1825 Monetary Lane Suite #104 Carrollton, TX
Do a presentation at NTLUG.
What is the Linux Installation Project?
Real companies using Linux!
Not just for business anymore.
Providing ready to run platforms on Linux
<< Mandriva | Distributions | Gentoo >>
Debian Security Notices
- DSA-4774 linux - security update
Several vulnerabilities have been discovered in the Linux kernel thatmay lead to the execution of arbitrary code, privilege escalation,denial of service or information leaks.
- DSA-4772 httpcomponents-client - security update
Priyank Nigam discovered that HttpComponents Client, a Java HTTP agentimplementation, could misinterpret malformed authority component in arequest URI and pick the wrong target host for request execution.
- DSA-4771 spice - security update
Frediano Ziglio discovered multiple buffer overflow vulnerabilities inthe QUIC image decoding process of spice, a SPICE protocol client andserver library, which could result in denial of service, or possibly,execution of arbitrary code.
- DSA-4769 xen - security update
Multiple vulnerabilities have been discovered in the Xen hypervisor,which could result in denial of service, guest-to-host privilegeescalation or information leaks.
- DSA-4768 firefox-esr - security update
Multiple security issues have been found in the Mozilla Firefox webbrowser, which could potentially result in the execution of arbitrarycode, cross-site scripting or spoofing the origin of a download.
- DSA-4767 mediawiki - security update
Multiple security issues were discovered in MediaWiki, a website enginefor collaborative work: SpecialUserRights could leak whether a userexisted or not, multiple code paths lacked HTML sanitisation allowingfor cross-site scripting and TOTP validation applied insufficient ratelimiting against brute force attempts.
- DSA-4766 rails - security update
Multiple security issues were discovered in the Rails web frameworkwhich could result in cross-site scripting, information leaks, codeexecution, cross-site request forgery or bypass of upload limits.