Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-1204

Exploit
  • EPSS 0.08%
  • Published 29.08.2022 15:15:10
  • Last modified 21.11.2024 06:40:14

A use-after-free flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.

5.5

CVE-2022-2953

Exploit
  • EPSS 0.02%
  • Published 29.08.2022 15:15:10
  • Last modified 21.11.2024 07:01:58

LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tools/tiffcrop.c:6905, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 48d6ece8.

7.8

CVE-2022-0367

Exploit
  • EPSS 0.05%
  • Published 29.08.2022 15:15:09
  • Last modified 21.11.2024 06:38:28

A heap-based buffer overflow flaw was found in libmodbus in function modbus_reply() in src/modbus.c.

4.9

CVE-2022-0718

Exploit
  • EPSS 0.33%
  • Published 29.08.2022 15:15:09
  • Last modified 21.11.2024 06:39:15

A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote ( " ) in them cause incorrect masking in debug logs, causing any part of the password after the double quote to be plaintext.

4.3

CVE-2022-2787

  • EPSS 0.09%
  • Published 27.08.2022 12:15:08
  • Last modified 21.11.2024 07:01:41

Schroot before 1.6.13 had too permissive rules on chroot or session names, allowing a denial of service on the schroot service for all users that may start a schroot session.

5.5

CVE-2022-0171

  • EPSS 0.03%
  • Published 26.08.2022 18:15:08
  • Last modified 21.11.2024 06:38:04

A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root (host) user-level application to crash the host kernel by creating a confidential guest VM instance in AMD CPU that supports Secure Encrypted Vi...

5.5

CVE-2021-3669

  • EPSS 0.01%
  • Published 26.08.2022 16:15:09
  • Last modified 21.11.2024 06:22:06

A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.

4.4

CVE-2021-3735

  • EPSS 0.12%
  • Published 26.08.2022 16:15:09
  • Last modified 28.02.2025 13:15:25

A deadlock issue was found in the AHCI controller device of QEMU. It occurs on a software reset (ahci_reset_port) while handling a host-to-device Register FIS (Frame Information Structure) packet from the guest. A privileged user inside the guest cou...

7

CVE-2021-3864

Exploit
  • EPSS 0.36%
  • Published 26.08.2022 16:15:09
  • Last modified 21.11.2024 06:22:41

A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. The prerequisite is a SUID binary that sets real UID equal to effective UID, and real GID equal to effective GID. The descendant wi...

7.4

CVE-2021-3563

Exploit
  • EPSS 0.04%
  • Published 26.08.2022 16:15:08
  • Last modified 21.11.2024 06:21:51

A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to da...