14355 matches found
[SECURITY] [DLA 295-1] conntrack security update
Package : conntrack Version : 1:0.9.14-2+deb6u1 CVE ID : CVE-2015-6496 Debian Bug : 796103 "jann" discovered that in certain configurations, if the relevant conntrack kernel module is not loaded, conntrackd will crash when handling DCCP, SCTP or ICMPv6 packets. In the version found in Debian 6.0...
[SECURITY] [DSA 3339-1] openjdk-6 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3339-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 19, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 294-1] wordpress security update
Package : wordpress Version : 3.6.1+dfsg-1deb6u7 CVE ID : CVE-2015-2213 CVE-2015-5622 CVE-2015-5731 CVE-2015-5732 CVE-2015-5734 Several vulnerabilities have been fixed in Wordpress, the popular blogging engine. CVE-2015-2213 SQL Injection allowed a remote attacker to compromise the site...
[SECURITY] [DSA 3338-1] python-django security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3338-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini August 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3337-1] gdk-pixbuf security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3337-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3325-2] apache2 regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3325-2 [email protected] https://www.debian.org/security/ Stefan Fritsch August 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3325-2] apache2 regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3325-2 [email protected] https://www.debian.org/security/ Stefan Fritsch August 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3336-1] nss security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3336-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 17, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3336-1] nss security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3336-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 17, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 292-1] libstruts1.2-java security update
Package : libstruts1.2-java Version : 1.2.9-4+deb6u2 CVE ID : CVE-2014-0899 The Validator in Apache Struts 1.1 and later contains a function to efficiently define rules for input validation across multiple pages during screen transitions. This function contains a vulnerability where input...
[SECURITY] [DLA 293-1] subversion security update
Package : subversion Version : 1.6.12dfsg-7+deb6u3 CVE ID : CVE-2015-3187 C. Michael Pilato, from CollabNet, reported an issue in the version control system Subversion. CVE-2015-3187 Subversion servers revealed some sensible paths hidden by path-based authorization. Remote authenticated users wer...
[SECURITY] [DLA 291-1] libidn security update
Package : libidn Version : 1.15-2+deb6u2 Adam Sampson found a vulnerability in GNU Libidn, library that implements the IETF IDN specifications. Libdin incorrectly handled invalid UTF-8 input, causing it to bad free. This issue was introduced by the fix for CVE-2015-2059. For Debian 6 “Squeeze”,...
[SECURITY] [DSA 3335-1] request-tracker4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3335-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 13, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3335-1] request-tracker4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3335-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 13, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3334-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3334-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 12, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3334-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3334-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 12, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3333-1] iceweasel security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3333-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 12, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3332-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3332-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst August 11, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 290-2] opensaml2 security update
Package : opensaml2 Version : 2.3-2+squeeze2 CVE ID : CVE-2015-0851 It was discovered that opensaml2, a Security Assertion Markup Language library, needed to be rebuilt against a fixed version of the xmltooling package due to its use of macros vulnerable to CVE-2015-0851 as fixed in the DSA 3321-...
[SECURITY] [DSA 3331-1] subversion security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3331-1 [email protected] https://www.debian.org/security/ Stefan Fritsch August 10, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3331-1] subversion security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3331-1 [email protected] https://www.debian.org/security/ Stefan Fritsch August 10, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 290-1] xmltooling security update
Package : xmltooling Version : 1.3.3-2+deb6u1 CVE ID : CVE-2015-0851 Debian Bug : 793855 Shibboleth SP software crashes on well-formed but invalid XML Another upload for opensaml2 is needed to really solve this issue. This will be done shortly...
[SECURITY] [DSA 3321-2] opensaml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3321-2 [email protected] https://www.debian.org/security/ Alessandro Ghedini August 08, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3330-1] activemq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3330-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 07, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 289-1] remind security update
Package : remind Version : 03.01.05-2+deb6u1 CVE ID : CVE-2015-5957 Alexander Keller discovered a buffer overflow issue in remind, a tool for sophisticatedly reminding you of upcoming events. If running Debian squeeze LTS, we recommend upgrading remind to the latest version provided. mike gabriel...
[SECURITY] [DLA 288-1] openssh security update
Package : openssh Version : 1:5.5p1-6+squeeze6 CVE ID : CVE-2015-5352 CVE-2015-5600 Debian Bug : 790798 793616 A recent upload of OpenSSH to Debian squeeze-lts fixes two security issues. CVE-2015-5352 It was reported that when forwarding X11 connections with ForwardX11Trusted=no, connections made...
[SECURITY] [DSA 3329-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3329-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 07, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3329-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3329-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 07, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 287-1] ia32-libs security update
Package : ia32-libs, ia32-libs-gtk Version : 20150804 The ia32-libs and ia32-libs-gtk packages contain 32 bit versions of various libraries for use on 64 bit systems. This update rolls in all security fixes made to these libraries since the previous update of ia32-libs and ia32-libs-gtk in Squeez...
[SECURITY] [DSA 3328-2] wordpress regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3328-2 [email protected] https://www.debian.org/security/ Thijs Kinkhorst August 04, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3328-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3328-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst August 04, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3327-1] squid3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3327-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 03, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3327-1] squid3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3327-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 03, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3326-1] ghostscript security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3326-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 02, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3326-1] ghostscript security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3326-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 02, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3325-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3325-1 [email protected] https://www.debian.org/security/ Stefan Fritsch August 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3325-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3325-1 [email protected] https://www.debian.org/security/ Stefan Fritsch August 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3324-1] icedove security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3324-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini August 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3323-1] icu security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3323-1 [email protected] https://www.debian.org/security/ Laszlo Boszormenyi August 01, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3322-1] ruby-rack security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3322-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 31, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3322-1] ruby-rack security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3322-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 31, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3321-1] xmltooling security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3321-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 30, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3320-1] openafs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3320-1 [email protected] https://www.debian.org/security/ Sebastien Delafond July 30, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3320-1] openafs security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3320-1 [email protected] https://www.debian.org/security/ Sebastien Delafond July 30, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 286-1] squid3 security update
Package : squid3 Version : 3.1.6-1.2+squeeze5 CVE ID : CVE-2015-5400 Debian Bug : 793128 Alex Rousskov discovered that Squid configured with cachepeer and operating on explicit proxy traffic does not correctly handle CONNECT method peer responses. In some configurations, it allows remote clients ...
[SECURITY] [DLA 284-1] apache2 security update
Package : apache2 Version : 2.2.16-6+squeeze15 CVE ID : CVE-2015-3183 A vulnerability has been found in the Apache HTTP Server. CVE-2015-3183 Apache HTTP Server did not properly parse chunk headers, which allowed remote attackers to conduct HTTP request smuggling via a crafted request. This flaw...
[SECURITY] [DLA 285-1] bind9 security update
Package : bind9 Version : 1:9.7.3.dfsg-1squeeze16 CVE ID : CVE-2015-5477 Jonathan Foote discovered that the BIND DNS server does not properly handle TKEY queries. A remote attacker can take advantage of this flaw to mount a denial of service via a specially crafted query triggering an assertion...
[SECURITY] [DSA 3319-1] bind9 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3319-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 28, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3319-1] bind9 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3319-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 28, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DLA 283-1] icu security update
Package : icu Version : 4.4.1-8+squeeze4 CVE ID : CVE-2015-4760 A vulnerability has been found in the International Components for Unicode ICU library: CVE-2015-4760 It was discovered that ICU Layout Engine was missing multiple boundary checks. These could lead to buffer overflows and memory...