Debian DLA-173-1 : putty security update

MATTA-2015-002 Florent Daigniere discovered that PuTTY did not enforce an acceptable range for the Diffie-Hellman server value, as required by RFC 4253, potentially allowing an eavesdroppable connection to be established in the event of a server weakness. 779488 CVE-2015-2157 Patrick Coleman...

[BSA-095] Security Update for openssh

Colin Watson uploaded new packages for openssh which fixed the following security problems: CVE-2014-2532 DSA-2894-1 Jann Horn discovered that OpenSSH incorrectly handled wildcards in AcceptEnv lines. A remote attacker could use this issue to trick OpenSSH into accepting any environment variable...

Ubuntu Update for open-iscsi USN-1235-1

Ubuntu Update for Linux kernel vulnerabilities USN-1235-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12351.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for open-iscsi USN-1235-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net...

USN-1235-1: Open-iSCSI vulnerability

Colin Watson discovered that iscsidiscovery in Open-iSCSI did not safely create temporary files. A local attacker could exploit this to to overwrite arbitrary files with root privileges...

Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : eglibc, glibc vulnerability (USN-1009-2)

USN-1009-1 fixed vulnerabilities in the GNU C library. Colin Watson discovered that the fixes were incomplete and introduced flaws with setuid programs loading libraries that used dynamic string tokens in their RPATH. If the 'man' program was installed setuid, a local attacker could exploit this ...

[SECURITY] [DSA 2122-2] New glibc packages fix privilege escalation

------------------------------------------------------------------------- Debian Security Advisory DSA-2122-2 [email protected] http://www.debian.org/security/ Florian Weimer January 11, 2011 http://www.debian.org/security/faq -...