40 matches found
[SECURITY] [DLA 1591-1] libphp-phpmailer security update
Package : libphp-phpmailer Version : 5.2.9+dfsg-2+deb8u4 CVE IDs : CVE-2017-5223 CVE-2018-19296 It was discovered that there were two vulnerabilities libphp-phpmailer, an email library for the PHP programming language: CVE-2017-5223: Local file disclosure vulnerability via relative path HTML...
Debian: Security Advisory (DLA-1591-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-817-1 : libphp-phpmailer security update
It was discovered that there was a local file disclosure vulnerability in libphp-phpmailer, a email transfer class for PHP, where insufficient parsing of HTML messages could potentially be used by attacker to read a local file. For Debian 7 'Wheezy', this issue has been fixed in libphp-phpmailer...
[SECURITY] [DLA 817-1] libphp-phpmailer security update
Package : libphp-phpmailer Version : 5.1-1.3+deb7u1 CVE ID : CVE-2017-5223 Debian Bug : 853232 It was discovered that there was a local file disclosure vulnerability in libphp-phpmailer, a email transfer class for PHP, where insufficient parsing of HTML messages could potentially be used by...
DLA-817-1 libphp-phpmailer - security update
Bulletin has no description...
Debian: Security Advisory (DSA-3750-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 770-2] libphp-phpmailer regression update
Package : libphp-phpmailer Version : 5.1-1.2 CVE ID : CVE-2016-10033 Debian Bug : 849365 Dawid Golunski discovered that PHPMailer, a popular library to send email from PHP applications, allowed a remote attacker to execute code if they were able to provide a crafted Sender address. Note that for...
DSA-3750-2 libphp-phpmailer - regression update
Bulletin has no description...
Debian DSA-3750-1 : libphp-phpmailer - security update
Dawid Golunski discovered that PHPMailer, a popular library to send email from PHP applications, allowed a remote attacker to execute code if they were able to provide a crafted Sender address. Note that for this issue also CVE-2016-10045 was assigned, which is a regression in the original patch...
DLA-770-2 libphp-phpmailer - regression update
Bulletin has no description...
[SECURITY] [DLA 770-1] libphp-phpmailer security update
Package : libphp-phpmailer Version : 5.1-1.2 CVE ID : CVE-2016-10033 Debian Bug : 849365 Dawid Golunski discovered that PHPMailer, a popular library to send email from PHP applications, allowed a remote attacker to execute code if they were able to provide a crafted Sender address. Note that for...
DLA-770-1 libphp-phpmailer - security update
Bulletin has no description...
[SECURITY] [DSA 3416-1] libphp-phpmailer security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3416-1 [email protected] https://www.debian.org/security/ Luciano Bello December 13, 2015 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3416-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-363-1 : libphp-phpmailer security update
It was discovered that there was a header injection vulnerability in libphp-phpmailer, am email transfer library for PHP. For Debian 6 Squeeze, this issue has been fixed in libphp-phpmailer version 5.1-1+deb6u11. NOTE: Tenable Network Security has extracted the preceding description block directl...
[SECURITY] [DLA 363-1] libphp-phpmailer security update
Package : libphp-phpmailer Version : 5.1-1+deb6u11 CVE ID : CVE-2015-8476 Debian Bug : 807265 It was discovered that there was a header injection vulnerability in libphp-phpmailer, am email transfer library for PHP. For Debian 6 Squeeze, this issue has been fixed in libphp-phpmailer version...
DLA-363-1 libphp-phpmailer - security update
Bulletin has no description...
Debian: Security Advisory (DSA-1315-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1315-1 : libphp-phpmailer - missing input validation
Thor Larholm discovered that libphp-phpmailer, an email transfer class for PHP, performs insufficient input validition if configured to use Sendmail. This allows the execution of arbitrary shell commands. The oldstable distribution sarge doesn't include libphp-phpmailer. %NASLMINLEVEL 70300 C...
DSA-1315-1 libphp-phpmailer
Bulletin has no description...