secure-testing-team

Messages by Date

2015/09/27 [Secure-testing-team] Bug#800149: openjpeg2: Use-after-free in opj_j2k_write_mco Salvatore Bonaccorso
2015/09/27 [Secure-testing-team] Bug#800128: xen: CVE-2015-6654: printk is not rate-limited in xenmem_add_to_physmap_one Salvatore Bonaccorso
2015/09/27 [Secure-testing-team] Bug#800126: owncloud: CVE-2015-6500: Information exposure through directory listing Salvatore Bonaccorso
2015/09/26 [Secure-testing-team] Bug#800124: tiff: CVE-2015-7313: OOM when parsing crafted tiff files Salvatore Bonaccorso
2015/09/24 [Secure-testing-team] Bug#799966: CVE-2015-5277 Moritz Muehlenhoff
2015/09/24 [Secure-testing-team] Bug#799964: IP address exposure in FTP code Moritz Muehlenhoff
2015/09/24 [Secure-testing-team] Bug#799931: CVE-2015-5251: (OSSA 2015-019) Glance image status manipulation Thomas Goirand
2015/09/20 [Secure-testing-team] Bug#799634: moodle: CVE-2015-5264 CVE-2015-5265 CVE-2015-5266 CVE-2015-5267 CVE-2015-5268 CVE-2015-5269 CVE-2015-5272 Salvatore Bonaccorso
2015/09/20 [Secure-testing-team] Azafatas para la Feria Bolivia Modelos
2015/09/19 [Secure-testing-team] Bug#799524: multiple security issues Vincent Fourmond
2015/09/19 [Secure-testing-team] Bug#799464: libapache2-mod-nss: CVE-2015-5244: incorrect ciphersuite parsing Salvatore Bonaccorso
2015/09/19 [Secure-testing-team] Bug#799456: openslp-dfsg: CVE-2015-5155: Packet with crafted "nextoffset" and "extid" values causes DoS Salvatore Bonaccorso
2015/09/19 [Secure-testing-team] Bug#799452: qemu: CVE-2015--7295: net: virtio-net possible remote DoS Salvatore Bonaccorso
2015/09/17 [Secure-testing-team] Bug#799326: zlib-bin: miniunzip unzips paths starting with ../ Marc Lehmann
2015/09/17 [Secure-testing-team] Bug#799307: rpcbind: CVE-2015-7236: remote triggerable use-after-free in rpcbind Salvatore Bonaccorso
2015/09/17 Re: [Secure-testing-team] New Order sales
2015/09/16 [Secure-testing-team] Bug#799186: konqueror: now comes with built-in keylogger Thorsten Glaser
2015/09/16 Re: [Secure-testing-team] Bug#799096: mediawiki: CVE-2015-6727 CVE-2015-6728 CVE-2015-6729 CVE-2015-6730 Salvatore Bonaccorso
2015/09/16 Re: [Secure-testing-team] Bug#799096: mediawiki: CVE-2015-6727 CVE-2015-6728 CVE-2015-6729 CVE-2015-6730 Thorsten Glaser
2015/09/16 Re: [Secure-testing-team] Bug#799096: mediawiki: CVE-2015-6727 CVE-2015-6728 CVE-2015-6729 CVE-2015-6730 Thorsten Glaser
2015/09/16 [Secure-testing-team] Bug#799140: wordpress: CVE-2015-5714 CVE-2015-5715 Salvatore Bonaccorso
2015/09/16 [Secure-testing-team] Bug#799132: libvirt: CVE-2015-5247: denial of service when volume creation fails on NFS pool Salvatore Bonaccorso
2015/09/15 [Secure-testing-team] Bug#799096: mediawiki: CVE-2015-6727 CVE-2015-6728 CVE-2015-6729 CVE-2015-6730 Salvatore Bonaccorso
2015/09/15 [Secure-testing-team] Bug#799074: qemu: CVE-2015-5279: Heap overflow vulnerability in ne2000_receive() function Salvatore Bonaccorso
2015/09/15 [Secure-testing-team] Bug#799073: qemu: CVE-2015-5278: Infinite loop in ne2000_receive() function Salvatore Bonaccorso
2015/09/13 [Secure-testing-team] Bug#798886: cross-site request forgery (no CVE yet) Moritz Muehlenhoff
2015/09/13 [Secure-testing-team] Bug#798883: CVE-2015-3280 Moritz Muehlenhoff
2015/09/13 [Secure-testing-team] Bug#798863: CVE-2015-0853: insecure use of os.system() Luke Faraone
2015/09/13 [Secure-testing-team] Bug#798862: CVE-2015-0854: Insecure use of system() Luke Faraone
2015/09/13 [Secure-testing-team] Azafatas para la Feria Bolivia Modelos
2015/09/11 [Secure-testing-team] Bug#798647: icu: CVE-2015-1270 Salvatore Bonaccorso
2015/09/10 [Secure-testing-team] Bug#798622: openldap: ber_get_next denial of service vulnerability Salvatore Bonaccorso
2015/09/10 [Secure-testing-team] Bug#798619: freetype: Use of uninitialized memory in ps_parser_load_field, t42_parse_font_matrix and t1_parse_font_matrix Salvatore Bonaccorso
2015/09/10 [Secure-testing-team] Bug#798620: freetype: infinite loop in parse_encoding (t1load.c) Salvatore Bonaccorso
2015/09/10 [Secure-testing-team] Bug#798567: ceph: CVE-2015-5245: Rados rest gateway returns requested bucket name raw in Bucket response header Salvatore Bonaccorso
2015/09/10 [Secure-testing-team] Azafatas para la Expo 2015 Bolivia Modelos
2015/09/10 [Secure-testing-team] Job questions Pamela Muccilli
2015/09/09 [Secure-testing-team] Bug#798467: icedtea-web: CVE-2015-5234 CVE-2015-5235 Moritz Muehlenhoff
2015/09/09 [Secure-testing-team] Bug#798466: ruby-devise-two-factor: TOTP Replay Attack (no CVE yet) Moritz Muehlenhoff
2015/09/08 [Secure-testing-team] Si Usted participara en la EXPOCRUZ esto le interesa Marca y Eventos
2015/09/07 [Secure-testing-team] Modelos Para La Expocruz 2015 Modelos Para La Expocruz 2015
2015/09/07 [Secure-testing-team] Promocion EXPOFERIA 2015 Marca y Mercado Srl.
2015/09/06 [Secure-testing-team] Bug#798213: ganglia-web: CVE-2015-6816: auth bypass Salvatore Bonaccorso
2015/09/05 [Secure-testing-team] Bug#798101: qemu: CVE-2015-6815: net: e1000 infinite loop issue Salvatore Bonaccorso
2015/09/05 [Secure-testing-team] Si Usted participara en la EXPOCRUZ esto le interesa Marca y Eventos
2015/09/04 [Secure-testing-team] Bug#798067: bsdmainutils: CVE-2015-5218 Salvatore Bonaccorso
2015/09/04 [Secure-testing-team] Bug#798032: libpgf: CVE-2015-6673: use-after-free vulnerability in Decoder.cpp Salvatore Bonaccorso
2015/09/03 [Secure-testing-team] Bug#797976: spice: CVE-2015-3247: memory corruption in worker_update_monitors_config() Salvatore Bonaccorso
2015/09/03 [Secure-testing-team] Modelos Para La Expocruz 2015 BOLIVIA MODELOS
2015/09/02 [Secure-testing-team] Bug#797799: php5-mysqlnd: (Upstream Bug #68344): MySQLi does not provide way to disable peer certificate validation Adam McKenna
2015/08/31 [Secure-testing-team] Bug#797602: iceweasel: ice* apps are not secured Richard Jasmin
2015/08/30 [Secure-testing-team] Bug#797470: dnsval: val_dane_check: usage DANE-TA(2) may bypass cert validation entirely Thomas Fargeix
2015/08/30 [Secure-testing-team] Bug#797375: general: default build options turn off stack protections Richard Jasmin
2015/08/29 [Secure-testing-team] Elije azafatas para la EXPO-2015 BOLIVIA MODELOS
2015/08/28 [Secure-testing-team] Bug#797275: jsoup: CVE-2015-6748: XSS vulnerability in jsoup related to incomplete tags at EOF Salvatore Bonaccorso
2015/08/28 [Secure-testing-team] Fw: Smartphone Camera Lenses Leading To Mobile Photography Revolution sales03
2015/08/27 [Secure-testing-team] Bug#797111: criu: CVE-2015-5228: arbitrary file creation and chown Salvatore Bonaccorso
2015/08/27 [Secure-testing-team] Bug#797110: criu: CVE-2015-5231: service daemon allows to bypass ptrace policy Salvatore Bonaccorso
2015/08/27 [Secure-testing-team] Las Mejores Azafatas EXPOCRUZ Bolivia Modelos
2015/08/26 [Secure-testing-team] Bug#797032: swift: CVE-2015-5223: information leak via Swift tempurls Salvatore Bonaccorso
2015/08/26 [Secure-testing-team] Bug#796996: kfreebsd-10: CVE-2015-5675: IRET privilege escalation Steven Chamberlain
2015/08/24 [Secure-testing-team] Bug#796853: python-bcrypt: passlib says this library is broken Brian May
2015/08/23 [Secure-testing-team] Bug#796762: pcre3: another heap overflow in compile_regexp() Salvatore Bonaccorso
2015/08/22 [Secure-testing-team] Bug#796642: debian-policy: hardening is an afterthought and should never be Richard Jasmin
2015/08/22 [Secure-testing-team] Bug#796599: openssh-client: ssh -G no longer returns "illegal option" (6.0) or "unknown option" (6.7) Francois Marier
2015/08/22 [Secure-testing-team] Elige Azafatas Para la Expocuz Bolivia Modelos
2015/08/21 [Secure-testing-team] Bug#796465: qemu: CVE-2015-5225: ui: vnc: heap memory corruption in vnc_refresh_server_surface Salvatore Bonaccorso
2015/08/21 [Secure-testing-team] Bug#796344: CVE-2009-5147 Moritz Muehlenhoff
2015/08/21 [Secure-testing-team] Bug#796342: CVE-2013-0169 Moritz Muehlenhoff
2015/08/20 [Secure-testing-team] Bug#796255: vlc: CVE-2015-5949 Salvatore Bonaccorso
2015/08/20 [Secure-testing-team] Bug#796253: jasper: CVE-2015-5221: use-after-free in mif_process_cmpt function Salvatore Bonaccorso
2015/08/20 [Secure-testing-team] Bug#796197: Two security issues Moritz Muehlenhoff
2015/08/20 [Secure-testing-team] Bug#796195: CVE-2015-3206 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796151: CVE-2011-1551 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796137: CVE-2015-3192 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796134: CVE-2015-3255 CVE-2015-4625 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796117: CVE-2012-4230 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796114: CVE-2015-2156 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796111: CVE-2015-5160 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796109: CVE-2015-3241 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796108: CVE-2015-5694 CVE-2015-5695 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796107: jasper: CVE-2015-5203: double free in jasper_image_stop_load() Salvatore Bonaccorso
2015/08/19 [Secure-testing-team] Bug#796106: CVE-2015-5180 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796105: CVE-2015-1781 Moritz Muehlenhoff
2015/08/19 [Secure-testing-team] Bug#796104: python-django: CVE-2015-5963 CVE-2015-5964 Salvatore Bonaccorso
2015/08/19 [Secure-testing-team] Bug#796103: CVE-2015-6496 Moritz Muehlenhoff
2015/08/18 [Secure-testing-team] Bug#796023: Missing return check for setuid calls Moritz Muehlenhoff
2015/08/18 [Secure-testing-team] Bug#795958: lynx-cur: certificate revocation checking is buggy Vincent Lefevre
2015/08/16 [Secure-testing-team] Bug#795740: wpa: Incomplete WPS and P2P NFC NDEF record payload length validation Salvatore Bonaccorso
2015/08/16 [Secure-testing-team] Bug#795721: CVE-2015-3259 CVE-2015-3340 CVE-2015-4163 CVE-2015-4164 Moritz Muehlenhoff
2015/08/16 [Secure-testing-team] Bug#795711: Two CVE-less issues Moritz Muehlenhoff
2015/08/15 [Secure-testing-team] Bug#795657: libapache2-mod-nss: CVE-2015-3277: incorrect multi-keyword mode cipherstring parsing Salvatore Bonaccorso
2015/08/15 [Secure-testing-team] Bug#795576: iceweasel: When using default settings, user will be subscribed to services only by hovering over links Boris Shtrasman
2015/08/15 [Secure-testing-team] Bug#795539: pcre3: Another heap overflow for named references in (?| situations Salvatore Bonaccorso
2015/08/14 [Secure-testing-team] Bug#795505: selinux-basics: reccommends a non-existant package Richard Jasmin
2015/08/14 [Secure-testing-team] Bug#795461: qemu: CVE-2015-3214: i8254: out-of-bounds memory access in pit_ioport_read function Salvatore Bonaccorso
2015/08/14 [Secure-testing-team] Bug#795457: audit: CVE-2015-5186: log terminal emulator escape sequences handling Salvatore Bonaccorso
2015/08/13 [Secure-testing-team] Bug#795453: glance: CVE-2015-5163: Glance v2 API host file disclosure through qcow2 backing file Salvatore Bonaccorso
2015/08/13 [Secure-testing-team] Bug#795450: iceweasel: major exploits against current firefox in the wild Richard Jasmin
2015/08/13 [Secure-testing-team] Bug#795429: CVE-2015-5177 Moritz Muehlenhoff
2015/08/13 [Secure-testing-team] Bug#795399: freeipa: CVE-2015-5179: non-printable characters aren't check in every case of user data Salvatore Bonaccorso
2015/08/11 [Secure-testing-team] Bug#795162: ippusbxd: allows access to a connected USB printer via all configured network addresses Salvatore Bonaccorso
2015/08/10 [Secure-testing-team] Bug#795106: golang: CVE-2015-5739 CVE-2015-5740 CVE-2015-5741 Salvatore Bonaccorso
2015/08/10 [Secure-testing-team] Bug#795087: qemu: CVE-2015-5745: buffer overflow in virtio-serial Salvatore Bonaccorso
2015/08/10 [Secure-testing-team] Bug#795068: gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3) Salvatore Bonaccorso
2015/08/07 [Secure-testing-team] Bug#794911: bind9: bind9 update does not work, impossible to install reinhard
2015/08/04 [Secure-testing-team] Bug#794611: qemu: CVE-2015-5166: Use after free in QEMU/Xen block unplug protocol Salvatore Bonaccorso
2015/08/04 [Secure-testing-team] Bug#794610: qemu: CVE-2015-5165: rtl8139 uninitialized heap memory information leakage to guest Salvatore Bonaccorso
2015/08/04 [Secure-testing-team] Bug#794589: pcre3: pcre_exec does not fill offsets for certain regexps Salvatore Bonaccorso
2015/07/31 [Secure-testing-team] Bug#794260: devscripts: licensecheck chokes on files containing space Jonas Smedegaard
2015/07/30 [Secure-testing-team] Bug#794120: ruby: please implement a way to forcibly disable download/installation of (Debian external) gems Christoph Anton Mitterer
2015/07/29 [Secure-testing-team] Bug#793974: src:linphone: should use SP800-90 compliant DRBG, not libsrtp crypto_get_random() Jonas Smedegaard
2015/07/29 [Secure-testing-team] Bug#793972: src:pjproject: should use SP800-90 compliant DRBG, not libsrtp crypto_get_random() Jonas Smedegaard
2015/07/29 [Secure-testing-team] Bug#793971: asterisk: should use SP800-90 compliant DRBG, not libsrtp crypto_get_random() Jonas Smedegaard
2015/07/28 [Secure-testing-team] Bug#793903: bind9: CVE-2015-5477: An error in handling TKEY queries can cause named to exit with a REQUIRE assertion failure Salvatore Bonaccorso
2015/07/28 [Secure-testing-team] Bug#793896: glance: CVE-2015-3289: Glance task flow may fail to delete image from backend Salvatore Bonaccorso
2015/07/28 [Secure-testing-team] Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851) Luca Bruno
2015/07/27 [Secure-testing-team] Bug#793811: qemu: CVE-2015-5154: ide: atapi: heap overflow during I/O buffer memory access Salvatore Bonaccorso
2015/07/27 [Secure-testing-team] Bug#793770: Cookie parsing bug may lead to 'HttpOnly' cookie bypass (CVE-2015-2156) Luca Bruno
2015/07/25 [Secure-testing-team] Bug#793616: openssh: CVE-2015-5600: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices Salvatore Bonaccorso
2015/07/24 [Secure-testing-team] Bug#793495: CVE-2012-2150 xfsprogs: xfs_metadump information disclosure Moritz Muehlenhoff
2015/07/24 [Secure-testing-team] Bug#793465: DoS and privilege escalation by local users (CVE-2015-3245 and CVE-2015-3246) Luca Bruno
2015/07/23 [Secure-testing-team] Bug#793412: openssh-client: scp can send arbitrary control characters / escape sequences to the terminal Vincent Lefevre
2015/07/23 [Secure-testing-team] Bug#793398: Remote execution of untrusted code, DoS (CVE-2015-3253) Luca Bruno
2015/07/23 [Secure-testing-team] Bug#793397: Remote execution of untrusted code, DoS (CVE-2015-3253) Luca Bruno
2015/07/23 [Secure-testing-team] Bug#793388: qemu: CVE-2015-5158: scsi stack buffer overflow Salvatore Bonaccorso
2015/07/22 [Secure-testing-team] Bug#793298: CVE-2015-1331 CVE-2015-1334 Moritz Muehlenhoff
2015/07/21 [Secure-testing-team] Bug#793128: squid3: CVE-2015-5400: information disclosure due to incorrect handling of peer responses Salvatore Bonaccorso
2015/07/21 [Secure-testing-team] Bug#793123: ipython: CVE-2015-5607: cross-site request forgery Salvatore Bonaccorso
2015/07/19 [Secure-testing-team] Bug#792857: CVE-2014-3576 Moritz Muehlenhoff
2015/07/18 [Secure-testing-team] Booking Request... Gibson
2015/07/16 [Secure-testing-team] Bug#792617: elasticsearch: CVE-2015-5377 CVE-2015-5531 Salvatore Bonaccorso
2015/07/15 [Secure-testing-team] Bug#792485: etckeeper/git sets SSH host key perms to 644 Sebastian Wagner
2015/07/14 [Secure-testing-team] Bug#792446: CVE-2015-2594 Moritz Muehlenhoff
2015/07/13 [Secure-testing-team] 14 y 15 DE JULIO - CURSO DE TRAMITE OBLIGATORIO EXIGIDA POR EL MINISTERIO DE TRABAJO Y NUEVAS DISPOSICIONES LEGALES SOLIDEM CONSULTING
2015/07/13 [Secure-testing-team] Bug#792312: libpam0g: need more verbose debuging: PAM unable to resolve symbol: pam_sm_acct_mgmt Ben Hildred
2015/07/12 [Secure-testing-team] Bug#792242: moodle: CVE-2015-3272 CVE-2015-3274 CVE-2015-3275 Salvatore Bonaccorso
2015/07/09 [Secure-testing-team] Bug#792003: vm86 should be disabled: unmaintained, obsolete, and probably insecure Ben Hutchings
2015/07/09 [Secure-testing-team] Bug#791975: openssl: CVE-2015-1793 Christoph Anton Mitterer
2015/07/09 [Secure-testing-team] Bug#791957: apache-directory-api: CVE-2015-3250 Salvatore Bonaccorso
2015/07/09 [Secure-testing-team] 17 y 18 de Julio Seminario: Interpretación y Análisis de los Estados Financieros IVONE RAMIREZ
2015/07/08 [Secure-testing-team] ProgramaFidelidade (91970) secure-testing-team
2015/07/08 [Secure-testing-team] Bug#791800: [kmail] Attachments are not encrypted when "automatic encryption" is selected Daniel Hornung
2015/07/07 [Secure-testing-team] Bug#791715: bind9: CVE-2015-4620: Specially Constructed Zone Data Can Cause a Resolver to Crash when Validating Salvatore Bonaccorso
2015/07/06 [Secure-testing-team] Bug#791643: roundcube: CVE-2015-5381 CVE-2015-5382 CVE-2015-5383 Salvatore Bonaccorso
2015/07/06 [Secure-testing-team] Seminario Taller: Despidos y Contratos de Trabajo exigido por el Ministerio de Trabajo LORENA DOTTY
2015/07/06 [Secure-testing-team] Invitation Zoho : FROM MR SOKIN KEN. sokin_ken1
2015/07/05 [Secure-testing-team] Bug#791534: openntpd: constraint certificate verification turned off Vincent Lefevre
2015/07/04 [Secure-testing-team] 07 de Julio : INTELIGENCIA FISCAL Y EL ENFOQUE DE FISCALIZACION REALIZADA POR LA ADMINISTRACION TRIBUTARIA LORENA DOTTY
2015/07/02 [Secure-testing-team] 4 DE JULIO - CURSO DE TRAMITE OBLIGATORIO EXIGIDA POR EL MINISTERIO DE TRABAJO Y NUEVAS DISPOSICIONES LEGALES LORENA DOTTY
2015/07/01 [Secure-testing-team] Bug#790830: libunwind: CVE-2015-3239: off-by-one in dwarf_to_unw_regnum() Salvatore Bonaccorso
2015/07/01 [Secure-testing-team] Bug#790798: CVE-2015-5352 Moritz Muehlenhoff
2015/06/30 [Secure-testing-team] 4 DE JULIO - CURSO DE TRAMITE OBLIGATORIO EXIGIDA POR EL MINISTERIO DE TRABAJO Y NUEVAS DISPOSICIONES LEGALES Ivone Ramirez
2015/06/30 [Secure-testing-team] Expertos en decoracion de bodas Florería Rossy
2015/06/29 [Secure-testing-team] Bug#790487: rails: CVE-2015-3227: Possible Denial of Service attack in Active Support Salvatore Bonaccorso
2015/06/29 [Secure-testing-team] Bug#790486: rails: CVE-2015-3226: XSS in ActiveSupport::JSON.encode Salvatore Bonaccorso
2015/06/28 [Secure-testing-team] Bug#790395: ruby-jquery-rails: CVE-2015-1840 Salvatore Bonaccorso
2015/06/27 [Secure-testing-team] 27 DE JUNIO - CURSO DE TRAMITE OBLIGATORIO EXIGIDA POR EL MINISTERIO DE TRABAJO Y NUEVAS DISPOSICIONES LEGALES Ivone Ramirez
2015/06/27 [Secure-testing-team] Bug#790119: ruby2.1: CVE-2015-3900: DNS hijacking vulnerability in api_endpoint() Salvatore Bonaccorso
2015/06/27 [Secure-testing-team] Bug#790111: ruby2.2: CVE-2015-3900: DNS hijacking vulnerability in api_endpoint() Salvatore Bonaccorso
2015/06/25 [Secure-testing-team] Bug#790000: pcre3: heap overflow vulnerability in find_fixedlength() Salvatore Bonaccorso
2015/06/25 [Secure-testing-team] Bug#789986: pam: CVE-2015-3238: DoS/user enumeration due to blocking pipe in pam_unix module Salvatore Bonaccorso
2015/06/24 [Secure-testing-team] Bug#789824: ipython: CVE-2015-4707: XSS in JSON error responses Salvatore Bonaccorso
2015/06/24 [Secure-testing-team] Bug#789808: flashplugin-nonfree: update script won't update to 11.2.202.468 Dario Andres Susman
2015/06/23 [Secure-testing-team] Bug#789713: neutron: CVE-2015-3221: L2 agent DoS through incorrect allowed address pairs Salvatore Bonaccorso
2015/06/23 [Secure-testing-team] Bug#789686: putty: Security fix may get optimized away by compiler Marc Deslauriers
2015/06/22 [Secure-testing-team] Bug#789623: freeradius: CVE-2015-4680: insufficent CRL application for intermediate certificates Salvatore Bonaccorso
2015/06/22 [Secure-testing-team] Bug#789543: CVE-2015-3248 Moritz Muehlenhoff
2015/06/18 [Secure-testing-team] Bug#789202: 389-ds-base: CVE-2015-3230: nsSSL3Ciphers preference not enforced server side (regression) Salvatore Bonaccorso
2015/06/18 [Secure-testing-team] Bug#789197: libmimedir: CVE-2015-3205 Salvatore Bonaccorso
2015/06/18 [Secure-testing-team] Bug#789162: aptdaemon: CVE-2015-1323: information disclosure via simulate dbus method Salvatore Bonaccorso
2015/06/18 [Secure-testing-team] Agora informatique Téléphonie et electroménager Chaine Agora Tunisie
2015/06/16 [Secure-testing-team] Bug#788996: CVE-2015-1850: [OSSA 2015-011] Cinder host file disclosure through qcow2 backing file Thomas Goirand
2015/06/16 [Secure-testing-team] Bug#788964: net-snmp snmp_pdu_parse() DoS Moritz Muehlenhoff
2015/06/16 [Secure-testing-team] Bug#788962: couchdb: CVE-2014-2668 Salvatore Bonaccorso
2015/06/15 [Secure-testing-team] Bug#788833: chicken: CVE-2015-4556: buffer overrun in CHICKEN Scheme's string-translate* procedure Salvatore Bonaccorso
2015/06/11 [Secure-testing-team] Bug#788471: elasticsearch: CVE-2015-4165: unspecified arbitrary files modification vulnerability Salvatore Bonaccorso
2015/06/11 [Secure-testing-team] Bug#788460: qemu: CVE-2015-3209: heap overflow in QEMU PCNET controller (allowing guest->host escape) Salvatore Bonaccorso
2015/06/10 [Secure-testing-team] Bug#788410: xorg-server: CVE-2015-3164: unauthorised local client access in XWayland Salvatore Bonaccorso
2015/06/09 [Secure-testing-team] Bug#788306: horizon: CVE-2015-3219: XSS in Horizon Heat stack creation Salvatore Bonaccorso
2015/06/08 [Secure-testing-team] Bug#788069: centerim-utf8: please recompile for newer libgnutls Karsten Hilbert
2015/06/06 [Secure-testing-team] Bug#787954: parallel: CVE-2015-4155 CVE-2015-4156 Salvatore Bonaccorso
2015/06/06 [Secure-testing-team] Bug#787951: ruby-bson: CVE-2015-4410: DoS and possible injection Salvatore Bonaccorso
2015/06/06 [Secure-testing-team] Bug#787932: policykit-1: CVE-2015-3218: crash authentication_agent_new with invalid object path in RegisterAuthenticationAgent Salvatore Bonaccorso
2015/06/04 [Secure-testing-team] Bug#787762: dolibarr: CVE-2015-3935: dolibarr HTML injection Salvatore Bonaccorso
2015/06/03 [Secure-testing-team] Bug#787641: pcre3: CVE-2015-3217 Salvatore Bonaccorso
2015/06/03 [Secure-testing-team] Bug#787628: Bracketed paste is unsafe Yuri D'Elia
2015/06/03 [Secure-testing-team] Bug#787605: libgnutls-deb0-28: causes segfaults in gimp and curl Gordon Shumway
2015/06/02 [Secure-testing-team] Bug#787547: CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 Moritz Muehlenhoff
2015/06/01 [Secure-testing-team] Bug#787435: attic: CVE-2015-4082: client user is not asked to confirm that unencrypted data is acceptable Salvatore Bonaccorso
2015/06/01 [Secure-testing-team] Bug#787433: pcre3: CVE-2015-3210: heap buffer overflow in pcre_compile2() / compile_regex() Salvatore Bonaccorso
2015/05/31 [Secure-testing-team] Bug#787373: wpa: CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing Salvatore Bonaccorso
2015/05/31 [Secure-testing-team] Bug#787372: wpa: CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding Salvatore Bonaccorso
2015/05/31 [Secure-testing-team] Bug#787371: wpa: CVE-2015-4143 CVE-2015-4144 CVE-2015-4145 CVE-2015-4146: EAP-pwd missing payload length validation Salvatore Bonaccorso
2015/05/31 [Secure-testing-team] Bug#787353: hplip: CVE-2015-0839 Salvatore Bonaccorso
2015/05/31 [Secure-testing-team] Bug#787316: CVE-2015-1833 Moritz Muehlenhoff
2015/05/28 [Secure-testing-team] Bug#787132: CVE-2015-3200 Moritz Muehlenhoff
2015/05/26 Re: [Secure-testing-team] Request to Join Project Debian testing security team from Sven Eckelmann (ecsv-guest) Salvatore Bonaccorso
2015/05/26 [Secure-testing-team] Bug#786909: chromium: unconditionally downloads binary blob YOSHINO Yoshihito
2015/05/25 [Secure-testing-team] Shipping Corporation 5:26:27 SDR/SZX Starry Shi