Debian

Debian Linux

9979 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-3156

Warnung Exploit
  • EPSS 92.53%
  • Veröffentlicht 26.01.2021 21:15:12
  • Zuletzt bearbeitet 10.11.2025 14:41:45

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

6.5

CVE-2021-3114

  • EPSS 0.12%
  • Veröffentlicht 26.01.2021 18:16:27
  • Zuletzt bearbeitet 21.11.2024 06:20:54

In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field.

7.5

CVE-2020-36225

  • EPSS 0.76%
  • Veröffentlicht 26.01.2021 18:15:57
  • Zuletzt bearbeitet 21.11.2024 05:29:05

A flaw was discovered in OpenLDAP before 2.4.57 leading to a double free and slapd crash in the saslAuthzTo processing, resulting in denial of service.

7.5

CVE-2020-36226

  • EPSS 0.56%
  • Veröffentlicht 26.01.2021 18:15:57
  • Zuletzt bearbeitet 21.11.2024 05:29:05

A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch->bv_len miscalculation and slapd crash in the saslAuthzTo processing, resulting in denial of service.

7.5

CVE-2020-36227

  • EPSS 63.63%
  • Veröffentlicht 26.01.2021 18:15:57
  • Zuletzt bearbeitet 21.11.2024 05:29:05

A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service.

7.5

CVE-2020-36228

  • EPSS 73.49%
  • Veröffentlicht 26.01.2021 18:15:57
  • Zuletzt bearbeitet 21.11.2024 05:29:05

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service.

7.5

CVE-2020-36229

  • EPSS 2%
  • Veröffentlicht 26.01.2021 18:15:57
  • Zuletzt bearbeitet 21.11.2024 05:29:06

A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service.

7.5

CVE-2020-36230

  • EPSS 3.55%
  • Veröffentlicht 26.01.2021 18:15:57
  • Zuletzt bearbeitet 21.11.2024 05:29:06

A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service.

7.5

CVE-2020-36221

  • EPSS 57.47%
  • Veröffentlicht 26.01.2021 18:15:56
  • Zuletzt bearbeitet 21.11.2024 05:29:04

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service (schema_init.c serialNumberAndIssuerCheck).

7.5

CVE-2020-36222

  • EPSS 39.34%
  • Veröffentlicht 26.01.2021 18:15:56
  • Zuletzt bearbeitet 21.11.2024 05:29:04

A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the saslAuthzTo validation, resulting in denial of service.