Debian

Debian 12 (bookworm)

11831 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.27%
  • Veröffentlicht 24.06.2026 07:14:14
  • Zuletzt bearbeitet 08.07.2026 15:12:36

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: serialize accept_q access bt_sock_poll() walks the accept queue without synchronization, while child teardown can unlink the same socket and drop its last reference. The...

  • EPSS 0.12%
  • Veröffentlicht 24.06.2026 07:14:13
  • Zuletzt bearbeitet 08.07.2026 15:12:46

In the Linux kernel, the following vulnerability has been resolved: batman-adv: frag: disallow unicast fragment in fragment batadv_frag_skb_buffer() is called by batadv_batman_skb_recv() when a BATADV_UNICAST_FRAG packet is received. Once all fragm...

  • EPSS 0.13%
  • Veröffentlicht 24.06.2026 07:14:13
  • Zuletzt bearbeitet 08.07.2026 15:12:41

In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dump_one path The SCTP exact sock_diag lookup can hold a transport reference, block on lock_sock(sk), and then resume after sctp_associatio...

  • EPSS 0.13%
  • Veröffentlicht 24.06.2026 07:14:12
  • Zuletzt bearbeitet 08.07.2026 15:12:50

In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T_OPTS_OPTSNR option descriptors, but hbh_mt6_check() does not reject larger optsnr values sup...

  • EPSS 0.12%
  • Veröffentlicht 24.06.2026 07:14:11
  • Zuletzt bearbeitet 08.07.2026 15:13:03

In the Linux kernel, the following vulnerability has been resolved: batman-adv: v: stop OGMv2 on disabled interface When a batadv_hard_iface is disabled, its mesh_iface pointer is set to NULL. However, batadv_v_ogm_send_meshif() may still dispatch ...

  • EPSS 0.52%
  • Veröffentlicht 24.06.2026 07:14:11
  • Zuletzt bearbeitet 08.07.2026 15:12:54

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it to validate a fragment chain before reassembly. Th...

  • EPSS 0.14%
  • Veröffentlicht 24.06.2026 07:14:10
  • Zuletzt bearbeitet 08.07.2026 15:13:08

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb->dev from the ingress port to the bridge master before queueing bridge LOCAL_IN packets. NFQU...

  • EPSS 0.36%
  • Veröffentlicht 21.06.2026 06:18:49
  • Zuletzt bearbeitet 08.07.2026 15:13:12

In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn->binding slowpath to bound sessions only When the binding SESSION_SETUP sets conn->binding = true, the flag stays set after the call so that the global session lo...

  • EPSS 0.12%
  • Veröffentlicht 19.06.2026 14:43:33
  • Zuletzt bearbeitet 08.07.2026 15:24:17

In the Linux kernel, the following vulnerability has been resolved: ip6_vti: set netns_immutable on the fallback device. john1988 and Noam Rathaus reported that vti6_init_net() does not set the netns_immutable flag on the per-netns fallback tunnel ...

  • EPSS 0.1%
  • Veröffentlicht 19.06.2026 14:43:33
  • Zuletzt bearbeitet 08.07.2026 15:20:05

In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU grace period. Eulgyu Kim reported the splat below with a repro. [0] The repro sets up a UDP reuseport group with a cBPF prog and replaces i...