GLSA 200607-03 (normal) - libTIFF: Multiple buffer overflows
libTIFF contains buffer overflows that could result in arbitrary code execution.

GLSA 200607-02 (normal) - FreeType: Multiple integer overflows
Multiple remotely exploitable buffer overflows have been discovered in FreeType, resulting in the execution of arbitrary code.

GLSA 200607-01 (normal) - mpg123: Heap overflow
A heap overflow in mpg123 was discovered, which could result in the execution of arbitrary code.

GLSA 200606-30 (normal) - Kiax: Arbitrary code execution
A security vulnerability in the iaxclient library could lead to the execution of arbitrary code by a remote attacker.

GLSA 200606-29 (normal) - Tikiwiki: SQL injection and multiple XSS vulnerabilities
An SQL injection vulnerability and multiple XSS vulnerabilities have been discovered.

GLSA 200606-28 (low) - Horde Web Application Framework: XSS vulnerability
The Horde Web Application Framework is vulnerable to a cross-site scripting vulnerability.

GLSA 200606-27 (normal) - Mutt: Buffer overflow
Mutt contains a buffer overflow that could result in arbitrary code execution.

GLSA 200606-26 (normal) - EnergyMech: Denial of Service
A Denial of Service vulnerability was discovered in EnergyMech that is easily exploitable via IRC.

GLSA 200606-25 (high) - Hashcash: Possible heap overflow
A heap overflow vulnerability in the Hashcash utility could allow an attacker to execute arbitrary code.

GLSA 200606-24 (normal) - wv2: Integer overflow
An integer overflow could allow an attacker to execute arbitrary code.

GLSA 200606-23 (normal) - KDM: Symlink vulnerability
KDM is vulnerable to a symlink vulnerability that can lead to disclosure of information.

GLSA 200606-22 (high) - aRts: Privilege escalation
The artswrapper part of aRts allows local users to execute arbitrary code with elevated privileges.

GLSA 200606-21 (normal) - Mozilla Thunderbird: Multiple vulnerabilities
Several vulnerabilities in Mozilla Thunderbird allow cross site scripting, JavaScript privilege escalation and possibly execution of arbitrary code.

GLSA 200606-20 (high) - Typespeed: Remote execution of arbitrary code
A buffer overflow in the network code of Typespeed can lead to the execution of arbitrary code.

GLSA 200606-19 (normal) - Sendmail: Denial of Service
Faulty multipart MIME messages can cause forked Sendmail processes to crash.

GLSA 200606-18 (normal) - PAM-MySQL: Multiple vulnerabilities
Vulnerabilities in PAM-MySQL can lead to a Denial of Service, making it impossible to log into a machine.

GLSA 200606-17 (normal) - OpenLDAP: Buffer overflow
The OpenLDAP replication server slurpd contains a buffer overflow that could result in arbitrary code execution.

GLSA 200606-16 (high) - DokuWiki: PHP code injection
A flaw in DokuWiki's spell checker allows for the execution of arbitrary PHP commands, even without proper authentication.

GLSA 200606-15 (high) - Asterisk: IAX2 video frame buffer overflow
Asterisk contains a bug in the IAX2 channel driver making it vulnerable to the remote execution of arbitrary code.

GLSA 200606-14 (high) - GDM: Privilege escalation
An authentication error in GDM could allow users to gain elevated privileges.