Debian

Debian Linux

9979 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2014-1514

Exploit
  • EPSS 4.17%
  • Veröffentlicht 19.03.2014 10:55:06
  • Zuletzt bearbeitet 06.05.2026 22:30:45

vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not validate the length of the destination array before a copy operation, which allows remote attackers to ex...

7.5

CVE-2014-1608

Exploit
  • EPSS 0.61%
  • Veröffentlicht 18.03.2014 17:03:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

SQL injection vulnerability in the mci_file_get function in api/soap/mc_file_api.php in MantisBT before 1.2.16 allows remote attackers to execute arbitrary SQL commands via a crafted envelope tag in a mc_issue_attachment_get SOAP request.

7.5

CVE-2014-1705

  • EPSS 3%
  • Veröffentlicht 16.03.2014 14:06:45
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Google V8, as used in Google Chrome before 33.0.1750.152 on OS X and Linux and before 33.0.1750.154 on Windows, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

6.8

CVE-2013-6474

  • EPSS 14.18%
  • Veröffentlicht 14.03.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Heap-based buffer overflow in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows remote attackers to execute arbitrary code via a crafted PDF file.

6.8

CVE-2013-6475

  • EPSS 14.11%
  • Veröffentlicht 14.03.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a crafted PDF file, which triggers a heap-based buffer...

4.4

CVE-2013-6476

  • EPSS 0.3%
  • Veröffentlicht 14.03.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.

4.3

CVE-2014-2270

  • EPSS 27.07%
  • Veröffentlicht 14.03.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.

9.8

CVE-2014-2323

Exploit
  • EPSS 90.37%
  • Veröffentlicht 14.03.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to request_check_hostname.

5

CVE-2014-2324

Exploit
  • EPSS 71.67%
  • Veröffentlicht 14.03.2014 15:55:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple directory traversal vulnerabilities in (1) mod_evhost and (2) mod_simple_vhost in lighttpd before 1.4.35 allow remote attackers to read arbitrary files via a .. (dot dot) in the host name, related to request_check_hostname.

7.5

CVE-2013-6668

  • EPSS 12.82%
  • Veröffentlicht 05.03.2014 05:11:22
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, as used in Google Chrome before 33.0.1750.146, allow attackers to cause a denial of service or possibly have other impact via unknown vectors.