Debian

Debian Linux

9921 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2025-23140

  • EPSS 0.03%
  • Veröffentlicht 01.05.2025 12:55:30
  • Zuletzt bearbeitet 05.11.2025 21:46:13

In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error After devm_request_irq() fails with error in pci_endpoint_test_request_irq(), the pci_endpoint_...

7.5

CVE-2025-3891

  • EPSS 0.52%
  • Veröffentlicht 29.04.2025 11:56:50
  • Zuletzt bearbeitet 28.07.2025 14:15:27

A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a denial of service by sending an empty POST request when the OIDCPreservePost directive is enabled. The server crashes c...

7.5

CVE-2025-21605

  • EPSS 0.17%
  • Veröffentlicht 23.04.2025 15:38:11
  • Zuletzt bearbeitet 21.01.2026 16:08:36

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, t...

7.5

CVE-2025-43965

  • EPSS 0.06%
  • Veröffentlicht 23.04.2025 00:00:00
  • Zuletzt bearbeitet 31.12.2025 15:41:59

In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used.

5.5

CVE-2025-38637

  • EPSS 0.04%
  • Veröffentlicht 18.04.2025 07:01:34
  • Zuletzt bearbeitet 06.11.2025 21:35:04

In the Linux kernel, the following vulnerability has been resolved: net_sched: skbprio: Remove overly strict queue assertions In the current implementation, skbprio enqueue/dequeue contains an assertion that fails under certain conditions when SKBP...

10

CVE-2025-32433

Warnung Medienbericht Exploit
  • EPSS 43.92%
  • Veröffentlicht 16.04.2025 21:34:37
  • Zuletzt bearbeitet 04.11.2025 14:49:05

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in S...

9.8

CVE-2025-2291

  • EPSS 0.08%
  • Veröffentlicht 16.04.2025 18:16:04
  • Zuletzt bearbeitet 08.12.2025 18:32:49

Password can be used past expiry in PgBouncer due to auth_query not taking into account Postgres its VALID UNTIL value, which allows an attacker to log in with an already expired password

5.5

CVE-2025-23138

  • EPSS 0.04%
  • Veröffentlicht 16.04.2025 14:13:17
  • Zuletzt bearbeitet 04.11.2025 17:00:09

In the Linux kernel, the following vulnerability has been resolved: watch_queue: fix pipe accounting mismatch Currently, watch_queue_set_size() modifies the pipe buffers charged to user->pipe_bufs without updating the pipe->nr_accounted on the pipe...

5.5

CVE-2025-22119

  • EPSS 0.04%
  • Veröffentlicht 16.04.2025 14:13:04
  • Zuletzt bearbeitet 03.11.2025 18:29:23

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: init wiphy_work before allocating rfkill fails syzbort reported a uninitialize wiphy_work_lock in cfg80211_dev_free. [1] After rfkill allocation fails, the wiphy r...

3.8

CVE-2025-32728

  • EPSS 0.27%
  • Veröffentlicht 10.04.2025 00:00:00
  • Zuletzt bearbeitet 22.05.2025 16:51:54

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.