Debian

Debian Linux

9144 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2021-3935

  • EPSS 0.37%
  • Published 22.11.2021 16:15:07
  • Last modified 21.11.2024 06:22:48

When PgBouncer is configured to use "cert" authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of TLS certificate verification and encryption. This flaw affects PgBounc...

8.8

CVE-2021-21898

Exploit
  • EPSS 0.18%
  • Published 19.11.2021 20:15:17
  • Last modified 21.11.2024 05:49:12

A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigge...

8.8

CVE-2021-21899

Exploit
  • EPSS 0.4%
  • Published 19.11.2021 19:15:08
  • Last modified 21.11.2024 05:49:12

A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigg...

8.8

CVE-2021-21900

Exploit
  • EPSS 0.25%
  • Published 19.11.2021 19:15:08
  • Last modified 21.11.2024 05:49:12

A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dxf file can lead to a use-after-free vulnerability. An attacker can provide a malicious file to trigge...

9.8

CVE-2021-40391

Exploit
  • EPSS 0.48%
  • Published 19.11.2021 19:15:08
  • Last modified 21.11.2024 06:24:01

An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev (commit b5f1eacd), and the forked version of Gerbv (commit 71493260). A specially-crafted drill file can lead to code execution. An a...

7.5

CVE-2021-39921

Exploit
  • EPSS 0.94%
  • Published 19.11.2021 17:15:08
  • Last modified 21.11.2024 06:20:34

NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

7.5

CVE-2021-39922

Exploit
  • EPSS 3.53%
  • Published 19.11.2021 17:15:08
  • Last modified 21.11.2024 06:20:34

Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

7.5

CVE-2021-39923

  • EPSS 1.57%
  • Published 19.11.2021 17:15:08
  • Last modified 21.11.2024 06:20:34

Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

7.5

CVE-2021-39924

Exploit
  • EPSS 1.02%
  • Published 19.11.2021 17:15:08
  • Last modified 21.11.2024 06:20:34

Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

7.5

CVE-2021-39925

Exploit
  • EPSS 3.53%
  • Published 19.11.2021 17:15:08
  • Last modified 21.11.2024 06:20:34

Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file