Download
| Alert*
oval:org.secpod.oval:def:106997
dpkg is installed oval:org.secpod.oval:def:108852 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:106996 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:107319 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation a ... oval:org.secpod.oval:def:107200 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:108853 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:50338 Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the (1) package or (2) architecture name. oval:org.secpod.oval:def:602034 Jann Horn discovered that the source package integrity verification in dpkg-source can be bypassed via a specially crafted Debian source control file . Note that this flaw only affects extraction of local Debian source packages via dpkg-source but not the installation of packages from the Debian arc ... oval:org.secpod.oval:def:601667 dpkg is installed oval:org.secpod.oval:def:601277 Jakub Wilk discovered that dpkg did not correctly parse C-style filename quoting, allowing for paths to be traversed when unpacking a source package - leading to the creation of files outside the directory of the source being unpacked. The update to the stable distribution incorporates non-security ... oval:org.secpod.oval:def:702857 dpkg: Debian package management system dpkg-deb could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:607788 Max Justicz reported a directory traversal vulnerability in Dpkg::Source::Archive in dpkg, the Debian package management system. This affects extracting untrusted source packages in the v2 and v3 source package formats that include a debian.tar. oval:org.secpod.oval:def:85658 Max Justicz reported a directory traversal vulnerability in Dpkg::Source::Archive in dpkg, the Debian package management system. This affects extracting untrusted source packages in the v2 and v3 source package formats that include a debian.tar. oval:org.secpod.oval:def:111658 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:111680 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:111690 This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation and removal of packages on a Debian system. This package also contains dselect, an interface for managing the installation ... oval:org.secpod.oval:def:52632 dpkg: Debian package management system dpkg-deb could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:602288 Hanno Boeck discovered a stack-based buffer overflow in the dpkg-deb component of dpkg, the Debian package management system. This flaw could potentially lead to arbitrary code execution if a user or an automated system were tricked into processing a specially crafted Debian binary package in the o ... oval:org.secpod.oval:def:114908 This package provides the low-level infrastructure for handling the installation and removal of Debian software packages. This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation a ... oval:org.secpod.oval:def:114994 This package provides the low-level infrastructure for handling the installation and removal of Debian software packages. This package contains the tools required to unpack, build and upload Debian source packages. This package also contains the programs dpkg which used to handle the installation a ... oval:org.secpod.oval:def:3300517 SUSE Security Update: Security update for dpkg oval:org.secpod.oval:def:1900918 dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source on ... |