A httpcomponents-client security update has been released for Debian GNU/Linux 9 LTS to address an issue where a malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
A httpcomponents-client security update has been released for Debian GNU/Linux 8 Extended LTS to address an issue where a malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
A rails security update has been released for Debian GNU/Linux 9 LTS to address a potential Cross-Site Scripting (XSS) vulnerability was found in rails, a ruby based MVC framework.
A rails security update has been released for Debian GNU/Linux 8 Extended LTS to address two vulnerabilities in Rails.
A eclipse-wtp security update has been released for Debian GNU/Linux 9 LTS to address an issue where a component of the Eclipse IDE, XML and DTD files referring to external entities could be exploited to send the contents of local files to a remote server when edited or validated, even when external entity resolution is disabled in the user preferences.
Ondřej Surý has released new PHP packages for both Debian GNU/Linux 9 LTS and 10.
A squid3 security update has been released for Debian GNU/Linux 8 Extended LTS.
A golang-go.crypto security update security update has been released for Debian GNU/Linux 9 LTS to address three security issues.
A sympa security update has been released for Debian GNU/Linux 9 LTS to address an issue where a local attacker can obtain root access.
A activemq security update has been released for Debian GNU/Linux 9 LTS to address an issue where it is possible to connect to the registry without authentication and call the rebind method to rebind jmxrmi to something else.
A php5 security update has been released for Debian GNU/Linux 8 Extended LTS to address an issue where an attacker can forge a cookie.
A packagekit security update security update has been released for Debian GNU/Linux 9 LTS to address two vulnerabilities.
A sane-backends regression update has been released for Debian GNU/Linux 9 LTS to fix a regression introduced by the previous update.
A puma security update has been released for Debian GNU/Linux 9 LTS to address several security vulnerabilities in puma, a highly concurrent HTTP server for Ruby/Rack applications.
Steven Barrett has released a new Liquorix Linux Kernel for Debian and Ubuntu based on Kernel 5.8.14.
A tigervnc security update has been released for Debian GNU/Linux 9 LTS to address an issue where viewer implementation mishandles TLS certificate exceptions.
A thunderbird security update has been released for Debian GNU/Linux 10 to address multiple security issues.
A php7.0 security update has been released for Debian GNU/Linux 9 LTS to address an issue where an attacker can forge a cookie.
A xen security update has been released for Debian GNU/Linux 10 to address multiple vulnerabilities in the Xen hypervisor, which could result in denial of service, guest-to-host privilege escalation or information leaks.
A snmptt security update has been released for Debian GNU/Linux 9 LTS to address an issue where a remote attacker can send a malicious crafted SNMP trap, which possibly execute arbitrary shell code with the privileges of the process or cause a Denial of Service condition.
