Beitrag teilen
Debian Security
- Schriftgröße Schriftgröße verkleinern
Schrift vergrößern
Donnerstag, 17 Dezember 2015 22:03
Warning: Invalid argument supplied for foreach() in /var/www/vhosts/webfactories.de/httpdocs/modules/mod_jw_srfr/helper.php on line 42
-
Debian Security Advisory: GIMP Denial of Service Vulnerabilities DSA-6014-1
Stay Vigilant with Timely Linux Security Advisories Sep 28, 2025 | 14:55 pm
Read more...
Several vulnerabilities were discovered in GIMP, the GNU Image Manipulation Program, which could result in denial of service or potentially the execution of arbitrary code if malformed Farbfeld, Wireless Bitmap, DICOM or Apple Icon images are opened. -
Debian: Critical Symlink Bypass Vulnerability in node-tar-fs DSA-6013-1
Stay Vigilant with Timely Linux Security Advisories Sep 28, 2025 | 14:07 pm
Read more...
It was discovered that the symlink validation in node-tar-fs, a Node.js module that provides filesystem-like access to tar files, could be bypassed. -
Debian: firefox-esr Important Connection Errors Fix DSA-6003-2
Stay Vigilant with Timely Linux Security Advisories Sep 28, 2025 | 11:04 am
Read more...
Firefox 140.3.1 has been released, which fixes connection errors with some sites; if HTTP/3 connections failed, the fallback is now handled more gracefully. -
Debian: nncp Important Path Traversal Threat DSA-6012-1 CVE-2025-60020
Stay Vigilant with Timely Linux Security Advisories Sep 26, 2025 | 21:20 pm
Read more...
Eugene Medvedev discovered that nncp, a package facilitating secure store-and-forward file and mail exchange, was susceptible to path traversal with the freq and file commands. -
Debian: DSA-6011-1 ThunderBird Critical Exec Code Threats CVE-2025-10527
Stay Vigilant with Timely Linux Security Advisories Sep 25, 2025 | 18:52 pm
Read more...
Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code. Debian follows the Thunderbird upstream releases. Support for the -
Debian: Chromium Important Security Issues DSA-6010-1 CVE-2025-10890-10892
Stay Vigilant with Timely Linux Security Advisories Sep 25, 2025 | 06:36 am
Read more...
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. -
Debian: libxslt Critical Regression Disordered IDs DSA-5979-2
Stay Vigilant with Timely Linux Security Advisories Sep 24, 2025 | 19:56 pm
Read more...
The update for libxslt announced in DSA 5979-1 introduced a regression while back porting the upstream deterministic generate-id implementation, which makes the generated IDs may remain in a non-deterministic order. -
Debian: linux Critical Escalation Denial of Service DSA-6008-1
Stay Vigilant with Timely Linux Security Advisories Sep 22, 2025 | 21:10 pm
Read more...
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. -
Debian: FFmpeg Critical Denial of Service & Code Exec DSA-6007-1
Stay Vigilant with Timely Linux Security Advisories Sep 21, 2025 | 14:27 pm
Read more...
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. -
Debian: Jetty 12 Critical HTTP/2 Protocol Vulnerability DSA-6006-1
Stay Vigilant with Timely Linux Security Advisories Sep 19, 2025 | 18:37 pm
Read more...
This update for Jetty, a Java servlet engine and web server, addresses a protocol-level vulnerability in HTTP/2 support also referred to as "MadeYouReset". -
Ubuntu: nginx Vulnerability in HTTP/3 Handling DSA-6006-1
Stay Vigilant with Timely Linux Security Advisories Sep 19, 2025 | 18:34 pm
Read more...
This update for Jetty, a Java servlet engine and web server, addresses a protocol-level vulnerability in HTTP/2 support also referred to as "MadeYouReset". -
Debian: DSA-6004-1 Chromium Critical Arbitrary Code Exec Threat
Stay Vigilant with Timely Linux Security Advisories Sep 19, 2025 | 08:09 am
Read more...
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. Google is aware that an exploit for CVE-2025-10585 exists in the wild. -
Debian: Firefox ESR Critical Code Execution Risks DSA-6003-1
Stay Vigilant with Timely Linux Security Advisories Sep 18, 2025 | 18:45 pm
Read more...
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, sandbox escape, information disclosure or bypass of the same-origin policy. -
Debian Bookworm: node-sha.js Critical Incomplete Type Checks DSA-6002-1
Stay Vigilant with Timely Linux Security Advisories Sep 16, 2025 | 17:43 pm
Read more...
It was discovered that Node sha.js, an implementation of the SHA family hash functions in pure JavaScript, performed incomplete type checks. For the oldstable distribution (bookworm), this problem has been fixed -
Debian: cJSON Important Input Sanitization Issue DSA-6001-1 CVE-2025-57052
Stay Vigilant with Timely Linux Security Advisories Sep 14, 2025 | 18:37 pm
Read more...
It was discovered that cJSON, an ultralightweight JSON parser, performed insufficient input sanitising, which could result in out-of-bounds memory access. -
Debian: Buffer Overflow DoS in libjson-xs-perl DSA-5999-1 CVE-2025-40928
Stay Vigilant with Timely Linux Security Advisories Sep 11, 2025 | 19:41 pm
Read more...
Michael Hudak discovered a flaw in libjson-xs-perl, a module for manipulating JSON-formatted data. An integer buffer overflow causing a segfault when parsing specially crafted JSON, may allow an attacker to mount a denial-of-service attack or cause other unspecified impact. -
Debian: cups Critical Auth Bypass DoS Vulnerability DSA-5998-1
Stay Vigilant with Timely Linux Security Advisories Sep 11, 2025 | 19:03 pm
Read more...
Two vulnerabilities were discovered in cups, the Common UNIX Printing System, which may result in authentication bypass with AuthType Negotiate or in denial of service (daemon crash). -
Debian: imagemagick DSA-5997-1 Critical Memory Corruption Issues
Stay Vigilant with Timely Linux Security Advisories Sep 11, 2025 | 17:36 pm
Read more...
Multiple memory corruption vulnerbilities were discovered in imagemagick, a software suit used for editing and manipulating digital images, which could lead to information leak, denial of service, and potentially arbitrary code execution.
Letzte Änderung am Freitag, 01 Januar 2016 20:59
