Debian

Debian Linux

9979 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4

CVE-2014-9713

  • EPSS 0.14%
  • Veröffentlicht 01.04.2015 14:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The default slapd configuration in the Debian openldap package 2.4.23-3 through 2.4.39-1.1 allows remote authenticated users to modify the user's permissions and other user attributes via unspecified vectors.

5

CVE-2015-2808

  • EPSS 30.44%
  • Veröffentlicht 01.04.2015 02:00:35
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial ...

4.3

CVE-2015-2776

  • EPSS 2.01%
  • Veröffentlicht 31.03.2015 14:59:12
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

6.8

CVE-2015-2754

  • EPSS 2.15%
  • Veröffentlicht 31.03.2015 14:59:11
  • Zuletzt bearbeitet 06.05.2026 22:30:45

FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."

6.8

CVE-2015-2753

  • EPSS 1.92%
  • Veröffentlicht 31.03.2015 14:59:10
  • Zuletzt bearbeitet 06.05.2026 22:30:45

FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) or possibly execute arbitrary code via a crafted sector in a workbook.

4

CVE-2015-2684

  • EPSS 0.46%
  • Veröffentlicht 31.03.2015 14:59:09
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Shibboleth Service Provider (SP) before 2.5.4 allows remote authenticated users to cause a denial of service (crash) via a crafted SAML message.

7.5

CVE-2015-0838

  • EPSS 2.81%
  • Veröffentlicht 31.03.2015 14:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in the C implementation of the apply_delta function in _pack.c in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a crafted pack file.

7.5

CVE-2014-9706

Exploit
  • EPSS 2.77%
  • Veröffentlicht 31.03.2015 14:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The build_index_from_tree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree.

7.5

CVE-2015-2331

Exploit
  • EPSS 42.71%
  • Veröffentlicht 30.03.2015 10:59:12
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial ...

6.8

CVE-2015-2305

Exploit
  • EPSS 32.92%
  • Veröffentlicht 30.03.2015 10:59:11
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary co...