Debian - Page 178 of Debian Vulnerabilities List

Debian•added 2015/04/12 3:41 p.m.•25 views

[SECURITY] [DLA 193-1] chrony security update

Package : chrony Version : 1.24-3+squeeze2 CVE ID : CVE-2015-1821 CVE-2015-1822 CVE-2015-1853 Debian Bug : 782160 CVE-2015-1853: Protect authenticated symmetric NTP associations against DoS attacks. An attacker knowing that NTP hosts A and B are peering with each other symmetric association can...

6.5CVSS7.2AI score0.03439EPSS

Debian•added 2015/04/12 3:34 p.m.•28 views

[SECURITY] [DSA 3222-1] chrony security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3222-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 12, 2015 http://www.debian.org/security/faq -...

6.5CVSS7.5AI score0.03439EPSS

Debian•added 2015/04/12 3:26 p.m.•17 views

[SECURITY] [DLA 194-1] das-watchdog security update

Package : das-watchdog Version : 0.9.0-2+deb6u1 CVE ID : CVE-2015-2831 Debian Bug : 781806 Adam Sampson discovered a buffer overflow in the handling of the XAUTHORITY environment variable in das-watchdog, a watchdog daemon to ensure a realtime process wont hang the machine. A local user can explo...

7.2CVSS6.9AI score0.0048EPSS

Debian•added 2015/04/12 3:16 p.m.•18 views

[SECURITY] [DSA 3221-1] das-watchdog security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3221-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 12, 2015 http://www.debian.org/security/faq -...

7.2CVSS1.7AI score0.0048EPSS

Debian•added 2015/04/12 3:16 p.m.•20 views

[SECURITY] [DSA 3221-1] das-watchdog security update

7.2CVSS6.4AI score0.0048EPSS

Debian•added 2015/04/11 9:19 p.m.•30 views

[SECURITY] [DSA 3220-1] libtasn1-3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3220-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 11, 2015 http://www.debian.org/security/faq -...

10CVSS2.9AI score0.07801EPSS

Debian•added 2015/04/11 9:19 p.m.•30 views

[SECURITY] [DSA 3220-1] libtasn1-3 security update

10CVSS6.3AI score0.07801EPSS

Debian•added 2015/04/11 10:7 a.m.•25 views

[SECURITY] [DSA 3219-1] libdbd-firebird-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3219-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 11, 2015 http://www.debian.org/security/faq -...

10CVSS6.4AI score0.04246EPSS

Debian•added 2015/04/10 9:52 p.m.•53 views

[SECURITY] [DLA 192-1] ntp security update

Package : ntp Version : 1:4.2.6.p2+dfsg-1+deb6u3 CVE ID : CVE-2015-1798 CVE-2015-1799 Debian Bug : 782095 Brief introduction CVE-2015-1798 When ntpd is configured to use a symmetric key to authenticate a remote NTP server/peer, it checks if the NTP message authentication code MAC in received...

4.3CVSS6.8AI score0.02219EPSS

Debian•added 2015/04/10 5:51 p.m.•18 views

[SECURITY] [DSA 3218-1] wesnoth-1.10 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3218-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 10, 2015 http://www.debian.org/security/faq -...

5CVSS5.7AI score0.02322EPSS

Debian•added 2015/04/09 7:14 p.m.•31 views

[SECURITY] [DSA 3217-1] dpkg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3217-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 09, 2015 http://www.debian.org/security/faq -...

4.3CVSS2.1AI score0.0184EPSS

Debian•added 2015/04/09 7:14 p.m.•26 views

[SECURITY] [DSA 3217-1] dpkg security update

4.3CVSS5.6AI score0.0184EPSS

Debian•added 2015/04/09 11:4 a.m.•25 views

[SECURITY] [DLA 191-1] checkpw security update

Package : checkpw Version : 1.02-1+deb6u1 CVE ID : CVE-2015-0885 Hiroya Ito of GMO Pepabo, Inc. reported that checkpw, a password authentication program, has a flaw in processing account names which contain double dashes. A remote attacker can use this flaw to cause a denial of service infinite...

5CVSS6.2AI score0.02427EPSS

Debian•added 2015/04/09 10:44 a.m.•33 views

[SECURITY] [DLA 190-1] libgcrypt11 security update

Package : libgcrypt11 Version : 1.4.5-2+squeeze3 CVE ID : CVE-2014-3591 CVE-2015-0837 Multiple vulnerabilities were discovered in libgcrypt: CVE-2014-3591 The Elgamal decryption routine was susceptible to a side-channel attack discovered by researchers of Tel Aviv University. Ciphertext blinding...

5.9CVSS6.2AI score0.01952EPSS

Debian•added 2015/04/08 5:24 p.m.•42 views

[SECURITY] [DLA 189-1] libgd2 security update

Package : libgd2 Version : 2.0.36rc1dfsg-5+deb6u1 CVE ID : CVE-2014-2497 CVE-2014-9709 Debian Bug : 744719 Multiple vulnerabilities were discovered in libgd2, a graphics library: CVE-2014-2497 The gdImageCreateFromXpm function would try to dereference a NULL pointer when reading an XPM file with ...

5CVSS8.4AI score0.22319EPSS

Debian•added 2015/04/08 4:2 p.m.•20 views

[SECURITY] [DLA 188-1] arj security update

Package : arj Version : 3.10.22-9+deb6u1 CVE ID : CVE-2015-0556 CVE-2015-0557 CVE-2015-2782 Debian Bug : 774015 774434 774435 Multiple vulnerabilities have been discovered in arj, an open source version of the arj archiver. The Common Vulnerabilities and Exposures project identifies the following...

7.5CVSS7.6AI score0.05889EPSS

Debian•added 2015/04/07 6:58 p.m.•38 views

[SECURITY] [DSA 3057-2] libxml2 regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-3057-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 07, 2015 http://www.debian.org/security/faq -...

5CVSS1.9AI score0.04021EPSS

Debian•added 2015/04/07 6:58 p.m.•42 views

[SECURITY] [DSA 3057-2] libxml2 regression update

5CVSS6.8AI score0.04021EPSS

Debian•added 2015/04/06 10:7 p.m.•28 views

[SECURITY] [DLA 187-1] tor security update

Package : tor Version : 0.2.4.27-1deb6u1 CVE ID : CVE-2015-2928 CVE-2015-2929 Several hidden service related denial-of-service issues have been discovered in Tor, a connection-based low-latency anonymous communication system. o "disgleirio" discovered that a malicious client could trigger an...

7.5CVSS7.4AI score0.01384EPSS

Debian•added 2015/04/06 8:56 p.m.•24 views

[SECURITY] [DSA 3216-1] tor security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3216-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 06, 2015 http://www.debian.org/security/faq -...

7.5CVSS8AI score0.01384EPSS

Debian•added 2015/04/06 6:33 p.m.•32 views

[SECURITY] [DSA 3215-1] libgd2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3215-1 [email protected] http://www.debian.org/security/ Alessandro Ghedini April 06, 2015 http://www.debian.org/security/faq -...

5CVSS2.7AI score0.22319EPSS

Debian•added 2015/04/06 6:33 p.m.•38 views

[SECURITY] [DSA 3215-1] libgd2 security update

5CVSS9.1AI score0.22319EPSS

Debian•added 2015/04/06 5:13 p.m.•23 views

[SECURITY] [DLA 186-1] mailman security update

Package : mailman Version : 1:2.1.13-6 CVE ID : CVE-2015-2775 Debian Bug : 781626 A path traversal vulnerability was discovered in Mailman, the mailing list manager. Installations using a transport script such as postfix-to-mailman.py to interface with their MTA instead of static aliases were...

7.6CVSS6.1AI score0.07964EPSS

Debian•added 2015/04/06 5:13 p.m.•20 views

[SECURITY] [DSA 3214-1] mailman security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3214-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 06, 2015 http://www.debian.org/security/faq -...

7.6CVSS5.5AI score0.07964EPSS

Debian•added 2015/04/06 3:45 p.m.•33 views

[SECURITY] [DSA 3213-1] arj security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3213-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 06, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.5AI score0.05889EPSS

Debian•added 2015/04/06 3:45 p.m.•31 views

[SECURITY] [DSA 3213-1] arj security update

7.5CVSS7.4AI score0.05889EPSS

Debian•added 2015/04/02 8:35 p.m.•27 views

[SECURITY] [DSA 3212-1] icedove security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3212-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez April 02, 2015 http://www.debian.org/security/faq -...

7.5CVSS7AI score0.67135EPSS

Exploits3

Debian•added 2015/04/01 4:10 p.m.•32 views

[SECURITY] [DSA 3211-1] iceweasel security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3211-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 01, 2015 http://www.debian.org/security/faq -...

7.5CVSS3AI score0.67135EPSS

Exploits3

Debian•added 2015/04/01 4:10 p.m.•35 views

[SECURITY] [DSA 3211-1] iceweasel security update

7.5CVSS7.2AI score0.67135EPSS

Exploits3

Debian•added 2015/03/31 11:30 p.m.•31 views

[SECURITY] [DLA 185-1] freetype security update

Package : freetype Version : 2.4.2-2.1+squeeze5 CVE ID : CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9660 CVE-2014-9661 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675...

7.5CVSS7AI score0.0571EPSS

Exploits17

Debian•added 2015/03/31 5:31 p.m.•35 views

[SECURITY] [DSA 3210-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3210-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 31, 2015 http://www.debian.org/security/faq -...

5CVSS6.1AI score0.04633EPSS

Debian•added 2015/03/30 9:4 p.m.•30 views

[SECURITY] [DSA 3209-1] openldap security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3209-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 30, 2015 http://www.debian.org/security/faq -...

5CVSS9.2AI score0.11091EPSS

Debian•added 2015/03/29 5:31 p.m.•22 views

[SECURITY] [DSA 3208-1] freexl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3208-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff March 29, 2015 http://www.debian.org/security/faq -...

6.8CVSS7AI score0.03364EPSS

Debian•added 2015/03/28 6:47 p.m.•65 views

[SECURITY] [DSA 3198-2] php5 regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-3198-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.1AI score0.27869EPSS

Debian•added 2015/03/28 6:47 p.m.•91 views

[SECURITY] [DSA 3198-2] php5 regression update

7.5CVSS8.9AI score0.27869EPSS

Debian•added 2015/03/28 6:38 p.m.•27 views

[SECURITY] [DLA 184-1] binutils security update

Package : binutils Version : 2.20.1-16+deb6u1 CVE ID : CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 Multiple security issues have been found in binutils, a toolbox for binary file manipulation. These vulnerabilities include multip...

7.5CVSS9.8AI score0.07486EPSS

Exploits7

Debian•added 2015/03/28 5:44 p.m.•25 views

[SECURITY] [DLA 183-1] libxfont security update

Package : libxfont Version : 1:1.4.1-5+deb6u1 CVE ID : CVE-2015-1802 CVE-2015-1803 CVE-2015-1804 Ilja van Sprundel, Alan Coopersmith and William Robinet discovered multiple issues in libxfonts code to process BDF fonts, which might result in privilege escalation...

8.5CVSS4.2AI score0.04958EPSS

Debian•added 2015/03/28 1:22 p.m.•21 views

[SECURITY] [DSA 3206-1] dulwich security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3206-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...

7.5CVSS1.6AI score0.05032EPSS

Debian•added 2015/03/28 1:22 p.m.•27 views

[SECURITY] [DSA 3206-1] dulwich security update

7.5CVSS7.3AI score0.05032EPSS

Debian•added 2015/03/28 1:16 p.m.•16 views

[SECURITY] [DSA 3207-1] shibboleth-sp2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3207-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 28, 2015 http://www.debian.org/security/faq -...

4CVSS5.7AI score0.0195EPSS

Debian•added 2015/03/27 9:16 p.m.•34 views

[SECURITY] [DLA 182-1] batik security update

Package : batik Version : 1.7-6+deb6u1 CVE ID : CVE-2015-0250 Debian Bug : 780897 Nicolas Gregoire and Kevin Schaller discovered that Batik, a toolkit for processing SVG images, would load XML external entities by default. If a user or automated system were tricked into opening a specially crafte...

6.4CVSS8.8AI score0.16677EPSS

Debian•added 2015/03/27 9:14 p.m.•28 views

[SECURITY] [DLA 181-1] xerces-c security update

Package : xerces-c Version : 3.1.1-1+deb6u1 CVE ID : CVE-2015-0252 Debian Bug : 780827 Anton Rager and Jonathan Brossard from the Salesforce.com Product Security Team and Ben Laurie of Google discovered a denial of service vulnerability in xerces-c, a validating XML parser library for C++. The...

5CVSS9.3AI score0.39916EPSS

Debian•added 2015/03/27 10:59 a.m.•37 views

[SECURITY] [DSA 3205-1] batik security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3205-1 [email protected] http://www.debian.org/security/ Sebastien Delafond March 27, 2015 http://www.debian.org/security/faq -...

6.4CVSS0.9AI score0.16677EPSS

Debian•added 2015/03/27 10:59 a.m.•29 views

[SECURITY] [DSA 3205-1] batik security update

6.4CVSS8.7AI score0.16677EPSS

Debian•added 2015/03/25 7:50 a.m.•27 views

[SECURITY] [DLA 180-1] gnutls26 security update

Package : gnutls26 Version : 2.8.6-1+squeeze5 CVE ID : CVE-2014-8155 CVE-2015-0282 CVE-2015-0294 Multiple vulnerabilities have been discovered in GnuTLS, a library implementing the TLS and SSL protocols. The Common Vulnerabilities and Exposures project identifies the following problems:...

7.5CVSS7.1AI score0.01586EPSS

Debian•added 2015/03/24 9:32 p.m.•48 views

[SECURITY] [DSA 3197-2] openssl regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-3197-2 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 24, 2015 http://www.debian.org/security/faq -...

7.5CVSS1.5AI score0.44741EPSS

Debian•added 2015/03/24 9:32 p.m.•45 views

[SECURITY] [DSA 3197-2] openssl regression update

7.5CVSS8.2AI score0.44741EPSS

Debian•added 2015/03/24 7:30 p.m.•45 views

[SECURITY] [DSA 3204-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3204-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 24, 2015 http://www.debian.org/security/faq -...

4.3CVSS1.3AI score0.05026EPSS

Debian•added 2015/03/24 7:30 p.m.•38 views

[SECURITY] [DSA 3204-1] python-django security update

4.3CVSS5.7AI score0.05026EPSS