2026 - Page 2675 of 7467

Debian 13 — c3p0 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — c3p0 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-20433 CVE-2019-5427 CVE-2026-27830 Upstream summary: c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initialization. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick […]

Read more
Debian 12 — libauthen-sasl-perl — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libauthen-sasl-perl — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2025-40918 Upstream summary: Authen::SASL::Perl::DIGEST_MD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce (client nonce) is generated from an MD5 hash of the PID, the […]

Read more
Debian 11 — powerline-gitstatus — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — powerline-gitstatus — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-42906 Upstream summary: powerline-gitstatus (aka Powerline Gitstatus) before 1.3.2 allows arbitrary code execution. git repositories can contain per-repository configuration that changes the behavior of git, including running arbitrary […]

Read more
Debian 11 — php-radius — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — php-radius — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2013-2220 Upstream summary: Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and […]

Read more
Debian 13 — snmptrapfmt — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — snmptrapfmt — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-0050 Upstream summary: snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file. Table of contents Symptom & […]

Read more
Debian 12 — uimaj — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — uimaj — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-15691 Upstream summary: In Apache uimaj prior to 2.10.2, Apache uimaj 3.0.0-xxx prior to 3.0.0-beta, Apache uima-as prior to 2.10.2, Apache uimaFIT prior to 2.4.0, Apache uimaDUCC prior […]

Read more
Debian 13 — grpc — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — grpc — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-7860 CVE-2017-7861 CVE-2017-8359 CVE-2017-9431 CVE-2023-32732 CVE-2023-33953 CVE-2023-44487 CVE-2023-4785  +1 more Upstream summary: Google gRPC before 2017-02-22 has an out-of-bounds write caused by a heap-based buffer overflow related to […]

Read more
Debian 11 — minidjvu — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — minidjvu — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-12441 CVE-2017-12442 CVE-2017-12443 CVE-2017-12444 CVE-2017-12445 Upstream summary: The row_is_empty function in base/4bitmap.c:274 in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via […]

Read more
Debian 11 — perltidy — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — perltidy — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-2277 CVE-2016-10374 Upstream summary: The make_temporary_filename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, […]

Read more
CHAT