Jump to content

Recommended Posts

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4545-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 18, 2019                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : mediawiki
CVE ID         : CVE-2019-16738

It was discovered that the Special:Redirect functionality of MediaWiki,
a website engine for collaborative work, could expose suppressed user
names, resulting in an information leak.

For the oldstable distribution (stretch), this problem has been fixed
in version 1:1.27.7-1~deb9u2.

For the stable distribution (buster), this problem has been fixed in
version 1:1.31.4-1~deb10u1.

Share this post


Link to post
Share on other sites
- -------------------------------------------------------------------------
Debian Security Advisory DSA-4546-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 20, 2019                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-11
CVE ID         : CVE-2019-2894 CVE-2019-2945 CVE-2019-2949 CVE-2019-2962 
                 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2977 
                 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 
                 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999

Several vulnerabilities have been discovered in the OpenJDK Java
runtime, resulting in cross-site scripting, denial of service,
information disclosure or Kerberos user impersonation.

For the stable distribution (buster), these problems have been fixed in
version 11_11.0.5+10-1~deb10u1.

Share this post


Link to post
Share on other sites
- -------------------------------------------------------------------------
Debian Security Advisory DSA-4547-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 21, 2019                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : tcpdump
CVE ID         : CVE-2018-10103 CVE-2018-10105 CVE-2018-14461 CVE-2018-14462 
                 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465 CVE-2018-14466 
                 CVE-2018-14467 CVE-2018-14468 CVE-2018-14469 CVE-2018-14470 
                 CVE-2018-14879 CVE-2018-14880 CVE-2018-14881 CVE-2018-14882 
                 CVE-2018-16227 CVE-2018-16228 CVE-2018-16229 CVE-2018-16230 
                 CVE-2018-16300 CVE-2018-16451 CVE-2018-16452 CVE-2019-15166

Several vulnerabilities have been discovered in tcpdump, a command-line
network traffic analyzer. These vulnerabilities might result in denial of
service or, potentially, execution of arbitrary code.

For the oldstable distribution (stretch), these problems have been fixed
in version 4.9.3-1~deb9u1.

For the stable distribution (buster), these problems have been fixed in
version 4.9.3-1~deb10u1.

 

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4548-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 21, 2019                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-8
CVE ID         : CVE-2019-2894 CVE-2019-2945 CVE-2019-2949 CVE-2019-2962 
                 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 
                 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 
                 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999

Several vulnerabilities have been discovered in the OpenJDK Java
runtime, resulting in cross-site scripting, denial of service, information
disclosure or Kerberos user impersonation.

For the oldstable distribution (stretch), these problems have been fixed
in version 8u232-b09-1~deb9u1.

Share this post


Link to post
Share on other sites

×
×
  • Create New...