Debian

Debian Linux

9213 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2019-5798

  • EPSS 1.28%
  • Veröffentlicht 23.05.2019 20:29:01
  • Zuletzt bearbeitet 21.11.2024 04:45:30

Lack of correct bounds checking in Skia in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

5.9

CVE-2019-0201

  • EPSS 0.29%
  • Veröffentlicht 23.05.2019 14:29:07
  • Zuletzt bearbeitet 21.11.2024 04:16:28

An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. ZooKeeper’s getACL() command doesn’t check any permission when retrieves the ACLs of the requested node and returns all information contained in the ACL Id field a...

7.5

CVE-2019-12295

  • EPSS 2.5%
  • Veröffentlicht 23.05.2019 12:29:00
  • Zuletzt bearbeitet 21.11.2024 04:22:34

In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion.

5.9

CVE-2019-11841

Exploit
  • EPSS 0.39%
  • Veröffentlicht 22.05.2019 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:52

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain...

9.8

CVE-2019-12046

Exploit
  • EPSS 1.74%
  • Veröffentlicht 22.05.2019 16:29:01
  • Zuletzt bearbeitet 28.05.2025 17:23:02

LemonLDAP::NG -2.0.3 has Incorrect Access Control.

6.5

CVE-2019-9892

  • EPSS 0.46%
  • Veröffentlicht 22.05.2019 00:29:02
  • Zuletzt bearbeitet 21.11.2024 04:52:31

An issue was discovered in Open Ticket Request System (OTRS) 5.x through 5.0.34, 6.x through 6.0.17, and 7.x through 7.0.6. An attacker who is logged into OTRS as an agent user with appropriate permissions may try to import carefully crafted Report S...

6.5

CVE-2019-12216

Exploit
  • EPSS 1.12%
  • Veröffentlicht 20.05.2019 17:29:17
  • Zuletzt bearbeitet 21.11.2024 04:22:26

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a heap-based buffer overflow in the SDL2_image function IMG_LoadPCX_RW at IMG_pcx.c.

6.5

CVE-2019-12221

Exploit
  • EPSS 2.11%
  • Veröffentlicht 20.05.2019 17:29:17
  • Zuletzt bearbeitet 21.11.2024 04:22:27

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a SEGV in the SDL function SDL_free_REAL at stdlib/SDL_malloc.c.

6.5

CVE-2019-12213

Exploit
  • EPSS 0.34%
  • Veröffentlicht 20.05.2019 16:29:01
  • Zuletzt bearbeitet 21.11.2024 04:22:26

When FreeImage 3.18.0 reads a special TIFF file, the TIFFReadDirectory function in PluginTIFF.cpp always returns 1, leading to stack exhaustion.

7.5

CVE-2019-12086

Exploit
  • EPSS 13.57%
  • Veröffentlicht 17.05.2019 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:22:10

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint, the service has the mysql-connector-java ja...