A crmsh security update has been released for Debian GNU/Linux 9 LTS to address an issue where local attackers can execute commands via shell code injection to the "crm history" command-line tool, potentially allowing escalation of privileges.
Steven Barrett has released a new Liquorix Linux Kernel for Debian and Ubuntu based on the Kernel 5.10 series with patches from Kernel 5.10.11.
A: python-bottle security update has been released for Debian GNU/Linux 9 LTS to address a Web Cache Poisoning vulnerability.
A python-bottle security update has been released for Debian GNU/Linux 8 Extended LTS to address a Web Cache Poisoning vulnerability.
A gst-plugins-bad1.0 regression update has been released for Debian GNU/Linux 10 to address a regression introduced by DSA 4833-1.
A salt security update has been released for Debian GNU/Linux 10 to address several vulnerabilities that could result in authentication bypass and invocation of Salt SSH, creation of certificates with weak file permissions via the TLS execution module or shell injections with the Salt API using the SSH client.
Steven Barrett has released a new Liquorix Linux Kernel based on Kernel 5.10.10 for Debian GNU/Linux and Ubuntu Linux.
An openvswitch security update has been released for Debian GNU/Linux 10 to address two vulnerabilities, which could result in denial of service.
A tomcat9 security update has been released for Debian GNU/Linux 10 to address two vulnerabilities, which could result in information disclosure.
A vlc security update has been released for Debian GNU/Linux 10 to address multiple vulnerabilities, which could result in the execution of arbitrary code or denial of service if a malformed media file is opened.
A flatpak regression update has been released for Debian GNU/Linux 10 to address a regression introduced by the previous DSA 4830-1 update.
A drupal7 security update has been released for Debian GNU/Linux 9 LTS to address a vulnerability in the version of the Archive_Tar library that comes with Drupal.
The problem with newer versions of Linux Kernel 5.10 such as Liquorix Linux Kernel 5.10-12 and the VirtualBox package from Debian Unstable has been fixed.
A mutt security update has been released for Debian GNU/Linux 9 LTS to address an issue where remote attackers can cause a denial of service by sending email messages with sequences of semicolon characters in RFC822 address fields.
A mutt security update has been released for Debian GNU/Linux 8 Extended LTS to address an issue where remote attackers can cause a denial of service by sending email messages with sequences of semicolon characters in RFC822 address fields.
Steven Barrett has released a new Liquorix Linux Kernel based on Kernel 5.10.9 for Debian GNU/Linux and Ubuntu Linux. This version is currently not compatible with VirtualBox 6.1.16-dfsg-6 from Debian Unstable. If you need a VirtualBox 6.1.16-dfsg-6 compatible kernel, use Liquorix Linux Kernel 5.10-9 instead.
A gst-plugins-bad1.0 security update has been released for Debian GNU/Linux 8 Extended LTS to address a buffer overflow in the H264 support of the GStreamer multimedia framework.
A gst-plugins-bad1.0 security update has been released for Debian GNU/Linux 9 LTS to address a buffer overflow in the H264 support of the GStreamer multimedia framework.
A gst-plugins-bad1.0 security update has been released for Debian GNU/Linux 10 to address a buffer overflow in the H264 support of the GStreamer multimedia framework.
Norbert Preining published a tweet that KDE Plasma 5.20.5, Apps 20.12.1, and Frameworks 5.78 just made it into the upcoming Debian 11 Bullseye release
