Seiteninhalt

RSS-Flux Debian Security

Dieser RSS-Flux wurde von folgender Seite importiert: http://www.debian.org/security/dsa-long.en.rdf

• DSA-4340 chromium-browser - security update

  An out-of-bounds bounds memory access issue was discovered in chromium's v8 javascript library by cloudfuzzer.

    18 November  2018

  lese mehr über DSA-4340 chromium-browser - security update

• DSA-4339 ceph - security update

  Multiple vulnerabilities were discovered in Ceph, a distributed storage and file system: The cephx authentication protocol was suspectible to replay attacks and calculated signatures incorrectly, ceph mon did not validate capabilities for pool operations (resulting in potential corruption or deletion of snapshot images) and a format string vulnerability in libradosstriper could result in denial of service.

    13 November  2018

  lese mehr über DSA-4339 ceph - security update

• DSA-4338 qemu - security update

  Integer overflows in the processing of packets in network cards emulated by QEMU, a fast processor emulator, could result in denial of service.

    11 November  2018

  lese mehr über DSA-4338 qemu - security update

• DSA-4337 thunderbird - security update

  Multiple security issues have been found in Thunderbird: Multiple memory safety errors may lead to the execution of arbitrary code or denial of service.

    10 November  2018

  lese mehr über DSA-4337 thunderbird - security update

• DSA-4336 ghostscript - security update

  Several vulnerabilities were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service, disclosure of existence and size of arbitrary files, or the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).

    10 November  2018

  lese mehr über DSA-4336 ghostscript - security update

• DSA-4335 nginx - security update

  Three vulnerabilities were discovered in Nginx, a high-performance web and reverse proxy server, which could result in denial of service in processing HTTP/2 (via excessive memory/CPU usage) or server memory disclosure in the ngx_http_mp4_module module (used for server-side MP4 streaming).

    8 November  2018

  lese mehr über DSA-4335 nginx - security update

• DSA-4334 mupdf - security update

  Multiple vulnerabilities were discovered in MuPDF, a PDF, XPS, and e-book viewer which could result in denial of service or the execution of arbitrary code if malformed documents are opened.

    4 November  2018

  lese mehr über DSA-4334 mupdf - security update

• DSA-4333 icecast2 - security update

  Nick Rolfe discovered multiple buffer overflows in the Icecast multimedia streaming server which could result in the execution of arbitrary code.

    4 November  2018

  lese mehr über DSA-4333 icecast2 - security update

• DSA-4332 ruby2.3 - security update

  Several vulnerabilities have been discovered in the interpreter for the Ruby language. The Common Vulnerabilities and Exposures project identifies the following problems:

    3 November  2018

  lese mehr über DSA-4332 ruby2.3 - security update

• DSA-4331 curl - security update

  Two vulnerabilities were discovered in cURL, an URL transfer library.

    2 November  2018

  lese mehr über DSA-4331 curl - security update

• DSA-4330 chromium-browser - security update

  Several vulnerabilities have been discovered in the chromium web browser.

    2 November  2018

  lese mehr über DSA-4330 chromium-browser - security update

• DSA-4329 teeworlds - security update

  It was discovered that incorrect connection setup in the server for Teeworlds, an online multi-player platform 2D shooter, could result in denial of service via forged connection packets (rendering all game server slots occupied).

    28 Oktober  2018

  lese mehr über DSA-4329 teeworlds - security update

• DSA-4328 xorg-server - security update

  Narendra Shinde discovered that incorrect command-line parameter validation in the Xorg X server may result in arbitary file overwrite, which can result in privilege escalation.

    25 Oktober  2018

  lese mehr über DSA-4328 xorg-server - security update

• DSA-4327 thunderbird - security update

  Multiple security issues have been found in Thunderbird: Multiple memory safety errors and use-after-frees may lead to the execution of arbitrary code or denial of service.

    25 Oktober  2018

  lese mehr über DSA-4327 thunderbird - security update

• DSA-4326 openjdk-8 - security update

  Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in denial of service, sandbox bypass, incomplete TLS identity verification, information disclosure or the execution of arbitrary code.

    25 Oktober  2018

  lese mehr über DSA-4326 openjdk-8 - security update

• DSA-4325 mosquitto - security update

  It was discovered that mosquitto, an MQTT broker, was vulnerable to remote denial-of-service attacks that could be mounted using various vectors.

    25 Oktober  2018

  lese mehr über DSA-4325 mosquitto - security update

• DSA-4324 firefox-esr - security update

  Multiple security issues have been found in the Mozilla Firefox web browser, which could result in the execution of arbitrary code, privilege escalation or information disclosure.

    24 Oktober  2018

  lese mehr über DSA-4324 firefox-esr - security update