Source: wordpress
Version: 4.7+dfsg-2
Severity: grave
Tags: upstream security
Justification: user security hole
There are a bunch of security holes in wordpress 4.7. Eight! security
issues!
The best summary of them is at [1] which lists them as:
WordPress 4.3-4.7 - Potential Remote Command
Package: vtable-dumper
Severity: serious
Tags: patch security
X-Debbugs-CC: secure-testing-team@lists.alioth.debian.org
Hi,
vtable dumper could be run from network process in order to test remote
binaries.
Newer version fix some security bug like off-by-ones, segfault and memory leak
Thanks
Package: puppet-module-swift
Severity: grave
Tags: security
Hi,
please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9590
for details.
Cheers,
Moritz
___
Secure-testing-team mailing list
Secure-testing-team@lists.alioth.debian.org
Source: tiff
Version: 4.0.7-4
Severity: important
Tags: security patch upstream
Hi,
the following vulnerability was published for tiff.
CVE-2017-5225[0]:
| LibTIFF version 4.0.7 is vulnerable to a heap buffer overflow in the
| tools/tiffcp resulting in DoS or code execution via a crafted
|
Source: chicken
Severity: important
Tags: security
Please see http://www.openwall.com/lists/oss-security/2016/12/14/18
for details.
Cheers,
Moritz
___
Secure-testing-team mailing list
Secure-testing-team@lists.alioth.debian.org
Source: percona-xtrabackup
Version: 2.2.3-2.1
Severity: grave
Tags: security upstream
Justification: user security hole
Hi,
the following vulnerability was published for percona-xtrabackup.
CVE-2016-6225[0]:
Encryption IV not being set properly
If you fix the vulnerability please also make
6 matches
Mail list logo