Advisories

Mandriva Advisories

Updates for both security and non-functional packages are essential for a smooth-running system. Mandriva recommends that all users upgrade to the packages issued by any advisory to prevent problems with your system and unauthorized intrusion or denial of service attacks.

A graphical update utility called MandrivaUpdate is installed on your Mandriva Linux desktop. All you have to do is launch MandrivaUpdate to update your system through the GUI utility. The program lets you choose your FTP server within a list of server mirror. Then it fetches each update you have to make and lets you choose those you really need. In Mandrakelinux 8.x+, MandrakeUpdate has been replaced by the Software Manager.

Security update advisories are sent to the security mailing lists.

All security announcements and updated RPMs are signed with the GPG key of the Mandriva Security Team which is available for download.

Legend/Filters:

Security Update

Bugfix Update

General Update

Date		Advisory	Synopsis
	2002-10-15	MDKSA-2002:067	Future support for Linux-Mandrake 7.1 and Corporate Server 1.0.1 will be unavailable
	2002-10-10	MDKSA-2002:066	Updated tar packages fix directory traversal vulnerability
	2002-10-10	MDKSA-2002:065	Updated unzip packages fix directory traversal vulnerability
	2002-10-01	MDKSA-2002:063	Updated fetchmail packages fix various vulnerabilities
	2002-09-23	MDKSA-2002:061	Updated glibc packages fix Sun RPC vulnerability
	2002-09-10	MDKSA-2002:059	Updated php packages fix mail() vulnerability
	2002-09-04	MDKSA-2002:056	Loval root vulnerability in linuxconf
	2002-08-29	MDKSA-2002:054	Updated gaim packages fix URL-handling insecurities
	2002-08-28	MDKSA-2002:055	Updated hylafax packages fix multiple vulnerabilities
	2002-08-14	MDKSA-2002:052	Updated sharutils packages fix local file vulnerability
	2002-08-14	MDKSA-2002:051	Updated xchat packages fix /dns command insecurities
	2002-08-13	MDKSA-2002:050	Updated glibc packages fix buffer overflow
	2002-08-13	MDKSA-2002:049	Updated libpng packages fix buffer overflow
	2002-08-08	MDKSA-2002:048	Updated mod_ssl packages fix buffer overflow
	2002-08-08	MDKSA-2002:047	Updated util-linux packages fix temporary file race
	2002-08-06	MDKSA-2002:046-1	Updated openssl packages fix various vulnerabilities
	2002-07-30	MDKSA-2002:046	Updated openssl packages fix various vulnerabilities
	2002-07-29	MDKSA-2002:045	Updated mm packages fix temporary file vulnerability
	2002-07-17	MDKSA-2002:044	Updated squid packages fix multiple vulnerabilities
	2002-07-16	MDKSA-2002:043	Updated bind packages fix buffer overflow in resolver libs
	2002-07-04	MDKSA-2002:041	Updated kernel packages fix multiple vulnerabilities
	2002-07-02	MDKSA-2002:040-1	Updated openssh packaegs fix remote vulnerability
	2002-06-24	MDKSA-2002:040	Updated openssh packages provide privilege separation
	2002-06-22	MDKSA-2002:039-2	Updated apache packages fix remotely exploitable conditions
	2002-06-21	MDKSA-2002:039-1	Updated apache packages fix DoS vulnerability
	2002-05-28	MDKSA-2002:036	Updated fetchmail packages fix array bounds checking
	2002-05-27	MDKSA-2002:034	Updated imap packages fix buffer overflow vulnerability
	2002-05-21	MDKSA-2002:033	Updated webmin packages fix buffer overflow vulnerability
	2002-05-16	MDKSA-2002:032	Updated tcpdump packages fix buffer overflows
	2002-04-25	MDKSA-2002:029	Updated imlib packages fix image viewing vulnerabilities
	2002-04-25	MDKSA-2002:028	Updated sudo packages fix heap corruption vulnerability
	2002-04-16	MDKSA-2002:027	Updated squid packages fix DoS vulnerability
	2002-04-11	MDKSA-2002:026	Updated libsafe packages fix inadequate format string protection
	2002-03-20	MDKSA-2002:025	Instructions correcting insecure configuration of kdm
	2002-03-13	MDKSA-2002:024	Updated rsync packages fix multiple vulnerabilities
	2002-03-13	MDKSA-2002:023-1	Updated zlib-related packages fix double free vulnerability
	2002-03-12	MDKSA-2002:023	Updated zlib-related packages fix double free vulnerability
	2002-03-12	MDKSA-2002:022	Updated zlib packages fix double free vulnerability
	2002-03-07	MDKSA-2002:020	Updated mod_ssl packages fix a buffer overflow vulnerability
	2002-03-07	MDKSA-2002:019	Updated openssh packages fix local root vulnerability
	2002-02-28	MDKSA-2002:017	Updated php packages fix file upload vulnerability
	2002-02-26	MDKSA-2002:016-1	Updated squid packages fix dependency on openldap
	2002-02-21	MDKSA-2002:016	Updated squid packages fix several insecurities
	2002-02-15	MDKSA-2002:014	Updated ucd-snmp packages fix multiple vulnerabilities
	2002-01-31	MDKSA-2002:011	Updated gzip packages fix buffer overflow
	2002-01-28	MDKSA-2002:010	Updated enscript packages fix temporary file vulnerability
	2002-01-28	MDKSA-2002:009	Updated rsync packages fix unsigned insecurities
	2002-01-17	MDKSA-2002:006	Updated xchat packages fix CTCP vulnerability
	2002-01-17	MDKSA-2002:002-1	Updated mutt packages fix buffer overflow
	2002-01-15	MDKSA-2002:003	Updated sudo packages fix local root vulnerability
	2002-01-08	MDKSA-2002:002	Updated mutt packages fix buffer overflow
	2001-12-19	MDKSA-2001:095	Updated glibc packages fix buffer overflow vulnerability
	2001-12-19	MDKSA-2001:094	Updated libgtop packages fix buffer overflow and format string vulnerabilities
	2001-12-13	MDKSA-2001:092	Updated openssh packages fix local vulnerability with UseLogin
	2001-11-29	MDKSA-2001:090	Updated wu-ftpd packages fix potential remote root compromise
	2001-11-29	MDKSA-2001:089	Updated postfix packages fix potential remote DoS
	2001-11-27	MDKSA-2001:077-1	Updated apache packages fix a number of vulnerabilities
	2001-11-21	MDKSA-2001:088	Updated squid packages fix potential DoS
	2001-11-20	MDKSA-2001:086	Updated tetex packages fix temporary file insecurities
	2001-11-20	MDKSA-2001:085	Updated procmail packages fix crash insecurities
	2001-11-20	MDKSA-2001:082-1	Updated kernel 2.2 packages fix additional remote vulnerability
	2001-11-20	MDKSA-2001:053-1	Updated gnupg packages fix write permissions due to setgid bit
	2001-10-26	MDKSA-2001:082	Updated kernel 2.2 packages fix two local vulnerabilities
	2001-10-16	MDKSA-2001:081	Updated openssh packages fix dishonored key option
	2001-10-15	MDKSA-2001:080	Updated Zope packages fix insecurity with DTML scripting
	2001-09-21	MDKSA-2001:078	Updated uucp packages fix local vulnerability
	2001-09-18	MDKSA-2001:077	Updated apache packages fix path discovery vulnerability
	2001-09-12	MDKSA-2001:073-1	Updated xloadimage packages fix boundary check vulnerability
	2001-08-31	MDKSA-2001:074	Updated WindowMaker packages fix buffer overflow vulnerability
	2001-08-31	MDKSA-2001:073	Updated xli packages fix boundary check vulnerability
	2001-08-31	MDKSA-2001:072	Updated fetchmail packages fix input validation vulnerability
	2001-08-13	MDKSA-2001:069	Updated openldap packages fix invalid packet handling vulnerability
	2001-08-13	MDKSA-2001:068	Updated telnet packages fix buffer overflow vulnerability
	2001-07-25	MDKSA-2001:067	Updated elm packages fix buffer overflow vulnerability
	2001-07-25	MDKSA-2001:066	Updated squid packages fix httpd_accel_with_proxy vulnerability
	2001-07-18	MDKSA-2001:065	Updated openssl packages fix predictable PRNG vulnerability
	2001-07-05	MDKSA-2001:063	Updated fetchmail packages fix buffer overflow
	2001-06-29	MDKSA-2001:062	Updated samba packages fix %m macro vulnerability
	2001-06-20	MDKSA-2001:059	Updated webmin packages fix environment leaking vulnerabilities
	2001-06-20	MDKSA-2001:058	Updated ispell packages fix temporary file insecurities
	2001-06-13	MDKSA-2001:056	Updated tcpdump packages fix buffer overflows
	2001-06-11	MDKSA-2001:054	Updated imap packages fix several buffer overflow vulnerabilities
	2001-05-30	MDKSA-2001:053	Updated gnupg packages fix a format string vulnerability
	2001-05-25	MDKSA-2001:052	Updated ncurses packages fix buffer overflows
	2001-05-21	MDKSA-2001:040-1	Updated samba packages fix temporary file insecurities
	2001-05-21	MDKSA-2001:033-2	Updated openssh packages fix interoperability with older OpenSSH/SSH versions
	2001-05-15	MDKSA-2001:047-1	Updated pine packages fix menu entry updating for 7.1 and Corporate Server
	2001-05-10	MDKSA-2001:051	Updated minicom packages fix format string vulnerabilities
	2001-05-10	MDKSA-2001:050	Updated vixie-cron packages fix local root vulnerability
	2001-05-10	MDKSA-2001:049	Updated Zope packages fix security problem with ZClass permission mappings
	2001-05-07	MDKSA-2001:047	Updated pine packages fix temporary file vulnerabilities
	2001-05-03	MDKSA-2001:045	Updated gnupg packages fix various insecurities
	2001-04-27	MDKSA-2001:044	Updated gftp packages fix format string vulnerability
	2001-04-25	MDKSA-2001:042	Updated nedit packages fix temporary file vulnerability
	2001-04-24	MDKSA-2001:041	Updated hylafax packages fix potential root exploit in hfaxd
	2001-04-20	MDKSA-2001:040	Updated samba packages fix temporary file insecurities
	2001-04-18	MDKSA-2001:038	Updated netscape packages fix improper GIF parsing
	2001-04-17	MDKSA-2001:037	Updated kernel packages fix a number of serious security flaws
	2001-04-06	MDKSA-2001:036	Updated ntp and xntp3 packages fix buffer overflows that can lead to remote root compromise
	2001-03-27	MDKSA-2001:035	Updated vim packages fix parsing of malicious VIM codes embedded in documents
	2001-03-22	MDKSA-2001:034	Updated timed packages fix remote Denial of Service vulnerability
	2001-03-22	MDKSA-2001:033	Updated openssh packages enhance prevention of passive analysis of ssh traffic
	2001-03-20	MDKSA-2001:032	Updated licq packages fix URL parsing vulnerability
	2001-03-20	MDKSA-2001:030-1	Updated sgml-tools packages fix dependancy issues for 7.1 and Corporate Server
	2001-03-19	MDKSA-2001:031	Updated mutt packages fix format string vulnerability
	2001-03-15	MDKSA-2001:030	Updated sgml-tools packages fix insecure handling of temporary files
	2001-03-09	MDKSA-2001:028	Updated slrn packages fix buffer overflows
	2001-03-07	MDKSA-2001:027	Updated eperl packages fix potential buffer overflows
	2001-03-06	MDKSA-2001:026	Updated joe packages fix vulnerability with .joerc files in CWD
	2001-02-26	MDKSA-2001:025	Updated Zope packages fix vulnerabilities with ZClass instances
	2001-02-20	MDKSA-2001:022	Updated vixie-cron packages fix buffer overflow problem with crontabs
	2001-01-31	MDKSA-2001:019	Updated xemacs packages fix buffer overflow issues
	2001-01-31	MDKSA-2001:018	Updated kdesu packages fix potential local root compromise
	2001-01-29	MDKSA-2001:017	Updated bind packages fix multiple vulnerabilities
	2001-01-26	MDKSA-2001:016	Updated webmin packages fix temporary file insecurities
	2001-01-26	MDKSA-2001:015	Updated exmh packages fix temporary file insecurities
	2001-01-26	MDKSA-2001:014-1	Updated MySQL packages fix buffer overflow problems
	2001-01-18	MDKSA-2001:012	Updated glibc packages fix security problems with LD_PRELOAD variable and SUID/SGID applications
	2001-01-15	MDKSA-2001:001-2	Updated wu-ftpd packages fix incorrect pam support file
	2001-01-12	MDKSA-2001:011	Updated linuxconf packages fix potential temp file race
	2001-01-12	MDKSA-2001:001-1	Updated wu-ftpd packages fix incorrect dependency on xinetd
	2001-01-10	MDKSA-2001:008-1	Updated diffutils packages fix potential temp file race

URL:

https://mandriva.com/security/advisories

Short link:

https://mandriva.com/content/view/full/1075

Intersites Menu

Mandriva

Tools

Top menu

Advisories

Footer