Debian

Debian 11 (bullseye)

8657 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-19377

Exploit
  • EPSS 0.39%
  • Veröffentlicht 29.11.2019 16:15:10
  • Zuletzt bearbeitet 21.11.2024 04:34:40

In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and unmounting can lead to a use-after-free in btrfs_queue_work in fs/btrfs/async-thread.c.

10

CVE-2019-14901

  • EPSS 4.67%
  • Veröffentlicht 29.11.2019 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:27:38

A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The vulnerability allows a remote attacker to cause a system crash, resulting in a denial of service, or execute arbitrary co...

9.8

CVE-2019-14897

  • EPSS 0.29%
  • Veröffentlicht 29.11.2019 15:15:10
  • Zuletzt bearbeitet 21.11.2024 04:27:38

A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allow...

9.8

CVE-2019-14895

  • EPSS 0.7%
  • Veröffentlicht 29.11.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:27:37

A heap-based buffer overflow was discovered in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The flaw could occur when the station attempts a connection negotiation during the handling of the remote device...

4.4

CVE-2019-19318

Exploit
  • EPSS 0.35%
  • Veröffentlicht 28.11.2019 00:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:34

In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags returns an already freed pointer,

6.5

CVE-2019-19319

Exploit
  • EPSS 0.44%
  • Veröffentlicht 27.11.2019 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:34

In the Linux kernel before 5.2, a setxattr operation, after a mount of a crafted ext4 image, can cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a mem...

4.7

CVE-2019-18660

  • EPSS 0.03%
  • Veröffentlicht 27.11.2019 23:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:28

The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. This is related to arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security....

9.3

CVE-2019-10220

  • EPSS 0.74%
  • Veröffentlicht 27.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:18:41

Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.

10

CVE-2019-14896

  • EPSS 0.74%
  • Veröffentlicht 27.11.2019 09:15:11
  • Zuletzt bearbeitet 21.11.2024 04:27:38

A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join...

7.8

CVE-2019-19252

  • EPSS 0.06%
  • Veröffentlicht 25.11.2019 18:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:25

vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.