26 matches found
ROOT-OS-DEBIAN-11-CVE-2023-53105 CVE-2023-53105 in rootio-linux - Patched by Root
Root has patched CVE-2023-53105 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-4224 CVE-2026-4224 in rootio-python3.11 - Patched by Root
Root has patched CVE-2026-4224 in the rootio-python3.11 package for Root:Debian:12. Multiple fixed versions available...
CLSA-2026-1778895199 Fix CVE(s): CVE-2024-50602
SECURITY UPDATE: Crash in XMLResumeParser because XMLStopParser can stop/suspend an unstarted parser - debian/patches/CVE-2024-50602.patch: make XMLStopParser refuse to stop/suspend an unstarted parser - CVE-2024-50602...
CLSA-2026-1778599539 Fix CVE(s): CVE-2026-4878
SECURITY UPDATE: TOCTOU race condition in capsetfile - debian/patches/CVE-2026-4878.patch: open the target file and operate on /proc/self/fd/N so the inode is locked between the regular-file check and the xattr update - CVE-2026-4878...
CLSA-2026-1778487942 Fix CVE(s): CVE-2026-25576
SECURITY UPDATE: fix heap buffer over-read in raw pixel coders when -extract dimensions exceed -size dimensions - debian/patches/CVE-2026-25576.patch: fix heap buffer over-read in raw pixel coders when -extract dimensions exceed -size dimensions - CVE-2026-25576...
CLSA-2026-1777393624 Fix CVE(s): CVE-2026-28390
SECURITY UPDATE: NULL dereference in CMS RSA-OAEP decryption when the optional pSourceFunc parameters field is omitted from a KeyTransportRecipientInfo, leading to a denial of service. - debian/patches/CVE-2026-28390.patch: check plab-parameter for NULL before accessing its type field in...
CLSA-2026-1776693427 Fix CVE(s): CVE-2019-1010180
SECURITY UPDATE: buffer overflow when ELF section size is invalid - debian/patches/CVE-2019-1010180.patch: reject ELF sections whose recorded size exceeds the file size - CVE-2019-1010180...
CLSA-2026-1775724625 Fix CVE(s): CVE-2026-32748, CVE-2026-33526
SECURITY UPDATE: denial of service via use-after-free in ICP - debian/patches/CVE-2026-33526.patch: remove duplicate rfc1738escape call in icpGetRequest that invalidated the previously escaped URL pointer - CVE-2026-33526 SECURITY UPDATE: denial of service via use-after-free in ICP request handli...
CLSA-2025-1765802003 Fix CVE(s): CVE-2025-8225
SECURITY UPDATE: debuginformation memory leak in processdebuginfo - debian/patches/CVE-2025-8225.patch: prevent memory leak by checking allocnumdebuginfoentries instead of numdebuginfoentries to determine whether debuginformation has been allocated - CVE-2025-8225...
CLSA-2025-1761312327 Fix CVE(s): CVE-2025-9714
SECURITY UPDATE: uncontrolled recursion leading to stack overflow via crafted XPath expressions - debian/patches/CVE-2025-9714.patch: Make XPath depth check work with recursive invocations to prevent stack overflows - CVE-2025-9714...
CLSA-2025-1760019012 Fix CVE(s): CVE-2025-57803
SECURITY UPDATE: 32-bit Integer Overflow in BMP Encoder - debian/patches/CVE-2025-57803.patch: Fix buffer overflow issue in BMP decoder caused by insufficient memory allocation - CVE-2025-57803...
CLSA-2025-1757662564 Fix CVE(s): CVE-2025-5318
SECURITY UPDATE: out-of-bounds read in sftphandle function - debian/patches/CVE-2025-5318.patch: fix possible buffer overrun by changing ' SFTPHANDLES' to '= SFTPHANDLES' - CVE-2025-5318...
CLSA-2025-1757411388 Fix CVE(s): CVE-2025-53014
SECURITY UPDATE: heap buffer overflow in InterpretImageFilename function - debian/patches/CVE-2025-53014.patch: fix out of bounds read of a single byte in image file interpretation - CVE-2025-53014...
CLSA-2025-1754410992 Fix CVE(s): CVE-2025-6965
SECURITY UPDATE: excessive aggregate terms potentially leading to memory corruption - debian/patches/CVE-2025-6965.patch: fix a potential memory corruption if the number of aggregate terms in a query exceeds the maximum number of columns - CVE-2025-6965...
CLSA-2025-1742577500 Fix CVE(s): CVE-2017-12166
SECURITY UPDATE: Possible inject of arbitrary data into third-party executables or plug-ins - debian/patches/CVE-2017-12166.patch: Fix an out-of-bounds issue preventing potential stack overflow - CVE-2017-12166 UPDATE CERTIFICATES: Renew sample keys - debian/patches/sample-keys-renew.patch: Renew...
CLSA-2025-1742379365 Fix CVE(s): CVE-2025-0840
SECURITY UPDATE: stack-based buffer overflow via manipulation of argument - debian/patches/CVE-2025-0840.patch: Fix stack-buffer-overflow at objdump disassemblebytes by restricting insnwidth to range 1-49 - CVE-2025-0840...
CLSA-2025-1736889411 Fix CVE(s): CVE-2023-41080
SECURITY UPDATE: Security vulnerability in URL redirection - debian/patches/CVE-2023-41080.patch: Avoid protocol relative redirects in FORM authentication - CVE-2023-41080...
CLSA-2024-1732196985 Fix CVE(s): CVE-2020-27765
SECURITY UPDATE: Division by zero vulnerability in segment.c - debian/patches/CVE-2020-27765.patch: Fix averagetau calculation by multiplying instead of dividing by numbernodes in OptimalTau function to prevent incorrect segmentation output - CVE-2020-27765...
CLSA-2024-1731345748 Fix CVE(s): CVE-2023-4408
SECURITY UPDATE: The DNS message parsing code in named includes a section whose computational complexity is overly high - debian/patches/CVE-2023-4408.patch: refactoring parsing code - debian/libdns1100.symbols: some function declarations were removed according to the CVE-2023-4408.patch -...
CLSA-2024-1707420378 Fix CVE(s): CVE-2023-48795
SECURITY UPDATE: it's possible to remove the initial messages on the secure channel without causing a MAC failure - debian/patches/CVE-2023-48795.patch: implement "strict key exchange" in ssh and sshd - CVE-2023-48795...