GLSA 200603-14 (normal) - Heimdal: rshd privilege escalation
An error in the rshd daemon of Heimdal could allow authenticated users to elevate privileges.

GLSA 200603-13 (normal) - PEAR-Auth: Potential authentication bypass
PEAR-Auth did not correctly verify data passed to the DB and LDAP containers, thus allowing to inject false credentials to bypass the authentication.

GLSA 200603-12 (normal) - zoo: Buffer overflow
A buffer overflow in zoo may be exploited to execute arbitrary when creating archives of specially crafted directories and files.

GLSA 200603-11 (normal) - Freeciv: Denial of Service
A memory allocation bug in Freeciv allows a remote attacker to perform a Denial of Service attack.

GLSA 200603-10 (high) - Cube: Multiple vulnerabilities
Cube is vulnerable to a buffer overflow, invalid memory access and remote client crashes, possibly leading to a Denial of Service or remote code execution.

GLSA 200603-09 (low) - SquirrelMail: Cross-site scripting and IMAP command injection
SquirrelMail is vulnerable to several cross-site scripting vulnerabilities and IMAP command injection.

GLSA 200603-08 (normal) - GnuPG: Incorrect signature verification
GnuPG may erroneously report a modified or unsigned message has a valid digital signature.

GLSA 200603-07 (normal) - flex: Potential insecure code generation
flex might generate code with a buffer overflow, making applications using such scanners vulnerable to the execution of arbitrary code.

GLSA 200603-06 (normal) - GNU tar: Buffer overflow
A malicious tar archive could trigger a Buffer overflow in GNU tar, potentially resulting in the execution of arbitrary code.

GLSA 200603-05 (normal) - zoo: Stack-based buffer overflow
A stack-based buffer overflow in zoo may be exploited to execute arbitrary code through malicious ZOO archives.

GLSA 200603-04 (normal) - IMAP Proxy: Format string vulnerabilities
Format string vulnerabilities in IMAP Proxy may lead to the execution of arbitrary code when connected to malicious IMAP servers.

GLSA 200603-03 (normal) - MPlayer: Multiple integer overflows
MPlayer is vulnerable to integer overflows in FFmpeg and ASF decoding that could potentially result in the execution of arbitrary code.

GLSA 200603-02 (normal) - teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code
CSTeTeX, pTeX, and teTeX include vulnerable XPdf code to handle PDF files, making them vulnerable to the execution of arbitrary code.

GLSA 200603-01 (normal) - WordPress: SQL injection vulnerability
WordPress is vulnerable to an SQL injection vulnerability.

GLSA 200602-14 (normal) - noweb: Insecure temporary file creation
noweb is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200602-13 (normal) - GraphicsMagick: Format string vulnerability
A vulnerability in GraphicsMagick allows attackers to crash the application and potentially execute arbitrary code.

GLSA 200602-12 (normal) - GPdf: heap overflows in included Xpdf code
GPdf includes vulnerable Xpdf code to handle PDF files, making it vulnerable to the execution of arbitrary code.

GLSA 200602-11 (low) - OpenSSH, Dropbear: Insecure use of system() call
A flaw in OpenSSH and Dropbear allows local users to elevate their privileges via scp.

GLSA 200602-10 (normal) - GnuPG: Incorrect signature verification
Applications relying on GnuPG to authenticate digital signatures may incorrectly believe a signature has been verified.

GLSA 200602-09 (high) - BomberClone: Remote execution of arbitrary code
BomberClone is vulnerable to a buffer overflow which may lead to remote execution of arbitrary code.