A libpam-tacplus security update has been released for Debian GNU/Linux 8 LTS to address an issue where shared secrets such as private server keys were being added in the clear to various logs.
A graphicsmagick security update has been released for Debian GNU/Linux 8 LTS to address a vulnerability that results in a heap buffer overwrite when magnifying MNG images.
An openjdk-7 security update has been released for Debian GNU/Linux 7 Extended LTS to address a possible man-in-the-middle attack during DSA signature generation to recover the private key.
A nss security update has been released for Debian GNU/Linux 7 Extended LTS to address a possible man-in-the-middle attack during DSA signature generation to recover the private key.
A cups security update has been released for Debian GNU/Linux 8 LTS to address two security issues.
A gnutls28 security update has been released for Debian GNU/Linux 10 to address a flaw was reported in the TLS session ticket key construction in GnuTLS.
A nodejs security update has been released for Debian GNU/Linux 10 to address two vulnerabilities in Node.js, which could result in denial of service and potentially the execution of arbitrary code.
A gnutls26 security update has been released for Debian GNU/Linux 7 Extended LTS to address heap and stack overflows.
A dbus security update has been released for Debian GNU/Linux 8 LTS to address a denial of service issue.
A python-django security update has been released for Debian GNU/Linux 8 LTS.
A netqmail security update has been released for Debian GNU/Linux 8 LTS.
A firefox-esr security update has been released for both Debian GNU/Linux 9 and 10.
A python-httplib2 security update has been released for Debian GNU/Linux 8 LTS.
A json-c security update has been released for Debian GNU/Linux 8 LTS to address an integer overflow and out-of-bounds write via a large JSON file.
A php-horde security update has been released for Debian GNU/Linux 8 LTS to address a stored Cross-Site Scripting (XSS) vulnerability via an SVG image upload containing a JavaScript payload.
A php5 security update has been released for Debian GNU/Linux 7 Extended LTS to address a memory limit issue with long filenames or field names.
A json-c regression update has been released for Debian GNU/Linux 8 LTS to address an integer overflow and out-of-bounds write via a large JSON file.
A php-horde-gollem security update has been released for Debian GNU/Linux 8 LTS to address a reflected Cross-Site Scripting (XSS) vulnerability via the HTTP GET dir parameter in the browser functionality.
A sane-backends security update has been released for Debian GNU/Linux 8 LTS to address denial of service and several memory management issues.
A dosfstools security update has been released for Debian GNU/Linux 8 LTS to address both an invalid memory and heap overflow vulnerability in dosfstools.
