GLSA 200511-06 (normal) - fetchmail: Password exposure in fetchmailconf
fetchmailconf fails to properly handle file permissions, temporarily exposing sensitive information to other local users.

GLSA 200511-05 (normal) - GNUMP3d: Directory traversal and XSS vulnerabilities
GNUMP3d is vulnerable to directory traversal and cross-site scripting attacks that may result in information disclosure or the compromise of a browser.

GLSA 200511-04 (high) - ClamAV: Multiple vulnerabilities
ClamAV has many security flaws which make it vulnerable to remote execution of arbitrary code and a Denial of Service.

GLSA 200511-03 (normal) - giflib: Multiple vulnerabilities
giflib may dereference NULL or write out of bounds when processing malformed images, potentially resulting in Denial of Service or arbitrary code execution.

GLSA 200511-02 (low) - QDBM, ImageMagick, GDAL: RUNPATH issues
Multiple packages suffer from RUNPATH issues that may allow users in the "portage" group to escalate privileges.

GLSA 200511-01 (normal) - libgda: Format string vulnerabilities
Two format string vulnerabilities in libgda may lead to the execution of arbitrary code.

GLSA 200510-26 (normal) - XLI, Xloadimage: Buffer overflow
XLI and Xloadimage contain a vulnerability which could potentially result in the execution of arbitrary code.

GLSA 200510-25 (high) - Ethereal: Multiple vulnerabilities in protocol dissectors
Ethereal is vulnerable to numerous vulnerabilities, potentially resulting in the execution of arbitrary code or abnormal termination.

GLSA 200510-24 (high) - Mantis: Multiple vulnerabilities
Mantis is affected by multiple vulnerabilities ranging from information disclosure to arbitrary script execution.

GLSA 200510-23 (low) - TikiWiki: XSS vulnerability
TikiWiki is vulnerable to cross-site scripting attacks.

GLSA 200510-22 (normal) - SELinux PAM: Local password guessing attack
A vulnerability in the SELinux version of PAM allows a local attacker to brute-force system passwords.

GLSA 200510-21 (normal) - phpMyAdmin: Local file inclusion and XSS vulnerabilities
phpMyAdmin contains a local file inclusion vulnerability that may lead to the execution of arbitrary code, along with several cross-site scripting issues.

GLSA 200510-20 (normal) - Zope: File inclusion through RestructuredText
Zope is vulnerable to a file inclusion vulnerability when exposing RestructuredText functionalities to untrusted users.

GLSA 200510-19 (normal) - cURL: NTLM username stack overflow
cURL is vulnerable to a buffer overflow which could lead to the execution of arbitrary code.

GLSA 200510-18 (normal) - Netpbm: Buffer overflow in pnmtopng
The pnmtopng utility, part of the Netpbm tools, contains a vulnerability which can potentially result in the execution of arbitrary code.

GLSA 200510-17 (normal) - AbiWord: New RTF import buffer overflows
AbiWord is vulnerable to an additional set of buffer overflows during RTF import, making it vulnerable to the execution of arbitrary code.

GLSA 200510-16 (normal) - phpMyAdmin: Local file inclusion vulnerability
phpMyAdmin contains a local file inclusion vulnerability that may lead to the execution of arbitrary code.

GLSA 200510-15 (normal) - Lynx: Buffer overflow in NNTP processing
Lynx contains a buffer overflow that may be exploited to execute arbitrary code.

GLSA 200510-14 (low) - Perl, Qt-UnixODBC, CMake: RUNPATH issues
Multiple packages suffer from RUNPATH issues that may allow users in the "portage" group to escalate privileges.

GLSA 200510-13 (normal) - SPE: Insecure file permissions
SPE files are installed with world-writeable permissions, potentially leading to privilege escalation.