GLSA 200510-12 (normal) - KOffice, KWord: RTF import buffer overflow
KOffice and KWord are vulnerable to a buffer overflow in the RTF importer, potentially resulting in the execution of arbitrary code.

GLSA 200510-11 (low) - OpenSSL: SSL 2.0 protocol rollback
When using a specific option, OpenSSL can be forced to fallback to the less secure SSL 2.0 protocol.

GLSA 200510-10 (high) - uw-imap: Remote buffer overflow
uw-imap is vulnerable to remote overflow of a buffer in the IMAP server leading to execution of arbitrary code.

GLSA 200510-09 (normal) - Weex: Format string vulnerability
Weex contains a format string error that may be exploited by malicious servers to execute arbitrary code.

GLSA 200510-08 (normal) - xine-lib: Format string vulnerability
xine-lib contains a format string error in CDDB response handling that may be exploited to execute arbitrary code.

GLSA 200510-07 (normal) - RealPlayer, Helix Player: Format string vulnerability
RealPlayer and Helix Player are vulnerable to a format string vulnerability resulting in the execution of arbitrary code.

GLSA 200510-06 (normal) - Dia: Arbitrary code execution through SVG import
Improperly sanitised data in Dia allows remote attackers to execute arbitrary code.

GLSA 200510-05 (normal) - Ruby: Security bypass vulnerability
Ruby is vulnerable to a security bypass of the safe level mechanism.

GLSA 200510-04 (normal) - Texinfo: Insecure temporary file creation
Texinfo is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200510-03 (normal) - Uim: Privilege escalation vulnerability
Under certain conditions, applications linked against Uim suffer from a privilege escalation vulnerability.

GLSA 200510-02 (normal) - Berkeley MPEG Tools: Multiple insecure temporary files
The Berkeley MPEG Tools use temporary files in various insecure ways, potentially allowing a local user to overwrite arbitrary files.

GLSA 200510-01 (normal) - gtkdiskfree: Insecure temporary file creation
gtkdiskfree is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200509-21 (normal) - Hylafax: Insecure temporary file creation in xferfaxstats script
Hylafax is vulnerable to linking attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200509-20 (normal) - AbiWord: RTF import stack-based buffer overflow
AbiWord is vulnerable to a stack-based buffer overflow during RTF import, making it vulnerable to the execution of arbitrary code.

GLSA 200509-19 (normal) - PHP: Vulnerabilities in included PCRE and XML-RPC libraries
PHP makes use of an affected PCRE library and ships with an affected XML-RPC library and is therefore potentially vulnerable to remote execution of arbitrary code.

GLSA 200509-18 (normal) - Qt: Buffer overflow in the included zlib library
Qt is vulnerable to a buffer overflow which could potentially lead to the execution of arbitrary code.

GLSA 200509-17 (high) - Webmin, Usermin: Remote code execution through PAM authentication
If Webmin or Usermin is configured to use full PAM conversations, it is vulnerable to the remote execution of arbitrary code with root privileges.

GLSA 200509-16 (normal) - Mantis: XSS and SQL injection vulnerabilities
Mantis is affected by an SQL injection and several cross-site scripting (XSS) vulnerabilities.

GLSA 200509-15 (high) - util-linux: umount command validation error
A command validation error in umount can lead to an escalation of privileges.

GLSA 200509-14 (normal) - Zebedee: Denial of Service vulnerability
A bug in Zebedee allows a remote attacker to perform a Denial of Service attack.