2026 - Page 2674 of 7467

Debian 12 — node-growl — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — node-growl — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-16042 Upstream summary: Growl adds growl notification support to nodejs. Growl before 1.10.2 does not properly sanitize input before passing it to exec, allowing for arbitrary command execution. […]

Read more
Debian 13 — smstools — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — smstools — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-0083 Upstream summary: Format string vulnerability in the logging code of SMS Server Tools (smstools) 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack […]

Read more
Debian 13 — soundtouch — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — soundtouch — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-9258 CVE-2017-9259 CVE-2017-9260 CVE-2018-1000223 CVE-2018-14044 CVE-2018-14045 CVE-2018-17096 CVE-2018-17097  +1 more Upstream summary: The TDStretch::processSamples function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of […]

Read more
Debian 12 — node-sanitize-html — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — node-sanitize-html — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-25887 CVE-2024-21501 Upstream summary: The package sanitize-html before 2.7.1 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure global regular expression replacement logic of HTML […]

Read more
Debian 11 — spice-vdagent — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — spice-vdagent — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-15108 CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2020-25653 Upstream summary: spice-vdagent up to and including 0.17.0 does not properly escape save directory before passing to shell, allowing local attacker with access […]

Read more
Debian 12 — mah-jong — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — mah-jong — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-0705 CVE-2003-0706 CVE-2004-0458 Upstream summary: Buffer overflow in mah-jong 1.5.6 and earlier allows remote attackers to execute arbitrary code. Table of contents Symptom & Impact Environment & Reproduction […]

Read more
Debian 11 — facter — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — facter — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-3248 CVE-2015-1426 Upstream summary: Untrusted search path vulnerability in Puppet Enterprise 2.8 before 2.8.7, Puppet before 2.7.26 and 3.x before 3.6.2, Facter 1.6.x and 2.x before 2.0.2, Hiera […]

Read more
Debian 11 — icu — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — icu — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2007-4770 CVE-2007-4771 CVE-2008-1036 CVE-2009-0153 CVE-2011-4599 CVE-2013-0900 CVE-2013-1569 CVE-2013-2383  +12 more Upstream summary: libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the […]

Read more
Debian 12 — gradle — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — gradle — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-6199 CVE-2019-11065 CVE-2019-15052 CVE-2019-16370 CVE-2021-29428 CVE-2021-29429 CVE-2021-32751 CVE-2023-35946  +5 more Upstream summary: ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object. […]

Read more
Debian 13 — crmsh — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — crmsh — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-35459 Upstream summary: An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able to call "crm history" (when "crm" is run) were able to execute commands via […]

Read more
CHAT