1291 matches found
[SECURITY] [DLA 2616-1] libxstream-java security update
Debian LTS Advisory DLA-2616-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany April 03, 2021 https://wiki.debian.org/LTS Package : libxstream-java Version : 1.4.11.1-1+deb9u2 CVE ID : CVE-2021-21341 CVE-2021-21342 CVE-2021-21343 CVE-2021-21344 CVE-2021-21345...
Debian DLA-2613-1 : underscore security update
node-underscore and libjs-underscore are vulnerable to Arbitrary Code Execution via the template function, particulary when a variable property is passed as an argument as it is not sanitized. For Debian 9 stretch, this problem has been fixed in version 1.8.3dfsg-1+deb9u1. We recommend that you...
Debian DLA-2612-1 : leptonlib security update
Several issues have been found by ClusterFuzz in leptonlib, an image processing library. All issues are related to heap-based buffer over-read in several functions or a denial of service application crash with crafted data. For Debian 9 stretch, these problems have been fixed in version...
Debian: Security Advisory (DLA-2611-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2611-1 : ldb security update
Two issues have been found in ldb, an LDAP-like embedded database, for example used with samba. Both issues are related to out of bounds access, either an out of bound read or a heap corrupton, both most likely leading to an application crash. For Debian 9 stretch, these problems have been fixed ...
[SECURITY] [DLA 2613-1] underscore security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2613-1 [email protected] https://www.debian.org/lts/security/ Yadd March 31, 2021 https://wiki.debian.org/LTS - -------------------------------------------------------------------------...
[SECURITY] [DLA 2612-1] leptonlib security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2612-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz March 31, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2609-1 : thunderbird security update
Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. For Debian 9 stretch, these problems have been fixed in version 1:78.9.0-1deb9u1. We recommend that you upgrade your thunderbird packages. For the detailed...
Debian DLA-2608-1 : jquery security update
Two vulnerabilities have been discovered in jquery's handling of untrusted HTML which may result in execution of untrusted code. For Debian 9 stretch, these problems have been fixed in version 3.1.1-2+deb9u2. We recommend that you upgrade your jquery packages. For the detailed security status of...
Debian DLA-2606-1 : lxml security update
An issue has been found in lxml, a pythonic binding for the libxml2 and libxslt libraries. Due to missing input sanitization, XSS is possible for the HTML5 formaction attribute. For Debian 9 stretch, this problem has been fixed in version 3.7.1-1+deb9u4. We recommend that you upgrade your lxml...
Debian: Security Advisory (DLA-2607-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2607-1 : firefox-esr security update
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure or spoofing attacks. For Debian 9 stretch, these problems have been fixed in version 78.9.0esr-1deb9u1. We recommend that you...
[SECURITY] [DLA 2607-1] firefox-esr security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2607-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort March 25, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2606-1] lxml security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2606-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz March 24, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2603-1 : libmediainfo security update
It was discovered that there were a number of vulnerabilities in libmediainfo, a library reading metadata such as track names, lengths, etc. from media files. For Debian 9 'Stretch', these problems have been fixed in version 0.7.91-1+deb9u1. We recommend that you upgrade your libmediainfo package...
Debian DLA-2605-1 : mariadb-10.1 security update
A remote code execution issue was discovered in MariaDB. An untrusted search path leads to eval injection, in which a database SUPER user can execute OS commands after modifying wsrepprovider and wsrepnotifycmd. For Debian 9 stretch, this problem has been fixed in version 10.1.48-0+deb9u2. We...
Debian: Security Advisory (DLA-2603-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2603-1] libmediainfo security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2603-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb March 23, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2604-1 : dnsmasq security update
Moshe Kol and Shlomi Oberman of JSOF discovered several vulnerabilities in dnsmasq, a small caching DNS proxy and DHCP/TFTP server. They could result in denial of service, cache poisoning or the execution of arbitrary code. For Debian 9 stretch, these problems have been fixed in version...
[SECURITY] [DLA 2604-1] dnsmasq security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2604-1 [email protected] https://www.debian.org/lts/security/ March 22, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...