[SECURITY] [DSA 4981-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4981-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 06, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4977-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4977-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 20, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4974-1] nextcloud-desktop security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4974-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 19, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4969-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4969-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 09, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4962-2] ledgersmb regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-4962-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 31, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2739-1] libspf2 security update

Debian LTS Advisory DLA-2739-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 11, 2021 https://wiki.debian.org/LTS Package : libspf2 Version : 1.2.10-7+deb9u1 CVE ID : CVE-2021-20314 Philipp Jeitner and Haya Shulman discovered a stack-based buffer overflow...

[SECURITY] [DLA 2730-1] libpam-tacplus security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2730-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta August 04, 2021 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2726-1] shiro security update

Debian LTS Advisory DLA-2726-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez August 02, 2021 https://wiki.debian.org/LTS Package : shiro Version : 1.3.2-1+deb9u2 CVE ID : CVE-2020-13933 CVE-2020-17510 Debian Bug : 968753 It was discovered that there were two...

[SECURITY] [DSA 4943-1] lemonldap-ng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4943-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 23, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4864-1] python-aiohttp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4864-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 27, 2021 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2543-1] libdatetime-timezone-perl new upstream version

------------------------------------------------------------------------- Debian LTS Advisory DLA-2543-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort February 02, 2021 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2506-1] awstats security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2506-1 [email protected] https://www.debian.org/lts/security/ December 23, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------...

[SECURITY] [DLA 2499-1] sympa security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2499-1 [email protected] https://www.debian.org/lts/security/ December 17, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------...

[SECURITY] [DLA 2479-1] thunderbird security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2479-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort December 04, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2477-1] jupyter-notebook security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2477-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb December 02, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4800-1] libproxy security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4800-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 28, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2462-1] cimg security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2462-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk November 23, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4783-1] sddm security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4783-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 05, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2404-1] eclipse-wtp security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2404-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 09, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4769-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4769-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 02, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2395-1] libvirt security update

Debian LTS Advisory DLA-2395-1 [email protected] https://www.debian.org/lts/security/ Roberto C. Sánchez October 02, 2020 https://wiki.debian.org/LTS Package : libvirt Version : 3.0.0-4+deb9u5 CVE ID : CVE-2020-25637 Debian Bug : 971555 A double free vulnerability was discovered in...

[SECURITY] [DLA 2392-1] jruby security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2392-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta October 01, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2338-1] proftpd-dfsg security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2338-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany August 22, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4746-1] net-snmp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4746-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 15, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2319-1] xrdp security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2319-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA August 09, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DSA 4739-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4739-1 [email protected] https://www.debian.org/security/ Alberto Garcia August 03, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2293-1] mercurial security update

Debian LTS Advisory DLA-2293-1 [email protected] https://www.debian.org/lts/security/ July 27, 2020 https://wiki.debian.org/LTS Package : mercurial Version : 4.0-1+deb9u2 CVE ID : CVE-2017-17458 CVE-2018-13346 CVE-2018-13347 CVE-2018-13348 CVE-2018-1000132 CVE-2019-3902 Debian Bug :...

[SECURITY] [DLA 2301-1] json-c security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2301-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort July 30, 2020 https://wiki.debian.org/LTS -...

[SECURITY] [DLA 2273-1] shiro security update

Package : shiro Version : 1.3.2-1+deb9u1 CVE IDs : CVE-2020-1957 CVE-2020-11989 Debian Bug : 955018 It was discovered that there was two issues in shiro, a security framework for Java application: CVE-2020-1957: Fix a path-traversal issue where a specially-crafted request could cause an...

[SECURITY] [DSA 4710-1] trafficserver security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4710-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 27, 2020 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1892-1] flask security update

Package : flask Version : 0.10.1-2+deb8u1 CVE ID : CVE-2018-1000656 Flask, a micro web framework for Python contains a CWE-20: Improper Input Validation vulnerability that can result in Large amount of memory usage possibly leading to denial of service. This attack appear to be exploitable via...

[SECURITY] [DSA 4443-1] samba security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4443-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 14, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4416-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4416-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 24, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4405-1] openjpeg2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4405-1 [email protected] https://www.debian.org/security/ Luciano Bello March 10, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4352-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4352-1 [email protected] https://www.debian.org/security/ Michael Gilbert December 07, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4347-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4347-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 29, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4332-1] ruby2.3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4332-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 03, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4306-1] python2.7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4306-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 27, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1510-1] glusterfs security update

Package : glusterfs Version : 3.5.2-2+deb8u4 CVE ID : CVE-2018-10904 CVE-2018-10907 CVE-2018-10911 CVE-2018-10913 CVE-2018-10914 CVE-2018-10923 CVE-2018-10926 CVE-2018-10927 CVE-2018-10928 CVE-2018-10929 CVE-2018-10930 Debian Bug : 909215 Multiple security vulnerabilities were discovered in...

[SECURITY] [DSA 4277-1] mutt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4277-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 17, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1437-1] slurm-llnl security update

Package : slurm-llnl Version : 14.03.9-5+deb8u3 CVE ID : CVE-2018-7033 CVE-2018-10995 CVE-2018-7033 Fix for issue in accountingstorage/mysql plugin by always escaping strings within the slurmdbd. CVE-2018-10995 Fix for mishandling of user names aka username fields and group ids aka gid fields. Fo...

[SECURITY] [DSA 4251-1] vlc security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4251-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 18, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4245-1] imagemagick security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4245-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 14, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1418-1] bouncycastle security update

Package : bouncycastle Version : 1.49+dfsg-3+deb8u3 CVE ID : CVE-2016-1000338 CVE-2016-1000339 CVE-2016-1000341 CVE-2016-1000342 CVE-2016-1000343 CVE-2016-1000345 CVE-2016-1000346 Several security vulnerabilities were found in Bouncy Castle, a Java implementation of cryptographic algorithms...

[SECURITY] [DLA 1415-1] phpmyadmin security update

Package : phpmyadmin Version : 4:4.2.12-2+deb8u3 CVE ID : CVE-2016-6609 CVE-2016-6614 CVE-2016-6615 CVE-2016-6616 CVE-2016-6618 CVE-2016-6619 CVE-2016-6620 CVE-2016-6621 CVE-2016-6622 CVE-2016-9865 CVE-2017-18264 Several vulnerabilities were found in phpMyAdmin, the web-based MySQL administration...

[SECURITY] [DSA 4219-1] jruby security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4219-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 08, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DSA 4215-1] batik security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4215-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 02, 2018 https://www.debian.org/security/faq -...

[SECURITY] [DLA 1385-1] batik security update

Package : batik Version : 1.7+dfsg-3+deb7u3 CVE ID : CVE-2018-8013 Debian Bug : 899374 Man Yue Mo discovered a security vulnerability in Apache Batik, an SVG image library. A missing check for the class type before calling newInstance when deserializing a subclass of AbstractDocument could lead t...

[SECURITY] [DLA 1379-1] curl security update

Package : curl Version : 7.26.0-1+wheezy25+deb7u1 CVE ID : CVE-2018-1000301 Debian Bug : 898856 It was discovered that there was an issue in the curl a command-line tool for downloading eg. data over HTTP. curl could have be tricked into reading data beyond the end of a heap based buffer used to...

[SECURITY] [DLA 1365-1] drupal7 security update

Package : drupal7 Version : 7.14-2+deb7u19 CVE ID : CVE-2018-7602 Debian Bug : 895778 A remote code execution vulnerability has been found within multiple subsystems of Drupal. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site...