14324 matches found
[SECURITY] [DLA 2142-1] slirp security update
Package : slirp Version : 1:1.0.17-7+deb8u2 CVE ID : CVE-2020-8608 It was discovered that there was a buffer overflow vulnerability in slirp, a SLIP/PPP emulator for using a dial up shell account. This was caused by the incorrect usage of return values from snprintf3. For Debian 8 "Jessie", this...
[SECURITY] [DLA 1919-2] linux-4.9 security update
Package : linux-4.9 Version : 4.9.189-3deb8u1 CVE ID : CVE-2019-0136 CVE-2019-9506 CVE-2019-11487 CVE-2019-15211 CVE-2019-15212 CVE-2019-15215 CVE-2019-15216 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15807 CVE-2019-15924...
[SECURITY] [DSA 3906-1] undertow security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3906-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 11, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5884-1] libxslt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5884-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 23, 2025 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2776-1] apache2 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2776-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler October 02, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4946-1] openjdk-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4946-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 29, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4870-1] pygments security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4870-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 12, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4856-1] php7.3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4856-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 17, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4830-2] flatpak regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-4830-2 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 22, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4823-1] influxdb security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4823-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 01, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2423-1] wireshark security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2423-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk October 31, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2237-1] cups security update
Package : cups Version : 1.7.5-11+deb8u8 CVE ID : CVE-2019-8842 CVE-2020-3898 The following CVEs were reported against src:cups. CVE-2019-8842 The ippReadIO function may under-read an extension field. CVE-2020-3898 There was a heap based buffer overflow in libcupss ppdFindOption in ppd-mark.c. Th...
[SECURITY] [DSA 4684-1] libreswan security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4684-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 13, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4676-1] salt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4676-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 06, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4652-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4652-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 04, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4642-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4642-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 19, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4500-1] chromium security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4500-1 [email protected] https://www.debian.org/security/ Michael Gilbert August 12, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4498-1] python-django security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4498-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 12, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1620-1] ghostscript security update
Package : ghostscript Version : 9.06dfsg-2+deb8u13 CVE ID : CVE-2018-19134 CVE-2018-19478 Some vulnerabilities were discovered in ghostscript, an interpreter for the PostScript language and for PDF. CVE-2018-19134 The setpattern operator did not properly validate certain types. A specially crafte...
[SECURITY] [DLA 1598-1] ghostscript security update
Package : ghostscript Version : 9.06dfsg-2+deb8u12 CVE ID : CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 Several security vulnerabilities were discovered in Ghostscript, an interpreter for the PostScript language, which could result in denial of service, the creation of files or th...
[SECURITY] [DLA 3918-1] docker.io security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3918-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès October 13, 2024 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 5360-1] emacs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5360-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 23, 2023 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5216-1] libxslt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5216-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 24, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5085-2] expat regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-5085-2 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 13, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2487-1] apt security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2487-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 10, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4760-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4760-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 06, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2226-1] gst-plugins-ugly0.10 security update
Package : gst-plugins-ugly0.10 Version : 0.10.19-2.1+deb8u1 CVE ID : CVE-2017-5846 CVE-2017-5847 Two memory management issues were found in the asfdemux element of the GStreamer "ugly" plugin collection, which can be triggered via a maliciously crafted file. For Debian 8 "Jessie", these problems...
[SECURITY] [DLA 2129-1] firebird2.5 security update
Package : firebird2.5 Version : 2.5.3.26778.ds4-5+deb8u2 CVE ID : CVE-2017-11509 An issues has been found in firebird2.5, an RDBMS based on InterBase 6.0. As UDFs can be used for a remote authenticated code execution as user firebird, UDFs have been disabled in the default configuration which wil...
[SECURITY] [DLA 2075-1] jsoup security update
Package : jsoup Version : 1.8.1-1+deb8u1 CVE ID : CVE-2015-6748 An issue has been found in jsoup, a Java HTML parser that makes sense of real-world HTML soup. Due to bad handling of missing at EOF a cross-site scripting XSS vulnerability could appear. For Debian 8 "Jessie", this problem has been...
[SECURITY] [DSA 4586-1] ruby2.5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4586-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 17, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2003-1] isc-dhcp security update
Package : isc-dhcp Version : 4.3.1-6+deb8u4 CVE ID : CVE-2016-2774 An issue has been found in isc-dhcp, a server for automatic IP address assignment. The number of simultaneous open TCP connections to OMAPI port of the server has to be limited to 200 in order to avoid a denial of service. For...
[SECURITY] [DLA 1890-1] kde4libs security update
Package : kde4libs Version : 4:4.14.2-5+deb8u3 CVE ID : CVE-2019-14744 Debian Bug : 934268 Dominik Penner discovered a flaw in how KConfig interpreted shell commands in desktop files and other configuration files. An attacker may trick users into installing specially crafted files which could the...
[SECURITY] [DSA 4493-1] postgresql-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4493-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 08, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1649-1] spice security update
Package : spice Version : 0.12.5-1+deb8u7 CVE ID : CVE-2019-3813 Debian Bug : 920762 Christophe Fergeau discovered an out-of-bounds read vulnerability in spice, a SPICE protocol client and server library, which might result in denial of service spice server crash, or possibly, execution of...
[SECURITY] [DLA 1610-1] sleuthkit security update
Package : sleuthkit Version : 4.1.3-4+deb8u1 CVE ID : CVE-2018-19497 Debian Bug : 914796 It was discovered that the Sleuth Kit TSK through version 4.6.4 is affected by a buffer over-read vulnerability. The tskgetu16 call in hfsdiropenmetacb tsk/fs/hfsdent.c does not properly check boundaries. Thi...
[SECURITY] [DSA 3396-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3396-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 10, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5867-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5867-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 17, 2025 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5460-1] curl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5460-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 26, 2023 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2808-1] python3.5 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2808-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 05, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4952-1] tomcat9 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4952-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 09, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4807-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4807-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 08, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4717-1] php7.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4717-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 05, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2235-1] dbus security update
Package : dbus Version : 1.8.22-0+deb8u3 CVE ID : CVE-2020-12049 It was discovered that there was a file descriptor leak in the D-Bus message bus. An unprivileged local attacker could use this to attack the system DBus daemon, leading to denial of service for all users of the machine. For Debian ...
[SECURITY] [DSA 4695-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4695-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 03, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4672-1] trafficserver security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4672-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 01, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2118-1] otrs2 security update
Package : otrs2 Version : 3.3.18-1+deb8u14 CVE ID : CVE-2019-11358 Debian Bug : 927385 It was discovered that the jQuery version embedded in OTRS, a ticket request system, was prone to a cross site scripting vulnerability in jQuery.extend. For Debian 8 "Jessie", this problem has been fixed in...
[SECURITY] [DLA 1989-1] linux security update
Package : linux Version : 3.16.76-1 CVE ID : CVE-2019-0154 CVE-2019-11135 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, or information leak. CVE-2019-0154 Intel discovered that on their 8th and 9th generation GPUs,...
[SECURITY] [DLA 1902-1] djvulibre security update
Package : djvulibre Version : 3.5.25.4-4+deb8u1 CVE ID : CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 Hongxu Chen found several issues in djvulibre, a library and set of tools to handle images in the DjVu format. The issues are a heap-buffer-overflow, a stack-overflow, an infinite...
[SECURITY] [DLA 1750-1] roundup security update
Package : roundup Version : 1.4.20-1.1+deb8u2 CVE ID : CVE-2019-10904 Hanno Böck was discovered that there was a cross-site scripting XSS vulnerability in the web front-end of the roundup issue- tracking system. For Debian 8 "Jessie", this issue has been fixed in roundup version 1.4.20-1.1+deb8u2...
[SECURITY] [DLA 1603-1] suricata security update
Package : suricata Version : 2.0.7-2+deb8u3 CVE ID : CVE-2017-7177 CVE-2017-15377 CVE-2018-6794 Debian Bug : 856648 889842 856649 Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a...