Debian

Debian Linux

9944 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-0159

  • EPSS 1.39%
  • Veröffentlicht 14.04.2014 15:09:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.

7.5

CVE-2014-1716

  • EPSS 1.07%
  • Veröffentlicht 09.04.2014 10:56:51
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype function in runtime.cc in Google V8, as used in Google Chrome before 34.0.1847.116, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Univ...

7.5

CVE-2014-0160

Warnung Exploit
  • EPSS 94.46%
  • Veröffentlicht 07.04.2014 22:55:03
  • Zuletzt bearbeitet 22.10.2025 01:15:53

The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer ov...

4.3

CVE-2014-2326

Exploit
  • EPSS 1.27%
  • Veröffentlicht 27.03.2014 16:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

5

CVE-2013-7345

Exploit
  • EPSS 3.18%
  • Veröffentlicht 24.03.2014 16:31:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a cra...

4.3

CVE-2014-2497

Exploit
  • EPSS 12.14%
  • Veröffentlicht 21.03.2014 14:55:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.

7.5

CVE-2014-1609

Exploit
  • EPSS 0.55%
  • Veröffentlicht 20.03.2014 16:55:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple SQL injection vulnerabilities in MantisBT before 1.2.16 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to the (1) mc_project_get_attachments function in api/soap/mc_project_api.php; the (2) news_get_limit...

10

CVE-2014-1493

Exploit
  • EPSS 1.47%
  • Veröffentlicht 19.03.2014 10:55:06
  • Zuletzt bearbeitet 25.11.2025 17:50:16

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (memory corruption and app...

8.8

CVE-2014-1497

Exploit
  • EPSS 0.5%
  • Veröffentlicht 19.03.2014 10:55:06
  • Zuletzt bearbeitet 25.11.2025 17:50:16

The mozilla::WaveReader::DecodeAudioData function in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive information from process heap memory, cause...

7.5

CVE-2014-1505

Exploit
  • EPSS 0.58%
  • Veröffentlicht 19.03.2014 10:55:06
  • Zuletzt bearbeitet 25.11.2025 17:50:16

The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive displacement-correlation information, and possibly bypass the S...