1291 matches found
[SECURITY] [DLA 2547-1] wireshark security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2547-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk February 06, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2545-1 : open-build-service security update
CVE-2020-8020 An improper neutralization of input during web page generation vulnerability in open-build-service allows remote attackers to store arbitrary JS code to cause XSS. CVE-2020-8021 An improper access control vulnerability in open-build-service allows remote attackers to read files of a...
Debian DLA-2541-1 : thunderbird security update
Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or an information leak. For Debian 9 stretch, these problems have been fixed in version 1:78.7.0-1deb9u1. We recommend that you upgrade your thunderbird packages. For the...
[SECURITY] [DLA 2545-1] open-build-service security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2545-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 03, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2544-1] openldap security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2544-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 03, 2021 https://wiki.debian.org/LTS -...
Debian: Security Advisory (DLA-2539-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-2541-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2539-1] firefox-esr security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2539-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort February 02, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2540-1] python-django security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2540-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb February 01, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2536-1 : libsdl2 security update
Several issues have been found in libsdl2, a library for portable low level access to a video framebuffer, audio output, mouse, and keyboard. All issues are related to either buffer overflow, integer overflow or heap-based buffer over-read, resulting in a DoS or remote code execution by using...
Debian DLA-2537-1 : ffmpeg security update
Two vulnerabilities have been discovered in ffmpeg, a widely used multimedia framework. CVE-2019-17539 a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer CVE-2020-35965 an out-of-bounds write because of errors in calculations of when to...
Debian: Security Advisory (DLA-2537-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2538-1 : mariadb-10.1 security update
Two vulnerabilities were fixed by upgrading the MariaDB database server packages to the latest version on the 10.1 branch. For Debian 9 stretch, these problems have been fixed in version 10.1.48-0+deb9u1. We recommend that you upgrade your mariadb-10.1 packages. For the detailed security status o...
[SECURITY] [DLA 2538-1] mariadb-10.1 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2538-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk January 31, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2431-2] libonig regression update
Debian LTS Advisory DLA-2431-2 [email protected] https://www.debian.org/lts/security/ Markus Koschany January 30, 2021 https://wiki.debian.org/LTS Package : libonig Version : 6.1.3-2+deb9u2 CVE ID : CVE-2020-26159 It was discovered that CVE-2020-26159 in the Oniguruma regular expression...
[SECURITY] [DLA 2536-1] libsdl2 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2536-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz January 30, 2021 https://wiki.debian.org/LTS -...
Debian DLA-2535-1 : ansible security update
CVE-2017-7481 Ansible fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now...
Debian DLA-2532-1 : debian-security-support security update
debian-security-support, the Debian security support coverage checker, has been updated in stretch-security to mark the end of life of the reel package. See https://lists.debian.org/debian-lts/2021/01/msg00016.html for further information. For Debian 9 stretch, this problem has been documented in...
Debian: Security Advisory (DLA-2533-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2533-1 : crmsh security update
It was discovered that there was an in issue in the command-line tool for the Pacemaker High Availability stack. Local attackers were able to execute commands via shell code injection to the 'crm history' command-line tool, potentially allowing escalation of privileges. For Debian 9 'Stretch', th...