Debian

Debian Linux

9922 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2018-7536

  • EPSS 1.23%
  • Veröffentlicht 09.03.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:19

An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19. The django.utils.html.urlize() function was extremely slow to evaluate certain inputs due to catastrophic backtracking vulnerabilities in two regular expr...

5.3

CVE-2018-7537

  • EPSS 0.68%
  • Veröffentlicht 09.03.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:19

An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19. If django.utils.text.Truncator's chars() and words() methods were passed the html=True argument, they were extremely slow to evaluate certain inputs due t...

7.5

CVE-2018-7998

Exploit
  • EPSS 0.35%
  • Veröffentlicht 09.03.2018 19:29:01
  • Zuletzt bearbeitet 21.11.2024 04:13:03

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted ...

5.5

CVE-2018-1071

  • EPSS 0.04%
  • Veröffentlicht 09.03.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 03:59:07

zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function. A local attacker could exploit this to cause a denial of service.

4.7

CVE-2018-7995

  • EPSS 0.06%
  • Veröffentlicht 09.03.2018 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:13:03

Race condition in the store_int_with_restart() function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (panic) by leveraging root access to write to the check_interval file in a ...

6.5

CVE-2018-7874

Exploit
  • EPSS 0.55%
  • Veröffentlicht 08.03.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:12:54

An invalid memory address dereference was discovered in strlenext in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.

6.5

CVE-2018-7875

Exploit
  • EPSS 0.57%
  • Veröffentlicht 08.03.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:12:55

There is a heap-based buffer over-read in the getString function of util/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafted input will lead to a denial of service attack.

6.5

CVE-2018-7876

Exploit
  • EPSS 1.38%
  • Veröffentlicht 08.03.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:12:55

In libming 0.4.8, a memory exhaustion vulnerability was found in the function parseSWF_ACTIONRECORD in util/parser.c, which allows remote attackers to cause a denial of service via a crafted file.

6.5

CVE-2018-7877

Exploit
  • EPSS 0.54%
  • Veröffentlicht 08.03.2018 18:29:02
  • Zuletzt bearbeitet 21.11.2024 04:12:55

There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for DOUBLE data. A Crafted input will lead to a denial of service attack.

7.5

CVE-2018-7869

Exploit
  • EPSS 0.64%
  • Veröffentlicht 08.03.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:54

There is a memory leak triggered in the function dcinit of util/decompile.c in libming 0.4.8, which will lead to a denial of service attack.