DELTA 538392 0 25566 SVN#"fCx<N}T]+%XRx^mn0 S=YV%YzݲnBIӏj@TY[i7;~mwbsfkvfi 毷 |h@O)5(ǒwM&Z.-vxDKyQ'cޜ<M2SvUeQ#QBHCe,:ہ() VGR/mD|-/UqCu- )60S sD 8KC6 ~̢|8ӯbpÄG>#8cL\xvne|t͂Gtj{ofؼṸ|PC~mjɅu;e}OlxaZ~H})x^AO0 vi1Q\@-k5Z']ۓIISlHm14`An gt`i㴧E4 F 0:w1r-t-Epa v>&G!Dl!_z ])BWlv-} x^UOk1L!-t]a>RZ%RVN֨Ɣ~J&4Oo~*WYWMpzUBˀ>58'LIORݨEa)uVnny>_żwT}`ӱn! ʑ Tj:V%K qp88|Oy^|#z i4lQ Ew;X#Ql7f?P48삿'WU;9(;!U3vh CVE-2019-0053 SA-19:12.telnet7-2414a3b376-b30a-11e9-a87f-a4badb2f4699"> FreeBSD -- Privilege escalation in cd(4) driverTo implement one particular ioctl, the Linux emulation code used a special interface present in the cd(4) driver which allows it to copy subchannel information directly to a kernel address. This interface was erroneously made accessible to userland, allowing users with rI>EY}lx^Q_K0Oqަ-"JA \'{]7؆Ch*ü1균Lk;m39qQej[>I䞩 wIH0߅ac98ûacpHAEǕY5mal5#,'xAEX2,dcq 6)5izXQj)+X{tz 9-ÂN(D [J*))m}JmW 3[g>^[{GfbZ ̉֬F D5y= 2jwwKTũnN7L]YM}*x^aO0?˯?0DK%h1 wz h}O xt@aanL&auڻHtxc姣Vȅ`ZA?`p kǖ;r̷JvN[INGT@K' rrR8J ȲH/Rs+;:p"Ӻta`U|:׆hgbjR[RβWSc;iKUvla FKh, XAA6:L Fi*^ah0Ä]ac? >XG>X4b?,F~r^@J}v~}ex^]n O1ʽqQK)Uԋ ]{/ۭ$p wǰ47y>m~2ҜG j ʣy 6kK<|$-x4*7{Oy{$g:e^l*9Cph}u*!tCF)AT / ԌVV@LoODcx`|>sαj&lKV/3; (xd4gY W}k;=(: B[X6z!e-jԾ@u^8 (; 6찿`0DΏ\ږ0).ܑ!ydy/O%[XǜǪKleG[iCEdiɲkfGFi4}9IF=Z UCYI%SUfM{ vв@ |ah$ʬ<*E2(܈eIu„:KPϟlpgt=? >̂X2@ # ¸mWegA}]x^; 0EUdF܂ }tWDn~i^>TֱN )c1c,1+ U0VXcU0VX+[vİT<}/x^n0EW ,RIp A(P4mH%DG%RPm.H`;$\:DxZǢnUVu^y,,iwCI"a9&y[=;n%j4"ܡFЁŎwEp?ՖҷCmqkI{$,Vŝv8ΖgI(:(ChkMØ^ikCR^L,Z7ڠ%de29t9Uw* YDߙE[rTU 31h!p ߴ4a 8K 'x4&M V 1LP oQV6Q 0gTڑBكE^|q( qcɲrK̸$`$R]649X5yH&孑ft,ls͌)S0@2?H&Rog[ *nd0`6Ԧ`Vx32-77^uE̽W'C^2_1$]ʹUf@aI3$ F1ˀZ SSS} x^j0 {=AbYln}aYvbHszP~ }:;e_^=|nK^Ǹ|u2[د}KC=׻T=M4KZO[Ѹ? AH>Ha$ 1[B/)DUG!m92 AD7DYLj?Q$-DVCrE.AQ/W|Ѡ>LZHAT}hx^URMk1=׿bn c(!B144Z#)).;o޾/{ Fl'(~M/ G ZSJ[Gslh^BL)2ɦRmiHa7& x 1~'R!FTK GfUa$@2m6{rgis]op@!G -4!AFM|_Z`}$ZT5TНRڞhq$m{+ =j}'kMmo kgڒ4ˆE/T^ٷ3z:")'Ma|gHނ<,7zrtԳy<^ ʔ$XHzӵJˀ,4dS/JX"@*WM?=v?,}@x^UR0=qڕ0CXrsh=W8plvXXv-YMf2ﰏN|DVxA=>%F 3a,-_*ņwm| ">!6ǜx%v/~RJÈNc1xD&ixiBeJ{QG5[ ɯ̭ʇ1iעնjY]Ȅ VzD*ܵ(+`t:c3Ƨ=Ur5A9%f]TסΏ'uIz{FVǨ$]!#yo04IU].W5hD+&M7RChiw2 ,ߌ'ꅒ0$귘v9xp0zMލyg/e0L֐؟$>#]0Vv>XM?A@R+Mx^Pr I'mPK.^`k#8x*E +aJ\Ry@ )btؼĬoksL.Mԯժ^/ʚ?<3rŀ`0}jahTbJ{Rp(}x^J0O LsoҦnWpmd[ |0}'^93 UB߉w{D眗Ę),*ĉ%%}Ȥ}} Wj 'L՜ PsBҌDP OA6x06i Dڶkt;Xܿ-F(pH[E@7.68P|jV="\pE}Qx^]RMo ='bIWREҪ& * p⏴R9ax@rПδ\@^^=$|3F8RĶ4$j"g&"Ł 폟ʩs*//b}GBy?sj]%Un l%ʊmŶa:Q ('PգD)j'W#a\STKg]!OʝXW=Ŏ%Ul'ʒ qì|kT|5q_R]0<kɎzZr:wUwJ>KOB(No٤¡q KiS]b .j=ךZ`b~Kl6` Q,?Ed8vSM0gx^}Mo0 qVJ J9o*FI|%m)<~&-iI6뵏vǫ+EV {Bܹډ}Ś&w5N6|HtJ-W3d|kYL"fl x:ov@[;@Ni}dx^]Oo0 vdYa (Sk;-)QE(:i(gAaS|hԫpGUqO]^(#{j\h-mWlխa*6=Ċ} [6a {'k8R>@F)&xOst(r#143D$ h eן" k${UwF1Q)Q};DnU5$;}t1WlZQ.I:|l^]s[k#I%.+~'}&`>w^t J:v@XM@:C{ZIP archiv1541 https://github.com/libarchive/libarchive/commit/d0331e8e5b05b475f20b1f3101fe1ad772d7e7e7 2016-05-10 squidsquid 3.0.03.5.18 squid-devel 4.0.04.0.10The squid development team reports:

Please reference CVE/URL list for detailsç.lmKn2qؙ0hLa 3覾7E:!t q{9miI(7} ;F##Q4Ү׷U&aUIVKS0*M :)$U5%0ȷjL g!K^vZN(-EwpJ+TR?k_qR}R2015-08-06a267cd6c-b0c4-11e5-8d13-bc5ff45d0f28"> qemu -- stack buffer overflow while parsing SCSI commandsrasad J Pandit, Red Hat Product Security Team, reports:

Qemu emulator built with the SCSI device emulation support is vulnerable to a stack buffer overflow issue. It could occur while parsing SCSI command descriptor block with an invalid operati"x~ _@{.x^n0 S+8 PteŰ ۙfh-{,o?*b P(4+Y< Or`t%inԤ®[]0.sM c{"̑1Oߙ$ɓt (T0 t` Z :EM@܉kVU4u˲ EuQf}m_ZX&n$"^'sIKL㖁 O}x^un0)"- UZiJ] דxpl3v6gTܔ\E9gLC0t&^~p79/Uh3Ie&= LA~$@oʯ_ nGkI I L=;Cm0;E~APX\0DsBc[HFh ܏ jM!4`F)ZGL`8E vԗUY\$|iH+b Ǭ F 'TۖRd؛0P>7w}`MAWz9|٤օ4 _#Vv^hqv;}4x^uN0 S@U]8 UCT<:!M*'؞tEJl?946Q6,>[oEƗ'{>W'goS,p gWh:"O(7"Ϧ^1pٔK,*vJw6# :JG5/ L%9PyH jbc[WIaրU`*k7` qĢ=*؞3ְI`r*ͥ|%ܴzva^0; 6p|+vhZ*.ƓAS$#bv ̯n%\$H\@p+F8Jvg8EZead to escape from confined environment - resolved in Ansible 1.9.25-3908 CVE-2015-6240 2015-07-02 2015-08-18 ansibleansible 17~v@M>A}@x^un0S,|JJLEE=4撢`M-3>}(9fg>ʳC>uʣ~},;*t*>_~]m6'.7 bH@!-8r!~%` __=0hXO wƚ|THtG :$b =(X]\ mJj,Zۈi sEj;Yn0Phb~^ik,,G/iJn¾م~|0th}|z> vSpV*Z:sۖFz;4VUuaVQ񏁵! LN?8}?oY,v@h~y in the case where the file it tried to save to could not be createdurl>http://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/private-key-not-wiped-2.html CVE-2015-2157 2015-02-28 2015-03-05 :2W z/akQ $$\:WYԁQM@s@ov@J33x^R0O;ϙADGAn댵Il;$HH9ggOD[0GEPמމnGEp-?|2/c3+zaڛBio|v)sO߻A#\GvRA:VLK@A9𢩹XP|$NdTW,%C3DuFɼuw"GSN8퇯")*U /Uf^8hi[N#<.!=mpC$vq}PL8$Z0y,k2^so\:#߾$!.nkV3l B.0Fa;yd ~Lp'0=eς_7.dh [3:K]=;B/3F!#8e`HAdJ3Fͱiɣ\O;%>",1k%>TuZg2SrQĞvzD5([][hd7G/&gӲAU:iGԗSq\ӣQUU]Cloj5,)s(+nbrWa(D4\zٴ~^ ۴ }Ѳe? ÁΠ=]?b*q x^]Rn0=_1%-PV$+ Cނ޹"I}l[zt,!`p߾~pBrwma5a~S*gᏘ0):Aգ:@hŒ m$dި0s\H"6%PB/xB gzh08|%A&GEU  W꘩ I!&r]fyȋ'˪avƋ Z4ah#)G֔U/}͵牕;^,UJʋ&oNFzT'YUa͞|frD)WQ-Ewz#eo}p ?r"FԼX :j /);>t͠!K{=hV} x^AK1+^b *fiLQahHV6j? /eߔ@L븉Lg u(iz8#%v:p] mq0u^X4XU3D&m Xd0/Jt(XCٮ M7S;|_ <̞F"s!s_@1}$x^n0S,rr"m BqishzqQ&P4#mM꒒Rt~ w%:dFԣq3r/tuWI0R5Z@5JŨtΏ#zw,i ZjYy[d҂i'uZ@󑻦; '=aL5P<70Bl#NTS LlJ3RHYWmG|&BRР fs&n,]ȪB+G^4t_ۛ <폻oٜ4j2LAJ.W'0=^)~+[.ȮFt&(zɡ?h Њ Rk?}IE"ZጌBm*qq%nžַon7wwV/?˷gRn~pHd'+˜(GH 'LeW'xM (m0q%ٓ(LXbvE;/. #TVBRn5L:O M4a'A<Ĥ!1&`a+46CNTg/QU 8V$N\#TLF|EWhiKN=3^XT) WIj6'WY9cf՘hrRϲ.0+ÖJV#뚞C tظiҳ͎oy Z?{N$+!lSW1[8[j!WKc5|C3`a d+(xޡ9~صsw]S3^5ߓ=b>803/BX7Y}_s[:W/av}1vename>CVE-2012-0031 CVE-2012-0053 tiW`LHy5hQ (~Tx5%Xǂ0Z9 9# pqg},x^ER =_1ʱZ!Jb]Uꥇ\U,`B'><1ӞSFTF '  c m-&{ h;riKr#m1^ mzp65 :#)SAض*e`Ǐuo6f G^7 g[}׭^yZ/PpL ɆdN3wɾG̈́"O,+>lNxlqJ-#;M\ 3w=aH[}~,9k> |B@BZ8u\BP:1i"c G=QJ-Nb[uVe hPFgygẄ&:3LF3q v};H@/VI49/P?>,]u@fx^}n SzXJ#FJKoMFABvY.桚NxW[=1H}5=Tfh¡ c+M@:QF3Q݊dcNNE= u-4<*: @iulĶH WE)X"ł%yުDƖlY1&) ZVޣfLEQpGʸϮY(E{#8J[__,I8ʲbϲ})+u:-~#Frxhj#f>?Y{ՕlF8d9&v8M0]RGU+Y$>jVY~dڍ&pB C0t$"d9+g8T']7{!GxֿC&B ݻsR"0`t~ |C|nCg8`!3:s ‚(W'N8N8N8N8kvB}Usecurity/announce/2009/mfsa2009-1817161514.html 2009-04-21 2009-04-22 2009-12-12 poppler -- Poppler Multiple Vulnerabilities poppler 0.10.6Secunia reports:

E*}Z yG.d$DXgJ+}N@v(}?x^URn0 ='_A\vֹ2a;l3-);[2$&$Ee( 3G( ,;l7KzHNI߿Bq +>̷ƨ<٭Heg%.5,*p 2DGj>>}vECmKz^uƃ1zo*|Utc:Aݝ>_CyFHC|xsGa:f5Eg0rni` X{":G|xci>$ƄA >/Miܯ!n ]vJ?v@N@APA5‰S_Vz kwy+\{Tu[娋w$ 9KK6ˬ-0@r hS"ȬiN0 .F$ʠ}*>k &[4I5_o}$x^]ˎ0 EW,jv@"ѱY2$S}i;iI]+R-7?4%.j #JkLɞBn8C\ʁv=Oifhv/@L:\7W|5A"ձcX_>,i_n!_Q|<oiZ<͝L<G)^uXo`!%߅p6Qʛh0])ynI(هp(x<:' ZRDl0oϙM:LB+xV:Ы/Vn.|9њo;Qa[4:S8sr_NʘۍųZ]ve Ou>zo)ڶ"whz+}e5IoJ.QȨ4yyWw)8nͶR Nx?~S ;`Pq }Gx^mAO0 WXז U%Hj-KJle=eSɗvv궼E "H((| sQ.0b68MM$g'źL@|Y 4DakcyPρ-et3ਔ(&w c(?b~>/fJE8e>EHQ6NJcǾEa<)Y*Wмg%&rLgk>`0(Cɯ)n:РrcKiuso돎\5E3_i[uR~v̫*_;Ə8_@Ug;!z&I-bXWy/;U+->#?la&>lSZCO Ti,+WWY}v0Z?>n~ 0dYgL-vxew@'} x^Mo0 ͯ |wd'so;l>lWɢ=5p%:Aha=`R/C)^]Q\|E-֛͢ - 4Ylfsd}V.P,ov;v7*tEa4]dɌaaXCS-5K=vVQvG9`tϸH+@p z彇5Ȱ4)gRۏU/$<ȨsG6Ї6BoFIKZS·Jq4( $$b,d4Rzŀ F}x^RM@ = kO i|=qADALdԉ=GK=vRJwy~9@AjВj*wP\}hB֛&noo6MV)d)XJ|ln44,5>m p; CaáΣ=dHXEpX0_>xvqR.xjnˠ@ Zb'RwX 4Il]~pҏ15;֖TDT Y7Faj4k6iaELKzzc쒏 ^)gf5|idYM t,lew|w)WoOsNu=IW[)_w%a0k`hZˏ8]G\C]*ͧ&W ~B+ˠTIIf}:x^QM0 = kϤtAnHHpF&%I IڙY ޳ck i]sc#lO^ӧ\U])(gUDYmbTJZR\f4El5jH1QFW vsWCNtGn[4!ro-麌=DZQu"{Eε0eƜLlu,!g0EA93Z FF%廕{9+=\\,L{4·.l<.Vsa$zZ%&Iv+U<,H'Sw$~F C jiMd}\Ʌ $3],]e(%`HY$yCV4UK{ǵүuˀ\j~&PD;D"5XwVO+єZEsQ|Iݔy~eQeU*wb$mLΆ|l{ΓܳzO4KIKjg_f}yWMҳjꠈvK/xUYYOHif1u٫zYQ&d~E^\+؉V K;acFZ}=x^]Rm0 |V?8Ӵ_i S?S Rc?EBo0+5 Gsl^9ٮP-=xLu-q| ~[uUm<^KMja1>lW,3eP#$ Xdz"`tt54XCuCػ]@F.PhkCA?rTx㝼PS,YBfbfY N}ۺe*5MS:@j7 #3%/@ ހ&V%DT@OvR3q}Treenend.org.uk/~sgtatham/putty/wishlist/vuln-sftp-strin20 2005-02-2029dd0065-81fa-11d9-a9e7-0001020eed82"> kdelibs --kdelibs ja-kdelibs 3.3.2_5Davide Madrisan814653804757">

The `dcopidlng' script in the KDE library package (kdelibs-3.3.2/dcop/dcopidlng/dcopidlng) creates temporary files in a unsecure manner.

Note: dcopidlng is only used at b1`@"x}+x^eR O"W!@,+JKyk _A+B,;@xHz@&]~wB@5tk+!#d1zvH m7N(N1E9y 3HZ 2aoҪD^ V9|eQѶՌUjض )̷+,й/q(1IlmlښѦ8i-ʜ8@'!%#o:J77u%f '\ZjjL%' |WA%eyYҜ\GkU%qdEX`J)%Pr}J~в(0]{!~?©y#hց zmt8Y2q8䢏 B^1{oޞ+q}Or7wy $^#[y=!Q@YZuUv@ASDmdN GoCn%K/=]&v,=- b2echH0\a/TJ.۠E6PPs-c:]a g,8fl* =ޮηuj[(嶅E!R6vrrs{tEI~ˈ qW_aV,{BG#Q@iv@}O,ϞW1?3?BT2Brg}"xx^eMn0) @g'd5P>I/VJ]4ft'f]wYΪ(:r. zgu}ڶ϶-mTV뒺ݖ=jܨeajvR<q h;PXj&l2bp#'