Debian: Security Advisory (DSA-5571-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-5233-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-1746-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-3598-1 vlc - security update

Bulletin has no description...

Debian Security Advisory DSA 3007-1 (cacti - security update)

Multiple security issues cross-site scripting, missing input sanitising and SQL injection have been discovered in Cacti, a web interface for graphing of monitoring systems. OpenVAS Vulnerability Test $Id: deb3007.nasl 6750 2017-07-18 09:56:47Z teissa $ Auto-generated from advisory DSA 3007-1 usin...

cacti security update

Package : cacti Version : 0.8.7g-1+squeeze4 CVE ID : CVE-2014-2326 CVE-2014-2327 CVE-2014-2328 CVE-2014-2708 CVE-2014-2709 CVE-2014-4002 Debian Bug : 742768 743565 752573 Multiple security issues cross-site scripting, cross-site request forgery, SQL injections, missing input sanitising have been...

cacti security update

Package : cacti Version : 0.8.7g-1+squeeze4 CVE ID : CVE-2014-2326 CVE-2014-2327 CVE-2014-2328 CVE-2014-2708 CVE-2014-2709 CVE-2014-4002 Debian Bug : 742768 743565 752573 Multiple security issues cross-site scripting, cross-site request forgery, SQL injections, missing input sanitising have been...

Debian Security Advisory DSA 2685-1 (libxp - several vulnerabilities)

Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to...

[SECURITY] [DSA 2350-1] freetype security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2350-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 20, 2011 http://www.debian.org/security/faq -...

Debian DSA-2328-1 : freetype - missing input sanitising

It was discovered that missing input sanitising in Freetype's glyph handling could lead to memory corruption, resulting in denial of service or the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

Debian DSA-2211-1 : vlc - missing input sanitising

Ricardo Narvaja discovered that missing input sanitising in VLC, a multimedia player and streamer, could lead to the execution of arbitrary code if a user is tricked into opening a malformed media file. This update also provides updated packages for oldstable lenny for vulnerabilities, which have...

Debian DSA-2175-1 : samba - missing input sanitising

Volker Lendecke discovered that missing range checks in Samba's file descriptor handling could lead to memory corruption, resulting in denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

[SECURITY] [DSA 2175-1] samba security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2175-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 28, 2011 http://www.debian.org/security/faq -...

Debian DSA-2039-1 : cacti - missing input sanitising

It was discovered that Cacti, a frontend to rrdtool for monitoring systems and services missed input sanitising, making a SQL injection attack possible. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

Debian DSA-1947-1 : shibboleth-sp, shibboleth-sp2, opensaml2 - missing input sanitising

Matt Elder discovered that Shibboleth, a federated web single sign-on system is vulnerable to script injection through redirection URLs. More details can be found in the Shibboleth advisory at http://shibboleth.internet2.edu/secadv/secadv20091104.txt. %NASLMINLEVEL 70300 C Tenable Network Securit...

[SECURITY] [DSA-1965-1] New phpldapadmin packages fix remote file inclusion

------------------------------------------------------------------------ Debian Security Advisory DSA-1965 [email protected] http://www.debian.org/security/ Giuseppe Iuculano January 06, 2010 http://www.debian.org/security/faq -...

Debian DSA-1664-1 : ekg - missing input sanitising

It was discovered that ekg, a console Gadu Gadu client performs insufficient input sanitising in the code to parse contact descriptions, which may result in denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracte...

[SECURITY] [DSA 1664-1] New ekg packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1664-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 10, 2008 http://www.debian.org/security/faq -...

Debian DSA-1481-1 : python-cherrypy - missing input sanitising

It was discovered that a directory traversal vulnerability in CherryPy, a pythonic, object-oriented web development framework, may lead to denial of service by deleting files through malicious session IDs in cookies. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

[SECURITY] [DSA 1481-1] New python-cherrypy packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1481-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 05, 2008 http://www.debian.org/security/faq -...