[SECURITY] [DLA 427-1] nss security update

Package : nss Version : 3.12.8-1+squeeze14 CVE ID : CVE-2016-1938 The smpdiv function in Mozilla Network Security Services NSS before 3.21, improperly divides numbers, which might make it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging use of the 1 mpdiv or...

DLA-425-1 libssh - security update

Bulletin has no description...

Debian DLA-340-1 : krb5 security update

CVE-2015-2695 It was discovered that applications which call gssinquirecontext on a partially-established SPNEGO context can cause the GSS-API library to read from a pointer using the wrong type, leading to a process crash. CVE-2015-2697 It was discovered that the buildprincipalva function...

Debian DLA-316-1 : eglibc security update

Several vulnerabilities have been discovered in eglibc that may lead to a privilege escalation or denial of service. Glibc pointer guarding weakness A weakness in the dynamic loader prior has been found. The issue is that the LDPOINTERGUARD in the environment is not sanitized allowing local...

DLA-316-1 eglibc - security update

Bulletin has no description...

Debian DLA-310-1 : linux-2.6 security update

This update fixes the CVEs described below. CVE-2015-0272 It was discovered that NetworkManager would set IPv6 MTUs based on the values received in IPv6 RAs Router Advertisements, without sufficiently validating these values. A remote attacker could exploit this attack to disable IPv6 connectivit...

DLA-230-1 eglibc - security update

Bulletin has no description...