Debian 13 Trixie

Debian 13 — lua5.1 — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — lua5.1 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-5461 Upstream summary: Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via […]

Read more
Debian 13 — gparted — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — gparted — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-7208 Upstream summary: GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via shell metacharacters in a crafted filesystem label. Table of contents Symptom & […]

Read more
Debian 13 — lsyncd — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — lsyncd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-8990 Upstream summary: default-rsyncssh.lua in Lsyncd 2.1.5 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a filename. Table of contents Symptom & Impact Environment […]

Read more
Debian 13 — gss-ntlmssp — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — gss-ntlmssp — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-25563 CVE-2023-25564 CVE-2023-25565 CVE-2023-25566 CVE-2023-25567 Upstream summary: GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to version 1.2.0, multiple out-of-bounds reads when […]

Read more
Debian 13 — dropbear — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — dropbear — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2004-2486 CVE-2005-4178 CVE-2006-0225 CVE-2006-1206 CVE-2007-1099 CVE-2012-0920 CVE-2013-4421 CVE-2013-4434  +12 more Upstream summary: The DSS verification code in Dropbear SSH Server before 0.43 frees uninitialized variables, which might allow […]

Read more
Debian 13 — supervisor — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — supervisor — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-11610 CVE-2019-12105 Upstream summary: The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, and 3.3.x before 3.3.3 allows remote authenticated users to execute arbitrary […]

Read more
Debian 13 — kiwix — vulnerability — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — kiwix — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2015-1032 Upstream summary: Cross-site scripting (XSS) vulnerability in Kiwix before 0.9.1, when using kiwix-serve, allows remote attackers to inject arbitrary web script or HTML via the pattern parameter to […]

Read more
Debian 13 — neomutt — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — neomutt — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356  +12 more Upstream summary: An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO […]

Read more
Debian 13 — global — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — global — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-17531 CVE-2024-38448 Upstream summary: gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers […]

Read more
Debian 13 — gst-plugins-bad1.0 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 13

Debian 13 — gst-plugins-bad1.0 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-9445 CVE-2016-9446 CVE-2016-9809 CVE-2016-9812 CVE-2016-9813 CVE-2017-5843 CVE-2017-5848 CVE-2021-3185  +12 more Upstream summary: Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial […]

Read more
CHAT