Debian

Debian 8 (jessie)

428 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2017-16913

  • EPSS 11.08%
  • Veröffentlicht 31.01.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:17:14

The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a spec...

7.1

CVE-2017-16914

  • EPSS 11.31%
  • Veröffentlicht 31.01.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:17:14

The "stub_send_ret_submit()" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP pa...

5.5

CVE-2018-5750

  • EPSS 0.04%
  • Veröffentlicht 26.01.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 04:09:18

The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call.

7.1

CVE-2018-1000004

Exploit
  • EPSS 1.94%
  • Veröffentlicht 16.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:39:24

In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.

7.8

CVE-2017-13220

  • EPSS 0.1%
  • Veröffentlicht 12.01.2018 23:29:02
  • Zuletzt bearbeitet 21.11.2024 03:11:11

An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions: Android kernel. Android ID: A-63527053.

7.8

CVE-2018-5332

  • EPSS 0.04%
  • Veröffentlicht 11.01.2018 07:29:00
  • Zuletzt bearbeitet 21.11.2024 04:08:35

In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).

5.5

CVE-2018-5333

  • EPSS 2.8%
  • Veröffentlicht 11.01.2018 07:29:00
  • Zuletzt bearbeitet 21.11.2024 04:08:36

In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.

5.6

CVE-2017-5715

Exploit
  • EPSS 89.09%
  • Veröffentlicht 04.01.2018 13:29:00
  • Zuletzt bearbeitet 06.05.2025 15:15:51

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

5.6

CVE-2017-5753

Exploit
  • EPSS 94.3%
  • Veröffentlicht 04.01.2018 13:29:00
  • Zuletzt bearbeitet 14.01.2025 19:29:55

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.

5.6

CVE-2017-5754

  • EPSS 88.69%
  • Veröffentlicht 04.01.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:28:19

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.