Letzte Aktivitäten

Package : ffmpeg
CVE ID : CVE-2019-13390 CVE-2019-17539 CVE-2019-17542
CVE-2020-12284 CVE-2020-13904

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the…

Package : ruby2.5
CVE ID : CVE-2020-10663 CVE-2020-10933

Several vulnerabilities have been discovered in the interpreter for the Ruby language.

CVE-2020-10663

Jeremy Evans reported an unsafe object creation vulnerability in the
json gem bundled…

Package : roundcube
CVE ID : CVE-2020-15562
Debian Bug : 964355

It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not properly sanitize incoming mail messages. This would allow a remote…

Package : php7.3
CVE ID : CVE-2019-11048 CVE-2020-7062 CVE-2020-7063 CVE-2020-7064
CVE-2020-7065 CVE-2020-7066 CVE-2020-7067

Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could…

Package : thunderbird
CVE ID : CVE-2020-12417 CVE-2020-12418 CVE-2020-12419
CVE-2020-12420 CVE-2020-12421

Multiple security issues have been found in Thunderbird which could result in denial of service or potentially the execution of…

Package : php7.0
CVE ID : CVE-2019-11048 CVE-2020-7062 CVE-2020-7063 CVE-2020-7064
CVE-2020-7066 CVE-2020-7067

Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in…

Package : chromium
Debian Bug : 964145

The previous update for chromium released as DSA 4714-1 was mistakenly built without compiler optimizations. This caused high CPU load and frequent crashes. Updated chromium packages are now available…

Package : docker.io
CVE ID : CVE-2020-13401
Debian Bug : 962141

Etienne Champetier discovered that Docker, a Linux container runtime, created network bridges which by default accept IPv6 router advertisements.
This could allow an attacker…

Package : imagemagick
CVE ID : CVE-2019-13300 CVE-2019-13304 CVE-2019-13306 CVE-2019-13307
CVE-2019-15140 CVE-2019-19948

This update fixes multiple vulnerabilities in Imagemagick: Various memory handling problems and cases of missing or…

Package : chromium
CVE ID : CVE-2020-6423 CVE-2020-6430 CVE-2020-6431 CVE-2020-6432
CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436
CVE-2020-6437 CVE-2020-6438 CVE-2020-6439 CVE-2020-6440
CVE-2020-6441 CVE-2020-6442 CVE-2020-6443…

Package : firefox-esr
CVE ID : CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420
CVE-2020-12421

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of…

Package : imagemagick
CVE ID : CVE-2019-7175 CVE-2019-7395 CVE-2019-7396 CVE-2019-7397
CVE-2019-7398 CVE-2019-10649 CVE-2019-11470 CVE-2019-11472
CVE-2019-11597 CVE-2019-11598 CVE-2019-12974 CVE-2019-12975
CVE-2019-12976 CVE-2019-12977…

Package : coturn
CVE ID : CVE-2020-4067 CVE-2020-6061 CVE-2020-6062
Debian Bug : 951876

Several vulnerabilities were discovered in coturn, a TURN and STUN server for VoIP.

CVE-2020-4067

Felix Doerre reported that the STUN response buffer…

Package : trafficserver
CVE ID : CVE-2020-9494
Debian Bug : 963629

A vulnerability was discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in denial of service via malformed HTTP/2 headers.

For the…

Package : wordpress
CVE ID : CVE-2020-4046 CVE-2020-4047 CVE-2020-4048 CVE-2020-4049
CVE-2020-4050
Debian Bug : 962685

Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform…

Package : neomutt
CVE ID : CVE-2020-14093 CVE-2020-14954

Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Neomutt mail client, which could enable MITM attacks.

For the stable distribution…

Package : mutt
CVE ID : CVE-2020-14093

Damian Poddebniak and Fabian Ising discovered two security issues in the STARTTLS handling of the Mutt mail client, which could enable MITM attacks.

For the oldstable distribution (stretch), these…

Package : python-django
CVE ID : CVE-2020-9402 CVE-2020-13254 CVE-2020-13596

It was discovered that Django, a high-level Python web development framework, did not properly sanitize input. This would allow a remote attacker to perform SQL…

Package : vlc
CVE ID : CVE-2020-13428

A vulnerability was discovered in the VLC media player, which could result in the execution of arbitrary code or denial of service if a malformed video file is opened.

For the oldstable distribution…

Package : mysql-connector-java
CVE ID : CVE-2020-2875 CVE-2020-2933 CVE-2020-2934

Three vulnerabilities have been found in the MySQL Connector/J JDBC driver.

For the oldstable distribution (stretch), these problems have been fixed in version…