Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 24.75%
  • Veröffentlicht 08.06.2016 15:00:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.

  • EPSS 16.38%
  • Veröffentlicht 07.06.2016 14:06:14
  • Zuletzt bearbeitet 06.05.2026 22:30:45

os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a crafted request, involving writing a client request body to a temporary...

Exploit
  • EPSS 9.8%
  • Veröffentlicht 07.06.2016 14:06:12
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation D...

  • EPSS 2.97%
  • Veröffentlicht 07.06.2016 14:06:10
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The PDO adapters in Zend Framework before 1.12.16 do not filer null bytes in SQL statements, which allows remote attackers to execute arbitrary SQL commands via a crafted query.

  • EPSS 0.38%
  • Veröffentlicht 07.06.2016 14:06:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permiss...

  • EPSS 0.49%
  • Veröffentlicht 07.06.2016 14:06:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.

  • EPSS 0.58%
  • Veröffentlicht 07.06.2016 14:06:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via QXL commands related to the surface_id parameter...

  • EPSS 3.02%
  • Veröffentlicht 07.06.2016 14:06:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The t42_parse_encoding function in type42/t42parse.c in FreeType before 2.5.4 does not properly update the current position for immediates-only mode, which allows remote attackers to cause a denial of service (infinite loop) via a Type42 font.

  • EPSS 3.29%
  • Veröffentlicht 07.06.2016 14:06:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The (1) t1_parse_font_matrix function in type1/t1load.c, (2) cid_parse_font_matrix function in cid/cidload.c, (3) t42_parse_font_matrix function in type42/t42parse.c, and (4) ps_parser_load_field function in psaux/psobjs.c in FreeType before 2.5.4 do...

  • EPSS 1.15%
  • Veröffentlicht 05.06.2016 23:59:33
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.79 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.