Debian

Debian Linux

9144 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2021-30858

Warning
  • EPSS 1.03%
  • Published 24.08.2021 19:15:14
  • Last modified 02.04.2025 16:58:58

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report tha...

8.8

CVE-2021-30851

  • EPSS 0.77%
  • Published 24.08.2021 19:15:13
  • Last modified 21.11.2024 06:04:50

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.

9.8

CVE-2021-3711

  • EPSS 2.75%
  • Published 24.08.2021 15:15:09
  • Last modified 21.11.2024 06:22:12

In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen...

7.4

CVE-2021-3712

Warning
  • EPSS 0.72%
  • Published 24.08.2021 15:15:09
  • Last modified 21.11.2024 06:22:13

ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the s...

9.3

CVE-2021-38714

Exploit
  • EPSS 0.18%
  • Published 24.08.2021 14:15:10
  • Last modified 21.11.2024 06:17:58

In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution. The vulnerability is found in ssgLoadTGA() function in src/ssg/ssgLoadTGA.cxx file.

8.1

CVE-2020-18771

Exploit
  • EPSS 0.22%
  • Published 23.08.2021 22:15:26
  • Last modified 21.11.2024 05:08:48

Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmn_int.cpp which can result in an information leak.

8.5

CVE-2021-39152

Exploit
  • EPSS 67.83%
  • Published 23.08.2021 19:15:13
  • Last modified 23.05.2025 16:47:47

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to request data from internal resources that are not publicly available only by manipulating the processed inp...

8.5

CVE-2021-39150

Exploit
  • EPSS 1.97%
  • Published 23.08.2021 19:15:12
  • Last modified 23.05.2025 16:48:02

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to request data from internal resources that are not publicly available only by manipulating the processed inp...

6.3

CVE-2021-39140

Exploit
  • EPSS 0.04%
  • Published 23.08.2021 19:15:10
  • Last modified 23.05.2025 16:50:34

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload r...

8.5

CVE-2021-39153

Exploit
  • EPSS 0.57%
  • Published 23.08.2021 18:15:13
  • Last modified 23.05.2025 16:50:17

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream, if usin...