Lucene search
K
DebianRecent

14409 matches found

Debian
Debian
•added 2019/03/30 3:31 p.m.•190 views

[SECURITY] [DSA 4420-1] thunderbird security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4420-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 30, 2019 https://www.debian.org/security/faq -...

9.8CVSS9.6AI score0.19762EPSS
Exploits11
Debian
Debian
•added 2019/03/30 2:52 p.m.•157 views

[SECURITY] [DLA 1738-1] gpsd security update

Package : gpsd Version : 3.11-3+deb8u1 CVE ID : CVE-2018-17937 Debian Bug : 925327 A security vulnerability was discovered in gpsd, the Global Positioning System daemon. A stack-based buffer overflow may allow remote attackers to execute arbitrary code via traffic on port 2947/TCP or crafted JSON...

8.8CVSS9.1AI score0.02656EPSS
Exploits0
Debian
Debian
•added 2019/03/29 3:50 p.m.•21 views

[SECURITY] [DSA 4419-1] twig security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4419-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 29, 2019 https://www.debian.org/security/faq -...

4.3CVSS0.2AI score0.01405EPSS
Exploits0
Debian
Debian
•added 2019/03/29 3:50 p.m.•143 views

[SECURITY] [DSA 4419-1] twig security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4419-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 29, 2019 https://www.debian.org/security/faq -...

4.3CVSS4.2AI score0.01405EPSS
Exploits0
Debian
Debian
•added 2019/03/29 2:18 p.m.•145 views

[SECURITY] [DLA 1737-1] pdns security update

Package : pdns Version : 3.4.1-4+deb8u9 CVE ID : CVE-2019-3871 Debian Bug : 924966 A vulnerability was found in PowerDNS Authoritative Server before 4.0.7 and before 4.1.7. An insufficient validation of data coming from the user when building a HTTP request from a DNS query in the HTTP Connector ...

8.8CVSS7.6AI score0.1286EPSS
Exploits1
Debian
Debian
•added 2019/03/29 1:10 p.m.•135 views

[SECURITY] [DLA 1736-1] dovecot security update

Package : dovecot Version : 1:2.2.13-12deb8u6 CVE ID : CVE-2019-7524 A security vulnerability was discovered in the Dovecot email server. When reading FTS headers from the Dovecot index, the input buffer size is not bounds-checked. An attacker with the ability to modify dovecot indexes, can take...

8.8CVSS7AI score0.01178EPSS
Exploits0
Debian
Debian
•added 2019/03/29 8:53 a.m.•104 views

[SECURITY] [DLA 1735-1] ruby2.1 security update

Package : ruby2.1 Version : 2.1.5-2+deb8u7 CVE ID : CVE-2019-8320 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 Several vulnerabilities have been discovered in rubygems embedded in ruby2.1, the interpreted scripting language. CVE-2019-8320 A Directory Traversal issue was discovered in...

8.8CVSS9.3AI score0.04212EPSS
Exploits1
Debian
Debian
•added 2019/03/28 9:22 p.m.•126 views

[SECURITY] [DLA 1734-1] libraw security update

Package : libraw Version : 0.16.0-9+deb8u4 CVE ID : CVE-2018-5800 CVE-2018-5801 CVE-2018-5802 CVE-2018-5808 CVE-2018-5817 CVE-2018-5818 CVE-2018-5819 Secunia Research has discovered multiple vulnerabilities in libraw, a raw image decoder library, which can be exploited to cause a Denial of Servic...

8.8CVSS8.5AI score0.02817EPSS
Exploits1
Debian
Debian
•added 2019/03/28 8:4 p.m.•24 views

[SECURITY] [DSA 4418-1] dovecot security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4418-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 28, 2019 https://www.debian.org/security/faq -...

7.2CVSS3AI score0.01178EPSS
Exploits0
Debian
Debian
•added 2019/03/28 8:4 p.m.•94 views

[SECURITY] [DSA 4418-1] dovecot security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4418-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 28, 2019 https://www.debian.org/security/faq -...

8.8CVSS7.7AI score0.01178EPSS
Exploits0
Debian
Debian
•added 2019/03/28 1:24 p.m.•48 views

[SECURITY] [DLA 1733-1] wpa security update

Package : wpa Version : 2.3-1+deb8u7 CVE ID : CVE-2016-10743 It was found that the fallback mechanism for generating a WPS pin in hostapd, an IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator, used a low quality pseudorandom number generator. This was resolved by using only the high quali...

7.5CVSS7.5AI score0.02352EPSS
Exploits0
Debian
Debian
•added 2019/03/27 4:39 p.m.•154 views

[SECURITY] [DLA 1731-1] linux security update

Package : linux Version : 3.16.64-1 CVE ID : CVE-2016-10741 CVE-2017-5753 CVE-2017-13305 CVE-2018-3639 CVE-2018-5848 CVE-2018-5953 CVE-2018-12896 CVE-2018-13053 CVE-2018-16862 CVE-2018-16884 CVE-2018-17972 CVE-2018-18281 CVE-2018-18690 CVE-2018-18710 CVE-2018-19824 CVE-2018-19985 CVE-2018-20169...

8.1CVSS7.2AI score0.93838EPSS
Exploits26
Debian
Debian
•added 2019/03/27 9:41 a.m.•109 views

[SECURITY] [DLA 1732-1] openjdk-7 security update

Package : openjdk-7 Version : 7u211-2.6.17-1deb8u1 CVE ID : CVE-2019-2422 A memory disclosure vulnerability was discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in information disclosure or bypass of sandbox restrictions. For Debian 8 "Jessie", this problem has been...

3.1CVSS4.6AI score0.03468EPSS
Exploits0
Debian
Debian
•added 2019/03/26 2:15 p.m.•101 views

[SECURITY] [DLA 1730-1] libssh2 security update

Package : libssh2 Version : 1.4.3-4.1+deb8u2 CVE ID : CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 Debian Bug : 924965 Several vulnerabilities have recently been discovered in libssh2, a client-side C library...

9.3CVSS7.2AI score0.09219EPSS
Exploits0
Debian
Debian
•added 2019/03/25 9:39 p.m.•79 views

[SECURITY] [DLA 1729-1] wireshark security update

Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u18 CVE ID : CVE-2017-9344 CVE-2017-9349 CVE-2019-9209 Several vulnerabilities have been found in wireshark, a network traffic analyzer. CVE-2019-9209: Preventing the crash of the ASN.1 BER and related dissectors by avoiding a buffer overflow...

7.8CVSS7.9AI score0.02942EPSS
Exploits1
Debian
Debian
•added 2019/03/25 1:46 p.m.•124 views

[SECURITY] [DLA 1728-1] openssh security update

Package : openssh Version : 1:6.7p1-5+deb8u8 CVE ID : CVE-2018-20685 CVE-2019-6109 CVE-2019-6111 Debian Bug : 793412 919101 923486 Multiple scp client vulnerabilities have been discovered in OpenSSH, the premier connectivity tool for secure remote shell login and secure file transfer...

6.8CVSS7.1AI score0.58204EPSS
Exploits9
Debian
Debian
•added 2019/03/25 1:12 p.m.•60 views

[SECURITY] [DLA 1727-1] firefox-esr security update

Package : firefox-esr Version : 60.6.1esr-1deb8u1 CVE ID : CVE-2019-9810 CVE-2019-9813 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code. For Debian 8 "Jessie", these problems have been fixed in version...

8.8CVSS9.7AI score0.29514EPSS
Exploits13
Debian
Debian
•added 2019/03/25 11:55 a.m.•85 views

[SECURITY] [DLA 1726-1] bash security update

Package : bash Version : 4.3-11+deb8u2 CVE ID : CVE-2016-9401 CVE-2019-9924 Two issues have been fixed in bash, the GNU Bourne-Again Shell: CVE-2016-9401 The popd builtin segfaulted when called with negative out of range offsets. CVE-2019-9924 Sylvain Beucler discovered that it was possible to ca...

7.8CVSS7.5AI score0.00421EPSS
Exploits0
Debian
Debian
•added 2019/03/24 9:48 p.m.•212 views

[SECURITY] [DLA 1725-1] rsync security update

Package : rsync Version : 3.1.1-3+deb8u2 CVE ID : CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2018-5764 Trail of Bits used the automated vulnerability discovery tools developed for the DARPA Cyber Grand Challenge to audit zlib. As rsync, a fast, versatile, remote and local...

9.8CVSS9.6AI score0.07489EPSS
Exploits0
Debian
Debian
•added 2019/03/24 8:15 p.m.•150 views

[SECURITY] [DSA 4417-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4417-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 24, 2019 https://www.debian.org/security/faq -...

8.8CVSS9.8AI score0.29514EPSS
Exploits13
Debian
Debian
•added 2019/03/24 1:1 p.m.•38 views

[SECURITY] [DSA 4416-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4416-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 24, 2019 https://www.debian.org/security/faq -...

5CVSS1.2AI score0.03863EPSS
Exploits6
Debian
Debian
•added 2019/03/24 1:1 p.m.•124 views

[SECURITY] [DSA 4416-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4416-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 24, 2019 https://www.debian.org/security/faq -...

7.5CVSS6.9AI score0.03863EPSS
Exploits6
Debian
Debian
•added 2019/03/24 11:2 a.m.•22 views

[SECURITY] [DSA 4415-1] passenger security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4415-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 24, 2019 https://www.debian.org/security/faq -...

1.2CVSS1.2AI score0.00358EPSS
Exploits0
Debian
Debian
•added 2019/03/24 11:2 a.m.•122 views

[SECURITY] [DSA 4415-1] passenger security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4415-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 24, 2019 https://www.debian.org/security/faq -...

4.7CVSS4.8AI score0.00358EPSS
Exploits0
Debian
Debian
•added 2019/03/23 6:33 p.m.•40 views

[SECURITY] [DSA 4414-1] libapache2-mod-auth-mellon security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4414-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst March 23, 2019 https://www.debian.org/security/faq -...

6.8CVSS1.7AI score0.02969EPSS
Exploits1
Debian
Debian
•added 2019/03/23 6:33 p.m.•176 views

[SECURITY] [DSA 4414-1] libapache2-mod-auth-mellon security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4414-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst March 23, 2019 https://www.debian.org/security/faq -...

8.1CVSS7.7AI score0.02969EPSS
Exploits1
Debian
Debian
•added 2019/03/22 3:1 p.m.•137 views

[SECURITY] [DLA 1724-1] ntfs-3g security update

Package : ntfs-3g Version : 1:2014.2.15AR.2-1+deb8u4 CVE ID : CVE-2019-9755 A heap-based buffer overflow was discovered in NTFS-3G, a read-write NTFS driver for FUSE. A local user can take advantage of this flaw for local root privilege escalation. For Debian 8 "Jessie", this problem has been fix...

7CVSS7.3AI score0.00531EPSS
Exploits0
Debian
Debian
•added 2019/03/21 8:29 p.m.•41 views

[SECURITY] [DSA 4413-1] ntfs-3g security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4413-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 21, 2019 https://www.debian.org/security/faq -...

4.4CVSS1.8AI score0.00531EPSS
Exploits0
Debian
Debian
•added 2019/03/21 8:29 p.m.•125 views

[SECURITY] [DSA 4413-1] ntfs-3g security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4413-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 21, 2019 https://www.debian.org/security/faq -...

7CVSS7.2AI score0.00531EPSS
Exploits0
Debian
Debian
•added 2019/03/21 8:21 p.m.•128 views

[SECURITY] [DLA 1723-1] cron security update

Package : cron Version : 3.0pl1-127+deb8u2 CVE ID : CVE-2017-9525 CVE-2019-9704 CVE-2019-9705 CVE-2019-9706 Debian Bug : 809167 Various security problems have been discovered in Debians CRON scheduler. CVE-2017-9525 Fix group crontab to root escalation via the Debian packages postinst script as...

6.9CVSS6.3AI score0.00551EPSS
Exploits1
Debian
Debian
•added 2019/03/21 11:36 a.m.•63 views

[SECURITY] [DLA 1722-1] firefox-esr security update

Package : firefox-esr Version : 60.6.0esr-1deb8u1 CVE ID : CVE-2018-18506 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9795 CVE-2019-9796 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution ...

9.8CVSS9.1AI score0.19762EPSS
Exploits11
Debian
Debian
•added 2019/03/20 10:13 p.m.•241 views

[SECURITY] [DSA 4412-1] drupal7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4412-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 20, 2019 https://www.debian.org/security/faq -...

6.8AI score
Exploits0
Debian
Debian
•added 2019/03/20 10:9 p.m.•155 views

[SECURITY] [DSA 4411-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4411-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 20, 2019 https://www.debian.org/security/faq -...

9.8CVSS9.2AI score0.19762EPSS
Exploits11
Debian
Debian
•added 2019/03/20 10:3 p.m.•146 views

[SECURITY] [DSA 4410-1] openjdk-8 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4410-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 20, 2019 https://www.debian.org/security/faq -...

3.1CVSS4.6AI score0.03468EPSS
Exploits0
Debian
Debian
•added 2019/03/19 7:48 a.m.•173 views

[SECURITY] [DLA 1721-1] otrs2 security update

Package : otrs2 Version : 3.3.18-1+deb8u8 CVE ID : CVE-2019-9752 It has been discovered that OTRS Open source Ticket Request System is susceptible to code injection vulnerability. An attacker who is logged into OTRS as an agent or a customer user may upload a carefully crafted resource in order t...

5.4CVSS6.1AI score0.01074EPSS
Exploits0
Debian
Debian
•added 2019/03/18 10:15 p.m.•149 views

[SECURITY] [DSA 4409-1] neutron security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4409-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 18, 2019 https://www.debian.org/security/faq -...

6.5CVSS6.4AI score0.03703EPSS
Exploits1
Debian
Debian
•added 2019/03/18 7:57 p.m.•162 views

[SECURITY] [DLA 1720-1] liblivemedia security update

Package : liblivemedia Version : 2014.01.13-1+deb8u3 CVE ID : CVE-2019-9215 Debian Bug : 924655 It was discovered that liblivemedia, the LIVE555 RTSP server library, is vulnerable to an invalid memory access when processing the Authorization header field. Remote attackers could leverage this...

9.8CVSS9.6AI score0.02173EPSS
Exploits0
Debian
Debian
•added 2019/03/18 7:11 p.m.•127 views

[SECURITY] [DLA 1719-1] libjpeg-turbo security update

Package : libjpeg-turbo Version : 1:1.3.1-12+deb8u2 CVE ID : CVE-2018-14498 Debian Bug : 924678 It was discovered that there was a denial of service vulnerability in the libjpeg-turbo CPU-optimised JPEG image library. A heap-based buffer over-read could be triggered by a specially-crafted bitmap...

6.5CVSS7AI score0.03104EPSS
Exploits1
Debian
Debian
•added 2019/03/18 2:13 p.m.•109 views

[SECURITY] [DLA 1718-1] sqlalchemy security update

Package : sqlalchemy Version : 0.9.8+dfsg-0.1+deb8u1 CVE ID : CVE-2019-7164 CVE-2019-7548 Debian Bug : 922669 Two vulnerabilities were discovered in SQLALchemy, a Python SQL Toolkit and Object Relational Mapper. CVE-2019-7164 SQLAlchemy allows SQL Injection via the orderby parameter. CVE-2019-754...

9.8CVSS10AI score0.03525EPSS
Exploits3
Debian
Debian
•added 2019/03/18 7:15 a.m.•120 views

[SECURITY] [DLA 1717-1] rdflib security update

Package : rdflib Version : 4.1.2-3+deb8u1 CVE ID : CVE-2019-7653 Debian Bug : 921751 The CLI tools in python-rdflib-tools can load python modules found in the current directory. This happens because "python -m" appends the current directory in the python path. For Debian 8 "Jessie", this problem...

9.8CVSS9.4AI score0.02263EPSS
Exploits1
Debian
Debian
•added 2019/03/18 6:59 a.m.•129 views

[SECURITY] [DLA 1716-1] ikiwiki security update

Package : ikiwiki Version : 3.20141016.4+deb8u1 CVE ID : CVE-2019-9187 The ikiwiki maintainers discovered that the aggregate plugin did not use LWPx::ParanoidAgent. On sites where the aggregate plugin is enabled, authorized wiki editors could tell ikiwiki to fetch potentially undesired URIs even ...

7.5CVSS7.5AI score0.01699EPSS
Exploits0
Debian
Debian
•added 2019/03/17 7:18 p.m.•182 views

[SECURITY] [DSA 4408-1] liblivemedia security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4408-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 17, 2019 https://www.debian.org/security/faq -...

9.8CVSS10AI score0.03192EPSS
Exploits1
Debian
Debian
•added 2019/03/15 10:45 p.m.•417 views

[SECURITY] [DLA 1715-1] linux-4.9 security update

Package : linux-4.9 Version : 4.9.144-3.1deb8u1 CVE ID : CVE-2017-18249 CVE-2018-1128 CVE-2018-1129 CVE-2018-3639 CVE-2018-5391 CVE-2018-5848 CVE-2018-6554 CVE-2018-12896 CVE-2018-13053 CVE-2018-13096 CVE-2018-13097 CVE-2018-13100 CVE-2018-13406 CVE-2018-14610 CVE-2018-14611 CVE-2018-14612...

7.8CVSS7.3AI score0.60631EPSS
Exploits11
Debian
Debian
•added 2019/03/13 4:55 p.m.•94 views

[SECURITY] [DLA 1714-1] libsdl2 security update

Package : libsdl2 Version : 2.0.2+dfsg1-6+deb8u1 CVE ID : CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 Multiple buffer overflow security issues have been found in libsdl2, a library that...

8.8CVSS9.6AI score0.03299EPSS
Exploits11
Debian
Debian
•added 2019/03/13 4:52 p.m.•99 views

[SECURITY] [DLA 1713-1] libsdl1.2 security update

Package : libsdl1.2 Version : 1.2.15-10+deb8u1 CVE ID : CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 Multiple buffer overflow security issues have been found in libsdl1.2, a library that...

8.8CVSS9.6AI score0.03299EPSS
Exploits11
Debian
Debian
•added 2019/03/13 12:54 p.m.•71 views

[SECURITY] [DLA 1712-1] libsndfile security update

Package : libsndfile Version : 1.0.25-9.1+deb8u4 CVE ID : CVE-2019-3832 It was found that the fix for CVE-2018-19758 was incomplete. That has been addressed in this update. The description for CVE-2018-19758 follows: A heap-buffer-overflow vulnerability was discovered in libsndfile, the library f...

6.5CVSS5.8AI score0.01689EPSS
Exploits2
Debian
Debian
•added 2019/03/13 12:45 p.m.•73 views

[SECURITY] [DLA 1711-1] systemd security update

Package : systemd Version : 215-17+deb8u11 CVE ID : CVE-2019-3815 Debian Bug : 924060 A memory leak was discovered in the backport of fixes for CVE-2018-16864 in systemd-journald. Function dispatchmessagereal in journald-server.c does not free allocated memory to store the CMDLINE= entry. A local...

7.8CVSS6.5AI score0.00717EPSS
Exploits2
Debian
Debian
•added 2019/03/13 11:0 a.m.•53 views

[SECURITY] [DLA 1710-1] xmltooling security update

Package : xmltooling Version : 1.5.3-2+deb8u4 CVE ID : CVE-2019-9628 Debian Bug : 924346 Ross Geerlings discovered that the XMLTooling library didnt correctly handle exceptions on malformed XML declarations, which could result in denial of service against the application using XMLTooling. For...

7.5CVSS7.4AI score0.02052EPSS
Exploits0
Debian
Debian
•added 2019/03/13 8:40 a.m.•79 views

[SECURITY] [DLA 1709-1] waagent security update

Package : waagent Version : 2.2.18-3deb8u2 CVE ID : CVE-2019-0804 Francis McBratney discovered that the Windows Azure Linux Agent created swap files with world-readable permissions, resulting in information disclosure. For Debian 8 "Jessie", this problem has been fixed in version 2.2.18-3deb8u2. ...

6.5CVSS6.3AI score0.05255EPSS
Exploits0
Debian
Debian
•added 2019/03/12 9:26 p.m.•106 views

[SECURITY] [DSA 4407-1] xmltooling security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4407-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 12, 2019 https://www.debian.org/security/faq -...

7.5CVSS7.5AI score0.02052EPSS
Exploits0
Total number of security vulnerabilities14409