Debian

Debian Linux

9998 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.72%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:05

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by correcting the extraction of the length value.

  • EPSS 2.72%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:06

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.

  • EPSS 2.74%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:06

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by adding a block-size check for sysdig event blocks.

Exploit
  • EPSS 3.29%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:08

The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory fu...

  • EPSS 2.67%
  • Veröffentlicht 23.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:00

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets.

  • EPSS 2.45%
  • Veröffentlicht 23.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:00

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound.

  • EPSS 2.45%
  • Veröffentlicht 23.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:00

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing.

  • EPSS 2.43%
  • Veröffentlicht 23.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:01

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type.

  • EPSS 2.39%
  • Veröffentlicht 23.02.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:01

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field.

Exploit
  • EPSS 2.18%
  • Veröffentlicht 23.02.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:07

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the freexl::destroy_cell function.