Gentoo Linux Security Advisory 201507-2 - Two vulnerabilities have been found in Tor, the worst of which can allow remote attackers to cause a Denial of Service condition. Versions less than 0.2.6.7 are affected.
035bc5f71f6f7bd16e07857160a112d577c88cba3dae215bc97c24a4a44dc6cc
Debian Linux Security Advisory 3301-1 - Charlie Smurthwaite of aTech Media discovered a flaw in HAProxy, a fast and reliable load balancing reverse proxy, when HTTP pipelining is used. A client can take advantage of this flaw to cause data corruption and retrieve uninitialized memory contents that exhibit data from a past request or session.
9bf2b86084d33a2479eec479c7be4147225bfceff05cd92b80dccc62204eaa96
Debian Linux Security Advisory 3300-1 - Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser. Multiple memory safety errors, use-after-frees and other implementation errors may lead to the execution of arbitrary code or denial of service. This update also addresses a vulnerability in DHE key processing commonly known as the "LogJam" vulnerability.
08a75baa6d19215d3d2a5d49d4060518bf5bfaf92d3ae35cc528ef9d223d7ac1
Ubuntu Security Notice 2659-1 - Petr Sklenar discovered that the cups-filters texttopdf filter incorrectly handled line sizes. A remote attacker could use this issue to cause a denial of service, or possibly execute arbitrary code as the lp user.
69baf8ce8f3602fbe6159e75fb0d1f5afd1b81cdb94fdc462f57cdb4eac39fc7
Ubuntu Security Notice 2658-1 - Neal Poole and Tomas Hoger discovered that PHP incorrectly handled NULL bytes in file paths. A remote attacker could possibly use this issue to bypass intended restrictions and create or obtain access to sensitive files. Emmanuel Law discovered that the PHP phar extension incorrectly handled filenames starting with a NULL byte. A remote attacker could use this issue with a crafted tar archive to cause a denial of service. Various other issues were also addressed.
1fc41b927687f1ac2f48366d26ab0ea7c0053a773453977950cd33ec2a6f05f3
Debian Linux Security Advisory 3299-1 - Johan Olofsson discovered an authentication bypass vulnerability in Stunnel, a program designed to work as an universal SSL tunnel for network daemons. When Stunnel in server mode is used with the redirect option and certificate-based authentication is enabled with "verify = 2" or higher, then only the initial connection is redirected to the hosts specified with "redirect". This allows a remote attacker to bypass authentication.
a35025683861bd7df860796bb533cd4638d8dd509bc8bb664cf125dc5e4db7ac