Debian

Debian Linux

9921 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2024-58054

  • EPSS 0.03%
  • Veröffentlicht 06.03.2025 16:15:51
  • Zuletzt bearbeitet 22.01.2026 20:55:53

In the Linux kernel, the following vulnerability has been resolved: staging: media: max96712: fix kernel oops when removing module The following kernel oops is thrown when trying to remove the max96712 module: Unable to handle kernel paging reques...

8.8

CVE-2025-27516

  • EPSS 0.21%
  • Veröffentlicht 05.03.2025 21:15:20
  • Zuletzt bearbeitet 03.11.2025 20:18:02

Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the ...

7.8

CVE-2025-1080

  • EPSS 0.07%
  • Veröffentlicht 04.03.2025 20:15:36
  • Zuletzt bearbeitet 10.12.2025 18:26:24

LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice a link in a brow...

5.9

CVE-2025-26466

Medienbericht
  • EPSS 42.08%
  • Veröffentlicht 28.02.2025 22:15:40
  • Zuletzt bearbeitet 03.11.2025 22:18:41

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious cli...

7.4

CVE-2024-55581

Exploit
  • EPSS 0.12%
  • Veröffentlicht 26.02.2025 22:15:14
  • Zuletzt bearbeitet 07.04.2025 18:39:22

When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is vulnerable to a man-in-the-middle attack because of lack of verification of an HTTPS server's certificate (unless the using program specifies a TLS confi...

7.8

CVE-2022-49063

  • EPSS 0.04%
  • Veröffentlicht 26.02.2025 07:00:43
  • Zuletzt bearbeitet 18.11.2025 15:08:43

In the Linux kernel, the following vulnerability has been resolved: ice: arfs: fix use-after-free when freeing @rx_cpu_rmap The CI testing bots triggered the following splat: [ 718.203054] BUG: KASAN: use-after-free in free_irq_cpu_rmap+0x53/0x80...

9.8

CVE-2025-0838

  • EPSS 0.27%
  • Veröffentlicht 21.02.2025 15:15:11
  • Zuletzt bearbeitet 30.07.2025 18:10:35

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size argument. As a result, it was possible for a caller to...

5.3

CVE-2025-25472

  • EPSS 0.34%
  • Veröffentlicht 18.02.2025 23:15:10
  • Zuletzt bearbeitet 04.11.2025 20:31:41

A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.

6.5

CVE-2025-25474

  • EPSS 0.33%
  • Veröffentlicht 18.02.2025 23:15:10
  • Zuletzt bearbeitet 04.11.2025 20:33:27

DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.

7.5

CVE-2025-25475

  • EPSS 0.58%
  • Veröffentlicht 18.02.2025 23:15:10
  • Zuletzt bearbeitet 04.11.2025 20:40:26

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.