[slackware-security] libarchive

New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.7.8-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: tar reader: Handle truncation in the...

Security update for tryton (moderate)

This update for tryton to version 4.2.19 fixes the following issues: Security issue fixed: - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This update also...

Debian DSA-3980-1 : apache2 - security update (Optionsbleed)

Hanno Boeck discovered that incorrect parsing of Limit directives of .htaccess files by the Apache HTTP Server could result in memory disclosure. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisor...

[SECURITY] [DSA 3926-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3926-1 [email protected] https://www.debian.org/security/ Michael Gilbert August 04, 2017 https://www.debian.org/security/faq -...

MGASA-2017-0150 Updated vlc packages fix security vulnerability

The VLC packages have been updated to version 2.2.6, which includes various security improvements in demuxers, as well as other bug fixes...

Debian DLA-791-1 : libav security update

Multiple integer overflows have been discovered in libav 11.8 and earlier, allowing remote attackers to cause a crash via a crafted MP3 file. For Debian 7 'Wheezy', these problems have been fixed in version 6:0.8.20-0+deb7u1. We recommend that you upgrade your libav packages. NOTE: Tenable Networ...

Important: Red Hat Security Advisory: libyaml security update

Updated libyaml packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 4. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severi...

Low: Red Hat Security Advisory: openstack-glance security update

Updated openstack-glance packages that fix multiple bugs and add various enhancements are now available for Red Hat OpenStack Essex. The openstack-glance packages allows virtual machine images to be discovered, registered and retrieved. It also includes a RESTful API to provide these services to...

Mandrake Linux Security Advisory : mc (MDKSA-2000:078)

A problem was found in the cons.saver program by Maurycy Prodeus. The cons.saver program is a screensaver for the console that is included in the mc package. cons.saver does not check if it is started with a valid stdout, which combined with a bug in its check to see if its argument is a tty it...

php security update

CentOS Errata and Security Advisory CESA-2012:0071 Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

Debian Security Advisory DSA 1340-1 (clamav)

The remote host is missing an update to clamav announced via advisory DSA 1340-1. OpenVAS Vulnerability Test $Id: deb13401.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1340-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Moderate: Red Hat Security Advisory: xorg-x11 security update

Updated X.org packages that correct a flaw in X.Org's composite extension are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. X.org is an open source implementation of the X Window System. It provid...

DSA-549-1 gtk+2.0 - multiple holes

Bulletin has no description...

[SECURITY] [DSA 306-1] New BitchX packages fix DoS and arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 306-1 [email protected] http://www.debian.org/security/ Martin Schulze May 19th, 2003 http://www.debian.org/security/faq -...

rsync update fixes security problems

New rsync packages are available to fix security problems. Here's the information from the Slackware 8.0 ChangeLog: ---------------------------- Mon Mar 11 15:09:26 PST 2002 patches/packages/rsync.tgz: Upgraded to rsync-2.5.3. This fixes two security problems: Make sure that supplementary groups...