Tuesday, February 27, 2024

Debian 9.6 Released With Important Security Updates and Miscellaneous Bugfixes

Debian Project announced Debian 9.6, the sixth update of the stable Debian 9. It is not a completely new version, it contains security updates of the packages included.

The release mainly covers the security issues and other bug fixes, the release includes a number of security updates for Thunderbird, Symfony, XML-security-c, OpenJDK-8, samba, Wireshark and many other packages.

Important Bugfixes – Debian 9.6

apache2 – Fix DoS by worker exhaustion [CVE-2018-1333] and by continuous SETTINGS [CVE-2018-11763]; mod_proxy_fcgi: Fix segfault

dom4j – Fix XML injection attack [CVE-2018-1000632]; compile with source/target 1.5 to fix a compilation issue with String.format

firmware-nonfree – Fix security issues in Broadcom wifi firmware [CVE-2016-0801 CVE-2017-0561 CVE-2017-9417 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081]; re-add transitional packages for firmware.

Related Read Kali Linux 2018.4 Released with New Hacking Tools & Tool Upgrades – Its Available to Download Now

libmspack – Fix out-of-bounds write [CVE-2018-18584] and acceptance of blank filenames [CVE-2018-18585]

Spamassassin – New upstream release; fix denial of service [CVE-2017-15705], remote code execution [CVE-2018-11780], code injection [CVE-2018-11781] and unsafe usage of . in @INC [CVE-2016-1238]; fix spamd service management on package upgrades.

libx11 – Fix several security isses [CVE-2018-14598 CVE-2018-14599 CVE-2018-14600]

New installation images will be available soon at the regular locations.Upgrading an existing installation to this revision can be achieved by pointing the package management system at one of Debian’s many HTTP mirrors reads Debian announcement.

Website

Latest articles

Zyxel Firewall Flaw Let Attackers Execute Remote Code

Four new vulnerabilities have been discovered in some of the Zyxel Firewall and access...

Hackers Abuse Telegram API To Exfiltrate User Information

Attackers have been using keywords like "remittance" and "receipts" to spread phishing scripts using...

ThreatHunter.ai Stops Hundreds of Attacks in 48 Hours: Fighting Ransomware and Nation-State Cyber Threats

The current large surge in cyber threats has left many organizations grappling for security...

WordPress Plugin Flaw Exposes 200,000+ Websites for Hacking

A critical security flaw has been identified in the Ultimate Member plugin for WordPress,...

Hackers Actively Hijacking ConnectWise ScreenConnect server

ConnectWise, a prominent software company, issued an urgent security bulletin on February 19, 2024,...

Heavily Obfuscated PIKABOT Evades EDR Protection

PIKABOT is a polymorphic malware that constantly modifies its code, making it hard to...

Anonymous Sudan Promoting New DDoS Botnet: Beware

It has come to light that a group known as Anonymous Sudan is actively...
Guru baran
Guru baranhttps://gbhackers.com
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Live Account Takeover Attack Simulation

Live Account Take Over Attack

Live Webinar on How do hackers bypass 2FA ,Detecting ATO attacks, A demo of credential stuffing, brute force and session jacking-based ATO attacks, Identifying attacks with behaviour-based analysis and Building custom protection for applications and APIs.

Related Articles