|
Vulnerability Report: Debian GNU/Linux 3.1
|
This vulnerability report for Debian GNU/Linux 3.1 contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Debian GNU/Linux 3.1 then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
|
|
|
|
111 Secunia Advisories in 2007
|
Secunia has issued a total of 111 Secunia advisories in 2007 for Debian GNU/Linux 3.1. Currently, 0% (0 out of 111) are marked as unpatched.
More information about the specific Secunia advisories affecting Debian GNU/Linux 3.1 can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2007-12-12 |
Secunia Advisory ID:
SA28061 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for nss-ldap. This fixes a security issue, which can be exploited by malicious persons to manipulate certain data. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-12 |
Secunia Advisory ID:
SA28060 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby-gnome2. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-11 |
Secunia Advisory ID:
SA27999 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA28008 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for sitebar. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to disclose potentially sensitive information and compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-10 |
Secunia Advisory ID:
SA27996 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for qt-x11-free. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-06 |
Secunia Advisory ID:
SA27943 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wesnoth. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-03 |
Secunia Advisory ID:
SA27892 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-12-03 |
Secunia Advisory ID:
SA27891 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cacti. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-28 |
Secunia Advisory ID:
SA27801 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tk8.4. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-28 |
Secunia Advisory ID:
SA27806 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tk8.3. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-27 |
Secunia Advisory ID:
SA27817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-11-27 |
Secunia Advisory ID:
SA27823 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for mysql-dfsg, mysql-dfsg-5.0, and mysql-dfsg-4.1. This fixes some security issues and vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, gain escalated privileges, or cause a DoS (Denial of Service), and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-26 |
Secunia Advisory ID:
SA27764 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ruby1.8. This fixes some security issues, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-26 |
Secunia Advisory ID:
SA27769 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libopenssl-ruby. This fixes some security issues, which can be exploited by malicious people to conduct spoofing attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-23 |
Secunia Advisory ID:
SA27787 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-22 |
Secunia Advisory ID:
SA27772 |
Solution Status:
Partial Fix |
|
Criticality:
 |
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kdegraphics. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-12 |
Secunia Advisory ID:
SA27565 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for horde3. This fixes some vulnerabilities, which can be exploited by malicious people to conduct phishing and cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-09 |
Secunia Advisory ID:
SA27595 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-08 |
Secunia Advisory ID:
SA27549 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gforge. This fixes a security issue, which can be exploited by malicious, local users to truncate arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-07 |
Secunia Advisory ID:
SA27479 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for perl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-06 |
Secunia Advisory ID:
SA27538 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pcre3. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose sensitive information, or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-11-06 |
Secunia Advisory ID:
SA27520 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for perdition. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-19 |
Secunia Advisory ID:
SA27297 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for t1lib. This fixes a vulnerability, which can be exploited by malicious users to potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-19 |
Secunia Advisory ID:
SA27303 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for zoph. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-19 |
Secunia Advisory ID:
SA27273 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for dhcp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-15 |
Secunia Advisory ID:
SA27241 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for wesnoth. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-10-10 |
Secunia Advisory ID:
SA27168 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfs. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-05 |
Secunia Advisory ID:
SA27042 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-10-03 |
Secunia Advisory ID:
SA27049 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for quagga. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-10-03 |
Secunia Advisory ID:
SA27031 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openssl, openssl097 and openssl096. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-18 |
Secunia Advisory ID:
SA26817 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-11 |
Secunia Advisory ID:
SA26723 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-10 |
Secunia Advisory ID:
SA26733 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-06 |
Secunia Advisory ID:
SA26675 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Thomas de Grenier de Latour has discovered a vulnerability in the debian-goodies package for Debian Linux, which can be exploited by malicious, local users to perform actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26654 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26646 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for id3lib3.8.3. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-09-03 |
Secunia Advisory ID:
SA26653 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-27 |
Secunia Advisory ID:
SA26602 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for asterisk. This fixes some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information, and by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-21 |
Secunia Advisory ID:
SA26514 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for koffice. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-14 |
Secunia Advisory ID:
SA26432 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gpdf. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-14 |
Secunia Advisory ID:
SA26410 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kdegraphics. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-13 |
Secunia Advisory ID:
SA26404 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tcpdump. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-08 |
Secunia Advisory ID:
SA26365 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for pdfkit.framework. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-08 |
Secunia Advisory ID:
SA26364 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for bochs. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-07 |
Secunia Advisory ID:
SA26343 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tetex-bin. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-06 |
Secunia Advisory ID:
SA26342 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libextractor. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-08-01 |
Secunia Advisory ID:
SA26294 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for file. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-31 |
Secunia Advisory ID:
SA26282 |
Solution Status:
Partial Fix |
|
Criticality:
 |
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfs. This fixes a vulnerability, which can be exploited by malicious, local users to perform actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-27 |
Secunia Advisory ID:
SA26180 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-23 |
Secunia Advisory ID:
SA25588 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Spoofing
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, gain knowledge of sensitive information, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-19 |
Secunia Advisory ID:
SA26132 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-19 |
Secunia Advisory ID:
SA26129 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for freetype. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-10 |
Secunia Advisory ID:
SA25980 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vlc. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-09 |
Secunia Advisory ID:
SA25945 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-06 |
Secunia Advisory ID:
SA25967 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for gfax. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-02 |
Secunia Advisory ID:
SA25913 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Manipulation of data
|
Where:
Local system |
|
Short Description:
Debian has issued an update for fireflier-server. This fixes a security issue, which can be exploited by malicious, local users to delete arbitrary files. [Read More]
|
|
|
|
|
|
Release Date:
2007-07-02 |
Secunia Advisory ID:
SA25880 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for evolution. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-29 |
Secunia Advisory ID:
SA25890 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-25 |
Secunia Advisory ID:
SA25796 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25701 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libapache-mod-jk. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25717 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libexif. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25725 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql-7.4. This fixes a security issue, which can be exploited by malicious users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-18 |
Secunia Advisory ID:
SA25714 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for kernel-source-2.6.8. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges, and by malicious people to cause a DoS. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-15 |
Secunia Advisory ID:
SA25685 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-14 |
Secunia Advisory ID:
SA25664 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for icedove. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-13 |
Secunia Advisory ID:
SA25650 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-11 |
Secunia Advisory ID:
SA25573 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gimp. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-06-08 |
Secunia Advisory ID:
SA25559 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Security Bypass
Spoofing
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for iceape. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-22 |
Secunia Advisory ID:
SA25365 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-18 |
Secunia Advisory ID:
SA25305 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
Privilege escalation
DoS
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfree86. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose sensitive information, cause a DoS (Denial of Service), and gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-17 |
Secunia Advisory ID:
SA25293 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for quagga. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-05-15 |
Secunia Advisory ID:
SA25236 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-08 |
Secunia Advisory ID:
SA25157 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Privilege escalation
|
Where:
From remote |
|
Short Description:
Debian has issued an update for ldap-account-manager. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform actions with escalated privileges and by malicious users to conduct script insertion attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-05-01 |
Secunia Advisory ID:
SA25095 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for qemu. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-04-30 |
Secunia Advisory ID:
SA25025 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, malicious users to disclose potentially sensitive information or compromise a vulnerable system, and by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-30 |
Secunia Advisory ID:
SA25028 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Unknown
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes some vulnerabilities, where one has an unknown impact and the others can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-23 |
Secunia Advisory ID:
SA24974 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for webcalendar. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-09 |
Secunia Advisory ID:
SA24828 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for man-db. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-09 |
Secunia Advisory ID:
SA24804 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for xmms. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-04 |
Secunia Advisory ID:
SA24736 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-03 |
Secunia Advisory ID:
SA24723 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for file. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-04-03 |
Secunia Advisory ID:
SA24713 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
Debian has issued an update for zope2.7. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery attacks. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-28 |
Secunia Advisory ID:
SA24638 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for nas. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to gain escalated privileges or malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-03-23 |
Secunia Advisory ID:
SA24610 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for tcpdump. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-03-21 |
Secunia Advisory ID:
SA24613 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-21 |
Secunia Advisory ID:
SA24607 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
From local network |
|
Short Description:
Debian has issued an update for openafs. This fixes a vulnerability, which can be exploited by malicious users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-19 |
Secunia Advisory ID:
SA24590 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for lookup-el. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-19 |
Secunia Advisory ID:
SA24572 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libwpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise an application using the library. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-16 |
Secunia Advisory ID:
SA24519 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for webcalendar. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-14 |
Secunia Advisory ID:
SA24511 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions when applications use GnuPG in an insecure manner. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-12 |
Secunia Advisory ID:
SA24390 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-08 |
Secunia Advisory ID:
SA24421 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for php4. This fixes some vulnerabilities and a weakness, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-03-07 |
Secunia Advisory ID:
SA24425 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for clamav. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-03-05 |
Secunia Advisory ID:
SA24379 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gnomemeeting and ekiga. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-27 |
Secunia Advisory ID:
SA24324 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
A vulnerability has been discovered in Debian, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-16 |
Secunia Advisory ID:
SA24158 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
DoS
|
Where:
From local network |
|
Short Description:
Debian has issued an update for postgresql. This fixes a vulnerability, which can be exploited by malicious users to gain knowledge of potentially sensitive information and cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-02-15 |
Secunia Advisory ID:
SA24174 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From local network |
|
Short Description:
Debian has issued an update for fetchmail. This fixes a security issue, which can be exploited by malicious people to gain sensitive information. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-15 |
Secunia Advisory ID:
SA24167 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for imagemagick. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-07 |
Secunia Advisory ID:
SA24078 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-06 |
Secunia Advisory ID:
SA24060 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
System access
|
Where:
From local network |
|
Short Description:
Debian has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-02 |
Secunia Advisory ID:
SA23988 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
DoS
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to gain knowledge of certain information, conduct cross-site scripting attacks, and potentially compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-02-01 |
Secunia Advisory ID:
SA24006 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for gtk+2.0. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-02-01 |
Secunia Advisory ID:
SA24015 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for libgtop2. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-01-29 |
Secunia Advisory ID:
SA23971 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for vlc. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2007-01-29 |
Secunia Advisory ID:
SA23944 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-01-26 |
Secunia Advisory ID:
SA23941 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Manipulation of data
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for cacti. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, manipulate data and compromise vulnerable systems. [Read More]
|
|
|
|
|
|
Release Date:
2007-01-22 |
Secunia Advisory ID:
SA23822 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for netrik. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2007-01-16 |
Secunia Advisory ID:
SA23789 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Privilege escalation
|
Where:
Local system |
|
Short Description:
Debian has issued an update for xfree86. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges. [Read More]
|
|
|
|
|
|
Release Date:
2007-01-15 |
Secunia Advisory ID:
SA23770 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libsoup. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-01-09 |
Secunia Advisory ID:
SA23681 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
Debian has issued an update for libapache-mod-auth-kerb. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]
|
|
|
|
|
|
Release Date:
2007-01-09 |
Secunia Advisory ID:
SA23683 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
