Debian Security Fixes
Critical wpa_supplicant Vulnerability Addressed
A serious vulnerability has been discovered in the widely used wpa_supplicant package, potentially leaving millions of devices at risk. This flaw, tracked as CVE-2024-5290, poses a significant risk of privilege escalation, potentially ...
Two krb5 Vulnerabilities Fixed in Debian: Patch Your Systems Now
krb5, the MIT implementation of Kerberos, is a widely used protocol for network authentication. Recently, two critical vulnerabilities have been discovered in the GSS message token handling in krb5, which could allow ...
Multiple Tomcat Vulnerabilities Fixed in Ubuntu and Debian
Tomcat, a widely-used servlet and JSP engine, has recently undergone several security updates to address critical vulnerabilities. These vulnerabilities, if exploited, could lead to denial of service (DoS) attacks or arbitrary code ...
Debian 12.6 Released with 84 Security Updates and 162 Bug Fixes
The Debian Project announced the release of Debian 12.6 on June 29, 2024, marking the fifth ISO update to its stable Debian 12 “Bookworm” series. Released four and a half months after ...
Firefox 126 Released with Various Security Fixes
Firefox 126 was released on May 14, 2024, introducing various new features and improvements. This update also fixed 16 security vulnerabilities that posed risks such as arbitrary code execution and clickjacking. One ...
Thunderbird Vulnerabilities Fixed in Ubuntu and Debian
In recent Ubuntu and Debian security updates, several vulnerabilities have been addressed in Thunderbird, the popular open-source mail and newsgroup client. Attackers could use these vulnerabilities to cause a denial of service, ...
Multiple PHP 7.4 Vulnerabilities Addressed in Debian 11
Debian 11 was first released on August 14th, 2021 with PHP version 7.4, which has already reached the end of life. This means PHP 7.4 will no longer receive official updates and ...
Several GTKWave Vulnerabilities Fixed in Debian
Recently, the Debian security team fixed several issues in GTKWave, an open-source waveform viewer for VCD (Value Change Dump) files. These vulnerabilities, if exploited, could result in the execution of arbitrary code, ...
Debian Security Updates Patch Cacti Vulnerabilities
Multiple security vulnerabilities were discovered in Cacti, a widely used web interface for monitoring system graphs. These vulnerabilities, if exploited, could lead to severe consequences such as cross-site scripting (XSS), SQL injection, ...
Chromium Vulnerabilities Addressed in Debian 12 “Bookworm”
Chromium is the open-source browser project that powers popular browsers like Google Chrome and Microsoft Edge. Users of Chromium browsers on Debian 12 “Bookworm” should be aware of recently discovered security vulnerabilities ...