8576fd7677f2fbce http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 304988 19facd34bdbde5d978b8c9ba4800a149 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 3915428 0cb039ffa71db37ce3056d51c2f1cd4c http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 721516 5f16590b2d2b118c73ea072db8070a1b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 333852 56cec30edfa09e91e1b2432f3ca5827e http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 272036 919680705b51e097d706b397130aff69 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 266266 ffacb477966793deb73cd979b4e1950b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 265306 19905bdea6e0a24f61cbee63a0129046 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu8.10_sparc.deb Size/MD5: 814668 fe7a9b7723475943c25745604815e542 -- Ubuntu 9.04 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04.diff.gz Size/MD5: 67442 1f000ac9f9062ed87f995102397b5618 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04.dsc Size/MD5: 1668 a35d2602689f8e0d8215192589290772 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9.orig.tar.gz Size/MD5: 13850244 05088ab3b924a326914572eb77db541b Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client_8.3.9-0ubuntu9.04_all.deb Size/MD5: 247998 6c836111eb211c176cbcef4012bc8d71 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib_8.3.9-0ubuntu9.04_all.deb Size/MD5: 247896 1014183cfd4c1fa9dfba4fc73965d346 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-doc-8.3_8.3.9-0ubuntu9.04_all.deb Size/MD5: 1990968 3e218ee4eacb0504e711243eef55fc56 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-doc_8.3.9-0ubuntu9.04_all.deb Size/MD5: 3416 61710511c7c55cd631cb7acdef3e816f http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql_8.3.9-0ubuntu9.04_all.deb Size/MD5: 248030 c0478b6a150def07b88b397e374dae9d amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 11536 d6fca094d3e3d1432878306e1a0754da http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 226328 a8bca996994c83757745a2cf9376ac7f http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 32762 ea62875ae5fcdc20e7de3a822143886e http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 277658 aa882a5d6917512724afcbdefeb09688 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 192436 343e0384a861d160fd06a59c8ba61776 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 314084 7c747c060607dcaab225d61a389ffa53 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 3820058 0388831a0530e6b1f142506c0cf18e3e http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 769166 0629292b91ed4a5a28429b53efb16b17 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 374948 e62ba9bfd350e4f18a527698fddb743e http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 819168 4285dc88a8794de982928f422b57da02 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 275628 45f203026149540ae8183901f2c02e47 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 269638 078b4b694bd7a36b0e80a360cdb019c8 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu9.04_amd64.deb Size/MD5: 267346 d60fd9746ca2f21db05a40958c1b977c i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 10694 6892aa49258ad7c67e3b43d9fa627848 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 216310 8c36cf7c5267e5ef44909144667ed33c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 32026 45fd00787e1a23760dd45c01cc1c1523 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 276968 31581954ad5be701f5a10c7669c82670 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 184478 e5cfb16bc4652fa12cd35475b8fb7169 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 309916 63154cedbf892e3a4de26c48d3bfa33c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 3670182 0b4be3c6267e3bb79bf04a6e39e2847c http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 727662 89999d9806c445531f1dcf8c369fd60b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 337244 b3b08bda5996c067b7779108c79629e5 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 814576 3355a068df9340dfa059177dfa6f2491 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 273890 b03144d7d4b70eeeadcc69001293c426 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 267284 9103df46461a80a90ee74d6665bf917c http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu9.04_i386.deb Size/MD5: 266370 749404176d1ae85b8977ad42320b524d lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 10416 acca065e3b7d7399510f071dcb030e79 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 216394 ae6fa78addee24536bbdba450dba2610 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 31234 8a7348b9f69216e9577066252a295aa1 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 276530 ab3b4e3021eefb53bd4a18285e9f3c08 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 181216 1f0bd070e6391b8f5bc33278e8f36141 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 308708 4ede373e7684158bd8ea9b4b3b602710 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 3647652 4dcb3c120835d848162d6d7d5042d43b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 722320 56daa71dc219881245097bf0a2a8f3b5 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 333514 540cfc91df2825a4dfe9c8df41d1afe3 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 814072 3d2dc0bde748fd9c7d380a4fa3d6d8bd http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 274156 604f7444300432d4699242274e27a226 http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 267206 547d8ce4533758e7ebfe49ea9b14dd47 http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu9.04_lpia.deb Size/MD5: 266326 4e1ec7d11559aaa8730cd59b5744af88 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 11236 eaf643ec107fa84901fca85597239984 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 224126 1129cf02bb03b0761b90bc51fc3db3c8 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 33842 0251c3faa2dec1e4b53abd05949926e8 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 280026 e1b6b01ac7449b56bec4fcafc97236b0 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 190790 90fe118c22d171ede70c4844234623ef http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 312610 3b210cef6860ecdd0ec2124f5a27e76e http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 4188510 c50a6750903c3cb3ae048ad76c6f533b http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 797838 28569ea1d8287dcf61ece36fe61f2551 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 425178 fcdb8ae14b8161e14aba59f3a3950e19 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 820906 b27bc12f890b8403d61e5eaaa613bae2 http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 276882 c99ace022ea843d6c2b6439c9d336bce http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 271072 15ddc80b2407101b234bb5ba50545ccc http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu9.04_powerpc.deb Size/MD5: 269382 a88ef37394a9d354a3488251dd20ba29 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-compat3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 9812 4bd79bbaeb6ff1540d6ad5505a4d4a63 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg-dev_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 208232 f3b8efb9a3b7302baa3d0acf16236129 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libecpg6_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 29404 5dc2cd031b3d46e33fa9c77e707d23be http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpgtypes3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 273710 7bd18837b8763e764194bdbbbcb6ac40 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq-dev_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 179282 39cbe365c506b5fa98890efe584ee0f6 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/libpq5_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 305116 0df8805118c67f506cce35124aaa1e1e http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 3914640 c0dfa02ae12b9cb9bfaa0f59ce917ac7 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-client-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 721046 d7ba3eb4836d179a6bc32cbd1a9fddb1 http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-contrib-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 333184 4cf44568ab0633c10fbe76266b5b12da http://ports.ubuntu.com/pool/main/p/postgresql-8.3/postgresql-server-dev-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 814768 20b27639fca543c20f7ab2cc1c7b02ea http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-plperl-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 272140 0830fa0f2d8c38496ed5d2506d7a35ab http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-plpython-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 266258 c6098891cd15fda88dabf7dada77479c http://ports.ubuntu.com/pool/universe/p/postgresql-8.3/postgresql-pltcl-8.3_8.3.9-0ubuntu9.04_sparc.deb Size/MD5: 265406 4a2cfbe516629861a49f428507862a04 -- Ubuntu 9.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10.diff.gz Size/MD5: 30831 88b3af9730e269c778ecc30101354d24 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10.dsc Size/MD5: 1715 ed5f9fbb0fe8833a59570f5a727f7149 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2.orig.tar.gz Size/MD5: 16810915 1bc9cdc76c6a2a13bd7fdc0f3f53667f Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-client_8.4.2-0ubuntu9.10_all.deb Size/MD5: 10190 71094a5e80228b624e3cc1169e7aff85 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-contrib_8.4.2-0ubuntu9.10_all.deb Size/MD5: 10086 c745bb660aaea645ae8c77e0b09df341 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-doc-8.4_8.4.2-0ubuntu9.10_all.deb Size/MD5: 1862266 272de09ed053eff07f1b5fec946ddfa7 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-doc_8.4.2-0ubuntu9.10_all.deb Size/MD5: 3396 8d633c23f4099aab9bc6c5e9407ebb0b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql_8.4.2-0ubuntu9.10_all.deb Size/MD5: 10224 473eb5bd6f8a771b59cab60f32574040 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libecpg-compat3_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 11496 64bd49c7bd3926302cbe3984d2c3c9aa http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libecpg-dev_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 241178 bb38602d6752442f892cbe17ca9ecad2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libecpg6_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 33370 228510e4eec4b3ab29eece6e66f9d012 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libpgtypes3_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 42024 db143dc3dd7fdd006aa9d9197c92b7e1 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libpq-dev_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 202940 233273abdd301bf7531fb3f9e1a1bc4b http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libpq5_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 81132 a7f8ae79ff18e18153814d50f37679ff http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 4043424 7cc20a3f4039651f14e3cc31e8d9b687 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-client-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 827518 faa458ecf8b53cc022f862a208232bf3 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-contrib-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 415448 9c8553db72dc345176bff5d351e68510 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-server-dev-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 623372 2889e05ede971692732baa0a29211591 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.4/postgresql-plperl-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 38258 9bb8dd71b7e702eb5535b1dbcf8b5c1a http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.4/postgresql-plpython-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 32466 b4b12bc7e6d9819167eae47ef887e751 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.4/postgresql-pltcl-8.4_8.4.2-0ubuntu9.10_amd64.deb Size/MD5: 29504 83d8377bba8433fde8e31c5ad01fa065 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libecpg-compat3_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 10578 54c7d05a4d12921bcd010ac863f0ad8d http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libecpg-dev_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 225890 6dd3d228f902869bb272286e85cf8cac http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libecpg6_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 32312 dd8476c3bfebedbd6db11252ccc4dea2 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libpgtypes3_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 40812 f60dabfff5d29dce247c046b2a543e70 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libpq-dev_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 194150 3e3657272a0330fa4919ac6fa435436a http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/libpq5_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 76008 c4dde335f6f28f2f7fa7d16dc4f7062e http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 3893198 3c6244db13f244813753fa8eb73f6cd0 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-client-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 786568 f3eb097c73f7fecd8bb81056552eeb40 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-contrib-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 371846 467b42e59034054140abce5aba0f4433 http://security.ubuntu.com/ubuntu/pool/main/p/postgresql-8.4/postgresql-server-dev-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 618868 afedd898e25e59d0d43e04ffe7573e13 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.4/postgresql-plperl-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 36426 2b448e929ff4b528ff65d7c34ff24bc6 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.4/postgresql-plpython-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 30114 62f570fa28cde2249752b29129f947d9 http://security.ubuntu.com/ubuntu/pool/universe/p/postgresql-8.4/postgresql-pltcl-8.4_8.4.2-0ubuntu9.10_i386.deb Size/MD5: 28570 c54df03adad90e6bb4e0a809a8b0c0e3 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg-compat3_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 10390 8813e0cb96c0f5ea0e36de0e73c0318f http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg-dev_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 224244 cfe95a3c1659ea2cd885e81c49cfa54e http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg6_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 31890 b70357f5ce897fe37ea2c83d566ccd26 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpgtypes3_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 41058 241d34d4e0d8459e4cb672d1ceff5aa2 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpq-dev_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 191546 b343b784b2c99ce29c9185c7820e5202 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpq5_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 75312 3865f919800f6d5180500952ffc97184 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 3884070 0a6ba537ee14ac157a0bc3c263b9355c http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-client-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 784264 8126909648bdfdc6f28df10dd9908859 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-contrib-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 369612 6be5d61363a4be6034b82d93c50132d3 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-server-dev-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 618392 def701164d954de72199ec4dbf0042f8 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-plperl-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 36976 4fe6752c74651aa6427a65e37a9a3ae3 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-plpython-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 30282 801b5fc5edbe1f2fb8febf9613fa547e http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-pltcl-8.4_8.4.2-0ubuntu9.10_lpia.deb Size/MD5: 28910 1e73ed141b11e12f084e3525364ce76d powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg-compat3_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 10920 fd03d0f4ec15cfaab6006342fdde52ec http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg-dev_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 241212 4b7ad53966ad1738815646e7914746ee http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg6_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 34330 5c27c410dc84d5fdbb5fc94ec27332c4 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpgtypes3_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 44644 07e16cabc27a9babd25264102f43c5d8 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpq-dev_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 200836 ba66f7882b0b3a0c39b55efe9a5fc53c http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpq5_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 78698 4c595fa3b2dc18b48b3affc2770f33f3 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 4359568 bcb1cc01daba58c9e93f645d64af2731 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-client-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 828860 9c1d46e97e767a4ba425d52686bc67f2 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-contrib-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 399078 7ab995c6c48cc4cc2f7d63037c2356bf http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-server-dev-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 624698 1a178153c9e489f4948145106f0ab955 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-plperl-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 37428 e95fa8e8fe06b31aecd1daa9099479a2 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-plpython-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 31824 698e1ba16592b741ed774f0b3bed8386 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-pltcl-8.4_8.4.2-0ubuntu9.10_powerpc.deb Size/MD5: 29548 9e92eedc6ddb73238460e05c6471b395 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg-compat3_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 9910 8e9657318ee050f24aef2c645418fca1 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg-dev_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 228586 800e910f83dac7e0c4f98f32ed985f8f http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libecpg6_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 30536 d18fecf78c93276402fc2a28a4caded5 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpgtypes3_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 38604 03e5a3ffa9c916062730e4c7d9e98903 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpq-dev_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 189564 827d92ab148469626dbb05b13ffb4251 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/libpq5_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 71606 51304d81e29d2988dea6e1598016d673 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 4127672 255ac57ffa68e06ad7ed5d466c58d442 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-client-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 781432 6efe7f914220f074f6ee4df912e9a516 http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-contrib-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 372404 32c31f9fb31434b6efd36922ae89503c http://ports.ubuntu.com/pool/main/p/postgresql-8.4/postgresql-server-dev-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 621976 d8c63eb13e026efbe08cffce55369981 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-plperl-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 34768 463ec6338aa8292be3b0daaf7a501840 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-plpython-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 29164 ed996fdea533c1e3d316315914b60870 http://ports.ubuntu.com/pool/universe/p/postgresql-8.4/postgresql-pltcl-8.4_8.4.2-0ubuntu9.10_sparc.deb Size/MD5: 27694 7cd4ae7ee83690cb551c8d207173df51 ORIGINAL ADVISORY: USN-876-1: http://www.ubuntu.com/usn/USN-876-1 OTHER REFERENCES: SA37663: http://secunia.com/advisories/37663/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 19:12:25 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 04:12:25 +0100 Subject: [SEC] [SA38115] IMAGIN "writeToFile.php" File Manipulation Vulnerability Message-ID: <201001050312.o053CP5j007902@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: IMAGIN "writeToFile.php" File Manipulation Vulnerability SECUNIA ADVISORY ID: SA38115 VERIFY ADVISORY: http://secunia.com/advisories/38115/ DESCRIPTION: A vulnerability has been reported in IMAGIN, which can be exploited by malicious people to manipulate certain data. Input passed to the "path" and "raw_data" parameters in scripts_ralcr/filesystem/writeToFile.php is not properly verified before being used in file operations, which can be exploited to e.g. create malicious PHP files. The vulnerability is reported in version 3 beta 5. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. PROVIDED AND/OR DISCOVERED BY: Ubik and er ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10979 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 19:43:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 04:43:44 +0100 Subject: [SEC] [SA38082] Fedora update for NetworkManager Message-ID: <201001050343.o053hi1v028309@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Fedora update for NetworkManager SECUNIA ADVISORY ID: SA38082 VERIFY ADVISORY: http://secunia.com/advisories/38082/ DESCRIPTION: Fedora has issued an update for NetworkManager. This fixes two security issues, which can be exploited by malicious, local users to gain knowledge of sensitive information and by malicious people to bypass certain security restrictions. For more information: SA37647 SA37819 SOLUTION: Apply updated packages using the yum utility ("yum update NetworkManager"). ORIGINAL ADVISORY: FEDORA-2009-13642: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00122.html OTHER REFERENCES: SA37647: http://secunia.com/advisories/37647/ SA37819: http://secunia.com/advisories/37819/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 19:55:51 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 04:55:51 +0100 Subject: [SEC] [SA37868] Joomla BF Survey Pro Component "catid" SQL Injection Vulnerability Message-ID: <201001050355.o053tpCB015565@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla BF Survey Pro Component "catid" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA37868 VERIFY ADVISORY: http://secunia.com/advisories/37868/ DESCRIPTION: A vulnerability has been discovered in the BF Survey Pro component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via the "catid" parameter to index.php (when "option" is set to "com_bfsurvey_profree" and "view" is set to "bfsurveyprofree") is not properly sanitised before being used in an SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is confirmed in BF Survey Pro Free version 1.2.6. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: FL0RiX CHANGELOG: 2010-01-04: Updated the title. ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 20:08:33 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 05:08:33 +0100 Subject: [SEC] [SA38101] Gentoo update for ntp Message-ID: <201001050408.o0548XE8002829@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Gentoo update for ntp SECUNIA ADVISORY ID: SA38101 VERIFY ADVISORY: http://secunia.com/advisories/38101/ DESCRIPTION: Gentoo has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). For more information: SA37629 SOLUTION: Update to "net-misc/ntp-4.2.4_p7-r1" or later. ORIGINAL ADVISORY: GLSA-201001-01: http://www.gentoo.org/security/en/glsa/glsa-201001-01.xml OTHER REFERENCES: SA37629: http://secunia.com/advisories/37629/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 20:23:40 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 05:23:40 +0100 Subject: [SEC] [SA37896] Joomla Bible Study Component "controller" File Inclusion Vulnerability Message-ID: <201001050423.o054NeoQ022601@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla Bible Study Component "controller" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA37896 VERIFY ADVISORY: http://secunia.com/advisories/37896/ DESCRIPTION: A vulnerability has been discovered in the Bible Study component for Joomla, which can be exploited by malicious people to disclose potentially sensitive information. Input passed to the "controller" parameter in index.php (if "option" is set to "com_biblestudy" and "view" is set to "studieslist") is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks. The vulnerability is confirmed in version 6.1. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. PROVIDED AND/OR DISCOVERED BY: FL0RiX ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10943 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 20:43:50 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 05:43:50 +0100 Subject: [SEC] [SA37834] Joomla Abbreviations Manager Component "controller" File Inclusion Vulnerability Message-ID: <201001050443.o054hoAd010165@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla Abbreviations Manager Component "controller" File Inclusion Vulnerability SECUNIA ADVISORY ID: SA37834 VERIFY ADVISORY: http://secunia.com/advisories/37834/ DESCRIPTION: A vulnerability has been discovered in the Abbreviations Manager component for Joomla, which can be exploited by malicious people to disclose potentially sensitive information. Input passed to the "controller" parameter in index.php (if "option" is set to "com_abbrev") is not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks. The vulnerability is confirmed in version 1.1. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. PROVIDED AND/OR DISCOVERED BY: FL0RiX ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10948 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 20:55:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 05:55:43 +0100 Subject: [SEC] [SA38028] Net Transport eDonkey Protocol Buffer Overflow Vulnerability Message-ID: <201001050455.o054thLw029814@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Net Transport eDonkey Protocol Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA38028 VERIFY ADVISORY: http://secunia.com/advisories/38028/ DESCRIPTION: Lincoln has discovered a vulnerability in Net Transport, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error in the processing of eDonkey "OP_LOGINREQUEST" packets. This can be exploited to cause a stack-based buffer overflow by sending a specially crafted packet to the ed2k port of an affected system. Successful exploitation allows execution of arbitrary code. The vulnerability is confirmed in version 2.90.510. Other versions may also be affected. SOLUTION: Restrict access to the ed2k port. PROVIDED AND/OR DISCOVERED BY: Lincoln ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10911 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 21:09:11 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 06:09:11 +0100 Subject: [SEC] [SA37974] Joomla! Component Ozio Gallery "writeToFile.php" File Manipulation Vulnerability Message-ID: <201001050509.o0559BGq017118@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla! Component Ozio Gallery "writeToFile.php" File Manipulation Vulnerability SECUNIA ADVISORY ID: SA37974 VERIFY ADVISORY: http://secunia.com/advisories/37974/ DESCRIPTION: A vulnerability has been reported in the Ozio Gallery component for Joomla!, which can be exploited by malicious people to manipulate certain data. The vulnerability is caused due to the use of vulnerable IMAGIN source code. For more information: SA38115 The vulnerability is reported in versions prior to 2.3. SOLUTION: Update to version 2.3. http://www.joomla.it/download/oziogallery.html PROVIDED AND/OR DISCOVERED BY: Ubik and er ORIGINAL ADVISORY: http://oziogallery.joomla.it/index.php?option=com_content&view=article&id=62%3Anuova-ozio-gallery-23-aggiornamento-di-sicurezza&catid=2%3Anotizie&Itemid=13&lang=en http://www.exploit-db.com/exploits/10979 OTHER REFERENCES: SA38115: http://secunia.com/advisories/38115/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Mon Jan 4 21:23:37 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 06:23:37 +0100 Subject: [SEC] [SA38098] tnftpd "fts_build()" Denial of Service Vulnerability Message-ID: <201001050523.o055NbnI004451@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: tnftpd "fts_build()" Denial of Service Vulnerability SECUNIA ADVISORY ID: SA38098 VERIFY ADVISORY: http://secunia.com/advisories/38098/ DESCRIPTION: A vulnerability has been reported in tnftpd, which can be exploited by malicious users to cause a DoS (Denial of Service). The vulnerability is caused due to an integer overflow error in the "fts_build()" function and can be exploited to cause a crash via specially crafted directory trees. For more information: SA34157 The vulnerability is reported in versions prior to 20091122. SOLUTION: Update to version 20091122. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. Originally reported in OpenBSD by Maksymilian Arciemowicz of SecurityReason. OTHER REFERENCES: SA34157: http://secunia.com/advisories/34157/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 10:29:04 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 19:29:04 +0100 Subject: [SEC] [SA38119] MS-Pro Portal Scripti Database Disclosure Security Issue Message-ID: <201001051829.o05IT4QK022207@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: MS-Pro Portal Scripti Database Disclosure Security Issue SECUNIA ADVISORY ID: SA38119 VERIFY ADVISORY: http://secunia.com/advisories/38119/ DESCRIPTION: A security issue has been reported in MS-Pro Portal Scripti, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to the "galeri/database/db.mdb" database file being stored with insecure permissions inside the web root. This can be exploited to gain knowledge of sensitive information by downloading the file. The security issue is reported in version 1.2. Other versions may also be affected. SOLUTION: Place the database file outside the webroot. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 11:28:54 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 20:28:54 +0100 Subject: [SEC] [SA38086] Pay Per Minute Video Chat Script Cross-Site Scripting Vulnerabilities Message-ID: <201001051928.o05JSs7Q011326@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Pay Per Minute Video Chat Script Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA38086 VERIFY ADVISORY: http://secunia.com/advisories/38086/ DESCRIPTION: Multiple vulnerabilities have been reported in Pay Per Minute Video Chat Script, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "id" parameter in admin/memberviewdetails.php and to the "model" parameter in videos.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerabilities are reported in version 2.1. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: R3d-D3v!L ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 12:29:03 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 21:29:03 +0100 Subject: [SEC] [SA38010] AL-Athkat "link" Cross-Site Scripting Vulnerability Message-ID: <201001052029.o05KT3GB000413@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: AL-Athkat "link" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38010 VERIFY ADVISORY: http://secunia.com/advisories/38010/ DESCRIPTION: indoushka has reported a vulnerability in AL-Athkat, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "link" parameter in tell_friend.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is reported in version 2.0. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 13:28:58 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 22:28:58 +0100 Subject: [SEC] [SA37930] My Book World Edition "lang" Cross-Site Scripting Vulnerability Message-ID: <201001052128.o05LSwmg021997@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: My Book World Edition "lang" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA37930 VERIFY ADVISORY: http://secunia.com/advisories/37930/ DESCRIPTION: Emanuele Gentili has reported a vulnerability in My Book World Edition, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the "lang" parameter to multiple scripts is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected application. The vulnerability is reported in version 1.01.16 with MioNet 2.3.9.13 firmware. Other versions may also be affected. SOLUTION: Filter malicious characters and character sequences using a proxy. PROVIDED AND/OR DISCOVERED BY: Emanuele Gentili ORIGINAL ADVISORY: http://www.backtrack.it/~emgent/exploits/20091230-NAS.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 14:23:32 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 23:23:32 +0100 Subject: [SEC] [SA38047] Dating Agent PRO Multiple Vulnerabilities Message-ID: <201001052223.o05MNWCA010912@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Dating Agent PRO Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38047 VERIFY ADVISORY: http://secunia.com/advisories/38047/ DESCRIPTION: Some vulnerabilities have been discovered in Dating Agent PRO, which can be exploited by malicious users to conduct script insertion and SQL injection attacks, and by malicious people to conduct cross-site scripting and SQL injection attacks. 1) Input passed to the "pid", "subject", "message", and "rating" parameters in picture.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. 2) Input passed to the "subject" parameter in picture.php when rating a picture is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which is executed in a user's browser session in context of an affected site when the malicious data is viewed. 3) Input passed to e.g. the "login", "fname", "lname", "country", "state", "city", "yahoo", "msn", "aol", "icq", "ethnicity" parameters in advance.php is not properly sanitised before being returned to the user. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. 4) Input passed to the "login" and "pswd" parameters in login.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Note: Successful exploitation of vulnerabilities #1 and #2 requires a valid user account, however the login mechanism can be bypassed by e.g. exploiting vulnerability #4. The vulnerabilities are confirmed in version 4.9.1. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Nobbs Similar vulnerabilities reported by indoushka in version 4.7.1. ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 14:43:32 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 23:43:32 +0100 Subject: [SEC] [SA38008] Left 4 Dead Stats "steamid" SQL Injection Vulnerability Message-ID: <201001052243.o05MhWES030875@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Left 4 Dead Stats "steamid" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38008 VERIFY ADVISORY: http://secunia.com/advisories/38008/ DESCRIPTION: A vulnerability has been discovered in Left 4 Dead Stats, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "steamid" parameter in player.php is not properly sanitised before being used. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is confirmed in version 1.1. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Sora ORIGINAL ADVISORY: http://greyhathackers.wordpress.com/2010/01/02/left-4-dead-stats-1-1-sql-injection-vulnerability/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 14:55:47 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Tue, 5 Jan 2010 23:55:47 +0100 Subject: [SEC] [SA38113] F5 Data Manager Directory Traversal Vulnerabilities Message-ID: <201001052255.o05MtlEQ018113@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: F5 Data Manager Directory Traversal Vulnerabilities SECUNIA ADVISORY ID: SA38113 VERIFY ADVISORY: http://secunia.com/advisories/38113/ DESCRIPTION: Some vulnerabilities have been discovered in F5 Data Manager, which can be exploited by malicious users to disclose potentially sensitive information. Input passed to various scripts in the administrative user interface is not properly sanitised before being used to read files. This can be exploited to download arbitrary files from local resources via directory traversal attacks. Examples: https://[host]/acopia/manager/DiagLogListActionBody.do?logFile=[file] https://[host]/acopia/manager/DiagCaptureFileListActionBody.do?captureFile=[file]&capture=1 https://[host]/acopia/sat/ViewSatReport.do?fileName=[file]&ext=ini https://[host]/acopia/manager/DiagCaptureFileListActionBody.do?capture=[path] https://[host]/acopia/sat/ViewInventoryErrorReport.do?fileName=[file]%00 Successful exploitation requires administrative user access. The vulnerabilities are confirmed in version 2.06 Trial. Other versions may also be affected. SOLUTION: Grant access to trusted users only. PROVIDED AND/OR DISCOVERED BY: AbdulAziz Hariri and Mohammad Abou Hayt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 15:08:38 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 00:08:38 +0100 Subject: [SEC] [SA38109] PD Portal Database Disclosure Security Issue Message-ID: <201001052308.o05N8cdP005380@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: PD Portal Database Disclosure Security Issue SECUNIA ADVISORY ID: SA38109 VERIFY ADVISORY: http://secunia.com/advisories/38109/ DESCRIPTION: A security issue has been reported in PD Portal, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to the "db/db.mdb" database file being stored with insecure permissions inside the web root. This can be exploited to gain knowledge of sensitive information by downloading the file. The security issue is reported in version 4.0. Other versions may also be affected. SOLUTION: Place the database file outside the webroot. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 15:23:31 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 00:23:31 +0100 Subject: [SEC] [SA38106] uF.Phpaw Cross-Site Scripting Vulnerabilities Message-ID: <201001052323.o05NNVSs025142@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: uF.Phpaw Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA38106 VERIFY ADVISORY: http://secunia.com/advisories/38106/ DESCRIPTION: Some vulnerabilities have been discovered in uF.Phpaw, which can be exploited by malicious people to conduct cross-site scripting attacks. 1) Input passed to the "page" parameter in ardguest.php (when "do" is set to "add_form") is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 2) Input passed to the "name" and "email" parameters in contact.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 3) Input appended to the URL after admin/banner.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in the context of an affected site. The vulnerabilities are confirmed in version 0.6.2. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 15:43:31 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 00:43:31 +0100 Subject: [SEC] [SA38054] Webace CMS "NewsId" SQL Injection Vulnerability Message-ID: <201001052343.o05NhVKF012688@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Webace CMS "NewsId" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38054 VERIFY ADVISORY: http://secunia.com/advisories/38054/ DESCRIPTION: A vulnerability has been reported in Webace CMS, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "NewsId" parameter in pfNewsDetail.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Palyo34 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 15:55:30 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 00:55:30 +0100 Subject: [SEC] [SA38001] Joomla! TPJobs Component "id_c[]" SQL Injection Vulnerability Message-ID: <201001052355.o05NtUPk032334@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla! TPJobs Component "id_c[]" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38001 VERIFY ADVISORY: http://secunia.com/advisories/38001/ DESCRIPTION: A vulnerability has been reported in the TPJobs component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "id_c[]" parameter in index.php (if "option" is set to "com_tpjobs" and "task" is set to "resadvsearch") is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. SOLUTION: Filter malicious characters and character sequences using a proxy. PROVIDED AND/OR DISCOVERED BY: FL0RiX ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10950 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 16:08:26 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 01:08:26 +0100 Subject: [SEC] [SA38072] WordPress Events Manager "event_id" SQL Injection Vulnerability Message-ID: <201001060008.o0608Qrr019603@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: WordPress Events Manager "event_id" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38072 VERIFY ADVISORY: http://secunia.com/advisories/38072/ DESCRIPTION: A vulnerability has been discovered in the Events Manager plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via the "event_id" parameter to e.g. the "Events" page is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is confirmed in version 2.0rc2. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Red-D3v1L ORIGINAL ADVISORY: http://www.exploit-db.com/exploits/10929 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 16:23:32 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 01:23:32 +0100 Subject: [SEC] [SA38117] LXR Cross Referencer Cross-Site Scripting Vulnerabilities Message-ID: <201001060023.o060NWeg006956@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: LXR Cross Referencer Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA38117 VERIFY ADVISORY: http://secunia.com/advisories/38117/ DESCRIPTION: A vulnerability has been discovered in LXR Cross Referencer, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "i" parameter in /ident is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. NOTE: Other parameters may also be affected. The vulnerability is confirmed in version 0.9.6. Other versions may also be affected. SOLUTION: Filter malicious characters and character sequences in a web proxy. PROVIDED AND/OR DISCOVERED BY: Reported by Dan Rosenberg in an LXR bug report. ORIGINAL ADVISORY: http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 16:43:27 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 01:43:27 +0100 Subject: [SEC] [SA38103] CNR Hikaye Portal Database Disclosure Security Issue Message-ID: <201001060043.o060hRkq026911@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: CNR Hikaye Portal Database Disclosure Security Issue SECUNIA ADVISORY ID: SA38103 VERIFY ADVISORY: http://secunia.com/advisories/38103/ DESCRIPTION: A security issue has been reported in CNR Hikaye Portal, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to the "db/hikaye.mdb" database file being stored with insecure permissions inside the web root. This can be exploited to gain knowledge of sensitive information by downloading the file. The security issue is reported in version 2.0. Other versions may also be affected. SOLUTION: Place the database file outside the webroot. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 16:55:37 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 01:55:37 +0100 Subject: [SEC] [SA38048] Linear eMerge Management Component Security Bypass Message-ID: <201001060055.o060tbkf014146@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Linear eMerge Management Component Security Bypass SECUNIA ADVISORY ID: SA38048 VERIFY ADVISORY: http://secunia.com/advisories/38048/ DESCRIPTION: A vulnerability has been reported in Linear eMerge, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service). The vulnerability is caused due to an error in the management component when handling HTTP requests. This can be exploited to reset the configuration of the management component and disconnect it from the network by requesting a specially crafted URL. NOTE: Node components continue to function normally after the vulnerability is exploited. The vulnerability is reported in all 2.5.x versions. Other versions may also be affected. SOLUTION: An upgrade script fixing the vulnerability is reportedly available. Please contact the vendor for more information. PROVIDED AND/OR DISCOVERED BY: US-CERT credits Shawn Merdinger. ORIGINAL ADVISORY: US-CERT VU#571629: http://www.kb.cert.org/vuls/id/571629 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 17:08:35 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 02:08:35 +0100 Subject: [SEC] [SA38078] Magento Multiple Script Insertion Vulnerabilities Message-ID: <201001060108.o0618ZfI001412@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Magento Multiple Script Insertion Vulnerabilities SECUNIA ADVISORY ID: SA38078 VERIFY ADVISORY: http://secunia.com/advisories/38078/ DESCRIPTION: Justin C. Klein Keane has discovered some vulnerabilities in Magento, which can be exploited by malicious users to conduct script insertion attacks. Input passed to the "Name" and "Product SKU" fields when adding a product, to the "Group Name" field when adding customer groups, to the "Name" field when adding root categories or attribute sets, to the "Class Name" field when adding customer or product tax classes, to the "Tax Identifier" field when adding tax rates, and to the "Poll Question" and "Answer Title" fields when adding polls, is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which is executed in a user's browser session in context of an affected site when the malicious data is viewed. The vulnerabilities are confirmed in version 1.3.2.4. Other versions may also be affected. SOLUTION: Restrict management access to trusted users only. Filter malicious characters and character sequences in a web proxy. PROVIDED AND/OR DISCOVERED BY: Justin C. Klein Keane ORIGINAL ADVISORY: http://www.madirish.net/?article=445 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 17:23:14 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 02:23:14 +0100 Subject: [SEC] [SA38096] Deviant Art Clone "seid" SQL Injection Vulnerability Message-ID: <201001060123.o061NElG021169@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Deviant Art Clone "seid" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38096 VERIFY ADVISORY: http://secunia.com/advisories/38096/ DESCRIPTION: alnjm33 has reported a vulnerability in Deviant Art Clone, which can be exploited by malicious users to conduct SQL injection attacks. Input passed via the "seid" parameter to index.php (if "mode" is set to "forums" and "act" to "viewcat") is not properly sanitised before being used in an SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: alnjm33 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 17:43:25 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 02:43:25 +0100 Subject: [SEC] [SA38076] KMSoft Guestbook Database Disclosure Security Issue Message-ID: <201001060143.o061hPOC008722@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: KMSoft Guestbook Database Disclosure Security Issue SECUNIA ADVISORY ID: SA38076 VERIFY ADVISORY: http://secunia.com/advisories/38076/ DESCRIPTION: A security issue has been reported in KMSoft Guestbook, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to the "db/db.mdb" database file being stored with insecure permissions inside the web root. This can be exploited to gain knowledge of sensitive information by downloading the file. The security issue is reported in version 1.0. SOLUTION: Place the database file outside the webroot. PROVIDED AND/OR DISCOVERED BY: LionTurk ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 17:55:38 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 02:55:38 +0100 Subject: [SEC] [SA38055] Red Hat update for gd Message-ID: <201001060155.o061tcTu028371@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Red Hat update for gd SECUNIA ADVISORY ID: SA38055 VERIFY ADVISORY: http://secunia.com/advisories/38055/ DESCRIPTION: Red Hat has issued an update for gd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. For more information: SA37069 SOLUTION: Updated packages are available via Red Hat Network. http://rhn.redhat.com ORIGINAL ADVISORY: RHSA-2010-0003: http://rhn.redhat.com/errata/RHSA-2010-0003.html OTHER REFERENCES: SA37069: http://secunia.com/advisories/37069/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 18:08:29 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 03:08:29 +0100 Subject: [SEC] [SA38019] MRWhois "type" Cross-Site Scripting Vulnerability Message-ID: <201001060208.o0628TiZ015641@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: MRWhois "type" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38019 VERIFY ADVISORY: http://secunia.com/advisories/38019/ DESCRIPTION: A vulnerability has been discovered in MRWhois, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the "type" parameter to mrwhois.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is confirmed in MRWhois Lite 2.2. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 18:23:34 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 03:23:34 +0100 Subject: [SEC] [SA38094] Fedora update for gimp Message-ID: <201001060223.o062NYgm002987@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Fedora update for gimp SECUNIA ADVISORY ID: SA38094 VERIFY ADVISORY: http://secunia.com/advisories/38094/ DESCRIPTION: Fedora has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system. For more information: SA37348 SOLUTION: Apply updated packages using the yum utility ("yum update gimp"). ORIGINAL ADVISORY: FEDORA-2009-11880: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00184.html OTHER REFERENCES: SA37348: http://secunia.com/advisories/37348/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 18:43:33 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 03:43:33 +0100 Subject: [SEC] [SA38050] Red Hat update for PyXML Message-ID: <201001060243.o062hXLV022948@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Red Hat update for PyXML SECUNIA ADVISORY ID: SA38050 VERIFY ADVISORY: http://secunia.com/advisories/38050/ DESCRIPTION: Red Hat has issued an update for PyXML. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). For more information: SA36425 SOLUTION: Updated packages are available via Red Hat Network. http://rhn.redhat.com ORIGINAL ADVISORY: RHSA-2010-0002: https://rhn.redhat.com/errata/RHSA-2010-0002.html OTHER REFERENCES: SA36425: http://secunia.com/advisories/36425/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 18:55:37 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 03:55:37 +0100 Subject: [SEC] [SA38057] Kayako SupportSuite / eSupport Multiple Vulnerabilities Message-ID: <201001060255.o062tbuu010184@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Kayako SupportSuite / eSupport Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38057 VERIFY ADVISORY: http://secunia.com/advisories/38057/ DESCRIPTION: Some vulnerabilities have been reported in Kayako SupportSuite and eSupport, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. 1) Input passed to the "s_query" parameter in staff/index.php (when "_m" is set to "tickets" and "_a" is set to "manage") is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 2) The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. change the administrator's password if a logged-in administrator visits a malicious web site. The vulnerabilities are reported in version 3.04.10. Other versions may also be affected. SOLUTION: Do not follow untrusted links or browse untrusted sites while logged in to the application. Edit the source code to ensure that input is properly sanitised. The vendor is currently working on patches for the vulnerabilities. PROVIDED AND/OR DISCOVERED BY: D3v!l Fucker ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 19:16:18 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 04:16:18 +0100 Subject: [SEC] [SA38012] Bandwidth Meter Cross-Site Scripting Vulnerabilities Message-ID: <201001060316.o063GI90030640@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Bandwidth Meter Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA38012 VERIFY ADVISORY: http://secunia.com/advisories/38012/ DESCRIPTION: Some vulnerabilities have been reported in Bandwidth Meter, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the URL to admin/view_by_name.php and admin/view_by_ip.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerabilities are confirmed in version 0.72. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: indoushka ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Tue Jan 5 19:43:32 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 04:43:32 +0100 Subject: [SEC] [SA38035] Mini-NUKE Information Disclosure Security Issue Message-ID: <201001060343.o063hWo4018470@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Mini-NUKE Information Disclosure Security Issue SECUNIA ADVISORY ID: SA38035 VERIFY ADVISORY: http://secunia.com/advisories/38035/ DESCRIPTION: LionTurk has discovered a security issue in Mini-NUKE, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to improper access restrictions to the "mn7O4Z6J7L5W.mdb" and "forum7O4Z6J7L5W.mdb" database files in the db directory. This can be exploited to download the database files and disclose sensitive information including admin credentials used to access the administration panel. The security issue is confirmed in version 2.3. Other versions may also be affected. SOLUTION: Restrict access to the the "mn7O4Z6J7L5W.mdb" and "forum7O4Z6J7L5W.mdb" files in the db directory. PROVIDED AND/OR DISCOVERED BY: LionTurk ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 10:29:08 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 19:29:08 +0100 Subject: [SEC] [SA38038] F5 Products NTP Mode 7 Request Denial of Service Message-ID: <201001061829.o06IT8Ui007773@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: F5 Products NTP Mode 7 Request Denial of Service SECUNIA ADVISORY ID: SA38038 VERIFY ADVISORY: http://secunia.com/advisories/38038/ DESCRIPTION: F5 has acknowledged a vulnerability in F5 products, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to the usage of a vulnerable version of NTP. For more information: SA37629 Please see the vendor's advisory for a list of affected products and versions. NOTE: The BIG-IP and Enterprise Manager products are only affected if NTP was manually configured and enabled to be an update server. SOLUTION: Restrict network access to the affected service. ORIGINAL ADVISORY: https://support.f5.com/kb/en-us/solutions/public/10000/900/sol10905.html OTHER REFERENCES: SA37629: http://secunia.com/advisories/37629/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 11:29:02 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 20:29:02 +0100 Subject: [SEC] [SA38088] Liferay Portal "p_p_id" Script Insertion Vulnerability Message-ID: <201001061929.o06JT2eI029315@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Liferay Portal "p_p_id" Script Insertion Vulnerability SECUNIA ADVISORY ID: SA38088 VERIFY ADVISORY: http://secunia.com/advisories/38088/ DESCRIPTION: A vulnerability has been reported in Liferay Portal, which can be exploited by malicious people to conduct script insertion attacks. Input passed via the "p_p_id" parameter is not properly sanitised before being displayed to the user. This can be exploited to inject arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is viewed. The vulnerability is reported in versions 5.2.3 and 5.1.2. SOLUTION: The vulnerability will reportedly be fixed in version 5.3.0 expected to be released on 2010-02-12. PROVIDED AND/OR DISCOVERED BY: US-CERT credits Tomasz Kuczynski. ORIGINAL ADVISORY: http://issues.liferay.com/browse/LPS-6034 OTHER REFERENCES: US-CERT VU#750796: http://www.kb.cert.org/vuls/id/750796 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 12:28:52 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 21:28:52 +0100 Subject: [SEC] [SA38105] LineWeb File Inclusion and Security Bypass Message-ID: <201001062028.o06KSq9A018428@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: LineWeb File Inclusion and Security Bypass SECUNIA ADVISORY ID: SA38105 VERIFY ADVISORY: http://secunia.com/advisories/38105/ DESCRIPTION: Ignacio Garrido has discovered some vulnerabilities in LineWeb, which can be exploited by malicious people to disclose sensitive information and bypass certain security restrictions. 1) Input passed to the "op" parameter in index.php and admin/index.php is not properly sanitised before being used to include files. This can be exploited to include arbitrary files from local resources via directory traversal attacks and URL-encoded NULL bytes. Successful exploitation requires that "magic_quotes_gpc" is disabled. 2) The application allows unrestricted access to the admin/add_news.php, admin/delete_downloads.php, admin/edit_ads.php, admin/edit_downloads.php, and admin/edit_news.php scripts. This can be exploited to e.g. add new news articles, delete downloads, edit ads, edit downloads, or edit news articles. The vulnerabilities are confirmed in version 1.0.5. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly verified. Restrict access to the admin/add_news.php, admin/delete_downloads.php, admin/edit_ads.php, admin/edit_downloads.php, and admin/edit_news.php scripts (e.g. via .htaccess). PROVIDED AND/OR DISCOVERED BY: Ignacio Garrido ORIGINAL ADVISORY: http://archives.neohapsis.com/archives/bugtraq/2010-01/0022.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 13:28:57 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 22:28:57 +0100 Subject: [SEC] [SA37822] Snitz Forums 2000 "X-Forwarded-For" SQL Injection Vulnerability Message-ID: <201001062128.o06LSvhN007551@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Snitz Forums 2000 "X-Forwarded-For" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA37822 VERIFY ADVISORY: http://secunia.com/advisories/37822/ DESCRIPTION: Stefano Angaran has discovered a vulnerability in Snitz Forums 2000, which can be exploited by malicious users to conduct SQL injection attacks. Input passed via the "X-Forwarded-For" HTTP header to e.g. active.asp (when the "AllRead" POST parameter is set to "Y") is not properly sanitised before being used in an SQL query in inc_func_common.asp. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is confirmed in version 3.4.07. Other versions may also be affected. SOLUTION: Filter malicious characters and character sequences in a proxy. PROVIDED AND/OR DISCOVERED BY: Stefano Angaran, reported via Secunia. ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 14:23:38 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 23:23:38 +0100 Subject: [SEC] [SA38090] Gentoo update for php Message-ID: <201001062223.o06MNc7V028887@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Gentoo update for php SECUNIA ADVISORY ID: SA38090 VERIFY ADVISORY: http://secunia.com/advisories/38090/ DESCRIPTION: Gentoo has issued an update for php. This fixes multiple vulnerabilities, where some have an unknown impact and others that can potentially be exploited by malicious, local users and by malicious users to bypass certain security restrictions, and by malicious people to conduct cross-site scripting attacks, disclose sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system. For more information: SA32964 SA33275 SA34081 SA36791 SA37069 SA37821 SOLUTION: Update to "dev-lang/php-5.2.12" or later. NOTE: If the imap or kolab USE flag is enabled, update to "net-libs/c-client-2007e" or later before updating PHP. ORIGINAL ADVISORY: GLSA 201001-03: http://www.gentoo.org/security/en/glsa/glsa-201001-03.xml OTHER REFERENCES: SA32964: http://secunia.com/advisories/32964/ SA33275: http://secunia.com/advisories/33275/ SA34081: http://secunia.com/advisories/34081/ SA36791: http://secunia.com/advisories/36791/ SA37069: http://secunia.com/advisories/37069/ SA37821: http://secunia.com/advisories/37821/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 14:43:38 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 23:43:38 +0100 Subject: [SEC] [SA38073] Fedora update for krb5 Message-ID: <201001062243.o06Mhcsr016430@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Fedora update for krb5 SECUNIA ADVISORY ID: SA38073 VERIFY ADVISORY: http://secunia.com/advisories/38073/ DESCRIPTION: Fedora has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service). For more information: SA37977 SOLUTION: Apply updated packages via the yum utility ("yum update krb5"). ORIGINAL ADVISORY: FEDORA-2009-13539: https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00200.html OTHER REFERENCES: SA37977: http://secunia.com/advisories/37977/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 14:55:51 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 6 Jan 2010 23:55:51 +0100 Subject: [SEC] [SA38089] Slackware update for mozilla-firefox Message-ID: <201001062255.o06Mtp48003665@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Slackware update for mozilla-firefox SECUNIA ADVISORY ID: SA38089 VERIFY ADVISORY: http://secunia.com/advisories/38089/ DESCRIPTION: Slackware has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, manipulate certain data, disclose sensitive information, or compromise a user's system. For more information: SA37699 SOLUTION: Apply updated packages. Slackware 12.2 (may also be used with Slackware 11.0 or higher): ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/mozilla-firefox-3.0.16-i686-1.tgz ORIGINAL ADVISORY: SSA:2009-351-01: http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.423666 OTHER REFERENCES: SA37699: http://secunia.com/advisories/37699/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 15:09:05 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 7 Jan 2010 00:09:05 +0100 Subject: [SEC] [SA38104] Ubuntu update for krb5 Message-ID: <201001062309.o06N954s023364@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Ubuntu update for krb5 SECUNIA ADVISORY ID: SA38104 VERIFY ADVISORY: http://secunia.com/advisories/38104/ DESCRIPTION: Ubuntu has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service). For more information: SA37977 SOLUTION: Apply updated packages. -- Ubuntu 9.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.7dfsg~beta3-1ubuntu0.1.diff.gz Size/MD5: 95600 0f70036295e4f7337d73e01d3b7ddd50 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.7dfsg~beta3-1ubuntu0.1.dsc Size/MD5: 1776 1a5055bfdee2cf24631432e8d8983636 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.7dfsg~beta3.orig.tar.gz Size/MD5: 12235083 5219bf9a5c23d6a1d9d9687b918f632d Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.7dfsg~beta3-1ubuntu0.1_all.deb Size/MD5: 2173960 6caa47c3ba8061e554d65f592415d8c7 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 141814 eda6b542418104190e27399553f3d892 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 114192 72041faa19f14aacddc89f16251493aa http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 78406 6ef4f47c746830b751d1a5a7706e6b36 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 109852 ea8b046683279b077616ebe70fb80bb9 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 60558 ef09a9ba4d9a6bdadceb501885f36ed6 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 74144 152af5c5a52a7447dbff180e26d9e72d http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 58378 d4a2fe9589f2f74e12ae92f3d9ced08a http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 353742 d8d61e8f8ea19b3dae6195d21db980c6 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 1496120 c53aa2eee46620c56a76cf54a81c1187 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 100822 3d0aa9a559c299f758a0a063db315624 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 41414 ec8382c8a07348a6f6be876c5fa23690 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 109280 b7a105f9d75e24656100e7a2f8351202 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 217508 f4171a1e642de9ddb2ed158868ac6fd0 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 70410 4b592e17ae38e54e0439ebb7a1bfc5af http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 111496 b3ee0bb8f93f255c3c67898b6c64a031 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 207966 dec2f0580508a7cdd302481aa438e120 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 72146 a8278458c3c895ebedc9261b6a66cb8a http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 85780 51ffc12ffb82ea820bdf0742d918e413 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.1_amd64.deb Size/MD5: 76994 c7ffca80c0c63c9974d43cb2683841dd i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 133034 16017c5f538cd73a6c5ab4e887f2bad8 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 107852 060280eebc2356be51d58455aab21091 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 71838 deeacbd6c8ed12b64c348da8245a9fa4 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 101906 f16b3c9050d1dd7ce6061238a7889ddd http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 57276 2571ebd0ffa3a13f908bf9eb67e0c924 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 69786 ea42861b21c9ef801ee076cae5a6706c http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 55950 fb6a92fbc279f97f8ece2a87fd65297b http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 337126 859d8b4a62da148f70dc78566f2a63cf http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 1477578 63fe0c129a36eea1295ed9ca95a12bd0 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 100848 1cb8492cd3974d358fd0aff7afc70958 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 39550 8c6ca0197f92cd26c61cb663afa35650 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 101430 a524159aad84253013d94e623bf30eba http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 195626 7b6dd1b4f96fa78c3a184fc46a70bacf http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 65224 6faf061c5fd541dd2136f2ea3a0c9b30 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 106142 ea50ee048bd8bd9e97abb3d6647c771e http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 192156 eba58c68cfb33214140b2db81a9ea9e9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 68848 db36a1d9eb9987d1850e89d740ccbc6b http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 80090 cf8318d426eaf6e86009abc803f35fb2 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.1_i386.deb Size/MD5: 70752 905d6d92b7e23e4aafdee8ae67bd82dc lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 133112 a11227793157afb52a759a04538e8c93 http://ports.ubuntu.com/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 107008 899e2d1e1b3aa9c2cdb60996ee0a32c9 http://ports.ubuntu.com/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 71252 e8d2f9c66861256682526ffb5866229a http://ports.ubuntu.com/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 102168 25c5beab3acc8477999c7d3b64244408 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 56792 1e6ab58007a2eb1521ce2c7f596a8a25 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 69888 cbd025fe863898f17837e51015251e6c http://ports.ubuntu.com/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 55598 6b0905a9661c6cb23bb7064205335d4f http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 334532 b3b9d4b9039010fd0927a59d53c4df86 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 1498290 937cda431eb453003a3d84cade3b3d5a http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 100830 3b4eece7651f92855f2da5376843d692 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 39260 b9b5adabb5b4b72bf4ecbba63789abe2 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 101990 31e82aa6dd83165e002b96557feded2f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 192558 a81339a3a56d74f48a6638f26924e9d5 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 65360 6d32e7908356ba91726ab7cc6970fa8b http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 106228 2f3c03436b6063fcf301957444c817b5 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 192310 b221131242f4ce20420bace756fb3e4f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 69072 a5a912fe34b0fea9f168aab60280e729 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 79900 bd4a2f2c26235664b3e35841acc29138 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.1_lpia.deb Size/MD5: 71048 500628b0d876d611b4898a85c843c7bb powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 139004 4be83c313c12504f1486a77f3cf03191 http://ports.ubuntu.com/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 112848 e3bc1891d32d7f3b801b941b4e15a66b http://ports.ubuntu.com/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 77370 204bf28af33d688a1fff2a331bd6fba4 http://ports.ubuntu.com/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 116042 2b7b200d4790da9d98a7fb8c9c66fceb http://ports.ubuntu.com/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 58820 14622071b1bdd1f4dcfbc8993f90ea90 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 73232 8ef42ccceea4ff6bf7f7a206adad11f8 http://ports.ubuntu.com/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 57656 5ef7eee49aad2622175dc511ccd023bf http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 359380 6213040e8b8045ca5194196766b956fb http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 1534332 f394586b8826b6b49e1ce44be7b9dbcb http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 100848 706125e81a03e40bb3d6d3ef5b2513f9 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 40942 065fa3b04927e3f35b8f4bcc3357d861 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 107138 0ee540d7f40c91c8a1c125dda68a28ec http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 211358 c366db53003eae9fb1712f3aea8ff999 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 69306 5d479a574b0d127c803cbfde1f719d2d http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 111556 7f41a7f6f96120766f63e60a49c307b6 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 205322 0095b018bbab463bf4b99cdc518393b0 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 70620 293d09292c82a317d6991c751fdc888f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 83386 ea165831a64d3b4a26953edbb345f9f8 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.1_powerpc.deb Size/MD5: 75874 5c05302498c98c1890656b2737f0b9d9 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 136176 4d6c792c757aaa9332af4fc8b4c6c4a7 http://ports.ubuntu.com/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 100576 813459d3611bc897520ca33267ca2e1d http://ports.ubuntu.com/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 70802 c645b90b796be0216ded7982442c441e http://ports.ubuntu.com/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 107748 eec49504685a92ff72a1ec9e64abf051 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 54852 29bf1e998a8e8a7ce55fa6a9a980bc36 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 66434 3d75f56f0f3b726e922a69b73ee6dfd8 http://ports.ubuntu.com/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 53826 1dd03702ccc6323b766346d9e10eecb5 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 323932 e6b5f529ce6e08b056892efddb014ebf http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 1380636 c8502f360d738b3db837aaeee22f29e9 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 100844 050f042d05ddbb5aff743667ea77f0c2 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 39160 155fb8b8c54b6fdbc5d53b2874f45bc3 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 103384 1a0e903cff10b57d81d778cc1f0328d7 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 208140 0cd727ac1b5074cf7eb93b31c996c4f5 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 67938 5efae98dfec7dd8de32b94a3811f61b4 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 105088 d69cb063782833f812e8978d46444e3c http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 191872 482bca110aae96a2499ce7703986e3b0 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 64422 d115c7576315885ffb301661cb3c0249 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 83888 7d6aa6b1e76ce834023d89f75262a77b http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.1_sparc.deb Size/MD5: 72936 f28a758e820a12df37d69d532e3a12d4 ORIGINAL ADVISORY: USN-879-1: http://www.ubuntu.com/usn/USN-879-1 OTHER REFERENCES: SA37977: http://secunia.com/advisories/37977/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 15:23:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 7 Jan 2010 00:23:43 +0100 Subject: [SEC] [SA38112] Joomla jEmbed-Embed Anything Component "catid" SQL Injection Message-ID: <201001062323.o06NNhOb010696@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Joomla jEmbed-Embed Anything Component "catid" SQL Injection SECUNIA ADVISORY ID: SA38112 VERIFY ADVISORY: http://secunia.com/advisories/38112/ DESCRIPTION: A vulnerability has been discovered in the jEmbed-Embed Anything component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via the "catid" parameter to index.php (when "option" is set to "com_jembed" and "task" is set to "summary") is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: FL0RiX ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 6 15:43:40 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 7 Jan 2010 00:43:40 +0100 Subject: [SEC] [SA37822] Snitz Forums 2000 "X-Forwarded-For" SQL Injection Vulnerability Message-ID: <201001062343.o06Nhe2g030658@CRON-IX-2.intnet> ---------------------------------------------------------------------- Follow Secunia on Twitter http://twitter.com/secunia ---------------------------------------------------------------------- TITLE: Snitz Forums 2000 "X-Forwarded-For" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA37822 VERIFY ADVISORY: http://secunia.com/advisories/37822/ DESCRIPTION: Stefano Angaran has discovered a vulnerability in Snitz Forums 2000, which can be exploited by malicious users to conduct SQL injection attacks. Input passed via the "X-Forwarded-For" HTTP header to e.g. active.asp (when the "AllRead" POST parameter is set to "Y") is not properly sanitised before being used in an SQL query in inc_func_common.asp. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is confirmed in version 3.4.07. Other versions may also be affected. SOLUTION: Filter malicious characters and character sequences in a proxy. PROVIDED AND/OR DISCOVERED BY: Stefano Angaran, reported via Secunia. ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From summary at secunia.com Thu Jan 7 14:03:13 2010 From: summary at secunia.com (Secunia) Date: Thu, 7 Jan 2010 23:03:13 +0100 Subject: [SEC] Secunia Weekly Summary - Issue: 2010-01 Message-ID: <201001072203.o07M3Dqk011635@CRON-IX-2.intnet> ======================================================================== The Secunia Weekly Advisory Summary 2009-12-31 - 2010-01-07 This week: 81 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Twitter http://twitter.com/secunia ======================================================================== 2) This Week in Brief: Secunia Research has discovered a vulnerability in PDF-XChange Viewer, which can be exploited by malicious people to compromise a user's system. For more information, refer to: http://secunia.com/secunia_research/2009-64/ http://secunia.com/advisories/37706/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA37584] Adobe Flash Player Multiple Vulnerabilities 2. [SA37690] Adobe Reader/Acrobat Memory Corruption Vulnerabilities 3. [SA37231] Sun Java JDK / JRE Multiple Vulnerabilities 4. [SA37831] Microsoft IIS ASP Multiple Extensions Security Bypass 5. [SA24314] Internet Explorer Charset Inheritance Cross-Site Scripting Vulnerability 6. [SA36983] Adobe Reader/Acrobat Multiple Vulnerabilities 7. [SA37699] Mozilla Firefox Multiple Vulnerabilities 8. [SA28713] Facebook Photo Uploader ActiveX Control Property Handling Buffer Overflow 9. [SA35948] Adobe Flash Player Multiple Vulnerabilities 10. [SA37398] Kaspersky Anti-Virus 2010 Denial of Service and Privilege Escalation ======================================================================== 4) This Week in Numbers During the past week 81 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 10 Secunia Advisories Unix/Linux : 27 Secunia Advisories Other : 3 Secunia Advisories Cross platform : 41 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 11 Secunia Advisories Moderately Critical : 32 Secunia Advisories Less Critical : 35 Secunia Advisories Not Critical : 3 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support at secunia.com Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ======================================================================== To unsubscribe click following link: http://secunia.com/summary/unsubscribe/?email=caos-secbox%40lists.infiscale.org ======================================================================== From sec-adv at secunia.com Wed Jan 13 10:28:45 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 19:28:45 +0100 Subject: [SEC] [SA38147] Novell ZENWorks Asset Management SQL Injection Vulnerability Message-ID: <201001131828.o0DISjTX030389@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Novell ZENWorks Asset Management SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38147 VERIFY ADVISORY: http://secunia.com/advisories/38147/ DESCRIPTION: A vulnerability has been reported in Novell ZENWorks Asset Management, which can be exploited by malicious people to conduct SQL injection attacks and compromise a vulnerable system. Certain unspecified input is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation may allow execution of arbitrary code. SOLUTION: Update to version 7.5 Interim Release IR19 or later. PROVIDED AND/OR DISCOVERED BY: The vendor credits an anonymous researcher, reported via ZDI. ORIGINAL ADVISORY: Novell: http://www.novell.com/support/viewContent.do?externalId=7005128 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 11:28:46 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 20:28:46 +0100 Subject: [SEC] [SA37964] Fedora update for transmission Message-ID: <201001131928.o0DJSksj019535@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Fedora update for transmission SECUNIA ADVISORY ID: SA37964 VERIFY ADVISORY: http://secunia.com/advisories/37964/ DESCRIPTION: Fedora has issued an update for transmission. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. For more information: SA38005 SOLUTION: Apply updated packages via the yum utility ("yum update transmission"). ORIGINAL ADVISORY: FEDORA-2010-0197: https://admin.fedoraproject.org/updates/F12/FEDORA-2010-0197 OTHER REFERENCES: SA38005: http://secunia.com/advisories/38005/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 12:29:21 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 21:29:21 +0100 Subject: [SEC] [SA38130] Sun Java System Identity Manager Security Bypass Message-ID: <201001132029.o0DKTLZN008707@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Sun Java System Identity Manager Security Bypass SECUNIA ADVISORY ID: SA38130 VERIFY ADVISORY: http://secunia.com/advisories/38130/ DESCRIPTION: A vulnerability has been reported in Sun Java System Identity Manager, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to an unspecified error when the application is configured with Sun Java System Access Manager, OpenSSO Enterprise 8.0, or IBM Tivoli Access Manager. This can be exploited to gain administrative access to the application. The vulnerability is reported in Sun Java System Identity Manager version 8.1 with patch 141642-06 or 141642-07 applied. SOLUTION: Sun Java System Identity Manager 8.1: Apply patch 141642-08 or later. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: http://sunsolve.sun.com/search/document.do?assetkey=1-66-275010-1 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 13:28:56 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 22:28:56 +0100 Subject: [SEC] [SA38034] Oracle Application Server Multiple Vulnerabilities Message-ID: <201001132128.o0DLSu9X030244@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Oracle Application Server Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38034 VERIFY ADVISORY: http://secunia.com/advisories/38034/ DESCRIPTION: Some vulnerabilities have been reported in Oracle Application Server, which can be exploited by malicious, local users to disclose sensitive information and by malicious people to disclose potentially sensitive information or manipulate certain data. 1) An error in the Access Manager Identity Server can be exploited to manipulate certain data. 2) An error in the Oracle Containers for J2EE component can be exploited to disclose potentially sensitive information. 3) An error in the Oracle Containers for J2EE component can be exploited to manipulate certain data. 4) An error in the Unzip component can be exploited by authenticated, local users to disclose potentially sensitive information. The vulnerabilities are reported in the following products and versions: * Oracle Application Server 10g Release 3 (10.1.3) versions 10.1.3.4.0, 10.1.3.5, and 10.1.3.5.1 * Oracle Application Server 10g Release 2 (10.1.2) version 10.1.2.3.0 * Oracle Access Manager versions 7.0.4.3, 10.1.4.2 SOLUTION: Apply patches (please see the vendor's advisory for details). PROVIDED AND/OR DISCOVERED BY: For the vulnerabilities fixed in the January Critical Patch Update, the vendor credits: * Esteban Martinez Fayo, Application Security, Inc. * Alexander Kornbrust, Red Database Security * David Litchfield, NGS Software * Brian Martin, INS.com * Guy Pilosof, Sentrigo * JPCERT/CC Vulnerability Handling Team * Daiki Fukumori [Secure Sky Technology], JPCERT/CC Vulnerability Handling Team * Dennis Yurichev ORIGINAL ADVISORY: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 14:24:28 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 23:24:28 +0100 Subject: [SEC] [SA38140] Debian update for krb5 Message-ID: <201001132224.o0DMOS5Q019222@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Debian update for krb5 SECUNIA ADVISORY ID: SA38140 VERIFY ADVISORY: http://secunia.com/advisories/38140/ DESCRIPTION: Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. For more information: SA38080 SOLUTION: Apply updated packages. -- Debian GNU/Linux 4.0 alias etch -- Source archives: http://security.debian.org/pool/updates/main/k/krb5/krb5_1.4.4-7etch8.dsc Size/MD5 checksum: 884 4ee0daa9f7a62bb59b665585dfc699d9 http://security.debian.org/pool/updates/main/k/krb5/krb5_1.4.4.orig.tar.gz Size/MD5 checksum: 11017910 a675e5953bb8a29b5c6eb6f4ab0bb32a http://security.debian.org/pool/updates/main/k/krb5/krb5_1.4.4-7etch8.diff.gz Size/MD5 checksum: 1590501 546997d33ae6e7a7d8daa7cec8eeed3f Architecture independent packages: http://security.debian.org/pool/updates/main/k/krb5/krb5-doc_1.4.4-7etch8_all.deb Size/MD5 checksum: 1806668 4bdcd4ef469018cadaf6acf6782b2c0c alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 66426 c7715fa7c77e4d861ae2c5b6bb2523ef http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 1017748 f70cc2b7b95219218bbae652bae2011f http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 1088876 eb19f3e6ee7e34c15d1c036eeb1ab3ca http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 216408 2cf4a2b423df4358d3003b64b5d8c5b8 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 89570 6245b91a6384231f06db23ac68b81743 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 76316 019757cc0b367128f90d5de3d24b2750 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 245950 e21517ad70bd355bfab8439cd9753be9 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 155570 ee316999fb912edfb6ce481e19285c22 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 136924 010501b5910d3afc49763021e9702527 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 92386 6a50f75d72010e6908bfc3a4bf6466b8 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_alpha.deb Size/MD5 checksum: 461704 ba58baccaeac818475af555154853b5c amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 87118 fe568cfa5b5c4db84516e6177c35bfac http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 427114 fc0d3cbf9ba99bf127f99500701d3a84 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 84254 f6074da963c6336728384045c2a93dfb http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 1073020 17030c0f4d64cd46f9c7a36a68ef60f3 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 131638 2c3a999c180a2459f3b99985fe9baf1f http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 222206 7568096cc250818d8471a388e8eeac09 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 190912 0beb7c8d9b28a67896e76281bbb97d82 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 142510 9af4235fe3bfa0629884322440a980bb http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 62480 690f768fae84f2c96bd5d80b2e87fe70 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 767772 b35e650c85f15a2279fc287217d1a9d0 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_amd64.deb Size/MD5 checksum: 68558 9c0b741886e3052ea6e8830200d70df9 arm architecture (ARM) http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_arm.deb Size/MD5 checksum: 60160 990910a9728b3c36871059da511499f1 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_arm.deb Size/MD5 checksum: 81766 76b150051fa839ad64a9bd3e7f213f93 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_arm.deb Size/MD5 checksum: 390542 b2176ae80244a7f7eca4e81cc887e0d8 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_arm.deb Size/MD5 checksum: 173512 069d194a443166bedcc56afa8e1744e1 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_arm.deb Size/MD5 checksum: 63732 826309ff571a3b22d6ed3d35d6bad726 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_arm.deb Size/MD5 checksum: 123842 f829ca2bf7af803b910ba63b12cbe45f http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_arm.deb Size/MD5 checksum: 206564 590041188ecb8fc811110f43fe76d1fe http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_arm.deb Size/MD5 checksum: 136404 de19824685b4f9a9dd22021c702b2bc6 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_arm.deb Size/MD5 checksum: 1014004 a0f0bab83ddf8243f7421e6e8e267af7 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_arm.deb Size/MD5 checksum: 79150 d47ec170d23eee90d8b6e1028952fc3a http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_arm.deb Size/MD5 checksum: 683144 935f17e1a5660b4a54e58879ec499e69 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 440296 3be94c09e6845b8ea0c01426d0ca4696 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 1051932 ecd460dd2c253e3b34026f0d0ad38c2a http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 85920 9555de162f9ba2dd330000f412ac341a http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 816232 f22cb3c9e31461776e014e9a1327eb1b http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 133916 e0314016283317b38de3739a2e12bce6 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 87098 91c0a588fc11a820170f424fb671bb40 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 201512 51aea1b2776f31091e9699acaaf295b4 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 228146 8b666d9dc7a950da3b9b2e4d7d483716 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 70040 6ec1038379ce8698407ba3546c92caa7 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 144924 c4ee08b3257b726f6321846a946c2fc6 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_hppa.deb Size/MD5 checksum: 64550 d23564cc243a250497a0f92cc02a26a0 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_i386.deb Size/MD5 checksum: 680610 cc980957f4c660dfe1b73e175c807931 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_i386.deb Size/MD5 checksum: 62780 3adbcad94f5627c2c4cf1b1850d05c6a http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_i386.deb Size/MD5 checksum: 80642 c1699246a7ad5eaca9c2f5ee5fcb337a http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_i386.deb Size/MD5 checksum: 1038380 a38ca0f4f6d1b6d3fb4e5e37bb241614 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_i386.deb Size/MD5 checksum: 124540 7e39b6602069aae509d227999d5d403c http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_i386.deb Size/MD5 checksum: 174430 7ca10e3a2179c518d2aed4a4612c6119 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_i386.deb Size/MD5 checksum: 133706 6e33380795b2d945c01ef7183e458f23 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_i386.deb Size/MD5 checksum: 58378 571974ef325e11e5773a8e69e3439923 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_i386.deb Size/MD5 checksum: 78928 e9cdd1646f5f3d1e3756958d70171c84 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_i386.deb Size/MD5 checksum: 408762 f72eb38bd49c68c5a89f909844020534 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_i386.deb Size/MD5 checksum: 196872 bab9430ce99981adda474d644bae0764 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 592704 767340ed4ccd5f3cf187729272b5c359 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 105900 62b1f2084544249fcac0df57051f4554 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 1089322 7fb36fb213abb1e9f0bd59c3fe7e00bb http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 91658 b3a950cedd6913ba128015f45444e85e http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 190736 c5f859c6fcc1fd11d8debc15a7743dbc http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 1043602 09a701e1f8ff82330785d75af7905d76 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 269918 be2672d30dd739574b5eb9172a3c837d http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 164846 21c637c657eb92ccfc67962ca8d0cb68 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 80648 f8389e4089152f52144f5c7c66662cab http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 113314 eab64b5247be62d6611ad505d3ed939c http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_ia64.deb Size/MD5 checksum: 306220 334c842132fe5a0d29fce45e808af341 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_mips.deb Size/MD5 checksum: 390280 ee3724ff64a41b47223c4543a24231e9 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_mips.deb Size/MD5 checksum: 177164 1e245bb9a77d9e22225486cc1d109d90 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_mips.deb Size/MD5 checksum: 71552 8329658d40b027864f640ef976936579 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_mips.deb Size/MD5 checksum: 807966 845f3e360ec42242be927189c1240d20 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_mips.deb Size/MD5 checksum: 82136 7297d947bf02cc83edb6791b1bec7e98 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_mips.deb Size/MD5 checksum: 86776 fb6080c740deadf8a3d25e3db1d11c29 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_mips.deb Size/MD5 checksum: 145300 7ce64ef299b1e4178a3c680e4f5d12a7 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_mips.deb Size/MD5 checksum: 1113408 091e167743444e2d86b9b0994a067974 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_mips.deb Size/MD5 checksum: 230778 eb1ea743345a76dbcbd5a0c410ec1d1d http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_mips.deb Size/MD5 checksum: 128832 9f796e1d54468c19817838bed81e1226 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_mips.deb Size/MD5 checksum: 63282 81a4b1a095c8a89758db14e1bf70a207 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 1088272 5ca4bc01e92b0353c4bc44747dfb0211 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 810866 a5281da7e780dc16370ec958aa8e87bc http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 64152 46e6875c9ca40d9d0f56ba08ed0e7821 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 82976 757fdca0536a4037264cb5b675a812ee http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 87790 70002efa0b49808320fbacef838ce0fb http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 392406 dff848b39a73feed2b18bb6db7715cef http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 233092 7927807f45581b8c8a7873af13f20a8e http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 146004 3789fc059b01d64c5d7694239f981b87 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 71896 ca412ae3c2d58efeb8209da59048b86a http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 131392 5d79bcf0fbc6a852c740e58af83c6b77 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_mipsel.deb Size/MD5 checksum: 179810 93fd247868871f538dfaa597aa172ccb powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 223096 fe0bbb32aa77142527981f0a4f5494f0 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 62264 d3dcf571fac840e90cac101ef7641901 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 84690 1628641e1f4e0286e35af2199fe5cc01 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 399766 80947d1ae44a46692f73e2669627b7c2 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 179904 57bb2072d0c07f1a9a8c1ebdd347d4ba http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 137650 bbb39692552b59c88aad0957b54a8774 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 67704 4fd027cddf05f78a77bbf7a97ad0f9e6 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 144126 a24427b5adbf031e01ac09725cdcc380 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 87190 68da3d251a9e60e1ed841e27809d2d99 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 1083782 7ef84bf21c4a23bc02bba4713c260873 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_powerpc.deb Size/MD5 checksum: 753896 f8d79f96e7e7a9f937407f49b78d9312 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_s390.deb Size/MD5 checksum: 129546 1ea44de69cbfec2cab806be2f5e11f80 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_s390.deb Size/MD5 checksum: 733810 86ea546d8eb5e4c7c2aeffa0703c72a4 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_s390.deb Size/MD5 checksum: 82426 de07126b23e8d53c703348eb8539d5da http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_s390.deb Size/MD5 checksum: 1074058 f64077b9524e988dba437e79bad53cfb http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_s390.deb Size/MD5 checksum: 140762 d770522258122aa18764b938ebd88e24 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_s390.deb Size/MD5 checksum: 195808 7ef172ebb5c195d3fa1010e9cc289402 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_s390.deb Size/MD5 checksum: 69080 d584525570c9eeb6299eeb014e885582 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_s390.deb Size/MD5 checksum: 224770 2cef613c0d36527987de842ca3198aae http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_s390.deb Size/MD5 checksum: 439428 6700040f505a31c9cae489a87d73e7a3 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_s390.deb Size/MD5 checksum: 88216 9836d516b47f2c30ae4757efd3bd8e75 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_s390.deb Size/MD5 checksum: 63716 b7911851d810eac531c4b7ca56316134 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 167036 8c8d9890d634258080ade15d84edb6a2 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 64134 a1a8b905b3371fea357bbe07df1ffe0c http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 373070 3a8109216dd34cb46f6b83597f47691e http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 78548 8c65e37edbe211fa7ccda2f8a0d236cd http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 200582 0d147e7d1b517e8a082de68e46000221 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 132038 90c76335e6a9f33162be50e9cb8b66c8 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 123362 22537c970b94146a418b37289b100c3d http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 962126 b9e55793348dd0a74c60f3cf3aa92c78 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 77454 f214534d165fdffbc0970ef6baf6476d http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 680902 e8c793ceab96ca75946d78e84596331c http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_sparc.deb Size/MD5 checksum: 58568 996681397f88bb299f2344ecdc3cacd7 -- Debian GNU/Linux 5.0 alias lenny -- Source archives: http://security.debian.org/pool/updates/main/k/krb5/krb5_1.6.dfsg.4~beta1-5lenny2.diff.gz Size/MD5 checksum: 847479 4863ad37f712731b55e989f650681cf6 http://security.debian.org/pool/updates/main/k/krb5/krb5_1.6.dfsg.4~beta1-5lenny2.dsc Size/MD5 checksum: 1536 517483a1b196783a6b930ce5279b35e8 http://security.debian.org/pool/updates/main/k/krb5/krb5_1.6.dfsg.4~beta1.orig.tar.gz Size/MD5 checksum: 11647547 08d6ce311204803acbe878ef0bb23c71 Architecture independent packages: http://security.debian.org/pool/updates/main/k/krb5/krb5-doc_1.6.dfsg.4~beta1-5lenny2_all.deb Size/MD5 checksum: 2148814 033ed1efe5d8f0f156fc494706c808b5 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 71398 ca090fb8bcfdcc2fc3f5515bef39a0fd http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 92652 65ed615eb4e3eddf9624208f6b29d172 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 98132 9af97bbe3becc4af76796dbf15e09d3b http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 179916 248446d582e244beda0abae6a6d041f6 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 83152 691efa10f887c940a91462391370ebb4 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 112610 503d2b53b2b4afd7517c52a834dd2fb1 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 148160 6705c91448817d23890f8d24d183d650 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 256154 6d54e7196412177f4fdc2450981094dd http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 1349966 f8ef1c1e8aae7fe1d061636b7789342d http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 219542 4068bd7ecab8dd91a4ba212d3ed8b709 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 538112 1c36cf6e6864acc7bc81c88435e2200e http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 98006 0b67c73e8e0018fd346092b39e0ed5db http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_alpha.deb Size/MD5 checksum: 70114 0bc2d7afc1759b5c6ca1423856b8161b amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 146730 6f4e67a7507773df90371fbb31bca7c5 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 519370 01d1077bfbab1ce248f8cead034e498f http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 95298 5d4299de77de3e070b5d9c908db60962 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 1475794 61eee9e67cb367b053ed308655fdfef0 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 68318 bf3d50ea870cd2c47c02b9499155f5ec http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 238698 c68ddf853b1e7c5576d9bd11660ef98a http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 77100 cdad45e1d14d4375944eed7b02f97b32 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 108392 702fdefe0711d2d3ef08a7f0c5252142 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 94016 90ab00c758a3ec085c508ac38923e2e9 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 69304 2b2ab7d2ab4e433f27d7af3a7692f8e4 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 92722 0f7d5151f05305fd7edde228db4db05c http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 199290 c13a655ddb56829a6da3056eafc11f57 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_amd64.deb Size/MD5 checksum: 169726 c56d7b235e72ed6bda6c85bb3040c8b9 arm architecture (ARM) http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 145920 ef484e287053f697965299b99c091e8d http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 102664 b94057d8bec867a8cdc753f96d8792ca http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 448840 6d8b1125b5b55a7f90f7a6968fde4ac5 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 87640 21a2f847f2892b292b8f3880a6b3363f http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 215100 c4db292db7749bf76788f8fd9ed28aa5 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 188268 d4bd686a4be543a64e53028edc777586 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 135214 b57a313a3ef2a194891176707c68214c http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 86642 a8e5efe9362905021ba6be528e1da53c http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 70416 ada9c86f89264cd1e28ced20d792778b http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 61518 846e2f6fa06cc906e41e87d083e684ca http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 92714 5780ff696e0a16a49f1ca03d1c192577 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 65948 ede274061769677ee44f197ae7bd73e9 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_arm.deb Size/MD5 checksum: 1283476 44701e72f952e2e4c2b064eb75a9dcb4 armel architecture (ARM EABI) http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 134836 57b9d62c596d0a0978786f60dc47d529 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 69966 35aee03b89f4e78cd57ffb2ec6f1543e http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 86134 745b8e6753d12220e715fd6473a83913 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 209128 0e8e3e6b84cc5a3f916879f3b7d5562a http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 448822 56ffcc4240fa08fda0a674cb94605ec9 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 145848 e6eac0f9ec739ca86016968486c2e9aa http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 1290160 4081413b96c25bcf999c088ba0c06191 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 186102 c86b76a0c80824d9dfc4d77b08166d89 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 61556 d36ff9f728f1fb6eb46a60b8ee0bef1f http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 101064 e3942d30e80f02e9e2352b613b32cc0f http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 92766 3a265b2a9912f3bdb87cce69bc693e26 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 86808 4b1f7eebf3700eb4d262c584f35bb877 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_armel.deb Size/MD5 checksum: 65606 82f1a791f29488a2534ad3a537e052e5 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 170862 02b00df5166d3c3e90bf9b964eb34c23 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 93952 83cd93f84feb117b50db2fa1ad9fcf25 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 92868 abb9537f1a875f5e2b45e7220ea7cb2c http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 70176 9fd26139b1a6077f3d4b6097880de080 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 68732 029acd28a997daa30df0d6313eaffae6 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 111168 3c9eb020108eb3faa8657e66fbfc4d20 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 76238 6f1bb91dc434b25b11913977ffa2919c http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 92474 44dd654591ffd1cb17ccd253e97ff40e http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 145450 54fd47f443c221b2136e814df24529e7 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 235032 28f381ab9f44f0c5fcfa9c5ad49820ad http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 510864 4d5a3ccecd06ace02019fe0d2c865049 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 200158 c667bfe04b647561c68cb22968235474 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_hppa.deb Size/MD5 checksum: 1302162 774ec15b2431b2e1e065da84d8eb9670 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 1413950 e802d6567ed223d6beca19b7d6272389 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 87556 f3c9bc00276872a9b154324afd41e705 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 210378 dfbd50409d17aab6392e730b98dafbca http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 153804 7849b458fd30c031168ec4d95aacee66 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 102830 0757e35a188349c39632761e01f23a56 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 186216 4e892700eda91de2bee99398963deb69 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 88312 b3bb0f731ea641305db2337209805297 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 481642 04ebe294248341111f1de90d9bc43fae http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 137568 730328f701319ac74f2a13654af52e1a http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 64352 e7397761d38609dcb1dbc89dd563f13f http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 92704 f42ade4fdc92a8ab38d4ddf96432a9bd http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 65240 665d15a9b1e44a7424b35cfcadd39474 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_i386.deb Size/MD5 checksum: 70898 f0a680d86b77d362f82f14a8e280b307 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 118502 b61c89fe1a3978fbb2a8be001c94e214 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 1282370 938b88afd402ffea976403f99ee0fff0 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 219590 d9a9bbbb7cbdf4b6e3ef009ada07787f http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 85734 616f2c76dbfbb2006608c466467d045a http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 113710 777c9492f526bae4b2a4aab130ac4988 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 177328 b13561afc9a03935c8a4e4b8fe6e77af http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 92710 ae1ab96d1cff1f4e0ce2113025637a62 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 270656 52d380feec8d765ad6c5645edf1c7ffb http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 700958 ad8334928d62f636dbe4410e757e1e1c http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 85228 b493ca2894a47e747d2b31fe93b278a4 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 97562 c2b52bbd7a858e83d748e34ba3212ca5 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 139022 f6fa1941b7bab6c1ad9fb8c01f491abf http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_ia64.deb Size/MD5 checksum: 312288 72e40a747f97bff17a22cf23b89332d3 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 63936 772642f58803aa4ecc653bd065c6b9bb http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 151438 c8197cdaa3f69e44098a4950da9c80be http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 1381838 a37792b2bccfb1d8128bd6e190e4e41c http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 234742 a1916fff0802c341d0f4016326785cd0 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 102112 a497919bf702e109ecdbd90bbe3e52c1 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 76392 36f581155c9d22ae46804f80ecdb16d4 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 89552 2abf2c6c9bc12f62d93e0cf353ecb1c6 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 193034 f6406b8e5ddcf96d27304e37a13a930c http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 91472 93636b59ca82ed54fd0f41c28d406145 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 457014 755e4322e73e834de6f53672f1fee8ba http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 68420 4fc15a6c545c8566f2491c7e1be9da6d http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 92664 71e2aea5291ea0d6a99022c004961fcb http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_mips.deb Size/MD5 checksum: 139754 f5e5a96821bba5e4e27aa0e8575e811e mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 194710 654bdfef5c7cb83e2c168fa17b6bb235 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 142330 ad02fc15a5db773dd3f5f07f413afd42 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 152716 4b3ed14c0c37b6324d0bcdd5e0e38fa8 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 63954 727f984f06ebdfc74db308190d6ad4a0 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 1354424 f5b2b0e73732501a6ceeb89977318583 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 76948 08680fec5f245b34daa5dfee6b27783d http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 68988 84921c1acde715e504e5b609e8fd17b3 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 92734 d54e507a212a32e3fac2a4b1620fc946 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 90074 e1051b8631c50afae3748299e2281d05 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 236418 eaa8bb2f4e81fe5988daf67823f04f40 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 458282 20ce42cca24170dbea2b62fef7518899 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 92486 425cbb4a813c05aa15297f04f458687e http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_mipsel.deb Size/MD5 checksum: 102792 203159863acc422d7b20f5c197daa07b powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 1348068 5c55594c1a91264ad2a2b7298d0a452a http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 249296 d8ae807480800e6ae248c2b82ef4714a http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 102010 f1b50b23234f553bcadebab4f4753f20 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 71414 01e9a39b2710bfe72f572ea8bc7f8a16 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 162918 a506df1f06d35e4defe4ffa9b7ebd776 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 92714 56f990b927671bedb5c54b72ed90eb95 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 100300 0c4004eed024805b8a02360f9e40b5f9 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 208818 34337fefc9e83f0a32b84ba1ab7ef39f http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 500852 518d8511fe310695edf8146f88d611e9 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 78166 b811cc6d5be4f7e6da307c4e98562313 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 112038 92e8a7060416f29242a489497872a4f8 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 163598 5fe88426c0dfc6fe7d260e2829571875 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_powerpc.deb Size/MD5 checksum: 66612 be5469bdd83a2f80313b87f983654593 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 92688 62fe1e7b6adf8249dbb50b5a8fe428d6 http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 70426 93962917fe3dcb74ea0e43851d1dc9be http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 144958 a0d9a3bc73ed7ccde73263c122215e2a http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 108464 7b37b0566d714a6ca856c17e8a0b9ce1 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 77152 30b89036ead9d052428d2e7d760648ab http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 92852 4ab73ae69a9271bf4656b5d739eb0a30 http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 237520 859ea9cc9a2cb37fb313e6cb544e1958 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 170310 c4e08492c51cf98c8a52ca236df9a494 http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 1365520 379205e114d12000cb3ebc90f4e24f70 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 68778 025c8e4b569f713d18b39e3c29119977 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 97064 ed9a6b3c89ae6d19836b6a19d093a249 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 516490 e6f7e0887f4172edbb1b2369f462219b http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_s390.deb Size/MD5 checksum: 199950 4d310d743c5c95c44a10a1119b78f599 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 214146 684a5df295f92d96fd9173e902103d16 http://security.debian.org/pool/updates/main/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 61362 a91ddc177f135c2840b8f4c7848f87c6 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 182876 2cb261c2dab19a1af5cb02d692480448 http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 435970 a0d1c3c30b9c3d6b1349dc212ba533d8 http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 100386 53f9a4ed9735831835948cbfa442a7a2 http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 146382 8bd696bb3dbe3fa543e5b3c40339e4e9 http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 87728 71591f7ccd2e483262e6dd60b43ffdac http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 93886 0727503660d1a60a34d761f2ac91127b http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 66132 4f031d0101e2de304bfb73f7c4474753 http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 71930 9038273dfd441cb4dae22eaef85da721 http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 88758 df5ae0261c7c491286f840138dfcc36d http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 1214774 8e7ebe13eab77d0e29db21e17a561cd1 http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5lenny2_sparc.deb Size/MD5 checksum: 137880 5efb1fe5a5a2d683328e944489bdb4f8 ORIGINAL ADVISORY: DSA-1969-1: http://lists.debian.org/debian-security-announce/2010/msg00004.html OTHER REFERENCES: SA38080: http://secunia.com/advisories/38080/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 14:43:37 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 23:43:37 +0100 Subject: [SEC] [SA38037] Oracle PeopleSoft Enterprise HCM eProfile Vulnerability Message-ID: <201001132243.o0DMhbdm006751@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Oracle PeopleSoft Enterprise HCM eProfile Vulnerability SECUNIA ADVISORY ID: SA38037 VERIFY ADVISORY: http://secunia.com/advisories/38037/ DESCRIPTION: A vulnerability has been reported PeopleSoft Enterprise HCM (Human Capital Management), which can be exploited by malicious users to disclose potentially sensitive information or manipulate certain data. The vulnerability is caused due to an error in the PeopleSoft Enterprise HCM eProfile component. The vulnerability is reported in PeopleSoft Enterprise HCM (TAM) versions 8.9 and 9.0. SOLUTION: Apply patches (please see the vendor's advisory for details). PROVIDED AND/OR DISCOVERED BY: For the vulnerabilities fixed in the January Critical Patch Update, the vendor credits: * Esteban Martinez Fayo, Application Security, Inc. * Alexander Kornbrust, Red Database Security * David Litchfield, NGS Software * Brian Martin, INS.com * Guy Pilosof, Sentrigo * JPCERT/CC Vulnerability Handling Team * Daiki Fukumori [Secure Sky Technology], JPCERT/CC Vulnerability Handling Team * Dennis Yurichev ORIGINAL ADVISORY: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 14:55:35 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Wed, 13 Jan 2010 23:55:35 +0100 Subject: [SEC] [SA38027] Oracle Database Multiple Vulnerabilities Message-ID: <201001132255.o0DMtZoB026416@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Oracle Database Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38027 VERIFY ADVISORY: http://secunia.com/advisories/38027/ DESCRIPTION: Some vulnerabilities have been reported in Oracle Database, which can be exploited by malicious users to manipulate certain data, disclose potentially sensitive information, or compromise a vulnerable system and by malicious people to compromise a vulnerable system. 1) An error in the Listener component can be exploited to e.g. execute arbitrary code when running on the Windows platform. 2) An error in the Oracle OLAP component can be exploited by authenticated users to execute arbitrary code. 3) An error in the Application Express Application Builder component can be exploited by authenticated users to disclose or manipulate certain data. 4) An error in the Oracle Data Pump component can be exploited by authenticated users to disclose or manipulate certain data. 5) An error in the Oracle Spatial component can be exploited by authenticated users to disclose or manipulate certain data. 6) An error in the Logical Standby component can be exploited by authenticated users to manipulate certain data. 7) An error in the RDBMS component can be exploited by authenticated users to disclose or manipulate certain data. 8) An error in the Oracle Spatial component can be exploited by authenticated users to disclose or manipulate certain data. 9) An error in the Unzip component can be exploited by authenticated, local users to disclose certain data. The vulnerabilities are reported in the following products and versions: * Oracle Database 11g version 11.1.0.7 * Oracle Database 10g Release 2 versions 10.2.0.3 and 10.2.0.4 * Oracle Database 10g version 10.1.0.5 * Oracle Database 9i Release 2 versions 9.2.0.8 and 9.2.0.8DV SOLUTION: Apply patches (please see the vendor's advisory for details). PROVIDED AND/OR DISCOVERED BY: For the vulnerabilities fixed in the January Critical Patch Update, the vendor credits: * Esteban Martinez Fayo, Application Security, Inc. * Alexander Kornbrust, Red Database Security * David Litchfield, NGS Software * Brian Martin, INS.com * Guy Pilosof, Sentrigo * JPCERT/CC Vulnerability Handling Team * Daiki Fukumori [Secure Sky Technology], JPCERT/CC Vulnerability Handling Team * Dennis Yurichev ORIGINAL ADVISORY: Oracle: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 15:08:47 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 00:08:47 +0100 Subject: [SEC] [SA38044] Oracle Primavera Products Denial of Service Vulnerability Message-ID: <201001132308.o0DN8lSO013713@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Oracle Primavera Products Denial of Service Vulnerability SECUNIA ADVISORY ID: SA38044 VERIFY ADVISORY: http://secunia.com/advisories/38044/ DESCRIPTION: A vulnerability has been reported in Oracle Primavera products, which can be exploited by malicious users to cause a DoS (Denial of Service). For more information see vulnerability #9 in: SA36159 The vulnerability is reported in the following products and versions: * Primavera P6 Enterprise Project Portfolio Management 6.1, 6.2.1, and 7.0 * Primavera P6 Web Services 6.2.1, 7.0, and 7.0SP1 SOLUTION: Apply patches (please see the vendor's advisory for details). ORIGINAL ADVISORY: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html OTHER REFERENCES: SA36159: http://secunia.com/advisories/36159/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 15:23:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 00:23:43 +0100 Subject: [SEC] [SA38133] Linux Kernel ebtables Security Bypass Message-ID: <201001132323.o0DNNhdj001043@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Linux Kernel ebtables Security Bypass SECUNIA ADVISORY ID: SA38133 VERIFY ADVISORY: http://secunia.com/advisories/38133/ DESCRIPTION: A security issue has been reported in the Linux Kernel, which can be exploited by malicious, local users to bypass certain security restrictions. The security issue is caused due to the "do_ebt_set_ctl()" and "do_ebt_get_ctl()" functions in net/bridge/netfilter/ebtables.c not properly restricting access to users with the "CAP_NET_ADMIN" capability, which can be exploited to e.g. set and modify ebtables rules without having the proper capability. SOLUTION: Fixed in 2.6.33-rc4. PROVIDED AND/OR DISCOVERED BY: Florian Westphal ORIGINAL ADVISORY: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=dce766af541f6605fa9889892c0280bab31c66ab ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 15:43:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 00:43:44 +0100 Subject: [SEC] [SA38128] Oracle Secure Backup Buffer Overflow Vulnerability Message-ID: <201001132343.o0DNhiSi021068@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Oracle Secure Backup Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA38128 VERIFY ADVISORY: http://secunia.com/advisories/38128/ DESCRIPTION: A vulnerability has been reported in Oracle Secure Backup, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the Oracle Secure Backup Services daemon ("observiced.exe"). This can be exploited to cause a stack-based buffer overflow by sending a specially crafted packet to TCP port 10000 (default). Successful exploitation allows execution of arbitrary code with SYSTEM privileges. SOLUTION: Update to version 10.3.0.1 or apply patch set 10.2.0.5. PROVIDED AND/OR DISCOVERED BY: Anonymous, reported via ZDI. ORIGINAL ADVISORY: Oracle: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html ZDI: http://www.zerodayinitiative.com/advisories/ZDI-10-002/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 15:55:51 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 00:55:51 +0100 Subject: [SEC] [SA38131] Adobe getPlus DLM Multiple Vulnerabilities Message-ID: <201001132355.o0DNtpK1008320@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Adobe getPlus DLM Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38131 VERIFY ADVISORY: http://secunia.com/advisories/38131/ DESCRIPTION: Some vulnerabilities have been reported in Adobe getPlus DLM, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to unspecified errors in gp.ocx when handling parameters. These can be exploited to cause stack-based buffer overflows when a user visits a specially crafted web page. Successful exploitation may allow execution of arbitrary code. The vulnerabilities are reported in versions prior to 1.6.2.49. SOLUTION: Follow the update recommendations included in APSB10-02. PROVIDED AND/OR DISCOVERED BY: Will Dormann of the CERT/CC ORIGINAL ADVISORY: US-CERT VU#773545: http://www.kb.cert.org/vuls/id/773545 Adobe (APSB10-02): http://www.adobe.com/support/security/bulletins/apsb10-02.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 16:08:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 01:08:43 +0100 Subject: [SEC] [SA38145] TurboFTP Server Denial of Service Vulnerability Message-ID: <201001140008.o0E08hCd028023@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: TurboFTP Server Denial of Service Vulnerability SECUNIA ADVISORY ID: SA38145 VERIFY ADVISORY: http://secunia.com/advisories/38145/ DESCRIPTION: corelanc0d3r has reported a vulnerability in TurboFTP Server, which can be exploited by malicious users to cause a DoS (Denial of Service). The vulnerability is caused due to an error when processing overly long parameters passed to FTP commands. This can be exploited to cause a buffer overflow and crash the service via e.g. an overly long "DELE" parameter. The vulnerability is reported in versions prior to 1.00 Build 720. SOLUTION: Update to version 1.00 Build 720. PROVIDED AND/OR DISCOVERED BY: corelanc0d3r, Corelan Team ORIGINAL ADVISORY: TurboSoft: http://www.turboftp.com/tbserver/turboftp-server-releasenotes.htm Corelan Team: http://www.corelan.be:8800/index.php/forum/security-advisories/corelan-10-004-turboftp-server-1-00-712-dos/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 16:23:26 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 01:23:26 +0100 Subject: [SEC] [SA38160] SSSD Kerberos Authentication Security Bypass Message-ID: <201001140023.o0E0NQbS015387@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: SSSD Kerberos Authentication Security Bypass SECUNIA ADVISORY ID: SA38160 VERIFY ADVISORY: http://secunia.com/advisories/38160/ DESCRIPTION: A vulnerability has been reported in SSSD, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to SSSD accepting any password if it's configured to use Kerberos for authentication, but the configured KDC can't be reached and the user who is trying to authenticate has a valid cached TGT for the Kerberos realm. The vulnerability is reported in versions prior to 1.0.1. SOLUTION: Update to version 1.0.1. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: https://fedorahosted.org/sssd/wiki/Releases/Notes-1.0.1#Highlights OTHER REFERENCES: https://bugzilla.redhat.com/show_bug.cgi?id=553233 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 16:45:03 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 01:45:03 +0100 Subject: [SEC] [SA38126] Ubuntu update for krb5 Message-ID: <201001140045.o0E0j3nW003002@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Ubuntu update for krb5 SECUNIA ADVISORY ID: SA38126 VERIFY ADVISORY: http://secunia.com/advisories/38126/ DESCRIPTION: Ubuntu has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. For more information: SA38080 SOLUTION: Apply updated packages. -- Ubuntu 6.06 LTS -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.4.3-5ubuntu0.10.diff.gz Size/MD5: 1471400 284806d60d14746a532b7ce56dfecad7 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.4.3-5ubuntu0.10.dsc Size/MD5: 897 210f6a4b49f7243ca8bf6000e5b0644c http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.4.3.orig.tar.gz Size/MD5: 7279788 43fe621ecb849a83ee014dfb856c54af Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.4.3-5ubuntu0.10_all.deb Size/MD5: 853392 4606a005a1e4be0a04e04f478f9fd185 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 191092 3ee610d4689fd986439caa0533d18506 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 768966 34b1892f8f5e3cd8d8f34f336d6eed35 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 425920 d715338a133763b84cc4745d94ce00d2 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 80564 950f027d823dd15030045aba0e46cda4 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 223406 c23e4573ff70baf138ba9d2b8d83de20 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 60546 804b5d04f56459607ca655f3160d7306 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 135346 7869ac766cd17fefa0b3f0aca3ff881e http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 85442 7beffd9f5203c1488aed91061dc5c87c http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 67782 07c9abd1509ea468988d0b4ae5cf6a04 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.4.3-5ubuntu0.10_amd64.deb Size/MD5: 130074 94003d268f585e6fcc463d144c49bbc7 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 165922 f54a24c414a861e27c2fef971fc1c27e http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 647734 068bf62f0a0cb54e7b13709719b2fa67 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 381424 644c83c3a8e79c19d1ce8d3442e7dfdf http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 72500 c62c50e98a61fc416af5199a8e4de822 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 187412 6bed1edd584c1e1eefa4cb4816f9dbc9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 54514 d439deab318e241270848cd80cd9bb46 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 121732 5cacbf21b3aa36cdaf3d926056005f55 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 76096 dda029aed710b5a0e484f94b664d7bed http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 58896 220ff81f97593af2d47b6b6bd1734d8f http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.4.3-5ubuntu0.10_i386.deb Size/MD5: 119262 53d0439f7b4c54f2c3ab152e5c96ff73 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 177906 e94ee1eff715bcfacee8ce55c3751e1b http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 752228 687b178a119936b9abe051be58546514 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 396186 171d577184f149ce6a6a0f33d2fb6373 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 80702 d85ef19529325a298899948a006cbc65 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 220754 f4044deaf225b12cdd3f7fcf21fa09e7 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 59752 624d6270464e697e8633b6e2e843811f http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 136148 3015414361038db65006a0bfddf3bdd9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 85298 f764977e6b970ec5783dac40b0929ae6 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 66166 e4e843024f591544f09cad8c1eda8453 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.4.3-5ubuntu0.10_powerpc.deb Size/MD5: 135148 38a574f80ec4fa3916dc7688f4196363 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 165456 56003b0399cf931f866fd6a35911426b http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 678836 e059ac32e3e3289b97f7bb71fee259ec http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 368984 48921054229f687c559cb8425f063baa http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 73212 849ba55b6342766d13c15c6f03dddc9e http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 197570 1f6ef16837122993f24891202a702830 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 56476 f5d9d5b0698be66f7dc2414da29d87a8 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 124508 6595617fab6ccaa244ea43f77b82bc65 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 77100 c1111a2e24a2ac233baf48c1f24ec8e9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 62524 9e1f0e0d00d96f9706763d1e5934b140 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.4.3-5ubuntu0.10_sparc.deb Size/MD5: 120790 677ac89981d17f9b8a3a9b4f981b222a -- Ubuntu 8.04 LTS -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.3~beta1-2ubuntu1.3.diff.gz Size/MD5: 1745895 1583ff4070da038720c0cce5e3a8cac5 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.3~beta1-2ubuntu1.3.dsc Size/MD5: 1135 07064541f3ecd4f44bcccf0b840cc067 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.3~beta1.orig.tar.gz Size/MD5: 14672599 7a36c3471aa31ffd01d5a020f9d82dff Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.6.dfsg.3~beta1-2ubuntu1.3_all.deb Size/MD5: 2121486 1d0090e13070eecfcf981d444586aaf0 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 140812 18fdb388fcce46d9d663defa058d1bcd http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 162102 47ba0a8c5233e7fa72773b856018d9aa http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 1337440 f647eb0c93ede5b629056738c5752548 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 89260 71e3a519201ef7a1c658d83d22b2f322 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 497350 d45507831fe7d8cc1d055f9cc8e907e6 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 88128 6a4aed5bf87256bbbad528e68542487c http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 229976 397e4ded9e20e24d60f97148dded9697 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 65578 a97f2d5466a614bdec1e01eab250796b http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 186066 4c8240eb550b5051a64d1115b0667721 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 64896 4222fc9416eb562ee082106d7055c742 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 91788 97da7f91c082ce4c35b7cbe5497740e7 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.3~beta1-2ubuntu1.3_amd64.deb Size/MD5: 73136 51a3c9139559bb72ddabcd79f569e6e3 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 131162 c36788a8c0e8833bf9561c74f6c0ed68 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 145908 d174e19439a928166c66bdaa34b7954a http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 1289284 83c2f826d4a07040b640304972f8ffd5 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 89246 7fc7b253f656ed1f44aeefe98b282b17 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 460474 c8396cde302f54e8faf3654104a45e1b http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 81628 b9fbb717938d6b4591531ede4931a4a0 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 201642 aae6e408610dee745d00053642232203 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 60620 f9b1b7928b4099100a872a096b1b5ff4 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 173172 07b565739c7779afc4e2290f37405bc4 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 61652 8077edc035fae287e5ea2b076b1dbb2e http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 84240 e333de9660ac3273ab524d36f0e77b9a http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.3~beta1-2ubuntu1.3_i386.deb Size/MD5: 66802 f5dcaa99fdfb8c0723cb09fefb52f7e0 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 131344 3e90b72bd8f18a8c56bd4984691f90c1 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 143788 d5b10007a7493b7a7f0de9b3c75bef35 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 1318280 a28e989d8a291cc1cef52f95e4b5b891 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 89232 283263dd54c26af8dd7457578c446617 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 455810 cb42b40cc93a54bbaa87c2918e8be163 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 82096 41fe32309538382d5d416586dc0fb611 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 200838 d42bce19db6514057130d7e1587fb782 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 60722 e982a6bc1ea3844f654418bccd46737d http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 172562 cc2842f8cd5c3211376789eb6b93ab1e http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 61504 cb9be311fb99cef8a34eed2e77ec410c http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 84148 0c579a343b111d91c6e699768f3b8a82 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.3~beta1-2ubuntu1.3_lpia.deb Size/MD5: 67122 0351135852525b15418fc50410d9672e powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 158702 ba17fbcfe1012e411201821a76b525e6 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 159312 41306a4d4933a94bca576e9ad0dfd6e6 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 1335266 ebc034a7d20a62cc7af6305cb588a0aa http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 89268 c26c1660d4ae6b6ffd4885c2feee1e70 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 482372 a86c5c90b4d7e625d3e2a2f59c82d9bb http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 95206 8900125634468ea634ef207e5feb9d28 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 244954 fc6c52596e0ba80d5893095a54c8727f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 68722 dbf6a71e13d568f8906266382d3bb631 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 199348 ff736c45338b0554436635aa291a7338 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 64002 98b942b60935d33fd9d0e68562f9b0ff http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 100156 da1e1d9e202fa4d77c011a71b44b8231 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.3~beta1-2ubuntu1.3_powerpc.deb Size/MD5: 75428 8dc6cbf1e2c6be0473c2035c3c39c0c6 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 134386 7f704ad08d70e357916aea2f33fa0c97 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 141900 906292b954f80905ccc9691210833593 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 1213534 431ebddd1c79794465cb42477e7b6dc2 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 89274 0e3d489e6a2d8dbdc434f84db6f28577 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 428014 5686870d9b4f75645b1915696a8c3a67 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 83176 aa61f1c0fd51f8e32afb36d1ca63cf49 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 211532 9944ff05093ccc44a8331af8a757a15d http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 64014 2ed4e87b24520d19ffd6081ac84fa663 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 172946 2d0f9cefa543923ad1a75cba0e053f02 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 58730 045c84974f3e36ecce79e3d9db927612 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 87798 42a463052e4b5cd0cba093b38b44a967 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.3~beta1-2ubuntu1.3_sparc.deb Size/MD5: 69534 b59a7c9177850026e752538082422d60 -- Ubuntu 8.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.4~beta1-3ubuntu0.3.diff.gz Size/MD5: 858259 dc4914f8df2ffb4fcdb51ca8b1d567d1 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.4~beta1-3ubuntu0.3.dsc Size/MD5: 1671 276402c1b79771b0045c4d57b125e7f9 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.4~beta1.orig.tar.gz Size/MD5: 11647547 08d6ce311204803acbe878ef0bb23c71 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.6.dfsg.4~beta1-3ubuntu0.3_all.deb Size/MD5: 2148692 3cc856fa332f08298038858e334d04f1 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 146200 bc22f9a5e751ff6d11d677eaea6bb6cc http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 165944 3bdaccd27ce4d8fb55987aad0161b265 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 1474018 31fae1f7bd61afdbbf1bd8d92e4eff22 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 92542 641e9581a5aab19a4cfc0d3dbccd31fb http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 510580 37b04c4b569b766aabab5b4531696aac http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 92846 eaa18f1f886c900702c0d79ba94bf933 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 237234 50b561dd5aa56f018c3da65cb7aecb38 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 68916 a424f7f31ba101e4d67994038027dcb3 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 107668 beea668177d034d3091186a49ec9f5b2 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 196626 a58f9126540d90f6cf508d099fba2ab9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 67882 2737abc220b2417db478229cf4b28913 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 94474 8e7061468d8a41b298cf064228d85948 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-3ubuntu0.3_amd64.deb Size/MD5: 76638 7ecd554dcde87d9ef4d9aa236df12afa i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 136776 729ef25a34d5138a0794c2df9ca0c72a http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 150584 6c72f3e7273b9bb5c3a18f683137e1e3 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 1413010 cadda156d5efdecdd121f4b6c617d9f8 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 92554 a5154f0522bbc89343eb087cd9cd8885 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 472674 b84b52863efec0a07dbdb223502cc4ab http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 86408 510b4cac23694537731bce7fbc5ea480 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 213580 b647b3167e5889c7c870d90f41573c9e http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 63858 5b4eb96b0e30c8d2af4f8225ebf9ecfb http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 102008 fba8b0bc2442fd629933eea32f2af582 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 183088 a94cdb43f8c7710910ce2f5f9e51e4eb http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 64652 979e60d62d1c8f3129e3df450268615c http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 87740 539f98ce8b456e78de7b8956478b48a9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-3ubuntu0.3_i386.deb Size/MD5: 70530 5481599af05200f4d3ffccc483c729ef lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 136762 51378c5eb4044c58aa30f7a61505b528 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 148110 9e2e6c019aed35727e731adc96974995 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 1443456 7e1f29d1653bdfd23d8b56f6c30b6e05 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 92546 0c1b6d43f3d16c54c001f65864c6f955 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 463228 a46da21aa4e693e167a026b319fc875b http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 86518 7d6ddc156033424e9088493acf717edd http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 206742 c7c51ac201537053cc2f098d0fce65ac http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 63924 c36e934f546f05b2f75e9fcff4108c91 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 101816 34ac6b9cb97847aeba9de7df9e3c5d05 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 182628 8b426f133e96db193bcd31ef4218f1fd http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 64172 ff7afa81862b943cbf357ed36b0708e5 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 86938 7542317afe21b4672e54bacc93bb2287 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-3ubuntu0.3_lpia.deb Size/MD5: 70328 25e7aab6ae8a5c543919889674b034f1 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 157030 e2c25741d430ab7a5fa0d08cf3f93918 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 161364 8b84d97e19a1ec37650356e413152bc3 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 1471978 8ca4375f17124cac0fde65720b2e9c3a http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 92568 03c339ed28b87594de3966669248a5b8 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 492818 3a2870d3a3a8f9298e2c3650c84509a7 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 96662 96a5484ffe137518b9eea85e199f6c18 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 245584 fb9ae680780800ab24123c5fc7970958 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 70330 462c5f8a59481fbf56e13191b2815671 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 110724 f81067b8a193d7e0e6b38bdfc2b15ebf http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 202452 92ecd307aeea8bcd356ad5fe05bc66d2 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 66656 dc02378cd72431c4ecfeafce7af1a133 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 98806 485da730d437a2ee52f42d9abbca56aa http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-3ubuntu0.3_powerpc.deb Size/MD5: 77070 29955e4e5793496dfc41c10bc44dac71 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 140328 782eb2ecda1fdaf1f2c97a2e5153c61e http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 144818 49379f7a796573635d697bb02475b206 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 1332780 6f4904ee10c054a33ea41a3a752fb3b0 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 92560 b2ea2884250ffbb871a8d2d909fc40be http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 433484 a597f401413e497ebc267c9e929c55b7 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 87968 a26d41f8f1e4e157527a3c0182fdf5ff http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 221580 4d34ba1d2b47e7ecb4d71ba10e3775a8 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 67488 0e59d8d632769c655abe12b09ea3a1c2 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 100942 7fb68202195c45470c49ac4c97e4b1de http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 182700 1542733ccb42d03854151b6674b6f10f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 60914 830f3c52d2ab7b26777a06eceaaf4fe7 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 91904 2f403aaeeb6ae8a26d0e6fe6496e4e96 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-3ubuntu0.3_sparc.deb Size/MD5: 72710 bdc5040b41d8da2889b10e32a55f68b2 -- Ubuntu 9.04 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.4~beta1-5ubuntu2.2.diff.gz Size/MD5: 884798 a6cb4a7a8c69e0a2dc8d345b8446b279 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.4~beta1-5ubuntu2.2.dsc Size/MD5: 1671 b51457f562952de58fabb39d024fac83 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.6.dfsg.4~beta1.orig.tar.gz Size/MD5: 11647547 08d6ce311204803acbe878ef0bb23c71 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.6.dfsg.4~beta1-5ubuntu2.2_all.deb Size/MD5: 2148928 a478c37b31e38d127ba4103daff80f35 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 146580 0601f228323333a6c14f19e6a63e5fb6 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 166226 2282d906e3d36021fdd80af7ab0a83ff http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 1479370 a3ce16b4ff6901f17e71a24f0428311d http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 92954 7d59e3b36177cf9827b1f672a1f8c5de http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 512228 911629d46dd7355e744ac34c0428e54c http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 93710 7bfde92ad631f513e041904c0a7f87f0 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 237450 ca879f5c79a18c92c2ff23499e8ce11e http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 69150 96d99c224cef9780948a396ea9effc73 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 107942 8d4d156d65ac43a357454a24193a2afd http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 198824 b68fef8c2efb966e6b23d5c9076ccf5f http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 68200 08bdf316793cc06b1ecd89797db32944 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 94762 e57e8e3547a8a40269d216205b7d8bda http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5ubuntu2.2_amd64.deb Size/MD5: 76884 725f5ffdcb6b4d72ebf429636ada8dd4 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 137158 3ccde3b2e98a8ea4a4a1a652725c9a78 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 150846 a492da68670d4997d0df7536ad3993f5 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 1416992 d245ee199df23c90cdca045e1ab68f64 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 92966 57521ae33887a9ae78b0857ecf85ae29 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 473694 5e51cfcc1f83775793fc4a18b9342f64 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 87272 d82b2ecf8484dde1c5284565e2fb32cd http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 213870 ac1466a21c82d7854eaa1abe2424bd7f http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 64230 b4598ee52f94235a3c4ca5c775684072 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 102282 48a94c53c9d6a47ac8a56a48e09ca8d5 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 185350 3f4bbf3605e272635898bd3fb098f8ab http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 64964 1bd7937cb1eae016b28fb6cf65ad54f3 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 88044 037c979f82e2989ffeff6863c0c121bd http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5ubuntu2.2_i386.deb Size/MD5: 70814 c850958d13b51b8f3bbe0fe22bf88409 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 137000 89066bfbe8e2e7ae809f730312d8cf14 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 148442 3a48fbe91b94a66f132d8515e899154e http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 1448076 e799f604e954d1d9e4b622504c3aba0e http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 92948 6b014494a6f5d06cb57e5ab9395d3d95 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 464082 975a31afe2eee1e6adbb18608fde158e http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 87344 9f88d25ecf9893acae05a89ebb341265 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 207032 a4780cddede93e947b86ec7b23782b31 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 64326 e4c631f864c1001284859ca6eec65725 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 102144 e7068458a6389a63e901f52c1157b150 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 184906 bc7fd8b3167db60c8fa24b7766201ccc http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 64480 7bd3f55415296c3c61720bd7c521ab64 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 87232 a8cb5972ddcc015e02f019e808daa775 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5ubuntu2.2_lpia.deb Size/MD5: 70608 f15f179f54c5dd319891da019cbf339e powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 157328 f778efd8e6ea4f4a61ac197c9a6b3ad4 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 161638 bf2291e910449ce7230d205122733555 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 1476638 1410ef31d6978070961d817dd1fb4eab http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 92982 ec17f41607bc532dbabd80fab7c14bf9 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 494610 76040e903aa0e80bcd9eb3fc9287afec http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 97550 3073a30e655c6f6455063009569c30f3 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 245862 8b065ba9b6f52e98631586e4698bd914 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 70748 b4a87fbe245aad44e79013315f3fab49 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 111074 75f0c559b30816df179b152188055077 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 204682 74652fdcbe7f9001d784c28332c0548d http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 67000 f1f90a8b7ae12572d83ee78d8209c61f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 99106 381f5acc7676a8f3b2e7561e17d2da04 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5ubuntu2.2_powerpc.deb Size/MD5: 77364 e3bc57ed089c5ff6b70db99aced9379e sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 140450 d70c21a03628d1520fe735c9a60902b0 http://ports.ubuntu.com/pool/main/k/krb5/libkadm55_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 144950 67cb16fa9876898a150fccc28cd44150 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 1337622 43be0f534469e1be59be3bd56bea850b http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 92970 3a9c680a306490e27dbe95b404640ef0 http://ports.ubuntu.com/pool/main/k/krb5/libkrb53_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 434408 9a47efdd33bc1c482e6c1854d9ddc08e http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 88640 3df9f0de729e9b33d5eb5c2dceb035f3 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 221720 ef80ae24098ca27d3d3e802571b28fba http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 67746 f9e61680e6ccf1c5ec4735ef60530987 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 101310 4cc6d052ef1dd9534e776e90372f54f9 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 184708 ef68bcc4d219bb02e0e5cc18af71a238 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 61204 5507d587a02f5bbb51f815ecd3521f6d http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 92140 2b0f50079cb8dc5e969d7fb32319bdf2 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.6.dfsg.4~beta1-5ubuntu2.2_sparc.deb Size/MD5: 72946 9985fea44b008b75ea722b8c5ec50575 -- Ubuntu 9.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.7dfsg~beta3-1ubuntu0.3.diff.gz Size/MD5: 103717 87afc5c845a715701e66a51ad36c139e http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.7dfsg~beta3-1ubuntu0.3.dsc Size/MD5: 1780 04b5f11732f732863b4bacf5d08fa99e http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5_1.7dfsg~beta3.orig.tar.gz Size/MD5: 12235083 5219bf9a5c23d6a1d9d9687b918f632d Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.7dfsg~beta3-1ubuntu0.3_all.deb Size/MD5: 2174022 1c73be960dc4710f99de6bf7c4236b99 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 141888 b8e28517034a195afc47af375415d68d http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 114276 bf4392d8bc93625146ee3a8da9daf8ed http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 78488 f481f8ec187e9d16d53883d643cc2889 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 110106 ac6af6320f3c75015bb1a8e3ef6c8c59 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 60658 e97ead695f593bf87f6ebad4b5e450e9 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 74228 e9ccab91d52a9ce6050bb550665c3fc2 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 58468 aa40be32650bb5fedd8c301f1246b261 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 353822 342a9f508ddb28ea1f50231eac9dd6be http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 1496558 3bd31c908bbec152402cd926f1cac9aa http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 100908 62002cd3c41f6af853a820aad8b0b82b http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 41490 1e4ca2b42ad633d7cb2d4e14cf905678 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 109340 652391f54ab634f53d40672a15adbdfa http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 217580 1db69ef067aefc42b23729af0f2133e9 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 70478 656da50f86a73f9e877698dac10909bd http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 111582 635fb10c6ff95c8cbac1b6796a19ec02 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 208026 cc6d13f4ebbb0ce94002ef1444d0ec64 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 72218 8b2d10040f248421fafbc35e4e4e1ba8 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 85850 931610c7c2711d4683f2157a4c1dd42a http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.3_amd64.deb Size/MD5: 77076 b3721f96be1951fb3008f5887bb37851 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 133096 a6d74805c8a27cbe39fe8996e5bb4915 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 107946 e8ea0fdffc36a599797557eace60ec32 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 71916 1389ef0d220a73129324e1aa3267d976 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 102192 229ad94076fea6c03e9b29c39c0de9c5 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 57364 3c80de8f2f4b0e25066cd8d4052e89fc http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 69866 eccc3c255ed7193be1fe787efc519fb8 http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 56048 05f35135c5152aee00de7ae9955c83cb http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 337200 08bb147b756074a2cc71ace5ae4dedbd http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 1477790 31730be0bbf12e4442acd486c89faf6b http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 100900 caafd86b558c1916061c20e677119d5d http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 39632 bb9696d665f83c94c9dd737eccb45a0a http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 101490 c56491437aff3b6f32d7f18ef14d549a http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 195690 22c9e60a5ae2d7a6a00c4dd5ea48d1f8 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 65292 fc0d693c04a090bba8e0b73d3c1bb978 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 106214 4a1c2b1041e241c6b8d46a496c90297c http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 192216 b8a228444f2f636d18b770c823066e3d http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 68926 1f473e71ac2803ed7aaa20a518454dd3 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 80158 ac70725fbfc64b5f0b2e0ebc5085a603 http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.3_i386.deb Size/MD5: 70814 28f5308a09216e9812874b18d9a5ef36 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 133182 d8a2bb98d28efd5711550a703118d19c http://ports.ubuntu.com/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 107106 f7752981c752e154fbc251e6785fec46 http://ports.ubuntu.com/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 71336 12233019ea2db2faa1828e465bcee4f5 http://ports.ubuntu.com/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 102358 50cba95edce0480e04bac8594493dbc3 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 56890 65bcbe2d1b1d186dba675a3d17a90fc3 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 69972 3e0dde35a3f4aa55c634f075a51c410c http://ports.ubuntu.com/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 55692 784a2b6496715f5ef4b9f78cf52edc1a http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 334628 d099f203df50b78a72abf0387bed45e3 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 1498576 3bbec84dc270fe6cb0b7ce973cc759b3 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 100902 fb868a681bdd89918e0d4a356215459b http://ports.ubuntu.com/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 39352 56a659519fd31b73abc125f6a405729c http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 102066 077b5ddb3f2175946edb58c271b469f0 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 192626 6ab0fec224b130702cf2c9b6d01fdfa7 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 65444 0582084e3717da5802948c7edc8a3206 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 106316 b88022d1ce0ed4a47c8b5ad78650cfc9 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 192424 250efa40b659b658a9560941a174171f http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 69154 8e42dbe4ee011b72f46fd99bb429cf88 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 79984 4328bfeb3f09689fc953e7a2a1ee8063 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.3_lpia.deb Size/MD5: 71126 dc2eea201f38e0b5d328988cf9cf0fe4 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 139086 ae0a537481eb66d96420bc438870fed3 http://ports.ubuntu.com/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 112940 ecea794f1e762bd3ad18829261ecc8db http://ports.ubuntu.com/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 77448 4bd271194d5d46665e80466b88b6e804 http://ports.ubuntu.com/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 116246 aeb0036f55c1a74a08a2912376f8b737 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 58908 ef051ed2a80b6ec603a3f22fd9fafd11 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 73318 51a0f8e71bf81a9f4b85895ec5522679 http://ports.ubuntu.com/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 57748 b0f6d435cebe20d7db2b1a308ae8e633 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 359470 93a1e70b69e1da38de5a07a50d35d738 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 1534440 70e7af1cf52f019089b2d7ddfd1867d5 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 100916 03667d909d6bf28c0e9230b4dcfddcc9 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 41018 899add67397c3136557d8cbd9b916b46 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 107210 3c5159f1f70bf3dceea015eb72849c36 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 211444 ea8cd561abf5b0260dbafcdab57e7773 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 69372 2ac9e94b1d0d322590486fe13d09c35d http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 111630 81267dd0a89072d8341237814b5d7cb6 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 205394 acca6fe9fe30f08bea85a94f86637141 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 70698 aeb2f16b7a04c334fcffe96ce1d06e31 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 83458 efd15a4722b601520a96ecdc3be4c1b5 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.3_powerpc.deb Size/MD5: 75950 c4768b72cce522f4eb8f462aacdced8e sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/krb5/krb5-user_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 136264 a020e25b2e20b44a2fe6474e179ba09f http://ports.ubuntu.com/pool/main/k/krb5/libgssapi-krb5-2_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 100640 58b55c72eb633cecc5438e553c2cb7a8 http://ports.ubuntu.com/pool/main/k/krb5/libgssrpc4_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 70878 f2c6ae503992ac2f0279a219e387e8c7 http://ports.ubuntu.com/pool/main/k/krb5/libk5crypto3_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 107844 969670a72aa6c222b1104bf5715c1a55 http://ports.ubuntu.com/pool/main/k/krb5/libkadm5clnt6_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 54934 f218ab1acdc322000ff4ccca1192f6bc http://ports.ubuntu.com/pool/main/k/krb5/libkadm5srv6_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 66514 71569ba72f7d1652e76413358583f4e6 http://ports.ubuntu.com/pool/main/k/krb5/libkdb5-4_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 53898 b9a3010a6b810c48530d385bc4553375 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-3_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 324004 4404865ebc974235ee0820d2a1998e19 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dbg_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 1380646 de57ab22abe2e71761ab3a6d679c42e4 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5-dev_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 100918 5dcd60c1a4f7986619fa26c83c3b0307 http://ports.ubuntu.com/pool/main/k/krb5/libkrb5support0_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 39240 a92a9ca4cd6c00079029e25ce59aead9 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-admin-server_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 103444 643c7bd64d0450f3ff30af78d65f0acd http://ports.ubuntu.com/pool/universe/k/krb5/krb5-clients_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 208228 5d1c55ab0b07c4e20fae967635fef872 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-ftpd_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 68008 52326e439ea85c1abaa4146c63efd2ac http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc-ldap_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 105172 f33e6d2d008247a6f48040369afa8efd http://ports.ubuntu.com/pool/universe/k/krb5/krb5-kdc_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 191928 78c226f3a150903801e801ab2452958e http://ports.ubuntu.com/pool/universe/k/krb5/krb5-pkinit_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 64500 24cb3b175a9bce83a9650fd3619ca6b2 http://ports.ubuntu.com/pool/universe/k/krb5/krb5-rsh-server_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 83966 db5cd49f060a24f4ae34f902e854a41c http://ports.ubuntu.com/pool/universe/k/krb5/krb5-telnetd_1.7dfsg~beta3-1ubuntu0.3_sparc.deb Size/MD5: 73008 b28e03051f00893e0d16e04d94553c99 ORIGINAL ADVISORY: USN-881-1: http://www.ubuntu.com/usn/USN-881-1 OTHER REFERENCES: SA38080: http://secunia.com/advisories/38080/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 17:08:48 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 02:08:48 +0100 Subject: [SEC] [SA38023] Oracle BEA WebLogic Server Multiple Vulnerabilities Message-ID: <201001140108.o0E18mXv023140@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Oracle BEA WebLogic Server Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38023 VERIFY ADVISORY: http://secunia.com/advisories/38023/ DESCRIPTION: Some vulnerabilities have been reported in BEA WebLogic Server, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, or cause a DoS (Denial of Service). 1) An unspecified error can be exploited to disclose potentially sensitive information. 2) An unspecified error can be exploited to cause a DoS. 3) Another unspecified error can be exploited to cause a DoS. 4) An unspecified error can be exploited to manipulate certain data. The vulnerabilities are reported in the following products and versions: * Oracle WebLogic Server 10.0 through MP2, 10.3.0 and 10.3.1 * Oracle WebLogic Server 9.0 GA, 9.1 GA and 9.2 through 9.2 MP3 * Oracle WebLogic Server 8.1 through 8.1 SP6 * Oracle WebLogic Server 7.0 through 7.0 SP7 SOLUTION: Apply patches (please see the vendor's advisory for details). PROVIDED AND/OR DISCOVERED BY: For the vulnerabilities fixed in the January Critical Patch Update, the vendor credits: * Esteban Martinez Fayo, Application Security, Inc. * Alexander Kornbrust, Red Database Security * David Litchfield, NGS Software * Brian Martin, INS.com * Guy Pilosof, Sentrigo * JPCERT/CC Vulnerability Handling Team * Daiki Fukumori [Secure Sky Technology], JPCERT/CC Vulnerability Handling Team * Dennis Yurichev ORIGINAL ADVISORY: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 17:23:27 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 02:23:27 +0100 Subject: [SEC] [SA37945] SUSE update for java-1_6_0-ibm Message-ID: <201001140123.o0E1NRIm010504@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: SUSE update for java-1_6_0-ibm SECUNIA ADVISORY ID: SA37945 VERIFY ADVISORY: http://secunia.com/advisories/37945/ DESCRIPTION: SUSE has issued an update for java-1_6_0-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct spoofing attacks, cause a DoS (Denial of Service), or compromise a vulnerable system. For more information: SA36452 SA37231 SOLUTION: Apply updated packages. SLES 11 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=39e43680df27683c7e496d57e45f7060 SLE 11 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=39e43680df27683c7e496d57e45f7060 ORIGINAL ADVISORY: SUSE-SA:2010:004: http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00004.html OTHER REFERENCES: SA36452: http://secunia.com/advisories/36452/ SA37231: http://secunia.com/advisories/37231/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 17:43:34 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 02:43:34 +0100 Subject: [SEC] [SA38138] Adobe Reader/Acrobat 7 Multiple Vulnerabilities Message-ID: <201001140143.o0E1hYqq030485@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Adobe Reader/Acrobat 7 Multiple Vulnerabilities SECUNIA ADVISORY ID: SA38138 VERIFY ADVISORY: http://secunia.com/advisories/38138/ DESCRIPTION: Some vulnerabilities have been reported in Adobe Reader and Acrobat, which can be exploited by malicious people to compromise a user's system. For more information: SA37690 SOLUTION: Adobe Reader 7.x and Acrobat 7.x: Upgrade to version 8.2 or 9.3. Please see the vendor's advisory for more information. NOTE: Support has ended for Adobe Reader 7.x and Acrobat 7.x on Windows, Macintosh, and UNIX. CHANGELOG: 2010-01-13: Updated CVE references. ORIGINAL ADVISORY: Adobe: http://www.adobe.com/support/security/bulletins/apsb10-02.html OTHER REFERENCES: SA37690: http://secunia.com/advisories/37690/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 17:55:45 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 02:55:45 +0100 Subject: [SEC] [SA35457] Microsoft Windows Embedded OpenType Font Engine Vulnerability Message-ID: <201001140155.o0E1tjQD017731@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Microsoft Windows Embedded OpenType Font Engine Vulnerability SECUNIA ADVISORY ID: SA35457 VERIFY ADVISORY: http://secunia.com/advisories/35457/ DESCRIPTION: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to an integer overflow error in the decompression of Embedded OpenType (EOT) fonts. This can be exploited to corrupt memory via a specially crafted EOT font. Successful exploitation may allow execution of arbitrary code when a user e.g. visits a malicious website. NOTE: Currently, attack vectors are only known for Windows 2000. Other versions of Windows do include the vulnerable code, but no valid attack vector for reaching it is known. SOLUTION: Apply patches. Windows 2000 SP4: http://www.microsoft.com/downloads/details.aspx?familyid=47f85cbd-282e-4c92-9809-68bba49e0a12 Windows XP SP2/SP3: http://www.microsoft.com/downloads/details.aspx?familyid=793a6b3f-7660-40be-b7d5-7b0eec55e1cd Windows XP Professional x64 Edition SP2: http://www.microsoft.com/downloads/details.aspx?familyid=31609ce9-656a-4f7d-a501-709a31ca34c3 Windows Server 2003 SP2: http://www.microsoft.com/downloads/details.aspx?familyid=e1d6e338-dea9-458e-b35d-796e069d74d7 Windows Server 2003 x64 Edition SP2: http://www.microsoft.com/downloads/details.aspx?familyid=ddbcf231-9fde-4dc2-ad04-a01b69d1a980 Windows Server 2003 with SP2 for Itanium-based Systems: http://www.microsoft.com/downloads/details.aspx?familyid=c71a13cf-7e2f-4b02-8684-1a4e4b46ddda Windows Vista (optionally with SP1/SP2): http://www.microsoft.com/downloads/details.aspx?familyid=6387228c-eedc-4511-b3c6-8922606f4c84 Windows Vista x64 Edition (optionally with SP1/SP2): http://www.microsoft.com/downloads/details.aspx?familyid=7b4f5089-13b1-421b-a00b-22632bba4229 Windows Server 2008 for 32-bit Systems (optionally with SP2): http://www.microsoft.com/downloads/details.aspx?familyid=e175c436-37e0-497f-8b7f-6cacaa25ad7c Windows Server 2008 for x64-based Systems (optionally with SP2): http://www.microsoft.com/downloads/details.aspx?familyid=1b10a177-fd45-406f-8edc-b8d4b84881b7 Windows Server 2008 for Itanium-based Systems (optionally with SP2): http://www.microsoft.com/downloads/details.aspx?familyid=e8bc9a24-a794-4827-a6bb-785c6b2189f4 Windows 7 for 32-bit Systems: http://www.microsoft.com/downloads/details.aspx?familyid=75491ad0-40a6-4efb-9574-d82210f6d0da Windows 7 for x64-based Systems: http://www.microsoft.com/downloads/details.aspx?familyid=8a53f0e9-0616-440e-90f2-a12524e1bee4 Windows Server 2008 R2 for x64-based Systems: http://www.microsoft.com/downloads/details.aspx?familyid=308166e4-571b-4d6c-bd9f-3ed4afa4eafe Windows Server 2008 R2 for Itanium-based Systems: http://www.microsoft.com/downloads/details.aspx?familyid=1d0da42b-9755-4fd2-afd1-0d023d187133 PROVIDED AND/OR DISCOVERED BY: The vendor credits Tavis Ormandy, Google. ORIGINAL ADVISORY: MS10-001 (KB972270): http://www.microsoft.com/technet/security/Bulletin/MS10-001.mspx ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 18:08:43 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 03:08:43 +0100 Subject: [SEC] [SA27105] Microsoft Windows Flash Player Multiple Vulnerabilities Message-ID: <201001140208.o0E28he0005019@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Microsoft Windows Flash Player Multiple Vulnerabilities SECUNIA ADVISORY ID: SA27105 VERIFY ADVISORY: http://secunia.com/advisories/27105/ DESCRIPTION: Secunia Research has discovered a vulnerability in Windows XP, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a use-after-free error in the bundled version of Flash Player when unloading Flash objects while these are still being accessed using script code. This can be exploited to corrupt memory via a specially crafted web page. Successful exploitation allows execution of arbitrary code. The vulnerability is confirmed in Flash Player bundled with a fully patched Windows XP SP2 and is also confirmed in an old version 6.0.79 of Adobe Flash Player. NOTE: The version of Flash Player bundled with Windows XP is also affected by a number of other vulnerabilities previously disclosed and fixed in later versions of Adobe Flash Player. SOLUTION: Uninstall the bundled version of Flash Player and optionally install the latest supported version of Flash Player from Adobe. PROVIDED AND/OR DISCOVERED BY: Carsten Eiram and Dyon Balding, Secunia Research. The vendor also credits: * Will Dormann of CERT/CC. * TippingPoint and the Zero Day Initiative. CHANGELOG: 2010-01-13: Added link to US-CERT and Microsoft advisories. Updated credits. ORIGINAL ADVISORY: Secunia Research: http://secunia.com/secunia_research/2007-77/ Microsoft: http://www.microsoft.com/technet/security/advisory/979267.mspx US-CERT VU#204889: http://www.kb.cert.org/vuls/id/204889 OTHER REFERENCES: How to remove the Flash Player ActiveX control: http://kb2.adobe.com/cps/127/tn_12727.html How to uninstall the Adobe Flash Player plug-in and ActiveX control: http://kb2.adobe.com/cps/141/tn_14157.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 18:23:22 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 03:23:22 +0100 Subject: [SEC] [SA38066] Apple Mac OS X "strtod()" Floating Point Parsing Memory Corruption Message-ID: <201001140223.o0E2NMDX024797@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Apple Mac OS X "strtod()" Floating Point Parsing Memory Corruption SECUNIA ADVISORY ID: SA38066 VERIFY ADVISORY: http://secunia.com/advisories/38066/ DESCRIPTION: A vulnerability has been discovered in Mac OS X, which can be exploited by malicious people to potentially compromise a vulnerable system. The vulnerability is caused due to an error in libc when processing floating point numbers passed to the "strtod()" function. This can be exploited to corrupt memory when an application passes a specially crafted floating point number to the "strtod()" function or another function calling it (e.g. the "atof()" function). The vulnerability is confirmed in Mac OS X 10.5.8 and reported in Mac OS X 10.6. NOTE: Currently, there is no application known that can be used as attack vector. SOLUTION: There is no effective solution. PROVIDED AND/OR DISCOVERED BY: Maksymilian Arciemowicz and sp3x ORIGINAL ADVISORY: http://securityreason.com/achievement_securityalert/81 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 18:43:48 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 03:43:48 +0100 Subject: [SEC] [SA38152] SUSE Update for Multiple Packages Message-ID: <201001140243.o0E2hmAg012369@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: SUSE Update for Multiple Packages SECUNIA ADVISORY ID: SA38152 VERIFY ADVISORY: http://secunia.com/advisories/38152/ DESCRIPTION: SUSE has issued an update for multiple packages. This fixes some weaknesses, security issues, and vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, and by people to conduct spoofing attacks, bypass certain security restrictions, manipulate certain data, disclose sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system. For more information: SA32069 SA34621 SA35780 SA35884 SA36205 SA36384 SA36425 SA36601 SA37054 SA37072 SA37155 SA37175 SA37308 SA37333 SA37364 SA37431 SA37481 SA37629 SA37641 SA37785 SOLUTION: Apply updated packages via YaST Online Update or the SUSE FTP server. ORIGINAL ADVISORY: SUSE-SR:2009:020: http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00002.html OTHER REFERENCES: SA32069: http://secunia.com/advisories/32069/ SA34621: http://secunia.com/advisories/34621/ SA35780: http://secunia.com/advisories/35780/ SA35884: http://secunia.com/advisories/35884/ SA36205: http://secunia.com/advisories/36205/ SA36384: http://secunia.com/advisories/36384/ SA36425: http://secunia.com/advisories/36425/ SA36601: http://secunia.com/advisories/36601/ SA37054: http://secunia.com/advisories/37054/ SA37072: http://secunia.com/advisories/37072/ SA37155: http://secunia.com/advisories/37155/ SA37175: http://secunia.com/advisories/37175/ SA37308: http://secunia.com/advisories/37308/ SA37333: http://secunia.com/advisories/37333/ SA37364: http://secunia.com/advisories/37364/ SA37431: http://secunia.com/advisories/37431/ SA37481: http://secunia.com/advisories/37481/ SA37629: http://secunia.com/advisories/37629/ SA37641: http://secunia.com/advisories/37641/ SA37785: http://secunia.com/advisories/37785/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 19:09:53 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 04:09:53 +0100 Subject: [SEC] [SA38155] CS-Cart Cross-Site Request Forgery Message-ID: <201001140309.o0E39r9l000614@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: CS-Cart Cross-Site Request Forgery SECUNIA ADVISORY ID: SA38155 VERIFY ADVISORY: http://secunia.com/advisories/38155/ DESCRIPTION: Vic Cherubini has discovered a vulnerability in CS-Cart, which can be exploited by malicious people to conduct cross-site request forgery attacks. The application allows administrators to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. delete products, delete customers, change passwords, delete orders, or change orders by tricking an administrator into visiting a malicious web site. NOTE: This can further be exploited to execute arbitrary SQL code, but requires knowledge of the database name. The vulnerability is confirmed in version 2.0.11. Other versions may also be affected. SOLUTION: Do not browse untrusted websites or follow untrusted links while logged in to the application. PROVIDED AND/OR DISCOVERED BY: Vic Cherubini ORIGINAL ADVISORY: http://leftnode.com/vulnerabilities-in-shopping-cart-software-cs-cart/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 19:23:22 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 04:23:22 +0100 Subject: [SEC] [SA38135] WebCalenderC3 Cross-Site Scripting and Local File Inclusion Vulnerabilities Message-ID: <201001140323.o0E3NM6R020391@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: WebCalenderC3 Cross-Site Scripting and Local File Inclusion Vulnerabilities SECUNIA ADVISORY ID: SA38135 VERIFY ADVISORY: http://secunia.com/advisories/38135/ DESCRIPTION: Some vulnerabilities have been reported in WebCalenderC3, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose potentially sensitive information. 1) Certain input passed via unspecified parameters is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 2) Certain input passed via unspecified parameters in not properly verified before being used to include files. This can be exploited to include arbitrary files from local resources. The vulnerabilities are reported in versions prior to 0.32. SOLUTION: WebCalenderC3 0.32: Update to version 0.32s2: http://webcal.c-3.jp/webcalc3_032s2.lzh WebCalenderC3 0.31: Update to version 0.31s2: http://webcal.c-3.jp/webcalc3_031s2.lzh PROVIDED AND/OR DISCOVERED BY: JVN credits Dr. Masako Oono. ORIGINAL ADVISORY: C3 Corp: http://webcal.c-3.jp/zeijakusei.html JVN: http://jvn.jp/jp/JVN33977065/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2010-000002 http://jvn.jp/jp/JVN22247093/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2010-000003 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 19:43:39 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 04:43:39 +0100 Subject: [SEC] [SA38142] SUSE update for java-1_5_0-ibm Message-ID: <201001140343.o0E3hdXt007968@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: SUSE update for java-1_5_0-ibm SECUNIA ADVISORY ID: SA38142 VERIFY ADVISORY: http://secunia.com/advisories/38142/ DESCRIPTION: SUSE has issued an update for java-1_5_0-ibm. This fixes some weaknesses and vulnerabilities, which can be exploited by malicious people to potentially disclose sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a user's system. For more information: SA36453 SA37231 SOLUTION: Apply updated packages. SUSE Linux Enterprise Server 10 SP3 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=af469401da197afd4006ef4ae0c61aaa SUSE Linux Enterprise Desktop 10 SP3 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=af469401da197afd4006ef4ae0c61aaa SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1cb95aa32e0a2fbde417e5060b29d0ce SUSE Linux Enterprise Desktop 10 SP2 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1cb95aa32e0a2fbde417e5060b29d0ce Open Enterprise Server http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=bef414c897666b4530c787e16bbc7146 Novell Linux POS 9 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=bef414c897666b4530c787e16bbc7146 SUSE SLES 9 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=bef414c897666b4530c787e16bbc7146 ORIGINAL ADVISORY: SUSE-SA:2010:002: http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00001.html OTHER REFERENCES: SA36453: http://secunia.com/advisories/36453/ SA37231: http://secunia.com/advisories/37231/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 19:55:57 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 04:55:57 +0100 Subject: [SEC] [SA38080] Kerberos KDC RC4 and AES Decryption Integer Underflow Vulnerabilities Message-ID: <201001140355.o0E3tvNq027636@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Kerberos KDC RC4 and AES Decryption Integer Underflow Vulnerabilities SECUNIA ADVISORY ID: SA38080 VERIFY ADVISORY: http://secunia.com/advisories/38080/ DESCRIPTION: Some vulnerabilities have been reported in Kerberos KDC, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. The vulnerabilities are caused due to integer underflows within the AES and RC4 decryption when handling ciphertexts shorter than the minimum expected length. This can be exploited to cause a heap corruption by e.g. tricking KDC to decrypt a specially crafted ciphertext. SOLUTION: Update to version 1.6.4 and 1.7.1 as soon as available or apply patches. Patch for krb5-1.6: http://web.mit.edu/kerberos/advisories/2009-004-patch_1.6.3.txt.asc Patch for krb5-1.7: http://web.mit.edu/kerberos/advisories/2009-004-patch_1.7.txt.asc PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2009-004.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 20:08:20 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 05:08:20 +0100 Subject: [SEC] [SA38144] Active Calendar Cross-Site Scripting Vulnerabilities Message-ID: <201001140408.o0E48K3c014905@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Active Calendar Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA38144 VERIFY ADVISORY: http://secunia.com/advisories/38144/ DESCRIPTION: Some vulnerabilities have been discovered in Active Calendar, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the URL is not properly sanitised before being returned to the user in the "enableYearNav()", "enableMonthNav()", "enableDayLinks()", and "enableDatePicker()" functions within the activecalendar.php script. The vulnerabilities are confirmed in version 1.2.0. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Martin Barbella ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 20:23:19 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 05:23:19 +0100 Subject: [SEC] [SA38161] Joomla! JVClouds3D Module "tagcloud" Cross-Site Scripting Vulnerability Message-ID: <201001140423.o0E4NJvC002270@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Joomla! JVClouds3D Module "tagcloud" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38161 VERIFY ADVISORY: http://secunia.com/advisories/38161/ DESCRIPTION: MustLive has discovered a vulnerability in the JVClouds3D module for Joomla!, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the "tagcloud" parameter to tagcloud.swf (when "mode" is set to "tags") is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is confirmed in version 1.0.9b. Other versions may also be affected. SOLUTION: Filter malicious characters and character sequences using a proxy. PROVIDED AND/OR DISCOVERED BY: MustLive ORIGINAL ADVISORY: http://websecurity.com.ua/3839/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 20:43:25 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 05:43:25 +0100 Subject: [SEC] [SA38146] Glitter Central Script "catid" Cross-Site Scripting Vulnerability Message-ID: <201001140443.o0E4hPeX022258@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Glitter Central Script "catid" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38146 VERIFY ADVISORY: http://secunia.com/advisories/38146/ DESCRIPTION: A vulnerability has been reported in Glitter Central Script, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "catid" parameter in submitlink.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: R3d-D3v!L ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 20:55:40 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 05:55:40 +0100 Subject: [SEC] [SA37999] Panda Products Insecure Default Directory Permissions Message-ID: <201001140455.o0E4teKM009518@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Panda Products Insecure Default Directory Permissions SECUNIA ADVISORY ID: SA37999 VERIFY ADVISORY: http://secunia.com/advisories/37999/ DESCRIPTION: A security issue has been reported in multiple Panda products, which can be exploited by malicious, local users to gain escalated privileges. The security issue is caused due to the applications setting insecure default permissions on the installation directory. This can be exploited to gain escalated privileges by replacing application binaries. This is related to: SA37373 The security issue is reported in the following products and versions: * Panda Global Protection 2010 version 3.01.00 * Panda Internet Security 2010 version 15.01.00 * Panda Antivirus Pro 2010 version 09.01.00 * Panda Antivirus for Netbooks 2010 version 09.01.00 Other versions may also be affected. SOLUTION: Apply patches. Panda Global Protection 2010: http://www.pandasecurity.com/resources/sop/PGP10/hfgp30906s22_r4.exe Panda Internet Security 2010: http://www.pandasecurity.com/resources/sop/PIS10/hfp150906s25_r1.exe Panda Antivirus Pro 2010: http://www.pandasecurity.com/resources/sop/PAVPro10/hft90906s21_r1.exe Panda Antivirus for Netbooks 2010: http://www.pandasecurity.com/resources/sop/PAVPro10/hft90906s21_r1.exe PROVIDED AND/OR DISCOVERED BY: The vendor credits Nikolas Sotiriu, Jeffrey Walton, and Maxim A. Kulakov. CHANGELOG: 2010-01-12: Updated reporter link in the "Original Advisory" section. ORIGINAL ADVISORY: Panda: http://www.pandasecurity.com/homeusers/support/card?id=80173 Nikolas Sotiriu: http://sotiriu.de/adv/NSOADV-2010-001.txt OTHER REFERENCES: SA37373: http://secunia.com/advisories/37373/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 21:09:03 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 06:09:03 +0100 Subject: [SEC] [SA38060] Todoo Forum "id_forum" Cross-Site Scripting Vulnerability Message-ID: <201001140509.o0E593UL029234@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Todoo Forum "id_forum" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38060 VERIFY ADVISORY: http://secunia.com/advisories/38060/ DESCRIPTION: A vulnerability has been discovered in Todoo Forum, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "id_forum" parameter in todooforum.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is confirmed in version 2.0. Other versions may also be affected. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: ViRuSMaN ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 21:23:44 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 06:23:44 +0100 Subject: [SEC] [SA38051] D-Link DKVM-IP8 "auth.asp" Cross-Site Scripting Message-ID: <201001140523.o0E5Nipt016596@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: D-Link DKVM-IP8 "auth.asp" Cross-Site Scripting SECUNIA ADVISORY ID: SA38051 VERIFY ADVISORY: http://secunia.com/advisories/38051/ DESCRIPTION: A vulnerability has been reported in D-Link DKVM-IP8, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "nickname" parameter in auth.asp is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. SOLUTION: Filter malicious characters and character sequences in a web proxy. PROVIDED AND/OR DISCOVERED BY: Popcorn ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 21:43:33 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 06:43:33 +0100 Subject: [SEC] [SA37933] Cherokee Terminal Escape Sequence Weakness Message-ID: <201001140543.o0E5hX5r004155@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Cherokee Terminal Escape Sequence Weakness SECUNIA ADVISORY ID: SA37933 VERIFY ADVISORY: http://secunia.com/advisories/37933/ DESCRIPTION: A weakness has been reported in Cherokee, which can be exploited by malicious people to manipulate certain data. The weakness is caused due to Cherokee logging terminal escape sequences received in HTTP requests. This can be exploited to pass control characters to a terminal emulator when a user displays Cherokee logs via e.g. "cat". SOLUTION: Update to version 0.99.34 or later. http://www.cherokee-project.com/downloads.html PROVIDED AND/OR DISCOVERED BY: Giovanni "evilaliv3" Pellerano, Alessandro "jekil" Tanasi, and Francesco "ascii" Ongaro ORIGINAL ADVISORY: http://svn.cherokee-project.com/changeset/3944 http://svn.cherokee-project.com/changeset/3977 http://www.ush.it/team/ush/hack_httpd_escape/adv.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 21:55:31 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 06:55:31 +0100 Subject: [SEC] [SA38040] ProArcadeScript "id" SQL Injection Vulnerability Message-ID: <201001140555.o0E5tVW2023819@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: ProArcadeScript "id" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA38040 VERIFY ADVISORY: http://secunia.com/advisories/38040/ DESCRIPTION: A vulnerability has been reported in ProArcadeScript, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "id" parameter in game.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. SOLUTION: Edit the source code to ensure that input is properly sanitised. PROVIDED AND/OR DISCOVERED BY: Err0R ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Wed Jan 13 22:08:46 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 07:08:46 +0100 Subject: [SEC] [SA38062] E-membres Database Disclosure Security Issue Message-ID: <201001140608.o0E68kPd011115@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: E-membres Database Disclosure Security Issue SECUNIA ADVISORY ID: SA38062 VERIFY ADVISORY: http://secunia.com/advisories/38062/ DESCRIPTION: A security issue has been reported in E-membres, which can be exploited by malicious people to disclose sensitive information. The security issue is caused due to the "/db/bdEMembres.mdb" database file being stored with insecure permissions inside the web root. This can be exploited to gain knowledge of sensitive information by downloading the file. The security issue is reported in version 1.0. Other versions may also be affected. SOLUTION: Place the database file outside the webroot. PROVIDED AND/OR DISCOVERED BY: ViRuSMaN ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From summary at secunia.com Thu Jan 14 08:36:54 2010 From: summary at secunia.com (Secunia) Date: Thu, 14 Jan 2010 17:36:54 +0100 Subject: [SEC] Secunia Weekly Summary - Issue: 2010-02 Message-ID: <201001141636.o0EGarMh028343@CRON-IX-2.intnet> ======================================================================== The Secunia Weekly Advisory Summary 2010-01-07 - 2010-01-14 This week: 63 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ======================================================================== 2) This Week in Brief: Secunia Research has discovered a vulnerability in Windows XP, which can be exploited by malicious people to compromise a user's system. For more information, refer to: http://secunia.com/advisories/27105/ -- Some vulnerabilities have been reported in Oracle Database, which can be exploited by malicious users to manipulate certain data, disclose potentially sensitive information, or compromise a vulnerable system and by malicious people to compromise a vulnerable system. For more information, refer to: http://secunia.com/advisories/38027/ -- A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to potentially compromise a user's system. For more information, refer to: http://secunia.com/advisories/35457/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA37584] Adobe Flash Player Multiple Vulnerabilities 2. [SA37690] Adobe Reader/Acrobat Memory Corruption Vulnerabilities 3. [SA37231] Sun Java JDK / JRE Multiple Vulnerabilities 4. [SA37831] Microsoft IIS ASP Multiple Extensions Security Bypass 5. [SA24314] Internet Explorer Charset Inheritance Cross-Site Scripting Vulnerability 6. [SA36983] Adobe Reader/Acrobat Multiple Vulnerabilities 7. [SA37699] Mozilla Firefox Multiple Vulnerabilities 8. [SA28713] Facebook Photo Uploader ActiveX Control Property Handling Buffer Overflow 9. [SA35948] Adobe Flash Player Multiple Vulnerabilities 10. [SA37398] Kaspersky Anti-Virus 2010 Denial of Service and Privilege Escalation ======================================================================== 4) This Week in Numbers During the past week 63 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 6 Secunia Advisories Unix/Linux : 27 Secunia Advisories Other : 2 Secunia Advisories Cross platform : 28 Secunia Advisories Criticality Ratings: Extremely Critical : 1 Secunia Advisory Highly Critical : 12 Secunia Advisories Moderately Critical : 14 Secunia Advisories Less Critical : 35 Secunia Advisories Not Critical : 1 Secunia Advisory ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support at secunia.com Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ======================================================================== To unsubscribe click following link: http://secunia.com/summary/unsubscribe/?email=caos-secbox%40lists.infiscale.org ======================================================================== From sec-adv at secunia.com Thu Jan 14 10:29:00 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 19:29:00 +0100 Subject: [SEC] [SA38171] WebSphere DataPower TLS Session Renegotiation Vulnerability Message-ID: <201001141829.o0EIT09v019443@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: WebSphere DataPower TLS Session Renegotiation Vulnerability SECUNIA ADVISORY ID: SA38171 VERIFY ADVISORY: http://secunia.com/advisories/38171/ DESCRIPTION: A vulnerability has been reported in WebSphere DataPower, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to an error in the TLS protocol while handling session re-negotiations. This can be exploited to disclose HTTP headers sent in the initial HTTP request to an SSL server. This is related to: SA37291 SOLUTION: Apply fix packs. Please see the vendor's advisory for more information. PROVIDED AND/OR DISCOVERED BY: Independently discovered by Marsh Ray of PhoneFactor, and Martin Rex. ORIGINAL ADVISORY: http://www-01.ibm.com/support/docview.wss?uid=swg1IC64790 OTHER REFERENCES: SA37291: http://secunia.com/advisories/37291/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 11:29:07 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 20:29:07 +0100 Subject: [SEC] [SA38206] TYPO3 OpenID Identity Authentication Security Bypass Message-ID: <201001141929.o0EJT7O4008585@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: TYPO3 OpenID Identity Authentication Security Bypass SECUNIA ADVISORY ID: SA38206 VERIFY ADVISORY: http://secunia.com/advisories/38206/ DESCRIPTION: A security issue has been reported in TYPO3, which can be exploited by malicious people to bypass certain security restrictions. The security issue is caused due to an error in the system extension "openid" when using OpenID identities for authentication. This can be exploited to log in to the TYPO3 backend by using a backend user account's OpenID identity. Successful exploitation requires an enabled system extension "openid" (disabled by default), knowledge of the OpenID identity assigned to a TYPO3 backend user account, and that the attacker and victim have identities from the same OpenID provider. NOTE: Only OpenID identities from providers, who discard submitted OpenID identities and allow users to choose a different identity, are vulnerable. The security issue is reported in version 4.3.0. Prior versions may also be affected. SOLUTION: Update to version 4.3.1. PROVIDED AND/OR DISCOVERED BY: Jeff Segars, TYPO3 Core team. ORIGINAL ADVISORY: TYPO3-SA-2010-001: http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-001/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 12:29:06 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 21:29:06 +0100 Subject: [SEC] [SA38182] Gentoo update for VirtualBox Message-ID: <201001142029.o0EKT6Q2030143@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Gentoo update for VirtualBox SECUNIA ADVISORY ID: SA38182 VERIFY ADVISORY: http://secunia.com/advisories/38182/ DESCRIPTION: Gentoo has issued an update for VirtualBox. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to gain escalated privileges. For more information: SA36929 SA37363 SOLUTION: Users of the binary version of VirtualBox update to "app-emulation/virtualbox-bin-3.0.12" or later. Users of the Open Source version of VirtualBox update to "app-emulation/virtualbox-ose-3.0.12" or later. Users of the binary VirtualBox Guest Additions update to "app-emulation/virtualbox-guest-additions-3.0.12" or later. Users of the Open Source VirtualBox Guest Additions update to "app-emulation/virtualbox-ose-additions-3.0.12" or later. ORIGINAL ADVISORY: GLSA 201001-04: http://www.gentoo.org/security/en/glsa/glsa-201001-04.xml OTHER REFERENCES: SA36929: http://secunia.com/advisories/36929/ SA37363: http://secunia.com/advisories/37363/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 13:29:28 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 22:29:28 +0100 Subject: [SEC] [SA38181] Debian update for openssl Message-ID: <201001142129.o0ELTSBF019297@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Debian update for openssl SECUNIA ADVISORY ID: SA38181 VERIFY ADVISORY: http://secunia.com/advisories/38181/ DESCRIPTION: Debian has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). For more information: SA38200 SOLUTION: Apply updated packages. -- Debian GNU/Linux 5.0 (lenny) -- Source: http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g.orig.tar.gz http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6.dsc http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6.diff.gz Alpha: http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_alpha.udeb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_alpha.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_alpha.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_alpha.deb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_alpha.deb AMD64: http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_amd64.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_amd64.deb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_amd64.deb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_amd64.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_amd64.deb ARM EABI: http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_armel.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_armel.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_armel.deb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_armel.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_armel.udeb HP Precision: http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_hppa.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_hppa.deb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_hppa.deb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_hppa.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_hppa.udeb Intel IA-32: http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_i386.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_i386.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_i386.deb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_i386.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_i386.deb Intel IA-64: http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_ia64.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_ia64.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_ia64.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_ia64.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_ia64.deb Big-endian MIPS: http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_mips.deb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_mips.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_mips.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_mips.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_mips.deb Little-endian MIPS: http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_mipsel.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_mipsel.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_mipsel.deb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_mipsel.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_mipsel.deb PowerPC: http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_powerpc.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_powerpc.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_powerpc.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_powerpc.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_powerpc.deb IBM S/390: http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_s390.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_s390.udeb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_s390.deb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_s390.deb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_s390.deb Sun Sparc: http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8_0.9.8g-15+lenny6_sparc.deb http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.8g-15+lenny6_sparc.deb http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9.8g-15+lenny6_sparc.deb http://security.debian.org/pool/updates/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15+lenny6_sparc.udeb http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15+lenny6_sparc.deb ORIGINAL ADVISORY: DSA-1970-1: http://www.debian.org/security/2010/dsa-1970 OTHER REFERENCES: SA38200: http://secunia.com/advisories/38200/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 14:23:35 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 23:23:35 +0100 Subject: [SEC] [SA38180] Gentoo update for aria2 Message-ID: <201001142223.o0EMNZDN008206@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Gentoo update for aria2 SECUNIA ADVISORY ID: SA38180 VERIFY ADVISORY: http://secunia.com/advisories/38180/ DESCRIPTION: Gentoo has issued an update for aria2. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system. For more information: SA31732 SA36985 SOLUTION: Update to "net-misc/aria2-1.6.3" or later. ORIGINAL ADVISORY: GLSA 201001-06: http://www.gentoo.org/security/en/glsa/glsa-201001-06.xml OTHER REFERENCES: SA31732: http://secunia.com/advisories/31732/ SA36985: http://secunia.com/advisories/36985/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 14:43:36 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 23:43:36 +0100 Subject: [SEC] [SA38179] Gentoo update for squirrelmail Message-ID: <201001142243.o0EMhann028184@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Gentoo update for squirrelmail SECUNIA ADVISORY ID: SA38179 VERIFY ADVISORY: http://secunia.com/advisories/38179/ DESCRIPTION: Gentoo has issued an update for squirrelmail. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting, session fixation, and phishing attacks. For more information: SA35073 SOLUTION: Update to "mail-client/squirrelmail-1.4.19" or later. ORIGINAL ADVISORY: GLSA 201001-08: http://www.gentoo.org/security/en/glsa/glsa-201001-08.xml OTHER REFERENCES: SA35073: http://secunia.com/advisories/35073/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 14:55:34 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Thu, 14 Jan 2010 23:55:34 +0100 Subject: [SEC] [SA38177] Gentoo update for net-snmp Message-ID: <201001142255.o0EMtYuN015424@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Gentoo update for net-snmp SECUNIA ADVISORY ID: SA38177 VERIFY ADVISORY: http://secunia.com/advisories/38177/ DESCRIPTION: Gentoo has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to disclose sensitive information. For more information: SA33884 SOLUTION: Update to "net-analyzer/net-snmp-5.4.2.1-r1" or later. ORIGINAL ADVISORY: GLSA 201001-05: http://www.gentoo.org/security/en/glsa/glsa-201001-05.xml OTHER REFERENCES: SA33884: http://secunia.com/advisories/33884/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 15:08:46 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Fri, 15 Jan 2010 00:08:46 +0100 Subject: [SEC] [SA38207] Drupal Bibliography Module Script Insertion Message-ID: <201001142308.o0EN8k3F002722@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Drupal Bibliography Module Script Insertion SECUNIA ADVISORY ID: SA38207 VERIFY ADVISORY: http://secunia.com/advisories/38207/ DESCRIPTION: A vulnerability has been reported in the Bibliography module for Drupal, which can be exploited by malicious users to conduct script insertion attacks. Certain unspecified input is not properly sanitised before being displayed to the user. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed. Successful exploitation requires "administer biblio" permissions. The vulnerability is reported in versions prior to 6.x-1.10 and 5.x-1.18. SOLUTION: Bibliography 6.x: Update to version 6.x-1.10. http://drupal.org/node/682696 Bibliography 5.x: Update to version 5.x-1.18. http://drupal.org/node/682694 PROVIDED AND/OR DISCOVERED BY: The vendor credits grendzy of the Drupal Security Team. ORIGINAL ADVISORY: SA-CONTRIB-2010-006: http://drupal.org/node/683786 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 15:24:01 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Fri, 15 Jan 2010 00:24:01 +0100 Subject: [SEC] [SA38175] Ubuntu update for OpenSSL Message-ID: <201001142324.o0ENO1vM022518@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Ubuntu update for OpenSSL SECUNIA ADVISORY ID: SA38175 VERIFY ADVISORY: http://secunia.com/advisories/38175/ DESCRIPTION: Ubuntu has issued an update for OpenSSL. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). For more information: SA38200 SOLUTION: Apply updated packages. -- Ubuntu 6.06 LTS -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7ubuntu0.11.diff.gz Size/MD5: 53583 078fd4b21d4cbe9cc56c6472efd2f82e http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7ubuntu0.11.dsc Size/MD5: 863 1377338a9886d11c1c694b61fbef8c57 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a.orig.tar.gz Size/MD5: 3271435 1d16c727c10185e4d694f87f5e424ee1 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8a-7ubuntu0.11_amd64.udeb Size/MD5: 572058 fcca42eafc9db726ae0fed5446722d2a http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8a-7ubuntu0.11_amd64.deb Size/MD5: 2168230 838b7fdb5d3511b13cfddeff3b4cc012 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8a-7ubuntu0.11_amd64.deb Size/MD5: 1683044 224538a2aab035f0dca5d084dbf11f18 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8a-7ubuntu0.11_amd64.deb Size/MD5: 876766 fbf13b1530240b7f973c766c5d3f472f http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7ubuntu0.11_amd64.deb Size/MD5: 985572 86b5869ce64db3de5c8bfa940784e66e i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8a-7ubuntu0.11_i386.udeb Size/MD5: 509642 9de0f0a418975f96c1d34e9e768602a7 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8a-7ubuntu0.11_i386.deb Size/MD5: 2025304 a0fd927eb2c5d1c7c1fa1d05fdb70844 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8a-7ubuntu0.11_i386.deb Size/MD5: 5054086 6c7609da189fe87af592d9aee5810f8d http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8a-7ubuntu0.11_i386.deb Size/MD5: 2597912 2fa091d1d98a5619a87c82680fd41a63 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7ubuntu0.11_i386.deb Size/MD5: 977384 2cb20009b29d555fa6a54bc9e0e840e3 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8a-7ubuntu0.11_powerpc.udeb Size/MD5: 557996 fc36889114e018166aea4a83c5326876 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8a-7ubuntu0.11_powerpc.deb Size/MD5: 2182878 23f4223f5b33dc2610249168c4e3ac8f http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8a-7ubuntu0.11_powerpc.deb Size/MD5: 1728330 867d6abf0e1823facd5983c7e8663fe1 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8a-7ubuntu0.11_powerpc.deb Size/MD5: 862962 569703c074b5675fa75f47e377d77f4f http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7ubuntu0.11_powerpc.deb Size/MD5: 981478 d7e25315631c93459e87bf32ed1a80a7 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8a-7ubuntu0.11_sparc.udeb Size/MD5: 531120 c3c0edd3faeeefd715f1f7445de7bd75 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8a-7ubuntu0.11_sparc.deb Size/MD5: 2094062 0462ca729344b506ca47e7ee6a072a2a http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8a-7ubuntu0.11_sparc.deb Size/MD5: 3943146 4c63bdac42f197d7ba87ba08e41ce833 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8a-7ubuntu0.11_sparc.deb Size/MD5: 2093194 476064416774ebdffecb39bd14190904 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7ubuntu0.11_sparc.deb Size/MD5: 989766 519bc05f4350bc73c1b797ce992b774b -- Ubuntu 8.04 LTS -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9.diff.gz Size/MD5: 57624 3ce2a25565b28125fea2063d699fe4c2 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9.dsc Size/MD5: 959 9fdd11a0ede708d6f6eb46789d18a332 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g.orig.tar.gz Size/MD5: 3354792 acf70a16359bf3658bdfb74bda1c4419 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.8g-4ubuntu3.9_all.deb Size/MD5: 629818 fd45ce5337737db58f5bd4b6f4d49c34 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.9_amd64.udeb Size/MD5: 604116 5e5a065259450d657bbd731c2a5c4cf7 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3.9_amd64.deb Size/MD5: 2065026 477ee0c685fda01af69f3e2498879d1a http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ubuntu3.9_amd64.deb Size/MD5: 1605842 39246a5e5e44805ac41ff1c83f4303a2 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu3.9_amd64.deb Size/MD5: 932704 8ae7ff1f67de0352ca5e893a2b7cc478 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9_amd64.deb Size/MD5: 390608 199fe49d3b7760a93c0b761b98243f9c i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.9_i386.udeb Size/MD5: 564900 9a7233abd4c8ac802a59a27593f09157 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3.9_i386.deb Size/MD5: 1942036 cde5d59342272592a73cbb510b26099d http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ubuntu3.9_i386.deb Size/MD5: 5343388 22664b439f9343bfba1a50b99b183506 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu3.9_i386.deb Size/MD5: 2830730 6ef48a0ee7f2aa250d83f7c8967fdffa http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9_i386.deb Size/MD5: 385414 617966792c3dd9b1413d8bccad81b007 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.9_lpia.udeb Size/MD5: 535576 4561b9d21de36010f2c1cc7174939ddb http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3.9_lpia.deb Size/MD5: 1922840 8526a8c26a0756e5d4c07150c060153a http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ubuntu3.9_lpia.deb Size/MD5: 1513848 2da4b2c36123a473383c961d35aaea66 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu3.9_lpia.deb Size/MD5: 844172 608523703aa6afd0ca17bffac3bac2c0 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9_lpia.deb Size/MD5: 390036 07f80e60472c4d8f5b35737df7ff11d1 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.9_powerpc.udeb Size/MD5: 610448 5aa07b6da99bd426e590921ec95a6d7d http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3.9_powerpc.deb Size/MD5: 2078316 1a363e766a017670bad1a9ef55d0da96 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ubuntu3.9_powerpc.deb Size/MD5: 1640942 35709bb218c55ef3dd84673249b28df6 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu3.9_powerpc.deb Size/MD5: 946004 435032eb95cae3cc024bfb0435ac7e2b http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9_powerpc.deb Size/MD5: 399190 3b92e622203b4afb56a4a0f39f36c76a sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.9_sparc.udeb Size/MD5: 559830 91f9f930a688eb8074f674008bdcbc4b http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3.9_sparc.deb Size/MD5: 1985116 25b894ef012cc97033ea2b22b325f8bf http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ubuntu3.9_sparc.deb Size/MD5: 3875276 8a4cc3d59260de6d0abc0c04ec4694e7 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu3.9_sparc.deb Size/MD5: 2243138 dc45192a9eb556a4068f4bcd358495f1 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.9_sparc.deb Size/MD5: 397834 25447db31c0698eefd384f59c629ed9e -- Ubuntu 8.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6.diff.gz Size/MD5: 59597 4cf453be12cd9a37ce9adcd59b736c12 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6.dsc Size/MD5: 1373 2eeed217c3f62603366134442a772de5 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g.orig.tar.gz Size/MD5: 3354792 acf70a16359bf3658bdfb74bda1c4419 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.8g-10.1ubuntu2.6_all.deb Size/MD5: 629518 f4737a13eb762e407f5a85bcdea9ea2b amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.6_amd64.udeb Size/MD5: 622272 829fb113bf48efa8e5889f353ada7d86 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubuntu2.6_amd64.deb Size/MD5: 2109964 e3d56926f75fd157aa7911becbab2d3d http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.6_amd64.deb Size/MD5: 1685630 c7d7cce672ee8750529545161425cfbb http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubuntu2.6_amd64.deb Size/MD5: 959000 b5a02710c552181bcf4414c9994b5d07 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6_amd64.deb Size/MD5: 404002 fdf80c8f9e3937fc946ebc293a7af0dc i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.6_i386.udeb Size/MD5: 578804 7e6fd857da61a516147ca14312eebbc4 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubuntu2.6_i386.deb Size/MD5: 1980760 433b2b612143a13dd6bc9eaa5bc57dd8 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.6_i386.deb Size/MD5: 5606470 bf696a0d7d95317126cf60ca89c8699f http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubuntu2.6_i386.deb Size/MD5: 2921362 6f5c84d1bb8ff9828866b88590049c64 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6_i386.deb Size/MD5: 398634 a861e5f9152c4b8b073af7e3cea32bfa lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.6_lpia.udeb Size/MD5: 547482 bea50d80146eab69f07707234187d07c http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubuntu2.6_lpia.deb Size/MD5: 1958290 5bbfb95cbe98cf27779dddabedcbdbff http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.6_lpia.deb Size/MD5: 1580416 5dcc62eeb3e2e25bd60931dbbfb5cb35 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubuntu2.6_lpia.deb Size/MD5: 863696 54b56d16a90677bee6100a60f4eb7a64 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6_lpia.deb Size/MD5: 400630 eefe5c10cc2a040fb18e0f31fb9134b0 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.6_powerpc.udeb Size/MD5: 623250 f51af07c00285e307baa1042d5d2e36d http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubuntu2.6_powerpc.deb Size/MD5: 2120464 4e799bffd24bb693c13f47567f81aa1e http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.6_powerpc.deb Size/MD5: 1705308 a2a097971182affc1df807242e2d55d5 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubuntu2.6_powerpc.deb Size/MD5: 965578 70be3d9f39fb85968890b50ed568961d http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6_powerpc.deb Size/MD5: 402652 69edb8efb8324ddd4769cb04c1faf7ab sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.6_sparc.udeb Size/MD5: 567678 27d5beebddabe79f9ee586490fa39628 http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubuntu2.6_sparc.deb Size/MD5: 2013850 bad8c224bc9326c320f3c6a70ae961a7 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.6_sparc.deb Size/MD5: 4038778 2e767a15210f3a158c3a6111ff85af51 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubuntu2.6_sparc.deb Size/MD5: 2285930 c92a8f07fbabcd218e74186063d525d3 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2.6_sparc.deb Size/MD5: 406758 b72a20b0ff8524f18ec55933ae3d2723 -- Ubuntu 9.04 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4.diff.gz Size/MD5: 61966 b202f11e66751a6d74cd9cbd2c423026 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4.dsc Size/MD5: 1476 ea957c9f96643444437a3f96de6ba250 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g.orig.tar.gz Size/MD5: 3354792 acf70a16359bf3658bdfb74bda1c4419 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.8g-15ubuntu3.4_all.deb Size/MD5: 630404 f57619daf5fe28633018bb990289a2a4 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15ubuntu3.4_amd64.udeb Size/MD5: 622016 4968392acf782b84df90c925058b4556 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-15ubuntu3.4_amd64.deb Size/MD5: 2101208 0f4a4eefebeefda26cc41d9fd0cb77d2 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15ubuntu3.4_amd64.deb Size/MD5: 1686434 d22aafbe4532db12a73c5cdf0082aa5b http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-15ubuntu3.4_amd64.deb Size/MD5: 960980 4f2126304d9539258f5466e840939c17 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4_amd64.deb Size/MD5: 402132 a5c27b0c214664e666d0b9e87f5e11bb i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15ubuntu3.4_i386.udeb Size/MD5: 578858 ae7901891441e9387531f212fd181feb http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-15ubuntu3.4_i386.deb Size/MD5: 1972796 4b5befbd3a4f387ec10b9b02d145692e http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15ubuntu3.4_i386.deb Size/MD5: 5606770 bdb9a9ba35db89361caec17b0295234b http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-15ubuntu3.4_i386.deb Size/MD5: 2924250 9f59e0af697ad603f0b5523a358bd2ee http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4_i386.deb Size/MD5: 397830 be6e595954d6e958e5647749a4508b65 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15ubuntu3.4_lpia.udeb Size/MD5: 547460 4a85bfb1089fdf9029aefcdd887cfdaf http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-15ubuntu3.4_lpia.deb Size/MD5: 1949972 b17b67b6f3384b6cd813939703fa294f http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15ubuntu3.4_lpia.deb Size/MD5: 1581388 667d2f135f810a1c7957b0646f2597c9 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-15ubuntu3.4_lpia.deb Size/MD5: 865782 a68d7c72469682913d960fdca329cf3e http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4_lpia.deb Size/MD5: 399370 81cb0bcd6040bccf98204cd4951e80c2 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15ubuntu3.4_powerpc.udeb Size/MD5: 623270 29cd5febf24a3d3b7d6e194ab03d30a3 http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-15ubuntu3.4_powerpc.deb Size/MD5: 2112392 fe35372e842403f73fface06cb6b81cf http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15ubuntu3.4_powerpc.deb Size/MD5: 1706036 3c60700323017d99f040f2c08cafab36 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-15ubuntu3.4_powerpc.deb Size/MD5: 967820 4a1eeaabf310d820930b017eeed0967c http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4_powerpc.deb Size/MD5: 401218 0c274b4836ce6b2f184877c333349c31 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-15ubuntu3.4_sparc.udeb Size/MD5: 567626 409bf151f19abc289cb87a32c8330623 http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-15ubuntu3.4_sparc.deb Size/MD5: 2005764 83932c4fe5e3e6067e53987612a58fab http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-15ubuntu3.4_sparc.deb Size/MD5: 4039666 f57b1708821b81b0386f5bb94dc5bbd2 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-15ubuntu3.4_sparc.deb Size/MD5: 2287248 cdec5a2b105083e3c112051735e17dd1 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-15ubuntu3.4_sparc.deb Size/MD5: 405470 f43afd307821ae2023841ed0df9d48d1 -- Ubuntu 9.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1.diff.gz Size/MD5: 62124 0ccaf31bb466d39abcc0c0b0a3f233e8 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1.dsc Size/MD5: 1476 1e2262fb468c9efb42a036e3f8a3c890 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g.orig.tar.gz Size/MD5: 3354792 acf70a16359bf3658bdfb74bda1c4419 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.8g-16ubuntu3.1_all.deb Size/MD5: 630550 5da8184611f9bddbce67d843f48757b7 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.1_amd64.udeb Size/MD5: 628102 dbfce0d70116d0d736281044444d4bf8 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-16ubuntu3.1_amd64.deb Size/MD5: 2114152 bd9df215c27087b00bfcf5fc0a5951e5 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-16ubuntu3.1_amd64.deb Size/MD5: 1635946 110e0bc281c87b58ac3179485b3ce80b http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-16ubuntu3.1_amd64.deb Size/MD5: 964948 d42feb0d19b2aaee451de7ae7d11f7dc http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1_amd64.deb Size/MD5: 402344 14d636c618b04f6e3f3aeba1858e881a i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.1_i386.udeb Size/MD5: 571400 0189ac36af72febca731b8b520ca44d0 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8g-16ubuntu3.1_i386.deb Size/MD5: 1970330 ab13b28f7ab9ac4ce3e1d16568b43e50 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-16ubuntu3.1_i386.deb Size/MD5: 5607170 14233856cc77c65214afbf4b8a425516 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8g-16ubuntu3.1_i386.deb Size/MD5: 2913846 ca6d1efb2712b0e207493491897beab1 http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1_i386.deb Size/MD5: 397684 23dddcc16d016187d17e9fc0bb2ac5bc lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.1_lpia.udeb Size/MD5: 547622 9193d051f48255733a877126dbb872c8 http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-16ubuntu3.1_lpia.deb Size/MD5: 1953268 8d1b60d97c819ceebde1b5aa581c8233 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-16ubuntu3.1_lpia.deb Size/MD5: 1583562 d82c42deadff8280be469cb60e1a277e http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-16ubuntu3.1_lpia.deb Size/MD5: 866380 1978474a522dcfe1a00b0572a0264c07 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1_lpia.deb Size/MD5: 399642 6fae9c8dcacaa9cfec6b12002af73e6b powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.1_powerpc.udeb Size/MD5: 619002 c7cb046505e97c4749c84d80bc208240 http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-16ubuntu3.1_powerpc.deb Size/MD5: 2111024 bf512750a558622c0939d3e673f2958b http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-16ubuntu3.1_powerpc.deb Size/MD5: 1690978 723981c075fecc6793af54b7fab95697 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-16ubuntu3.1_powerpc.deb Size/MD5: 948616 ba268888547761cae6dbb1d29819821c http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1_powerpc.deb Size/MD5: 399236 a6ee992fd63e9f5ae45c8361b6d0377b sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.1_sparc.udeb Size/MD5: 563678 8352657d40a0d8928da76c9b9a2179f9 http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-16ubuntu3.1_sparc.deb Size/MD5: 2004048 d7aaac9224f49d0c53622a13c808ce08 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-16ubuntu3.1_sparc.deb Size/MD5: 3974302 fe60a67af133c8001cc89fe803de0271 http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-16ubuntu3.1_sparc.deb Size/MD5: 2275584 a8c6b6253b311c44a7ab51810be70683 http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-16ubuntu3.1_sparc.deb Size/MD5: 409140 a7714f98616706bc91d15234f54a73cb ORIGINAL ADVISORY: USN-884-1: https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-January/001026.html OTHER REFERENCES: SA38200: http://secunia.com/advisories/38200/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org ---------------------------------------------------------------------- From sec-adv at secunia.com Thu Jan 14 15:43:57 2010 From: sec-adv at secunia.com (Secunia Security Advisories) Date: Fri, 15 Jan 2010 00:43:57 +0100 Subject: [SEC] [SA38193] Ubuntu update for network-manager-applet Message-ID: <201001142343.o0ENhvAY010073@CRON-IX-2.intnet> ---------------------------------------------------------------------- Accurate Vulnerability Scanning No more false positives, no more false negatives http://secunia.com/vulnerability_scanning/ ---------------------------------------------------------------------- TITLE: Ubuntu update for network-manager-applet SECUNIA ADVISORY ID: SA38193 VERIFY ADVISORY: http://secunia.com/advisories/38193/ DESCRIPTION: Ubuntu has issued an update for network-manager-applet. This fixes some security issues, which can be exploited by malicious, local users to gain knowledge of sensitive information and by malicious people to bypass certain security restrictions. For more information: SA37647 SA37819 SOLUTION: Apply updated packages. -- Ubuntu 8.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7~~svn20081020t000444-0ubuntu1.8.10.3.diff.gz Size/MD5: 52472 b82ebcb1945e432b7141c51500cf54d0 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7~~svn20081020t000444-0ubuntu1.8.10.3.dsc Size/MD5: 1745 682f49446d481b1c47a9191a7e8863d0 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7~~svn20081020t000444.orig.tar.gz Size/MD5: 668729 af829714605058afb3cf77c5d419ae83 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.3_amd64.deb Size/MD5: 314590 93926fe52218799bb9582a9937625ebc i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.3_i386.deb Size/MD5: 300692 e8130472fa267cd98d5696a660f7121b lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.3_lpia.deb Size/MD5: 299180 9b9c2a8e5577ede2474873c864dfb620 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.3_powerpc.deb Size/MD5: 310850 051260d8bf82146f1533e10ec842db46 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.3_sparc.deb Size/MD5: 303226 0fcfffc3b7948a93d8c20a22a867b34e -- Ubuntu 9.04 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7.1~rc4.1-0ubuntu2.1.diff.gz Size/MD5: 39587 f761e8d9cbe68d5ff1a1ef1f373d0855 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7.1~rc4.1-0ubuntu2.1.dsc Size/MD5: 1621 83c06ab153587c3d3ece6ec8d27e8fa6 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7.1~rc4.1.orig.tar.gz Size/MD5: 812190 85177fb4f930e731187ad1f811f07888 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.7.1~rc4.1-0ubuntu2.1_amd64.deb Size/MD5: 381524 c8a4ece54773441228662a1d8f0b78c0 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.7.1~rc4.1-0ubuntu2.1_i386.deb Size/MD5: 365622 13d6469d61d2323a6813e2ef763eccb2 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7.1~rc4.1-0ubuntu2.1_lpia.deb Size/MD5: 362318 17f179f208b66b13320543e806f7aaed powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7.1~rc4.1-0ubuntu2.1_powerpc.deb Size/MD5: 375036 32034d9e9af5d92a8a8174a2684f1ce2 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7.1~rc4.1-0ubuntu2.1_sparc.deb Size/MD5: 368592 95d9b33243243701ecf97145d473043e ORIGINAL ADVISORY: USN-883-1: http://www.