|
Vulnerability Report: Debian GNU/Linux 4.0
|
This vulnerability report for Debian GNU/Linux 4.0 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Debian GNU/Linux 4.0 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
249 Secunia Advisories in 2008
|
Secunia has issued a total of 249 Secunia advisories in 2008 for Debian GNU/Linux 4.0. Currently, 0% (1 out of 249) are marked as unpatched with the most severe being rated Moderately critical 
More information about the specific Secunia advisories affecting Debian GNU/Linux 4.0 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2008-12-29 |
Secunia Advisory ID:
SA33265 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php-xajax. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-29 |
Secunia Advisory ID:
SA33263 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phppgadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-22 |
Secunia Advisory ID:
SA33239 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for moodle. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to bypass certain security restrictions or conduct cross-site request forgery and cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-22 |
Secunia Advisory ID:
SA33261 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for proftpd-dfsg. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-22 |
Secunia Advisory ID:
SA33259 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for courier-authlib. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-22 |
Secunia Advisory ID:
SA33279 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for avahi. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-12-16 |
Secunia Advisory ID:
SA33180 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes a weakness and some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and cause a DoS (Denial of Service), and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-15 |
Secunia Advisory ID:
SA33142 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for uw-imap. This fixes some vulnerabilities, which can be exploited by malicious, local users to potentially gain escalated privileges, and by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-15 |
Secunia Advisory ID:
SA33138 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for no-ip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-10 |
Secunia Advisory ID:
SA33066 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lcms. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-09 |
Secunia Advisory ID:
SA33061 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for streamripper. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-09 |
Secunia Advisory ID:
SA33071 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squirrelmail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-05 |
Secunia Advisory ID:
SA32998 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for linux-2.6.24. This fixes a weakness and some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and cause a DoS (Denial of Service) and malicious people to cause a DoS and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-05 |
Secunia Advisory ID:
SA33016 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-04 |
Secunia Advisory ID:
SA32980 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for perl. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-03 |
Secunia Advisory ID:
SA32939 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for awstats. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-02 |
Secunia Advisory ID:
SA32961 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for flamethrower. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-02 |
Secunia Advisory ID:
SA32954 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-01 |
Secunia Advisory ID:
SA32959 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for jailer. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-01 |
Secunia Advisory ID:
SA32949 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imlib2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-12-01 |
Secunia Advisory ID:
SA32944 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-11-25 |
Secunia Advisory ID:
SA32853 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of system information
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-25 |
Secunia Advisory ID:
SA32854 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for enscript. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-24 |
Secunia Advisory ID:
SA32845 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of system information
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-24 |
Secunia Advisory ID:
SA32855 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for hf. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-20 |
Secunia Advisory ID:
SA32793 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python2.4. This fixes some vulnerabilities, where some have unknown impact and others can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-18 |
Secunia Advisory ID:
SA32762 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-13 |
Secunia Advisory ID:
SA32678 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libcdaudio. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-10 |
Secunia Advisory ID:
SA32664 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for net-snmp. This fixes some vulnerabilities, which can be exploited by malicious people to spoof authenticated SNMPv3 packets, cause a DoS (Denial of Service), and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-11-06 |
Secunia Advisory ID:
SA32578 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for mysql-dfsg-5.0. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-30 |
Secunia Advisory ID:
SA32461 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-27 |
Secunia Advisory ID:
SA32424 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, where some have an unknown impact and others can potentially be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-24 |
Secunia Advisory ID:
SA32396 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libspf2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-23 |
Secunia Advisory ID:
SA32385 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for dbus. This fixes a weakness, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-22 |
Secunia Advisory ID:
SA32335 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for qemu. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-21 |
Secunia Advisory ID:
SA32331 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for cupsys. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-20 |
Secunia Advisory ID:
SA32315 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for linux 2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, cause a DoS (Denial of Service) or disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-15 |
Secunia Advisory ID:
SA32280 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-14 |
Secunia Advisory ID:
SA32237 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-13 |
Secunia Advisory ID:
SA32254 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for openldap. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-13 |
Secunia Advisory ID:
SA32256 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.8. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-13 |
Secunia Advisory ID:
SA32255 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.9. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-13 |
Secunia Advisory ID:
SA32183 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for mon. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-09 |
Secunia Advisory ID:
SA32185 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of system information
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-07 |
Secunia Advisory ID:
SA32148 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes some vulnerabilities, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-07 |
Secunia Advisory ID:
SA32109 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-07 |
Secunia Advisory ID:
SA32132 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes a weakness and some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, and cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-10-06 |
Secunia Advisory ID:
SA32155 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for feta. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-10-06 |
Secunia Advisory ID:
SA32153 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mplayer. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-22 |
Secunia Advisory ID:
SA31960 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious, local users to conduct cross-site scripting attacks, by malicious users to compromise a vulnerable system, and by malicious people to conduct spoofing and cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-22 |
Secunia Advisory ID:
SA31959 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for horde3. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-22 |
Secunia Advisory ID:
SA31964 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for twiki. This fixes a security issue, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-22 |
Secunia Advisory ID:
SA31961 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python-django. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery attacks or to potentially cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-09-17 |
Secunia Advisory ID:
SA31885 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-09-15 |
Secunia Advisory ID:
SA31780 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for git-core. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-12 |
Secunia Advisory ID:
SA31881 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for linux-2.6.24. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-11 |
Secunia Advisory ID:
SA31799 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for freetype. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-02 |
Secunia Advisory ID:
SA31654 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wordnet. This fixes some vulnerabilities, which can potentially be exploited by malicious, local users to gain escalated privileges, and by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-09-02 |
Secunia Advisory ID:
SA31691 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for slash. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-27 |
Secunia Advisory ID:
SA31623 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tiff. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-25 |
Secunia Advisory ID:
SA31590 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-08-22 |
Secunia Advisory ID:
SA31551 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or potentially gain escalated privileges, and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-19 |
Secunia Advisory ID:
SA31530 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for postfix. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-12 |
Secunia Advisory ID:
SA31448 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pdns. This fixes a weakness, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-04 |
Secunia Advisory ID:
SA31360 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for opensc. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-04 |
Secunia Advisory ID:
SA31380 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for httracker. This fixes a security issue, which can be exploited by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-01 |
Secunia Advisory ID:
SA31310 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libxslt. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-01 |
Secunia Advisory ID:
SA31237 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for dnsmasq. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2008-08-01 |
Secunia Advisory ID:
SA31324 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for cupsys. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-31 |
Secunia Advisory ID:
SA31307 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for newsx. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-28 |
Secunia Advisory ID:
SA31254 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python-dns. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-28 |
Secunia Advisory ID:
SA31255 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python2.5. This fixes some security issues, which can potentially be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-28 |
Secunia Advisory ID:
SA31256 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.9. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-28 |
Secunia Advisory ID:
SA31253 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-24 |
Secunia Advisory ID:
SA31183 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of system information
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-24 |
Secunia Advisory ID:
SA31176 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-24 |
Secunia Advisory ID:
SA31206 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-07-22 |
Secunia Advisory ID:
SA31168 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libgd2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-22 |
Secunia Advisory ID:
SA31181 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.8. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-17 |
Secunia Advisory ID:
SA31131 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for afuse. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-16 |
Secunia Advisory ID:
SA31104 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-07-16 |
Secunia Advisory ID:
SA31105 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gaim. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-14 |
Secunia Advisory ID:
SA31069 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of system information
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-14 |
Secunia Advisory ID:
SA31066 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for mysql-dfsg-5.0. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-10 |
Secunia Advisory ID:
SA31035 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for poppler. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-09 |
Secunia Advisory ID:
SA30989 |
Solution Status:
Vendor Workaround |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has acknowledged a vulnerability in bind, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-09 |
Secunia Advisory ID:
SA30988 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-07 |
Secunia Advisory ID:
SA30960 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wordpress. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions and to manipulate data. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-07 |
Secunia Advisory ID:
SA30961 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pcre3. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-07-02 |
Secunia Advisory ID:
SA30910 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for sympa. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-06-27 |
Secunia Advisory ID:
SA30869 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for dbus. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-20 |
Secunia Advisory ID:
SA30783 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libtk-img. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-16 |
Secunia Advisory ID:
SA30727 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imlib2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-13 |
Secunia Advisory ID:
SA30661 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mt-daapd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-13 |
Secunia Advisory ID:
SA30660 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for typo3. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-13 |
Secunia Advisory ID:
SA30666 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xorg-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-12 |
Secunia Advisory ID:
SA30637 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xorg-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-10 |
Secunia Advisory ID:
SA30592 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tomcat5.5. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-10 |
Secunia Advisory ID:
SA30000 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
Privilege escalation
|
Where:
From remote |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-03 |
Secunia Advisory ID:
SA30479 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-06-02 |
Secunia Advisory ID:
SA30478 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-29 |
Secunia Advisory ID:
SA30393 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libxslt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-28 |
Secunia Advisory ID:
SA30368 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of service), and by malicious people to potentially cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-26 |
Secunia Advisory ID:
SA30340 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mtr. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-23 |
Secunia Advisory ID:
SA30337 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-22 |
Secunia Advisory ID:
SA30353 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libfishsound. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-22 |
Secunia Advisory ID:
SA30358 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for speex. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-21 |
Secunia Advisory ID:
SA30325 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnome-peercast. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-21 |
Secunia Advisory ID:
SA30324 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnutls13. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or to potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-21 |
Secunia Advisory ID:
SA30320 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for peercast. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-21 |
Secunia Advisory ID:
SA30256 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpgedview. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-19 |
Secunia Advisory ID:
SA30288 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, and malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-19 |
Secunia Advisory ID:
SA30280 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for netpbm-free. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-16 |
Secunia Advisory ID:
SA30286 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gforge. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-14 |
Secunia Advisory ID:
SA30249 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information and a security issue, which can lead to weak cryptographic key material. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-13 |
Secunia Advisory ID:
SA30220 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for OpenSSL. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system, and a security issue, which can lead to weak cryptographic key material. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-13 |
Secunia Advisory ID:
SA30164 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-05-13 |
Secunia Advisory ID:
SA30016 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-12 |
Secunia Advisory ID:
SA30158 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, malicious users to bypass certain security restrictions, and malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-12 |
Secunia Advisory ID:
SA30159 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for rdesktop. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-07 |
Secunia Advisory ID:
SA30106 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kazehakase. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, and compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-06 |
Secunia Advisory ID:
SA30045 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cacti. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-06 |
Secunia Advisory ID:
SA30093 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for b2evolution. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-06 |
Secunia Advisory ID:
SA30097 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-05 |
Secunia Advisory ID:
SA29968 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-05-02 |
Secunia Advisory ID:
SA30018 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for the kernel. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), or to potentially gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-02 |
Secunia Advisory ID:
SA30013 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wordpress. This fixes a vulnerability, which can potentially be exploited by malicious people to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-05-01 |
Secunia Advisory ID:
SA30042 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-04-29 |
Secunia Advisory ID:
SA29959 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
|
Where:
From local network |
|
Short Description:
Debian has issued an update for ldm. This fixes a security issue, which can be exploited by malicious people to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-29 |
Secunia Advisory ID:
SA30012 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-29 |
Secunia Advisory ID:
SA29945 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kronolith. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-28 |
Secunia Advisory ID:
SA29954 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpgedview. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-25 |
Secunia Advisory ID:
SA29948 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for perl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-25 |
Secunia Advisory ID:
SA29964 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin.This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks, and by malicious users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-25 |
Secunia Advisory ID:
SA29947 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-24 |
Secunia Advisory ID:
SA29911 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-23 |
Secunia Advisory ID:
SA29848 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
|
Where:
From remote |
|
Short Description:
Debian has issued an update for roundup. This fixes some vulnerabilities, which have unknown impacts. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-21 |
Secunia Advisory ID:
SA29921 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mplayer. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-21 |
Secunia Advisory ID:
SA29932 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ikiwiki. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-21 |
Secunia Advisory ID:
SA29889 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python. This fixes some security issues, which can potentially be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-18 |
Secunia Advisory ID:
SA29872 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for suphp. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-18 |
Secunia Advisory ID:
SA29886 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-18 |
Secunia Advisory ID:
SA29885 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xpdf. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-17 |
Secunia Advisory ID:
SA29864 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-11 |
Secunia Advisory ID:
SA29777 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for rsync. This fixes a vulnerability, which can potentially be exploited by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-11 |
Secunia Advisory ID:
SA29702 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnumeric. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-10 |
Secunia Advisory ID:
SA29767 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libcairo. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-10 |
Secunia Advisory ID:
SA29766 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vlc. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-10 |
Secunia Advisory ID:
SA29764 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pdns-recursor. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-09 |
Secunia Advisory ID:
SA29682 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openldap2.3. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-04-08 |
Secunia Advisory ID:
SA29505 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-04-07 |
Secunia Advisory ID:
SA29688 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mapserver. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks or to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-07 |
Secunia Advisory ID:
SA29680 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for alsaplayer. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-04 |
Secunia Advisory ID:
SA29604 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xpdf. This fixes some vulnerabilities, which can be exploited by malicious people to compromse a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-04-01 |
Secunia Advisory ID:
SA29601 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-31 |
Secunia Advisory ID:
SA29616 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-28 |
Secunia Advisory ID:
SA29558 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-28 |
Secunia Advisory ID:
SA29553 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for policyd-weight. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-28 |
Secunia Advisory ID:
SA29580 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for exiftags. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-28 |
Secunia Advisory ID:
SA29539 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-27 |
Secunia Advisory ID:
SA29501 |
Solution Status:
Unpatched |
|
Criticality:
|
Impact:
Unknown
Exposure of sensitive information
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has acknowledged some vulnerabilities in firebird2, where some have unknown impact and others can be exploited by malicious users to disclose potentially sensitive information or to cause a DoS (Denial of Service) and by malicious people to cause a DoS or potentially to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-26 |
Secunia Advisory ID:
SA29485 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for cupsys. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-25 |
Secunia Advisory ID:
SA29502 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for serendipity. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and script-insertion attacks or to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-21 |
Secunia Advisory ID:
SA29452 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xwine. This fixes two security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-21 |
Secunia Advisory ID:
SA29456 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for asterisk. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-19 |
Secunia Advisory ID:
SA29435 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-18 |
Secunia Advisory ID:
SA29432 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for unzip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-18 |
Secunia Advisory ID:
SA29369 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ikiwiki. This fixes two vulnerabilities, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-17 |
Secunia Advisory ID:
SA29405 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for smarty. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-17 |
Secunia Advisory ID:
SA29377 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for backup-manager. This fixes a security issue, which can be exploited by malicious, local users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-17 |
Secunia Advisory ID:
SA29385 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for dovecot. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-17 |
Secunia Advisory ID:
SA29395 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for ldapscripts. This fixes a security issue, which can be exploited by malicious, local users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-17 |
Secunia Advisory ID:
SA29400 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for horde3. This fixes a vulnerability, which can be exploited by malicious users to disclose sensitive information and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-17 |
Secunia Advisory ID:
SA29403 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes a security issue, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-12 |
Secunia Advisory ID:
SA29354 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libnet-dns-perl. This fixes some vulnerabilities, which can be exploited by malicious people to poison the DNS cache or to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-03-10 |
Secunia Advisory ID:
SA29262 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for moin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass security restrictions, manipulate certain data, or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-07 |
Secunia Advisory ID:
SA29275 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-06 |
Secunia Advisory ID:
SA29244 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for evolution. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-03-04 |
Secunia Advisory ID:
SA29194 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libicu. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-28 |
Secunia Advisory ID:
SA29135 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ghostscript. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-26 |
Secunia Advisory ID:
SA29104 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for koffice. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-26 |
Secunia Advisory ID:
SA25400 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for diatheke. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-25 |
Secunia Advisory ID:
SA29071 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for turba2. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-25 |
Secunia Advisory ID:
SA29086 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-25 |
Secunia Advisory ID:
SA29054 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for alsa-driver. This fixes a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-22 |
Secunia Advisory ID:
SA29059 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for dspam. This fixes a security issue, which can be exploited by malicious, local users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-22 |
Secunia Advisory ID:
SA29064 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for splitvt. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-22 |
Secunia Advisory ID:
SA29014 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wordpress. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information or to conduct cross-site scripting and SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-20 |
Secunia Advisory ID:
SA28868 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libimager-perl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-20 |
Secunia Advisory ID:
SA28957 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pcre3. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-18 |
Secunia Advisory ID:
SA28949 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-13 |
Secunia Advisory ID:
SA28930 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for nagios-plugins. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-13 |
Secunia Advisory ID:
SA28956 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mplayer. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-12 |
Secunia Advisory ID:
SA28875 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), disclose potentially sensitive information, and gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28857 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tk8.3. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28879 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some weaknesses and vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28829 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for wml. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28837 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for sdl-image1.2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28864 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some weaknesses and vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28871 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpbb2. This fixes some vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting and cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28865 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28776 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libexif. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-11 |
Secunia Advisory ID:
SA28867 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tk8.4. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-07 |
Secunia Advisory ID:
SA28825 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-02-06 |
Secunia Advisory ID:
SA28814 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-02-06 |
Secunia Advisory ID:
SA28812 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for poppler. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-06 |
Secunia Advisory ID:
SA28769 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python-cherrypy. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-02-06 |
Secunia Advisory ID:
SA28743 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnatsweb. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-30 |
Secunia Advisory ID:
SA28626 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
Exposure of sensitive information
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, and corrupt a file system, or by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-29 |
Secunia Advisory ID:
SA28608 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for pulseaudio. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-29 |
Secunia Advisory ID:
SA28597 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mysql-dfsg-5.0. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-28 |
Secunia Advisory ID:
SA28671 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for yarssr. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-28 |
Secunia Advisory ID:
SA28598 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-24 |
Secunia Advisory ID:
SA28610 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for exiv2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-22 |
Secunia Advisory ID:
SA28538 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for scponly. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-22 |
Secunia Advisory ID:
SA28614 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libvorbis. This fixes some vulnerabilties, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-22 |
Secunia Advisory ID:
SA28507 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xine-lib. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-21 |
Secunia Advisory ID:
SA28548 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for flac. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-21 |
Secunia Advisory ID:
SA28549 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tomcat5.5. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks, and a security issue, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-21 |
Secunia Advisory ID:
SA28546 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for horde3. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions and manipulate data. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-18 |
Secunia Advisory ID:
SA28539 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xorg-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information or to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-18 |
Secunia Advisory ID:
SA28513 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for apt-listchanges. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-16 |
Secunia Advisory ID:
SA28483 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for syslog-ng. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-15 |
Secunia Advisory ID:
SA28451 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-15 |
Secunia Advisory ID:
SA28479 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql-7.4. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges or to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-14 |
Secunia Advisory ID:
SA28452 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-14 |
Secunia Advisory ID:
SA28454 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges or to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-14 |
Secunia Advisory ID:
SA28453 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for hplib. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-11 |
Secunia Advisory ID:
SA28433 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for openafs. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-10 |
Secunia Advisory ID:
SA28404 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for dovecot. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-10 |
Secunia Advisory ID:
SA28374 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for fail2ban. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-09 |
Secunia Advisory ID:
SA28377 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libarchive. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-08 |
Secunia Advisory ID:
SA28333 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for freetype. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-08 |
Secunia Advisory ID:
SA28361 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tomcat5. This fixes some vulnerabilities, which can be exploited by malicious people and malicious users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-07 |
Secunia Advisory ID:
SA28348 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for util-linux. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-07 |
Secunia Advisory ID:
SA28349 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for loop-aes-utils. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-07 |
Secunia Advisory ID:
SA28342 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wzdftpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-07 |
Secunia Advisory ID:
SA28343 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mysql-dfsg-5.0. This fixes some security issues and a vulnerability, which can be exploited by malicious users to bypass certain security restrictions, manipulate data, and cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-07 |
Secunia Advisory ID:
SA28347 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for eggdrop. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-04 |
Secunia Advisory ID:
SA28249 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Unknown
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-04 |
Secunia Advisory ID:
SA28254 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tcpreen. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-04 |
Secunia Advisory ID:
SA28317 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tomcat5.5. This fixes some vulnerabilities and a security issue, which can be exploited by malicious, local users to bypass certain security restrictions, and by malicious people to disclose sensitive information and conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-04 |
Secunia Advisory ID:
SA28334 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for maradns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-04 |
Secunia Advisory ID:
SA28315 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2008-01-02 |
Secunia Advisory ID:
SA28243 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for typo3-src. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-02 |
Secunia Advisory ID:
SA28221 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for inotify-tools. This fixes a vulnerability, which can potentially be exploited by malicious users to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-02 |
Secunia Advisory ID:
SA28265 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libsndfile. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-02 |
Secunia Advisory ID:
SA28255 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2008-01-02 |
Secunia Advisory ID:
SA28260 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for peercast. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system. [Read More]
|
|
|
