-
Debian Samba Critical Access Bypass Remote Code Exec Advisory DSA-6297-1
Debian May 26, 2026 | 13:49 pm
Read more...
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix, which might result in bypass of access checks, overwrite of files in unintended situations using the WORM vfs module, installing CA certificates over http[…] -
Debian Trixie SPIP Critical Remote Code Exec Vulnerabilities DSA-6296-1
Debian May 25, 2026 | 15:12 pm
Read more...
Multiple vulnerabilities were discovered in SPIP, a website engine for publishing, which may result in remote code execution or an open redirect. For the stable distribution (trixie), these problems have been fixed in version 4.4.15+dfsg-0+deb13u1. -
Debian Trixie Linux Privilege Escalation Denial of Service DSA-6295-1
Debian May 23, 2026 | 19:50 pm
Read more...
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For the stable distribution (trixie), these problems have been fixed in version 6.12.90-1. Additionally this update includes a[…] -
Debian Trixie Linux Major Denial of Service Privilege Escalation DSA-6295-1
Debian May 23, 2026 | 19:50 pm
Read more...
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For the stable distribution (trixie), these problems have been fixed in version 6.12.90-1. Additionally this update includes a[…] -
Debian libgcrypt Denial of Service Security Advisory DSA-6294-1
Debian May 22, 2026 | 21:50 pm
Read more...
It was discovered that an incorrect implementation of ECDH encryption (with NIST, Brainpool, X448, or X25519 curves) within Libgcrypt could result in denial of service. For the oldstable distribution (bookworm), this problem has been fixed in version 1.10.1-3+deb12u1. -
Debian krb5 Important NegoEx Denial of Service Vuln DSA-6293-1
Debian May 22, 2026 | 21:32 pm
Read more...
Cem Onat Karagun discovered two vulnerabilities in the NegoEx parsing in krb5, the MIT implementation of Kerberos. An unauthenticated remote attacker can take advantage of these flaws to cause a denial of service. For the oldstable distribution (bookworm), this problem[…] -
Debian Bookworm haveged Important Local Privilege Escalation Fix DSA-6292-1
Debian May 22, 2026 | 21:05 pm
Read more...
Dirk Mueller discovered that a flaw in the function performing a credential check on the command socket of haveged, a userspace entropy daemon, may result in local privilege escalation. For the oldstable distribution (bookworm), this problem has been fixed in[…] -
Debian haproxy Important HTTP Request Smuggling CVE-2026-33555 DSA-6291-1
Debian May 22, 2026 | 20:18 pm
Read more...
Martino Spagnuolo reported that the HTTP/3 parsing code in HAProxy, a fast and reliable load balancing reverse proxy, does not properly validate the received body size and the announced content-length header, which may result in HTTP request smuggling. For the[…] -
Debian Trixie NSS Major Denial of Service Uncontrolled Code Exec DSA-6290-1
Debian May 21, 2026 | 20:39 pm
Read more...
Several vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in or denial of service or potentially the execution of arbitrary code. For the stable distribution (trixie), these problems have been fixed in version 2:3.110-1+deb13u2.
Debian Security
- font size decrease font size
increase font size
Last modified on Monday, 06 June 2016 23:10