Debian

Debian Linux

9950 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-43244

Exploit
  • EPSS 0.25%
  • Veröffentlicht 02.11.2022 14:15:13
  • Zuletzt bearbeitet 05.05.2025 14:15:27

Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.

6.5

CVE-2022-43235

Exploit
  • EPSS 0.28%
  • Veröffentlicht 02.11.2022 14:15:12
  • Zuletzt bearbeitet 02.05.2025 21:15:20

Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_epel_pixels_8_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.

6.5

CVE-2022-43236

Exploit
  • EPSS 0.28%
  • Veröffentlicht 02.11.2022 14:15:12
  • Zuletzt bearbeitet 02.05.2025 21:15:20

Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.

6.5

CVE-2022-43237

Exploit
  • EPSS 0.28%
  • Veröffentlicht 02.11.2022 14:15:12
  • Zuletzt bearbeitet 02.05.2025 21:15:20

Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via void put_epel_hv_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.

6.5

CVE-2022-43238

Exploit
  • EPSS 0.24%
  • Veröffentlicht 02.11.2022 14:15:12
  • Zuletzt bearbeitet 02.05.2025 21:15:20

Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_h_3_v_3_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.

8.1

CVE-2021-37789

Exploit
  • EPSS 0.17%
  • Veröffentlicht 02.11.2022 13:15:10
  • Zuletzt bearbeitet 02.05.2025 21:15:16

stb_image.h 2.27 has a heap-based buffer over in stbi__jpeg_load, leading to Information Disclosure or Denial of Service.

8.8

CVE-2022-42823

  • EPSS 0.63%
  • Veröffentlicht 01.11.2022 20:15:24
  • Zuletzt bearbeitet 21.04.2025 16:15:51

A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 16.1, macOS Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Processing maliciously crafted web content may lead to arbitrary code execution.

5.5

CVE-2022-42824

  • EPSS 0.03%
  • Veröffentlicht 01.11.2022 20:15:24
  • Zuletzt bearbeitet 21.04.2025 16:15:51

A logic issue was addressed with improved state management. This issue is fixed in tvOS 16.1, macOS Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Processing maliciously crafted web content may disclose sensitive user information.

6.1

CVE-2022-42799

  • EPSS 0.46%
  • Veröffentlicht 01.11.2022 20:15:22
  • Zuletzt bearbeitet 05.05.2025 17:18:18

The issue was addressed with improved UI handling. This issue is fixed in tvOS 16.1, macOS Ventura 13, watchOS 9.1, Safari 16.1, iOS 16.1 and iPadOS 16. Visiting a malicious website may lead to user interface spoofing.

5.5

CVE-2022-42324

  • EPSS 0.03%
  • Veröffentlicht 01.11.2022 13:15:12
  • Zuletzt bearbeitet 21.11.2024 07:24:45

Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed precision. The Ocaml Xenbus library takes a C uint32_t out of the ring and casts it directly to an Ocaml integer. In 64-bit Ocaml builds this is fine, but i...