-
Operating System: Debian ≈ Packet Storm
Apr 17, 2018 | 16:14 pm
Debian Linux Security Advisory 4174-1 - The Citrix Security Response Team discovered that corosync, a cluster engine implementation, allowed an unauthenticated user to cause a denial-of-service by application crash.
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 17, 2018 | 01:24 am
Debian Linux Security Advisory 4173-1 - Marcin Noga discovered multiple vulnerabilities in readxl, a GNU R package to read Excel files (via the integrated libxls library), which could result in the execution of arbitrary code if a malformed spreadsheet is[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 12, 2018 | 17:53 pm
Debian Linux Security Advisory 4079-2 - It was discovered that the poppler upload for the oldstable distribution (jessie), released as DSA-4079-1, did not correctly address CVE-2017-9776 and additionally caused regressions when rendering PDFs embedding JBIG2 streams. Updated packages are now[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 11, 2018 | 18:18 pm
Debian Linux Security Advisory 4169-1 - Cedric Buissart from Red Hat discovered an information disclosure bug in pcs, a pacemaker command line interface and GUI. The REST interface normally doesn't allow passing --debug parameter to prevent information leak, but the[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 10, 2018 | 10:33 am
Debian Linux Security Advisory 4170-1 - Multiple vulnerabilities have been discovered in the PJSIP/PJProject multimedia communication which may result in denial of service during the processing of SIP and SDP messages and ioqueue keys.
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 8, 2018 | 14:12 pm
Debian Linux Security Advisory 4168-1 - Florian Grunow und Birk Kauer of ERNW discovered a path traversal vulnerability in SquirrelMail, a webmail application, allowing an authenticated remote attacker to retrieve or delete arbitrary files via mail attachment.
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 6, 2018 | 16:23 pm
Debian Linux Security Advisory 4167-1 - A buffer-overflow vulnerability was discovered in Sharutils, a set of utilities handle Shell Archives. An attacker with control on the input of the unshar command, could crash the application or execute arbitrary code in[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 5, 2018 | 22:24 pm
Debian Linux Security Advisory 4166-1 - Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in denial of service, sandbox bypass, execution of arbitrary code, incorrect LDAP/GSS authentication, insecure use of cryptography or bypass[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 4, 2018 | 22:39 pm
Debian Linux Security Advisory 4164-1 - Several vulnerabilities have been found in the Apache HTTPD server.
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 4, 2018 | 01:02 am
This Metasploit module will generate and upload a plugin to ProcessMaker resulting in execution of PHP code as the web server user. Credentials for a valid user account with Administrator roles is required to run this module. This Metasploit module[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 2, 2018 | 23:23 pm
Debian Linux Security Advisory 4163-1 - It was discovered that a race condition in beep (if configured as setuid via debconf) allows local privilege escalation.
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 2, 2018 | 18:54 pm
Debian Linux Security Advisory 4160-1 - It was discovered that insufficient input sanitising in libevt, a library to access the Windows Event Log (EVT) format, could result in denial of service or the execution of arbitrary code if a malformed[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 2, 2018 | 01:24 am
Debian Linux Security Advisory 4162-1 - Multiple vulnerabilities have been discovered in Irssi, a terminal-based IRC client which can result in denial of service.
Read more...
-
Operating System: Debian ≈ Packet Storm
Apr 2, 2018 | 01:23 am
Debian Linux Security Advisory 4161-1 - James Davis discovered two issues in Django, a high-level Python web development framework, that can lead to a denial-of-service attack. An attacker with control on the input of the django.utils.html.urlize() function or django.utils.text.Truncator's chars()[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 30, 2018 | 17:44 pm
Debian Linux Security Advisory 4157-1 - Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit.
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 29, 2018 | 16:31 pm
Debian Linux Security Advisory 4156-1 - A remote code execution vulnerability has been found in Drupal, a fully-featured content management framework.
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 29, 2018 | 16:25 pm
Debian Linux Security Advisory 4155-1 - Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or information disclosure.
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 28, 2018 | 19:17 pm
Debian Linux Security Advisory 4154-1 - A heap corruption vulnerability was discovered in net-snmp, a suite of Simple Network Management Protocol applications, triggered when parsing the PDU prior to the authentication process. A remote, unauthenticated attacker can take advantage of[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 28, 2018 | 14:13 pm
Debian Linux Security Advisory 4153-1 - It was discovered that a use-after-free in the compositor of Firefox can result in the execution of arbitrary code.
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 28, 2018 | 14:12 pm
Debian Linux Security Advisory 4152-1 - Two vulnerabilities were discovered in MuPDF, a PDF, XPS, and e-book viewer, which may result in denial of service or remote code execution. An attacker can craft a PDF document which, when opened in[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 27, 2018 | 15:59 pm
Debian Linux Security Advisory 4151-1 - Bas van Schaik and Kevin Backhouse discovered a stack-based buffer overflow vulnerability in librelp, a library providing reliable event logging over the network, triggered while checking x509 certificates from a peer. A remote attacker[…]
Read more...
-
Operating System: Debian ≈ Packet Storm
Mar 24, 2018 | 13:12 pm
Debian Linux Security Advisory 4150-1 - It was discovered that an integer overflow in the International Components for Unicode (ICU) library could result in denial of service and potentially the execution of arbitrary code.
Read more...