Debian

Debian 12 (bookworm)

11230 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-52429

  • EPSS 0.03%
  • Veröffentlicht 12.02.2024 03:15:32
  • Zuletzt bearbeitet 04.11.2025 19:16:23

dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.

5.5

CVE-2024-25739

  • EPSS 0.01%
  • Veröffentlicht 12.02.2024 03:15:32
  • Zuletzt bearbeitet 12.05.2026 12:16:18

create_empty_lvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes, and crash, because of a missing check for ubi->leb_size.

5.5

CVE-2024-25740

  • EPSS 0.01%
  • Veröffentlicht 12.02.2024 03:15:32
  • Zuletzt bearbeitet 07.05.2025 21:16:03

A memory leak flaw was found in the UBI driver in drivers/mtd/ubi/attach.c in the Linux kernel through 6.7.4 for UBI_IOCATT, because kobj->name is not released.

5.5

CVE-2024-25741

Exploit
  • EPSS 0.01%
  • Veröffentlicht 12.02.2024 03:15:32
  • Zuletzt bearbeitet 03.11.2025 22:16:47

printer_write in drivers/usb/gadget/function/f_printer.c in the Linux kernel through 6.7.4 does not properly call usb_ep_queue, which might allow attackers to cause a denial of service or have unspecified other impact.

5.5

CVE-2024-1151

  • EPSS 0.01%
  • Veröffentlicht 11.02.2024 15:15:07
  • Zuletzt bearbeitet 21.11.2024 08:49:54

A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push recursively calls into the code block. The OVS module does not validate the stack depth, pushing too many fram...

7.5

CVE-2023-6356

  • EPSS 0.02%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and c...

7.5

CVE-2023-6535

  • EPSS 0.03%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, caus...

7.5

CVE-2023-6536

  • EPSS 0.03%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, caus...

5.3

CVE-2024-24860

  • EPSS 0.01%
  • Veröffentlicht 05.02.2024 08:15:45
  • Zuletzt bearbeitet 13.02.2025 18:17:10

A race condition was found in the Linux kernel's bluetooth device driver in {min,max}_key_size_set() function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue.

6.3

CVE-2024-24861

  • EPSS 0.04%
  • Veröffentlicht 05.02.2024 08:15:45
  • Zuletzt bearbeitet 13.02.2025 18:17:11

A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000 xc4000_get_frequency() function. This can result in return value overflow issue, possibly leading to malfunction or denial of service issue.