Debian Linux Security Advisory 4882-1 - Multiple vulnerabilities have been discovered in openjpeg2, the open-source JPEG 2000 codec, which could result in denial of service or the execution of arbitrary code when opening a malformed image.
5fc3f278bb64bcfcf29ee82912aa943b536f0376eb4d1d1fd72ad6bc7fcf84c7
Debian Linux Security Advisory 4883-1 - It was discovered that missing input sanitising in the template() function of the Underscore JavaScript library could result in the execution of arbitrary code.
c0b2dfa2b994cca132b9bed945a3e229ea9da1d689d20e73ba313f909884cb9e
Debian Linux Security Advisory 4884-1 - Multiple vulnerabilities have been discovered in ldb, a LDAP-like embedded database built on top of TDB.
c3a33b4c07f5fde2dde893faaf3574e6b961a8454fd101f414eb42a540ea80e7
Debian Linux Security Advisory 4885-1 - Multiple security issues were discovered in Netty, a Java NIO client/server framework, which could result in HTTP request smuggling, denial of service or information disclosure.
6a526fc31321b64c4acb5653a9654f65c2eb9bacc8eeae0a6e619452216f22f7
Debian Linux Security Advisory 4886-1 - Several vulnerabilites have been discovered in the chromium web browser.
91464af4bd71134e1890c13d6173cde4ec8cdf26c54b9235f08b83830896fcfa
Debian Linux Security Advisory 4887-1 - A use-after-free was discovered in Lib3MF, a C++ implementation of the 3D Manufacturing Format, which could result in the execution of arbitrary code if a malformed file is opened.
35bbd49deeb21382d5b1f4fdf3c475a6b5944ac8965d93701e6f7e9c6bd90db3
Debian Linux Security Advisory 4888-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, privilege escalation or memory disclosure.
59e07669cdeed8f06fc9b1e8019517c110224b603dd928949ce5f0729cdf99b0
Debian Linux Security Advisory 4889-1 - Multiple security issues were found in MediaWiki, a website engine for collaborative work, which could result in incomplete page/blocking protection, denial of service or cross-site scripting.
49b1118e5e434a47257059a1f6acac6dd79c19b2654b3272799d4a74621cc53a
Debian Linux Security Advisory 4890-1 - Stan Hu discovered that kramdown, a pure Ruby Markdown parser and converter, performed insufficient namespace validation of Rouge syntax highlighting formatters.
60fe6ac5fd6c7b4347f726fe140eae03e02e88ad5e42ce04e067b8d63dd4276d
Debian Linux Security Advisory 4891-1 - Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in information disclosure or denial of service.
1cc0c8e922520ac710a5eb680952a81085830ab697d578ee126aa8cdb6ed32ad
Debian Linux Security Advisory 4892-1 - It was reported that python-bleach, a whitelist-based HTML-sanitizing library, is prone to a mutation XSS vulnerability in bleach.clean when 'svg' or 'math' are in the allowed tags, 'p' or 'br' are in allowed tags, 'style', 'title', 'noscript', 'script', 'textarea', 'noframes', 'iframe', or 'xmp' are in allowed tags and 'strip_comments=False' is set.
e925541c26637d55f5311218ab1047e942a1ea57bb81e223c144e1e77c463d88
Debian Linux Security Advisory 4893-1 - Jan-Niklas Sohn discovered that missing input sanitising in the XInput extension of the X.org X server may result in privilege escalation if the X server is running privileged.
fca9892ceaa552967e97ff8b515414e8335d4aac2313b7bc5bf3a80a7f6744a6
Debian Linux Security Advisory 4894-1 - It was discovered that the PEAR Archive_Tar package for handling tar files in PHP is prone to a directory traversal flaw due to inadequate checking of symbolic links.
d061787b973d1c843767158272f68254956904b392fc7c66dc0920757d06b8d4
Debian Linux Security Advisory 4895-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, privilege escalation or spoofing.
a90591c14b940c58ca0deaa0ce3ecba9d1b79aee98db18f5c67359115f4cc1be
Debian Linux Security Advisory 4896-1 - Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform XML External Entity (XXE) attacks, and access private content.
e00b69e4ff46ca105c70362ee5ece24f6f93cc7b36e5b41b63549ad18bd8c25b
Debian Linux Security Advisory 4897-1 - Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. In adddition a number of security issues were addressed in the OpenPGP support.
d046261a5bea547646c1ad71555d4faa8f38e2e133e219e9721c0bfe1ba81218
Debian Linux Security Advisory 4898-1 - Several vulnerabilities have been discovered in wpa_supplicant and hostapd.
beda0161fb6dbecc5fa406f217cd58f29ad375739b5e967ada8225791a6d7572
Debian Linux Security Advisory 4899-1 - It was discovered that the OpenJDK Java platform incompletely enforced configuration settings used in Jar signing verifications.
dbebd6cb4369213c029f5f5dd6db8f362433ac3ffa794aa39a18171ea0e42a03
Debian Linux Security Advisory 4900-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
a53be97d4cf257c370650f2718249b7f93ccbb58af9f3f1ec1796d90b2b1c4a9
Debian Linux Security Advisory 4901-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
0dbc424ba18d480ba46763383f2a9570fe2587d0b80c56f14036b585f55c3995
Debian Linux Security Advisory 4902-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
da72d345209d35b6ca884757b69313dd58cf0aa9b0ec6d24a6bc89a29f22b652
Debian Linux Security Advisory 4903-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
a69f557c86747c4b0771b19768490c77eba39ad9650b766d9175c83d5173fb2b
Debian Linux Security Advisory 4904-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
192d09b4e82f57e08fcd9b7653af2271f0c37039503ac1f1c456ddc97b6864af
Debian Linux Security Advisory 4905-1 - It was discovered that the Shibboleth Service Provider is prone to a NULL pointer dereference flaw in the cookie-based session recovery feature. A remote, unauthenticated attacker can take advantage of this flaw to cause a denial of service (crash in the shibd daemon/service).
8881d3ffcc01d956880224df3983bdd8dc585c7b05e81e1db1e51d2c3f9ebec3
Debian Linux Security Advisory 4906-1 - Several vulnerabilities have been discovered in the chromium web browser.
fd28a086a88fc682f4e4a2d9074a95f713488a8177f983f4a7ba5586cf56a0ce