164 matches found
Vulnerabilities fixed in Node.js
Vulnerabilities have been fixed in Node.js. The vulnerabilities allow a malicious person to perform attacks that lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure The vulnerability with attribute CVE-2020-1971 can only be exploited be exploited...
Vulnerability fixed in Kerberos
A vulnerability has been fixed in MIT Kerberos. A malicious person can exploit the vulnerability to cause a denial-of-service cause. The vulnerability is in the way ASN.1 data is is processed, which can create an infinite loop that causes a crash in the Kerberos process. -= Debian =- Debian has...
Vulnerability fixed in OpenLDAP
OpenLDAP developers have released an update to fix a vulnerability. The vulnerability allows an unauthenticated remote malicious party to cause a denial-of-service attack. No CVD ID disclosed. OpenLDAP has released updates to fix the vulnerability in v 2.4.55. For more information, see:...
Vulnerabilities fixed in Dovecot
Vulnerabilities have been fixed in Dovecot. The vulnerabilities allow a malicious person to cause a denial-of-service cause. Dovecot has released updates to fix the vulnerabilities. For more information, see the following pages: CVE-2020-12100:...
Multiple vulnerabilities fixed in Drupal
Several vulnerabilities have been fixed in Drupal core. The vulnerabilities are located in jQuery and allow a malicious able to perform a Cross-Site Scripting XSS attack. This potentially allows the malicious party to execute code under the user's privileges. For the vulnerabilities in jQuery, we...
Debian DLA-1705-1 : sox security update
Multiple vulnerabilities have been discovered in SoX Sound eXchange, a sound processing program : CVE-2017-11332 The startread function wav.c is affected by a divide-by-zero vulnerability when processing WAV file with zero channel count. This flaw might be leveraged by remote attackers using a...
[SECURITY] [DSA 690-1] New bsmtpd packages fix arbitrary command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 690-1 [email protected] http://www.debian.org/security/ Martin Schulze February 25th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 679-1] New toolchain-source package fixes insecure temporary files
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 679-1 [email protected] http://www.debian.org/security/ Martin Schulze February 14th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 671-1] New xemacs21 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 671-1 [email protected] http://www.debian.org/security/ Martin Schulze February 8th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 642-1] New gallery packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 642-1 [email protected] http://www.debian.org/security/ Martin Schulze January 17th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 638-1] New gopher packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 638-1 [email protected] http://www.debian.org/security/ Martin Schulze January 13th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 637-1] New exim-tls packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 637-1 [email protected] http://www.debian.org/security/ Martin Schulze January 13th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 631-1] New kdlibs packages fix arbitrary FTP command execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 631-1 [email protected] http://www.debian.org/security/ Martin Schulze January 10th, 2005 http://www.debian.org/security/faq -...
Debian DSA-624-1 : zip - buffer overflow
A buffer overflow has been discovered in zip, the archiver for .zip files. When doing recursive folder compression the program did not check the resulting path length, which would lead to memory being overwritten. A malicious person could convince a user to create an archive containing a speciall...
[SECURITY] [DSA 623-1] New nasm packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 623-1 [email protected] http://www.debian.org/security/ Martin Schulze January 4th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 622-1] New htmlheadline package fixes insecure temporary files
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 622-1 [email protected] http://www.debian.org/security/ Martin Schulze January 3rd, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 621-1] New CUPS packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 621-1 [email protected] http://www.debian.org/security/ Martin Schulze December 31st, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 619-1] New xpdf packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 619-1 [email protected] http://www.debian.org/security/ Martin Schulze December 30th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 616-1] New telnetd-ssl packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 616-1 [email protected] http://www.debian.org/security/ Martin Schulze December 23rd, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 613-1] New ethereal packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 613-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2004 http://www.debian.org/security/faq -...