GLSA 200509-21 (normal) - Hylafax: Insecure temporary file creation in xferfaxstats script
Hylafax is vulnerable to linking attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200509-20 (normal) - AbiWord: RTF import stack-based buffer overflow
AbiWord is vulnerable to a stack-based buffer overflow during RTF import, making it vulnerable to the execution of arbitrary code.

GLSA 200509-19 (normal) - PHP: Vulnerabilities in included PCRE and XML-RPC libraries
PHP makes use of an affected PCRE library and ships with an affected XML-RPC library and is therefore potentially vulnerable to remote execution of arbitrary code.

GLSA 200509-18 (normal) - Qt: Buffer overflow in the included zlib library
Qt is vulnerable to a buffer overflow which could potentially lead to the execution of arbitrary code.

GLSA 200509-17 (high) - Webmin, Usermin: Remote code execution through PAM authentication
If Webmin or Usermin is configured to use full PAM conversations, it is vulnerable to the remote execution of arbitrary code with root privileges.

GLSA 200509-16 (normal) - Mantis: XSS and SQL injection vulnerabilities
Mantis is affected by an SQL injection and several cross-site scripting (XSS) vulnerabilities.

GLSA 200509-15 (high) - util-linux: umount command validation error
A command validation error in umount can lead to an escalation of privileges.

GLSA 200509-14 (normal) - Zebedee: Denial of Service vulnerability
A bug in Zebedee allows a remote attacker to perform a Denial of Service attack.

GLSA 200509-13 (high) - Clam AntiVirus: Multiple vulnerabilities
Clam AntiVirus is subject to vulnerabilities ranging from Denial of Service to execution of arbitrary code when handling compressed executables.

GLSA 200509-12 (normal) - Apache, mod_ssl: Multiple vulnerabilities
mod_ssl and Apache are vulnerable to a restriction bypass and a potential local privilege escalation.

GLSA 200509-11 (normal) - Mozilla Suite, Mozilla Firefox: Multiple vulnerabilities
Mozilla Suite and Firefox are vulnerable to multiple issues, including some that might be exploited to execute arbitrary code.

GLSA 200509-10 (high) - Mailutils: Format string vulnerability in imap4d
The imap4d server contains a vulnerability allowing an authenticated user to execute arbitrary code with the privileges of the imap4d process.

GLSA 200509-09 (high) - Py2Play: Remote execution of arbitrary Python code
A design error in Py2Play allows attackers to execute arbitrary code.

GLSA 200509-08 (normal) - Python: Heap overflow in the included PCRE library
The "re" Python module is vulnerable to a heap overflow, possibly leading to the execution of arbitrary code.

GLSA 200509-07 (high) - X.Org: Heap overflow in pixmap allocation
An integer overflow in pixmap memory allocation potentially allows any X.Org user to execute arbitrary code with elevated privileges.

GLSA 200509-06 (normal) - Squid: Denial of Service vulnerabilities
Squid contains several bugs when handling certain malformed requests resulting in a Denial of Service.

GLSA 200509-05 (normal) - Net-SNMP: Insecure RPATH
The Gentoo Net-SNMP package may provide Perl modules containing an insecure DT_RPATH, potentially allowing privilege escalation.

GLSA 200509-04 (low) - phpLDAPadmin: Authentication bypass
A flaw in phpLDAPadmin may allow attackers to bypass security restrictions and connect anonymously.

GLSA 200509-03 (high) - OpenTTD: Format string vulnerabilities
OpenTTD is vulnerable to format string vulnerabilities which may result in remote execution of arbitrary code.

GLSA 200509-02 (normal) - Gnumeric: Heap overflow in the included PCRE library
Gnumeric is vulnerable to a heap overflow, possibly leading to the execution of arbitrary code.