Debian

Debian Linux

9144 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-27365

Exploit
  • EPSS 0.43%
  • Veröffentlicht 07.03.2021 05:15:13
  • Zuletzt bearbeitet 21.11.2024 05:57:50

An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated wit...

4.4

CVE-2021-27363

Exploit
  • EPSS 0.02%
  • Veröffentlicht 07.03.2021 04:15:13
  • Zuletzt bearbeitet 21.11.2024 05:57:50

An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is availab...

6.5

CVE-2021-28038

  • EPSS 0.13%
  • Veröffentlicht 05.03.2021 18:15:13
  • Zuletzt bearbeitet 21.11.2024 05:59:01

An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping error...

9.8

CVE-2020-28636

  • EPSS 0.69%
  • Veröffentlicht 04.03.2021 20:15:13
  • Zuletzt bearbeitet 21.11.2024 05:23:04

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sloop() slh->twin() An attacker can provide malicious input to t...

9.8

CVE-2020-35628

  • EPSS 0.52%
  • Veröffentlicht 04.03.2021 20:15:13
  • Zuletzt bearbeitet 21.11.2024 05:27:44

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sloop() slh->incident_sface. An attacker can provide malicious i...

9.8

CVE-2020-35636

Exploit
  • EPSS 0.12%
  • Veröffentlicht 04.03.2021 20:15:13
  • Zuletzt bearbeitet 21.11.2024 05:27:45

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1 in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sface() sfh->volume() OOB read. A specially crafted malformed file can lead to an out-of-bounds re...

9.8

CVE-2020-28601

  • EPSS 0.53%
  • Veröffentlicht 04.03.2021 20:15:12
  • Zuletzt bearbeitet 21.11.2024 05:22:59

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_2/PM_io_parser.h PM_io_parser::read_vertex() Face_of[] OOB read. An attacker can provide malicious inpu...

7

CVE-2021-25329

  • EPSS 0.8%
  • Veröffentlicht 01.03.2021 12:15:14
  • Zuletzt bearbeitet 21.11.2024 05:54:45

The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnera...

7.5

CVE-2021-25122

  • EPSS 2.56%
  • Veröffentlicht 01.03.2021 12:15:13
  • Zuletzt bearbeitet 21.11.2024 05:54:23

When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body from one request to another meaning user A and use...

4.4

CVE-2021-25284

  • EPSS 0.02%
  • Veröffentlicht 27.02.2021 05:15:14
  • Zuletzt bearbeitet 21.11.2024 05:54:40

An issue was discovered in through SaltStack Salt before 3002.5. salt.modules.cmdmod can log credentials to the info or error log level.