Debian

Debian Linux

9144 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-6077

Exploit
  • EPSS 0.77%
  • Published 24.03.2020 21:15:14
  • Last modified 21.11.2024 05:35:02

An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages, the implementation does not properly keep track of the available data in the message, possibly lead...

7.5

CVE-2020-6078

Exploit
  • EPSS 1.41%
  • Published 24.03.2020 21:15:14
  • Last modified 21.11.2024 05:35:03

An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninit...

7.5

CVE-2020-6079

Exploit
  • EPSS 1.2%
  • Published 24.03.2020 21:15:14
  • Last modified 21.11.2024 05:35:03

An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service ...

7.5

CVE-2020-6080

Exploit
  • EPSS 1.08%
  • Published 24.03.2020 21:15:14
  • Last modified 21.11.2024 05:35:03

An exploitable denial-of-service vulnerability exists in the resource allocation handling of Videolabs libmicrodns 0.1.0. When encountering errors while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service ...

5.9

CVE-2020-10941

  • EPSS 0.75%
  • Published 24.03.2020 20:15:14
  • Last modified 21.11.2024 04:56:25

Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information (an RSA private key) by measuring cache usage during an import.

9.8

CVE-2020-10938

  • EPSS 0.35%
  • Published 24.03.2020 16:15:12
  • Last modified 21.11.2024 04:56:24

GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c.

6.8

CVE-2020-9359

  • EPSS 2.64%
  • Published 24.03.2020 14:15:13
  • Last modified 21.11.2024 05:40:28

KDE Okular before 1.10.0 allows code execution via an action link in a PDF document.

7.1

CVE-2020-10684

  • EPSS 0.02%
  • Published 24.03.2020 14:15:12
  • Last modified 21.11.2024 04:55:50

A flaw was found in Ansible Engine, all versions 2.7.x, 2.8.x and 2.9.x prior to 2.7.17, 2.8.9 and 2.9.6 respectively, when using ansible_facts as a subkey of itself and promoting it to a variable when inject is enabled, overwriting the ansible_facts...

9.8

CVE-2019-17559

  • EPSS 1.41%
  • Published 23.03.2020 22:15:12
  • Last modified 21.11.2024 04:32:31

There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and scheme parsing. Upgrade to versions 7.1.9 and 8.0.6 or later versions.

9.8

CVE-2019-17565

  • EPSS 1.21%
  • Published 23.03.2020 22:15:12
  • Last modified 21.11.2024 04:32:32

There is a vulnerability in Apache Traffic Server 6.0.0 to 6.2.3, 7.0.0 to 7.1.8, and 8.0.0 to 8.0.5 with a smuggling attack and chunked encoding. Upgrade to versions 7.1.9 and 8.0.6 or later versions.