New patches from Debian, Mandriva, rPath and Gentoo

Virus and Bug Patch Alert This newsletter is sponsored by Quantum Whitepaper: Solve Storage's Catch-22 Regulations require increasing data storage, but your budget and staff aren't unlimited. Discover how data de-duplication maximizes storage efficiency and capacity while minimizing tape backups, eliminating common data center problems, ensuring reliable and quick recovery, and much more. Network World's Virus and Bug Patch Alert Newsletter, 06/18/07 New patches from Debian, Mandriva, rPath and Gentoo By Jason Meserve Today's bug patches and security alerts: Two new updates from Debian: kernel 2.6.8 (multiple flaws) Network World Security Buyer's Guide Find the right security products for your enterprise - fast. From anti-spam to wireless LAN security, our Buyer's Guides have detailed information on hundreds of products in more than 20 categories. With the side-by-side comparison tool you can evaluate product features to make the best decision for your enterprise. Click here to go to the Security Buyer's Guide now. IceWeasel (multiple flaws) ********** Five new patches from rPath: util-linux (authentication weakness) Xen kernels (multiple flaws) squirrelmail (cross-scripting flaw) evolution-data-server (multiple flaws) SpamAssassin (denial of service) ********** Six new fixes from Mandriva: Firefox (multiple flaws) SpamAssassin (denial of service) Tetex (denial of service) libwmf (denial of service) GD (denial of service) FreeType2 (integer overflow, code execution) ********** Two new patches from Gentoo: ClamAV (denial of service) MadWifi (multiple flaws) ********** Today's malware news: WinHex Virus? Here you go... A few days ago someone sent us a new proof-of-concept virus. This time it was for WinHex, the powerful computer forensics, data recovery, and IT security tool. The virus prepends itself to all available .WHS (WinHex script) files. F-Secure blog, 06/15/07. ********** From the interesting reading department: The do's and don'ts of data breaches Believe it or not, a data breach isn't the worst thing that could happen to your organization. Reacting poorly to the incident could be, however. Experts agree every organization that stores personal or financial information about customers, partners or employees, or that has intellectual property in electronic form should be considered a target -- that's arguably just about every organization doing business. Online bank security worsens Banks' online security is getting worse as they rush to offer services online, according to new research. This year's Annual Security Report from NTA Monitor, a security testing firm, found that 20% more security vulnerabilities turned up in the infrastructures of banks, building societies and other financial institutions compared with last year's report. The survey covers networks, applications and systems. TechWorld, 06/14/07.   What do you think? Post a comment on this newsletter

TODAY'S MOST-READ STORIES: 1. Microsoft: Mystery trio thwarts disk pirates 2. FBI finds over 1M botnet victims 3. The case of the 500-mile Email 4. Why network-based security doesn’t cut it anymore 5. New image spam hides in e-mail wallpaper 6. Wireless networks: The burning questions 7. Controversy threatens 100G standards work 8. Top 15 USB geek gadgets 9. SC courts run on Juniper enterprise gear 10. Bill Gates' Harvard commencement speech MOST-DOWNLOADED PODCAST: Twisted Pair: Spam spikes, Mac hacks and stealth attacks

Contact the author: Jason Meserve is Network World's Multimedia Editor and writes about streaming media, search engines and IP Multicast. Check out his Multimedia Exchange Weblog. Check out Jason Meserve and Keith Shaw's weekly podcast "Twisted Pair" This newsletter is sponsored by Quantum Whitepaper: Solve Storage's Catch-22 Regulations require increasing data storage, but your budget and staff aren't unlimited. Discover how data de-duplication maximizes storage efficiency and capacity while minimizing tape backups, eliminating common data center problems, ensuring reliable and quick recovery, and much more. ARCHIVE Archive of the Virus and Bug Patch Alert Newsletter. BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007