Gentoo Linux Security Advisories

GLSA 201201-19 (Normal): acroread

Adobe Reader: Multiple vulnerabilities

GLSA 201201-18 (High): bip

bip: Multiple vulnerabilities

GLSA 201201-17 (Normal): chromium

Chromium: Multiple vulnerabilities

GLSA 201201-16 (Normal): xkeyboard-config

X.Org X Server/X Keyboard Configuration Database: Screen lock bypass

GLSA 201201-15 (High): ktsuss

ktsuss: Privilege escalation

GLSA 201201-14 (Normal): mit-krb5-appl

MIT Kerberos 5 Applications: Multiple vulnerabilities

GLSA 201201-13 (High): mit-krb5

MIT Kerberos 5: Multiple vulnerabilities

GLSA 201201-12 (Normal): tor

Tor: Multiple vulnerabilities

GLSA 201201-11 (Normal): fwbuilder

Firewall Builder: Privilege escalation

GLSA 201201-10 (Normal): jasper

JasPer: User-assisted execution of arbitrary code

GLSA 201201-09 (Normal): freetype

FreeType: Multiple vulnerabilities

GLSA 201201-08 (Normal): fontforge

FontForge: User-assisted execution of arbitrary code

GLSA 201201-07 (High): nxserver-freeedition (and 1

NX Server Free Edition, NX Node: Privilege escalation

GLSA 201201-06 (High): iscsitarget

iSCSI Enterprise Target: Arbitrary code execution

GLSA 201201-05 (High): mDNSResponder

mDNSResponder: Multiple vulnerabilities

GLSA 201201-04 (Normal): logsurfer+

Logsurfer: Arbitrary code execution

GLSA 201201-03 (Normal): chromium (and 1

Chromium, V8: Multiple vulnerabilities

GLSA 201201-02 (High): mysql

MySQL: Multiple vulnerabilities

GLSA 201201-01 (High): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 201111-12 (Normal): abcm2ps

abcm2ps: Multiple vulnerabilities

GLSA 201111-11 (Normal): tar

GNU Tar: User-assisted execution of arbitrary code

GLSA 201111-10 (Normal): evince

Evince: Multiple vulnerabilities

GLSA 201111-09 (Normal): Safe

Perl Safe module: Arbitrary Perl code injection

GLSA 201111-08 (High): radvd

radvd: Multiple vulnerabilities

GLSA 201111-07 (High): tintin

TinTin++: Multiple vulnerabilities

GLSA 201111-06 (High): maradns

MaraDNS: Arbitrary code execution

GLSA 201111-05 (Normal): chromium (and 1

Chromium, V8: Multiple vulnerabilities

GLSA 201111-04 (Normal): PEAR-PhpDocumentor

phpDocumentor: Function call injection

GLSA 201111-03 (High): openttd

OpenTTD: Multiple vulnerabilities

GLSA 201111-02 (Normal): sun-jre-bin (and 2

Oracle JRE/JDK: Multiple vulnerabilities

GLSA 201111-01 (High): chromium (and 1

Chromium, V8: Multiple vulnerabilities

GLSA 201110-26 (High): libxml2

libxml2: Multiple vulnerabilities

GLSA 201110-25 (Normal): pure-ftpd

Pure-FTPd: Multiple vulnerabilities

GLSA 201110-24 (High): squid

Squid: Multiple vulnerabilities

GLSA 201110-23 (Low): mod_authnz_external

Apache mod_authnz_external: SQL injection

GLSA 201110-22 (Normal): postgresql (and 2

PostgreSQL: Multiple vulnerabilities

GLSA 201110-21 (High): asterisk

Asterisk: Multiple vulnerabilities

GLSA 201110-20 (High): clamav

Clam AntiVirus: Multiple vulnerabilities

GLSA 201110-19 (Normal): xorg-server

X.Org X Server: Multiple vulnerabilities

GLSA 201110-18 (Normal): rgmanager

rgmanager: Privilege escalation

GLSA 201110-17 (Normal): avahi

Avahi: Denial of Service

GLSA 201110-16 (High): cyrus-imapd

Cyrus IMAP Server: Multiple vulnerabilities

GLSA 201110-15 (Normal): gnupg

GnuPG: User-assisted execution of arbitrary code

GLSA 201110-14 (Normal): dbus

D-Bus: Multiple vulnerabilities

GLSA 201110-13 (High): tor

Tor: Multiple vulnerabilities

GLSA 201110-12 (Normal): unbound

Unbound: Denial of Service

GLSA 201110-11 (Normal): adobe-flash

Adobe Flash Player: Multiple vulnerabilities

GLSA 201110-10 (Normal): wget

Wget: User-assisted file creation or overwrite

GLSA 201110-09 (Normal): conky

Conky: Privilege escalation

GLSA 201110-08 (High): feh

feh: Multiple vulnerabilities

GLSA 201110-07 (Normal): vsftpd

vsftpd: Denial of Service

GLSA 201110-06 (High): php

PHP: Multiple vulnerabilities

GLSA 201110-05 (Normal): gnutls

GnuTLS: Multiple vulnerabilities

GLSA 201110-04 (High): dovecot

Dovecot: Multiple vulnerabilities

GLSA 201110-03 (Normal): bugzilla

Bugzilla: Multiple vulnerabilities

GLSA 201110-02 (Normal): wireshark

Wireshark: Multiple vulnerabilities

GLSA 201110-01 (High): openssl

OpenSSL: Multiple vulnerabilities

GLSA 201101-09 (Normal): adobe-flash

Adobe Flash Player: Multiple vulnerabilities

GLSA 201101-08 (Normal): acroread

Adobe Reader: Multiple vulnerabilities

GLSA 201101-07 (Normal): prewikka

Prewikka: password disclosure

GLSA 201101-06 (Normal): IO-Socket-SSL

IO::Socket::SSL: Certificate validation error

GLSA 201101-05 (Normal): openafs

OpenAFS: Arbitrary code execution

GLSA 201101-04 (Normal): aria2

aria2: Directory traversal

GLSA 201101-03 (Normal): libvpx

libvpx: User-assisted execution of arbitrary code

GLSA 201101-02 (High): tor

Tor: Remote heap-based buffer overflow

GLSA 201101-01 (Normal): gif2png

gif2png: User-assisted execution of arbitrary code

GLSA 201012-01 (Normal): chromium

Chromium: Multiple vulnerabilities

GLSA 201011-01 (High): glibc

GNU C library: Multiple vulnerabilities

GLSA 201010-01 (Normal): libpng

Libpng: Multiple vulnerabilities

GLSA 201009-09 (Normal): fence

fence: Multiple symlink vulnerabilites

GLSA 201009-08 (High): python-updater

python-updater: Untrusted search path

GLSA 201009-07 (Normal): libxml2

libxml2: Denial of Service

GLSA 201009-06 (Normal): clamav

Clam AntiVirus: Multiple vulnerabilities

GLSA 201009-05 (Normal): acroread

Adobe Reader: Multiple vulnerabilities

GLSA 201009-04 (Normal): sarg

SARG: User-assisted execution of arbitrary code

GLSA 201009-03 (High): sudo

sudo: Privilege Escalation

GLSA 201009-02 (High): maildrop

Maildrop: privilege escalation

GLSA 201009-01 (Normal): wxGTK

wxGTK: User-assisted execution of arbitrary code

GLSA 201006-21 (High): unrealircd

UnrealIRCd: Multiple vulnerabilities

GLSA 201006-20 (Normal): asterisk

Asterisk: Multiple vulnerabilities

GLSA 201006-19 (Normal): bugzilla

Bugzilla: Multiple vulnerabilities

GLSA 201006-18 (Normal): sun-jre-bin (and 2

Oracle JRE/JDK: Multiple vulnerabilities

GLSA 201006-17 (Normal): lighttpd

lighttpd: Denial of Service

GLSA 201006-16 (Normal): gd

GD: User-assisted execution of arbitrary code

GLSA 201006-15 (Normal): xemacs

XEmacs: User-assisted execution of arbitrary code

GLSA 201006-14 (Normal): newt

Newt: User-assisted execution of arbitrary code

GLSA 201006-13 (Normal): smarty

Smarty: Multiple vulnerabilities

GLSA 201006-12 (Normal): fetchmail

Fetchmail: Multiple vulnerabilities

GLSA 201006-11 (Normal): bind

BIND: Multiple vulnerabilities

GLSA 201006-10 (Normal): multipath-tools

multipath-tools: World-writeable socket

GLSA 201006-09 (High): sudo

sudo: Privilege escalation

GLSA 201006-08 (Normal): nano

nano: Multiple vulnerabilities

GLSA 201006-07 (Normal): silc-toolkit (and 1

SILC: Multiple vulnerabilities

GLSA 201006-06 (Normal): transmission

Transmission: Multiple vulnerabilities

GLSA 201006-05 (Normal): wireshark

Wireshark: Multiple vulnerabilities

GLSA 201006-04 (Normal): xine-lib

xine-lib: User-assisted execution of arbitrary code

GLSA 201006-03 (Normal): imagemagick

ImageMagick: User-assisted execution of arbitrary code

GLSA 201006-02 (Normal): camlimages

CamlImages: User-assisted execution of arbitrary code

GLSA 201006-01 (Normal): freetype

FreeType 1: User-assisted execution of arbitrary code

GLSA 201003-01 (High): sudo

sudo: Privilege escalation

GLSA 201001-09 (Normal): ruby

Ruby: Terminal Control Character Injection

GLSA 201001-08 (High): squirrelmail

SquirrelMail: Multiple vulnerabilities

GLSA 201001-07 (Normal): blender

Blender: Untrusted search path

GLSA 201001-06 (Normal): aria2

aria2: Multiple vulnerabilities

GLSA 201001-05 (Normal): net-snmp

net-snmp: Authorization bypass

GLSA 201001-04 (Normal): virtualbox-bin (and 3

VirtualBox: Multiple vulnerabilities

GLSA 201001-03 (High): php

PHP: Multiple vulnerabilities

GLSA 201001-02 (Normal): adobe-flash

Adobe Flash Player: Multiple vulnerabilities

GLSA 201001-01 (Normal): ntp

NTP: Denial of Service

GLSA 200912-02 (Normal): rails

Ruby on Rails: Multiple vulnerabilities

GLSA 200912-01 (Normal): openssl

OpenSSL: Multiple vulnerabilities

GLSA 200911-06 (High): PEAR-Net_Traceroute

PEAR Net_Traceroute: Command injection

GLSA 200911-05 (Normal): wireshark

Wireshark: Multiple vulnerabilities

GLSA 200911-04 (Normal): dstat

dstat: Untrusted search path

GLSA 200911-03 (High): c-client (and 1

UW IMAP toolkit: Multiple vulnerabilities

GLSA 200911-02 (Normal): sun-jre-bin (and 4

Sun JDK/JRE: Multiple vulnerabilites

GLSA 200911-01 (Normal): horde (and 2

Horde: Multiple vulnerabilities

GLSA 200910-03 (Normal): acroread

Adobe Reader: Multiple vulnerabilities

GLSA 200910-02 (High): pidgin

Pidgin: Multiple vulnerabilities

GLSA 200910-01 (Normal): wget

Wget: Certificate validation error

GLSA 200909-20 (Normal): curl

cURL: Certificate validation error

GLSA 200909-19 (Normal): dnsmasq

Dnsmasq: Multiple vulnerabilities

GLSA 200909-18 (High): nginx

nginx: Remote execution of arbitrary code

GLSA 200909-17 (Normal): znc

ZNC: Directory traversal

GLSA 200909-16 (Normal): wireshark

Wireshark: Denial of Service

GLSA 200909-15 (Normal): lynx

Lynx: Arbitrary command execution

GLSA 200909-14 (Normal): horde (and 2

Horde: Multiple vulnerabilities

GLSA 200909-13 (High): irssi

irssi: Execution of arbitrary code

GLSA 200909-12 (Normal): htmldoc

HTMLDOC: User-assisted execution of arbitrary code

GLSA 200909-11 (Normal): gccxml

GCC-XML: Insecure temporary file usage

GLSA 200909-10 (Normal): lmbench

LMBench: Insecure temporary file usage

GLSA 200909-09 (Normal): screenie

Screenie: Insecure temporary file usage

GLSA 200909-08 (Normal): cmus

C* music player: Insecure temporary file usage

GLSA 200909-07 (Normal): tkman

TkMan: Insecure temporary file usage

GLSA 200909-06 (Normal): amule

aMule: Parameter injection

GLSA 200909-05 (Normal): openswan

Openswan: Denial of Service

GLSA 200909-04 (Normal): clamav

Clam AntiVirus: Multiple vulnerabilities

GLSA 200909-03 (Normal): apr (and 1

Apache Portable Runtime, APR Utility Library: Execution of arbitrary code

GLSA 200909-02 (Normal): libvorbis

libvorbis: User-assisted execution of arbitrary code

GLSA 200909-01 (Normal): pam

Linux-PAM: Privilege escalation

GLSA 200908-10 (Normal): dillo

Dillo: User-assisted execution of arbitrary code

GLSA 200908-09 (High): dokuwiki

DokuWiki: Local file inclusion

GLSA 200908-08 (Normal): dhcp

ISC DHCP: dhcpd Denial of Service

GLSA 200908-07 (Normal): Compress-Raw-Zlib (and 1

Perl Compress::Raw modules: Denial of Service

GLSA 200908-06 (Normal): cdf

CDF: User-assisted execution of arbitrary code

GLSA 200908-05 (High): subversion

Subversion: Remote execution of arbitrary code

GLSA 200908-04 (Normal): adobe-flash (and 1

Adobe products: Multiple vulnerabilities

GLSA 200908-03 (Normal): tiff

libTIFF: User-assisted execution of arbitrary code

GLSA 200908-02 (Normal): bind

BIND: Denial of Service

GLSA 200908-01 (Normal): opensc

OpenSC: Multiple vulnerabilities

GLSA 200907-16 (Normal): python

Python: Integer overflows

GLSA 200907-15 (High): nagios-core

Nagios: Execution of arbitrary code

GLSA 200907-14 (Normal): rb_libtorrent (and 1

Rasterbar libtorrent: Directory traversal

GLSA 200907-13 (High): pulseaudio

PulseAudio: Local privilege escalation

GLSA 200907-12 (High): dhcp

ISC DHCP: dhcpclient Remote execution of arbitrary code

GLSA 200907-11 (Normal): gst-plugins-good (and 2

GStreamer plug-ins: User-assisted execution of arbitrary code

GLSA 200907-10 (Low): syslog-ng

Syslog-ng: Chroot escape

GLSA 200907-09 (High): cyrus-sasl

Cyrus-SASL: Execution of arbitrary code

GLSA 200907-08 (High): rt2400 (and 4

Multiple Ralink wireless drivers: Execution of arbitrary code

GLSA 200907-07 (Normal): libmodplug (and 1

ModPlug: User-assisted execution of arbitrary code

GLSA 200907-06 (Normal): acroread

Adobe Reader: User-assisted execution of arbitrary code

GLSA 200907-05 (Normal): git

git: git-daemon Denial of Service

GLSA 200907-04 (High): apache

Apache: Multiple vulnerabilities

GLSA 200907-03 (Normal): apr-util

APR Utility Library: Multiple vulnerabilities

GLSA 200907-02 (Normal): mod_security

ModSecurity: Denial of Service

GLSA 200907-01 (Normal): libwmf

libwmf: User-assisted execution of arbitrary code

GLSA 200906-05 (High): wireshark

Wireshark: Multiple vulnerabilities

GLSA 200906-04 (Low): mod_jk

Apache Tomcat JK Connector: Information disclosure

GLSA 200906-03 (High): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 200906-02 (Normal): ruby

Ruby: Denial of Service

GLSA 200906-01 (Low): libpng

libpng: Information disclosure

GLSA 200905-09 (Normal): libsndfile

libsndfile: User-assisted execution of arbitrary code

GLSA 200905-08 (High): ntp

NTP: Remote execution of arbitrary code

GLSA 200905-07 (Normal): pidgin

Pidgin: Multiple vulnerabilities

GLSA 200905-06 (Normal): acpid

acpid: Denial of Service

GLSA 200905-05 (Normal): freetype

FreeType: Multiple vulnerabilities

GLSA 200905-04 (Normal): gnutls

GnuTLS: Multiple vulnerabilities

GLSA 200905-03 (Normal): ipsec-tools

IPSec Tools: Denial of Service

GLSA 200905-02 (Normal): cscope

Cscope: User-assisted execution of arbitrary code

GLSA 200905-01 (Normal): asterisk

Asterisk: Multiple vulnerabilities

GLSA 200904-20 (Normal): cups

CUPS: Multiple vulnerabilities

GLSA 200904-19 (Normal): lcms

LittleCMS: Multiple vulnerabilities

GLSA 200904-18 (High): udev

udev: Multiple vulnerabilities

GLSA 200904-17 (Normal): acroread

Adobe Reader: User-assisted execution of arbitrary code

GLSA 200904-16 (Normal): libsndfile

libsndfile: User-assisted execution of arbitrary code

GLSA 200904-15 (Normal): mpg123

mpg123: User-assisted execution of arbitrary code

GLSA 200904-14 (Normal): f-prot

F-PROT Antivirus: Multiple Denial of Service vulnerabilities

GLSA 200904-13 (Normal): ventrilo-server-bin

Ventrilo: Denial of Service

GLSA 200904-12 (Normal): wicd

Wicd: Information disclosure

GLSA 200904-11 (High): tor

Tor: Multiple vulnerabilities

GLSA 200904-10 (Normal): avahi

Avahi: Denial of Service

GLSA 200904-09 (High): mit-krb5

MIT Kerberos 5: Multiple vulnerabilities

GLSA 200904-08 (Normal): openssl

OpenSSL: Denial of Service

GLSA 200904-07 (Normal): xpdf

Xpdf: Untrusted search path

GLSA 200904-06 (Normal): eog

Eye of GNOME: Untrusted search path

GLSA 200904-05 (Normal): ntp

ntp: Certificate validation error

GLSA 200904-04 (Normal): weechat

WeeChat: Denial of Service

GLSA 200904-03 (Normal): gnumeric

Gnumeric: Untrusted search path

GLSA 200904-02 (Normal): glib

GLib: Execution of arbitrary code

GLSA 200904-01 (Normal): openfire

Openfire: Multiple vulnerabilities

GLSA 200903-41 (Normal): gedit

gedit: Untrusted search path

GLSA 200903-40 (Normal): analog

Analog: Denial of Service

GLSA 200903-39 (High): pam_krb5

pam_krb5: Privilege escalation

GLSA 200903-38 (Normal): squid

Squid: Multiple Denial of Service vulnerabilities

GLSA 200903-37 (Normal): ghostscript-gpl (and 2

Ghostscript: User-assisted execution of arbitrary code

GLSA 200903-36 (Normal): mldonkey

MLDonkey: Information disclosure

GLSA 200903-35 (Normal): muttprint

Muttprint: Insecure temporary file usage

GLSA 200903-34 (Normal): amarok

Amarok: User-assisted execution of arbitrary code

GLSA 200903-33 (Normal): ffmpeg (and 2

FFmpeg: Multiple vulnerabilities

GLSA 200903-32 (Normal): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 200903-31 (Normal): libcdaudio

libcdaudio: User-assisted execution of arbitrary code

GLSA 200903-30 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200903-29 (Normal): bluez-utils (and 1

BlueZ: Arbitrary code execution

GLSA 200903-28 (Normal): libpng

libpng: Multiple vulnerabilities

GLSA 200903-27 (Normal): proftpd

ProFTPD: Multiple vulnerabilities

GLSA 200903-26 (Normal): tmsnc

TMSNC: Execution of arbitrary code

GLSA 200903-25 (Normal): courier-authlib

Courier Authentication Library: SQL Injection vulnerability

GLSA 200903-24 (High): shadow

Shadow: Privilege escalation

GLSA 200903-23 (Normal): adobe-flash

Adobe Flash Player: Multiple vulnerabilities

GLSA 200903-22 (High): ganglia

Ganglia: Execution of arbitrary code

GLSA 200903-21 (Normal): curl

cURL: Arbitrary file access

GLSA 200903-20 (Normal): websvn

WebSVN: Multiple vulnerabilities

GLSA 200903-19 (Normal): xerces-c

Xerces-C++: Denial of Service

GLSA 200903-18 (Normal): openswan

Openswan: Insecure temporary file creation

GLSA 200903-17 (Normal): vnc

Real VNC: User-assisted execution of arbitrary code

GLSA 200903-16 (Normal): epiphany

Epiphany: Untrusted search path

GLSA 200903-15 (High): git

git: Multiple vulnerabilties

GLSA 200903-14 (Normal): bind

BIND: Incorrect signature verification

GLSA 200903-13 (Normal): mpfr

MPFR: Denial of Service

GLSA 200903-12 (Normal): optipng

OptiPNG: User-assisted execution of arbitrary code

GLSA 200903-11 (Normal): pycrypto

PyCrypto: Execution of arbitrary code

GLSA 200903-10 (Normal): irrlicht

Irrlicht: User-assisted execution of arbitrary code

GLSA 200903-09 (High): openttd

OpenTTD: Execution of arbitrary code

GLSA 200903-08 (Normal): geda

gEDA: Insecure temporary file creation

GLSA 200903-07 (Normal): samba

Samba: Data disclosure

GLSA 200903-06 (Normal): nfs-utils

nfs-utils: Access restriction bypass

GLSA 200903-05 (Normal): pdfjam

PDFjam: Multiple vulnerabilities

GLSA 200903-04 (Normal): devil

DevIL: User-assisted execution of arbitrary code

GLSA 200903-03 (Normal): audacity

Audacity: User-assisted execution of arbitrary code

GLSA 200903-02 (High): znc

ZNC: Privilege escalation

GLSA 200903-01 (Normal): vinagre

Vinagre: User-assisted execution of arbitrary code

GLSA 200902-06 (Normal): emacs (and 1

GNU Emacs, XEmacs: Multiple vulnerabilities

GLSA 200902-05 (High): ktorrent

KTorrent: Multiple vulnerabilitites

GLSA 200902-04 (Normal): xterm

xterm: User-assisted arbitrary commands execution

GLSA 200902-03 (High): valgrind

Valgrind: Untrusted search path

GLSA 200902-02 (Normal): openssl

OpenSSL: Certificate validation error

GLSA 200902-01 (High): sudo

sudo: Privilege escalation

GLSA 200901-15 (Normal): net-snmp

Net-SNMP: Denial of Service

GLSA 200901-14 (Normal): scilab

Scilab: Insecure temporary file usage

GLSA 200901-13 (Normal): pidgin

Pidgin: Multiple vulnerabilities

GLSA 200901-12 (High): noip-updater

noip-updater: Execution of arbitrary code

GLSA 200901-11 (Normal): avahi

Avahi: Denial of Service

GLSA 200901-10 (Normal): gnutls

GnuTLS: Certificate validation error

GLSA 200901-09 (Normal): acroread

Adobe Reader: User-assisted execution of arbitrary code

GLSA 200901-08 (Normal): online-bookmarks

Online-Bookmarks: Multiple vulnerabilities

GLSA 200901-07 (Normal): mplayer

MPlayer: Multiple vulnerabilities

GLSA 200901-06 (Normal): tremulous (and 1

Tremulous: User-assisted execution of arbitrary code

GLSA 200901-05 (Normal): streamripper

Streamripper: Multiple vulnerabilities

GLSA 200901-04 (Normal): dbus

D-Bus: Denial of Service

GLSA 200901-03 (Normal): pdnsd

pdnsd: Denial of Service and cache poisoning

GLSA 200901-02 (Normal): jhead

JHead: Multiple vulnerabilities

GLSA 200901-01 (High): ndiswrapper

NDISwrapper: Arbitrary remote code execution

GLSA 200812-24 (Normal): vlc

VLC: Multiple vulnerabilities

GLSA 200812-23 (Normal): imlib2

Imlib2: User-assisted execution of arbitrary code

GLSA 200812-22 (Normal): ampache

Ampache: Insecure temporary file usage

GLSA 200812-21 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200812-20 (High): phpcollab

phpCollab: Multiple vulnerabilities

GLSA 200812-19 (Normal): pdns

PowerDNS: Multiple vulnerabilities

GLSA 200812-18 (Normal): jasper

JasPer: User-assisted execution of arbitrary code

GLSA 200812-17 (Normal): ruby

Ruby: Multiple vulnerabilities

GLSA 200812-16 (Normal): dovecot

Dovecot: Multiple vulnerabilities

GLSA 200812-15 (Normal): povray

POV-Ray: User-assisted execution of arbitrary code

GLSA 200812-14 (Normal): aview

aview: Insecure temporary file usage

GLSA 200812-13 (Normal): openoffice (and 1

OpenOffice.org: Multiple vulnerabilities

GLSA 200812-12 (Normal): honeyd

Honeyd: Insecure temporary file creation

GLSA 200812-11 (High): cups

CUPS: Multiple vulnerabilities

GLSA 200812-10 (Normal): Archive-Tar

Archive::Tar: Directory traversal vulnerability

GLSA 200812-09 (Normal): opensc

OpenSC: Insufficient protection of smart card PIN

GLSA 200812-08 (Normal): mgetty

Mgetty: Insecure temporary file usage

GLSA 200812-07 (High): mantisbt

Mantis: Multiple vulnerabilities

GLSA 200812-06 (Normal): libxml2

libxml2: Multiple vulnerabilities

GLSA 200812-05 (Normal): libsamplerate

libsamplerate: User-assisted execution of arbitrary code

GLSA 200812-04 (Normal): lighttpd

lighttpd: Multiple vulnerabilities

GLSA 200812-03 (Normal): ipsec-tools

IPsec-Tools: racoon Denial of Service

GLSA 200812-02 (Normal): enscript

enscript: User-assisted execution of arbitrary code

GLSA 200812-01 (Normal): optipng

OptiPNG: User-assisted execution of arbitrary code

GLSA 200811-05 (Normal): php

PHP: Multiple vulnerabilities

GLSA 200811-04 (Normal): graphviz

Graphviz: User-assisted execution of arbitrary code

GLSA 200811-03 (Normal): faad2

FAAD2: User-assisted execution of arbitrary code

GLSA 200811-02 (Normal): gallery

Gallery: Multiple vulnerabilities

GLSA 200811-01 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200810-03 (High): libspf2

libspf2: DNS response buffer overflow

GLSA 200810-02 (High): portage

Portage: Untrusted search path local root vulnerability

GLSA 200810-01 (Normal): wordnet

WordNet: Execution of arbitrary code

GLSA 200809-18 (Normal): clamav

ClamAV: Multiple Denials of Service

GLSA 200809-17 (Normal): wireshark

Wireshark: Multiple Denials of Service

GLSA 200809-16 (Normal): git

Git: User-assisted execution of arbitrary code

GLSA 200809-15 (Normal): ed

GNU ed: User-assisted execution of arbitrary code

GLSA 200809-14 (Normal): bitlbee

BitlBee: Security bypass

GLSA 200809-13 (Normal): R

R: Insecure temporary file creation

GLSA 200809-12 (Normal): newsbeuter

Newsbeuter: User-assisted execution of arbitrary code

GLSA 200809-11 (Normal): havp

HAVP: Denial of Service

GLSA 200809-10 (High): mantisbt

Mantis: Multiple vulnerabilities

GLSA 200809-09 (Normal): postfix

Postfix: Denial of Service

GLSA 200809-08 (Normal): amarok

Amarok: Insecure temporary file creation

GLSA 200809-07 (Normal): tiff

libTIFF: User-assisted execution of arbitrary code

GLSA 200809-06 (Normal): vlc

VLC: Multiple vulnerabilities

GLSA 200809-05 (Normal): courier-authlib

Courier Authentication Library: SQL injection vulnerability

GLSA 200809-04 (Normal): mysql

MySQL: Privilege bypass

GLSA 200809-03 (Normal): realplayer

RealPlayer: Buffer overflow

GLSA 200809-02 (Normal): dnsmasq

dnsmasq: Denial of Service and DNS spoofing

GLSA 200809-01 (Normal): yelp

yelp: User-assisted execution of arbitrary code

GLSA 200808-12 (High): postfix

Postfix: Local privilege escalation vulnerability

GLSA 200808-11 (Normal): uudeview (and 1

UUDeview: Insecure temporary file creation

GLSA 200808-10 (Normal): acroread

Adobe Reader: User-assisted execution of arbitrary code

GLSA 200808-09 (Low): openldap

OpenLDAP: Denial of Service vulnerability

GLSA 200808-08 (Low): stunnel

stunnel: Security bypass

GLSA 200808-07 (Low): clamav

ClamAV: Multiple Denials of Service

GLSA 200808-06 (Normal): libxslt

libxslt: Execution of arbitrary code

GLSA 200808-05 (Normal): dhcp

ISC DHCP: Denial of Service

GLSA 200808-04 (Normal): wireshark

Wireshark: Denial of Service

GLSA 200808-03 (Normal): mozilla-firefox (and 7

Mozilla products: Multiple vulnerabilities

GLSA 200808-02 (Normal): net-snmp

Net-SNMP: Multiple vulnerabilities

GLSA 200808-01 (Normal): xine-lib

xine-lib: User-assisted execution of arbitrary code

GLSA 200807-16 (Normal): python

Python: Multiple vulnerabilities

GLSA 200807-15 (Normal): pan

Pan: User-assisted execution of arbitrary code

GLSA 200807-14 (Normal): audit

Linux Audit: Buffer overflow

GLSA 200807-13 (Normal): vlc

VLC: Multiple vulnerabilities

GLSA 200807-12 (Normal): bitchx

BitchX: Multiple vulnerabilities

GLSA 200807-11 (High): peercast

PeerCast: Buffer overflow

GLSA 200807-10 (Normal): bacula

Bacula: Information disclosure

GLSA 200807-09 (Normal): mercurial

Mercurial: Directory traversal

GLSA 200807-08 (High): bind

BIND: Cache poisoning

GLSA 200807-07 (Normal): nxnode (and 1

NX: User-assisted execution of arbitrary code

GLSA 200807-06 (Normal): apache

Apache: Denial of Service

GLSA 200807-05 (Normal): openoffice (and 1

OpenOffice.org: User-assisted execution of arbitrary code

GLSA 200807-04 (Normal): poppler

Poppler: User-assisted execution of arbitrary code

GLSA 200807-03 (High): libpcre (and 1

PCRE: Buffer overflow

GLSA 200807-02 (Normal): motion

Motion: Execution of arbitrary code

GLSA 200807-01 (Normal): python

Python: Multiple integer overflows

GLSA 200806-11 (Normal): ibm-jdk-bin (and 1

IBM JDK/JRE: Multiple vulnerabilities

GLSA 200806-10 (Normal): freetype

FreeType: User-assisted execution of arbitrary code

GLSA 200806-09 (Normal): libvorbis

libvorbis: Multiple vulnerabilities

GLSA 200806-08 (Normal): openssl

OpenSSL: Denial of Service

GLSA 200806-07 (High): xorg-server

X.Org X server: Multiple vulnerabilities

GLSA 200806-06 (Normal): evolution

Evolution: User-assisted execution of arbitrary code

GLSA 200806-05 (Normal): cbrpager

cbrPager: User-assisted execution of arbitrary code

GLSA 200806-04 (Normal): rdesktop

rdesktop: Multiple vulnerabilities

GLSA 200806-03 (Normal): imlib2

Imlib 2: User-assisted execution of arbitrary code

GLSA 200806-02 (Normal): libxslt

libxslt: Execution of arbitrary code

GLSA 200806-01 (High): mtr

mtr: Stack-based buffer overflow

GLSA 200805-23 (Normal): samba

Samba: Heap-based buffer overflow

GLSA 200805-22 (Normal): mplayer

MPlayer: User-assisted execution of arbitrary code

GLSA 200805-21 (Normal): roundup

Roundup: Permission bypass

GLSA 200805-20 (High): gnutls

GnuTLS: Execution of arbitrary code

GLSA 200805-19 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200805-18 (Normal): mozilla-firefox (and 6

Mozilla products: Multiple vulnerabilities

GLSA 200805-17 (Normal): perl (and 1

Perl: Execution of arbitrary code

GLSA 200805-16 (Normal): openoffice (and 1

OpenOffice.org: Multiple vulnerabilities

GLSA 200805-15 (Normal): libid3tag

libid3tag: Denial of Service

GLSA 200805-14 (Normal): cdf

Common Data Format library: User-assisted execution of arbitrary code

GLSA 200805-13 (Normal): ptex

PTeX: Multiple vulnerabilities

GLSA 200805-12 (Normal): blender

Blender: Multiple vulnerabilities

GLSA 200805-11 (Normal): chicken

Chicken: Multiple vulnerabilities

GLSA 200805-10 (Normal): pngcrush

Pngcrush: User-assisted execution of arbitrary code

GLSA 200805-09 (Normal): moinmoin

MoinMoin: Privilege escalation

GLSA 200805-08 (Normal): inspircd

InspIRCd: Denial of Service

GLSA 200805-07 (Normal): ltsp

Linux Terminal Server Project: Multiple vulnerabilities

GLSA 200805-06 (Normal): firebird

Firebird: Data disclosure

GLSA 200805-05 (Normal): wireshark

Wireshark: Denial of Service

GLSA 200805-04 (High): egroupware

eGroupWare: Multiple vulnerabilities

GLSA 200805-03 (Normal): aterm (and 6

Multiple X11 terminals: Local privilege escalation

GLSA 200805-02 (Low): phpmyadmin

phpMyAdmin: Information disclosure

GLSA 200805-01 (Normal): horde (and 5

Horde Application Framework: Multiple vulnerabilities

GLSA 200804-30 (High): kdelibs

KDE start_kdeinit: Multiple vulnerabilities

GLSA 200804-29 (Normal): comix

Comix: Multiple vulnerabilities

GLSA 200804-28 (Normal): jrockit-jdk-bin

JRockit: Multiple vulnerabilities

GLSA 200804-27 (Normal): silc-toolkit (and 2

SILC: Multiple vulnerabilities

GLSA 200804-26 (Normal): openfire

Openfire: Denial of Service

GLSA 200804-25 (Normal): vlc

VLC: User-assisted execution of arbitrary code

GLSA 200804-24 (Low): dbmail

DBmail: Data disclosure

GLSA 200804-23 (High): cups

CUPS: Integer overflow vulnerability

GLSA 200804-22 (Normal): pdns-recursor

PowerDNS Recursor: DNS Cache Poisoning

GLSA 200804-21 (Normal): adobe-flash

Adobe Flash Player: Multiple vulnerabilities

GLSA 200804-20 (Normal): sun-jre-bin (and 2

Sun JDK/JRE: Multiple vulnerabilities

GLSA 200804-19 (Normal): php-toolkit

PHP Toolkit: Data disclosure and Denial of Service

GLSA 200804-18 (Normal): poppler

Poppler: User-assisted execution of arbitrary code

GLSA 200804-17 (Normal): speex

Speex: User-assisted execution of arbitrary code

GLSA 200804-16 (High): rsync

rsync: Execution of arbitrary code

GLSA 200804-15 (High): libpng

libpng: Execution of arbitrary code

GLSA 200804-14 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200804-13 (Normal): asterisk

Asterisk: Multiple vulnerabilities

GLSA 200804-12 (Normal): gnome-screensaver

gnome-screensaver: Privilege escalation

GLSA 200804-11 (Normal): policyd-weight

policyd-weight: Insecure temporary file creation

GLSA 200804-10 (Normal): tomcat

Tomcat: Multiple vulnerabilities

GLSA 200804-09 (Normal): am-utils

am-utils: Insecure temporary file creation

GLSA 200804-08 (Normal): lighttpd

lighttpd: Multiple vulnerabilities

GLSA 200804-07 (High): pecl-apc

PECL APC: Buffer Overflow

GLSA 200804-06 (Normal): unzip

UnZip: User-assisted execution of arbitrary code

GLSA 200804-05 (Normal): nxnode (and 1

NX: User-assisted execution of arbitrary code

GLSA 200804-04 (Normal): mysql

MySQL: Multiple vulnerabilities

GLSA 200804-03 (Normal): openssh

OpenSSH: Privilege escalation

GLSA 200804-02 (Normal): bzip2

bzip2: Denial of Service

GLSA 200804-01 (High): cups

CUPS: Multiple vulnerabilities

GLSA 200803-32 (Normal): wireshark

Wireshark: Denial of Service

GLSA 200803-31 (High): mit-krb5

MIT Kerberos 5: Multiple vulnerabilities

GLSA 200803-30 (Normal): conserver (and 8

ssl-cert eclass: Certificate disclosure

GLSA 200803-29 (Normal): viewvc

ViewVC: Multiple vulnerabilities

GLSA 200803-28 (Normal): openldap

OpenLDAP: Denial of Service vulnerabilities

GLSA 200803-27 (Normal): moinmoin

MoinMoin: Multiple vulnerabilities

GLSA 200803-26 (Normal): acroread

Adobe Acrobat Reader: Insecure temporary file creation

GLSA 200803-25 (Normal): dovecot

Dovecot: Multiple vulnerabilities

GLSA 200803-24 (High): libpcre (and 1

PCRE: Buffer overflow

GLSA 200803-23 (Normal): wml

Website META Language: Insecure temporary file usage

GLSA 200803-22 (Normal): live

LIVE555 Media Server: Denial of Service

GLSA 200803-21 (Normal): sarg

Sarg: Remote execution of arbitrary code

GLSA 200803-20 (High): icu

International Components for Unicode: Multiple vulnerabilities

GLSA 200803-19 (Normal): apache

Apache: Multiple vulnerabilities

GLSA 200803-18 (Normal): cacti

Cacti: Multiple vulnerabilities

GLSA 200803-17 (Normal): pdflib

PDFlib: Multiple buffer overflows

GLSA 200803-16 (Normal): mplayer

MPlayer: Multiple buffer overflows

GLSA 200803-15 (Low): phpmyadmin

phpMyAdmin: SQL injection vulnerability

GLSA 200803-14 (Normal): ghostscript-esp (and 2

Ghostscript: Buffer overflow

GLSA 200803-13 (High): vlc

VLC: Multiple vulnerabilities

GLSA 200803-12 (Normal): evolution

Evolution: Format string vulnerability

GLSA 200803-11 (Normal): vobcopy

Vobcopy: Insecure temporary file creation

GLSA 200803-10 (Normal): lighttpd

lighttpd: Multiple vulnerabilities

GLSA 200803-09 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200803-08 (Normal): win32codecs

Win32 binary codecs: Multiple vulnerabilities

GLSA 200803-07 (Low): paramiko

Paramiko: Information disclosure

GLSA 200803-06 (High): sword

SWORD: Shell command injection

GLSA 200803-05 (High): splitvt

SplitVT: Privilege escalation

GLSA 200803-04 (Low): mantisbt

Mantis: Cross-Site Scripting

GLSA 200803-03 (Normal): audacity

Audacity: Insecure temporary file creation

GLSA 200803-02 (High): firebird

Firebird: Multiple vulnerabilities

GLSA 200803-01 (Normal): acroread

Adobe Acrobat Reader: Multiple vulnerabilities

GLSA 200802-12 (Normal): xine-lib

xine-lib: User-assisted execution of arbitrary code

GLSA 200802-11 (High): asterisk

Asterisk: Multiple vulnerabilities

GLSA 200802-10 (Normal): python

Python: PCRE Integer overflow

GLSA 200802-09 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200802-08 (Normal): boost

Boost: Denial of Service

GLSA 200802-07 (High): pulseaudio

Pulseaudio: Privilege escalation

GLSA 200802-06 (Normal): scponly

scponly: Multiple vulnerabilities

GLSA 200802-05 (Normal): gnumeric

Gnumeric: User-assisted execution of arbitrary code

GLSA 200802-04 (High): gallery

Gallery: Multiple vulnerabilities

GLSA 200802-03 (Normal): horde-imp

Horde IMP: Security bypass

GLSA 200802-02 (High): doomsday

Doomsday: Multiple vulnerabilities

GLSA 200802-01 (Normal): sdl-image

SDL_image: Two buffer overflow vulnerabilities

GLSA 200801-22 (High): peercast

PeerCast: Buffer overflow

GLSA 200801-21 (Normal): xdg-utils

Xdg-Utils: Arbitrary command execution

GLSA 200801-20 (Normal): libxml2

libxml2: Denial of Service

GLSA 200801-19 (Normal): goffice

GOffice: Multiple vulnerabilities

GLSA 200801-18 (Normal): kazehakase

Kazehakase: Multiple vulnerabilities

GLSA 200801-17 (Normal): netkit-ftpd

Netkit FTP Server: Denial of Service

GLSA 200801-16 (Normal): maradns

MaraDNS: CNAME Denial of Service

GLSA 200801-15 (High): postgresql

PostgreSQL: Multiple vulnerabilities

GLSA 200801-14 (Normal): blam

Blam: User-assisted execution of arbitrary code

GLSA 200801-13 (Normal): ngircd

ngIRCd: Denial of Service

GLSA 200801-12 (Normal): xine-lib

xine-lib: User-assisted execution of arbitrary code

GLSA 200801-11 (Normal): cherrypy

CherryPy: Directory traversal vulnerability

GLSA 200801-10 (Low): tikiwiki

TikiWiki: Multiple vulnerabilities

GLSA 200801-09 (High): xorg-server (and 1

X.Org X server and Xfont library: Multiple vulnerabilities

GLSA 200801-08 (Normal): libcdio

libcdio: User-assisted execution of arbitrary code

GLSA 200801-07 (Normal): adobe-flash

Adobe Flash Player: Multiple vulnerabilities

GLSA 200801-06 (Normal): xfce4-panel (and 1

Xfce: Multiple vulnerabilities

GLSA 200801-05 (Normal): squid

Squid: Denial of Service

GLSA 200801-04 (Normal): openafs

OpenAFS: Denial of Service

GLSA 200801-03 (Normal): claws-mail

Claws Mail: Insecure temporary file creation

GLSA 200801-02 (Normal): R

R: Multiple vulnerabilities

GLSA 200801-01 (Normal): unp

unp: Arbitrary command execution

GLSA 200712-25 (Normal): openoffice (and 2

OpenOffice.org: User-assisted arbitrary code execution

GLSA 200712-24 (Normal): emul-linux-x86-gtklibs

AMD64 x86 emulation GTK+ library: User-assisted execution of arbitrary cod e

GLSA 200712-23 (High): wireshark

Wireshark: Multiple vulnerabilities

GLSA 200712-22 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200712-21 (Normal): mozilla-firefox (and 3

Mozilla Firefox, SeaMonkey: Multiple vulnerabilities

GLSA 200712-20 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200712-19 (Normal): syslog-ng

Syslog-ng: Denial of Service

GLSA 200712-18 (High): mt-daapd

Multi-Threaded DAAP Daemon: Multiple vulnerabilities

GLSA 200712-17 (Normal): exiftags

exiftags: Multiple vulnerabilities

GLSA 200712-16 (Normal): exiv2

Exiv2: Integer overflow

GLSA 200712-15 (Normal): libexif

libexif: Multiple vulnerabilities

GLSA 200712-14 (High): cups

CUPS: Multiple vulnerabilities

GLSA 200712-13 (Normal): e2fsprogs

E2fsprogs: Multiple buffer overflows

GLSA 200712-12 (Normal): ircservices

IRC Services: Denial of Service

GLSA 200712-11 (Normal): portage

Portage: Information disclosure

GLSA 200712-10 (High): samba

Samba: Execution of arbitrary code

GLSA 200712-09 (Normal): ruby-gtk2

Ruby-GNOME2: Format string error

GLSA 200712-08 (Normal): emul-linux-x86-qtlibs

AMD64 x86 emulation Qt library: Multiple vulnerabilities

GLSA 200712-07 (Normal): lookup

Lookup: Insecure temporary file creation

GLSA 200712-06 (Normal): firebird

Firebird: Multiple buffer overflows

GLSA 200712-05 (Normal): PEAR-MDB2

PEAR::MDB2: Information disclosure

GLSA 200712-04 (Normal): cairo

Cairo: User-assisted execution of arbitrary code

GLSA 200712-03 (Normal): emacs

GNU Emacs: Multiple vulnerabilities

GLSA 200712-02 (Normal): cacti

Cacti: SQL injection

GLSA 200712-01 (Normal): hugin

Hugin: Insecure temporary file creation

GLSA 200711-34 (Normal): cstetex

CSTeX: Multiple vulnerabilities

GLSA 200711-33 (Low): nss_ldap

nss_ldap: Information disclosure

GLSA 200711-32 (Normal): feynmf

Feynmf: Insecure temporary file creation

GLSA 200711-31 (Normal): net-snmp

Net-SNMP: Denial of Service

GLSA 200711-30 (Normal): libpcre

PCRE: Multiple vulnerabilities

GLSA 200711-29 (High): samba

Samba: Execution of arbitrary code

GLSA 200711-28 (Normal): perl

Perl: Buffer overflow

GLSA 200711-27 (Normal): link-grammar

Link Grammar: User-assisted execution of arbitrary code

GLSA 200711-26 (Normal): tetex

teTeX: Multiple vulnerabilities

GLSA 200711-25 (Normal): mysql

MySQL: Denial of Service

GLSA 200711-24 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200711-23 (Normal): vmware-workstation (and 1

VMware Workstation and Player: Multiple vulnerabilities

GLSA 200711-22 (Normal): poppler (and 4

Poppler, KDE: User-assisted execution of arbitrary code

GLSA 200711-21 (High): bochs

Bochs: Multiple vulnerabilities

GLSA 200711-20 (Normal): pioneers

Pioneers: Multiple Denials of Service

GLSA 200711-19 (High): tikiwiki

TikiWiki: Multiple vulnerabilities

GLSA 200711-18 (Normal): cpio

Cpio: Buffer overflow

GLSA 200711-17 (Normal): rails

Ruby on Rails: Multiple vulnerabilities

GLSA 200711-16 (High): cups

CUPS: Memory corruption

GLSA 200711-15 (Normal): flac

FLAC: Buffer overflow

GLSA 200711-14 (Normal): mozilla-firefox (and 4

Mozilla Firefox, SeaMonkey, XULRunner: Multiple vulnerabilities

GLSA 200711-13 (Normal): 3proxy

3proxy: Denial of Service

GLSA 200711-12 (Normal): tomboy

Tomboy: User-assisted execution of arbitrary code

GLSA 200711-11 (High): nagios-plugins

Nagios Plugins: Two buffer overflows

GLSA 200711-10 (High): mono

Mono: Buffer overflow

GLSA 200711-09 (Normal): madwifi-ng

MadWifi: Denial of Service

GLSA 200711-08 (Normal): libpng

libpng: Multiple Denials of Service

GLSA 200711-07 (Normal): python

Python: User-assisted execution of arbitrary code

GLSA 200711-06 (Normal): apache

Apache: Multiple vulnerabilities

GLSA 200711-05 (High): sitebar

SiteBar: Multiple issues

GLSA 200711-04 (Normal): evolution-data-server

Evolution: User-assisted remote execution of arbitrary code

GLSA 200711-03 (Low): gallery

Gallery: Multiple vulnerabilities

GLSA 200711-02 (Low): openssh

OpenSSH: Security bypass

GLSA 200711-01 (Normal): gftp

gFTP: Multiple vulnerabilities

GLSA 200710-31 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200710-30 (High): openssl

OpenSSL: Remote execution of arbitrary code

GLSA 200710-29 (Normal): sylpheed (and 1

Sylpheed, Claws Mail: User-assisted remote execution of arbitrary code

GLSA 200710-28 (Normal): qt

Qt: Buffer overflow

GLSA 200710-27 (Normal): imagemagick

ImageMagick: Multiple vulnerabilities

GLSA 200710-26 (High): hplip

HPLIP: Privilege escalation

GLSA 200710-25 (High): mldonkey

MLDonkey: Privilege escalation

GLSA 200710-24 (Normal): openoffice (and 1

OpenOffice.org: Heap-based buffer overflow

GLSA 200710-23 (Low): star

Star: Directory traversal vulnerability

GLSA 200710-22 (Normal): tramp

TRAMP: Insecure temporary file creation

GLSA 200710-21 (High): tikiwiki

TikiWiki: Arbitrary command execution

GLSA 200710-20 (Normal): pdfkit (and 1

PDFKit, ImageKits: Buffer overflow

GLSA 200710-19 (Normal): sleuthkit

The Sleuth Kit: Integer underflow

GLSA 200710-18 (High): util-linux

util-linux: Local privilege escalation

GLSA 200710-17 (Normal): balsa

Balsa: Buffer overflow

GLSA 200710-16 (High): xorg-server

X.Org X server: Composite local privilege escalation

GLSA 200710-15 (High): kdm (and 1

KDM: Local privilege escalation

GLSA 200710-14 (Normal): denyhosts

DenyHosts: Denial of Service

GLSA 200710-13 (Low): ampache

Ampache: Multiple vulnerabilities

GLSA 200710-12 (Normal): t1lib

T1Lib: Buffer overflow

GLSA 200710-11 (High): xfs

X Font Server: Multiple Vulnerabilities

GLSA 200710-10 (Normal): skktools

SKK Tools: Insecure temporary file creation

GLSA 200710-09 (Normal): nx (and 1

NX 2.1: User-assisted execution of arbitrary code

GLSA 200710-08 (Normal): koffice (and 3

KOffice, KWord, KPDF, KDE Graphics Libraries: Stack-based buffer overflow

GLSA 200710-07 (Normal): tk

Tk: Buffer overflow

GLSA 200710-06 (High): openssl

OpenSSL: Multiple vulnerabilities

GLSA 200710-05 (Normal): qgit

QGit: Insecure temporary file creation

GLSA 200710-04 (Normal): libsndfile

libsndfile: Buffer overflow

GLSA 200710-03 (Normal): libvorbis

libvorbis: Multiple vulnerabilities

GLSA 200710-02 (High): php

PHP: Multiple vulnerabilities

GLSA 200710-01 (High): librpcsecgss

RPCSEC_GSS library: Buffer overflow

GLSA 200709-18 (High): bugzilla

Bugzilla: Multiple vulnerabilities

GLSA 200709-17 (Normal): tetex

teTeX: Multiple buffer overflows

GLSA 200709-16 (High): lighttpd

Lighttpd: Buffer overflow

GLSA 200709-15 (Normal): jrockit-jdk-bin

BEA JRockit: Multiple vulnerabilities

GLSA 200709-14 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200709-13 (Normal): rsync

rsync: Two buffer overflows

GLSA 200709-12 (Normal): poppler

Poppler: Two buffer overflow vulnerabilities

GLSA 200709-11 (Low): gdm

GDM: Local Denial of Service

GLSA 200709-10 (Low): phpwiki

PhpWiki: Authentication bypass

GLSA 200709-09 (Normal): tar

GNU Tar: Directory traversal vulnerability

GLSA 200709-08 (Normal): id3lib

id3lib: Insecure temporary file creation

GLSA 200709-07 (Normal): eggdrop

Eggdrop: Buffer overflow

GLSA 200709-06 (Normal): flac123

flac123: Buffer overflow

GLSA 200709-05 (Normal): realplayer

RealPlayer: Buffer overflow

GLSA 200709-04 (Normal): po4a

po4a: Insecure temporary file creation

GLSA 200709-03 (Normal): streamripper

Streamripper: Buffer overflow

GLSA 200709-02 (Normal): kvirc

KVIrc: Remote arbitrary code execution

GLSA 200709-01 (High): mit-krb5

MIT Kerberos 5: Multiple vulnerabilities

GLSA 200708-17 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200708-16 (Normal): qt

Qt: Multiple format string vulnerabilities

GLSA 200708-15 (Low): mod_jk

Apache mod_jk: Directory traversal

GLSA 200708-14 (Normal): nvidia-drivers

NVIDIA drivers: Denial of Service

GLSA 200708-13 (Normal): bind

BIND: Weak random number generation

GLSA 200708-12 (Normal): wireshark

Wireshark: Multiple vulnerabilities

GLSA 200708-11 (Normal): lighttpd

Lighttpd: Multiple vulnerabilities

GLSA 200708-10 (Normal): mysql

MySQL: Denial of Service and information leakage

GLSA 200708-09 (Normal): mozilla-firefox (and 6

Mozilla products: Multiple vulnerabilities

GLSA 200708-08 (High): squirrelmail

SquirrelMail G/PGP plugin: Arbitrary code execution

GLSA 200708-07 (Normal): terminal

Xfce Terminal: Remote arbitrary code execution

GLSA 200708-06 (Normal): Net-DNS

Net::DNS: Multiple vulnerabilities

GLSA 200708-05 (Normal): gd

GD: Multiple vulnerabilities

GLSA 200708-04 (Normal): clamav

ClamAV: Denial of Service

GLSA 200708-03 (Normal): libarchive

libarchive (formerly named as bsdtar): Multiple PaX Extension Header Vulne rabilities

GLSA 200708-02 (Normal): xvid

Xvid: Array indexing vulnerabilities

GLSA 200708-01 (Normal): adobe-flash

Macromedia Flash Player: Remote arbitrary code execution

GLSA 200707-14 (High): tcpdump

tcpdump: Integer overflow

GLSA 200707-13 (Normal): fail2ban

Fail2ban: Denial of Service

GLSA 200707-12 (Normal): vlc

VLC media player: Format string vulnerabilities

GLSA 200707-11 (High): mit-krb5

MIT Kerberos 5: Arbitrary remote code execution

GLSA 200707-10 (High): festival

Festival: Privilege elevation

GLSA 200707-09 (Normal): gimp

GIMP: Multiple integer overflows

GLSA 200707-08 (Normal): nvclock

NVClock: Insecure file usage

GLSA 200707-07 (Normal): mplayer

MPlayer: Multiple buffer overflows

GLSA 200707-06 (Normal): xnview

XnView: Stack-based buffer overflow

GLSA 200707-05 (Low): webmin (and 1

Webmin, Usermin: Cross-site scripting vulnerabilities

GLSA 200707-04 (Normal): glibc

GNU C Library: Integer overflow

GLSA 200707-03 (Normal): evolution-data-server

Evolution: User-assisted remote execution of arbitrary code

GLSA 200707-02 (Normal): openoffice (and 1

OpenOffice.org: Two buffer overflows

GLSA 200707-01 (High): firebird

Firebird: Buffer overflow

GLSA 200706-09 (Normal): libexif

libexif: Buffer overflow

GLSA 200706-08 (Normal): emul-linux-x86-java

emul-linux-x86-java: Multiple vulnerabilities

GLSA 200706-07 (High): phprojekt

PHProjekt: Multiple vulnerabilities

GLSA 200706-06 (Normal): mozilla-firefox (and 6

Mozilla products: Multiple vulnerabilities

GLSA 200706-05 (Normal): clamav

ClamAV: Multiple Denials of Service

GLSA 200706-04 (High): madwifi-ng

MadWifi: Multiple vulnerabilities

GLSA 200706-03 (Normal): elinks

ELinks: User-assisted execution of arbitrary code

GLSA 200706-02 (Normal): evolution

Evolution: User-assisted execution of arbitrary code

GLSA 200706-01 (Normal): libexif

libexif: Integer overflow vulnerability

GLSA 200705-25 (High): file

file: Integer overflow

GLSA 200705-24 (Normal): libpng

libpng: Denial of Service

GLSA 200705-23 (Normal): sun-jdk (and 1

Sun JDK/JRE: Multiple vulnerabilities

GLSA 200705-22 (Normal): freetype

FreeType: Buffer overflow

GLSA 200705-21 (Normal): mplayer

MPlayer: Two buffer overflows

GLSA 200705-20 (Normal): blackdown-jdk (and 1

Blackdown Java: Applet privilege escalation

GLSA 200705-19 (High): php

PHP: Multiple vulnerabilities

GLSA 200705-18 (Normal): pptpd

PPTPD: Denial of Service attack

GLSA 200705-17 (Low): mod_security

Apache mod_security: Rule bypass

GLSA 200705-16 (High): phpwiki

PhpWiki: Remote execution of arbitrary code

GLSA 200705-15 (High): samba

Samba: Multiple vulnerabilities

GLSA 200705-14 (Normal): xscreensaver

XScreenSaver: Privilege escalation

GLSA 200705-13 (Normal): imagemagick

ImageMagick: Multiple buffer overflows

GLSA 200705-12 (Normal): postgresql

PostgreSQL: Privilege escalation

GLSA 200705-11 (Normal): mysql

MySQL: Two Denial of Service vulnerabilities

GLSA 200705-10 (High): tightvnc (and 1

LibXfont, TightVNC: Multiple vulnerabilities

GLSA 200705-09 (Normal): ipsec-tools

IPsec-Tools: Denial of Service

GLSA 200705-08 (Normal): gimp

GIMP: Buffer overflow

GLSA 200705-07 (Normal): lighttpd

Lighttpd: Two Denials of Service

GLSA 200705-06 (High): libX11

X.Org X11 library: Multiple integer overflows

GLSA 200705-05 (Normal): quagga

Quagga: Denial of Service

GLSA 200705-04 (Normal): mod_perl

Apache mod_perl: Denial of Service

GLSA 200705-03 (Low): tomcat

Tomcat: Information disclosure

GLSA 200705-02 (Normal): freetype

FreeType: User-assisted execution of arbitrary code

GLSA 200705-01 (Normal): ktorrent

Ktorrent: Multiple vulnerabilities

GLSA 200704-23 (High): capi4k-utils

capi4k-utils: Buffer overflow

GLSA 200704-22 (Low): beast

BEAST: Denial of Service

GLSA 200704-21 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200704-20 (High): nas

NAS: Multiple vulnerabilities

GLSA 200704-19 (Normal): blender

Blender: User-assisted remote execution of arbitrary code

GLSA 200704-18 (High): courier-imap

Courier-IMAP: Remote execution of arbitrary code

GLSA 200704-17 (High): 3proxy

3proxy: Buffer overflow

GLSA 200704-16 (High): aircrack-ng

Aircrack-ng: Remote execution of arbitrary code

GLSA 200704-15 (Normal): madwifi-ng

MadWifi: Multiple vulnerabilities

GLSA 200704-14 (Normal): freeradius

FreeRADIUS: Denial of Service

GLSA 200704-13 (Normal): file

File: Denial of Service

GLSA 200704-12 (Normal): openoffice (and 1

OpenOffice.org: Multiple vulnerabilities

GLSA 200704-11 (Low): vixie-cron

Vixie Cron: Denial of Service

GLSA 200704-10 (Normal): inkscape

Inkscape: Two format string vulnerabilities

GLSA 200704-09 (Normal): xine-lib

xine-lib: Heap-based buffer overflow

GLSA 200704-08 (Low): dokuwiki

DokuWiki: Cross-site scripting vulnerability

GLSA 200704-07 (Normal): libwpd

libwpd: Multiple vulnerabilities

GLSA 200704-06 (Normal): evince

Evince: Stack overflow in included gv code

GLSA 200704-05 (Normal): zziplib

zziplib: Buffer Overflow

GLSA 200704-04 (High): openpbs

OpenPBS: Multiple vulnerabilities

GLSA 200704-03 (High): openafs

OpenAFS: Privilege escalation

GLSA 200704-02 (High): mit-krb5

MIT Kerberos 5: Arbitrary remote code execution

GLSA 200704-01 (Normal): asterisk

Asterisk: Two SIP Denial of Service vulnerabilities

GLSA 200703-28 (Normal): cups

CUPS: Denial of Service

GLSA 200703-27 (Low): squid

Squid: Denial of Service

GLSA 200703-26 (High): file

file: Integer underflow

GLSA 200703-25 (High): ekiga

Ekiga: Format string vulnerability

GLSA 200703-24 (Normal): mgv

mgv: Stack overflow in included gv code

GLSA 200703-23 (Low): wordpress

WordPress: Multiple vulnerabilities

GLSA 200703-22 (Normal): nss

Mozilla Network Security Service: Remote execution of arbitrary code

GLSA 200703-21 (High): php

PHP: Multiple vulnerabilities

GLSA 200703-20 (Low): lsat

LSAT: Insecure temporary file creation

GLSA 200703-19 (High): ltsp

LTSP: Authentication bypass in included LibVNCServer code

GLSA 200703-18 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200703-17 (High): ulogd

ulogd: Remote execution of arbitrary code

GLSA 200703-16 (High): mod_jk

Apache JK Tomcat Connector: Remote execution of arbitrary code

GLSA 200703-15 (Normal): postgresql

PostgreSQL: Multiple vulnerabilities

GLSA 200703-14 (Normal): asterisk

Asterisk: SIP Denial of Service

GLSA 200703-13 (Normal): ssh

SSH Communications Security's Secure Shell Server: SFTP privilege escalati on

GLSA 200703-12 (Normal): silc-server

SILC Server: Denial of Service

GLSA 200703-11 (Normal): amarok

Amarok: User-assisted remote execution of arbitrary code

GLSA 200703-10 (Low): kdelibs

KHTML: Cross-site scripting (XSS) vulnerability

GLSA 200703-09 (High): smb4k

Smb4K: Multiple vulnerabilities

GLSA 200703-08 (Normal): seamonkey (and 1

SeaMonkey: Multiple vulnerabilities

GLSA 200703-07 (Normal): STLport

STLport: Possible remote execution of arbitrary code

GLSA 200703-06 (Normal): emul-linux-x86-qtlibs

AMD64 x86 emulation Qt library: Integer overflow

GLSA 200703-05 (Normal): mozilla (and 1

Mozilla Suite: Multiple vulnerabilities

GLSA 200703-04 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200703-03 (Normal): clamav

ClamAV: Denial of Service

GLSA 200703-02 (Normal): spamassassin

SpamAssassin: Long URI Denial of Service

GLSA 200703-01 (High): snort

Snort: Remote execution of arbitrary code

GLSA 200702-12 (Normal): chmlib

CHMlib: User-assisted remote execution of arbitrary code

GLSA 200702-11 (Normal): mplayer

MPlayer: Buffer overflow

GLSA 200702-10 (Normal): ufo2000

UFO2000: Multiple vulnerabilities

GLSA 200702-09 (Normal): nexuiz

Nexuiz: Multiple vulnerabilities

GLSA 200702-08 (Normal): emul-linux-x86-java

AMD64 x86 emulation Sun's J2SE Development Kit: Multiple vulnerabilities

GLSA 200702-07 (Normal): sun-jdk (and 1

Sun JDK/JRE: Execution of arbitrary code

GLSA 200702-06 (Normal): bind

BIND: Denial of Service

GLSA 200702-05 (Normal): fail2ban

Fail2ban: Denial of Service

GLSA 200702-04 (Normal): rar (and 1

RAR, UnRAR: Buffer overflow

GLSA 200702-03 (Normal): snort

Snort: Denial of Service

GLSA 200702-02 (High): proftpd

ProFTPD: Local privilege escalation

GLSA 200702-01 (Normal): samba

Samba: Multiple vulnerabilities

GLSA 200701-28 (Low): thttpd

thttpd: Unauthenticated remote file access

GLSA 200701-27 (Normal): elinks

ELinks: Arbitrary Samba command execution

GLSA 200701-26 (Normal): ksirc

KSirc: Denial of Service vulnerability

GLSA 200701-25 (Normal): xorg-server

X.Org X server: Multiple vulnerabilities

GLSA 200701-24 (Normal): vlc

VLC media player: Format string vulnerability

GLSA 200701-23 (High): cacti

Cacti: Command execution and SQL injection

GLSA 200701-22 (Normal): squid

Squid: Multiple Denial of Service vulnerabilities

GLSA 200701-21 (High): mit-krb5

MIT Kerberos 5: Arbitrary Remote Code Execution

GLSA 200701-20 (Normal): centericq

Centericq: Remote buffer overflow in LiveJournal handling

GLSA 200701-19 (Low): openldap

OpenLDAP: Insecure usage of /tmp during installation

GLSA 200701-18 (Normal): xine-ui

xine-ui: Format string vulnerabilities

GLSA 200701-17 (Normal): libgtop

libgtop: Privilege escalation

GLSA 200701-16 (Normal): acroread

Adobe Acrobat Reader: Multiple vulnerabilities

GLSA 200701-15 (Normal): sun-jdk (and 1

Sun JDK/JRE: Multiple vulnerabilities

GLSA 200701-14 (Normal): mod_auth_kerb

Mod_auth_kerb: Denial of Service

GLSA 200701-13 (Normal): fetchmail

Fetchmail: Denial of Service and password disclosure

GLSA 200701-12 (Low): mono

Mono: Information disclosure

GLSA 200701-11 (Low): horde-kronolith

Kronolith: Local file inclusion

GLSA 200701-10 (Normal): wordpress

WordPress: Multiple vulnerabilities

GLSA 200701-09 (Normal): oftpd

oftpd: Denial of Service

GLSA 200701-08 (Normal): opera

Opera: Two remote code execution vulnerabilities

GLSA 200701-07 (Normal): openoffice-bin (and 1

OpenOffice.org: EMF/WMF file handling vulnerabilities

GLSA 200701-06 (Normal): w3m

w3m: Format string vulnerability

GLSA 200701-05 (Normal): kdegraphics-kfile-plugins

KDE kfile JPEG info plugin: Denial of Service

GLSA 200701-04 (High): seamonkey

SeaMonkey: Multiple vulnerabilities

GLSA 200701-03 (High): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200701-02 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200701-01 (Normal): denyhosts

DenyHosts: Denial of Service

GLSA 200612-21 (Normal): ruby

Ruby: Denial of Service vulnerability

GLSA 200612-20 (Normal): imlib2

imlib2: Multiple vulnerabilities

GLSA 200612-19 (Low): pam_ldap

pam_ldap: Authentication bypass vulnerability

GLSA 200612-18 (Normal): clamav

ClamAV: Denial of Service

GLSA 200612-17 (High): gnuradius

GNU Radius: Format string vulnerability

GLSA 200612-16 (Normal): links

Links: Arbitrary Samba command execution

GLSA 200612-15 (High): vlnx

McAfee VirusScan: Insecure DT_RPATH

GLSA 200612-14 (Low): trac

Trac: Cross-site request forgery

GLSA 200612-13 (Normal): libgsf

libgsf: Buffer overflow

GLSA 200612-12 (High): f-prot

F-PROT Antivirus: Multiple vulnerabilities

GLSA 200612-11 (High): emul-linux-x86-baselibs

AMD64 x86 emulation base libraries: OpenSSL multiple vulnerabilities

GLSA 200612-10 (Normal): tar

Tar: Directory traversal vulnerability

GLSA 200612-09 (High): madwifi-ng

MadWifi: Kernel driver buffer overflow

GLSA 200612-08 (High): seamonkey

SeaMonkey: Multiple vulnerabilities

GLSA 200612-07 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200612-06 (High): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200612-05 (Normal): koffice-libs

KOffice shared libraries: Heap corruption

GLSA 200612-04 (Normal): libmodplug

ModPlug: Multiple buffer overflows

GLSA 200612-03 (Normal): gnupg

GnuPG: Multiple vulnerabilities

GLSA 200612-02 (Normal): xine-lib

xine-lib: Buffer overflow

GLSA 200612-01 (Normal): wv

wv library: Multiple integer overflows

GLSA 200611-26 (High): proftpd

ProFTPD: Remote execution of arbitrary code

GLSA 200611-25 (Normal): openldap

OpenLDAP: Denial of Service vulnerability

GLSA 200611-24 (Normal): lha

LHa: Multiple vulnerabilities

GLSA 200611-23 (Normal): mono

Mono: Insecure temporary file creation

GLSA 200611-22 (Normal): horde-ingo

Ingo H3: Folder name shell command injection

GLSA 200611-21 (Low): kile

Kile: Incorrect backup file permission

GLSA 200611-20 (Normal): gv

GNU gv: Stack overflow

GLSA 200611-19 (Normal): imagemagick

ImageMagick: PALM and DCM buffer overflows

GLSA 200611-18 (Normal): tin

TIN: Multiple buffer overflows

GLSA 200611-17 (Normal): fvwm

fvwm: fvwm-menu-directory fvwm command injection

GLSA 200611-16 (Normal): texinfo

Texinfo: Buffer overflow

GLSA 200611-15 (High): qmailadmin

qmailAdmin: Buffer overflow

GLSA 200611-14 (High): torque

TORQUE: Insecure temporary file creation

GLSA 200611-13 (Normal): avahi

Avahi: "netlink" message vulnerability

GLSA 200611-12 (Normal): ruby

Ruby: Denial of Service vulnerability

GLSA 200611-11 (Normal): tikiwiki

TikiWiki: Multiple vulnerabilities

GLSA 200611-10 (Normal): wordpress

WordPress: Multiple vulnerabilities

GLSA 200611-09 (Normal): libpng

libpng: Denial of Service

GLSA 200611-08 (Normal): rpm

RPM: Buffer overflow

GLSA 200611-07 (Normal): graphicsmagick

GraphicsMagick: PALM and DCM buffer overflows

GLSA 200611-06 (Normal): openssh

OpenSSH: Multiple Denial of Service vulnerabilities

GLSA 200611-05 (High): netkit-ftpd

Netkit FTP Server: Privilege escalation

GLSA 200611-04 (Normal): bugzilla

Bugzilla: Multiple Vulnerabilities

GLSA 200611-03 (High): nvidia-drivers

NVIDIA binary graphics driver: Privilege escalation vulnerability

GLSA 200611-02 (Normal): qt

Qt: Integer overflow

GLSA 200611-01 (High): screen

Screen: UTF-8 character handling vulnerability

GLSA 200610-15 (High): asterisk

Asterisk: Multiple vulnerabilities

GLSA 200610-14 (High): php

PHP: Integer overflow

GLSA 200610-13 (Normal): cheesetracker

Cheese Tracker: Buffer Overflow

GLSA 200610-12 (High): mod_tcl

Apache mod_tcl: Format string vulnerability

GLSA 200610-11 (High): openssl

OpenSSL: Multiple vulnerabilities

GLSA 200610-10 (High): clamav

ClamAV: Multiple Vulnerabilities

GLSA 200610-09 (Normal): musicbrainz

libmusicbrainz: Multiple buffer overflows

GLSA 200610-08 (Normal): cscope

Cscope: Multiple buffer overflows

GLSA 200610-07 (Normal): python

Python: Buffer Overflow

GLSA 200610-06 (Normal): nss

Mozilla Network Security Service (NSS): RSA signature forgery

GLSA 200610-05 (High): capi4hylafax

CAPI4Hylafax fax receiver: Execution of arbitrary code

GLSA 200610-04 (Normal): seamonkey

Seamonkey: Multiple vulnerabilities

GLSA 200610-03 (Normal): ncompress

ncompress: Buffer Underflow

GLSA 200610-02 (Normal): adobe-flash

Adobe Flash Player: Arbitrary code execution

GLSA 200610-01 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200609-20 (High): dokuwiki

DokuWiki: Shell command injection and Denial of Service

GLSA 200609-19 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200609-18 (Normal): opera

Opera: RSA signature forgery

GLSA 200609-17 (Normal): openssh

OpenSSH: Denial of Service

GLSA 200609-16 (High): tikiwiki

Tikiwiki: Arbitrary command execution

GLSA 200609-15 (Normal): gnutls

GnuTLS: RSA Signature Forgery

GLSA 200609-14 (Normal): imagemagick

ImageMagick: Multiple Vulnerabilities

GLSA 200609-13 (Normal): gzip

gzip: Multiple vulnerabilities

GLSA 200609-12 (Normal): mailman

Mailman: Multiple vulnerabilities

GLSA 200609-11 (Normal): bind

BIND: Denial of Service

GLSA 200609-10 (High): dokuwiki

DokuWiki: Arbitrary command execution

GLSA 200609-09 (Normal): ffmpeg

FFmpeg: Buffer overflows

GLSA 200609-08 (Normal): xine-lib

xine-lib: Buffer overflows

GLSA 200609-07 (High): libXfont (and 1

LibXfont, monolithic X.org: Multiple integer overflows

GLSA 200609-06 (Normal): adplug

AdPlug: Multiple vulnerabilities

GLSA 200609-05 (Normal): openssl (and 1

OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery

GLSA 200609-04 (Normal): libXfont

LibXfont: Multiple integer overflows

GLSA 200609-03 (Normal): openttd

OpenTTD: Remote Denial of Service

GLSA 200609-02 (Normal): gtetrinet

GTetrinet: Remote code execution

GLSA 200609-01 (Normal): streamripper

Streamripper: Multiple remote buffer overflows

GLSA 200608-28 (Normal): php

PHP: Arbitary code execution

GLSA 200608-27 (Normal): motor

Motor: Execution of arbitrary code

GLSA 200608-26 (Normal): wireshark

Wireshark: Multiple vulnerabilities

GLSA 200608-25 (High): xdm (and 9

X.org and some X.org libraries: Local privilege escalations

GLSA 200608-24 (Normal): alsaplayer

AlsaPlayer: Multiple buffer overflows

GLSA 200608-23 (Normal): heartbeat

Heartbeat: Denial of Service

GLSA 200608-22 (Normal): fbida

fbida: Arbitrary command execution

GLSA 200608-21 (High): heimdal

Heimdal: Multiple local privilege escalation vulnerabilities

GLSA 200608-20 (High): rails

Ruby on Rails: Several vulnerabilities

GLSA 200608-19 (Normal): wordpress

WordPress: Privilege escalation

GLSA 200608-18 (Normal): net-server

Net::Server: Format string vulnerability

GLSA 200608-17 (Normal): libwmf

libwmf: Buffer overflow vulnerability

GLSA 200608-16 (High): warzone2100

Warzone 2100 Resurrection: Multiple buffer overflows

GLSA 200608-15 (High): mit-krb5

MIT Kerberos 5: Multiple local privilege escalation vulnerabilities

GLSA 200608-14 (Normal): dumb

DUMB: Heap buffer overflow

GLSA 200608-13 (High): clamav

ClamAV: Heap buffer overflow

GLSA 200608-12 (High): x11vnc

x11vnc: Authentication bypass in included LibVNCServer code

GLSA 200608-11 (Normal): webmin (and 1

Webmin, Usermin: File Disclosure

GLSA 200608-10 (Normal): pike

pike: SQL injection vulnerability

GLSA 200608-09 (Normal): mysql

MySQL: Denial of Service

GLSA 200608-08 (High): gnupg

GnuPG: Integer overflow vulnerability

GLSA 200608-07 (Normal): tiff

libTIFF: Multiple vulnerabilities

GLSA 200608-06 (Normal): courier

Courier MTA: Denial of Service vulnerability

GLSA 200608-05 (High): libvncserver

LibVNCServer: Authentication bypass

GLSA 200608-04 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200608-03 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200608-02 (Normal): seamonkey

Mozilla SeaMonkey: Multiple vulnerabilities

GLSA 200608-01 (High): apache

Apache: Off-by-one flaw in mod_rewrite

GLSA 200607-13 (Normal): audacious

Audacious: Multiple heap and buffer overflows

GLSA 200607-12 (Normal): openoffice (and 1

OpenOffice.org: Multiple vulnerabilities

GLSA 200607-11 (Normal): tunepimp

TunePimp: Buffer overflow

GLSA 200607-10 (Normal): samba

Samba: Denial of Service vulnerability

GLSA 200607-09 (High): wireshark (and 1

Wireshark: Multiple vulnerabilities

GLSA 200607-08 (Normal): gimp

GIMP: Buffer overflow

GLSA 200607-07 (Normal): xine-lib

xine-lib: Buffer overflow

GLSA 200607-06 (Normal): libpng (and 1

libpng: Buffer overflow

GLSA 200607-05 (Normal): shoutcast-server-bin

SHOUTcast server: Multiple vulnerabilities

GLSA 200607-04 (Normal): postgresql

PostgreSQL: SQL injection

GLSA 200607-03 (Normal): tiff

libTIFF: Multiple buffer overflows

GLSA 200607-02 (Normal): freetype

FreeType: Multiple integer overflows

GLSA 200607-01 (Normal): mpg123

mpg123: Heap overflow

GLSA 200606-30 (Normal): kiax

Kiax: Arbitrary code execution

GLSA 200606-29 (Normal): tikiwiki

Tikiwiki: SQL injection and multiple XSS vulnerabilities

GLSA 200606-28 (Low): horde

Horde Web Application Framework: XSS vulnerability

GLSA 200606-27 (Normal): mutt

Mutt: Buffer overflow

GLSA 200606-26 (Normal): emech

EnergyMech: Denial of Service

GLSA 200606-25 (High): hashcash

Hashcash: Possible heap overflow

GLSA 200606-24 (Normal): wv2

wv2: Integer overflow

GLSA 200606-23 (Normal): kdebase (and 1

KDM: Symlink vulnerability

GLSA 200606-22 (High): arts

aRts: Privilege escalation

GLSA 200606-21 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200606-20 (High): typespeed

Typespeed: Remote execution of arbitrary code

GLSA 200606-19 (Normal): sendmail

Sendmail: Denial of Service

GLSA 200606-18 (Normal): pam_mysql

PAM-MySQL: Multiple vulnerabilities

GLSA 200606-17 (Normal): openldap

OpenLDAP: Buffer overflow

GLSA 200606-16 (High): dokuwiki

DokuWiki: PHP code injection

GLSA 200606-15 (High): asterisk

Asterisk: IAX2 video frame buffer overflow

GLSA 200606-14 (High): gdm

GDM: Privilege escalation

GLSA 200606-13 (Normal): mysql

MySQL: SQL Injection

GLSA 200606-12 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200606-11 (Normal): jpeg

JPEG library: Denial of Service

GLSA 200606-10 (Normal): cscope

Cscope: Many buffer overflows

GLSA 200606-09 (High): spamassassin

SpamAssassin: Execution of arbitrary code

GLSA 200606-08 (High): wordpress

WordPress: Arbitrary command execution

GLSA 200606-07 (High): vixie-cron

Vixie Cron: Privilege Escalation

GLSA 200606-06 (High): awstats

AWStats: Remote execution of arbitrary code

GLSA 200606-05 (Low): pound

Pound: HTTP request smuggling

GLSA 200606-04 (Normal): tor

Tor: Several vulnerabilities

GLSA 200606-03 (Normal): dia

Dia: Format string vulnerabilities

GLSA 200606-02 (Normal): shadow

shadow: Privilege escalation

GLSA 200606-01 (Normal): opera

Opera: Buffer overflow

GLSA 200605-17 (Normal): tiff

libTIFF: Multiple vulnerabilities

GLSA 200605-16 (Low): cherrypy

CherryPy: Directory traversal vulnerability

GLSA 200605-15 (Normal): quagga

Quagga Routing Suite: Multiple vulnerabilities

GLSA 200605-14 (Normal): libextractor

libextractor: Two heap-based buffer overflows

GLSA 200605-13 (Low): mysql

MySQL: Information leakage

GLSA 200605-12 (Normal): quake3-bin (and 2

Quake 3 engine based games: Buffer Overflow

GLSA 200605-11 (Normal): ruby

Ruby: Denial of Service

GLSA 200605-10 (High): pdnsd

pdnsd: Denial of Service and potential arbitrary code execution

GLSA 200605-09 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200605-08 (High): php (and 1

PHP: Multiple vulnerabilities

GLSA 200605-07 (High): nagios-core

Nagios: Buffer overflow

GLSA 200605-06 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Potential remote code execution

GLSA 200605-05 (High): rsync

rsync: Potential integer overflow

GLSA 200605-04 (Normal): phpwebsite

phpWebSite: Local file inclusion

GLSA 200605-03 (Normal): clamav

ClamAV: Buffer overflow in Freshclam

GLSA 200605-02 (High): xorg-x11

X.Org: Buffer overflow in XRender extension

GLSA 200605-01 (Normal): mplayer (and 1

MPlayer: Heap-based buffer overflow

GLSA 200604-18 (Normal): mozilla (and 1

Mozilla Suite: Multiple vulnerabilities

GLSA 200604-17 (High): ethereal

Ethereal: Multiple vulnerabilities in protocol dissectors

GLSA 200604-16 (Normal): xine-lib

xine-lib: Buffer overflow vulnerability

GLSA 200604-15 (Normal): xine-ui

xine-ui: Format string vulnerabilities

GLSA 200604-14 (Normal): dia

Dia: Arbitrary code execution through XFig import

GLSA 200604-13 (Normal): fbida

fbida: Insecure temporary file creation

GLSA 200604-12 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200604-11 (High): crossfire-server

Crossfire server: Denial of Service and potential arbitrary code execution

GLSA 200604-10 (Normal): xzgv (and 1

zgv, xzgv: Heap overflow

GLSA 200604-09 (Normal): cyrus-sasl

Cyrus-SASL: DIGEST-MD5 Pre-Authentication Denial of Service

GLSA 200604-08 (Normal): libapreq2

libapreq2: Denial of Service vulnerability

GLSA 200604-07 (High): cacti

Cacti: Multiple vulnerabilities in included ADOdb

GLSA 200604-06 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200604-05 (High): doomsday

Doomsday: Format string vulnerability

GLSA 200604-04 (Normal): kaffeine

Kaffeine: Buffer overflow

GLSA 200604-03 (Normal): freeradius

FreeRADIUS: Authentication bypass in EAP-MSCHAPv2 module

GLSA 200604-02 (High): horde

Horde Application Framework: Remote code execution

GLSA 200604-01 (Low): mediawiki

MediaWiki: Cross-site scripting vulnerability

GLSA 200603-26 (Normal): bsd-games

bsd-games: Local privilege escalation in tetris-bsd

GLSA 200603-25 (Normal): openoffice-bin (and 1

OpenOffice.org: Heap overflow in included libcurl

GLSA 200603-24 (Normal): realplayer

RealPlayer: Buffer overflow vulnerability

GLSA 200603-23 (Normal): nethack (and 2

NetHack, Slash'EM, Falcon's Eye: Local privilege escalation

GLSA 200603-22 (Normal): php

PHP: Format string and XSS vulnerabilities

GLSA 200603-21 (High): sendmail

Sendmail: Race condition in the handling of asynchronous signals

GLSA 200603-20 (Normal): adobe-flash

Macromedia Flash Player: Arbitrary code execution

GLSA 200603-19 (Normal): curl

cURL/libcurl: Buffer overflow in the handling of TFTP URLs

GLSA 200603-18 (Normal): pngcrush

Pngcrush: Buffer overflow

GLSA 200603-17 (High): peercast

PeerCast: Buffer overflow

GLSA 200603-16 (High): metamail

Metamail: Buffer overflow

GLSA 200603-15 (Low): crypt-cbc

Crypt::CBC: Insecure initialization vector

GLSA 200603-14 (Normal): heimdal

Heimdal: rshd privilege escalation

GLSA 200603-13 (Normal): PEAR-Auth

PEAR-Auth: Potential authentication bypass

GLSA 200603-12 (Normal): zoo

zoo: Buffer overflow

GLSA 200603-11 (Normal): freeciv

Freeciv: Denial of Service

GLSA 200603-10 (High): cube

Cube: Multiple vulnerabilities

GLSA 200603-09 (Low): squirrelmail

SquirrelMail: Cross-site scripting and IMAP command injection

GLSA 200603-08 (Normal): gnupg

GnuPG: Incorrect signature verification

GLSA 200603-07 (Normal): flex

flex: Potential insecure code generation

GLSA 200603-06 (Normal): tar

GNU tar: Buffer overflow

GLSA 200603-05 (Normal): zoo

zoo: Stack-based buffer overflow

GLSA 200603-04 (Normal): up-imapproxy

IMAP Proxy: Format string vulnerabilities

GLSA 200603-03 (Normal): mplayer

MPlayer: Multiple integer overflows

GLSA 200603-02 (Normal): tetex (and 2

teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code

GLSA 200603-01 (Normal): wordpress

WordPress: SQL injection vulnerability

GLSA 200602-14 (Normal): noweb

noweb: Insecure temporary file creation

GLSA 200602-13 (Normal): graphicsmagick

GraphicsMagick: Format string vulnerability

GLSA 200602-12 (Normal): gpdf

GPdf: heap overflows in included Xpdf code

GLSA 200602-11 (Low): openssh (and 1

OpenSSH, Dropbear: Insecure use of system() call

GLSA 200602-10 (Normal): gnupg

GnuPG: Incorrect signature verification

GLSA 200602-09 (High): bomberclone

BomberClone: Remote execution of arbitrary code

GLSA 200602-08 (High): libtasn1 (and 1

libtasn1, GNU TLS: Security flaw in DER decoding

GLSA 200602-07 (Normal): sun-jdk (and 1

Sun JDK/JRE: Applet privilege escalation

GLSA 200602-06 (Normal): imagemagick

ImageMagick: Format string vulnerability

GLSA 200602-05 (Normal): kdegraphics (and 1

KPdf: Heap based overflow

GLSA 200602-04 (Normal): xpdf (and 1

Xpdf, Poppler: Heap overflow

GLSA 200602-03 (Normal): apache

Apache: Multiple vulnerabilities

GLSA 200602-02 (Normal): adodb

ADOdb: PostgresSQL command injection

GLSA 200602-01 (Normal): gst-plugins-ffmpeg

GStreamer FFmpeg plugin: Heap-based buffer overflow

GLSA 200601-17 (Normal): xpdf (and 4

Xpdf, Poppler, GPdf, libextractor, pdftohtml: Heap overflows

GLSA 200601-16 (Normal): mydns

MyDNS: Denial of Service

GLSA 200601-15 (High): paros

Paros: Default administrator password

GLSA 200601-14 (High): libast

LibAST: Privilege escalation

GLSA 200601-13 (Low): gallery

Gallery: Cross-site scripting vulnerability

GLSA 200601-12 (Low): trac

Trac: Cross-site scripting vulnerability

GLSA 200601-11 (Normal): kdelibs

KDE kjs: URI heap overflow vulnerability

GLSA 200601-10 (Normal): sun-jdk (and 3

Sun and Blackdown Java: Applet privilege escalation

GLSA 200601-09 (Normal): wine

Wine: Windows Metafile SETABORTPROC vulnerability

GLSA 200601-08 (Normal): blender

Blender: Heap-based buffer overflow

GLSA 200601-07 (High): clamav

ClamAV: Remote execution of arbitrary code

GLSA 200601-06 (Normal): xine-lib (and 1

xine-lib, FFmpeg: Heap-based buffer overflow

GLSA 200601-05 (High): mod_auth_pgsql

mod_auth_pgsql: Multiple format string vulnerabilities

GLSA 200601-04 (High): vmware-workstation

VMware Workstation: Vulnerability in NAT networking

GLSA 200601-03 (High): hylafax

HylaFAX: Multiple vulnerabilities

GLSA 200601-02 (Normal): kdegraphics (and 3

KPdf, KWord: Multiple overflows in included Xpdf code

GLSA 200601-01 (Normal): pinentry

pinentry: Local privilege escalation

GLSA 200512-18 (Normal): xnview

XnView: Privilege escalation

GLSA 200512-17 (High): scponly

scponly: Multiple privilege escalation issues

GLSA 200512-16 (Low): openmotif (and 1

OpenMotif, AMD64 x86 emulation X libraries: Buffer overflows in libUil lib rary

GLSA 200512-15 (High): rssh

rssh: Privilege escalation

GLSA 200512-14 (High): nbd

NBD Tools: Buffer overflow in NBD server

GLSA 200512-13 (High): dropbear

Dropbear: Privilege escalation

GLSA 200512-12 (Normal): mantisbt

Mantis: Multiple vulnerabilities

GLSA 200512-11 (Normal): centericq

CenterICQ: Multiple vulnerabilities

GLSA 200512-10 (Normal): opera

Opera: Command-line URL shell command injection

GLSA 200512-09 (Low): curl

cURL: Off-by-one errors in URL handling

GLSA 200512-08 (Normal): xpdf (and 3

Xpdf, GPdf, CUPS, Poppler: Multiple vulnerabilities

GLSA 200512-07 (Low): openldap (and 1

OpenLDAP, Gauche: RUNPATH issues

GLSA 200512-06 (High): ethereal

Ethereal: Buffer overflow in OSPF protocol dissector

GLSA 200512-05 (High): xmail

Xmail: Privilege escalation through sendmail

GLSA 200512-04 (Low): openswan (and 1

Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation

GLSA 200512-03 (Normal): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 200512-02 (High): webmin (and 1

Webmin, Usermin: Format string vulnerability

GLSA 200512-01 (High): perl

Perl: Format string errors can lead to code execution

GLSA 200511-23 (Normal): chmlib (and 1

chmlib, KchmViewer: Stack-based buffer overflow

GLSA 200511-22 (Normal): inkscape

Inkscape: Buffer overflow

GLSA 200511-21 (Normal): adobe-flash

Macromedia Flash Player: Remote arbitrary code execution

GLSA 200511-20 (Low): horde

Horde Application Framework: XSS vulnerability

GLSA 200511-19 (Normal): eix

eix: Insecure temporary file creation

GLSA 200511-18 (Normal): phpsysinfo

phpSysInfo: Multiple vulnerabilities

GLSA 200511-17 (Normal): fuse

FUSE: mtab corruption through fusermount

GLSA 200511-16 (Normal): gnump3d

GNUMP3d: Directory traversal and insecure temporary file creation

GLSA 200511-15 (High): smb4k

Smb4k: Local unauthorized file access

GLSA 200511-14 (Normal): gtk+ (and 1

GTK+ 2, GdkPixbuf: Multiple XPM decoding vulnerabilities

GLSA 200511-13 (Normal): sylpheed (and 1

Sylpheed, Sylpheed-Claws: Buffer overflow in LDIF importer

GLSA 200511-12 (High): scorched3d

Scorched 3D: Multiple vulnerabilities

GLSA 200511-11 (High): netkit-ftpd

linux-ftpd-ssl: Remote buffer overflow

GLSA 200511-10 (Normal): rar

RAR: Format string and buffer overflow vulnerabilities

GLSA 200511-09 (Normal): lynx

Lynx: Arbitrary command execution

GLSA 200511-08 (Normal): php (and 2

PHP: Multiple vulnerabilities

GLSA 200511-07 (Normal): openvpn

OpenVPN: Multiple vulnerabilities

GLSA 200511-06 (Normal): fetchmail

fetchmail: Password exposure in fetchmailconf

GLSA 200511-05 (Normal): gnump3d

GNUMP3d: Directory traversal and XSS vulnerabilities

GLSA 200511-04 (High): clamav

ClamAV: Multiple vulnerabilities

GLSA 200511-03 (Normal): giflib

giflib: Multiple vulnerabilities

GLSA 200511-02 (Low): qdbm (and 2

QDBM, ImageMagick, GDAL: RUNPATH issues

GLSA 200511-01 (Normal): libgda

libgda: Format string vulnerabilities

GLSA 200510-26 (Normal): xli (and 1

XLI, Xloadimage: Buffer overflow

GLSA 200510-25 (High): ethereal

Ethereal: Multiple vulnerabilities in protocol dissectors

GLSA 200510-24 (High): mantisbt

Mantis: Multiple vulnerabilities

GLSA 200510-23 (Low): tikiwiki

TikiWiki: XSS vulnerability

GLSA 200510-22 (Normal): pam

SELinux PAM: Local password guessing attack

GLSA 200510-21 (Normal): phpmyadmin

phpMyAdmin: Local file inclusion and XSS vulnerabilities

GLSA 200510-20 (Normal): zope

Zope: File inclusion through RestructuredText

GLSA 200510-19 (Normal): curl

cURL: NTLM username stack overflow

GLSA 200510-18 (Normal): netpbm

Netpbm: Buffer overflow in pnmtopng

GLSA 200510-17 (Normal): abiword

AbiWord: New RTF import buffer overflows

GLSA 200510-16 (Normal): phpmyadmin

phpMyAdmin: Local file inclusion vulnerability

GLSA 200510-15 (Normal): lynx

Lynx: Buffer overflow in NNTP processing

GLSA 200510-14 (Low): perl (and 2

Perl, Qt-UnixODBC, CMake: RUNPATH issues

GLSA 200510-13 (Normal): spe

SPE: Insecure file permissions

GLSA 200510-12 (Normal): koffice (and 1

KOffice, KWord: RTF import buffer overflow

GLSA 200510-11 (Low): openssl

OpenSSL: SSL 2.0 protocol rollback

GLSA 200510-10 (High): uw-imap

uw-imap: Remote buffer overflow

GLSA 200510-09 (Normal): weex

Weex: Format string vulnerability

GLSA 200510-08 (Normal): xine-lib

xine-lib: Format string vulnerability

GLSA 200510-07 (Normal): realplayer (and 1

RealPlayer, Helix Player: Format string vulnerability

GLSA 200510-06 (Normal): dia

Dia: Arbitrary code execution through SVG import

GLSA 200510-05 (Normal): ruby

Ruby: Security bypass vulnerability

GLSA 200510-04 (Normal): texinfo

Texinfo: Insecure temporary file creation

GLSA 200510-03 (Normal): uim

Uim: Privilege escalation vulnerability

GLSA 200510-02 (Normal): mpeg-tools

Berkeley MPEG Tools: Multiple insecure temporary files

GLSA 200510-01 (Normal): gtkdiskfree

gtkdiskfree: Insecure temporary file creation

GLSA 200509-21 (Normal): hylafax

Hylafax: Insecure temporary file creation in xferfaxstats script

GLSA 200509-20 (Normal): abiword

AbiWord: RTF import stack-based buffer overflow

GLSA 200509-19 (Normal): php (and 2

PHP: Vulnerabilities in included PCRE and XML-RPC libraries

GLSA 200509-18 (Normal): qt

Qt: Buffer overflow in the included zlib library

GLSA 200509-17 (High): webmin (and 1

Webmin, Usermin: Remote code execution through PAM authentication

GLSA 200509-16 (Normal): mantisbt

Mantis: XSS and SQL injection vulnerabilities

GLSA 200509-15 (High): util-linux

util-linux: umount command validation error

GLSA 200509-14 (Normal): zebedee

Zebedee: Denial of Service vulnerability

GLSA 200509-13 (High): clamav

Clam AntiVirus: Multiple vulnerabilities

GLSA 200509-12 (Normal): mod_ssl (and 1

Apache, mod_ssl: Multiple vulnerabilities

GLSA 200509-11 (Normal): mozilla-firefox (and 4

Mozilla Suite, Mozilla Firefox: Multiple vulnerabilities

GLSA 200509-10 (High): mailutils

Mailutils: Format string vulnerability in imap4d

GLSA 200509-09 (High): py2play

Py2Play: Remote execution of arbitrary Python code

GLSA 200509-08 (Normal): python

Python: Heap overflow in the included PCRE library

GLSA 200509-07 (High): xorg-x11

X.Org: Heap overflow in pixmap allocation

GLSA 200509-06 (Normal): squid

Squid: Denial of Service vulnerabilities

GLSA 200509-05 (Normal): net-snmp

Net-SNMP: Insecure RPATH

GLSA 200509-04 (Low): phpldapadmin

phpLDAPadmin: Authentication bypass

GLSA 200509-03 (High): openttd

OpenTTD: Format string vulnerabilities

GLSA 200509-02 (Normal): gnumeric

Gnumeric: Heap overflow in the included PCRE library

GLSA 200509-01 (Normal): mplayer

MPlayer: Heap overflow in ad_pcm.c

GLSA 200508-22 (Normal): pam_ldap

pam_ldap: Authentication bypass vulnerability

GLSA 200508-21 (High): phpwebsite

phpWebSite: Arbitrary command execution through XML-RPC and SQL injection

GLSA 200508-20 (High): phpgroupware

phpGroupWare: Multiple vulnerabilities

GLSA 200508-19 (Normal): lm_sensors

lm_sensors: Insecure temporary file creation

GLSA 200508-18 (High): phpwiki

PhpWiki: Arbitrary command execution through XML-RPC

GLSA 200508-17 (High): libpcre

libpcre: Heap integer overflow

GLSA 200508-16 (Low): tor

Tor: Information disclosure

GLSA 200508-15 (Normal): apache

Apache 2.0: Denial of Service vulnerability

GLSA 200508-14 (High): tikiwiki (and 1

TikiWiki, eGroupWare: Arbitrary command execution through XML-RPC

GLSA 200508-13 (High): PEAR-XML_RPC (and 1

PEAR XML-RPC, phpxmlrpc: New PHP script injection vulnerability

GLSA 200508-12 (Normal): evolution

Evolution: Format string vulnerabilities

GLSA 200508-11 (Normal): acroread

Adobe Reader: Buffer Overflow

GLSA 200508-10 (High): kismet

Kismet: Multiple vulnerabilities

GLSA 200508-09 (High): bluez-utils

bluez-utils: Bluetooth device name validation vulnerability

GLSA 200508-08 (Normal): xpdf (and 3

Xpdf, Kpdf, GPdf: Denial of Service vulnerability

GLSA 200508-07 (High): awstats

AWStats: Arbitrary code execution using malicious Referrer information

GLSA 200508-06 (High): gaim

Gaim: Remote execution of arbitrary code

GLSA 200508-05 (Normal): heartbeat

Heartbeat: Insecure temporary file creation

GLSA 200508-04 (Normal): netpbm

Netpbm: Arbitrary code execution in pstopnm

GLSA 200508-03 (Normal): nbsmtp

nbSMTP: Format string vulnerability

GLSA 200508-02 (Normal): proftpd

ProFTPD: Format string vulnerabilities

GLSA 200508-01 (High): Compress-Zlib

Compress::Zlib: Buffer overflow

GLSA 200507-29 (Normal): pstotext

pstotext: Remote execution of arbitrary code

GLSA 200507-28 (High): emul-linux-x86-baselibs

AMD64 x86 emulation base libraries: Buffer overflow

GLSA 200507-27 (High): ethereal

Ethereal: Multiple vulnerabilities

GLSA 200507-26 (High): gnugadu (and 4

GNU Gadu, CenterICQ, Kadu, EKG, libgadu: Remote code execution in Gadu lib rary

GLSA 200507-25 (High): clamav

Clam AntiVirus: Integer overflows

GLSA 200507-24 (Normal): mozilla (and 1

Mozilla Suite: Multiple vulnerabilities

GLSA 200507-23 (High): kdenetwork (and 1

Kopete: Vulnerability in included Gadu library

GLSA 200507-22 (Low): sandbox

sandbox: Insecure temporary file handling

GLSA 200507-21 (Normal): fetchmail

fetchmail: Buffer Overflow

GLSA 200507-20 (Low): shorewall

Shorewall: Security policy bypass

GLSA 200507-19 (High): zlib

zlib: Buffer overflow

GLSA 200507-18 (Low): mediawiki

MediaWiki: Cross-site scripting vulnerability

GLSA 200507-17 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200507-16 (Normal): dhcpcd

dhcpcd: Denial of Service vulnerability

GLSA 200507-15 (High): php

PHP: Script injection through XML-RPC

GLSA 200507-14 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200507-13 (Normal): nss_ldap (and 1

pam_ldap and nss_ldap: Plain text authentication leak

GLSA 200507-12 (Low): bugzilla

Bugzilla: Unauthorized access and information disclosure

GLSA 200507-11 (High): mit-krb5

MIT Kerberos 5: Multiple vulnerabilities

GLSA 200507-10 (High): ruby

Ruby: Arbitrary command execution through XML-RPC

GLSA 200507-09 (Normal): acroread

Adobe Acrobat Reader: Buffer overflow vulnerability

GLSA 200507-08 (High): phpgroupware (and 1

phpGroupWare, eGroupWare: PHP script injection vulnerability

GLSA 200507-07 (High): phpwebsite

phpWebSite: Multiple vulnerabilities

GLSA 200507-06 (High): tikiwiki

TikiWiki: Arbitrary command execution through XML-RPC

GLSA 200507-05 (High): zlib

zlib: Buffer overflow

GLSA 200507-04 (Normal): realplayer

RealPlayer: Heap overflow vulnerability

GLSA 200507-03 (High): phpBB

phpBB: Arbitrary command execution

GLSA 200507-02 (High): wordpress

WordPress: Multiple vulnerabilities

GLSA 200507-01 (High): PEAR-XML_RPC (and 1

PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability

GLSA 200506-24 (High): heimdal

Heimdal: Buffer overflow vulnerabilities

GLSA 200506-23 (Normal): clamav

Clam AntiVirus: Denial of Service vulnerability

GLSA 200506-22 (Normal): sudo

sudo: Arbitrary command execution

GLSA 200506-21 (Normal): trac

Trac: File upload vulnerability

GLSA 200506-20 (High): cacti

Cacti: Several vulnerabilities

GLSA 200506-19 (Low): squirrelmail

SquirrelMail: Several XSS vulnerabilities

GLSA 200506-18 (Low): tor

Tor: Information disclosure

GLSA 200506-17 (Normal): spamassassin (and 1

SpamAssassin 3, Vipul's Razor: Denial of Service vulnerability

GLSA 200506-16 (Normal): cpio

cpio: Directory traversal vulnerability

GLSA 200506-15 (High): peercast

PeerCast: Format string vulnerability

GLSA 200506-14 (Normal): sun-jdk (and 3

Sun and Blackdown Java: Applet privilege escalation

GLSA 200506-13 (Normal): webapp-config

webapp-config: Insecure temporary file handling

GLSA 200506-12 (Low): mediawiki

MediaWiki: Cross-site scripting vulnerability

GLSA 200506-11 (Normal): gaim

Gaim: Denial of Service vulnerabilities

GLSA 200506-10 (Normal): lutelwall

LutelWall: Insecure temporary file creation

GLSA 200506-09 (Normal): gedit

gedit: Format string vulnerability

GLSA 200506-08 (Normal): shtool (and 1

GNU shtool, ocaml-mysql: Insecure temporary file creation

GLSA 200506-07 (High): ettercap

Ettercap: Format string vulnerability

GLSA 200506-06 (Normal): libextractor

libextractor: Multiple overflow vulnerabilities

GLSA 200506-05 (Normal): silvercity

SilverCity: Insecure file permissions

GLSA 200506-04 (Normal): wordpress

Wordpress: Multiple vulnerabilities

GLSA 200506-03 (Normal): dzip

Dzip: Directory traversal vulnerability

GLSA 200506-02 (Normal): mailutils

Mailutils: SQL Injection

GLSA 200506-01 (Normal): elfutils (and 1

Binutils, elfutils: Buffer overflow

GLSA 200505-20 (High): mailutils

Mailutils: Multiple vulnerabilities in imap4d and mail

GLSA 200505-19 (Normal): gxine

gxine: Format string vulnerability

GLSA 200505-18 (Normal): net-snmp

Net-SNMP: fixproc insecure temporary file creation

GLSA 200505-17 (Normal): qpopper

Qpopper: Multiple Vulnerabilities

GLSA 200505-16 (Normal): imagemagick (and 1

ImageMagick, GraphicsMagick: Denial of Service vulnerability

GLSA 200505-15 (Normal): gdb

gdb: Multiple vulnerabilities

GLSA 200505-14 (Normal): cheetah

Cheetah: Untrusted module search path

GLSA 200505-13 (Normal): freeradius

FreeRADIUS: SQL injection and Denial of Service vulnerability

GLSA 200505-12 (Normal): postgresql

PostgreSQL: Multiple vulnerabilities

GLSA 200505-11 (Normal): mozilla-firefox (and 3

Mozilla Suite, Mozilla Firefox: Remote compromise

GLSA 200505-10 (Normal): phpBB

phpBB: Cross-Site Scripting Vulnerability

GLSA 200505-09 (High): gaim

Gaim: Denial of Service and buffer overflow vulnerabilties

GLSA 200505-08 (Normal): hteditor

HT Editor: Multiple buffer overflows

GLSA 200505-07 (Normal): tiff

libTIFF: Buffer overflow

GLSA 200505-06 (Normal): tcpdump

TCPDump: Decoding routines Denial of Service vulnerability

GLSA 200505-05 (Normal): gzip

gzip: Multiple vulnerabilities

GLSA 200505-04 (Normal): gnutls

GnuTLS: Denial of Service vulnerability

GLSA 200505-03 (High): ethereal

Ethereal: Numerous vulnerabilities

GLSA 200505-02 (High): oops

Oops!: Remote code execution

GLSA 200505-01 (Low): horde-vacation (and 10

Horde Framework: Multiple XSS vulnerabilities

GLSA 200504-30 (Normal): phpmyadmin

phpMyAdmin: Insecure SQL script installation

GLSA 200504-29 (High): pound

Pound: Buffer overflow vulnerability

GLSA 200504-28 (Normal): heimdal

Heimdal: Buffer overflow vulnerabilities

GLSA 200504-27 (Normal): xine-lib

xine-lib: Two heap overflow vulnerabilities

GLSA 200504-26 (Normal): Convert-UUlib

Convert-UUlib: Buffer overflow

GLSA 200504-25 (Normal): rkhunter

Rootkit Hunter: Insecure temporary file creation

GLSA 200504-24 (Normal): egroupware

eGroupWare: XSS and SQL injection vulnerabilities

GLSA 200504-23 (Normal): kdewebdev

Kommander: Insecure remote script execution

GLSA 200504-22 (Normal): kdelibs

KDE kimgio: PCX handling buffer overflow

GLSA 200504-21 (Normal): realplayer (and 1

RealPlayer, Helix Player: Buffer overflow vulnerability

GLSA 200504-20 (Normal): openmosixview

openMosixview: Insecure temporary file creation

GLSA 200504-19 (Normal): mplayer

MPlayer: Two heap overflow vulnerabilities

GLSA 200504-18 (Normal): mozilla-firefox (and 3

Mozilla Firefox, Mozilla Suite: Multiple vulnerabilities

GLSA 200504-17 (Normal): xv

XV: Multiple vulnerabilities

GLSA 200504-16 (High): cvs

CVS: Multiple vulnerabilities

GLSA 200504-15 (High): php (and 2

PHP: Multiple vulnerabilities

GLSA 200504-14 (High): monkeyd

monkeyd: Multiple vulnerabilities

GLSA 200504-13 (Normal): openoffice (and 2

OpenOffice.Org: DOC document Heap Overflow

GLSA 200504-12 (High): rsnapshot

rsnapshot: Local privilege escalation

GLSA 200504-11 (High): junkbuster

JunkBuster: Multiple vulnerabilities

GLSA 200504-10 (High): gld

Gld: Remote execution of arbitrary code

GLSA 200504-09 (Normal): axel

Axel: Vulnerability in HTTP redirection handling

GLSA 200504-08 (Low): phpmyadmin

phpMyAdmin: Cross-site scripting vulnerability

GLSA 200504-07 (Normal): gnome-vfs (and 1

GnomeVFS, libcdaudio: CDDB response overflow

GLSA 200504-06 (Normal): sharutils

sharutils: Insecure temporary file creation

GLSA 200504-05 (Low): gaim

Gaim: Denial of Service issues

GLSA 200504-04 (Normal): mit-krb5

mit-krb5: Multiple buffer overflows in telnet client

GLSA 200504-03 (Low): dnsmasq

Dnsmasq: Poisoning and Denial of Service vulnerabilities

GLSA 200504-02 (Normal): sylpheed (and 1

Sylpheed, Sylpheed-claws: Buffer overflow on message display

GLSA 200504-01 (Normal): telnet-bsd

telnet-bsd: Multiple buffer overflows

GLSA 200503-37 (Low): limewire

LimeWire: Disclosure of sensitive information

GLSA 200503-36 (Normal): netkit-telnetd

netkit-telnetd: Buffer overflow

GLSA 200503-35 (High): smarty

Smarty: Template vulnerability

GLSA 200503-34 (Normal): mpg321

mpg321: Format string vulnerability

GLSA 200503-33 (Normal): ipsec-tools

IPsec-Tools: racoon Denial of Service

GLSA 200503-32 (Normal): mozilla-thunderbird (and 1

Mozilla Thunderbird: Multiple vulnerabilities

GLSA 200503-31 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Multiple vulnerabilities

GLSA 200503-30 (Normal): mozilla (and 1

Mozilla Suite: Multiple vulnerabilities

GLSA 200503-29 (Low): gnupg

GnuPG: OpenPGP protocol attack

GLSA 200503-28 (Normal): sun-jdk (and 1

Sun Java: Web Start argument injection vulnerability

GLSA 200503-27 (Normal): dyndnsupdate

Xzabite dyndnsupdate: Multiple vulnerabilities

GLSA 200503-26 (Normal): sylpheed (and 1

Sylpheed, Sylpheed-claws: Message reply overflow

GLSA 200503-25 (High): openslp

OpenSLP: Multiple buffer overflows

GLSA 200503-24 (Normal): ltris

LTris: Buffer overflow

GLSA 200503-23 (Normal): rxvt-unicode

rxvt-unicode: Buffer overflow

GLSA 200503-22 (Normal): kdelibs

KDE: Local Denial of Service

GLSA 200503-21 (Normal): grip

Grip: CDDB response overflow

GLSA 200503-20 (Normal): curl

curl: NTLM response buffer overflow

GLSA 200503-19 (Normal): mysql

MySQL: Multiple vulnerabilities

GLSA 200503-18 (Normal): ringtonetools

Ringtone Tools: Buffer overflow vulnerability

GLSA 200503-17 (Normal): libexif

libexif: Buffer overflow vulnerability

GLSA 200503-16 (High): ethereal

Ethereal: Multiple vulnerabilities

GLSA 200503-15 (Normal): xorg-x11

X.org: libXpm vulnerability

GLSA 200503-14 (Normal): kdelibs

KDE dcopidlng: Insecure temporary file creation

GLSA 200503-13 (Normal): mlterm

mlterm: Integer overflow vulnerability

GLSA 200503-12 (Normal): hashcash

Hashcash: Format string vulnerability

GLSA 200503-11 (Normal): imagemagick

ImageMagick: Filename handling vulnerability

GLSA 200503-10 (Normal): mozilla-firefox (and 1

Mozilla Firefox: Various vulnerabilities

GLSA 200503-09 (Normal): xv

xv: Filename handling vulnerability

GLSA 200503-08 (Normal): openmotif (and 1

OpenMotif, LessTif: New libXpm buffer overflows

GLSA 200503-07 (Normal): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 200503-06 (Normal): bidwatcher

BidWatcher: Format string vulnerability

GLSA 200503-05 (Normal): xloadimage (and 1

xli, xloadimage: Multiple vulnerabilities

GLSA 200503-04 (High): phpwebsite

phpWebSite: Arbitrary PHP execution and path disclosure

GLSA 200503-03 (Normal): gaim

Gaim: Multiple Denial of Service issues

GLSA 200503-02 (Normal): phpBB

phpBB: Multiple vulnerabilities

GLSA 200503-01 (Normal): qt

Qt: Untrusted library search path

GLSA 200502-33 (Low): mediawiki

MediaWiki: Multiple vulnerabilities

GLSA 200502-32 (Normal): unace

UnAce: Buffer overflow and directory traversal vulnerabilities

GLSA 200502-31 (Normal): uim

uim: Privilege escalation vulnerability

GLSA 200502-30 (Low): cmd5checkpw

cmd5checkpw: Local password leak vulnerability

GLSA 200502-29 (Normal): cyrus-imapd

Cyrus IMAP Server: Multiple overflow vulnerabilities

GLSA 200502-28 (Normal): putty

PuTTY: Remote code execution

GLSA 200502-27 (Normal): gftp

gFTP: Directory traversal vulnerability

GLSA 200502-26 (Normal): gproftpd

GProFTPD: gprostats format string vulnerability

GLSA 200502-25 (Normal): squid

Squid: Denial of Service through DNS responses

GLSA 200502-24 (Normal): mc

Midnight Commander: Multiple vulnerabilities

GLSA 200502-23 (High): kdeedu

KStars: Buffer overflow in fliccd

GLSA 200502-22 (Normal): wpa_supplicant

wpa_supplicant: Buffer overflow vulnerability

GLSA 200502-21 (Low): lighttpd

lighttpd: Script source disclosure

GLSA 200502-20 (Normal): emacs (and 1

Emacs, XEmacs: Format string vulnerabilities in movemail

GLSA 200502-19 (High): postgresql

PostgreSQL: Buffer overflows in PL/PgSQL parser

GLSA 200502-18 (Normal): vmware-workstation

VMware Workstation: Untrusted library search path

GLSA 200502-17 (Normal): opera

Opera: Multiple vulnerabilities

GLSA 200502-16 (Low): htdig

ht://Dig: Cross-site scripting vulnerability

GLSA 200502-15 (Normal): pdns

PowerDNS: Denial of Service vulnerability

GLSA 200502-14 (Low): mod_python

mod_python: Publisher Handler vulnerability

GLSA 200502-13 (High): perl

Perl: Vulnerabilities in perl-suid wrapper

GLSA 200502-12 (Normal): webmin

Webmin: Information leak in Gentoo binary package

GLSA 200502-11 (Normal): mailman

Mailman: Directory traversal vulnerability

GLSA 200502-10 (Normal): pdftohtml

pdftohtml: Vulnerabilities in included Xpdf

GLSA 200502-09 (High): python

Python: Arbitrary code execution through SimpleXMLRPCServer

GLSA 200502-08 (Normal): postgresql

PostgreSQL: Multiple vulnerabilities

GLSA 200502-07 (Normal): openmotif

OpenMotif: Multiple vulnerabilities in libXpm

GLSA 200502-06 (Normal): lesstif

LessTif: Multiple vulnerabilities in libXpm

GLSA 200502-05 (Normal): newspost

Newspost: Buffer overflow vulnerability

GLSA 200502-04 (Normal): squid

Squid: Multiple vulnerabilities

GLSA 200502-03 (Normal): enscript

enscript: Multiple vulnerabilities

GLSA 200502-02 (Normal): uw-imap

UW IMAP: CRAM-MD5 authentication bypass

GLSA 200502-01 (Normal): firehol

FireHOL: Insecure temporary file creation

GLSA 200501-46 (Normal): clamav

ClamAV: Multiple issues

GLSA 200501-45 (Low): gallery

Gallery: Cross-site scripting vulnerability

GLSA 200501-44 (Normal): ncpfs

ncpfs: Multiple vulnerabilities

GLSA 200501-43 (Normal): f2c

f2c: Insecure temporary file creation

GLSA 200501-42 (Normal): vdr

VDR: Arbitrary file overwriting issue

GLSA 200501-41 (High): tikiwiki

TikiWiki: Arbitrary command execution

GLSA 200501-40 (High): ngircd

ngIRCd: Buffer overflow

GLSA 200501-39 (High): squirrelmail

SquirrelMail: Multiple vulnerabilities

GLSA 200501-38 (Normal): DBI (and 1

Perl: rmtree and DBI tmpfile vulnerabilities

GLSA 200501-37 (Normal): graphicsmagick

GraphicsMagick: PSD decoding heap overflow

GLSA 200501-36 (High): awstats

AWStats: Remote code execution

GLSA 200501-35 (High): evolution

Evolution: Integer overflow in camel-lock-helper

GLSA 200501-34 (Normal): konversation

Konversation: Various vulnerabilities

GLSA 200501-33 (Normal): mysql

MySQL: Insecure temporary file creation

GLSA 200501-32 (Normal): koffice (and 1

KPdf, KOffice: Stack overflow in included Xpdf code

GLSA 200501-31 (Normal): tetex (and 2

teTeX, pTeX, CSTeX: Multiple vulnerabilities

GLSA 200501-30 (Normal): cups

CUPS: Stack overflow in included Xpdf code

GLSA 200501-29 (Low): mailman

Mailman: Cross-site scripting vulnerability

GLSA 200501-28 (Normal): xpdf (and 1

Xpdf, GPdf: Stack overflow in Decrypt::makeFileKey2

GLSA 200501-27 (High): ethereal

Ethereal: Multiple vulnerabilities

GLSA 200501-26 (Normal): imagemagick

ImageMagick: PSD decoding heap overflow

GLSA 200501-25 (Normal): squid

Squid: Multiple vulnerabilities

GLSA 200501-24 (Normal): tnftp

tnftp: Arbitrary file overwriting

GLSA 200501-23 (High): exim

Exim: Two buffer overflows

GLSA 200501-22 (High): poppassd_ceti (and 1

poppassd_pam: Unauthorized password changing

GLSA 200501-21 (Normal): hylafax

HylaFAX: hfaxd unauthorized login vulnerability

GLSA 200501-20 (Normal): o3read

o3read: Buffer overflow during file conversion

GLSA 200501-19 (Normal): imlib2

imlib2: Buffer overflows in image decoding

GLSA 200501-18 (Normal): kdelibs

KDE FTP KIOslave: Command injection

GLSA 200501-17 (Normal): koffice (and 1

KPdf, KOffice: More vulnerabilities in included Xpdf

GLSA 200501-16 (Normal): kdelibs

Konqueror: Java sandbox vulnerabilities

GLSA 200501-15 (Normal): unrtf

UnRTF: Buffer overflow

GLSA 200501-14 (Normal): mpg123

mpg123: Buffer overflow

GLSA 200501-13 (Normal): pdftohtml

pdftohtml: Vulnerabilities in included Xpdf

GLSA 200501-12 (High): tikiwiki

TikiWiki: Arbitrary command execution

GLSA 200501-11 (Normal): dillo

Dillo: Format string vulnerability

GLSA 200501-10 (Normal): vilistextum

Vilistextum: Buffer overflow vulnerability

GLSA 200501-09 (Normal): xzgv

xzgv: Multiple overflows

GLSA 200501-08 (Normal): phpgroupware

phpGroupWare: Various vulnerabilities

GLSA 200501-07 (Normal): xine-lib

xine-lib: Multiple overflows

GLSA 200501-06 (Normal): tiff

tiff: New overflows in image decoding

GLSA 200501-05 (High): mit-krb5

mit-krb5: Heap overflow in libkadm5srv

GLSA 200501-04 (Normal): shoutcast-server-bin

Shoutcast Server: Remote code execution

GLSA 200501-03 (Normal): mozilla (and 5

Mozilla, Firefox, Thunderbird: Various vulnerabilities

GLSA 200501-02 (Normal): a2ps

a2ps: Multiple vulnerabilities

GLSA 200501-01 (Normal): linpopup

LinPopUp: Buffer overflow in message reply

GLSA 200412-27 (High): phprojekt

PHProjekt: Remote code execution vulnerability

GLSA 200412-26 (Low): viewcvs

ViewCVS: Information leak and XSS vulnerabilities

GLSA 200412-25 (High): cups

CUPS: Multiple vulnerabilities

GLSA 200412-24 (Normal): xpdf (and 1

Xpdf, GPdf: New integer overflows

GLSA 200412-23 (Low): zwiki

Zwiki: XSS vulnerability

GLSA 200412-22 (Normal): mpg123

mpg123: Playlist buffer overflow

GLSA 200412-21 (Normal): mplayer

MPlayer: Multiple overflows

GLSA 200412-20 (Normal): nasm

NASM: Buffer overflow vulnerability

GLSA 200412-19 (High): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 200412-18 (Normal): abcm2ps

abcm2ps: Buffer overflow vulnerability

GLSA 200412-17 (Normal): kdegraphics

kfax: Multiple overflows in the included TIFF library

GLSA 200412-16 (Normal): kdelibs (and 1

kdelibs, kdebase: Multiple vulnerabilities

GLSA 200412-15 (High): ethereal

Ethereal: Multiple vulnerabilities

GLSA 200412-14 (High): php (and 2

PHP: Multiple vulnerabilities

GLSA 200412-13 (High): samba

Samba: Integer overflow

GLSA 200412-12 (Normal): acroread

Adobe Acrobat Reader: Buffer overflow vulnerability

GLSA 200412-11 (Normal): cscope

Cscope: Insecure creation of temporary files

GLSA 200412-10 (Normal): vim (and 1

Vim, gVim: Vulnerable options in modelines

GLSA 200412-09 (High): ncpfs

ncpfs: Buffer overflow in ncplogin and ncpmap

GLSA 200412-08 (High): nfs-utils

nfs-utils: Multiple remote vulnerabilities

GLSA 200412-07 (Normal): file

file: Arbitrary code execution

GLSA 200412-06 (Normal): phprojekt

PHProjekt: setup.php vulnerability

GLSA 200412-05 (Normal): mirrorselect

mirrorselect: Insecure temporary file creation

GLSA 200412-04 (Normal): perl

Perl: Insecure temporary file creation

GLSA 200412-03 (Normal): imlib

imlib: Buffer overflows in image decoding

GLSA 200412-02 (Normal): pdflib

PDFlib: Multiple overflows in the included TIFF library

GLSA 200412-01 (Normal): scponly (and 1

rssh, scponly: Unrestricted command execution

GLSA 200411-38 (Normal): sun-jdk (and 3

Sun and Blackdown Java: Applet privilege escalation

GLSA 200411-37 (High): opendchub

Open DC Hub: Remote code execution

GLSA 200411-36 (Low): phpmyadmin

phpMyAdmin: Multiple XSS vulnerabilities

GLSA 200411-35 (Low): phpwebsite

phpWebSite: HTTP response splitting vulnerability

GLSA 200411-34 (High): cyrus-imapd

Cyrus IMAP Server: Multiple remote vulnerabilities

GLSA 200411-33 (High): twiki

TWiki: Arbitrary command execution

GLSA 200411-32 (High): phpbb

phpBB: Remote command execution

GLSA 200411-31 (Normal): prozilla

ProZilla: Multiple vulnerabilities

GLSA 200411-30 (Normal): pdftohtml

pdftohtml: Vulnerabilities in included Xpdf

GLSA 200411-29 (Normal): unarj

unarj: Long filenames buffer overflow and a path traversal vulnerability

GLSA 200411-28 (Normal): xorg-x11 (and 1

X.Org, XFree86: libXpm vulnerabilities

GLSA 200411-27 (Normal): fcron

Fcron: Multiple vulnerabilities

GLSA 200411-26 (High): gimps (and 2

GIMPS, SETI@home, ChessBrain: Insecure installation

GLSA 200411-25 (Low): squirrelmail

SquirrelMail: Encoded text XSS vulnerability

GLSA 200411-24 (High): bnc

BNC: Buffer overflow vulnerability

GLSA 200411-23 (Normal): ruby

Ruby: Denial of Service issue

GLSA 200411-22 (Normal): davfs2 (and 1

Davfs2, lvm-user: Insecure tempfile handling

GLSA 200411-21 (Normal): samba

Samba: Multiple vulnerabilities

GLSA 200411-20 (High): ez-ipupdate

ez-ipupdate: Format string vulnerability

GLSA 200411-19 (Normal): pavuk

Pavuk: Multiple buffer overflows

GLSA 200411-18 (Normal): apache

Apache 2.0: Denial of Service by memory consumption

GLSA 200411-17 (Normal): mtink

mtink: Insecure tempfile handling

GLSA 200411-16 (Normal): zip

zip: Path name buffer overflow

GLSA 200411-15 (Normal): openssl (and 1

OpenSSL, Groff: Insecure tempfile handling

GLSA 200411-14 (Normal): kaffeine (and 1

Kaffeine, gxine: Remotely exploitable buffer overflow

GLSA 200411-13 (Normal): portage (and 1

Portage, Gentoolkit: Temporary file vulnerabilities

GLSA 200411-12 (Normal): zgv

zgv: Multiple buffer overflows

GLSA 200411-11 (Normal): imagemagick

ImageMagick: EXIF buffer overflow

GLSA 200411-10 (Low): gallery

Gallery: Cross-site scripting vulnerability

GLSA 200411-09 (Low): shadow

shadow: Unauthorized modification of account information

GLSA 200411-08 (Normal): gd

GD: Integer overflow

GLSA 200411-07 (Normal): proxytunnel

Proxytunnel: Format string vulnerability

GLSA 200411-06 (Low): MIME-tools

MIME-tools: Virus detection evasion

GLSA 200411-05 (High): libxml2

libxml2: Remotely exploitable buffer overflow

GLSA 200411-04 (High): speedtouch

Speedtouch USB driver: Privilege escalation vulnerability

GLSA 200411-03 (Normal): apache

Apache 1.3: Buffer overflow vulnerability in mod_include

GLSA 200411-02 (High): cherokee

Cherokee: Format string vulnerability

GLSA 200411-01 (Low)

ppp: No denial of service vulnerability

GLSA 200410-31 (Low): Archive-Zip

Archive::Zip: Virus detection evasion

GLSA 200410-30 (Normal): koffice (and 2

GPdf, KPDF, KOffice: Vulnerabilities in included xpdf

GLSA 200410-29 (Normal): putty

PuTTY: Pre-authentication buffer overflow

GLSA 200410-28 (High): rssh

rssh: Format string vulnerability

GLSA 200410-27 (Normal): mpg123

mpg123: Buffer overflow vulnerabilities

GLSA 200410-26 (Normal): socat

socat: Format string vulnerability

GLSA 200410-25 (Normal): netatalk

Netatalk: Insecure tempfile handling in etc2ps.sh

GLSA 200410-24 (Normal): mit-krb5

MIT krb5: Insecure temporary file use in send-pr.sh

GLSA 200410-23 (High): gaim

Gaim: Multiple vulnerabilities

GLSA 200410-22 (High): mysql

MySQL: Multiple vulnerabilities

GLSA 200410-21 (Low): apache (and 1

Apache 2, mod_ssl: Bypass of SSLCipherSuite directive

GLSA 200410-20 (Normal): xpdf (and 1

Xpdf, CUPS: Multiple integer overflows

GLSA 200410-19 (Normal): glibc

glibc: Insecure tempfile handling in catchsegv script

GLSA 200410-18 (Normal): ghostscript-esp

Ghostscript: Insecure temporary file use in multiple scripts

GLSA 200410-17 (Low): openoffice (and 2

OpenOffice.org: Temporary files disclosure

GLSA 200410-16 (Normal): postgresql

PostgreSQL: Insecure temporary file use in make_oidjoins_check

GLSA 200410-15 (Normal): squid

Squid: Remote DoS vulnerability

GLSA 200410-14 (High): phpmyadmin

phpMyAdmin: Vulnerability in MIME-based transformation system

GLSA 200410-13 (Normal): bnc

BNC: Input validation flaw

GLSA 200410-12 (Low): wordpress

WordPress: HTTP response splitting and XSS vulnerabilities

GLSA 200410-11 (Normal): tiff (and 1

tiff: Buffer overflows in image decoding

GLSA 200410-10 (Low): gettext

gettext: Insecure temporary file handling

GLSA 200410-09 (Normal): lesstif

LessTif: Integer and stack overflows in libXpm

GLSA 200410-08 (Normal): ncompress

ncompress: Buffer overflow

GLSA 200410-07 (Normal): ed

ed: Insecure temporary file handling

GLSA 200410-06 (Normal): cups

CUPS: Leakage of sensitive information

GLSA 200410-05 (High): cyrus-sasl

Cyrus-SASL: Buffer overflow and SASL_PATH vulnerabilities

GLSA 200410-04 (Normal): php (and 2

PHP: Memory disclosure and arbitrary location file upload

GLSA 200410-03 (High): netkit-telnetd

NetKit-telnetd: buffer overflows in telnet and telnetd

GLSA 200410-02 (Normal): netpbm

Netpbm: Multiple temporary file issues

GLSA 200410-01 (Normal): sharutils

sharutils: Buffer overflows in shar.c and unshar.c

GLSA 200409-35 (Low): subversion

Subversion: Metadata information leak

GLSA 200409-34 (Normal): xorg-x11 (and 2

X.org, XFree86: Integer and stack overflows in libXpm

GLSA 200409-33 (Low): apache

Apache: Exposure of protected directories

GLSA 200409-32 (High): getmail

getmail: Filesystem overwrite vulnerability

GLSA 200409-31 (Normal): jabberd

jabberd 1.x: Denial of Service vulnerability

GLSA 200409-30 (Normal): xine-lib

xine-lib: Multiple vulnerabilities

GLSA 200409-29 (Normal): freeradius

FreeRADIUS: Multiple Denial of Service vulnerabilities

GLSA 200409-28 (Normal): gtk+ (and 1

GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities

GLSA 200409-27 (Normal): glftpd

glFTPd: Local buffer overflow vulnerability

GLSA 200409-26 (Normal): mozilla (and 6

Mozilla, Firefox, Thunderbird, Epiphany: New releases fix vulnerabilities

GLSA 200409-25 (Normal): cups

CUPS: Denial of service vulnerability

GLSA 200409-24 (High): foomatic (and 1

Foomatic: Arbitrary command execution in foomatic-rip filter

GLSA 200409-23 (Low): snipsnap-bin

SnipSnap: HTTP response splitting

GLSA 200409-22 (Normal): phpgroupware

phpGroupWare: XSS vulnerability in wiki module

GLSA 200409-21 (Normal): apache (and 1

Apache 2, mod_dav: Multiple vulnerabilities

GLSA 200409-20 (Normal): mpg123

mpg123: Buffer overflow vulnerability

GLSA 200409-19 (High): heimdal

Heimdal: ftpd root escalation

GLSA 200409-18 (High): cdrtools

cdrtools: Local root vulnerability in cdrecord if set SUID root

GLSA 200409-17 (High): sus

SUS: Local root vulnerability

GLSA 200409-16 (Normal): samba

Samba: Denial of Service vulnerabilities

GLSA 200409-15 (Normal): usermin (and 1

Webmin, Usermin: Multiple vulnerabilities in Usermin

GLSA 200409-14 (Low)

Samba: Remote printing non-vulnerability

GLSA 200409-13 (Normal): lha

LHa: Multiple vulnerabilities

GLSA 200409-12 (Normal): imagemagick (and 2

ImageMagick, imlib, imlib2: BMP decoding buffer overflows

GLSA 200409-11 (High): star

star: Suid root vulnerability

GLSA 200409-10 (Normal): multi-gnome-terminal

multi-gnome-terminal: Information leak

GLSA 200409-09 (High): mit-krb5

MIT krb5: Multiple vulnerabilities

GLSA 200409-08 (Normal): ruby

Ruby: CGI::Session creates files insecurely

GLSA 200409-07 (Normal): xv

xv: Buffer overflows in image handling

GLSA 200409-06 (Normal): egroupware

eGroupWare: Multiple XSS vulnerabilities

GLSA 200409-05 (Normal): gallery

Gallery: Arbitrary command execution

GLSA 200409-04 (Normal): squid

Squid: Denial of service when using NTLM authentication

GLSA 200409-03 (High): python

Python 2.2: Buffer overflow in getaddrinfo()

GLSA 200409-02 (Normal): mysql

MySQL: Insecure temporary file creation in mysqlhotcopy

GLSA 200409-01 (High): vpopmail

vpopmail: Multiple vulnerabilities

GLSA 200408-27 (Normal): gaim

Gaim: New vulnerabilities

GLSA 200408-26 (Normal): zlib

zlib: Denial of service vulnerability

GLSA 200408-25 (Normal): moinmoin

MoinMoin: Group ACL bypass

GLSA 200408-24 (Normal): aa-sources (and 28

Linux Kernel: Multiple information leaks

GLSA 200408-23 (Low): kdelibs

kdelibs: Cross-domain cookie injection vulnerability

GLSA 200408-22 (Normal): mozilla (and 7

Mozilla, Firefox, Thunderbird, Galeon, Epiphany: New releases fix vulnerab ilities

GLSA 200408-21 (Normal): cacti

Cacti: SQL injection vulnerability

GLSA 200408-20 (Normal): qt

Qt: Image loader overflows

GLSA 200408-19 (High): courier-imap

courier-imap: Remote Format String Vulnerability

GLSA 200408-18 (Normal): xine-lib

xine-lib: VCD MRL buffer overflow

GLSA 200408-17 (Normal): rsync

rsync: Potential information leakage

GLSA 200408-16 (Low): glibc (and 4

glibc: Information leak with LD_DEBUG

GLSA 200408-15 (Normal): tomcat

Tomcat: Insecure installation

GLSA 200408-14 (Normal): acroread

acroread: UUDecode filename buffer overflow

GLSA 200408-13 (Normal): kdebase (and 1

kdebase, kdelibs: Multiple security issues

GLSA 200408-12 (Normal): gaim

Gaim: MSN protocol parsing function buffer overflow

GLSA 200408-11 (Normal): nessus

Nessus: "adduser" race condition vulnerability

GLSA 200408-10 (Normal): gv

gv: Exploitable Buffer Overflow

GLSA 200408-09 (Low): roundup

Roundup: Filesystem access vulnerability

GLSA 200408-08 (High): cfengine

Cfengine: RSA Authentication Heap Corruption

GLSA 200408-07 (Normal): horde-imp

Horde-IMP: Input validation vulnerability for Internet Explorer users

GLSA 200408-06 (Normal): spamassassin

SpamAssassin: Denial of Service vulnerability

GLSA 200408-05 (Normal): opera

Opera: Multiple new vulnerabilities

GLSA 200408-04 (Normal): putty

PuTTY: Pre-authentication arbitrary code execution

GLSA 200408-03 (Normal): libpng

libpng: Numerous vulnerabilities

GLSA 200408-02 (Normal): courier

Courier: Cross-site scripting vulnerability in SqWebMail

GLSA 200408-01 (Normal): mplayer

MPlayer: GUI filename handling overflow

GLSA 200407-23 (Normal): sox

SoX: Multiple buffer overflows

GLSA 200407-22 (Normal): phpmyadmin

phpMyAdmin: Multiple vulnerabilities

GLSA 200407-21 (High): samba

Samba: Multiple buffer overflows

GLSA 200407-20 (Low): subversion

Subversion: Vulnerability in mod_authz_svn

GLSA 200407-19 (Normal): pavuk

Pavuk: Digest authentication helper buffer overflow

GLSA 200407-18 (Normal): mod_ssl

mod_ssl: Format string vulnerability

GLSA 200407-17 (High): l2tpd

l2tpd: Buffer overflow

GLSA 200407-16 (High): aa-sources (and 32

Linux Kernel: Multiple DoS and permission vulnerabilities

GLSA 200407-15 (Normal): opera

Opera: Multiple spoofing vulnerabilities

GLSA 200407-14 (High): ut2003 (and 3

Unreal Tournament 2003/2004: Buffer overflow in 'secure' queries

GLSA 200407-13 (High): php (and 2

PHP: Multiple security vulnerabilities

GLSA 200407-12 (High): aa-sources (and 13

Linux Kernel: Remote DoS vulnerability with IPTables TCP Handling

GLSA 200407-11 (Normal): wv

wv: Buffer overflow vulnerability

GLSA 200407-10 (Normal): rsync

rsync: Directory traversal in rsync daemon

GLSA 200407-09 (Normal): moinmoin

MoinMoin: Group ACL bypass

GLSA 200407-08 (High): ethereal

Ethereal: Multiple security problems

GLSA 200407-07 (Normal): shorewall

Shorewall : Insecure temp file handling

GLSA 200407-06 (Normal): libpng

libpng: Buffer overflow on row buffers

GLSA 200407-05 (Low): xfree (and 1

XFree86, X.org: XDM ignores requestPort setting

GLSA 200407-04 (Normal): pure-ftpd

Pure-FTPd: Potential DoS when maximum connections is reached

GLSA 200407-03 (Normal): apache

Apache 2: Remote denial of service attack

GLSA 200407-02 (High): aa-sources (and 35

Linux Kernel: Multiple vulnerabilities

GLSA 200407-01 (Normal): esearch

Esearch: Insecure temp file handling

GLSA 200406-22 (High): pavuk

Pavuk: Remote buffer overflow

GLSA 200406-21 (High): mit-krb5

mit-krb5: Multiple buffer overflows in krb5_aname_to_localname

GLSA 200406-20 (Normal): freeswan (and 3

FreeS/WAN, Openswan, strongSwan: Vulnerabilities in certificate handling

GLSA 200406-19 (Low): gift-fasttrack

giFT-FastTrack: remote denial of service attack

GLSA 200406-18 (Normal): gzip

gzip: Insecure creation of temporary files

GLSA 200406-17 (Normal): ipsec-tools

IPsec-Tools: authentication bug in racoon

GLSA 200406-16 (Normal): apache

Apache 1.3: Buffer overflow in mod_proxy

GLSA 200406-15 (Normal): usermin

Usermin: Multiple vulnerabilities

GLSA 200406-14 (Normal): aspell

aspell: Buffer overflow in word-list-compress

GLSA 200406-13 (High): squid

Squid: NTLM authentication helper buffer overflow

GLSA 200406-12 (Normal): webmin

Webmin: Multiple vulnerabilities

GLSA 200406-11 (Normal): horde-imp

Horde-IMP: Input validation vulnerability

GLSA 200406-10 (Normal): gallery

Gallery: Privilege escalation vulnerability

GLSA 200406-09 (High): horde-chora

Horde-Chora: Remote code execution

GLSA 200406-08 (Normal): squirrelmail

Squirrelmail: Another XSS vulnerability

GLSA 200406-07 (High): subversion

Subversion: Remote heap overflow

GLSA 200406-06 (High): cvs

CVS: additional DoS and arbitrary code execution vulnerabilities

GLSA 200406-05 (High): mod_ssl (and 1

Apache: Buffer overflow in mod_ssl

GLSA 200406-04 (Normal): mailman

Mailman: Member password disclosure vulnerability

GLSA 200406-03 (Normal): sitecopy

sitecopy: Multiple vulnerabilities in included libneon

GLSA 200406-02 (High): tripwire

tripwire: Format string vulnerability

GLSA 200406-01 (High): ethereal

Ethereal: Multiple security problems

GLSA 200405-25 (Normal): tla

tla: Multiple vulnerabilities in included libneon

GLSA 200405-24 (High): mplayer (and 1

MPlayer, xine-lib: vulnerabilities in RTSP stream handling

GLSA 200405-23 (High): heimdal

Heimdal: Kerberos 4 buffer overflow in kadmin

GLSA 200405-22 (Normal): apache

Apache 1.3: Multiple vulnerabilities

GLSA 200405-21 (High): mc

Midnight Commander: Multiple vulnerabilities

GLSA 200405-20 (Normal): mysql

Insecure Temporary File Creation In MySQL

GLSA 200405-19 (Normal): opera

Opera telnet URI handler file creation/truncation vulnerability

GLSA 200405-18 (High): firebird

Buffer Overflow in Firebird

GLSA 200405-17 (High): metamail

Multiple vulnerabilities in metamail

GLSA 200405-16 (Normal): squirrelmail

Multiple XSS Vulnerabilities in SquirrelMail

GLSA 200405-15 (Normal): cadaver

cadaver heap-based buffer overflow

GLSA 200405-14 (Normal): subversion

Buffer overflow in Subversion

GLSA 200405-13 (Normal): neon

neon heap-based buffer overflow

GLSA 200405-12 (High): cvs

CVS heap overflow vulnerability

GLSA 200405-11 (Normal): kdelibs

KDE URI Handler Vulnerabilities

GLSA 200405-10 (Normal): icecast

Icecast denial of service vulnerability

GLSA 200405-09 (High): proftpd

ProFTPD Access Control List bypass vulnerability

GLSA 200405-08 (High): pound

Pound format string vulnerability

GLSA 200405-07 (High): exim

Exim verify=header_syntax buffer overflow

GLSA 200405-06 (Normal): libpng

libpng denial of service vulnerability

GLSA 200405-05 (Normal): utempter

Utempter symlink vulnerability

GLSA 200405-04 (High): openoffice (and 5

OpenOffice.org vulnerability when using DAV servers

GLSA 200405-03 (High): clamav

ClamAV VirusEvent parameter vulnerability

GLSA 200405-02 (High): lha

Multiple vulnerabilities in LHa

GLSA 200405-01 (Normal): neon

Multiple format string vulnerabilities in neon 0.24.4 and earlier

GLSA 200404-21 (Normal): samba

Multiple Vulnerabilities in Samba

GLSA 200404-20 (Normal): xine-ui (and 1

Multiple vulnerabilities in xine

GLSA 200404-19 (Normal): lcdproc

Buffer overflows and format string vulnerabilities in LCDproc

GLSA 200404-18 (High): ssmtp

Multiple Vulnerabilities in ssmtp

GLSA 200404-17 (Normal): ipsec-tools (and 1

ipsec-tools and iputils contain a remote DoS vulnerability

GLSA 200404-16 (High): monit

Multiple new security vulnerabilities in monit

GLSA 200404-15 (Low): xchat

XChat 2.0.x SOCKS5 Vulnerability

GLSA 200404-14 (Normal): cadaver

Multiple format string vulnerabilities in cadaver

GLSA 200404-13 (Normal): cvs

CVS Server and Client Vulnerabilities

GLSA 200404-12 (High): scorched3d

Scorched 3D server chat box format string vulnerability

GLSA 200404-11 (High): pwlib

Multiple Vulnerabilities in pwlib

GLSA 200404-10 (Low): iproute

iproute local Denial of Service vulnerability

GLSA 200404-09 (Normal): heimdal

Cross-realm trust vulnerability in Heimdal

GLSA 200404-08 (Normal): automake

GNU Automake symbolic link vulnerability

GLSA 200404-07 (Normal): clamav

ClamAV RAR Archive Remote Denial Of Service Vulnerability

GLSA 200404-06 (Low): util-linux

Util-linux login may leak sensitive data

GLSA 200404-05 (High): ipsec-tools

ipsec-tools contains an X.509 certificates vulnerability.

GLSA 200404-04 (Normal): sysstat

Multiple vulnerabilities in sysstat

GLSA 200404-03 (High): tcpdump (and 1

Tcpdump Vulnerabilities in ISAKMP Parsing

GLSA 200404-02 (High): kde

KDE Personal Information Management Suite Remote Buffer Overflow Vulnerabi lity

GLSA 200404-01 (Normal): portage

Insecure sandbox temporary lockfile vulnerabilities in Portage

GLSA 200403-14 (High): monit

Multiple Security Vulnerabilities in Monit

GLSA 200403-13 (High): mplayer (and 2

Remote buffer overflow in MPlayer

GLSA 200403-12 (Normal): openldap

OpenLDAP DoS Vulnerability

GLSA 200403-11 (Normal): squid

Squid ACL [url_regex] bypass vulnerability

GLSA 200403-10 (Normal): fetchmail

Fetchmail 6.2.5 fixes a remote DoS

GLSA 200403-09 (High): mc

Buffer overflow in Midnight Commander

GLSA 200403-08 (Normal): oftpd

oftpd DoS vulnerability

GLSA 200403-07 (High): ethereal

Multiple remote overflows and vulnerabilities in Ethereal

GLSA 200403-06 (Normal): courier-imap (and 1

Multiple remote buffer overflow vulnerabilities in Courier

GLSA 200403-05 (Normal): uudeview

UUDeview MIME Buffer Overflow

GLSA 200403-04 (Normal): apache

Multiple security vulnerabilities in Apache 2

GLSA 200403-03 (Normal): openssl

Multiple OpenSSL Vulnerabilities

GLSA 200403-02 (High): aa-sources (and 33

Linux kernel do_mremap local privilege escalation vulnerability

GLSA 200403-01 (Normal): libxml2

Libxml2 URI Parsing Buffer Overflow Vulnerabilities

GLSA 200402-07 (Normal): clamav

Clam Antivirus DoS vulnerability

GLSA 200402-06 (Normal): ck-sources (and 7

Updated kernel packages fix the AMD64 ptrace vulnerability

GLSA 200402-05 (Normal): phpmyadmin

phpMyAdmin < 2.5.6-rc1: possible attack against export.php

GLSA 200402-04 (Normal): gallery

Gallery 1.4.1 and below remote exploit vulnerability

GLSA 200402-03 (Normal): monkeyd

Monkeyd Denial of Service vulnerability

GLSA 200402-02 (High): xfree

XFree86 Font Information File Buffer Overflow

GLSA 200402-01 (Normal): mod_php

PHP setting leaks from .htaccess files on virtual hosts

GLSA 200401-04 (Normal): gaim

GAIM 0.75 Remote overflows

GLSA 200401-03 (Low): mod_python

Apache mod_python Denial of Service vulnerability

GLSA 200401-02 (Low): honeyd

Honeyd remote detection vulnerability via a probe packet

GLSA 200401-01 (High): aa-sources (and 33

Linux kernel do_mremap() local privilege escalation vulnerability

GLSA 200312-08 (High): cvs

CVS: possible root compromise when using CVS pserver

GLSA 200312-07 (Low): lftp

Two buffer overflows in lftp

GLSA 200312-06 (Medium): xchat

XChat: malformed dcc send request denial of service

GLSA 200312-05 (Minimal): gnupg

GnuPG: ElGamal signing keys compromised and format string vulnerability

GLSA 200312-04 (Minimal): cvs

CVS: malformed module request vulnerability

GLSA 200312-03 (High): rsync

rsync: exploitable heap overflow

GLSA 200312-01 (Low)

rsync.gentoo.org: rotation server compromised

GLSA 200311-08 (Normal): libnids

Libnids: remote code execution vulnerability

GLSA 200311-07 (Normal): phpsysinfo

phpSysInfo: arbitrary code execution and directory traversal

GLSA 200311-06 (Normal): glibc

glibc: getgrouplist buffer overflow vulnerability

GLSA 200311-05 (Normal): ethereal

Ethereal: security problems in ethereal 0.9.15

GLSA 200311-04 (Normal): freeradius

FreeRADIUS: heap exploit and NULL pointer dereference vulnerability

GLSA 200311-03 (Normal): hylafax

HylaFAX: Remote code exploit in hylafax

GLSA 200311-02 (High): opera

Opera: buffer overflows in 7.11 and 7.20

GLSA 200311-01 (Normal): kdebase

kdebase: KDM vulnerabilities

GLSA 200310-04 (Normal): apache

Apache: buffer overflows and a possible information disclosure

GLSA 200310-03 (Normal): apache

Apache: multiple buffer overflows