Weekly Linux Security Roundup 08/26/07

Published by

Here a roundup of the latest security updates for Red Hat Enterprise Linux, Debian GNU/Linux, Mandriva, Ubuntu Linux, CentOS, Slackware, and Gentoo Linux Red Hat Enterprise Linux

- RHSA-2007:0860-01 Moderate: tar security update

Debian GNU/Linux

- DSA 1357-1: New koffice packages fix arbitrary code execution
- DSA 1358-1: New asterisk packages fix several vulnerabilities

Mandriva

- Security Announce MDKSA-2007:167 - Updated libvorbis packages fix vulnerabilities
- Security Announce MDKSA-2007:166 - Updated rsync packages fix off-by-one buffer overflow
- Security Announce MDKSA-2007:168 - Updated vim packages fix vulnerability
- Security Announce MDKSA-2007:169 - Updated gdm packages fix DoS vulnerability
- Security Announce MDKSA-2007:170 - Updated gimp packages fix input data validation issues in several plugins

Ubuntu Linux

- USN-499-1: Apache vulnerabilities
- USN-500-1: rsync vulnerability
- USN-501-1: jasper vulnerability
- USN-502-1: KDE vulnerabilities

CentOS

- CESA-2007:0671 Moderate CentOS 3 i386 kernel - security update
- CESA-2007:0671 Moderate CentOS 3 x86_64 kernel - security update
- CESA-2007:0860 Moderate CentOS 4 ia64 tar - security update
- CESA-2007:0860 Moderate CentOS 4 s390(x) tar - security update
- CESA-2007:0860 Moderate CentOS 5 i386 tar Update
- CESA-2007:0860 Moderate CentOS 5 x86_64 tar Update
- CESA-2007:0860 Moderate CentOS 4 x86_64 tar - security update

Slackware Linux

- tcpdump (SSA:2007-230-01)

Gentoo Linux

- GLSA 200708-15 Apache mod_jk: Directory traversal
- GLSA 200708-16 Qt: Multiple format string vulnerabilities
- GLSA 200708-17 Opera: Multiple vulnerabilities