Debian 12 Bookworm

Debian 12 — scitokens-cpp — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — scitokens-cpp — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2026-32725 CVE-2026-32726 Upstream summary: SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an […]

Read more
Debian 12 — php-dompdf — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — php-dompdf — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2010-4879 CVE-2014-2383 CVE-2014-5011 CVE-2014-5012 CVE-2014-5013 CVE-2021-3838 CVE-2021-3902 CVE-2022-2400  +2 more Upstream summary: PHP remote file inclusion vulnerability in dompdf.php in dompdf 0.6.0 beta1 allows remote attackers to execute […]

Read more
Debian 12 — pymupdf — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — pymupdf — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2026-3029 Upstream summary: A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in PyMuPDF version, 1.26.5. Table of contents Symptom & […]

Read more
Debian 12 — slrn — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — slrn — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2002-0740 Upstream summary: Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument. […]

Read more
Debian 12 — telegram-desktop — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — telegram-desktop — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-10351 CVE-2018-17231 CVE-2018-17613 CVE-2018-17780 CVE-2019-10044 CVE-2020-12474 CVE-2020-17448 CVE-2021-27351  +2 more Upstream summary: Telegram Desktop 0.10.19 uses 0755 permissions for $HOME/.TelegramDesktop, which allows local users to obtain sensitive authentication […]

Read more
Debian 12 — openocd — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — openocd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-5704 Upstream summary: Open On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use HTTP POST for sending data to 127.0.0.1 port 4444, which allows remote attackers to […]

Read more
Debian 12 — libndp — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libndp — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-3554 CVE-2016-3698 CVE-2024-5564 Upstream summary: Buffer overflow in the ndp_msg_opt_dnssl_domain function in libndp allows remote routers to cause a denial of service (crash) and possibly execute arbitrary code […]

Read more
Debian 12 — python-oslo.utils — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — python-oslo.utils — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-7231 CVE-2019-3866 CVE-2022-0718 Upstream summary: The strutils.mask_password function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask […]

Read more
Debian 12 — rinetd — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — rinetd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-0212 Upstream summary: handleAccept in rinetd before 0.62 does not properly resize the connection list when it becomes full and sets an array index incorrectly, which allows remote […]

Read more
Debian 12 — r-cran-commonmark — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — r-cran-commonmark — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-5238 CVE-2022-24724 CVE-2022-39209 CVE-2023-22483 CVE-2023-22484 CVE-2023-22485 CVE-2023-22486 CVE-2023-24824  +2 more Upstream summary: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to […]

Read more
CHAT