Debian

Debian Linux

9142 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-3421

  • EPSS 0.63%
  • Veröffentlicht 26.06.2023 21:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:45

Use after free in Media in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-3422

  • EPSS 0.2%
  • Veröffentlicht 26.06.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 08:17:13

Use after free in Guest View in Google Chrome prior to 114.0.5735.198 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.5

CVE-2023-36661

  • EPSS 52.41%
  • Veröffentlicht 25.06.2023 22:15:21
  • Zuletzt bearbeitet 05.05.2025 16:15:42

Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows.)

7.8

CVE-2023-36664

  • EPSS 4.52%
  • Veröffentlicht 25.06.2023 22:15:21
  • Zuletzt bearbeitet 05.12.2024 15:15:07

Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix).

4.4

CVE-2023-3212

  • EPSS 0.01%
  • Veröffentlicht 23.06.2023 20:15:09
  • Zuletzt bearbeitet 21.11.2024 08:16:42

A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. A privileg...

7.1

CVE-2023-34241

Exploit
  • EPSS 0.05%
  • Veröffentlicht 22.06.2023 23:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:50

OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has b...

7.5

CVE-2023-2828

  • EPSS 0.87%
  • Veröffentlicht 21.06.2023 17:15:47
  • Zuletzt bearbeitet 21.11.2024 07:59:22

Every `named` instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the `max-ca...

7.5

CVE-2023-2911

  • EPSS 0.29%
  • Veröffentlicht 21.06.2023 17:15:47
  • Zuletzt bearbeitet 21.11.2024 07:59:33

If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could cause `named` to loop and terminate unexpectedly du...

7

CVE-2023-35823

  • EPSS 0.01%
  • Veröffentlicht 18.06.2023 22:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:41

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c.

7

CVE-2023-35824

  • EPSS 0.01%
  • Veröffentlicht 18.06.2023 22:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:41

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c.