Debian LTS Linux Security is the community’s central source for information on Linux and open source security. We follow the open source trends as they affect the community. We produce content that appeals to administrators, developers, home users, and security professionals.
Stay Vigilant with Timely Linux Security Advisories LinuxSecurity.com is the community’s central source for information on Linux and open source security. We follow the open source trends as they affect the commu
- Debian LTS: DLA-4016-1: ucf Security Advisory Updateson January 21, 2025 at 8:25 am
It was discovered that there was a potential command-injection vulnerability was discovered in ucf, a tool to preserve user changes to config files.
- Debian LTS: DLA-4027-1: sympa Security Advisory Updateson January 20, 2025 at 11:28 pm
A flaw was found in Sympaâs web interface, a modern mailing list manager. An attacker may bypass authentication by using an arbitrary e-mail address when the generic SSO loging feature was enabled.
- Debian LTS: DLA-4026-1: tiff Security Advisory Updateson January 20, 2025 at 3:28 pm
Multiple vulnerabilities were fixed in tiff, a library and tools providing support for the Tag Image File Format (TIFF).
- Debian LTS: DLA-4025-1: redis Security Advisory Updateson January 20, 2025 at 3:04 pm
Possible code execution with Lua scripting due to a missing call to the garbage collector has been fixed in the keyâvalue database Redis. For Debian 11 bullseye, this problem has been fixed in version
- Debian LTS: DLA-4024-1: poco Security Advisory Updateson January 20, 2025 at 2:47 pm
An integer overflow in Poco::UTF32Encoding() hase been fixed in the POCO C++ libraries for building network-based applications. For Debian 11 bullseye, this problem has been fixed in version
- Debian LTS: DLA-4023-1: libebml Security Advisory Updateson January 20, 2025 at 2:05 pm
An integer overflow in MemIOCallback::read() has been fixed in libebml, a library for the EBML (Extensible Binary Meta Language) format. For Debian 11 bullseye, this problem has been fixed in version
- Debian LTS: DLA-4021-1: 389-ds-base Security Advisory Updateson January 20, 2025 at 11:47 am
This update fixes multiple vulnerabilities in 389-ds-base LDAP server. CVE-2021-3652
- Debian LTS: DLA-4022-1: tryton-server Security Advisory Updateson January 19, 2025 at 9:20 pm
Cédric Krier has found that trytond, the Tryton application server, accepts compressed content from unauthenticated requests which makes it vulnerable to zip bomb attacks.
- Debian LTS: DLA-4020-1: libreoffice Security Advisory Updateson January 19, 2025 at 5:16 pm
Libreoffice an office productivity software suite, was affected by two vulnerabilities CVE-2024-12425