A weechat security update has been released for Debian GNU/Linux 8 LTS to fix an issue with crafted messages, that could result in a buffer overflow and application crash.
A jackson-databind security update has been released for Debian GNU/Linux 8 LTS to address two security issues in FasterXML jackson-databind.
A chromium security update has been released for DebianGNU/Linux 10 to address several vulnerabilities in the chromium web browser.
A phpmyadmin security update has been released to address two SQL injection vulnerabilities in phpMyAdmin.
A graphicsmagick security update has been released for Debian GNU/Linux 8 LTS to address a vulnerability that allows an attacker to read arbitrary files via a crafted image because of TranslateTextEx for SVG.
A python-bleach security update has been released for Debian GNU/Linux 10 to address a mutation XSS vulnerability in bleach.clean when strip=False and 'math' or 'svg' tags and one or more of the RCDATA tags were whitelisted.
An icu security update has been released for Debian GNU/Linux 8 LTS to address an integer overflow in the International Components for Unicode (ICU) library could result in denial of service and potentially the execution of arbitrary code.
A thunderbird security update has been released for Debian GNU/Linux 8 LTS to address multiple security issues which could potentially result in the execution of arbitrary code.
An amd64-microcode security update has been released for Debian GNU/Linux 8 LTS.
A tor security update has been released for Debian GNU/Linux 8 LTS to address a denial of service vulnerability.
A rails security update has been released for Debian GNU/Linux 8 LTS to address a possible XSS vulnerability in ActionView's JavaScript literal escape helpers.
A twisted security update has been released for Debian GNU/Linux 8 LTS to address a regression introduced in DLA-2145-1 due to the incorrect application of the upstream patch for CVE-2020-10108 & CVE-2020-10109 regarding a number of HTTP request splitting vulnerabilities in Twisted.
A thunderbird security update has been released for Debian GNU/Linux 9 and 10 to address multiple security issues which could potentially result in the execution of arbitrary code.
A gdal security update has been released for Debian GNU/Linux 8 LTS to address a heap-based buffer overflow.
A libvncserver security update has been released for Debian GNU/Linux 8 LTS to address a possible heap overflow issue.
A twisted security update has been released for Debian GNU/Linux 8 LTS to address a number of HTTP request splitting vulnerabilities in Twisted.
A qemu security update has been released for Debian GNU/Linux 8 LTS to address two out-of-bounds heap buffer accesses.
A webkit2gtk security update has been released for Debian GNU/Linux 10 to address an issue where maliciously crafted web content may lead to arbitrary code execution.
A slurm-llnl security update has been released for Debian GNU/Linux 8 LTS to address several issue in Simple Linux Utility for Resource Management (SLURM).
Cyril Brulebois has announced the release of the second alpha of the Debian GNU/Linux 11 Bullseye installer for testing.
