Debian 12 Bookworm

Debian 12 — proftpd-dfsg — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — proftpd-dfsg — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2005-4816 CVE-2006-5815 CVE-2006-6170 CVE-2006-6171 CVE-2006-6563 CVE-2007-2165 CVE-2008-4242 CVE-2008-7265  +12 more Upstream summary: Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of […]

Read more
Debian 12 — mosh — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — mosh — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-2385 Upstream summary: The terminal dispatcher in mosh before 1.2.1 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape […]

Read more
Debian 12 — unixodbc — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — unixodbc — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2011-1145 CVE-2012-2657 CVE-2012-2658 CVE-2018-7409 CVE-2024-1013 Upstream summary: The SQLDriverConnect() function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter […]

Read more
Debian 12 — v4l2loopback — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — v4l2loopback — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-2652 Upstream summary: Depending on the way the format strings in the card label are crafted it's possible to leak kernel stack memory. There is also the possibility […]

Read more
Debian 12 — grep — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — grep — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-5667 CVE-2015-1345 Upstream summary: Multiple integer overflows in GNU Grep before 2.11 might allow context-dependent attackers to execute arbitrary code via vectors involving a long input line that […]

Read more
Debian 12 — cups-pk-helper — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — cups-pk-helper — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-4510 Upstream summary: cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive […]

Read more
Debian 12 — hoteldruid — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — hoteldruid — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-1000871 CVE-2019-8937 CVE-2019-9084 CVE-2019-9085 CVE-2019-9086 CVE-2019-9087 CVE-2021-37832 CVE-2021-37833  +12 more Upstream summary: HotelDruid HotelDruid 2.3.0 version 2.3.0 and earlier contains a SQL Injection vulnerability in "id_utente_mod" parameter in […]

Read more
Debian 12 — python-gnupg — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — python-gnupg — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2013-7323 CVE-2014-1927 CVE-2014-1928 CVE-2014-1929 CVE-2019-6690 Upstream summary: python-gnupg before 0.3.5 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in unspecified vectors. Table of contents Symptom & […]

Read more
Debian 12 — rrdtool — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — rrdtool — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2013-2131 CVE-2014-6262 Upstream summary: Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows context-dependent attackers to cause a denial of service (crash) […]

Read more
Debian 12 — mat2 — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — mat2 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-35410 Upstream summary: mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal during the ZIP archive cleaning process. This primarily affects mat2 web instances, in which […]

Read more
CHAT