Debian

Debian 10 (buster)

543 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2021-4159

  • EPSS 0.07%
  • Veröffentlicht 24.08.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:37:02

A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to le...

5.5

CVE-2021-3764

  • EPSS 0.02%
  • Veröffentlicht 23.08.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:22:22

A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system ...

5.5

CVE-2022-2873

  • EPSS 0.04%
  • Veröffentlicht 22.08.2022 15:15:15
  • Zuletzt bearbeitet 21.11.2024 07:01:51

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. This flaw allows a local user to cra...

5.5

CVE-2022-26373

  • EPSS 0.11%
  • Veröffentlicht 18.08.2022 20:15:11
  • Zuletzt bearbeitet 05.05.2025 17:18:03

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

6.7

CVE-2022-20369

  • EPSS 0.04%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:41

In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitatio...

8.2

CVE-2022-1012

  • EPSS 0.44%
  • Veröffentlicht 05.08.2022 16:15:11
  • Zuletzt bearbeitet 21.11.2024 06:39:51

A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.

7.5

CVE-2022-36946

  • EPSS 5.08%
  • Veröffentlicht 27.07.2022 20:15:08
  • Zuletzt bearbeitet 05.05.2025 16:15:18

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encou...

5.5

CVE-2022-36879

  • EPSS 0.04%
  • Veröffentlicht 27.07.2022 04:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:17

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.

6.8

CVE-2021-33656

  • EPSS 0.03%
  • Veröffentlicht 18.07.2022 15:15:08
  • Zuletzt bearbeitet 02.04.2025 18:33:53

When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.

6.7

CVE-2021-33655

  • EPSS 0.02%
  • Veröffentlicht 18.07.2022 15:15:07
  • Zuletzt bearbeitet 21.11.2024 06:09:17

When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.