Letzte Aktivitäten

  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : modsecurity
    CVE ID : CVE-2020-15598

    Ervin Hegedues discovered that ModSecurity v3 enabled global regular expression matching which could result in denial of service. For additional information please refer to
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : inspircd
    CVE ID : CVE-2019-20917 CVE-2020-25269
    Debian Bug : 960650

    Two security issues were discovered in the pgsql and mysql modules of the InspIRCd IRC daemon, which could result in denial of service.

    For the stable…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : teeworlds
    CVE ID : CVE-2020-12066

    It was discovered that insufficient sanitising of received network packets in the game server of Teeworlds, an online multi-player platform 2D shooter, could result in denial of service.

    For the…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : lemonldap-ng
    CVE ID : CVE-2020-24660

    It was discovered that the default configuration files for running the Lemonldap::NG Web SSO system on the Nginx web server were susceptible to authorisation bypass of URL access rules. The…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : zeromq3
    CVE ID : CVE-2020-15166

    It was discovered that ZeroMQ, a lightweight messaging kernel library does not properly handle connecting peers before a handshake is completed. A remote, unauthenticated client connecting to an…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : qemu
    CVE ID : CVE-2020-12829 CVE-2020-14364 CVE-2020-15863 CVE-2020-16092
    Debian Bug : 961451 968947

    Multiple security issues were discovered in QEMU, a fast processor
    emulator:

    CVE-2020-12829

    An integer overflow in the sm501…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : ark
    CVE ID : CVE-2020-24654
    Debian Bug : 969437

    Fabian Vogt reported that the Ark archive manager did not sanitise extraction paths, which could result in maliciously crafted archives with symlinks writing outside the extraction…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : xorg-server
    CVE ID : CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14361
    CVE-2020-14362
    Debian Bug : 968986

    Several vulnerabilities have been discovered in the X.Org X server.
    Missing input sanitising in X server…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : apache2
    CVE ID : CVE-2020-1927 CVE-2020-1934 CVE-2020-9490 CVE-2020-11984
    CVE-2020-11993

    Several vulnerabilities have been found in the Apache HTTPD server.

    CVE-2020-1927

    Fabrice Perez reported that certain mod_rewrite configurations…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : lilypond
    CVE ID : CVE-2020-17353

    Faidon Liambotis discovered that Lilypond, a program for typesetting sheet music, did not restrict the inclusion of Postscript and SVG commands when operating in safe mode, which could result in the…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : openexr
    CVE ID : CVE-2017-9111 CVE-2017-9113 CVE-2017-9114 CVE-2017-9115
    CVE-2020-11758 CVE-2020-11759 CVE-2020-11760 CVE-2020-11761
    CVE-2020-11762 CVE-2020-11763 CVE-2020-11764 CVE-2020-11765
    CVE-2020-15305 CVE-2020-15306

    Multiple…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : thunderbird
    CVE ID : CVE-2020-15664 CVE-2020-15669

    Multiple security issues have been found in Thunderbird which could result in the execution of arbitrary code or the unintended installation of extensions.

    For the stable…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : mupdf
    CVE ID : CVE-2019-13290
    Debian Bug : 931475

    A heap-based buffer overflow flaw was discovered in MuPDF, a lightweight PDF viewer, which may result in denial of service or the execution of arbitrary code if a malformed PDF…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : bind9
    CVE ID : CVE-2020-8619 CVE-2020-8622 CVE-2020-8623 CVE-2020-8624
    Debian Bug : 966497

    Several vulnerabilities were discovered in BIND, a DNS server implementation.

    CVE-2020-8619

    It was discovered that an asterisk character in…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : squid
    CVE ID : CVE-2020-15810 CVE-2020-15811 CVE-2020-24606
    Debian Bug : 968932 968933 968934

    Several vulnerabilities were discovered in Squid, a fully featured web proxy cache, which could result in request splitting, request…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : nginx
    CVE ID : CVE-2020-11724
    Debian Bug : 964950

    It was reported that the Lua module for Nginx, a high-performance web and reverse proxy server, is prone to a HTTP request smuggling vulnerability.

    For the stable distribution…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : firefox-esr
    CVE ID : CVE-2020-15664 CVE-2020-15669

    Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or unintended or malicious extensions…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : ghostscript
    CVE ID : CVE-2020-16287 CVE-2020-16288 CVE-2020-16289 CVE-2020-16290
    CVE-2020-16291 CVE-2020-16292 CVE-2020-16293 CVE-2020-16294
    CVE-2020-16295 CVE-2020-16296 CVE-2020-16297 CVE-2020-16298
    CVE-2020-16299 CVE-2020-16300…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : icingaweb2
    CVE ID : CVE-2020-24368
    Debian Bug : 968833

    A directory traversal vulnerability was discovered in Icinga Web 2, a web interface for Icinga, which could result in the disclosure of files readable by the process.

    For the…
  • Micha

    Hat eine Antwort im Thema Debian Security Advisory verfasst.
    Beitrag
    Package : net-snmp
    CVE ID : CVE-2020-15861 CVE-2020-15862
    Debian Bug : 965166 966599

    Several vulnerabilities were discovered in net-snmp, a suite of Simple Network Management Protocol applications, which could lead to privilege…