Debian Security Advisory DSA 2813-1 (gimp - several vulnerabilities)

Murray McAllister discovered multiple integer and buffer overflows in the XWD plugin in Gimp, which can result in the execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb2813.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2813-1 using nvtgen 1.0 Script...

Debian Security Advisory DSA 2814-1 (varnish - denial of service)

A denial of service vulnerability was reported in varnish, a state of the art, high-performance web accelerator. With some configurations of varnish a remote attacker could mount a denial of service child-process crash and temporary caching outage via a GET request with trailing whitespace...

Debian Security Advisory DSA 2812-1 (samba - several vulnerabilities)

Two security issues were found in Samba, a SMB/CIFS file, print, and login server: CVE-2013-4408 It was discovered that multiple buffer overflows in the processing of DCE-RPC packets may lead to the execution of arbitrary code. CVE-2013-4475 Hemanth Thummala discovered that ACLs were not checked...

Debian Security Advisory DSA 2810-1 (ruby1.9.1 - heap overflow)

Charlie Somerville discovered that Ruby incorrectly handled floating point number conversion. If an application using Ruby accepted untrusted input strings and converted them to floating point numbers, an attacker able to provide such input could cause the application to crash or, possibly, execu...

Debian Security Advisory DSA 2808-1 (openjpeg - several vulnerabilities)

Several vulnerabilities have been discovered in OpenJPEG, a JPEG 2000 image library, that may lead to denial of service CVE-2013-1447 via application crash or high memory consumption, possible code execution through heap buffer overflows CVE-2013-6045, information disclosure CVE-2013-6052, or yet...

Debian Security Advisory DSA 2807-1 (links2 - integer overflow)

Mikulas Patocka discovered an integer overflow in the parsing of HTML tables in the Links web browser. This can only be exploited when running Links in graphical mode. OpenVAS Vulnerability Test $Id: deb2807.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2807-1 using...

Debian Security Advisory DSA 2806-1 (nbd - privilege escalation)

It was discovered that nbd-server, the server for the Network Block Device protocol, did incorrect parsing of the access control lists, allowing access to any hosts with an IP address sharing a prefix with an allowed address. OpenVAS Vulnerability Test $Id: deb2806.nasl 6611 2017-07-07 12:07:20Z...

Debian DSA-2805-1 : sup-mail - command injection

joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. - CVE-2013-4478 Sup wrongly handled the filename of attachments. - CVE-2013-4479 Sup did not sanitize the...

Debian Security Advisory DSA 2805-1 (sup-mail - command injection)

joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. CVE-2013-4478 Sup wrongly handled the filename of attachments. CVE-2013-4479 Sup did not sanitize the...

Debian Security Advisory DSA 2803-1 (quagga - several vulnerabilities)

Multiple vulnerabilities were discovered in Quagga, a BGP/OSPF/RIP routing daemon: CVE-2013-2236 A buffer overflow was found in the OSPF API-server exporting the LSDB and allowing announcement of Opaque-LSAs. CVE-2013-6051 bgpd could be crashed through BGP updates. This only affects Wheezy/stable...

Debian Security Advisory DSA 2800-1 (nss - buffer overflow)

Andrew Tinits reported a potentially exploitable buffer overflow in the Mozilla Network Security Service library nss. With a specially crafted request a remote attacker could cause a denial of service or possibly execute arbitrary code. OpenVAS Vulnerability Test $Id: deb2800.nasl 6611 2017-07-07...

Debian Security Advisory DSA 2802-1 (nginx - restriction bypass)

Ivan Fratric of the Google Security Team discovered a bug in nginx, a web server, which might allow an attacker to bypass security restrictions by using a specially crafted request. The oldstable distribution squeeze is not affected by this problem. OpenVAS Vulnerability Test $Id: deb2802.nasl 66...

Debian Security Advisory DSA 2798-1 (curl - unchecked ssl certificate host name)

Scott Cantor discovered that curl, a file retrieval tool, would disable the CURLOPTSSLVERIFYHOST check when the CURLOPTSSLVERIFYPEER setting was disabled. This would also disable ssl certificate host name checks when it should have only disabled verification of the certificate trust chain. The...

Debian Security Advisory DSA 2796-1 (torque - arbitrary code execution)

Matt Ezell from Oak Ridge National Labs reported a vulnerability in torque, a PBS-derived batch processing queueing system. A user could submit executable shell commands on the tail of what is passed with the -M switch for qsub. This was later passed to a pipe, making it possible for these comman...

Debian Security Advisory DSA 2797-1 (icedove - several vulnerabilities)

Multiple security issues have been found in Icedove, Debian OpenVAS Vulnerability Test $Id: deb2797.nasl 14276 2019-03-18 14:43:56Z cfischer $ Auto-generated from advisory DSA 2797-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2013 Greenbone Networks Gmb...

Debian Security Advisory DSA 2794-1 (spip - several vulnerabilities)

Several vulnerabilities have been found in SPIP, a website engine for publishing, resulting in cross-site request forgery on logout, cross-site scripting on author page, and PHP injection. OpenVAS Vulnerability Test $Id: deb2794.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from adviso...

Debian Security Advisory DSA 2793-1 (libav - several vulnerabilities)

Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. The CVE IDs mentioned above are just a small portion of the security issues fixed in this update. A full list of the changes is available at...

Debian DSA-2791-1 : tryton-client - missing input sanitization

Cedric Krier discovered that the Tryton client does not sanitize the file extension supplied by the server when processing reports. As a result, a malicious server could send a report with a crafted file extension that causes the client to write any local file to which the user running the client...

Debian DSA-2790-1 : nss - uninitialized memory read

A flaw was found in the way the Mozilla Network Security Service library nss read uninitialized data when there was a decryption failure. A remote attacker could use this flaw to cause a denial of service application crash for applications linked with the nss library. The oldstable distribution...

Debian Security Advisory DSA 2791-1 (tryton-client - missing input sanitization)

Cedric Krier discovered that the Tryton client does not sanitize the file extension supplied by the server when processing reports. As a result, a malicious server could send a report with a crafted file extension that causes the client to write any local file to which the user running the client...