Debian

Debian 11 (bullseye)

9132 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.39%
  • Veröffentlicht 25.04.2026 08:46:52
  • Zuletzt bearbeitet 01.06.2026 17:16:55

In the Linux kernel, the following vulnerability has been resolved: rxrpc: only handle RESPONSE during service challenge Only process RESPONSE packets while the service connection is still in RXRPC_CONN_SERVICE_CHALLENGING. Check that state under s...

  • EPSS 0.13%
  • Veröffentlicht 25.04.2026 08:46:51
  • Zuletzt bearbeitet 06.05.2026 21:33:21

In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_netem: fix out-of-bounds access in packet corruption In netem_enqueue(), the packet corruption logic uses get_random_u32_below(skb_headlen(skb)) to select an index f...

  • EPSS 0.12%
  • Veröffentlicht 25.04.2026 08:46:50
  • Zuletzt bearbeitet 06.05.2026 21:34:51

In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() Reject rt match rules whose addrnr exceeds IP6T_RT_HOPS. rt_mt6() expects addrnr to stay within the bounds of rtinfo-...

  • EPSS 0.12%
  • Veröffentlicht 25.04.2026 08:46:49
  • Zuletzt bearbeitet 01.06.2026 17:16:55

In the Linux kernel, the following vulnerability has been resolved: af_unix: read UNIX_DIAG_VFS data under unix_state_lock Exact UNIX diag lookups hold a reference to the socket, but not to u->path. Meanwhile, unix_release_sock() clears u->path und...

  • EPSS 0.11%
  • Veröffentlicht 24.04.2026 14:45:19
  • Zuletzt bearbeitet 27.04.2026 20:11:49

In the Linux kernel, the following vulnerability has been resolved: wifi: rt2x00usb: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB dev...

  • EPSS 0.11%
  • Veröffentlicht 24.04.2026 14:45:18
  • Zuletzt bearbeitet 27.04.2026 20:11:39

In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_report() struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which means there is three "empty" bytes of padding, but...

  • EPSS 0.11%
  • Veröffentlicht 24.04.2026 14:45:17
  • Zuletzt bearbeitet 27.04.2026 20:10:26

In the Linux kernel, the following vulnerability has been resolved: net: rfkill: prevent unlimited numbers of rfkill events from being created Userspace can create an unlimited number of rfkill events if the system is so configured, while not consu...

  • EPSS 0.44%
  • Veröffentlicht 24.04.2026 14:45:16
  • Zuletzt bearbeitet 27.04.2026 20:08:54

In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and output paths in seg6 lwtunnel The seg6 lwtunnel uses a single dst_cache per encap route, shared between seg6_input_core() and seg6_output_cor...

  • EPSS 0.1%
  • Veröffentlicht 24.04.2026 14:45:15
  • Zuletzt bearbeitet 27.04.2026 20:00:40

In the Linux kernel, the following vulnerability has been resolved: Input: uinput - fix circular locking dependency with ff-core A lockdep circular locking dependency warning can be triggered reproducibly when using a force-feedback gamepad with ui...

  • EPSS 0.12%
  • Veröffentlicht 24.04.2026 14:45:14
  • Zuletzt bearbeitet 27.04.2026 20:00:05

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: fix use-after-free in timeout object destroy nft_ct_timeout_obj_destroy() frees the timeout object with kfree() immediately after nf_ct_untimeout(), without wait...