Debian LTS Linux Distribution - Page 42.25
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
One security issue has been found in a compression library zlib. Danilo Ramos discovered that incorrect memory handling in zlib's deflate handling could result in denial of service or potentially the execution
Multiple security vulnerabilities have been discovered in Wireshark, a network traffic analyzer. An attacker could cause a denial of service (infinite loop or application crash) via packet injection or a crafted capture file. Improper URL handling in Wireshark could also allow remote code execution. A double-click
The security update announced as DLA 2962-1 have a regression due to mistake in backported CVE-2022-23608 patch. Updated packages of pjproject are now available.
libgc, a conservative garbage collector, is vulnerable to integer overflows in multiple places. In some cases, when asked to allocate a huge quantity of memory, instead of failing the request, it will return a
Multiple vulnerabilities were discovered in Cacti, a web interface for graphing of monitoring systems, leading to authentication bypass and cross-site scripting (XSS). An attacker may get access to unauthorized areas and impersonate other users, under certain conditions.
This update includes the changes in tzdata 2022a for the Perl bindings. For the list of changes, see DLA-2963-1. For Debian 9 stretch, this problem has been fixed in version
This update includes the changes in tzdata 2022a. Notable changes are: - - Adjusted DST rules for Palestine, already in effect.
Multiple security issues were discovered in pjproject, is a free and open source multimedia communication library. CVE-2021-32686
Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. For Debian 9 stretch, these problems have been fixed in version
Several vulnerabilities have been discovered in the Apache HTTP server, which could result in denial of service, request smuggling or buffer overflows.
Multiple vulnerabilities were found in libgit2, a low-level Git library, and are as follows: CVE-2018-8098
A use-after-free vulnerability was found in Usbredirparser, a parser for the usbredir protocol, which could result in denial of service or potentially arbitrary code execution.
Several vulnerabilities like Prototype Pollution Vulnerability in a jQuery dependency and in the block editor, and Stored Cross Site Scripting Vulnerability were discovered in Wordpress, a web blogging tool.
It was discovered that Panorama Tools, a toolkit to generate, edit and transform many kinds of panoramic images, contained an out-of-bounds read vulnerability which could lead to a denial of service (application crash) when a malformed image file is processed.
The security update announced as DLA 2955-1 caused a regression in named due to an incomplete fix for CVE-2021-25220 when the Forwarders option was configured. Updated bind9 packages are now available to correct this issue.
It was found that bind9, an internet domain name server, was vulnerable to cache poisoning. When using forwarders, bogus NS records supplied by, or via, those forwarders may be cached and used by named if it needs to recurse for any reason, causing it to obtain and pass on potentially incorrect answers.
Tavis Ormandy discovered that the BN_mod_sqrt() function of OpenSSL could be tricked into an infinite loop. This could result in denial of service via malformed certificates.
Tavis Ormandy discovered that the BN_mod_sqrt() function of OpenSSL could be tricked into an infinite loop. This could result in denial of service via malformed certificates.
In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed.
It was found that Scrapy, a framework for extracting data from websites, could send HTTP Authorization as well as cookies to other domains in case of redirections, possibly leaking user credentials.