code execution

Fedora has updated imlib (F8, F9, F10: buffer overflow), nagios (F10: authorization bypass), and php-smarty (F10: PHP code execution).

SUSE has updated firefox, thunderbird, and seamonkey (lots of vulnerabilities).

MozillaZine reports on release of new versions of Mozilla Firefox and SeaMonkey.

"Mozilla Firefox 3.0.4, Mozilla Firefox 2.0.0.18 and SeaMonkey 1.1.13 have been released. These releases contain several critical security updates, which include patches for crashes and remote code execution.

All users are encouraged to update to the latest versions."

Mozilla released Firefox 3.0.4 , Firefox 2.0.0.18 , and SeaMonkey 1.1.13 to address a number of security issues, including information stealing via local shortcut files, crash and remote code execution in ...

CentOS has updated httpd (denial of service) and gnutls (identity spoofing).

Fedora has updated blender (F8, F9: local code execution), gnutls (F8, F9: identity spoofing), and kvm (F8: heap overflow).

Ubuntu has updated netpbm (buffer overflow), kernel modules (buffer overflow).

SUSE has updated yelp, apache2, enscript, libcdaudio (various issues).

Mandriva has updated ruby (multiple vulnerabilities), the kernel (multiple vulnerabilities).

There's only one security update in the LWN mailbox today: Mandriva has updated lynx (two code execution vulnerabilities, one with a 2006 CVE number).

Fedora 8 has updated phpMyAdmin (code execution vulnerability), phpMyAdmin (cross-site scripting vulnerability), rkhunter (insecure temp file) and viewvc (ignore user-provided MIME types).

Mandriva has updated opensc (unauthorized PIN change) and wordnet (code execution vulnerability).

Ubuntu has updated libtiff (code execution).

UNIX based environments, such as IBM's AIX, furnishes such an operating environment while providing efficient uni-processor utilization for user code execution.

August 26, 2008 - 1 hour, 13 minutes ago Share Comments The Linux-Embedded discussion list has been abuzz the last two days over a flash filesystem designed to support binary code execution .