Debian LTS: DLA-2753-1: qemu security update
Several security vulnerabilities have been found in Qemu, a fast processor emulator. CVE-2021-3713
Debian LTS: DLA-2752-1: squashfs-tools security update
An issue has been found in squashfs-tools, a tool to create and append to squashfs filesystems. As unsquashfs did not validate all filepaths, it would allow writing
Debian LTS: DLA-2751-1: postgresql-9.6 security update
PostgreSQL 9.6.23 fixes this security issue: Disallow SSL renegotiation more completely (Michael Paquier)
Debian LTS: DLA-2750-1: exiv2 security update
Several vulnerabilities have been discovered in Exiv2, a C++ library and a command line utility to manage image metadata which could result in denial of service or the execution of arbitrary code if a malformed file is parsed.
Debian LTS: DLA-2749-1: gthumb security update
An issue has been found in gthumb, an image viewer and browser. A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c allows attackers to
Debian LTS: DLA-2748-1: tnef security update
An issue has been found in tnef, a tool to unpack MIME application/ms-tnef attachments. Using emails with a crafted winmail.dat application/ms-tnef attachment
Debian LTS: DLA-2742-2: ffmpeg regression update
During the backporting of one of patches in CVE-2020-22021 one line was wrongly interpreted and it caused the regression during the deinterlacing process. Thanks to Jari Ruusu for the reporting the issue and for the testing of prepared update.
Debian LTS: DLA-2747-1: ircii security update
An issue has been found in ircii, an Internet Relay Chat client. A crafted CTCP UTC message could allow an attacker to disconnect the victim from an IRC server due to a segmentation fault and client crash.
Debian LTS: DLA-2746-1: scrollz security update
An issue has been found in scrollz, an advanced ircII-based IRC client. A crafted CTCP UTC message could allow an attacker to disconnect the victim from an IRC server due to a segmentation fault and client crash.
