Gentoo Linux Security Advisories
GLSA 201003-01 (high) - sudo: Privilege escalation
Two vulnerabilities in sudo might allow local users to escalate privileges and execute arbitrary code with root privileges.
Two vulnerabilities in sudo might allow local users to escalate privileges and execute arbitrary code with root privileges.
GLSA 201001-09 (normal) - Ruby: Terminal Control Character Injection
An input sanitation flaw in the WEBrick HTTP server included in Ruby might allow remote attackers to inject arbitrary control characters into terminal sessions.
An input sanitation flaw in the WEBrick HTTP server included in Ruby might allow remote attackers to inject arbitrary control characters into terminal sessions.
GLSA 201001-08 (high) - SquirrelMail: Multiple vulnerabilities
Multiple vulnerabilities were found in SquirrelMail of which the worst results in remote code execution.
Multiple vulnerabilities were found in SquirrelMail of which the worst results in remote code execution.
GLSA 201001-07 (normal) - Blender: Untrusted search path
An untrusted search path vulnerability in Blender might result in the execution of arbitrary code.
An untrusted search path vulnerability in Blender might result in the execution of arbitrary code.
GLSA 201001-06 (normal) - aria2: Multiple vulnerabilities
A buffer overflow and a format string vulnerability in aria2 allow remote attackers to execute arbitrary code.
A buffer overflow and a format string vulnerability in aria2 allow remote attackers to execute arbitrary code.
GLSA 201001-05 (normal) - net-snmp: Authorization bypass
A remote attacker can bypass the tcp-wrappers client authorization in net-snmp.
A remote attacker can bypass the tcp-wrappers client authorization in net-snmp.
GLSA 201001-04 (normal) - VirtualBox: Multiple vulnerabilities
Multiple vulnerabilities in VirtualBox were found, the worst of which allowing for privilege escalation.
Multiple vulnerabilities in VirtualBox were found, the worst of which allowing for privilege escalation.
GLSA 201001-03 (high) - PHP: Multiple vulnerabilities
Multiple vulnerabilities were found in PHP, the worst of which leading to the remote execution of arbitrary code.
Multiple vulnerabilities were found in PHP, the worst of which leading to the remote execution of arbitrary code.
GLSA 201001-02 (normal) - Adobe Flash Player: Multiple vulnerabilities
Multiple vulnerabilities in Adobe Flash Player might allow remote attackers to execute arbitrary code or cause a Denial of Service.
Multiple vulnerabilities in Adobe Flash Player might allow remote attackers to execute arbitrary code or cause a Denial of Service.
GLSA 201001-01 (normal) - NTP: Denial of Service
A Denial of Service condition in ntpd can cause excessive CPU or bandwidth consumption.
A Denial of Service condition in ntpd can cause excessive CPU or bandwidth consumption.
GLSA 200912-02 (normal) - Ruby on Rails: Multiple vulnerabilities
Multiple vulnerabilities have been discovered in Rails, the worst of which leading to the execution of arbitrary SQL statements.
Multiple vulnerabilities have been discovered in Rails, the worst of which leading to the execution of arbitrary SQL statements.
GLSA 200912-01 (normal) - OpenSSL: Multiple vulnerabilities
Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct multiple attacks, including the injection of arbitrary data into encrypted byte streams.
Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct multiple attacks, including the injection of arbitrary data into encrypted byte streams.
GLSA 200911-06 (high) - PEAR Net_Traceroute: Command injection
An input sanitation error in PEAR Net_Traceroute might allow remote attackers to execute arbitrary commands.
An input sanitation error in PEAR Net_Traceroute might allow remote attackers to execute arbitrary commands.
GLSA 200911-05 (normal) - Wireshark: Multiple vulnerabilities
Multiple vulnerabilities have been discovered in Wireshark, allowing for the remote execution of arbitrary code, or Denial of Service.
Multiple vulnerabilities have been discovered in Wireshark, allowing for the remote execution of arbitrary code, or Denial of Service.
GLSA 200911-04 (normal) - dstat: Untrusted search path
An untrusted search path vulnerability in the dstat might result in the execution of arbitrary code.
An untrusted search path vulnerability in the dstat might result in the execution of arbitrary code.
GLSA 200911-03 (high) - UW IMAP toolkit: Multiple vulnerabilities
Multiple vulnerabilities have been found in the UW IMAP toolkit and the c-client library, the worst of which leading to the execution of arbitrary code.
Multiple vulnerabilities have been found in the UW IMAP toolkit and the c-client library, the worst of which leading to the execution of arbitrary code.
GLSA 200911-02 (normal) - Sun JDK/JRE: Multiple vulnerabilites
Multiple vulnerabilites in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.
Multiple vulnerabilites in the Sun JDK and JRE allow for several attacks, including the remote execution of arbitrary code.
GLSA 200911-01 (normal) - Horde: Multiple vulnerabilities
Multiple vulnerabilities in the Horde Application Framework can allow for arbitrary files to be overwritten and cross-site scripting attacks.
Multiple vulnerabilities in the Horde Application Framework can allow for arbitrary files to be overwritten and cross-site scripting attacks.
GLSA 200910-03 (normal) - Adobe Reader: Multiple vulnerabilities
Multiple vulnerabilities in Adobe Reader might result in the execution of arbitrary code, or other attacks.
Multiple vulnerabilities in Adobe Reader might result in the execution of arbitrary code, or other attacks.
GLSA 200910-02 (high) - Pidgin: Multiple vulnerabilities
Multiple vulnerabilities have been discovered in Pidgin, leading to the remote execution of arbitrary code, unauthorized information disclosure, or Denial of Service.
Multiple vulnerabilities have been discovered in Pidgin, leading to the remote execution of arbitrary code, unauthorized information disclosure, or Denial of Service.
Also available in: Atom