[zabbix buffer overflows]

[logrotate race condition could lead to file disclosure]

[realtime-lsm-source: wrong permissions might lead to local root]

[diffmon information leakage]

[double-free vulnerability in the Real Media demuxer]

[courier-authdaemon: wrong socket permissions may lead to password disclosure]

[Buffer overflow in XML::Parser::Expat triggered by deep nesting]

[Buffer overflow in XML::Parser::Expat triggered by utf8]

[uqwk buffer overflow]

[ldap account manager wrongly unlocks some passwords]

[specialy crafted WAV turns mkvmerge into a malloc bomb]

[ssmtp password leak]

['Cache' shell injection vulnerability]

[ldap account manager sets trivial password instead of disabling it]

[typo3 mailforms can be abused to send spam]

[linphone insecure password leakage]

[librsvg2 crash on certain svg files]

[webalizer: symlink vulnerability]

[tcpquota rpath set to user home]

[hamlib3-perl rpath set to user home]