Debian

Debian Linux

9144 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.1

CVE-2021-2388

  • EPSS 0.69%
  • Published 21.07.2021 15:15:40
  • Last modified 27.05.2025 16:45:29

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult ...

4.3

CVE-2021-2369

  • EPSS 0.32%
  • Published 21.07.2021 15:15:31
  • Last modified 27.05.2025 16:44:57

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Library). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Eas...

4.3

CVE-2021-2341

  • EPSS 0.32%
  • Published 21.07.2021 15:15:17
  • Last modified 27.05.2025 16:47:32

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. ...

5.5

CVE-2020-19609

Exploit
  • EPSS 0.45%
  • Published 21.07.2021 15:15:12
  • Last modified 21.11.2024 05:09:15

Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service.

7.8

CVE-2021-33909

Exploit
  • EPSS 1.75%
  • Published 20.07.2021 19:15:09
  • Last modified 21.11.2024 06:09:45

fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.

5.5

CVE-2021-33910

Exploit
  • EPSS 0.08%
  • Published 20.07.2021 19:15:09
  • Last modified 09.06.2025 16:15:32

basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.

8.8

CVE-2021-3246

Exploit
  • EPSS 1.05%
  • Published 20.07.2021 15:15:11
  • Last modified 21.11.2024 06:21:09

A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.

7.5

CVE-2021-22235

Exploit
  • EPSS 0.76%
  • Published 20.07.2021 12:15:07
  • Last modified 21.11.2024 05:49:45

Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service via packet injection or crafted capture file

7.8

CVE-2019-25051

  • EPSS 0.03%
  • Published 20.07.2021 07:15:07
  • Last modified 21.11.2024 04:39:50

objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list).

5.3

CVE-2020-36421

Exploit
  • EPSS 0.19%
  • Published 19.07.2021 17:15:11
  • Last modified 21.11.2024 05:29:28

An issue was discovered in Arm Mbed TLS before 2.23.0. Because of a side channel in modular exponentiation, an RSA private key used in a secure enclave could be disclosed.