Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Debian_linux
(Debian)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-11-06 | CVE-2011-4625 | simplesamlphp before 1.6.3 (squeeze) and before 1.8.2 (sid) incorrectly handles XML encryption which could allow remote attackers to decrypt or forge messages. | Debian_linux, Simplesamlphp | N/A | ||
2019-11-12 | CVE-2011-2897 | gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw | Debian_linux, Gdk\-Pixbuf, Enterprise_linux | N/A | ||
2019-11-12 | CVE-2010-3440 | babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and unpacking dictionary files, allowing a local attacker to overwrite arbitrary files. | Babiloo, Debian_linux | N/A | ||
2019-11-07 | CVE-2010-2450 | The keygen.sh script in Shibboleth SP 2.0 (located in /usr/local/etc/shibboleth by default) uses OpenSSL to create a DES private key which is placed in sp-key.pm. It relies on the root umask (default 22) instead of chmoding the resulting file itself, so the generated private key is world readable by default. | Debian_linux, Service_provider | N/A | ||
2019-11-07 | CVE-2007-6745 | clamav 0.91.2 suffers from a floating point exception when using ScanOLE2. | Clamav, Debian_linux | N/A | ||
2019-11-05 | CVE-2013-6364 | Horde Groupware Webmail Edition has CSRF and XSS when saving search as a virtual address book | Debian_linux, Groupware | N/A | ||
2019-11-05 | CVE-2013-5123 | The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS querying and authenticity checks which allows attackers to perform man-in-the-middle attacks. | Debian_linux, Fedora, Pip, Openshift, Software_collections, Virtualenv | N/A | ||
2019-11-07 | CVE-2013-1809 | Gambas before 3.4.0 allows remote attackers to move or manipulate directory contents or perform symlink attacks due to the creation of insecure temporary directories. | Debian_linux, Gambas | N/A | ||
2019-11-06 | CVE-2009-5046 | JSP Dump and Session Dump Servlet XSS in jetty before 6.1.22. | Debian_linux, Jetty | N/A | ||
2019-11-06 | CVE-2009-5045 | Dump Servlet information leak in jetty before 6.1.22. | Debian_linux, Jetty | N/A |