GLSA 200410-10 (low) - gettext: Insecure temporary file handling
The gettext utility is vulnerable to symlink attacks, potentially allowing a local user to overwrite or change permissions on arbitrary files with the rights of the user running gettext, which could be the root user.

GLSA 200410-09 (normal) - LessTif: Integer and stack overflows in libXpm
Multiple vulnerabilities have been discovered in libXpm, which is included in LessTif, that can potentially lead to remote code execution.

GLSA 200410-08 (normal) - ncompress: Buffer overflow
compress and uncompress, which could be used by daemon programs, contain a buffer overflow that could lead to remote execution of arbitrary code with the rights of the daemon process.

GLSA 200410-07 (normal) - ed: Insecure temporary file handling
The ed utility is vulnerable to symlink attacks, potentially allowing a local user to overwrite or change rights on arbitrary files with the rights of the user running ed, which could be the root user.

GLSA 200410-06 (normal) - CUPS: Leakage of sensitive information
CUPS leaks information about user names and passwords when using remote printing to SMB-shared printers which require authentication.

GLSA 200410-05 (high) - Cyrus-SASL: Buffer overflow and SASL_PATH vulnerabilities
Cyrus-SASL contains two vulnerabilities that might allow an attacker to completely compromise the vulnerable system.

GLSA 200410-04 (normal) - PHP: Memory disclosure and arbitrary location file upload
Two bugs in PHP may allow the disclosure of portions of memory and allow remote attackers to upload files to arbitrary locations.

GLSA 200410-03 (high) - NetKit-telnetd: buffer overflows in telnet and telnetd
Buffer overflows exist in the telnet client and daemon provided by netkit-telnetd, which could possibly allow a remote attacker to gain root privileges and compromise the system.

GLSA 200410-02 (normal) - Netpbm: Multiple temporary file issues
Utilities included in old Netpbm versions are vulnerable to multiple temporary files issues, potentially allowing a local attacker to overwrite files with the rights of the user running the utility.

GLSA 200410-01 (normal) - sharutils: Buffer overflows in shar.c and unshar.c
sharutils contains two buffer overflow vulnerabilities that could lead to arbitrary code execution.

GLSA 200409-35 (low) - Subversion: Metadata information leak
An information leak in mod_authz_svn could allow sensitive metadata of protected areas to be leaked to unauthorized users.

GLSA 200409-34 (normal) - X.org, XFree86: Integer and stack overflows in libXpm
libXpm, the X Pixmap library that is a part of the X Window System, contains multiple stack and integer overflows that may allow a carefully-crafted XPM file to crash applications linked against libXpm, potentially allowing the execution of arbitrary code.

GLSA 200409-33 (low) - Apache: Exposure of protected directories
A bug in the way Apache handles the Satisfy directive can lead to the exposure of protected directories to unauthorized users.

GLSA 200409-32 (high) - getmail: Filesystem overwrite vulnerability
getmail contains a vulnerability that could potentially allow any local user to create or overwrite files in any directory on the system. This flaw can be escalated further and possibly lead to a complete system compromise.

GLSA 200409-31 (normal) - jabberd 1.x: Denial of Service vulnerability
The jabberd server was found to be vulnerable to a remote Denial of Service attack.

GLSA 200409-30 (normal) - xine-lib: Multiple vulnerabilities
xine-lib contains several vulnerabilities potentially allowing the execution of arbitrary code.

GLSA 200409-29 (normal) - FreeRADIUS: Multiple Denial of Service vulnerabilities
Multiple Denial of Service vulnerabilities were found and fixed in FreeRADIUS.

GLSA 200409-28 (normal) - GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities
The GdkPixbuf library, which is also included in GTK+ 2, contains several vulnerabilities that could lead to a Denial of Service or the execution of arbitrary code.

GLSA 200409-27 (normal) - glFTPd: Local buffer overflow vulnerability
glFTPd is vulnerable to a local buffer overflow which may allow arbitrary code execution.

GLSA 200409-26 (normal) - Mozilla, Firefox, Thunderbird, Epiphany: New releases fix vulnerabilities
New releases of Mozilla, Epiphany, Mozilla Thunderbird, and Mozilla Firefox fix several vulnerabilities, including the remote execution of arbitrary code.