1293 matches found
Debian: Security Advisory (DLA-2632-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2632-1 : thunderbird security update
Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. In adddition a number of security issues were addressed in the OpenPGP support. For Debian 9 stretch, these problems have been fixed in version...
[SECURITY] [DLA 2632-1] thunderbird security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2632-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort April 22, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2630-1 : wordpress security update
CVE-2021-29447 Wordpress is an open source CMS. A user with the ability to upload files like an Author can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful XXE...
[SECURITY] [DLA 2631-1] zabbix security update
From: Sylvain Beucler [email protected] To: [email protected] Subject: SECURITY DLA 2631-1 zabbix security update - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2631-1 [email protected]...
[SECURITY] [DLA 2630-1] wordpress security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2630-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta April 21, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2629-1 : libebml security update
A heap overflow issue was detected in libebml, a library to read and write files in the EBML format, a binary pendant to XML. These issues appeared in several ReadData functions of various data type classes. This update also fixes the issue in EbmlString::ReadData and EbmlUnicodeString::ReadData,...
[SECURITY] [DLA 2628-1] python2.7 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2628-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky April 17, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2618-2] smarty3 regression update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2618-2 [email protected] https://www.debian.org/lts/security/ Abhijith PA April 16, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2627-1 : xorg-server security update
Jan-Niklas Sohn discovered that there was an input validation failure in the X.Org display server. Insufficient checks on the lengths of the XInput extension's ChangeFeedbackControl request could have lead to out of bounds memory accesses in the X server. These issues can lead to privilege...
[SECURITY] [DLA 2627-1] xorg-server security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2627-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 15, 2021 https://wiki.debian.org/LTS -...
Debian: Security Advisory (DLA-2624-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2624-1] libpano13 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2624-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta April 12, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2622-1 : python-django security update
It was discovered that there was a potential directory traversal issue in Django, a Python-based web development framework. The vulnerability could have been exploited by maliciously crafted filenames. However, the upload handlers built into Django itself were not affected. For Debian 9 'Stretch'...
[SECURITY] [DLA 2623-1] qemu security update
Debian LTS Advisory DLA-2623-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany April 10, 2021 https://wiki.debian.org/LTS Package : qemu Version : 1:2.8+dfsg-6+deb9u14 CVE ID : CVE-2020-17380 CVE-2021-3392 CVE-2021-3409 CVE-2021-3416 CVE-2021-20203 CVE-2021-20255...
Debian: Security Advisory (DLA-2622-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2622-1] python-django security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2622-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 09, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2621-1 : php-pear security update
A vulnerability was discovered in php-pear, which provides core packages from the PHP Extension and Application Repository. Tar.php in ArchiveTar allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948. An attacker could...
Debian DLA-2618-3 : smarty3 regression update
The security update of smarty3, the compiling PHP template engine, issued as DLA 2618-1 introduced a regression in the smartysecurity class when secure directories are evaluated. Updated smarty3 packages are now available to correct this issue. For Debian 9 stretch, this problem has been fixed in...
Debian DLA-2617-1 : php-nette security update
Cyku Hong from DEVCORE discovered that php-nette, a PHP MVC framework, is vulnerable to a code injection attack by passing specially formed parameters to URL that may possibly leading to remote code execution. For Debian 9 stretch, this problem has been fixed in version 2.4-20160731-1+deb9u1. We...