OpenSSL massive pwnage
All SSL and SSH keys generated on Debian-based systems (Ubuntu, Kubuntu, etc) between september 2006 and May 13th, 2008 may be insecure. In the case of SSL keys, all generated certificates will be need to recreated and sent off to the Certificate Authority to sign. Any Certificate Authority keys generated on a Debian-based system will [...]
Exploiting a PAX secured system
A technical overview of a successfull attack on a PAX secured system (non-executable stack) exploiting a stack buffer overflow on a statically linked multi threaded binary.Link: http://www.socialnetworkwhore.com/index.php?blog=5&title=exploring_vortex_level_12&more=1&c=1&tb=1&pb=1