Debian

Debian Linux

9951 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2019-11627

Exploit
  • EPSS 0.47%
  • Veröffentlicht 30.04.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:29

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID.

7.1

CVE-2019-10131

  • EPSS 0.13%
  • Veröffentlicht 30.04.2019 19:29:03
  • Zuletzt bearbeitet 21.11.2024 04:18:28

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

7.8

CVE-2019-5429

  • EPSS 0.29%
  • Veröffentlicht 29.04.2019 15:29:02
  • Zuletzt bearbeitet 21.11.2024 04:44:55

Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory.

5.3

CVE-2019-11579

  • EPSS 0.44%
  • Veröffentlicht 28.04.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:22

dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow with DHO_OPTSOVERLOADED.

7.7

CVE-2019-3900

  • EPSS 0.21%
  • Veröffentlicht 25.04.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:42:49

An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest ...

8.8

CVE-2019-11506

Exploit
  • EPSS 1.49%
  • Veröffentlicht 24.04.2019 21:29:01
  • Zuletzt bearbeitet 21.11.2024 04:21:13

In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact...

8.8

CVE-2019-11505

Exploit
  • EPSS 1.12%
  • Veröffentlicht 24.04.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:13

In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WritePDBImage of coders/pdb.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via...

5.5

CVE-2019-3882

  • EPSS 0.04%
  • Veröffentlicht 24.04.2019 16:29:02
  • Zuletzt bearbeitet 21.11.2024 04:42:47

A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of th...

8.8

CVE-2019-9928

  • EPSS 17.34%
  • Veröffentlicht 24.04.2019 15:29:02
  • Zuletzt bearbeitet 17.03.2026 15:52:33

GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution.

6.5

CVE-2019-11498

Exploit
  • EPSS 1.93%
  • Veröffentlicht 24.04.2019 05:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:12

WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file ...