Recent Changes - Search:
NTLUG

Linux is free.
Life is good.

Linux Training
10am on Meeting Days!

1825 Monetary Lane Suite #104 Carrollton, TX

Do a presentation at NTLUG.

What is the Linux Installation Project?

Real companies using Linux!

Not just for business anymore.

Providing ready to run platforms on Linux

<< Mandriva | Distributions | Gentoo >>


Community

Support

Debian Planet

Error: It's not possible to reach RSS file http://planet.debian.net/rss20.xml ...

Debian Security Notices

  • DSA-5510 libvpx - security update
    Clement Lecigne discovered a heap-based buffer overflow in libvpx, amultimedia library for the VP8 and VP9 video codecs, which may result inthe execution of arbitrary code if a specially crafted VP8 media streamis processed.


  • DSA-5509 firefox-esr - security update
    A buffer overflow in VP8 media stream processing has been found in theMozilla Firefox web browser, which could potentially result in theexecution of arbitrary code.


  • DSA-5508 chromium - security update
    Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.




  • DSA-5505 lldpd - security update
    Matteo Memelli reported an out-of-bounds read flaw when parsing CDPaddresses in lldpd, an implementation of the IEEE 802.1ab (LLDP)protocol. A remote attacker can take advantage of this flaw to cause adenial of service via a specially crafted CDP PDU packet.



  • DSA-5503 netatalk - security update
    Multiple security issues were discovered in Netatalk, an implementationof the Apple Filing Protocol (AFP) for offering file service (mainly) tomacOS clients, which may result in the execution of arbitrary code orinformation disclosure.


  • DSA-5502 xrdp - security update
    Multiple security vulnerabilities have been found in xrdp, a remote desktopprotocol server. Buffer overflows and out-of-bound writes may cause a denial ofservice or other unspecified impact.


  • DSA-5501 gnome-shell - security update
    Mickael Karatekin discovered that the GNOME session locking didn'trestrict a keyboard shortcut used for taking screenshots in GNOMEScreenshot which could result in information disclosure.


  • DSA-5500 flac - security update
    A buffer overflow was discovered in flac, a library handling FreeLossless Audio Codec media, which could potentially result in theexecution of arbitrary code.


  • DSA-5499 chromium - security update
    Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.





  • DSA-5495 frr - security update
    Multiple vulnerabilities were discovered in frr, the FRRouting suite ofinternet protocols, while processing malformed requests and packets the BGPdaemon may have reachable assertions, NULL pointer dereference, out-of-boundsmemory access, which may lead to denial of service attack.


  • DSA-5494 mutt - security update
    Several NULL pointer dereference flaws were discovered in Mutt, atext-based mailreader supporting MIME, GPG, PGP and threading, which mayresult in denial of service (application crash) when viewing a speciallycrafted email or when composing from a specially crafted draft message.



  • DSA-5492 linux - security update
    Several vulnerabilities have been discovered in the Linux kernel thatmay lead to a privilege escalation, denial of service or informationleaks.


  • DSA-5491 chromium - security update
    Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.


  • DSA-5490 aom - security update
    Multiple security vulnerabilities have been discovered in aom, the AV1 VideoCodec Library. Buffer overflows, use-after-free and NULL pointer dereferencesmay cause a denial of service or other unspecified impact if a malformedmultimedia file is processed.


  • DSA-5489 file - security update
    A buffer overflow was found in file, a file type classification tool,which may result in denial of service if a specially crafted file isprocessed.




Debian Forum at linuxquestions.org

Page last modified on September 14, 2006, at 05:07 AM