Debian

Debian 11 (bullseye)

9132 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.27%
  • Veröffentlicht 19.06.2024 15:15:54
  • Zuletzt bearbeitet 21.11.2024 06:36:38

In the Linux kernel, the following vulnerability has been resolved: dm btree remove: fix use after free in rebalance_children() Move dm_tm_unlock() after dm_tm_dec().

  • EPSS 0.24%
  • Veröffentlicht 19.06.2024 15:15:54
  • Zuletzt bearbeitet 21.11.2024 06:36:38

In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix an IS_ERR() vs NULL bug The __get_free_pages() function does not return error pointers it returns NULL so fix this condition to avoid a NULL dereference.

  • EPSS 0.22%
  • Veröffentlicht 19.06.2024 15:15:54
  • Zuletzt bearbeitet 21.11.2024 06:36:38

In the Linux kernel, the following vulnerability has been resolved: mac80211: track only QoS data frames for admission control For admission control, obviously all of that only works for QoS data frames, otherwise we cannot even access the QoS fiel...

  • EPSS 0.18%
  • Veröffentlicht 19.06.2024 15:15:54
  • Zuletzt bearbeitet 21.11.2024 06:36:38

In the Linux kernel, the following vulnerability has been resolved: audit: improve robustness of the audit queue handling If the audit daemon were ever to get stuck in a stopped state the kernel's kauditd_thread() could get blocked attempting to se...

  • EPSS 0.25%
  • Veröffentlicht 19.06.2024 15:15:53
  • Zuletzt bearbeitet 21.11.2024 06:36:36

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory leak in __add_inode_ref() Line 1169 (#3) allocates a memory chunk for victim_name by kmalloc(), but when the function returns in line 1184 (#4) victim_name alloc...

  • EPSS 0.18%
  • Veröffentlicht 19.06.2024 15:15:53
  • Zuletzt bearbeitet 21.11.2024 06:36:36

In the Linux kernel, the following vulnerability has been resolved: net: systemport: Add global locking for descriptor lifecycle The descriptor list is a shared resource across all of the transmit queues, and the locking mechanism used today only p...

  • EPSS 0.25%
  • Veröffentlicht 19.06.2024 15:15:53
  • Zuletzt bearbeitet 01.10.2025 13:42:32

In the Linux kernel, the following vulnerability has been resolved: sit: do not call ipip6_dev_free() from sit_init_net() ipip6_dev_free is sit dev->priv_destructor, already called by register_netdevice() if something goes wrong. Alternative would...

  • EPSS 0.26%
  • Veröffentlicht 19.06.2024 15:15:53
  • Zuletzt bearbeitet 21.11.2024 06:36:36

In the Linux kernel, the following vulnerability has been resolved: igbvf: fix double free in `igbvf_probe` In `igbvf_probe`, if register_netdev() fails, the program will go to label err_hw_init, and then to label err_ioremap. In free_netdev() whic...

  • EPSS 0.25%
  • Veröffentlicht 19.06.2024 15:15:53
  • Zuletzt bearbeitet 21.11.2024 06:36:37

In the Linux kernel, the following vulnerability has been resolved: mptcp: clear 'kern' flag from fallback sockets The mptcp ULP extension relies on sk->sk_sock_kern being set correctly: It prevents setsockopt(fd, IPPROTO_TCP, TCP_ULP, "mptcp", 6);...

  • EPSS 0.24%
  • Veröffentlicht 19.06.2024 15:15:52
  • Zuletzt bearbeitet 21.11.2024 06:36:35

In the Linux kernel, the following vulnerability has been resolved: scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() In resp_mode_select() sanity check the block descriptor len to avoid UAF. BUG: KASAN: use-after-free i...