Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-20796

  • EPSS 0.03%
  • Published 04.05.2022 17:15:08
  • Last modified 21.11.2024 06:43:34

On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an a...

10

CVE-2022-1292

  • EPSS 47.77%
  • Published 03.05.2022 16:15:18
  • Last modified 13.08.2025 14:15:28

The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execut...

6.5

CVE-2022-29824

Exploit
  • EPSS 0.06%
  • Published 03.05.2022 03:15:06
  • Last modified 21.11.2024 06:59:45

In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte...

7.1

CVE-2021-42528

  • EPSS 0.15%
  • Published 02.05.2022 23:15:07
  • Last modified 21.11.2024 06:27:44

XMP Toolkit 2021.07 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context ...

9.3

CVE-2021-42529

  • EPSS 0.59%
  • Published 02.05.2022 23:15:07
  • Last modified 21.11.2024 06:27:44

XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim mus...

9.3

CVE-2021-42530

  • EPSS 0.59%
  • Published 02.05.2022 23:15:07
  • Last modified 21.11.2024 06:27:44

XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim mus...

9.3

CVE-2021-42531

  • EPSS 1.33%
  • Published 02.05.2022 23:15:07
  • Last modified 21.11.2024 06:27:44

XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim mus...

9.3

CVE-2021-42532

  • EPSS 0.68%
  • Published 02.05.2022 23:15:07
  • Last modified 21.11.2024 06:27:45

XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim mus...

7.8

CVE-2021-46790

Exploit
  • EPSS 0.04%
  • Published 02.05.2022 12:16:26
  • Last modified 21.11.2024 06:34:43

ntfsck in NTFS-3G through 2021.8.22 has a heap-based buffer overflow involving buffer+512*3-2. NOTE: the upstream position is that ntfsck is deprecated; however, it is shipped by some Linux distributions.

7.5

CVE-2022-29970

  • EPSS 0.57%
  • Published 02.05.2022 05:15:06
  • Last modified 21.11.2024 07:00:05

Sinatra before 2.2.0 does not validate that the expanded path matches public_dir when serving static files.