Debian

Debian 13 (trixie)

13946 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.13%
  • Veröffentlicht 27.05.2026 12:57:03
  • Zuletzt bearbeitet 16.06.2026 15:03:32

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Fix use-after-free in driver remove() In the remove callback, if a packet arrives after destroy_workqueue() is called, but before sock_release(), the qrtr_ns_data_re...

  • EPSS 0.12%
  • Veröffentlicht 27.05.2026 12:57:02
  • Zuletzt bearbeitet 16.06.2026 13:07:42

In the Linux kernel, the following vulnerability has been resolved: ext4: fix missing brelse() in ext4_xattr_inode_dec_ref_all() The commit c8e008b60492 ("ext4: ignore xattrs past end") introduced a refcount leak in when block_csum is false. ext4_...

  • EPSS 0.12%
  • Veröffentlicht 27.05.2026 12:56:59
  • Zuletzt bearbeitet 16.06.2026 15:04:45

In the Linux kernel, the following vulnerability has been resolved: ipmi:ssif: Clean up kthread on errors If an error occurs after the ssif kthread is created, but before the main IPMI code starts the ssif interface, the ssif kthread will not be st...

  • EPSS 0.51%
  • Veröffentlicht 27.05.2026 12:56:57
  • Zuletzt bearbeitet 16.06.2026 15:13:56

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv rxe_rcv() currently checks only that the incoming packet is at least header_size(pkt) bytes long before payload_siz...

  • EPSS 0.14%
  • Veröffentlicht 27.05.2026 12:56:54
  • Zuletzt bearbeitet 16.06.2026 15:14:57

In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: fix sleep in atomic context in hdlc_tx_frames() hdlc_append() calls usleep_range() to wait for circular buffer space, but it is called with tx_producer_lock...

  • EPSS 0.12%
  • Veröffentlicht 27.05.2026 12:56:52
  • Zuletzt bearbeitet 16.06.2026 15:15:48

In the Linux kernel, the following vulnerability has been resolved: inotify: fix watch count leak when fsnotify_add_inode_mark_locked() fails When fsnotify_add_inode_mark_locked() fails in inotify_new_watch(), the error path calls inotify_remove_fr...

  • EPSS 0.12%
  • Veröffentlicht 27.05.2026 12:56:50
  • Zuletzt bearbeitet 16.06.2026 15:16:28

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Free the node during ctrl_cmd_bye() A node sends the BYE packet when it is about to go down. So the nameserver should advertise the removal of the node to all remote...

  • EPSS 0.43%
  • Veröffentlicht 27.05.2026 12:56:47
  • Zuletzt bearbeitet 16.06.2026 15:17:15

In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmp_pointers Extended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply type. That value is outside the range covered by icmp_...

  • EPSS 0.14%
  • Veröffentlicht 27.05.2026 12:56:46
  • Zuletzt bearbeitet 16.06.2026 15:17:26

In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Serialize VFIO_DEVICE_SET_IRQS with a per-device mutex vfio_cdx_set_msi_trigger() reads vdev->config_msi and operates on the vdev->cdx_irqs array based on its value, but ...

  • EPSS 0.14%
  • Veröffentlicht 27.05.2026 12:56:43
  • Zuletzt bearbeitet 16.06.2026 16:59:26

In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Fix NULL pointer dereference in interrupt trigger path Add validation to ensure MSI is configured before accessing cdx_irqs array in vfio_cdx_set_msi_trigger(). Without t...