Debian

Debian Linux

9997 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.38%
  • Veröffentlicht 04.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:14:55

Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6 allows local users to cause a denial of service (oops or deadlock) and possibly execute arbitrary code via a p->dir value that is larger than XFRM_POLICY_OU...

  • EPSS 3.67%
  • Veröffentlicht 26.07.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:13:55

The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive info...

  • EPSS 11.01%
  • Veröffentlicht 18.07.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:13:30

Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.

  • EPSS 0.36%
  • Veröffentlicht 06.07.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:13:54

linki.py in ekg 2005-06-05 and earlier allows local users to overwrite or create arbitrary files via a symlink attack on temporary files.

  • EPSS 79.07%
  • Veröffentlicht 05.07.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:13:55

Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) Mail...

Exploit
  • EPSS 20.46%
  • Veröffentlicht 05.07.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:14:13

The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfe...

  • EPSS 5.49%
  • Veröffentlicht 31.05.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:13:42

Format string vulnerability in the curses_msg function in the Ncurses interface (ec_curses.c) for Ettercap before 0.7.3 allows remote attackers to execute arbitrary code.

  • EPSS 6.15%
  • Veröffentlicht 19.05.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:12:44

bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").

Exploit
  • EPSS 10.79%
  • Veröffentlicht 11.05.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:13:11

Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.

Exploit
  • EPSS 4.38%
  • Veröffentlicht 02.05.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:10:20

Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers.