Debian

Debian 11 (bullseye)

8657 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-0615

  • EPSS 0.02%
  • Veröffentlicht 06.02.2023 23:15:09
  • Zuletzt bearbeitet 25.03.2025 20:15:17

A memory leak flaw and potential divide by zero and Integer overflow was found in the Linux kernel V4L2 and vivid test code functionality. This issue occurs when a user triggers ioctls, such as VIDIOC_S_DV_TIMINGS ioctl. This could allow a local user...

4.6

CVE-2023-25012

Exploit
  • EPSS 0.04%
  • Veröffentlicht 02.02.2023 00:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:30

The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long.

7.8

CVE-2023-0240

  • EPSS 0.04%
  • Veröffentlicht 30.01.2023 14:15:10
  • Zuletzt bearbeitet 21.11.2024 07:36:48

There is a logic error in io_uring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the io_prep_async_work function the assumption that the last io_grab_identity call cannot return fals...

7

CVE-2023-0266

Warnung
  • EPSS 0.15%
  • Veröffentlicht 30.01.2023 14:15:10
  • Zuletzt bearbeitet 24.10.2025 13:54:46

A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the syst...

7.8

CVE-2022-4139

  • EPSS 0.02%
  • Veröffentlicht 27.01.2023 18:15:15
  • Zuletzt bearbeitet 28.03.2025 16:15:25

An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.

7.8

CVE-2023-20928

  • EPSS 0.11%
  • Veröffentlicht 26.01.2023 21:18:11
  • Zuletzt bearbeitet 02.04.2025 15:15:53

In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...

5.5

CVE-2023-0394

  • EPSS 0.02%
  • Veröffentlicht 26.01.2023 21:18:07
  • Zuletzt bearbeitet 31.03.2025 15:15:38

A NULL pointer dereference flaw was found in rawv6_push_pending_frames in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw causes the system to crash.

5.5

CVE-2022-47929

Exploit
  • EPSS 0.04%
  • Veröffentlicht 17.01.2023 21:15:14
  • Zuletzt bearbeitet 04.04.2025 18:15:43

In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and...

7.1

CVE-2022-41858

  • EPSS 0.01%
  • Veröffentlicht 17.01.2023 18:15:11
  • Zuletzt bearbeitet 07.04.2025 17:15:33

A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel inform...

7.8

CVE-2023-23559

  • EPSS 0.03%
  • Veröffentlicht 13.01.2023 01:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:30

In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.