Debian ≫ Debian 13 (trixie)

13174 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.8

CVE-2025-39944

EPSS 0.02%
Veröffentlicht 04.10.2025 07:31:06
Zuletzt bearbeitet 06.04.2026 13:31:16

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() The original code relies on cancel_delayed_work() in otx2_ptp_destroy(), which does not ensure that the delayed work ite...

7.1

CVE-2025-39943

EPSS 0.02%
Veröffentlicht 04.10.2025 07:31:05
Zuletzt bearbeitet 06.04.2026 13:28:48

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer If data_offset and data_length of smb_direct_data_transfer struct are invalid, out of bound...

5.5

CVE-2025-39942

EPSS 0.02%
Veröffentlicht 04.10.2025 07:31:04
Zuletzt bearbeitet 25.03.2026 00:45:27

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size This is inspired by the check for data_offset + data_length.

5.5

CVE-2025-39940

EPSS 0.01%
Veröffentlicht 04.10.2025 07:31:03
Zuletzt bearbeitet 23.01.2026 20:35:34

In the Linux kernel, the following vulnerability has been resolved: dm-stripe: fix a possible integer overflow There's a possible integer overflow in stripe_io_hints if we have too large chunk size. Test if the overflow happened, and if it did, don...

5.5

CVE-2025-39938

EPSS 0.02%
Veröffentlicht 04.10.2025 07:31:01
Zuletzt bearbeitet 23.01.2026 20:34:30

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dais: Fix NULL pointer dereference if source graph failed If earlier opening of source graph fails (e.g. ADSP rejects due to incorrect audioreach topology),...

5.5

CVE-2025-39937

EPSS 0.03%
Veröffentlicht 04.10.2025 07:31:00
Zuletzt bearbeitet 25.03.2026 00:46:04

In the Linux kernel, the following vulnerability has been resolved: net: rfkill: gpio: Fix crash due to dereferencering uninitialized pointer Since commit 7d5e9737efda ("net: rfkill: gpio: get the name and type from device property") rfkill_find_ty...

5.5

CVE-2025-39934

EPSS 0.02%
Veröffentlicht 04.10.2025 07:30:58
Zuletzt bearbeitet 23.01.2026 20:33:55

In the Linux kernel, the following vulnerability has been resolved: drm: bridge: anx7625: Fix NULL pointer dereference with early IRQ If the interrupt occurs before resource initialization is complete, the interrupt handler/worker may access uninit...

5.5

CVE-2025-39933

EPSS 0.02%
Veröffentlicht 04.10.2025 07:30:57
Zuletzt bearbeitet 25.03.2026 00:51:25

In the Linux kernel, the following vulnerability has been resolved: smb: client: let recv_done verify data_offset, data_length and remaining_data_length This is inspired by the related server fixes.

5.5

CVE-2025-39932

EPSS 0.01%
Veröffentlicht 04.10.2025 07:30:56
Zuletzt bearbeitet 25.03.2026 00:49:03

In the Linux kernel, the following vulnerability has been resolved: smb: client: let smbd_destroy() call disable_work_sync(&info->post_send_credits_work) In smbd_destroy() we may destroy the memory so we better wait until post_send_credits_work is ...

5.5

CVE-2025-39929

EPSS 0.02%
Veröffentlicht 04.10.2025 07:30:55
Zuletzt bearbeitet 12.05.2026 13:17:17

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path During tests of another unrelated patch I was able to trigger this error: Objects remaining on __kmem_cache_s...

<1...276277278279280281282...1318>

Team-orientierte Vulnerability Management Plattform

Features der Plattform