Author Archives: Christer Edwards

GNOME 2.30 Released

I am happy to pass on the announcement that GNOME has released 2.30, and exactly on schedule! This release brings a number of great improvements that I’m sure you’ll be happy with in the upcoming Ubuntu release. Because Ubuntu bases its releases after the GNOME release schedule, each GNOME release means an Ubuntu release is… Read More »

[USN-896-1] Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities

The following security announcement applies to firefox and xulrunner. If you have firefox and xulrunner installed, please see below for details on the vulnerability and instructions on patching your system: Several flaws were discovered in the browser engine of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause… Read More »

[USN-895-1] Firefox 3.0 and Xulrunner 1.9 vulnerabilities

The following security announcement applies to firefox and xulrunner. If you have firefox and xulrunner installed, please see below for details on the vulnerability and instructions on patching your system: Several flaws were discovered in the browser engine of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause… Read More »

[USN-901-1] Squid vulnerabilities

The following security announcement applies to squid. If you have squid installed, please see below for details on the vulnerability and instructions on patching your system: It was discovered that Squid incorrectly handled certain auth headers. A remote attacker could exploit this with a specially-crafted auth header and cause Squid to go into an infinite… Read More »

[USN-900-1] Ruby vulnerabilities

The following security announcement applies to libruby1.9 and ruby1.9. If you have libruby1.9 and ruby1.9 installed, please see below for details on the vulnerability and instructions on patching your system: Emmanouel Kellinis discovered that Ruby did not properly handle certain string operations. An attacker could exploit this issue and possibly execute arbitrary code with application… Read More »

[USN-899-1] Tomcat vulnerabilities

The following security announcement applies to libtomcat6-java. If you have libtomcat6-java installed, please see below for details on the vulnerability and instructions on patching your system: It was discovered that Tomcat did not correctly validate WAR filenames or paths when deploying. A remote attacker could send a specially crafted WAR file to be deployed and cause… Read More »

[USN-898-1] gnome-screensaver vulnerability

The following security announcement applies to gnome-screensaver. If you have gnome-screensaver installed, please see below for details on the vulnerability and instructions on patching your system: It was discovered that gnome-screensaver did not correctly handle monitor hotplugging. An attacker with physical access could cause gnome-screensaver to crash and gain access to the locked session. The… Read More »

[USN-897-1] MySQL vulnerabilities

The following security announcement applies to mysql-server. If you have mysql-server installed, please see below for details on the vulnerability and instructions on patching your system: It was discovered that MySQL could be made to overwrite existing table files in the data directory. An authenticated user could use the DATA DIRECTORY and INDEX DIRECTORY options… Read More »

KDE Software Compilation 4.4.0 Released

I would like to congratulate the KDE Community on the final release of the 4.4.0 series! KDE has very much improved in the 4.x series, and I am becoming more and more of a fan. It provides a very clean, polished interface and well implemented desktop integration. From the release announcement: Major new technologies have… Read More »

Category: KDE

[USN-894-1] Linux kernel vulnerabilities

The following security announcement applies to linux-image. If you have linux-image installed, please see below for details on the vulnerability and instructions on patching your system: ATTENTION: Due to an unavoidable ABI change (except for Ubuntu 6.06) the kernel updates have been given a new version number, which requires you to recompile and reinstall all… Read More »