Debian Linux Security Advisory 5085-2 - The update for expat released as DSA 5085-1 introduced regressions for applications using URI characters (':' in particular) for a namespace separator (while the HTML API docs of function XML_ParserCreateNS have been advising against their use). Updated expat packages are now available which relax the fix for CVE-2022-25236 with regard to RFC 3986 URI characters.
d518bc8536e0ddf3fe6cfe3ace97c1a0386a4b855e7af45f346007135b20089dDebian Linux Security Advisory 5088-1 - Brief introduction
dee4f00088252d6d121b41c7d234c8f930905a04f6badedea9f5687f59bcc44fDebian Linux Security Advisory 5089-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
80fd42e30a2a360173b0c33b13bd03451c01ce066a8f77350aaf7909db8af665Debian Linux Security Advisory 5090-1 - Two security issues have been found in the Mozilla Firefox web browser, which result in the execution of arbitrary code.
d8d2d7425e1b040e61e41ab3863893c2a0895769dbb7c36e395f9d423caa0525Debian Linux Security Advisory 5091-1 - Felix Wilhelm discovered that the containerd container runtime was susceptible to information disclosure via malformed container images.
e63a6746ffb3a0ebb5b67732d4e19941b8a93c8206828f44778f919a2ccbf65dDebian Linux Security Advisory 5092-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
f552af15f42a43d3bd0ed3cf4abd129ea2e3af33a492249e58c49290a8e65d87Debian Linux Security Advisory 5093-1 - It was discovered that SPIP, a website engine for publishing, would allow a malicious user to execute arbitrary code.
690d288b2f014e89a760c6985b3732a832e9c702b81c05ffd8ea9a3833f63264Debian Linux Security Advisory 5094-1 - Two security issues were discovered in Thunderbird, which could result in the execution of arbitrary code.
26aa5f5512f60f1821a87127469a08e66fd1148d2cf05de9f41b605530f3bf2eDebian Linux Security Advisory 5095-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
271e4b7d1b99d28febed5f00c4b01bf76715f4001e068e7da511f20bacd0d4ffDebian Linux Security Advisory 5096-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
75c044bf4d2e418a7cc68e74ff3d6f180013990253cbe7731409a07b3b799fa7Debian Linux Security Advisory 5097-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, spoofing or sandbox bypass.
d9c435f5dc9c409cccbb6c8f7018b5377f5f03e3aeec6d57038a7d16cd71fab7Debian Linux Security Advisory 5098-1 - Jeremy Mousset discovered two XML parsing vulnerabilities in the Tryton application platform, which may result in information disclosure or denial of service.
66999c925d1f540aa125cbb3e5136868edda18269caaceb5f3e90d6a9cdee93aDebian Linux Security Advisory 5099-1 - Jeremy Mousset discovered two XML parsing vulnerabilities in the Tryton application platform, which may result in information disclosure or denial of service.
b25947ff48a19f5ee9f846030cffd730bcfa8d6fed063069a624b2dd1c62c892Debian Linux Security Advisory 5100-1 - Two vulnerabilities were discovered in the server for the Network Block Device (NBD), which could result in the execution of arbitrary code.
945076a53ccc647b69efadfa9c44be99c5eab5b6debe7cff7b9a899e6822a2eeDebian Linux Security Advisory 5101-1 - Emmet Leahy reported that libphp-adodb, a PHP database abstraction layer library, allows to inject values into a PostgreSQL connection string. Depending on how the library is used this flaw can result in authentication bypass, reveal a server IP address or have other unspecified impact.
da6640b359a8cfabc20e0e3dcf9350c24d76354f44fa8936e54d308c37d252f9Debian Linux Security Advisory 5102-1 - A flaw was discovered in the way HAProxy, a fast and reliable load balancing reverse proxy, processes HTTP responses containing the "Set-Cookie2" header, which can result in an unbounded loop, causing a denial of service.
253166dcc26845ddcbf71f0c6268fcc9e19452ab02fbe22c96a7e7c42fa125f1Debian Linux Security Advisory 5103-1 - Tavis Ormandy discovered that the BN_mod_sqrt() function of OpenSSL could be tricked into an infinite loop. This could result in denial of service via malformed certificates.
7e8b206a447d884b492daca09525ab567463a9f49acb4d20581af37b4ca4a50cDebian Linux Security Advisory 5104-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
3d3c6c0d2c120d87fc815b1fbbd42c9e60f1e04c9a46d02b2b13b1a06846f9d3Debian Linux Security Advisory 5105-1 - Two vulnerabilities were found in the BIND DNS server, which could result in denial of service or cache poisoning.
2e99353b7992ce398c866108bbb84c5776dd07954457a249677473250fcad2a6Debian Linux Security Advisory 5106-1 - Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure.
ba493033fba0f50169e8ea4982dc7fc7866eba3c9759693df93fab7aa63b579eDebian Linux Security Advisory 5107-1 - Marlon Starkloff discovered that twig, a template engine for PHP, did not correctly enforce sandboxing. This would allow a malicious user to execute arbitrary code.
25856c4086f15018ef7136c2855e450bde64b67a1eb74841234440b67077bb45Debian Linux Security Advisory 5108-1 - Multiple vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service if malformed image files are processed.
8831fb80ad03cae1f6e17e334eabf7fea62aa2865a36971031495169432c3ad6Debian Linux Security Advisory 5109-1 - Multiple vulnerabilities have been discovered in the freeware Advanced Audio Decoder, which may result in denial of service or potentially the execution of arbitrary code if malformed media files are processed.
2fe2f79ba3e537ab1c7b2e4ea3a8159326746b276da75dcfa802794dd2787b09Debian Linux Security Advisory 5110-1 - A security issue was discovered in Chromium, which could result in the execution of arbitrary code if a malicious website is visited.
dfc63958649f2dcbd2e299ccf22b164863347002f2e66343131840e8f4f98bdbIn-depth whitepaper that casts light on the actual telemetry data sent by Google Play Services, which to date has largely been opaque.
1961b146927a5d663ba288e9e0655edeb281a7f9333b4a2e556204df1aadc496
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed