14410 matches found
[SECURITY] [DSA 4897-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4897-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 22, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2444-1] tcpdump security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2444-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 10, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4676-2] salt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4676-2 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 07, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2142-1] slirp security update
Package : slirp Version : 1:1.0.17-7+deb8u2 CVE ID : CVE-2020-8608 It was discovered that there was a buffer overflow vulnerability in slirp, a SLIP/PPP emulator for using a dial up shell account. This was caused by the incorrect usage of return values from snprintf3. For Debian 8 "Jessie", this...
[SECURITY] [DSA 4604-1] cacti security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4604-1 [email protected] https://www.debian.org/security/ Hugo Lefeuvre January 19, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1919-2] linux-4.9 security update
Package : linux-4.9 Version : 4.9.189-3deb8u1 CVE ID : CVE-2019-0136 CVE-2019-9506 CVE-2019-11487 CVE-2019-15211 CVE-2019-15212 CVE-2019-15215 CVE-2019-15216 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15807 CVE-2019-15924...
[SECURITY] [DLA 1876-1] gosa security update
Package : gosa Version : 2.7.4+reloaded2-1+deb8u4 CVE ID : CVE-2019-11187 In GOsa², an LDAP web-frontend written in PHP, a vulnerability was found that could theoretically have lead to unauthorized access to the LDAP database managed with FusionDirectory. LDAP queries result status "Success" chec...
[SECURITY] [DSA 4017-1] openssl1.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4017-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 03, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3198-2] php5 regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3198-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DLA 2773-1] curl security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2773-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz September 30, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4861-1] screen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4861-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 21, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4823-1] influxdb security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4823-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 01, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2237-1] cups security update
Package : cups Version : 1.7.5-11+deb8u8 CVE ID : CVE-2019-8842 CVE-2020-3898 The following CVEs were reported against src:cups. CVE-2019-8842 The ippReadIO function may under-read an extension field. CVE-2020-3898 There was a heap based buffer overflow in libcupss ppdFindOption in ppd-mark.c. Th...
[SECURITY] [DLA 2226-1] gst-plugins-ugly0.10 security update
Package : gst-plugins-ugly0.10 Version : 0.10.19-2.1+deb8u1 CVE ID : CVE-2017-5846 CVE-2017-5847 Two memory management issues were found in the asfdemux element of the GStreamer "ugly" plugin collection, which can be triggered via a maliciously crafted file. For Debian 8 "Jessie", these problems...
[SECURITY] [DSA 4676-1] salt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4676-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 06, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4652-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4652-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 04, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2156-1] e2fsprogs security update
Package : e2fsprogs Version : 1.42.12-2+deb8u2 CVE ID : CVE-2019-5188 An issue has been found in e2fsprogs, a package that contains ext2/ext3/ext4 file system utilities. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can...
[SECURITY] [DLA 2115-2] proftpd-dfsg regression update
Package : proftpd-dfsg Version : 1.3.5e+r1.3.5-2+deb8u7 CVE ID : CVE-2020-9273 It was discovered that there was a regression in a previous fix for a use-after-free vulnerability in the proftpd-dfsg FTP server. Exploitation of the original vulnerability within the memory pool handling could have...
[SECURITY] [DSA 4605-1] openjdk-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4605-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 19, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4498-1] python-django security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4498-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 12, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1620-1] ghostscript security update
Package : ghostscript Version : 9.06dfsg-2+deb8u13 CVE ID : CVE-2018-19134 CVE-2018-19478 Some vulnerabilities were discovered in ghostscript, an interpreter for the PostScript language and for PDF. CVE-2018-19134 The setpattern operator did not properly validate certain types. A specially crafte...
[SECURITY] [DLA 1610-1] sleuthkit security update
Package : sleuthkit Version : 4.1.3-4+deb8u1 CVE ID : CVE-2018-19497 Debian Bug : 914796 It was discovered that the Sleuth Kit TSK through version 4.6.4 is affected by a buffer over-read vulnerability. The tskgetu16 call in hfsdiropenmetacb tsk/fs/hfsdent.c does not properly check boundaries. Thi...
[SECURITY] [DLA 1598-1] ghostscript security update
Package : ghostscript Version : 9.06dfsg-2+deb8u12 CVE ID : CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 Several security vulnerabilities were discovered in Ghostscript, an interpreter for the PostScript language, which could result in denial of service, the creation of files or th...
[SECURITY] [DSA 3906-1] undertow security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3906-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 11, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5360-1] emacs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5360-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 23, 2023 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5216-1] libxslt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5216-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 24, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2776-1] apache2 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2776-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler October 02, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4946-1] openjdk-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4946-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 29, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2687-2] prosody regression update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2687-2 [email protected] https://www.debian.org/lts/security/ Anton Gladky June 19, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4870-1] pygments security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4870-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 12, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4856-1] php7.3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4856-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 17, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4830-2] flatpak regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-4830-2 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 22, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4760-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4760-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 06, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4684-1] libreswan security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4684-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 13, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4642-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4642-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 19, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2118-1] otrs2 security update
Package : otrs2 Version : 3.3.18-1+deb8u14 CVE ID : CVE-2019-11358 Debian Bug : 927385 It was discovered that the jQuery version embedded in OTRS, a ticket request system, was prone to a cross site scripting vulnerability in jQuery.extend. For Debian 8 "Jessie", this problem has been fixed in...
[SECURITY] [DLA 2003-1] isc-dhcp security update
Package : isc-dhcp Version : 4.3.1-6+deb8u4 CVE ID : CVE-2016-2774 An issue has been found in isc-dhcp, a server for automatic IP address assignment. The number of simultaneous open TCP connections to OMAPI port of the server has to be limited to 200 in order to avoid a denial of service. For...
[SECURITY] [DLA 1890-1] kde4libs security update
Package : kde4libs Version : 4:4.14.2-5+deb8u3 CVE ID : CVE-2019-14744 Debian Bug : 934268 Dominik Penner discovered a flaw in how KConfig interpreted shell commands in desktop files and other configuration files. An attacker may trick users into installing specially crafted files which could the...
[SECURITY] [DSA 4500-1] chromium security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4500-1 [email protected] https://www.debian.org/security/ Michael Gilbert August 12, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4493-1] postgresql-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4493-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 08, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1855-1] exiv2 security update
Package : exiv2 Version : 0.24-4.1+deb8u4 CVE ID : CVE-2019-13504 It was discovered that there was an integer overflow vulnerability in exiv2, a tool to manipulate images containing eg. EXIF metadata. This could have resulted in a denial of service via a specially- crafted file. For Debian 8...
[SECURITY] [DLA 1850-1] redis security update
Package : redis Version : 2:2.8.17-1+deb8u7 CVE ID : CVE-2019-10192 Debian Bug : 931625 It was discovered that there were two heap buffer overflows in the Hyperloglog functionality provided by the Redis in-memory key-value database. For Debian 8 "Jessie", these issues have been fixed in redis...
[SECURITY] [DLA 1750-1] roundup security update
Package : roundup Version : 1.4.20-1.1+deb8u2 CVE ID : CVE-2019-10904 Hanno Böck was discovered that there was a cross-site scripting XSS vulnerability in the web front-end of the roundup issue- tracking system. For Debian 8 "Jessie", this issue has been fixed in roundup version 1.4.20-1.1+deb8u2...
[SECURITY] [DSA 3396-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3396-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 10, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 246-2] linux-2.6 regression update
Package : linux-2.6 Version : 2.6.32-48squeeze13 CVE ID : CVE-2011-5321 CVE-2012-6689 CVE-2014-3184 CVE-2014-8159 CVE-2014-9683 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2015-1805 CVE-2015-2041 CVE-2015-2042 CVE-2015-2830 CVE-2015-2922 CVE-2015-3339 CVE-2015-4167 Debian Bug :...
[SECURITY] [DSA 5867-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5867-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 17, 2025 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2487-1] apt security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2487-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta December 10, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4717-1] php7.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4717-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 05, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4695-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4695-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 03, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4663-1] python-reportlab security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4663-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 25, 2020 https://www.debian.org/security/faq -...