ArchLinux Linux Distribution - Page 72.5
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
The package openssh before version 7.1p2-1 is vulnerable to multiple issues including information disclosure (including the client's private keys) and arbitrary code execution.
The package libxslt before version 1.1.28-4 is vulnerable to denial of service.
The package dhcpcd before version 6.10.0-1 is vulnerable to denial of service.
The package wireshark-gtk before version 2.0.1-1 is vulnerable to denial of service.
The package wireshark-qt before version 2.0.1-1 is vulnerable to denial of service.
The package wireshark-cli before version 2.0.1-1 is vulnerable to denial of service.
The package gajim before version 0.16.5-1 is vulnerable to man-in-the-middle.
The package wordpress before version 4.4.1-1 is vulnerable to cross-side scripting.
The package rtmpdump before version 1:2.4.r96.fa8646d-1 is vulnerable to arbitrary code execution.
The package openvpn before version 2.3.9-1 is vulnerable to an out-of-bound read.
The package libpng before version 1.6.20-1 is vulnerable to a buffer overflow vulnerability, incompletely fixed in version 1.6.19.
The packages flashplugin and lib32-flashplugin before version 11.2.202.559-1 are vulnerable to multiple issues, including remote code execution. At least one of these vulnerabilities, CVE-2015-8651, has been reported in use for targeted attacks.
The package nghttp2 before version 1.6.0-1 is vulnerable to a heap-based use-after-free, leading to denial of service or possibly arbitrary code execution.
The package mediawiki before version 1.26.2-1 is vulnerable to multiple issues including XSS, timing attack, sensitive information leak, password-policy bypass and IP-blocking bypass.
The package thunderbird before version 38.5.0-1 is vulnerable to multiple issues.
The package claws-mail before version 3.13.1-1 is vulnerable to a remotely triggerable buffer overflow.
The package python2-pyamf before version 0.8.0-2 is vulnerable to XML external entity injection.
The package ruby before version 2.2.4-1 is vulnerable to unsafe tainted string usage.
The package bind before version 9.10.3.P2-1 is vulnerable to denial of service.
The package firefox before version 43.0-1 is vulnerable to multiple issues including but not limited to arbitrary code execution, denial of service, information disclosure, same-origin policy bypass, cookie injection, URL spoofing and privilege escalation.
Sign up to get the latest security news affecting Linux and
open source delivered straight to your inbox
Powered By
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.