similar to: [Fwd: [gentoo-announce] [ GLSA 200402-07 ] Clamav 0.65 DoS vulnerability]

Hi The FreeBSD port has been updated for the DoS vulnerability but the version is still the same. See: http://www.freebsd.org/cgi/cvsweb.cgi/ports/security/clamav/ David Peall Systems Administrator Western Cape Schools' Network http://www.wcsn.org.za/ PO Box 44460, Claremont 7735, Cape Town Fax +27 (021) 683-6766, Helpdesk +27 (021) 674-9140 > -----Original Message----- > From:

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200803-25 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Dovecot:

Has Centos been tested for this yet? -------- Original Message -------- Subject: [Full-disclosure] [ GLSA 200507-05 ] zlib: Buffer overflow Date: Wed, 06 Jul 2005 16:23:20 +0200 From: Thierry Carrez <koon at gentoo.org> Organization: Gentoo Linux To: gentoo-announce at lists.gentoo.org CC: full-disclosure at lists.grok.org.uk, bugtraq at securityfocus.com, security-alerts at

I have a machine where several of my installed applications are getting way behind. It is not a mission critical server, but I need it to be stable (I have all fairly old well supported hardware, nothing special). Since updating and rebuilding all the ports is pretty much mandatory for the upgrade to 7.x and I plan to take that path soon, would most people consider 7.1RC2 stable enough for a

I'm not subscribed to this list; but I read that Matthew Dillon has ported the dvd+rw tools to FreeBSD. I just compiled and installed the application; but I can't burn to a DVD+RW on a Sony DRU-500A. command: growisofs -Z /dev/acd0c -rl ./testfile result: ":-( unable to CAMGETPASSTHRU for /dev/acd0c: Inappropriate ioctl for device" The DVD+RW website:

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Has anyone see this alert? http://www.securityfocus.com/archive/1/353352 It seems to work on Linux, but when I tried the proof of concept on 4.3.0,1 running 5.2 RELEASE, I couldn't get the X server to core dump or segmentation fault. So, it seems likely to me that FreeBSD is not vulnerable to this. Any other thoughts on this matter? John

That's where I first went for information. I've successfully burned a CD-R using cdrecord, as opposed to burncd, which I would normally use for ide burners. I will check on the firmware. Thanks, Andrew Gould --- "Thomas T. Veldhouse" <veldy@veldy.net> wrote: > Try visiting > http://fy.chalmers.se/~appro/linux/DVD+RW/ and make > sure your > hardware is

In May I sent out a draft security vulnerability process. Mostly it seems to have met with approval or at least acquiescence. We received some comments and based on that I have prepared a new final draft. The changes ought not to be controversial. Please send any final comments by the 28th of July (14 days from now). Unless there are objections, we will regard the process as formally in force

Hi all, I use FreeBSD for severals years and this Project now have a possibility the full security update (src) with freebsd-update, is really great for Release users but is break for Stable user. Ok !!! Exist a possibility for apply manual patch and compile issue, but for me problem existe in fix kernel issue in stable branch because is require a update for last stable and this

Sorry about my pretty stupid question :-( I should have been dug a bit deeper... And I actually discoverer the -U parameter shortly after sending the mail to the list. But I didn't know how to cancel it... Sorry about that... On Sun, Jun 10, 2018 at 1:20 PM Rowland Penny via samba <samba at lists.samba.org> wrote: > > On Sun, 10 Jun 2018 12:38:43 +0300 > Alexei Rozenvaser via

Hello, The current png-1.2.5_4 port has no more vulnerability. It has been corrected by ache@FreeBSD.org yesterday. But when i try to install the updated port to remplace the vulnerable one this is what i am told : # make install ===> png-1.2.5_4 has known vulnerabilities: >> libpng denial-of-service. Reference:

Greetings, Peter and the Security Officers team, There is a minor security vulnerability in cvs prior 1.11.10, as described in CAN-2003-0977: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0977 On December 10th, 2003, itojun has imported cvs 1.11.10 into NetBSD, as the follows: http://mail-index.netbsd.org/source-changes/2003/12/10/0025.html

Hello When I run following command on my samba DC: sudo samba-tool dns serverinfo localhost (or other DC on same domain) samba-tool asks for: Password for [MyAD-DomainName\root]: But there is no root user at the domain. Domain Administrator name at mu domain is "admin". If I enter admin's password for Password for [MyAD-DomainName\root]: promt - I get: Connecting to DNS RPC

Im running in a chroot'd environment: RH 9.0 lame-3.93.1 icecast-2.0.0 LiveIcePatched-1.0.0 xmms-1.2.7 I was able to get icecast running on port 8000, I was able to get liveice compiled and can see the .so file within xmms. Im pretty sure I have xmms configured to match my icecast config(passwords and mount points for source match). When I start up xmms I get the following error in my

Jacques A. Vidrine wrote: > On Mon, Mar 29, 2004 at 08:14:29PM +0200, Oliver Eikemeier wrote: > >>Jacques A. Vidrine wrote: >> >>>On Sun, Mar 28, 2004 at 03:44:06PM -0800, Oliver Eikemeier wrote: >>> >>>>eik 2004/03/28 15:44:06 PST >>>> >>>>FreeBSD ports repository >>>> >>>>Modified files:

http://bugs.freedesktop.org/show_bug.cgi?id=13778 Summary: DMA queue hang Class 0x0397 Mthd 1808, FX5600 Product: xorg Version: unspecified Platform: Other OS/Version: All Status: NEW Severity: normal Priority: medium Component: Driver/nouveau AssignedTo: nouveau at lists.freedesktop.org

Hey We have a static analyzer setup for Xen called Coverity. It allows the code to be inspected for bugs and such. Originally I setup this so that we could make sure that there are no bugs that cause security issues - and as such invited only folks on the security Xen mailing list. But there are other folks who I am sure would like to contribute and as Coverity is pretty amazing at analyzing

Hi I just want to say that I have done a new release of my Prototype Window Class ( http://blogus.xilinus.com/pages/javawin ) I added few things according to a lot of emails I got. Not sure if it''s the correct mailing list to use. If not let me know where I can post this announce. Thanks Seb

>I am trying to compile R-0.65 on a Sparc 20. I have gcc 2.7.2.2 and I >have SC4.0. I used gcc to compile R-0.64.2 in July with no problems. >Now when I run configure for R-0.65 I get the following message: > >>checking whether the C compiler (gcc ) works... no >>configure: error: installation or configuration problem: C compiler cannot create executables. > >and

I am trying to compile R-0.65 on a Sparc 20. I have gcc 2.7.2.2 and I have SC4.0. I used gcc to compile R-0.64.2 in July with no problems. Now when I run configure for R-0.65 I get the following message: >checking whether the C compiler (gcc ) works... no >configure: error: installation or configuration problem: C compiler cannot create executables. and then configure exits. I had no