Debian Security Vulnerabilities (CVEs)

An integer overflow vulnerability in libtiff's tif_getimage.c allows attackers to execute arbitrary code when a user opens a malicious TIFF file. This...

This is a use-after-free vulnerability in Chrome's Network Internals component on Linux systems. It allows remote attackers to potentially execute arb...

This is a use-after-free vulnerability in Chrome's Blink rendering engine that allows remote attackers to potentially execute arbitrary code via a cra...

This vulnerability in Google Chrome's PDFium component allows attackers to read uninitialized memory from the browser process by tricking users into o...

This CVE describes a data race vulnerability in Google Chrome's audio component that could allow heap corruption. A remote attacker could exploit this...

This is a use-after-free vulnerability in Google Chrome's bookmarks feature that allows remote attackers to potentially exploit heap corruption. Attac...

This vulnerability allows a remote attacker to perform out-of-bounds memory access in Chrome's V8 JavaScript engine via a crafted HTML page. Attackers...

This vulnerability in Google Chrome's File System API on Windows allows attackers to bypass filesystem restrictions via a malicious HTML page. It affe...

This vulnerability in Google Chrome's Referrer implementation allowed attackers to bypass navigation restrictions via crafted HTML pages. It affects u...

This vulnerability is a heap buffer overflow in Chrome's WebAudio component that allows remote attackers to potentially exploit heap corruption via a ...

This vulnerability is a use-after-free memory corruption flaw in Chrome's WebRTC component that allows remote attackers to potentially execute arbitra...

This vulnerability in Privoxy allows an attacker to cause denial of service by passing invalid patterns to the pcre_compile() function, leading to inv...

This vulnerability in Privoxy allows remote attackers to crash the proxy server by sending a specially crafted CGI request that triggers an assertion ...

CVE-2021-27364 is a Linux kernel vulnerability in the iSCSI subsystem that allows unprivileged local users to cause a denial of service or potentially...

This vulnerability in Apache Tomcat allows HTTP/2 cleartext (h2c) connections to leak request data between users. When processing h2c requests, Tomcat...

CVE-2020-28243 is a command injection vulnerability in SaltStack Salt's restartcheck feature that allows local privilege escalation. Any user who can ...

This vulnerability in SaltStack Salt allows man-in-the-middle attacks by failing to properly validate SSL certificates during authentication to certai...

This CVE describes memory safety bugs in Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could potenti...

This vulnerability is a buffer overflow in libcaca's caca_resize function that could allow local attackers to execute arbitrary code with the privileg...

This vulnerability in mbsync allows a malicious or compromised IMAP server to use specially crafted mailbox names containing '..' path components to a...

This vulnerability in Xen hypervisor allows x86 Intel HVM guest OS users to achieve unintended DMA access, potentially leading to host OS crashes or p...

CVE-2020-8625 is a buffer overflow vulnerability in BIND DNS servers that affects systems configured with GSS-TSIG features. Exploitation could lead t...

This vulnerability in Debian's avahi package allows local attackers to perform symlink attacks on files under /run/avahi-daemon. Attackers can cause d...

This vulnerability in the Linux kernel's Xen block back-end driver (xen-blkback) can cause memory mapping errors when processing grant references from...

This OpenSSL vulnerability involves integer overflow in cryptographic functions (EVP_CipherUpdate, EVP_EncryptUpdate, EVP_DecryptUpdate) when processi...

CVE-2021-27219 is an integer overflow vulnerability in GNOME GLib's g_bytes_new function on 64-bit platforms, caused by an implicit cast from 64-bit t...

This vulnerability in OpenLDAP allows remote attackers to cause a denial of service by sending a specially crafted packet with a short timestamp, trig...

CVE-2021-21311 is a server-side request forgery (SSRF) vulnerability in Adminer database management software that allows attackers to make unauthorize...

This vulnerability allows network-adjacent attackers to execute arbitrary code via a stack-based buffer overflow in ConnMan's dnsproxy component. It a...

This vulnerability in Firejail allows attackers to bypass security restrictions through a TOCTOU race condition between stat and OverlayFS mount opera...

CVE-2021-21289 is a command injection vulnerability in the Mechanize Ruby library that allows attackers to execute arbitrary operating system commands...

This vulnerability in the GNU C Library's iconv function causes a program crash when processing invalid ISO-2022-JP-3 encoded input. It affects any ap...

CVE-2021-3156 is a heap-based buffer overflow vulnerability in Sudo that allows local users to escalate privileges to root. The exploit involves using...

This vulnerability in OpenLDAP allows attackers to cause a double-free memory corruption in the slapd daemon's saslAuthzTo processing, leading to a cr...

This vulnerability in OpenLDAP allows attackers to trigger an infinite loop in the slapd daemon by sending a specially crafted cancel_extop Cancel ope...

This vulnerability in OpenLDAP's X.509 DN parsing can cause the slapd daemon to crash when processing specially crafted certificates, leading to denia...

An integer underflow vulnerability in OpenLDAP's Certificate Exact Assertion processing can cause slapd to crash, leading to denial of service. This a...

This vulnerability in OpenLDAP's slapd daemon allows attackers to trigger a crash through malformed Values Return Filter control requests, causing den...

This vulnerability is a heap-buffer overflow in openjpeg2's PNG file handling that allows attackers to crash applications or potentially execute arbit...

This vulnerability is a heap-based buffer overflow in dnsmasq before version 2.83 that occurs during DNSSEC validation of RRSets. An attacker who can ...

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via a specially crafted BMP image file. It affects app...