Debian LTS Linux Distribution - Page 27.55
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
Several vulnerabilities were discovered in Exim, a mail transport agent, which could result in remote code execution if the SPA/NTLM authenticators are used.
Two buffer overflow vulnerabilities were found in libvpx, a multimedia library for the VP8 and VP9 video codecs, which could result in the execution of arbitrary code if a specially crafted VP8 or VP9 media stream is processed.
A security vulnerability was found in the Open VMware Tools. A malicious actor that has been granted Guest Operation Privileges in a target virtual machine may be able to elevate their privileges if that target virtual machine has been assigned a more privileged Guest Alias.
Intel® released the INTEL-SA-00766 advisory about potential security vulnerabilities in some Intel® PROSet/Wireless WiFi and Killer⢠WiFi products may allow escalation of privilege or denial of service. The full advisory is available at [1]
Several cases of improper input validation were fixed in Apache Traffic Server, a reverse and forward proxy server. For Debian 10 buster, these problems have been fixed in version
Two issues have been found in cups, the Common UNIX Printing System(tm). CVE-2023-4504
Several vulnerabilities were fixed in gerbv, a viewer for the Gerber format for printed circuit board (PCB) design. CVE-2021-40393
Multiple security vulnerabilities were found in Jetty, a Java based web server and servlet engine. The org.eclipse.jetty.servlets.CGI class has been deprecated. It is potentially
A buffer overflow in VP8 media stream processing has been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
Security issues were discovered in python-reportlab, a Python library for generating PDFs and graphics, which could lead to remote code execution or authorization bypass.
Santos Gallegos discovered a blind local file inclusion in python-git, a Python library to interact with Git repositories, which could lead to denial of service or potentially information disclosure.
Multiple vulnerabilities were found in vim a text editor. CVE-2023-4752
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
An out-of-bounds read problem was found in the postprocess_terminfo function of ncurses, a text-based user interface toolkit, which could potentially lead to an exposure of sensitive information or denial of service.
Multiple vulneratibilities were found in exempi, an implementation of XMP (Extensible Metadata Platform). CVE-2020-18651
Florent Saudel and Arnaud Gatignol discovered a Type Confusion vulnerability in the Spotlight RPC functions in afpd in Netatalk. When parsing Spotlight RPC packets, one encoded data structure is a key-value style dictionary where the keys are character strings, and the values can
Several security vulnerabilities were found in GLib, a general-purpose utility library, used by projects such as GTK+, GIMP, and GNOME. CVE-2023-29499
Vulnerabilities were found in ghostscript, an interpreter for pdf PostScript language, which allows remote attackers to cause denial of service.
A buffer overflow vulnerability was found in FLAC, a free lossless audio codec, in the bitwriter_grow_ function. This flaw may allow remote attackers to run arbitrary code via specially crafted input to the encoder.
The mod_jk component of Apache Tomcat Connectors, an Apache 2 module to forward requests from Apache to Tomcat, in some circumstances, such as when a configuration included "JkOptions +ForwardDirectories" but the configuration did not provide explicit mounts for all possible proxied