Debian Security
Geschrieben von SupportBewertung: 3 / 5
Warning: Invalid argument supplied for foreach() in /var/www/vhosts/webfactories.de/httpdocs/modules/mod_jw_srfr/helper.php on line 42
-
Debian xdg-dbus-proxy Critical Info Disclosure Vuln DSA-6209-1
Stay Vigilant with Timely Linux Security Advisories Apr 13, 2026 | 20:41 pm
Read more...
It was discovered that incorrect parsing of policy rules in the xdg-dbus-proxy (a filtering proxy for D-Bus connections) allowed the bypass of eavesdrop restrictions, which could result in information disclosure. For the stable distribution (trixie), this problem has been fixed[…] -
Debian DSA-6208-1 MediaWiki High Info Disclosure and Permission Issues
Stay Vigilant with Timely Linux Security Advisories Apr 12, 2026 | 09:37 am
Read more...
Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in information disclosure or incomplete permission checks. For the oldstable distribution (bookworm), these problems have been fixed in version 1:1.39.17-1+deb12u2. -
Debian DSA-6207-1 Flatpak Important Sandbox Breakout Exec Risk
Stay Vigilant with Timely Linux Security Advisories Apr 12, 2026 | 09:23 am
Read more...
Multiple security vulnerabilities were discovered in Flatpak, an application deployment framework for desktop apps, which could allow a Flatpak app to delete arbitrary hosts on the host or break out of the sandbox resulting in code execution in the host[…] -
Debian Bookworm gdk-pixbuf Important JPEG Code Execution DoS DSA-6206-1
Stay Vigilant with Timely Linux Security Advisories Apr 11, 2026 | 19:00 pm
Read more...
It was discovered that gdk-pixbuf, the GDK Pixbuf library, does not properly validate color component counts in the JPEG image loader, which may result in the execution of arbitrary code or denial of service if specially crafted JPEG images are[…] -
Debian Oldstable Chromium Critical Execution DoS Info Disclosure DSA-6205-1
Stay Vigilant with Timely Linux Security Advisories Apr 10, 2026 | 15:21 pm
Read more...
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 147.0.7727.55-1~deb12u1. -
Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution
Stay Vigilant with Timely Linux Security Advisories Apr 9, 2026 | 20:34 pm
Read more...
Jeremy Brown discovered a flaw in the GSSAPI Key Exchange patch applied in Debian to OpenSSH, an implementation of the SSH protocol suite, affecting non-default configurations with the GSSAPIKeyExchange setting enabled. A remote attacker can take advantage of this flaw[…] -
Debian Bookworm tiff Critical Heap Overflow DoS CVE-2026-4775
Stay Vigilant with Timely Linux Security Advisories Apr 8, 2026 | 18:35 pm
Read more...
Quang Luong discovered a heap overflow in the libtiff library, which may result in denial of service or the execution of arbitrary code if malformed image files are processed. For the oldstable distribution (bookworm), this problem has been fixed in[…] -
Debian Firefox-ESR Critical Code Execution Advisory DSA-6202-1
Stay Vigilant with Timely Linux Security Advisories Apr 8, 2026 | 18:34 pm
Read more...
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code. For the oldstable distribution (bookworm), these problems have been fixed in version 140.9.1esr-1~deb12u1. -
Debian DSA-6201-1 OpenSSL Important Remote Code Exec Denial of Service
Stay Vigilant with Timely Linux Security Advisories Apr 7, 2026 | 21:17 pm
Read more...
Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit, which may result in denial of service, information leaks, or potentially remote code execution. Additional details can be found in the upstream advisory: https://openssl-library.org/news/secadv/20260407.txt -
Debian Bookworm Dovecot Authentication Regression Fix DSA-6197-2
Stay Vigilant with Timely Linux Security Advisories Apr 6, 2026 | 21:19 pm
Read more...
The Bookworm backport of the security fix for CVE-2025-59032 introduced a regression in authenticating against managesieved. For the oldstable distribution (bookworm), this problem has been fixed in version 1:2.3.19.1+dfsg1-2.1+deb12u3. We recommend that you upgrade your dovecot packages. -
Debian DSA-6200-1 Tor Denial of Service Fix for Bookworm
Stay Vigilant with Timely Linux Security Advisories Apr 5, 2026 | 20:58 pm
Read more...
Two security vulnerabilities (TROVE-2026-004 and TROVE-2025-015) were discovered in Tor, a connection-based low-latency anonymous communication system, which could result in denial of service. For the oldstable distribution (bookworm), this problem has been fixed in version 0.4.9.6-0+deb12u1. -
Debian TrafficServer Severe Denial of Service and HTTP Smuggling DSA-6199-1
Stay Vigilant with Timely Linux Security Advisories Apr 5, 2026 | 20:47 pm
Read more...
Two vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in denial of service or HTTP request smuggling. For the oldstable distribution (bookworm), these problems have been fixed in version 9.2.5+ds-0+deb12u4. -
Debian DSA-6198-1 Valkey Critical Denial of Service Risk Advisory
Stay Vigilant with Timely Linux Security Advisories Apr 5, 2026 | 16:39 pm
Read more...
Two security vulnerabilities were discovered in Valkey, a persistent key-value database with network interface, which could result in denial of service or data manipulation. For the stable distribution (trixie), these problems have been fixed in version 8.1.1+dfsg1-3+deb13u2. -
Debian DSA-6197-1 Dovecot Critical SQL Injection and DoS Fix
Stay Vigilant with Timely Linux Security Advisories Apr 5, 2026 | 15:22 pm
Read more...
Multiple vulnerabilities have been discovered in the Dovecot IMAP server which way result in denial of service, SQL injection, path traversal, replay attacks or timing side channel attacks. For the oldstable distribution (bookworm), these problems have been fixed in version[…] -
Debian Roundcube Important DSA-6196-1 Multiple Vulnerabilities
Stay Vigilant with Timely Linux Security Advisories Apr 4, 2026 | 19:53 pm
Read more...
Multiple vulnerabilities were discovered in roundcube, a skinnable AJAX based webmail solution for IMAP servers, which could result in information disclosure, IMAP injection, CSRF bypass, bypass of remote image blocking, cross-site scripting, access control bypass, or privilege escalation. -
Debian Tornado Critical Denial of Service Header Injection DSA-6195-1
Stay Vigilant with Timely Linux Security Advisories Apr 3, 2026 | 21:38 pm
Read more...
Multiple security vulnerabilities were discovered in the Tornado Python web framework, which could result in denial of service, header injection or cross-site scripting. For the oldstable distribution (bookworm), this problem has been fixed in version 6.2.0-3+deb12u4. -
Debian bookworm DSA-6194-1 pyasn1 Medium DoS CVE-2026-30922
Stay Vigilant with Timely Linux Security Advisories Apr 3, 2026 | 13:15 pm
Read more...
It was discovered that pyasn1, a generic ASN.1 library for Python, is prone to a denial of service vulnerability when decoding ASN.1 data with deeply nested structures. For the oldstable distribution (bookworm), this problem has been fixed in version 0.4.8-3+deb12u2. -
Ubuntu systemd Privilege Elevation Vulnerabilities DSA-8194-7
Stay Vigilant with Timely Linux Security Advisories Apr 3, 2026 | 12:49 pm
Read more...
Several vulnerabilities were discovered in the inetutils implementation of telnetd and telnet, which may result in privilege escalation or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 2:2.4-2+deb12u3. -
Debian Bookworm Chromium Critical Exec DoS Risk DSA-6192-1 CVE-2026-5272
Stay Vigilant with Timely Linux Security Advisories Apr 3, 2026 | 00:39 am
Read more...
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 146.0.7680.177-1~deb12u1. -
Debian DSA-6191-1 gst-plugins-ugly1.0 Critical Security DoS Exploits
Stay Vigilant with Timely Linux Security Advisories Apr 1, 2026 | 20:21 pm
Read more...
Multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. For the oldstable[…]
Beitrag teilen
