Debian

Debian Linux

9208 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2019-17402

  • EPSS 0.22%
  • Published 09.10.2019 19:15:14
  • Last modified 21.11.2024 04:32:16

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset an...

9.1

CVE-2019-17362

Exploit
  • EPSS 0.51%
  • Published 09.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:11

In LibTomCrypt through 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences. This allows context-dependent attackers to cause a denial of service (out-of-bounds read and cr...

7.8

CVE-2019-14846

  • EPSS 0.14%
  • Published 08.10.2019 19:15:10
  • Last modified 21.11.2024 04:27:29

In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13, ansible-engine 2.6.19, were logging at the DEBUG level which lead to a disclosure of credentials if a plugin used a library that logged credentials at the DEBU...

5.5

CVE-2019-17349

  • EPSS 0.14%
  • Published 08.10.2019 01:15:11
  • Last modified 21.11.2024 04:32:08

An issue was discovered in Xen through 4.12.x allowing Arm domU attackers to cause a denial of service (infinite loop) involving a LoadExcl or StoreExcl operation.

8.8

CVE-2019-17340

  • EPSS 0.08%
  • Published 08.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 guest OS users to cause a denial of service or gain privileges because grant-table transfer requests are mishandled.

7.8

CVE-2019-17341

  • EPSS 0.11%
  • Published 08.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a page-writability race condition during addition of a passed-through PCI device.

7

CVE-2019-17342

  • EPSS 0.12%
  • Published 08.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a race condition that arose when XENMEM_exchange was introduced.

6.8

CVE-2019-17343

  • EPSS 0.12%
  • Published 08.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.

6.5

CVE-2019-17344

  • EPSS 0.15%
  • Published 08.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:07

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service by leveraging a long-running operation that exists to support restartability of PTE updates.

6.5

CVE-2019-17345

  • EPSS 0.08%
  • Published 08.10.2019 01:15:10
  • Last modified 21.11.2024 04:32:07

An issue was discovered in Xen 4.8.x through 4.11.x allowing x86 PV guest OS users to cause a denial of service because mishandling of failed IOMMU operations causes a bug check during the cleanup of a crashed guest.