14337 matches found
[SECURITY] [DSA 4532-1] spip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4532-1] spip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4532-1 [email protected] https://www.debian.org/security/ Sebastien Delafond September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4531-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4531-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4531-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4531-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 25, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1931-1] libgcrypt20 security update
Package : libgcrypt20 Version : 1.6.3-2+deb8u6 CVE ID : CVE-2019-13627 Debian Bug : 938938 It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. For Debian 8 "Jessie", this issue has been fixed in libgcrypt20 version 1.6.3-2+deb8u6. We recommend that you...
[SECURITY] [DLA 1928-1] php5 security update
Package : php5 Version : 5.6.40+dfsg-0+deb8u6 Debian Bug : 805222 An update has been made to php5, a server-side, HTML-embedded scripting language. Specficially, as reported in 805222, the ability to build extensions in certain older versions of PHP within Debian has been hindered by an upstream...
[SECURITY] [DSA 4530-1] expat security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4530-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 22, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4530-1] expat security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4530-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 22, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1929-1] php-pecl-http security update
Package : php-pecl-http Version : 2.0.4-1+deb8u1 CVE ID : CVE-2016-7398 A vulnerability has been discovered in php-pecl-http, the peclhttp module for PHP 5 Extended HTTP Support. A type confusion vulnerability in the mergeparam function allows attackers to crash PHP and possibly execute arbitrary...
[SECURITY] [DSA 4529-1] php7.0 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4529-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 20, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1927-1] qemu security update
Package : qemu Version : 1:2.1+dfsg-12+deb8u12 CVE ID : CVE-2016-5126 CVE-2016-5403 CVE-2017-9375 CVE-2019-12068 CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 CVE-2019-15890 Debian Bug : 826151 832619 864219 929353 931351 933741 933742 939868 939869 Several vulnerabilities were found in QEMU, a fa...
[SECURITY] [DSA 4528-1] bird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4528-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 19, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4527-1] php7.3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4527-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 19, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4526-1] opendmarc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4526-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 19, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4526-1] opendmarc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4526-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 19, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4525-1] ibus security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4525-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 18, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4525-1] ibus security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4525-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 18, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1926-1] thunderbird security update
Package : thunderbird Version : 1:60.9.0-1deb8u1 CVE ID : CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code, cross-site...
[SECURITY] [DLA 1925-1] python2.7 security update
Package : python2.7 Version : 2.7.9-2+deb8u5 CVE ID : CVE-2019-16056 A vulnerability was discovered in Python, an interactive high-level object-oriented language. CVE-2019-16056 The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email...
[SECURITY] [DLA 1924-1] python3.4 security update
Package : python3.4 Version : 3.4.2-1+deb8u7 CVE ID : CVE-2019-16056 A vulnerability was discovered in Python, an interactive high-level object-oriented language. CVE-2019-16056 The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email...
[SECURITY] [DSA 4524-1] dino-im security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4524-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 16, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1922-1] wpa security update
Package : wpa Version : 2.3-1+deb8u9 CVE ID : CVE-2019-16275 Debian Bug : 940080 hostapd and wpasupplicant when controlling AP mode did not perform sufficient source address validation for some received Management frames and this could result in ending up sending a frame that caused associated...
[SECURITY] [DLA 1923-1] ansible security update
Package : ansible Version : 1.7.2+dfsg-2+deb8u2 CVE ID : CVE-2015-3908 CVE-2015-6240 CVE-2018-10875 CVE-2019-10156 Debian Bug : 930065 Several vulnerabilities were discovered in Ansible, a configuration management, deployment, and task execution system. CVE-2015-3908 A potential man-in-the-middle...
[SECURITY] [DSA 4523-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4523-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 15, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1919-2] linux-4.9 security update
Package : linux-4.9 Version : 4.9.189-3deb8u1 CVE ID : CVE-2019-0136 CVE-2019-9506 CVE-2019-11487 CVE-2019-15211 CVE-2019-15212 CVE-2019-15215 CVE-2019-15216 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15807 CVE-2019-15924...
[SECURITY] [DSA 4522-1] faad2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4522-1 [email protected] https://www.debian.org/security/ Hugo Lefeuvre September 15, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1919-1] linux-4.9 security update
Package : linux-4.9 Version : 4.9.189-3deb8u1 CVE ID : CVE-2019-0136 CVE-2019-9506 CVE-2019-11487 CVE-2019-15211 CVE-2019-15212 CVE-2019-15215 CVE-2019-15216 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15807 CVE-2019-15924...
[SECURITY] [DLA 1921-1] dnsmasq security update
Package : dnsmasq Version : 2.72-3+deb8u5 CVE ID : CVE-2019-14513 Samuel R Lovejoy discovered a security vulnerability in dnsmasq. Carefully crafted packets by DNS servers might result in out of bounds read operations, potentially leading to a crash and denial of service. For Debian 8 "Jessie",...
[SECURITY] [DLA 1917-1] curl security update
Package : curl Version : 7.38.0-4+deb8u16 CVE ID : CVE-2019-5482 Debian Bug : 940010 It was discovered that there was a heap buffer overflow vulnerability in curl, the library and command-line tool for transferring data over the internet. For Debian 8 "Jessie", this issue has been fixed in curl...
[SECURITY] [DLA 1920-1] golang-go.crypto security update
Package : golang-go.crypto Version : 0.0hg190-1+deb8u2 CVE ID : CVE-2019-11841 This package ignored the value of the Hash header, which allows an attacker to spoof it. An attacker can not only embed arbitrary Armor Headers, but also prepend arbitrary text to cleartext messages without invalidatin...
[SECURITY] [DLA 1918-1] libonig security update
Package : libonig Version : 5.9.5-3.2+deb8u3 CVE ID : CVE-2019-16163 Debian Bug : 939988 The Oniguruma regular expressions library, notably used in PHP mbstring, is vulnerable to stack exhaustion. A crafted regular expression can crash the process. For Debian 8 "Jessie", this problem has been fix...
[SECURITY] [DLA 1916-1] opensc security update
Package : opensc Version : 0.16.0-3+deb8u1 CVE ID : CVE-2018-16391 CVE-2018-16392 CVE-2018-16393 CVE-2018-16418 CVE-2018-16419 CVE-2018-16420 CVE-2018-16421 CVE-2018-16422 CVE-2018-16423 CVE-2018-16424 CVE-2018-16425 CVE-2018-16426 CVE-2018-16427 CVE-2019-15945 CVE-2019-15946 Debian Bug : 909444...
[SECURITY] [DSA 4521-1] docker.io security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4521-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 09, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4520-1] trafficserver security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4520-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 09, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1914-1] icedtea-web security update
Package : icedtea-web Version : 1.5.3-1+deb8u1 CVE ID : CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 Debian Bug : 934319 Several security vulnerabilities were found in icedtea-web, an implementation of the Java Network Launching Protocol JNLP. CVE-2019-10181 It was found that in icedtea-web...
[SECURITY] [DLA 1915-1] ghostscript security update
Package : ghostscript Version : 9.26adfsg-0+deb8u5 CVE ID : CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 It was discovered that various procedures in Ghostscript, the GPL PostScript/PDF interpreter, do not properly restrict privileged calls, which could result in bypass of file...
[SECURITY] [DSA 4519-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4519-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 08, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4518-1] ghostscript security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4518-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 07, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4518-1] ghostscript security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4518-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 07, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1913-1] memcached security update
Package : memcached Version : 1.4.21-1.1+deb8u3 CVE ID : CVE-2019-15026 Debian Bug : 939337 It was discovered that there was a stack-based buffer over-read in memcached, the in-memory object caching system. For Debian 8 "Jessie", this issue has been fixed in memcached version 1.4.21-1.1+deb8u3. W...
[SECURITY] [DLA 1912-1] expat security update
Package : expat Version : 2.1.0-6+deb8u6 CVE IDs : CVE-2019-15903 Debian Bug : 939394 It was discovered that there was a heap-based buffer overread vulnerability in expat, an XML parsing library. A specially-crafted XML input could fool the parser into changing from DTD parsing to document parsin...
[SECURITY] [DLA 1911-1] exim4 security update
Package : exim4 Version : 4.84.2-2+deb8u6 CVE ID : CVE-2019-15846 "Zerons" and Qualys discovered that a buffer overflow triggerable in the TLS negotiation code of the Exim mail transport agent could result in the execution of arbitrary code with root privileges. For Debian 8 "Jessie", this proble...
[SECURITY] [DSA 4517-1] exim4 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4517-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 06, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1910-1] firefox-esr security update
Package : firefox-esr Version : 60.9.0esr-1deb8u1 CVE ID : CVE-2019-9812 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of...
[SECURITY] [DSA 4516-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4516-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 05, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4515-1] webkit2gtk security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4515-1 [email protected] https://www.debian.org/security/ Alberto Garcia September 04, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1909-1] freetype security update
Package : freetype Version : 2.5.2-3+deb8u4 CVE ID : CVE-2015-9381 CVE-2015-9382 CVE-2015-9383 Several newly-referenced issues have been fixed in the FreeType 2 font engine. CVE-2015-9381 heap-based buffer over-read in T1GetPrivateDict in type1/t1parse.c CVE-2015-9382 buffer over-read in...
[SECURITY] [DSA 4514-1] varnish security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4514-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 04, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4513-1] samba security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4513-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 03, 2019 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4513-1] samba security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4513-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 03, 2019 https://www.debian.org/security/faq -...