Debian Beveiliging

Debian Security Advisories

The following vulnerabilities have been discovered in the webkit2gtk
web engine:

DSA-4976 wpewebkit – security update

20 September 2021, 12:00 am

The following vulnerabilities have been discovered in the wpewebkit
web engine:

DSA-4977 xen – security update

20 September 2021, 12:00 am

Multiple vulnerabilities have been discovered in the Xen hypervisor,
which could result in privilege escalation, denial of service or
information leaks.

Two vulnerabilities were discovered in the Nextcloud desktop client,
which could result in information disclosure.

It was discovered that Ghostscript, the GPL PostScript/PDF interpreter,
does not properly validate access for the “%pipe%”, “%handle%” and
“%printer%” io devices, which could result in the execution of arbitrary
code if a malformed Postscript file is processed (despite the -dSAFER
sandbox being enabled).

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code.

Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code.

Kevin Israel discovered that Postorius, the administrative web frontend
for Mailman 3, didn’t validate whether a logged-in user owns the email
address when unsubscribing.

DSA-4971 ntfs-3g – security update

9 September 2021, 12:00 am

Several vulnerabilities were discovered in NTFS-3G, a read-write NTFS
driver for FUSE. A local user can take advantage of these flaws for
local root privilege escalation.

DSA-4968 haproxy – security update

7 September 2021, 12:00 am

Ori Hollander reported that missing header name length checks in the
htx_add_header() and htx_add_trailer() functions in HAProxy, a fast and
reliable load balancing reverse proxy, could result in request smuggling
attacks or response splitting attacks.

Etienne Stalmans discovered that unsquashfs in squashfs-tools, the tools
to create and extract Squashfs filesystems, does not validate filenames
for traversal outside of the destination directory. An attacker can take
advantage of this flaw for writing to arbitrary files to the filesystem
if a malformed Squashfs image is processed.

It was discovered that a buffer overflow in rekeying in libssh could
result in denial of service or potentially the execution of arbitrary
code.

DSA-4966 gpac – security update

31 August 2021, 12:00 am

Multiple security issues were discovered in the GPAC multimedia framework
which could result in denial of service or the execution of arbitrary code.

DSA-4964 grilo – security update

27 August 2021, 12:00 am

Michael Catanzaro reported a problem in Grilo, a framework for
discovering and browsing media. TLS certificate verification is not
enabled on the SoupSessionAsync objects created by Grilo, leaving users
vulnerable to network MITM attacks.

Multiple vulnerabilities have been discovered in OpenSSL, a Secure
Sockets Layer toolkit.