Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.32%
  • Veröffentlicht 30.09.2022 06:15:12
  • Zuletzt bearbeitet 21.11.2024 07:23:56

drivers/video/fbdev/smscufx.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open(), aka a race condition between ufx_ops_open and ufx_usb_di...

  • EPSS 0.21%
  • Veröffentlicht 30.09.2022 06:15:12
  • Zuletzt bearbeitet 21.11.2024 07:23:56

roccat_report_event in drivers/hid/hid-roccat.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free in certain situations where a report is received while copying a report->value is in progress.

Exploit
  • EPSS 0.49%
  • Veröffentlicht 29.09.2022 12:15:09
  • Zuletzt bearbeitet 21.11.2024 07:19:21

Use After Free in GitHub repository vim/vim prior to 9.0.0614.

Exploit
  • EPSS 4.64%
  • Veröffentlicht 29.09.2022 03:15:11
  • Zuletzt bearbeitet 21.11.2024 02:48:15

An exploitable heap overflow vulnerability exists in the Psych::Emitter start_document function of Ruby. In Psych::Emitter start_document function heap buffer "head" allocation is made based on tags array length. Specially constructed object passed a...

Exploit
  • EPSS 49.34%
  • Veröffentlicht 28.09.2022 23:15:10
  • Zuletzt bearbeitet 04.11.2025 18:15:39

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.

  • EPSS 0.59%
  • Veröffentlicht 28.09.2022 23:15:09
  • Zuletzt bearbeitet 21.11.2024 07:04:53

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.

Exploit
  • EPSS 0.44%
  • Veröffentlicht 28.09.2022 20:15:10
  • Zuletzt bearbeitet 21.05.2025 15:15:55

In GraphicsMagick, a heap buffer overflow was found when parsing MIFF.

  • EPSS 1.56%
  • Veröffentlicht 28.09.2022 14:15:10
  • Zuletzt bearbeitet 21.11.2024 07:17:54

Twig is a template language for PHP. Versions 1.x prior to 1.44.7, 2.x prior to 2.15.3, and 3.x prior to 3.4.3 encounter an issue when the filesystem loader loads templates for which the name is a user input. It is possible to use the `source` or `in...

  • EPSS 1.91%
  • Veröffentlicht 28.09.2022 14:15:09
  • Zuletzt bearbeitet 21.05.2025 15:15:55

The simplified implementation of blocking reads and writes introduced in Tomcat 10 and back-ported to Tomcat 9.0.47 onwards exposed a long standing (but extremely hard to trigger) concurrency bug in Apache Tomcat 10.1.0 to 10.1.0-M12, 10.0.0-M1 to 10...

  • EPSS 0.55%
  • Veröffentlicht 28.09.2022 10:15:09
  • Zuletzt bearbeitet 21.05.2025 15:15:56

In ovs versions v0.90.0 through v2.5.0 are vulnerable to heap buffer over-read in flow.c. An unsafe comparison of “minimasks” function could lead access to an unmapped region of memory. This vulnerability is capable of crashing the software, memory m...