Debian

Debian Linux

9142 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2023-2269

  • EPSS 0.03%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:58:16

A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub-component.

7.8

CVE-2023-2007

  • EPSS 0.03%
  • Veröffentlicht 24.04.2023 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:57:45

The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges a...

6.5

CVE-2023-28484

Exploit
  • EPSS 0.24%
  • Veröffentlicht 24.04.2023 21:15:09
  • Zuletzt bearbeitet 30.05.2025 20:15:31

In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.

6.5

CVE-2023-29469

  • EPSS 0.06%
  • Veröffentlicht 24.04.2023 21:15:09
  • Zuletzt bearbeitet 04.02.2025 21:15:23

An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This...

5.5

CVE-2023-31084

  • EPSS 0.01%
  • Veröffentlicht 24.04.2023 06:15:07
  • Zuletzt bearbeitet 18.03.2025 20:15:19

An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test...

5.6

CVE-2023-1998

Exploit
  • EPSS 0.04%
  • Veröffentlicht 21.04.2023 15:15:07
  • Zuletzt bearbeitet 13.02.2025 17:16:01

The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp. We had noticed that on VMs of at least one major cloud provider, the k...

8.8

CVE-2023-2133

  • EPSS 0.94%
  • Veröffentlicht 19.04.2023 04:15:31
  • Zuletzt bearbeitet 21.11.2024 07:57:59

Out of bounds memory access in Service Worker API in Google Chrome prior to 112.0.5615.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2134

  • EPSS 0.66%
  • Veröffentlicht 19.04.2023 04:15:31
  • Zuletzt bearbeitet 21.11.2024 07:57:59

Out of bounds memory access in Service Worker API in Google Chrome prior to 112.0.5615.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

7.5

CVE-2023-2135

  • EPSS 0.49%
  • Veröffentlicht 19.04.2023 04:15:31
  • Zuletzt bearbeitet 21.11.2024 07:57:59

Use after free in DevTools in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who convinced a user to enable specific preconditions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.6

CVE-2023-2136

Warnung
  • EPSS 0.34%
  • Veröffentlicht 19.04.2023 04:15:31
  • Zuletzt bearbeitet 19.02.2025 19:40:21

Integer overflow in Skia in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)