Debian ist eine der am weitesten verbreiteten und auch ältesten Linux-Distributionen.
-
Debian Security Advisory 4433-1
Operating System: Debian ≈ Packet Storm Apr 17, 2019 | 19:26 pmDebian Linux Security Advisory 4433-1 - Several vulnerabilities have been discovered in the Rubygems included in the interpreter for the Ruby language, which may result in denial of service or the execution of arbitrary code.
Read more... -
Debian Security Advisory 4432-1
Operating System: Debian ≈ Packet Storm Apr 17, 2019 | 19:25 pmDebian Linux Security Advisory 4432-1 - Cedric Buissart discovered two vulnerabilities in Ghostscript, the GPL PostScript/PDF interpreter, which could result in bypass of file system restrictions of the dSAFER sandbox.
Read more... -
Debian: DSA-4433-1: ruby2.3 security update
Advisories - Linux Security Apr 16, 2019 | 18:57 pmSeveral vulnerabilities have been discovered in the Rubygems included in the interpreter for the Ruby language, which may result in denial of service or the execution of arbitrary code.
Read more... -
Debian: DSA-4432-1: ghostscript security update
Advisories - Linux Security Apr 16, 2019 | 17:55 pmCedric Buissart discovered two vulnerabilities in Ghostscript, the GPL PostScript/PDF interpreter, which could result in bypass of file system restrictions of the dSAFER sandbox.
Read more... -
Debian Security Advisory 4431-1
Operating System: Debian ≈ Packet Storm Apr 15, 2019 | 18:33 pmDebian Linux Security Advisory 4431-1 - Chris Coulson discovered several vulnerabilities in libssh2, a SSH2 client-side library, which could result in denial of service, information leaks or the execution of arbitrary code.
Read more... -
Debian: DSA-4431-1: libssh2 security update
Advisories - Linux Security Apr 13, 2019 | 11:11 amChris Coulson discovered several vulnerabilities in libssh2, a SSH2 client-side library, which could result in denial of service, information leaks or the execution of arbitrary code.
Read more... -
Debian: DSA-4431-1: libssh2 security update
Advisories - Linux Security Apr 13, 2019 | 11:11 amChris Coulson discovered several vulnerabilities in libssh2, a SSH2 client-side library, which could result in denial of service, information leaks or the execution of arbitrary code.
Read more... -
Debian Security Advisory 4430-1
Operating System: Debian ≈ Packet Storm Apr 11, 2019 | 16:10 pmDebian Linux Security Advisory 4430-1 - Mathy Vanhoef (NYUAD) and Eyal Ronen (Tel Aviv University & KU Leuven) found multiple vulnerabilities in the WPA implementation found in wpa_supplication (station) and hostapd (access point). These vulnerability are also collectively known as[…]
Read more... -
Debian: DSA-4430-1: wpa security update
Advisories - Linux Security Apr 11, 2019 | 06:12 amMathy Vanhoef (NYUAD) and Eyal Ronen (Tel Aviv University & KU Leuven) found multiple vulnerabilities in the WPA implementation found in wpa_supplication (station) and hostapd (access point). These vulnerability are also collectively known as "Dragonblood".
Read more... -
Debian Security Advisory 4429-1
Operating System: Debian ≈ Packet Storm Apr 10, 2019 | 17:16 pmDebian Linux Security Advisory 4429-1 - It was discovered that SPIP, a website engine for publishing, did not properly sanitize its user input. This would allow an authenticated user to perform arbitrary command execution.
Read more... -
Debian: DSA-4429-1: spip security update
Advisories - Linux Security Apr 10, 2019 | 10:27 amIt was discovered that SPIP, a website engine for publishing, did not properly sanitize its user input. This would allow an authenticated user to perform arbitrary command execution.
Read more... -
Debian Security Advisory 4428-1
Operating System: Debian ≈ Packet Storm Apr 9, 2019 | 19:53 pmDebian Linux Security Advisory 4428-1 - Jann Horn discovered that the PAM module in systemd insecurely uses the environment and lacks seat verification permitting spoofing an active session to PolicyKit. A remote attacker with SSH access can take advantage of[…]
Read more... -
Debian Security Advisory 4426-1
Operating System: Debian ≈ Packet Storm Apr 8, 2019 | 20:06 pmDebian Linux Security Advisory 4426-1 - Cedric Krier discovered that missing access validation in Tryton could result in information disclosure .
Read more... -
Debian Security Advisory 4427-1
Operating System: Debian ≈ Packet Storm Apr 8, 2019 | 20:06 pmDebian Linux Security Advisory 4427-1 - Michael Hanselmann discovered that Samba, a SMB/CIFS file, print, and login server for Unix, was vulnerable to a symlink traversal attack. It would allow remote authenticated users with write permission to either write or[…]
Read more... -
Debian Security Advisory 4425-1
Operating System: Debian ≈ Packet Storm Apr 8, 2019 | 20:05 pmDebian Linux Security Advisory 4425-1 - Kusano Kazuhiko discovered a buffer overflow vulnerability in the handling of Internationalized Resource Identifiers (IRI) in wget, a network utility to retrieve files from the web, which could result in the execution of arbitrary[…]
Read more... -
Debian: DSA-4428-1: systemd security update
Advisories - Linux Security Apr 8, 2019 | 18:45 pmJann Horn discovered that the PAM module in systemd insecurely uses the environment and lacks seat verification permitting spoofing an active session to PolicyKit. A remote attacker with SSH access can take advantage of this issue to gain PolicyKit privileges[…]
Read more... -
Debian: DSA-4427-1: samba security update
Advisories - Linux Security Apr 8, 2019 | 06:26 amMichael Hanselmann discovered that Samba, a SMB/CIFS file, print, and login server for Unix, was vulnerable to a symlink traversal attack. It would allow remote authenticated users with write permission to either write or detect files outside of Samba shares.
Read more... -
Debian: DSA-4426-1: tryton-server security update
Advisories - Linux Security Apr 7, 2019 | 10:00 amCedric Krier discovered that missing access validation in Tryton could result in information disclosure . For the stable distribution (stretch), this problem has been fixed in
Read more... -
Debian Security Advisory 4424-1
Operating System: Debian ≈ Packet Storm Apr 6, 2019 | 00:47 amDebian Linux Security Advisory 4424-1 - Adam Dobrawy, Frederico Silva and Gregory Brzeski from HyperOne.com discovered that pdns, an authoritative DNS server, did not properly validate user-supplied data when building a HTTP request from a DNS query in the HTTP[…]
Read more...