Debian - SITE - Advanced Web Factories

Debian: DSA-5888-1: ghostscript Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 26, 2025 | 19:41 pm

Multiple security issues were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which could result in denial of service and potentially the execution of arbitrary code if malformed document files are processed.

Debian: DSA-5887-1: exim4 Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 26, 2025 | 14:41 pm

It was discovered that a use-after-free vulnerability in Exim4, a mail transport agent, may result in privilege escalation for a local attacker.

Debian: DSA-5886-1: ruby-rack Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 25, 2025 | 19:30 pm

Multiple security issues were found in Rack, an interface for developing web applications in Ruby, which could result in log injection or information disclosure.

Debian: DSA-5885-1: webkit2gtk Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 23, 2025 | 20:30 pm

The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2024-44192

Debian: DSA-5884-1: libxslt Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 23, 2025 | 13:57 pm

Ivan Fratric discovered two use-after-free vulnerabilities in libxslt, an XSLT processing runtime library, which may result in the execution of arbitrary code if a specially crafted files are processed.

Debian: DSA-5883-1: mercurial Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 22, 2025 | 12:49 pm

A cross-site scripting vulnerability was discovered in hgweb, the integrated stand-alone web interface of the Mercurial version control system.

Debian: DSA-5882-1: chromium Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 20, 2025 | 22:19 pm

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

Debian: DSA-5881-1: rails Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 17, 2025 | 19:41 pm

Multiple security issues were discovered in the Rails web framework which could result cross-site scripting, information disclosure, denial of service or bypass of content security policies.

Debian: DSA-5880-1: freetype Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 17, 2025 | 17:52 pm

An out-of-bounds write vulnerability when attempting to parse font subglyph structures related to TrueType GX and variable font files was discovered in FreeType, which may result in the execution of arbitrary code when processing specially crafted fonts.

Debian: DSA-5879-1: opensaml Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 16, 2025 | 19:02 pm

Alexander Tan discovered that the OpenSAML C++ library was susceptible to forging of signed SAML messages. For additional details please refer to the upstream advisory at https://shibboleth.net/community/advisories/secadv_20250313.txt

Debian: DSA-5878-1: php8.2 Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 14, 2025 | 19:10 pm

Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in denial of service or HTTP request smuggling.

Debian: DSA-5877-1: chromium Security Advisory Updates

Stay Vigilant with Timely Linux Security Advisories Mar 12, 2025 | 17:21 pm

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

Debian: DSA-5876-1 critical: thunderbird DoS & code execution issues

Stay Vigilant with Timely Linux Security Advisories Mar 8, 2025 | 18:14 pm

Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the stable distribution (bookworm), these problems have been fixed in

Debian DSA-5875-1: chromium critical updates on code execution threat

Stay Vigilant with Timely Linux Security Advisories Mar 6, 2025 | 19:14 pm

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

Debian Bookworm: DSA-5874-1 moderate: firefox-esr code execution

Stay Vigilant with Timely Linux Security Advisories Mar 5, 2025 | 19:16 pm

Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.

Debian Bookworm: DSA-5873-1 moderate: libreoffice arbitrary commands

Stay Vigilant with Timely Linux Security Advisories Mar 4, 2025 | 21:36 pm

Amel Bouziane-Leblond discovered that insufficient validation of "vnd.libreoffice.command" URI schemes could result in the execution of arbitrary macro commands.

Debian Bookworm: DSA-5872-1 moderate: xorg-server privilege escalation

Stay Vigilant with Timely Linux Security Advisories Feb 28, 2025 | 20:10 pm

Jan-Niklas Sohn discovered several vulnerabilities in the Xorg X server, which may result in privilege escalation if the X server is running privileged.

Debian Bookworm: DSA-5871-1 Critical: emacs shell command execution

Stay Vigilant with Timely Linux Security Advisories Feb 27, 2025 | 21:38 pm

Two security vulnerabilities were discovered in Emacs: CVE-2024-53920

Debian 12: DSA-5870-1 critical: openh264 buffer overflow

Stay Vigilant with Timely Linux Security Advisories Feb 26, 2025 | 21:54 pm

A heap-based buffer overflow flaw in the decoding functions of openh264, a codec library which supports H.264 encoding and decoding, may allow a remote attacker to cause a denial of service or the execution of arbitrary code if a specially[…]