wiki:Security
Last modified 6 days ago Last modified on 04/19/14 18:43:19

Security Updates

Parsix Developers closely follow Debian Security Advisories and port them to our own security repository. Right now we are offering security support for both of our stable and testing branches. Parsix Continent repository is also fully supported by security updates.

Keeping Your System Secure

To keep your systems secure, make sure you have the following entries in your /etc/apt/sources.list file. Make sure to replace codename with a release codename such as raul or vinnie.

deb http://security.parsix.org codename main contrib non-free
deb-src http://security.parsix.org codename main contrib non-free

Constantly follow the update notifier or manually run the following command to update your systems:

# apt-get update && apt-get dist-upgrade

Recent Security Advisories

[Upload Date] DSA Ref.

[18 Apr 2014] DSA-2910 qemu-kvm - security update
[18 Apr 2014] DSA-2909 qemu - security update
[18 Apr 2014] DSA-2908 openssl - security update
[18 Apr 2014] DSA-2907 - announcement of long term support for Debian oldstable
[18 Apr 2014] DSA-2905 chromium-browser - security update
[18 Apr 2014] DSA-2904 virtualbox - security update
[18 Apr 2014] DSA-2903 strongswan - security update
[18 Apr 2014] DSA-2902 curl - security update
[12 Apr 2014] DSA-2901 wordpress - security update
[12 Apr 2014] DSA-2900 jbigkit - security update
[12 Apr 2014] DSA-2899 openafs - security update
[12 Apr 2014] DSA-2898 imagemagick - security update
[12 Apr 2014] DSA-2897 tomcat7 - security update
[07 Apr 2014] DSA-2896 openssl - security update
[06 Apr 2014] DSA-2895 prosody - security update
[06 Apr 2014] DSA-2894 openssh - security update
[06 Apr 2014] DSA-2893 openswan - security update
[06 Apr 2014] DSA-2892 a2ps - security update
[06 Apr 2014] DSA-2891 mediawiki, mediawiki-extensions - security update
[06 Apr 2014] DSA-2890 libspring-java - security update
[28 Mar 2014] DSA-2889 postfixadmin - security update
[28 Mar 2014] DSA-2888 ruby-actionpack-3.2 - security update
[28 Mar 2014] DSA-2887 ruby-actionmailer-3.2 - security update
[28 Mar 2014] DSA-2886 libxalan2-java - security update
[28 Mar 2014] DSA-2885 libyaml-libyaml-perl - security update
[28 Mar 2014] DSA-2884 libyaml - security update
[28 Mar 2014] DSA-2883 chromium-browser - security update
[28 Mar 2014] DSA-2882 extplorer - security update
[28 Mar 2014] DSA-2881 iceweasel - security update
[28 Mar 2014] DSA-2880 python2.7 - security update
[15 Mar 2014] DSA-2879 libssh - security update
[15 Mar 2014] DSA-2877 lighttpd - security update
[15 Mar 2014] DSA-2875 cups-filters - security update
[15 Mar 2014] DSA-2874 mutt - security update
[15 Mar 2014] DSA-2873 file - several vulnerabilities
[15 Mar 2014] DSA-2872 udisks - several vulnerabilities
[15 Mar 2014] DSA-2871 wireshark - several vulnerabilities
[15 Mar 2014] DSA-2870 libyaml-libyaml-perl - heap-based buffer overflow
[15 Mar 2014] DSA-2869 gnutls26 - incorrect certificate verification
[02 Mar 2014] DSA-2868 php5 - denial of service
[02 Mar 2014] DSA-2867 otrs2 - several vulnerabilities
[22 Feb 2014] DSA-2866 gnutls26 - certificate verification flaw
[22 Feb 2014] DSA-2865 postgresql-9.1 - several vulnerabilities
[22 Feb 2014] DSA-2863 libtar - directory traversal
[16 Feb 2014] DSA-2862 chromium-browser - several vulnerabilities
[16 Feb 2014] DSA-2861 file - denial of service
[11 Feb 2014] DSA-2860 parcimonie - information disclosure
[10 Feb 2014] DSA-2859 pidgin - several vulnerabilities
[10 Feb 2014] DSA-2858 iceweasel - several vulnerabilities
[10 Feb 2014] DSA-2857 libspring-java - several vulnerabilities
[10 Feb 2014] DSA-2856 libcommons-fileupload-java - denial of service
[10 Feb 2014] DSA-2852 libgadu - heap-based buffer overflow
[10 Feb 2014] DSA-2855 libav - several vulnerabilities
[10 Feb 2014] DSA-2854 mumble - several vulnerabilities
[02 Feb 2014] DSA-2850 libyaml - heap-based buffer overflow
[02 Feb 2014] DSA-2849 curl - information disclosure
[25 Jan 2014] DSA-2848 mysql-5.5 - several vulnerabilities
[25 Jan 2014] DSA-2847 drupal7 - several vulnerabilities
[19 Jan 2014] DSA-2846 libvirt - several vulnerabilities
[13 Jan 2014] DSA-2843 graphviz - buffer overflow
[13 Jan 2014] DSA-2842 libspring-java - denial of service
[12 Jan 2014] DSA-2841 movabletype-opensource - cross-site scripting
[12 Jan 2014] DSA-2840 srtp - buffer overflow
[12 Jan 2014] DSA-2839 spice - denial of service
[07 Jan 2014] DSA-2838 libxfont - buffer overflow
[07 Jan 2014] DSA-2837 openssl - programming error
[07 Jan 2014] DSA-2836 devscripts - arbitrary code execution
[07 Jan 2014] DSA-2835 asterisk - buffer overflow
[07 Jan 2014] DSA-2834 typo3-src - several vulnerabilities
[07 Jan 2014] DSA-2833 openssl - several vulnerabilities
[07 Jan 2014] DSA-2832 memcached - several vulnerabilities
[07 Jan 2014] DSA-2831 puppet - insecure temporary files
[07 Jan 2014] DSA-2830 ruby-i18n - cross-site scripting
[07 Jan 2014] DSA-2829 hplip - several vulnerabilities
[07 Jan 2014] DSA-2827 libcommons-fileupload-java - arbitrary file upload via deserialization
[22 Dec 2013] DSA-2826 denyhosts - Remote denial of ssh service
[21 Dec 2013] DSA-2825 wireshark - several vulnerabilities
[21 Dec 2013] DSA-2824 curl - unchecked tls/ssl certificate host name
[21 Dec 2013] DSA-2822 xorg-server - integer underflow
[21 Dec 2013] DSA-2821 gnupg - side channel attack
[21 Dec 2013] DSA-2820 nspr - integer overflow
[21 Dec 2013] DSA-2818 mysql-5.5 - several vulnerabilities
[14 Dec 2013] DSA-2817 libtar - Integer overflow
[13 Dec 2013] DSA-2816 php5 - several vulnerabilities
[13 Dec 2013] DSA-2815 munin - denial of service
[13 Dec 2013] DSA-2814 varnish - denial of service
[13 Dec 2013] DSA-2813 gimp - several vulnerabilities
[13 Dec 2013] DSA-2812 samba - several vulnerabilities
[13 Dec 2013] DSA-2811 chromium-browser - several vulnerabilities
[08 Dec 2013] DSA-2810 ruby1.9.1 - heap overflow
[08 Dec 2013] DSA-2809 ruby1.8 - several vulnerabilities
[08 Dec 2013] DSA-2808 openjpeg - several vulnerabilities
[08 Dec 2013] DSA-2807 links2 - integer overflow
[08 Dec 2013] DSA-2806 nbd - privilege escalation
[08 Dec 2013] DSA-2805 sup-mail - command injection
[08 Dec 2013] DSA-2804 drupal7 - several vulnerabilities
[08 Dec 2013] DSA-2803 quagga - several vulnerabilities
[08 Dec 2013] DSA-2800 nss - buffer overflow
[23 Nov 2013] DSA-2802 nginx - restriction bypass
[23 Nov 2013] DSA-2801 libhttp-body-perl - design error
[23 Nov 2013] DSA-2798 curl - unchecked ssl certificate host name
[23 Nov 2013] DSA-2795 lighttpd - several vulnerabilities
[23 Nov 2013] DSA-2799 chromium-browser - several vulnerabilities
[23 Nov 2013] DSA-2797 icedove - several vulnerabilities
[13 Nov 2013] DSA-2796 torque - arbitrary code execution
[13 Nov 2013] DSA-2794 spip - several vulnerabilities
[10 Nov 2013] DSA-2793 libav - several vulnerabilities
[10 Nov 2013] DSA-2792 wireshark - several vulnerabilities
[10 Nov 2013] DSA-2791 tryton-client - missing input sanitization
[10 Nov 2013] DSA-2790 nss - uninitialized memory read
[10 Nov 2013] DSA-2789 strongswan - Denial of service and authorization bypass
[31 Oct 2013] DSA-2787 roundcube - design error
[31 Oct 2013] DSA-2786 icu - several vulnerabilities
[31 Oct 2013] DSA-2785 chromium-browser - several vulnerabilities
[24 Oct 2013] DSA-2784 xorg-server - use-after-free
[24 Oct 2013] DSA-2782 polarssl - several vulnerabilities
[19 Oct 2013] DSA-2781 python-crypto - PRNG not correctly reseeded in some situations
[19 Oct 2013] DSA-2779 libxml2 - denial of service
[19 Oct 2013] DSA-2778 libapache2-mod-fcgid - heap-based buffer overflow
[11 Oct 2013] DSA-2777 systemd - several vulnerabilities
[11 Oct 2013] DSA-2776 drupal6 - several vulnerabilities
[11 Oct 2013] DSA-2775 ejabberd - insecure SSL usage
[11 Oct 2013] DSA-2774 gnupg2 - several vulnerabilities
[11 Oct 2013] DSA-2773 gnupg - several vulnerabilities
[11 Oct 2013] DSA-2772 typo3-src - cross-site scripting
[11 Oct 2013] DSA-2771 nas - several vulnerabilities
[11 Oct 2013] DSA-2770 torque - authentication bypass
[11 Oct 2013] DSA-2768 icedtea-web - heap-based buffer overflow
[11 Oct 2013] DSA-2767 proftpd-dfsg - denial of service
[28 Sep 2013] DSA-2765 davfs2 - privilege escalation
[28 Sep 2013] DSA-2764 libvirt - programming error
[28 Sep 2013] DSA-2763 pyopenssl - hostname check bypassing
[28 Sep 2013] DSA-2762 icedove - several vulnerabilities
[28 Sep 2013] DSA-2761 puppet - several vulnerabilities
[18 Sep 2013] DSA-2760 chrony - several vulnerabilities
[18 Sep 2013] DSA-2758 python-django - denial of service
[16 Sep 2013] DSA-2757 wordpress - several vulnerabilities
[16 Sep 2013] DSA-2756 wireshark - several vulnerabilities
[16 Sep 2013] DSA-2753 mediawiki - information leak
[16 Sep 2013] DSA-2755 python-django - directory traversal
[16 Sep 2013] DSA-2754 exactimage - denial of service
[08 Sep 2013] DSA-2752 phpbb3 - permissions too wide
[08 Sep 2013] DSA-2751 libmodplug - several vulnerabilities
[08 Sep 2013] DSA-2750 imagemagick - buffer overflow
[02 Sep 2013] DSA-2749 asterisk - several vulnerabilities
[01 Sep 2013] DSA-2748 exactimage - denial of service
[31 Aug 2013] DSA-2747 cacti - several vulnerabilities
[31 Aug 2013] DSA-2746 icedove - several vulnerabilities
[31 Aug 2013] DSA-2744 tiff - several vulnerabilities
[31 Aug 2013] DSA-2742 php5 - interpretation conflict
[31 Aug 2013] DSA-2741 chromium-browser - several vulnerabilities
[23 Aug 2013] DSA-2740 python-django - cross-site scripting vulnerability
[23 Aug 2013] DSA-2739 cacti - several vulnerabilities
[23 Aug 2013] DSA-2738 ruby1.9.1 - several vulnerabilities
[23 Aug 2013] DSA-2737 swift - several vulnerabilities
[23 Aug 2013] DSA-2736 putty - several vulnerabilities
[05 Aug 2013] DSA-2734 wireshark - several vulnerabilities
[04 Aug 2013] DSA-2733 otrs2 - SQL injection
[04 Aug 2013] DSA-2731 libgcrypt11 - information leak
[04 Aug 2013] DSA-2730 gnupg - information leak
[04 Aug 2013] DSA-2729 openafs - several vulnerabilities
[27 Jul 2013] DSA-2728 bind9 - denial of service
[27 Jul 2013] DSA-2727 openjdk-6 - several vulnerabilities
[27 Jul 2013] DSA-2726 php-radius - buffer overflow
[18 Jul 2013] DSA-2725 tomcat6 - several vulnerabilities
[17 Jul 2013] DSA-2724 chromium-browser - several vulnerabilities
[17 Jul 2013] DSA-2723 php5 - heap corruption
[17 Jul 2013] DSA-2722 openjdk-7 - several vulnerabilities
[17 Jul 2013] DSA-2721 nginx - buffer overflow
[06 Jul 2013] DSA-2720 icedove - several vulnerabilities
[06 Jul 2013] DSA-2718 wordpress - several vulnerabilities
[06 Jul 2013] DSA-2717 xml-security-c - heap overflow
[06 Jul 2013] DSA-2715 puppet - code execution
[06 Jul 2013] DSA-2713 curl - heap overflow
[20 Jun 2013] DSA-2712 otrs2 - privilege escalation
[20 Jun 2013] DSA-2710 xml-security-c - several vulnerabilities
[20 Jun 2013] DSA-2698 tiff - buffer overflow
[20 Jun 2013] DSA-2709 wireshark - several vulnerabilities
[20 Jun 2013] DSA-2708 fail2ban - denial of service
[15 Jun 2013] DSA-2707 dbus - denial of service
[15 Jun 2013] DSA-2706 chromium-browser - several vulnerabilities
[15 Jun 2013] DSA-2705 pymongo - denial of service
[15 Jun 2013] DSA-2704 mesa - out of bounds access
[15 Jun 2013] DSA-2703 subversion - several vulnerabilities
[15 Jun 2013] DSA-2702 telepathy-gabble - TLS verification bypass
[05 Jun 2013] DSA-2700 wireshark - several vulnerabilities
[05 May 2013] DSA-2701 krb5 - denial of service
[05 May 2013] DSA-2697 gnutls26 - out-of-bounds array read
[05 May 2013] DSA-2696 otrs2 - privilege escalation
[29 May 2013] DSA-2695 chromium-browser - several issues
[26 May 2013] DSA-2694 spip - privilege escalation
[24 May 2013] DSA-2693 libx11 - several vulnerabilities
[24 May 2013] DSA-2675 libxvmc - several vulnerabilities
[23 May 2013] DSA-2692 libxxf86vm - several vulnerabilities
[23 May 2013] DSA-2691 libxinerama - several vulnerabilities
[23 May 2013] DSA-2690 libxxf86dga - several vulnerabilities
[23 May 2013] DSA-2689 libxtst - several vulnerabilities
[23 May 2013] DSA-2688 libxres - several vulnerabilities
[23 May 2013] DSA-2687 libfs - several vulnerabilities
[23 May 2013] DSA-2686 libxcb - several vulnerabilities
[23 May 2013] DSA-2685 libxp - several vulnerabilities
[23 May 2013] DSA-2684 libxrandr - several vulnerabilities
[23 May 2013] DSA-2683 libxi - several vulnerabilities
[23 May 2013] DSA-2682 libxext - several vulnerabilities
[23 May 2013] DSA-2681 libxcursor - several vulnerabilities
[23 May 2013] DSA-2680 libxt - several vulnerabilities
[23 May 2013] DSA-2679 xserver-xorg-video-openchrome - several vulnerabilities
[23 May 2013] DSA-2678 mesa - several vulnerabilities
[23 May 2013] DSA-2677 libxrender - several vulnerabilities
[23 May 2013] DSA-2676 libxfixes - several vulnerabilities
[23 May 2013] DSA-2674 libxv - several vulnerabilities
[23 May 2013] DSA-2673 libdmx - several vulnerabilities
[22 May 2013] DSA-2671 request-tracker4 - several vulnerabilities
[12 May 2013] DSA-2667 mysql-5.5 - several vulnerabilities
[12 May 2013] DSA-2666 xen - several vulnerabilities
[30 Apr 2013] DSA-2665 strongswan - authentication bypass
[02 May 2013] DSA-2664 stunnel4 - buffer overflow
[22 Apr 2013] DSA-2663 tinc - stack based buffer overflow
[18 Apr 2013] DSA-2662 xen - several vulnerabilities
[17 Apr 2013] DSA-2661 xorg-server - information disclosure
[20 Apr 2013] DSA-2660 curl - exposure of sensitive information
[09 Apr 2013] DSA-2659 libapache-mod-security - XML external entity processing vulnerability
[04 Apr 2013] DSA-2658 postgresql-9.1 - several vulnerabilities
[04 Apr 2013] DSA-2657 postgresql-8.4 - guessable random numbers
[03 Apr 2013] DSA-2654 libxslt - denial of service
[30 Mar 2013] DSA-2656 bind9 - denial of service
[28 Mar 2013] DSA-2655 rails - several vulnerabilities
[26 Mar 2013] DSA-2653 icinga - buffer overflow
[24 Mar 2013] DSA-2652 libxml2 - external entity expansion
[20 Mar 2013] DSA-2651 smokeping - cross-site scripting vulnerability
[15 Mar 2013] DSA-2650 libvirt - files and device nodes ownership change to kvm group
[15 Mar 2013] DSA-2646 typo3-src - several vulnerabilities
[14 Mar 2013] DSA-2645 inetutils - denial of service
[14 Mar 2013] DSA-2644 wireshark - several vulnerabilities
[14 Mar 2013] DSA-2640 zoneminder - several issues
[12 Mar 2013] DSA-2643 puppet - several vulnerabilities
[09 Mar 2013] DSA-2642 sudo - several issues
[09 Mar 2013] DSA-2641 perl - rehashing flaw
[05 Mar 2013] DSA-2639 php5 - several vulnerabilities
[04 Mar 2013] DSA-2638 openafs - buffer overflow
[04 Mar 2013] DSA-2637 apache2 - several issues
[03 Mar 2013] DSA-2636 xen - several vulnerabilities
[01 Mar 2013] DSA-2635 cfingerd - buffer overflow
[27 Feb 2013] DSA-2634 python-django - several vulnerabilities
[25 Feb 2013] DSA-2629 openjpeg - several issues
[24 Feb 2013] DSA-2631 squid3 - denial of service
[20 Feb 2013] DSA-2630 postgresql-8.4 - programming error
[17 Feb 2013] DSA-2626 lighttpd - several issues
[16 Feb 2013] DSA-2624 ffmpeg - several vulnerabilities
[13 Feb 2013] DSA-2622 polarssl - several vulnerabilities
[10 Feb 2013] DSA-2619 xen-qemu-dm-4.0 - buffer overflow
[07 Feb 2013] DSA-2618 ircd-hybrid - denial of service
[03 Feb 2013] DSA-2616 nagios3 - buffer overflow in CGI scripts
[02 Feb 2013] DSA-2617 samba - several issues
[01 Feb 2013] DSA-2615 libupnp4 - several vulnerabilities
[01 Feb 2013] DSA-2614 libupnp - several vulnerabilities
[29 Jan 2013] DSA-2613 rails - insufficient input validation
[24 Jan 2013] DSA-2612 ircd-ratbox - programming error
[22 Jan 2013] DSA-2611 movabletype-opensource - several vulnerabilities
[21 Jan 2013] DSA-2610 ganglia - arbitrary script execution
[15 Jan 2013] DSA-2608 qemu - buffer overflow
[15 Jan 2013] DSA-2607 qemu-kvm - buffer overflow
[13 Jan 2013] DSA-2606 proftpd-dfsg - symlink race
[09 Jan 2013] DSA-2603 emacs23 - programming error
[08 Jan 2013] DSA-2602 zendframework - XML external entity inclusion
[06 Jan 2013] DSA-2601 gnupg, gnupg2 - missing input sanitation
[06 Jan 2013] DSA-2600 cups - privilege escalation
[06 Jan 2013] DSA-2599 nss - mis-issued intermediates
[06 Jan 2013] DSA-2598 weechat - several vulnerabilities
[06 Jan 2013] DSA-2597 rails - input validation error
[06 Jan 2013] DSA-2596 mediawiki-extensions - cross-site scripting
[06 Jan 2013] DSA-2595 ghostscript - integer overflow
[06 Jan 2013] DSA-2594 virtualbox-ose - programming error
[06 Jan 2013] DSA-2593 moin - several vulnerabilities
[29 Dec 2012] DSA-2592 elinks - programming error
[29 Dec 2012] DSA-2591 mahara - several vulnerabilities
[29 Dec 2012] DSA-2590 wireshark - several vulnerabilities
[23 Dec 2012] DSA-2589 tiff - buffer overflow
[16 Dec 2012] DSA-2587 libcgi-pm-perl - HTTP header injection
[16 Dec 2012] DSA-2586 perl - several vulnerabilities
[16 Dec 2012] DSA-2585 bogofilter - buffer overflow
[07 Dec 2012] DSA-2582 xen - several vulnerabilities
[07 Dec 2012] DSA-2581 mysql-5.1 - several vulnerabilities
[07 Dec 2012] DSA-2580 libxml2 - buffer overflow
[02 Dec 2012] DSA-2579 apache2 - Multiple issue
[01 Dec 2012] DSA-2577 libssh - several vulnerabilities
[01 Dec 2012] DSA-2578 rssh - insufficient filtering of rsync command line
[01 Dec 2012] DSA-2576 trousers - denial of service
[19 Nov 2012] DSA-2574 typo3-src - several vulnerabilities
[14 Nov 2012] DSA-2573 radsecproxy - SSL certificate verification weakness
[07 Nov 2012] DSA-2571 libproxy - buffer overflow
[27 Oct 2012] DSA-2568 rtfm - privilege escalation
[27 Oct 2012] DSA-2567 request-tracker3.8 - several vulnerabilities
[27 Oct 2012] DSA-2566 exim4 - heap-based buffer overflow
[27 Oct 2012] DSA-2564 tinyproxy - denial of service
[27 Oct 2012] DSA-2563 viewvc - several vulnerabilities
[27 Oct 2012] DSA-2562 cups-pk-helper - privilege escalation
[27 Oct 2012] DSA-2561 tiff - buffer overflow
[27 Oct 2012] DSA-2560 bind9 - denial of service
[27 Oct 2012] DSA-2559 libexif - several vulnerabilities
[08 Oct 2012] DSA-2558 bacula - information disclosure
[08 Oct 2012] DSA-2557 hostapd - buffer overflow
[08 Oct 2012] DSA-2555 libxslt - several vulnerabilities
[29 Sep 2012] DSA-2550 asterisk - several vulnerabilities
[29 Sep 2012] DSA-2551 isc-dhcp - denial of service
[23 Sep 2012] DSA-2549 devscripts - multiple vulnerabilities
[23 Sep 2012] DSA-2480 request-tracker3.8 - several vulnerabilities
[14 Sep 2012] DSA-2548 tor - several vulnerabilities
[14 Sep 2012] DSA-2547 bind9 - improper assert
[14 Sep 2012] DSA-2546 freeradius - stack-based buffer overflows
[10 Sep 2012] DSA-2545 qemu - multiple vulnerabilities
[10 Sep 2012] DSA-2544 xen - denial of service
[10 Sep 2012] DSA-2543 xen-qemu-dm-4.0 - multiple vulnerabilities
[10 Sep 2012] DSA-2542 qemu-kvm - multiple vulnerabilities
[10 Sep 2012] DSA-2541 beaker - information disclosure
[10 Sep 2012] DSA-2540 mahara - cross-site scripting
[10 Sep 2012] DSA-2539 zabbix - SQL injection
[05 Sep 2012] DSA-2538 moin - privilege escalation
[05 Sep 2012] DSA-2537 typo3-src - several vulnerabilities
[05 Sep 2012] DSA-2536 otrs2 - cross-site scripting
[05 Sep 2012] DSA-2535 rtfm - cross-site scripting
[29 Aug 2012] DSA-2534 postgresql-8.4 - several vulnerabilities
[29 Aug 2012] DSA-2533 pcp - several vulnerabilities
[29 Aug 2012] DSA-2532 libapache2-mod-rpaf - denial of service
[29 Aug 2012] DSA-2531 xen - Denial of Service
[17 Aug 2012] DSA-2530 rssh - shell command injection
[17 Aug 2012] DSA-2529 python-django - several vulnerabilities
[17 Aug 2012] DSA-2527 php5 - several vulnerabilities
[12 Aug 2012] DSA-2521 libxml2 - integer overflows
[12 Aug 2012] DSA-2526 libotr - heap-based buffer overflows
[10 Aug 2012] DSA-2525 expat - several vulnerabilities
[10 Aug 2012] DSA-2524 openttd - several vulnerabilities
[10 Aug 2012] DSA-2523 globus-gridftp-server - programming error
[10 Aug 2012] DSA-2522 fckeditor - cross site scripting
[10 Aug 2012] DSA-2519 isc-dhcp - several vulnerabilities
[03 Aug 2012] DSA-2520 openoffice.org - Multiple heap-based buffer overflows
[03 Jul 2012] DSA-2518 krb5 - denial of service and remote code execution
[30 Jul 2012] DSA-2517 bind9 - denial of service
[30 Jul 2012] DSA-2516 isc-dhcp - several vulnerabilities
[23 Jul 2012] DSA-2508 kfreebsd-8 - privilege escalation
[19 Jul 2012] DSA-2515 nsd3 - null pointer dereference
[19 Jul 2012] DSA-2514 iceweasel - several vulnerabilities
[14 Jul 2012] DSA-2512 mono - missing input sanitising
[14 Jul 2012] DSA-2511 puppet - several vulnerabilities
[14 Jul 2012] DSA-2510 extplorer - Cross-site request forgery
[09 Jul 2012] DSA-2509 pidgin - remote code execution
[08 Jul 2012] DSA-2507 openjdk-6 - several vulnerabilities
[08 Jul 2012] DSA-2506 libapache-mod-security - ModSecurity bypass
[29 Jun 2012] DSA-2505 zendframework - information disclosure
[29 Jun 2012] DSA-2504 libspring-2.5-java - information disclosure
[29 Jun 2012] DSA-2503 bcfg2 - shell command injection
[24 Jun 2012] DSA-2502 python-crypto - programming error
[24 Jun 2012] DSA-2501 xen - several vulnerabilities
[24 Jun 2012] DSA-2500 mantis - several vulnerabilities
[24 Jun 2012] DSA-2498 dhcpcd - remote stack overflow
[22 Jun 2012] DSA-2489 iceape - several vulnerabilities
[22 Jun 2012] DSA-2497 quagga - denial of service
[22 Jun 2012] DSA-2496 mysql-5.1 - several vulnerabilities
[22 Jun 2012] DSA-2495 openconnect - buffer overflow
[18 Jun 2012] DSA-2488 iceweasel - several vulnerabilities
[14 Jun 2012] DSA-2494 ffmpeg - several vulnerabilities
[14 Jun 2012] DSA-2493 asterisk - denial of service
[10 Jun 2012] DSA-2492 php5 - buffer overflow
[10 Jun 2012] DSA-2491 postgresql-8.4 - several vulnerabilities
[10 Jun 2012] DSA-2490 nss - denial of service
[10 Jun 2012] DSA-2487 openoffice.org - buffer overflow
[10 Jun 2012] DSA-2480 request-tracker3.8 - several vulnerabilities
[10 Jun 2012] DSA-2486 bind9 - denial of service
[10 Jun 2012] DSA-2485 imp4 - cross site scripting
[10 Jun 2012] DSA-2484 nut - denial of service
[10 Jun 2012] DSA-2482 libgdata - insufficient certificate validation
[10 Jun 2012] DSA-2481 arpwatch - fails to drop supplementary groups
[31 May 2012] DSA-2483 strongswan - authentication bypass
[29 May 2012] DSA-2480 request-tracker3.8 - several vulnerabilities
[27 May 2012] DSA-2479 libxml2 - off-by-one
[27 May 2012] DSA-2478 sudo - parsing error
[27 May 2012] DSA-2477 sympa - authorization bypass
[27 May 2012] DSA-2476 pidgin-otr - format string vulnerability
[27 May 2012] DSA-2475 openssl - integer underflow
[27 May 2012] DSA-2474 ikiwiki - cross-site scripting
[27 May 2012] DSA-2472 gridengine - privilege escalation
[27 May 2012] DSA-2471 ffmpeg - several vulnerabilities
[27 May 2012] DSA-2470 wordpress - several vulnerabilities
[17 May 2012] DSA-2473 openoffice.org - buffer overflow
[10 May 2012] DSA-2468 libjakarta-poi-java - unbounded memory allocation
[10 May 2012] DSA-2467 mahara - insecure defaults
[10 May 2012] DSA-2466 rails - cross site scripting
[10 May 2012] DSA-2465 php5 - several vulnerabilities
[10 May 2012] DSA-2422 file - missing bounds checks
[10 May 2012] DSA-2459 quagga - several vulnerabilities
[09 May 2012] DSA-2457 iceweasel - several vulnerabilities
[07 May 2012] DSA-2462 imagemagick - several vulnerabilities
[07 May 2012] DSA-2463 samba - missing permission checks
[29 Apr 2012] DSA-2461 spip - several vulnerabilities
[29 Apr 2012] DSA-2459 quagga - several vulnerabilities
[29 Apr 2012] DSA-2460 asterisk - several vulnerabilities
[29 Apr 2012] DSA-2458 iceape - several vulnerabilities
[28 Apr 2012] DSA-2456 dropbear - use after free
[24 Apr 2012] DSA-2455 typo3-src - missing input sanitization
[23 Apr 2012] DSA-2454 openssl - multiple vulnerabilities
[23 Apr 2012] DSA-2453 gajim - several vulnerabilities
[23 Apr 2012] DSA-2452 apache2 - insecure default configuration
[23 Apr 2012] DSA-2451 puppet - several vulnerabilities
[23 Apr 2012] DSA-2450 samba - privilege escalation
[23 Apr 2012] DSA-2449 sqlalchemy - missing input sanitization
[23 Apr 2012] DSA-2448 inspircd - buffer overflow
[23 Apr 2012] DSA-2447 tiff - integer overflow
[23 Apr 2012] DSA-2446 libpng - incorrect memory handling
[02 Apr 2012] DSA-2445 typo3-src - several vulnerabilities
[02 Apr 2012] DSA-2442 openarena - UDP traffic amplification
[02 Apr 2012] DSA-2398 curl - several vulnerabilities
[31 Mar 2012] DSA-2433 iceweasel - several vulnerabilities
[29 Mar 2012] DSA-2444 tryton-server - privilege escalation
[29 Mar 2012] DSA-2441 gnutls26 - missing bounds check
[29 Mar 2012] DSA-2440 libtasn1-3 - missing bounds check
[29 Mar 2012] DSA-2439 libpng - buffer overflow
[29 Mar 2012] DSA-2438 raptor - programming error
[29 Mar 2012] DSA-2436 libapache2-mod-fcgid - inactive resource limits
[29 Mar 2012] DSA-2435 gnash - several vulnerabilities
[29 Mar 2012] DSA-2434 nginx - sensitive information leak
[14 Mar 2012] DSA-2432 libyaml-libyaml-perl - format string vulnerabilities
[14 Mar 2012] DSA-2431 libdbd-pg-perl - format string vulnerabilities
[14 Mar 2012] DSA-2430 python-pam - double free
[14 Mar 2012] DSA-2429 mysql-5.1 - several vulnerabilities
[14 Mar 2012] DSA-2428 freetype - several vulnerabilities
[14 Mar 2012] DSA-2427 imagemagick - several vulnerabilities
[14 Mar 2012] DSA-2426 gimp - several vulnerabilities
[04 Mar 2012] DSA-2425 plib - buffer overflow
[04 Mar 2012] DSA-2424 libxml-atom-perl - XML external entity expansion
[04 Mar 2012] DSA-2423 movabletype-opensource - several vulnerabilitie
[29 Feb 2012] DSA-2422 file - missing bounds checks
[29 Feb 2012] DSA-2421 moodle - several vulnerabilities
[29 Feb 2012] DSA-2420 openjdk-6 - several vulnerabilities
[28 Feb 2012] DSA-2419 puppet - several vulnerabilities
[28 Feb 2012] DSA-2418 postgresql-8.4 - several vulnerabilities
[28 Feb 2012] DSA-2414 fex - insufficient input sanitization
[28 Feb 2012] DSA-2417 libxml2 - computational denial of service
[28 Feb 2012] DSA-2416 notmuch - information disclosure
[28 Feb 2012] DSA-2415 libmodplug - several vulnerabilities
[28 Feb 2012] DSA-2413 libarchive - buffer overflows
[28 Feb 2012] DSA-2412 libvorbis - buffer overflow
[28 Feb 2012] DSA-2411 mumble - information disclosure
[18 Feb 2012] DSA-2410 libpng - integer overflow
[18 Feb 2012] DSA-2409 devscripts - several vulnerabilities
[18 Feb 2012] DSA-2408 php5 - several vulnerabilities
[18 Feb 2012] DSA-2406 icedove - several vulnerabilities
[10 Feb 2012] DSA-2407 cvs - heap overflow
[10 Feb 2012] DSA-2405 apache2 - multiple issues
[10 Feb 2012] DSA-2403 php5 - code injection
[08 Feb 2012] DSA-2402 iceape - several vulnerabilities
[08 Feb 2012] DSA-2404 xen-qemu-dm-4.0 - buffer overflow
[07 Feb 2012] DSA-2400 iceweasel - several vulnerabilities
[02 Feb 2012] DSA-2401 tomcat6 - several vulnerabilities
[02 Jan 2012] DSA-2399 php5 - several vulnerabilities
[30 Jan 2012] DSA-2398 curl - several vulnerabilities
[30 Jan 2012] DSA-2397 icu - buffer underflow
[28 Jan 2012] DSA-2396 qemu-kvm - buffer underflow
[28 Jan 2012] DSA-2395 wireshark - buffer underflow
[28 Jan 2012] DSA-2394 libxml2 - several vulnerabilities
[28 Jan 2012] DSA-2393 bip - buffer overflow
[28 Jan 2012] DSA-2301 rails - several vulnerabilities
[23 Jan 2012] DSA-2392 openssl - out-of-bounds read
[22 Jan 2012] DSA-2391 phpmyadmin - several vulnerabilities
[19 Jan 2012] DSA-2390 openssl - several vulnerabilities
[19 Jan 2012] DSA-2388 t1lib - several vulnerabilities
[14 Jan 2012] DSA-2387 simplesamlphp - insufficient input sanitation
[14 Jan 2012] DSA-2386 openttd - several vulnerabilities
[14 Jan 2012] DSA-2385 pdns - packet loop
[14 Jan 2012] DSA-2384 cacti - several vulnerabilities
[14 Jan 2012] DSA-2383 super - buffer overflow
[08 Jan 2012] DSA-2382 ecryptfs-utils - multiple vulnerabilities
[08 Jan 2012] DSA-2381 squid3 - invalid memory deallocation
[08 Jan 2012] DSA-2380 foomatic-filters - shell command injection
[08 Jan 2012] DSA-2379 krb5 - several vulnerabilities
[08 Jan 2012] DSA-2378 ffmpeg - several vulnerabilities
[08 Jan 2012] DSA-2377 cyrus-imapd-2.2 - NULL pointer dereference
[08 Jan 2011] DSA-2376 ipmitool - insecure PID file
[08 Jan 2011] DSA-2375 krb5, krb5-appl - buffer overflow
[08 Jan 2011] DSA-2374 openswan - implementation error
[25 Dec 2011] DSA-2373 inetutils - buffer overflow
[25 Dec 2011] DSA-2372 heimdal - buffer overflow
[25 Dec 2011] DSA-2371 jasper - buffer overflows
[25 Dec 2011] DSA-2370 unbound - several vulnerabilities
[25 Dec 2011] DSA-2369 libsoup2.4 - insufficient input sanitization
[25 Dec 2011] DSA-2368 lighttpd - multiple vulnerabilities
[25 Dec 2011] DSA-2367 asterisk - several vulnerabilities
[18 Dec 2011] DSA-2366 mediawiki - multiple vulnerabilities
[18 Dec 2011] DSA-2365 dtc - several vulnerabilities
[18 Dec 2011] DSA-2364 xorg - incorrect permission check
[18 Dec 2011] DSA-2363 tor - buffer overflow
[18 Dec 2011] DSA-2362 acpid - several vulnerabilities
[18 Dec 2011] DSA-2361 chasen - buffer overflow
[18 Dec 2011] DSA-2359 mojarra - EL injection
[03 Dec 2011] DSA-2356 openjdk-6 - several vulnerabilities
[03 Dec 2011] DSA-2355 clearsilver - format string vulnerability
[03 Dec 2011] DSA-2354 cups - several vulnerabilities
[03 Dec 2011] DSA-2353 ldns - buffer overflow
[03 Dec 2011] DSA-2352 puppet - programming error
[03 Dec 2011] DSA-2351 wireshark - buffer overflow
[03 Dec 2011] DSA-2350 freetype - missing input sanitising
[03 Dec 2011] DSA-2348 systemtap - several vulnerabilities
[03 Dec 2011] DSA-2339 nss - several vulnerabilities
[19 Nov 2011] DSA-2342 iceape - several vulnerabilities
[19 Nov 2011] DSA-2341 iceweasel - several vulnerabilities
[19 Nov 2011] DSA-2345 icedove - several vulnerabilities
[18 Nov 2011] DSA-2349 spip - several vulnerabilities
[18 Nov 2011] DSA-2347 bind9 - improper assert
[18 Nov 2011] DSA-2346 proftpd-dfsg - several vulnerabilities
[15 Nov 2011] DSA-2344 python-django-piston - deserialization vulnerability
[15 Nov 2011] DSA-2343 openssl - CA trust revocation
[13 Nov 2011] DSA-2340 postgresql-8.3, postgresql-8.4, postgresql-9.0 - weak password hashing
[13 Nov 2011] DSA-2338 moodle - several vulnerabilities
[13 Nov 2011] DSA-2336 ffmpeg - several vulnerabilities
[13 Nov 2011] DSA-2337 xen - several vulnerabilities
[13 Nov 2011] DSA-2335 man2html - missing input sanitization
[05 Nov 2011] DSA-2334 mahara - several vulnerabilities
[05 Nov 2011] DSA-2333 phpldapadmin - several vulnerabilities
[05 Nov 2011] DSA-2332 python-django - several issues
[05 Nov 2011] DSA-2331 tor - several vulnerabilities
[05 Nov 2011] DSA-2330 simplesamlphp - XML encryption weakness
[05 Nov 2011] DSA-2329 torque - buffer overflow
[05 Nov 2011] DSA-2323 radvd - several vulnerabilities
[05 Nov 2011] DSA-2328 freetype - missing input sanitising
[05 Nov 2011] DSA-2327 libfcgi-perl - authentication bypass
[05 Nov 2011] DSA-2326 pam - several vulnerabilitie
[22 Oct 2011] DSA-2324 wireshark - programming error
[22 Oct 2011] DSA-2322 bugzilla - several vulnerabilities
[22 Oct 2011] DSA-2321 moin - cross-site scriptin
[08 Oct 2011] DSA-2318 cyrus-imapd-2.2 - multiple vulnerabilities
[08 Oct 2011] DSA-2317 icedove - several vulnerabilitie
[05 Oct 2011] DSA-2316 quagga - several vulnerabilities
[05 Oct 2011] DSA-2315 openoffice.org - multiple vulnerabilities
[05 Oct 2011] DSA-2314 puppet - multiple vulnerabilities
[02 Oct 2011] DSA-2312 iceape - several vulnerabilities
[01 Oct 2011] DSA-2313 iceweasel - several vulnerabilities
[28 Sep 2011] DSA-2311 openjdk-6 - several vulnerabilitie
[24 Sep 2011] DSA-2305 vsftpd - denial of servic
[17 Sep 2011] DSA-2309 openssl - compromised certificate authority
[17 Sep 2011] DSA-2308 mantis - several vulnerabilities
[17 Sep 2011] DSA-2307 chromium-browser - several vulnerabilities
[17 Sep 2011] DSA-2306 ffmpeg - several vulnerabilities
[17 Sep 2011] DSA-2304 squid3 - buffer overflow
[10 Sep 2011] DSA-2302 bcfg2 - missing input sanitization
[10 Sep 2011] DSA-2301 rails - several vulnerabilitie
[10 Sep 2011] DSA-2297 icedove - several vulnerabilities
[10 Sep 2011] DSA-2296 iceweasel - several vulnerabilities
[10 Sep 2011] DSA-2295 iceape - several vulnerabilitie
[05 Sep 2011] DSA-2298 apache2 - denial of service
[31 Aug 2011] DSA-2300 nss - compromised certificate authority
[31 Aug 2011] DSA-2299 ca-certificates - compromised certificate authority
[31 Aug 2011] DSA-2294 freetype - missing input sanitizing
[14 Aug 2011] DSA-2293 libxfont - buffer overflow
[14 Aug 2011] DSA-2292 isc-dhcp - denial of service
[14 Aug 2011] DSA-2291 squirrelmail - various vulnerabilities
[14 Aug 2011] DSA-2290 samba - cross-site scripting
[14 Aug 2011] DSA-2289 typo3-src - several vulnerabilities
[03 Aug 2011] DSA-2288 libsndfile - integer overflow
[03 Aug 2011] DSA-2287 libpng - several vulnerabilities
[03 Aug 2011] DSA-2286 phpymadmin - several vulnerabilities
[03 Aug 2011] DSA-2285 mapserver - several vulnerabilities
[03 Aug 2011] DSA-2284 opensaml2 - implementation error
[03 Aug 2011] DSA-2283 krb5-appl - programming error
[03 Aug 2011] DSA-2282 qemu-kvm - several vulnerabilities
[03 Aug 2011] DSA-2281 opie - several vulnerabilities
[03 Aug 2011] DSA-2280 libvirt - several vulnerabilities
[03 Aug 2011] DSA-2279 libapache2-mod-authnz-external - SQL injection
[10 Jul 2011] DSA-2277 xml-security-c - stack-based buffer overflow
[10 Jul 2011] DSA-2276 asterisk - multiple denial of service
[10 Jul 2011] DSA-2275 openoffice.org - stack-based buffer overflow
[10 Jul 2011] DSA-2274 wireshark - several vulnerabilities
[10 Jul 2011] DSA-2273 icedove - several vulnerabilities
[10 Jul 2011] DSA-2272 bind9 - denial of service
[10 Jul 2011] DSA-2269 iceape - several vulnerabilities
[09 Jul 2011] DSA-2268 iceweasel - several vulnerabilitie
[04 Jul 2011] DSA-2271 curl - improper delegation of client credentials
[04 Jul 2011] DSA-2270 qemu-kvm - programming error
[04 Jul 2011] DSA-2267 perl - restriction bypass
[04 Jul 2011] DSA-2266 php5 - several vulnerabilities
[04 Jul 2011] DSA-2265 perl - lack of tainted flag propagation
[19 Jun 2011] DSA-2263 movabletype-opensource - several vulnerabilities
[19 Jun 2011] DSA-2262 moodle - several vulnerabilities
[19 Jun 2011] DSA-2261 redmine - several vulnerabilities
[19 Jun 2011] DSA-2260 rails - several vulnerabilities
[19 Jun 2011] DSA-2259 fex - authentication bypass
[19 Jun 2011] DSA-2258 kolab-cyrus-imapd - implementation error
[10 Jun 2011] DSA-2257 vlc - heap-based buffer overflow
[09 Jun 2011] DSA-2256 tiff - buffer overflow
[07 Jun 2011] DSA-2255 libxml2 - buffer overflow
[05 Jun 2011] DSA-2245 chromium-browser - several vulnerabilities
[05 Jun 2011] DSA-2251 subversion - several vulnerabilitie
[04 Jun 2011] DSA-2254 oprofile - command injection
[04 Jun 2011] DSA-2252 dovecot - programming error
[04 Jun 2011] DSA-2247 rails - several vulnerabilities
[04 Jun 2011] DSA-2246 mahara - several vulnerabilities
[30 May 2011] DSA-2244 bind9 - incorrect boundary condition
[30 May 2011] DSA-2243 unbound - design flaw
[30 May 2011] DSA-2242 cyrus-imapd-2.2 - implementation error
[30 May 2011] DSA-2241 qemu-kvm - implementation error
[30 May 2011] DSA-2239 libmojolicious-perl - several vulnerabilities
[30 May 2011] DSA-2238 vino - several vulnerabilities
[30 May 2011] DSA-2237 apr - denial of service
[13 May 2011] DSA-2236 exim4 - command injection
[13 May 2011] DSA-2235 icedove - several vulnerabilities
[13 May 2011] DSA-2234 zodb - several vulnerabilities
[13 May 2011] DSA-2233 postfix - several vulnerabilities
[13 May 2011] DSA-2231 otrs2 - cross-site scripting
[13 May 2011] DSA-2230 qemu-kvm - several vulnerabilities
[13 May 2011] DSA-2229 spip - programming error
[13 May 2011] DSA-2226 libmodplug - buffer overflow
[08 May 2011] DSA-2228 iceweasel - several vulnerabilities
[08 May 2011] DSA-2227 iceape - several vulnerabilities
[30 Apr 2011] DSA-2225 asterisk - several vulnerabilities
[30 Apr 2011] DSA-2224 openjdk-6 - several vulnerabilities
[30 Apr 2011] DSA-2223 doctrine - SQL injection
[30 Apr 2011] DSA-2222 tinyproxy - incorrect ACL processing
[30 Apr 2011] DSA-2221 libmojolicious-perl - directory traversal
[30 Apr 2011] DSA-2220 request-tracker3.6, request-tracker3.8 - several vulnerabilities
[30 Apr 2011] DSA-2219 xmlsec1 - arbitrary file overwrite
[13 Apr 2011] DSA-2218 vlc - heap-based buffer overflow
[10 Apr 2011] DSA-2217 dhcp3 - missing input sanitization
[10 Apr 2011] DSA-2216 isc-dhcp - missing input sanitization
[10 Apr 2011] DSA-2215 gitolite - directory traversal
[10 Apr 2011] DSA-2214 ikiwiki - missing input validation
[10 Apr 2011] DSA-2213 x11-xserver-utils - missing input sanitization
[10 Apr 2011] DSA-2212 tmux - privilege escalation
[10 Apr 2011] DSA-2211 vlc - missing input sanitising
[05 Apr 2011] DSA-2210 tiff - several vulnerabilities
[05 Apr 2011] DSA-2209 tgt - double free
[30 Mar 2011] DSA-2203 nss - ssl certificate blacklist update
[30 Mar 2011] DSA-2208 bind9 - denial of service
[30 Mar 2011] DSA-2196 maradns - buffer overflow
[29 Mar 2011] DSA-2201 wireshark - several vulnerabilities
[29 Mar 2011] DSA-2205 gdm3 - privilege escalation
[29 Mar 2011] DSA-2198 tex-common - insufficient input sanitization
[29 Mar 2011] DSA-2197 quagga - denial of service
[29 Mar 2011] DSA-2195 php5 - several vulnerabilities
[29 Mar 2011] DSA-2194 libvirt - insufficient checks
[29 Mar 2011] DSA-2193 libcgroup - several vulnerabilities
[29 Mar 2011] DSA-2184 isc-dhcp - denial of service
[26 Mar 2011] DSA-2202 apache2 - failure to drop root privileges
[26 Mar 2011] DSA-2192 chromium-browser - several vulnerabilities
[26 Mar 2011] DSA-2181 subversion - denial of service
[25 Mar 2011] DSA-2200 iceweasel - ssl certificate blacklist update
[25 Mar 2011] DSA-2199 iceape - ssl certificate blacklist update
[13 Mar 2011] DSA-2188 webkit - several vulnerabilities
[12 Mar 2011] DSA-2185 proftpd-dfsg - integer overflow
[12 Mar 2011] DSA-2190 wordpress - several vulnerabilities
[10 Mar 2011] DSA-2189 chromium-browser - several vulnerabilities
[10 Mar 2011] DSA-2187 icedove - several vulnerabilities
[10 Mar 2011] DSA-2186 iceweasel - several vulnerabilities