14371 matches found
[SECURITY] [DLA 2612-1] leptonlib security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2612-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz March 31, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2552-1] connman security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2552-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz February 09, 2021 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2466-1] drupal7 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2466-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort November 27, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 4792-1] openldap security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4792-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 17, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2381-1] lua5.3 security update
Debian LTS Advisory DLA-2381-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez September 26, 2020 https://wiki.debian.org/LTS Package : lua5.3 Version : 5.3.3-1+deb9u1 CVE ID : CVE-2020-24370 A vulnerability was discovered in lua5.3, a simple, extensible,...
[SECURITY] [DLA 2360-1] thunderbird security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2360-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort August 31, 2020 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 2327-1] lucene-solr security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2327-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 15, 2020 htps://wiki.debian.org/LTS -...
[SECURITY] [DLA 2322-1] roundcube security update
Debian LTS Advisory DLA-2322-1 [email protected] https://www.debian.org/lts/security/ August 11, 2020 https://wiki.debian.org/LTS Package : roundcube Version : 1.2.3+dfsg.1-4+deb9u7 CVE ID : CVE-2020-16145 Debian Bug : 968216 A vulnerability was discovered in roundcube, a skinnable AJAX...
[SECURITY] [DLA 2268-2] mutt regression update
Package : mutt Version : 1.5.23-3+deb8u3 CVE ID : CVE-2020-14093 CVE-2020-14954 Debian Bug : Two vulnerabilities have been discovered in mutt, a console email client. CVE-2020-14093 Mutt allowed an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response. CVE-2020-14954 Mutt had a STARTT...
[SECURITY] [DLA 2240-1] bluez security update
Package : bluez Version : 5.43-2+deb9u2deb8u1 CVE ID : CVE-2020-0556 Debian Bug : 953770 It was reported that the BlueZs HID and HOGP profile implementations dont specifically require bonding between the device and the host. Malicious devices can take advantage of this flaw to connect to a target...
[SECURITY] [DSA 4654-1] chromium security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4654-1 [email protected] https://www.debian.org/security/ Michael Gilbert April 07, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DLA 2081-1] openjpeg2 security update
Package : openjpeg2 Version : 2.1.0-2+deb8u9 CVE ID : CVE-2020-6851 OpenJPEG had a heap-based buffer overflow in opjt1clbldecodeprocessor in libopenjp2.so. For Debian 8 "Jessie", this problem has been fixed in version 2.1.0-2+deb8u9. We recommend that you upgrade your openjpeg2 packages. Further...
[SECURITY] [DLA 2040-1] harfbuzz security update
Package : harfbuzz Version : 0.9.35-2+deb8u1 CVE ID : CVE-2015-8947 An issue has been found in harfbuzz, an OpenType text shaping engine. Due to a buffer over-read, remote attackers are able to cause a denial of service or possibly have other impact via crafted data. For Debian 8 "Jessie", this...
[SECURITY] [DSA 4429-1] spip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4429-1 [email protected] https://www.debian.org/security/ Sebastien Delafond April 10, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1710-1] xmltooling security update
Package : xmltooling Version : 1.5.3-2+deb8u4 CVE ID : CVE-2019-9628 Debian Bug : 924346 Ross Geerlings discovered that the XMLTooling library didnt correctly handle exceptions on malformed XML declarations, which could result in denial of service against the application using XMLTooling. For...
[SECURITY] [DLA 1591-2] libphp-phpmailer regression update
Package : libphp-phpmailer Version : 5.2.9+dfsg-2+deb8u5 CVE ID : CVE-2018-19296 A possible regression was found in the recent security update for libphp-phpmailer, announced as DLA 1591-1. During backporting a new variable have accidentally introduced to a conditional statement from a much later...
[SECURITY] [DLA 1425-1] thunderbird security update
Package : thunderbird Version : 1:52.9.1-1deb8u1 CVE ID : CVE-2018-5188 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12372 CVE-2018-12373 CVE-2018-12374 Multiple security issues have been found in Thunderbird, which may lead to...
[SECURITY] [DLA 1414-1] mercurial security update
Package : mercurial Version : 3.1.2-2+deb8u5 CVE ID : CVE-2017-9462 CVE-2017-17458 CVE-2018-1000132 Debian Bug : 861243 892964 901050 Some security vulnerabilities were found in Mercurial which allow authenticated users to trigger arbitrary code execution and unauthorized data access in certain...
[SECURITY] [DLA 1330-1] openssl security update
Package : openssl Version : 1.0.1t-1+deb7u4 CVE ID : CVE-2018-0739 It was discovered that constructed ASN.1 types with a recursive definition could exceed the stack, potentially leading to a denial of service. Details can be found in the upstream advisory:...
[SECURITY] [DLA 1162-1] apr security update
Package : apr Version : 1.4.6-3+deb7u2 CVE ID : CVE-2017-12613 Debian Bug : 879708 It was discovered that there was an out-of-bounds memory vulnerability in apr, a support/portability library for various applications. When the aprexptime or aprosexptime functions were invoked with an invalid mont...
[SECURITY] [DSA 4004-1] jackson-databind security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4004-1 [email protected] https://www.debian.org/security/ Sebastien Delafond October 20, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1034-1] php5 security update
Package : php5 Version : 5.4.45-0+deb7u9 CVE ID : CVE-2016-10397 CVE-2017-11143 CVE-2017-11144 CVE-2017-11145 CVE-2017-11147 Several issues have been discovered in PHP recursive acronym for PHP: Hypertext Preprocessor, a widely-used open source general-purpose scripting language that is especiall...
[SECURITY] [DLA 991-1] firefox-esr security update
Package : firefox-esr Version : 52.2.0esr-1deb7u1 CVE ID : CVE-2017-5470 CVE-2017-5472 CVE-2017-7749 CVE-2017-7750 CVE-2017-7751 CVE-2017-7752 CVE-2017-7754 CVE-2017-7756 CVE-2017-7757 CVE-2017-7758 CVE-2017-7764 CVE-2017-7771 CVE-2017-7772 CVE-2017-7773 CVE-2017-7774 CVE-2017-7775 CVE-2017-7776...
[SECURITY] [DLA 842-1] qemu-kvm security update
Package : qemu-kvm Version : 1.1.2+dfsg-6+deb7u20 CVE ID : CVE-2017-2615 CVE-2017-2620 CVE-2017-5898 CVE-2017-5973 Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution for Linux hosts on x86 hardware with x86 guests. CVE-2017-2615 The Cirrus CLGD 54xx VGA Emulator i...
[SECURITY] [DSA 3791-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3791-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 22, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 785-1] wireless-regdb new upstream version
Package : wireless-regdb Version : 2016.06.10-1deb7u1 This update includes the changes in wireless-regdb 2016.06.10, reflecting changes to radio regulations in many countries and adding information about additional countries. For Debian 7 "Wheezy", the update is available as version...
[SECURITY] [DSA 3739-1] tomcat8 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3739-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 18, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3730-1] icedove security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3730-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 11, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 711-1] curl security update
Package : curl Version : 7.26.0-1+wheezy17 CVE ID : CVE-2016-8615 CVE-2016-8616 CVE-2016-8617 CVE-2016-8618 CVE-2016-8619 CVE-2016-8621 CVE-2016-8622 CVE-2016-8623 CVE-2016-8624 CVE-2016-8615 If cookie state is written into a cookie jar file that is later read back and used for subsequent request...
[SECURITY] [DLA 460-1] file security update
Package : file Version : 5.11-2+deb7u9 CVE ID : CVE-2015-8865 A malformed magic file could trigger a segmentation fault and thus crash applications due to a buffer over-write in the filecheckmem function. For Debian 7 "Wheezy", this problem has been fixed in version 5.11-2+deb7u9. We recommend th...
[SECURITY] [DSA 3560-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3560-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 27, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3558-1] openjdk-7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3558-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 26, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3503-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3503-1 [email protected] https://www.debian.org/security/ Ben Hutchings March 03, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3469-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3469-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 192-1] ntp security update
Package : ntp Version : 1:4.2.6.p2+dfsg-1+deb6u3 CVE ID : CVE-2015-1798 CVE-2015-1799 Debian Bug : 782095 Brief introduction CVE-2015-1798 When ntpd is configured to use a symmetric key to authenticate a remote NTP server/peer, it checks if the NTP message authentication code MAC in received...
[SECURITY] [DSA 3032-1] bash security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3032-1 [email protected] http://www.debian.org/security/ Florian Weimer September 24, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2878-1] virtualbox security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2878-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 13, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2604-1] rails security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2604-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst January 09, 2013 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2471-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2471-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 13, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2465-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2465-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 09, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2303-1] linux-2.6 security update
---------------------------------------------------------------------- Debian Security Advisory DSA-2303-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff, Dann Frazier September 8, 2011 http://www.debian.org/security/faq -...
Security update for openoffice.org
Rene Engelhard uploaded new packages for openoffice.org which fixed the following security problems: CVE-2010-2935 CVE-2010-2936: Charlie Miller has discovered two vulnerabilities in OpenOffice.org Impress, which can be exploited by malicious people to compromise a users system and execute...
[SECURITY] [DSA 2062-1] New sudo packages fix environment sanitization bypass vulnerability
------------------------------------------------------------------------ Debian Security Advisory DSA-2062-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 17, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1858-1] New imagemagick packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1858-1 [email protected] http://www.debian.org/security/ Luciano Bello August 10, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1824-1] New phpmyadmin packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1824-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst June 25, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1724-1] New moodle packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1724-1 [email protected] http://www.debian.org/security/ Steffen Joeris February 13th, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1542-1] New libcairo packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1542-1 [email protected] http://www.debian.org/security/ Devin Carraway April 09, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues
------------------------------------------------------------------------ Debian Security Advisory DSA-1503-2 [email protected] http://www.debian.org/security/ dann frazier March 6, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
[SECURITY] [DSA 1237-1] New Linux 2.4.27 packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1237-1 [email protected] http://www.debian.org/security/ Dann Frazier December 17th, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 6281-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6281-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 19, 2026 https://www.debian.org/security/faq -...