The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Squeeze

OpenSSL: memory corruption via asn1_d2i_read_bio
An attacker can use malformed ASN.1 data, with an application linked to OpenSSL, in order to corrupt the memory, which leads to a denial of service or to code execution...
1643316, BID-53158, c03333987, CERTA-2012-AVI-224, CERTA-2012-AVI-286, CERTA-2012-AVI-419, CERTA-2012-AVI-479, CERTFR-2014-AVI-480, CERTFR-2016-AVI-300, CVE-2012-2110, DSA-2454-1, ESX350-201302401-SG, ESX400-201209001, ESX400-201209401-SG, ESX400-201209402-SG, ESX400-201209404-SG, ESX410-201208101-SG, ESX410-201208102-SG, ESX410-201208103-SG, ESX410-201208104-SG, ESX410-201208105-SG, ESX410-201208106-SG, ESX410-201208107-SG, FEDORA-2012-6395, FEDORA-2012-6403, FreeBSD-SA-12:01.openssl, HPSBUX02782, JSA10659, KB27376, MDVSA-2012:060, NetBSD-SA2012-001, openSUSE-SU-2013:0336-1, openSUSE-SU-2013:0337-1, openSUSE-SU-2013:0339-1, PSN-2012-09-712, PSN-2013-03-872, PSN-2013-05-941, RHSA-2012:0518-01, RHSA-2012:0522-01, RHSA-2012:1306-01, RHSA-2012:1307-01, RHSA-2012:1308-01, SOL16285, SSRT100844, SUSE-SU-2012:0623-1, SUSE-SU-2012:0637-1, SUSE-SU-2012:1149-1, SUSE-SU-2012:1149-2, VIGILANCE-VUL-11559, VMSA-2012-0003.1, VMSA-2012-0005.2, VMSA-2012-0005.3, VMSA-2012-0008.1, VMSA-2012-0013, VMSA-2012-0013.1, VMSA-2013-0001.2, VMSA-2013-0003
Linux kernel: denial of service via KVM IOMMU
A local attacker, who is located in a KVM guest system, can add/remove devices, in order to progressively use all available memory...
BID-53162, CVE-2012-2121, DSA-2668-1, FEDORA-2012-6386, FEDORA-2012-6406, RHSA-2012:0676-01, RHSA-2012:0743-01, VIGILANCE-VUL-11558
MySQL: several vulnerabilities of April 2012
Several vulnerabilities of MySQL are corrected by the CPU of April 2012...
BID-53058, BID-53061, BID-53064, BID-53067, BID-53071, BID-53074, CERTA-2012-AVI-220, cpuapr2012, CVE-2012-0583, CVE-2012-1688, CVE-2012-1690, CVE-2012-1696, CVE-2012-1697, CVE-2012-1703, DSA-2496-1, openSUSE-SU-2012:0617-1, openSUSE-SU-2012:0618-1, openSUSE-SU-2012:0619-1, RHSA-2012:1462-01, VIGILANCE-VUL-11554
TYPO3: Cross Site Scripting via Exception Handler
An attacker can generate an exception in a TYPO3 extension, in order to create a Cross Site Scripting, which can be used to execute JavaScript code in the context of the web site...
BID-53047, CVE-2012-2112, DSA-2455-1, TYPO3-CORE-SA-2012-002, VIGILANCE-VUL-11544
MySQL: vulnerability
An attacker can use a vulnerability of MySQL...
59533, CVE-2012-2750, DSA-2780-1, MDVSA-2013:250, VIGILANCE-VUL-11541
Samba: buffer overflow via PIDL
An unauthenticated attacker can send a malicious RPC query, in order to generate an overflow in Samba, which leads to code execution with root privileges...
8815, BID-52973, BID-55655, c03365218, CERTA-2012-AVI-210, CVE-2012-1182, DSA-2450-1, FEDORA-2012-5805, FEDORA-2012-5843, FEDORA-2012-6382, HPSBUX02789, MDVSA-2012:055, openSUSE-SU-2012:0507-1, openSUSE-SU-2012:0508-1, RHSA-2012:0466-01, RHSA-2012:0478-01, RHSA-2013:0506-02, RHSA-2013:0515-02, SSRT100824, SUSE-SU-2012:0500-1, SUSE-SU-2012:0501-1, SUSE-SU-2012:0501-2, SUSE-SU-2012:0502-1, SUSE-SU-2012:0504-1, SUSE-SU-2012:0515-1, VIGILANCE-VUL-11531, ZDI-12-063, ZDI-12-064, ZDI-12-068, ZDI-12-069, ZDI-12-070, ZDI-12-071, ZDI-12-072
ImageMagick: four vulnerabilities
An attacker can invite the victim to open a malicious image with ImageMagick, in order to stop the application or possibly to execute code...
807993, 807994, 807997, BID-52898, CERTA-2013-AVI-543, CERTFR-2014-AVI-112, CERTFR-2014-AVI-244, CVE-2012-0259, CVE-2012-0260, CVE-2012-1610, CVE-2012-1798, DSA-2462-1, DSA-2462-2, FEDORA-2012-9313, MDVSA-2012:077, MDVSA-2012:078, RHSA-2012:0544-01, RHSA-2012:0545-01, SUSE-SU-2012:0763-1, SUSE-SU-2012:0764-1, USN-2132-1, VIGILANCE-VUL-11522
libtiff: integer overflow via tile/strip
An attacker can invite the victim to open a malicious TIFF image, in order to create a denial of service or to execute code in applications linked to libtiff...
BID-52891, CERTA-2012-AVI-192, CERTA-2012-AVI-343, CVE-2012-1173, DSA-2447-1, FEDORA-2012-5406, FEDORA-2012-5410, MDVSA-2012:054, openSUSE-SU-2012:0539-1, RHSA-2012:0468-01, SSA:2012-098-01, SUSE-SU-2012:0516-1, SUSE-SU-2012:0525-1, VIGILANCE-VUL-11521
libpng: memory corruption via png_set_text_2
An attacker can invite the victim to open a malicious PNG image with an application linked to libpng, in order to corrupt the memory, leading to code execution...
BID-52830, CERTA-2012-AVI-183, CERTFR-2014-AVI-502, CVE-2011-3048, DSA-2446-1, FEDORA-2012-5079, FEDORA-2012-5080, FEDORA-2012-5515, FEDORA-2012-5518, MDVSA-2012:046, openSUSE-SU-2012:0491-1, RHSA-2012:0523-01, SOL15881, SSA:2012-206-01, SUSE-SU-2012:0732-1, VIGILANCE-VUL-11515
Linux kernel: denial of service via kvm_apic_accept_pic_intr
A local attacker can invert the creation of KVM devices, in order to force the kernel to dereference a NULL pointer, which stops it...
BID-53488, CVE-2012-1601, DSA-2469-1, openSUSE-SU-2013:0925-1, openSUSE-SU-2013:0927-1, RHSA-2012:0571-01, RHSA-2012:0676-01, SUSE-SU-2012:1679-1, SUSE-SU-2013:0786-1, VIGILANCE-VUL-11513
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Squeeze: