519 matches found
Debian DSA-1930-1 : drupal6 - several vulnerabilities
Several vulnerabilities have been found in drupal6, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2372 Gerhard Killesreiter discovered a flaw in the way user signatures are handled. It is possible for...
Debian DSA-1853-1 : memcached - heap-based buffer overflow
Ronald Volgers discovered that memcached, a high-performance memory object caching system, is vulnerable to several heap-based buffer overflows due to integer conversions when parsing certain length attributes. An attacker can use this to execute arbitrary code on the system running memcached on...
Debian DSA-1977-1 : python2.4 python2.5 - several vulnerabilities
Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that the embedded Expat copy in the interpreter for the Python language, does not properly process malformed or crafted XML files. CVE-2009-3560 CVE-2009-3720 This vulnerability could allow an attacker to cause a denial of service while...
Debian DSA-1899-1 : strongswan - several vulnerabilities
Several remote vulnerabilities have been discovered in strongswan, an implementation of the IPSEC and IKE protocols. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1957 CVE-2009-1958 The charon daemon can crash when processing certain crafted IKEv2...
Debian DSA-1902-1 : elinks - buffer overflow
Jakub Wilk discovered an off-by-one buffer overflow in the charset handling of elinks, a feature-rich text-mode WWW browser, which might lead to the execution of arbitrary code if the user is tricked into opening a malformed HTML page. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Debian DSA-1898-1 : openswan - denial of service
It was discovered that the pluto daemon in openswan, an implementation of IPSEC and IKE, could crash when processing a crafted X.509 certificate. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisor...
DSA-2003-1 linux-2.6 - several vulnerabilities
Bulletin has no description...
[Backports-security-announce] etch-backports discontinued
Hi users, Hi contributors, as some of you may heard 1 the security support for etch terminated on February 15th. That means that our support for etch backports also ends here. Please dont upload to etch-backports anymore. The downloads are still possible, but please remember that there is no...
[Backports-security-announce] etch-backports discontinued
Hi users, Hi contributors, as some of you may heard 1 the security support for etch terminated on February 15th. That means that our support for etch backports also ends here. Please dont upload to etch-backports anymore. The downloads are still possible, but please remember that there is no...
Debian: Security Advisory (DSA-1986-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1981-1 [email protected] http://www.debian.org/security/ Steffen Joeris January 28, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1981-2] New maildrop packages fix regression
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1981-2 [email protected] http://www.debian.org/security/ Steffen Joeris January 28, 2010 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 1968-2 (pdns-recursor)
The remote host is missing an update to pdns-recursor announced via advisory DSA 1968-2. OpenVAS Vulnerability Test $Id: deb19682.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 1968-2 pdns-recursor Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft...
[SECURITY] [DSA 1985-1] New sendmail packages fix SSL certificate verification weakness
------------------------------------------------------------------------ Debian Security Advisory DSA-1985-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano January 31, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1979-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 27, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1979-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 27, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1976-1] New dokuwiki packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1976-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano January 22, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1972-2] New audiofile packages fix buffer overflow
------------------------------------------------------------------------- Debian Security Advisory DSA-1972-2 [email protected] http://www.debian.org/security/ Stefan Fritsch January 21, 2010 http://www.debian.org/security/faq -...
[Backports-security-announce] Support for etch-backports discontinued on February 15th
Hi, since security support for Debian Etch 4.0 is discontinued on Februrary 15th 1 etch-backports will close its doors the same day. What does that mean? - No uploads to etch-backports are allowed after this date - Downloads will still be available, but every user is recommended to update to Debi...
[Backports-security-announce] Support for etch-backports discontinued on February 15th
Hi, since security support for Debian Etch 4.0 is discontinued on Februrary 15th 1 etch-backports will close its doors the same day. What does that mean? - No uploads to etch-backports are allowed after this date - Downloads will still be available, but every user is recommended to update to Debi...