Gentoo Linux Security Advisories

GLSA 201709-14 (normal) - cURL: Multiple vulnerabilities
Multiple vulnerabilities have been found in cURL, the worst of which may allow attackers to bypass intended restrictions.
GLSA 201709-13 (normal) - SquirrelMail: Remote Code Execution
A vulnerability in SquirrelMail might allow remote attackers to execute arbitrary code.
GLSA 201709-12 (normal) - Perl: Race condition vulnerability
A vulnerability in module File::Path for Perl allows local attackers to set arbitrary mode values on arbitrary files bypassing security restrictions.
GLSA 201709-11 (high) - GIMPS: Root privilege escalation
Gentoo's GIMPS ebuilds are vulnerable to privilege escalation due to improper permissions. A local attacker could use it to gain root privileges.
GLSA 201709-10 (normal) - Git: Command injection
A command injection vulnerability in Git may allow remote attackers to execute arbitrary code.
GLSA 201709-09 (normal) - Subversion: Arbitrary code execution
A command injection vulnerability in Subversion may allow remote attackers to execute arbitrary code.
GLSA 201709-08 (normal) - GDK-PixBuf: Multiple vulnerabilities
Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code.
GLSA 201709-07 (normal) - Kpathsea: User-assisted execution of arbitrary code
A vulnerability in Kpathsea allows remote attackers to execute arbitrary commands by manipulating the -tex option from mpost program.
GLSA 201709-06 (high) - Supervisor: command injection vulnerability
A vulnerability in Supervisor might allow remote attackers to execute arbitrary code.
GLSA 201709-05 (high) - chkrootkit: Local privilege escalation
A vulnerability in chkrootkit may allow local users to gain root privileges.
GLSA 201709-04 (normal) - mod_gnutls: Certificate validation error
A vulnerability in mod_gnutls allows remote attackers to spoof clients via crafted certificates.
GLSA 201709-03 (normal) - WebKitGTK+: Multiple vulnerabilities
Multiple vulnerabilities have been found in WebkitGTK+, the worst of which may allow remote attackers to execute arbitrary code.
GLSA 201709-02 (normal) - Binutils: Multiple vulnerabilities
Multiple vulnerabilities have been found in Binutils, the worst of which may allow remote attackers to cause a Denial of Service condition.
GLSA 201709-01 (normal) - MCollective: Remote Code Execution
A vulnerability in MCollective might allow remote attackers to execute arbitrary code.
GLSA 201708-10 (normal) - jbig2dec: User-assisted execution of arbitrary code
Multiple integer overflow flaws have been discovered in jbig2dec, possibly resulting in execution of arbitrary code or Denial of Service.
GLSA 201708-09 (normal) - AutoTrace: Multiple vulnerabilities
Multiple vulnerabilities have been found in AutoTrace, the worst of which could cause a Denial of Service condition.
GLSA 201708-08 (normal) - bzip2: Denial of Service
An use-after-free vulnerability has been found in bzip2 that could allow remote attackers to cause a Denial of Service condition.
GLSA 201708-07 (normal) - evilvte: User-assisted execution of arbitrary code
Improper hypertext validation might allow remote attackers to execute arbitrary code.
GLSA 201708-06 (normal) - GPL Ghostscript: Multiple vulnerabilities
Multiple vulnerabilities have been found in GPL Ghostscript, the worst of which can resulting in the execution of arbitrary code.
GLSA 201708-05 (normal) - RAR and UnRAR: User-assisted execution of arbitrary code
An integer overflow in RAR and UnRAR might allow remote attackers to execute arbitrary code.

1 2 3 ... 127 Next »

Also available in: Atom

Thank you!