secure-testing-team

Messages by Date

2016/11/07 [Secure-testing-team] Bug#843519: gitlab: CVE-2016-9086 Salvatore Bonaccorso
2016/11/06 [Secure-testing-team] Bug#843462: emacs25: Please disable xwidgets/webkit David Bremner
2016/11/06 [Secure-testing-team] Bug#843431: [pidgin-sipe] Possibly a use-after-free on a buffer in telepathy transport Marcin Szewczyk
2016/11/05 [Secure-testing-team] Bug#843258: ynx: CVE-2016-9179 Salvatore Bonaccorso
2016/11/05 [Secure-testing-team] Bug#843232: heat: CVE-2016-9185: template source URL allows network port scan Salvatore Bonaccorso
2016/11/03 [Secure-testing-team] Bug#843091: otrs2: CVE-2016-9139 Salvatore Bonaccorso
2016/11/03 [Secure-testing-team] Bug#843041: pacemaker: CVE-2016-7035 Salvatore Bonaccorso
2016/11/02 [Secure-testing-team] Bug#843012: libcsp: CVE-2016-8596 CVE-2016-8597 CVE-2016-8598 Salvatore Bonaccorso
2016/11/02 [Secure-testing-team] Bug#842987: redis: CVE-2016-2121: weak permissions on sensitive files Salvatore Bonaccorso
2016/11/02 [Secure-testing-team] Bug#842985: ansible: CVE-2016-8628: Command injection by compromised server via fact variables Salvatore Bonaccorso
2016/11/02 [Secure-testing-team] Bug#842984: ansible: CVE-2016-8614: Improper verification of key fingerprints in apt_key module Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842895: mariadb-10.0: CVE-2016-6664 CVE-2016-5617 Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842893: libxml-twig-perl: expand_external_ents fails to work as documented Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842891: libimage-info-perl: XXE in SVG files Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842858: bind9: CVE-2016-8864: A problem handling responses containing a DNAME answer can lead to an assertion failure Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842856: python-django: CVE-2016-9013 CVE-2016-9014 Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842814: memcached: CVE-2016-8706 Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842812: memcached: CVE-2016-8705 Salvatore Bonaccorso
2016/11/01 [Secure-testing-team] Bug#842811: memcached: CVE-2016-8704 Salvatore Bonaccorso
2016/10/31 [Secure-testing-team] Bug#842714: libwebp: CVE-2016-9085: several integer overflows Salvatore Bonaccorso
2016/10/30 [Secure-testing-team] Bug#842570: libxslt: CVE-2016-4738: possible heap overread Salvatore Bonaccorso
2016/10/29 [Secure-testing-team] Bug#842507: sudo: CVE-2016-7076: noexec bypass via wordexp() Salvatore Bonaccorso
2016/10/29 [Secure-testing-team] Bug#842463: Various 9ps security issues Guido Günther
2016/10/28 [Secure-testing-team] Bug#842432: ruby2.3: CVE-2016-7798: IV Reuse in GCM Mode Salvatore Bonaccorso
2016/10/28 [Secure-testing-team] Bug#842339: CVE-2016-6321 Moritz Muehlenhoff
2016/10/27 [Secure-testing-team] Bug#842295: nginx: CVE-2016-1247 Salvatore Bonaccorso
2016/10/27 [Secure-testing-team] Bug#842289: cairo: CVE-2016-9082: Out of bounds read in read_png/write_png in cairo-png.c Salvatore Bonaccorso
2016/10/26 [Secure-testing-team] Bug#842169: tre: CVE-2016-8859 Salvatore Bonaccorso
2016/10/26 [Secure-testing-team] Bug#842171: musl: CVE-2016-8859: Regex integer overflow in buffer size computations Salvatore Bonaccorso
2016/10/25 [Secure-testing-team] Bug#842121: 389-ds-base: CVE-2016-5405: Password verification vulnerable to timing attack Salvatore Bonaccorso
2016/10/25 [Secure-testing-team] Bug#842093: libupnp: CVE-2016-8863 Salvatore Bonaccorso
2016/10/25 [Secure-testing-team] Bug#842090: libwmf: CVE-2016-9011 Salvatore Bonaccorso
2016/10/25 [Secure-testing-team] [email protected]邮件系统备案提醒！邮箱管理员！
2016/10/24 [Secure-testing-team] Bug#841955: qemu: CVE-2016-8910: net: rtl8139: infinite loop while transmit in C+ mode Salvatore Bonaccorso
2016/10/24 [Secure-testing-team] Bug#841950: qemu: CVE-2016-8909: audio: intel-hda: infinite loop in processing dma buffer stream Salvatore Bonaccorso
2016/10/23 [Secure-testing-team] Bug#841884: openssh: CVE-2016-8858: Memory exhaustion due to unregistered KEXINIT handler after receiving message Salvatore Bonaccorso
2016/10/22 [Secure-testing-team] Bug#841722: libpaper: tmp file vulnerability in debian/rules clean target Helmut Grohne
2016/10/22 [Secure-testing-team] Bug#841692: openjdk-7 CVEs fixed by 7u121 Guido Günther
2016/10/21 [Secure-testing-team] Bug#841677: mysql-connector-python: CVE-2016-5598 Salvatore Bonaccorso
2016/10/21 [Secure-testing-team] Bug#841665: boinc-client: The boinc-client init script has a badly constructed parameter for xhost Mike Brennan
2016/10/21 [Secure-testing-team] Bug#841495: guile: REPL server vulnerable to HTTP inter-protocol attacks Matanya Moses
2016/10/21 [Secure-testing-team] Bug#841494: guile: Thread-unsafe umask modification Matanya Moses
2016/10/18 [Secure-testing-team] Bug#841257: sendmail: Privilege escalation from group smmsp to (user) root Paul Szabo
2016/10/18 [Secure-testing-team] Bug#841162: quagga: CVE-2016-1245: zebra: stack overrun in IPv6 RA receive code Salvatore Bonaccorso
2016/10/17 [Secure-testing-team] Bug#841137: gnuplot5-qt: double free or corruption Vincent Lefevre
2016/10/17 [Secure-testing-team] Bug#841112: jasper: CVE-2016-8690 Salvatore Bonaccorso
2016/10/17 [Secure-testing-team] Bug#841111: jasper: CVE-2016-8691 CVE-2016-8692 Salvatore Bonaccorso
2016/10/17 [Secure-testing-team] Bug#841110: jasper: CVE-2016-8693 Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840960: dwarfutils: CVE-2016-8680: heap-based buffer overflow in _dwarf_get_abbrev_for_code Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840961: dwarfutils: CVE-2016-8681: heap-based buffer overflow in _dwarf_get_abbrev_for_code second one Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840958: dwarfutils: CVE-2016-8679: heap-based buffer overflow in _dwarf_get_size_of_val Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840957: mupdf: CVE-2016-8674: heap-use-after-free Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840950: qemu: CVE-2016-8667: dma: rc4030 divide by zero error in set_next_tick Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840948: qemu: CVE-2016-8668: net: OOB buffer access in rocker switch emulation Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840945: qemu: CVE-2016-8669: char: divide by zero error in serial_update_parameters Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840936: libarchive: CVE-2016-8687: bsdtar: stack-based buffer overflow in bsdtar_expand_char Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840935: libarchive: CVE-2016-8688: Out of bounds read in mtree parser Salvatore Bonaccorso
2016/10/16 [Secure-testing-team] Bug#840934: libarchive: CVE-2016-8689: heap-based buffer overflow in read_Header Salvatore Bonaccorso
2016/10/15 [Secure-testing-team] Bug#840889: CVE-2016-4491 and CVE-2016-6131 not fixed in libiberty_20161011-1 Anton Gladky
2016/10/15 [Secure-testing-team] Remboursement important... ÀΜelí.ƒr
2016/10/14 [Secure-testing-team] Bug#840806: libgd2: invalid read in gdImageCreateFromTiffPtr() Salvatore Bonaccorso
2016/10/14 [Secure-testing-team] Bug#840805: libgd2: Stack Buffer Overflow in GD dynamicGetbuf Salvatore Bonaccorso
2016/10/13 [Secure-testing-team] Bug#840711: golang-github-appc-docker2aci: CVE-2016-8579 Salvatore Bonaccorso
2016/10/13 [Secure-testing-team] [email protected]邮件系统备案提醒！ postmaster
2016/10/13 [Secure-testing-team] Bug#840691: libgs9: security update DSA-3691-1 breaks zathura, evince, ... in jessie Francesco Poli (wintermute)
2016/10/13 [Secure-testing-team] Bug#840685: tomcat8: DSA-3670 incomplete Paul Szabo
2016/10/13 [Secure-testing-team] Bug#840605: bubblewrap: CVE-2016-8659 Salvatore Bonaccorso
2016/10/12 [Secure-testing-team] Bug#840555: guile-2.0: CVE-2016-8606 Salvatore Bonaccorso
2016/10/12 [Secure-testing-team] Bug#840556: guile-2.0: CVE-2016-8605 Salvatore Bonaccorso
2016/10/12 [Secure-testing-team] Bug#840554: libxml2: CVE-2016-5131 Salvatore Bonaccorso
2016/10/12 [Secure-testing-team] Bug#840553: libxml2: CVE-2016-4658 Salvatore Bonaccorso
2016/10/12 [Secure-testing-team] Bug#840546: KMail: HTML injection in plain text viewer Scott Kitterman
2016/10/11 [Secure-testing-team] Bug#840451: ghostscript: CVE-2016-8602 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840445: libxvmc: CVE-2016-7953 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840444: libxtst: CVE-2016-7951 CVE-2016-7952 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840443: libxrender: CVE-2016-7949 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840442: libxfixes: CVE-2016-7944 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840441: libxrandr: CVE-2016-7947 CVE-2016-7948 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840440: libxi: CVE-2016-7945 CVE-2016-7946 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840439: libx11: CVE-2016-7942 CVE-2016-7943 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840438: libxv: CVE-2016-5407: Insufficient validation of server responses results in out-of bounds accesses Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840437: CVE-2016-7799 mogrify global buffer overflow Bastien ROUCARIES
2016/10/11 [Secure-testing-team] Bug#840434: ffmpeg: CVE-2016-7122 CVE-2016-7450 CVE-2016-7502 CVE-2016-7555 CVE-2016-7562 CVE-2016-7785 CVE-2016-7905 Salvatore Bonaccorso
2016/10/11 [Secure-testing-team] Bug#840435: CVE-2016-7906 Bastien ROUCARIES
2016/10/10 [Secure-testing-team] Bug#840360: Multiple security issues Moritz Muehlenhoff
2016/10/10 [Secure-testing-team] Bug#840358: Multiple security issues in libiberty Moritz Muehlenhoff
2016/10/10 [Secure-testing-team] Bug#840357: CVE-2015-1336 Moritz Muehlenhoff
2016/10/10 [Secure-testing-team] Bug#840347: CVE-2016-4429 Moritz Muehlenhoff
2016/10/10 [Secure-testing-team] Bug#840343: qemu: CVE-2016-8576: usb: xHCI: infinite loop vulnerability in xhci_ring_fetch Salvatore Bonaccorso
2016/10/10 [Secure-testing-team] Bug#840341: qemu: CVE-2016-8577: 9pfs: host memory leakage in v9fs_read Salvatore Bonaccorso
2016/10/10 [Secure-testing-team] Bug#840340: qemu: CVE-2016-8578 Salvatore Bonaccorso
2016/10/10 [Secure-testing-team] Bug#840338: libass: CVE-2016-7971: large allocation leading to crash Salvatore Bonaccorso
2016/10/09 [Secure-testing-team] Bug#840236: qemu: CVE-2016-7995: usb: hcd-ehci: memory leak in ehci_process_itd Salvatore Bonaccorso
2016/10/09 [Secure-testing-team] Bug#840228: qemu: CVE-2016-7994: virtio-gpu: memory leak in virtio_gpu_resource_create_2d Salvatore Bonaccorso
2016/10/09 [Secure-testing-team] Bug#840227: libgit2: CVE-2016-8568 CVE-2016-8569 Salvatore Bonaccorso
2016/10/07 [Secure-testing-team] Bug#840000: libapache-mod-jk: CVE-2016-6808 Salvatore Bonaccorso
2016/10/07 [Secure-testing-team] Bug#839998: ntp: CVE-2016-0727: NTP statsdir cleanup cronjob insecure Salvatore Bonaccorso
2016/10/06 [Secure-testing-team] Bug#839986: qemu: CVE-2016-7907: net: inifinte loop in imx_fec_do_tx() function Salvatore Bonaccorso
2016/10/05 [Secure-testing-team] Bug#839865: kde-cli-tools: CVE-2016-7787 Salvatore Bonaccorso
2016/10/05 [Secure-testing-team] Bug#839846: ghostscript: type confusion in .initialize_dsc_parser allows remote code execution Salvatore Bonaccorso
2016/10/05 [Secure-testing-team] Bug#839845: ghostscript: reference leak in .setdevice allows use-after-free and remote code execution Salvatore Bonaccorso
2016/10/05 [Secure-testing-team] Bug#839835: qemu: CVE-2016-7908: net: Infinite loop in mcf_fec_do_tx Salvatore Bonaccorso
2016/10/05 [Secure-testing-team] Bug#839834: qemu: CVE-2016-7909: net: pcnet: infinite loop in pcnet_rdra_addr Salvatore Bonaccorso
2016/10/05 [Secure-testing-team] Bug#839827: freeimage: CVE-2016-5684 Salvatore Bonaccorso
2016/10/04 [Secure-testing-team] Bug#839714: CVE-2016-5325 / CVE-2016-7099 Moritz Muehlenhoff
2016/10/03 [Secure-testing-team] Bug#839659: libgd2: CVE-2016-7568: Integer overflow in gdImageWebpCtx Salvatore Bonaccorso
2016/09/25 [Secure-testing-team] Bug#838850: qemu: CVE-2016-7161 Salvatore Bonaccorso
2016/09/25 [Secure-testing-team] Bug#838833: asterisk: AST-2016-006 Salvatore Bonaccorso
2016/09/25 [Secure-testing-team] Bug#838832: asterisk: AST-2016-007 Salvatore Bonaccorso
2016/09/24 [Secure-testing-team] Bug#838762: irssi: information disclosure vulnerabilit in buf.pl (CWE-732, CWE-538) Holger Levsen
2016/09/24 [Secure-testing-team] Bug#838757: dwarfutils: CVE-2016-7511 Salvatore Bonaccorso
2016/09/23 [Secure-testing-team] Bug#838694: icu: CVE-2016-7415: Stack based buffer overflow in locid.cpp Salvatore Bonaccorso
2016/09/23 [Secure-testing-team] Bug#838690: openjpeg2: CVE-2016-7445: Null pointer dereference in convert.c Salvatore Bonaccorso
2016/09/23 [Secure-testing-team] Bug#838687: qemu: CVE-2016-7466: memory leakage during device unplug Salvatore Bonaccorso
2016/09/22 [Secure-testing-team] Bug#838618: node-cookie-signature: CVE-2016-1000236 Salvatore Bonaccorso
2016/09/22 [Secure-testing-team] Bug#838600: undertow: CVE-2016-7046: Long URL proxy request lead to java.nio.BufferOverflowException and DoS Salvatore Bonaccorso
2016/09/18 [Secure-testing-team] Bug#838204: jackrabbit: CVE-2016-6801: CSRF in Jackrabbit-Webdav using empty content-type Salvatore Bonaccorso
2016/09/17 [Secure-testing-team] Bug#838147: qemu: CVE-2016-7421: scsi: pvscsi: infinite loop when processing IO requests Salvatore Bonaccorso
2016/09/17 [Secure-testing-team] Bug#838146: qemu: CVE-2016-7422: virtio: null pointer dereference in virtqueue_map_desc Salvatore Bonaccorso
2016/09/17 [Secure-testing-team] Bug#838145: qemu: CVE-2016-7423: scsi: mptsas: OOB access when freeing MPTSASRequest object Salvatore Bonaccorso
2016/09/16 [Secure-testing-team] Bug#838026: ceph: CVE-2016-7031: rgw: Anonymous user is able to read bucket with authenticated read ACL Salvatore Bonaccorso
2016/09/16 [Secure-testing-team] Bug#838019: dwarfutils: CVE-2016-7410: Heap buffer overflow in _dwarf_read_loc_section Salvatore Bonaccorso
2016/09/16 [Secure-testing-team] Bug#838017: manila-ui: CVE-2016-6519: persistent XSS in metadata field Salvatore Bonaccorso
2016/09/15 [Secure-testing-team] Bug#837945: curl: CVE-2016-7167: escape and unescape integer overflows Salvatore Bonaccorso
2016/09/15 [Secure-testing-team] Bug#837883: mysql-server-5.7: Please upgrade to 5.7.15+ to fix recently discovered security issues Eric Valette
2016/09/13 [Secure-testing-team] Bug#837714: libarchive: CVE-2016-5418: Archive Entry with type 1 (hardlink), but has a non-zero data size file overwrite Salvatore Bonaccorso
2016/09/13 [Secure-testing-team] cher client, vous avez 1 nouveau message (BGFI) Groupe BGFIBank
2016/09/12 [Secure-testing-team] Bug#837604: openjpeg2: CVE-2016-7163: Integer overflow in opj_pi_create_decode Salvatore Bonaccorso
2016/09/12 [Secure-testing-team] Bug#837603: qemu: CVE-2016-7157: mptsas: invalid memory access while building configuration pages Salvatore Bonaccorso
2016/09/12 [Secure-testing-team] Bug#837599: autotrace: CVE-2016-7392: heap-based buffer overflow in pstoedit_suffix_table_init (output-pstoedit.c) Salvatore Bonaccorso
2016/09/12 [Secure-testing-team] Bug#837534: apt-listchanges: postinst runs a Python script out of /tmp/ Raphaël Hertzog
2016/09/10 [Secure-testing-team] Bug#837339: qemu: CVE-2016-7156: scsi: pvscsi: infintie loop when building SG list Salvatore Bonaccorso
2016/09/10 [Secure-testing-team] Bug#837338: libtorrent-rasterbar: CVE-2016-7164: egmentation fault caused by malformed GZIP encoded response Salvatore Bonaccorso
2016/09/10 [Secure-testing-team] Bug#837316: qemu: CVE-2016-7170: vmware_vga: OOB stack memory access when processing svga command Salvatore Bonaccorso
2016/09/09 [Secure-testing-team] Bug#837211: libphp-adodb: incorrect quoting may allow SQL injection Salvatore Bonaccorso
2016/09/09 [Secure-testing-team] Bug#837178: linux-image-3.16.0-4-amd64: All memory and swap is used up until system freezes Wolfgang Tichy
2016/09/09 [Secure-testing-team] Bug#837175: usbguard: don' set IPCAllowedGroups=wheel Christoph Anton Mitterer
2016/09/09 [Secure-testing-team] Bug#837174: qemu: CVE-2016-7155: scsi: pvscsi: OOB read and infinite loop while setting descriptor rings Salvatore Bonaccorso
2016/09/09 [Secure-testing-team] Bug#837170: CVE-2016-6345 / CVE-2016-6346 / CVE-2016-6347 / CVE-2016-6348 Moritz Muehlenhoff
2016/09/08 [Secure-testing-team] Bug#837090: wordpress: CVE-2016-6896 CVE-2016-6897 Salvatore Bonaccorso
2016/09/07 [Secure-testing-team] Bug#837042: libtomcrypt: CVE-2016-6129 Salvatore Bonaccorso
2016/09/07 [Secure-testing-team] Mikkeller超狂新品組只要$785 再贈馬來貘限量聯名酒【iCheers 電子報】
2016/09/07 [Secure-testing-team] Bug#836918: curl: CVE-2016-7141: Incorrect reuse of client certificates (nss backend) Salvatore Bonaccorso
2016/09/05 [Secure-testing-team] Bug#836776: SGI security bug Bastien ROUCARIES
2016/09/04 [Secure-testing-team] Bug#836706: certificate spoofing via crafted SASL messages Antoine Beaupré
2016/09/03 [Secure-testing-team] Bug#836505: elog: CVE-2016-6342: posting entry as arbitrary username by improper authentication Salvatore Bonaccorso
2016/09/03 [Secure-testing-team] Bug#836503: wget: CVE-2016-7098: files rejected by access list are kept on the disk for the duration of HTTP connection Salvatore Bonaccorso
2016/09/03 [Secure-testing-team] Bug#836502: qemu: CVE-2016-7116: 9p: directory traversal flaw in 9p virtio backend Salvatore Bonaccorso
2016/09/01 [Secure-testing-team] Bug#836320: mactelnet: CVE-2016-7115 Salvatore Bonaccorso
2016/08/31 [Secure-testing-team] Bug#836205: node-debug: CVE-2015-8315: Vulnerable to ReDoS attacks Jonas Smedegaard
2016/08/31 [Secure-testing-team] Bug#836174: Prevent runtime error: divide by zero Bastien ROUCARIES
2016/08/31 [Secure-testing-team] Bug#836172: Prevent buffer overflow in SIXEL, PDB, MAP, and CALS coders (bug report from Donghai Zhu) Bastien ROUCARIES
2016/08/31 [Secure-testing-team] Bug#836171: TIFF divide by zero Bastien ROUCARIES
2016/08/29 [Secure-testing-team] Bug#835970: mailman: CVE-2016-6893: CSRF protection needs to be extended to the user options page Salvatore Bonaccorso
2016/08/27 [Secure-testing-team] Bug#835649: [flashplugin-nonfree] OldStable (Wheezy) version of package is critically out of date Stephen Lyons
2016/08/23 [Secure-testing-team] Bug#835223: quagga: CVE-2016-4036 Salvatore Bonaccorso
2016/08/22 [Secure-testing-team] Bug#835131: freeipa: CVE-2016-5404: Insufficient privileges check in certificate revocation Salvatore Bonaccorso
2016/08/21 [Secure-testing-team] Bug#835032: hhvm: Various CVEs (CVE-2014-9709 CVE-2015-8865 CVE-2016-1903 CVE-2016-4070 CVE-2016-4539 CVE-2016-6870 CVE-2016-6871 CVE-2016-6872 CVE-2016-6873 CVE-2016-6874 CVE-2016-6875) Salvatore Bonaccorso
2016/08/21 [Secure-testing-team] Bug#835031: qemu: CVE-2016-6835: buffer overflow in vmxnet_tx_pkt_parse_headers() in vmxnet3 device emulation Salvatore Bonaccorso
2016/08/20 [Secure-testing-team] Bug#834949: lshell: Shell outbreak due to bad syntax parse Vladislav Yarmak
2016/08/20 [Secure-testing-team] Bug#834946: lshell: Shell outbreak with multiline commands Vladislav Yarmak
2016/08/20 [Secure-testing-team] Bug#834944: qemu: CVE-2016-6836: Information leak in vmxnet3_complete_packet Salvatore Bonaccorso
2016/08/20 [Secure-testing-team] Bug#834905: qemu: CVE-2016-6834: infinite loop during packet fragmentation Salvatore Bonaccorso
2016/08/20 [Secure-testing-team] Bug#834904: qemu: CVE-2016-6833: net: vmxnet3: use after free while writing Salvatore Bonaccorso
2016/08/20 [Secure-testing-team] Bug#834902: qemu: CVE-2016-6888 Salvatore Bonaccorso
2016/08/20 [Secure-testing-team] Bug#834894: gnupg1: CVE-2016-6313: RNG prediction vulnerability Salvatore Bonaccorso
2016/08/20 [Secure-testing-team] Bug#834893: gnupg: CVE-2016-6313: RNG prediction vulnerability Salvatore Bonaccorso
2016/08/19 [Secure-testing-team] Bug#834845: chicken: CVE-2016-6830 CVE-2016-6831 Salvatore Bonaccorso
2016/08/19 [Secure-testing-team] Bug#834843: ruby-doorkeeper: CVE-2016-6582 Salvatore Bonaccorso
2016/08/18 [Secure-testing-team] Bug#834752: glibc: CVE-2016-6323: Missing unwind information on ARM Salvatore Bonaccorso
2016/08/16 [Secure-testing-team] Bug#834529: firewalld: CVE-2016-5410: Firewall configuration can be modified by any logged in user Salvatore Bonaccorso
2016/08/16 [Secure-testing-team] Bug#834501: Outofbound in exif (jpeg) reader Bastien ROUCARIES
2016/08/14 [Secure-testing-team] Bug#834367: systemctl daemon-reexec (as run on systemd upgrade) causes all keystrokes to go to text console in addition to X (including passwords) Josh Triplett
2016/08/13 [Secure-testing-team] Bug#834233: 389-ds-base: CVE-2016-5416: ACI readable by anonymous user Salvatore Bonaccorso
2016/08/12 [Secure-testing-team] Bug#834155: rails: CVE-2016-6316: Possible XSS Vulnerability in Action View Salvatore Bonaccorso
2016/08/12 [Secure-testing-team] Bug#834154: rails: CVE-2016-6317: unsafe query generation in Active Record Salvatore Bonaccorso
2016/08/10 [Secure-testing-team] Undeliverable message Postmaster
2016/08/08 [Secure-testing-team] Bug#833812: Prevent possible stack overflow Bastien ROUCARIES
2016/08/08 [Secure-testing-team] Bug#833744: RLE check for pixel offset less than 0 Bastien ROUCARIES
2016/08/08 [Secure-testing-team] Bug#833743: Segfault in ReadRLEImage Bastien ROUCARIES
2016/08/08 [Secure-testing-team] Bug#833730: Buffer overflow in draw.c Bastien ROUCARIES
2016/08/07 [Secure-testing-team] Bug#833627: firefox-esr: wrong dependency to libhunspell-1.3-0 but in Stretch there is only libhunspell-1.4-0 Davide Prina
2016/08/06 [Secure-testing-team] Bug#833570: fontconfig: CVE-2016-5384: possible double free due to insufficiently validated cache files Salvatore Bonaccorso
2016/08/04 [Secure-testing-team] Bug#833482: aptitude: doesn't detect obsolete candidate package (versions) Christoph Anton Mitterer
2016/08/04 [Secure-testing-team] Bug#833467: python-hpack: CVE-2016-6581 Salvatore Bonaccorso
2016/08/04 [Secure-testing-team] GRAN OFERTA: FUJITSU S780 i5 -15,6" + Windows 7 sólo por 207 Euros Informática Ocasión
2016/08/04 [Secure-testing-team] Bug#833462: openjdk-7-jre-headless does not upgrade : does not find that /proc is mounted Erwan David
2016/08/04 [Secure-testing-team] Bug#833442: busybox: CVE-2016-6301: NTP server denial of service flaw Salvatore Bonaccorso
2016/08/03 [Secure-testing-team] Bug#833420: cacti: Incomplete fix for CVE-2016-2313 Salvatore Bonaccorso
2016/08/03 [Secure-testing-team] Bug#833417: mupdf: CVE-2016-6525: heap overflow in pdf_load_mesh_params() Salvatore Bonaccorso
2016/08/02 [Secure-testing-team] Bug#833302: glibc: CVE-2016-5417: per-thread memory leak in __res_vinit with IPv6 nameservers Salvatore Bonaccorso
2016/07/31 [Secure-testing-team] Bug#833101: DOS by not releasing memory Bastien ROUCARIES
2016/07/31 [Secure-testing-team] Bug#833099: CVE-2016-6491 buffer overflow Bastien ROUCARIES
2016/07/31 [Secure-testing-team] Bug#833044: CVE-2016-5691 DCM file bug lack of validation of pixel.red, pixel.green, and pixel.blue Bastien ROUCARIES
2016/07/31 [Secure-testing-team] Bug#833043: CVE-2016-5690 Bastien ROUCARIES
2016/07/31 [Secure-testing-team] Bug#833042: CVE-2016-5689 lack of required NULL pointer checks in the DCM parser Bastien ROUCARIES
2016/07/30 [Secure-testing-team] Bug#833003: CVE-2016-5688 WPG file issue Bastien ROUCARIES
2016/07/30 [Secure-testing-team] Bug#832983: nettle: CVE-2016-4689 Salvatore Bonaccorso
2016/07/30 [Secure-testing-team] Bug#832968: CVE-2016-5010: tiff file Out-of-bounds read Bastien ROUCARIES
2016/07/29 [Secure-testing-team] Bug#832959: xmlrpc-epi: CVE-2016-6296: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c Salvatore Bonaccorso