SGI - Services & Support: Security: Advisories

SGI

	Services & Support

	Security

	Advisories

	Patches

	Sending Sensitive Information - PGP

	Response and Procedures

	Security Contacts

	Security Organizations

	Security Education

	Newsgroups and Mailing Lists

	Related Sites

	SupportFolio

	FTP Access to Security Advisories

	FTP Access to Security Patches

SGI® creates and freely provides security advisories. This information may be redistributed provided: it is not altered in any way, SGI is appropriately credited, and the document retains and includes its valid PGP signature.

Note: Browsing FTP Sites
When using Microsoft® Internet Explorer to access security patches via FTP, the page may appear blank. To avoid this, take one of the following steps:
• Upgrade to a version of Internet Explorer that supports FTP
• EF="ftp://patches.sgi.com/support/free/security/advisories/20050
• Use a Netscape® browser

September 2007
20070901-01-P SGI Advanced Linux Environment 3 Security Update #80

August 2007
20070801-01-P SGI Advanced Linux Environment 3 Security Update #79

July 2007
20070701-01-P SGI Advanced Linux Environment 3 Security Update #78

June 2007
20070602-01-P SGI Advanced Linux Environment 3 Security Update #77
20070601-01-P SGI Advanced Linux Environment 3 Security Update #76

May 2007
20070502-01-P SGI Advanced Linux Environment 3 Security Update #75
20070501-01-P SGI Advanced Linux Environment 3 Security Update #74

April 2007
20070401-01-P SGI Advanced Linux Environment 3 Security Update #73

March 2007
20070301-01-P SGI Advanced Linux Environment 3 Security Update #72

February 2007
20070202-01-P SGI Advanced Linux Environment 3 Security Update #71
20070201-01-P SGI Advanced Linux Environment 3 Security Update #70

January 2007
20070101-01-P SGI Advanced Linux Environment 3 Security Update #69

December 2006
20061201-01-P SGI Advanced Linux Environment 3 Security Update #67
20061202-01-P SGI Advanced Linux Environment 3 Security Update #68

November 2006
20061101-01-P SGI Advanced Linux Environment 3 Security Update #66

October 2006
20061001-01-P SGI Advanced Linux Environment 3 Security Update #64
20061002-01.P SGI Advanced Linux Environment 3 Security Update #65

September 2006
20060901-01-P SGI Advanced Linux Environment 3 Security Update #63

August 2006
20060702-02-P Apache rewrite issues
20060801-01-P SGI Advanced Linux Environment 3 Security Update #62

July 2006
20060703-01-USGI Advanced Linux Environment 3 Security Update #61
20060702-01-IApache rewrite issues
20060701-01-U:SGI Advanced Linux Environment 3 Security Update #60

June 2006
20060601-01-P: Security update for Sendmail
20060602-01-U:SGI Advanced Linux Environment 3 Security Update #59

May 2006
20060501-01-U: SGI Advanced Linux Environment 3 Security Update #58

April 2006
20060401-01.U: SGI Advanced Linux Environment 3 Security Update #56
20060402-01.U:SGI ProPack3 Kernel Update #21 - Security and other fixes
20060403-01.U:Patch 10278 Graphics Update #7 for PP3SP6 - XFree/Tool
20060404-01.U:SGI Advanced Linux Environment 3 Security Update #57

March 2006
20060301-01.U: SGI Advanced Linux Environment 3 Security Update #55
20060302-01-P: SGI Sendmail Security Update

February 2006
20060201-01-U: SGI Advanced Linux Environment 3 Security Update #54

January 2006
20060101-01-U: SGI Advanced Linux Environment 3 Security Update #53

December 2005
20051201-01-U: SGI Advanced Linux Environment 3 Security Update #52

November 2005
20051101-01-U: SGI Advanced Linux Environment 3 Security Update #51

October 2005
20051004-01-U: Security update for XFree86 for SGI ProPack 4 SP2
20051003-02-U: SGI Advanced Linux Environment 3 Security Update #50 Update
20051003-01-U: SGI Advanced Linux Environment 3 Security Update #50
20051002-01-U: SGI Advanced Linux Environment 3 Security Update #49
20051001-01-P: runpriv vulnerability

September 2005
20050903-02-U: updated SGI Advanced Linux Environment 3 Security Update #48
20050903-01-U: SGI Advanced Linux Environment 3 Security Update #48
20050902-01-U: SGI Advanced Linux Environment 3 Security Update #47
20050901-01-U: SGI Advanced Linux Environment 3 Security Update #46

August 2005
20050802-01-U: SGI Advanced Linux Environment 3 Security Update #45
20050801-01-A: Spoofing vulnerability in arrayd authentication update

July 2005
20050703-01-U: SGI Advanced Linux Environment 3 Security Update #44
20050702-01-U: SGI Advanced Linux Environment 3 Security Update #43
20050701-01-P: arshell vulnerability in arrayd

June 2005
20050606-01-U: SGI Advanced Linux Environment 3 Security Update #42
20050605-01-U: SGI Advanced Linux Environment 3 Security Update #41
20050604-01-A: Spoofing vulnerability in arrayd authentication
20050603-01-U: SGI Advanced Linux Environment 3 Security Update #40
20050602-01-U: SGI Advanced Linux Environment 3 Security Update #39
20050601-01-U: rpc.mountd security issues in IRIX 6.5.25-6.5.27

May 2005
20050503-01-U: SGI Advanced Linux Environment 3 Security Update #38
20050502-01-U: SGI Advanced Linux Environment 3 Security Update #37
20050501-01-U: SGI Advanced Linux Environment 3 Security Update #36

April 2005
20050405-01-P: Telnet Client Vulnerabilities
20050404-01-U: SGI Advanced Linux Environment 3 Security Update #35
20050403-01-U: SGI Advanced Linux Environment 3 Security Update #34
20050402-01-P: gr_osview vulnerabilities
20050401-01-U: SGI Advanced Linux Environment 3 Security Update #33

March 2005
20050304-01-U: SGI Advanced Linux Environment 3 Security Update #32
20050303-01-U: SGI Advanced Linux Environment 3 Security Update #31
20050302-01-U: SGI Advanced Linux Environment 3 Security Update #30
20050301-01-U: SGI Advanced Linux Environment 3 Security Update #29

February 2005
20050204-01-U: SGI Advanced Linux Environment 3 Security Update #28
20050203-01-U: SGI Advanced Linux Environment 3 Security Update #27
20050202-01-U: SGI Advanced Linux Environment 3 Security Update #26
20050201-01-U: SGI Advanced Linux Environment 3 Security Update #25

January 2005
20050104-01-U: SGI Advanced Linux Environment 3 Security Update #24
20050103-01-U: SGI Advanced Linux Environment 3 Security Update #23
20050102-01-U: SGI Advanced Linux Environment 3 Security Update #22
20050101-01-U: SGI Advanced Linux Environment 3 Security Update #21

December 2004
20041203-01-U: SGI Advanced Linux Environment 3 Security Update #20
20041202-01-U: SGI Advanced Linux Environment 3 Security Update #19
20041201-01-P: Samba Security Vulnerability

November 2004
20041103-01-U: SGI Advanced Linux Environment 3 Security Update #18
20041102-01-U: SGI Advanced Linux Environment 3 Security Update #17
20041101-01-P: OpenSSH and OpenSSL vulnerabilities

October 2004
20041004-01-U: SGI Advanced Linux Environment 3 Security Update #16
20041003-01-U: SGI Advanced Linux Environment 3 Security Update #15
20041002-01-U: SGI Advanced Linux Environment 3 Security Update #14
20041001-01-U: SGI Advanced Linux Environment 3 Security Update #13

September 2004
20040905-01-P: bsd.a kernel networking vulnerabilities
20040904-01-U: SGI Advanced Linux Environment 3 Security Update #12
20040903-01-U: SGI ProPack 3: Kernel Update #5 - Security and other fixes
20040902-01-U: SGI Advanced Linux Environment 3 Security Update #11
20040901-01-U: SGI Advanced Linux Environment 3 Security Update #10

August 2004
20040804-01-U: SGI ProPack 3: Kernel Update #3 - Security and other fixes
20040803-01-U: SGI Advanced Linux Environment 2.4 security update #24
20040802-01-U: SGI Advanced Linux Environment 3 Security Update #9
20040601-02-P: syssgi system call vulnerability and other security fixes update
20031102-03-P: rpc.mountd Vulnerabilities update
20040801-01-P: libDtHelp and dtlogin vulnerabilities

July 2004
20040703-01-U: SGI Advanced Linux Environment 2.4 security update #23
20040702-01-U: SGI Advanced Linux Environment 3 Security Update #7
20040701-01-U: SGI Advanced Linux Environment 3 Security Update #6

June 2004
20040606-01-U: SGI Advanced Linux Environment 3 Security Update #5
20040605-01-U: SGI Advanced Linux Environment security update #22
20040604-01-U: SGI Advanced Linux Environment 3 Security Update #4
20040603-01-U: SGI Advanced Linux Environment security update #21
20040602-01-U: SGI Advanced Linux Environment 3 Security Update #3
20040601-01-P: syssgi system call vulnerability and other security fixes

May 2004
20040509-01-U: SGI Advanced Linux Environment 3 Security Update #2
20040508-01-U: SGI Advanced Linux Environment security update #20
20040507-01-P: libcpr vulnerability
20040506-01-U: SGI Advanced Linux Environment 3 Security Update #1
20040505-01-U: SGI ProPack v2.4: Kernel Update #4 - Security and other fixes
20040504-01-U: SGI ProPack 3: Kernel Update #1 - Security and other fixes
20040503-01-P: IRIX 6.5.24 rpc.mountd inifinite loop
20040502-02-P: IRIX Networking Security Updates Update
20040502-01-P: IRIX Networking Security Updates
20040501-01-I: Sasser worm and Embedded Support Partner (ESP) port 5554/tcp

April 2004
20040404-01-U: SGI Advanced Linux Environment security update #18
20040403-01-A: Vulnerabilities in long-lived TCP connections
20040402-01-U: SGI Advanced Linux Environment security update #17
20030601-01-I: Some Network Drivers May Leak Data update
20040401-01-P: IRIX ftpd ftp_syslog issue with anonymous FTP

March 2004
20040304-01-U: SGI Advanced Linux Environment security update #16
20040303-01-U: SGI Advanced Linux Environment security update #15
20040302-01-U: SGI Advanced Linux Environment security update #14
20040301-01-U: SGI Advanced Linux Environment security update #13

February 2004
20040204-01-U: SGI ProPack v2.4: Kernel fixes and security update
20040203-01-U: SGI Advanced Linux Environment security update #12
20040202-01-U: SGI Advanced Linux Environment security update #11
20040201-01-U: SGI Advanced Linux Environment security update #10
20040104-02-P: userland binary vulnerabilities update

January 2004
20040104-01-P: userland binary vulnerabilities
20040103-01-U: SGI Advanced Linux Environment security update #9
20040102-01-U: SGI ProPack v2.3: Kernel fixes and security update
20040101-01-U: SGI Advanced Linux Environment security update #8

December 2003
20031203-01-U: SGI Advanced Linux Environment security update #7
20031202-01-U: SGI Advanced Linux Environment security update #6
20030904-02-P: Multiple OpenSSH/OpenSSL Vulnerabilities Update
20031201-01-A: do_brk() vulnerability on SGI Altix systems

November 2003
20031103-01-U: SGI ProPack v2.3 update
20031102-01-P: rpc.mountd Vulnerabilities
20031101-01-U: SGI Advanced Linux Environment security update #5

October 2003
20031004-01-P: Wildcard exportfs issue in NFS
20031003-01-U: SGI Advanced Linux Environment security update #4
20031002-01-U: SGI Advanced Linux Environment security update #3
20031001-01-U: SGI Advanced Linux Environment security update #2

September 2003
20030904-01-P: Multiple OpenSSH/OpenSSL Vulnerabilities
20030903-01-P: sendmail prescan() vulnerability
20030902-01-P: DCE 1.2.2c Denial of Service Vulnerability
20030901-01-P: IRIX 6.5.21 NFS export vulnerability
20030801-02-P: Denial of Service Vulnerability in NFS XDR decoding Update

August 2003
20030803-01-P: Sendmail DNS Map Vulnerability
20030802-01-P: Checkpoint/Restart Vulnerability
20030801-01-P: Denial of Service Vulnerability in NFS XDR decoding

July 2003
20030704-01-P: IRIX nsd server and modules mishandle AUTH_UNIX gid list
20030703-01-I: Emulex FibreChannel Hub Vulnerable to SNMP DoS Attack
20030702-01-P: Login Vulnerabilities
20030701-01-P: Multiple Vulnerabilities in Name Service Daemon (nsd)

June 2003
20030607-01-P: Multiple IPv6-Induced Bugs & Vulnerabilities
20030606-01-A: Perl "Safe.pm" vulnerability
20030605-01-A: MIPSPro Compiler Predictable Temp File vulnerability
20030604-01-I: Imperfect Broadcast Address Checking
20030603-01-P: Potential Denial of Service using PIOCSWATCH ioctl
20030602-01-I: WebSetup / WebMin Security Vulnerability
20021105-02-I: Updated SGI Apache Version Available
20030601-01-A: Some Network Drivers May Leak Data

May 2003
20030502-01-I: Security Vulnerabilities in MediaBase Apache and PHP
20030501-01-I: Multiple Security Vulnerabilities in OpenSSL

April 2003
20030407-01-P: Vulnerability in nsd LDAP Implementation
20030406-02-P: Multiple Vulnerabilities in BSD LPR Subsystem update
20030406-01-P: Multiple Vulnerabilities in BSD LPR Subsystem
20030405-01-I: Brocade Firmware SNMP Vulnerability
20021102-03-P: ToolTalk Vulnerabilities Update
20030404-01-P: xfsdump creates files insecurely
20030403-01-P: Samba Security Vulnerability
20030402-01-P: Multiple Vulnerabilities in libc RPC functions
20030401-01-P: Sendmail parseaddr security vulnerability

March 2003
20030304-01-P: Multiple Vulnerabilities and Enhancements in ftpd
20030303-01-I: Java Security Fixes
20030302-01-I: SMB/CIFS Security Vulnerability in Samba
20030301-01-P: Mail Header Buffer Overflow In Sendmail

February 2003
20030202-01-I: Buffer Overrun Vulnerability in /sbin/ps
20030201-01-P: IP denial-of-service fixes and tunings

January 2003
20021103-02-P: Updated patches for SGI Advisories 20020903-02-P and 20021103-01-P
20021102-02-P: IRIX ToolTalk RPC Server Format String Vulnerability update
20030102-01-I: Netscape Browsers Vulnerabilities
20030101-01-P: Multiple Vulnerabilities in Sendmail
20000301-03-I: fam Vulnerability update

December 2002
20021205-01-A: Directory Traversal Vulnerability in FTP Client
20021204-01-I: Samba Security Vulnerability
20021203-01-A: BIND Name Server DNS Spoofing Vulnerability
20021202-01-I: Buffer Overflow Vulnerability in X Font Server
20021201-01-P: Multiple Vulnerabilities in BIND Name Service Daemon

November 2002
20021106-01-A: zlib vulnerability in JAVA
20021105-01-I: Apache Security Vulnerabilities
20021104-01-P: lpd daemon vulnerabilities via sendmail and dns
20021103-01-P: RPC libc DoS vulnerability
20021102-01-P: IRIX ToolTalk vulnerabilities
20021101-01-P: CDE ToolTalk vulnerabilities

October 2002
20021001-01-P: X Windows zlib/MIT-SHM/huge font DoS vulnerabilities
20020903-02-P: rpcbind/fsr_efs/mv/errhook/uux vulnerabilities update
20020903-01-P: rpcbind/fsr_efs/mv/errhook/uux vulnerabilities

September 2002
20020902-01-I: IRIX default root umask and coredumps
20020901-01-A: IGMP multicast report Denial of Service vulnerability

August 2002
20020807-01-I: Netscape JRE vulnerability
20000803-01-P: WorldView vulnerability
20020801-01-P: Sun RPC xdr_array vulnerability
20020806-01-I: Acrobat Reader symlink vulnerability
20020805-01-I: MAC address change on Origin 3000
20020305-03-I: ftpd minor vulnerabilities
20020804-01-P: BDS vulnerabilities
19991101-02-I: BIND vulnerabilities
20020803-01-P: iPlanet vulnerabilities
20020802-01-I: rpc.pcnfsd vulnerabilities
20020801-01-A: Sun RPC xdr_array vulnerability

July 2002
19990501-01-I: midikeys vulnerability
20020605-01-I: Apache vulnerability
20020701-01-I: DNS resolver vulnerability

June 2002
20010601-01-I: pmpost vulnerability
20020607-02-I: nveventd vulnerability update
20020607-01-I: nveventd vulnerability
20020606-02-I: xfsmd vulnerability update
20020606-01-I: xfsmd vulnerability
20020605-01-A: Apache vulnerability
20020604-01-I: Xinet K-Talk Appletalk(tm) xkas vulnerability
20020603-01-I: talkd vulnerability
20020602-02-I: MediaMail vulnerability update
20020602-01-I: MediaMail vulnerability
20020601-01-P: rpc.passwd vulnerability

May 2002
20020504-01-I: fsr_xfs vulnerability
20020503-01-I: netstat vulnerability
20020502-01-I: Xlib vulnerability
20020501-01-I: nsd symlink vulnerability

April 2002
20020409-01-I: cpr vulnerability
20020408-01-I: /dev/ipfilter Denial of Service vulnerability
20020407-01-I: pmcd Denial of Service vulnerability
20020406-01-P: IRISconsole icadmin password vulnerability
20020405-01-I: syslogd vulnerability
20020404-01-P: hpsnmpd vulnerability
20020403-01-I: cron daemon vulnerability
20020402-01-P: XFS filesystem denial of service attack
20020401-02-P: Mail, mailx, gzip, timed and sort vulnerabilities update
20020401-01-P: Mail, mailx, gzip, timed and sort vulnerabilities
20020103-02-I: O2 video security issue update
20020201-01-P: SNMP vulnerabilities

March 2002
20020306-01-P: rpc/HOSTALIASES vulnerability
20020305-02-I: FTP Bounce vulnerability update
20020305-01-I: FTP Bounce vulnerability
20020304-01-A: TCP/IP Denial-of-Service attacks
20020303-01-A: TCP/IP Initial Sequence Numbers
20020302-01-A: Additional CDE and CDE ToolTalk Vulnerabilities
20020301-01-P: Apache vulnerabilities

February 2002
20020201-01-A: SNMP vulnerabilities
20020101-02-I: Network Queuing Environment (NQE) vulnerabilities update

January 2002
20020103-01-I: O2 video security issue
20020102-03-P: nsd vulnerability patch update
20020102-02-I: nsd vulnerability update
20020102-01-I: nsd vulnerability
20020101-01-I: NQS/NQE vulnerabilities

December 2001
20011201-01-I: login vulnerability

November 2001
20011107-01-P: CDE vulnerabilities
20011106-01-A: Predictable IP ID vulnerability
20011105-01-P: IRIX NEdit Vulnerability
20011104-01-I: IRIX Gauntlet Vulnerabilities
20011103-01-I: Various shells create temporary files insecurely
20011102-01-I: Netscape Directory Server contains multiple vulnerabilities
20011101-01-I: Multiple Local Sendmail Vulnerabilities

October 2001
20011003-02-P: IRIX Printing System Vulnerabilities update
20011003-01-P: IRIX Printing System Vulnerabilities
20011002-01-P: Samba for IRIX vulnerability
20011001-02-P: IRIX IGMP vulnerability update
20011001-01-P: IRIX IGMP vulnerability

August 2001
20010802-01-P: File globbing vulnerability in ftpd
20010801-01-P: IRIX Telnet protocol options vulnerability

July 2001
20010701-01-P: IRIX netprint DSO vulnerability

June 2001
20010601-01-A: SGI PCP pmpost symlink vulnerability

May 2001
20010501-01-P: IRIX rpc.espd Buffer Overflow

April 2001
20010401-01-P: IRIX BIND Vulnerabilities

January 2001
20000801-03-P: IRIX telnetd vulnerability update 2

December 2000
20001201-01-I: SGI Security FTP Repository Moved
20000901-01-P: locale vulnerability

November 2000
20001101-01-I: InPerson vulnerability

September 2000
20000901-01-A: locale vulnerability
20000801-02-P: IRIX telnetd vulnerability update
20000801-01-P: IRIX telnetd vulnerability

August 2000
20000803-01-A: WorldView Wnn Vulnerability
20000802-01-P: Linux Kernel Capability Vulnerability
20000801-01-A: IRIX telnetd vulnerability

July 2000
20000701-01-I: Two Input Validation Vulnerabilities in ftpd

June 2000
20000601-01-P: IRIX WorkShop cvconnect(1M) Vulnerability

May 2000
20000501-01-P: Vulnerability in infosrch.cgi

March 2000
20000303-01-P: Vulnerability in IRIX 5.3 and 6.2 objectserver
20000302-01-P: sendmail 8.9.3 for IRIX 6.5.7
20000301-02-I: fam Vulnerability

November 1999
19991101-01-I: BIND Vulnerabilities

July 1999
19990701-01-P: SGI arrayd default security configuration

May 1999
19990501-01-A: IRIX midikeys Vulnerability

March 1999
19990301-01-P: X server font path buffer overflow vulnerability

February 1999
19981101-01-P: Vulnerability in ToolTalk RPC Service
19990201-01-I: IRIX 6.5 Security Features

December 1998
19981201-01-P: Vulnerability in IRIX fcagent daemon

November 1998
19981005-01-P: Vulnerability in IRIX autofsd
19981101-01-A: Vulnerability in ToolTalk RPC Service

October 1998
19981006-01-I: mountd Buffer Overflow Vulnerability
19981005-01-A: Vulnerability in IRIX autofsd
19981004-01-P: IRIX routed(1M) Vulnerability
19981003-01-P: Xaw library exploitable buffer overflow
19981002-01-P: xterm(1) exploitable buffer overflow
19981001-01-P: IRIX at(1) vulnerability

September 1998
19980605-01-P: IRIX Mail(1)/mailx(1) Security Issues
19980604-02-P: IRIX mail(1)/rmail(1M)/sendmail(1M) Security Vulnerabilities
19980901-01-P: IRIX On-Line Customer Registration Vulnerabilities

August 1998
19980803-01-I: Seyon Security Vulnerability
19980603-02-P: IRIX BIND DNS Vulnerabilities
19980802-01-I: University of Washington imapd daemon Vulnerability
19980801-01-I: BSD/Qualcomm qpopper Vulnerability
19950123-02-I: IRIX IP Spoofing/TCP Sequence Attack Update
19980403-03-P: IRIX 6.3 & 6.4 mailcap vulnerability

July 1998
19980403-02-P: IRIX 6.3 & 6.4 mailcap vulnerability
19980701-01-P: IRIX 6.4 ioconfig(1M) and disk_bandwidth(1M) Vulnerability

June 1998
19980606-01-A: Vulnerability in Public-Key Cryptography Standard #1 (PKCS#1)
19980605-01-A: IRIX mailx(1) Buffer Overrun Vulnerability
19980604-01-P: IRIX mail(1)/rmail(1M)/sendmail(1M) Security Vulnerabilities
19980603-01-P: IRIX BIND DNS Vulnerabilities
19980602-01-P: IRIX mediad(1M) Vulnerability
19980601-01-P: OSF/DCE Denial of Service Attack

May 1998
19980503-01-I: tcpmux Port Scanning and Root Compromises
19980502-01-P: IRIX 6.4 diskperf/diskalign Vulnerabilities
19980501-01-P: IRIX 6.3 NetWare Client 1.0 Vulnerabilities

April 1998
19980406-01-P: IRIX LicenseManager(1M) Vulnerabilities
19980405-01-I: suid_exec Buffer Overflow
19980404-01-I: Buffer Overflow Vulnerability in suidperl/sperl program
19980403-01-P: IRIX 6.3 & 6.4 mailcap vulnerability
19980402-01-P: lp(1) Security Vulnerabilities
19980401-01-P: Performer API Search Tool 2.2 pfdispaly.cgi Vulnerability

March 1998
19970506-02-P: pset Buffer Overrun Vulnerability
19980303-01-P: Netscape Navigator Security Vulnerabilities
19980302-01-I: IMAP/POP Vulnerability
19980301-01-P: Startmidi/stopmidi, datman/cdman, cdplayer Vulnerabilities

December 1997
19971201-01-P: Buffer Overrun Vulnerability in statd(1M) Program

November 1997
19971103-01-P: IRIX syserr and permissions programs
19971102-01-P: Vulnerability in at(1) program
19971101-01-P: libXt Security Issues
19970507-02-P: IRIX eject Buffer Overrun Vulnerability
19970505-02-P: IRIX df Buffer Overrun Vulnerability

September 1997
19970901-01-P: Natural Language Service Vulnerability
19970508-02-P: IRIX LOCKOUT and login/scheme Buffer Overrun

August 1997
19970501-02-P: IRIX webdist.cgi, handler and wrap programs
19970801-01-P: IRIX ftpd Signal Handling Vulnerability
19970509-02-P: IRIX ordist Buffer Overrun Vulnerability

July 1997
19970701-01-P: talkd Vulnerability
19970502-02-P: xlock Vulnerability

May 1997
19970509-01-A: IRIX ordist Buffer Overrun Vulnerability
19970508-01-A: IRIX login/scheme Buffer Overrun Vulnerability
19970507-01-A: IRIX eject Buffer Overrun Vulnerability
19970506-01-A: IRIX pset Buffer Overrun Vulnerability
19970505-01-A: IRIX df Buffer Overrun Vulnerability
19970504-01-P: IRIX rld security vulnerability
19970503-01-P: Program runpriv Security Issue
19970502-01-A: xlock program vulnerability
19961203-02-P: IRIX netprint Program Security Issues
19970501-01-A: Vulnerability in webdist.cgi
19970101-02-P: IRIX 5.x, 6.0, 6.0.1, 6.1, 6.2 csetup Program Vulnerability CERT(sm) Advisory CA-97.03

April 1997
19970401-01-P: IRIX gmemusage program

March 1997
19970301-01-P: IRIX 5.x and 6.x fsdump Security

January 1997
19970102-01-P: XFS Filesystem Security
19970101-01-A: IRIX 5.x, 6.0, 6.0.1, 6.1, 6.2 csetup Program Vulnerability CERT(sm) Advisory CA-97.03

December 1996
19961203-01-P: IRIX netprint Program Security Issues
19961202-01-P: TCP SYN and Ping Denial of Service Attacks CERT(sm) Advisory CA-96.21, CERT(sm) Advisory CA-96.26, SGI Advisory 19960901
19961201-01-P: Permissions issue with IRIX 5.0.x, 5.1.x, 5.2, 5.3, 6.0.x, 6.1 and 6.2 Desktop searchbook Program

November 1996
19961103-01-I: Sendmail Daemon Mode Vulnerability CERT(sm) Advisory CA-96.24
19961102-01-P: FLEXlm and LicenseManager security vulnerabilities AUSCERT Advisory AA-96.03
19961101-01-I: Possible Vulnerabilities in systour and OutOfBox Subsystems for IRIX 5.x, 6.0.x, 6.1, 6.2 and 6.3
19961001-01-P: IRIX 5.0.x, 5.1.x, 5.2, 5.3, 6.0.x, 6.1 and 6.2, Desktop System Monitor Subsystem Vulnerability

September 1996
19960901-01-A: TCP SYN Denial of Service Attack, CERT(sm) Advisory CA-96.21

August 1996
19960802-01-I: Vulnerability in expreserve, CERT(sm) Advisory CA-96.19
19960801-01-P: IRIX Visual Admin/User Programs

June 1996
19960601-01-I: X Authentication Vulnerabilities, CIAC G-04, The X Consortium and CERT VB-95:08

May 1996
19960501-01-P: IRIX 5.3, 6.1, 6.2 Desktop Permissions Panel

March 1996
19960301-01-P: Security vulnerabilities in rpc.statd program

February 1996
19960203-01-P: Sendmail update for CERT Advisory CA-96.04 Corrupt Information from Network Servers
19960202-01-A: CERT Advisory CA-96.02 - BIND Version 4.9.3
19960201-01-A: CERT Advisory CA-96.01 - UDP Port Denial-of-Service Attack

January 1996
19960102-01-P: Incorrect Permissions on Packing Subsystem
19960101-03-P: Object Server Vulnerability
19960101-02-P: Object Server Vulnerability
19960101-01-P: Object Server Vulnerability

December 1995
19951201-01-P: Avalon Security Research - rpc.ypupdate slammer exploit CERT CA-95:17 rpc.ypupdated Vulnerability

November 1995
19951101-02-P: Telnetd vulnerability reported by MIT CERT Advisory CA-95:14 - Telnetd Environment Vulnerability
19951101-01-P: Telnetd vulnerability reported by MIT CERT Advisory CA-95:14 - Telnetd Environment Vulnerability

October 1995
19951002-01-I: Password-less accounts CERT Advisory CA-95:15 - SGI lp Vulnerability
19951001-01-P: sendmail issues with syslog vulnerability [8lgm]-Advisory-22.UNIX.syslog.2-Aug-1995 CERT CA-95:13 Syslog Vulnerability - A Workaround for Sendmail

May 1995
19950501-01-I: "Good Times Virus" is Hoax

April 1995
19950401-01-I: Release of SANTA/SATAN tool and SGI specifics CERT CA-95:06 Security Administrator Tool for Analyzing Networks

March 1995
19950301-01-P: IRIX 5.2, 6.0, 6.0.1 Desktop Permissions Tool

February 1995
19950209-00-P: colorview program allows reading of any file
19950201-01-P: Sendmail Vulnerabilities CERT 95:05

January 1995
19950126-01-I: CERT CA-95:02 Vulnerabilities in /bin/mail
19950126-01-A: CERT CA-95:02 Vulnerabilities in /bin/mail
19950123-01-P: CERT CA-95:01 IP Spoofing Attacks and Hijacked Terminal Connections, Network Security Vulnerability in IRIX Systems

October 1994
19941001-01-P: Visual Serial Port Manager for IRIX 4.x

March 1994
19940301-01-I: Network Snooping and Promiscuous Network Interfaces CERT CA-94:01 Ongoing Network Monitoring Attacks