GLSA 200504-18 (normal) - Mozilla Firefox, Mozilla Suite: Multiple vulnerabilities
New Mozilla Firefox and Mozilla Suite releases fix new security vulnerabilities, including memory disclosure and various ways of executing JavaScript code with elevated privileges.

GLSA 200504-17 (normal) - XV: Multiple vulnerabilities
Multiple vulnerabilities have been discovered in XV, potentially resulting in the execution of arbitrary code.

GLSA 200504-16 (high) - CVS: Multiple vulnerabilities
Several serious vulnerabilities have been found in CVS, which may allow an attacker to remotely compromise a CVS server or cause a DoS.

GLSA 200504-15 (high) - PHP: Multiple vulnerabilities
Several vulnerabilities were found and fixed in PHP image handling functions, potentially resulting in Denial of Service conditions or the remote execution of arbitrary code.

GLSA 200504-14 (high) - monkeyd: Multiple vulnerabilities
Format string and Denial of Service vulnerabilities have been discovered in the monkeyd HTTP server, potentially resulting in the execution of arbitrary code.

GLSA 200504-13 (normal) - OpenOffice.Org: DOC document Heap Overflow
OpenOffice.Org is vulnerable to a heap overflow when processing DOC documents, which could lead to arbitrary code execution.

GLSA 200504-12 (high) - rsnapshot: Local privilege escalation
rsnapshot allows a local user to take ownership of local files, resulting in privilege escalation.

GLSA 200504-11 (high) - JunkBuster: Multiple vulnerabilities
JunkBuster is vulnerable to a heap corruption vulnerability, and under certain configurations may allow an attacker to modify settings.

GLSA 200504-10 (high) - Gld: Remote execution of arbitrary code
Gld contains several serious vulnerabilities, potentially resulting in the execution of arbitrary code as the root user.

GLSA 200504-09 (normal) - Axel: Vulnerability in HTTP redirection handling
A buffer overflow vulnerability has been found in Axel which could lead to the execution of arbitrary code.

GLSA 200504-08 (low) - phpMyAdmin: Cross-site scripting vulnerability
phpMyAdmin is vulnerable to a cross-site scripting attack.

GLSA 200504-07 (normal) - GnomeVFS, libcdaudio: CDDB response overflow
The GnomeVFS and libcdaudio libraries contain a buffer overflow that can be triggered by a large CDDB response, potentially allowing the execution of arbitrary code.

GLSA 200504-06 (normal) - sharutils: Insecure temporary file creation
The unshar utility is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200504-05 (low) - Gaim: Denial of Service issues
Gaim contains multiple vulnerabilities that can lead to a Denial of Service.

GLSA 200504-04 (normal) - mit-krb5: Multiple buffer overflows in telnet client
The mit-krb5 telnet client is vulnerable to two buffer overflows, which could allow a malicious telnet server operator to execute arbitrary code.

GLSA 200504-03 (low) - Dnsmasq: Poisoning and Denial of Service vulnerabilities
Dnsmasq is vulnerable to DNS cache poisoning attacks and a potential Denial of Service from the local network.

GLSA 200504-02 (normal) - Sylpheed, Sylpheed-claws: Buffer overflow on message display
Sylpheed and Sylpheed-claws contain a vulnerability that can be triggered when displaying messages with specially crafted attachments.

GLSA 200504-01 (normal) - telnet-bsd: Multiple buffer overflows
The telnet-bsd telnet client is vulnerable to two buffer overflows, which could allow a malicious telnet server operator to execute arbitrary code.

GLSA 200503-37 (low) - LimeWire: Disclosure of sensitive information
Two vulnerabilities in LimeWire can be exploited to disclose sensitive information.

GLSA 200503-36 (normal) - netkit-telnetd: Buffer overflow
The netkit-telnetd telnet client is vulnerable to a buffer overflow, which could allow a malicious telnet server operator to execute arbitrary code.