GLSA 200501-34 (normal) - Konversation: Various vulnerabilities
Konversation contains multiple vulnerabilities that could lead to remote command execution or information leaks.

GLSA 200501-33 (normal) - MySQL: Insecure temporary file creation
MySQL is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files.

GLSA 200501-32 (normal) - KPdf, KOffice: Stack overflow in included Xpdf code
KPdf and KOffice both include vulnerable Xpdf code to handle PDF files, making them vulnerable to the execution of arbitrary code.

GLSA 200501-31 (normal) - teTeX, pTeX, CSTeX: Multiple vulnerabilities
teTeX, pTeX and CSTeX make use of vulnerable Xpdf code which may allow the remote execution of arbitrary code. Furthermore, the xdvizilla script is vulnerable to temporary file handling issues.

GLSA 200501-30 (normal) - CUPS: Stack overflow in included Xpdf code
CUPS includes Xpdf code and therefore is vulnerable to the recent stack overflow issue, potentially resulting in the remote execution of arbitrary code.

GLSA 200501-29 (low) - Mailman: Cross-site scripting vulnerability
Mailman is vulnerable to cross-site scripting attacks.

GLSA 200501-28 (normal) - Xpdf, GPdf: Stack overflow in Decrypt::makeFileKey2
A stack overflow was discovered in Xpdf, potentially resulting in the execution of arbitrary code. GPdf includes Xpdf code and therefore is vulnerable to the same issue.

GLSA 200501-27 (high) - Ethereal: Multiple vulnerabilities
Multiple vulnerabilities exist in Ethereal, which may allow an attacker to run arbitrary code, crash the program or perform DoS by CPU and disk utilization.

GLSA 200501-26 (normal) - ImageMagick: PSD decoding heap overflow
ImageMagick is vulnerable to a heap overflow when decoding Photoshop Document (PSD) files, which could lead to arbitrary code execution.

GLSA 200501-25 (normal) - Squid: Multiple vulnerabilities
Squid contains vulnerabilities in the the code handling NTLM (NT Lan Manager), Gopher to HTML, ACLs and WCCP (Web Cache Communication Protocol) which could lead to ACL bypass, denial of service and arbitrary code execution.

GLSA 200501-24 (normal) - tnftp: Arbitrary file overwriting
tnftp fails to validate filenames when downloading files, making it vulnerable to arbitrary file overwriting.

GLSA 200501-23 (high) - Exim: Two buffer overflows
Buffer overflow vulnerabilities, which could lead to arbitrary code execution, have been found in the handling of IPv6 addresses as well as in the SPA authentication mechanism in Exim.

GLSA 200501-22 (high) - poppassd_pam: Unauthorized password changing
poppassd_pam allows anyone to change any user's password without authenticating the user first.

GLSA 200501-21 (normal) - HylaFAX: hfaxd unauthorized login vulnerability
HylaFAX is subject to a vulnerability in its username matching code, potentially allowing remote users to bypass access control lists.

GLSA 200501-20 (normal) - o3read: Buffer overflow during file conversion
A buffer overflow in o3read allows an attacker to execute arbitrary code by way of a specially crafted XML file.

GLSA 200501-19 (normal) - imlib2: Buffer overflows in image decoding
Multiple overflows have been found in the imlib2 library image decoding routines, potentially allowing the execution of arbitrary code.

GLSA 200501-18 (normal) - KDE FTP KIOslave: Command injection
The FTP KIOslave contains a bug allowing users to execute arbitrary FTP commands.

GLSA 200501-17 (normal) - KPdf, KOffice: More vulnerabilities in included Xpdf
KPdf and KOffice both include vulnerable Xpdf code to handle PDF files, making them vulnerable to the execution of arbitrary code if a user is enticed to view a malicious PDF file.

GLSA 200501-16 (normal) - Konqueror: Java sandbox vulnerabilities
The Java sandbox environment in Konqueror can be bypassed to access arbitrary packages, allowing untrusted Java applets to perform unrestricted actions on the host system.

GLSA 200501-15 (normal) - UnRTF: Buffer overflow
A buffer overflow in UnRTF allows an attacker to execute arbitrary code by way of a specially crafted RTF file.