Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.56%
  • Veröffentlicht 21.02.2025 15:15:11
  • Zuletzt bearbeitet 30.07.2025 18:10:35

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size argument. As a result, it was possible for a caller to...

  • EPSS 0.32%
  • Veröffentlicht 18.02.2025 23:15:10
  • Zuletzt bearbeitet 04.11.2025 20:31:41

A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.

  • EPSS 0.31%
  • Veröffentlicht 18.02.2025 23:15:10
  • Zuletzt bearbeitet 04.11.2025 20:33:27

DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.

  • EPSS 0.53%
  • Veröffentlicht 18.02.2025 23:15:10
  • Zuletzt bearbeitet 04.11.2025 20:40:26

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

  • EPSS 0.34%
  • Veröffentlicht 18.02.2025 22:15:18
  • Zuletzt bearbeitet 12.01.2026 13:08:11

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.

Medienbericht
  • EPSS 7%
  • Veröffentlicht 18.02.2025 19:15:29
  • Zuletzt bearbeitet 12.05.2026 13:16:40

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in spec...

  • EPSS 2.65%
  • Veröffentlicht 05.02.2025 18:15:33
  • Zuletzt bearbeitet 27.01.2026 13:30:41

When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers. This vulnerability arises when TLS Session Tickets ht...

  • EPSS 0.34%
  • Veröffentlicht 28.01.2025 17:15:25
  • Zuletzt bearbeitet 06.08.2025 19:25:13

An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level.

  • EPSS 0.97%
  • Veröffentlicht 21.01.2025 21:15:15
  • Zuletzt bearbeitet 18.06.2025 19:07:57

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u431-perf, 11.0.25, 17.0.13, 21.0.5, 23.0.1; Ora...

  • EPSS 1.24%
  • Veröffentlicht 21.01.2025 21:15:13
  • Zuletzt bearbeitet 03.11.2025 21:18:55

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability allows high privileged attacker with net...