Debian Linux Security Advisory 4882-1 - Multiple vulnerabilities have been discovered in openjpeg2, the open-source JPEG 2000 codec, which could result in denial of service or the execution of arbitrary code when opening a malformed image.
5fc3f278bb64bcfcf29ee82912aa943b536f0376eb4d1d1fd72ad6bc7fcf84c7Debian Linux Security Advisory 4883-1 - It was discovered that missing input sanitising in the template() function of the Underscore JavaScript library could result in the execution of arbitrary code.
c0b2dfa2b994cca132b9bed945a3e229ea9da1d689d20e73ba313f909884cb9eDebian Linux Security Advisory 4884-1 - Multiple vulnerabilities have been discovered in ldb, a LDAP-like embedded database built on top of TDB.
c3a33b4c07f5fde2dde893faaf3574e6b961a8454fd101f414eb42a540ea80e7Debian Linux Security Advisory 4885-1 - Multiple security issues were discovered in Netty, a Java NIO client/server framework, which could result in HTTP request smuggling, denial of service or information disclosure.
6a526fc31321b64c4acb5653a9654f65c2eb9bacc8eeae0a6e619452216f22f7Debian Linux Security Advisory 4886-1 - Several vulnerabilites have been discovered in the chromium web browser.
91464af4bd71134e1890c13d6173cde4ec8cdf26c54b9235f08b83830896fcfaDebian Linux Security Advisory 4887-1 - A use-after-free was discovered in Lib3MF, a C++ implementation of the 3D Manufacturing Format, which could result in the execution of arbitrary code if a malformed file is opened.
35bbd49deeb21382d5b1f4fdf3c475a6b5944ac8965d93701e6f7e9c6bd90db3Debian Linux Security Advisory 4888-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, privilege escalation or memory disclosure.
59e07669cdeed8f06fc9b1e8019517c110224b603dd928949ce5f0729cdf99b0Debian Linux Security Advisory 4889-1 - Multiple security issues were found in MediaWiki, a website engine for collaborative work, which could result in incomplete page/blocking protection, denial of service or cross-site scripting.
49b1118e5e434a47257059a1f6acac6dd79c19b2654b3272799d4a74621cc53aDebian Linux Security Advisory 4890-1 - Stan Hu discovered that kramdown, a pure Ruby Markdown parser and converter, performed insufficient namespace validation of Rouge syntax highlighting formatters.
60fe6ac5fd6c7b4347f726fe140eae03e02e88ad5e42ce04e067b8d63dd4276dDebian Linux Security Advisory 4891-1 - Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in information disclosure or denial of service.
1cc0c8e922520ac710a5eb680952a81085830ab697d578ee126aa8cdb6ed32adDebian Linux Security Advisory 4892-1 - It was reported that python-bleach, a whitelist-based HTML-sanitizing library, is prone to a mutation XSS vulnerability in bleach.clean when 'svg' or 'math' are in the allowed tags, 'p' or 'br' are in allowed tags, 'style', 'title', 'noscript', 'script', 'textarea', 'noframes', 'iframe', or 'xmp' are in allowed tags and 'strip_comments=False' is set.
e925541c26637d55f5311218ab1047e942a1ea57bb81e223c144e1e77c463d88Debian Linux Security Advisory 4893-1 - Jan-Niklas Sohn discovered that missing input sanitising in the XInput extension of the X.org X server may result in privilege escalation if the X server is running privileged.
fca9892ceaa552967e97ff8b515414e8335d4aac2313b7bc5bf3a80a7f6744a6Debian Linux Security Advisory 4894-1 - It was discovered that the PEAR Archive_Tar package for handling tar files in PHP is prone to a directory traversal flaw due to inadequate checking of symbolic links.
d061787b973d1c843767158272f68254956904b392fc7c66dc0920757d06b8d4Debian Linux Security Advisory 4895-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, privilege escalation or spoofing.
a90591c14b940c58ca0deaa0ce3ecba9d1b79aee98db18f5c67359115f4cc1beDebian Linux Security Advisory 4896-1 - Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform XML External Entity (XXE) attacks, and access private content.
e00b69e4ff46ca105c70362ee5ece24f6f93cc7b36e5b41b63549ad18bd8c25bDebian Linux Security Advisory 4897-1 - Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. In adddition a number of security issues were addressed in the OpenPGP support.
d046261a5bea547646c1ad71555d4faa8f38e2e133e219e9721c0bfe1ba81218Debian Linux Security Advisory 4898-1 - Several vulnerabilities have been discovered in wpa_supplicant and hostapd.
beda0161fb6dbecc5fa406f217cd58f29ad375739b5e967ada8225791a6d7572Debian Linux Security Advisory 4899-1 - It was discovered that the OpenJDK Java platform incompletely enforced configuration settings used in Jar signing verifications.
dbebd6cb4369213c029f5f5dd6db8f362433ac3ffa794aa39a18171ea0e42a03Debian Linux Security Advisory 4900-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
a53be97d4cf257c370650f2718249b7f93ccbb58af9f3f1ec1796d90b2b1c4a9Debian Linux Security Advisory 4901-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
0dbc424ba18d480ba46763383f2a9570fe2587d0b80c56f14036b585f55c3995Debian Linux Security Advisory 4902-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
da72d345209d35b6ca884757b69313dd58cf0aa9b0ec6d24a6bc89a29f22b652Debian Linux Security Advisory 4903-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
a69f557c86747c4b0771b19768490c77eba39ad9650b766d9175c83d5173fb2bDebian Linux Security Advisory 4904-1 - Multiple vulnerabilities were discovered in plugins for the GStreamer media framework, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
192d09b4e82f57e08fcd9b7653af2271f0c37039503ac1f1c456ddc97b6864afDebian Linux Security Advisory 4905-1 - It was discovered that the Shibboleth Service Provider is prone to a NULL pointer dereference flaw in the cookie-based session recovery feature. A remote, unauthenticated attacker can take advantage of this flaw to cause a denial of service (crash in the shibd daemon/service).
8881d3ffcc01d956880224df3983bdd8dc585c7b05e81e1db1e51d2c3f9ebec3Debian Linux Security Advisory 4906-1 - Several vulnerabilities have been discovered in the chromium web browser.
fd28a086a88fc682f4e4a2d9074a95f713488a8177f983f4a7ba5586cf56a0ce
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed