Security
Security
This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.
| ID | Title |
|---|---|
| 201612-56 | Xen: Multiple vulnerabilities |
| 201612-55 | libjpeg-turbo: User-assisted execution of arbitrary code |
| 201612-54 | Chicken: Multiple vulnerabilities |
| 201612-53 | CyaSSL: Multiple vulnerabilities |
| 201612-52 | Pillow: Multiple vulnerabilities |
| 201612-51 | Icinga: Privilege escalation |
| 201612-50 | Openfire: Multiple vulnerabilities |
| 201612-49 | mod_wsgi: Privilege escalation |
| 201612-48 | Firejail: Multiple vulnerabilities |
| 201612-47 | Samba: Multiple vulnerabilities |
| 201612-46 | Xerces-C++: Multiple vulnerabilities |
| 201612-45 | Tor: Multiple vulnerabilities |
| 201612-44 | Roundcube: Arbitrary code execution |
| 201612-43 | Node.js: Multiple vulnerabilities |
| 201612-42 | Zabbix: Multiple vulnerabilities |
| 201612-41 | WebKitGTK+: Multiple vulnerabilities |
| 201612-40 | SQUASHFS: Multiple vulnerabilities |
| 201612-39 | Bash: Arbitrary code execution |
| 201612-38 | Botan: Multiple vulnerabilities |
| 201612-37 | Pixman: Buffer overflow |
| 201612-36 | TigerVNC: Integer overflow |
| 201612-35 | XStream: Remote execution of arbitrary code |
| 201612-34 | systemd: Multiple vulnerabilities |
| 201612-33 | GPL Ghostscript: User-assisted execution of arbitrary code |
| 201612-32 | elfutils: Heap-based buffer overflow |
| 201612-31 | exFAT: Multiple vulnerabilities |
| 201612-30 | SoX: User-assisted execution of arbitrary code |
| 201612-29 | libmms: Remote execution of arbitrary code |
| 201612-28 | Docker: Privilege escalation |
| 201612-27 | VirtualBox: Multiple vulnerabilities |
| 201612-26 | OpenJPEG: Multiple vulnerabilities |
| 201612-25 | CrackLib: Buffer overflow |
| 201612-24 | Binutils: Multiple vulnerabilities |
| 201612-23 | socat: Multiple vulnerabilities |
| 201612-22 | Coreutils: Arbitrary code execution |
| 201612-21 | SQLite: Multiple vulnerabilities |
| 201612-20 | jq: Buffer overflow |
| 201612-19 | Mercurial: Multiple vulnerabilities |
| 201612-18 | OpenSSH: Multiple vulnerabilities |
| 201612-17 | PECL HTTP: Remote execution of arbitrary code |
| 201612-16 | OpenSSL: Multiple vulnerabilities |
| 201612-15 | ARJ: Multiple vulnerabilities |
| 201612-14 | util-linux: Arbitrary code execution |
| 201612-13 | nghttp2: Denial of service |
| 201612-12 | Patch: Denial of service |
| 201612-11 | Chromium: Multiple vulnerabilities |
| 201612-10 | libvirt: Directory traversal |
| 201612-09 | GD: Multiple vulnerabilities |
| 201612-08 | LinuxCIFS utils: Buffer overflow |
| 201612-07 | dpkg: Arbitrary code execution |
| 201612-06 | nghttp2: Heap-use-after-free |
| 201612-05 | Pygments: Arbitrary code execution |
| 201612-04 | BusyBox: Multiple vulnerabilities |
| 201612-03 | libsndfile: Multiple vulnerabilities |
| 201612-02 | DavFS2: Local privilege escalation |
| 201612-01 | GnuPG: RNG output is predictable |
| 201611-22 | PHP: Multiple vulnerabilities |
| 201611-21 | ImageMagick: Multiple vulnerabilities |
| 201611-20 | TestDisk: User-assisted execution of arbitrary code |
| 201611-19 | Tar: Extract pathname bypass |
| 201611-18 | Adobe Flash Player: Multiple vulnerabilities |
| 201611-17 | RPCBind: Denial of service |
| 201611-16 | Chromium: Multiple vulnerabilities |
| 201611-15 | Poppler: Multiple vulnerabilities |
| 201611-14 | MIT Kerberos 5: Multiple vulnerabilities |
| 201611-13 | MongoDB: Denial of service |
| 201611-12 | imlib2: Multiple vulnerabilities |
| 201611-11 | QEMU: Multiple vulnerabilities |
| 201611-10 | libuv: Privilege escalation |
| 201611-09 | Xen: Multiple vulnerabilities |
| 201611-08 | libpng: Multiple vulnerabilities |
| 201611-07 | polkit: Heap-corruption on duplicate IDs |
| 201611-06 | xinetd: Privilege escalation |
| 201611-05 | tnftp: Arbitrary code execution |
| 201611-04 | Oracle JRE/JDK: Multiple vulnerabilities |
| 201611-03 | LibreOffice, OpenOffice: Multiple vulnerabilities |
| 201611-02 | OpenVPN: Multiple vulnerabilities |
| 201611-01 | UnZip: Multiple vulnerabilities |
| 201610-11 | GNU Wget: Multiple vulnerabilities |
| 201610-10 | Adobe Flash Player: Multiple vulnerabilities |
| 201610-09 | Chromium: Multiple vulnerabilities |
| 201610-08 | Oracle JRE/JDK: Multiple vulnerabilities |
| 201610-07 | BIND: Multiple vulnerabilities |
| 201610-06 | MySQL and MariaDB: Multiple vulnerabilities |
| 201610-05 | Subversion, Serf: Multiple Vulnerabilities |
| 201610-04 | libgcrypt: Multiple vulnerabilities |
| 201610-03 | Quagga: Arbitrary code execution |
| 201610-02 | Apache: Multiple vulnerabilities |
| 201610-01 | Groovy: Arbitrary code execution |
| 201609-02 | Bundler: Insecure installation |
| 201609-01 | QEMU: Multiple vulnerabilities |
| 201608-01 | OptiPNG: Multiple vulnerabilities |
| 201607-17 | BeanShell: Arbitrary code execution |
| 201607-16 | arpwatch: Privilege escalation |
| 201607-15 | NTP: Multiple vulnerabilities |
| 201607-14 | Ansible: Privilege escalation |
| 201607-13 | libbsd: Arbitrary code execution |
| 201607-12 | Exim: Arbitrary code execution |
| 201607-11 | Bugzilla: Multiple vulnerabilities |
| 201607-10 | Varnish: Multiple vulnerabilities |
| 201607-09 | Commons-BeanUtils: Arbitrary code execution |
| 201607-08 | Dropbear: Privilege escalation |
| 201607-07 | Chromium: Multiple vulnerabilities |
| 201607-06 | CUPS: Buffer overflow |
| 201607-05 | Cacti: Multiple vulnerabilities |
| 201607-04 | GD: Multiple vulnerabilities |
| 201607-03 | Adobe Flash Player: Multiple vulnerabilities |
| 201607-02 | libpcre: Multiple Vulnerabilities |
| 201607-01 | Squid: Multiple vulnerabilities |
| 201606-19 | kwalletd: Information disclosure |
| 201606-18 | IcedTea: Multiple vulnerabilities |
| 201606-17 | hostapd and wpa_supplicant: Multiple vulnerabilities |
| 201606-16 | PLIB: Buffer overflow vulnerability |
| 201606-15 | FreeXL: Multiple vulnerabilities |
| 201606-14 | ImageMagick: Multiple vulnerabilities |
| 201606-13 | sudo: Unauthorized privilege escalation in sudoedit |
| 201606-12 | libssh and libssh2: Multiple vulnerabilities |
| 201606-11 | claws-mail: Multiple Vulnerabilities |
| 201606-10 | PHP: Multiple vulnerabilities |
| 201606-09 | FFmpeg: Multiple vulnerabilities |
| 201606-08 | Adobe Flash Player: Multiple vulnerabilities |
| 201606-07 | dhcpcd: Multiple vulnerabilities |
| 201606-06 | nginx: Multiple vulnerabilities |
| 201606-05 | spice: Multiple vulnerabilities |
| 201606-04 | GnuPG: Multiple vulnerabilities |
| 201606-03 | libjpeg-turbo: Multiple vulnerabilities |
| 201606-02 | Puppet Server and Agent: Multiple vulnerabilities |
| 201606-01 | PuTTY: Multiple vulnerabilities |
| 201605-06 | Mozilla Products: Multiple vulnerabilities |
| 201605-05 | Linux-PAM: Multiple vulnerabilities |
| 201605-04 | rsync: Multiple vulnerabilities |
| 201605-03 | libfpx: Denial of service |
| 201605-02 | Chromium: Multiple vulnerabilities |
| 201605-01 | Git: Multiple vulnerabilities |
| 201604-05 | Wireshark: Multiple vulnerabilities |
| 201604-04 | libksba: Multiple vulnerabilities |
| 201604-03 | Xen: Multiple vulnerabilities |
| 201604-02 | Xalan-Java: Arbitrary code execution |
| 201604-01 | QEMU: Multiple vulnerabilities |
| 201603-15 | OpenSSL: Multiple vulnerabilities |
| 201603-14 | IcedTea: Multiple vulnerabilities |
| 201603-13 | Libreswan: Multiple Vulnerabilities |
| 201603-12 | FlightGear, SimGear: Multiple vulnerabilities |
| 201603-11 | Oracle JRE/JDK: Multiple vulnerabilities |
| 201603-10 | QtGui: Multiple vulnerabilities |
| 201603-09 | Chromium: Multiple vulnerabilities |
| 201603-08 | VLC: Multiple vulnerabilities |
| 201603-07 | Adobe Flash Player: Multiple vulnerabilities |
| 201603-06 | FFmpeg: Multiple vulnerabilities |
| 201603-05 | LibreOffice, OpenOffice: Multiple vulnerabilities |
| 201603-04 | FUSE: incorrect filtering of environment variables leading to privilege escalation |
| 201603-03 | Roundcube: Multiple Vulnerabilities |
| 201603-02 | OSC: Shell command injection |
| 201603-01 | GIMP: Multiple vulnerabilities |
| 201602-03 | libwmf: Multiple vulnerabilities |
| 201602-02 | GNU C Library: Multiple vulnerabilities |
| 201602-01 | QEMU: Multiple vulnerabilities |
| 201601-05 | OpenSSL: Multiple vulnerabilities |
| 201601-04 | OpenSMTPD: Multiple vulnerabilities |
| 201601-03 | Adobe Flash Player: Multiple vulnerabilities |
| 201601-02 | WebKitGTK+: Multiple vulnerabilities |
| 201601-01 | OpenSSH: Multiple vulnerabilities |