Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.42%
  • Veröffentlicht 08.08.2008 18:41:00
  • Zuletzt bearbeitet 16.06.2026 22:55:30

The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain da...

Exploit
  • EPSS 4.49%
  • Veröffentlicht 01.08.2008 14:41:00
  • Zuletzt bearbeitet 16.06.2026 22:55:13

Multiple buffer overflows in Python 2.5.2 and earlier on 32bit platforms allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a long string that leads to incorrect memory allocation during Unicod...

  • EPSS 1.06%
  • Veröffentlicht 25.07.2008 16:41:00
  • Zuletzt bearbeitet 16.06.2026 22:55:36

Cross-site request forgery (CSRF) vulnerability in Moodle 1.6.x before 1.6.7 and 1.7.x before 1.7.5 allows remote attackers to modify profile settings and gain privileges as other users via a link or IMG tag to the user edit profile page.

  • EPSS 0.38%
  • Veröffentlicht 09.07.2008 18:41:00
  • Zuletzt bearbeitet 16.06.2026 22:54:45

The do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability, which allows local users to gain privileges or cause a denial of service by modifying the properties of ...

  • EPSS 0.43%
  • Veröffentlicht 09.07.2008 00:41:00
  • Zuletzt bearbeitet 16.06.2026 22:54:32

The Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference of function pointers in (1) ha...

Exploit
  • EPSS 6.73%
  • Veröffentlicht 07.07.2008 23:41:00
  • Zuletzt bearbeitet 16.06.2026 22:53:39

Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE) library 7.7 allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a regular expression that begins ...

  • EPSS 0.43%
  • Veröffentlicht 02.07.2008 16:41:00
  • Zuletzt bearbeitet 16.06.2026 22:54:33

Integer overflow in the sctp_getsockopt_local_addrs_old function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) functionality in the Linux kernel before 2.6.25.9 allows local users to cause a denial of service (resource consu...

  • EPSS 4.26%
  • Veröffentlicht 24.06.2008 19:41:00
  • Zuletzt bearbeitet 16.06.2026 22:54:10

Multiple integer overflows in the rb_str_buf_append function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allow context-dependent attackers to execute arbitrary code or ...

  • EPSS 4.46%
  • Veröffentlicht 24.06.2008 19:41:00
  • Zuletzt bearbeitet 16.06.2026 22:54:11

Multiple integer overflows in the rb_ary_store function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22 allow context-dependent attackers to execute arbitrary code or cause a denial of service v...

  • EPSS 4.28%
  • Veröffentlicht 24.06.2008 19:41:00
  • Zuletzt bearbeitet 16.06.2026 22:54:11

The rb_str_format function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allows context-dependent attackers to trigger memory corruption via unspecified vectors related t...