Security
Security
This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.
| ID | Title |
|---|---|
| 201412-53 | MIT Kerberos 5: User-assisted execution of arbitrary code |
| 201412-52 | Wireshark: Multiple vulnerabilities |
| 201412-51 | Asterisk: Multiple vulnerabilities |
| 201412-50 | getmail: Information disclosure |
| 201412-49 | fish: Multiple vulnerabilities |
| 201412-48 | file: Denial of service |
| 201412-47 | TORQUE Resource Manager: Multiple vulnerabilities |
| 201412-46 | LittleCMS: Denial of service |
| 201412-45 | Facter: Privilege escalation |
| 201412-44 | policycoreutils: Privilege escalation |
| 201412-43 | MuPDF: User-assisted execution of arbitrary code |
| 201412-42 | Xen: Denial of service |
| 201412-41 | OpenVPN: Denial of service |
| 201412-40 | FLAC: User-assisted execution of arbitrary code |
| 201412-39 | OpenSSL: Multiple vulnerabilities |
| 201412-38 | Icecast: Multiple Vulnerabilities |
| 201412-37 | QEMU: Multiple Vulnerabilities |
| 201412-36 | libvirt: Denial of service |
| 201412-35 | RSYSLOG: Denial of service |
| 201412-34 | NTP: Multiple vulnerabilities |
| 201412-33 | PowerDNS Recursor: Multiple vulnerabilities |
| 201412-32 | sendmail: Information disclosure |
| 201412-31 | ZNC: Denial of service |
| 201412-30 | Varnish: Multiple vulnerabilities |
| 201412-29 | Apache Tomcat: Multiple vulnerabilities |
| 201412-28 | Ruby on Rails: Multiple vulnerabilities |
| 201412-27 | Ruby: Denial of service |
| 201412-26 | strongSwan: Multiple Vulnerabilities |
| 201412-25 | QtGui: Denial of service |
| 201412-24 | OpenJPEG: Multiple vulnerabilities |
| 201412-23 | Nagios: Multiple vulnerabilities |
| 201412-22 | Django: Multiple vulnerabilities |
| 201412-21 | mod_wsgi: Privilege escalation |
| 201412-20 | GNUstep Base library: Denial of service |
| 201412-19 | PPP: Information disclosure |
| 201412-18 | FreeRDP: User-assisted execution of arbitrary code |
| 201412-17 | GPL Ghostscript: Multiple vulnerabilities |
| 201412-16 | CouchDB: Denial of service |
| 201412-15 | MCollective: Privilege escalation |
| 201412-14 | Xfig: User-assisted execution of arbitrary code |
| 201412-13 | Chromium: Multiple vulnerabilities |
| 201412-12 | D-Bus: Multiple Vulnerabilities |
| 201412-11 | AMD64 x86 emulation base libraries: Multiple vulnerabilities |
| 201412-10 | Multiple packages, Multiple vulnerabilities fixed in 2012 |
| 201412-09 | Multiple packages, Multiple vulnerabilities fixed in 2011 |
| 201412-08 | Multiple packages, Multiple vulnerabilities fixed in 2010 |
| 201412-07 | Adobe Flash Player: Multiple vulnerabilities |
| 201412-06 | libxml2: Denial of service |
| 201412-05 | Clam AntiVirus: Denial of service |
| 201412-04 | libvirt: Multiple vulnerabilities |
| 201412-03 | Dovecot: Denial of service |
| 201412-02 | nfs-utils: Information disclosure |
| 201412-01 | QEMU: Multiple Vulnerabilities |
| 201411-11 | Squid: Multiple vulnerabilities |
| 201411-10 | Asterisk: Multiple Vulnerabilities |
| 201411-09 | Ansible: Privilege escalation |
| 201411-08 | Aircrack-ng: User-assisted execution of arbitrary code |
| 201411-07 | Openswan: Denial of service |
| 201411-06 | Adobe Flash Player: Multiple vulnerabilities |
| 201411-05 | GNU Wget: Arbitrary code execution |
| 201411-04 | PHP: Multiple vulnerabilities |
| 201411-03 | TigerVNC: User-assisted execution of arbitrary code |
| 201411-02 | MySQL, MariaDB: Multiple vulnerabilities |
| 201411-01 | VLC: Multiple vulnerabilities |
| 201410-02 | Perl, Perl Locale-Maketext module: Multiple vulnerabilities |
| 201410-01 | Bash: Multiple vulnerabilities |
| 201409-10 | Bash: Code Injection (Updated fix for GLSA 201409-09) |
| 201409-09 | Bash: Code Injection |
| 201409-08 | libxml2: Denial of service |
| 201409-07 | c-icap: Denial of service |
| 201409-06 | Chromium: Multiple vulnerabilities |
| 201409-05 | Adobe Flash Player: Multiple vulnerabilities |
| 201409-04 | MySQL: Multiple vulnerabilities |
| 201409-03 | dhcpcd: Denial of service |
| 201409-02 | Net-SNMP: Denial of service |
| 201409-01 | Wireshark: Multiple vulnerabilities |
| 201408-19 | OpenOffice, LibreOffice: Multiple vulnerabilities |
| 201408-18 | NRPE: Multiple Vulnerabilities |
| 201408-17 | QEMU: Multiple vulnerabilities |
| 201408-16 | Chromium: Multiple vulnerabilities |
| 201408-15 | PostgreSQL: Multiple vulnerabilities |
| 201408-14 | stunnel: Information disclosure |
| 201408-13 | Jinja2: Multiple vulnerabilities |
| 201408-12 | Apache HTTP Server: Multiple vulnerabilities |
| 201408-11 | PHP: Multiple vulnerabilities |
| 201408-10 | Libgcrypt: Side-channel attack |
| 201408-09 | GNU Libtasn1: Multiple vulnerabilities |
| 201408-08 | file: Denial of service |
| 201408-07 | ModPlug XMMS Plugin: Multiple vulnerabilities |
| 201408-06 | libpng: Multiple vulnerabilities |
| 201408-05 | Adobe Flash Player: Multiple vulnerabilities |
| 201408-04 | Catfish: Multiple Vulnerabilities |
| 201408-03 | LibSSH: Information disclosure |
| 201408-02 | FreeType: Arbitrary code execution |
| 201408-01 | Zend Framework: SQL injection |
| 201407-05 | OpenSSL: Multiple vulnerabilities |
| 201407-04 | GnuPG: Denial of service |
| 201407-03 | Xen: Multiple Vunlerabilities |
| 201407-02 | Adobe Flash Player: Multiple vulnerabilities |
| 201407-01 | OpenTTD: Denial of service |
| 201406-36 | OpenLDAP: Multiple vulnerabilities |
| 201406-35 | Openfire: Multiple vulnerabilities |
| 201406-34 | KDE Libraries: Multiple vulnerabilities |
| 201406-33 | Wireshark: Multiple vulnerabilities |
| 201406-32 | IcedTea JDK: Multiple vulnerabilities |
| 201406-31 | Konqueror: Multiple vulnerabilities |
| 201406-30 | sudo: Privilege escalation |
| 201406-29 | spice-gtk: Privilege escalation |
| 201406-28 | Libav: Multiple vulnerabilities |
| 201406-27 | polkit, Spice-Gtk, systemd, HPLIP, libvirt: Privilege escalation |
| 201406-26 | Django: Multiple vulnerabilities |
| 201406-25 | Asterisk: Multiple vulnerabilities |
| 201406-24 | Dnsmasq: Denial of Service |
| 201406-23 | DenyHosts: Denial of service |
| 201406-22 | Network Audio System: Multiple vulnerabilities |
| 201406-21 | cURL: Multiple vulnerabilities |
| 201406-20 | nginx: Arbitrary code execution |
| 201406-19 | Mozilla Network Security Service: Multiple vulnerabilities |
| 201406-18 | rxvt-unicode: User-assisted execution of arbitrary code |
| 201406-17 | Adobe Flash Player: Multiple vulnerabilities |
| 201406-16 | cups-filters: Multiple vulnerabilities |
| 201406-15 | KDirStat: Arbitrary command execution |
| 201406-14 | Opera: Multiple vulnerabilities |
| 201406-13 | memcached: Multiple vulnerabilities |
| 201406-12 | FreeRADIUS: Arbitrary code execution |
| 201406-11 | libXfont: Multiple vulnerabilities |
| 201406-10 | lighttpd: Multiple vulnerabilities |
| 201406-09 | GnuTLS: Multiple vulnerabilities |
| 201406-08 | Adobe Flash Player: Multiple vulnerabilities |
| 201406-07 | Echoping: Buffer Overflow Vulnerabilities |
| 201406-06 | Mumble: Multiple vulnerabilities |
| 201406-05 | Mutt: Arbitrary code execution |
| 201406-04 | SystemTap: Denial of service |
| 201406-03 | Fail2ban: Multiple vulnerabilities |
| 201406-02 | libarchive: Multiple vulnerabilities |
| 201406-01 | D-Bus, GLib: Privilege escalation |
| 201405-28 | xmonad-contrib: Arbitrary code execution |
| 201405-27 | LibYAML: Arbitrary code execution |
| 201405-26 | X2Go Server: Privilege Escalation |
| 201405-25 | Symfony: Information disclosure |
| 201405-24 | Apache Portable Runtime, APR Utility Library: Denial of service |
| 201405-23 | lib3ds: User-assisted execution of arbitrary code |
| 201405-22 | Pidgin: Multiple vulnerabilities |
| 201405-21 | Charybdis, ShadowIRCd: Denial of service |
| 201405-20 | JBIG-KIT: Denial of service |
| 201405-19 | MCrypt: User-assisted execution of arbitrary code |
| 201405-18 | OpenConnect: User-assisted execution of arbitrary code |
| 201405-17 | Munin: Multiple vulnerabilities |
| 201405-16 | Mono: Denial of service |
| 201405-15 | util-linux: Multiple vulnerabilities |
| 201405-14 | Ruby OpenID: Denial of service |
| 201405-13 | Pango: Multiple vulnerabilities |
| 201405-12 | Ettercap: Multiple vulnerabilities |
| 201405-11 | Bacula: Information disclosure |
| 201405-10 | Rack: Multiple vulnerabilities |
| 201405-09 | ImageMagick: Multiple vulnerabilities |
| 201405-08 | ClamAV: Multiple vulnerabilities |
| 201405-07 | X.Org X Server: Multiple vulnerabilities |
| 201405-06 | OpenSSH: Multiple vulnerabilities |
| 201405-05 | Asterisk: Denial of service |
| 201405-04 | Adobe Flash Player: Multiple vulnerabilities |
| 201405-03 | WeeChat: Multiple vulnerabilities |
| 201405-02 | libSRTP: Denial of service |
| 201405-01 | udisks: Arbitrary code execution |
| 201404-07 | OpenSSL: Information Disclosure |
| 201404-06 | Mesa: Multiple vulnerabilities |
| 201404-05 | OpenAFS: Multiple vulnerabilities |
| 201404-04 | Crack: Arbitrary code execution |
| 201404-03 | OptiPNG: User-assisted execution of arbitrary code |
| 201404-02 | libproxy: User-assisted execution of arbitrary code |
| 201404-01 | CUPS: Arbitrary file read/write |
| 201403-08 | PlRPC: Arbitrary code execution |
| 201403-07 | grep: User-assisted execution of arbitrary code |
| 201403-06 | libupnp: Arbitrary code execution |
| 201403-05 | GNU Emacs: Multiple vulnerabilities |
| 201403-04 | QtCore: Denial of service |
| 201403-03 | file: Denial of service |
| 201403-02 | LibYAML: Arbitrary code execution |
| 201403-01 | Chromium, V8: Multiple vulnerabilities |
| 201402-29 | ArgyllCMS: User-assisted execution of arbitrary code |
| 201402-28 | Chrony: Multiple vulnerabilities |
| 201402-27 | pidgin-knotify: Arbitrary code execution |
| 201402-26 | libssh: Arbitrary code execution |
| 201402-25 | OpenSSL: Denial of service |
| 201402-24 | GnuPG, Libgcrypt: Multiple vulnerabilities |
| 201402-23 | libXfont: Multiple vulnerabilities |
| 201402-22 | TCPTrack: Arbitrary code execution |
| 201402-21 | libTIFF: Multiple vulnerabilities |
| 201402-20 | KVIrc: Multiple vulnerabilities |
| 201402-19 | libtar: Arbitraty code execution |
| 201402-18 | GNU Midnight Commander: User-assisted execution of arbitrary code |
| 201402-17 | Xpdf: User-assisted execution of arbitrary code |
| 201402-16 | FreeType: Multiple vulnerabilities |
| 201402-15 | Roundcube: Arbitrary code execution |
| 201402-14 | International Components for Unicode: Denial of service |
| 201402-13 | DjVu: User-assisted execution of arbitrary code |
| 201402-12 | PAM S/Key: Information disclosure |
| 201402-11 | Links: Denial of service |
| 201402-10 | PulseAudio: Insecure temporary file usage |
| 201402-09 | Apache mod_fcgid: Arbitrary code execution |
| 201402-08 | stunnel: Arbitrary code execution |
| 201402-07 | Freeciv: User-assisted execution of arbitrary code |
| 201402-06 | Adobe Flash Player: Multiple vulnerabilities |
| 201402-05 | Banshee: Arbitrary code execution |
| 201402-04 | libwww-perl: Multiple vulnerabilities |
| 201402-03 | Pixman: User-assisted execution of arbitrary code |
| 201402-02 | NVIDIA Drivers: Privilege Escalation |
| 201402-01 | GNU libmicrohttpd: Multiple vulnerabilities |
| 201401-34 | BIND: Denial of service |
| 201401-33 | Perl Digest-Base module: Arbitrary code execution |
| 201401-32 | Exim: Multiple vulnerabilities |
| 201401-31 | CEDET: Privilege escalation |
| 201401-30 | Oracle JRE/JDK: Multiple vulnerabilities |
| 201401-29 | VIPS: Privilege Escalation |
| 201401-28 | Tomboy: Privilege escalation |
| 201401-27 | GNU TeXmacs: Privilege escalation |
| 201401-26 | Zabbix: Shell command injection |
| 201401-25 | ldns: Arbitrary code execution |
| 201401-24 | INN: Man-in-the-middle attack |
| 201401-23 | sudo: Privilege escalation |
| 201401-22 | Active Record: SQL injection |
| 201401-21 | Poppler: Multiple vulnerabilities |
| 201401-20 | Cacti: Multiple vulnerabilities |
| 201401-19 | GMime: Arbitrary code execution |
| 201401-18 | OpenSC: Arbitrary code execution |
| 201401-17 | PCSC-Lite: Arbitrary code execution |
| 201401-16 | CCID: Arbitrary code execution |
| 201401-15 | Asterisk: Multiple vulnerabilities |
| 201401-14 | cURL: Multiple vulnerabilities |
| 201401-13 | VirtualBox: Multiple Vulnerabilities |
| 201401-12 | GNUstep Base library: Multiple vulnerabilities |
| 201401-11 | Perl, Locale Maketext Perl module: Multiple vulnerabilities |
| 201401-10 | libexif, exif: Multiple vulnerabilities |
| 201401-09 | Openswan: User-assisted execution of arbitrary code |
| 201401-08 | NTP: Traffic amplification |
| 201401-07 | libxslt: Denial of service |
| 201401-06 | Git: Privilege escalation |
| 201401-05 | ISC DHCP: Denial of service |
| 201401-04 | Python: Multiple vulnerabilities |
| 201401-03 | Nagstamon: Information disclosure |
| 201401-02 | Gajim: Information disclosure |
| 201401-01 | Libgdiplus: Arbitrary code execution |