Debian LTS Linux Distribution - Page 9.1
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
Several vulnerabilities have been fixed in poppler, a PDF rendering library. CVE-2020-23804
Batik is a toolkit for applications or applets that want to use images in the Scalable Vector Graphics (SVG) format for various purposes, such as viewing, generation or manipulation.
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-24998
It was discovered that there was a potential code injection vulnerability in org-mode, a popular add-on for the Emacs text editor.
Kevin Backhouse discovered an out-of-bounds array access in Libcue, a library for parsing CD metadata, which could result in the execution of arbitrary code.
Several vulnerabilities were discovered in Python 3.7. CVE-2022-48560
Two security issues were found in Curl, an easy-to-use client-side URL transfer library and command line tool. CVE-2023-28321
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. Debian follows the Thunderbird upstream releases. Support for the
Two vulnerabilities were discovered in lemonldap-ng: * an open redirection when OpenID-Connect configuration isn't generated by the manager and if OIDC RP has no oidcRPMetaDataOptionsRedirectUris * a Server-Side-Request-Forgery in OpenID-Connect (CVE-2023-44469)
Security issues were discovered in inetutils, a collection of GNU network utilities, which could lead to privilege escalation or potentially execution of arbitrary code.
Security vulnerabilities were found in python-urllib3, an HTTP library with thread-safe connection pooling for Python, which could lead to information disclosure or authorization bypass.
prometheus-alertmanager package, a component of Prometheus, an application used for event monitoring and alerting, was vulnerable to stored XSS type attack.
It has been found that the update of freerdp2 (see DLA-3606-1) exposed a bug in vinagre, which causes crashes and breaks RDP connections with the symtoms of hangs and black screens.
It has been found that the update of freerdp2 (see DLA-3606-1) exposed a bug in gnome-boxes, which breaks RDP connections with the symtoms of hangs and black screens.
Multiple vulnerabilties have been found in freelrdp2, a free implementation of the Remote Desktop Protocol (RDP). The vulnerabilties potentially allows buffer overreads, buffer overflows, interger overflows, use-after-free, DoS vectors.
A couple of security issues were reported in grub2 package, which is GRand Unified Bootloader v2, that could cause out-of-bounds write and heap-based buffer overflow.
Multiple issues were discovered in qemu, a fast processor emulator. CVE-2020-24165
Several vulnerabilities were found in libXpm, the X Pixmap (XPM) image library. CVE-2023-43786
Several vulnerabilities were found in libx11, the X11 client-side library. CVE-2023-43785
A SQL Injection vulnerability was found in PostgreSQL, an object-relational SQL database management system. An extension script is vulnerable if it uses @extowner@, @extschema@,
Sign up to get the latest security news affecting Linux and
open source delivered straight to your inbox
Powered By
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.