* Patches from HP, Mandrake Linux, SCO, others * Beware the latest variant of the Minmail worm * Symantec CEO warns of new threats, and other interesting reading Today’s bug patches and security alerts:HP patches buffer overflow in Software DistributorA potential stack overflow in the HP-UX Software Distributor utilities could be exploited by a local user to gain root privileges on the affected machine, according to an alert from NSFOCUS. For more, go to:NSFOCUS alert: https://www.nsfocus.com/english/homepage/research/0307.htmHP patch information: https://www.nwfusion.com/go2/1117bug2a.htmlHP releases patches for flaw in libcAccording to an alert from NSFOCUS, “the libc in HP-UX cannot restrict the NLSPATH variable used by suid root program, which causes a format string vulnerability. Exploiting the vulnerability local attacker could gain root privilege.” For more, go to:NSFOCUS alert:https://www.nsfocus.com/english/homepage/research/0308.htmHP patch information: https://www.nwfusion.com/go2/1117bug2b.html**********Apple issues security updates for Mac OS X v10.2.8 “Jaguar” and Mac OS X Server v10.2.8These updates roll a number of flaws found in the Mac OS X and OS X Server operating systems. For more, go to: Security update 2003-11-19 for Jaguar 10.2.8:https://www.info.apple.com/kbnum/n120277Security Update 2003-11-19 for Panther 10.3.1:https://www.info.apple.com/kbnum/n120278**********Mandrake Linux issues patch for fileutilsA buffer overflow vulnerability has been found in Mandrake Linux’s “ls” directory listing command found the fileutils package. The flaw could be exploited in a denial-of-service attack. The fix can be downloaded here:https://www.nwfusion.com/go2/1117bug2c.html**********Red Hat, Mandrake Linux release fix for glibcA buffer overflow flaw in glibc’s getgrouplist function could be exploited in a denial-of-service attack against the affected machine. For more, go to:Red Hat:https://rhn.redhat.com/errata/RHSA-2003-325.htmlMandrake Linux:https://www.nwfusion.com/go2/1117bug2d.html**********Debian fixes HylafaxA format string vulnerability in the Hylafax application could be exploited to run an attacker’s code of choice on the affected machine. For more, go to:https://www.debian.org/security/2003/dsa-401Debian patches minimalistA vulnerability in minimalist, a mailing list manager for Debian, could be exploited to run arbitrary code on the affected machine. For more, go to:https://www.debian.org/security/2003/dsa-402**********SCO release patch for GnuPG 1.2.2A key validation vulnerability in GnuPG 1.2.2 may give users elevated privileges. A fix is available. For more, go to:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-034.0.txtSCO fixes flaw in OpenLinux Webmin/UserminA bug in the way session IDs are created and verified by Webmin/Usermin could be exploited by a malicious user to gain unauthorized access to the management interface. This access could be used to run arbitrary code on the affected machine. For more, go to:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-035.0.txtSCO patches sendmail prescanA remotely exploitable vulnerability has been found in the sendmail prescan() function. Versions of send mail through 8.12.9 are affected. For more, go to:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-036.0.txtSCO updates NFS utils packageAn “off-by-one” vulnerability has been found in the NFS utils package in SCO OpenLinux. There’s some debate over how this flaw can be exploited, but there is a potential for a denial-of-service attack or even code execution. For more, go to:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-037.0.txt**********Today’s bug patches and security alerts:W32/Mimail-J – Yet another variant of the Mimail worm. This one tries to obtain the victim’s social security number and mother’s maiden name via a faked PayPal Web page. (Sophos)Troj/Tofger-A – A keylogging Trojan horse that captures all information entered into Internet Explorer. The virus arrives via e-mail with a password-protected ZIP file called “MyProfile.zip”. (Sophos)**********From the interesting reading department:Attack code surfaces for latest Windows vulnerabilityComputer code that exploits a critical new software vulnerability in the Windows XP and Windows 2000 operating systems is circulating on the Internet, according to security experts. IDG News Service, 11/17/03.https://www.nwfusion.com/news/2003/1117attaccode.htmlHackers live by own codeSure, they break into computer systems, but not always with bad intent. And these tech whizzes do have certain quirky rules of etiquette. Los Angeles Times, 11/19/03.https://www.nwfusion.com/go2/1117bug2e.htmlWebsite security: How many times do shops have to be warned?In the space of four days silicon.com has revealed two serious security flaws on major UK shopping websites. Silicon.com, 11/17/03.https://www.nwfusion.com/go2/1117bug2f.htmlSymantec CEO warns of new threatsJohn Thompson, Symantec chairman and CEO, delivered a call to arms to Comdex attendees Wednesday, when he detailed how the more business is done on the Internet, the more everyone needs to do their part to secure the wired, and wireless, world. Network World Fusion, 11/19/03.https://www.nwfusion.com/news/2003/1119symceo.htmlCisco partners to shut down wireless worm infectionsNetworking equipment maker Cisco Tuesday announced licensing agreements with three leading anti-virus software companies and a new program that it said will protect computer networks from worms and viruses. IDG News Service, 11/18/03.https://www.nwfusion.com/news/2003/1118ciscoantiv.htmlRed Hat offers new security courseRed Hat Tuesday said it is offering a new training course, designed to improve the security skills of users. The course, called RH423 Red Hat Enterprise Directory Services and Authentication, will cover directory services, authentication and security configuration for companies running Red Hat Enterprise Linux 3 (RHEL 3), Red Hat said. IDG News Service, 11/18/03.https://www.nwfusion.com/news/2003/1118redhato.htmlEU to vote on creating European Network and Information Security AgencyOn Wednesday 19/11, the European Parliament will vote on the proposal to establish the European Network and Information Security Agency (ENISA). PublicTechnology.net, 11/17/03.https://www.nwfusion.com/go2/1117bug2g.html Related content news VMware stung by defections and layoffs after Broadcom close Layoffs and executive departures are expected after an acquisition, but there's also concern about VMware customer retention. By Andy Patrizio Nov 30, 2023 3 mins Virtualization Data Center Industry news US will take decades for supply chain independence in chips: Nvidia CEO Jensen Huang pointed out that Nvidia’s latest AI servers have 35,000 parts from all over the world, including Taiwan. By Sam Reynolds Nov 30, 2023 4 mins CPUs and Processors Technology Industry news Why are 5G private networks failing to take off in India? Lack of clarity on spectrum allocation coupled with high capital expenditure are leading to low uptake of 5G-enabled private networks in India. By Gagandeep Kaur Nov 30, 2023 5 mins Private 5G news HPE goes all-in for AI with new hybrid cloud compute, storage products At its annual Discover conference, HPE debuted a range of hybrid cloud offerings designed to allow enterprises to optimize generative AI model development and implementation. By Sascha Brodsky Nov 30, 2023 6 mins CPUs and Processors CPUs and Processors CPUs and Processors Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe