Debian

Debian Linux

9998 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 67.55%
  • Veröffentlicht 03.10.2017 01:29:02
  • Zuletzt bearbeitet 13.05.2026 00:24:29

dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.

  • EPSS 84.32%
  • Veröffentlicht 03.10.2017 01:29:02
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.

  • EPSS 66.35%
  • Veröffentlicht 03.10.2017 01:29:02
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.

  • EPSS 65.41%
  • Veröffentlicht 03.10.2017 01:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platf...

Exploit
  • EPSS 2.46%
  • Veröffentlicht 02.10.2017 01:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability because a data structure is not initialized, which allows an attacker to launch a denial of service attack.

Exploit
  • EPSS 2.59%
  • Veröffentlicht 02.10.2017 01:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a heap-based buffer over-read vulnerability if an out-of-bounds font dictionary index is encountered, which allows an attacker to launch a denial of service attack.

Exploit
  • EPSS 2%
  • Veröffentlicht 02.10.2017 01:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack.

  • EPSS 0.67%
  • Veröffentlicht 30.09.2017 01:29:02
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in Annot.cc via a crafted PDF document.

  • EPSS 0.67%
  • Veröffentlicht 30.09.2017 01:29:02
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Configuration::Configuration in Annot.cc via a crafted PDF document.

  • EPSS 36%
  • Veröffentlicht 29.09.2017 01:34:50
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers to execute arbitrary OS commands via shell metacha...