Gentoo Linux Security Advisories (GLSA)

This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.

ID Title
202107-55 SDL 2: Multiple vulnerabilities
202107-54 libyang: Multiple vulnerabilities
202107-53 Leptonica: Multiple vulnerabilities
202107-52 Apache Velocity: Multiple vulnerabilities
202107-51 IcedTeaWeb: Multiple vulnerabilities
202107-50 Singularity: Remote code execution
202107-49 Chromium, Google Chrome: Multiple vulnerabilities
202107-48 systemd: Multiple vulnerabilities
202107-47 libpano13: Format string vulnerability
202107-46 mpv: Format string vulnerability
202107-45 PyCharm Community, Professional: Remote code execution
202107-44 libslirp: Multiple vulnerabilities
202107-43 RPM: Multiple vulnerabilities
202107-42 PJSIP: Multiple vulnerabilities
202107-41 Dovecot: Multiple vulnerabilities
202107-40 MediaWiki: Multiple vulnerabilities
202107-39 Apache Commons FileUpload: Multiple vulnerabilities
202107-38 Apache: Multiple vulnerabilities
202107-37 Apache Commons Collections: Remote code execution
202107-36 urllib3: Multiple vulnerabilities
202107-35 OpenSCAD: Buffer overflow
202107-34 FluidSynth: Remote code execution
202107-33 Pillow: Multiple vulnerabilities
202107-32 Apache Thrift: Multiple vulnerabilities
202107-31 polkit: Privilege escalation
202107-30 Xen: Multiple vulnerabilities
202107-29 ConnMan: Multiple vulnerabilities
202107-28 GNU Chess: Buffer overflow
202107-27 OpenEXR: Multiple vulnerabilities
202107-26 runC: Container breakout
202107-25 Tor: Multiple vulnerabilities
202107-24 Binutils: Multiple vulnerabilities
202107-23 Docker: Multiple vulnerabilities
202107-22 InspIRCd: Information disclosure
202107-21 Wireshark: Multiple vulnerabilities
202107-20 Redis: Multiple vulnerabilities
202107-19 Jinja: Denial of service
202107-18 BladeEnc: Buffer overflow
202107-17 Mechanize: Command injection
202107-16 Privoxy: Multiple vulnerabilities
202107-15 blktrace: Buffer overflow
202107-14 rclone: Weak random number generation
202107-13 GLib: Multiple vulnerabilities
202107-12 Schism Tracker: Multiple vulnerabilities
202107-11 OpenDoas: Insufficient environment filtering
202107-10 TCG TPM2 Software Stack: Information disclosure
202107-09 Mozilla Firefox: Multiple vulnerabilities
202107-08 PostSRSd: Denial of service
202107-07 glibc: Multiple vulnerabilities
202107-06 Chromium, Google Chrome: Multiple vulnerabilities
202107-05 libxml2: Multiple vulnerabilities
202107-04 Graphviz: Multiple vulnerabilities
202107-03 libqb: Insecure temporary file
202107-02 FreeImage: Multiple vulnerabilities
202107-01 corosync: Denial of service
202105-39 Ceph: Multiple vulnerabilities
202105-38 nginx: Remote code execution
202105-37 Nextcloud Desktop Client: User-assisted execution of arbitrary code
202105-36 cURL: Multiple vulnerabilities
202105-35 OpenSSH: Multiple vulnerabilities
202105-34 Bash: Privilege escalation
202105-33 containerd: Multiple vulnerabilities
202105-32 PostgreSQL: Multiple vulnerabilities
202105-31 Nettle: Denial of service
202105-30 MuPDF: Multiple vulnerabilities
202105-29 Tar: Denial of service
202105-28 MariaDB: Multiple vulnerabilities
202105-27 MySQL: Multiple vulnerabilities
202105-26 SpamAssassin: Arbitrary command execution
202105-25 OpenVPN: Authentication bypass
202105-24 FFmpeg: Multiple vulnerabilities
202105-23 PHP: Multiple vulnerabilities
202105-22 Samba: Multiple vulnerabilities
202105-21 Tcpreplay: Multiple vulnerabilities
202105-20 Dnsmasq: DNS cache poisoning
202105-19 Firejail: Privilege escalation
202105-18 LittleCMS: User-assisted execution of arbitrary code
202105-17 rxvt-unicode: User-assisted execution of arbitrary code
202105-16 X.Org X11 library: Denial of service
202105-15 Prosŏdy IM: Multiple vulnerabilities
202105-14 Squid: Multiple vulnerabilities
202105-13 Mumble: User-assisted execution of arbitrary code
202105-12 OpenSMTPD: Multiple vulnerabilities
202105-11 GNU Screen: User-assisted execution of arbitrary code
202105-10 GNOME Autoar: User-assisted execution of arbitrary code
202105-09 BusyBox: Denial of service
202105-08 ICU: Multiple vulnerabilities
202105-07 Telegram: Security bypass
202105-06 Smarty: Multiple vulnerabilities
202105-05 Mutt, NeoMutt: Denial of service
202105-04 Boost: Buffer overflow
202105-03 GPT fdisk: Integer underflow
202105-02 stunnel: Improper certificate validation
202105-01 Exim: Multiple vulnerabilities
202104-10 Mozilla Firefox: Multiple vulnerabilities
202104-09 Mozilla Thunderbird: Multiple vulnerabilities
202104-08 Chromium, Google Chrome: Multiple vulnerabilities
202104-07 ClamAV: Denial of service
202104-06 libTIFF: Multiple vulnerabilities
202104-05 GRUB: Multiple vulnerabilities
202104-04 Python: Multiple vulnerabilities
202104-03 WebkitGTK+: Multiple vulnerabilities
202104-02 X.Org X Server: Privilege escalation
202104-01 Git: User-assisted execution of arbitrary code
202103-04 SQLite: Remote code execution
202103-03 OpenSSL: Multiple vulnerabilities
202103-02 Redis: Remote code execution
202103-01 Salt: Multiple vulnerabilities
202102-02 Mozilla Thunderbird: Multiple vulnerabilities
202102-01 Mozilla Firefox: Multiple vulnerabilities
202101-38 NSD: Symbolic link traversal
202101-37 VLC: Buffer overflow
202101-36 ImageMagick: Command injection
202101-35 phpMyAdmin: Multiple vulnerabilities
202101-34 Telegram Desktop: Multiple vulnerabilities
202101-33 sudo: Multiple vulnerabilities
202101-32 Mutt, NeoMutt: Information disclosure
202101-31 Cacti: Remote code execution
202101-30 Qt WebEngine: Multiple vulnerabilities
202101-29 OpenJPEG: Multiple vulnerabilities
202101-28 ncurses: Multiple vulnerabilities
202101-27 FreeRADIUS: Root privilege escalation
202101-26 f2fs-tools: Multiple vulnerabilities
202101-25 Mutt: Denial of service
202101-24 cfitsio: Multiple vulnerabilities
202101-23 PEAR Archive_Tar: Directory traversal
202101-22 libvirt: Unintended access to /dev/mapper/control
202101-21 Flatpak: Sandbox escape
202101-20 glibc: Multiple vulnerabilities
202101-19 OpenJDK: Multiple vulnerabilities
202101-18 Python: Multiple vulnerabilities
202101-17 Dnsmasq: Multiple vulnerabilities
202101-16 KDE Connect: Denial of service
202101-15 VirtualBox: Multiple vulnerabilities
202101-14 Mozilla Thunderbird: Remote code execution
202101-13 Chromium, Google Chrome: Multiple vulnerabilities
202101-12 Wireshark: Multiple vulnerabilities
202101-11 Zabbix: Root privilege escalation
202101-10 Asterisk: Multiple vulnerabilities
202101-09 VirtualBox: Multiple vulnerabilities
202101-08 Pillow: Multiple vulnerabilities
202101-07 NodeJS: Multiple vulnerabilities
202101-06 Ark: Symlink vulnerability
202101-05 Chromium, Google Chrome: Multiple vulnerabilities
202101-04 Mozilla Firefox: Remote code execution
202101-03 ipmitool: Multiple vulnerabilities
202101-02 Firejail: Multiple vulnerabilities
202101-01 Dovecot: Multiple vulnerabilities