The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Sarge

libgd: NULL pointer dereference via gdImageCreateFromXpm
An attacker can dereference a NULL pointer in the gdImageCreateFromXpm() function of libgd, in order to trigger a denial of service...
66901, bulletinjan2015, CVE-2014-2497, DSA-3215-1, FEDORA-2014-8458, FEDORA-2015-0432, FEDORA-2015-0503, MDVSA-2014:133, MDVSA-2014:172, MDVSA-2015:153, openSUSE-SU-2014:0784-1, openSUSE-SU-2014:0786-1, RHSA-2014:1326-01, RHSA-2014:1327-01, RHSA-2014:1765-01, RHSA-2014:1766-01, SOL15761, SSA:2014-247-01, SUSE-SU-2014:0868-1, SUSE-SU-2014:0869-1, SUSE-SU-2014:0873-1, SUSE-SU-2014:0873-2, USN-2987-1, VIGILANCE-VUL-14424
Mutt: buffer overflow of mutt_copy_hdr
An attacker can generate a buffer overflow in the mutt_copy_hdr() function of Mutt, in order to trigger a denial of service, and possibly to execute code...
1075860, 708731, CVE-2014-0467, DSA-2874-1, FEDORA-2014-5880, FEDORA-2014-6395, FEDORA-2014-6408, openSUSE-SU-2014:0434-1, openSUSE-SU-2014:0436-1, RHSA-2014:0304-01, SSA:2014-071-01, SUSE-SU-2014:0471-1, USN-2147-1, VIGILANCE-VUL-14420
CUPS: multiple vulnerabilities of PDF
An attacker can use several vulnerabilities of the pdftoopvp or urftopdf tools of CUPS...
CVE-2013-6473, CVE-2013-6474, CVE-2013-6475, CVE-2013-6476, DSA-2875-1, DSA-2876-1, FEDORA-2014-3738, MDVSA-2015:100, USN-2143-1, USN-2144-1, VIGILANCE-VUL-14419
Asterisk: multiple vulnerabilities
An attacker can use several vulnerabilities of Asterisk...
AST-2014-001, AST-2014-002, AST-2014-003, AST-2014-004, CERTFR-2014-AVI-125, CVE-2014-2286, CVE-2014-2287, CVE-2014-2288, CVE-2014-2289, DLA-455-1, DLA-781-1, DLA-781-2, FEDORA-2014-3762, FEDORA-2014-3779, MDVSA-2014:078, VIGILANCE-VUL-14393
Wireshark: multiple vulnerabilities
An attacker can use several vulnerabilities of Wireshark...
BID-66066, BID-66068, BID-66070, BID-66072, CERTFR-2014-AVI-110, CERTFR-2014-AVI-244, CVE-2014-2281, CVE-2014-2282, CVE-2014-2283, CVE-2014-2299, DSA-2871-1, FEDORA-2014-3676, FEDORA-2014-3696, MDVSA-2014:050, openSUSE-SU-2014:0382-1, openSUSE-SU-2014:0383-1, RHSA-2014:0341-01, RHSA-2014:0342-01, VIGILANCE-VUL-14383, wnpa-sec-2014-01, wnpa-sec-2014-02, wnpa-sec-2014-03, wnpa-sec-2014-04
Zend Framework: privilege escalation via OpenID
An attacker can setup a malicious OpenID service, in order to spoof the identity of a Zend Framework user...
CVE-2014-2684, CVE-2014-2685, DSA-3265-1, DSA-3265-2, FEDORA-2014-4603, FEDORA-2014-4612, FEDORA-2014-4636, FEDORA-2014-4651, MDVSA-2014:072, MDVSA-2015:097, VIGILANCE-VUL-14376, ZF2014-02
Zend Framework: external XML entity injection via PHP XML Functions
An attacker can transmit malicious XML data via PHP functions to Zend Framework, in order to read a file, scan sites, or trigger a denial of service...
CVE-2014-2681, CVE-2014-2682, CVE-2014-2683, DSA-3265-1, DSA-3265-2, FEDORA-2014-4603, FEDORA-2014-4612, FEDORA-2014-4636, FEDORA-2014-4651, MDVSA-2014:072, MDVSA-2015:097, VIGILANCE-VUL-14375, ZF2014-01
libssh, stunnel: shared random via fork
An attacker can use a process of libssh or stunnel, which has the same randoms that another process, in order to possibly decrypt this session...
BID-65964, bulletinjan2017, CVE-2014-0016, CVE-2014-0017, DSA-2879-1, FEDORA-2014-3473, FEDORA-2014-3485, FEDORA-2014-5321, FEDORA-2014-5337, JSA10852, MDVSA-2014:053, MDVSA-2015:086, MDVSA-2015:096, openSUSE-SU-2014:0366-1, openSUSE-SU-2014:0370-1, SSA:2015-111-04, USN-2145-1, VIGILANCE-VUL-14366
Linux kernel: NULL pointer dereference via COOKIE_ECHO
An attacker can dereference a NULL pointer via a COOKIE_ECHO, in order to trigger a denial of service of the Linux kernel...
BID-65943, CERTFR-2014-AVI-144, CERTFR-2014-AVI-206, CERTFR-2014-AVI-241, CERTFR-2014-AVI-242, CVE-2014-0101, DSA-2906-1, FEDORA-2014-3442, FEDORA-2014-3448, MDVSA-2014:124, openSUSE-SU-2014:0677-1, openSUSE-SU-2014:0678-1, openSUSE-SU-2014:0766-1, RHSA-2014:0328-01, RHSA-2014:0419-01, RHSA-2014:0432-01, RHSA-2014:0520-01, SOL15317, SUSE-SU-2014:0696-1, SUSE-SU-2014:0807-1, SUSE-SU-2014:0908-1, SUSE-SU-2014:0909-1, SUSE-SU-2014:0910-1, SUSE-SU-2014:0911-1, SUSE-SU-2014:0912-1, USN-2173-1, USN-2174-1, USN-2221-1, USN-2223-1, USN-2224-1, USN-2225-1, USN-2227-1, USN-2228-1, VIGILANCE-VUL-14354
Fine Free file: denial of service via PE
An attacker can invite the victim to analyze a malicious PE file with Fine Free file, in order to trigger a denial of service...
BID-66002, CERTFR-2014-AVI-132, CERTFR-2014-AVI-244, CVE-2014-2270, DSA-2873-1, DSA-2873-2, DSA-2943-1, FEDORA-2014-3534, FEDORA-2014-3537, FEDORA-2014-3606, FreeBSD-SA-14:16.file, MDVSA-2014:027, MDVSA-2014:051, MDVSA-2014:059, MDVSA-2015:080, openSUSE-SU-2014:0364-1, openSUSE-SU-2014:0367-1, openSUSE-SU-2014:0435-1, openSUSE-SU-2014:0495-1, RHSA-2014:1012-01, RHSA-2014:1606-02, RHSA-2014:1765-01, USN-2162-1, USN-2163-1, VIGILANCE-VUL-14352
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Sarge: