14325 matches found
[SECURITY] [DSA 3609-1] tomcat8 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3609-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 29, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3607-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3607-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 28, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 503-1] libxml2 security update
Package : libxml2 Version : 2.8.0+dfsg1-7+wheezy6 CVE ID : CVE-2015-8806 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-2073 CVE-2016-3627 CVE-2016-3705 CVE-2016-4447 CVE-2016-4449 CVE-2016-4483 Debian Bug : 812807 813613...
[SECURITY] [DLA 480-1] nss security update
Package : nss Version : 3.14.5-1+deb7u6 CVE ID : CVE-2015-7181 CVE-2015-7182 CVE-2016-1938 CVE-2016-1950 CVE-2016-1978 CVE-2016-1979 This security update fixes serious security issues in NSS including arbitrary code execution and remote denial service attacks. For Debian 7 "wheezy", these problem...
[SECURITY] [DSA 3573-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3573-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 09, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3549-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3549-1 [email protected] https://www.debian.org/security/ Michael Gilbert April 15, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3548-1] samba security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3548-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 13, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 444-1] php5 security update
Package : php5 Version : 5.3.3.1-7+squeeze29 CVE ID : CVE-2015-2305 CVE-2015-2348 CVE-2015-2305 Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow...
[SECURITY] [DSA 3489-1] lighttpd security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3489-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 23, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 407-1] prosody security update
Package : prosody Version : 0.7.0-1squeeze1+deb6u2 CVE ID : CVE-2016-0756 The flaw allows a malicious server to impersonate the vulnerable domain to any XMPP domain whose domain name includes the attackers domain as a suffix. For example, bber.example would be able to connect to jabber.example an...
[SECURITY] [DSA 3448-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3448-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 19, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3437-1] gnutls26 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3437-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 09, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 375-1] libpng security update
Package : libpng Version : 1.2.44-1+squeeze6 CVE ID : CVE-2012-3425 CVE-2015-8472 CVE-2015-8540 CVE-2015-8472 update incomplete patch for CVE-2015-8126 CVE-2015-8540 underflow read in pngcheckkeyword in pngwutil.c CVE-2012-3425 The pngpushreadzTXt function in pngpread.c in libpng 1.0.x before...
[SECURITY] [DSA 3413-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3413-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 04, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3385-1] mariadb-10.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3385-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 31, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 302-1] zendframework security update
Package : zendframework Version : 1.10.6-1squeeze5 CVE ID : CVE-2015-5161 Dawid Golunski discovered that when running under PHP-FPM in a threaded environment, Zend Framework, a PHP framework, did not properly handle XML data in multibyte encoding. This could be used by remote attackers to perform...
[SECURITY] [DSA 3315-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3315-1 [email protected] https://www.debian.org/security/ Michael Gilbert July 23, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3300-1] iceweasel security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3300-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 04, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 236-1] wordpress security update
Package : wordpress Version : 3.6.1+dfsg-1deb6u6 CVE ID : CVE-2014-9031 CVE-2014-9033 CVE-2014-9034 CVE-2014-9035 CVE-2014-9036 CVE-2014-9037 CVE-2014-9038 CVE-2014-9039 CVE-2015-3438 CVE-2015-3439 CVE-2015-3440 Debian Bug : 783347 783554 770425 In the Debian squeeze-lts version of Wordpress,...
[SECURITY] [DLA 215-1] libjson-ruby security update
Package : libjson-ruby Version : 1.1.9-1+deb6u1 CVE ID : CVE-2013-0269 The JSON gem for Ruby allowed remote attackers to cause a denial of service resource consumption or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbo...
[SECURITY] [DLA 204-1] file security update
Package : file Version : 5.04-5+squeeze10 CVE ID : CVE-2014-9653 Debian Bug : 777585 This update fixes the following issue in the file package: CVE-2014-9653 readelf.c does not consider that pread calls sometimes read only a subset of the available data, which allows remote attackers to cause a...
[SECURITY] [DSA 3188-1] freetype security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3188-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 15, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DLA 112-1] bind9 security update
Package : bind9 Version : 9.7.3.dfsg-1squeeze13 CVE ID : CVE-2014-8500 Debian Bug : 772610 This update fixes a denial of service vulnerability in BIND, a DNS server. By making use of maliciously-constructed zones or a rogue server, an attacker could exploit an oversight in the code BIND 9 used to...
[BSA-098] Security update for drupal7
Gunnar Wolf uploaded new packages for Drupal7 which fixed the following security problems: CVE 2014-3704 / SA-CORE-2014-005: Highly critical: Pre Auth SQL injection The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared...
[DLA 27-1] file security update
Package : file Version : 5.04-5+squeeze6 CVE ID : CVE-2014-0207 CVE-2014-0237 CVE-2014-0238 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 Fix various denial of service attacks: CVE-2014-3487 The cdfreadpropertyinfo function does not properly validate a stream offset, which allows remote...
[SECURITY] [DSA 2972-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2972-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso July 06, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2842-1] libspring-java security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2842-1 [email protected] http://www.debian.org/security/ Markus Koschany January 13, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2516-1] isc-dhcp security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2516-1 [email protected] http://www.debian.org/security/ Nico Golde July 26, 2012 http://www.debian.org/security/faq - -------------------------------------------------------------------------...
[SECURITY] [DSA 2508-1] kfreebsd-8 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2508-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez July 22, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2473-1] openoffice.org security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2473-1 [email protected] http://www.debian.org/security/ Florian Weimer May 16, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2437-1] icedove security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2437-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 21, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2298-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2298-1 [email protected] http://www.debian.org/security/ Stefan Fritsch August 29, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2210-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2210-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 03, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2141-1] New openssl packages fix protocol design flaw
------------------------------------------------------------------------ Debian Security Advisory DSA-2141-1 [email protected] http://www.debian.org/security/ Stefan Fritsch January 06, 2011 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2124-1] New Xulrunner packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2124-1 [email protected] http://www.debian.org/security/ Florian Weimer November 01, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2103-1] New smbind packages fix sql injection
------------------------------------------------------------------------ Debian Security Advisory DSA-2103-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano September 05, 2010 http://www.debian.org/security/faq -...
[Backports-security-announce] Security Update for nsrp
Alexander Reichle-Schmehl uploaded new packages for nspr which fixed the following security problems: CVE-2009-0689 Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and...
[Backports-security-announce] Security Update for xulrunner
Alexander Reichle-Schmehl uploaded new packages for packagename which fixed the following security problems: CVE-2008-5913 The Math.random function in the JavaScript implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, uses a random number...
[SECURITY] [DSA-2035-1] New apache2 packages fix several issues
------------------------------------------------------------------------ Debian Security Advisory DSA-2035-1 [email protected] http://www.debian.org/security/ Stefan Fritsch April 17, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2012-1] New Linux 2.6.26 packages fix several issues
---------------------------------------------------------------------- Debian Security Advisory DSA-2012-1 [email protected] http://www.debian.org/security/ dann frazier March 11, 2010 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
[SECURITY] [DSA 2003-1] New Linux 2.6.18 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-2003-1 [email protected] http://www.debian.org/security/ Dann Frazier February 22, 2010 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
[SECURITY] [DSA-2001-1] New php5 packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2001-1 [email protected] http://www.debian.org/security/ Raphael Geissert February 19, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1904-1] New wget packages fix SSL certificate verification weakness
------------------------------------------------------------------------ Debian Security Advisory DSA-1904-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano October 09, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1886-1] New iceweasel packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1886-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 14, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1874-1] New nss packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1874-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 26, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1836-1] New fckeditor packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1836-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 16, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1638-1] New openssh packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1638-1 [email protected] http://www.debian.org/security/ Florian Weimer September 16, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1534-1] New iceape packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1534-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 28, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1488-1] New phpbb2 packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1488-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 09, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1419-1 [email protected] http://www.debian.org/security/ Martin Schulze December 5th, 2007 http://www.debian.org/security/faq -...