[SECURITY] [DLA 2342-1] libjackson-json-java security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2342-1 [email protected] https://www.debian.org/lts/security/ August 24, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...

[SECURITY] [DLA 2315-1] gupnp security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2315-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort August 06, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4740-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4740-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 02, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2303-1] libssh security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2303-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany July 31, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2197-1] miniupnpc security update

Package : miniupnpc Version : 1.9.20140610-2+deb8u2 CVE ID : CVE-2017-8798 It was discovered that there was a integer signedness error in the miniupnpc UPnP client that could allow remote attackers to cause a denial of service attack. For Debian 8 "Jessie", this problem has been fixed in version...

[SECURITY] [DLA 2165-1] apng2gif security update

Package : apng2gif Version : 1.5-3+deb8u1 CVE ID : CVE-2017-6960 An issue has been found in apng2gif, a tool for converting APNG images to animated GIF format. One of the function contained an integer overflow resulting in a heap-based buffer over-read. For Debian 8 "Jessie", this problem has bee...

[SECURITY] [DLA 2081-1] openjpeg2 security update

Package : openjpeg2 Version : 2.1.0-2+deb8u9 CVE ID : CVE-2020-6851 OpenJPEG had a heap-based buffer overflow in opjt1clbldecodeprocessor in libopenjp2.so. For Debian 8 "Jessie", this problem has been fixed in version 2.1.0-2+deb8u9. We recommend that you upgrade your openjpeg2 packages. Further...

[SECURITY] [DSA 4484-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4484-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 20, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4431-1] libssh2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4431-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 13, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4363-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4363-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 08, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1530-1] imagemagick security update

Package : imagemagick Version : 8:6.8.9.9-5+deb8u14 CVE ID : CVE-2018-16412 CVE-2018-16413 CVE-2018-16642 CVE-2018-16643 CVE-2018-16644 CVE-2018-16645 CVE-2018-16749 Several security vulnerabilities were discovered in ImageMagick, an image manipulation program, that allow remote attackers to caus...

[SECURITY] [DLA 1476-1] dropbear security update

Package : dropbear Version : 2014.65-1+deb8u3 CVE ID : CVE-2018-15599 Debian Bug : 906890 A vulnerability in dropbear, a lightweight SSH2 server and client, making it possible to guess valid usernames has been found: CVE-2018-15599: The recvmsguserauthrequest function in svr-auth.c in is prone to...

[SECURITY] [DSA 4274-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4274-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 16, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4014-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4014-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 01, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3999-1] wpa security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3999-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez October 16, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1083-1] openexr security update

Package : openexr Version : 1.6.1-6+deb7u1 CVE ID : CVE-2017-9110 CVE-2017-9112 CVE-2017-9116 Debian Bug : 864078 Brandon Perry discovered that openexr, a high dynamic-range HDR image library, was affected by an integer overflow vulnerability and missing boundary checks that would allow a remote...

[SECURITY] [DSA 3920-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3920-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3886-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3886-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 19, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DLA 954-1] openjdk-7 security update

Package : openjdk-7 Version : 7u131-2.6.9-2deb7u1 CVE ID : CVE-2017-3509 CVE-2017-3511 CVE-2017-3526 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in privilege escalation, denial of...

[SECURITY] [DSA 3831-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3831-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 20, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DLA 841-1] apache2 security update

Package : apache2 Version : 2.2.22-13+deb7u8 CVE ID : CVE-2016-8743 This upload fixes a security vulnerability in the header parsing code. David Dennerline, of IBM Securitys X-Force Researchers, and Régis Leroy discovered problems in the way Apache handled a broad pattern of unusual whitespace...

[SECURITY] [DSA 3782-1] openjdk-7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3782-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 08, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3692-1] freeimage security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3692-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 13, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3607-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3607-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 28, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DLA 521-1] firefox-esr security update

Package : firefox-esr Version : 45.2.0esr-1deb7u1 CVE ID : CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2828 CVE-2016-2831 Multiple security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, buffer overflows and other implementation erro...

[SECURITY] [DSA 3469-1] qemu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3469-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DLA 387-1] openssh security update

Package : openssh Version : 5.5p1-6+squeeze8 CVE ID : CVE-2016-0777 CVE-2016-0778 Debian Bug : 810984 The Qualys Security team discovered two vulnerabilities in the roaming code of the OpenSSH client an implementation of the SSH protocol suite. SSH roaming enables a client, in case an SSH...

[SECURITY] [DSA 3383-1] wordpress security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3383-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 29, 2015 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3358-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3358-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 13, 2015 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3340-1] zendframework security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3340-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini August 19, 2015 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3329-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3329-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 07, 2015 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3117-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3117-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 31, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2896-2] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2896-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 08, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2627-1] nginx security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2627-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 17, 2013 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2499-1] icedove security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2499-1 [email protected] http://www.debian.org/security/ Florian Weimer June 24, 2012 http://www.debian.org/security/faq -...

[BSA-057] Security update for nss

This update to the NSS cryptographic libraries revokes the trust in the "DigiCert Sdn. Bhd" certificate authority. More information can be found in the Mozilla Security Blog: http://blog.mozilla.com/security/2011/11/03/revoking-trust-in-digicert-sdn-bhd-intermediate-certificate-authority/ This...

[SECURITY] [DSA 2298-1] apache2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2298-1 [email protected] http://www.debian.org/security/ Stefan Fritsch August 29, 2011 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2245-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2245-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano May 29, 2011 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2207-1] tomcat5.5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2207-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 30, 2011 http://www.debian.org/security/faq -...

[SECURITY] [DSA-2106-2] New xulrunner packages fix regression

------------------------------------------------------------------------ Debian Security Advisory DSA-2106-2 [email protected] http://www.debian.org/security/ Stefan Fritsch September 19, 2010 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1943-1] New openldap2.3/openldap packages fix SSL certificate verification weakness

------------------------------------------------------------------------ Debian Security Advisory DSA-1943 [email protected] http://www.debian.org/security/ Giuseppe Iuculano December 02, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1927-1] New Linux 2.6.26 packages fix several vulnerabilities

---------------------------------------------------------------------- Debian Security Advisory DSA-1927-1 [email protected] http://www.debian.org/security/ dann frazier November 5, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...

[SECURITY] [DSA 1858-1] New imagemagick packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1858-1 [email protected] http://www.debian.org/security/ Luciano Bello August 10, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1830-1] New icedove packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1830-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 12, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1485-2] New icedove packages fix regression

------------------------------------------------------------------------ Debian Security Advisory DSA-1485-2 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 17, 2008 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues

------------------------------------------------------------------------ Debian Security Advisory DSA-1503-2 [email protected] http://www.debian.org/security/ dann frazier March 6, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

[SECURITY] [DSA 1305-1] New icedove packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1305-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 13th, 2007 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1282-1] New php4 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1282-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 26th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 747-1] New egroupware packages fix remote command execution

------------------------------------------------------------------------ Debian Security Advisory DSA 747-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

[SECURITY] [DSA 5626-1] pdns-recursor security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5626-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 18, 2024 https://www.debian.org/security/faq -...