Debian 12 Bookworm

Debian 12 — rtmpdump — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — rtmpdump — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2015-8270 CVE-2015-8271 CVE-2015-8272 Upstream summary: The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service (invalid pointer dereference and […]

Read more
Debian 12 — gnuchess — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — gnuchess — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2015-8972 CVE-2019-15767 CVE-2021-30184 Upstream summary: Stack-based buffer overflow in the ValidateMove function in frontend/move.cc in GNU Chess (aka gnuchess) before 6.2.4 might allow context-dependent attackers to execute arbitrary […]

Read more
Debian 12 — gkrellm — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — gkrellm — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-0723 Upstream summary: Buffer overflow in gkrellmd for gkrellm 2.1.x before 2.1.14 may allow remote attackers to execute arbitrary code. Table of contents Symptom & Impact Environment & […]

Read more
Debian 12 — libcatalyst-plugin-authentication-perl — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libcatalyst-plugin-authentication-perl — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2026-5091 Upstream summary: Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to […]

Read more
Debian 12 — xonix — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — xonix — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2004-0157 Upstream summary: x11.c in xonix 1.4 and earlier uses the current working directory to find and execute the rmail program, which allows local users to execute arbitrary […]

Read more
Debian 12 — timidity — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — timidity — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-11546 CVE-2017-11547 CVE-2017-11549 Upstream summary: The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via […]

Read more
Debian 12 — netsurf — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — netsurf — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-0844 CVE-2014-3566 CVE-2015-7505 CVE-2015-7506 CVE-2015-7507 CVE-2015-7508 CVE-2024-51317 CVE-2025-29699  +1 more Upstream summary: Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar. Table of contents Symptom […]

Read more
Debian 12 — mistune — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — mistune — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-15612 CVE-2017-16876 CVE-2022-34749 Upstream summary: mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline (such as in java\nscript:) or a crafted email address, related to the escape […]

Read more
Debian 12 — golang-github-opencontainers-selinux — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — golang-github-opencontainers-selinux — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-16884 Upstream summary: runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a […]

Read more
Debian 12 — libntlm — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libntlm — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-17455 Upstream summary: Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read […]

Read more
CHAT