Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.48%
  • Veröffentlicht 26.06.2007 22:30:00
  • Zuletzt bearbeitet 16.06.2026 22:39:35

Integer signedness error in the gssrpc__svcauth_unix function in svc_auth_unix.c in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a negative length value.

  • EPSS 7.52%
  • Veröffentlicht 26.06.2007 22:30:00
  • Zuletzt bearbeitet 16.06.2026 22:40:27

Stack-based buffer overflow in the rename_principal_2_svc function in kadmind for MIT Kerberos 1.5.3, 1.6.1, and other versions allows remote authenticated users to execute arbitrary code via a crafted request to rename a principal.

  • EPSS 3.49%
  • Veröffentlicht 26.06.2007 18:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:58

Net::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an infinite loop.

  • EPSS 1.96%
  • Veröffentlicht 21.06.2007 20:30:00
  • Zuletzt bearbeitet 16.06.2026 22:40:31

Emacs 21 allows user-assisted attackers to cause a denial of service (crash) via certain crafted images, as demonstrated via a GIF image in vm mode, related to image size calculation.

  • EPSS 1.26%
  • Veröffentlicht 19.06.2007 21:30:00
  • Zuletzt bearbeitet 16.06.2026 22:41:24

PostgreSQL 8.1 and probably later versions, when local trust authentication is enabled and the Database Link library (dblink) is installed, allows remote attackers to access arbitrary accounts and execute arbitrary SQL queries via a dblink host param...

  • EPSS 0.44%
  • Veröffentlicht 11.06.2007 22:30:00
  • Zuletzt bearbeitet 16.06.2026 22:40:37

Integer underflow in the cpuset_tasks_read function in the Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memory contents by using a large offset when reading th...

  • EPSS 2.85%
  • Veröffentlicht 16.05.2007 01:19:00
  • Zuletzt bearbeitet 16.06.2026 22:40:07

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

  • EPSS 0.78%
  • Veröffentlicht 14.05.2007 21:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:36

Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecified vectors that cause the daemon to transition to ...

  • EPSS 3.25%
  • Veröffentlicht 14.05.2007 21:19:00
  • Zuletzt bearbeitet 16.06.2026 22:40:02

The OLE2 parser in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demons...

  • EPSS 11.31%
  • Veröffentlicht 10.05.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:39:52

The in_decimal::set function in item_cmpfunc.cc in MySQL before 5.0.40, and 5.1 before 5.1.18-beta, allows context-dependent attackers to cause a denial of service (crash) via a crafted IF clause that results in a divide-by-zero error and a NULL poin...