ArchLinux Linux Distribution
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
The package musl before version 1.1.8-1 is vulnerable to arbitrary code execution.
An integer overflow flaw, leading to a heap-based buffer overflow. This could raise a crash of the application or is possible exploitable.
The package vorbis-tools before version 1.4.0-5 is vulnerable to denial of service.
The package util-linux before version 2.26.1-3 is vulnerable to command injection via malicious devices.
The package cpio before version 2.11-6 is vulnerable to directory traversal.
The package firefox before version 36.0.3-1 is vulnerable to multiple issues, including same-origin policy bypass and arbitrary remote code execution.
The package tcpdump before version 4.7.3-1 is vulnerable to multiple issues including denial of service, out-of-bounds memory read and possibly arbitrary code execution.
The package xerces-c before version 3.1.2-1 is vulnerable to denial of service.
The package drupal before version 7.35-1 is vulnerable to access bypass and open redirects.
The package lib32-openssl before version 1.0.2.a-1 is vulnerable to multiple issues including but not limited to denial of service, unseeded PRNG and memory corruption.
The package openssl before version 1.0.2.a-1 is vulnerable to multiple issues including but not limited to denial of service, unseeded PRNG and memory corruption.
The package libxfont before version 1.5.1-1 is vulnerable to multiple issues including denial of service and out-of-bounds memory read/write leading to arbitrary code execution with the privileges of the X server.
The package ecryptfs-utils before version 106-1 is vulnerable to hard-coded passphrase salt that may ease a brute-force attack.
The package ettercap-gtk before version 0.8.2-1 is vulnerable to multiple issues including but not limited to arbitrary code execution, arbitrary memory write and denial of service.
The package ettercap before version 0.8.2-1 is vulnerable to multiple issues including but not limited to arbitrary code execution, arbitrary memory write and denial of service.
The package flashplugin before version 11.2.202.451-1 is vulnerable to multiple issues including remote code execution, cross-domain policy bypass and file upload restriction bypass.
The package librsync before version 1.0.0-1 is vulnerable to checksum collision leading to possible file modification or corruption via a birthday attack.
The package unzip before version 6.0-10 is vulnerable to heap buffer overflow leading to denial of service or possibly arbitrary code execution.
The package e2fsprogs before version 1.42.12-2 is vulnerable to heap buffer overflow leading to arbitrary code execution.
The packages python2-django and python-django before version 1.7.6-1 are vulnerable to cross-site-scripting.