Debian

Debian Linux

9141 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-5728

  • EPSS 0.48%
  • Veröffentlicht 25.10.2023 18:17:44
  • Zuletzt bearbeitet 21.11.2024 08:42:22

During garbage collection extra operations were performed on a object that should not be. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird < 115.4.1.

9.8

CVE-2023-5730

  • EPSS 0.45%
  • Veröffentlicht 25.10.2023 18:17:44
  • Zuletzt bearbeitet 21.11.2024 08:42:22

Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vu...

6.5

CVE-2023-5732

  • EPSS 0.29%
  • Veröffentlicht 25.10.2023 18:17:44
  • Zuletzt bearbeitet 21.11.2024 08:42:22

An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited. This vulnerability affects Firefox < 117, Firefox ESR < 115.4, and Thunderbird < 115.4.1.

7.5

CVE-2023-5363

  • EPSS 2%
  • Veröffentlicht 25.10.2023 18:17:43
  • Zuletzt bearbeitet 21.11.2024 08:41:36

Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV ...

8.8

CVE-2023-5472

  • EPSS 1.46%
  • Veröffentlicht 25.10.2023 18:17:43
  • Zuletzt bearbeitet 01.05.2025 19:15:56

Use after free in Profiles in Google Chrome prior to 118.0.5993.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

4.3

CVE-2023-5721

  • EPSS 0.28%
  • Veröffentlicht 25.10.2023 18:17:43
  • Zuletzt bearbeitet 21.11.2024 08:42:21

It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an insufficient activation-delay. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird < 115.4.1.

5.5

CVE-2023-46316

  • EPSS 0.04%
  • Veröffentlicht 25.10.2023 18:17:37
  • Zuletzt bearbeitet 21.11.2024 08:28:17

In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines.

7.5

CVE-2023-31122

  • EPSS 0.43%
  • Veröffentlicht 23.10.2023 07:15:11
  • Zuletzt bearbeitet 01.08.2025 02:03:27

Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57.

5.9

CVE-2023-45802

  • EPSS 1.74%
  • Veröffentlicht 23.10.2023 07:15:11
  • Zuletzt bearbeitet 25.08.2025 02:09:55

When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection close. A client could send new requests and resets, ...

3.6

CVE-2023-45145

  • EPSS 0.49%
  • Veröffentlicht 18.10.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 08:26:26

Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If a permissive umask(2) is used, this creates a race condition that enable...