Debian Security Vulnerabilities (CVEs)

This vulnerability in the Linux kernel's btrfs filesystem allows uninitialized kernel memory to be leaked to user-space via the btrfs_ioctl_logical_to...

This CVE describes a NULL pointer dereference vulnerability in the Linux kernel's powerpc/powernv subsystem. If kasprintf() fails to allocate memory a...

This CVE describes a Linux kernel vulnerability where the ACPI video driver fails to properly handle errors when searching for a backlight device's pa...

This CVE is a NULL pointer dereference vulnerability in the Linux kernel's powerpc/powernv subsystem. The opal_powercap_init() function fails to check...

A double-free vulnerability in the Linux kernel's device tree parsing code allows memory corruption when processing malformed device tree data. This a...

This CVE describes a NULL pointer dereference vulnerability in the Linux kernel's powerpc/powernv subsystem. The opal_event_init() function fails to c...

This CVE describes a vulnerability in the Linux kernel's Marvell PP2 network driver where buffer manager pool registers retain values after kexec rebo...

This CVE describes a memory leak vulnerability in the Linux kernel's Lima graphics driver. When lima_vm_map_bo fails during memory allocation, resourc...

A memory leak vulnerability in the Linux kernel's fsl-qdma DMA engine driver allows attackers to cause resource exhaustion by repeatedly triggering th...

A vulnerability in the Linux kernel's USB gadget NCM driver allows infinite processing of zero-length packets, leading to system crashes. This affects...

This Linux kernel vulnerability in the UBIFS filesystem allows concurrent readers to see stale data when reading from page cache. It affects systems u...

This CVE describes a buffer corruption vulnerability in the Linux kernel's virtual terminal (vt) subsystem when deleting Unicode characters. The issue...

This CVE addresses an out-of-bounds array access vulnerability in the Linux kernel's MMC (MultiMediaCard) subsystem. The flaw occurs when accessing an...

A corruption vulnerability in the Linux kernel's ext4 filesystem occurs during online resize operations on filesystems larger than 16 TiB with 4k bloc...

A race condition in the Linux kernel's PCI power management subsystem allows a kernel crash due to an unhandled page fault when removing certain PCI d...

This CVE describes a denial-of-service vulnerability in the Linux kernel's device mapper snapshot subsystem. When destroying a snapshot with many exce...

This CVE describes a buffer overread vulnerability in the Linux kernel's s390 AES CTR mode implementation. When processing the final block of data, th...

A kernel panic vulnerability in the Linux kernel's TEE (Trusted Execution Environment) OP-TEE driver allows local attackers to crash the system by tri...

This CVE describes a use-after-free vulnerability in the Linux kernel's WiFi subsystem (mac80211). When a station is moved out of a VLAN and the VLAN ...

This is a use-after-free vulnerability in the Linux kernel's KVM SVM (Secure Virtual Machine) subsystem. It allows a malicious user with access to a K...

This CVE describes an information disclosure vulnerability in the Linux kernel's cpumap XDP (eXpress Data Path) subsystem. When XDP programs run on cp...

This CVE describes a memory leak vulnerability in the Linux kernel's IPv6 implementation. When userspace provides specific network namespace attribute...

This CVE describes a race condition vulnerability in the Linux kernel's NET/ROM protocol implementation where concurrent access to the sysctl_net_busy...

A memory allocation vulnerability in the Linux kernel's EFI capsule loader where insufficient memory is allocated for a 64-bit physical address on 32-...

A vulnerability in the Linux kernel's USB gadget NCM driver causes properly parsed network datagrams to be dropped when Windows 11 sends extra padding...

This vulnerability in LibreOffice allows attackers to embed malicious scripts in documents that execute automatically when users click on graphics, by...

This CVE describes a vulnerability in Git that allows attackers to bypass security protections when cloning repositories from untrusted sources. Speci...

This vulnerability in Firefox, Firefox ESR, and Thunderbird allows attackers to trick users into granting WebAuthn permissions via manipulated popup n...

A vulnerability in the Linux kernel's firewire nosy driver could allow local attackers to cause buffer overflows by providing insufficient buffer size...

This is a use-after-free vulnerability in the Linux kernel's Bluetooth subsystem where a scheduled timeout worker thread can access a socket object af...

This CVE describes a use-after-free vulnerability in the Linux kernel's GTP (GPRS Tunneling Protocol) implementation. Attackers could potentially expl...

This CVE addresses dead code removal in the Linux kernel's io_uring subsystem related to SCM_RIGHTS file descriptor passing. The vulnerability itself ...

A stack-based buffer overflow vulnerability in nscd (Name Service Cache Daemon) allows attackers to execute arbitrary code or crash the service when n...

A memory allocation failure in nscd's netgroup cache can cause the daemon to terminate, resulting in denial of service for clients relying on name ser...

This vulnerability in Werkzeug's debugger allows attackers to execute arbitrary code on a developer's machine if they can trick the developer into int...

CVE-2024-34509 is a segmentation fault vulnerability in dcmdata component of DCMTK medical imaging toolkit. It allows denial of service attacks via sp...

This CVE describes a memory leak vulnerability in the Linux kernel's go7007 media driver. When the go7007_load_encoder function is called, it allocate...

This CVE addresses a stack overflow vulnerability in the Linux kernel's DVB frontend driver for STV0367 chips. The vulnerability occurs when clang com...

This CVE describes a memory leak vulnerability in the Linux kernel's V4L2 video framework. When the v4l2_m2m_register_entity function fails during dev...

This CVE describes a memory leak vulnerability in the Linux kernel's SUNRPC subsystem within the gssx_dec_option_array function. When triggered, it ca...

This CVE describes a use-after-free vulnerability in the Linux kernel's rtl8xxxu WiFi driver. When the driver is stopped, a workqueue might still be r...

A vulnerability in the Linux kernel's netfilter nf_tables subsystem allows improper handling of table flag comparisons during updates. This could lead...

This CVE describes a NULL pointer dereference vulnerability in the Linux kernel's SPI-MT65xx driver interrupt handler. When the TX buffer in a spi_tra...

A NULL pointer dereference vulnerability in the Linux kernel's clock framework allows local attackers to cause a kernel panic (denial of service). Thi...

This CVE describes a NULL pointer dereference vulnerability in the AMD display driver within the Linux kernel. If exploited, it could cause a kernel p...

This vulnerability in the Linux kernel's RDS (Reliable Datastream Sockets) subsystem occurs when get_mr() is called before a connection is established...

This vulnerability is an out-of-bounds memory access flaw in the Linux kernel's NVIDIA DRM driver (nv04). It allows attackers to potentially crash the...

A race condition vulnerability in the Linux kernel's mxs-auart serial driver allows local attackers to cause a kernel panic (denial of service) by tri...

This CVE describes a deadlock vulnerability in the Linux kernel's clock framework where the clk_disable_unused function could cause a system hang. The...