GLSA 200501-14 (normal) - mpg123: Buffer overflow
An attacker may be able to execute arbitrary code by way of specially crafted MP2 or MP3 files.

GLSA 200501-13 (normal) - pdftohtml: Vulnerabilities in included Xpdf
pdftohtml includes vulnerable Xpdf code to handle PDF files, making it vulnerable to execution of arbitrary code upon converting a malicious PDF file.

GLSA 200501-12 (high) - TikiWiki: Arbitrary command execution
A bug in TikiWiki allows certain users to upload and execute malicious PHP scripts.

GLSA 200501-11 (normal) - Dillo: Format string vulnerability
Dillo is vulnerable to a format string bug, which may result in the execution of arbitrary code.

GLSA 200501-10 (normal) - Vilistextum: Buffer overflow vulnerability
Vilistextum is vulnerable to a buffer overflow that allows an attacker to execute arbitrary code through the use of a malicious webpage.

GLSA 200501-09 (normal) - xzgv: Multiple overflows
xzgv contains multiple overflows that may lead to the execution of arbitrary code.

GLSA 200501-08 (normal) - phpGroupWare: Various vulnerabilities
Multiple vulnerabilities have been discovered in phpGroupWare that could lead to information disclosure or remote compromise.

GLSA 200501-07 (normal) - xine-lib: Multiple overflows
xine-lib contains multiple overflows potentially allowing execution of arbitrary code.

GLSA 200501-06 (normal) - tiff: New overflows in image decoding
An integer overflow has been found in the TIFF library image decoding routines and the tiffdump utility, potentially allowing arbitrary code execution.

GLSA 200501-05 (high) - mit-krb5: Heap overflow in libkadm5srv
The MIT Kerberos 5 administration library (libkadm5srv) contains a heap overflow that could lead to execution of arbitrary code.

GLSA 200501-04 (normal) - Shoutcast Server: Remote code execution
Shoutcast Server contains a possible buffer overflow that could lead to the execution of arbitrary code.

GLSA 200501-03 (normal) - Mozilla, Firefox, Thunderbird: Various vulnerabilities
Various vulnerabilities were found and fixed in Mozilla-based products, ranging from a potential buffer overflow and temporary files disclosure to anti-spoofing issues.

GLSA 200501-02 (normal) - a2ps: Multiple vulnerabilities
The fixps and psmandup scripts in the a2ps package are vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files. A vulnerability in a2ps filename handling could also result in arbitrary command execution.

GLSA 200501-01 (normal) - LinPopUp: Buffer overflow in message reply
LinPopUp contains a buffer overflow potentially allowing execution of arbitrary code.

GLSA 200412-27 (high) - PHProjekt: Remote code execution vulnerability
PHProjekt contains a vulnerability that allows a remote attacker to execute arbitrary PHP code.

GLSA 200412-26 (low) - ViewCVS: Information leak and XSS vulnerabilities
ViewCVS is vulnerable to an information leak and to cross-site scripting (XSS) issues.

GLSA 200412-25 (high) - CUPS: Multiple vulnerabilities
Multiple vulnerabilities have been found in CUPS, ranging from local Denial of Service attacks to the remote execution of arbitrary code.

GLSA 200412-24 (normal) - Xpdf, GPdf: New integer overflows
New integer overflows were discovered in Xpdf, potentially resulting in the execution of arbitrary code. GPdf includes Xpdf code and therefore is vulnerable to the same issues.

GLSA 200412-23 (low) - Zwiki: XSS vulnerability
Zwiki is vulnerable to cross-site scripting attacks.

GLSA 200412-22 (normal) - mpg123: Playlist buffer overflow
mpg123 is vulnerable to a buffer overflow that allows an attacker to execute arbitrary code through the use of a malicious playlist.