Security
Security
This page lists all security advisories that were released by the Gentoo security team. For more information, please visit our distribution's security overview.
| ID | Title |
|---|---|
| 202107-55 | SDL 2: Multiple vulnerabilities |
| 202107-54 | libyang: Multiple vulnerabilities |
| 202107-53 | Leptonica: Multiple vulnerabilities |
| 202107-52 | Apache Velocity: Multiple vulnerabilities |
| 202107-51 | IcedTeaWeb: Multiple vulnerabilities |
| 202107-50 | Singularity: Remote code execution |
| 202107-49 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202107-48 | systemd: Multiple vulnerabilities |
| 202107-47 | libpano13: Format string vulnerability |
| 202107-46 | mpv: Format string vulnerability |
| 202107-45 | PyCharm Community, Professional: Remote code execution |
| 202107-44 | libslirp: Multiple vulnerabilities |
| 202107-43 | RPM: Multiple vulnerabilities |
| 202107-42 | PJSIP: Multiple vulnerabilities |
| 202107-41 | Dovecot: Multiple vulnerabilities |
| 202107-40 | MediaWiki: Multiple vulnerabilities |
| 202107-39 | Apache Commons FileUpload: Multiple vulnerabilities |
| 202107-38 | Apache: Multiple vulnerabilities |
| 202107-37 | Apache Commons Collections: Remote code execution |
| 202107-36 | urllib3: Multiple vulnerabilities |
| 202107-35 | OpenSCAD: Buffer overflow |
| 202107-34 | FluidSynth: Remote code execution |
| 202107-33 | Pillow: Multiple vulnerabilities |
| 202107-32 | Apache Thrift: Multiple vulnerabilities |
| 202107-31 | polkit: Privilege escalation |
| 202107-30 | Xen: Multiple vulnerabilities |
| 202107-29 | ConnMan: Multiple vulnerabilities |
| 202107-28 | GNU Chess: Buffer overflow |
| 202107-27 | OpenEXR: Multiple vulnerabilities |
| 202107-26 | runC: Container breakout |
| 202107-25 | Tor: Multiple vulnerabilities |
| 202107-24 | Binutils: Multiple vulnerabilities |
| 202107-23 | Docker: Multiple vulnerabilities |
| 202107-22 | InspIRCd: Information disclosure |
| 202107-21 | Wireshark: Multiple vulnerabilities |
| 202107-20 | Redis: Multiple vulnerabilities |
| 202107-19 | Jinja: Denial of service |
| 202107-18 | BladeEnc: Buffer overflow |
| 202107-17 | Mechanize: Command injection |
| 202107-16 | Privoxy: Multiple vulnerabilities |
| 202107-15 | blktrace: Buffer overflow |
| 202107-14 | rclone: Weak random number generation |
| 202107-13 | GLib: Multiple vulnerabilities |
| 202107-12 | Schism Tracker: Multiple vulnerabilities |
| 202107-11 | OpenDoas: Insufficient environment filtering |
| 202107-10 | TCG TPM2 Software Stack: Information disclosure |
| 202107-09 | Mozilla Firefox: Multiple vulnerabilities |
| 202107-08 | PostSRSd: Denial of service |
| 202107-07 | glibc: Multiple vulnerabilities |
| 202107-06 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202107-05 | libxml2: Multiple vulnerabilities |
| 202107-04 | Graphviz: Multiple vulnerabilities |
| 202107-03 | libqb: Insecure temporary file |
| 202107-02 | FreeImage: Multiple vulnerabilities |
| 202107-01 | corosync: Denial of service |
| 202105-39 | Ceph: Multiple vulnerabilities |
| 202105-38 | nginx: Remote code execution |
| 202105-37 | Nextcloud Desktop Client: User-assisted execution of arbitrary code |
| 202105-36 | cURL: Multiple vulnerabilities |
| 202105-35 | OpenSSH: Multiple vulnerabilities |
| 202105-34 | Bash: Privilege escalation |
| 202105-33 | containerd: Multiple vulnerabilities |
| 202105-32 | PostgreSQL: Multiple vulnerabilities |
| 202105-31 | Nettle: Denial of service |
| 202105-30 | MuPDF: Multiple vulnerabilities |
| 202105-29 | Tar: Denial of service |
| 202105-28 | MariaDB: Multiple vulnerabilities |
| 202105-27 | MySQL: Multiple vulnerabilities |
| 202105-26 | SpamAssassin: Arbitrary command execution |
| 202105-25 | OpenVPN: Authentication bypass |
| 202105-24 | FFmpeg: Multiple vulnerabilities |
| 202105-23 | PHP: Multiple vulnerabilities |
| 202105-22 | Samba: Multiple vulnerabilities |
| 202105-21 | Tcpreplay: Multiple vulnerabilities |
| 202105-20 | Dnsmasq: DNS cache poisoning |
| 202105-19 | Firejail: Privilege escalation |
| 202105-18 | LittleCMS: User-assisted execution of arbitrary code |
| 202105-17 | rxvt-unicode: User-assisted execution of arbitrary code |
| 202105-16 | X.Org X11 library: Denial of service |
| 202105-15 | Prosŏdy IM: Multiple vulnerabilities |
| 202105-14 | Squid: Multiple vulnerabilities |
| 202105-13 | Mumble: User-assisted execution of arbitrary code |
| 202105-12 | OpenSMTPD: Multiple vulnerabilities |
| 202105-11 | GNU Screen: User-assisted execution of arbitrary code |
| 202105-10 | GNOME Autoar: User-assisted execution of arbitrary code |
| 202105-09 | BusyBox: Denial of service |
| 202105-08 | ICU: Multiple vulnerabilities |
| 202105-07 | Telegram: Security bypass |
| 202105-06 | Smarty: Multiple vulnerabilities |
| 202105-05 | Mutt, NeoMutt: Denial of service |
| 202105-04 | Boost: Buffer overflow |
| 202105-03 | GPT fdisk: Integer underflow |
| 202105-02 | stunnel: Improper certificate validation |
| 202105-01 | Exim: Multiple vulnerabilities |
| 202104-10 | Mozilla Firefox: Multiple vulnerabilities |
| 202104-09 | Mozilla Thunderbird: Multiple vulnerabilities |
| 202104-08 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202104-07 | ClamAV: Denial of service |
| 202104-06 | libTIFF: Multiple vulnerabilities |
| 202104-05 | GRUB: Multiple vulnerabilities |
| 202104-04 | Python: Multiple vulnerabilities |
| 202104-03 | WebkitGTK+: Multiple vulnerabilities |
| 202104-02 | X.Org X Server: Privilege escalation |
| 202104-01 | Git: User-assisted execution of arbitrary code |
| 202103-04 | SQLite: Remote code execution |
| 202103-03 | OpenSSL: Multiple vulnerabilities |
| 202103-02 | Redis: Remote code execution |
| 202103-01 | Salt: Multiple vulnerabilities |
| 202102-02 | Mozilla Thunderbird: Multiple vulnerabilities |
| 202102-01 | Mozilla Firefox: Multiple vulnerabilities |
| 202101-38 | NSD: Symbolic link traversal |
| 202101-37 | VLC: Buffer overflow |
| 202101-36 | ImageMagick: Command injection |
| 202101-35 | phpMyAdmin: Multiple vulnerabilities |
| 202101-34 | Telegram Desktop: Multiple vulnerabilities |
| 202101-33 | sudo: Multiple vulnerabilities |
| 202101-32 | Mutt, NeoMutt: Information disclosure |
| 202101-31 | Cacti: Remote code execution |
| 202101-30 | Qt WebEngine: Multiple vulnerabilities |
| 202101-29 | OpenJPEG: Multiple vulnerabilities |
| 202101-28 | ncurses: Multiple vulnerabilities |
| 202101-27 | FreeRADIUS: Root privilege escalation |
| 202101-26 | f2fs-tools: Multiple vulnerabilities |
| 202101-25 | Mutt: Denial of service |
| 202101-24 | cfitsio: Multiple vulnerabilities |
| 202101-23 | PEAR Archive_Tar: Directory traversal |
| 202101-22 | libvirt: Unintended access to /dev/mapper/control |
| 202101-21 | Flatpak: Sandbox escape |
| 202101-20 | glibc: Multiple vulnerabilities |
| 202101-19 | OpenJDK: Multiple vulnerabilities |
| 202101-18 | Python: Multiple vulnerabilities |
| 202101-17 | Dnsmasq: Multiple vulnerabilities |
| 202101-16 | KDE Connect: Denial of service |
| 202101-15 | VirtualBox: Multiple vulnerabilities |
| 202101-14 | Mozilla Thunderbird: Remote code execution |
| 202101-13 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202101-12 | Wireshark: Multiple vulnerabilities |
| 202101-11 | Zabbix: Root privilege escalation |
| 202101-10 | Asterisk: Multiple vulnerabilities |
| 202101-09 | VirtualBox: Multiple vulnerabilities |
| 202101-08 | Pillow: Multiple vulnerabilities |
| 202101-07 | NodeJS: Multiple vulnerabilities |
| 202101-06 | Ark: Symlink vulnerability |
| 202101-05 | Chromium, Google Chrome: Multiple vulnerabilities |
| 202101-04 | Mozilla Firefox: Remote code execution |
| 202101-03 | ipmitool: Multiple vulnerabilities |
| 202101-02 | Firejail: Multiple vulnerabilities |
| 202101-01 | Dovecot: Multiple vulnerabilities |