14410 matches found
[SECURITY] [DSA 4871-1] tor security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4871-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 16, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2589-2] mupdf regression update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2589-2 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta March 14, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2592-1] golang-1.8 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2592-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler March 13, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4850-1] libzstd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4850-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 10, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2469-1] qemu security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2469-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 29, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2439-1] libexif security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2439-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 07, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2403-1] rails security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2403-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 09, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2190-1] ruby-json security update
Package : ruby-json Version : 1.8.1-1+deb8u1 CVE ID : CVE-2020-10663 In ruby-json before 2.3.0, there is an unsafe object creation vulnerability. When parsing certain JSON documents, the json gem including the one bundled with Ruby can be coerced into creating arbitrary objects in the target...
[SECURITY] [DSA 4665-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4665-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 27, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4651-1] mediawiki security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4651-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 02, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4647-1] bluez security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4647-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 26, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2143-1] slurm-llnl security update
Package : slurm-llnl Version : 14.03.9-5+deb8u5 CVE ID : CVE-2019-6438 CVE-2019-12838 Debian Bug : 920997 931880 Several issue were found in Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system. CVE-2019-6438 SchedMD Slurm mishandles 32-bit...
[SECURITY] [DSA 4639-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4639-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 11, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4611-1] opensmtpd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4611-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 29, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4609-1] python-apt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4609-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 23, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1953-2] clamav regression update
Package : clamav Version : 0.101.4+dfsg-0+deb8u2 CVE ID : CVE-2019-12625 CVE-2019-12900 Debian Bug : 942172 The update of clamav released as DLA 1953-1 led to permission issues on /var/run/clamav. This caused several users to experience issues restarting the clamav daemon. This regression is caus...
[SECURITY] [DLA 1628-1] jasper security update
Package : jasper Version : 1.900.1-debian1-2.4+deb8u5 CVE ID : CVE-2018-18873 CVE-2018-19139 CVE-2018-19539 CVE-2018-19540 CVE-2018-19541 CVE-2018-19542 CVE-2018-20570 CVE-2018-20584 CVE-2018-20622 Multiple issues were found in the JasPer JPEG-2000 library that could lead to a denial-of-service...
[SECURITY] [DLA 1625-1] tzdata new upstream version
Package : tzdata Version : 2018i-0+deb8u1 This update includes the changes in tzdata 2018i. Notable changes are: - Qyzylorda, Kazakhstan moved from +06 to +05 on 2018-12-21. A new zone Asia/Qostanay has been added, because Qostanay, Kazakhstan didnt move. - Metlakatla, Alaska observes PST this...
[SECURITY] [DLA 1443-1] evolution-data-server security update
Package : evolution-data-server Version : 3.12.9git20141128.5242b0-2+deb8u4 CVE IDs : CVE-2016-10727 It was discovered that there was a protocol implementation error in evolution-data-server where "STARTTLS not supported" errors from IMAP servers were ignored leading to the use of insecure...
[SECURITY] [DSA 3980-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3980-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 20, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3631-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3631-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 26, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3587-1] libgd2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3587-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 27, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3463-1] prosody security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3463-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 31, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 2336-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2336-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez November 07, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2075-1] New xulrunner packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2075-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 27, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 460-2] New sysstat packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 460-2 [email protected] http://www.debian.org/security/ Matt Zimmerman April 3rd, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DLA-3007-1] imagemagick security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3007-1 [email protected] https://www.debian.org/lts/security/ Andreas Rönnquist May 14, 2022 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2743-2] amd64-microcode update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2743-2 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta October 18, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2719-1] ruby-actionpack-page-caching security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2719-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler July 23, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4939-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4939-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 14, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4926-1] lasso security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4926-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 03, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2648-2] mediawiki regression update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2648-2 [email protected] https://www.debian.org/lts/security/ Abhijith PA May 07, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4899-1] openjdk-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4899-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 23, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4885-1] netty security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4885-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 05, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2599-1] shibboleth-sp2 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2599-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta March 19, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2556-1] unbound1.9 security update
Debian LTS Advisory DLA-2556-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany February 12, 2021 https://wiki.debian.org/LTS Package : unbound1.9 Version : 1.9.0-2+deb10u2deb9u1 CVE ID : CVE-2020-12662 CVE-2020-12663 CVE-2020-28935 Debian Bug : 977165 Several...
[SECURITY] [DLA 2529-1] mutt security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2529-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta January 21, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2461-1] zabbix security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2461-1 [email protected] https://www.debian.org/lts/security/ November 21, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------...
[SECURITY] [DSA 4690-1] dovecot security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4690-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 20, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2187-1] radicale security update
Package : radicale Version : 0.9-1+deb8u2 CVE ID : CVE-2017-8342 Radicale, a simple calendar and addressbook server - daemon, is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method. For Debian 8 "Jessie", this problem has been fixed in version...
[SECURITY] [DLA 2169-1] libmtp security update
Package : libmtp Version : 1.1.8-1+deb8u1 CVE ID : CVE-2017-9831 CVE-2017-9832 libmtp is a library for communicating with MTP aware devices. The Media Transfer Protocol commonly referred to as MTP is a devised set of custom extensions to support the transfer of music files on USB digital audio...
[SECURITY] [DLA 2113-1] cloud-init security update
Package : cloud-init Version : 0.7.6bzr976-2+deb8u1 CVE ID : CVE-2020-8631 CVE-2020-8632 Debian Bug : 951362 951363 CVE-2020-8631 In cloud-init, relies on Mersenne Twister for a random password, which makes it easier for attackers to predict passwords, because randstr in cloudinit/util.py calls t...
[SECURITY] [DLA 2110-1] netty-3.9 security update
Package : netty-3.9 Version : 3.9.0.Final-1+deb8u1 CVE ID : CVE-2014-0193 CVE-2014-3488 CVE-2019-16869 CVE-2019-20444 CVE-2019-20445 CVE-2020-7238 Debian Bug : 746639 941266 950966 950967 Several vulnerabilities were discovered in Netty, a Java NIO client/server socket framework: CVE-2014-0193...
[SECURITY] [DSA 4621-1] openjdk-8 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4621-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 12, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4589-1] debian-edu-config security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4589-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 18, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2035-1] libpgf security update
Package : libpgf Version : 6.14.12-3+deb8u1 CVE ID : CVE-2015-6673 An issue has been found in libpgf, a library to handle Progressive Graphics File PGF. Due to lack of validation of ColorTableSize, a use-after-free issue might appear in Decoder.cpp For Debian 8 "Jessie", this problem has been fix...
[SECURITY] [DSA 4559-1] proftpd-dfsg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4559-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 05, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1713-2] libsdl1.2 regression update
Package : libsdl1.2 Version : 1.2.15-10+deb8u2 CVE ID : CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 The update of libsdl1.2 released as DLA 1713-1 led to a regression, caused by an...
[SECURITY] [DLA 1870-1] thunderbird security update
Package : thunderbird Version : 1:60.8.0-1deb8u1 CVE ID : CVE-2019-9811 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730 Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary cod...
[SECURITY] [DLA 1624-1] thunderbird security update
Package : thunderbird Version : 1:60.4.0-1deb8u1 CVE ID : not yet available Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code or denial of service. For Debian 8 "Jessie", this problem has been fixed in version 1:60.4.0-1deb8u1. We recommend...