Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.1

CVE-2023-22041

  • EPSS 0.06%
  • Published 18.07.2023 21:15:13
  • Last modified 21.11.2024 07:44:09

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle Graal...

3.1

CVE-2023-22006

  • EPSS 0.13%
  • Published 18.07.2023 21:15:12
  • Last modified 21.11.2024 07:44:05

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterp...

7.5

CVE-2023-38403

  • EPSS 1.25%
  • Published 17.07.2023 21:15:09
  • Last modified 21.11.2024 08:13:29

iperf3 before 3.14 allows peers to cause an integer overflow and heap corruption via a crafted length field.

7.8

CVE-2023-21255

  • EPSS 0.08%
  • Published 13.07.2023 00:15:24
  • Last modified 13.02.2025 17:16:02

In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

6.7

CVE-2023-21400

Exploit
  • EPSS 0.03%
  • Published 13.07.2023 00:15:24
  • Last modified 13.02.2025 17:16:02

In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exp...

6.5

CVE-2023-3618

  • EPSS 0.2%
  • Published 12.07.2023 15:15:09
  • Last modified 21.11.2024 08:17:40

A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service.

6.1

CVE-2023-36823

  • EPSS 0.33%
  • Published 06.07.2023 16:15:10
  • Last modified 21.11.2024 08:10:40

Sanitize is an allowlist-based HTML and CSS sanitizer. Using carefully crafted input, an attacker may be able to sneak arbitrary HTML and CSS through Sanitize starting with version 3.0.0 and prior to version 6.0.2 when Sanitize is configured to use t...

5

CVE-2023-35936

Exploit
  • EPSS 0.03%
  • Published 05.07.2023 21:15:09
  • Last modified 13.02.2025 17:16:40

Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Starting in version 1.13 and prior to version 3.1.4, Pandoc is susceptible to an arbitrary file write vulnerability, which c...

7.8

CVE-2023-35001

  • EPSS 0.21%
  • Published 05.07.2023 19:15:10
  • Last modified 21.11.2024 08:07:48

Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or network namespace

7.8

CVE-2023-31248

  • EPSS 0.2%
  • Published 05.07.2023 19:15:09
  • Last modified 21.11.2024 08:01:42

Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace