[SECURITY] [DSA 5266-1] expat security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5266-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 30, 2022 https://www.debian.org/security/faq -...

[SECURITY] [DSA 5242-1] maven-shared-utils security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5242-1 [email protected] https://www.debian.org/security/ Aron Xu September 28, 2022 https://www.debian.org/security/faq -...

[SECURITY] [DLA 3058-1] libsndfile security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3058-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz June 26, 2022 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 3013-1] needrestart security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-3013-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta May 18, 2022 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...

[SECURITY] [DLA 2982-1] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2982-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 14, 2022 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2980-1] zabbix security update

Debian LTS Advisory DLA-2980-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany April 12, 2022 https://wiki.debian.org/LTS Package : zabbix Version : 1:3.0.32+dfsg-0+deb9u3 CVE ID : CVE-2022-24349 CVE-2022-24917 CVE-2022-24919 Several security vulnerabilities have...

[SECURITY] [DLA 2938-1] twisted security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2938-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb March 08, 2022 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2933-1] firefox-esr security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2933-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort March 07, 2022 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2906-1] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2906-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb February 01, 2022 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 5019-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5019-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 10, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4996-1] wpewebkit security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4996-1 [email protected] https://www.debian.org/security/ Alberto Garcia October 29, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4992-1] php7.4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4992-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 25, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2759-1] gnutls28 alternate chains verification

------------------------------------------------------------------------- Debian LTS Advisory DLA-2759-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler September 17, 2021 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4962-1] ledgersmb security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4962-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 23, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4954-1] c-ares security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4954-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 10, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2681-1] eterm security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2681-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta June 09, 2021 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...

[SECURITY] [DSA 4905-1] shibboleth-sp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4905-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 27, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4884-1] ldb security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4884-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 02, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4862-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4862-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 24, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4846-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4846-1 [email protected] https://www.debian.org/security/ Michael Gilbert February 07, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2545-1] open-build-service security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2545-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 03, 2021 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4815-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4815-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 17, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2417-1] linux-4.19 security update

Debian LTS Advisory DLA-2417-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings October 27, 2020 https://wiki.debian.org/LTS Package : linux-4.19 Version : 4.19.152-1deb9u1 CVE ID : CVE-2020-12351 CVE-2020-12352 CVE-2020-25211 CVE-2020-25643 CVE-2020-25645 Debian Bug...

[SECURITY] [DSA 4781-1] blueman security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4781-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 27, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2339-1] software-properties security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2339-1 [email protected] https://www.debian.org/lts/security/ August 22, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...

[SECURITY] [DLA 2325-1] openjdk-8 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2325-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort August 13, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2314-1] clamav security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2314-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort August 06, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2289-1] mupdf security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2289-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz July 26, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4689-1] bind9 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4689-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 19, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4686-1] apache-log4j1.2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4686-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 16, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4648-1] libpam-krb5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4648-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 31, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2041-1] debian-edu-config security update

Package : debian-edu-config Version : 1.818+deb8u3 CVE ID : CVE-2019-3467 Debian Bug : 946797 It was discovered that debian-edu-config, the package containing the configuration files and scripts for Debian Edu Skolelinux, contained an insecure configuration for kadmin, the Kerberos administration...

[SECURITY] [DSA 4588-1] python-ecdsa security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4588-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 17, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4565-2] intel-microcode security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4565-2 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 13, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2028-1] squid3 security update

Package : squid3 Version : 3.4.8-6+deb8u9 CVE ID : CVE-2019-12526 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 It was found that Squid, a high-performance proxy caching server for web clients, has been affected by the following security vulnerabilities. CVE-2019-12526 URN response handling in Squ...

[SECURITY] [DLA 1938-1] file-roller security update

Package : file-roller Version : 3.14.1-1+deb8u1 CVE ID : CVE-2019-16680 An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction. For Debian 8 "Jessie", this proble...

[SECURITY] [DLA 1730-2] libssh2 regression update

Package : libssh2 Version : 1.4.3-4.1+deb8u3 CVE ID : CVE-2019-3859 This regression update follows up on an upstream regression update 1 regarding CVE-2019-3859. With the previous libssh2 package revision, it was observed that user authentication with private/public key pairs would fail under...

[SECURITY] [DLA 1509-1] php5 security update

Package : php5 Version : 5.6.38+dfsg-0+deb8u1 CVE ID : CVE-2018-17082 A vulnerability has been discovered in php5, a server-side, HTML-embedded scripting language. The Apache2 component allows XSS via the body of a "Transfer-Encoding: chunked" request because of a defect in request handling. For...

[SECURITY] [DSA 4236-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4236-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 27, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4161-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4161-1 [email protected] https://www.debian.org/security/ Luciano Bello April 01, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1227-1] imagemagick security update

Package : imagemagick Version : 8:6.7.7.10-5+deb7u19 CVE ID : CVE-2017-17504 CVE-2017-17682 CVE-2017-17879 CVE-2017-17914 Debian Bug : 885340 885942 885125 Several security vulnerabilities were discovered in ImageMagick, an image manipulation program, that allow remote attackers to cause a denial...

[SECURITY] [DSA 4043-1] samba security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4043-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 21, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4031-1] ruby2.3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4031-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 11, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4020-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4020-1 [email protected] https://www.debian.org/security/ Michael Gilbert November 05, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DLA 993-2] linux regression update

Package : linux Version : 3.2.89-2 Debian Bug : 865303 The security update announced as DLA-993-1 caused regressions for some applications using Java - including jsvc, LibreOffice and Scilab - due to the fix for CVE-2017-1000364. Updated packages are now available to correct this issue. For...

[SECURITY] [DSA 3899-1] vlc security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3899-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 27, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DLA 953-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.16-1.1+deb7u7 CVE ID : CVE-2017-9098 Debian Bug : 862967 Chris Evans discovered that graphicsmagick used uninitialized memory in the RLE decoder, allowing an remote attacker to leak sensitive information from process memory space. More information are...

[SECURITY] [DLA 944-1] openvpn security update

Package : openvpn Version : 2.2.1-8+deb7u4 CVE ID : CVE-2017-7479 Denial of Service due to Exhaustion of Packet-ID counter An authenticated client can cause the servers the packet-id counter to roll over, which would lead the server process to hit an ASSERT and stop running. To make the server hi...

[SECURITY] [DSA 3849-1] kde4libs security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3849-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 12, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3842-1] tomcat7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3842-1 [email protected] https://www.debian.org/security/ Sebastien Delafond May 03, 2017 https://www.debian.org/security/faq -...