Debian

Debian Linux

9950 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-3578

  • EPSS 1.92%
  • Veröffentlicht 16.02.2022 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:21:53

A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a malicious or compromised server to write an arbitrary integer value past the end of a heap-allocated structure by issuing an unexpected APPENDUID response. ...

7.9

CVE-2021-3752

Exploit
  • EPSS 0.04%
  • Veröffentlicht 16.02.2022 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:20

A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The...

7.8

CVE-2021-3760

  • EPSS 0.14%
  • Veröffentlicht 16.02.2022 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:21

A flaw was found in the Linux kernel. A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability.

7.8

CVE-2022-23803

Exploit
  • EPSS 1.28%
  • Veröffentlicht 16.02.2022 17:15:13
  • Zuletzt bearbeitet 21.11.2024 06:49:17

A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon ReadXYCoord coordinate parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code exe...

7.8

CVE-2022-23804

Exploit
  • EPSS 0.95%
  • Veröffentlicht 16.02.2022 17:15:13
  • Zuletzt bearbeitet 21.11.2024 06:49:17

A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon ReadIJCoord coordinate parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code exe...

5.5

CVE-2022-0617

Exploit
  • EPSS 0.03%
  • Veröffentlicht 16.02.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 06:39:02

A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux ker...

9.8

CVE-2022-25235

  • EPSS 13.32%
  • Veröffentlicht 16.02.2022 01:15:07
  • Zuletzt bearbeitet 05.05.2025 17:18:00

xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.

9.8

CVE-2022-25236

  • EPSS 9.36%
  • Veröffentlicht 16.02.2022 01:15:07
  • Zuletzt bearbeitet 05.05.2025 17:18:01

xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.

7.5

CVE-2022-0583

Exploit
  • EPSS 0.08%
  • Veröffentlicht 14.02.2022 22:15:08
  • Zuletzt bearbeitet 03.11.2025 22:15:54

Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

7.8

CVE-2022-0586

Exploit
  • EPSS 0.02%
  • Veröffentlicht 14.02.2022 22:15:08
  • Zuletzt bearbeitet 03.11.2025 22:15:55

Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file