Debian

Debian Linux

9212 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2019-15218

Exploit
  • EPSS 0.1%
  • Veröffentlicht 19.08.2019 22:15:11
  • Zuletzt bearbeitet 21.11.2024 04:28:13

An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.

4.9

CVE-2019-15219

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.08.2019 22:15:11
  • Zuletzt bearbeitet 21.11.2024 04:28:13

An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver.

4.9

CVE-2019-15220

Exploit
  • EPSS 0.04%
  • Veröffentlicht 19.08.2019 22:15:11
  • Zuletzt bearbeitet 21.11.2024 04:28:13

An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver.

4.9

CVE-2019-15221

Exploit
  • EPSS 0.15%
  • Veröffentlicht 19.08.2019 22:15:11
  • Zuletzt bearbeitet 21.11.2024 04:28:13

An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.

5.5

CVE-2019-15145

Exploit
  • EPSS 0.23%
  • Veröffentlicht 18.08.2019 19:15:10
  • Zuletzt bearbeitet 21.11.2024 04:28:09

DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get_direct_context in libdjvu/JB2Image.h because of a ...

5.5

CVE-2019-15142

Exploit
  • EPSS 0.18%
  • Veröffentlicht 18.08.2019 19:15:09
  • Zuletzt bearbeitet 21.11.2024 04:28:08

In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service (application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read) by crafting a DJVU file.

5.5

CVE-2019-15143

Exploit
  • EPSS 0.07%
  • Veröffentlicht 18.08.2019 19:15:09
  • Zuletzt bearbeitet 21.11.2024 04:28:09

In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service error (resource exhaustion caused by a GBitmap::read_rle_raw infinite loop) by crafting a corrupted image file, related to libdjvu/DjVmDir.cpp and libdjvu/...

5.5

CVE-2019-15144

Exploit
  • EPSS 0.06%
  • Veröffentlicht 18.08.2019 19:15:09
  • Zuletzt bearbeitet 21.11.2024 04:28:09

In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers to cause a denial-of-service (application crash due to an Uncontrolled Recursion) by crafting a PBM image file that is mishandled in libdjvu/GContainer.h...

5.3

CVE-2019-15132

  • EPSS 0.41%
  • Veröffentlicht 17.08.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:28:07

Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it is possible to enumerate application usernames based on the variability of server responses (e.g., the "Login name or password is incorrect" and "No permissions for system ac...

6.5

CVE-2019-15133

  • EPSS 0.19%
  • Veröffentlicht 17.08.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:28:07

In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero.