Debian

Debian Linux

9141 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2023-4907

  • EPSS 0.27%
  • Published 12.09.2023 21:15:08
  • Last modified 21.11.2024 08:36:14

Inappropriate implementation in Intents in Google Chrome on Android prior to 117.0.5938.62 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Low)

7.8

CVE-2023-4921

Exploit
  • EPSS 0.01%
  • Published 12.09.2023 20:15:10
  • Last modified 13.02.2025 18:15:48

A use-after-free vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq...

8.8

CVE-2023-4863

Warning Exploit
  • EPSS 93.95%
  • Published 12.09.2023 15:15:24
  • Last modified 13.03.2025 16:17:15

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

8.1

CVE-2023-41915

  • EPSS 0.95%
  • Published 09.09.2023 22:15:09
  • Last modified 21.11.2024 08:21:54

OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.

5.7

CVE-2023-4875

  • EPSS 0.03%
  • Published 09.09.2023 15:15:35
  • Last modified 21.11.2024 08:36:10

Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12

6.5

CVE-2023-4874

  • EPSS 0.08%
  • Published 09.09.2023 15:15:34
  • Last modified 21.11.2024 08:36:09

Null pointer dereference when viewing a specially crafted email in Mutt >1.5.2 <2.2.12

7

CVE-2023-4622

  • EPSS 0.05%
  • Published 06.09.2023 14:15:12
  • Last modified 13.02.2025 18:15:46

A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendpage() function tries to add data to the last skb in the peer's recv queue without locking the queue. ...

7.8

CVE-2023-4623

  • EPSS 0.02%
  • Published 06.09.2023 14:15:12
  • Last modified 20.03.2025 16:59:51

A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a pare...

7.8

CVE-2023-4015

  • EPSS 0.02%
  • Published 06.09.2023 14:15:11
  • Last modified 13.02.2025 17:17:14

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in nft_immediate_deactivate() c...

7.8

CVE-2023-4206

  • EPSS 0.08%
  • Published 06.09.2023 14:15:11
  • Last modified 13.02.2025 17:17:16

A use-after-free vulnerability in the Linux kernel's net/sched: cls_route component can be exploited to achieve local privilege escalation. When route4_change() is called on an existing filter, the whole tcf_result struct is always copied into the n...