Report an Incident

If you are a CNI organisation and you have encountered or suspect a cyber threat, please complete and return an Incident Reporting Form.

All incident reports provided to the CCIP are treated in the strictest of confidence. Please see our Confidentiality Charter for more details. Read More

New at CCIP

Current e-Bulletin The CCIP e-Bulletin provides a snapshot of security related news
Read More

Centre for Critical Infrastructure Protection

Home | Vulnerabilities | Vulnerability Alert Archives | April 2005

April 2005

The following table includes the Vulnerability Alerts for the month.

Note: These links reference external sites. CCIP can not accept responsibility for outdated links or such links contents.

Reference	Description	Date
Debian	Update for lsh-utils	28/04/05
Debian	Update for kdelibs	28/04/05
Gentoo	Update for xine-lib	28/04/05
Red Hat	Update for mozilla	28/04/05
Secunia	Unspecified IMAP and SMTP Vulnerabilities in MailEnable	27/04/05
Red Hat	Update for openoffice	27/04/05
Sun Solaris	Multiple libtiff Vulnerabilities	27/04/05
HP-UX	Mozilla Multiple Vulnerabilities	27/04/05
Netscape	GIF Image Netscape Extension 2 Buffer Overflow Vulnerability	27/04/05
Gentoo	Update for realplayer/helixplayer	27/04/05
Gentoo	Update for kdelibs	27/04/05
Xine	xine-lib RTSP and MMS Streams Buffer Overflow Vulnerabilitiesxine-lib RTSP and MMS Streams Buffer Overflow Vulnerabilities	27/04/05
Slackware	Slackware update for mozilla	27/04/05
Gentoo	KDE kimgio: PCX handling buffer overflow	26/04/05
xine	xine security announcement	26/04/05
Slackware	New Mozilla packages are available for Slackware	26/04/05
redhat	Update for firefox	26/04/05
Secunia	SGI Advanced Linux Environment Two Updates	26/04/05
Secunia	Red Hat update for realplayer/helixplayer	26/04/05
Fedora	Update for HelixPlayer	26/04/05
Apple	Security Update 2005-004	21/04/05
Sun	Sun Java System Web Proxy Server Unspecified Buffer Overflow	21/04/05
RealNetworks	Realplayer Enterprise RAM File Processing Buffer Overflow Vulnerability	21/04/05
redhat	Kernel security update	21/04/05
Oracle	Critical Patch Update April 2005	21/04/05
CVS	CVS Buffer Overflow and Denial of Service Vulnerabilities	21/04/05
Secunia	Mozilla Firefox Multiple Vulnerabilities	19/04/05
Secunia	Mozilla Multiple Vulnerabilities	19/04/05
US-CERT	TCP/IP implementations do not adequately validate ICMP error messages	19/04/05
iDEFENSE	McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability	19/04/05
PHP	PHP 4.3.11 Release fixes various security issues	19/04/05
Apple	Mac OS X v10.3.9 Update	19/04/05
Debian	New libexif packages fix arbitrary code execution	19/04/05
Sun	Security Vulnerability in the Generic Security Services Library libgss(3LIB)	19/04/05
Ubuntu	Update for libapache2-mod-php4 and php4-cgi	15/04/05
Sun	Java System Directory Server LDAP Request Buffer Overflow	15/04/05
Secunia	Fedora update for openoffice	15/04/05
Oracle	Multiple Vulnerabilities	14/04/05
Novell	Update for kdelibs3	13/04/05
Microsoft	Vulnerabilities in Microsoft Word May Lead to Remote Code Execution	13/04/05
Microsoft	Vulnerability in MSN Messenger Could Lead to Remote Code Execution	13/04/05
Microsoft	Vulnerability in Exchange Server Could Allow Remote Code Execution	13/04/05
Microsoft	Cumulative Security Update for Internet Explorer	13/04/05
Microsoft	Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service	13/04/05
Cisco	Crafted ICMP Messages Can Cause Denial of Service	13/04/05
Novell	SUSE Updates for Multiple Packages	12/04/05
SCO	UnixWare update for libtiff	11/04/05
Macromedia	ColdFusion MX Exposure of Class Files	11/04/05
Cisco	IOS IKE XAUTH Implementation Security Bypass Vulnerabilities	08/04/05
AusCERT	'Update your windows machine' fraudulent email	08/04/05
SGI	Advanced Linux Environment Multiple Updates	07/04/05
redhat	Update for tetex	05/04/05
Gentoo	Update for sylpheed / sylpheed-claws	05/04/05
Debian	Update for ImageMagick	05/04/05
Mandrake	Update for ImageMagick	05/04/05