Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 8.27%
  • Veröffentlicht 30.09.2014 16:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which...

  • EPSS 7.83%
  • Veröffentlicht 30.09.2014 16:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a (1) long file or (2) d...

Warnung Exploit
  • EPSS 99.94%
  • Veröffentlicht 25.09.2014 01:55:04
  • Zuletzt bearbeitet 22.04.2026 14:32:42

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted enviro...

Warnung Exploit
  • EPSS 100%
  • Veröffentlicht 24.09.2014 18:48:04
  • Zuletzt bearbeitet 22.04.2026 16:07:22

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceComman...

Exploit
  • EPSS 11.57%
  • Veröffentlicht 04.09.2014 17:55:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context-dependent attackers to cause a denial of service (crash) via a small number of arguments to a function with a large number of fixed arguments.

  • EPSS 18.1%
  • Veröffentlicht 29.08.2014 16:55:11
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Off-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka glibc) allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via vectors related to the CHARSET environment vari...

  • EPSS 1.76%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper caching associated wi...

  • EPSS 2.64%
  • Veröffentlicht 27.08.2014 01:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging ...

  • EPSS 2.45%
  • Veröffentlicht 26.08.2014 14:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The default configuration for the file upload handling system in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 uses a sequential file name generation process when a file with a conflicting name is up...

  • EPSS 2.2%
  • Veröffentlicht 18.08.2014 11:15:27
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Cross-site scripting (XSS) vulnerability in wp-includes/pluggable.php in WordPress before 3.9.2, when Multisite is enabled, allows remote authenticated administrators to inject arbitrary web script or HTML, and obtain Super Admin privileges, via a cr...