14410 matches found
[SECURITY] [DLA 2129-1] firebird2.5 security update
Package : firebird2.5 Version : 2.5.3.26778.ds4-5+deb8u2 CVE ID : CVE-2017-11509 An issues has been found in firebird2.5, an RDBMS based on InterBase 6.0. As UDFs can be used for a remote authenticated code execution as user firebird, UDFs have been disabled in the default configuration which wil...
[SECURITY] [DLA 2075-1] jsoup security update
Package : jsoup Version : 1.8.1-1+deb8u1 CVE ID : CVE-2015-6748 An issue has been found in jsoup, a Java HTML parser that makes sense of real-world HTML soup. Due to bad handling of missing at EOF a cross-site scripting XSS vulnerability could appear. For Debian 8 "Jessie", this problem has been...
[SECURITY] [DSA 4586-1] ruby2.5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4586-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 17, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2026-1] htmldoc security update
Package : htmldoc Version : 1.8.27-8+deb8u1 CVE ID : CVE-2019-19630 In HTMLDOC, there was a one-byte underflow in htmldoc/ps-pdf.cxx caused by a floating point math difference between GCC and Clang. For Debian 8 "Jessie", this issue has been fixed in htmldoc version 1.8.27-8+deb8u1. We recommend...
[SECURITY] [DLA 1902-1] djvulibre security update
Package : djvulibre Version : 3.5.25.4-4+deb8u1 CVE ID : CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 Hongxu Chen found several issues in djvulibre, a library and set of tools to handle images in the DjVu format. The issues are a heap-buffer-overflow, a stack-overflow, an infinite...
[SECURITY] [DLA 1649-1] spice security update
Package : spice Version : 0.12.5-1+deb8u7 CVE ID : CVE-2019-3813 Debian Bug : 920762 Christophe Fergeau discovered an out-of-bounds read vulnerability in spice, a SPICE protocol client and server library, which might result in denial of service spice server crash, or possibly, execution of...
[SECURITY] [DLA 3498-1] bind9 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3498-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb July 18, 2023 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2808-1] python3.5 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2808-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 05, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4952-1] tomcat9 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4952-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 09, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4948-1] aspell security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4948-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 01, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2566-1] libbsd security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2566-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 18, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4842-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4842-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 31, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4807-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4807-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 08, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2235-1] dbus security update
Package : dbus Version : 1.8.22-0+deb8u3 CVE ID : CVE-2020-12049 It was discovered that there was a file descriptor leak in the D-Bus message bus. An unprivileged local attacker could use this to attack the system DBus daemon, leading to denial of service for all users of the machine. For Debian ...
[SECURITY] [DLA 2225-1] gst-plugins-good0.10 security update
Package : gst-plugins-good0.10 Version : 0.10.31-3+nmu4+deb8u3 CVE ID : CVE-2016-10198 CVE-2017-5840 Two memory handling issues were found in gst-plugins-good0.10, a collection of GStreamer plugins from the "good" set: CVE-2016-10198 An invalid read can be triggered in the aacparse element via a...
[SECURITY] [DSA 4672-1] trafficserver security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4672-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 01, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2043-1] gdk-pixbuf security update
Package : gdk-pixbuf Version : 2.31.1-2+deb8u8 CVE ID : CVE-2016-6352 CVE-2017-2870 CVE-2017-6312 CVE-2017-6313 CVE-2017-6314 Several issues in gdk-pixbuf, a library to handle pixbuf, have been found. CVE-2016-6352 fix for denial of service out-of-bounds write and crash via crafted dimensions in ...
[SECURITY] [DLA 1989-1] linux security update
Package : linux Version : 3.16.76-1 CVE ID : CVE-2019-0154 CVE-2019-11135 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, or information leak. CVE-2019-0154 Intel discovered that on their 8th and 9th generation GPUs,...
[SECURITY] [DLA 1879-1] jackson-databind security update
Package : jackson-databind Version : 2.4.2-2+deb8u8 CVE ID : CVE-2019-14379 CVE-2019-14439 Debian Bug : 933393 Deserialization flaws were discovered in jackson-databind relating to EHCache and logback/jndi, which could allow an unauthenticated user to perform remote code execution. The issue was...
[SECURITY] [DLA 1603-1] suricata security update
Package : suricata Version : 2.0.7-2+deb8u3 CVE ID : CVE-2017-7177 CVE-2017-15377 CVE-2018-6794 Debian Bug : 856648 889842 856649 Several issues were found in suricata, an intrusion detection and prevention tool. CVE-2017-7177 Suricata has an IPv4 defragmentation evasion issue caused by lack of a...
[SECURITY] [DSA 4237-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4237-1 [email protected] https://www.debian.org/security/ Michael Gilbert June 30, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3775-1] tcpdump security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3775-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 29, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 846-1] New cpio packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 846-1 [email protected] http://www.debian.org/security/ Martin Schulze October 7th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 5127-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5127-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 02, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2990-1] jackson-databind security update
Debian LTS Advisory DLA-2990-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany May 02, 2022 https://wiki.debian.org/LTS Package : jackson-databind Version : 2.8.6-1+deb9u10 CVE ID : CVE-2020-36518 Debian Bug : 1007109 It was discovered that the implementation of...
[SECURITY] [DSA 5062-1] nss security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5062-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 25, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4978-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4978-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 25, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2708-1] php7.0 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2708-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler July 15, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2694-1] tiff security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2694-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz June 28, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2648-1] mediawiki security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2648-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA May 05, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2570-1] screen security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2570-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 20, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2445-1] libmaxminddb security update
Debian LTS Advisory DLA-2445-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 10, 2020 https://wiki.debian.org/LTS Package : libmaxminddb Version : 1.2.0-1+deb9u1 CVE ID : CVE-2020-28241 Debian Bug : 973878 A heap-based buffer over-read has been found in...
[SECURITY] [DSA 4777-1] freetype security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4777-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 21, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4723-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4723-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 12, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4678-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4678-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 06, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2184-1] jsch security update
Package : jsch Version : 0.1.51-1+deb8u1 CVE ID : CVE-2016-5725 It was discovered that there was a path traversal vulnerability in jsch, a pure Java implementation of the SSH2 protocol. For Debian 8 "Jessie", this problem has been fixed in version 0.1.51-1+deb8u1. We recommend that you upgrade yo...
[SECURITY] [DLA 2117-1] zsh security update
Package : zsh Version : 5.0.7-5+deb8u1 CVE ID : CVE-2019-20044 Debian Bug : 951458 A privilege escalation vulnerability was discovered in zsh, a shell with lots of features, whereby a user could regain a formerly elevated privelege level even when such an action should not be permitted. For Debia...
[SECURITY] [DSA 4619-1] libxmlrpc3-java security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4619-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 06, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1997-1] thunderbird security update
Package : thunderbird Version : 1:68.2.2-1deb8u1 CVE ID : CVE-2019-11755 CVE-2019-11757 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-15903 Multiple security issues have been found in Thunderbird which could potentially result in the execution ...
[SECURITY] [DLA 1891-1] openldap security update
Package : openldap Version : 2.4.40+dfsg-1+deb8u5 CVE ID : CVE-2019-13057 CVE-2019-13565 Debian Bug : 932997 932998 Several security vulnerabilities were discovered in openldap, a server and tools to provide a standalone directory service. CVE-2019-13057 When the server administrator delegates...
[SECURITY] [DLA 1673-1] wordpress security update
Package : wordpress Version : 4.1.25+dfsg-1+deb8u1 CVE ID : CVE-2018-20147 CVE-2018-20148 CVE-2018-20149 CVE-2018-20150 CVE-2018-20151 CVE-2018-20152 CVE-2018-20153 Debian Bug : 916403 CVE-2018-20147 Authors could modify metadata to bypass intended restrictions on deleting files. CVE-2018-20148...
[SECURITY] [DLA 1644-1] policykit-1 security update
Package : policykit-1 Version : 0.105-15deb8u4 CVE ID : CVE-2018-19788 CVE-2019-6133 Two vulnerabilities were found in Policykit, a framework for managing administrative policies and privileges: CVE-2018-19788 It was discovered that incorrect processing of very high UIDs in Policykit could result...
[SECURITY] [DLA 335-1] ntp security update
Package : ntp Version : 1:4.2.6.p2+dfsg-1+deb6u4 CVE ID : CVE-2015-5146 CVE-2015-5194 CVE-2015-5195 CVE-2015-5219 CVE-2015-5300 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7855 CVE-2015-7871 Several securit...
[SECURITY] [DSA 3263-1] proftpd-dfsg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3263-1 [email protected] http://www.debian.org/security/ Sebastien Delafond May 19, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 5685-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5685-1 [email protected] https://www.debian.org/security/ Markus Koschany May 08, 2024 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5588-1] putty security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5588-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 24, 2023 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5459-1] amd64-microcode security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5459-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 25, 2023 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5147-1] dpkg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5147-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 25, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2904-1] expat security update
Debian LTS Advisory DLA-2904-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany January 30, 2022 https://wiki.debian.org/LTS Package : expat Version : 2.2.0-2+deb9u4 CVE ID : CVE-2021-45960 CVE-2021-46143 CVE-2022-22822 CVE-2022-22823 CVE-2022-22824 CVE-2022-22825...
[SECURITY] [DLA 2766-1] openssl security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2766-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz September 27, 2021 https://wiki.debian.org/LTS -...