Feeds
31307 items (31307 unread) in 89 feeds
-
Aviv Raff On .NET
(25 unread)
-
Bugtraq (bugtraq) Mailing List
(1379 unread)
-
CGISecurity.com: Your Web Site and Application Security Resource (334 unread)
-
christian's weblog (25 unread)
-
Irongeek's Security Site (261 unread)
-
Jeremiah Grossman (125 unread)
-
Heorot.net
(14 unread)
-
milw0rm.com (977 unread)
-
Nmap Hackers (nmap-hackers) Mailing List
(12 unread)
-
Rootsecure.net
(1640 unread)
-
SecuriTeam.com (435 unread)
-
Security Vulnerability Research & Defense (110 unread)
-
SecurityFocus News (317 unread)
-
-
Securityvulns news channel (970 unread)
-
SecWatch - Latest Exploit Alerts
(10 unread)
-
Taking Network Security to the Streets (28 unread)
-
The One And Only Matt Parnell.com
(74 unread)
-
The Register - Security (1399 unread)
-
-
VulnWatch (vulnwatch) Mailing List
(19 unread)
-
Web App Security (webappsec) Mailing List
(295 unread)
-
IceСμbeς (15 unread)
-
Linmagazine (500 unread)
-
netcraft Bytes :) (94 unread)
-
Blonde 2.0
(147 unread)
-
-
(IN)SECURE Magazine Notifications RSS
(42 unread)
-
0x000000 Security
(95 unread)
-
----- Anti-Malware ----- Analysis and Defense (16 unread)
-
Apple Fun (25 unread)
-
Technorati Search for: aviv.raffon.net (294 unread)
-
C.I.S.R.T.
(14 unread)
-
Determina Zero-Day Protection (6 unread)
-
Didier Stevens
(112 unread)
-
eEye Digital Security - Research Blog
(12 unread)
-
Ryan Naraine's Security Watch
(305 unread)
-
Security - RSS Feeds (667 unread)
-
Exploit Prevention Labs (28 unread)
-
Software Vulnerability Exploitation Blog (22 unread)
-
F-Secure Antivirus Research Weblog (276 unread)
-
Full Disclosure
(850 unread)
-
George Ou (10 unread)
-
GNUCITIZEN Media Portfolio
(151 unread)
-
ha.ckers.org web application security lab
(76 unread)
-
heise security (1116 unread)
-
invisiblethings' blog (48 unread)
-
Jeff Jones's blog
(13 unread)
-
JScript Blog (25 unread)
-
Matasano Chargen
(73 unread)
-
McAfee Avert Labs
(225 unread)
-
-
PandaLabs (143 unread)
-
-
SANS Internet Storm Center, InfoCON: green
(588 unread)
-
Latest Secunia Security Watchdog Blog Entries
(55 unread)
-
SecuriTeam Blogs (194 unread)
-
Security Fix (347 unread)
-
HP ASC Portal (30 unread)
-
Strike Center
(12 unread)
-
Sunbelt Blog (524 unread)
-
Sunnet Beskerming Security Advisories
(112 unread)
-
Technobabylon
-
The Recurity Lablog
(34 unread)
-
Wired: Threat Level (1037 unread)
-
TrendLabs | Malware Blog - by Trend Micro
(412 unread)
-
Uninformed Journal
(49 unread)
-
WabiSabiLabi's blog (23 unread)
-
WatchGuard Wire (95 unread)
-
Latest Blog Entires From WebSense Security Labs
(119 unread)
-
Hackszine.com
(457 unread)
-
DVLabs: Blogs
(130 unread)
-
Errata Security (133 unread)
-
-
PaulDotCom Community Blog (13 unread)
-
-
Billy (BK) Rios (29 unread)
-
David Litchfield's blog
(21 unread)
-
Farfromr00tin (27 unread)
-
aut disce, aut discede (17 unread)
-
pwn* (26 unread)
-
hackademix.net
(89 unread)
-
SecurityDot Vulnerabilities (1174 unread)
-
Vulnerabilities & Exploits
(87 unread)
-
Malicious Code
(100 unread)
-
Security Risks
(66 unread)
-
Digg / Security / upcoming (7613 unread)
-
-
DarkReading - Security News
(6 unread)
«
Expand/Collapse
Unread items (100)
-
DotNetNuke User Account Security Bypass Vulnerability
» SecurityDot VulnerabilitiesDotNetNuke User Account Security Bypass Vulnerability -
DotNetNuke User Account Security Bypass Vulnerability
» SecurityDot VulnerabilitiesDotNetNuke User Account Security Bypass Vulnerability
-
Vuln: DotNetNuke User Account Security Bypass Vulnerability
» SecurityFocus VulnerabilitiesDotNetNuke User Account Security Bypass Vulnerability -
Bugtraq: iDefense Security Advisory 06.26.09: HP Network Node Manager rping Stack Buffer Overflow Vulnerability
» SecurityFocus VulnerabilitiesiDefense Security Advisory 06.26.09: HP Network Node Manager rping Stack Buffer Overflow Vulnerability -
Bugtraq: MULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.x-->
» SecurityFocus VulnerabilitiesMULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.x--> -
Bugtraq: [ MDVSA-2009:141 ] mozilla-thunderbird
» SecurityFocus Vulnerabilities[ MDVSA-2009:141 ] mozilla-thunderbird -
Bugtraq: Re: Trillian SSL Certificate Vulnerability
» SecurityFocus VulnerabilitiesRe: Trillian SSL Certificate Vulnerability
-
11:55
Boing Boing: Corrupted files for sale to students to buy extra time
» Rootsecure.net -
11:55
H Security: SquirrelMail open source project's web server hacked
» Rootsecure.net -
11:55
H Security: Hole in VLC Media Player
» Rootsecure.netH Security: Hole in VLC Media Player -
11:55
H Security: Free extension for secure browsing
» Rootsecure.netH Security: Free extension for secure browsing -
11:55
The Register: PC repair techs police dangerous picture law
» Rootsecure.netThe Register: PC repair techs police dangerous picture law -
11:55
The Register: Why would anyone run their own base station?
» Rootsecure.netThe Register: Why would anyone run their own base station? -
11:55
BBC News: Music industry 'missed' Napster "The music industry would be in better shape now if it had engaged with Napster rather than fought it"
» Rootsecure.netBBC News: Music industry 'missed' Napster "The music industry would be in better shape now if it had engaged with Napster rather than fought it" -
11:55
Light Blue Touchpaper: The Economics of Privacy in Social Networks
» Rootsecure.netLight Blue Touchpaper: The Economics of Privacy in Social Networks -
11:55
The Register: ISPs vs BBC iPlayer - Missing the point?
» Rootsecure.netThe Register: ISPs vs BBC iPlayer - Missing the point? -
11:55
The Register: Copyfraud - Poisoning the public domain
» Rootsecure.netThe Register: Copyfraud - Poisoning the public domain -
11:55
Jakob Nielsen: Stop Password Masking "Usability suffers when users type in passwords and the only feedback they get is a row of bullets"
» Rootsecure.netJakob Nielsen: Stop Password Masking "Usability suffers when users type in passwords and the only feedback they get is a row of bullets"
-
Source Code to UAC Injection Flaw Released
» Digg / Security / upcomingHere at OSNews I have hammered and hammered on a few times already about the major flaw in Windows 7's default User Account Control, which allows people or software with malicious intent to completely bypass UAC in such an easy manner that you wonder why UAC is there in the first place. Well, the source code to this flaw has been released. -
Safeguard Your Orkut Profile
» Digg / Security / upcomingWith the spread of social networking came a whole lot of security concerns, especially for those who're actively involved and have a good amount of their personal information stored online. Orkut, being a slightly older social network, has been known to have quite a bit of nefarious activity going on. If you wish to secure yourself and your online -
Internet nazi Jay Rockefeller to ram thru cyber-bill in July
» Digg / Security / upcomingLast month, Obama pledged to personally select a cyber czar who would report to the National Security Council and National Economic Council, but the position remains vacant.Rockefeller's bill would have the Commerce Department devise a real-time IT monitoring program and require cyber standards for all federal agencies, contractors and grantees -
Free Trial:Kaspersky Internet Security 2010 and Anti-Virus20
» Digg / Security / upcomingMany people already download and used kaspersky Antivirus 2009,but Kaspersky Lab has realesed the most recent Kaspersky Internet security 2010 and Kaspersky Antivirus 2010.Kaspersky Internet Security 2010 give a protected and secure Internet experience and Anti-Virus 2010 offers PC security system -
Corporate Espionage
» Digg / Security / upcomingbriefly understanding corporate espionage and this is the easiest way to understand about it! and how dangerous it can be! -
Stealth iBot
» Digg / Security / upcominga latest form of keylogger i suppose! it can capture everything you do on your pc/laptop with just plugging in the device for 5 seconds, so they claimed!
-
Titsup airport express lane biz may pawn flyer data
» The Register - SecurityIf the feds Clear itDefunct American airport security lane service Clear said on Friday it may sell its sensitive customer data to a similar provider if it's authorized to do so by the US government.…
-
What is deffernce between Protective and Fashion Jackets?
» Digg / Security / upcomingThe leather jackets which men and women used to wear to look attractive and beautiful is called fashionable leather jackets. -
A Guaranteed Way to Remove Antivirus Agent Pro
» Digg / Security / upcomingThe Vundo trojan is designed to block most of the major virus protection software products and once it gets on a computer it starts to install rogue applications like Antivirus Agent Pro.Antivirus Agent Pro, spyzooka, antispyware -
Safe Surfing Without the Hassles Associated With Rogues....
» Digg / Security / upcomingPC Clean Pro is a rogue application designed to scam people out of money.PC Clean Pro, spyzooka, antispyware -
An Example of How CyberCrooks Will Use Michael Jackson
» Digg / Security / upcomingMichael Jackson spam spreads, malware attacks likely -
Change IP Address - Your IP Address and Your Privacy
» Digg / Security / upcomingYour IP address is a sort of electronic name tag your computer wears. When you log onto a website, it logs IP address. The problem is, if a criminal were to intercept this information, they could wreak digital havoc on you. -
Want to know how to identify leather defects ?
» Digg / Security / upcomingLeather is an incredibly wonderful natural fabric that's been used for thousands of years.No man made material has been able to surpass the natural beauty and toughness of leather but there are defects which may be caused during the life or after death of an animal.. -
Private Proxy � Stealing From Far Away
» Digg / Security / upcomingInternet crime has skyrocketed. The ability to commit crimes on the web is a much safer alternative than actually breaking into someone’s house and stealing. This way, the criminal can’t be caught at the crime scene; he is countries away! -
Personal Password Generator - March 20, 2008 | password lost
» Digg / Security / upcomingCustomize your password generator. 1.Complete control on what characters one can include or exclude 2. Generate Password sizes up to 60. 3. Generate up to 25 Passwords each go 4. Export into a text or Excel file 5. Display only the generator button. 6. Control size, text, pixel position of the generator button. -
How to Remove Terminator 2009, Uninstall Terminator2009 free
» Digg / Security / upcomingTerminator 2009 is a rogue software. It is a scareware, which tries to scare you that your computer is infected with lots of malware, and then it tries to sell you its full licensed version. -
Kaspersky Internet Security 2010 - Security Software
» Digg / Security / upcomingKaspersky Internet Security 2010, a internet security software, download to protect pc, make it security and fast, and ensure internet security. -
p3k pada komputer jika terserang virus | tanyaibnu.com
» Digg / Security / upcomingApa yang harus dilakukan jika komputer terinfeksi virus? Jangan buru-buru mengeluarkan ilmu Pasopati, alias “format” dan “instal ulang Windows”! Dalam beberapa kasus virus, seperti Conficker, ini tidak menyelesaikan masalah. Komputer akan terinfeksi lagi begitu dihubungkan dengan jaringan. -
Data Encryption Software: Alberta Hospital Loses Laptops
» Digg / Security / upcomingThe theft of two laptops on June 4th has affected 250,000 patients at the University of Alberta Hospital. The information on the two machines includes names, birth dates, personal health numbers, and test results for STDs. -
Secure Your E-Mail With Thunderbird and GnuPG
» Digg / Security / upcoming"The good news is that there's a completely free, open-source implementation of the OpenPGP standard called GNU Privacy Guard (or, more commonly, "GPG"). -
Win32 Qhost Virus
» Digg / Security / upcomingLearn to remove Win32 Qhost virus automatically with the help of powerful reliable software that recommended in deleting Win32 Qhost virus effectively. Please turn into safe mode before using the needed software and turn the system restore off. Hopefully the suggested automatic removal software capable to terminate computer virus win32 Qhost. -
Feds Mulling Incentives for Secure Software
» Digg / Security / upcomingTax breaks for better software? That's one idea on the table as officials work to flesh out government role in public-private partnerships. -
Internet a Sordid Mess Because of Microsoft Windows Zombies
» Digg / Security / upcoming"Cleaning the Spam Cesspool - Will Microsoft pay the bills? " -
U.N. Agency Eyes Web Anonymity Controls
» Digg / Security / upcoming(CNET) A United Nations agency is quietly drafting technical standards, proposed by the Chinese government, to define methods of tracing the original source of Internet communications and potentially curbing the ability of users to remain anonymous. -
Jackson’s Death Exploited by Spammers
» Digg / Security / upcomingIt’s like Thriller come to life: Ghouls coming out of dark corners of the Internet to grab Michael Jackson’s beloved fans. -
Process Information for winldra.exe | Get Rid Of Spyware...
» Digg / Security / upcomingProcess Information for winldra.exe | Get Rid Of Spyware Now!
-
Google mocks Bing and the stuff behind it
» The Register - SoftwareYou call this a cloud?Structure 09 Google has questioned Microsoft's entire approach to online infrastructure, while taking some wonderfully sly shots at the company's new decision engine search engine.…
-
WEP / WPA cheat sheets
» Digg / Security / upcomingThese days the internet is swamped with videos and tutorials that prove just how scarily easy it is to break into WEP "protected" networks as well as WPA "protected" networks with weak passwords. Given that, there's really no need for another one. But here I've compiled a couple of "cheat sheets" that just have the commands you need - no waffle.
-
Will the Antivirus Market Be Challenged or Complimented By Whitelisting?
» Security - RSS FeedsApplication whitelisting is being talked up by everyone from pure-play vendors like CoreTrace to larger security vendors like McAfee and Symantec. But while many say a hybrid blacklist/whitelist approach is needed, CoreTrace is positioning itself as an alternative to blacklist-based anti-virus.
- There has been plenty of talk in the past year or so among anti-virus vendors about the usefulness of application whitelisting. But when it comes to the question as to whether or not the technology can replace anti-virus, the subject gets a bit stickier. Whitelisting allows a list of approved file...
-
1:50
[Full-disclosure] [ MDVSA-2009:143 ] netpbm
» Full DisclosureFrom: security@mandriva.com
Date: Fri, 26 Jun 2009 23:43:00 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2009:143 http://www.mandriva.com/security/ _______________________________________________________________________ Package : netpbm Date : June 26, 2009 Affected: Corporate 4.0 _______________________________________________________________________ Problem Description: Multiple security vulnerabilities has been identified and fixed in netpbm: Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation (CVE-2008-3520). Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf (CVE-2008-3522). The updated packages have been patched to prevent this. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3520 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3522 _______________________________________________________________________ Updated Packages: Corporate 4.0: ee725813ce84328353f254deaae6fb37 corporate/4.0/i586/libnetpbm10-10.29-1.5.20060mlcs4.i586.rpm 2aa11003c3f25f8e8c24b77bb149651c corporate/4.0/i586/libnetpbm10-devel-10.29-1.5.20060mlcs4.i586.rpm 986bf041d7635b323627d1e22d1dcad5 corporate/4.0/i586/libnetpbm10-static-devel-10.29-1.5.20060mlcs4.i586.rpm 785b15f9024d98211c8dce6924db0a1b corporate/4.0/i586/netpbm-10.29-1.5.20060mlcs4.i586.rpm 3e1a668baa86c6b280ec7cd07547c93c corporate/4.0/SRPMS/netpbm-10.29-1.5.20060mlcs4.src.rpm Corporate 4.0/X86_64: d298f85e7e353913ac97ea15dc01a674 corporate/4.0/x86_64/lib64netpbm10-10.29-1.5.20060mlcs4.x86_64.rpm 70485d93a13188b2210a8024a96bc4f3 corporate/4.0/x86_64/lib64netpbm10-devel-10.29-1.5.20060mlcs4.x86_64.rpm 5c0f09c43181f26f57b0ced97be203ff corporate/4.0/x86_64/lib64netpbm10-static-devel-10.29-1.5.20060mlcs4.x86_64.rpm 3176c141b4a8b67f6418bb7ebe333675 corporate/4.0/x86_64/netpbm-10.29-1.5.20060mlcs4.x86_64.rpm 3e1a668baa86c6b280ec7cd07547c93c corporate/4.0/SRPMS/netpbm-10.29-1.5.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFKRSSJmqjQ0CJFipgRAujBAKDtyVM+3LrDfWdPPN/+L1zN84kJvwCfRtlT sB0NMhjI53zZSelwdUaTBrg= =APY8 -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
Google's Recommendations for Increasing Access to Gov. Info
» Digg / Security / upcomingGiven the tremendous volume of information online -- more than 1 trillion unique URLs and counting -- the ability for users to search for and find relevant content is critical. This couldn't be more true for the tens of millions of pages of content stored on government websites. Unfortunately, many agencies make it difficult or impossible for searc -
Networking Home Computers
» Digg / Security / upcomingWant to network your home computers? Here's how.
-
1:10
[Full-disclosure] [ MDVSA-2009:142 ] jasper
» Full DisclosureFrom: security@mandriva.com
Date: Fri, 26 Jun 2009 23:04:00 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2009:142 http://www.mandriva.com/security/ _______________________________________________________________________ Package : jasper Date : June 26, 2009 Affected: 2008.1, 2009.0, 2009.1, Corporate 4.0 _______________________________________________________________________ Problem Description: Multiple security vulnerabilities has been identified and fixed in jasper: The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed image files, as originally demonstrated using imagemagick convert (CVE-2007-2721). Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation (CVE-2008-3520). The jas_stream_tmpfile function in libjasper/base/jas_stream.c in JasPer 1.900.1 allows local users to overwrite arbitrary files via a symlink attack on a tmp.XXXXXXXXXX temporary file (CVE-2008-3521). Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf (CVE-2008-3522). The updated packages have been patched to prevent this. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2721 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3520 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3521 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3522 _______________________________________________________________________ Updated Packages: Mandriva Linux 2008.1: b415b975e60c3e47af3b67c21f89fde9 2008.1/i586/jasper-1.900.1-3.1mdv2008.1.i586.rpm 525a4213baf56dee4733976ebbf916af 2008.1/i586/libjasper1-1.900.1-3.1mdv2008.1.i586.rpm eda31571a90149b4bebdc976b5e04406 2008.1/i586/libjasper1-devel-1.900.1-3.1mdv2008.1.i586.rpm b974e8d5ef8992aec3b1031de47ac9f4 2008.1/i586/libjasper1-static-devel-1.900.1-3.1mdv2008.1.i586.rpm 01b1f3bcf707d3296f41a736c5bdc7ed 2008.1/SRPMS/jasper-1.900.1-3.1mdv2008.1.src.rpm Mandriva Linux 2008.1/X86_64: 5322cd4a5498e9e9a92777738d4aef90 2008.1/x86_64/jasper-1.900.1-3.1mdv2008.1.x86_64.rpm f7f0188142c7890148a643218016b809 2008.1/x86_64/lib64jasper1-1.900.1-3.1mdv2008.1.x86_64.rpm d11f1b52a11db1516ecf51fa2d863238 2008.1/x86_64/lib64jasper1-devel-1.900.1-3.1mdv2008.1.x86_64.rpm 7bf348d780f0392a2256fec32e1136f4 2008.1/x86_64/lib64jasper1-static-devel-1.900.1-3.1mdv2008.1.x86_64.rpm 01b1f3bcf707d3296f41a736c5bdc7ed 2008.1/SRPMS/jasper-1.900.1-3.1mdv2008.1.src.rpm Mandriva Linux 2009.0: 89674fae78d1e53361413798c598e53a 2009.0/i586/jasper-1.900.1-4.1mdv2009.0.i586.rpm 244e0d289c1ed9223d04d37cce6ac30c 2009.0/i586/libjasper1-1.900.1-4.1mdv2009.0.i586.rpm adfbe8cbdcf16177a9894753a36ac04d 2009.0/i586/libjasper1-devel-1.900.1-4.1mdv2009.0.i586.rpm 98d7a08e49d6b0b9c3b3ac45ee31fab2 2009.0/i586/libjasper1-static-devel-1.900.1-4.1mdv2009.0.i586.rpm 107b936e8361e9778077500205582db1 2009.0/SRPMS/jasper-1.900.1-4.1mdv2009.0.src.rpm Mandriva Linux 2009.0/X86_64: e48536726ba6c83c14fc4a3533c1aa72 2009.0/x86_64/jasper-1.900.1-4.1mdv2009.0.x86_64.rpm 9e756d8c55f33a7a58955c2c556e8b53 2009.0/x86_64/lib64jasper1-1.900.1-4.1mdv2009.0.x86_64.rpm a3a6ea3a8943d07096bdf2b6bffa905f 2009.0/x86_64/lib64jasper1-devel-1.900.1-4.1mdv2009.0.x86_64.rpm 9035b3ca72439aaadc0d0354ccb7d094 2009.0/x86_64/lib64jasper1-static-devel-1.900.1-4.1mdv2009.0.x86_64.rpm 107b936e8361e9778077500205582db1 2009.0/SRPMS/jasper-1.900.1-4.1mdv2009.0.src.rpm Mandriva Linux 2009.1: b11ffbb67ab917d95b23e3d71098da4d 2009.1/i586/jasper-1.900.1-5.1mdv2009.1.i586.rpm 0403d7db1343380b23c87845ad89539c 2009.1/i586/libjasper1-1.900.1-5.1mdv2009.1.i586.rpm 22cd4305bca44bbc47cb42e115514b7f 2009.1/i586/libjasper-devel-1.900.1-5.1mdv2009.1.i586.rpm 9e34a3304b35363853a3c733a87b03fb 2009.1/i586/libjasper-static-devel-1.900.1-5.1mdv2009.1.i586.rpm ba5e1fd525c267b49e3e5241a922185a 2009.1/SRPMS/jasper-1.900.1-5.1mdv2009.1.src.rpm Mandriva Linux 2009.1/X86_64: b4c00f01c5df8638bb4d76c44e4c88cc 2009.1/x86_64/jasper-1.900.1-5.1mdv2009.1.x86_64.rpm b4aefde111aba037a6738ccdd509f061 2009.1/x86_64/lib64jasper1-1.900.1-5.1mdv2009.1.x86_64.rpm e3a1dda206b8a383b0da6794198a2e02 2009.1/x86_64/lib64jasper-devel-1.900.1-5.1mdv2009.1.x86_64.rpm a66c98b93ebd2caca3ce4bb321e092b7 2009.1/x86_64/lib64jasper-static-devel-1.900.1-5.1mdv2009.1.x86_64.rpm ba5e1fd525c267b49e3e5241a922185a 2009.1/SRPMS/jasper-1.900.1-5.1mdv2009.1.src.rpm Corporate 4.0: 390256d639cfbc0f15bf6895b3b18450 corporate/4.0/i586/jasper-1.701.0-3.1.20060mlcs4.i586.rpm 44915a643d07e967fca1912bca97a03b corporate/4.0/i586/libjasper1.701_1-1.701.0-3.1.20060mlcs4.i586.rpm 5f4c0ecd6f5f5a7585b1e13f245a86d0 corporate/4.0/i586/libjasper1.701_1-devel-1.701.0-3.1.20060mlcs4.i586.rpm 374d797c523577b4b1839cdc52fe5664 corporate/4.0/i586/libjasper1.701_1-static-devel-1.701.0-3.1.20060mlcs4.i586.rpm 34a9fdad21246f55d452de585dd2bf95 corporate/4.0/SRPMS/jasper-1.701.0-3.1.20060mlcs4.src.rpm Corporate 4.0/X86_64: ba555966cb3df0218a682788d734a4b8 corporate/4.0/x86_64/jasper-1.701.0-3.1.20060mlcs4.x86_64.rpm 82405a393d7454a0da522d4b9cd5bd22 corporate/4.0/x86_64/lib64jasper1.701_1-1.701.0-3.1.20060mlcs4.x86_64.rpm 5443fe74af531fb8786de9d79f989433 corporate/4.0/x86_64/lib64jasper1.701_1-devel-1.701.0-3.1.20060mlcs4.x86_64.rpm 331aea54055a12468e48bcac1604b4c5 corporate/4.0/x86_64/lib64jasper1.701_1-static-devel-1.701.0-3.1.20060mlcs4.x86_64.rpm 34a9fdad21246f55d452de585dd2bf95 corporate/4.0/SRPMS/jasper-1.701.0-3.1.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFKRRjKmqjQ0CJFipgRAv9VAKCsQ/vsjSv5D4Kd3zRGitSJzwJflwCfbFIF UVglFwewEnLqlZH4+9FCP2E= =7zQK -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
0:58
Michael Jackson News Affects Web Traffic
» McAfee Avert LabsThe announcement of Michael Jackson’s death has caused immediate effects on the Web 2.0 world. The impact ranged from the interruption on Facebook of coverage of Farrah Fawcett’s death to a surge experienced by Twitter. The Web 2.0 world is definitely abuzz with traffic regarding his passing.
Within hours the percentage of “long-tail” URL traffic associated with Michael Jackson was growing. It peaked around 1 p.m. Eastern time today and now seems to be dropping. These URLs contained mostly generic information about Jackson–blogs, posts, tributes, photos, and collections of his entertainment past. And, yes, some even contained links to malware or rogue anti-virus software.
How do people find these URLs? We’ve seen spam, tweets, blog postings, group postings, and even mobile phone alerts. In addition, as predicted by Avert Labs, we’ve seen search-engine optimization (SEO) in action. There were several attempts to capitalize on redirecting users to known malware-serving sites associated with other SEO campaigns. We found it interesting during our research to see how fast some of the search engines seemed to respond to this. One popular keyword search done around 9 p.m. yesterday showed seven of the top 10 links going to some of these well-known malicious servers. That same search done an hour later showed only one of the top 10 involved.
As the entertainment industry continues to pay tribute and homage to Jackson, we expect that spam and SEO efforts will grow over the weekend. Eventually a new piece of news will replace this event, and there will be a new story–with much the same results.
-
Panic Hardware Manufacturers and Panic Hardware
» Digg / Security / upcomingPanic Hardware Manufacturers and Panic Hardware
-
0:50
[Full-disclosure] CoffeeWars X: Call for Beans
» Full DisclosureFrom: foofus@foofus.net
Date: Fri, 26 Jun 2009 22:35:55 +0100
====== ====== \ // \ // \ // \ // \// COFFEEWARS //\ // \ // \ // \ // \ ====== ====== by any beans necessary Can you believe that this will be the tenth CoffeeWar? Every year has brought adventure. The high-tech toaster. The year of only two entries. Shrdlu and Foofus getting stranded in an Albertson's parking lot after hours. We could go on. But going on would mean talking, and we haven't had our coffee yet. Still, ten years. That's a lot of years. This band of brewers has sipped its way through some of the best and lots of the worst. And we're back for more: dogged, jumpy, dedicated. Because it is our quest to find the best coffee. Because it is a powerful symbol to the world of what a few maniacs with some coffeepots can accomplish. Because we have been through so much together. As the bard wrote: "He today that sips this joe with me, Shall be my brother, be he ne'er so vile, This day shall gentle his condition; And sysadmins and hax0rs now-a-bed Shall think themselves accurs'd they were not here And hold their laptops cheap whiles any speaks That drank with us upon the con's op'ning." --W. Shakespeare, HENRY V (rejected early draft) At this point, it is customary for us to reiterate the rules, although we fully recognize that it's pointless: no matter how hard I hold down the shift key, someone won't get the message. But still: 1. Only whole beans. Your beans must not be ground. They must still be in bean form. 2. No decaf. Come on, seriously. A decaf CoffeeWar is like a drinking game with non-alcoholic beer. 3. No flavored beans. Just beans, nicely roasted. We're trying to taste the coffee, not other things, no matter how lovely. 4. Supply enough beans. We need to have enough to brew 2 pots, plus have some beans to inspect/smell. 1/4lb is a good amount. You will make Shrdlu (and others) happy if there is more (unless your beans suck; if they suck, leave them home). 5. Be swift. We start when the con opens. If you can't get your coffee submitted before that, please do it as quickly as you can, because we'll stop after a couple of hours. Perhaps a little illustration will help to bring home the subtleties of the situation: GOOFUS GALLANT 0 O /| /| / / Goofus shows up at noon and asks for Gallant arrives at the judging his entry to be accepted. table bright and early. Goofus brought Starbucks decaf fine- Gallant brings Jamaican Blue ground disembowel-mint flavor. Mountain. Or Kona. Whole beans. Easy enough, right? I know you can do it. I know you have what it takes to stand tall among the elite of CoffeeWars history. Prove me right. We do blind tasting. Why? Because we have a dream that one day contestants will be judged not by the logo on their submission, but by the content of their coffee pots. --Foofus. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -
0:20
Re: [Full-disclosure] Security Assessment of TCP at the IETF
» Full DisclosureFrom: Hal Wigoda
Date: Fri, 26 Jun 2009 17:41:58 +0100
sorry, but the links do not work. On Jun 25, 2009, at 11:28 PM, Fernando Gont wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > Hello, folks, > > In February this year the UK CPNI published the document "Security > Assessment of the Transmission Control Protocol (TCP)" (available at: > http://www.cpni.gov.uk/Docs/tn-03-09-security-assessment-TCP.pdf) > > Earlier this year we published an IETF Internet-Draft version of this > document (available at: > http://www.gont.com.ar/drafts/tcp-security/draft-gont-tcp-security-00.txt) > in the hope of having the IETF further work on the TCP security > paper UK > CPNI had published. > > My personal take (possibly biased, since I am the document author) > is that this document has been the result of a lot of work (including > the work of the many peple that reviewed the CPNI version of the > document), and that the IETF should take this chance to work and > publish > something on the subject. > > The chairs of the TCPM Working Group of the IETF are currently polling > the WG for input about this document. It would be great if you could > voice your opinion about whether the TCPM should take this document > on, > and also whether you would be willing to review this document. (Bellow > you'll find a copy of the TCPM chairs' poll) > > Please send your comments to tcpm@ietf.org (and please CC me). > > Thanks! > > Kind regards, > Fernando > > > > > - -------- Original Message -------- > Subject: [tcpm] poll for adopting draft-gont-tcp-security > Date: Wed, 24 Jun 2009 14:25:04 -0500 > From: Eddy, Wesley M. (GRC-MS00)[Verizon] <wesley.m.eddy@nasa.gov> > To: tcpm Extensions WG <tcpm@ietf.org> > > TCPMers, there was a thread a while ago about working on > draft-gont-tcp-security in this working group that didn't > conclusively give us a feeling one way or other: > http://www.ietf.org/mail-archive/web/tcpm/current/msg04489.html > > Basically, my understanding is that there are at least a > handful of people in the WG that think it should be done > here as a WG item (more likely for Informational rather > than BCP), and there are also some expressed opinions on > why it shouldn't. > > Given the raw size of the document, if the WG intends to > take this document on, then we need some people to clearly > commit to putting cycles into review and contributions to > the document. Since it is quite large, and to my knowledge, > there hasn't been a specific technical review of the content > on this list, but just discussions about if the idea in > general is a good or bad thing, we still need to know if > people are willing to invest their time and energy in this. > > Please let us know if there is traction for this in the > near term, and/or we can also discuss it in Stockholm. > > - --------------------------- > Wes Eddy > Network & Systems Architect > Verizon FNS / NASA GRC > Office: (216) 433-6682 > - --------------------------- > > _______________________________________________ > tcpm mailing list > tcpm@ietf.org > https://www.ietf.org/mailman/listinfo/tcpm > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (MingW32) > > iQEcBAEBCAAGBQJKRE58AAoJEJbuqe/Qdv/xCPoH/AhdvNcTejJqoOE1J/gDc2Yc > Iw+GIUgW73sWBuh0ib5oQxv85tvEjQzLOpQtNPdX6ljm96A7ufl3uzB6DBzj3JoF > O3mqRWf/yFgWxNA7Kmv/FFPf271CUHpnxbnoYBGSeHKb78lS3WnLJukW8F2l+FPl > 2QZJp0wn6/g2TJFgWoIHtrbHovHboZQtopzfyJWirzVeL+3dGinden3IH6HKDth/ > t+0kyxlN07sBQDqebNvif6nxf4xU7kPdUap4i00EKhH5WTr49XDD46E1sP9d695i > MhW1lhZ1jeVkjz/MycuotSKXN/JIiFM6NV5i3vm5vnOkgAjMou7iEULdG/0Xqn8= > =/HE4 > -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
CLEAR: Your data will be properly disposed of
» Digg / Security / upcomingDefunct registered traveler service CLEAR issues a statement about the disposal of its customers biometric and personal data. -
How to Avoid Getting Viruses
» Digg / Security / upcomingGood information on not getting viruses
-
0:04
Nmap news: stable release candidate 4.90RC1, SoC team, and new translations
» Nmap Hackers (nmap-hackers) Mailing ListPosted by Fyodor on Jun 26Hi Folks. I'm pleased to announce some exciting Nmap news:
[=================Nmap 4.90RC1==================]
It has been nearly 10 months (and 11 dev releases) since 4.76, the
last stable Nmap release. And we've made many dramatic changes, so it
is time for a new stable version! I've...
-
23:50
[Full-disclosure] iDefense Security Advisory 06.26.09: HP Network Node Manager rping Stack Buffer Overflow Vulnerability
» Full DisclosureFrom: iDefense Labs
Date: Fri, 26 Jun 2009 21:10:21 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 06.26.09 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 26, 2009 I. BACKGROUND HP Network Node Manager (NNM) is an application suite that is used to map out and manage network topography. NNM runs on a variety of platforms, including Linux and multiple versions of Windows. For more information, see the vendor's site at the following link. http://www.openview.hp.com/products/nnm/index.html II. DESCRIPTION Remote exploitation of a stack based buffer overflow vulnerability in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability exists within the 'rping' application, which is distributed with the Linux version of NNM. It is possible for a remote attacker to launch the 'rping' application and trigger a stack based buffer overflow. III. ANALYSIS Exploitation of this vulnerability results in the execution of arbitrary code with the privileges of the affected service. On RedHat Enterprise 4, the application is started as the user 'bin'. 'rping' is not compiled with compiler protections such as stack cookies or the -pie flag, which makes exploitation less difficult. IV. DETECTION iDefense has confirmed the existence of this vulnerability in Network Node Manager version 7.53 for Linux. Previous versions may also be affected. The Windows version is not affected. V. WORKAROUND By default, the webappmon.exe CGI application does not require a user to be authenticated. By changing the session.conf file and setting UserLogin to ON, it is possible to require valid credentials in order to run. The 'ovhtpasswd' application can then be used to add valid credentials. VI. VENDOR RESPONSE Hewlett-Packard Development Co. LP (HP) has released a patch which addresses this issue. Directly downloadable vendor updates for this report are accessible via the iDefense Intelligence web portal (https://ialert.idefense.com) and the iDefense Intelligence XML web service. Information about non-directly downloadable vendor updates can be found by clicking on the URLs shown. http://support.openview.hp.com/selfsolve/patches VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2009-1420 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 05/19/2008 - Initial Contact 07/10/2008 - Initial Vendor Reply 06/30/2008 - Vendor validated issue 06/30/2008 - Vendor requested PoC 07/10/2008 - PoC sent to vendor 06/09/2009 - Vendor Patched 06/25/2009 - Requested Status from Vendor 06/25/2009 - Vendor provides disclosure details 06/26/2009 - Coordinated Public Disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright =A9 2009 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice@idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFKRSssbjs6HoxIfBkRAlWaAKDg6DYK5DorjrR9rSnUh/WeEHOtjwCgoj41 4QUdd3b1s5BNkhEhDu+mUl8=3D =3Dix9i -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
Michael Jackson Death Exploited by Malware Vendors [WARNING]
» Digg / Security / upcomingSpammers, unscrupulous marketers, and hawkers of malware have no shame. Apparently looking to capitalize on the incredible demand for news and information about Michael Jackson in the wake of the pop icon’s death, spammers are attempting to spread malware under the guise of Jackson-related content. -
2 Factor Authentication can be deceiving
» Digg / Security / upcomingThere are three categories of 2 Factor: Something you know, Something you have, Something you are. Physical hardware tokens, like RSA's SecurID, fall into the second category of "something you have". Software tokens, also like RSA's software SecurID, pretend to fall into that same category. But its really an example of "Something you Know".
-
Google Android code goes native
» The Register - SoftwareDalvik VM hugs C, C++Android developers can now slip native code into apps written for Android-based devices using Google's new native development kit (NDK).…
-
7 Essential/New features make deploying Wired 802.1x easier
» Digg / Security / upcoming7 Essential/New features make deploying Wired 802.1x easier on a Cisco infrastructure -
Internet scareware scammers settle with FTC for $100,000
» Digg / Security / upcomingTwo defendants in a scareware scam case have settled with the FTC after showing that they had no means to pay the organization's previous $1.9 million order. Now let's hope they catch the main guys behind this (Sam Jain, Daniel Sundin, and Kristy Ross).
-
23:10
iDefense Security Advisory 06.26.09: HP Network Node Manager rping Stack Buffer Overflow Vulnerability
» Bugtraq (bugtraq) Mailing ListPosted by iDefense Labs on Jun 26iDefense Security Advisory 06.26.09
http://labs.idefense.com/intelligence/vulnerabilities/
Jun 26, 2009
I. BACKGROUND
HP Network Node Manager (NNM) is an application suite that is used to
map out and manage network topography. NNM runs on a variety of
platforms, including Linux and multiple...
-
23:09
Attackers Use Michael Jackson, Farrah Fawcett as Lure
» Ryan Naraine's Security WatchSpammers are taking advantage of reports on the deaths of celebrities Michael Jackson and Farrah Fawcett to infect users with malware.
-
Virus and Spyware in Alexa Toolbar!
» Digg / Security / upcomingAlexa toolbar is one of the most used toolbars by Webmasters for tracking traffic rank. It is facing conflict with most of popular Security Software. We faced one such problem while installing Alexa Toolbar on a PC enabled with Free edition of Avira AntiVir Antivirus software. -
Safegaurd your orkut profile. behavioural tips on social net
» Digg / Security / upcomingCrazy about networking, spending hours on social medias. you need to read this. Things to be taken care of while strengthening the presence on social media. -
What Is A Computer Worm?
» Digg / Security / upcomingA computer worm is developed and programmed to copy and distribute itself to other computers over the Internet, usually without the user knowing.
-
Filtering Companies Can’t Be Sued By Blacklisted Firms, Court Rules
» Wired: Threat Level
A federal appeals court, in the first decision of its kind, said Thursday that companies providing malware, spyware and adware blocking services are immunized by the Communications Decency Act of 1996 from lawsuits claiming unfair business practices.A three-judge panel of the 9th U.S. Circuit Court of Appeals found that the CDA treats security software makers the same as internet service providers when they block material they find objectionable, granting them so-called “good Samaritan” immunity from civil lawsuits. Like an ISP, such companies provide an “interactive computer service” because they pull updates from a central server, the San Francisco-based appeals court said.
“We conclude that a provider of access tools that filter, screen, allow, or disallow content that a provider or user considers obscene, lewd, lascivious, filthy, or excessively violent, harassing or otherwise objectionable is protected from liability,” the court ruled. (.pdf)
The case concerned adware-maker Zango, which provided access to online videos, games, music, tools and utilities to web surfers who agreed to view advertisements while surfing the internet. Among other charges, the Washington State company accused Kaspersky Lab of illegally blocking a toolbar program that displayed links to advertisers.
Zango also said Kaspersky users were prevented from installing Zango software altogether, if Kaspersky was already on the computer -– a situation that did not occur with other security software programs.
The court noted that Kaspersky, of Russia, had a good faith belief that it was blocking adware, and that its users could allow pop-ads if they wanted or unlock the toolbar. The court noted that Zango was fined $3 million in 2006 for deceiving web surfers into installing its pop-up software.
Zango contended that immunity was meant to cover only internet service providers, not companies that provide access to tools for filtering content.
But the law, the court noted, “does not limit the definition of ‘interactive computer service’ to services that provide access to the internet.” Rather, the court said, “its singular requirement is for access by multiple users of a computer server.”
Security software is covered because it ” enables computer access by multiple users to a computer server by providing its customers with online access to its update servers,” the court said.
The ruling could have a dark side, however, potentially opening the door for anti-competitive practices. A browser-maker, for example, could choose to block access to competing websites, or filter out search engine results critical of the company.
That danger was not lost on the court, which wrote that “extending immunity beyond the facts of this case could pose serious problems if providers of blocking software were to be given free license to unilaterally block the dissemination of material by content providers under the literal terms” of the law.
The law might empower a software company to “abuse immunity to block content for anti-competitive purposes or merely at a malicious whim.”
The court urged Congress to clarify the statute.
Hat Tip: Bashman
Photo: Beth Rakin
See Also:
- Security Guru Gives Hackers a Taste of Their Own Medicine
- Burning Question: How Much Computer Security Is Enough?
- America’s Dilemma: Close Security Holes, or Exploit Them Ourselves
- Secret Crush Facebook App Installing Adware, Security Firm Charges …
- Critics Blast MS Security
- In Message to Industry, Government Fines Adware Purveyor $3 …
-
22:10
Re: [Full-disclosure] Security Assessment of TCP at the IETF
» Full DisclosureFrom: Fernando Gont
Date: Fri, 26 Jun 2009 20:01:37 +0100
Please check again. They links do work. On Fri, Jun 26, 2009 at 3:41 PM, Hal Wigoda<hwigoda@mindspring.com> wrote: > sorry, but the links do not work. > > > On Jun 25, 2009, at 11:28 PM, Fernando Gont wrote: > >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA256 >> >> Hello, folks, >> >> In February this year the UK CPNI published the document "Security >> Assessment of the Transmission Control Protocol (TCP)" (available at: >> http://www.cpni.gov.uk/Docs/tn-03-09-security-assessment-TCP.pdf) >> >> Earlier this year we published an IETF Internet-Draft version of this >> document (available at: >> http://www.gont.com.ar/drafts/tcp-security/draft-gont-tcp-security-00.tx= t) >> in the hope of having the IETF further work on the TCP security paper UK >> CPNI had published. >> >> My personal take (possibly biased, since I am the document author) >> is that this document has been the result of a lot of work (including >> the work of the many peple that reviewed the CPNI version of the >> document), and that the IETF should take this chance to work and publish >> something on the subject. >> >> The chairs of the TCPM Working Group of the IETF are currently polling >> the WG for input about this document. It would be great if you could >> voice your opinion about whether the TCPM should take this document on, >> and also whether you would be willing to review this document. (Bellow >> you'll find a copy of the TCPM chairs' poll) >> >> Please send your comments to tcpm@ietf.org (and please CC me). >> >> Thanks! >> >> Kind regards, >> Fernando >> >> >> >> >> - -------- Original Message -------- >> Subject: [tcpm] poll for adopting draft-gont-tcp-security >> Date: Wed, 24 Jun 2009 14:25:04 -0500 >> From: Eddy, Wesley M. (GRC-MS00)[Verizon] <wesley.m.eddy@nasa.gov> >> To: tcpm Extensions WG <tcpm@ietf.org> >> >> TCPMers, there was a thread a while ago about working on >> draft-gont-tcp-security in this working group that didn't >> conclusively give us a feeling one way or other: >> http://www.ietf.org/mail-archive/web/tcpm/current/msg04489.html >> >> Basically, my understanding is that there are at least a >> handful of people in the WG that think it should be done >> here as a WG item (more likely for Informational rather >> than BCP), and there are also some expressed opinions on >> why it shouldn't. >> >> Given the raw size of the document, if the WG intends to >> take this document on, then we need some people to clearly >> commit to putting cycles into review and contributions to >> the document. =A0Since it is quite large, and to my knowledge, >> there hasn't been a specific technical review of the content >> on this list, but just discussions about if the idea in >> general is a good or bad thing, we still need to know if >> people are willing to invest their time and energy in this. >> >> Please let us know if there is traction for this in the >> near term, and/or we can also discuss it in Stockholm. >> >> - --------------------------- >> Wes Eddy >> Network & Systems Architect >> Verizon FNS / NASA GRC >> Office: (216) 433-6682 >> - --------------------------- >> >> _______________________________________________ >> tcpm mailing list >> tcpm@ietf.org >> https://www.ietf.org/mailman/listinfo/tcpm >> -----BEGIN PGP SIGNATURE----- >> Version: GnuPG v1.4.9 (MingW32) >> >> iQEcBAEBCAAGBQJKRE58AAoJEJbuqe/Qdv/xCPoH/AhdvNcTejJqoOE1J/gDc2Yc >> Iw+GIUgW73sWBuh0ib5oQxv85tvEjQzLOpQtNPdX6ljm96A7ufl3uzB6DBzj3JoF >> O3mqRWf/yFgWxNA7Kmv/FFPf271CUHpnxbnoYBGSeHKb78lS3WnLJukW8F2l+FPl >> 2QZJp0wn6/g2TJFgWoIHtrbHovHboZQtopzfyJWirzVeL+3dGinden3IH6HKDth/ >> t+0kyxlN07sBQDqebNvif6nxf4xU7kPdUap4i00EKhH5WTr49XDD46E1sP9d695i >> MhW1lhZ1jeVkjz/MycuotSKXN/JIiFM6NV5i3vm5vnOkgAjMou7iEULdG/0Xqn8=3D >> =3D/HE4 >> -----END PGP SIGNATURE----- > > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
21:58
MULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.x--gt
» Bugtraq (bugtraq) Mailing ListPosted by y3nh4ck3r_at_gmail.com on Jun 26('binary' encoding is not supported, stored as-is) --------------------------------------------------------------------
MULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.X-->
--------------------------------------------------------------------
CMS INFORMATION:
-->WEB: ...
-
Michael Jackson's death themed malware campaigns spreading
» Zero DayThe sudden death of Michael Jackson quickly opened a window of opportunity for cybercriminals to capitalize on. With a malicious spam campaign, blackhat SEO search results poisoning which is serving scaraware within the first 100 search results for Michael Jackson’s death, and an opportunistic participant in Zango adware’s network using typosquatting, malicious activity is prone to [...]
-
Watch out - data and dollars walking out the door
» Digg / Security / upcomingData protection and data security have been major topics of discussion - especially here. -
The Michael Jackson Virus
» Digg / Security / upcomingA new malware version taking advantage of the King of Pop's untimely death to spread.
-
21:40
[Full-disclosure] [ MDVSA-2009:141 ] mozilla-thunderbird
» Full DisclosureFrom: security@mandriva.com
Date: Fri, 26 Jun 2009 19:36:00 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2009:141 http://www.mandriva.com/security/ _______________________________________________________________________ Package : mozilla-thunderbird Date : June 17, 2009 Affected: 2009.0, 2009.1, Corporate 3.0 _______________________________________________________________________ Problem Description: A number of security vulnerabilities have been discovered for Mozilla Thunderbird version 2.0.0.21 (CVE-2009-1302, CVE-2009-1303, CVE-2009-1304, CVE-2009-1305, CVE-2009-1306, CVE-2009-1307, CVE-2009-1308, CVE-2009-1309, CVE-2009-2210, CVE-2009-1392, CVE-2009-1832, CVE-2009-1833, CVE-2009-1838, CVE-2009-1836, CVE-2009-1840, CVE-2009-1841). This update provides the latest Thunderbird to correct these issues. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1302 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1303 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1304 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1305 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1306 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1307 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1308 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1309 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2210 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1392 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1832 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1833 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1838 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1836 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1840 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1841 http://www.mozilla.org/security/known-vulnerabilities/thunderbird20.html#thunderbird2.0.0.21 _______________________________________________________________________ Updated Packages: Mandriva Linux 2009.0: dae7896b4f7ea151c47eb152b26643b2 2009.0/i586/beagle-0.3.8-13.12mdv2009.0.i586.rpm 8c1f910c3cd48230e87b980e8ecdcd7b 2009.0/i586/beagle-crawl-system-0.3.8-13.12mdv2009.0.i586.rpm 673cadfc5ea97760dd11f44764171a00 2009.0/i586/beagle-doc-0.3.8-13.12mdv2009.0.i586.rpm c80c971addd877bafd593f08245f3634 2009.0/i586/beagle-epiphany-0.3.8-13.12mdv2009.0.i586.rpm e75d3c71a6a3e02f4834c0d38dd98ba5 2009.0/i586/beagle-evolution-0.3.8-13.12mdv2009.0.i586.rpm 7bb2a6950be7a8242eac3aa1d807991b 2009.0/i586/beagle-gui-0.3.8-13.12mdv2009.0.i586.rpm 9c4ede106562be5440c4a82f2c569f4b 2009.0/i586/beagle-gui-qt-0.3.8-13.12mdv2009.0.i586.rpm bd6888e326c24277620671582d4aca46 2009.0/i586/beagle-libs-0.3.8-13.12mdv2009.0.i586.rpm 571c4b457f968e027535fec5e2509402 2009.0/i586/firefox-ext-beagle-0.3.8-13.12mdv2009.0.i586.rpm d1145bb94092132fc60b31b46dd9a38c 2009.0/i586/mozilla-thunderbird-2.0.0.22-0.2mdv2009.0.i586.rpm 6baee3d4cd5ea21f9992caf3c6560154 2009.0/i586/mozilla-thunderbird-af-2.0.0.22-0.2mdv2009.0.i586.rpm d573b321233dfb73c83f53d1fc39833d 2009.0/i586/mozilla-thunderbird-be-2.0.0.22-0.2mdv2009.0.i586.rpm 2d2f45edafa7a8665a05d728bfac80df 2009.0/i586/mozilla-thunderbird-beagle-0.3.8-13.12mdv2009.0.i586.rpm b7b88eca609e5c67d97a2a00b1febf8d 2009.0/i586/mozilla-thunderbird-bg-2.0.0.22-0.2mdv2009.0.i586.rpm 635a4e3b268f43b5046a7a1c7894fb67 2009.0/i586/mozilla-thunderbird-ca-2.0.0.22-0.2mdv2009.0.i586.rpm 96b604b0b6a0bb6955910f6ba96121c6 2009.0/i586/mozilla-thunderbird-cs-2.0.0.22-0.2mdv2009.0.i586.rpm 9535b0542a0ad43d5f29c66e6245d69d 2009.0/i586/mozilla-thunderbird-da-2.0.0.22-0.2mdv2009.0.i586.rpm 358c2956f88a0237536ed8e1ded5d7ae 2009.0/i586/mozilla-thunderbird-de-2.0.0.22-0.2mdv2009.0.i586.rpm dcc1ddc1fb82b2447b095e98d3d0ccc2 2009.0/i586/mozilla-thunderbird-devel-2.0.0.22-0.2mdv2009.0.i586.rpm 4aef0193311296e06f5a8bf2933dde26 2009.0/i586/mozilla-thunderbird-el-2.0.0.22-0.2mdv2009.0.i586.rpm 2bf5f5a07fa9809eb1580372b49fc0a0 2009.0/i586/mozilla-thunderbird-en_GB-2.0.0.22-0.2mdv2009.0.i586.rpm 7fd301ab0b8d9b8d711878b087c00186 2009.0/i586/mozilla-thunderbird-enigmail-2.0.0.22-0.2mdv2009.0.i586.rpm a9a16a25e8ac6155927809a5ee71f6c3 2009.0/i586/mozilla-thunderbird-enigmail-ar-2.0.0.22-0.1mdv2009.0.i586.rpm 2c1496b5ed2a20fb1f7efebe93937200 2009.0/i586/mozilla-thunderbird-enigmail-ca-2.0.0.22-0.1mdv2009.0.i586.rpm b0f912a04fbe28b38514bca8c07c3b69 2009.0/i586/mozilla-thunderbird-enigmail-cs-2.0.0.22-0.1mdv2009.0.i586.rpm 11231c2d527c2e8f3ff962327faa4320 2009.0/i586/mozilla-thunderbird-enigmail-de-2.0.0.22-0.1mdv2009.0.i586.rpm cbe7909eda784e994c73acc40bd5a0a6 2009.0/i586/mozilla-thunderbird-enigmail-el-2.0.0.22-0.1mdv2009.0.i586.rpm dfc8ea1d941a1d580dd1406fc7d5f557 2009.0/i586/mozilla-thunderbird-enigmail-es-2.0.0.22-0.1mdv2009.0.i586.rpm e58dfd63c29509922a1ecaf8515ad57e 2009.0/i586/mozilla-thunderbird-enigmail-es_AR-2.0.0.22-0.1mdv2009.0.i586.rpm 07bdcb7d7ab576fb5c3f68f3a19ea600 2009.0/i586/mozilla-thunderbird-enigmail-fi-2.0.0.22-0.1mdv2009.0.i586.rpm 682a18785a27f554f3624993a2c53b4d 2009.0/i586/mozilla-thunderbird-enigmail-fr-2.0.0.22-0.1mdv2009.0.i586.rpm be9ffffd355b74edbeaebac2d05ea620 2009.0/i586/mozilla-thunderbird-enigmail-hu-2.0.0.22-0.1mdv2009.0.i586.rpm 874ae1dd0be29a38086529ffab181f58 2009.0/i586/mozilla-thunderbird-enigmail-it-2.0.0.22-0.1mdv2009.0.i586.rpm 1a68552cfe4f4a03ea7a266951a10807 2009.0/i586/mozilla-thunderbird-enigmail-ja-2.0.0.22-0.1mdv2009.0.i586.rpm 2d32d73e82ac4b4483865881a93d221a 2009.0/i586/mozilla-thunderbird-enigmail-ko-2.0.0.22-0.1mdv2009.0.i586.rpm f4a59db51034d19553a9d17c33fa83b5 2009.0/i586/mozilla-thunderbird-enigmail-nb-2.0.0.22-0.1mdv2009.0.i586.rpm 480713e4097d020f70bf0d22ef58d487 2009.0/i586/mozilla-thunderbird-enigmail-nl-2.0.0.22-0.1mdv2009.0.i586.rpm 64a98cb65232794d173e5e2af76027e2 2009.0/i586/mozilla-thunderbird-enigmail-pl-2.0.0.22-0.1mdv2009.0.i586.rpm dcd25d17f273c41021b8a26e64004a85 2009.0/i586/mozilla-thunderbird-enigmail-pt-2.0.0.22-0.1mdv2009.0.i586.rpm 7b16e97aec68cdc7ecdd7a386e10ce48 2009.0/i586/mozilla-thunderbird-enigmail-pt_BR-2.0.0.22-0.1mdv2009.0.i586.rpm 866a62b2df739af90a3702e755b436da 2009.0/i586/mozilla-thunderbird-enigmail-ro-2.0.0.22-0.1mdv2009.0.i586.rpm 62afb1d68f39db248f7c740f4da7f143 2009.0/i586/mozilla-thunderbird-enigmail-ru-2.0.0.22-0.1mdv2009.0.i586.rpm 402c7ec69e83f8a4d15b5ca8c6ee277a 2009.0/i586/mozilla-thunderbird-enigmail-sk-2.0.0.22-0.1mdv2009.0.i586.rpm 7ad5949a938ab0dfbacb91931f226049 2009.0/i586/mozilla-thunderbird-enigmail-sl-2.0.0.22-0.1mdv2009.0.i586.rpm 2d9f93bf8f393dfb1ab557087bf5e454 2009.0/i586/mozilla-thunderbird-enigmail-sv-2.0.0.22-0.1mdv2009.0.i586.rpm 5c1e08728355bc27da4e1d91dec0a2e4 2009.0/i586/mozilla-thunderbird-enigmail-tr-2.0.0.22-0.1mdv2009.0.i586.rpm 9a38a4aee6e4db49ca61190eb3f0acb5 2009.0/i586/mozilla-thunderbird-enigmail-zh_CN-2.0.0.22-0.1mdv2009.0.i586.rpm fdde0286bee03eba2556cb3bb2b474f4 2009.0/i586/mozilla-thunderbird-enigmail-zh_TW-2.0.0.22-0.1mdv2009.0.i586.rpm a73718ec8affbc28113605a08af1512d 2009.0/i586/mozilla-thunderbird-es_AR-2.0.0.22-0.2mdv2009.0.i586.rpm 87375ab3c68ff7225ca697bd4f272d70 2009.0/i586/mozilla-thunderbird-es_ES-2.0.0.22-0.2mdv2009.0.i586.rpm f56a8abf68545b9f2937fe0934724d04 2009.0/i586/mozilla-thunderbird-et_EE-2.0.0.22-0.2mdv2009.0.i586.rpm 841482488287950613d0108070a57a61 2009.0/i586/mozilla-thunderbird-eu-2.0.0.22-0.2mdv2009.0.i586.rpm 1b83c90c7a5c1407fc6868d49056d088 2009.0/i586/mozilla-thunderbird-fi-2.0.0.22-0.2mdv2009.0.i586.rpm 492a4105e38f01e2eb6cfb5320ea8970 2009.0/i586/mozilla-thunderbird-fr-2.0.0.22-0.2mdv2009.0.i586.rpm b0f279a51b5bb5bc7f90c87f10b5f5e2 2009.0/i586/mozilla-thunderbird-ga-2.0.0.22-0.2mdv2009.0.i586.rpm 4b844492caf6164962f234d3c68cd9ef 2009.0/i586/mozilla-thunderbird-gu_IN-2.0.0.22-0.2mdv2009.0.i586.rpm cbc666ec35e088af42bbf2451c8ccc4c 2009.0/i586/mozilla-thunderbird-he-2.0.0.22-0.2mdv2009.0.i586.rpm 46711d7838bd0f2536f03abad955d94f 2009.0/i586/mozilla-thunderbird-hu-2.0.0.22-0.2mdv2009.0.i586.rpm 84df91d9e2d601b85811ea4f82147b0f 2009.0/i586/mozilla-thunderbird-it-2.0.0.22-0.2mdv2009.0.i586.rpm a1177cb2f9b56bc3d9825e5e2807f8a5 2009.0/i586/mozilla-thunderbird-ja-2.0.0.22-0.2mdv2009.0.i586.rpm d977d5a3075c8f1a430eb2beb604edf8 2009.0/i586/mozilla-thunderbird-ko-2.0.0.22-0.2mdv2009.0.i586.rpm 337c059801e351a2408c45c64c6a4e92 2009.0/i586/mozilla-thunderbird-lt-2.0.0.22-0.2mdv2009.0.i586.rpm 192a384e1f692e4073dbfbf7599cf389 2009.0/i586/mozilla-thunderbird-mk-2.0.0.22-0.2mdv2009.0.i586.rpm 4ae0ac0151762bc5d0906d7cf3153e03 2009.0/i586/mozilla-thunderbird-moztraybiff-1.2.4-1.4mdv2009.0.i586.rpm 29c88828cda63ccdd1741a762d2a66f5 2009.0/i586/mozilla-thunderbird-nb_NO-2.0.0.22-0.2mdv2009.0.i586.rpm f25c7436c3c830d770d0dc15347caa1a 2009.0/i586/mozilla-thunderbird-nl-2.0.0.22-0.2mdv2009.0.i586.rpm a7618a6eb46b322ddc8728a7bed0267c 2009.0/i586/mozilla-thunderbird-nn_NO-2.0.0.22-0.2mdv2009.0.i586.rpm 60c2eb804f2aa5eb767679f9131116ff 2009.0/i586/mozilla-thunderbird-pa_IN-2.0.0.22-0.2mdv2009.0.i586.rpm 1586922bcedb96cae5e0503ac46c3ac1 2009.0/i586/mozilla-thunderbird-pl-2.0.0.22-0.2mdv2009.0.i586.rpm e0c84068dee31837617d22930523db42 2009.0/i586/mozilla-thunderbird-pt_BR-2.0.0.22-0.2mdv2009.0.i586.rpm 7d4ac8c64c7026bc99c719a4e03a3324 2009.0/i586/mozilla-thunderbird-pt_PT-2.0.0.22-0.2mdv2009.0.i586.rpm cd805bcaabbd9ac7170d835d4b66f77b 2009.0/i586/mozilla-thunderbird-ru-2.0.0.22-0.2mdv2009.0.i586.rpm 4083dd2fe39b452e6fd305a056f4ccf7 2009.0/i586/mozilla-thunderbird-sk-2.0.0.22-0.2mdv2009.0.i586.rpm e9f1b2a58446194379c6f7e67afa7aa3 2009.0/i586/mozilla-thunderbird-sl-2.0.0.22-0.2mdv2009.0.i586.rpm 6403eabafc1ab506247029d36fb3efb8 2009.0/i586/mozilla-thunderbird-sv_SE-2.0.0.22-0.2mdv2009.0.i586.rpm e562358a988fb7b96a4b0a85c0dc42c8 2009.0/i586/mozilla-thunderbird-tr-2.0.0.22-0.2mdv2009.0.i586.rpm 53bce776d419871e4594333b06a40272 2009.0/i586/mozilla-thunderbird-uk-2.0.0.22-0.2mdv2009.0.i586.rpm d10778b0469680079b140d10437b2ec9 2009.0/i586/mozilla-thunderbird-zh_CN-2.0.0.22-0.2mdv2009.0.i586.rpm d7a117c9df983c1dc8096af3f6dbafcf 2009.0/i586/mozilla-thunderbird-zh_TW-2.0.0.22-0.2mdv2009.0.i586.rpm bc83cad0a053397d8b1ea06787a25158 2009.0/i586/nsinstall-2.0.0.22-0.2mdv2009.0.i586.rpm c6e449a36d8fb51950b177335088777c 2009.0/SRPMS/beagle-0.3.8-13.12mdv2009.0.src.rpm a8c300eb3d4e9cec37ab69df258be733 2009.0/SRPMS/mozilla-thunderbird-2.0.0.22-0.2mdv2009.0.src.rpm 53bc62e635683f0f608b9500b423f3b6 2009.0/SRPMS/mozilla-thunderbird-enigmail-l10n-2.0.0.22-0.1mdv2009.0.src.rpm bfa40062acef4ddcb7fcda95e610c927 2009.0/SRPMS/mozilla-thunderbird-l10n-2.0.0.22-0.2mdv2009.0.src.rpm f0ebf540cacf8323ba7f37d6f2850e5c 2009.0/SRPMS/mozilla-thunderbird-moztraybiff-1.2.4-1.4mdv2009.0.src.rpm Mandriva Linux 2009.0/X86_64: 073baffcde802080622b3c46b420b127 2009.0/x86_64/beagle-0.3.8-13.12mdv2009.0.x86_64.rpm fcbec1838e4f034c153a29bc7b5920eb 2009.0/x86_64/beagle-crawl-system-0.3.8-13.12mdv2009.0.x86_64.rpm ea4ea360775da6f39f8bd62f4a6f4cd4 2009.0/x86_64/beagle-doc-0.3.8-13.12mdv2009.0.x86_64.rpm 051ab2b68373a97bf63e8f9fdb3a9ef7 2009.0/x86_64/beagle-epiphany-0.3.8-13.12mdv2009.0.x86_64.rpm 8da1f02ccd7ade901f4ef81740d67b02 2009.0/x86_64/beagle-evolution-0.3.8-13.12mdv2009.0.x86_64.rpm 777ed2f095627ad2eee705113b8d7ab2 2009.0/x86_64/beagle-gui-0.3.8-13.12mdv2009.0.x86_64.rpm b500477260be4c45a8809e2886ff6bfa 2009.0/x86_64/beagle-gui-qt-0.3.8-13.12mdv2009.0.x86_64.rpm 5bf529d9e106f7b45a15eb5391449186 2009.0/x86_64/beagle-libs-0.3.8-13.12mdv2009.0.x86_64.rpm f3247ef254baebea988ba597fb2aac8d 2009.0/x86_64/firefox-ext-beagle-0.3.8-13.12mdv2009.0.x86_64.rpm e47252ee5b824e7a92572c5b553245c1 2009.0/x86_64/mozilla-thunderbird-2.0.0.22-0.2mdv2009.0.x86_64.rpm f82a00412b3e22249f69a1227579cd90 2009.0/x86_64/mozilla-thunderbird-af-2.0.0.22-0.2mdv2009.0.x86_64.rpm 782c8d4437bfe5098e8590bce0c5b1a5 2009.0/x86_64/mozilla-thunderbird-be-2.0.0.22-0.2mdv2009.0.x86_64.rpm 268a2f0b3cb956ade734b11e6624b171 2009.0/x86_64/mozilla-thunderbird-beagle-0.3.8-13.12mdv2009.0.x86_64.rpm 73b7ba8fea70d915b6183eb956a351d7 2009.0/x86_64/mozilla-thunderbird-bg-2.0.0.22-0.2mdv2009.0.x86_64.rpm e7ad84144854efa315a58d5c2495cc7c 2009.0/x86_64/mozilla-thunderbird-ca-2.0.0.22-0.2mdv2009.0.x86_64.rpm f81c2d5591b8141cc260043c47926397 2009.0/x86_64/mozilla-thunderbird-cs-2.0.0.22-0.2mdv2009.0.x86_64.rpm 361f9a98186543cdc1228e171ba789c3 2009.0/x86_64/mozilla-thunderbird-da-2.0.0.22-0.2mdv2009.0.x86_64.rpm 1605d1d4fc292c5c57d805de3123b21c 2009.0/x86_64/mozilla-thunderbird-de-2.0.0.22-0.2mdv2009.0.x86_64.rpm 36864277533d4f165b2b6dca9c4fdf40 2009.0/x86_64/mozilla-thunderbird-devel-2.0.0.22-0.2mdv2009.0.x86_64.rpm 0f997ec9a8d7183a312754e8c2659016 2009.0/x86_64/mozilla-thunderbird-el-2.0.0.22-0.2mdv2009.0.x86_64.rpm 8bde79314ba758e0454021674bc9c1c5 2009.0/x86_64/mozilla-thunderbird-en_GB-2.0.0.22-0.2mdv2009.0.x86_64.rpm 62b0e903552971c58004464735fd2146 2009.0/x86_64/mozilla-thunderbird-enigmail-2.0.0.22-0.2mdv2009.0.x86_64.rpm 8cb5bb5c5df0e2b829382b0919835b86 2009.0/x86_64/mozilla-thunderbird-enigmail-ar-2.0.0.22-0.1mdv2009.0.x86_64.rpm 891530570b3806345d696dd247b37401 2009.0/x86_64/mozilla-thunderbird-enigmail-ca-2.0.0.22-0.1mdv2009.0.x86_64.rpm aa01c59b1f34f0a1dfc8ac69903106f3 2009.0/x86_64/mozilla-thunderbird-enigmail-cs-2.0.0.22-0.1mdv2009.0.x86_64.rpm c320cc440d9080cbd17c220cc65c4ac2 2009.0/x86_64/mozilla-thunderbird-enigmail-de-2.0.0.22-0.1mdv2009.0.x86_64.rpm 3069e8542f1b7b1db90dcc8e79d3c6e7 2009.0/x86_64/mozilla-thunderbird-enigmail-el-2.0.0.22-0.1mdv2009.0.x86_64.rpm 0ce64dcfd28e3d1f37b7d6f6c85e1cd9 2009.0/x86_64/mozilla-thunderbird-enigmail-es-2.0.0.22-0.1mdv2009.0.x86_64.rpm 84beae51ec2db0ec6f1e27a025063a0e 2009.0/x86_64/mozilla-thunderbird-enigmail-es_AR-2.0.0.22-0.1mdv2009.0.x86_64.rpm 3d7bfc9d18fc8901e5e541548ce2980b 2009.0/x86_64/mozilla-thunderbird-enigmail-fi-2.0.0.22-0.1mdv2009.0.x86_64.rpm 757e19ffddd84ea167f8bf9a8a8bf65e 2009.0/x86_64/mozilla-thunderbird-enigmail-fr-2.0.0.22-0.1mdv2009.0.x86_64.rpm 07b39053d93ccbb14c39b299ac9598ca 2009.0/x86_64/mozilla-thunderbird-enigmail-hu-2.0.0.22-0.1mdv2009.0.x86_64.rpm 3f281cdfa581bb388b17496643a14e0e 2009.0/x86_64/mozilla-thunderbird-enigmail-it-2.0.0.22-0.1mdv2009.0.x86_64.rpm e729638e1af605774e5a32a931ca73da 2009.0/x86_64/mozilla-thunderbird-enigmail-ja-2.0.0.22-0.1mdv2009.0.x86_64.rpm 37a6557d232618a12f2f4b9ecc850b6b 2009.0/x86_64/mozilla-thunderbird-enigmail-ko-2.0.0.22-0.1mdv2009.0.x86_64.rpm dd4d81202e78300eda1b543b3e0a9495 2009.0/x86_64/mozilla-thunderbird-enigmail-nb-2.0.0.22-0.1mdv2009.0.x86_64.rpm 54870657296bf9394abc3b2b1b3557c5 2009.0/x86_64/mozilla-thunderbird-enigmail-nl-2.0.0.22-0.1mdv2009.0.x86_64.rpm b581f79c2a883aa487722e1eccddf022 2009.0/x86_64/mozilla-thunderbird-enigmail-pl-2.0.0.22-0.1mdv2009.0.x86_64.rpm 596d33d4a0552f08c4e782005a34f677 2009.0/x86_64/mozilla-thunderbird-enigmail-pt-2.0.0.22-0.1mdv2009.0.x86_64.rpm 9a5cfbb0ce57b48c8098eee550cb57ab 2009.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-2.0.0.22-0.1mdv2009.0.x86_64.rpm eac41f21f5f7ff820e20496bd192d5d5 2009.0/x86_64/mozilla-thunderbird-enigmail-ro-2.0.0.22-0.1mdv2009.0.x86_64.rpm fd3cf31b8f368a6f0c3afa18a5402d49 2009.0/x86_64/mozilla-thunderbird-enigmail-ru-2.0.0.22-0.1mdv2009.0.x86_64.rpm f9df22d52754b207f5163618c225da90 2009.0/x86_64/mozilla-thunderbird-enigmail-sk-2.0.0.22-0.1mdv2009.0.x86_64.rpm fd491a3a9f78c54879d8401968208c63 2009.0/x86_64/mozilla-thunderbird-enigmail-sl-2.0.0.22-0.1mdv2009.0.x86_64.rpm 42c53d4be97f3112c610bad7b7e6d377 2009.0/x86_64/mozilla-thunderbird-enigmail-sv-2.0.0.22-0.1mdv2009.0.x86_64.rpm 5d9d24f3a2536bb4204e16d0d98180a7 2009.0/x86_64/mozilla-thunderbird-enigmail-tr-2.0.0.22-0.1mdv2009.0.x86_64.rpm 9ca051b045192ef24ad78008bb57a7ca 2009.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-2.0.0.22-0.1mdv2009.0.x86_64.rpm 7344bd74f27c5b13f88d6ef0a568b332 2009.0/x86_64/mozilla-thunderbird-enigmail-zh_TW-2.0.0.22-0.1mdv2009.0.x86_64.rpm 3b0ad1ddda7809a83c9552700cce59b4 2009.0/x86_64/mozilla-thunderbird-es_AR-2.0.0.22-0.2mdv2009.0.x86_64.rpm 7c7ad8c720d0445b6480c9d3a9d64a8d 2009.0/x86_64/mozilla-thunderbird-es_ES-2.0.0.22-0.2mdv2009.0.x86_64.rpm 39615510f85c1950a7d70762d58829a8 2009.0/x86_64/mozilla-thunderbird-et_EE-2.0.0.22-0.2mdv2009.0.x86_64.rpm a123613f4d5e04fed99c9dc870653163 2009.0/x86_64/mozilla-thunderbird-eu-2.0.0.22-0.2mdv2009.0.x86_64.rpm 5b647cd4bcec63b7e61232848d8f8220 2009.0/x86_64/mozilla-thunderbird-fi-2.0.0.22-0.2mdv2009.0.x86_64.rpm e9d10caae32681d1fe72bc80345130f8 2009.0/x86_64/mozilla-thunderbird-fr-2.0.0.22-0.2mdv2009.0.x86_64.rpm a64080356ac5354060938f370a612ef1 2009.0/x86_64/mozilla-thunderbird-ga-2.0.0.22-0.2mdv2009.0.x86_64.rpm e3f895d16122b08b09cfb3ab246e4908 2009.0/x86_64/mozilla-thunderbird-gu_IN-2.0.0.22-0.2mdv2009.0.x86_64.rpm 1eb36baa38bcfe7fb52f1ae6ac0862ef 2009.0/x86_64/mozilla-thunderbird-he-2.0.0.22-0.2mdv2009.0.x86_64.rpm 103cce28c8a719401cbd13bf5c98533a 2009.0/x86_64/mozilla-thunderbird-hu-2.0.0.22-0.2mdv2009.0.x86_64.rpm 1c8f9915ad9e65c92172c3c611b4913e 2009.0/x86_64/mozilla-thunderbird-it-2.0.0.22-0.2mdv2009.0.x86_64.rpm 580b2a0e0586d868b7fea3e6510d4ac6 2009.0/x86_64/mozilla-thunderbird-ja-2.0.0.22-0.2mdv2009.0.x86_64.rpm 0729d7b3bc676f7622eb7a6771339c7d 2009.0/x86_64/mozilla-thunderbird-ko-2.0.0.22-0.2mdv2009.0.x86_64.rpm 53b4b4b1c4a419003922df7916143085 2009.0/x86_64/mozilla-thunderbird-lt-2.0.0.22-0.2mdv2009.0.x86_64.rpm 49851a1c20a83e339f9ce65993f387fc 2009.0/x86_64/mozilla-thunderbird-mk-2.0.0.22-0.2mdv2009.0.x86_64.rpm 2615cd2c77a11dc98a17515a870a4662 2009.0/x86_64/mozilla-thunderbird-moztraybiff-1.2.4-1.4mdv2009.0.x86_64.rpm ac39c68cad741a23f59c84c364e9f395 2009.0/x86_64/mozilla-thunderbird-nb_NO-2.0.0.22-0.2mdv2009.0.x86_64.rpm dce5cef098fae52873496735c59af686 2009.0/x86_64/mozilla-thunderbird-nl-2.0.0.22-0.2mdv2009.0.x86_64.rpm 7b0158bde89fd9585ee3172c51ea1d0a 2009.0/x86_64/mozilla-thunderbird-nn_NO-2.0.0.22-0.2mdv2009.0.x86_64.rpm ec280cabef28efd6f399f0b4985ef08f 2009.0/x86_64/mozilla-thunderbird-pa_IN-2.0.0.22-0.2mdv2009.0.x86_64.rpm 34295902f3ee4c4fd98f553746db3caa 2009.0/x86_64/mozilla-thunderbird-pl-2.0.0.22-0.2mdv2009.0.x86_64.rpm 6a2da48029adccfefdcffb76d56e0b08 2009.0/x86_64/mozilla-thunderbird-pt_BR-2.0.0.22-0.2mdv2009.0.x86_64.rpm e28a63faa30673ea17b3506156657bee 2009.0/x86_64/mozilla-thunderbird-pt_PT-2.0.0.22-0.2mdv2009.0.x86_64.rpm 3a7a7f0caee8132fc75ae981628bbe84 2009.0/x86_64/mozilla-thunderbird-ru-2.0.0.22-0.2mdv2009.0.x86_64.rpm 78df8ba8624c8acb72e54bfbca419e52 2009.0/x86_64/mozilla-thunderbird-sk-2.0.0.22-0.2mdv2009.0.x86_64.rpm dd4d2d1fd8e9e6e3deb6f6c009600123 2009.0/x86_64/mozilla-thunderbird-sl-2.0.0.22-0.2mdv2009.0.x86_64.rpm 7884780b89927088c12a4a3ffa4ddc3f 2009.0/x86_64/mozilla-thunderbird-sv_SE-2.0.0.22-0.2mdv2009.0.x86_64.rpm fb5a1dffd172e31b9362ecb52b1d205f 2009.0/x86_64/mozilla-thunderbird-tr-2.0.0.22-0.2mdv2009.0.x86_64.rpm 8c41579b7188366f6fa5ac21b4df97f1 2009.0/x86_64/mozilla-thunderbird-uk-2.0.0.22-0.2mdv2009.0.x86_64.rpm 505d7e897faaa0d4f06038b39405af69 2009.0/x86_64/mozilla-thunderbird-zh_CN-2.0.0.22-0.2mdv2009.0.x86_64.rpm d457d14d62d7463ac6a7daa7657ded79 2009.0/x86_64/mozilla-thunderbird-zh_TW-2.0.0.22-0.2mdv2009.0.x86_64.rpm a228bdfaaa275792243dfa5b5b0b0538 2009.0/x86_64/nsinstall-2.0.0.22-0.2mdv2009.0.x86_64.rpm c6e449a36d8fb51950b177335088777c 2009.0/SRPMS/beagle-0.3.8-13.12mdv2009.0.src.rpm a8c300eb3d4e9cec37ab69df258be733 2009.0/SRPMS/mozilla-thunderbird-2.0.0.22-0.2mdv2009.0.src.rpm 53bc62e635683f0f608b9500b423f3b6 2009.0/SRPMS/mozilla-thunderbird-enigmail-l10n-2.0.0.22-0.1mdv2009.0.src.rpm bfa40062acef4ddcb7fcda95e610c927 2009.0/SRPMS/mozilla-thunderbird-l10n-2.0.0.22-0.2mdv2009.0.src.rpm f0ebf540cacf8323ba7f37d6f2850e5c 2009.0/SRPMS/mozilla-thunderbird-moztraybiff-1.2.4-1.4mdv2009.0.src.rpm Mandriva Linux 2009.1: 9c0c438490ef85055187a389e66481eb 2009.1/i586/beagle-0.3.9-9.3mdv2009.1.i586.rpm fb64f20e382d532828ed7de29b2bb76b 2009.1/i586/beagle-crawl-system-0.3.9-9.3mdv2009.1.i586.rpm 3aca0129726f898b4ce8bf7f7708a210 2009.1/i586/beagle-doc-0.3.9-9.3mdv2009.1.i586.rpm 6bc49aae88d618e9551f4a3be74cb4b0 2009.1/i586/beagle-epiphany-0.3.9-9.3mdv2009.1.i586.rpm c4f85060cc126f66bd29adc893221f98 2009.1/i586/beagle-evolution-0.3.9-9.3mdv2009.1.i586.rpm 82370c68334b40e3635da1ffb1c63d9d 2009.1/i586/beagle-gui-0.3.9-9.3mdv2009.1.i586.rpm f223acbcfad718e5a5d48b357136dfe2 2009.1/i586/beagle-gui-qt-0.3.9-9.3mdv2009.1.i586.rpm 3292d72bb412db86b78e49e685eb3c90 2009.1/i586/beagle-libs-0.3.9-9.3mdv2009.1.i586.rpm 2248ad474ca11b135af504c6387258f3 2009.1/i586/firefox-ext-beagle-0.3.9-9.3mdv2009.1.i586.rpm ac57dd8f1b7ad2da043efc18a2911611 2009.1/i586/mozilla-thunderbird-2.0.0.22-0.2mdv2009.1.i586.rpm 2a5de0afbf9a6116257462920fbc8502 2009.1/i586/mozilla-thunderbird-af-2.0.0.22-0.2mdv2009.1.i586.rpm ef4d9c15b2f02a19a724f1139f4f9761 2009.1/i586/mozilla-thunderbird-be-2.0.0.22-0.2mdv2009.1.i586.rpm d4780af9c595721bc2c64dbc3a874dd6 2009.1/i586/mozilla-thunderbird-beagle-0.3.9-9.3mdv2009.1.i586.rpm 3152df17cf9df3d69340b2db9aa23c2b 2009.1/i586/mozilla-thunderbird-bg-2.0.0.22-0.2mdv2009.1.i586.rpm 3e96f1b6f59d1c1701f5015e305ea29b 2009.1/i586/mozilla-thunderbird-ca-2.0.0.22-0.2mdv2009.1.i586.rpm 01487d3825b08a6ac04de5d69de0c80a 2009.1/i586/mozilla-thunderbird-cs-2.0.0.22-0.2mdv2009.1.i586.rpm 72e20903559f12ed1fd1c59e4a558d71 2009.1/i586/mozilla-thunderbird-da-2.0.0.22-0.2mdv2009.1.i586.rpm 7bfa322cf6bd4845cdcc1f81f13d51ee 2009.1/i586/mozilla-thunderbird-de-2.0.0.22-0.2mdv2009.1.i586.rpm e7098817a887b0f89213d56be32e2d30 2009.1/i586/mozilla-thunderbird-devel-2.0.0.22-0.2mdv2009.1.i586.rpm 1d8159ab14873511856c9f4de1825a80 2009.1/i586/mozilla-thunderbird-el-2.0.0.22-0.2mdv2009.1.i586.rpm 87a53afbf9c94a4c96e65c6e0e9faef6 2009.1/i586/mozilla-thunderbird-en_GB-2.0.0.22-0.2mdv2009.1.i586.rpm eb1c4b423f30576ccaca6a6eef3d070c 2009.1/i586/mozilla-thunderbird-enigmail-2.0.0.22-0.2mdv2009.1.i586.rpm 6072cce62abb64cfca96acc31dd44863 2009.1/i586/mozilla-thunderbird-enigmail-ar-2.0.0.22-0.1mdv2009.1.i586.rpm 40eabe492fb7b32b5228309c6965562e 2009.1/i586/mozilla-thunderbird-enigmail-ca-2.0.0.22-0.1mdv2009.1.i586.rpm eee4395d7fe09d78106440c6a1b327bf 2009.1/i586/mozilla-thunderbird-enigmail-cs-2.0.0.22-0.1mdv2009.1.i586.rpm 196baf5493824326359746e00ead63b7 2009.1/i586/mozilla-thunderbird-enigmail-de-2.0.0.22-0.1mdv2009.1.i586.rpm b44d943719a4a7275a7600d069e684cc 2009.1/i586/mozilla-thunderbird-enigmail-el-2.0.0.22-0.1mdv2009.1.i586.rpm e65eb6b1281d1dc2bc281047613727e8 2009.1/i586/mozilla-thunderbird-enigmail-es-2.0.0.22-0.1mdv2009.1.i586.rpm 29622de88e77a11f708f7267947e07ef 2009.1/i586/mozilla-thunderbird-enigmail-es_AR-2.0.0.22-0.1mdv2009.1.i586.rpm a7acecc047ee2d6069b50388a20242cd 2009.1/i586/mozilla-thunderbird-enigmail-fi-2.0.0.22-0.1mdv2009.1.i586.rpm 2f5268ff127941e1d14b41968b1cd5f7 2009.1/i586/mozilla-thunderbird-enigmail-fr-2.0.0.22-0.1mdv2009.1.i586.rpm c7542dce24efe4715bffbfc4e3d7dfd8 2009.1/i586/mozilla-thunderbird-enigmail-hu-2.0.0.22-0.1mdv2009.1.i586.rpm e57dc7fb5922cf9f1828229e826b032f 2009.1/i586/mozilla-thunderbird-enigmail-it-2.0.0.22-0.1mdv2009.1.i586.rpm 2c5e89f56491a3d533a86bcb7db41e4a 2009.1/i586/mozilla-thunderbird-enigmail-ja-2.0.0.22-0.1mdv2009.1.i586.rpm 96d60034ed3a60f8e192be7fbe48116b 2009.1/i586/mozilla-thunderbird-enigmail-ko-2.0.0.22-0.1mdv2009.1.i586.rpm 1d45c7eae6a5317856e46960f811c1ea 2009.1/i586/mozilla-thunderbird-enigmail-nb-2.0.0.22-0.1mdv2009.1.i586.rpm 818c2a29a9a9292e59a4a9f724aa0478 2009.1/i586/mozilla-thunderbird-enigmail-nl-2.0.0.22-0.1mdv2009.1.i586.rpm 820c14b99fd756017e415c4a5372f92f 2009.1/i586/mozilla-thunderbird-enigmail-pl-2.0.0.22-0.1mdv2009.1.i586.rpm bc95070e4d3729dd78ddb875a7d17aeb 2009.1/i586/mozilla-thunderbird-enigmail-pt-2.0.0.22-0.1mdv2009.1.i586.rpm 0d138dd796aca716759abac770a1ce23 2009.1/i586/mozilla-thunderbird-enigmail-pt_BR-2.0.0.22-0.1mdv2009.1.i586.rpm 89af87a95db7c0ef42a3276fc8156bcc 2009.1/i586/mozilla-thunderbird-enigmail-ro-2.0.0.22-0.1mdv2009.1.i586.rpm eff93cbe58b5cb8e1fe9e1de70f5a4f0 2009.1/i586/mozilla-thunderbird-enigmail-ru-2.0.0.22-0.1mdv2009.1.i586.rpm f1df047d6efa12f32097d097d48b704a 2009.1/i586/mozilla-thunderbird-enigmail-sk-2.0.0.22-0.1mdv2009.1.i586.rpm 20bb28bdb42e274fcc9f1c3091668469 2009.1/i586/mozilla-thunderbird-enigmail-sl-2.0.0.22-0.1mdv2009.1.i586.rpm 4275421e35038cfe11e0758e42cc479e 2009.1/i586/mozilla-thunderbird-enigmail-sv-2.0.0.22-0.1mdv2009.1.i586.rpm ffb9d4962a935213803e83798c6621fe 2009.1/i586/mozilla-thunderbird-enigmail-tr-2.0.0.22-0.1mdv2009.1.i586.rpm df2da216dd5f451e0eba46104c4c16c8 2009.1/i586/mozilla-thunderbird-enigmail-zh_CN-2.0.0.22-0.1mdv2009.1.i586.rpm 426c671bb02f2e464b214819a017e828 2009.1/i586/mozilla-thunderbird-enigmail-zh_TW-2.0.0.22-0.1mdv2009.1.i586.rpm 8e9a4493191bc5fe2e03a11a37a61cb4 2009.1/i586/mozilla-thunderbird-es_AR-2.0.0.22-0.2mdv2009.1.i586.rpm 59ffd147e03d1a18b91c6ddd308c4403 2009.1/i586/mozilla-thunderbird-es_ES-2.0.0.22-0.2mdv2009.1.i586.rpm 973f449008670efed5d87b82a2fb0ba2 2009.1/i586/mozilla-thunderbird-et_EE-2.0.0.22-0.2mdv2009.1.i586.rpm 8dbd59a3512bd4cbece923352f8f5419 2009.1/i586/mozilla-thunderbird-eu-2.0.0.22-0.2mdv2009.1.i586.rpm f4ca6aba4a61bab28cc799810c0e0e81 2009.1/i586/mozilla-thunderbird-fi-2.0.0.22-0.2mdv2009.1.i586.rpm 863688366881d4cede318185c40c7bdb 2009.1/i586/mozilla-thunderbird-fr-2.0.0.22-0.2mdv2009.1.i586.rpm e9f9d63315556c1c4d9d048f8ab865f3 2009.1/i586/mozilla-thunderbird-ga-2.0.0.22-0.2mdv2009.1.i586.rpm 3045ef6c6eb1a8219b0c992476910cab 2009.1/i586/mozilla-thunderbird-gu_IN-2.0.0.22-0.2mdv2009.1.i586.rpm ff60100d185cd9e35444bbf481d3aa0b 2009.1/i586/mozilla-thunderbird-he-2.0.0.22-0.2mdv2009.1.i586.rpm 235b0d9047649a4991f7299df220e187 2009.1/i586/mozilla-thunderbird-hu-2.0.0.22-0.2mdv2009.1.i586.rpm fc33be194a8b4a8fa172df2883bb0870 2009.1/i586/mozilla-thunderbird-it-2.0.0.22-0.2mdv2009.1.i586.rpm f23b7c36d824360b766cd37cde6a3b80 2009.1/i586/mozilla-thunderbird-ja-2.0.0.22-0.2mdv2009.1.i586.rpm 2e9c2111e51721c5f57a18d244e8dff2 2009.1/i586/mozilla-thunderbird-ko-2.0.0.22-0.2mdv2009.1.i586.rpm da7f810535024d8db93ae3d19fb5dcdd 2009.1/i586/mozilla-thunderbird-lt-2.0.0.22-0.2mdv2009.1.i586.rpm 8d2f895fbfd3ab6793212d94d7ef5046 2009.1/i586/mozilla-thunderbird-mk-2.0.0.22-0.2mdv2009.1.i586.rpm 554ee2516cf30e4b0d0483371580bf24 2009.1/i586/mozilla-thunderbird-moztraybiff-1.2.4-4.1mdv2009.1.i586.rpm f1ac69e1698de4364e8c87e7870a6c80 2009.1/i586/mozilla-thunderbird-nb_NO-2.0.0.22-0.2mdv2009.1.i586.rpm cb8129671430655fae4d0d7a88c1397f 2009.1/i586/mozilla-thunderbird-nl-2.0.0.22-0.2mdv2009.1.i586.rpm d3f09c58c7d073ee5200a641f6c44499 2009.1/i586/mozilla-thunderbird-nn_NO-2.0.0.22-0.2mdv2009.1.i586.rpm 0f2265afdb8fb261c912e8e33e670507 2009.1/i586/mozilla-thunderbird-pa_IN-2.0.0.22-0.2mdv2009.1.i586.rpm c8e4865276488f75c2f75b8dd7ec4acf 2009.1/i586/mozilla-thunderbird-pl-2.0.0.22-0.2mdv2009.1.i586.rpm 3d04d030561bd335235d642b41f39904 2009.1/i586/mozilla-thunderbird-pt_BR-2.0.0.22-0.2mdv2009.1.i586.rpm 6cdeca14a35ab4917a9d117ac879c2d2 2009.1/i586/mozilla-thunderbird-pt_PT-2.0.0.22-0.2mdv2009.1.i586.rpm 52910e3b4e6b2e3d029d4cee6f9ad27c 2009.1/i586/mozilla-thunderbird-ru-2.0.0.22-0.2mdv2009.1.i586.rpm c7c873673d6a01f93cef8a4c7b19bc1a 2009.1/i586/mozilla-thunderbird-sk-2.0.0.22-0.2mdv2009.1.i586.rpm db1440ad3c861c5cd2168565512546c2 2009.1/i586/mozilla-thunderbird-sl-2.0.0.22-0.2mdv2009.1.i586.rpm 8a700aa1ce307296184e987297aa1438 2009.1/i586/mozilla-thunderbird-sv_SE-2.0.0.22-0.2mdv2009.1.i586.rpm f056049b6aedb5c479d9b22453b750f7 2009.1/i586/mozilla-thunderbird-tr-2.0.0.22-0.2mdv2009.1.i586.rpm f3e2324b37715c4dde5544c9c8cd2e76 2009.1/i586/mozilla-thunderbird-uk-2.0.0.22-0.2mdv2009.1.i586.rpm cd7e0a2dae6b18596ed461edaaa16fb2 2009.1/i586/mozilla-thunderbird-zh_CN-2.0.0.22-0.2mdv2009.1.i586.rpm 0a9cc7d16198c3cfe08f67ced0411d68 2009.1/i586/mozilla-thunderbird-zh_TW-2.0.0.22-0.2mdv2009.1.i586.rpm dc58aec6bc541d5acd23a0be0f252dac 2009.1/i586/nsinstall-2.0.0.22-0.2mdv2009.1.i586.rpm f100a1f74c8db046105ebde6d8053b8d 2009.1/SRPMS/beagle-0.3.9-9.3mdv2009.1.src.rpm d076736a8ccd0cd741f1a60686051b25 2009.1/SRPMS/mozilla-thunderbird-2.0.0.22-0.2mdv2009.1.src.rpm ea3962b7f1abadaa7da31459358cc0c0 2009.1/SRPMS/mozilla-thunderbird-enigmail-l10n-2.0.0.22-0.1mdv2009.1.src.rpm a4c404a0808b8040671bc3667ec0b85e 2009.1/SRPMS/mozilla-thunderbird-l10n-2.0.0.22-0.2mdv2009.1.src.rpm f5ea0a5d06f8f85289b198df70b5bb53 2009.1/SRPMS/mozilla-thunderbird-moztraybiff-1.2.4-4.1mdv2009.1.src.rpm Mandriva Linux 2009.1/X86_64: 2da62f869a5ff93d2c7c6a0c517931b0 2009.1/x86_64/beagle-0.3.9-9.3mdv2009.1.x86_64.rpm 662e496636e4be07a450bbc23c9dafe8 2009.1/x86_64/beagle-crawl-system-0.3.9-9.3mdv2009.1.x86_64.rpm d871bbfd76368a2329d87ba1b0e49577 2009.1/x86_64/beagle-doc-0.3.9-9.3mdv2009.1.x86_64.rpm 45208303b8553dce7241385b0b8ff532 2009.1/x86_64/beagle-epiphany-0.3.9-9.3mdv2009.1.x86_64.rpm 0dedf947f77f15bec461e6ad03ad1525 2009.1/x86_64/beagle-evolution-0.3.9-9.3mdv2009.1.x86_64.rpm 9fb778ed5326093694921d8b9037208a 2009.1/x86_64/beagle-gui-0.3.9-9.3mdv2009.1.x86_64.rpm dabd79490a4a4b6aacbf051bbab17357 2009.1/x86_64/beagle-gui-qt-0.3.9-9.3mdv2009.1.x86_64.rpm 4e55c887d58c1c7fa23d4e69f7ea4e81 2009.1/x86_64/beagle-libs-0.3.9-9.3mdv2009.1.x86_64.rpm 0be57fed71b2897f83c0ce517f8bd5c1 2009.1/x86_64/firefox-ext-beagle-0.3.9-9.3mdv2009.1.x86_64.rpm 73f2b1392d04d0a3a3d1360ce4e59476 2009.1/x86_64/mozilla-thunderbird-2.0.0.22-0.2mdv2009.1.x86_64.rpm 9f7e56e5e622d3540175a0d522c2899e 2009.1/x86_64/mozilla-thunderbird-af-2.0.0.22-0.2mdv2009.1.x86_64.rpm 44f2492c7cd757ec670b58e088aba340 2009.1/x86_64/mozilla-thunderbird-be-2.0.0.22-0.2mdv2009.1.x86_64.rpm ff95d41af1d10bf92d3cf7b8f3e27b0a 2009.1/x86_64/mozilla-thunderbird-beagle-0.3.9-9.3mdv2009.1.x86_64.rpm 5251c6de33bedb53e314939cad20c0a3 2009.1/x86_64/mozilla-thunderbird-bg-2.0.0.22-0.2mdv2009.1.x86_64.rpm 1b5e2b3522a6b101e24585446aedbf4e 2009.1/x86_64/mozilla-thunderbird-ca-2.0.0.22-0.2mdv2009.1.x86_64.rpm 8647b942690c6fe35b448d303c46f2f1 2009.1/x86_64/mozilla-thunderbird-cs-2.0.0.22-0.2mdv2009.1.x86_64.rpm 9e229475fa7821675503f74ed058a1c2 2009.1/x86_64/mozilla-thunderbird-da-2.0.0.22-0.2mdv2009.1.x86_64.rpm 4ea955a1643c039841d6e3bbe26d191e 2009.1/x86_64/mozilla-thunderbird-de-2.0.0.22-0.2mdv2009.1.x86_64.rpm 8d4a00329e8464342b35e122bda919c2 2009.1/x86_64/mozilla-thunderbird-devel-2.0.0.22-0.2mdv2009.1.x86_64.rpm 9dd26efb24aaf638736ee6d2f9e57365 2009.1/x86_64/mozilla-thunderbird-el-2.0.0.22-0.2mdv2009.1.x86_64.rpm 6f67482d8bed0d2552e7b7cf085b5f97 2009.1/x86_64/mozilla-thunderbird-en_GB-2.0.0.22-0.2mdv2009.1.x86_64.rpm a8fa2373a4c40d69f48ed8505c8ea999 2009.1/x86_64/mozilla-thunderbird-enigmail-2.0.0.22-0.2mdv2009.1.x86_64.rpm de7b8cb87044d3244b80d164daf1c1ee 2009.1/x86_64/mozilla-thunderbird-enigmail-ar-2.0.0.22-0.1mdv2009.1.x86_64.rpm 68b92fe79720b24ceb5409dced2bf40b 2009.1/x86_64/mozilla-thunderbird-enigmail-ca-2.0.0.22-0.1mdv2009.1.x86_64.rpm 2c52ccab9cc13d49f89218e48a702903 2009.1/x86_64/mozilla-thunderbird-enigmail-cs-2.0.0.22-0.1mdv2009.1.x86_64.rpm c8debbad4e98148adfd54329d1ed2aed 2009.1/x86_64/mozilla-thunderbird-enigmail-de-2.0.0.22-0.1mdv2009.1.x86_64.rpm 5425aacee83b2913b423354d85a94be7 2009.1/x86_64/mozilla-thunderbird-enigmail-el-2.0.0.22-0.1mdv2009.1.x86_64.rpm 9a2fc2d3283a4edc7be9a4a2433237d8 2009.1/x86_64/mozilla-thunderbird-enigmail-es-2.0.0.22-0.1mdv2009.1.x86_64.rpm 90755853bd94534ec14897054a79cb89 2009.1/x86_64/mozilla-thunderbird-enigmail-es_AR-2.0.0.22-0.1mdv2009.1.x86_64.rpm ef2112f32abd9950c6c41a3e89b43ad4 2009.1/x86_64/mozilla-thunderbird-enigmail-fi-2.0.0.22-0.1mdv2009.1.x86_64.rpm 7b9bb608cdb35921f4f83bb1f116ff10 2009.1/x86_64/mozilla-thunderbird-enigmail-fr-2.0.0.22-0.1mdv2009.1.x86_64.rpm df721246134f6a6408d986672e8dcf1e 2009.1/x86_64/mozilla-thunderbird-enigmail-hu-2.0.0.22-0.1mdv2009.1.x86_64.rpm 5ce953170eeaa72ec94fe6e58fa64229 2009.1/x86_64/mozilla-thunderbird-enigmail-it-2.0.0.22-0.1mdv2009.1.x86_64.rpm 662a468b7e36ed961691dc146e611ab8 2009.1/x86_64/mozilla-thunderbird-enigmail-ja-2.0.0.22-0.1mdv2009.1.x86_64.rpm 309f9ed287e517f13f6c5d210da54be6 2009.1/x86_64/mozilla-thunderbird-enigmail-ko-2.0.0.22-0.1mdv2009.1.x86_64.rpm 177941f0f2d9db659b6a450cbd15ad2e 2009.1/x86_64/mozilla-thunderbird-enigmail-nb-2.0.0.22-0.1mdv2009.1.x86_64.rpm b1bd9af43406a24acc3503e085bce3d1 2009.1/x86_64/mozilla-thunderbird-enigmail-nl-2.0.0.22-0.1mdv2009.1.x86_64.rpm be9a6c2d63cbbda28f80ca2c4df5a66b 2009.1/x86_64/mozilla-thunderbird-enigmail-pl-2.0.0.22-0.1mdv2009.1.x86_64.rpm bed46b855e31f515db3585d7608d12ba 2009.1/x86_64/mozilla-thunderbird-enigmail-pt-2.0.0.22-0.1mdv2009.1.x86_64.rpm e41609df3ed84b6d77af7976288f44bc 2009.1/x86_64/mozilla-thunderbird-enigmail-pt_BR-2.0.0.22-0.1mdv2009.1.x86_64.rpm a72a186fba7defbb0a28b22a8c5cda05 2009.1/x86_64/mozilla-thunderbird-enigmail-ro-2.0.0.22-0.1mdv2009.1.x86_64.rpm ef18d5a5bbc3fd0695fa8ffa131f3f0a 2009.1/x86_64/mozilla-thunderbird-enigmail-ru-2.0.0.22-0.1mdv2009.1.x86_64.rpm 2f7556a9d4f8f14ff8dcd78c966343db 2009.1/x86_64/mozilla-thunderbird-enigmail-sk-2.0.0.22-0.1mdv2009.1.x86_64.rpm d0f660b1216bc41702658fed5dc4b1c9 2009.1/x86_64/mozilla-thunderbird-enigmail-sl-2.0.0.22-0.1mdv2009.1.x86_64.rpm 227b6fb76c65aec8a228239728640dd2 2009.1/x86_64/mozilla-thunderbird-enigmail-sv-2.0.0.22-0.1mdv2009.1.x86_64.rpm a2a147fcf27de9aacac4bb1dfdc0ff99 2009.1/x86_64/mozilla-thunderbird-enigmail-tr-2.0.0.22-0.1mdv2009.1.x86_64.rpm d769e9773d2f151c7697a3ee99cf17ce 2009.1/x86_64/mozilla-thunderbird-enigmail-zh_CN-2.0.0.22-0.1mdv2009.1.x86_64.rpm 0a8c48ea5e03df4c1bb311e5ddf8a973 2009.1/x86_64/mozilla-thunderbird-enigmail-zh_TW-2.0.0.22-0.1mdv2009.1.x86_64.rpm 6a4a8d7ee0ef5f6eeb81ecafb22e4ca3 2009.1/x86_64/mozilla-thunderbird-es_AR-2.0.0.22-0.2mdv2009.1.x86_64.rpm 8d3fce68c20bbe3a83aa42b8a547b053 2009.1/x86_64/mozilla-thunderbird-es_ES-2.0.0.22-0.2mdv2009.1.x86_64.rpm 4157c114734957ac91fbcbf44f862a64 2009.1/x86_64/mozilla-thunderbird-et_EE-2.0.0.22-0.2mdv2009.1.x86_64.rpm 8fe2b04c5aeac96ddf437f6568298672 2009.1/x86_64/mozilla-thunderbird-eu-2.0.0.22-0.2mdv2009.1.x86_64.rpm c360a496bc8a36260c220fb7cb0c9f08 2009.1/x86_64/mozilla-thunderbird-fi-2.0.0.22-0.2mdv2009.1.x86_64.rpm 56de1df029830c791cb28a7bcefc6d03 2009.1/x86_64/mozilla-thunderbird-fr-2.0.0.22-0.2mdv2009.1.x86_64.rpm 04497735707bbddd8fd51fe6a517f3de 2009.1/x86_64/mozilla-thunderbird-ga-2.0.0.22-0.2mdv2009.1.x86_64.rpm 561572ca6aff69f4a99cee697c3f74e2 2009.1/x86_64/mozilla-thunderbird-gu_IN-2.0.0.22-0.2mdv2009.1.x86_64.rpm bc48d69b45ca503eae63398ed7f45da1 2009.1/x86_64/mozilla-thunderbird-he-2.0.0.22-0.2mdv2009.1.x86_64.rpm 9f167b454193d2d91293410d74ce647f 2009.1/x86_64/mozilla-thunderbird-hu-2.0.0.22-0.2mdv2009.1.x86_64.rpm 249cd6cca02101ddb708b1e2d6c8f307 2009.1/x86_64/mozilla-thunderbird-it-2.0.0.22-0.2mdv2009.1.x86_64.rpm 898335850cd91401877bce62b6c2a994 2009.1/x86_64/mozilla-thunderbird-ja-2.0.0.22-0.2mdv2009.1.x86_64.rpm d8150962960eba53b082c09bd062ecf2 2009.1/x86_64/mozilla-thunderbird-ko-2.0.0.22-0.2mdv2009.1.x86_64.rpm 1e4c52b4ef53df2ce5ea5d445eaff554 2009.1/x86_64/mozilla-thunderbird-lt-2.0.0.22-0.2mdv2009.1.x86_64.rpm a83607505ee4fcc9edcadf27a8a150d2 2009.1/x86_64/mozilla-thunderbird-mk-2.0.0.22-0.2mdv2009.1.x86_64.rpm 41cf8e98f9f0981f30a7c74a7dc6bd09 2009.1/x86_64/mozilla-thunderbird-moztraybiff-1.2.4-4.1mdv2009.1.x86_64.rpm b9a4290035c13a733000328692beb9ea 2009.1/x86_64/mozilla-thunderbird-nb_NO-2.0.0.22-0.2mdv2009.1.x86_64.rpm 824f9616ef6a24eccb28fbc6d3ee9f65 2009.1/x86_64/mozilla-thunderbird-nl-2.0.0.22-0.2mdv2009.1.x86_64.rpm 29cd086f4268a18655b278b58cded87e 2009.1/x86_64/mozilla-thunderbird-nn_NO-2.0.0.22-0.2mdv2009.1.x86_64.rpm 94abd2d68c2181d6d0b20d62996f38ee 2009.1/x86_64/mozilla-thunderbird-pa_IN-2.0.0.22-0.2mdv2009.1.x86_64.rpm cbbb2113d3efc3b5e9365144d8781bb9 2009.1/x86_64/mozilla-thunderbird-pl-2.0.0.22-0.2mdv2009.1.x86_64.rpm 8cc2c608dacc8dc632f429d8cf628d87 2009.1/x86_64/mozilla-thunderbird-pt_BR-2.0.0.22-0.2mdv2009.1.x86_64.rpm c4645275b5f7c58ffbd35f12457c9f48 2009.1/x86_64/mozilla-thunderbird-pt_PT-2.0.0.22-0.2mdv2009.1.x86_64.rpm 7cac1d931b77cb18933d22078fce21ec 2009.1/x86_64/mozilla-thunderbird-ru-2.0.0.22-0.2mdv2009.1.x86_64.rpm df24db123ea0b145408629a5ee477dca 2009.1/x86_64/mozilla-thunderbird-sk-2.0.0.22-0.2mdv2009.1.x86_64.rpm bca57d90b84c55e0ab0d9a38ed1f8a68 2009.1/x86_64/mozilla-thunderbird-sl-2.0.0.22-0.2mdv2009.1.x86_64.rpm 25e98efa42d0510073f99785d30cb4a7 2009.1/x86_64/mozilla-thunderbird-sv_SE-2.0.0.22-0.2mdv2009.1.x86_64.rpm e1abdb59f195ee55a955f00005e68902 2009.1/x86_64/mozilla-thunderbird-tr-2.0.0.22-0.2mdv2009.1.x86_64.rpm ab3476d731439a7769143f4021866895 2009.1/x86_64/mozilla-thunderbird-uk-2.0.0.22-0.2mdv2009.1.x86_64.rpm f9640ebe4b28095fdf6a6eb2e278e6cb 2009.1/x86_64/mozilla-thunderbird-zh_CN-2.0.0.22-0.2mdv2009.1.x86_64.rpm a4ae3fe6c89d24d7483c74a9f524a8c4 2009.1/x86_64/mozilla-thunderbird-zh_TW-2.0.0.22-0.2mdv2009.1.x86_64.rpm cac2f8bf2d12099a9dc1ac981c536ea4 2009.1/x86_64/nsinstall-2.0.0.22-0.2mdv2009.1.x86_64.rpm f100a1f74c8db046105ebde6d8053b8d 2009.1/SRPMS/beagle-0.3.9-9.3mdv2009.1.src.rpm d076736a8ccd0cd741f1a60686051b25 2009.1/SRPMS/mozilla-thunderbird-2.0.0.22-0.2mdv2009.1.src.rpm ea3962b7f1abadaa7da31459358cc0c0 2009.1/SRPMS/mozilla-thunderbird-enigmail-l10n-2.0.0.22-0.1mdv2009.1.src.rpm a4c404a0808b8040671bc3667ec0b85e 2009.1/SRPMS/mozilla-thunderbird-l10n-2.0.0.22-0.2mdv2009.1.src.rpm f5ea0a5d06f8f85289b198df70b5bb53 2009.1/SRPMS/mozilla-thunderbird-moztraybiff-1.2.4-4.1mdv2009.1.src.rpm Corporate 3.0: c92b16fa9e7f6a8579e89e801afb8914 corporate/3.0/i586/mozilla-thunderbird-2.0.0.22-0.1.C30mdk.i586.rpm c96e5b944ee9e0140748e64e27a81b8c corporate/3.0/i586/mozilla-thunderbird-af-2.0.0.22-0.1.C30mdk.i586.rpm d656c5c5ca78245b0f57d1236a5415d6 corporate/3.0/i586/mozilla-thunderbird-be-2.0.0.22-0.1.C30mdk.i586.rpm 6ea4ce23d18cbba92e719a728cad7464 corporate/3.0/i586/mozilla-thunderbird-bg-2.0.0.22-0.1.C30mdk.i586.rpm e86c9ec19702b82b948134b5547a56ac corporate/3.0/i586/mozilla-thunderbird-ca-2.0.0.22-0.1.C30mdk.i586.rpm 18014aa2d910b8144506500edf2fd5fa corporate/3.0/i586/mozilla-thunderbird-cs-2.0.0.22-0.1.C30mdk.i586.rpm 69b024fc9e8258ba5e93f0fc6c834b15 corporate/3.0/i586/mozilla-thunderbird-da-2.0.0.22-0.1.C30mdk.i586.rpm ba9f2d7e137c56565d5fa0507417be89 corporate/3.0/i586/mozilla-thunderbird-de-2.0.0.22-0.1.C30mdk.i586.rpm 2da05629ba30268481ed03bab667f7b9 corporate/3.0/i586/mozilla-thunderbird-devel-2.0.0.22-0.1.C30mdk.i586.rpm 66b31c438610793764ce62c5bd11035a corporate/3.0/i586/mozilla-thunderbird-el-2.0.0.22-0.1.C30mdk.i586.rpm fd2008835ae3c92ac77d82101b3d2cdc corporate/3.0/i586/mozilla-thunderbird-en_GB-2.0.0.22-0.1.C30mdk.i586.rpm 9281c64d2c49d82187639ca2961d7a26 corporate/3.0/i586/mozilla-thunderbird-enigmail-2.0.0.22-0.1.C30mdk.i586.rpm f1dcb5451b2f3238aebc9fd430c3314c corporate/3.0/i586/mozilla-thunderbird-enigmail-ar-2.0.0.22-0.1.C30mdk.i586.rpm 4df77c74c3da7f1d34441c7acead8bd4 corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-2.0.0.22-0.1.C30mdk.i586.rpm 3f1517beb85c1f993b1dff26a3e9c71f corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-2.0.0.22-0.1.C30mdk.i586.rpm e4049357ef9577a2137e6bd448b00811 corporate/3.0/i586/mozilla-thunderbird-enigmail-de-2.0.0.22-0.1.C30mdk.i586.rpm d170c5958628e657c40dc7f28c63ac4a corporate/3.0/i586/mozilla-thunderbird-enigmail-el-2.0.0.22-0.1.C30mdk.i586.rpm 5ef50ce7790f53d2425142cf05a4ff2b corporate/3.0/i586/mozilla-thunderbird-enigmail-es-2.0.0.22-0.1.C30mdk.i586.rpm 481731cd0b4874d663c61b0554bce79d corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-2.0.0.22-0.1.C30mdk.i586.rpm c47b44988030217c5045ca868f92fa4b corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-2.0.0.22-0.1.C30mdk.i586.rpm 0b4945d152466225d2f9f3f143953ade corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-2.0.0.22-0.1.C30mdk.i586.rpm 815e3422a5fedbe4699422d2ea0411b6 corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-2.0.0.22-0.1.C30mdk.i586.rpm 25c9c7f4566f351df13607424cbca98c corporate/3.0/i586/mozilla-thunderbird-enigmail-it-2.0.0.22-0.1.C30mdk.i586.rpm 666ec4c860b257101a7b13aa6fa8f0f2 corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-2.0.0.22-0.1.C30mdk.i586.rpm 5e95314ed392d9d838826cb1af293214 corporate/3.0/i586/mozilla-thunderbird-enigmail-ko-2.0.0.22-0.1.C30mdk.i586.rpm 2ddb449bc6b4fded6b3302e65a0cdba9 corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-2.0.0.22-0.1.C30mdk.i586.rpm 3d25f52d568538a27efbdcad3d3ce753 corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-2.0.0.22-0.1.C30mdk.i586.rpm 6919e6d16f52b9df926f7464eb7fe68c corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-2.0.0.22-0.1.C30mdk.i586.rpm caa54785feecd38607b03d89c796fc12 corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-2.0.0.22-0.1.C30mdk.i586.rpm a498135270d445bf1c9ca8608032c35b corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-2.0.0.22-0.1.C30mdk.i586.rpm c0639654d20df776e6349d0de26e7756 corporate/3.0/i586/mozilla-thunderbird-enigmail-ro-2.0.0.22-0.1.C30mdk.i586.rpm 0ed9261cc0a9e8e20a613762dee5551b corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-2.0.0.22-0.1.C30mdk.i586.rpm 3ed6c10ceb4599597bb479e42002ee23 corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-2.0.0.22-0.1.C30mdk.i586.rpm eb654b79cd82c7c9f1c3ad396fa7f577 corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-2.0.0.22-0.1.C30mdk.i586.rpm 737b62ceee1e4d07459a67afcc094762 corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-2.0.0.22-0.1.C30mdk.i586.rpm d429a258a553821219ba79df36325bfc corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-2.0.0.22-0.1.C30mdk.i586.rpm 9a0e242cd670dc202665633966407c47 corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_TW-2.0.0.22-0.1.C30mdk.i586.rpm d5d8d409fa8e78c35d1bb26d52700729 corporate/3.0/i586/mozilla-thunderbird-es_AR-2.0.0.22-0.1.C30mdk.i586.rpm 2a65dc22e23516ce1efe4fb628e63539 corporate/3.0/i586/mozilla-thunderbird-es_ES-2.0.0.22-0.1.C30mdk.i586.rpm 2df2b102f702cf8c076cca04236fa056 corporate/3.0/i586/mozilla-thunderbird-et_EE-2.0.0.22-0.1.C30mdk.i586.rpm 6c31114e0e9b151ed5630e78eba9df57 corporate/3.0/i586/mozilla-thunderbird-eu-2.0.0.22-0.1.C30mdk.i586.rpm e1f60fb33810ec1c5a02db1f363af2a2 corporate/3.0/i586/mozilla-thunderbird-fi-2.0.0.22-0.1.C30mdk.i586.rpm 0e4c921ac07bac01cea08fff9d2a0314 corporate/3.0/i586/mozilla-thunderbird-fr-2.0.0.22-0.1.C30mdk.i586.rpm f949edcca95d3fdde3e0547f3d939547 corporate/3.0/i586/mozilla-thunderbird-gu_IN-2.0.0.22-0.1.C30mdk.i586.rpm 04c906c08c28cc880d18ee0187a7a6e3 corporate/3.0/i586/mozilla-thunderbird-he-2.0.0.22-0.1.C30mdk.i586.rpm 74be4ab16e4afd1423b36cc684815988 corporate/3.0/i586/mozilla-thunderbird-hu-2.0.0.22-0.1.C30mdk.i586.rpm 73d3aafbc81db0e746b55e148cd9cd5e corporate/3.0/i586/mozilla-thunderbird-it-2.0.0.22-0.1.C30mdk.i586.rpm 51fba26c0d56671d79dda485bb54bb2c corporate/3.0/i586/mozilla-thunderbird-ja-2.0.0.22-0.1.C30mdk.i586.rpm f5d50131db0ce7c9af67540ebd405aba corporate/3.0/i586/mozilla-thunderbird-ko-2.0.0.22-0.1.C30mdk.i586.rpm 763327e5d4e5483a9bc913432144913d corporate/3.0/i586/mozilla-thunderbird-lt-2.0.0.22-0.1.C30mdk.i586.rpm 247642a977b13e57e2108e16c75e0565 corporate/3.0/i586/mozilla-thunderbird-mk-2.0.0.22-0.1.C30mdk.i586.rpm 56fe670cedccb78f631acfd8176237a0 corporate/3.0/i586/mozilla-thunderbird-nb_NO-2.0.0.22-0.1.C30mdk.i586.rpm d85bb020f56c522b1b634fa4fc8d49c8 corporate/3.0/i586/mozilla-thunderbird-nl-2.0.0.22-0.1.C30mdk.i586.rpm bc2c1c3077323ab5d84363c6d54a0597 corporate/3.0/i586/mozilla-thunderbird-nn_NO-2.0.0.22-0.1.C30mdk.i586.rpm 1f1410d7eba941062b7c5d6c8b6d7b07 corporate/3.0/i586/mozilla-thunderbird-pa_IN-2.0.0.22-0.1.C30mdk.i586.rpm 1a2018632a59e43dee018df1aa23145c corporate/3.0/i586/mozilla-thunderbird-pl-2.0.0.22-0.1.C30mdk.i586.rpm bb8972ebf6519e0bbabf2b977252b056 corporate/3.0/i586/mozilla-thunderbird-pt_BR-2.0.0.22-0.1.C30mdk.i586.rpm 18bd670765a066e2eb80a06f44523646 corporate/3.0/i586/mozilla-thunderbird-pt_PT-2.0.0.22-0.1.C30mdk.i586.rpm 26d265653fd26d18c6bda0b71ac156b4 corporate/3.0/i586/mozilla-thunderbird-ru-2.0.0.22-0.1.C30mdk.i586.rpm 9ee8e4ce417c004c7728d56f02dcff67 corporate/3.0/i586/mozilla-thunderbird-sk-2.0.0.22-0.1.C30mdk.i586.rpm 955519fdd109daa18757287415f7496c corporate/3.0/i586/mozilla-thunderbird-sl-2.0.0.22-0.1.C30mdk.i586.rpm e61840f96884ccb2799fd34ba64619a5 corporate/3.0/i586/mozilla-thunderbird-sv_SE-2.0.0.22-0.1.C30mdk.i586.rpm 8647a6ce095f5edd3d6d27d82ec07995 corporate/3.0/i586/mozilla-thunderbird-tr-2.0.0.22-0.1.C30mdk.i586.rpm 7c21fe6c8d47761f517a8acb86e071f0 corporate/3.0/i586/mozilla-thunderbird-uk-2.0.0.22-0.1.C30mdk.i586.rpm 2706219e3885d51566c833b6e884feb8 corporate/3.0/i586/mozilla-thunderbird-zh_CN-2.0.0.22-0.1.C30mdk.i586.rpm 7aa0eba55ebc01e664044a9e646ac59f corporate/3.0/i586/mozilla-thunderbird-zh_TW-2.0.0.22-0.1.C30mdk.i586.rpm d3c6c8eab63df310141c78242026562f corporate/3.0/i586/nsinstall-2.0.0.22-0.1.C30mdk.i586.rpm a634c5a8a69babbde95c6200625aa75c corporate/3.0/SRPMS/mozilla-thunderbird-2.0.0.22-0.1.C30mdk.src.rpm caee1fb49ad5d11601d714d1eda660e5 corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-2.0.0.22-0.1.C30mdk.src.rpm 0095f06d1bd7c207a18064278c049bff corporate/3.0/SRPMS/mozilla-thunderbird-l10n-2.0.0.22-0.1.C30mdk.src.rpm Corporate 3.0/X86_64: e96f367a48e1c8525069904dcdc6d437 corporate/3.0/x86_64/mozilla-thunderbird-2.0.0.22-0.1.C30mdk.x86_64.rpm 97e2c5d47dc8f41e91c5a6ea5cb892a7 corporate/3.0/x86_64/mozilla-thunderbird-af-2.0.0.22-0.1.C30mdk.x86_64.rpm 12e0fa9bf263fe1e173785ddc30324dc corporate/3.0/x86_64/mozilla-thunderbird-be-2.0.0.22-0.1.C30mdk.x86_64.rpm c2407130877d7ee2823d3a4d97cd4459 corporate/3.0/x86_64/mozilla-thunderbird-bg-2.0.0.22-0.1.C30mdk.x86_64.rpm 3ecbe33369f59637dbd8a333d0439926 corporate/3.0/x86_64/mozilla-thunderbird-ca-2.0.0.22-0.1.C30mdk.x86_64.rpm b9249b4ad21a8bc1df8fe87b4b405219 corporate/3.0/x86_64/mozilla-thunderbird-cs-2.0.0.22-0.1.C30mdk.x86_64.rpm 7db4ad9336bbd246fdda2bbf75b1a784 corporate/3.0/x86_64/mozilla-thunderbird-da-2.0.0.22-0.1.C30mdk.x86_64.rpm 325b22e636df2bc09f4c52d44dfabc16 corporate/3.0/x86_64/mozilla-thunderbird-de-2.0.0.22-0.1.C30mdk.x86_64.rpm 312f45401494045aa141ca401ed791b7 corporate/3.0/x86_64/mozilla-thunderbird-devel-2.0.0.22-0.1.C30mdk.x86_64.rpm 4e93eba89593f2b8c60e1bb32f36456e corporate/3.0/x86_64/mozilla-thunderbird-el-2.0.0.22-0.1.C30mdk.x86_64.rpm b8db695846e9c2c212d66f78af48f353 corporate/3.0/x86_64/mozilla-thunderbird-en_GB-2.0.0.22-0.1.C30mdk.x86_64.rpm 0936ab3044c033e9a936ff192503caeb corporate/3.0/x86_64/mozilla-thunderbird-enigmail-2.0.0.22-0.1.C30mdk.x86_64.rpm bc2e4667810bb25ddc39dd412951de6b corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ar-2.0.0.22-0.1.C30mdk.x86_64.rpm 15653470cf0bdd60dde2881c02eda042 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-2.0.0.22-0.1.C30mdk.x86_64.rpm ce6bdb7de715151eaf1b8688fd6837df corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-2.0.0.22-0.1.C30mdk.x86_64.rpm 8686eec993141ef9ae316fa6d283d5d9 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-2.0.0.22-0.1.C30mdk.x86_64.rpm 76b7c94f1a3a2f3b2b5687a3eaca551d corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-2.0.0.22-0.1.C30mdk.x86_64.rpm 797784f716e8f064a05c2285c7b88d24 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-2.0.0.22-0.1.C30mdk.x86_64.rpm fcd412106a81036309428f95f2d4d688 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-2.0.0.22-0.1.C30mdk.x86_64.rpm e0673d005fdd5ad3f5e0c478704db13d corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-2.0.0.22-0.1.C30mdk.x86_64.rpm 8275d585dda27b8506b23fbf49981207 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-2.0.0.22-0.1.C30mdk.x86_64.rpm a58ba551d63dfc6552d140b70fa1866a corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-2.0.0.22-0.1.C30mdk.x86_64.rpm f18918026c3446bd37c35c5b3665a632 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-2.0.0.22-0.1.C30mdk.x86_64.rpm 717a29119c4dc0ba8e9cfd576b471699 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-2.0.0.22-0.1.C30mdk.x86_64.rpm 55d29900c1c29774cec2f5522b3cfc20 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ko-2.0.0.22-0.1.C30mdk.x86_64.rpm ef02cb7ed563a9065e1cbe7fa1cda922 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-2.0.0.22-0.1.C30mdk.x86_64.rpm 68198a5d73f6cfd2e1b23b76bb456856 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-2.0.0.22-0.1.C30mdk.x86_64.rpm 9b7633349e45e9718f784b48c5c6cdff corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-2.0.0.22-0.1.C30mdk.x86_64.rpm 05fcadb49b4276bb3c0e47d0714b5949 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-2.0.0.22-0.1.C30mdk.x86_64.rpm 61b243006ac8b19154363da86f473254 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-2.0.0.22-0.1.C30mdk.x86_64.rpm b93abc21e92208abba9816d49a878379 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ro-2.0.0.22-0.1.C30mdk.x86_64.rpm c2d36d9bd1e188ba0f4a015cc1b044b8 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-2.0.0.22-0.1.C30mdk.x86_64.rpm c0e7dc2b9b079bff49ffe0832cc7a9e6 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-2.0.0.22-0.1.C30mdk.x86_64.rpm f6e413090084c29ecf9a523403765118 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-2.0.0.22-0.1.C30mdk.x86_64.rpm 0e31c0979f900b0f48a0555fd7daf893 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-2.0.0.22-0.1.C30mdk.x86_64.rpm df2274f689d31507c68c5d0f372ef8ab corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-2.0.0.22-0.1.C30mdk.x86_64.rpm b2ee1717c63abc516d8724172b2843b8 corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_TW-2.0.0.22-0.1.C30mdk.x86_64.rpm 6f091a4b5d1caa5111979f0be489c111 corporate/3.0/x86_64/mozilla-thunderbird-es_AR-2.0.0.22-0.1.C30mdk.x86_64.rpm bc960bfa45dccbaded508c12d8376cef corporate/3.0/x86_64/mozilla-thunderbird-es_ES-2.0.0.22-0.1.C30mdk.x86_64.rpm 3177081d131330cf01c5c7368324329a corporate/3.0/x86_64/mozilla-thunderbird-et_EE-2.0.0.22-0.1.C30mdk.x86_64.rpm 4e8f24187479ca488ceb30820329b73d corporate/3.0/x86_64/mozilla-thunderbird-eu-2.0.0.22-0.1.C30mdk.x86_64.rpm b4ccd42b9cbb54a6dcf2da887d0fa679 corporate/3.0/x86_64/mozilla-thunderbird-fi-2.0.0.22-0.1.C30mdk.x86_64.rpm 6664365d4da92474154011109550ff38 corporate/3.0/x86_64/mozilla-thunderbird-fr-2.0.0.22-0.1.C30mdk.x86_64.rpm 3574660b97f6c05eab21655e20da3bc6 corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-2.0.0.22-0.1.C30mdk.x86_64.rpm 7c1bd927ec7aef3f30d93a1489f49b04 corporate/3.0/x86_64/mozilla-thunderbird-he-2.0.0.22-0.1.C30mdk.x86_64.rpm 7d3ae61f0aa7b328855beb1900d7032c corporate/3.0/x86_64/mozilla-thunderbird-hu-2.0.0.22-0.1.C30mdk.x86_64.rpm 0e6c6f91ff08eaff69ae9e6d84a35874 corporate/3.0/x86_64/mozilla-thunderbird-it-2.0.0.22-0.1.C30mdk.x86_64.rpm 137dec888f7ec9be7ce4765e6c169cee corporate/3.0/x86_64/mozilla-thunderbird-ja-2.0.0.22-0.1.C30mdk.x86_64.rpm e1d895b180b1ab6337908cccef65de38 corporate/3.0/x86_64/mozilla-thunderbird-ko-2.0.0.22-0.1.C30mdk.x86_64.rpm 53e261c3bcbc1c18a6c0bc24ad653c9d corporate/3.0/x86_64/mozilla-thunderbird-lt-2.0.0.22-0.1.C30mdk.x86_64.rpm 891827a775cf8331eb2e9410c2098963 corporate/3.0/x86_64/mozilla-thunderbird-mk-2.0.0.22-0.1.C30mdk.x86_64.rpm 8c55d7955e928082193be3d24e6b23ca corporate/3.0/x86_64/mozilla-thunderbird-nb_NO-2.0.0.22-0.1.C30mdk.x86_64.rpm 9db81c990197e3cc09f4b5633137f7b3 corporate/3.0/x86_64/mozilla-thunderbird-nl-2.0.0.22-0.1.C30mdk.x86_64.rpm 4c5846e20e1433289f4b0c766c5fed05 corporate/3.0/x86_64/mozilla-thunderbird-nn_NO-2.0.0.22-0.1.C30mdk.x86_64.rpm 5f2f7618a84b2c0d32662a703b87e680 corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-2.0.0.22-0.1.C30mdk.x86_64.rpm 34cd68e16a629bd6dcd3d22f5249a135 corporate/3.0/x86_64/mozilla-thunderbird-pl-2.0.0.22-0.1.C30mdk.x86_64.rpm 96a4b8da27e7f196580cb1aba46fe936 corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-2.0.0.22-0.1.C30mdk.x86_64.rpm f3c9f06b81163004a944a0839d656338 corporate/3.0/x86_64/mozilla-thunderbird-pt_PT-2.0.0.22-0.1.C30mdk.x86_64.rpm 40c7c74059855157a1237a6e37233025 corporate/3.0/x86_64/mozilla-thunderbird-ru-2.0.0.22-0.1.C30mdk.x86_64.rpm 40dab55b04a01777551f26f202b33186 corporate/3.0/x86_64/mozilla-thunderbird-sk-2.0.0.22-0.1.C30mdk.x86_64.rpm 3c8fb11845ac02d7941dc83a2516a230 corporate/3.0/x86_64/mozilla-thunderbird-sl-2.0.0.22-0.1.C30mdk.x86_64.rpm b6859f11e0a3faf67f482312ffcdf008 corporate/3.0/x86_64/mozilla-thunderbird-sv_SE-2.0.0.22-0.1.C30mdk.x86_64.rpm 9d1836799a3af4df4b0be110ef83fddf corporate/3.0/x86_64/mozilla-thunderbird-tr-2.0.0.22-0.1.C30mdk.x86_64.rpm 080f6889b8dfc2e1c3d968cc69587284 corporate/3.0/x86_64/mozilla-thunderbird-uk-2.0.0.22-0.1.C30mdk.x86_64.rpm 5a03f82027851737a413e88858868bd6 corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-2.0.0.22-0.1.C30mdk.x86_64.rpm 01d60fc45741a9b09291a0557d08a311 corporate/3.0/x86_64/mozilla-thunderbird-zh_TW-2.0.0.22-0.1.C30mdk.x86_64.rpm 83e45fb14e2b5851f94da672ecf180eb corporate/3.0/x86_64/nsinstall-2.0.0.22-0.1.C30mdk.x86_64.rpm a634c5a8a69babbde95c6200625aa75c corporate/3.0/SRPMS/mozilla-thunderbird-2.0.0.22-0.1.C30mdk.src.rpm caee1fb49ad5d11601d714d1eda660e5 corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-2.0.0.22-0.1.C30mdk.src.rpm 0095f06d1bd7c207a18064278c049bff corporate/3.0/SRPMS/mozilla-thunderbird-l10n-2.0.0.22-0.1.C30mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFKROsVmqjQ0CJFipgRAhgbAKCBiRh3FmjExokOWQl0EbxFKbBw7wCg4tnF cWGuNt/Mwp+L56CZ8s2o9Tc= =jHgb -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
21:36
MSN Bot Plays on Controversy over Michael Jackson’s Death
» TrendLabs | Malware Blog - by Trend MicroFollowing the sudden and shocking death of The King of Pop, Senior Threat Researcher Loucif Kharouni reports that a slew of malicious links related to Michael Jackson’s last moments in the hospital before his death are now being proliferated in the wild via the instant messaging (IM) application, MSN. Below is a sample screenshot of an MSN IM window containing various templates of the said malicious links:
When recipients of such messages click on any of these links, they are then prompted to save a file named PIC-IMG029-www.hi5.com.exe (with the MD5 checksum of 031429fc14151f94c8651a3fb110c19b), instead of being led to an image site or gallery. Initial analysis shows that the said file is a variant of the SDBOT family.
More updates shortly. Stay tuned.
Post from: TrendLabs | Malware Blog - by Trend Micro
MSN Bot Plays on Controversy over Michael Jackson’s Death
-
21:36
[ MDVSA-2009:141 ] mozilla-thunderbird
» Bugtraq (bugtraq) Mailing ListPosted by security_at_mandriva.com on Jun 26_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2009:141
http://www.mandriva.com/security/
_______________________________________________________________________
Package :...
-
21:28
Re: Trillian SSL Certificate Vulnerability
» Bugtraq (bugtraq) Mailing ListPosted by krymson_at_gmail.com on Jun 26('binary' encoding is not supported, stored as-is) Is this grabbing the authentication credentials in plain text or just the hash?
<- snip ->
Trillian SSL Certificate Vulnerability
I. The Vulnerability
Trillian does not check SSL certificate before sending MSN user
credentials. An... -
21:24
evil little dictionary
» Bugtraq (bugtraq) Mailing ListPosted by Pavel Machek on Jun 26Subject: stardict broadcasts clipboard context over network
Package: stardict
Version: 3.0.1-4.1
Justification: user security hole
Severity: grave
Tags: security
*** Please type your report below this line ***
In default config "enable net dict" is selected, it attempts to grab
...
-
Zango v. Kaspersky
» Sunbelt BlogAnti-malware providers got good news today from the U.S. Ninth Circuit Court of Appeals in Seattle, Wash.
Readers of this blog may remember the lawsuit that Zango filed against Kaspersky back in 1997 for blocking its software. As we reported, Zango's case against Kaspersky suffered a severe setback when the Washington State Superior Court handling the case granted Kaspersky's motion for summary judgment on the grounds that Kaspersky, as an "interactive computer service" provider, enjoyed immunity from such lawsuits under section 230 of the "Communications Decency Act" (CDA, 1996) (link here).
We hailed that decision and promptly signed on to the amicus brief filed by the Center for Democracy and Technology with the Ninth Circuit Court of Appeals in response to Zango's appeal of the original decision (link here).
We are now pleased to report that the Ninth Circuit Court of Appeals has upheld that original decision, affirming that Kaspersky enjoys "good Samaritan" protection afforded by the CDA. In the court's own words, a provider of "access tools that filter, screen, allow, or disallow content that the provider or users considers obscene, lewd, lascivious, filthy, excessively violent, harassing, or otherwise objectionable is protected from liability [by the CDA] for any action taken to make available to others the technical means to restrict access to that material." For the Court's full opinion, see the PDF file (here), which also includes an interesting concurring opinion from one of the panel's three judges.
Admittedly, this decision is not nearly as consequential for anti-malware providers as it would have been three or four years ago, when adware vendors such as Zango and Direct Revenue were regularly threatening anti-spyware providers with legal action and peppering them with cease-and-desist letters on a weekly basis. It's a been a while since we received any serious legal threats, although we do still get the occasional protest from software developers whose apps we target as "low risk," potentially unwanted programs or tools. Nonetheless, the decision is a welcome one, as it extends to Sunbelt and other anti-malware providers the kind of legal cover we need in order to provide our customers and users with strong protection against unwanted, malicious software.
It's worth noting that Judge Fisher, in his concurring opinion, voiced concerns over the seemingly broad language of the statue in question, raising the possibility that "under the generous coverage of [the statute's] immunity language, a blocking software provider might abuse that immunity to block content for anti-competitive purposes or merely at its malicious whim..."
In a similar vein, one adware vendor we dealt with recently complained that our targeting policies effectively made Sunbelt (and other anti-malware vendors) into a law-unto-itself that operated on the assumption that "users cannot decide for themselves what they want on their computer."
We think these kinds of concerns are misplaced. While the language of the statute is somewhat broad ("...or otherwise objectionable"), users are always free to replace an overly restrictive blocking tool with one of the dozens (if not hundreds) of alternatives that exist in the market, as the Judge Rymer notes in the main opinion:
"If a Kaspersky user (who has bought and installed Kaspersky’s software to block malware) is unhappy with the Kaspersky software’s performance, he can uninstall Kaspersky and buy blocking software from another company that is less restrictive or more compatible with the user’s needs. Recourse to competition is consistent with the statute’s express policy of relying on the market for the development of interactive computer services."
Or, as we explained to that adware vendor:
"We sell a service to customers who are willing to pay for it. If they think our protection ineffective, excessive, or misguided, we lose business."
Judge Fischer raises the prospect that anti-competitive blocking by a covered blocking software provider could occur without the user's knowledge, however, the example he offers (Zango's own users) undermines the very point he is trying to make. In that case, users who actually did want to use Zango's software (pop-ups and all) were most certainly aware that something wasn't right and contacted Zango about it. Zango, in turn, presumably informed them about the blocking, if they weren't already aware of it. The performance and detections of anti-malware software are simply under too much daily scrutiny from users, industry experts, testers, competitors, adware vendors, and, yes, malware developers and hackers themselves for unnoticed blocking to occur for any length of time.
The bottom line is that no anti-malware vendor can afford to promiscuously or arbitrarily block and remove content that their users actually want installed on their PCs. In this case, the market can work. What we need, however, is some measure of protection from entities who seek to deny consumers access to tools that can actually protect their PCs and networks against unwanted software that just happen to sport all the legal muscle that advertising revenue can buy.
Eric L. Howes -
Julie Amero case featured in new forensic book
» Sunbelt BlogA while back, Stephen Mason, an attorney in the UK, edited a book on electronic evidence called Electronic Evidence: Disclosure, Discovery & Admissibility.
He’s updated the book to include an overview of the Julie Amero case, and the section on Julie’s case is available as a free download here.
Alex Eckelberry
-
19:16
Special SANSFIRE 2009 Podcast Presentations - State of the Internet Panel, (Fri, Jun 26th)
» SANS Internet Storm Center, InfoCON: greenOur third presentation is by all of the Internet Storm Center Handlers that were present (at the tim ...(more)...
-
19:10
Re: [Full-disclosure] TomaHawk IPS testing tool + [files]
» Full DisclosureFrom: Aaron Turner
Date: Fri, 26 Jun 2009 16:59:33 +0100
On Thu, Jun 25, 2009 at 5:12 PM, Mark Sec<mark.sec@gmail.com> wrote: > Alo , > > Does any1 know where i can down the original install scripts? > > 1) qa.tgz > 2) pcaps.tgz > 3) www.tgz > > I have this mirror , but don't have the www.tgz file, works files... > http://www.mirrorservice.org/sites/download.sourceforge.net/pub/sourceforge/t/to/tomahawk/ > > About the tomahawk's page, must follow these intruscciones: > http://www.tomahawktesttool.org/install.html > > I have a Fedora10 Virtual box if any1 have more experience using this tool > over vmware, please postme > Also, if any1 know a best tool to "stress" a IDS/IPS as tomahawk? more > efficient? please postme.. pcapr.net has about 1500 pcaps all nice and categorized for your downloading pleasure. You probably could create an interesting traffic mix with some of them. Tcpreplay generally can do higher throughput then tomahawk, but depending on what you mean by "stress" may or may not be appropriate. Honestly, running either tool inside of a VM is likely to hurt performance. -- Aaron Turner http://synfin.net/ http://tcpreplay.synfin.net/ - Pcap editing and replay tools for Unix & Windows Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. -- Benjamin Franklin _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -
19:00
[Full-disclosure] [ MDVSA-2009:141 ] mozilla-thunderbird
» Full DisclosureFrom: security@mandriva.com
Date: Fri, 26 Jun 2009 16:30:16 +0100
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
18:57
Michael Jackson Spam Distributes Malware, (Fri, Jun 26th)
» SANS Internet Storm Center, InfoCON: greenAs we anticipated in our yesterday's diary, spammers are starting to exploit attention-grabbing head ...(more)...
-
18:40
[Full-disclosure] SecurityReason: Multiple Vendors libc/gdtoa printf(3) Array Overrun
» Full DisclosureFrom: Maksymilian Arciemowicz
Date: Fri, 26 Jun 2009 14:46:07 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [ Multiple Vendors libc/gdtoa printf(3) Array Overrun ] Author: Maksymilian Arciemowicz http://SecurityReason.com Date: - - Dis.: 07.05.2009 - - Pub.: 25.06.2009 CVE: CVE-2009-0689 Risk: High Affected Software (12.06.2009): - - OpenBSD 4.5 - - NetBSD 5.0 - - FreeBSD 7.2/6.4 Original URL: http://securityreason.com/achievement_securityalert/63 - --- 0.Description --- Week after the release of new version OpenBSD and NetBSD, our research team has checked a new implementation of gdtoa http://openbsd.org/45.html - --- A new version of the gdtoa code has been integrated, bringing better C99 support to printf(3) and friends. - --- More: http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/gdtoa/ - --- 1. Multiple Vendors libc/gdtoa printf(3) Array Overrun --- The main problem exists in new dtoa implementation. asprintf(3) will crash for asprintf(ssij, "%0.262159f",x) where x != 0 the behavior is correct for 262158 Let's see: (gdb) r Starting program: /cxib/C/check Program received signal SIGSEGV, Segmentation fault. 0xbbbb79d9 in __Balloc_D2A () from /usr/lib/libc.so.12 (gdb) bt #0 0xbbbb79d9 in __Balloc_D2A () from /usr/lib/libc.so.12 #1 0xbbbab6d7 in __rv_alloc_D2A () from /usr/lib/libc.so.12 #2 0xbbba8db5 in __dtoa () from /usr/lib/libc.so.12 #3 0xbbba671f in __vfprintf_unlocked () from /usr/lib/libc.so.12 #4 0xbbb882e1 in asprintf () from /usr/lib/libc.so.12 #5 0x08048706 in main () at check.c:6 Let's see src/lib/libc/gdtoa/gdtoaimp.h - ---gdtoaimp.h--- ... #define Kmax 15 ... - ---gdtoaimp.h--- The maximum Kmax length is 15. If we give bigger value, like 17 (edi), program will overrun freelist array. bss will have 0x1. Correct reason (by NetBSD): - ---gdtoaimp.h--- ... #define Kmax (sizeof(size_t) << 3) ... - ---gdtoaimp.h--- What is wrong? This program will crash in - --- src/lib/libc/gdtoa/misc.c --- if ( (rv = freelist[k]) !=0) { freelist[k] = rv->next; } else { x = 1 << k; #ifdef Omit_Private_Memory rv = (Bigint *)MALLOC(sizeof(Bigint) + (x-1)*sizeof(ULong)); #else len = (sizeof(Bigint) + (x-1)*sizeof(ULong) + sizeof(double) - 1) /sizeof(double); if ((double *)(pmem_next - private_mem + len) <= (double *)PRIVATE_mem) { rv = (Bigint*)(void *)pmem_next; pmem_next += len; } else rv = (Bigint*)MALLOC(len*sizeof(double)); #endif if (rv == NULL) return NULL; rv->k = k; rv->maxwds = x; } - --- src/lib/libc/gdtoa/misc.c --- here rv->k = k; or freelist[k] = rv->next; A good example to show this issue is printf(1) program. 127# printf %1.262159f 1.1 Memory fault (core dumped) 127# printf %11.2109999999f 210919999199919999199991791199.5000000000000000000000000000000001000000000001001 esi = 0x12 edi = 0x1d 127# printf %11.2009999999f 220919999199919999199991791199.5000000000000000000000000000000001000000000001001 esi = 0x13 edi = 0x1d we can manipulate esi reg. 127# printf %11.2009999999f 126768668100000000000000000000.100000000000000000000000000000000000000000000000111111111 Program received signal SIGSEGV, Segmentation fault. __Balloc_D2A (k=29) at /usr/src/lib/libc/gdtoa/misc.c:59 59 freelist[k] = rv->next; (gdb) i r eax 0x20efdb04 552590084 ecx 0x77ce2a9d 2010000029 edx 0x0 0 ebx 0x20eff654 552597076 esp 0xcfbfc2b0 0xcfbfc2b0 ebp 0xcfbfc2c8 0xcfbfc2c8 esi 0x41414141 1094795585 edi 0x1d 29 eip 0xf59317 0xf59317 eflags 0x10206 66054 cs 0x2b 43 ss 0x33 51 ds 0x33 51 es 0x33 51 fs 0x33 51 gs 0x33 51 esi = 0x41414141 edi = 0x1d 1267686681 is value of esi reg. program will crash in freelist[k] = rv->next; Example 0: - --- chujwamwmuzg.pl --- #!/usr/local/bin/perl printf "%0.4194310f", 0x0.0x41414141; - --- chujwamwmuzg.pl --- Perl will crash with esi = 0x41414141 edi = 0x15 Example 1: 127# php -r 'money_format("%0.262159n", 1.1111);' Memory fault (core dumped) Programs that allow you to enter/control format string, are vulnerable. We believe that the OpenBSD source-tree have only printf(1) and perl(1) affected. Functions like printf(3), strfmon(3), fprintf(3), sprintf(3), snprintf(3), asprintf(3), vprintf(3), vfprintf(3), vsprintf(3), vsnprintf(3), vasprintf(3) and others, are vulnerable (with new gdtoa impl.) Other languages are also affected ( printf in perl ) - --- 2. Fix --- NetBSD fix: http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/gdtoa/gdtoaimp.h OpenBSD fix: http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gdtoa/misc.c - --- 3. Greets --- Christos Zoulas sp3x Infospec Chujwamwdupe p_e_a pi3 - --- 4. Contact --- Author: SecurityReason.com [ Maksymilian Arciemowicz ] Email: cxib {a.t] securityreason [d0t} com GPG: http://securityreason.com/key/Arciemowicz.Maksymilian.gpg http://securityreason.com/ http://securityreason.pl/ -----BEGIN PGP SIGNATURE----- iEYEARECAAYFAkpE0R4ACgkQpiCeOKaYa9YYvwCg0fYitWkK3qzaVOmc2QfcJlxi 8mcAoJbBMawOs1N7dBWT5Ge4yvuhA8ZG =ocve -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-
Blue chip FTP logins found on cybercrime server
» The Register - SecurityMonster breach exposes Amazon and BBC to compromiseSecurity researchers have found a treasure chest of FTP passwords, some from high profile sites, on an open cybercrime server.…
-
16:36
Trillian SSL Certificate Vulnerability
» Bugtraq (bugtraq) Mailing ListPosted by Gabriel Menezes Nunes on Jun 26Trillian SSL Certificate Vulnerability
I. The Vulnerability
Trillian does not check SSL certificate before sending MSN user
credentials. An attacker is able to obtain MSN username and password
with a spoofed certificate and no alert is generated to the user.
This vulnerability was found in... -
16:35
Gizmo SSL Certificate Vulnerability
» Bugtraq (bugtraq) Mailing ListPosted by Gabriel Menezes Nunes on Jun 26Gizmo SSL Certificate Vulnerability
I. The Vulnerability
Gizmo does not check SSL certificate before sending user credentials.
An attacker is able to obtain username and password with a spoofed
certificate and no alert is generated to the user.
This vulnerability was found in Gizmo for Linux... -
16:33
aMSN SSL Certificate Vulnerability
» Bugtraq (bugtraq) Mailing ListPosted by Gabriel Menezes Nunes on Jun 26aMSN SSL Certificate Vulnerability
I. The Vulnerability
aMSN does not check SSL certificate before sending MSN user
credentials. An attacker is able to obtain MSN username and password
with a spoofed certificate and no alert is generated to the user.
This vulnerability was found in aMSN...
-
Free extension for secure browsing
» heise securityA free browser extension for Internet Explorer and Firefox from anti-virus manufacturer Finjan, called SecureBrowsing, alerts users of dangerous URLs in Google Search and other popular sites
-
Samba security vulnerabilities
» Securityvulns news channelsmbclient format string vulnerability, ability to change file permissions if file is already open. Applications: Samba 3.2 (26.06.2009) -
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl), updated since 25.06.2009
» Securityvulns news channelPHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Applications: Smarty 2.6, phpMyAdmin 2.11, AlumniServer 1.0, phpMyAdmin 3.1 (26.06.2009) -
Motorola Timbuktu Pro remote control software buffer overflow
» Securityvulns news channelBuffer overflow via PlughNTCommand named pipe. Applications: Timbuktu Pro 8.6 (26.06.2009) -
Unisys Business Information Server buffer overflow
» Securityvulns news channelStack-based buffer overflow on network request processing. Applications: Unisys Business Information Server 10.0 (26.06.2009)
-
Your summer reading: a Month of Twitter Bugs
» Sunbelt BlogIt might be a good idea to keep your ear to the ground in July and probably August for malicious exploits that take advantage of Twitter or third party services that use it.
Researcher Aviv Raff, FraudAction Research Lab Manager at RSA in Israel, has announced that he will launch a “Month of Twitter Bugs” (MoTB) in which he will post a new vulnerability each day on his twitpwn.com site (Link here.)
His description of what he is doing is as follows: “I’m doing so in order to raise the awareness of the Twitter API issue I recently blogged about. MoTB could have been easily converted to any other ‘Month of Web2.0 service bugs’, and I hope that Twitter and other Web2.0 API providers will work closely with their API consumers to develop more secure products.
“Each day I will publish a new vulnerability in a 3rd party Twitter service on the twitpwn.com web site. As those vulnerabilities can be exploited to create a Twitter worm, I’m going to give the 3rd party service provider and Twitter at-least 24 hours heads-up before I publish the vulnerability.”
Raff said he got the idea from the “Month of Browser Bugs” that H.D. Moore ran in July of 2006.
There are two views of “Month of (your app/os here) Bugs” campaigns:
1) It’s the only way to light a fire under the companies that provide these services and software to fix their defective products.
2) It’s an irresponsible piece of grandstanding that is going to draw the attention of hackers and malcode writers and could result in a significant malware attack that will affect a lot of Internet users.
One June 16 comment on Raff’s blog represents the perspective of the poor overworked IT guys who are going to bear the brunt of this if it turns something loose from the dark side: “Giving 24 hours notice is just not responsible and if you ever find yourself working in the security field (as a job) this may come back to haunt you. I'd suggest telling them now and giving them some time to fix the issues, should be all clear then.”
It’s a “responsible disclosure” issue. There isn’t much agreement on the details of how to do responsible disclosure, though 24-hour notice is pretty short.
Tom Kelchner
-
Hole in VLC Media Player
» heise securitySecunia says a hole in the Windows binary version of VLC media player is "highly critical"
-
Ex-DHS Cyber Chief Tapped as President of ICANN
» Security FixFormer Department of Homeland Security cyber chief Rod A. Beckstrom has been tapped to be the new president of the Internet Corporation for Assigned Names and Numbers (ICANN), the California based non-profit, which oversees the Internet's address system. Most recently, Beckstrom was director of the National Cyber Security Center -- an organization created to coordinate security efforts across the intelligence community. Beckstrom resigned that post in March, citing a lack of funding and authority. Beckstrom joins ICANN as the Internet governance body faces some of the most complex and contentious proposed changes to the Internet's addressing system in the organization's entire 11-year history. For example: -- The United States is under considerable pressure to give up control over ICANN and turn it over to international supervision and management. ICANN currently operates under a Joint Project Agreement with the U.S. government, but that agreement is due to expire at the end
-
15:30
[Full-disclosure] Query on Adobe Pagemaker Long Fontname Handling Stack Overflow Vuln
» Full DisclosureFrom: Sujit Ghosal
Date: Fri, 26 Jun 2009 12:50:20 +0100
--===============1183229654== Content-Type: multipart/alternative; boundary=001636e8ffc5e2b1a2046d3ef1bf --001636e8ffc5e2b1a2046d3ef1bf Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Hi Friends, I am doing some research for an old vulnerability CVE-2007-5169.Its related to Adobe pagemaker. I just went through the vulnerability and it states that if one attacker is trying to craft a long font name i.e. Courier New and then after that he is crafting, lets say 40-50 AAAA or BBBB. Then if any user will open the crafted page maker file then the crafted pmd file will crash the application and cause stack overflow or may do arbitrary code execution. I just went though an attack Pcap and got these information. Well now I know whats the magic bytes for detecting Pagamaker document over the wire. But from the signature writing perspective, I need to know the structure that where it stores the font names in its file format. But as you know Adobe's most of the file formats are proprietary and not publically available so I am not able to figure out that what procedure I can follow to detect this attack attempt. So can anyone please give me some reference on this vulnerability or its attack detection procedure? I would be very thankful. Thanks, Sujit --001636e8ffc5e2b1a2046d3ef1bf Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Hi Friends,<br>=A0=A0 I am doing some research for an old vulnerability CVE= -2007-5169.Its related to Adobe pagemaker. I just went through the vulnerab= ility and it states that if one attacker is trying to craft a long font nam= e i.e. Courier New and then after that he is crafting, lets say 40-50 AAAA = or BBBB. Then if any user will open the crafted page maker file then the cr= afted pmd file will crash the application and cause stack overflow or may d= o arbitrary code execution. I just went though an attack Pcap and got these= information. Well now I know whats the magic bytes for detecting Pagamaker= document over the wire. But from the signature writing perspective, I need= to know the structure that where it stores the font names in its file form= at. But as you know Adobe&#39;s most of the file formats are proprietary an= d not publically available so I am not able to figure out that what procedu= re I can follow to detect this attack attempt.<br> <br>=A0=A0=A0 So can anyone please give me some reference on this vulnerabi= lity or its attack detection procedure? I would be very thankful.<br>=A0=A0= =A0 =A0=A0=A0 =A0<br>Thanks,<br>Sujit<br> --001636e8ffc5e2b1a2046d3ef1bf-- --===============1183229654== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ --===============1183229654==--