Debian

Debian Linux

9213 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-9928

  • EPSS 14.53%
  • Published 24.04.2019 15:29:02
  • Last modified 21.11.2024 04:52:35

GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.

6.5

CVE-2019-11498

Exploit
  • EPSS 1.97%
  • Published 24.04.2019 05:29:00
  • Last modified 21.11.2024 04:21:12

WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file ...

7

CVE-2019-11486

  • EPSS 0.05%
  • Published 23.04.2019 22:29:05
  • Last modified 21.11.2024 04:21:10

The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel before 5.0.8 has multiple race conditions.

7.8

CVE-2019-11487

Exploit
  • EPSS 0.04%
  • Published 23.04.2019 22:29:05
  • Last modified 21.11.2024 04:21:11

The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs...

8.1

CVE-2019-2698

  • EPSS 5.97%
  • Published 23.04.2019 19:32:56
  • Last modified 21.11.2024 04:41:23

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protoc...

5.9

CVE-2019-2684

  • EPSS 0.99%
  • Published 23.04.2019 19:32:55
  • Last modified 21.11.2024 04:41:21

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to exploit vulnerability allows unauthen...

7.5

CVE-2019-2602

  • EPSS 0.27%
  • Published 23.04.2019 19:32:50
  • Last modified 21.11.2024 04:41:11

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unau...

6.5

CVE-2019-11474

  • EPSS 3.09%
  • Published 23.04.2019 14:29:01
  • Last modified 21.11.2024 04:21:09

coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.

5.5

CVE-2019-11459

  • EPSS 0.73%
  • Published 22.04.2019 22:29:00
  • Last modified 21.11.2024 04:21:07

The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIF...

6.1

CVE-2019-10241

  • EPSS 25.44%
  • Published 22.04.2019 20:29:00
  • Last modified 21.11.2024 04:18:43

In Eclipse Jetty version 9.2.26 and older, 9.3.25 and older, and 9.4.15 and older, the server is vulnerable to XSS conditions if a remote client USES a specially formatted URL against the DefaultServlet or ResourceHandler that is configured for showi...