Security
Security
This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.
| ID | Title |
|---|---|
| 202212-07 | libksba: Remote Code Execution |
| 202212-06 | OpenSSH: Multiple Vulnerabilities |
| 202212-05 | Mozilla Network Security Service (NSS): Multiple Vulnerabilities |
| 202212-04 | LibreOffice: Arbitrary Code Execution |
| 202212-03 | Oracle VirtualBox: Multiple Vulnerabilities |
| 202212-02 | Unbound: Multiple Vulnerabilities |
| 202212-01 | curl: Multiple Vulnerabilities |
| 202211-11 | GPL Ghostscript: Multiple Vulnerabilities |
| 202211-10 | Pillow: Multiple Vulnerabilities |
| 202211-09 | xterm: Arbitrary Code Execution |
| 202211-08 | sudo: Heap-Based Buffer Overread |
| 202211-07 | sysstat: Arbitrary Code Execution |
| 202211-06 | Mozilla Firefox: Multiple Vulnerabilities |
| 202211-05 | Mozilla Thunderbird: Multiple Vulnerabilities |
| 202211-04 | PostgreSQL: Multiple Vulnerabilities |
| 202211-03 | PHP: Multiple Vulnerabilities |
| 202211-02 | lesspipe: Arbitrary Code Exeecution |
| 202211-01 | OpenSSL: Multiple Vulnerabilities |
| 202210-42 | zlib: Multiple vulnerabilities |
| 202210-41 | android-tools: Multiple Vulnerabilities |
| 202210-40 | SQLite: Multiple Vulnerabilities |
| 202210-39 | libxml2: Multiple Vulnerabilities |
| 202210-38 | Expat: Denial of Service |
| 202210-37 | PJSIP: Multiple Vulnerabilities |
| 202210-36 | libjxl: Denial of Service |
| 202210-35 | Mozilla Thunderbird: Multiple Vulnerabilities |
| 202210-34 | Mozilla Firefox: Multiple Vulnerabilities |
| 202210-33 | Libtirpc: Denial of Service |
| 202210-32 | hiredis, hiredis-py: Multiple Vulnerabilities |
| 202210-31 | OpenEXR: Multiple Vulnerabilities |
| 202210-30 | X.Org X server, XWayland: Multiple Vulnerabilities |
| 202210-29 | Net-SNMP: Multiple Vulnerabilities |
| 202210-28 | exif: Denial of Service |
| 202210-27 | open-vm-tools: Local Privilege Escalation |
| 202210-26 | Shadow: TOCTOU Race |
| 202210-25 | ISC BIND: Multiple Vulnerabilities |
| 202210-24 | FreeRDP: Multiple Vulnerabilities |
| 202210-23 | libksba: Remote Code Execution |
| 202210-22 | RPM: Multiple Vulnerabilities |
| 202210-21 | FasterXML jackson-databind: Multiple vulnerabilities |
| 202210-20 | Nicotine+: Denial of Service |
| 202210-19 | Apptainer: Lack of Digital Signature Hash Verification |
| 202210-18 | Sofia-SIP: Multiple Vulnerabilities |
| 202210-17 | JHead: Multiple Vulnerabilities |
| 202210-16 | Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities |
| 202210-15 | GDAL: Heap Buffer Overflow |
| 202210-14 | Gitea: Multiple Vulnerabilities |
| 202210-13 | libgcrypt: Multiple Vulnerabilities |
| 202210-12 | Lighttpd: Denial of Service |
| 202210-11 | schroot: Denial of Service |
| 202210-10 | LibTIFF: Multiple Vulnerabilities |
| 202210-09 | Rust: Multiple Vulnerabilities |
| 202210-08 | Tcpreplay: Multiple Vulnerabilities |
| 202210-07 | Deluge: Cross-Site Scripting |
| 202210-06 | libvirt: Multiple Vulnerabilities |
| 202210-05 | virglrenderer: Multiple vulnerabilities |
| 202210-04 | Wireshark: Multiple Vulnerabilities |
| 202210-03 | libxml2: Multiple Vulnerabilities |
| 202210-02 | OpenSSL: Multiple Vulnerabilities |
| 202210-01 | Open Asset Import Library ("assimp"): Multiple Vulnerabilities |
| 202209-27 | Mozilla Firefox: Multiple Vulnerabilities |
| 202209-26 | Go: Multiple Vulnerabilities |
| 202209-25 | Zutty: Arbitrary Code Execution |
| 202209-24 | Expat: Multiple Vulnerabilities |
| 202209-23 | Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities |
| 202209-22 | Kitty: Arbitrary Code Execution |
| 202209-21 | Poppler: Arbitrary Code Execution |
| 202209-20 | PHP: Multiple Vulnerabilities |
| 202209-19 | GraphicsMagick: Multiple Vulnerabilities |
| 202209-18 | Mozilla Thunderbird: Multiple Vulnerabilities |
| 202209-17 | Redis: Multiple Vulnerabilities |
| 202209-16 | BlueZ: Multiple Vulnerabilities |
| 202209-15 | Oracle JDK/JRE: Multiple vulnerabilities |
| 202209-14 | Fetchmail: Multiple Vulnerabilities |
| 202209-13 | libaacplus: Denial of Service |
| 202209-12 | GRUB: Multiple Vulnerabilities |
| 202209-11 | HarfBuzz: Multiple vulnerabilities |
| 202209-10 | Logcheck: Root privilege escalation |
| 202209-09 | Smarty: Multiple vulnerabilities |
| 202209-08 | Smokeping: Multiple vulnerabilities |
| 202209-07 | Mrxvt: Arbitrary Code Execution |
| 202209-06 | Rizin: Multiple Vulnerabilities |
| 202209-05 | OpenJDK: Multiple Vulnerabilities |
| 202209-04 | OpenJPEG: Multiple Vulnerabilities |
| 202209-03 | OpenSC: Multiple Vulnerabilities |
| 202209-02 | IBM Spectrum Protect: Multiple Vulnerabilities |
| 202209-01 | GNU Gzip, XZ Utils: Arbitrary file write |
| 202208-39 | WebKitGTK+: Multiple Vulnerabilities |
| 202208-38 | Mozilla Thunderbird: Multiple Vulnerabilities |
| 202208-37 | Mozilla Firefox: Multiple Vulnerabilities |
| 202208-36 | Oracle VirtualBox: Multiple Vulnerabilities |
| 202208-35 | Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities |
| 202208-34 | Apache Tomcat: Multiple Vulnerabilities |
| 202208-33 | Gnome Shell, gettext, libcroco: Multiple Vulnerabilities |
| 202208-32 | Vim, gVim: Multiple Vulnerabilities |
| 202208-31 | GStreamer, GStreamer Plugins: Multiple Vulnerabilities |
| 202208-30 | GNU Binutils: Multiple Vulnerabilities |
| 202208-29 | Nokogiri: Multiple Vulnerabilities |
| 202208-28 | Puma: Multiple Vulnerabilities |
| 202208-27 | QEMU: Multiple Vulnerabilities |
| 202208-26 | libarchive: Multiple Vulnerabilities |
| 202208-25 | Chromium, Google Chrome, Microsoft Edge, QtWebEngine: Multiple Vulnerabilities |
| 202208-24 | GNU C Library: Multiple Vulnerabilities |
| 202208-23 | Xen: Multiple Vulnerabilities |
| 202208-22 | xterm: Multiple Vulnerabilities |
| 202208-21 | libebml: Heap buffer overflow vulnerability |
| 202208-20 | Apache HTTPD: Multiple Vulnerabilities |
| 202208-19 | aiohttp: Open redirect vulnerability |
| 202208-18 | Motion: Denial of service |
| 202208-17 | Nextcloud: Multiple Vulnerabilities |
| 202208-16 | faac: Denial of service |
| 202208-15 | isync: Multiple Vulnerabilities |
| 202208-14 | Mozilla Thunderbird: Multiple Vulnerabilities |
| 202208-13 | libass: Denial of service |
| 202208-12 | mdbtools: Multiple Vulnerabilities |
| 202208-11 | Yubico pam-u2f: Local PIN Bypass vulnerability |
| 202208-10 | Spice Server: Multiple Vulnerabilities |
| 202208-09 | HashiCorp Consul: Multiple Vulnerabilities |
| 202208-08 | Mozilla Firefox: Multiple Vulnerabilities |
| 202208-07 | LibRaw: Stack buffer overread |
| 202208-06 | lxml: Multiple Vulnerabilities |
| 202208-05 | Icinga Web 2: Multiple Vulnerabilities |
| 202208-04 | libmcpp: Denial of service |
| 202208-03 | Babel: Remote code execution |
| 202208-02 | Go: Multiple Vulnerabilities |
| 202208-01 | 3MF Consortium lib3mf: Remote code execution |
| 202207-01 | HashiCorp Vault: Multiple Vulnerabilities |
| 202202-03 | Mozilla Firefox: Multiple vulnerabilities |
| 202202-02 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202202-01 | WebkitGTK+: Multiple vulnerabilities |
| 202201-02 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202201-01 | Polkit: Local privilege escalation |