Debian: Security Advisory (DSA-4297-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4296-1 : mbedtls - security update

Two vulnerabilities were discovered in mbedtls, a lightweight crypto and SSL/TLS library which could result in plain text recovery via side-channel attacks. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-429...

Debian DSA-4293-1 : discount - security update

Several heap buffer overflows were found in discount, an implementation of the Markdown markup language, that could be triggered with specially crafted Markdown data and would cause discount to read past the end of internal buffers. C Tenable Network Security, Inc. The descriptive text and packag...

[SECURITY] [DSA 4295-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4295-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 16, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4290-1] libextractor security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4290-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 10, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4289-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4289-1 [email protected] https://www.debian.org/security/ Michael Gilbert September 07, 2018 https://www.debian.org/security/faq -...

Debian DSA-4284-1 : lcms2 - security update

Quang Nguyen discovered an integer overflow in the Little CMS 2 colour management library, which could result in denial of service and potentially the execution of arbitrary code if a malformed IT8 calibration file is processed. C Tenable Network Security, Inc. The descriptive text and package...

Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode 20 Bytes

/ Title: Linux/ARM - read0, buf, 0xff stager + execve"/bin/sh", NULL, NULL Shellcode 20 Bytes Tested: armv7l Raspberry Pi 3 Model B+ Author: Ken Kitahara System Information pi@raspberrypi: $ uname -a Linux raspberrypi 4.14.52-v7+ 1123 SMP Wed Jun 27 17:35:49 BST 2018 armv7l GNU/Linux...

Linux/ARM - read(0, buf, 0xff) stager + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes)

Linux/ARM - read0, buf, 0xff stager + execve"/bin/sh", NULL, NULL Shellcode 28 Bytes. Shellcode exploit for ARM platform / Title: Linux/ARM - read0, buf, 0xff stager + execve"/bin/sh", NULL, NULL Shellcode 28 Bytes Date: 2018-08-30 Tested: armv7l Raspberry Pi 3 Model B+ Author: Ken Kitahara...

Debian: Security Advisory (DSA-4274-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4270-1 : gdm3 - security update

Chris Coulson discovered a use-after-free flaw in the GNOME Display Manager, triggerable by an unprivileged user via a specially crafted sequence of D-Bus method calls, leading to denial of service or potentially the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive te...

[SECURITY] [DSA 4265-1] xml-security-c security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4265-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 05, 2018 https://www.debian.org/security/faq -...

Linux/ARM - Bind (4444/TCP) Shell +IPv6 Shellcode (128 Bytes)

Linux/ARM - Bind 4444/TCP Shell +IPv6 Shellcode 128 Bytes. Shellcode exploit for ARM platform / Title: Linux/ARM - IPv6 4444/TCP Bind Shellcode 128 Bytes Date: 2018-07-25 Tested: armv7l Raspberry Pi 3 Model B+ Author: Ken Kitahara pi@raspberrypi: $ uname -a Linux raspberrypi 4.14.52-v7+ 1123 SMP...

[SECURITY] [DSA 4260-1] libmspack security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4260-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 02, 2018 https://www.debian.org/security/faq -...

Debian DSA-4259-1 : ruby2.3 - security update

Several vulnerabilities have been discovered in the interpreter for the Ruby language, which may result in incorrect processing of HTTP/FTP, directory traversal, command injection, unintended socket creation or information disclosure. This update also fixes several issues in RubyGems which could...

Debian: Security Advisory (DSA-4260-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 4257-1] fuse security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4257-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 28, 2018 https://www.debian.org/security/faq -...

Debian DSA-4254-1 : slurm-llnl - security update

Several vulnerabilities were discovered in the Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2018-7033 Incomplete sanitization of user-provided...

[SECURITY] [DSA 4253-1] network-manager-vpnc security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4253-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 23, 2018 https://www.debian.org/security/faq -...

Debian DSA-4249-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...