Debian

Debian Linux

9316 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2024-33599

  • EPSS 0.56%
  • Veröffentlicht 06.05.2024 20:15:11
  • Zuletzt bearbeitet 18.06.2025 14:56:01

nscd: Stack-based buffer overflow in netgroup cache If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted by client requests then a subsequent client request for netgroup data may result in a stack-based buffer overflow. This flaw...

5.9

CVE-2024-33600

  • EPSS 0.19%
  • Veröffentlicht 06.05.2024 20:15:11
  • Zuletzt bearbeitet 18.06.2025 14:50:25

nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's (nscd) cache fails to add a not-found netgroup response to the cache, the client request can result in a null pointer dereference. This flaw was introduced in gli...

7.3

CVE-2024-33601

  • EPSS 0.09%
  • Veröffentlicht 06.05.2024 20:15:11
  • Zuletzt bearbeitet 01.08.2025 01:56:26

nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache Daemon's (nscd) netgroup cache uses xmalloc or xrealloc and these functions may terminate the process due to a memory allocation failure resulting in a den...

7.4

CVE-2024-33602

  • EPSS 0.31%
  • Veröffentlicht 06.05.2024 20:15:11
  • Zuletzt bearbeitet 18.06.2025 14:40:48

nscd: netgroup cache assumes NSS callback uses in-buffer strings The Name Service Cache Daemon's (nscd) netgroup cache can corrupt memory when the NSS callback does not store all strings in the provided buffer. The flaw was introduced in glibc 2.15 ...

7.5

CVE-2024-34069

  • EPSS 41.94%
  • Veröffentlicht 06.05.2024 15:15:23
  • Zuletzt bearbeitet 03.12.2025 15:32:11

Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute code on a developer's machine under some circumstances. This requires the attacker to get the developer to intera...

4.3

CVE-2024-34508

Exploit
  • EPSS 0.07%
  • Veröffentlicht 05.05.2024 20:15:07
  • Zuletzt bearbeitet 03.11.2025 21:16:11

dcmnet in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.

5.3

CVE-2024-34509

Exploit
  • EPSS 0.14%
  • Veröffentlicht 05.05.2024 20:15:07
  • Zuletzt bearbeitet 03.11.2025 21:16:11

dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.

5.5

CVE-2024-27073

  • EPSS 0.01%
  • Veröffentlicht 01.05.2024 13:15:51
  • Zuletzt bearbeitet 08.04.2025 18:54:36

In the Linux kernel, the following vulnerability has been resolved: media: ttpci: fix two memleaks in budget_av_attach When saa7146_register_device and saa7146_vv_init fails, budget_av_attach should free the resources it allocates, like the error-h...

5.5

CVE-2024-27074

  • EPSS 0.01%
  • Veröffentlicht 01.05.2024 13:15:51
  • Zuletzt bearbeitet 23.12.2024 14:31:11

In the Linux kernel, the following vulnerability has been resolved: media: go7007: fix a memleak in go7007_load_encoder In go7007_load_encoder, bounce(i.e. go->boot_fw), is allocated without a deallocation thereafter. After the following call chain...

5.5

CVE-2024-27076

  • EPSS 0.01%
  • Veröffentlicht 01.05.2024 13:15:51
  • Zuletzt bearbeitet 23.12.2024 15:08:03

In the Linux kernel, the following vulnerability has been resolved: media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak Free the memory allocated in v4l2_ctrl_handler_init on release.