Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2023-2269

  • EPSS 0.03%
  • Published 25.04.2023 21:15:10
  • Last modified 21.11.2024 07:58:16

A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub-component.

7.8

CVE-2023-2007

  • EPSS 0.03%
  • Published 24.04.2023 23:15:18
  • Last modified 21.11.2024 07:57:45

The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges a...

6.5

CVE-2023-28484

Exploit
  • EPSS 0.24%
  • Published 24.04.2023 21:15:09
  • Last modified 30.05.2025 20:15:31

In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.

6.5

CVE-2023-29469

  • EPSS 0.06%
  • Published 24.04.2023 21:15:09
  • Last modified 04.02.2025 21:15:23

An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This...

5.5

CVE-2023-31084

  • EPSS 0.01%
  • Published 24.04.2023 06:15:07
  • Last modified 18.03.2025 20:15:19

An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test...

5.6

CVE-2023-1998

Exploit
  • EPSS 0.04%
  • Published 21.04.2023 15:15:07
  • Last modified 13.02.2025 17:16:01

The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. We had noticed that on VMs of at least one major cloud provider, the k...

8.8

CVE-2023-2133

  • EPSS 0.94%
  • Published 19.04.2023 04:15:31
  • Last modified 21.11.2024 07:57:59

Out of bounds memory access in Service Worker API in Google Chrome prior to 112.0.5615.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2134

  • EPSS 0.66%
  • Published 19.04.2023 04:15:31
  • Last modified 21.11.2024 07:57:59

Out of bounds memory access in Service Worker API in Google Chrome prior to 112.0.5615.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.5

CVE-2023-2135

  • EPSS 0.49%
  • Published 19.04.2023 04:15:31
  • Last modified 21.11.2024 07:57:59

Use after free in DevTools in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who convinced a user to enable specific preconditions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.6

CVE-2023-2136

Warning
  • EPSS 0.34%
  • Published 19.04.2023 04:15:31
  • Last modified 19.02.2025 19:40:21

Integer overflow in Skia in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)