Debian Linux Security Advisory 4999-1 - Multiple vulnerabilities have been discovered in Asterisk, an open source PBX and telephony toolkit, which may result in denial of service.
32e0f410aa33b5e48c93e8bfabe77026431d522a47de00eb87184616a5207ff1
Debian Linux Security Advisory 5000-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, incorrect Kerberos ticket use, selection of weak ciphers or information disclosure.
0a3dec4f4b03ce1d6e5aa4dfe97b700b072f5d722ad5b2fa1bd46c2ab2cdaa80
Debian Linux Security Advisory 5001-1 - Multiple vulnerabilities were discovered in Redis, a persistent key-value database, which could result in denial of service or the execution of arbitrary code.
406dbfdfd83a1dea66a2255a9f05f19d888b79c7f9fc33daff18046788d1d679
Debian Linux Security Advisory 5002-1 - A flaw was discovered in containerd, an open and reliable container runtime. Insufficiently restricted permissions on container root and plugin directories could result in privilege escalation.
12759b10a5119cb0d9d5065417c6f4a1d4463d7aae2a350205cb66e4c5379229
Debian Linux Security Advisory 5003-1 - Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix.
0a7a09e04fa990a7673cc76314010ed6afc0c0ce0c674ddd1e882aa9f5c1973a
Debian Linux Security Advisory 5004-1 - Multiple security vulnerabilities have been discovered in XStream, a Java library to serialize objects to XML and back again.
e3aca8ca24ba1bae991a19b9c891853d3fde83ade3db51bc3a65a899cca8f0ac
Debian Linux Security Advisory 5005-1 - A security vulnerability has been found in Kaminari, a pagination engine plugin for Rails 3+ and other modern frameworks, that would allow an attacker to inject arbitrary code into pages with pagination links.
dbd745d6925f25ef097151545adcf0a39b8c2fdc2cb35ffb17db7f107ad9b86f
Debian Linux Security Advisory 5006-1 - Jacob Champion discovered two vulnerabilities in the PostgreSQL database system, which could result in man-in-the-middle attacks.
5f610d7baff445cfb8b0da29b7f9d16f2aa4caab431bead581f0102bf840a614
Debian Linux Security Advisory 5007-1 - Jacob Champion discovered two vulnerabilities in the PostgreSQL database system, which could result in man-in-the-middle attacks.
02d95d914e798d7080ba4335b69e1341e5e70e509cbae834da2f0ec8f0bfefec
Debian Linux Security Advisory 5008-1 - It was discovered that the symlink extraction protections in node-tar, a Tar archives module for Node.js could by bypassed; allowing a malicious Tar archive to symlink into an arbitrary location.
915d1d41f05c7787a3911c04d0c5812980a9774de9b717719ea636a54be32acd
Debian Linux Security Advisory 5009-1 - Apache Tomcat, the servlet and JSP engine, did not properly release an HTTP upgrade connection for WebSocket connections once the WebSocket connection was closed. This created a memory leak that, over time, could lead to a denial of service via an OutOfMemoryError.
9a4e16626d02bb91801a3b597d49948e374122e49e85bb8133fb8a4a0049c874
Debian Linux Security Advisory 5010-1 - Apache Santuario - XML Security for Java is vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacker to abuse an XPath Transform to extract any local .xml files in a RetrievalMethod element.
287a5690f611c2d9a93b84ab409ee0c9fa54818656b8b0b546738a2972280154
Debian Linux Security Advisory 5011-1 - Multiple security vulnerabilities have been discovered in Salt, a powerful remote execution manager, that allow for local privilege escalation on a minion, server side template injection attacks, insufficient checks for eauth credentials, shell and command injections or incorrect validation of SSL certificates.
7bb7fffca8de5352e1fd6dffa90e1381b4c3e9b7b95fb7359363d2650c0511f0
Debian Linux Security Advisory 5012-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service, incorrect Kerberos ticket use, selection of weak ciphers or information disclosure.
e83a47f083050475ac55df11961a83bfb42f62d09d3a5539b65b5db3449929a9
Debian Linux Security Advisory 5013-1 - It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not properly sanitize requests and mail messages. This would allow an attacker to perform Cross-Side Scripting (XSS) or SQL injection attacks.
a03a03eab4188f259316a76f031e24b205af8e66667b567c402a33759e43f75a
Debian Linux Security Advisory 5014-1 - Rongxin Wu discovered a use-after-free vulnerability in the International Components for Unicode (ICU) library which could result in denial of service or potentially the execution of arbitrary code.
376ef1a8d158e79e9f6f2376bc9a613b4a4a0f73f9eb18a1c5fdb41c47186f6e
Debian Linux Security Advisory 5015-1 - Andrew Bartlett discovered that Samba, a SMB/CIFS file, print, and login server for Unix, may map domain users to local users in an undesired way. This could allow a user in an AD domain to potentially become root on domain members.
93f994f99b346024987f5bb0bcb23c7c1f683b5137070664905142e366f47941
Nextar C472 POS suffers from a dll hijacking vulnerability.
c6e9e5fd44e33cac1c1c6907b29faa8c9d0aad5d2bbc186391b6abfbce80c4c9