Sorties

frugalware-1.3 (Haven)
Aug 23, 2010

frugalware-1.2 (Locris)
Mar 8, 2010

frugalware-1.1 (Getorin)
Sep 7, 2009

frugalware-1.0 (Anacreon)
Mar 22, 2009

frugalware-0.9 (Solaria)
Sep 9, 2008

frugalware-0.8 (Kalgan)
Mar 11, 2008

frugalware-0.7 (Sayshell)
Oct 13, 2007

frugalware-0.6 (Terminus)
Mar 22, 2007

frugalware-0.5 (Siwenna)
Sep 14, 2006

frugalware-0.4 (Wanda)
Mar 30, 2006

frugalware-0.3 (Trantor)
Oct 13, 2005

frugalware-0.2 (Aurora)
Apr 28, 2005

frugalware-0.1 (Genesis)
Nov 02, 2004

RSS

Dons

Fait une donation pour aider à nos efforts de développement.

Mises à jours récentes
xapps-extra/
 frugal-mono-tools
0.1.3-1-i686
xapps-extra/conky
1.8.0-3-x86_64
xapps-extra/conky
1.8.0-3-i686
devel-extra/toluapp
1.0.93-3-x86_64
devel-extra/toluapp
1.0.93-3-i686
xorg-drivers/
 xf86-input-mouse
1.5.0-4-i686
xorg-drivers/
 xf86-input-mouse
1.5.0-4-x86_64
xapps-extra/fotoxx
10.9-1-x86_64
games-extra/
 springlobby
0.100-1-x86_64
xapps-extra/fotoxx
10.9-1-i686

RSS
Langues
Changer de langue | Changer de langue | Changer de langue | Changer de langue | Changer de langue | Changer de langue | Changer de langue
Information
Go Frugalware, Go
Valid XHTML 1.0!
Valid CSS!
Valid RSS!
Informations serveur
Temps de fonctionnement:
2 jour(s) 12 h 59 m 42 s
Annonces de Sécurité Frugalware (FSAs)
Ceci est la liste des annonces de sécurité qui ont été faites pour la version stable actuelle de Frugalware
FSA693 - openoffice.org
Paquet:openoffice.org
Date:2010-08-29
Posté par:Miklos Vajna
Version vulnérable:3.2.1-4
Version non affectée:3.2.1-5haven1
Entrée de suivi des bugs:http://bugs.frugalware.org/task/4296
CVEs:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2935 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2936
Description:Charlie Miller has discovered two vulnerabilities in OpenOffice.org Impress, which can be exploited by malicious people to compromise a user's system. 1) An integer truncation error when parsing certain content can be exploited to cause a heap-based buffer overflow via a specially crafted file. 2) A short integer overflow error when parsing certain content can be exploited to cause a heap-based buffer overflow via a specially crafted file. Successful exploitation of the vulnerabilities may allow execution of arbitrary code.
FSA692 - phpmyadmin
Paquet:phpmyadmin
Date:2010-08-29
Posté par:Miklos Vajna
Version vulnérable:3.3.5-1
Version non affectée:3.3.5.1-1haven1
Entrée de suivi des bugs:http://bugs.frugalware.org/task/4294
CVEs:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3056
Description:Some vulnerabilities have been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks. 1) Input passed via the "field_str" parameter to db_search.php , the "delimiter" parameter to db_sql.php, the "sort" parameter to db_structure.php, the "db" parameter to js/messages.php, the "sort_by" parameter to server_databases.php, the "checkprivs", "dbname", "pred_tablename", "selected_usr[]", "tablename", and "username" parameters to server_privileges.php, the "DefaultLang" parameter to setup/config.php, the "cpurge", "goto", "purge", "purgekey", "table", and "zero_rows" parameters to sql.php, and the "fields[multi_edit][]" parameter to tbl_replace.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. 2) Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
© 2003-2010. The Frugalware Developer Team