14325 matches found
[SECURITY] [DLA 1466-1] linux-4.9 security update
Package : linux-4.9 Version : 4.9.110-3+deb9u2deb8u1 CVE ID : CVE-2018-5390 CVE-2018-5391 CVE-2018-13405 Debian Bug : 893393 903122 903767 903776 903838 903914 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation or denial of service...
[SECURITY] [DSA 4120-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4120-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez February 22, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3500-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3500-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini March 01, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3463-1] prosody security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3463-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 31, 2016 https://www.debian.org/security/faq -...
[BSA-095] Security Update for openssh
Colin Watson uploaded new packages for openssh which fixed the following security problems: CVE-2014-2532 DSA-2894-1 Jann Horn discovered that OpenSSH incorrectly handled wildcards in AcceptEnv lines. A remote attacker could use this issue to trick OpenSSH into accepting any environment variable...
[SECURITY] [DSA 2298-2] apache2 regression fix
------------------------------------------------------------------------- Debian Security Advisory DSA-2298-2 [email protected] http://www.debian.org/security/ Stefan Fritsch September 05, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1067-1] New Linux kernel 2.4.16 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1067-1 [email protected] http://www.debian.org/security/ Martin Schulze, Dann Frazier May 20th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 460-2] New sysstat packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 460-2 [email protected] http://www.debian.org/security/ Matt Zimmerman April 3rd, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 5680-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5680-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 06, 2024 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5131-1] openjdk-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5131-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 05, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5108-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5108-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 24, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2648-2] mediawiki regression update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2648-2 [email protected] https://www.debian.org/lts/security/ Abhijith PA May 07, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2482-1] debian-security-support security update
Debian LTS Advisory DLA-2482-1 [email protected] https://www.debian.org/lts/security/ Holger Levsen December 04, 2020 https://wiki.debian.org/LTS Package : debian-security-support Version : 1:9+2020.12.04 debian-security-support, the Debian security support coverage checker, has been...
[SECURITY] [DSA 4800-1] libproxy security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4800-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 28, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2467-1] lxml security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2467-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA November 26, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2397-1] php7.0 security update
Debian LTS Advisory DLA-2397-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez October 06, 2020 https://wiki.debian.org/LTS Package : php7.0 Version : 7.0.33-0+deb9u10 CVE ID : CVE-2020-7070 A vulnerability was discovered in PHP, a server-side, HTML-embedded...
[SECURITY] [DSA 4757-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4757-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 31, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4718-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4718-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 05, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4690-1] dovecot security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4690-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 20, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2185-1] eog security update
Package : eog Version : 3.14.1-1+deb8u1 CVE ID : CVE-2016-6855 It was discovered that eog Eye of GNOME incorrectly handled certain invalid UTF-8 strings. If a user were tricked into opening a specially-crafted image, a remote attacker could use this issue to cause Eye of GNOME to crash, resulting...
[SECURITY] [DLA 2179-1] jackson-databind security update
Package : jackson-databind Version : 2.4.2-2+deb8u14 CVE ID : CVE-2020-10968 CVE-2020-10969 CVE-2020-11111 CVE-2020-11112 CVE-2020-11113 CVE-2020-11619 CVE-2020-11620 Following CVEs were reported against the jackson-databind source package : CVE-2020-10968 FasterXML jackson-databind 2.x before...
[SECURITY] [DLA 2140-1] firefox-esr security update
Package : firefox-esr Version : 68.6.0esr-1deb8u1 CVE ID : CVE-2019-20503 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary...
[SECURITY] [DSA 4632-1] ppp security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4632-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 22, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2110-1] netty-3.9 security update
Package : netty-3.9 Version : 3.9.0.Final-1+deb8u1 CVE ID : CVE-2014-0193 CVE-2014-3488 CVE-2019-16869 CVE-2019-20444 CVE-2019-20445 CVE-2020-7238 Debian Bug : 746639 941266 950966 950967 Several vulnerabilities were discovered in Netty, a Java NIO client/server socket framework: CVE-2014-0193...
[SECURITY] [DLA 1957-1] tzdata new upstream version
Package : tzdata Version : 2019c-0+deb8u1 This update includes the changes in tzdata 2018c. Notable changes are: - Brazil has canceled DST and will stay on standard time indefinitely. - Fijis next DST transitions will be 2019-11-10 and 2020-01-12 instead of 2019-11-03 and 2020-01-19. - Norfolk...
[SECURITY] [DSA 4532-1] spip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1837-2] rdesktop regression update
Package : rdesktop Version : 1.8.6-0+deb8u2 Debian Bug : 930511 The update for rdesktop released as 1.8.6-0+deb8u1 introduced a regression which broke RDP protocol negotiation. Updated rdesktop packages are now available to correct this issue. For Debian 8 "Jessie", this problem has been fixed in...
[SECURITY] [DLA 1757-1] cacti security update
Package : cacti Version : 0.8.8b+dfsg-8+deb8u7 CVE ID : CVE-2019-11025 Debian Bug : 926700 It was discovered that there were a number of cross-site scripting vulnerabilities XSS in cacti, a web-based front-end for the RRDTool monitoring tool. For Debian 8 "Jessie", this issue has been fixed in...
[SECURITY] [DLA 1681-1] gsoap security update
Package : gsoap Version : 2.8.17-1+deb8u2 CVE ID : CVE-2019-7659 It was discovered that there was a denial of service vulnerability in gsoap a C/C++ language binding used for SOAP-based web services. For Debian 8 "Jessie", this issue has been fixed in gsoap version 2.8.17-1+deb8u2. We recommend...
[SECURITY] [DSA 4213-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4213-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 29, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4060-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4060-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 09, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1150-1] wpa security update
Package : wpa Version : 1.0-3+deb7u5 CVE ID : CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 A vulnerability was found in how WPA code can be triggered to reconfigure WPA/WPA2/RSN keys TK, GTK, or IGTK by...
[SECURITY] [DLA 871-1] python3.2 security update
Package : python3.2 Version : 3.2.3-7+deb7u1 CVE ID : CVE-2016-0772 It was discovered that there was a TLS stripping vulnerability in the smptlib library distributed with the CPython interpreter. The library did not return an error if StartTLS failed, which might have allowed man-in-the-middle...
[SECURITY] [DSA 3794-3] munin regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3794-3 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 03, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3730-1] icedove security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3730-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 11, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3582-1] expat security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3582-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 18, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 2408-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2408-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 13, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2141-4] New lighttpd packages fix regression
------------------------------------------------------------------------ Debian Security Advisory DSA-2141-4 [email protected] http://www.debian.org/security/ Stefan Fritsch January 12, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA 5587-1] curl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5587-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 23, 2023 https://www.debian.org/security/faq -...
[SECURITY] [DSA 5045-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5045-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 14, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4874-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4874-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 24, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2551-1] slirp security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2551-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 09, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4803-1] xorg-server security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4803-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 04, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2379-3] mediawiki regression update
Debian LTS Advisory DLA-2379-3 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez November 21, 2020 https://wiki.debian.org/LTS Package : mediawiki Version : 1:1.27.7-1deb9u6 The update of mediawiki released as DLA-2379-2 contained a defect in the patch for...
[SECURITY][DLA 2431-1] libonig security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2431-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 05, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2405-1] httpcomponents-client security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2405-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 10, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4750-1] nginx security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4750-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 26, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2233-1] python-django security update
Package : python-django Version : 1.7.11-1+deb8u9 CVE IDs : CVE-2020-13254 CVE-2020-13596 It was discovered that there were two issues in Django, the Python web development framework: CVE-2020-13254: Potential a data leakage via malformed memcached keys. In cases where a memcached backend does no...
[SECURITY] [DLA 2232-1] python-httplib2 security update
Package : python-httplib2 Version : 0.9+dfsg-2+deb8u1 CVE ID : CVE-2020-11078 In httplib2, an attacker controlling unescaped part of uri for httplib2.Http.request could change request headers and body, send additional hidden requests to same server. This vulnerability impacts software that uses...
[SECURITY] [DLA 2228-2] json-c regression update
Package : json-c Version : 0.11-4+deb8u2 CVE ID : CVE-2020-12762 Debian Bug : 960326 The json-c shared library had an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. This follow-up version now uses an upstream sanctioned patch that was...