Debian

Debian Linux

9944 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2013-2876

  • EPSS 0.35%
  • Veröffentlicht 10.07.2013 10:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

browser/extensions/api/tabs/tabs_api.cc in Google Chrome before 28.0.1500.71 does not properly enforce restrictions on the capture of screenshots by extensions, which allows remote attackers to obtain sensitive information about the content of a prev...

5

CVE-2013-2878

  • EPSS 0.73%
  • Veröffentlicht 10.07.2013 10:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the handling of text.

5.8

CVE-2013-2879

  • EPSS 0.47%
  • Veröffentlicht 10.07.2013 10:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 28.0.1500.71 does not properly determine the circumstances in which a renderer process can be considered a trusted process for sign-in and subsequent sync operations, which makes it easier for remote attackers to conduct phishing...

7.5

CVE-2013-2867

  • EPSS 0.66%
  • Veröffentlicht 10.07.2013 10:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 28.0.1500.71 does not properly prevent pop-under windows, which allows remote attackers to have an unspecified impact via a crafted web site.

5

CVE-2013-2868

  • EPSS 0.38%
  • Veröffentlicht 10.07.2013 10:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow remote attackers to trigger unwanted extension change...

4.3

CVE-2013-2869

  • EPSS 0.69%
  • Veröffentlicht 10.07.2013 10:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted JPEG2000 image.

9.3

CVE-2013-2870

  • EPSS 1.32%
  • Veröffentlicht 10.07.2013 10:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote servers to execute arbitrary code via crafted response traffic after a URL request.

7.5

CVE-2013-2873

  • EPSS 0.89%
  • Veröffentlicht 10.07.2013 10:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources.

9.3

CVE-2013-1690

Warnung
  • EPSS 47.06%
  • Veröffentlicht 26.06.2013 03:19:10
  • Zuletzt bearbeitet 22.10.2025 01:15:48

Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause...

6.8

CVE-2013-2064

  • EPSS 0.94%
  • Veröffentlicht 15.06.2013 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.