Debian

Debian Linux

9947 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-6347

  • EPSS 0.37%
  • Veröffentlicht 29.11.2023 12:15:07
  • Zuletzt bearbeitet 05.06.2025 14:15:30

Use after free in Mojo in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-6348

  • EPSS 0.87%
  • Veröffentlicht 29.11.2023 12:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:40

Type Confusion in Spellcheck in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-6350

  • EPSS 1.24%
  • Veröffentlicht 29.11.2023 12:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:40

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High)

8.8

CVE-2023-6351

  • EPSS 0.21%
  • Veröffentlicht 29.11.2023 12:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:40

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High)

5.9

CVE-2023-5981

  • EPSS 0.57%
  • Veröffentlicht 28.11.2023 12:15:07
  • Zuletzt bearbeitet 25.03.2026 20:01:09

A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.

8.8

CVE-2023-6212

  • EPSS 0.39%
  • Veröffentlicht 21.11.2023 15:15:08
  • Zuletzt bearbeitet 21.11.2024 08:43:22

Memory safety bugs present in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vu...

6.5

CVE-2023-6204

  • EPSS 0.27%
  • Veröffentlicht 21.11.2023 15:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:21

On some systems—depending on the graphics settings and drivers—it was possible to force an out-of-bounds read and leak memory data into the images created on the canvas element. This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thu...

6.5

CVE-2023-6205

  • EPSS 0.41%
  • Veröffentlicht 21.11.2023 15:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:21

It was possible to cause the use of a MessagePort after it had already been freed, which could potentially have led to an exploitable crash. This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.

5.4

CVE-2023-6206

  • EPSS 0.43%
  • Veröffentlicht 21.11.2023 15:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:22

The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click where the permission grant button would be about t...

8.8

CVE-2023-6207

  • EPSS 0.46%
  • Veröffentlicht 21.11.2023 15:15:07
  • Zuletzt bearbeitet 21.11.2024 08:43:22

Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5.