Debian

Debian Linux

9998 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 10.58%
  • Veröffentlicht 11.06.2018 21:29:15
  • Zuletzt bearbeitet 25.11.2025 17:50:16

The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected through a crafted PDF file. This JavaScript can then be run with the permissions of the PDF viewer by its worker. This vulnera...

Exploit
  • EPSS 21.29%
  • Veröffentlicht 11.06.2018 21:29:15
  • Zuletzt bearbeitet 25.11.2025 17:50:16

An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting in possible out-of-bounds writes. This could lead to a potentially exploitable crash triggerable by web content. This v...

  • EPSS 2.08%
  • Veröffentlicht 11.06.2018 21:29:15
  • Zuletzt bearbeitet 21.11.2024 04:08:14

Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird ESR < 52.8 and Thunderbird < 52.8.

  • EPSS 1.98%
  • Veröffentlicht 11.06.2018 21:29:15
  • Zuletzt bearbeitet 21.11.2024 04:08:14

Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbird ESR < 52.8 and Thunderbird < 52.8.

  • EPSS 2.38%
  • Veröffentlicht 11.06.2018 21:29:15
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Sites can bypass security checks on permissions to install lightweight themes by manipulating the "baseURI" property of the theme element. This could allow a malicious site to install a theme without user interaction which could contain offensive or ...

  • EPSS 1.76%
  • Veröffentlicht 11.06.2018 21:29:15
  • Zuletzt bearbeitet 21.11.2024 04:08:15

It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening a remote attachment which is a different file type than expected. This vulnerability affects Thunderbird ESR < 52.8 and ...

  • EPSS 3.05%
  • Veröffentlicht 11.06.2018 21:29:14
  • Zuletzt bearbeitet 25.11.2025 17:50:16

A lack of parameter validation on IPC messages results in a potential out-of-bounds write through malformed IPC messages. This can potentially allow for sandbox escape through memory corruption in the parent process. This vulnerability affects Thunde...

  • EPSS 2.39%
  • Veröffentlicht 11.06.2018 21:29:14
  • Zuletzt bearbeitet 25.11.2025 17:50:16

When packets with a mismatched RTP payload type are sent in WebRTC connections, in some circumstances a potentially exploitable crash is triggered. This vulnerability affects Firefox ESR < 52.7 and Firefox < 59.

  • EPSS 2.32%
  • Veröffentlicht 11.06.2018 21:29:14
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Under certain circumstances the "fetch()" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored...

  • EPSS 3.26%
  • Veröffentlicht 11.06.2018 21:29:14
  • Zuletzt bearbeitet 25.11.2025 17:50:16

An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This vulnerability affects Firefox ESR < 52.7 and Thunderbird < 52.7.