authorization

Debian 12 — nss-pam-ldapd — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — nss-pam-ldapd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2013-0288 Upstream summary: nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code by performing […]

Read more
Debian 13 — pam-python — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — pam-python — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-16729 Upstream summary: pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM […]

Read more
Debian 12 — rspamd — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — rspamd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-11737 Upstream summary: interface/js/app/history.js in WebUI in Rspamd before 1.6.3 allows XSS via the Subject and Message-Id headers, which are mishandled in the history page. Table of contents […]

Read more
Debian 13 — spamass-milter — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — spamass-milter — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2010-1132 Upstream summary: The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell […]

Read more
Debian 13 — python-requests-kerberos — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — python-requests-kerberos — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-8650 Upstream summary: python-requests-Kerberos through 0.5 does not handle mutual authentication Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – […]

Read more
Debian 13 — spamassassin — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — spamassassin — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-1557 CVE-2004-0796 CVE-2005-1266 CVE-2005-3351 CVE-2006-2447 CVE-2007-0451 CVE-2007-2873 CVE-2017-15705  +7 more Upstream summary: Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows […]

Read more
Debian 12 — libpam-radius-auth — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libpam-radius-auth — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2004-1340 CVE-2005-0108 CVE-2015-9542 Upstream summary: Debian GNU/Linux 3.0 installs the libpam-radius-auth package with the pam_radius_auth.conf set to be world-readable, which allows local users to obtain sensitive information. Table […]

Read more
Debian 13 — libpam-ssh — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — libpam-ssh — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2007-0844 CVE-2009-1273 Upstream summary: The auth_via_key function in pam_ssh.c in pam_ssh before 1.92, when the allow_blank_passphrase option is disabled, allows remote attackers to bypass authentication restrictions and use […]

Read more
Debian 13 — pam — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — pam — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2002-1227 CVE-2005-2977 CVE-2009-0579 CVE-2009-0887 CVE-2009-3232 CVE-2010-3316 CVE-2010-3430 CVE-2010-3431  +12 more Upstream summary: PAM 0.76 treats a disabled password as if it were an empty (null) password, which allows […]

Read more
Debian 13 — pam-u2f — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — pam-u2f — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-12209 CVE-2019-12210 CVE-2021-31924 CVE-2025-23013 Upstream summary: Yubico pam-u2f 1.0.7 attempts parsing of the configured authfile (default $HOME/.config/Yubico/u2f_keys) as root (unless openasuser was enabled), and does not properly verify […]

Read more
CHAT