Lucene search
K

40 matches found

Debian
Debian
added 2011/07/14 12:2 a.m.35 views

[BSA-037] Security Update for subversion

Peter Samuelson uploaded new packages for subversion which fixed the following security problems: CVE-2011-1752 Subversions moddavsvn Apache HTTPD server module will dereference a NULL pointer if asked to deliver baselined WebDAV resources...

5CVSS7.2AI score0.08483EPSS
Exploits2
Debian
Debian
added 2011/05/14 2:31 p.m.34 views

[BSA-036] Security Update for exim4

Andreas Metzler uploaded new packages for exim4 which fixed the following security problems: CVE-2011-1407 command injection attack in DKIM processing code For the lenny-backports distribution the problems have been fixed in version 4.72-6+squeeze2bpo50+1. For the stable distribution squeeze, thi...

7.5CVSS6.8AI score0.03802EPSS
Exploits0
Debian
Debian
added 2011/05/10 5:1 p.m.31 views

[BSA-035] Security Update for exim4

Andreas Metzler uploaded new packages for exim4 which fixed the following security problems: CVE-2011-1764 DKIM related format string vulnerability For the lenny-backports distribution the problems have been fixed in version 4.72-6+squeeze1bpo50+1. For the stable distribution squeeze, this proble...

7.5CVSS7.1AI score0.0394EPSS
Exploits0
Debian
Debian
added 2011/05/03 6:36 a.m.80 views

[BSA-034] Security Update for iceweasel

Mike Hommey uploaded new packages for iceweasel which fixed the following security problems: CVE-2011-0069 CVE-2011-0070 CVE-2011-0072 CVE-2011-0074 CVE-2011-0075 CVE-2011-0077 CVE-2011-0078 CVE-2011-0080 CVE-2011-0081 "Scoobidiver", Ian Beer Bob Clary, Henri Sivonen, Marco Bonardo, Mats Palmgren...

10CVSS7.5AI score0.73655EPSS
Exploits19
Debian
Debian
added 2011/04/20 3:41 p.m.37 views

[BSA-033] Security Update for request-tracker3.8

Jan Wagner uploaded new packages for request-tracker3.8 which fixed the following security problems: CVE-2011-1685 If the external custom field feature is enabled, Request Tracker allows authenticated users to execute arbitrary code with the permissions of the web server, possible triggered by a...

6.5CVSS2.8AI score0.03782EPSS
Exploits0
Debian
Debian
added 2011/03/27 1:8 p.m.40 views

[BSA-030] Security update for nss

This update for the Network Security Service libraries marks several fraudulent HTTPS certificates as unstrusted. For the lenny-backports distribution the problems have been fixed in version 3.12,8-1+squeeze1bpo50+1. For the oldstable distribution lenny, this problem has been fixed in version...

5.8AI score
Exploits0
Debian
Debian
added 2011/03/14 3:28 p.m.24 views

[BSA-026] Security Update for subversion

Peter Samuelson uploaded new packages for subversion which fixed the following security problems: CVE-2011-0715 Subversions moddavsvn Apache HTTPD server module will dereference a NULL pointer if a lock token is sent in a HTTP request by a Subversion client which has not authenticated to the...

4.3CVSS6.3AI score0.06309EPSS
Exploits0
Debian
Debian
added 2011/03/12 8:28 a.m.49 views

[BSA-027] Security Update for iceweasel

Mike Hommey uploaded new packages for iceweasel which fixed the following security problems: CVE-2010-1585 Roberto Suggi Liverani discovered that the sanitising performed by ParanoidFragmentSink was incomplete. CVE-2011-0053 Crashes in the layout engine may lead to the execution of arbitrary code...

10CVSS7AI score0.072EPSS
Exploits3
Debian
Debian
added 2011/01/25 4:43 p.m.79 views

[BSA-023] Security Update for drupal6

Gerfried Fuchs uploaded new packages for drupal6 which fixed the following security problems: CVE-2010-2250 A user-supplied value is directly output during installation allowing a malicious user to craft a URL and perform a cross-site scripting attack. The exploit can only be conducted on sites n...

6.5CVSS2.4AI score0.02372EPSS
Exploits0
Debian
Debian
added 2011/01/24 7:22 a.m.43 views

[BSA-022] Security Update for request-tracker3.8

Jan Wagner uploaded new packages for request-tracker3.8 which fixed the following security problems: CVE-2011-0009 It was discovered that Request Tracker, an issue tracking system, stored passwords in its database by using an insufficiently strong hashing method. If an attacker would have access ...

4.3CVSS6AI score0.01879EPSS
Exploits0
Debian
Debian
added 2011/01/15 4:27 p.m.22 views

[BSA-019] Removal of kvm

Following the removal of kvm source package from testing and unstable because of being obsoleted by qemu-kvm and having a fair amount of outstanding security issues since a while the package now got removed from lenny-backports, too. If you have installed the kvm and related packages from...

3AI score
Exploits0
Debian
Debian
added 2011/01/15 4:10 p.m.17 views

[BSA-018] Removal of egroupware

Following the removal of the egroupware packages from testing and unstable because they were unmaintained and have outstanding unaddressed security issues for a while the packages got now removed from lenny-backports, too. If you have installed the egroupware suite please be aware that they arent...

2.8AI score
Exploits0
Debian
Debian
added 2011/01/10 3:12 p.m.27 views

[BSA-017] Security Update for subversion

Sven Hoexter uploaded new packages for subversion which fixed the following security problems: CVE-2010-4539 A NULL pointer dereference flaw exisits in moddavsvn, the Apache httpd module for the Subversion server, when listing of repositories SVNListParentPath directive is enabled. A remote user...

6.8CVSS6.5AI score0.05136EPSS
Exploits2
Debian
Debian
added 2011/01/06 2:20 p.m.69 views

[BSA-016] Security Update for exim4

Andreas Metzler uploaded new packages for exim4 which fixed the following security problems: CVE-2010-4345 exim privilege escalation Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a...

7.8CVSS2.6AI score0.17794EPSS
Exploits4
Debian
Debian
added 2011/01/04 4:43 p.m.25 views

[BSA-015] Security Update for wordpress

Matt Taggart uploaded new packages for wordpress which fixed the following security problem: Critical core security bug in the HTML sanitation library more info: http://wp.me/pZhYe-qt For the lenny-backports distribution the problems have been fixed in version 3.0.4+dfsg-1bpo50+1. Upgrade...

5.8AI score
Exploits0
Debian
Debian
added 2010/11/02 7:4 p.m.37 views

BSA-009 Security Update for nss

Alexander Reichle-Schmehl uploaded new packages for nss which fixed the following security problems: CVE-2010-3170 NSS recognizes a wildcard IP address in the subjects Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a...

7.5CVSS4.1AI score0.02408EPSS
Exploits0
Debian
Debian
added 2010/11/02 3:6 p.m.60 views

BSA-009 Security Update for nss

Alexander Reichle-Schmehl uploaded new packages for nss which fixed the following security problems: CVE-2010-3170 NSS recognizes a wildcard IP address in the subjects Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a...

7.5CVSS4.1AI score0.02408EPSS
Exploits0
Debian
Debian
added 2010/10/22 11:36 a.m.25 views

Subject: BSA-008 Security Update for pidgin

Jan Wagner uploaded new packages for pidgin which fixed the following security problems: CVE-2010-3711 Fixes multiple remotely-triggered DoSes https://vulners.com/cve/CVE-2010-3711 For the lenny-backports distribution the problems have been fixed in version 2.7.3-1bpo50+2. For the unstable sid...

4CVSS7.7AI score0.0327EPSS
Exploits1
Debian
Debian
added 2010/10/22 10:41 a.m.30 views

Subject: BSA-007 Security Update for mailscanner

Jan Wagner uploaded new packages for mailscanner which fixed the following security problems: CVE-2010-3095 incomplete fix for CVE-2008-5313 https://vulners.com/cve/CVE-2010-3095 The original text of CVE-2008-5313: mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to...

6.9CVSS5.5AI score0.0034EPSS
Exploits0
Debian
Debian
added 2010/10/22 10:26 a.m.59 views

Subject: BSA-007 Security Update for mailscanner

Jan Wagner uploaded new packages for mailscanner which fixed the following security problems: CVE-2010-3095 incomplete fix for CVE-2008-5313 https://vulners.com/cve/CVE-2010-3095 The original text of CVE-2008-5313: mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to...

6.9CVSS5.9AI score0.0034EPSS
Exploits0
Rows per page
Query Builder