A viewvc security update has been released for Debian GNU/Linux 10 LTS to address two issues.
An emacs security update has been released for Debian GNU/Linux 11 to address a missing input sanitization in the ctags functionality of Emacs that may result in the execution of arbitrary shell commands.
An EXIV2 security update has been released for Debian GNU/Linux 8 Extended LTS to address a number of memory access violations and other input validation failures that can be triggered by passing specially crafted files.
A ViewVC security update has been released for Debian GNU/Linux 9 Extended LTS to address two issues.
A netty security update has been released for Debian GNU/Linux 10 LTS to address several out-of-memory, stack overflow, and HTTP request smuggling vulnerabilities.
An EXIV2 security update has been released for Debian GNU/Linux 9 Extended LTS to address a number of memory access violations and other input validation failures that can be triggered by passing specially crafted files.
A libxstream-java security update has been released for Debian GNU/Linux 11 to address an issue that allowed a remote attacker to terminate the application with a stack overflow error, resulting in a denial of service only via manipulation of the processed input stream.
A libxstream-java security update has been released for Debian GNU/Linux 10 LTS to address an issue that allowed a remote attacker to terminate the application with a stack overflow error, resulting in a denial of service only via manipulation of the processed input stream.
A netty security update has been released for Debian GNU/Linux 11 to address several out-of-memory, stack overflow, and HTTP request smuggling vulnerabilities.
A libjettison-java security update has been released for Debian GNU/Linux 11 to address several flaws that may cause a denial of service via out-of-memory or stack overflow errors.
A hsqldb security update has been released for Debian GNU/Linux 11 to address a vulnerability that may lead to a remote code execution attack.
A leptonlib security update has been released for Debian GNU/Linux 8 Extended LTS to address several issues related to the unsafe processing of untrusted input and dealing with predictable paths below /tmp.
A exiv2 security update has been released for Debian GNU/Linux 10 LTS to address a number of memory access violations and other input validation failures that can be triggered by passing specially crafted files.
A Ruby-Sinatra security update has been released for Debian GNU/Linux 10 LTS to address a potential reflected file download (RFD) vulnerability.
A leptonlib security update has been released for Debian GNU/Linux 9 Extended LTS to address several issues related to the unsafe processing of untrusted input and dealing with predictable paths below /tmp.
A libtasn1-6 security update has been released for Debian GNU/Linux 10 LTS to address an off-by-one array size issue.
For Debian GNU/Linux 10 LTS and 11, Ondřej Surý has released new PHP 8.2.1 and 8.1.14 packages in addition to PHP 8.0.27, 7.4.33-2, 7.3.33-9, 7.2.34-37, 7.1.33-51, 7.0.33-64, and 5.6.40-64 packages with a security fix for PDO/SQLite.
A trafficserver security update has been released for Debian GNU/Linux 11 to address several vulnerabilities that could result in HTTP request smuggling, cache poisoning, or denial of service.
A grub2 security update has been released for Debian GNU/Linux 8 Extended LTS to address several issues that could result in crashes and potentially the execution of arbitrary code.
The miniDebConf Debian conference, which will be held in Lisbon from February 12 to 16, is now accepting registrations.
