Debian

Debian Linux

9947 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-3079

Warnung Exploit
  • EPSS 2.11%
  • Veröffentlicht 05.06.2023 22:15:12
  • Zuletzt bearbeitet 24.10.2025 14:07:38

Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.8

CVE-2023-3111

  • EPSS 0.01%
  • Veröffentlicht 05.06.2023 21:15:11
  • Zuletzt bearbeitet 23.04.2025 17:16:34

A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().

5.3

CVE-2023-34410

  • EPSS 0.11%
  • Veröffentlicht 05.06.2023 03:15:09
  • Zuletzt bearbeitet 20.03.2025 21:30:54

An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate.

5.5

CVE-2023-32324

Exploit
  • EPSS 0.19%
  • Veröffentlicht 01.06.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 08:03:06

OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_l...

5.5

CVE-2023-34256

  • EPSS 0.02%
  • Veröffentlicht 31.05.2023 20:15:10
  • Zuletzt bearbeitet 11.03.2025 16:15:14

An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties ...

6.5

CVE-2023-2952

Exploit
  • EPSS 0.03%
  • Veröffentlicht 30.05.2023 23:15:09
  • Zuletzt bearbeitet 03.11.2025 22:16:08

XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file

5.5

CVE-2023-34151

Exploit
  • EPSS 0.07%
  • Veröffentlicht 30.05.2023 22:15:11
  • Zuletzt bearbeitet 02.12.2024 14:34:36

A vulnerability was found in ImageMagick. This security flaw ouccers as an undefined behaviors of casting double to size_t in svg, mvg and other coders (recurring bugs of CVE-2022-32546).

6.5

CVE-2023-2650

  • EPSS 92.13%
  • Veröffentlicht 30.05.2023 14:15:09
  • Zuletzt bearbeitet 19.03.2025 16:15:21

Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJ_obj2txt() directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF o...

5.3

CVE-2023-32762

  • EPSS 0.12%
  • Veröffentlicht 28.05.2023 23:15:09
  • Zuletzt bearbeitet 21.11.2024 08:03:59

An issue was discovered in Qt before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. Qt Network incorrectly parses the strict-transport-security (HSTS) header, allowing unencrypted connections to be established, even when explicitly ...

7.5

CVE-2023-32307

  • EPSS 0.36%
  • Veröffentlicht 26.05.2023 23:15:10
  • Zuletzt bearbeitet 14.01.2025 20:15:26

Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Referring to [GHSA-8599-x7rq-fr54](https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-8599-x7rq-fr54), several other potential heap-over-...