Language Selection

English French German Italian Portuguese Spanish

Other Security Advisories

Filed under
Security

Less critical

Description:
Gentoo has issued an update for phpmyadmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attack.

Solution:
Update to "dev-db/phpmyadmin-2.6.2_rc1" or later.

Link

Hightly Critical

Description:
SUSE has issued an update for kdelibs3. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service), spoof the URL displayed in an address bar and status bar, or potentially compromise a vulnerable system.

Solution:
Apply updated packages.

Link

Moderately critical

Description:
Andreas Constantinides has reported a vulnerability in the zOOm Media Gallery module for Mambo, which can be exploited by malicious people to conduct SQL injection attacks.

Input passed to the "catid" parameter in "index.php" isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability has been reported in version 2.1.2. Other versions may also be affected.

Solution:
Edit the source code to ensure that input is properly sanitised.

Link

More in Tux Machines

Leftovers: Software

today's howtos

Leftovers: Gaming

Mozilla Firefox 32 Officially Released

It's been a little over a month since the previous Firefox stable release and the developers have now pushed a new major update to users. This latest iteration of Firefox brings just a few major features for regular users, but it excels in other areas like better HTML 5 support. The official announcement for Mozilla Firefox 32 hasn't been made public just yet, but the mirrors now host the latest stable versions. It will take them a while to post anything official, and some time may go by until this new release hits the repositories, but you now can get to see what has changed. Read more