Debian

Debian Linux

9142 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-32087

Exploit
  • EPSS 0.21%
  • Veröffentlicht 01.07.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:05:45

MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_args::walk_args.

7.5

CVE-2022-32088

Exploit
  • EPSS 0.16%
  • Veröffentlicht 01.07.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:05:45

MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort.

7.5

CVE-2022-32091

Exploit
  • EPSS 0.25%
  • Veröffentlicht 01.07.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 07:05:46

MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.

6.5

CVE-2022-2056

Exploit
  • EPSS 0.13%
  • Veröffentlicht 30.06.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:14

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

6.5

CVE-2022-2057

Exploit
  • EPSS 0.13%
  • Veröffentlicht 30.06.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:14

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

6.5

CVE-2022-2058

Exploit
  • EPSS 0.13%
  • Veröffentlicht 30.06.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:14

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

5.5

CVE-2022-2078

  • EPSS 0.43%
  • Veröffentlicht 30.06.2022 13:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:16

A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.

7.7

CVE-2022-31090

  • EPSS 2.82%
  • Veröffentlicht 27.06.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:52

Guzzle, an extensible PHP HTTP client. `Authorization` headers on requests are sensitive information. In affected versions when using our Curl handler, it is possible to use the `CURLOPT_HTTPAUTH` option to specify an `Authorization` header. On makin...

7.7

CVE-2022-31091

  • EPSS 0.37%
  • Veröffentlicht 27.06.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:52

Guzzle, an extensible PHP HTTP client. `Authorization` and `Cookie` headers on requests are sensitive information. In affected versions on making a request which responds with a redirect to a URI with a different port, if we choose to follow it, we s...

6.5

CVE-2022-31081

Exploit
  • EPSS 0.55%
  • Veröffentlicht 27.06.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:03:51

HTTP::Daemon is a simple http server class written in perl. Versions prior to 6.15 are subject to a vulnerability which could potentially be exploited to gain privileged access to APIs or poison intermediate caches. It is uncertain how large the risk...