Debian

Debian Linux

9950 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-2598

Exploit
  • EPSS 0.13%
  • Veröffentlicht 01.08.2022 15:15:09
  • Zuletzt bearbeitet 25.02.2026 15:18:57

Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0100.

7.5

CVE-2022-2509

  • EPSS 0.91%
  • Veröffentlicht 01.08.2022 14:15:09
  • Zuletzt bearbeitet 02.12.2025 21:15:49

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.

6.5

CVE-2022-34526

Exploit
  • EPSS 0.2%
  • Veröffentlicht 29.07.2022 23:15:08
  • Zuletzt bearbeitet 21.11.2024 07:09:42

A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit v4.4.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted TIFF file parsed by the "tiffsplit" or "tiffcrop" utilities.

8

CVE-2022-30287

Exploit
  • EPSS 15.54%
  • Veröffentlicht 28.07.2022 22:15:08
  • Zuletzt bearbeitet 21.11.2024 07:02:30

Horde Groupware Webmail Edition through 5.2.22 allows a reflection injection attack through which an attacker can instantiate a driver class. This then leads to arbitrary deserialization of PHP objects.

6.5

CVE-2022-2553

  • EPSS 0.21%
  • Veröffentlicht 28.07.2022 15:15:07
  • Zuletzt bearbeitet 21.11.2024 07:01:14

The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a result, nodes that do not have the correct authentication key are not prevented from communicating with other nodes...

7.5

CVE-2022-36946

  • EPSS 5.08%
  • Veröffentlicht 27.07.2022 20:15:08
  • Zuletzt bearbeitet 05.05.2025 16:15:18

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encou...

5.5

CVE-2022-36879

  • EPSS 0.03%
  • Veröffentlicht 27.07.2022 04:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:17

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.

8.8

CVE-2022-33745

  • EPSS 0.07%
  • Veröffentlicht 26.07.2022 13:15:10
  • Zuletzt bearbeitet 21.11.2024 07:08:27

insufficient TLB flush for x86 PV guests in shadow mode For migration as well as to work around kernels unaware of L1TF (see XSA-273), PV guests may be run in shadow paging mode. To address XSA-401, code was moved inside a function in Xen. This code ...

7.5

CVE-2022-26306

  • EPSS 0.36%
  • Veröffentlicht 25.07.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:53:43

LibreOffice supports the storage of passwords for web connections in the user’s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where the required initialization ...

8.8

CVE-2022-26307

  • EPSS 0.3%
  • Veröffentlicht 25.07.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:53:43

LibreOffice supports the storage of passwords for web connections in the user’s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where master key was poorly encode...