Letzte Aktivitäten

  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : moin
    CVE ID : CVE-2017-5934
    Debian Bug : 910776

    Nitin Venkatesh discovered a cross-site scripting vulnerability in moin,
    a Python clone of WikiWiki. A remote attacker can conduct cross-site
    scripting attacks via the GUI…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : otrs2
    CVE ID : CVE-2018-14593 CVE-2018-16586 CVE-2018-16587

    Three vulnerabilities were discovered in the Open Ticket Request System
    which could result in privilege escalation or denial of service.

    For the stable distribution…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : imagemagick
    CVE ID : CVE-2018-16412 CVE-2018-16413 CVE-2018-16642 CVE-2018-16644
    CVE-2018-16645

    This update fixes several vulnerabilities in Imagemagick, a graphical
    software suite. Various memory handling problems or…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : wireshark
    CVE ID : CVE-2018-16056 CVE-2018-16057 CVE-2018-16058

    Multiple vulnerabilities have been discovered in Wireshark, a network
    protocol analyzer which could result in denial of service or the
    execution of arbitrary code.…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : net-snmp
    CVE ID : CVE-2018-18065
    Debian Bug : 910638

    Magnus Klaaborg Stubman discovered a NULL pointer dereference bug in
    net-snmp, a suite of Simple Network Management Protocol applications,
    allowing a remote,…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : linux
    CVE ID : CVE-2018-15471 CVE-2018-18021

    Several vulnerabilities have been discovered in the Linux kernel that
    may lead to a privilege escalation, denial of service or information
    leaks.

    CVE-2018-15471 (XSA-270)

    Felix…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : tinc
    CVE ID : CVE-2018-16738 CVE-2018-16758

    Several vulnerabilities were discovered in tinc, a Virtual Private
    Network (VPN) daemon. The Common Vulnerabilities and Exposures project
    identifies the following problems:

  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : git
    CVE ID : CVE-2018-17456

    joernchen of Phenoelit discovered that git, a fast, scalable,
    distributed revision control system, is prone to an arbitrary code
    execution vulnerability via a specially crafted .gitmodules file in a
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : firefox-esr
    CVE ID : CVE-2018-12386 CVE-2018-12387

    Two security issues have been found in the Mozilla Firefox web browser,
    which could potentially result in the execution of arbitrary code inside
    the sandboxed content process.
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : strongswan
    CVE ID : CVE-2018-17540

    Google's OSS-Fuzz revealed an exploitable bug in the gmp plugin caused by the
    patch that fixes CVE-2018-16151 and CVE-2018-16151 (DSA-4305-1).

    An attacker could trigger it using crafted…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : linux
    CVE ID : CVE-2018-6554 CVE-2018-6555 CVE-2018-7755 CVE-2018-9363
    CVE-2018-9516 CVE-2018-10902 CVE-2018-10938 CVE-2018-13099
    CVE-2018-14609 CVE-2018-14617 CVE-2018-14633 CVE-2018-14678
    CVE-2018-14734 CVE-2018-15572…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : python3.5
    CVE ID : CVE-2017-1000158 CVE-2018-1060 CVE-2018-1061
    CVE-2018-14647

    Multiple security issues were discovered in Python: ElementTree failed
    to initialise Expat's hash salt, two denial of service issues were found
    in…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : python2.7
    CVE ID : CVE-2018-1060 CVE-2018-1061 CVE-2018-14647
    CVE-2018-1000802

    Multiple security issues were discovered in Python: ElementTree failed
    to initialise Expat's hash salt, two denial of service issues were found
    in…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : strongswan
    CVE ID : CVE-2018-16151 CVE-2018-16152

    Sze Yiu Chau and his team from Purdue University and The University of Iowa
    found several issues in the gmp plugin for strongSwan, an IKE/IPsec suite.

    Problems in the parsing…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : firefox-esr
    CVE ID : CVE-2018-12383 CVE-2018-12385

    Two security issues have been found in the Mozilla Firefox web browser,
    which could potentially result in the execution of arbitrary code and
    local information disclosure.

    For…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : okular
    CVE ID : CVE-2018-1000801

    Joran Herve discovered that the Okular document viewer was susceptible
    to directory traversal via malformed .okular files (annotated document
    archives), which could result in the creation of…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : openafs
    CVE ID : CVE-2018-16947 CVE-2018-16948 CVE-2018-16949
    Debian Bug : 908616

    Several vulnerabilities were discovered in openafs, an implementation of
    the distributed filesystem AFS. The Common Vulnerabilities and…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : mediawiki
    CVE ID : CVE-2018-0503 CVE-2018-0504 CVE-2018-0505

    Multiple security vulnerabilities have been discovered in MediaWiki, a
    website engine for collaborative work, which result in incorrectly
    configured rate limits,…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : libarchive-zip-perl
    CVE ID : CVE-2018-10860
    Debian Bug : 902882

    It was discovered that Archive::Zip, a perl module for manipulation of
    ZIP archives, is prone to a directory traversal vulnerability. An
    attacker able to…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : texlive-bin
    CVE : not yet available

    Nick Roessler from the University of Pennsylvania has found a buffer overflow
    in texlive-bin, the executables for TexLive, the popular distribution of TeX
    document production system.

    This…