Dashboard

Package : activemq

CVE ID : CVE-2023-46604



Christoper L. Shannon discovered that the implementation of the OpenWire protocol in Apache ActiveMQ was susceptible to the execution of arbitrary code.



For the stable distribution (bookworm), these…

Package : twisted

CVE ID : CVE-2023-46137 CVE-2024-41671 CVE-2024-41810



Multiple security issues were found in Twisted, an event-based framework for internet applications, which could result in incorrect ordering of HTTP requests or…

Package : libheif

CVE ID : CVE-2023-29659 CVE-2023-49462 CVE-2024-41311



Multiple security issues were found in libheif, a library to parse HEIF and AVIF files, which could result in denial of service or potentially the execution of arbitrary…

Package : python-sql

CVE ID : CVE-2024-9774



Cedric Krier discovered that python-sql, a library to write SQL queries in a pythonic way, performed insufficient sanitising which could result in SQL injection.



For the stable distribution…

Package : openjdk-17

CVE ID : CVE-2024-21208 CVE-2024-21210 CVE-2024-21217 CVE-2024-21235



Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service or information disclosure.



For the…

Package : chromium

CVE ID : CVE-2024-9954 CVE-2024-9955 CVE-2024-9956 CVE-2024-9957

CVE-2024-9958 CVE-2024-9959 CVE-2024-9960 CVE-2024-9961

CVE-2024-9962 CVE-2024-9963 CVE-2024-9964 CVE-2024-9965

CVE-2024-9966



Security issues were discovered in…

Package : webkit2gtk

CVE ID : CVE-2024-40866 CVE-2024-44187



The following vulnerabilities have been discovered in the WebKitGTK web engine:



CVE-2024-40866



Hafiizh and YoKo Kho discovered that visiting a malicious website

may lead to address bar…

Package : python-reportlab

CVE ID : CVE-2023-33733



Elyas Damej discovered that a sandbox mechanism in ReportLab, a Python library to create PDF documents, could be bypassed which may result in the execution of arbitrary code when converting…

Package : node-dompurify

CVE ID : CVE-2024-47875



It was discovered that DOMPurify, a sanitizer for HTML, MathML and SVG was susceptible to nesting-based mXSS.



For the stable distribution (bookworm), this problem has been fixed in version…

Package : thunderbird

CVE ID : CVE-2024-9392 CVE-2024-9393 CVE-2024-9394 CVE-2024-9401

CVE-2024-9680



Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code.



For the stable distribution…