Debian Linux Security Advisory 4713-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
d093ddf7ea84bd8b0d919e2d72ccc6b5b548b88a83a9cc2efba50120325911d0Debian Linux Security Advisory 4714-1 - Several vulnerabilities have been discovered in the chromium web browser.
56d7c5669e16bebce80685a27cea4c0a0906ab2f5a6b78ca1bb1f083ffa10c58Debian Linux Security Advisory 4714-2 - The previous update for chromium released as DSA 4714-1 was mistakenly built without compiler optimizations. This caused high CPU load and frequent crashes. Updated chromium packages are now available that correct this issue.
063cec199eb71062bba60ed42d31b9fd157393bea9290fbd770b637a3603f524Debian Linux Security Advisory 4714-3 - The previous update for chromium released as DSA 4714-2 contained a flaw in the service worker implementation. This problem causes the browser to crash when a connection error occurs. Updated chromium packages are now available that correct this issue.
f680653d6312a81ba03a72d051f23254450ad6437287c043f0289887ab8e8b5dDebian Linux Security Advisory 4715-1 - Handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed.
89cbb3a99cde9b47160cb757c6985ac3e4242091547b3a755422c4f03ce2cc08Debian Linux Security Advisory 4716-1 - Etienne Champetier discovered that Docker, a Linux container runtime, created network bridges which by default accept IPv6 router advertisements. This could allow an attacker with the CAP_NET_RAW capability in a container to spoof router advertisements, resulting in information disclosure or denial of service.
976ff74ee264ecd7bc43b910ba7569f08c64d05307bf0989ad61ef28957a457eDebian Linux Security Advisory 4717-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or potentially the execution of arbitrary code.
fe718d937d6da0a84f641290e2eae9a820ff43ec6736c3b98e6b64910b56ea78Debian Linux Security Advisory 4718-1 - Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of arbitrary code.
75e9b541862fbad7e697f797a3a344aa3ac3d5584368eecb50fa3ab4bb37314fDebian Linux Security Advisory 4719-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or potentially the execution of arbitrary code.
d85efbe83bc7651930c4364a972753c6118db5a93bd8bd86f43dc039debc9fa9Debian Linux Security Advisory 4720-1 - It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not properly sanitize incoming mail messages. This would allow a remote attacker to perform a Cross-Side Scripting (XSS) attack.
a1082ac356bdf794a43089699725458da901a1052513fa58393c6091380b3db2Debian Linux Security Advisory 4721-1 - Several vulnerabilities have been discovered in the interpreter for the Ruby language.
9aa54c2ada8b1eb75af8ee2154b8d8568f76ccb35ac271c0dd0ad75a08cfdddfDebian Linux Security Advisory 4722-1 - Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.
1af49883f06c72050fe7ba6acf4d3940fccd84e8dee18594b9ac163547a484f2Debian Linux Security Advisory 4723-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, guest-to-host privilege escalation or information leaks.
23a14d5d4f1b40346c3b8f9436b94f8f84c91c2bcadf8328b731909eac010506Debian Linux Security Advisory 4724-1 - Vulnerabilities have been discovered in the webkit2gtk web engine.
bd01e21fee93c77a5566719ae8099d9a3183292c9d4c3d2f3005eeab1df925ccDebian Linux Security Advisory 4725-1 - Damian Poddebniak and Fabian Ising discovered a response injection vulnerability in Evolution data server, which could enable MITM attacks.
884b150a8f659e9d879d450343f51ef2cd34a4df63ac726861f2d2f1e9f9dff1Debian Linux Security Advisory 4726-1 - Several vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in side channel/timing attacks or denial of service.
f2cc1d54b85eb308f1b29e2cefa9d4fd5c0cd92ee2f46d7dd967404b92f9ed34Debian Linux Security Advisory 4727-1 - Several vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in code execution or denial of service.
274e4c80814502db86cc265c09af8e2c5a452a989f7b07f672b7faaeb0c48ce7Debian Linux Security Advisory 4728-1 - Multiple security issues were discovered in QEMU, a fast processor emulator, which could result in denial of service.
dea50ea2adefea567a4b636347dcd73912d096e9869103369b2261024a9815ffDebian Linux Security Advisory 4729-1 - Two security issues were found in libopenmpt, a cross-platform C++ and C library to decode tracked music files, which could result in denial of service and potentially the execution of arbitrary if malformed music files are processed.
2819018ddfda131be9faacc87c8701e657644cf00324b20336871c7b0fee2dabDebian Linux Security Advisory 4730-1 - Michal Bentkowski discovered that ruby-sanitize, a whitelist-based HTML sanitizer, is prone to a HTML sanitization bypass vulnerability when using the "relaxed" or a custom config allowing certain elements. Content in a <math> or <svg> element may not be sanitized correctly even if math and svg are not in the allowlist.
841aefd63808ad7adc10707677debc3dc7eae1c4b7ed749e71ba9b880b422a23Debian Linux Security Advisory 4731-1 - An integer overflow flaw leading to a stack-based buffer overflow was discovered in redis, a persistent key-value database. A remote attacker can use this flaw to cause a denial of service (application crash).
11204fd319da6db08fac6645002d4275bb88f10b32b3a52fa67717015042c46bDebian Linux Security Advisory 4732-1 - Two security issues were discovered in the Squid proxy caching server, which could result in cache poisoning, request smuggling and incomplete validation of hostnames in cachemgr.cgi.
9d9b5e8131caa8335becba06aaa08eea970df818d67d20ad2fb78d2176ca9219Debian Linux Security Advisory 4733-1 - It was discovered that incorrect memory handling in the SLIRP networking implementation could result in denial of service or potentially the execution of arbitrary code.
62e5fb46b33b62418f094f1cb8663cd35f0013942ceabe9900648c3ca33849a2Debian Linux Security Advisory 4734-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in denial of service, bypass of access/sandbox restrictions or information disclosure.
5e0ad5dcd65e64dc5747dae16878d421cfe8a758d4bf77a98e8af35828fa312fDebian Linux Security Advisory 4735-1 - Several vulnerabilities have been discovered in the GRUB2 bootloader.
0489780ea603f6a8c62138bcb5f2cc7e99d7c9e3609f2434fe116db8d210c504
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed