2013 年に報告されたセキュリティ勧告

[2013-09-29] DSA-2767 proftpd-dfsg - denial of service
[2013-09-27] DSA-2766 linux-2.6 - privilege escalation/denial of service/information leak
[2013-09-26] DSA-2765 davfs2 - privilege escalation
[2013-09-25] DSA-2764 libvirt - programming error
[2013-09-24] DSA-2763 pyopenssl - hostname check bypassing
[2013-09-23] DSA-2762 icedove - several vulnerabilities
[2013-09-19] DSA-2761 puppet - several vulnerabilities
[2013-09-18] DSA-2760 chrony - several vulnerabilities
[2013-09-18] DSA-2759 iceweasel - several vulnerabilities
[2013-09-17] DSA-2758 python-django - denial of service
[2013-09-14] DSA-2757 wordpress - several vulnerabilities
[2013-09-13] DSA-2756 wireshark - several vulnerabilities
[2013-09-11] DSA-2755 python-django - directory traversal
[2013-09-10] DSA-2754 exactimage - denial of service
[2013-09-13] DSA-2753 mediawiki - information leak
[2013-09-07] DSA-2752 phpbb3 - permissions too wide
[2013-09-04] DSA-2751 libmodplug - several vulnerabilities
[2013-09-03] DSA-2750 imagemagick - buffer overflow
[2013-09-02] DSA-2749 asterisk - several vulnerabilities
[2013-09-01] DSA-2748 exactimage - denial of service
[2013-08-31] DSA-2747 cacti - several vulnerabilities
[2013-08-29] DSA-2746 icedove - several vulnerabilities
[2013-08-28] DSA-2745 linux - privilege escalation/denial of service/information leak
[2013-08-27] DSA-2744 tiff - several vulnerabilities
[2013-08-27] DSA-2743 kfreebsd-9 - privilege escalation/information leak
[2013-08-26] DSA-2742 php5 - interpretation conflict
[2013-08-25] DSA-2741 chromium-browser - several vulnerabilities
[2013-08-23] DSA-2740 python-django - cross-site scripting vulnerability
[2013-08-21] DSA-2739 cacti - several vulnerabilities
[2013-08-18] DSA-2738 ruby1.9.1 - several vulnerabilities
[2013-08-12] DSA-2737 swift - several vulnerabilities
[2013-08-11] DSA-2736 putty - several vulnerabilities
[2013-08-07] DSA-2735 iceweasel - several vulnerabilities
[2013-08-05] DSA-2734 wireshark - several vulnerabilities
[2013-08-02] DSA-2733 otrs2 - SQL injection
[2013-07-31] DSA-2732 chromium-browser - several vulnerabilities
[2013-07-29] DSA-2731 libgcrypt11 - information leak
[2013-07-29] DSA-2730 gnupg - information leak
[2013-07-28] DSA-2729 openafs - several vulnerabilities
[2013-07-27] DSA-2728 bind9 - denial of service
[2013-07-25] DSA-2727 openjdk-6 - several vulnerabilities
[2013-07-25] DSA-2726 php-radius - buffer overflow
[2013-07-18] DSA-2725 tomcat6 - several vulnerabilities
[2013-07-17] DSA-2724 chromium-browser - several vulnerabilities
[2013-07-17] DSA-2723 php5 - heap corruption
[2013-07-15] DSA-2722 openjdk-7 - several vulnerabilities
[2013-07-07] DSA-2721 nginx - buffer overflow
[2013-07-06] DSA-2720 icedove - several vulnerabilities
[2013-07-10] DSA-2719 poppler - several vulnerabilities
[2013-07-01] DSA-2718 wordpress - several vulnerabilities
[2013-06-28] DSA-2717 xml-security-c - heap overflow
[2013-06-26] DSA-2716 iceweasel - several vulnerabilities
[2013-06-26] DSA-2715 puppet - code execution
[2013-06-25] DSA-2714 kfreebsd-9 - programming error
[2013-06-24] DSA-2713 curl - heap overflow
[2013-06-19] DSA-2712 otrs2 - privilege escalation
[2013-06-19] DSA-2711 haproxy - several vulnerabilities
[2013-06-18] DSA-2710 xml-security-c - several vulnerabilities
[2013-06-17] DSA-2709 wireshark - several vulnerabilities
[2013-06-16] DSA-2708 fail2ban - denial of service
[2013-06-13] DSA-2707 dbus - denial of service
[2013-06-10] DSA-2706 chromium-browser - several vulnerabilities
[2013-06-10] DSA-2705 pymongo - denial of service
[2013-06-09] DSA-2704 mesa - out of bounds access
[2013-06-09] DSA-2703 subversion - several vulnerabilities
[2013-06-03] DSA-2702 telepathy-gabble - TLS verification bypass
[2013-05-29] DSA-2701 krb5 - denial of service
[2013-06-02] DSA-2700 wireshark - several vulnerabilities
[2013-06-02] DSA-2699 iceweasel - several vulnerabilities
[2013-06-18] DSA-2698 tiff - buffer overflow
[2013-05-29] DSA-2697 gnutls26 - out-of-bounds array read
[2013-05-29] DSA-2696 otrs2 - privilege escalation
[2013-05-29] DSA-2695 chromium-browser - several issues
[2013-05-26] DSA-2694 spip - privilege escalation
[2013-05-24] DSA-2693 libx11 - several vulnerabilities
[2013-05-23] DSA-2692 libxxf86vm - several vulnerabilities
[2013-05-23] DSA-2691 libxinerama - several vulnerabilities
[2013-05-23] DSA-2690 libxxf86dga - several vulnerabilities
[2013-05-23] DSA-2689 libxtst - several vulnerabilities
[2013-05-23] DSA-2688 libxres - several vulnerabilities
[2013-05-23] DSA-2687 libfs - several vulnerabilities
[2013-05-23] DSA-2686 libxcb - several vulnerabilities
[2013-05-23] DSA-2685 libxp - several vulnerabilities
[2013-05-23] DSA-2684 libxrandr - several vulnerabilities
[2013-05-23] DSA-2683 libxi - several vulnerabilities
[2013-05-23] DSA-2682 libxext - several vulnerabilities
[2013-05-23] DSA-2681 libxcursor - several vulnerabilities
[2013-05-23] DSA-2680 libxt - several vulnerabilities
[2013-05-23] DSA-2679 xserver-xorg-video-openchrome - several vulnerabilities
[2013-05-23] DSA-2678 mesa - several vulnerabilities
[2013-05-23] DSA-2677 libxrender - several vulnerabilities
[2013-05-23] DSA-2676 libxfixes - several vulnerabilities
[2013-05-24] DSA-2675 libxvmc - several vulnerabilities
[2013-05-23] DSA-2674 libxv - several vulnerabilities
[2013-05-23] DSA-2673 libdmx - several vulnerabilities
[2013-05-22] DSA-2672 kfreebsd-9 - interpretation conflict
[2013-05-22] DSA-2671 request-tracker4 - several vulnerabilities
[2013-05-22] DSA-2670 request-tracker3.8 - several vulnerabilities
[2013-05-15] DSA-2669 linux - privilege escalation/denial of service/information leak
[2013-05-14] DSA-2668 linux-2.6 - privilege escalation/denial of service/information leak
[2013-05-12] DSA-2667 mysql-5.5 - several vulnerabilities
[2013-05-12] DSA-2666 xen - several vulnerabilities
[2013-04-30] DSA-2665 strongswan - 認証の迂回
[2013-05-02] DSA-2664 stunnel4 - バッファオーバフロー
[2013-04-22] DSA-2663 tinc - スタックベースのバッファオーバフロー
[2013-04-18] DSA-2662 xen - 複数の脆弱性
[2013-04-17] DSA-2661 xorg-server - 情報漏洩
[2013-04-20] DSA-2660 curl - 機密情報の暴露
[2013-04-09] DSA-2659 libapache-mod-security - XML 外部エンティティ処理の脆弱性
[2013-04-04] DSA-2658 postgresql-9.1 - 複数の脆弱性
[2013-04-04] DSA-2657 postgresql-8.4 - 推測可能な乱数値
[2013-03-30] DSA-2656 bind9 - サービス拒否
[2013-03-28] DSA-2655 rails - 複数の脆弱性
[2013-04-03] DSA-2654 libxslt - サービス拒否
[2013-03-26] DSA-2653 icinga - バッファオーバフロー
[2013-03-24] DSA-2652 libxml2 - 外部エンティティ展開
[2013-03-20] DSA-2651 smokeping - クロスサイトスクリプティング脆弱性
[2013-03-17] DSA-2650 libvirt - ファイルおよびデバイスノードの所有が kvm グループに変更される
[2013-03-15] DSA-2649 lighttpd - 書き込み可能なディレクトリで決まったソケット名を使用
[2013-03-15] DSA-2648 firebird2.5 - 複数の脆弱性
[2013-03-15] DSA-2647 firebird2.1 - バッファオーバフロー
[2013-03-15] DSA-2646 typo3-src - 複数の脆弱性
[2013-03-14] DSA-2645 inetutils - サービス拒否
[2013-03-14] DSA-2644 wireshark - 複数の脆弱性
[2013-03-12] DSA-2643 puppet - 複数の脆弱性
[2013-03-09] DSA-2642 sudo - 複数の問題
[2013-03-20] DSA-2641 perl - ハッシュ再構築の欠陥
[2013-03-14] DSA-2640 zoneminder - 複数の問題
[2013-03-05] DSA-2639 php5 - 複数の脆弱性
[2013-03-04] DSA-2638 openafs - バッファオーバフロー
[2013-03-04] DSA-2637 apache2 - 複数の問題
[2013-03-03] DSA-2636 xen - 複数の脆弱性
[2013-03-01] DSA-2635 cfingerd - バッファオーバフロー
[2013-02-27] DSA-2634 python-django - 複数の脆弱性
[2013-02-26] DSA-2633 fusionforge - 特権の昇格
[2013-02-25] DSA-2632 linux-2.6 - 特権の昇格/サービス拒否
[2013-02-24] DSA-2631 squid3 - サービス拒否
[2013-02-20] DSA-2630 postgresql-8.4 - プログラミングの誤り
[2013-02-25] DSA-2629 openjpeg - 複数の問題
[2013-06-18] DSA-2628 nss-pam-ldapd - バッファオーバフロー
[2013-02-17] DSA-2627 nginx - 情報漏洩
[2013-02-17] DSA-2626 lighttpd - 複数の問題
[2013-02-17] DSA-2625 wireshark - 複数の脆弱性
[2013-02-16] DSA-2624 ffmpeg - 複数の脆弱性
[2013-02-14] DSA-2623 openconnect - バッファオーバフロー
[2013-02-13] DSA-2622 polarssl - 複数の脆弱性
[2013-02-13] DSA-2621 openssl - 複数の脆弱性
[2013-02-12] DSA-2620 rails - 複数の脆弱性
[2013-02-10] DSA-2619 xen-qemu-dm-4.0 - バッファオーバフロー
[2013-02-07] DSA-2618 ircd-hybrid - サービス拒否
[2013-02-02] DSA-2617 samba - 複数の問題
[2013-02-03] DSA-2616 nagios3 - CGI スクリプトにバッファオーバフロー
[2013-02-01] DSA-2615 libupnp4 - 複数の脆弱性
[2013-02-01] DSA-2614 libupnp - 複数の脆弱性
[2013-01-29] DSA-2613 rails - 入力の不十分な検証
[2013-02-10] DSA-2612 ircd-ratbox - プログラミングの誤り
[2013-01-22] DSA-2611 movabletype-opensource - 複数の脆弱性
[2013-01-21] DSA-2610 ganglia - 任意のスクリプト実行
[2013-01-16] DSA-2609 rails - SQL クエリ操作
[2013-01-15] DSA-2608 qemu - バッファオーバフロー
[2013-01-15] DSA-2607 qemu-kvm - バッファオーバフロー
[2013-01-13] DSA-2606 proftpd-dfsg - シンボリックリンク競合
[2013-01-19] DSA-2605 asterisk - 複数の問題
[2013-01-09] DSA-2604 rails - 入力の不十分な検証
[2013-01-09] DSA-2603 emacs23 - プログラミングの誤り
[2013-01-08] DSA-2602 zendframework - XML 外部エンティティ取り込み
[2013-01-06] DSA-2601 gnupg, gnupg2 - 入力サニタイズ処理の欠落
[2013-01-06] DSA-2600 cups - 特権の昇格
[2013-01-06] DSA-2599 nss - 誤って発行された中間認証局
[2013-01-05] DSA-2598 weechat - 複数の脆弱性
[2013-01-04] DSA-2597 rails - 入力検証の誤り

debian-security-announce メーリングリストを講読すると、最新の Debian セキュリティ情報を得ることができます。また、このメーリングリストのアーカイブを閲覧することもできます。