14352 matches found
[SECURITY] [DSA 3487-1] libssh2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3487-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 23, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3487-1] libssh2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3487-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 23, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 426-1] libssh2 security update
Package : libssh2 Version : 1.2.6-1+deb6u2 CVE ID : CVE-2016-0787 Andreas Schneider reported that libssh2, an SSH2 protocol implementation used by many applications, did not generate sufficiently long Diffie-Hellman secrets. This vulnerability could be exploited by an...
[SECURITY] [DLA 425-1] libssh security update
Package : libssh Version : 0.4.5-3+squeeze3 CVE ID : CVE-2016-0739 Aris Adamantiadis of the libssh team discovered that libssh, an SSH2 protocol implementation used by many applications, did not generate sufficiently long Diffie-Hellman secrets. This vulnerability could be...
[SECURITY] [DLA 424-1] didiwiki security update
Package : didiwiki Version : 0.5-9+deb6u1 CVE ID : CVE-2013-7448 Debian Bug : 815111 Alexander Izmailov discovered that didiwiki, a wiki implementation, failed to correctly validate user-supplied input, thus allowing a malicious user to access any part of the filesystem...
[SECURITY] [DLA 423-1] krb5 security update
Package : krb5 Version : 1.8.3+dfsg-4squeeze11 CVE ID : CVE-2015-8629 CVE-2015-8631 Debian Bug : 813126 813296 CVE-2015-8629 It was discovered that an authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Informati...
[SECURITY] [DSA 3486-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3486-1 [email protected] https://www.debian.org/security/ Michael Gilbert February 21, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3486-1] chromium-browser security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3486-1 [email protected] https://www.debian.org/security/ Michael Gilbert February 21, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 422-1] python-imaging security update
Package : python-imaging Version : 1.1.7-2+deb6u2 CVE ID : CVE-2016-0775 Debian Bug : 813909 Two buffer overflows were discovered in python-imaging, a Python library for loading and manipulating image files, which may lead to the execution of arbitrary code. CVE-2016-0775 Buffer overflow in...
[SECURITY] [DSA 3485-1] didiwiki security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3485-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 20, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3485-1] didiwiki security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3485-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 20, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 421-1] openssl security update
Package : openssl Version : 0.9.8o-4squeeze23 CVE ID : CVE-2015-3197 CVE-2015-3197: A malicious client can negotiate SSLv2 ciphers that have been disabled on the server and complete SSLv2 handshakes even if all SSLv2 ciphers have been disabled, provided that the SSLv2 protocol was not also disabl...
[SECURITY] [DSA 3484-1] xdelta3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3484-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 19, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3484-1] xdelta3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3484-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 19, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3483-1] cpio security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3483-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 19, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3483-1] cpio security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3483-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 19, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 420-1] libmatroska security update
Package : libmatroska Version : 0.8.1-1.1+deb6u1 CVE ID : CVE-2014-9765 It was discovered that there was a invalid memory address issue in libmatroska, an extensible open standard audio/video container format. When reading a block group or a simple block that uses EBML lacing the frame sizes...
[SECURITY] [DSA 3482-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3482-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 17, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3482-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3482-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 17, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 419-1] gtk+2.0 security update
Package : gtk+2.0 Version : 2.20.1-2+deb6u1 CVE ID : CVE-2013-7447 Debian Bug : 799275 Gtk+2.0, a graphical user interface library, was susceptible to an integer overflow in its gdkcairosetsourcepixbuf function when allocating a large block of memory. For Debian 6 "Squeeze", this issue has been...
[SECURITY] [DLA 418-1] wordpress security update
Package : wordpress Version : 3.6.1+dfsg-1deb6u9 CVE ID : CVE-2016-2221 CVE-2016-2222 Debian Bug : 813697 WordPress versions 4.4.1 and earlier are affected by two security issues: a possible Side Request Forgery Vulnerability for certain local URIs, reported by Ronni Skansing; and an open...
[SECURITY] [DLA 416-1] eglibc security update
Package : eglibc Version : 2.11.3-4+deb6u11 CVE ID : CVE-2015-7547 Several vulnerabilities have been fixed in the Debian GNU C Library, eglibc: CVE-2015-7547 The Google Security Team and Red Hat discovered that the glibc host name resolver function, getaddrinfo, when processing AFUNSPEC queries f...
[SECURITY] [DSA 3481-1] glibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3481-1 [email protected] https://www.debian.org/security/ Florian Weimer February 16, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3481-1] glibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3481-1 [email protected] https://www.debian.org/security/ Florian Weimer February 16, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3480-1] eglibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3480-1 [email protected] https://www.debian.org/security/ Florian Weimer February 16, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3480-1] eglibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3480-1 [email protected] https://www.debian.org/security/ Florian Weimer February 16, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 417-1] xdelta3 security update
Package : xdelta3 Version : 0y.dfsg-1+deb6u1 CVE ID : CVE-2014-9765 Debian Bug : 814067 It was discovered that there was a buffer overflow in in xdelta3, a diff utility which works with binary files. This vulnerability allowed arbitrary code execution from input files. For Debian 6 Squeeze, this...
[SECURITY] [DSA 3479-1] graphite2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3479-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 15, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3478-1] libgcrypt11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3478-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 15, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3478-1] libgcrypt11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3478-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 15, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 415-1] cpio security update
Package : cpio Version : 2.11-4+deb6u2 CVE ID : CVE-2016-2037 Debian Bug : 812401 An out-of-bounds write was discovered in the parsing of cpio files. For Debian 6 "Squeeze", this issue has been fixed in cpio version 2.11-4+deb6u2. We recommend you to upgrade your cpio package. Learn more about th...
[SECURITY] [DSA 3477-1] iceweasel security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3477-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 14, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3476-1] postgresql-9.4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3476-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 13, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3476-1] postgresql-9.4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3476-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 13, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3475-1] postgresql-9.1 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3475-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 13, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3475-1] postgresql-9.1 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3475-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 13, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 414-1] chrony security update
Package : chrony Version : 1.24-3+squeeze3 CVE ID : CVE-2016-1567 Debian Bug : 812923 chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trust...
[SECURITY] [DSA 3474-1] libgcrypt20 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3474-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 12, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3474-1] libgcrypt20 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3474-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 12, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 411-2] eglibc regression update
Package : eglibc Version : 2.11.3-4+deb6u10 CVE ID : CVE-2014-9761 Debian Bug : 814078 The fix for CVE-2014-9761 in Squeeze wrongly backported the upstream patch. New symbols were not declared as private and the ABI changed. This made some programs and services crash after the upgrade, and needed...
[SECURITY] [DSA 3473-1] nginx security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3473-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 11, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3473-1] nginx security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3473-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 11, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DLA 413-1] gajim security update
Package : gajim Version : 0.13.4-3+squeeze4 CVE ID : CVE-2015-8688 Debian Bug : 809900 Affected versions of gajim allow remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza. This has been fixed in squeeze-lts by version 0.13.4-3+squeeze4. - -- Brian May...
[SECURITY] [DSA 3472-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3472-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3472-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3472-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3471-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3471-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3471-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3471-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3470-1] qemu-kvm security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3470-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3470-1] qemu-kvm security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3470-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3469-1] qemu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3469-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 08, 2016 https://www.debian.org/security/faq -...