Debian

Debian Linux

9979 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2019-9640

Exploit
  • EPSS 16.24%
  • Veröffentlicht 09.03.2019 00:29:00
  • Zuletzt bearbeitet 21.11.2024 04:52:01

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn.

9.8

CVE-2019-9641

Exploit
  • EPSS 52.08%
  • Veröffentlicht 09.03.2019 00:29:00
  • Zuletzt bearbeitet 21.11.2024 04:52:02

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.

9.8

CVE-2019-9636

  • EPSS 8.76%
  • Veröffentlicht 08.03.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:52:01

Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (credentials, cookies, etc. that are cached against a ...

9.8

CVE-2019-9631

  • EPSS 2.18%
  • Veröffentlicht 08.03.2019 05:29:00
  • Zuletzt bearbeitet 21.11.2024 04:52:00

Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.

7.5

CVE-2019-7175

Exploit
  • EPSS 0.23%
  • Veröffentlicht 07.03.2019 23:29:01
  • Zuletzt bearbeitet 21.11.2024 04:47:43

In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c.

6.5

CVE-2018-14498

Exploit
  • EPSS 0.3%
  • Veröffentlicht 07.03.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 03:49:11

get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit BMP in which one or more of the color indices is o...

6.5

CVE-2019-3824

  • EPSS 11.79%
  • Veröffentlicht 06.03.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:42:37

A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of ...

5.5

CVE-2019-9213

Exploit
  • EPSS 6.81%
  • Veröffentlicht 05.03.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:51:13

In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check...

9.8

CVE-2018-12405

  • EPSS 10.29%
  • Veröffentlicht 28.02.2019 18:29:01
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to r...

9.8

CVE-2018-18492

  • EPSS 33.85%
  • Veröffentlicht 28.02.2019 18:29:01
  • Zuletzt bearbeitet 25.11.2025 17:50:16

A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the options collection. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.4, Firef...