Current e-BulletinThe CCIP e-Bulletin provides a snapshot of security related news.
Read More
Latest Information Note VoIP. This report outlines characteristics and history of VoIP.
Read More
New Zealand Goverment

May 2008

The following table includes the Vulnerability Alerts for the month.

Note: These links reference external sites. CCIP can not accept responsibility for outdated links or such links contents.
Reference Description Date
Apple
Mac OS X Security Update Fixes Multiple Vulnerabilities
30/05/08
imlib2
PNM and XPM Buffer Overflow Vulnerabilities
30/05/08
Secunia
Power Audio CD Grabber NCTAudioInformation2 ActiveX Control BufferOverflow
30/05/08
Secunia
Power Audio CD Burner NCTAudioInformation2 ActiveX Control BufferOverflow
30/05/08
Red Hat
Hat update for samba
29/05/08
Gentoo
Update for roundup
29/05/08
rPath
Update for php
29/05/08
OpenSSL
Two Denial of Service Vulnerabilities
29/05/08
Adobe
Flash Player Unspecified Vulnerability
29/05/08
Samba
"receive_smb_raw()" Buffer Overflow Vulnerability
29/05/08
Debian
Update for linux-2.6
29/05/08
Creative
Software AutoUpdate Engine ActiveX Control Buffer Overflow
29/05/08
Slackware
Update for rdesktop
29/05/08
Motorola
RAZR JPEG Processing Buffer Overflow
29/05/08
rPath
Update for emacs
29/05/08
Cisco
Service Control Engine SSH Server Denial of ServiceVulnerabilities
28/05/08
Cisco
IOS SSH Server Denial of Service
28/05/08
Red Hat
update for vsftpd
28/05/08
Gentoo
Update for gnutls
28/05/08
Ubuntu
Update for gnutls
28/05/08
IBM
Lotus Sametime Community Services Multiplexer Buffer Overflow
28/05/08
Xerox
WorkCentre Web Server Unspecified Script Insertion
28/05/08
Apple
iCal Memory Corruption Vulnerability
28/05/08
Fedora
Update for vsftpd
28/05/08
Debian
Update for xine-lib
28/05/08
Slackware
Update for php
28/05/08
Slackware
Update for mozilla-thunderbird
28/05/08
Mambo
Multiple Vulnerabilities
28/05/08
Debian
Update for speex
26/05/08
Debian
Update for gnutls13
23/05/08
Debian
Update for gnome-peercast
23/05/08
Gentoo
Update for perl and libperl
23/05/08
Debian
Update for peercast
23/05/08
Debian
Update for phpgedview
23/05/08
GnuTLS
Multiple Vulnerabilities
23/05/08
Borland
Interbase 2007 Packet Processing Buffer Overflow
23/05/08
Red Hat
update for gnutls
22/05/08
Gentoo
Update for clamav
22/05/08
Gentoo
Update for Mozilla Products
22/05/08
IBM
Lotus Domino 6 Web Server Cross-Site Scripting and BufferOverflow
22/05/08
IBM
Lotus Domino Web Server Cross-Site Scripting and Buffer Overflow
22/05/08
Red Hat
update for libxslt
22/05/08
Fedora
Update for gnutls
22/05/08
PHP-Fusion
Forum Rank System Local File Inclusion
21/05/08
CA
ARCserve Backup Multiple Vulnerabilities
21/05/08
Debian
Update for netpbm-free
20/05/08
Debian
Update for php4
20/05/08
CMS
WebManager-Pro SQL Injection Vulnerabilities
20/05/08
GNU/Gallery
"show" Local File Inclusion Vulnerability
20/05/08
Symantec
Altiris Deployment Solution Multiple Vulnerabilities
19/05/08
Feedback
And Rating Script "listingid" SQL Injection
19/05/08
Fedora
Update for libvorbis
19/05/08
Cisco
Unified Presence SIP Proxy Service Denial of Service
19/05/08
Fedora
Update for rdesktop
19/05/08
Linux
Kernel Multiple Vulnerabilities
19/05/08
Gentoo
Update for openoffice and openoffice-bin
19/05/08
Cisco
Unified Communications Manager Multiple Denial of Service
19/05/08
rPath
Update for kernel
19/05/08
Fedora
Update for kernel
19/05/08
Fedora
Update for blender
19/05/08
Cisco
Catalyst Content Switching Module Memory Leak Vulnerability
19/05/08
PHP
Classifieds Script "fatherID" SQL Injection Vulnerabilities
19/05/08
Fedora
Update for clamav
19/05/08
LANAI
CMS Multiple File Extensions Vulnerability
19/05/08
Drupal
Site Documentation Module Information Disclosure
16/05/08
Fusebox
"FUSEBOX_APPLICATION_PATH" File Inclusion
16/05/08
CaLogic
"langsel" SQL Injection Vulnerability
16/05/08
AJ Auction
"item_id" SQL Injection Vulnerability
16/05/08
Gentoo
Update for cdf
16/05/08
Ubuntu
Update for openssh
16/05/08
CMS Made Simple
Multiple File Extensions Vulnerability
16/05/08
EMO Realty Manager
"ida" SQL Injection Vulnerability
16/05/08
e107 ZoGo-Shop Plugin
"cat" SQL Injection Vulnerability
16/05/08
Automated
Link Exchange Portal "cat_id" SQL Injection
16/05/08
The Real Estate Script
"docID" SQL Injection Vulnerability
16/05/08
libvorbis
Multiple Vulnerabilities
16/05/08
EQdkp
"eqdkp_data" SQL Injection Vulnerability
16/05/08
Ubuntu
Update for openvpn
16/05/08
RedHat
update for libvorbis
16/05/08
Meto Forum
Multiple SQL Injection Vulnerabilities
16/05/08
RedHat
update for libvorbis
16/05/08
AJ E-Commerce "cid"
SQL Injection Vulnerability
16/05/08
Ubuntu
Update for ssl-cert
16/05/08
WordNet
Multiple Buffer Overflow Vulnerabilities
16/05/08
Debian
Update for openssh
16/05/08
PhotoStore
Multiple SQL Injection Vulnerabilities
16/05/08
Advanced Image Hosting
"t" SQL Injection Vulnerability
16/05/08
Secunia
Chicken PCRE Buffer Overflow Vulnerability
15/05/08
Gentoo
Update for chicken
15/05/08
HP-UX
Ftp Server Unspecified Denial of Service
15/05/08
Ubuntu
Update for openssl
15/05/08
XEmacs
"fast-lock-mode" File Processing Vulnerability
15/05/08
GNU
Emacs "fast-lock-mode" File Processing Vulnerability
15/05/08
Gentoo
Update for ptex
15/05/08
Gentoo
Update for blender
15/05/08
Debian
Update for icedove
15/05/08
Battle.net
Clan Script "showmember" SQL Injection Vulnerability
15/05/08
Microsoft
Word Two Code Execution Vulnerabilities
14/05/08
Microsoft
Publisher Object Handler Validation Vulnerability
14/05/08
Microsoft
Malware Protection Engine File Parsing Denial of Service
14/05/08
Debian
OpenSSL Predictable Random Number Generator and Update
14/05/08
Fedora
Update for cups
14/05/08
Debian
Update for rdesktop
14/05/08
Gentoo
Update for firebird
14/05/08
Debian
Update for php5
14/05/08
Red Hat
Directory Server Regular Expression Handler Buffer Overflow
14/05/08
Fedora
Directory Server Regular Expression Handler Buffer Overflow
14/05/08
Gentoo
Update for pngcrush
14/05/08
Sarg
Multiple Unspecified Buffer Overflows
13/05/08
Gentoo
Update for inspircd
13/05/08
SUSE
Update for Multiple Packages
13/05/08
Sun
Solaris Print Service Unspecified Vulnerabilities
13/05/08
Joomla
DatsoGallery Component "sub_votepic.php" SQL Injection
13/05/08
Microsoft
Windows CE Image Processing Vulnerabilities
13/05/08
Fedora
Update for thunderbird
13/05/08
Fedora
Update for tkimg
13/05/08
Fedora
Update for sipp
13/05/08
Fedora
Update for zoneminder
13/05/08
Gentoo
Ltsp Multiple Vulnerabilities
13/05/08
Red Hat
update for gpdf
12/05/08
TFTP
Server SP Long Error Message Buffer Overflow
12/05/08
Ubuntu
Update for speex
12/05/08
Ubuntu
Update for gst-plugins-good0.10
12/05/08
Maian
Music Cross-Site Scripting and SQL Injection
12/05/08
Ubuntu
Update for vorbis-tools
12/05/08
Yahoo!
Assistant yNotifier.dll ActiveX Control Code Execution
12/05/08
Slackware
Update for thunderbird
12/05/08
Secunia
Maian Search Cross-Site Scripting and SQL Injection Vulnerabilities
12/05/08
Slackware
Update for php
12/05/08
Maian
Greetings Cross-Site Scripting and SQL InjectionVulnerabilities
12/05/08
Fedora
Update for clamav
09/05/08
Sun
Solaris Tk GIF Processing Buffer Overflow Vulnerabilities
09/05/08
Sun
Java System Web Server / Application Server JSP InformationDisclosure
09/05/08
Gentoo
Update for wireshark
09/05/08
Gentoo
Update for egroupware
09/05/08
Fedora
Update for xine-lib
09/05/08
IBM
Lotus Expeditor Client for Desktop "cai" URI Handler CodeExecution
09/05/08
Fedora
Update for squid
09/05/08
Fedora
Update for perl
09/05/08
HP-UX
WBEM Services OpenPegasus PAM Module Buffer Overflows
09/05/08
Fedora
Update for wordpress
09/05/08
Fedora
Update for KDE4
09/05/08
Fedora
Update for moin
09/05/08
Fedora
Update for lighttpd
09/05/08
Fedora
Update for dbmail
09/05/08
Fedora
Update for perl-Imager
09/05/08
rPath
Update for libpng
09/05/08
Fedora
Update for poppler
09/05/08
GNOME
PeerCast "HTTP::getAuthUserPass()" Buffer OverflowVulnerability
09/05/08
There are 91,500 Worldwide hits.
There are 44 NZ hits.
09/05/08
SNMPc
"SNMP TRAP" Packet Buffer Overflow Vulnerability
09/05/08
Red Hat
update for thunderbird
09/05/08
Nortel
Multimedia Communication Server PC Client Buffer Overflow
09/05/08
Hitachi
GR Series BGP UPDATE Message Processing Denial of Service
09/05/08
IBM
WebSphere Application Server Java Plugin Security Bypass
09/05/08
PHP
Multiple Vulnerabilities
09/05/08
Harris
WapChat Multiple File Inclusion Vulnerabilities
08/05/08
Novell
GroupWise WebAccess Script Insertion
08/05/08
Sun
Solaris SCTP Denial of Service Vulnerabilities
08/05/08
Debian
Update for cacti
08/05/08
Ubuntu
Update for openoffice.org
08/05/08
Ubuntu
Update for thunderbird
08/05/08
Debian
Update for kazehakase
08/05/08
Nuke
ET Security Bypass and Script Insertion Vulnerabilities
08/05/08
Gentoo
Update for horde
07/05/08
Gentoo
Update for horde
07/05/08
Debian
Update for blender
07/05/08
Ubuntu
Update for cups
07/05/08
Common
Data Format "Read32s_64()" Buffer Overflow Vulnerability
07/05/08
ITCms
Arbitrary PHP Code Execution Vulnerability
07/05/08
HP-UX
Update for Apache with PHP
07/05/08
Debian
Update for iceape
01/05/08
PhpGedView
Unspecified Vulnerability
01/05/08

About this Site & Accessibility | Legal, Privacy & Copyright Information | Sitemap | newzealand.govt.nz
Accessibility Page: 0 | Homepage: 1 | Sitemap: 2 | About CCIP: 4 | Vulnerabilities: 5 | Incidents: 6 | Newsroom: 7 | gcsb.govt.nz: 8 | Contact CCIP: 9 | Skip Link: [ | newzealand.govt.nz: /