Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Linux Security Advisories (GLSA)

This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.

ID Title
200712-25 OpenOffice.org: User-assisted arbitrary code execution
200712-24 AMD64 x86 emulation GTK+ library: User-assisted execution of arbitrary code
200712-23 Wireshark: Multiple vulnerabilities
200712-22 Opera: Multiple vulnerabilities
200712-21 Mozilla Firefox, SeaMonkey: Multiple vulnerabilities
200712-20 ClamAV: Multiple vulnerabilities
200712-19 Syslog-ng: Denial of service
200712-18 Multi-Threaded DAAP Daemon: Multiple vulnerabilities
200712-17 exiftags: Multiple vulnerabilities
200712-16 Exiv2: Integer overflow
200712-15 libexif: Multiple vulnerabilities
200712-14 CUPS: Multiple vulnerabilities
200712-13 E2fsprogs: Multiple buffer overflows
200712-12 IRC Services: Denial of service
200712-11 Portage: Information disclosure
200712-10 Samba: Execution of arbitrary code
200712-09 Ruby-GNOME2: Format string error
200712-08 AMD64 x86 emulation Qt library: Multiple vulnerabilities
200712-07 Lookup: Insecure temporary file creation
200712-06 Firebird: Multiple buffer overflows
200712-05 PEAR::MDB2: Information disclosure
200712-04 Cairo: User-assisted execution of arbitrary code
200712-03 GNU Emacs: Multiple vulnerabilities
200712-02 Cacti: SQL injection
200712-01 Hugin: Insecure temporary file creation
200711-34 CSTeX: Multiple vulnerabilities
200711-33 nss_ldap: Information disclosure
200711-32 Feynmf: Insecure temporary file creation
200711-31 Net-SNMP: Denial of service
200711-30 PCRE: Multiple vulnerabilities
200711-29 Samba: Execution of arbitrary code
200711-28 Perl: Buffer overflow
200711-27 Link Grammar: User-assisted execution of arbitrary code
200711-26 teTeX: Multiple vulnerabilities
200711-25 MySQL: Denial of service
200711-24 Mozilla Thunderbird: Multiple vulnerabilities
200711-23 VMware Workstation and Player: Multiple vulnerabilities
200711-22 Poppler, KDE: User-assisted execution of arbitrary code
200711-21 Bochs: Multiple vulnerabilities
200711-20 Pioneers: Multiple Denials of Service
200711-19 TikiWiki: Multiple vulnerabilities
200711-18 Cpio: Buffer overflow
200711-17 Ruby on Rails: Multiple vulnerabilities
200711-16 CUPS: Memory corruption
200711-15 FLAC: Buffer overflow
200711-14 Mozilla Firefox, SeaMonkey, XULRunner: Multiple vulnerabilities
200711-13 3proxy: Denial of service
200711-12 Tomboy: User-assisted execution of arbitrary code
200711-11 Nagios Plugins: Two buffer overflows
200711-10 Mono: Buffer overflow
200711-09 MadWifi: Denial of service
200711-08 libpng: Multiple Denials of Service
200711-07 Python: User-assisted execution of arbitrary code
200711-06 Apache: Multiple vulnerabilities
200711-05 SiteBar: Multiple issues
200711-04 Evolution: User-assisted remote execution of arbitrary code
200711-03 Gallery: Multiple vulnerabilities
200711-02 OpenSSH: Security bypass
200711-01 gFTP: Multiple vulnerabilities
200710-31 Opera: Multiple vulnerabilities
200710-30 OpenSSL: Remote execution of arbitrary code
200710-29 Sylpheed, Claws Mail: User-assisted remote execution of arbitrary code
200710-28 Qt: Buffer overflow
200710-27 ImageMagick: Multiple vulnerabilities
200710-26 HPLIP: Privilege escalation
200710-25 MLDonkey: Privilege escalation
200710-24 OpenOffice.org: Heap-based buffer overflow
200710-23 Star: Directory traversal vulnerability
200710-22 TRAMP: Insecure temporary file creation
200710-21 TikiWiki: Arbitrary command execution
200710-20 PDFKit, ImageKits: Buffer overflow
200710-19 The Sleuth Kit: Integer underflow
200710-18 util-linux: Local privilege escalation
200710-17 Balsa: Buffer overflow
200710-16 X.Org X server: Composite local privilege escalation
200710-15 KDM: Local privilege escalation
200710-14 DenyHosts: Denial of service
200710-13 Ampache: Multiple vulnerabilities
200710-12 T1Lib: Buffer overflow
200710-11 X Font Server: Multiple Vulnerabilities
200710-10 SKK Tools: Insecure temporary file creation
200710-09 NX 2.1: User-assisted execution of arbitrary code
200710-08 KOffice, KWord, KPDF, KDE Graphics Libraries: Stack-based buffer overflow
200710-07 Tk: Buffer overflow
200710-06 OpenSSL: Multiple vulnerabilities
200710-05 QGit: Insecure temporary file creation
200710-04 libsndfile: Buffer overflow
200710-03 libvorbis: Multiple vulnerabilities
200710-02 PHP: Multiple vulnerabilities
200710-01 RPCSEC_GSS library: Buffer overflow
200709-18 Bugzilla: Multiple vulnerabilities
200709-17 teTeX: Multiple buffer overflows
200709-16 Lighttpd: Buffer overflow
200709-15 BEA JRockit: Multiple vulnerabilities
200709-14 ClamAV: Multiple vulnerabilities
200709-13 rsync: Two buffer overflows
200709-12 Poppler: Two buffer overflow vulnerabilities
200709-11 GDM: Local Denial of service
200709-10 PhpWiki: Authentication bypass
200709-09 GNU Tar: Directory traversal vulnerability
200709-08 id3lib: Insecure temporary file creation
200709-07 Eggdrop: Buffer overflow
200709-06 flac123: Buffer overflow
200709-05 RealPlayer: Buffer overflow
200709-04 po4a: Insecure temporary file creation
200709-03 Streamripper: Buffer overflow
200709-02 KVIrc: Remote arbitrary code execution
200709-01 MIT Kerberos 5: Multiple vulnerabilities
200708-17 Opera: Multiple vulnerabilities
200708-16 Qt: Multiple format string vulnerabilities
200708-15 Apache mod_jk: Directory traversal
200708-14 NVIDIA drivers: Denial of service
200708-13 BIND: Weak random number generation
200708-12 Wireshark: Multiple vulnerabilities
200708-11 Lighttpd: Multiple vulnerabilities
200708-10 MySQL: Denial of Service and information leakage
200708-09 Mozilla products: Multiple vulnerabilities
200708-08 SquirrelMail G/PGP plugin: Arbitrary code execution
200708-07 Xfce Terminal: Remote arbitrary code execution
200708-06 Net::DNS: Multiple vulnerabilities
200708-05 GD: Multiple vulnerabilities
200708-04 ClamAV: Denial of service
200708-03 libarchive (formerly named as bsdtar): Multiple PaX Extension Header Vulnerabilities
200708-02 Xvid: Array indexing vulnerabilities
200708-01 Macromedia Flash Player: Remote arbitrary code execution
200707-14 tcpdump: Integer overflow
200707-13 Fail2ban: Denial of service
200707-12 VLC media player: Format string vulnerabilities
200707-11 MIT Kerberos 5: Arbitrary remote code execution
200707-10 Festival: Privilege elevation
200707-09 GIMP: Multiple integer overflows
200707-08 NVClock: Insecure file usage
200707-07 MPlayer: Multiple buffer overflows
200707-06 XnView: Stack-based buffer overflow
200707-05 Webmin, Usermin: Cross-site scripting vulnerabilities
200707-04 GNU C Library: Integer overflow
200707-03 Evolution: User-assisted remote execution of arbitrary code
200707-02 OpenOffice.org: Two buffer overflows
200707-01 Firebird: Buffer overflow
200706-09 libexif: Buffer overflow
200706-08 emul-linux-x86-java: Multiple vulnerabilities
200706-07 PHProjekt: Multiple vulnerabilities
200706-06 Mozilla products: Multiple vulnerabilities
200706-05 ClamAV: Multiple Denials of Service
200706-04 MadWifi: Multiple vulnerabilities
200706-03 ELinks: User-assisted execution of arbitrary code
200706-02 Evolution: User-assisted execution of arbitrary code
200706-01 libexif: Integer overflow vulnerability
200705-25 file: Integer overflow
200705-24 libpng: Denial of service
200705-23 Sun JDK/JRE: Multiple vulnerabilities
200705-22 FreeType: Buffer overflow
200705-21 MPlayer: Two buffer overflows
200705-20 Blackdown Java: Applet privilege escalation
200705-19 PHP: Multiple vulnerabilities
200705-18 PPTPD: Denial of Service attack
200705-17 Apache mod_security: Rule bypass
200705-16 PhpWiki: Remote execution of arbitrary code
200705-15 Samba: Multiple vulnerabilities
200705-14 XScreenSaver: Privilege escalation
200705-13 ImageMagick: Multiple buffer overflows
200705-12 PostgreSQL: Privilege escalation
200705-11 MySQL: Two Denial of Service vulnerabilities
200705-10 LibXfont, TightVNC: Multiple vulnerabilities
200705-09 IPsec-Tools: Denial of service
200705-08 GIMP: Buffer overflow
200705-07 Lighttpd: Two Denials of Service
200705-06 X.Org X11 library: Multiple integer overflows
200705-05 Quagga: Denial of service
200705-04 Apache mod_perl: Denial of service
200705-03 Tomcat: Information disclosure
200705-02 FreeType: User-assisted execution of arbitrary code
200705-01 Ktorrent: Multiple vulnerabilities
200704-23 capi4k-utils: Buffer overflow
200704-22 BEAST: Denial of service
200704-21 ClamAV: Multiple vulnerabilities
200704-20 NAS: Multiple vulnerabilities
200704-19 Blender: User-assisted remote execution of arbitrary code
200704-18 Courier-IMAP: Remote execution of arbitrary code
200704-17 3proxy: Buffer overflow
200704-16 Aircrack-ng: Remote execution of arbitrary code
200704-15 MadWifi: Multiple vulnerabilities
200704-14 FreeRADIUS: Denial of service
200704-13 File: Denial of service
200704-12 OpenOffice.org: Multiple vulnerabilities
200704-11 Vixie Cron: Denial of service
200704-10 Inkscape: Two format string vulnerabilities
200704-09 xine-lib: Heap-based buffer overflow
200704-08 DokuWiki: Cross-site scripting vulnerability
200704-07 libwpd: Multiple vulnerabilities
200704-06 Evince: Stack overflow in included gv code
200704-05 zziplib: Buffer Overflow
200704-04 OpenPBS: Multiple vulnerabilities
200704-03 OpenAFS: Privilege escalation
200704-02 MIT Kerberos 5: Arbitrary remote code execution
200704-01 Asterisk: Two SIP Denial of Service vulnerabilities
200703-28 CUPS: Denial of service
200703-27 Squid: Denial of service
200703-26 file: Integer underflow
200703-25 Ekiga: Format string vulnerability
200703-24 mgv: Stack overflow in included gv code
200703-23 WordPress: Multiple vulnerabilities
200703-22 Mozilla Network Security Service: Remote execution of arbitrary code
200703-21 PHP: Multiple vulnerabilities
200703-20 LSAT: Insecure temporary file creation
200703-19 LTSP: Authentication bypass in included LibVNCServer code
200703-18 Mozilla Thunderbird: Multiple vulnerabilities
200703-17 ulogd: Remote execution of arbitrary code
200703-16 Apache JK Tomcat Connector: Remote execution of arbitrary code
200703-15 PostgreSQL: Multiple vulnerabilities
200703-14 Asterisk: SIP Denial of service
200703-13 SSH Communications Security's Secure Shell Server: SFTP privilege escalation
200703-12 SILC Server: Denial of service
200703-11 Amarok: User-assisted remote execution of arbitrary code
200703-10 KHTML: Cross-site scripting (XSS) vulnerability
200703-09 Smb4K: Multiple vulnerabilities
200703-08 SeaMonkey: Multiple vulnerabilities
200703-07 STLport: Possible remote execution of arbitrary code
200703-06 AMD64 x86 emulation Qt library: Integer overflow
200703-05 Mozilla Suite: Multiple vulnerabilities
200703-04 Mozilla Firefox: Multiple vulnerabilities
200703-03 ClamAV: Denial of service
200703-02 SpamAssassin: Long URI Denial of service
200703-01 Snort: Remote execution of arbitrary code
200702-12 CHMlib: User-assisted remote execution of arbitrary code
200702-11 MPlayer: Buffer overflow
200702-10 UFO2000: Multiple vulnerabilities
200702-09 Nexuiz: Multiple vulnerabilities
200702-08 AMD64 x86 emulation Sun's J2SE Development Kit: Multiple vulnerabilities
200702-07 Sun JDK/JRE: Execution of arbitrary code
200702-06 BIND: Denial of service
200702-05 Fail2ban: Denial of service
200702-04 RAR, UnRAR: Buffer overflow
200702-03 Snort: Denial of service
200702-02 ProFTPD: Local privilege escalation
200702-01 Samba: Multiple vulnerabilities
200701-28 thttpd: Unauthenticated remote file access
200701-27 ELinks: Arbitrary Samba command execution
200701-26 KSirc: Denial of Service vulnerability
200701-25 X.Org X server: Multiple vulnerabilities
200701-24 VLC media player: Format string vulnerability
200701-23 Cacti: Command execution and SQL injection
200701-22 Squid: Multiple Denial of Service vulnerabilities
200701-21 MIT Kerberos 5: Arbitrary Remote Code Execution
200701-20 Centericq: Remote buffer overflow in LiveJournal handling
200701-19 OpenLDAP: Insecure usage of /tmp during installation
200701-18 xine-ui: Format string vulnerabilities
200701-17 libgtop: Privilege escalation
200701-16 Adobe Acrobat Reader: Multiple vulnerabilities
200701-15 Sun JDK/JRE: Multiple vulnerabilities
200701-14 Mod_auth_kerb: Denial of service
200701-13 Fetchmail: Denial of Service and password disclosure
200701-12 Mono: Information disclosure
200701-11 Kronolith: Local file inclusion
200701-10 WordPress: Multiple vulnerabilities
200701-09 oftpd: Denial of service
200701-08 Opera: Two remote code execution vulnerabilities
200701-07 OpenOffice.org: EMF/WMF file handling vulnerabilities
200701-06 w3m: Format string vulnerability
200701-05 KDE kfile JPEG info plugin: Denial of service
200701-04 SeaMonkey: Multiple vulnerabilities
200701-03 Mozilla Thunderbird: Multiple vulnerabilities
200701-02 Mozilla Firefox: Multiple vulnerabilities
200701-01 DenyHosts: Denial of service