|
Vulnerability Report:
|
This vulnerability report for contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
86 Secunia Advisories in 2009
|
Secunia has issued a total of 86 Secunia advisories in 2009 for . Currently, 0% (0 out of 86) are marked as unpatched.
More information about the specific Secunia advisories affecting can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2009-05-07 |
Secunia Advisory ID:
SA35013 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ldns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-05-07 |
Secunia Advisory ID:
SA34980 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for drupal6. This fixes some vulnerabilities, which can be exploited by malicious people to conduct script insertion attacks or to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2009-05-06 |
Secunia Advisory ID:
SA34945 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for moin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-05-06 |
Secunia Advisory ID:
SA34959 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xpdf. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-05-05 |
Secunia Advisory ID:
SA35007 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php5. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-05-05 |
Secunia Advisory ID:
SA34999 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for quagga. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-05-04 |
Secunia Advisory ID:
SA34970 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-05-04 |
Secunia Advisory ID:
SA34918 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for acpid. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-05-01 |
Secunia Advisory ID:
SA34967 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for freetype. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-29 |
Secunia Advisory ID:
SA34905 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ffmpeg. This fixes two vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-27 |
Secunia Advisory ID:
SA34874 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for apt. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-23 |
Secunia Advisory ID:
SA34871 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mahara. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-22 |
Secunia Advisory ID:
SA34800 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for slurm-llnl. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-22 |
Secunia Advisory ID:
SA34794 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has acknowledged a security issue in git-core, which can be exploited by malicious, local users manipulate certain data and to potentially gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-17 |
Secunia Advisory ID:
SA34722 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-17 |
Secunia Advisory ID:
SA34781 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ejabberd. This fixes a vulnerability, which can be exploited by malicious users to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-16 |
Secunia Advisory ID:
SA34753 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for udev. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-16 |
Secunia Advisory ID:
SA34716 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes a weakness and some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-04-14 |
Secunia Advisory ID:
SA34703 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imp4. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting or script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-13 |
Secunia Advisory ID:
SA34694 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
Local system |
|
Short Description:
Debian has issues an update for device-mapper-multipath. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-13 |
Secunia Advisory ID:
SA34684 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for openafs. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-09 |
Secunia Advisory ID:
SA34609 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for horde3. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-09 |
Secunia Advisory ID:
SA34645 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to potentially disclose sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-08 |
Secunia Advisory ID:
SA34643 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tunapie. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-07 |
Secunia Advisory ID:
SA34584 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-04-06 |
Secunia Advisory ID:
SA34600 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for moodle. This fixes a security issue, which can be exploited by malicious users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-03 |
Secunia Advisory ID:
SA34552 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icu. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2009-04-01 |
Secunia Advisory ID:
SA34549 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes a weakness and a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-31 |
Secunia Advisory ID:
SA34472 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openswan. This fixes a vulnerability and a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-03-31 |
Secunia Advisory ID:
SA34494 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for strongswan. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-03-31 |
Secunia Advisory ID:
SA34523 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
Local system |
|
Short Description:
Debian has issued an update for nss-ldapd. This fixes a security issue, which can be exploited by malicious, local users to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-30 |
Secunia Advisory ID:
SA34488 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for auth2db. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-26 |
Secunia Advisory ID:
SA34479 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for systemtap. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-24 |
Secunia Advisory ID:
SA34457 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for webcit. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-23 |
Secunia Advisory ID:
SA34383 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks or compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-23 |
Secunia Advisory ID:
SA34404 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for glib2.0. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-23 |
Secunia Advisory ID:
SA34388 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libpng. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-20 |
Secunia Advisory ID:
SA34381 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ghostscript. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-20 |
Secunia Advisory ID:
SA34382 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update in lcms. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-18 |
Secunia Advisory ID:
SA34328 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for weechat. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-03-17 |
Secunia Advisory ID:
SA34297 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libtk-img. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-16 |
Secunia Advisory ID:
SA34239 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for yaws. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-03-16 |
Secunia Advisory ID:
SA34306 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mldonkey. This fixes a vulnerability, which can be exploited by malicious people to disclose sensitive information [Read More]
|
|
|
|
|
|
Release Date:
2009-03-16 |
Secunia Advisory ID:
SA34316 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libsndfile. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-16 |
Secunia Advisory ID:
SA34301 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for psi. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-03-13 |
Secunia Advisory ID:
SA34236 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wesnoth. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-12 |
Secunia Advisory ID:
SA34237 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for curl. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-11 |
Secunia Advisory ID:
SA34231 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mahara. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-11 |
Secunia Advisory ID:
SA34230 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for znc. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-05 |
Secunia Advisory ID:
SA34120 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for opensc. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-03 |
Secunia Advisory ID:
SA34055 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vim. This fixes some weaknesses and vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-03 |
Secunia Advisory ID:
SA34078 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squid3. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-03-03 |
Secunia Advisory ID:
SA34134 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ndiswrapper. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-03 |
Secunia Advisory ID:
SA34136 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update to gst-plugins-bad0.10. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-03-02 |
Secunia Advisory ID:
SA34053 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for dkim-milter. This fixes a vulnerability, which can be exploited by malicious people to conduct DoS (Denial of Service) attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-27 |
Secunia Advisory ID:
SA34026 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for python-crypto. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-26 |
Secunia Advisory ID:
SA34031 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for proftpd-dfsg. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-16 |
Secunia Advisory ID:
SA33945 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for websvn. This fixes a vulnerability, which can be exploited by malicious users to disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-16 |
Secunia Advisory ID:
SA33955 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Privilege escalation
|
Where:
From remote |
|
Short Description:
Debian has issued an update for moodle. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious users to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-12 |
Secunia Advisory ID:
SA33912 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-12 |
Secunia Advisory ID:
SA33918 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Privilege escalation
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libpam-heimdal. This fixes a vulnerability, which can be exploited by malicious, local users to overwrite files and potentially to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-12 |
Secunia Advisory ID:
SA33917 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
Privilege escalation
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libpam-krb5. This fixes some vulnerabilities, which can be exploited by malicious, local users to overwrite files and to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-11 |
Secunia Advisory ID:
SA33871 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for typo3-src. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-10 |
Secunia Advisory ID:
SA33694 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnutls13. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-09 |
Secunia Advisory ID:
SA33897 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for boinc. This fixes a vulnerability, which can potentially be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-05 |
Secunia Advisory ID:
SA33801 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update devil. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2009-02-02 |
Secunia Advisory ID:
SA33745 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vnc4. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-29 |
Secunia Advisory ID:
SA33716 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for moin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-29 |
Secunia Advisory ID:
SA33699 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for rt2400, rt2500, and rt2570. This fixes a vulnerability, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-27 |
Secunia Advisory ID:
SA33679 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Hijacking
Security Bypass
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for typo3-src. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and session fixation attacks, and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-26 |
Secunia Advisory ID:
SA33653 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ganglia-monitor-core. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-20 |
Secunia Advisory ID:
SA33613 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From remote |
|
Short Description:
Debian has issued an update for git. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, and by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-16 |
Secunia Advisory ID:
SA33548 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for netatalk. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-16 |
Secunia Advisory ID:
SA33523 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-16 |
Secunia Advisory ID:
SA33522 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for amarok. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-15 |
Secunia Advisory ID:
SA33547 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-13 |
Secunia Advisory ID:
SA33515 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssl and openssl097. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-13 |
Secunia Advisory ID:
SA33507 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-13 |
Secunia Advisory ID:
SA33504 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-12 |
Secunia Advisory ID:
SA33499 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-12 |
Secunia Advisory ID:
SA33497 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for lasso. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-12 |
Secunia Advisory ID:
SA33498 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for zaptel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-08 |
Secunia Advisory ID:
SA33433 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of system information
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-08 |
Secunia Advisory ID:
SA33434 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, conduct cross-site scripting attacks, or to potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2009-01-05 |
Secunia Advisory ID:
SA33398 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.8 and ruby1.9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2009-01-05 |
Secunia Advisory ID:
SA33397 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xterm. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
