Debian 12 Bookworm

Debian 12 — alien-arena — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — alien-arena — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2007-4754 CVE-2007-4755 CVE-2009-3637 CVE-2010-3439 Upstream summary: Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena 2007 6.10 and earlier allows remote attackers to cause a […]

Read more
Debian 12 — ocsinventory-server — multiple vulnerabilities (19 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — ocsinventory-server — multiple vulnerabilities (19 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2009-1443 CVE-2009-1769 CVE-2009-2166 CVE-2009-3040 CVE-2009-3042 CVE-2010-1594 CVE-2010-1595 CVE-2010-1733  +11 more Upstream summary: Multiple unspecified vulnerabilities in the Server component in OCS Inventory NG before 1.02 have unknown impact […]

Read more
Debian 12 — rabbitmq-server — multiple vulnerabilities (19 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — rabbitmq-server — multiple vulnerabilities (19 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-9494 CVE-2014-9649 CVE-2014-9650 CVE-2015-0862 CVE-2015-8786 CVE-2016-9877 CVE-2017-4965 CVE-2017-4966  +11 more Upstream summary: RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header. […]

Read more
Debian 12 — mpfr4 — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — mpfr4 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-9474 Upstream summary: Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for […]

Read more
Debian 12 — golang-github-go-resty-resty — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — golang-github-go-resty-resty — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-45286 Upstream summary: A race condition in go-resty can result in HTTP request body disclosure across requests. This condition can be triggered by calling sync.Pool.Put with the same […]

Read more
Debian 12 — xmlrpc-c — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — xmlrpc-c — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2009-3560 CVE-2009-3720 CVE-2012-0876 CVE-2012-1148 Upstream summary: The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to […]

Read more
Debian 12 — ruby-json-jwt — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — ruby-json-jwt — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-1000539 CVE-2019-18848 Upstream summary: Nov json-jwt version >= 0.5.0 && < 1.9.4 contains a CWE-347: Improper Verification of Cryptographic Signature vulnerability in Decryption of AES-GCM encrypted JSON Web […]

Read more
Debian 12 — kiwix — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — kiwix — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2015-1032 Upstream summary: Cross-site scripting (XSS) vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter […]

Read more
Debian 12 — snapd — multiple vulnerabilities (18 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — snapd — multiple vulnerabilities (18 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-14178 CVE-2019-11502 CVE-2019-11503 CVE-2019-7303 CVE-2019-7304 CVE-2020-11934 CVE-2020-27352 CVE-2021-3155  +10 more Upstream summary: In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without […]

Read more
Debian 12 — gemmi — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — gemmi — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-49287 Upstream summary: TinyDir is a lightweight C directory and file reader. Buffer overflows in the `tinydir_file_open()` function. This vulnerability has been patched in version 1.2.6. Table of […]

Read more
CHAT