Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.83%
  • Veröffentlicht 20.12.2006 01:28:00
  • Zuletzt bearbeitet 16.06.2026 22:33:15

Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function.

  • EPSS 3.97%
  • Veröffentlicht 20.12.2006 01:28:00
  • Zuletzt bearbeitet 16.06.2026 22:33:15

Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript: ...

Exploit
  • EPSS 0.4%
  • Veröffentlicht 18.12.2006 02:28:00
  • Zuletzt bearbeitet 16.06.2026 22:33:28

The save_log_local function in Fully Automatic Installation (FAI) 2.10.1, and possibly 3.1.2, when verbose mode is enabled, stores the root password hash in /var/log/fai/current/fai.log, whose file permissions allow it to be copied to other hosts whe...

  • EPSS 2.3%
  • Veröffentlicht 12.12.2006 00:28:00
  • Zuletzt bearbeitet 16.06.2026 22:32:03

Buffer overflow in the cluster_process_heartbeat function in cluster.c in layer 2 tunneling protocol network server (l2tpns) before 2.1.21 allows remote attackers to cause a denial of service via a large heartbeat packet.

  • EPSS 2.65%
  • Veröffentlicht 22.11.2006 01:07:00
  • Zuletzt bearbeitet 16.06.2026 22:32:02

Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors via a crafted SGI image.

  • EPSS 3.83%
  • Veröffentlicht 10.10.2006 04:06:00
  • Zuletzt bearbeitet 16.06.2026 22:30:38

pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the...

  • EPSS 17.42%
  • Veröffentlicht 28.09.2006 18:07:00
  • Zuletzt bearbeitet 16.06.2026 22:28:54

The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer derefer...

  • EPSS 44.96%
  • Veröffentlicht 27.09.2006 23:07:00
  • Zuletzt bearbeitet 16.06.2026 22:30:24

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.

  • EPSS 4.49%
  • Veröffentlicht 31.08.2006 21:04:00
  • Zuletzt bearbeitet 16.06.2026 22:29:11

Multiple heap-based buffer overflows in the (1) str_repeat and (2) wordwrap functions in ext/standard/string.c in PHP before 5.1.5, when used on a 64-bit system, have unspecified impact and attack vectors, a different vulnerability than CVE-2006-1990...

  • EPSS 0.46%
  • Veröffentlicht 21.08.2006 21:04:00
  • Zuletzt bearbeitet 16.06.2026 22:28:24

Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on PowerPC PPC970 systems allows local users to cause a denial of service (crash) related to the "HID0 attention enable on PPC970 at boot time."