14401 matches found
[SECURITY] [DSA 3922-1] mysql-5.5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3922-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 28, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3892-1] tomcat7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3892-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 22, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DLA 987-1] request-tracker4 security update
Package : request-tracker4 Version : 4.0.7-5+deb7u5 CVE ID : CVE-2016-6127 CVE-2017-5361 CVE-2017-5943 CVE-2017-5944 Multiple vulnerabilities have been discovered in Request Tracker, an extensible trouble-ticket tracking system. The Common Vulnerabilities and Exposures project identifies the...
[SECURITY] [DLA 926-1] batik security update
Package : batik Version : 1.7+dfsg-3+deb7u2 CVE ID : CVE-2017-5662 Debian Bug : 860566 In Apache Batik before 1.9, files lying on the filesystem of the server which uses batik can be revealed to arbitrary users who send maliciously formed SVG files. The file types that can be shown depend on the...
[SECURITY] [DSA 3783-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3783-1 [email protected] https://www.debian.org/security/ Luciano Bello February 08, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3771-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3771-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 25, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3744-1] libxml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3744-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 23, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 670-1] linux security update
Package : linux Version : 3.2.82-1 CVE ID : CVE-2015-8956 CVE-2016-5195 CVE-2016-7042 CVE-2016-7425 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2015-8956 It was discovered that missing input...
[SECURITY] [DLA DLA-647-1] freeimage security update
Package : freeimage Version : 3.15.1-1.1+deb7u1 CVE ID : CVE-2016-5684 Debian Bug : 839827 It was discovered that there was an out-of-bounds write vulnerability in the XMP image handling functionality in freeimage, a support library for various graphics image formats. A specially crafted XMP file...
[SECURITY] [DLA 604-1] ruby-actionpack-3.2 security update
Package : ruby-actionpack-3.2 Version : 3.2.6-6+deb7u3 CVE ID : CVE-2015-7576 CVE-2016-0751 CVE-2016-0752 CVE-2016-2097 CVE-2016-2098 CVE-2016-6316 Multiple vulnerabilities have been discovered in ruby-actionpack-3.2, a web-flow and rendering framework and part of Rails: CVE-2015-7576 A flaw was...
[SECURITY] [DSA 3645-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3645-1 [email protected] https://www.debian.org/security/ Michael Gilbert August 09, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 567-2] mysql-5.5 security and regression update
Package : mysql-5.5 Version : 5.5.50-0+deb7u2 CVE ID : CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 Several vulnerabilities have been found in the MySQL Database Server. These vulnerabilities are addressed by upgrading MySQL to the recent upstream 5.5.50 version. Please refer to the...
[SECURITY] [DSA 3616-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3616-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 04, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 515-1] libav security update
Package : libav Version : 6:0.8.17-2+deb7u2 CVE ID : CVE-2016-3062 It was discovered that there was a memory corruption issue in libav a multimedia player, server, encoder and transcoder when parsing .mp4 files which could lead to crash or possibly execute arbitrary code. For Debian 7 "Wheezy",...
[SECURITY] [DLA 497-1] wireshark security update
Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u6deb7u1 CVE ID : CVE-2012-6052 CVE-2012-6053 CVE-2012-6054 CVE-2012-6055 CVE-2012-6056 CVE-2012-6057 CVE-2012-6058 CVE-2012-6059 CVE-2012-6060 CVE-2012-6061 CVE-2012-6062 CVE-2013-1572 CVE-2013-1573 CVE-2013-1574 CVE-2013-1575 CVE-2013-1576...
[SECURITY] [DLA 494-1] eglibc security update
Package : eglibc Version : 2.13-38+deb7u11 CVE ID : CVE-2016-1234 CVE-2016-3075 CVE-2016-3706 Several vulnerabilities have been fixed in the Debian GNU C Library, eglibc: CVE-2016-1234 Alexander Cherepanov discovered that the glibcs glob implementation suffered from a stack-based buffer overflow...
[SECURITY] [DLA 447-1] mysql-5.5 security update
Package : mysql-5.5 Version : 5.5.49-0+deb7u1 CVE ID : CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0666 CVE-2016-2047 Debian Bug : 821100 Several vulnerabilities have been discovereded in the...
[SECURITY] [DSA 3486-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3486-1 [email protected] https://www.debian.org/security/ Michael Gilbert February 21, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3459-1] mysql-5.5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3459-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 28, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3417-1] bouncycastle security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3417-1 [email protected] https://www.debian.org/security/ Luciano Bello December 14, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 354-1] nss security update
Package : nss Version : 3.12.8-1+squeeze13 CVE ID : CVE-2015-7181 CVE-2015-7182 Debian Bug : Several vulnerabilities have been discovered in nss, the Mozilla Network Security Service library. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-7181 The...
[SECURITY] [DSA 3361-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3361-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3324-1] icedove security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3324-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini August 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3311-1] mariadb-10.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3311-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 20, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3262-1] xen security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3262-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 18, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DLA 219-1] icu security update
Package : icu Version : 4.4.1-8+squeeze3 CVE ID : CVE-2013-1569 CVE-2013-2383 CVE-2013-2384 CVE-2013-2419 CVE-2014-6585 CVE-2014-6591 CVE-2014-7923 CVE-2014-7926 CVE-2014-7940 CVE-2014-9654 Several vulnerabilities were discovered in the International Components for Unicode ICU library:...
[SECURITY] [DSA 3252-1] sqlite3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3252-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 06, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3238-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3238-1 [email protected] http://www.debian.org/security/ Michael Gilbert April 26, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3139-1] squid security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3139-1 [email protected] http://www.debian.org/security/ Sebastien Delafond January 25, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3125-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3125-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 11, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3080-1] openjdk-7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3080-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 29, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3060-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3060-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso October 31, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DLA 75-1] mysql-5.1 security update
Package : mysql-5.1 Version : 5.1.73-1+deb6u1 CVE ID : CVE-2013-2162 CVE-2014-0001 CVE-2014-4274 This update fixes one important vulnerability CVE-2014-4274 and batches together two other minor fixes CVE-2013-2162, CVE-2014-0001. CVE-2014-4274 Insecure handling of a temporary file that could lead...
[SECURITY] [DSA 3038-1] libvirt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3038-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 27, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DLA 45-1] squid3 security update
Package : squid3 Version : 3.1.6-1.2+squeeze4 CVE ID : CVE-2014-3609 CVE-2014-3609: Denial of Service in Range header processing. Ignore Range headers with unidentifiable byte-range values. If squid is unable to determine the byte value for ranges, treat the header as invalid...
[SECURITY] [DSA 2950-2] openssl update
------------------------------------------------------------------------- Debian Security Advisory DSA-2950-2 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 16, 2014 http://www.debian.org/security/faq - -...
[SECURITY] [DSA 2920-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2920-1 [email protected] http://www.debian.org/security/ Michael Gilbert May 03, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2728-1] bind9 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2728-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso July 27, 2013 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2679-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 23, 2013 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2432-1] libyaml-libyaml-perl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2432-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 12, 2012 http://www.debian.org/security/faq -...
[BSA-040] Security Update for iceweasel
Mike Hommey uploaded new packages for iceweasel which fixed the following security problems: CVE-2011-0083 / CVE-2011-2363 "regenrecht" discovered two use-after-frees in SVG processing, which could lead to the execution of arbitrary code. CVE-2011-0085 "regenrecht" discovered a use-after-free in...
[BSA-038] Security Update for icedove
Christoph Göhre uploaded new packages for icedove which fixed the following security problems: CVE-2011-0083 Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem function in the implementation of SVG element lists allows remote attackers to cause a denial of service application crash...
[SECURITY] [DSA 2208-2] bind9 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2208-2 [email protected] http://www.debian.org/security/ Florian Weimer March 30, 2011 http://www.debian.org/security/faq -...
BSA-005 Security Update for postgresql-8.4
Gerfried Fuchs uploaded new packages for postgresql-8.4 which fixed the following security problem: CVE-2010-3433 The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before...
[SECURITY] [DSA 2032-1] New libpng packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2032-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano April 11, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2001-1] New php5 packages fix multiple vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2001-1 [email protected] http://www.debian.org/security/ Raphael Geissert February 19, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1988-1] New qt4-x11 packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1988-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano February 02, 2010 http://www.debian.org/security/faq -...
[Backports-security-announce] Security Update for proftpd-dfsg
Francesco P. Lovergine uploaded new packages for proftpd-dfsg which fixed the following security problem: CVE-2009-3639 The modtls module in ProFTPD before 1.3.2b, and 1.3.3 before 1.3.3rc2, when the dNSNameRequired TLS option is enabled, does not properly handle a \0 character in a domain name i...
[SECURITY] [DSA 1966-1] New horde3 packages fix cross-site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1966-1 [email protected] http://www.debian.org/security/ Steffen Joeris January 07, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1933-1] New cups packages fix cross-site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1933-1 [email protected] http://www.debian.org/security/ Steffen Joeris November 10, 2009 http://www.debian.org/security/faq -...