Debian: DSA-5287-1: heimdal security update
Several vulnerabilities were discovered in Heimdal, an implementation of Kerberos 5 that aims to be compatible with MIT Kerberos. CVE-2021-3671
Debian: DSA-5286-1: krb5 security update
Greg Hudson discovered integer overflow flaws in the PAC parsing in krb5, the MIT implementation of Kerberos, which may result in remote code execution (in a KDC, kadmin, or GSS or Kerberos application server process), information exposure (to a cross-realm KDC acting
Debian: DSA-5286-1: krb5 security update
Greg Hudson discovered integer overflow flaws in the PAC parsing in krb5, the MIT implementation of Kerberos, which may result in remote code execution (in a KDC, kadmin, or GSS or Kerberos application server process), information exposure (to a cross-realm KDC acting
Debian: DSA-5285-1: asterisk security update
Multiple security vulnerabilities have been found in Asterisk, an Open Source Private Branch Exchange. Buffer overflows and other programming errors could be exploited for information disclosure or the execution of arbitrary code.
Debian: DSA-5284-1: thunderbird security update
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution (bullseye), these problems have been fixed in
Debian: DSA-5284-1: thunderbird security update
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution (bullseye), these problems have been fixed in
Debian: DSA-5283-1: jackson-databind security update
Several flaws were discovered in jackson-databind, a fast and powerful JSON library for Java. CVE-2020-36518
Debian: DSA-5283-1: jackson-databind security update
Several flaws were discovered in jackson-databind, a fast and powerful JSON library for Java. CVE-2020-36518
Debian: DSA-5279-2: wordpress security update
The wordpress package released in DSA-5279-1 had incorrect dependencies that could not be satisfied in Debian stable: this update corrects the problem. For reference, the original advisory text is provided here again:
