Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Linux Security Advisories (GLSA)

This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.

ID Title
200912-02 Ruby on Rails: Multiple vulnerabilities
200912-01 OpenSSL: Multiple vulnerabilities
200911-06 PEAR Net_Traceroute: Command injection
200911-05 Wireshark: Multiple vulnerabilities
200911-04 dstat: Untrusted search path
200911-03 UW IMAP toolkit: Multiple vulnerabilities
200911-02 Sun JDK/JRE: Multiple vulnerabilities
200911-01 Horde: Multiple vulnerabilities
200910-03 Adobe Reader: Multiple vulnerabilities
200910-02 Pidgin: Multiple vulnerabilities
200910-01 Wget: Certificate validation error
200909-20 cURL: Certificate validation error
200909-19 Dnsmasq: Multiple vulnerabilities
200909-18 nginx: Remote execution of arbitrary code
200909-17 ZNC: Directory traversal
200909-16 Wireshark: Denial of service
200909-15 Lynx: Arbitrary command execution
200909-14 Horde: Multiple vulnerabilities
200909-13 irssi: Execution of arbitrary code
200909-12 HTMLDOC: User-assisted execution of arbitrary code
200909-11 GCC-XML: Insecure temporary file usage
200909-10 LMBench: Insecure temporary file usage
200909-09 Screenie: Insecure temporary file usage
200909-08 C* music player: Insecure temporary file usage
200909-07 TkMan: Insecure temporary file usage
200909-06 aMule: Parameter injection
200909-05 Openswan: Denial of service
200909-04 Clam AntiVirus: Multiple vulnerabilities
200909-03 Apache Portable Runtime, APR Utility Library: Execution of arbitrary code
200909-02 libvorbis: User-assisted execution of arbitrary code
200909-01 Linux-PAM: Privilege escalation
200908-10 Dillo: User-assisted execution of arbitrary code
200908-09 DokuWiki: Local file inclusion
200908-08 ISC DHCP: dhcpd Denial of service
200908-07 Perl Compress::Raw modules: Denial of service
200908-06 CDF: User-assisted execution of arbitrary code
200908-05 Subversion: Remote execution of arbitrary code
200908-04 Adobe products: Multiple vulnerabilities
200908-03 libTIFF: User-assisted execution of arbitrary code
200908-02 BIND: Denial of service
200908-01 OpenSC: Multiple vulnerabilities
200907-16 Python: Integer overflows
200907-15 Nagios: Execution of arbitrary code
200907-14 Rasterbar libtorrent: Directory traversal
200907-13 PulseAudio: Local privilege escalation
200907-12 ISC DHCP: dhcpclient Remote execution of arbitrary code
200907-11 GStreamer plug-ins: User-assisted execution of arbitrary code
200907-10 Syslog-ng: Chroot escape
200907-09 Cyrus-SASL: Execution of arbitrary code
200907-08 Multiple Ralink wireless drivers: Execution of arbitrary code
200907-07 ModPlug: User-assisted execution of arbitrary code
200907-06 Adobe Reader: User-assisted execution of arbitrary code
200907-05 git: git-daemon Denial of service
200907-04 Apache: Multiple vulnerabilities
200907-03 APR Utility Library: Multiple vulnerabilities
200907-02 ModSecurity: Denial of service
200907-01 libwmf: User-assisted execution of arbitrary code
200906-05 Wireshark: Multiple vulnerabilities
200906-04 Apache Tomcat JK Connector: Information disclosure
200906-03 phpMyAdmin: Multiple vulnerabilities
200906-02 Ruby: Denial of service
200906-01 libpng: Information disclosure
200905-09 libsndfile: User-assisted execution of arbitrary code
200905-08 NTP: Remote execution of arbitrary code
200905-07 Pidgin: Multiple vulnerabilities
200905-06 acpid: Denial of service
200905-05 FreeType: Multiple vulnerabilities
200905-04 GnuTLS: Multiple vulnerabilities
200905-03 IPSec Tools: Denial of service
200905-02 Cscope: User-assisted execution of arbitrary code
200905-01 Asterisk: Multiple vulnerabilities
200904-20 CUPS: Multiple vulnerabilities
200904-19 LittleCMS: Multiple vulnerabilities
200904-18 udev: Multiple vulnerabilities
200904-17 Adobe Reader: User-assisted execution of arbitrary code
200904-16 libsndfile: User-assisted execution of arbitrary code
200904-15 mpg123: User-assisted execution of arbitrary code
200904-14 F-PROT Antivirus: Multiple Denial of Service vulnerabilities
200904-13 Ventrilo: Denial of service
200904-12 Wicd: Information disclosure
200904-11 Tor: Multiple vulnerabilities
200904-10 Avahi: Denial of service
200904-09 MIT Kerberos 5: Multiple vulnerabilities
200904-08 OpenSSL: Denial of service
200904-07 Xpdf: Untrusted search path
200904-06 Eye of GNOME: Untrusted search path
200904-05 ntp: Certificate validation error
200904-04 WeeChat: Denial of service
200904-03 Gnumeric: Untrusted search path
200904-02 GLib: Execution of arbitrary code
200904-01 Openfire: Multiple vulnerabilities
200903-41 gedit: Untrusted search path
200903-40 Analog: Denial of service
200903-39 pam_krb5: Privilege escalation
200903-38 Squid: Multiple Denial of Service vulnerabilities
200903-37 Ghostscript: User-assisted execution of arbitrary code
200903-36 MLDonkey: Information disclosure
200903-35 Muttprint: Insecure temporary file usage
200903-34 Amarok: User-assisted execution of arbitrary code
200903-33 FFmpeg: Multiple vulnerabilities
200903-32 phpMyAdmin: Multiple vulnerabilities
200903-31 libcdaudio: User-assisted execution of arbitrary code
200903-30 Opera: Multiple vulnerabilities
200903-29 BlueZ: Arbitrary code execution
200903-28 libpng: Multiple vulnerabilities
200903-27 ProFTPD: Multiple vulnerabilities
200903-26 TMSNC: Execution of arbitrary code
200903-25 Courier Authentication Library: SQL Injection vulnerability
200903-24 Shadow: Privilege escalation
200903-23 Adobe Flash Player: Multiple vulnerabilities
200903-22 Ganglia: Execution of arbitrary code
200903-21 cURL: Arbitrary file access
200903-20 WebSVN: Multiple vulnerabilities
200903-19 Xerces-C++: Denial of service
200903-18 Openswan: Insecure temporary file creation
200903-17 Real VNC: User-assisted execution of arbitrary code
200903-16 Epiphany: Untrusted search path
200903-15 git: Multiple vulnerabilties
200903-14 BIND: Incorrect signature verification
200903-13 MPFR: Denial of service
200903-12 OptiPNG: User-assisted execution of arbitrary code
200903-11 PyCrypto: Execution of arbitrary code
200903-10 Irrlicht: User-assisted execution of arbitrary code
200903-09 OpenTTD: Execution of arbitrary code
200903-08 gEDA: Insecure temporary file creation
200903-07 Samba: Data disclosure
200903-06 nfs-utils: Access restriction bypass
200903-05 PDFjam: Multiple vulnerabilities
200903-04 DevIL: User-assisted execution of arbitrary code
200903-03 Audacity: User-assisted execution of arbitrary code
200903-02 ZNC: Privilege escalation
200903-01 Vinagre: User-assisted execution of arbitrary code
200902-06 GNU Emacs, XEmacs: Multiple vulnerabilities
200902-05 KTorrent: Multiple vulnerabilitites
200902-04 xterm: User-assisted arbitrary commands execution
200902-03 Valgrind: Untrusted search path
200902-02 OpenSSL: Certificate validation error
200902-01 sudo: Privilege escalation
200901-15 Net-SNMP: Denial of service
200901-14 Scilab: Insecure temporary file usage
200901-13 Pidgin: Multiple vulnerabilities
200901-12 noip-updater: Execution of arbitrary code
200901-11 Avahi: Denial of service
200901-10 GnuTLS: Certificate validation error
200901-09 Adobe Reader: User-assisted execution of arbitrary code
200901-08 Online-Bookmarks: Multiple vulnerabilities
200901-07 MPlayer: Multiple vulnerabilities
200901-06 Tremulous: User-assisted execution of arbitrary code
200901-05 Streamripper: Multiple vulnerabilities
200901-04 D-Bus: Denial of service
200901-03 pdnsd: Denial of Service and cache poisoning
200901-02 JHead: Multiple vulnerabilities
200901-01 NDISwrapper: Arbitrary remote code execution