Gentoo Linux Security Advisories

GLSA 201709-22 (normal) - Oracle JDK/JRE, IcedTea: Multiple vulnerabilities
Multiple vulnerabilities have been found in Oracle's JRE and JDK software suites, and IcedTea, the worst of which may allow execution of arbitrary code.
GLSA 201709-21 (normal) - PHP: Multiple vulnerabilities
Multiple vulnerabilities have been found in PHP, the worst of which could result in the execution of arbitrary code.
GLSA 201709-20 (high) - Postfix: Privilege escalation
A vulnerability in Postfix may allow local users to gain root privileges.
GLSA 201709-19 (normal) - Exim: Local privilege escalation
A vulnerability in Exim may allow local users to gain root privileges.
GLSA 201709-18 (normal) - Mercurial: Multiple vulnerabilities
Multiple vulnerabilities have been found in Mercurial, the worst of which could lead to the remote execution of arbitrary code.
GLSA 201709-17 (normal) - CVS: Command injection
A command injection vulnerability in CVS may allow remote attackers to execute arbitrary code.
GLSA 201709-16 (high) - Adobe Flash Player: Multiple vulnerabilities
Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code.
GLSA 201709-15 (normal) - Chromium: Multiple vulnerabilities
Multiple vulnerabilities have been found in Chromium, the worst of which could result in the execution of arbitrary code.
GLSA 201709-14 (normal) - cURL: Multiple vulnerabilities
Multiple vulnerabilities have been found in cURL, the worst of which may allow attackers to bypass intended restrictions.
GLSA 201709-13 (normal) - SquirrelMail: Remote Code Execution
A vulnerability in SquirrelMail might allow remote attackers to execute arbitrary code.
GLSA 201709-12 (normal) - Perl: Race condition vulnerability
A vulnerability in module File::Path for Perl allows local attackers to set arbitrary mode values on arbitrary files bypassing security restrictions.
GLSA 201709-11 (high) - GIMPS: Root privilege escalation
Gentoo's GIMPS ebuilds are vulnerable to privilege escalation due to improper permissions. A local attacker could use it to gain root privileges.
GLSA 201709-10 (normal) - Git: Command injection
A command injection vulnerability in Git may allow remote attackers to execute arbitrary code.
GLSA 201709-09 (normal) - Subversion: Arbitrary code execution
A command injection vulnerability in Subversion may allow remote attackers to execute arbitrary code.
GLSA 201709-08 (normal) - GDK-PixBuf: Multiple vulnerabilities
Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code.
GLSA 201709-07 (normal) - Kpathsea: User-assisted execution of arbitrary code
A vulnerability in Kpathsea allows remote attackers to execute arbitrary commands by manipulating the -tex option from mpost program.
GLSA 201709-06 (high) - Supervisor: command injection vulnerability
A vulnerability in Supervisor might allow remote attackers to execute arbitrary code.
GLSA 201709-05 (high) - chkrootkit: Local privilege escalation
A vulnerability in chkrootkit may allow local users to gain root privileges.
GLSA 201709-04 (normal) - mod_gnutls: Certificate validation error
A vulnerability in mod_gnutls allows remote attackers to spoof clients via crafted certificates.
GLSA 201709-03 (normal) - WebKitGTK+: Multiple vulnerabilities
Multiple vulnerabilities have been found in WebkitGTK+, the worst of which may allow remote attackers to execute arbitrary code.

1 2 3 ... 127 Next »

Also available in: Atom

Thank you!