64 matches found
DSA-4828-1 libxstream-java - security update
Bulletin has no description...
Debian: Security Advisory (DLA-2507-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2507-1] libxstream-java security update
Debian LTS Advisory DLA-2507-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 31, 2020 https://wiki.debian.org/LTS Package : libxstream-java Version : 1.4.11.1-1+deb9u1 CVE ID : CVE-2020-26258 CVE-2020-26259 Debian Bug : 977625 977624 Several security...
DLA-2507-1 libxstream-java - security update
Bulletin has no description...
Debian DSA-4811-1 : libxstream-java - security update
It was discovered that the default blacklist of XStream, a Java library to serialise objects to XML and back again, was vulnerable to the execution of arbitrary shell commands by manipulating the processed input stream. For additional defense-in-depth it is recommended to switch to the whitelist...
Debian: Security Advisory (DSA-4811-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-4811-1 libxstream-java - security update
Bulletin has no description...
Debian: Security Advisory (DLA-2471-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2471-1 : libxstream-java security update
It was found that XStream is vulnerable to Remote Code Execution. The vulnerability may allow a remote attacker to run arbitrary shell commands only by manipulating the processed input stream. Users who rely on blocklists are affected the default in Debian. We strongly recommend to use the...
DLA-2471-1 libxstream-java - security update
Bulletin has no description...
Debian: Security Advisory (DLA-930-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-3841-1 : libxstream-java - security update
It was discovered that XStream, a Java library to serialise objects to XML and back again, was suspectible to denial of service during unmarshalling. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...
[SECURITY] [DSA 3841-1] libxstream-java
------------------------------------------------------------------------- Debian Security Advisory DSA-3841-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 02, 2017 https://www.debian.org/security/faq -...
Debian DLA-930-1 : libxstream-java security update
It was discovered that there was a remote application crash vulnerability in libxstream-java, a Java library to serialize objects to XML and back again. This was due to mishandled attempts to create an instance of the primitive type 'void' during unmarshalling. For Debian 7 'Wheezy', this issue h...
DSA-3841-1 libxstream-java - security update
Bulletin has no description...
Debian Security Advisory DSA 3841-1 (libxstream-java - security update)
It was discovered that XStream, a Java library to serialise objects to XML and back again, was suspectible to denial of service during unmarshalling. OpenVAS Vulnerability Test $Id: deb3841.nasl 6607 2017-07-07 12:04:25Z cfischer $ Auto-generated from advisory DSA 3841-1 using nvtgen 1.0 Script...
[SECURITY] [DLA 930-1] libxstream-java security update
Package : libxstream-java Version : 1.4.2-1+deb7u2 CVE ID : CVE-2017-7957 Debian Bug : 861521 It was discovered that there was a remote application crash vulnerability in libxstream-java, a Java library to serialize objects to XML and back again. This was due to mishandled attempts to create an...
Debian: Security Advisory (DSA-3841-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-504-1 : libxstream-java security update
It was discovered that XStream, a Java library to serialize objects to XML and back again, was susceptible to XML External Entity attacks. For Debian 7 'Wheezy', these problems have been fixed in version 1.4.2-1+deb7u1. We recommend that you upgrade your libxstream-java packages. NOTE: Tenable...
[SECURITY] [DLA 504-1] libxstream-java security update
Package : libxstream-java Version : 1.4.2-1+deb7u1 CVE ID : CVE-2016-3674 Debian Bug : 819455 It was discovered that XStream, a Java library to serialize objects to XML and back again, was susceptible to XML External Entity attacks. For Debian 7 "Wheezy", these problems have been fixed in version...