|
Vulnerability Report: Debian GNU/Linux 3.0
|
This vulnerability report for Debian GNU/Linux 3.0 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Debian GNU/Linux 3.0 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
181 Secunia Advisories in 2005
|
Secunia has issued a total of 181 Secunia advisories in 2005 for Debian GNU/Linux 3.0. Currently, 1% (1 out of 181) are marked as unpatched with the most severe being rated Less critical 
More information about the specific Secunia advisories affecting Debian GNU/Linux 3.0 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2005-12-27 |
Secunia Advisory ID:
SA18225 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Steve Kemp has reported a vulnerability in ketm, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-27 |
Secunia Advisory ID:
SA18215 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for tkdiff. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-22 |
Secunia Advisory ID:
SA18171 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for nbd. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-13 |
Secunia Advisory ID:
SA18012 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ethereal. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-12 |
Secunia Advisory ID:
SA17965 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for curl. This fixes two vulnerabilities, where one has an unknown impact and another can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-09 |
Secunia Advisory ID:
SA17967 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for osh. This fixes two vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-08 |
Secunia Advisory ID:
SA17919 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Patrick Cheong Shu Yang has reported a security issue in courier, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-12-01 |
Secunia Advisory ID:
SA17791 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gdk-pixbuf. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-30 |
Secunia Advisory ID:
SA17818 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for centericq. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-11-30 |
Secunia Advisory ID:
SA17770 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gtk+2.0. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-23 |
Secunia Advisory ID:
SA17682 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for ipmenu. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-23 |
Secunia Advisory ID:
SA17678 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for sylpheed. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-22 |
Secunia Advisory ID:
SA17671 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for netpbm-free. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-21 |
Secunia Advisory ID:
SA17653 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for unzip. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-18 |
Secunia Advisory ID:
SA17631 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for fetchmail. This fixes a vulnerability, which can be exploited by malicious, local users to gain knowledge of certain sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-17 |
Secunia Advisory ID:
SA17616 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpgroupware. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and manipulate certain information. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-15 |
Secunia Advisory ID:
SA17584 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpsysinfo. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and manipulate certain information. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-15 |
Secunia Advisory ID:
SA17551 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for abiword. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-15 |
Secunia Advisory ID:
SA17558 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for acidlab. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-09 |
Secunia Advisory ID:
SA17497 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libungif4. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-07 |
Secunia Advisory ID:
SA17472 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for thttpd. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-11-02 |
Secunia Advisory ID:
SA17337 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-28 |
Secunia Advisory ID:
SA17360 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lynx-ssl. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-27 |
Secunia Advisory ID:
SA17344 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssl. This fixes a vulnerability, which potentially can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-27 |
Secunia Advisory ID:
SA17340 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lynx. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-26 |
Secunia Advisory ID:
SA17322 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for sudo. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-13 |
Secunia Advisory ID:
SA17187 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for hylafax. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-12 |
Secunia Advisory ID:
SA17162 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xine-lib. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-11 |
Secunia Advisory ID:
SA17139 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xli. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-11 |
Secunia Advisory ID:
SA17140 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xloadimage. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-11 |
Secunia Advisory ID:
SA17129 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-10 |
Secunia Advisory ID:
SA17123 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious people to cause files to be unpacked to arbitrary locations on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-10 |
Secunia Advisory ID:
SA17109 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for masqmail. This fixes two vulnerabilities, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-10 |
Secunia Advisory ID:
SA17101 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tcpdump. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-10-10 |
Secunia Advisory ID:
SA17102 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ethereal. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-10 |
Secunia Advisory ID:
SA17081 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for weex. This fixes a vulnerability, which potentially can be exploited by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-06 |
Secunia Advisory ID:
SA17084 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mason. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-05 |
Secunia Advisory ID:
SA17067 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mod-auth-shadow. This fixes a security issue, which potentially can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-03 |
Secunia Advisory ID:
SA17038 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for cfengine. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-10-03 |
Secunia Advisory ID:
SA17035 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for prozilla. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-30 |
Secunia Advisory ID:
SA17016 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gopher. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-29 |
Secunia Advisory ID:
SA17004 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for util-linux. This fixes a security issue, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-26 |
Secunia Advisory ID:
SA16939 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for courier. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-23 |
Secunia Advisory ID:
SA16914 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python2.1. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-22 |
Secunia Advisory ID:
SA16890 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python2.2. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-22 |
Secunia Advisory ID:
SA16905 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfree86. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-15 |
Secunia Advisory ID:
SA16811 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for turqstat. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-13 |
Secunia Advisory ID:
SA16771 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libapache-mod-ssl. This fixes a security issue, which potentially can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-13 |
Secunia Advisory ID:
SA16768 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squid. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-09-09 |
Secunia Advisory ID:
SA16765 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gcvs. This fixes a security issue, which potentially can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-08 |
Secunia Advisory ID:
SA16741 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for apache. This fixes a vulnerability, which can be exploited by malicious people to conduct HTTP request smuggling attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-07 |
Secunia Advisory ID:
SA16725 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for cvs. This fixes a security issue, which potentially can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-02 |
Secunia Advisory ID:
SA16679 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pcre3. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-01 |
Secunia Advisory ID:
SA16652 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for courier. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-09-01 |
Secunia Advisory ID:
SA16624 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pstotext. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-08-30 |
Secunia Advisory ID:
SA16631 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges, or by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-08-01 |
Secunia Advisory ID:
SA16277 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gopher. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-22 |
Secunia Advisory ID:
SA16171 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for heimdal. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-21 |
Secunia Advisory ID:
SA16136 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cacti. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks, bypass certain security restrictions and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-19 |
Secunia Advisory ID:
SA16118 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for heartbeat. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-18 |
Secunia Advisory ID:
SA16112 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for heimdal. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-18 |
Secunia Advisory ID:
SA16114 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-14 |
Secunia Advisory ID:
SA16067 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose and manipulate sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-13 |
Secunia Advisory ID:
SA16063 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tiff. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-12 |
Secunia Advisory ID:
SA16032 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From local network |
|
Short Description:
Debian has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to spoof DNS lookups. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-12 |
Secunia Advisory ID:
SA16030 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gzip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-11 |
Secunia Advisory ID:
SA16026 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for hteditor. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-08 |
Secunia Advisory ID:
SA15992 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cvs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-07 |
Secunia Advisory ID:
SA15955 |
Solution Status:
Unpatched |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Alexander Mader has reported a security issue in Debian apt-setup, which can be exploited by malicious, local users to gain knowledge of sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-07-07 |
Secunia Advisory ID:
SA15948 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-07-01 |
Secunia Advisory ID:
SA15890 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for sudo. This fixes a vulnerability, which can be exploited by malicious, local users to execute arbitrary commands with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-06-06 |
Secunia Advisory ID:
SA15610 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mailutils. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-06-02 |
Secunia Advisory ID:
SA15572 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb4. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-26 |
Secunia Advisory ID:
SA15509 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-05-26 |
Secunia Advisory ID:
SA15505 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for qpopper. This fixes two vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-23 |
Secunia Advisory ID:
SA15462 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libconvert-uulib-perl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-20 |
Secunia Advisory ID:
SA15444 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for ppxp. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-20 |
Secunia Advisory ID:
SA15439 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for oops. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-19 |
Secunia Advisory ID:
SA15402 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpsysinfo. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-10 |
Secunia Advisory ID:
SA15316 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xfree86. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-09 |
Secunia Advisory ID:
SA15285 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for smail. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-05-04 |
Secunia Advisory ID:
SA15229 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for smartlist. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-29 |
Secunia Advisory ID:
SA15172 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ethereal. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-29 |
Secunia Advisory ID:
SA15170 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for prozilla. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-27 |
Secunia Advisory ID:
SA15149 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gaim. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-04-27 |
Secunia Advisory ID:
SA15146 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kdelibs. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-27 |
Secunia Advisory ID:
SA15126 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cvs. This fixes two vulnerabilities, which can be exploited by malicious people to bypass password protection or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-04-27 |
Secunia Advisory ID:
SA15148 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lsh-utils. This fixes two vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-22 |
Secunia Advisory ID:
SA15053 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for junkbuster. This fixes two vulnerabilities, which can be exploited by malicious people to manipulate certain information, cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-20 |
Secunia Advisory ID:
SA15022 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for geneweb. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-19 |
Secunia Advisory ID:
SA14997 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for info2www. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-19 |
Secunia Advisory ID:
SA15001 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gtkhtml. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) on certain applications using it (eg. Evolution). [Read More]
|
|
|
|
|
|
Release Date:
2005-04-18 |
Secunia Advisory ID:
SA14986 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php3. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-04-18 |
Secunia Advisory ID:
SA14991 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libexif. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-14 |
Secunia Advisory ID:
SA14936 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mysql. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and potentially compromise a vulnerable system and by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-13 |
Secunia Advisory ID:
SA14939 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for axel. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-05 |
Secunia Advisory ID:
SA14826 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for remstats. This fixes two vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges and by malicious people to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-05 |
Secunia Advisory ID:
SA14834 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wu-ftpd. This fixes two vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-04-04 |
Secunia Advisory ID:
SA14817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-04-04 |
Secunia Advisory ID:
SA14816 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imagemagick. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-31 |
Secunia Advisory ID:
SA14787 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mailreader. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-31 |
Secunia Advisory ID:
SA14760 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-29 |
Secunia Advisory ID:
SA14738 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
|
Where:
|
|
Short Description:
Debian has issued an update for mc. This fixes a vulnerability with an unknown impact. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-29 |
Secunia Advisory ID:
SA14728 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for netkit-telnet. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-23 |
Secunia Advisory ID:
SA14683 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xloadimage. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-22 |
Secunia Advisory ID:
SA14672 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for perl. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-22 |
Secunia Advisory ID:
SA14661 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xli. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-15 |
Secunia Advisory ID:
SA14582 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for luxman. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-09 |
Secunia Advisory ID:
SA14535 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for kdenetwork. This fixes a vulnerability, which can be exploited by malicious, local users to manipulate the contents of certain files. [Read More]
|
|
|
|
|
|
Release Date:
2005-03-08 |
Secunia Advisory ID:
SA14519 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for abuse. This fixes some vulnerabilities, which can be exploited by malicious, local users to overwrite files or gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-28 |
Secunia Advisory ID:
SA14412 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Bastian Blank has reported a vulnerability in bsmtpd, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-23 |
Secunia Advisory ID:
SA14376 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libapache-mod-python. This fixes a vulnerability, which potentially can be exploited by malicious people to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-23 |
Secunia Advisory ID:
SA14368 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-02-21 |
Secunia Advisory ID:
SA14347 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bidwatcher. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-18 |
Secunia Advisory ID:
SA14332 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gftp. This fixes a vulnerability, which can be exploited by malicious people to conduct directory traversal attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-17 |
Secunia Advisory ID:
SA14318 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for emacs21. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-17 |
Secunia Advisory ID:
SA14317 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for typespeed. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-16 |
Secunia Advisory ID:
SA14310 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-15 |
Secunia Advisory ID:
SA14300 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for synaesthesia. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-15 |
Secunia Advisory ID:
SA14287 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for awstats. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-15 |
Secunia Advisory ID:
SA14303 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for htdig. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-14 |
Secunia Advisory ID:
SA14277 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Sean Finney has reported some vulnerabilities in toolchain-source, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-14 |
Secunia Advisory ID:
SA14278 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for netkit-rwho. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-02-11 |
Secunia Advisory ID:
SA14223 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mailman. This fixes two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-11 |
Secunia Advisory ID:
SA14250 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xpcd. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-11 |
Secunia Advisory ID:
SA14224 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for sympa. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-11 |
Secunia Advisory ID:
SA14236 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for hztty. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-10 |
Secunia Advisory ID:
SA14215 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for evolution. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-10 |
Secunia Advisory ID:
SA14218 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xview. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-09 |
Secunia Advisory ID:
SA14194 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for emacs20. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-09 |
Secunia Advisory ID:
SA14191 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xemacs21. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-07 |
Secunia Advisory ID:
SA14167 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php3. This fixes two vulnerabilities, which can be exploited by malicious people to bypass certain security functionality or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-07 |
Secunia Advisory ID:
SA14151 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for postgresql. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-07 |
Secunia Advisory ID:
SA14158 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python2.2. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-07 |
Secunia Advisory ID:
SA14157 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for squid. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-02-04 |
Secunia Advisory ID:
SA14139 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for ncpfs. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-03 |
Secunia Advisory ID:
SA14121 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious, local users to disclose and manipulate information. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-02 |
Secunia Advisory ID:
SA14103 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for prozilla. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-02-02 |
Secunia Advisory ID:
SA14096 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squirrelmail. This fixes two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-28 |
Secunia Advisory ID:
SA14052 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for f2c. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-27 |
Secunia Advisory ID:
SA14046 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for libpam-radius-auth. This fix a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2005-01-27 |
Secunia Advisory ID:
SA14050 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for libdbi-perl. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-27 |
Secunia Advisory ID:
SA14045 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for kdebase. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-26 |
Secunia Advisory ID:
SA14018 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-25 |
Secunia Advisory ID:
SA13987 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for zhcon. This fixes a vulnerability, which can be exploited by malicious, local users to disclose the contents of arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-25 |
Secunia Advisory ID:
SA13975 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for enscript. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-25 |
Secunia Advisory ID:
SA13995 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for vdr. This fixes a vulnerability, which can be exploited by malicious, local users to manipulate sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-21 |
Secunia Advisory ID:
SA13955 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ethereal. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-21 |
Secunia Advisory ID:
SA13951 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for unarj. This fixes two vulnerabilities, which potentially can be exploited by malicious people to overwrite files or compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-21 |
Secunia Advisory ID:
SA13941 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for sword. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-20 |
Secunia Advisory ID:
SA13943 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squid. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-20 |
Secunia Advisory ID:
SA13938 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xtrlock. This fixes a vulnerability, which can be exploited by a malicious person with physical access to a system to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-20 |
Secunia Advisory ID:
SA13927 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xpdf. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-19 |
Secunia Advisory ID:
SA13914 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Exposure of sensitive information
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for mysql. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-19 |
Secunia Advisory ID:
SA13912 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imagemagick. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-19 |
Secunia Advisory ID:
SA13911 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for queue. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-19 |
Secunia Advisory ID:
SA13905 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for cupsys. This fixes a vulnerability, which potentially can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-19 |
Secunia Advisory ID:
SA13890 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for playmidi. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-18 |
Secunia Advisory ID:
SA13894 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for chbg. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-18 |
Secunia Advisory ID:
SA13889 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gallery. This fixes some vulnerabilities, which can be exploited by malicious people to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-17 |
Secunia Advisory ID:
SA13884 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gatos. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-14 |
Secunia Advisory ID:
SA13863 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
Privilege escalation
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mc. This fixes multiple vulnerabilities, where many have an unknown impact and others can be exploited to cause a DoS (Denial of Service) or potentially perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-14 |
Secunia Advisory ID:
SA13855 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gopherd. This fixes some vulnerabilities with unknown impacts. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-13 |
Secunia Advisory ID:
SA13853 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for exim-tls. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-13 |
Secunia Advisory ID:
SA13814 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for glibc. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-12 |
Secunia Advisory ID:
SA13817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for exim. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-12 |
Secunia Advisory ID:
SA13815 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From local network |
|
Short Description:
Debian has issued an update for hylafax. This fixes a vulnerability, which potentially can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-12 |
Secunia Advisory ID:
SA13796 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for bmv. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-10 |
Secunia Advisory ID:
SA13767 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for linpopup. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-10 |
Secunia Advisory ID:
SA13771 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Jeroen van Wolffelaar has reported a security issue in lintian, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-10 |
Secunia Advisory ID:
SA13757 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for krb5. This fixes a vulnerability, which potentially can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-10 |
Secunia Advisory ID:
SA13759 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious people to conduct FTP command injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-07 |
Secunia Advisory ID:
SA13752 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imlib2. This fixes multiple vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-07 |
Secunia Advisory ID:
SA13751 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for namazu2. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-07 |
Secunia Advisory ID:
SA13750 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tiff. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-06 |
Secunia Advisory ID:
SA13723 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for nasm. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-06 |
Secunia Advisory ID:
SA13730 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for zip. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-06 |
Secunia Advisory ID:
SA13729 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pcal. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-03 |
Secunia Advisory ID:
SA13715 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for htmlheadline. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-03 |
Secunia Advisory ID:
SA13707 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cupsys. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2005-01-03 |
Secunia Advisory ID:
SA13702 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for perl. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. [Read More]
|
|
|
