Debian

Debian Linux

9950 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2022-3890

  • EPSS 0.46%
  • Veröffentlicht 09.11.2022 04:15:10
  • Zuletzt bearbeitet 21.11.2024 07:20:27

Heap buffer overflow in Crashpad in Google Chrome on Android prior to 107.0.5304.106 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High...

8.8

CVE-2022-3885

  • EPSS 0.25%
  • Veröffentlicht 09.11.2022 04:15:09
  • Zuletzt bearbeitet 21.11.2024 07:20:26

Use after free in V8 in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.8

CVE-2022-39377

Exploit
  • EPSS 1.29%
  • Veröffentlicht 08.11.2022 20:15:11
  • Zuletzt bearbeitet 03.11.2025 18:15:39

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocate_structures contains a size_t overflow in sa_common.c. The allocate_structures function insuffic...

6.5

CVE-2022-44792

Exploit
  • EPSS 2.35%
  • Veröffentlicht 07.11.2022 03:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:22

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting i...

6.5

CVE-2022-44793

Exploit
  • EPSS 1.74%
  • Veröffentlicht 07.11.2022 03:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:22

handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via a crafted UDP packet, resulting in Denial of Servi...

7.8

CVE-2022-40284

  • EPSS 0.05%
  • Veröffentlicht 06.11.2022 23:15:09
  • Zuletzt bearbeitet 02.05.2025 19:15:53

A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS...

7.8

CVE-2021-34055

Exploit
  • EPSS 0.06%
  • Veröffentlicht 04.11.2022 17:15:10
  • Zuletzt bearbeitet 02.05.2025 19:15:47

jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u.

8.8

CVE-2022-44638

Exploit
  • EPSS 0.38%
  • Veröffentlicht 03.11.2022 06:15:10
  • Zuletzt bearbeitet 02.05.2025 20:15:19

In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

9.8

CVE-2022-39353

Exploit
  • EPSS 0.98%
  • Veröffentlicht 02.11.2022 17:15:17
  • Zuletzt bearbeitet 21.11.2024 07:18:06

xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the `childNodes` colle...

6.5

CVE-2022-43252

Exploit
  • EPSS 0.21%
  • Veröffentlicht 02.11.2022 14:15:15
  • Zuletzt bearbeitet 02.05.2025 21:15:21

Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.