Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4

CVE-2014-0386

  • EPSS 0.41%
  • Published 15.01.2014 16:08:07
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

3.3

CVE-2014-0393

  • EPSS 0.52%
  • Published 15.01.2014 16:08:07
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect integrity via unknown vectors related to InnoDB.

2.6

CVE-2013-5908

  • EPSS 5.36%
  • Published 15.01.2014 16:08:06
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote attackers to affect availability via unknown vectors related to Error Handling.

4

CVE-2013-5891

  • EPSS 0.44%
  • Published 15.01.2014 16:08:05
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

2.1

CVE-2013-4969

  • EPSS 0.05%
  • Published 07.01.2014 18:55:06
  • Last modified 11.04.2025 00:51:21

Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.

5

CVE-2013-6890

  • EPSS 12.17%
  • Published 23.12.2013 22:55:03
  • Last modified 11.04.2025 00:51:21

denyhosts 2.6 uses an incorrect regular expression when analyzing authentication logs, which allows remote attackers to cause a denial of service (incorrect block of IP addresses) via crafted login names.

4

CVE-2013-6422

  • EPSS 0.25%
  • Published 23.12.2013 22:55:02
  • Last modified 11.04.2025 00:51:21

The GnuTLS backend in libcurl 7.21.4 through 7.33.0, when disabling digital signature verification (CURLOPT_SSL_VERIFYPEER), also disables the CURLOPT_SSL_VERIFYHOST check for CN or SAN host name fields, which makes it easier for remote attackers to ...

6.8

CVE-2013-7020

  • EPSS 1.47%
  • Published 09.12.2013 16:36:49
  • Last modified 11.04.2025 00:51:21

The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 does not properly enforce certain bit-count and colorspace constraints, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have uns...

9.3

CVE-2013-0858

  • EPSS 1.15%
  • Published 07.12.2013 21:55:09
  • Last modified 11.04.2025 00:51:21

The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels.

7.5

CVE-2013-6410

  • EPSS 0.32%
  • Published 07.12.2013 20:55:02
  • Last modified 11.04.2025 00:51:21

nbd-server in Network Block Device (nbd) before 3.5 does not properly check IP addresses, which might allow remote attackers to bypass intended access restrictions via an IP address that has a partial match in the authfile configuration file.