Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 30.41%
  • Veröffentlicht 16.05.2011 17:55:02
  • Zuletzt bearbeitet 16.06.2026 23:27:19

Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac...

Exploit
  • EPSS 1.6%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:21

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets (CSS) token sequences.

Exploit
  • EPSS 0.98%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:21

Race condition in the sandbox launcher implementation in Google Chrome before 11.0.696.57 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • EPSS 1.76%
  • Veröffentlicht 29.04.2011 22:55:00
  • Zuletzt bearbeitet 16.06.2026 23:29:30

acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy...

  • EPSS 84.29%
  • Veröffentlicht 08.04.2011 15:17:27
  • Zuletzt bearbeitet 16.06.2026 23:28:25

dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstra...

  • EPSS 2.72%
  • Veröffentlicht 29.03.2011 18:55:02
  • Zuletzt bearbeitet 16.06.2026 23:28:52

The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, whic...

  • EPSS 4.06%
  • Veröffentlicht 25.03.2011 19:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:16

The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain program...

Exploit
  • EPSS 1.77%
  • Veröffentlicht 25.03.2011 19:55:00
  • Zuletzt bearbeitet 16.06.2026 23:29:05

Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 10.0.648.204 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • EPSS 1.98%
  • Veröffentlicht 25.03.2011 19:55:00
  • Zuletzt bearbeitet 16.06.2026 23:29:05

Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Exploit
  • EPSS 73.95%
  • Veröffentlicht 02.03.2011 20:00:01
  • Zuletzt bearbeitet 16.06.2026 23:28:01

The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions...