Debian

Debian Linux

9998 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 2.46%
  • Veröffentlicht 12.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:55:40

MariaDB Server v10.7 and below was discovered to contain a global buffer overflow in the component decimal_bin_size, which is exploited via specially crafted SQL statements.

  • EPSS 9.25%
  • Veröffentlicht 12.04.2022 18:15:09
  • Zuletzt bearbeitet 21.11.2024 06:49:45

Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (i...

  • EPSS 0.78%
  • Veröffentlicht 12.04.2022 18:15:09
  • Zuletzt bearbeitet 21.11.2024 06:51:02

Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on multi-user machines, where untrusted parties have write access to the same hard disk. Those untrusted parties could create the folder `C...

Exploit
  • EPSS 2.79%
  • Veröffentlicht 12.04.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 05:59:49

Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, us...

  • EPSS 2.92%
  • Veröffentlicht 12.04.2022 05:15:07
  • Zuletzt bearbeitet 21.11.2024 06:57:11

A SQL injection issue was discovered in QuerySet.explain() in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. This occurs by passing a crafted dictionary (with dictionary expansion) as the **options argument, and placing the inject...

  • EPSS 18.52%
  • Veröffentlicht 12.04.2022 05:15:06
  • Zuletzt bearbeitet 21.11.2024 06:57:11

An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as...

  • EPSS 3.55%
  • Veröffentlicht 11.04.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:51:12

Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `< v1.13.4` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to detect encoding in HTML documents. Users are advised to upgrade...

  • EPSS 0.4%
  • Veröffentlicht 11.04.2022 05:15:07
  • Zuletzt bearbeitet 21.11.2024 06:58:09

The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state.

  • EPSS 2.11%
  • Veröffentlicht 06.04.2022 14:15:08
  • Zuletzt bearbeitet 04.11.2025 16:15:47

PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.12 and prior affects applications that use PJSIP DNS resolution. It doesn't affect PJSIP users who utilize an external resolv...

  • EPSS 1.89%
  • Veröffentlicht 06.04.2022 14:15:07
  • Zuletzt bearbeitet 21.11.2024 06:51:05

PJSIP is a free and open source multimedia communication library written in C. PJSIP versions 2.12 and prior do not parse incoming RTCP feedback RPSI (Reference Picture Selection Indication) packet, but any app that directly uses pjmedia_rtcp_fb_pars...