GLSA 200506-16 (normal) - cpio: Directory traversal vulnerability
cpio contains a flaw which may allow a specially crafted cpio archive to extract files to an arbitrary directory.

GLSA 200506-15 (high) - PeerCast: Format string vulnerability
PeerCast suffers from a format string vulnerability that could allow arbitrary code execution.

GLSA 200506-14 (normal) - Sun and Blackdown Java: Applet privilege escalation
Sun's and Blackdown's JDK or JRE may allow untrusted applets to elevate their privileges.

GLSA 200506-13 (normal) - webapp-config: Insecure temporary file handling
The webapp-config utility insecurely creates temporary files in a world writable directory, potentially allowing the execution of arbitrary commands.

GLSA 200506-12 (low) - MediaWiki: Cross-site scripting vulnerability
MediaWiki is vulnerable to a cross-site scripting attack that could allow arbitrary scripting code execution.

GLSA 200506-11 (normal) - Gaim: Denial of Service vulnerabilities
Gaim contains two remote Denial of Service vulnerabilities.

GLSA 200506-10 (normal) - LutelWall: Insecure temporary file creation
LutelWall is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200506-09 (normal) - gedit: Format string vulnerability
gedit suffers from a format string vulnerability that could allow arbitrary code execution.

GLSA 200506-08 (normal) - GNU shtool, ocaml-mysql: Insecure temporary file creation
GNU shtool and ocaml-mysql are vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200506-07 (high) - Ettercap: Format string vulnerability
A format string vulnerability in Ettercap could allow a remote attacker to execute arbitrary code.

GLSA 200506-06 (normal) - libextractor: Multiple overflow vulnerabilities
libextractor is affected by several overflow vulnerabilities in the PDF, Real and PNG extractors, making it vulnerable to execution of arbitrary code.

GLSA 200506-05 (normal) - SilverCity: Insecure file permissions
Executable files with insecure permissions can be modified causing an unsuspecting user to run arbitrary code.

GLSA 200506-04 (normal) - Wordpress: Multiple vulnerabilities
Wordpress contains SQL injection and XSS vulnerabilities.

GLSA 200506-03 (normal) - Dzip: Directory traversal vulnerability
Dzip is vulnerable to a directory traversal attack.

GLSA 200506-02 (normal) - Mailutils: SQL Injection
GNU Mailutils is vulnerable to SQL command injection attacks.

GLSA 200506-01 (normal) - Binutils, elfutils: Buffer overflow
Various utilities from the GNU Binutils and elfutils packages are vulnerable to a heap based buffer overflow, potentially resulting in the execution of arbitrary code.

GLSA 200505-20 (high) - Mailutils: Multiple vulnerabilities in imap4d and mail
The imap4d server and the mail utility from GNU Mailutils contain multiple vulnerabilities, potentially allowing a remote attacker to execute arbitrary code with root privileges.

GLSA 200505-19 (normal) - gxine: Format string vulnerability
A format string vulnerability in gxine could allow a remote attacker to execute arbitrary code.

GLSA 200505-18 (normal) - Net-SNMP: fixproc insecure temporary file creation
Net-SNMP creates temporary files in an insecure manner, possibly allowing the execution of arbitrary code.

GLSA 200505-17 (normal) - Qpopper: Multiple Vulnerabilities
Qpopper contains two vulnerabilities allowing an attacker to overwrite arbitrary files and create files with insecure permissions.