Debian: DSA-5527-1: webkit2gtk security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2023-39928
Debian: DSA-5526-1: chromium security update
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
Debian: DSA-5525-1: samba security update
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix, which might result in denial of service, information disclosure or privilege escalation.
Debian: DSA-5524-1: libcue security update
Kevin Backhouse discovered an out-of-bounds array access in Libcue, a library for parsing CD metadata, which could result in the execution of arbitrary code.
Debian: DSA-5523-1: curl security update
Two security issues were found in Curl, an easy-to-use client-side URL transfer library and command line tool: CVE-2023-38545
Debian: DSA-5522-1: tomcat9 security update
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-24998
Debian: DSA-5521-1: tomcat10 security update
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-28709
Debian: DSA-5520-1: mediawiki security update
Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, denial of service or information disclosure
Debian: DSA-5519-1: grub2 security update
Maxim Suhanov discovered multiple vulnerabilities in GURB2's code to handle NTFS filesystems, which may result in a Secure Boot bypass. For the oldstable distribution (bullseye), these problems have been fixed
