Download
| Alert*
oval:org.secpod.oval:def:32978
samba: SMB/CIFS file, print, and login server for Unix Details: USN-2855-1 fixed vulnerabilities in Samba. The upstream fix for CVE-2015-5252 introduced a regression in certain specific environments. This update fixes the problem. Original advisory USN-2855-1 introduced a regression in Samba. oval:org.secpod.oval:def:33378 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:32821 qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:703032 pam: Pluggable Authentication Modules Details: USN-2935-1 fixed vulnerabilities in PAM. The updates contained a packaging change that prevented upgrades in certain multiarch environments. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-2935-1 introduced a reg ... oval:org.secpod.oval:def:703037 quagga: BGP/OSPF/RIP routing daemon Quagga could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:702983 libssh: A tiny C SSH library Several security issues were fixed in libssh. oval:org.secpod.oval:def:702988 cpio: a tool to manage archives of files Several security issues were fixed in GNU cpio. oval:org.secpod.oval:def:702970 nettle: low level cryptographic library Several security issues were fixed in Nettle. oval:org.secpod.oval:def:31640 krb5: MIT Kerberos Network Authentication Protocol Several security issues were fixed in Kerberos. oval:org.secpod.oval:def:702859 icedtea-web: A web browser plugin to execute Java applets Several security issues were fixed in IcedTea Web. oval:org.secpod.oval:def:703029 exim4: Exim is a mail transport agent Several security issues were fixed in Exim. oval:org.secpod.oval:def:702979 xdelta3: Diff utility which works with binary files xdelta3 could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:702857 dpkg: Debian package management system dpkg-deb could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:702978 oxide-qt: Web browser engine library for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:702856 python-django: High-level Python web development framework Django could be made to expose sensitive information over the network. oval:org.secpod.oval:def:703010 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:703015 bsh: Java scripting environment BeanShell could be made to run programs if it processed specially crafted input. oval:org.secpod.oval:def:703136 glibc: GNU C Library - eglibc: GNU C Library Details: USN-2985-1 fixed vulnerabilities in the GNU C Library. The fix for CVE-2014-9761 introduced a regression which affected applications that use the libm library but were not fully restarted after the upgrade. This update removes the fix for CVE-201 ... oval:org.secpod.oval:def:703014 squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:703013 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:702849 nvidia-graphics-drivers-304: NVIDIA binary X.Org driver - nvidia-graphics-drivers-304-updates: NVIDIA binary X.Org driver - nvidia-graphics-drivers-340: NVIDIA binary X.Org driver - nvidia-graphics-drivers-340-updates: NVIDIA binary X.Org driver - nvidia-graphics-drivers-352: NVIDIA binary X.Org dri ... oval:org.secpod.oval:def:702848 lxcfs: FUSE based filesystem for LXC Several security issues were fixed in LXCFS. oval:org.secpod.oval:def:702969 gtk+2.0: GTK+ graphical user interface library - gtk+3.0: GTK+ graphical user interface library GTK+ could be made to crash or run programs as your login if it processed a specially crafted image. oval:org.secpod.oval:def:702842 lxd: Container hypervisor based on LXC LXD could be made to run programs as an administrator. oval:org.secpod.oval:def:702963 firefox: Mozilla Open Source web browser A same-origin-policy bypass was discovered in Firefox. oval:org.secpod.oval:def:703018 python-django: High-level Python web development framework Details: USN-2915-1 fixed vulnerabilities in Django. The upstream fix for CVE-2016-2512 introduced a regression for certain applications. This update fixes the problem. Original advisory USN-2915-1 introduced a regression in Django. oval:org.secpod.oval:def:702962 nginx: small, powerful, scalable web/proxy server Several security issues were fixed in nginx. oval:org.secpod.oval:def:702961 firefox: Mozilla Open Source web browser Details: USN-2880-1 fixed vulnerabilities in Firefox. This update introduced a regression which caused Firefox to crash on startup with some configurations. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-2880-1 introd ... oval:org.secpod.oval:def:702968 eog: Eye of GNOME graphics viewer program Eye of GNOME could be made to crash or run programs as your login if it opened a specially crafted image. oval:org.secpod.oval:def:702846 strongswan: IPsec VPN solution strongSwan could be made to bypass authentication. oval:org.secpod.oval:def:702967 libgcrypt20: LGPL Crypto library - libgcrypt11: LGPL Crypto library Libgcrypt could be made to expose sensitive information. oval:org.secpod.oval:def:702966 samba: SMB/CIFS file, print, and login server for Unix Details: USN-2855-1 fixed vulnerabilities in Samba. The upstream fix for CVE-2015-5252 introduced a regression in certain specific environments. This update fixes the problem. Original advisory USN-2855-1 introduced a regression in Samba. oval:org.secpod.oval:def:703001 glib-networking: network-related giomodules for GLib Details: USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the glib-networking package to properly handle the removal. Original advisory Updated glib-netw ... oval:org.secpod.oval:def:703008 perl: Practical Extraction and Report Language Several security issues were fixed in Perl. oval:org.secpod.oval:def:703005 python-django: High-level Python web development framework Several security issues were fixed in Django. oval:org.secpod.oval:def:702836 wpa: client support for WPA and WPA2 Several security issues were fixed in wpa_supplicant and hostapd. oval:org.secpod.oval:def:702833 unzip: De-archiver for .zip files Details: USN-2788-1 fixed vulnerabilities in unzip. One of the security patches caused a regression when extracting 0-byte files. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-2788-1 introduced a regression in unzip. oval:org.secpod.oval:def:703009 python-django: High-level Python web development framework Details: USN-2915-1 fixed vulnerabilities in Django. The upstream fix for CVE-2016-2512 introduced a regression for certain applications. This update fixes the problem by applying the complete upstream regression fix. Original advisory USN-2 ... oval:org.secpod.oval:def:702942 perl: Practical Extraction and Report Language Perl incorrectly handled the taint attribute. oval:org.secpod.oval:def:702941 rsync: fast, versatile, remote file-copying tool rsync could be made to write files outside of the expected directory. oval:org.secpod.oval:def:702940 ecryptfs-utils: eCryptfs cryptographic filesystem utilities mount.ecryptfs_private could be used to run programs as an administrator. oval:org.secpod.oval:def:702946 curl: HTTP, HTTPS, and FTP client and client libraries curl would incorrectly re-use credentials. oval:org.secpod.oval:def:702945 oxide-qt: Web browser engine library for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:702816 unzip: De-archiver for .zip files unzip could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:702810 apport: automatically generate crash reports for debugging Apport could be made to run programs as an administrator. oval:org.secpod.oval:def:702812 audiofile: Open-source version of the SGI audiofile library audiofile could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:702807 Ubuntu 15.10 is installed oval:org.secpod.oval:def:702806 oxide-qt: Web browser engine library for Qt Details: USN-2770-1 fixed vulnerabilities in Oxide in Ubuntu 14.04 LTS and Ubuntu 15.04. This update provides the corresponding updates for Ubuntu 15.10. Original advisory Several security issues were fixed in Oxide. oval:org.secpod.oval:def:702808 miniupnpc: UPnP IGD client lightweight library Details: USN-2780-1 fixed a vulnerability in the MiniUPnP library in Ubuntu 12.04 LTS, Ubuntu 14.04 LTS, and Ubuntu 15.04. This update provides the corresponding update for Ubuntu 15.10. Original advisory An application using the MiniUPnP library could ... oval:org.secpod.oval:def:703214 kde4libs: KDE 4 core applications and libraries KDE-Libs could be made to overwrite files. oval:org.secpod.oval:def:702922 oxide-qt: Web browser engine library for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:702914 pygments: syntax highlighting package written in Python Pygments could be made to crash or run programs if it processed a specially crafted font request. oval:org.secpod.oval:def:702918 isc-dhcp: DHCP server and client DHCP server, client, or relay could be made to crash if they received specially crafted network traffic. oval:org.secpod.oval:def:703204 pidgin: graphical multi-protocol instant messaging client for X Pidgin could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:702905 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:702909 ldb: LDAP-like embedded database Several security issues were fixed in ldb. oval:org.secpod.oval:def:703072 libtasn1-6: Library to manage ASN.1 structures - libtasn1-3: Library to manage ASN.1 structures Libtasn1 could be made to hang if it processed specially crafted data. oval:org.secpod.oval:def:703070 php5: HTML-embedded scripting language interpreter Details: USN-2952-1 fixed vulnerabilities in PHP. One of the backported patches caused a regression in the PHP Soap client. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-2952-1 caused a regression in PHP. oval:org.secpod.oval:def:703065 poppler: PDF rendering library poppler could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:702894 git: fast, scalable, distributed revision control system Git could be made to run programs as your login if it processed an untrusted repository. oval:org.secpod.oval:def:703055 optipng: advanced PNG optimizer OptiPNG could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:703054 firefox: Mozilla Open Source web browser Details: USN-2917-1 fixed vulnerabilities in Firefox. This update caused several web compatibility regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-2917-1 introduced several regressions in Firefox. oval:org.secpod.oval:def:702884 cups-filters: OpenPrinting CUPS Filters cups-filters could be made to run programs as the lp user if it processed a specially crafted print job. oval:org.secpod.oval:def:703041 openjdk-7: Open Source Java implementation OpenJDK could be made to crash or run programs as your login if it received specially crafted input. oval:org.secpod.oval:def:702872 libsndfile: Library for reading/writing audio files libsndfile could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:702993 oxide-qt: Web browser engine library for Qt Oxide could be made to bypass same-origin restrictions. oval:org.secpod.oval:def:702870 cups-filters: OpenPrinting CUPS Filters cups-filters could be made to run programs as the lp user if it processed a specially crafted print job. oval:org.secpod.oval:def:703040 xchat-gnome: simple and featureful IRC client for GNOME XChat-GNOME could be made to expose sensitive information over the network. oval:org.secpod.oval:def:702995 ca-certificates: Common CA certificates ca-certificates was updated to the 20160104 package. oval:org.secpod.oval:def:702873 oxide-qt: Web browser engine library for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:703049 firefox: Mozilla Open Source web browser Details: USN-2917-1 fixed vulnerabilities in Firefox. This update caused several regressions that could result in search engine settings being lost, the list of search providers appearing empty or the location bar breaking after typing an invalid URL. This up ... oval:org.secpod.oval:def:702999 linux: Linux kernel Details: USN-2908-1 fixed vulnerabilities in the Linux kernel for Ubuntu 15.10. An incorrect locking fix caused a regression that broke graphics displays for Ubuntu 15.10 guests running within VMWare virtual machines. This update fixes the problem. We apologize for the inconvenie ... oval:org.secpod.oval:def:702964 postgresql-9.4: Object-relational SQL database - postgresql-9.3: Object-relational SQL database - postgresql-9.1: Object-relational SQL database PostgreSQL could be made to crash or run programs if it handled specially crafted data. oval:org.secpod.oval:def:702901 sosreport: Set of tools to gather troubleshooting data from a system sosreport could be made to expose sensitive information or overwrite files as the administrator. oval:org.secpod.oval:def:32820 qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:703191 gimp: The GNU Image Manipulation Program GIMP could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:703120 linux-raspi2: Linux kernel for Raspberry Pi 2 The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:32657 libvirt: Libvirt virtualization toolkit Several security issues were fixed in libvirt. oval:org.secpod.oval:def:702971 libreoffice: Office productivity suite LibreOffice could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:702965 glibc: GNU C Library - eglibc: GNU C Library GNU C Library could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:702947 openssl: Secure Socket Layer cryptographic library and tools OpenSSL could be made to expose sensitive information over the network. oval:org.secpod.oval:def:702861 qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:703131 glibc: GNU C Library - eglibc: GNU C Library Several security issues were fixed in the GNU C Library. oval:org.secpod.oval:def:703033 pam: Pluggable Authentication Modules Several security issues were fixed in PAM. oval:org.secpod.oval:def:702911 linux: Linux kernel The system could be made to run programs as an administrator. oval:org.secpod.oval:def:702908 linux-raspi2: Linux kernel for Raspberry Pi 2 The system could be made to run programs as an administrator. oval:org.secpod.oval:def:703035 git: fast, scalable, distributed revision control system Git could be made to crash or run programs as your login if it received changes from a specially crafted remote repository. oval:org.secpod.oval:def:703036 webkitgtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:703012 bind9: Internet Domain Name Server Bind could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:702937 bind9: Internet Domain Name Server Bind could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:703202 linux-raspi2: Linux kernel for Raspberry Pi 2 The system could be made to crash under certain conditions. oval:org.secpod.oval:def:703207 linux: Linux kernel The system could be made to crash under certain conditions. oval:org.secpod.oval:def:702900 bind9: Internet Domain Name Server Bind could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:34610 openssh: secure shell for secure access to remote machines Several security issues were fixed in OpenSSH. oval:org.secpod.oval:def:703186 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703184 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703053 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:703125 libndp: Library for Neighbor Discovery Protocol libndp could be tricked into accepting an NDP message from outside the local network. oval:org.secpod.oval:def:703124 libksba: X.509 and CMS support library Libksba could be made to crash or run programs if it decoded specially crafted data. oval:org.secpod.oval:def:703113 firefox: Mozilla Open Source web browser Details: USN-2936-1 fixed vulnerabilities in Firefox. The update caused an issue where a device update POST request was sent every time about:preferences#sync was shown. This update fixes the problem. We apologize for the inconvenience. Original advisory USN- ... oval:org.secpod.oval:def:703111 libarchive: Library to read/write archive files libarchive could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:703118 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:703107 qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:703086 samba: SMB/CIFS file, print, and login server for Unix Details: USN-2950-1 fixed vulnerabilities in Samba. The fixes introduced in Samba 4.3.8 caused certain regressions and interoperability issues. This update resolves some of these issues by updating to Samba 4.3.9 in Ubuntu 14.04 LTS, Ubuntu 15.1 ... oval:org.secpod.oval:def:703085 samba: SMB/CIFS file, print, and login server for Unix Details: USN-2950-1 fixed vulnerabilities in Samba. The fixes introduced in Samba 4.3.8 caused certain regressions and interoperability issues. This update resolves some of these issues by updating to Samba 4.3.9 in Ubuntu 14.04 LTS, Ubuntu 15.1 ... oval:org.secpod.oval:def:34322 qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer. Incorrect banked access bounds checking in vga module. oval:org.secpod.oval:def:703071 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:703066 libsoup2.4: HTTP client/server library for GNOME Details: USN-2950-1 fixed vulnerabilities in Samba. The updated Samba packages introduced a compatibility issue with NTLM authentication in libsoup. This update fixes the problem. We apologize for the inconvenience. Original advisory This update fixes ... oval:org.secpod.oval:def:703140 lxd: Container hypervisor based on LXC Several security issues were fixed in LXD. oval:org.secpod.oval:def:703146 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:703145 nginx: small, powerful, scalable web/proxy server nginx could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:703130 samba: SMB/CIFS file, print, and login server for Unix Details: USN-2950-1 fixed vulnerabilities in Samba. USN-2950-3 updated Samba to version 4.3.9, which introduced a regression when using the ntlm_auth tool. This update fixes the problem. Original advisory USN-2950-1 introduced a regression in Sa ... oval:org.secpod.oval:def:703139 dosfstools: utilities for making and checking MS-DOS FAT filesystems dosfstools could be made to crash or run programs if it processed a specially crafted filesystem. oval:org.secpod.oval:def:34282 ImageMagick allows to process files with external libraries. This feature is called 'delegate'. It is implemented as a system() with command string ('command') from the config file delegates.xml with actual value for different params (input/output filenames etc). Due to insufficient %M param filteri ... oval:org.secpod.oval:def:34283 ImageMagick allows to make HTTP GET or FTP request. oval:org.secpod.oval:def:34286 ImageMagick allows to get content of the files from the server by using 'label' pseudo protocol. oval:org.secpod.oval:def:34284 ImageMagick allows to delete files by using 'ephemeral' pseudo protocol which deletes files after reading. oval:org.secpod.oval:def:34285 ImageMagick allows to move image files to file with any extension in any folder by using 'msl' pseudo protocol. oval:org.secpod.oval:def:703210 apache2: Apache HTTP server A security issue was fixed in the Apache HTTP Server. oval:org.secpod.oval:def:703206 nspr: NetScape Portable Runtime Library NSPR could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:703208 libarchive: Library to read/write archive files libarchive could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:703199 ecryptfs-utils: eCryptfs cryptographic filesystem utilities eCryptfs could be made to expose sensitive information. oval:org.secpod.oval:def:703190 libimobiledevice: Library for communicating with iPhone and iPod Touch devices libimobiledevice would allow unintended access to devices over the network. oval:org.secpod.oval:def:703187 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:703189 libusbmuxd: USB multiplexor daemon for iPhone and iPod Touch devices libusbmuxd would allow unintended access to devices over the network. oval:org.secpod.oval:def:703183 libreoffice: Office productivity suite LibreOffice could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:703170 wget: retrieves files from the web Wget could be made to overwrite files. oval:org.secpod.oval:def:703165 squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:703169 dnsmasq: Small caching DNS proxy and DHCP/TFTP server Dnsmasq could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:703168 spice: SPICE protocol client and server library Several security issues were fixed in Spice. oval:org.secpod.oval:def:703038 tiff: Tag Image File Format library LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:702944 mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:703213 mysql-5.7: MySQL database - mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:702809 mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:703057 mysql-5.6: MySQL database - mysql-5.5: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:703006 jasper: Library for manipulating JPEG-2000 files Several security issues were fixed in JasPer. oval:org.secpod.oval:def:702877 grub2: GRand Unified Bootloader GRUB password protection can be bypassed. oval:org.secpod.oval:def:703157 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:31644 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:702866 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:702850 libpng: PNG file library libpng could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:703026 graphite2: Font rendering engine for Complex Scripts graphite2 could be made to crash or run programs as your login if it opened a specially crafted font. oval:org.secpod.oval:def:702858 openjdk-7: Open Source Java implementation A security issue was fixed in OpenJDK 7. oval:org.secpod.oval:def:702977 nss: Network Security Service library NSS could be made to expose sensitive information. oval:org.secpod.oval:def:702976 graphite2: Font rendering engine for Complex Scripts graphite2 could be made to crash or run programs as your login if it opened a specially crafted font. oval:org.secpod.oval:def:703011 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:703017 nss: Network Security Service library NSS could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:703016 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:702830 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:702956 openjdk-7: Open Source Java implementation Several security issues were fixed in OpenJDK 7. oval:org.secpod.oval:def:703114 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:702825 nspr: NetScape Portable Runtime Library NSPR could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:702824 nss: Network Security Service library NSS could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:702943 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:702930 libxml2: GNOME XML library libxml2 could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:702814 ntp: Network Time Protocol daemon and utility programs Several security issues were fixed in NTP. oval:org.secpod.oval:def:702811 openjdk-7: Open Source Java implementation Several security issues were fixed in OpenJDK 7. oval:org.secpod.oval:def:703212 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:702920 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:702921 firefox: Mozilla Open Source web browser Firefox could be made to expose sensitive information over the network. oval:org.secpod.oval:def:703201 nss: Network Security Service library NSS could be made to crash or run programs if it processed specially crafted network traffic. oval:org.secpod.oval:def:702916 openssh: secure shell for secure access to remote machines OpenSSH could be made to expose sensitive information over the network. oval:org.secpod.oval:def:702915 nss: Network Security Service library NSS could be made to expose sensitive information over the network. oval:org.secpod.oval:def:702907 libpng: PNG file library libpng could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:703084 openjdk-7: Open Source Java implementation Several security issues were fixed in OpenJDK 7. oval:org.secpod.oval:def:703064 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:703067 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:702881 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:703153 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703161 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:35820 tomcat7: Servlet and JSP engine - tomcat6: Servlet and JSP engine Several security issues were fixed in Tomcat. oval:org.secpod.oval:def:703150 oxide-qt: Web browser engine for Qt Several security issues were fixed in Oxide. oval:org.secpod.oval:def:703004 openssl: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:703087 openssl: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:702874 libxml2: GNOME XML library libxml2 could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:702838 linux: Linux kernel The system could be made to crash under certain conditions. oval:org.secpod.oval:def:702890 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702893 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703112 expat: XML parsing C library Expat could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:703167 expat: XML parsing C library Several security issues were fixed in Expat. oval:org.secpod.oval:def:703109 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702871 openssl: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:703031 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703151 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:702986 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702984 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703039 pcre3: Perl 5 Compatible Regular Expression Library PCRE could be made to crash or run programs if it processed a specially-crafted regular expression. oval:org.secpod.oval:def:703025 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703129 php7.0: HTML-embedded scripting language interpreter - php5: HTML-embedded scripting language interpreter Several security issues were fixed in PHP. oval:org.secpod.oval:def:702952 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702955 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702954 qemu: Machine emulator and virtualizer - qemu-kvm: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:702939 linux-raspi2: Linux kernel for Raspberry Pi 2 The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:703105 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702813 php5: HTML-embedded scripting language interpreter PHP could be made to crash if it processed a specially crafted file. oval:org.secpod.oval:def:702933 linux: Linux kernel The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:34931 libgd2: GD Graphics Library The GD library could be made to crash or run programs if it processed a specially crafted image file. oval:org.secpod.oval:def:703200 libgd2: GD Graphics Library The GD library could be made to crash or run programs if it processed a specially crafted image file. oval:org.secpod.oval:def:703096 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:34187 php5: HTML-embedded scripting language interpreter Several security issues were fixed in PHP. oval:org.secpod.oval:def:702892 linux-raspi2: Linux kernel for Raspberry Pi 2 The system could be made to provide access outside of namespace sandbox. oval:org.secpod.oval:def:703058 php5: HTML-embedded scripting language interpreter Several security issues were fixed in PHP. oval:org.secpod.oval:def:703050 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:702889 linux: Linux kernel Several security issues were fixed in the kernel. oval:org.secpod.oval:def:703046 linux-raspi2: Linux kernel for Raspberry Pi 2 Several security issues were fixed in the kernel. |