Debian LTS Linux Distribution - Page 85.6
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
It was discovered that there was an integer overflow vulnerability in librabbitmq, a library for robust messaging between applications and servers.
Several security issues were fixed in libav, a multimedia library for processing audio and video files.
Several vulnerabilities were discovered in the Oniguruma regular expressions library, notably used in PHP mbstring.
A corrupted or specially crafted CRW images might exceed the overall buffersize to cause a denial of service.
The backport of the CVE-2019-13161 fix caused a regression and has been reverted. For Debian 8 "Jessie", this problem has been fixed in version
In mod_tls a crash with empty CRL was fixed. For Debian 8 "Jessie", this problem has been fixed in version 1.3.5e+r1.3.5-2+deb8u5.
Several vulnerabilites are fixed in Asterisk, an Open Source PBX and telephony toolkit. CVE-2019-13161
This update fixes a regression in introduced in 1:5.22+15-2+deb8u5 causing truncated output of the interpreter name, thanks to Christoph Biedl for reporting the problem and cause.
In tnef, an attacker may be able to write to the victim's .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based
A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values.
Several vulnerabilities have been identified in the VNC code of ssvnc, an encryption-capable VNC client..
Handling of Netscape Certificate Sequences in CERT_DecodeCertPackage() may haved crash with a NULL deref leading to a Denial-of-Service.
Several vulnerabilities have been identified in the VNC code of vino, a desktop sharing utility for the GNOME desktop environment.
Several issues have been found in libvorbis, a decoder library for Vorbis General Audio Compression Codec.
Several issues have been found in libvpx, a VP8 and VP9 video codec. CVE-2019-9232
An issue in xmlrpc-epi, an XML-RPC request serialisation/deserialisation library, has been found.
An issue in bsdiff, a tool to generate/apply a patch between two binary files, has been found.
Several issues have been found in tiff, a Tag Image File Format library. CVE-2019-17546
A vulnerability has been discovered in nss, the Mozilla Network Security Service library. An out-of-bounds write can occur when passing an output buffer smaller than the block size to NSC_EncryptUpdate.
Several flaws have been found in ruby2.1, an interpreter of an object-oriented scripting language.