Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-22719

  • EPSS 32.9%
  • Published 14.03.2022 11:15:09
  • Last modified 21.11.2024 06:47:18

A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier.

9.8

CVE-2022-22720

  • EPSS 31.72%
  • Published 14.03.2022 11:15:09
  • Last modified 21.11.2024 06:47:18

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling

9.1

CVE-2022-22721

  • EPSS 19.47%
  • Published 14.03.2022 11:15:09
  • Last modified 21.11.2024 06:47:19

If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.

9.8

CVE-2022-23943

  • EPSS 65.91%
  • Published 14.03.2022 11:15:09
  • Last modified 01.05.2025 15:37:55

Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue affects Apache HTTP Server 2.4 version 2.4.52 and prior versions.

3.7

CVE-2021-36368

  • EPSS 0.57%
  • Published 13.03.2022 00:15:07
  • Last modified 21.11.2024 06:13:36

An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the u...

5.6

CVE-2022-23960

  • EPSS 0.14%
  • Published 13.03.2022 00:15:07
  • Last modified 21.11.2024 06:49:32

Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buffer (BHB) to influence mispredicted branches. Then,...

5.5

CVE-2022-26966

  • EPSS 0.03%
  • Published 12.03.2022 22:15:08
  • Last modified 21.11.2024 06:54:52

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.

9.8

CVE-2022-24754

  • EPSS 0.56%
  • Published 11.03.2022 20:15:08
  • Last modified 21.11.2024 06:51:01

PJSIP is a free and open source multimedia communication library written in C language. In versions prior to and including 2.12 PJSIP there is a stack-buffer overflow vulnerability which only impacts PJSIP users who accept hashed digest credentials (...

5.5

CVE-2022-0924

Exploit
  • EPSS 0.08%
  • Published 11.03.2022 18:15:30
  • Last modified 21.11.2024 06:39:40

Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4.

5.5

CVE-2022-0909

Exploit
  • EPSS 0.07%
  • Published 11.03.2022 18:15:28
  • Last modified 21.11.2024 06:39:38

Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f8d0f9aa.