Debian: DSA-5273-1: webkit2gtk security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2022-42799
Debian: DSA-5272-1: xen security update
Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in privilege escalation, denial of service or information leaks. For the stable distribution (bullseye), these problems have been fixed in
Debian: DSA-5271-1: libxml2 security update
Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. CVE-2022-40303
Debian: DSA-5270-1: ntfs-3g security update
Yuchen Zeng and Eduardo Vela discovered a buffer overflow in NTFS-3G, a read-write NTFS driver for FUSE, due to incorrect validation of some of the NTFS metadata. A local user can take advantage of this flaw for local root privilege escalation.
Debian: DSA-5269-1: pypy3 security update
Nicky Mouha discovered a buffer overflow in the sha3 module of PyPy, a fast, compliant alternative implementation of the Python language. For the stable distribution (bullseye), this problem has been fixed in
Debian: DSA-5268-1: ffmpeg security update
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.
Debian: DSA-5267-1: pysha3 security update
Nicky Mouha discovered a buffer overflow in 'sha3', a Python library for the SHA-3 hashing functions. For the stable distribution (bullseye), this problem has been fixed in
Debian: DSA-5266-1: expat security update
A heap use-after-free vulnerability after overeager destruction of a shared DTD in the XML_ExternalEntityParserCreate function in Expat, an XML parsing C library, may result in denial of service or potentially the execution of arbitrary code.
Debian: DSA-5265-1: tomcat9 security update
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2021-43980
