Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Debian_linux
(Debian)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-11-14 | CVE-2011-0544 | phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag. | Debian_linux, Phpbb | N/A | ||
2019-11-13 | CVE-2010-4533 | offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies. | Debian_linux, Offlineimap | N/A | ||
2019-11-12 | CVE-2010-3359 | If LD_LIBRARY_PATH is undefined in gargoyle-free before 2009-08-25, the variable will point to the current directory. This can allow a local user to trick another user into running gargoyle in a directory with a cracked libgarglk.so and gain access to the user's account. | Debian_linux, Gargoyle | N/A | ||
2019-11-13 | CVE-2012-4384 | letodms has multiple XSS issues: Reflected XSS in Login Page, Stored XSS in Document Owner/User name, Stored XSS in Calendar | Debian_linux, Letodms | N/A | ||
2019-11-12 | CVE-2011-3618 | atop: symlink attack possible due to insecure tempfile handling | Atop, Debian_linux | N/A | ||
2019-11-13 | CVE-2010-4532 | offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks. | Debian_linux, Offlineimap | N/A | ||
2019-11-12 | CVE-2010-3439 | It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid parameters to the download command. | Alien\-Arena, Debian_linux, Fedora | N/A | ||
2019-11-12 | CVE-2010-3438 | libpoe-component-irc-perl before v6.32 does not remove carriage returns and line feeds. This can be used to execute arbitrary IRC commands by passing an argument such as "some text\rQUIT" to the 'privmsg' handler, which would cause the client to disconnect from the server. | Debian_linux, Fedora, Libpoe\-Component\-Irc\-Perl | N/A | ||
2019-11-12 | CVE-2010-3299 | The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks. | Debian_linux, Rails | N/A | ||
2019-11-12 | CVE-2012-1572 | OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space | Debian_linux, Keystone | N/A |