Debian DLA-2318-1 : wpa security update

The following CVEs have been reported against src:wpa. CVE-2019-10064 hostapd before 2.6, in EAP mode, makes calls to the rand and random standard library functions without any preceding srand or srandom call, which results in inappropriate use of deterministic values. This was fixed in conjuncti...

Debian DLA-2319-1 : xrdp security update

xrdp-sesman service in xrdp can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This will allow them to...

Debian DLA-2316-1 : ruby-kramdown security update

ruby-kramdown processes the template option inside Kramdown documents by default, which allows unintended read access such as template='/etc/passwd' or unintended embedded Ruby code execution such as a string that begins with template='string://%= . NOTE: kramdown is used in Jekyll, GitLab Pages,...

[SECURITY] [DLA 2318-1] wpa security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2318-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta August 09, 2020 https://wiki.debian.org/LTS -...

Debian DLA-2315-1 : gupnp security update

Yunus adrc found an issue in the SUBSCRIBE method of UPnP, a network protocol for devices to automatically discover and communicate with each other. Insuficient checks on this method allowed attackers to use vulnerable UPnP services for DoS attacks or possibly to bypass firewalls. For Debian 9...

Debian DLA-2314-1 : clamav security update

Several vulnerabilities have been found in the ClamAV antivirus toolkit : CVE-2020-3327 An out of bounds read in the ARJ archive-parsing module could cause denial of service. The fix in 0.102.3 was incomplete. CVE-2020-3350 A malicious user could trick clamscan, clamdscan or clamonacc into moving...

Debian DLA-2313-1 : net-snmp security update

A privilege escalation vulnerability was discovered in Net-SNMP, a set of tools for collecting and organising information about devices on computer networks, due to incorrect symlink handling CVE-2020-15861. This security update also applies an upstream fix to their previous handling of...

Debian DLA-2312-1 : libx11 security update

Todd Carson discovered some integer overflows in libX11, which could lead to heap corruption when processing crafted messages from an input method. For Debian 9 stretch, this problem has been fixed in version 2:1.6.4-3+deb9u2. We recommend that you upgrade your libx11 packages. For the detailed...

Debian: Security Advisory (DLA-2313-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-2311-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2302-1 : libjpeg-turbo security update

Several vulnerabilities were fixed in libjpeg-turbo, a widely used library for handling JPEG files. CVE-2018-1152 Denial of service vulnerability caused by a divide by zero when processing a crafted BMP image in TJBench. CVE-2018-14498 Denial of service heap-based buffer over-read and application...

Debian DLA-2309-1 : evolution-data-server security update

In Evolution Data Server a vulnerability was discovered that allowed a malicious server to crash the mail client. For Debian 9 stretch, this problem has been fixed in version 3.22.7-1+deb9u2. We recommend that you upgrade your evolution-data-server packages. For the detailed security status of...

Debian DLA-2308-1 : libopenmpt security update

In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlugInstrumentName and ModPlugSampleName in libopenmptmodplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow. For Debian 9 stretch, this problem has been fixed in version...

Debian DLA-2307-1 : ruby-zip security update

rubyzip gem version 1.2.1 and earlier contains a Directory Traversal vulnerability in Zip::File component that can result in write arbitrary files to the filesystem. This attack appear to be exploitable via if a site allows uploading of .zip files, an attacker can upload a malicious file that...

Debian DLA-2310-1 : thunderbird security update

Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of arbitrary code. For Debian 9 stretch, these problems have been fixed in version 1:68.11.0-1deb9u1. We recommend that you upgrade your thunderbird packages. For the...

Debian: Security Advisory (DLA-2309-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2306-1 : libphp-phpmailer security update

It was discovered that there was an escaping issue in libphp-phpmailer, an email generation utility class for the PHP programming language. The Content-Type and Content-Disposition headers could have permitted file attachments that bypassed attachment filters which match on filename extensions. F...

Debian DLA-2293-1 : mercurial security update

Several vulnerabilities were discovered in mercurial, an easy-to-use, scalable distributed version control system. CVE-2017-17458 In Mercurial before 4.4.1, it is possible that a specially malformed repository can cause Git subrepositories to run arbitrary code in the form of a...

Debian DLA-2304-1 : libpam-radius-auth security update

addpassword in pamradiusauth.c in pamradius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy. An attacker could send a crafted password to an application loading the pamradius library and crash it. Arbitrary code...

[SECURITY] [DLA 2309-1] evolution-data-server security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2309-1 [email protected] https://www.debian.org/lts/security/ August 02, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...