[SECURITY] [DSA 4629-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4629-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 19, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4620-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4620-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 12, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1996-1] libapache2-mod-auth-openidc security update

Package : libapache2-mod-auth-openidc Version : 1.6.0-1+deb8u2 CVE ID : CVE-2019-14857 Debian Bug : 942165 A security vulnerability was found in libapache2-mod-auth-openidc, the OpenID Connect authentication module for the Apache HTTP server. Insufficient validation of URLs leads to an Open...

[SECURITY] [DSA 4377-1] rssh security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4377-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 30, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4375-1] spice security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4375-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 29, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4279-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4279-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 20, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4237-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4237-1 [email protected] https://www.debian.org/security/ Michael Gilbert June 30, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4196-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4196-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 08, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 728-1] tomcat6 security update

Package : tomcat6 Version : 6.0.45+dfsg-1deb7u3 CVE ID : CVE-2016-0762 CVE-2016-5018 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735 Debian Bug : 841655 842662 842663 842664 842665 842666 845385 Multiple security vulnerabilities have been discovered in the Tomcat servlet and...

[SECURITY] [DSA 3393-1] iceweasel security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3393-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 04, 2015 https://www.debian.org/security/faq -...

[SECURITY] [DSA 2989-1] apache2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2989-1 [email protected] http://www.debian.org/security/ Stefan Fritsch July 24, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1069-1] New Linux kernel 2.4.18 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1069-1 [email protected] http://www.debian.org/security/ Martin Schulze, Dann Frazier May 20th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1029-1] New libphp-adodb packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1029-1 [email protected] http://www.debian.org/security/ Martin Schulze April 8th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DLA 3816-1] bind9 security update

Debian LTS Advisory DLA-3816-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón May 17, 2024 https://wiki.debian.org/LTS Package : bind9 Version : 1:9.11.5.P4+dfsg-5.1+deb10u11 CVE ID : CVE-2023-50387 CVE-2023-50868 Debian Bug : Two vulnerabilities were...

[SECURITY] [DLA 3765-1] cacti security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3765-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler March 18, 2024 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 5002-1] containerd security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5002-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 06, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2725-1] lrzip security update

Debian LTS Advisory DLA-2725-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 01, 2021 https://wiki.debian.org/LTS Package : lrzip Version : 0.631-1+deb9u1 CVE ID : CVE-2017-8844 CVE-2017-8846 CVE-2017-9928 CVE-2017-9929 CVE-2018-5650 CVE-2018-5747...

[SECURITY] [DSA 4899-2] openjdk-11-jre-dcevm update

------------------------------------------------------------------------- Debian Security Advisory DSA-4899-2 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 31, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2654-1] composer security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2654-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta May 12, 2021 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...

[SECURITY] [DSA 4908-1] libhibernate3-java security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4908-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 29, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2630-1] wordpress security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2630-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta April 21, 2021 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2549-1] gdisk security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2549-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 08, 2021 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4835-1] tomcat9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4835-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 22, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4797-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4797-1 [email protected] https://www.debian.org/security/ Alberto Garcia November 23, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2435-1] guacamole-server security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2435-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 06, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2411-1] firefox-esr security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2411-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 21, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2377-1] qt4-x11 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2377-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 21, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2341-1] inetutils security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2341-1 [email protected] https://www.debian.org/lts/security/ August 24, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...

[SECURITY] [DSA 4699-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4699-1 [email protected] https://www.debian.org/security/ Ben Hutchings June 09, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4694-1] unbound security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4694-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 26, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4681-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4681-1 [email protected] https://www.debian.org/security/ Alberto Garcia May 07, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4634-1] opensmtpd security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4634-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 26, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2095-1] storebackup security update

Package : storebackup Version : 3.2.1-1+deb8u1 CVE ID : CVE-2020-7040 Debian Bug : 949393 storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. Local users can also create a plain file named...

[SECURITY] [DLA 2067-1] wordpress security update

Package : wordpress Version : 4.1.29+dfsg-0+deb8u1 CVE ID : CVE-2019-20041 Debian Bug : 946905 An input sanitization bypass was discovered in Wordpress, a popular content management framework. An attacker can use this flaw to send malicious scripts to an unsuspecting user. For Debian 8 "Jessie",...

[SECURITY] [DLA 1995-1] angular.js security update

Package : angular.js Version : 1.2.26-1+deb8u1 CVE ID : CVE-2019-14863 Earlier versions of this package package were vulnerable to Cross-site Scripting XSS due to no proper sanitization of xlink:href attributes. For Debian 8 "Jessie", this problem has been fixed in version 1.2.26-1+deb8u1. We...

[SECURITY] [DSA 4566-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4566-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 12, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4500-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4500-1 [email protected] https://www.debian.org/security/ Michael Gilbert August 12, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4469-1] libvirt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4469-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 22, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1774-1] otrs2 security update

Package : otrs2 Version : 3.3.18-1+deb8u9 CVE ID : CVE-2019-9892 A flaw was discovered in OTRS, the Open Ticket Request System. An attacker who is logged into OTRS as an agent user with appropriate permissions may try to import carefully crafted Report Statistics XML that will result in reading o...

[SECURITY] [DLA 1654-1] libav security update

Package : libav Version : 6:11.12-1deb8u5 CVE ID : CVE-2014-8542 CVE-2015-1207 CVE-2017-7863 CVE-2017-7865 CVE-2017-14169 CVE-2017-14223 Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2014-8542 libavcodec/utils.c omitted a certai...

[SECURITY] [DLA 1605-1] firefox-esr security update

Package : firefox-esr Version : 60.4.0esr-1deb8u1 CVE ID : CVE-2018-12405 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or...

[SECURITY] [DSA 4201-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4201-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 15, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4188-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4188-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 01, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4179-1] linux-tools security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4179-1 [email protected] https://www.debian.org/security/ Ben Hutchings April 24, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4156-1] drupal7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4156-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 29, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4080-1] php7.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4080-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 08, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1166-1] tomcat7 security update

Package : tomcat7 Version : 7.0.28-4+deb7u16 CVE ID : CVE-2017-12617 A remote code execution vulnerability has been discovered in tomcat7. When HTTP PUT was enabled e.g., via setting the readonly initialization parameter of the Default servlet to false it was possible to upload a JSP file to the...

[SECURITY] [DLA 729-1] tomcat7 security update

Package : tomcat7 Version : 7.0.28-4+deb7u7 CVE ID : CVE-2016-0762 CVE-2016-5018 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735 Debian Bug : 841655 842662 842663 842664 842665 842666 845385 Multiple security vulnerabilities have been discovered in the Tomcat servlet and JSP...

[SECURITY] [DLA 479-1] xen security update

Package : xen Version : 4.1.6.1-1+deb7u1 CVE ID : CVE-2015-2752 CVE-2015-2756 CVE-2015-5165 CVE-2015-5307 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8550 CVE-2015-8554 CVE-2015-8555 CVE-2015-8615 CVE-2016-1570 CVE-2016-1571...

[SECURITY] [DLA 258-1] jqueryui security update

Package : jqueryui Version : 1.8.dfsg-3+deb6u1 CVE ID : CVE-2010-5312 Shadowman131 discovered that jqueryui, a JavaScript UI library for dynamic web applications, failed to properly sanitize its "title" option. This would allow a remote attacker to inject arbitrary code through cross-site scripti...