14289 matches found
[SECURITY] [DLA 2884-1] wordpress security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2884-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta January 17, 2022 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 1900-1] apache2 security update
Package : apache2 Version : 2.4.10-10+deb8u15 CVE ID : CVE-2019-10092 CVE-2019-10098 Two security vulnerabilities were found in the Apache HTTP server. CVE-2019-10092 Matei "Mal" Badanoiu reported a limited cross-site scripting vulnerability in the modproxy error page. CVE-2019-10098 Yukitsugu...
[SECURITY] [DSA 4486-1] openjdk-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4486-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 21, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4410-1] openjdk-8 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4410-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 20, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1655-1] mariadb-10.0 security update
Package : mariadb-10.0 Version : 10.0.38-0+deb8u1 CVE ID : CVE-2019-2529 CVE-2019-2537 Several issues have been discovered in the MariaDB database server. The vulnerabilities are addressed by upgrading MariaDB to the new upstream version 10.0.38. Please see the MariaDB 10.0 Release Notes for...
[SECURITY] [DSA 4355-1] openssl1.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4355-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 19, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4855-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4855-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 17, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4485-1] openjdk-8 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4485-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 21, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1777-2] jquery regression update
Package : jquery Version : 1.7.2+dfsg-3.2+deb8u7 Debian Bug : 928827 The minified jquery library was broken in version 1.7.2+dfsg-3.2+deb8u6 due to an error during the build. This problem has now been fixed in version 1.7.2+dfsg-3.2+deb8u7 For Debian 8 "Jessie", this problem has been fixed in...
[SECURITY] [DLA 1777-1] jquery security update
Package : jquery Version : 1.7.2+dfsg-3.2+deb8u6 CVE ID : CVE-2019-11358 jQuery mishandles jQuery.extendtrue, , ... because of Object.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native Object.prototype. For additional informatio...
[SECURITY] [DLA 1747-1] firmware-nonfree security update
Package : firmware-nonfree Version : 20161130-5deb8u1 CVE ID : CVE-2018-5383 Eli Biham and Lior Neumann discovered a cryptographic weakness in the Bluetooth LE SC pairing protocol, called the Fixed Coordinate Invalid Curve Attack CVE-2018-5383. Depending on the devices used, this could be exploit...
[SECURITY] [DLA 1647-1] apache2 security update
Package : apache2 Version : 2.4.10-10+deb8u13 CVE ID : CVE-2018-17199 Diego Angulo from ImExHS discovered an issue in the webserver apache2. The module modsession ignored the expiry time of sessions handled by modsessioncookie, because the expiry time is available only after decoding the session...
[SECURITY] [DSA 4374-1] qtbase-opensource-src security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4374-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 28, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5907-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5907-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 27, 2025 https://www.debian.org/security/faq -...
[SECURITY] [DLA-1994-1] postgresql-common security update
Package : postgresql-common Version : 165+deb8u4 CVE ID : CVE-2019-3466 Rich Mirch discovered that the pgctlcluster script didnt drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation. For the oldoldstable distribution jessie, this...
[SECURITY] [DLA 1934-1] cimg security update
Package : cimg Version : 1.5.9+dfsg-1+deb8u1 CVE ID : CVE-2018-7588 CVE-2018-7589 CVE-2018-7637 CVE-2018-7638 CVE-2018-7639 CVE-2018-7640 CVE-2018-7641 CVE-2019-1010174 Several issues have been found in cimg, a powerful image processing library. CVE-2019-1010174 is related to a missing string...
[SECURITY] [DLA 1860-1] libxslt security update
Package : libxslt Version : 1.1.28-2+deb8u5 CVE ID : CVE-2016-4609 CVE-2016-4610 CVE-2019-13117 CVE-2019-13118 Debian Bug : 932321 932320 Several vulnerabilities were found in libxslt the XSLT 1.0 processing library. CVE-2016-4610 Invalid memory access leading to DoS at exsltDynMapFunction. libxs...
[SECURITY] [DLA 1737-1] pdns security update
Package : pdns Version : 3.4.1-4+deb8u9 CVE ID : CVE-2019-3871 Debian Bug : 924966 A vulnerability was found in PowerDNS Authoritative Server before 4.0.7 and before 4.1.7. An insufficient validation of data coming from the user when building a HTTP request from a DNS query in the HTTP Connector ...
[SECURITY] [DLA 2972-1] libxml2 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2972-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky April 08, 2022 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2559-1] busybox security update
Debian LTS Advisory DLA-2559-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany February 15, 2021 https://wiki.debian.org/LTS Package : busybox Version : 1:1.22.0-19+deb9u1 CVE ID : CVE-2011-5325 CVE-2015-9261 CVE-2016-2147 CVE-2016-2148 CVE-2017-15873 CVE-2017-165...
[SECURITY] [DSA 4577-1] haproxy security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4577-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 28, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4419-1] twig security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4419-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 29, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4397-1] ldb security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4397-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 28, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1662-1] libthrift-java security update
Package : libthrift-java Version : 0.9.1-2+deb8u1 CVE ID : CVE-2018-1320 Debian Bug : 918736 It was discovered that it was possible to bypass SASL negotiation isComplete validation in libthrift-java, Java language support for the Apache Thrift software framework. An assert used to determine if th...
[SECURITY] [DSA 4941-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4941-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 20, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4531-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4531-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4501-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4501-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 15, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3887-1] glibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3887-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 19, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2677-1] libwebp security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2677-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky June 05, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2340-1] sqlite3 security update
Debian LTS Advisory DLA-2340-1 [email protected] https://www.debian.org/lts/security/ August 22, 2020 https://wiki.debian.org/LTS Package : sqlite3 Version : 3.16.2-5+deb9u2 CVE ID : CVE-2018-8740 CVE-2018-20346 CVE-2018-20506 CVE-2019-5827 CVE-2019-9936 CVE-2019-9937 CVE-2019-16168...
[SECURITY] [DSA 4459-1] vlc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4459-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 12, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1795-1] graphicsmagick security update
Package : graphicsmagick Version : 1.3.20-3+deb8u7 CVE ID : CVE-2019-11473 CVE-2019-11474 CVE-2019-11505 CVE-2019-11506 Multiple vulnerabilities have been discovered in graphicsmagick, the image processing toolkit: CVE-2019-11473 The WriteMATLABImage function coders/mat.c is affected by a...
[SECURITY] [DSA 4421-1] chromium security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4421-1 [email protected] https://www.debian.org/security/ Michael Gilbert March 31, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2706-1] apache2 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2706-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort July 09, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2608-1] jquery security update
Debian LTS Advisory DLA-2608-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez March 25, 2021 https://wiki.debian.org/LTS Package : jquery Version : 3.1.1-2+deb9u2 CVE ID : CVE-2020-11022 CVE-2020-11023 Two vulnerabilities have been discovered in jquerys handli...
[SECURITY] [DLA 2568-1] bind9 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2568-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb February 19, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2045-1] tightvnc security update
Package : tightvnc Version : 1.3.9-6.5+deb8u1 CVE ID : CVE-2014-6053 CVE-2018-7225 CVE-2019-8287 CVE-2018-20021 CVE-2018-20022 CVE-2019-15678 CVE-2019-15679 CVE-2019-15680 CVE-2019-15681 Debian Bug : 945364 Several vulnerabilities have recently been discovered in TightVNC 1.x, an X11 based VNC...
[SECURITY] [DLA 1993-1] mesa security update
Package : mesa Version : 10.3.2-1+deb8u2 CVE ID : CVE-2019-5068 Debian Bug : 944298 Tim Brown discovered a shared memory permissions vulnerability in the Mesa 3D graphics library. Some Mesa X11 drivers use shared-memory XImages to implement back buffers for improved performance, but Mesa creates...
[SECURITY] [DSA 4552-1] php7.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4552-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 28, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4519-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4519-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 08, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2500-1] curl security update
Debian LTS Advisory DLA-2500-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez December 18, 2020 https://wiki.debian.org/LTS Package : curl Version : 7.52.1-5+deb9u13 CVE ID : CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 Debian Bug : 977161 977162 977163 Several...
[SECURITY] [DLA 2209-1] tomcat8 security update
Package : tomcat8 Version : 8.0.14-1+deb8u17 CVE ID : CVE-2019-17563 CVE-2020-1935 CVE-2020-1938 CVE-2020-9484 Debian Bug : 961209 952436 952437 952438 Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. WARNING: The fix for CVE-2020-1938 may disrupt servic...
[SECURITY] [DSA 4520-1] trafficserver security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4520-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 09, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1613-1] sqlite3 security update
Package : sqlite3 Version : 3.8.7.1-1+deb8u3 CVE ID : CVE-2018-20346 Security experts at Tencent’s Blade security team have discovered a critical vulnerability in SQLite database software nicknamed "Magellan". The "Magellan" remote code execution vulnerability has now been fixed by adding extra...
[SECURITY] [DSA 4631-1] pillow security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4631-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 21, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1910-1] firefox-esr security update
Package : firefox-esr Version : 60.9.0esr-1deb8u1 CVE ID : CVE-2019-9812 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of...
[SECURITY] [DLA 1753-3] proftpd-dfsg regression update
Package : proftpd-dfsg Version : 1.3.5e+r1.3.5-2+deb8u2 Debian Bug : 929020 The update of proftpd-dfsg issued as DLA-1753-1 caused a regression when the creation of a directory failed during sftp transfer. The sftp session would be terminated instead of failing gracefully due to a non-existing...
[SECURITY] [DSA 4353-1] php7.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4353-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 10, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5169-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5169-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 26, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4865-1] docker.io security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4865-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 27, 2021 https://www.debian.org/security/faq -...