Debian Linux Security LinuxSecurity Advisories is the community’s central source for information on Linux and open source security. We follow the open source trends as they affect the community. We produce content that appeals to administrators, developers, home users, and security professionals.
Stay Vigilant with Timely Linux Security Advisories LinuxSecurity.com is the community’s central source for information on Linux and open source security. We follow the open source trends as they affect the commu
- Debian: DSA-5834-1: chromium Security Advisory Updateson December 20, 2024 at 7:28 am
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.
- Debian: DSA-5833-1: dpdk Security Advisory Updateson December 17, 2024 at 10:17 pm
A buffer overflow was discovered in the vhost code of DPDK, a set of libraries for fast packet processing, which could result in denial of service or the execution of arbitrary code by malicious guests/containers.
- Debian: DSA-5832-1: gstreamer1.0 Security Advisory Updateson December 16, 2024 at 5:04 pm
Antonio Morales reported an integer overflow vulnerability in the memory allocator in the Core GStreamer libraries, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is processed.
- Debian: DSA-5831-1: gst-plugins-base1.0 Security Advisory Updateson December 14, 2024 at 7:12 pm
Multiple multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
- Debian: DSA-5830-1: smarty4 Security Advisory Updateson December 12, 2024 at 7:37 pm
A security vulnerability was discovered in Smarty, a template engine for PHP, which could result in PHP code injection. For the stable distribution (bookworm), this problem has been fixed in
- Debian: DSA-5829-1: chromium Security Advisory Updateson December 12, 2024 at 5:52 pm
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.
- Debian: DSA-5828-1: python-aiohttp Security Advisory Updateson December 11, 2024 at 7:24 pm
Multiple security vulnerabilities were discovered in python-aiohttp, a HTTP client/server for asyncio, which could result in denial of service, directory traversal, CRLF injection or request smuggling.
- Debian: DSA-5827-1: proftpd-dfsg Security Advisory Updateson December 10, 2024 at 8:19 pm
Brian Ristuccia discovered that in ProFTPD, a powerful modular FTP/SFTP/FTPS server, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql.
- Debian: DSA-5826-1: smarty3 Security Advisory Updateson December 10, 2024 at 7:07 pm
Two security vulnerabilities were discovered in Smarty, a template engine for PHP, which could result in PHP code injection or cross-site scripting.