Debian

Debian Linux

9142 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-41838

Exploit
  • EPSS 0.44%
  • Veröffentlicht 22.12.2022 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:23:54

A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially-crafted .dds can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnera...

8.1

CVE-2022-41981

Exploit
  • EPSS 0.24%
  • Veröffentlicht 22.12.2022 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:24:12

A stack-based buffer overflow vulnerability exists in the TGA file format parser of OpenImageIO v2.3.19.0. A specially-crafted targa file can lead to out of bounds read and write on the process stack, which can lead to arbitrary code execution. An at...

7.5

CVE-2022-41988

Exploit
  • EPSS 0.15%
  • Veröffentlicht 22.12.2022 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:24:13

An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0. A specially-crafted TIFF file can lead to a disclosure of sensitive information. An attacker can provide ...

9.8

CVE-2022-41639

Exploit
  • EPSS 0.32%
  • Veröffentlicht 22.12.2022 22:15:14
  • Zuletzt bearbeitet 21.11.2024 07:23:32

A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0. A specially-crafted TIFF file can lead to an out of bounds memory corruption, which can result in arbitr...

9.1

CVE-2022-41649

Exploit
  • EPSS 0.15%
  • Veröffentlicht 22.12.2022 22:15:14
  • Zuletzt bearbeitet 21.11.2024 07:23:33

A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0. A specially-crafted TIFF file can cause a read of adjacent heap memory, which can leak sensitive process information. An a...

5.3

CVE-2022-36354

Exploit
  • EPSS 0.09%
  • Veröffentlicht 22.12.2022 22:15:13
  • Zuletzt bearbeitet 21.11.2024 07:12:51

A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master-branch-9aeece7a and v2.3.19.0. More specifically, in the way run-length encoded byte spans are handled. A malformed RLA file can lead to an out-of-bounds re...

4.3

CVE-2022-46877

  • EPSS 0.41%
  • Veröffentlicht 22.12.2022 20:15:46
  • Zuletzt bearbeitet 15.04.2025 14:15:37

By confusing the browser, the fullscreen notification could have been delayed or suppressed, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox < 108.

8.8

CVE-2022-46871

  • EPSS 0.61%
  • Veröffentlicht 22.12.2022 20:15:45
  • Zuletzt bearbeitet 15.04.2025 15:16:05

An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox < 108.

9.8

CVE-2022-47629

  • EPSS 2.18%
  • Veröffentlicht 20.12.2022 23:15:12
  • Zuletzt bearbeitet 16.04.2025 18:16:02

Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.

7.8

CVE-2022-4515

Exploit
  • EPSS 0.73%
  • Veröffentlicht 20.12.2022 19:15:25
  • Zuletzt bearbeitet 14.04.2025 19:15:35

A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the ex...