|
Vulnerability Report: Debian GNU/Linux 4.0
|
This vulnerability report for Debian GNU/Linux 4.0 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Debian GNU/Linux 4.0 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
145 Secunia Advisories in 2007
|
Secunia has issued a total of 145 Secunia advisories in 2007 for Debian GNU/Linux 4.0. Currently, 0% (0 out of 145) are marked as unpatched.
More information about the specific Secunia advisories affecting Debian GNU/Linux 4.0 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2007-12-27 |
Secunia Advisory ID:
SA28200 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for cupsys. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges, and by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-21 |
Secunia Advisory ID:
SA28141 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Unknown
Exposure of sensitive information
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for the kernel. This fixes a security issue and some vulnerabilities, where the security issue can be exploited by malicious, local users to disclose potentially sensitive information, some of the vulnerabilities have unknown impacts, and another can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-12-20 |
Secunia Advisory ID:
SA28176 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-18 |
Secunia Advisory ID:
SA28101 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for link-grammar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-17 |
Secunia Advisory ID:
SA28103 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for centericq. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-17 |
Secunia Advisory ID:
SA28086 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mydns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-12-12 |
Secunia Advisory ID:
SA28061 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for nss-ldap. This fixes a security issue, which can be exploited by malicious persons to manipulate certain data. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-12 |
Secunia Advisory ID:
SA28060 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby-gnome2. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-12 |
Secunia Advisory ID:
SA28062 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for htdig. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-11 |
Secunia Advisory ID:
SA28033 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-12-11 |
Secunia Advisory ID:
SA27999 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA28008 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for sitebar. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to disclose potentially sensitive information and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA27996 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for qt-x11-free. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA27987 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for e2fsprogs. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA28001 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery and cross-site scripting attacks or potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA27957 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting or cross-site request forgery attacks, and to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-06 |
Secunia Advisory ID:
SA27948 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
Debian has issued an update for zabbix. This fixes a weakness, which can be exploited by malicious users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-06 |
Secunia Advisory ID:
SA27931 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org and hsqldb. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-06 |
Secunia Advisory ID:
SA27943 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wesnoth. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-03 |
Secunia Advisory ID:
SA27892 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-03 |
Secunia Advisory ID:
SA27891 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cacti. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-28 |
Secunia Advisory ID:
SA27801 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tk8.4. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-28 |
Secunia Advisory ID:
SA27806 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tk8.3. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-27 |
Secunia Advisory ID:
SA27817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-11-27 |
Secunia Advisory ID:
SA27823 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mysql-dfsg, mysql-dfsg-5.0, and mysql-dfsg-4.1. This fixes some security issues and vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, gain escalated privileges, or cause a DoS (Denial of Service), and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-26 |
Secunia Advisory ID:
SA27818 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.9. This fixes some security issues, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-26 |
Secunia Advisory ID:
SA27764 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.8. This fixes some security issues, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-23 |
Secunia Advisory ID:
SA27787 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-22 |
Secunia Advisory ID:
SA27772 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kdegraphics. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-19 |
Secunia Advisory ID:
SA27712 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for cupsys. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-12 |
Secunia Advisory ID:
SA27559 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for zope-cmfplone. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-12 |
Secunia Advisory ID:
SA27565 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for horde3. This fixes some vulnerabilities, which can be exploited by malicious people to conduct phishing and cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-09 |
Secunia Advisory ID:
SA27594 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gallery2. This fixes some vulnerabilities, which can be exploited by malicious users to manipulate certain data. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-09 |
Secunia Advisory ID:
SA27595 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-08 |
Secunia Advisory ID:
SA27549 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gforge. This fixes a security issue, which can be exploited by malicious, local users to truncate arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-07 |
Secunia Advisory ID:
SA27479 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for perl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-06 |
Secunia Advisory ID:
SA27538 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pcre3. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose sensitive information, or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-06 |
Secunia Advisory ID:
SA27511 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
|
Where:
Local system |
|
Short Description:
Debian has issued an update for mono. This fixes a vulnerability, which has unknown impacts. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-06 |
Secunia Advisory ID:
SA27480 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
Manipulation of data
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities and a weakness, which can be exploited by malicious people to disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-06 |
Secunia Advisory ID:
SA27520 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for perdition. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-29 |
Secunia Advisory ID:
SA27425 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
Manipulation of data
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-26 |
Secunia Advisory ID:
SA27408 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xen-utils. This fixes a security issue, which can be exploited by malicious, local users to truncate arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-24 |
Secunia Advisory ID:
SA27334 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for reprepro. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-24 |
Secunia Advisory ID:
SA27374 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xfce4-terminal. This fixes a security issue, which can be exploited by malicious people to inject shell commands. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-22 |
Secunia Advisory ID:
SA27336 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Spoofing
Manipulation of data
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-22 |
Secunia Advisory ID:
SA27326 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-19 |
Secunia Advisory ID:
SA27297 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for t1lib. This fixes a vulnerability, which can be exploited by malicious users to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-19 |
Secunia Advisory ID:
SA27303 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for zoph. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-19 |
Secunia Advisory ID:
SA27273 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for dhcp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-15 |
Secunia Advisory ID:
SA27241 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wesnoth. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-10-10 |
Secunia Advisory ID:
SA27168 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfs. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-08 |
Secunia Advisory ID:
SA27085 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xen-utils. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-05 |
Secunia Advisory ID:
SA27042 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-03 |
Secunia Advisory ID:
SA27049 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for quagga. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-10-03 |
Secunia Advisory ID:
SA27031 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssl, openssl097 and openssl096. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-03 |
Secunia Advisory ID:
SA26994 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-03 |
Secunia Advisory ID:
SA27038 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From local network |
|
Short Description:
Debian has issued an update for elinks. This fixes a weakness, which can be exploited by malicious people to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-28 |
Secunia Advisory ID:
SA26978 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-21 |
Secunia Advisory ID:
SA26904 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for kdebase. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-18 |
Secunia Advisory ID:
SA26817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-12 |
Secunia Advisory ID:
SA26769 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for jffnms. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information or conduct cross-site scripting and SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-12 |
Secunia Advisory ID:
SA26773 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ktorrent. This fixes a vulnerability, which potentially can be exploited by malicious people to overwrite arbitrary files on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-12 |
Secunia Advisory ID:
SA26784 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpwiki. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-11 |
Secunia Advisory ID:
SA26723 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-10 |
Secunia Advisory ID:
SA26733 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-10 |
Secunia Advisory ID:
SA26755 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xorg-server. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-06 |
Secunia Advisory ID:
SA26675 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Thomas de Grenier de Latour has discovered a vulnerability in the debian-goodies package for Debian Linux, which can be exploited by malicious, local users to perform actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-05 |
Secunia Advisory ID:
SA26691 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-05 |
Secunia Advisory ID:
SA26697 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for librpcsecgss. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26647 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for the kernel. This fixes some weaknesses, a security issue, and a vulnerability, which potentially can be exploited by malicious, local users to expose potentially sensitive information and bypass certain security restrictions, and by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26654 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26646 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for id3lib3.8.3. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26653 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-30 |
Secunia Advisory ID:
SA26649 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for postfix-policyd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-30 |
Secunia Advisory ID:
SA26593 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-29 |
Secunia Advisory ID:
SA26634 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for rsync. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-27 |
Secunia Advisory ID:
SA26602 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for asterisk. This fixes some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information, and by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-21 |
Secunia Advisory ID:
SA26514 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for koffice. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-17 |
Secunia Advisory ID:
SA26450 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Brute force
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or gain escalated privileges, and malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-14 |
Secunia Advisory ID:
SA26410 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kdegraphics. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-13 |
Secunia Advisory ID:
SA26404 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tcpdump. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-08 |
Secunia Advisory ID:
SA26364 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for bochs. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-06 |
Secunia Advisory ID:
SA26335 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-06 |
Secunia Advisory ID:
SA26292 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xpdf. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-06 |
Secunia Advisory ID:
SA26309 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-06 |
Secunia Advisory ID:
SA26331 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-06 |
Secunia Advisory ID:
SA26307 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for poppler. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-01 |
Secunia Advisory ID:
SA26294 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for file. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-31 |
Secunia Advisory ID:
SA26282 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfs. This fixes a vulnerability, which can be exploited by malicious, local users to perform actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-27 |
Secunia Advisory ID:
SA26180 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-24 |
Secunia Advisory ID:
SA26164 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-07-24 |
Secunia Advisory ID:
SA26159 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct spoofing and cross-site scripting attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-24 |
Secunia Advisory ID:
SA26151 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct spoofing and cross-site scripting attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-23 |
Secunia Advisory ID:
SA25589 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct spoofing and cross-site scripting attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-19 |
Secunia Advisory ID:
SA26128 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libcurl3-gnutls. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-19 |
Secunia Advisory ID:
SA26132 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-10 |
Secunia Advisory ID:
SA25980 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vlc. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-09 |
Secunia Advisory ID:
SA25938 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-09 |
Secunia Advisory ID:
SA25945 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-02 |
Secunia Advisory ID:
SA25912 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for unicon-imc2. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-02 |
Secunia Advisory ID:
SA25914 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gsambad. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-02 |
Secunia Advisory ID:
SA25913 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for fireflier-server. This fixes a security issue, which can be exploited by malicious, local users to delete arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-02 |
Secunia Advisory ID:
SA25880 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for evolution. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-29 |
Secunia Advisory ID:
SA25874 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for hiki. This fixes a vulnerability, which can be exploited by malicious people to delete arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-29 |
Secunia Advisory ID:
SA25890 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-28 |
Secunia Advisory ID:
SA25877 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-06-25 |
Secunia Advisory ID:
SA25784 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tinymux. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-25 |
Secunia Advisory ID:
SA25796 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-06-25 |
Secunia Advisory ID:
SA25767 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for maradns. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-06-25 |
Secunia Advisory ID:
SA25765 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for evolution-data-server. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-20 |
Secunia Advisory ID:
SA25755 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libphp-phpmailer. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-20 |
Secunia Advisory ID:
SA25713 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mplayer. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-20 |
Secunia Advisory ID:
SA25749 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for open-iscsi. This fixes some security issues, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-06-19 |
Secunia Advisory ID:
SA25720 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql-8.1. This fixes a security issue, which can be exploited by malicious users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25701 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libapache-mod-jk. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25717 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libexif. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25725 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql-7.4. This fixes a security issue, which can be exploited by malicious users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-15 |
Secunia Advisory ID:
SA25685 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-14 |
Secunia Advisory ID:
SA25664 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-13 |
Secunia Advisory ID:
SA25650 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-13 |
Secunia Advisory ID:
SA25635 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of system information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-11 |
Secunia Advisory ID:
SA25613 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-06-11 |
Secunia Advisory ID:
SA25612 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for freetype. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-11 |
Secunia Advisory ID:
SA25573 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gimp. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-08 |
Secunia Advisory ID:
SA25559 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Security Bypass
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-08 |
Secunia Advisory ID:
SA25560 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ipsec-tools. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-05-28 |
Secunia Advisory ID:
SA25419 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for otrs2. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-25 |
Secunia Advisory ID:
SA25416 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge-plugin-scmcvs. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-22 |
Secunia Advisory ID:
SA25365 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-21 |
Secunia Advisory ID:
SA25318 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions or by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-17 |
Secunia Advisory ID:
SA25293 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for quagga. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-05-16 |
Secunia Advisory ID:
SA25270 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious users to perform certain actions with escalated privileges and to compromise a vulnerable system, and by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-16 |
Secunia Advisory ID:
SA25263 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for qt4-x11. This fixes a vulnerability, which potentially can be exploited by malicious people to conduct cross-site scripting attacks in applications using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-15 |
Secunia Advisory ID:
SA25236 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-14 |
Secunia Advisory ID:
SA25228 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions or cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-03 |
Secunia Advisory ID:
SA25078 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges, and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-02 |
Secunia Advisory ID:
SA25108 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wordpress. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks and bypass certain security restrictions, or by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-01 |
Secunia Advisory ID:
SA25095 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for qemu. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-04-30 |
Secunia Advisory ID:
SA25025 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, malicious users to disclose potentially sensitive information or compromise a vulnerable system, and by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-30 |
Secunia Advisory ID:
SA25028 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, where one has an unknown impact and the others can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-30 |
Secunia Advisory ID:
SA25062 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, malicious users to disclose potentially sensitive information, bypass certain security restrictions or compromise a vulnerable system, and by malicious people to bypass certain security restrictions and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-25 |
Secunia Advisory ID:
SA24982 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for aircrack-ng. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-09 |
Secunia Advisory ID:
SA24828 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for man-db. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-09 |
Secunia Advisory ID:
SA24804 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xmms. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-04 |
Secunia Advisory ID:
SA24736 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
