Debian

Debian Linux

9922 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-9141

  • EPSS 1.4%
  • Veröffentlicht 22.05.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missing checks in the ReadDDSImage function in coders/dds.c.

6.5

CVE-2017-9142

  • EPSS 1.4%
  • Veröffentlicht 22.05.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the WriteBlob function in MagickCore/blob.c because of missing checks in the ReadOneJNGImage function in coders/png.c.

6.5

CVE-2017-9143

  • EPSS 0.84%
  • Veröffentlicht 22.05.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.5-5, the ReadARTImage function in coders/art.c allows attackers to cause a denial of service (memory leak) via a crafted .art file.

6.5

CVE-2017-9144

  • EPSS 0.95%
  • Veröffentlicht 22.05.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.5-5, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c.

9.8

CVE-2017-2518

  • EPSS 23.29%
  • Veröffentlicht 22.05.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attacker...

9.8

CVE-2017-2519

  • EPSS 9.63%
  • Veröffentlicht 22.05.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attacker...

9.8

CVE-2017-2520

  • EPSS 10.61%
  • Veröffentlicht 22.05.2017 05:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attacker...

7.5

CVE-2017-9098

Exploit
  • EPSS 1.46%
  • Veröffentlicht 19.05.2017 19:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a lon...

8.8

CVE-2017-9078

  • EPSS 5.16%
  • Veröffentlicht 19.05.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The server in Dropbear before 2017.75 might allow post-authentication root remote code execution because of a double free in cleanup of TCP listeners when the -a option is enabled.

4.7

CVE-2017-9079

  • EPSS 0.08%
  • Veröffentlicht 19.05.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Dropbear before 2017.75 might allow local users to read certain files as root, if the file has the authorized_keys file format with a command= option. This occurs because ~/.ssh/authorized_keys is read with root privileges and symlinks are followed.