strongSwan client could be made to crash or run programs if it received specially crafted network traffic.
Comment
Archive for October, 2025
152 results.
Xu Biang discovered a buffer overflow bug in the eap-mschapv2 plugin of strongSwan, an IKE/IPsec suite. The eap-mschapv2 plugin doesn’t correctly check the length of an EAP-MSCHAPv2 Failure Request packet on the client, which can cause an integer underflow that leads to a crash, and a heap-based buffer
Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code. For the oldstable distribution (bookworm), these problems have been fixed
Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in incorrect string equality checks, XML XXE/XEE attacks or incorrect certificate validation. For the stable distribution (trixie), these problems have been fixed in version 25.0.1+8-1~deb13u1.
Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in XML XXE/XEE attacks or incorrect certificate validation. For the oldstable distribution (bookworm), these problems have been fixed in version 17.0.17+10-1~deb12u1.
Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in incorrect string equality checks, XML XXE/XEE attacks or incorrect certificate validation. For the stable distribution (trixie), these problems have been fixed in version 21.0.9+10-1~deb13u1.
Initial build for PHP81_BC\strftime Update DokuWiki to version 2025-05-14b “Librarian”
Initial build for PHP81_BC\strftime Update DokuWiki to version 2025-05-14b “Librarian”
Go Cryptography could allow unintended access to network services.
A security issue was discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), this problem has been fixed in version 141.0.7390.122-1~deb12u1.
Several vulnerabilities were discovered in BIND, a DNS server implementation, which may result in cache poisoning or denial of service. For the oldstable distribution (bookworm), these problems have been fixed in version 1:9.18.41-1~deb12u1. For the stable distribution (trixie), these problems have been fixed in
It was discovered that insecure path handling in the Python interface to the Internet Archive/archive.org could result in overwriting a user’s files. For the oldstable distribution (bookworm), this problem has been fixed in version 3.3.0-2~deb12u1.
Brandon Da Costa and Mahdi Asfhar discovered a cross-site scripting vulnerability in the web client of the Tryton application platform. For the oldstable distribution (bookworm), this problem has been fixed in version 6.0.28+ds1-2+deb12u1. For the stable distribution (trixie), this problem has been fixed in
fetchmail could be made to crash if it received specially crafted network traffic.
Security fix for CVE-2025-9640 and CVE-2025-10230
New version 4.6.0
New version 4.6.0
Multiple vulnerabilities have been discovered in Request Tracker, an extensible trouble-ticket tracking system, which could result in CSV injection via ticket values with special characters, or cross-site scripting via calendar invitations added to a ticket. For the oldstable distribution (bookworm), these problems have been
It was discovered that Request Tracker, an extensible trouble-ticket tracking system is prone to a CSV injection via ticket values with special characters that are exported to a TSV from search results. For the oldstable distribution (bookworm), this problem has been fixed in version 4.4.6+dfsg-1.1+deb12u3.
Several security issues were fixed in Bind.
Several security issues were fixed in the Linux kernel.
Several security issues were fixed in the Linux kernel.
This update ships updated CPU microcode for some types of Intel CPUs and provides mitigations for security vulnerabilities which could result in privilege escalation or denial of service. For the oldstable distribution (bookworm), these problems have been fixed in version 3.20250812.1~deb12u1.
Several security issues were fixed in the Linux kernel.
Several security issues were fixed in the Linux kernel.
Update to exiv2-0.28.7, fixes CVE-2025-54080 and CVE-2025-55304.
Update to exiv2-0.28.7, fixes CVE-2025-54080 and CVE-2025-55304.
version update
Several security issues were fixed in the Linux kernel.
Several security issues were fixed in the Linux kernel.