Debian

Debian Linux

9144 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2021-31870

  • EPSS 1.28%
  • Published 30.04.2021 06:15:07
  • Last modified 21.11.2024 06:06:23

An issue was discovered in klibc before 2.0.9. Multiplication in the calloc() function may result in an integer overflow and a subsequent heap buffer overflow.

7.5

CVE-2021-31871

  • EPSS 1.59%
  • Published 30.04.2021 06:15:07
  • Last modified 21.11.2024 06:06:23

An issue was discovered in klibc before 2.0.9. An integer overflow in the cpio command may result in a NULL pointer dereference on 64-bit systems.

9.8

CVE-2021-31872

  • EPSS 1.17%
  • Published 30.04.2021 06:15:07
  • Last modified 21.11.2024 06:06:23

An issue was discovered in klibc before 2.0.9. Multiple possible integer overflows in the cpio command on 32-bit systems may result in a buffer overflow or other security impact.

9.8

CVE-2021-31873

  • EPSS 0.89%
  • Published 30.04.2021 06:15:07
  • Last modified 21.11.2024 06:06:24

An issue was discovered in klibc before 2.0.9. Additions in the malloc() function may result in an integer overflow and a subsequent heap buffer overflow.

7.8

CVE-2020-18032

Exploit
  • EPSS 0.41%
  • Published 29.04.2021 18:15:08
  • Last modified 21.11.2024 05:08:21

Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" comp...

5.5

CVE-2021-21417

Exploit
  • EPSS 0.53%
  • Published 29.04.2021 17:15:09
  • Last modified 21.11.2024 05:48:19

fluidsynth is a software synthesizer based on the SoundFont 2 specifications. A use after free violation was discovered in fluidsynth, that can be triggered when loading an invalid SoundFont file.

7.5

CVE-2021-20228

  • EPSS 0.14%
  • Published 29.04.2021 16:15:09
  • Last modified 21.11.2024 05:46:10

A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This flaw allows an attacker to obtain sensitive informa...

7.5

CVE-2021-25215

  • EPSS 1.92%
  • Published 29.04.2021 01:15:08
  • Last modified 21.11.2024 05:54:33

In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable ...

9.8

CVE-2021-25216

  • EPSS 12.58%
  • Published 29.04.2021 01:15:08
  • Last modified 21.11.2024 05:54:33

In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.1 of the BIND 9.17 development branch, BIND servers are v...

6.5

CVE-2021-25214

  • EPSS 0.77%
  • Published 29.04.2021 01:15:07
  • Last modified 21.11.2024 05:54:33

In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, ...