Debian Security Vulnerabilities (CVEs)
Track 1,927 security vulnerabilities affecting Debian products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
CVE-2013-4532 is a buffer overflow vulnerability in QEMU virtualization software that allows attackers to execute arbitrary code on the host system wi...
Jan 2, 2020A buffer overflow vulnerability in eglibc's getaddrinfo() function allows attackers to cause denial of service through specially crafted DNS responses...
Dec 31, 2019This vulnerability allows attackers to bypass WordPress input sanitization using HTML5 colon named entities, enabling cross-site scripting (XSS) attac...
Dec 27, 2019CVE-2019-16789 is an HTTP request smuggling vulnerability in Waitress web server versions through 1.4.0. Attackers can send specially crafted requests...
Dec 26, 2019CVE-2019-19956 is a memory leak vulnerability in libxml2's XML parser that occurs when processing certain malformed XML documents. This vulnerability ...
Dec 24, 2019This vulnerability allows remote attackers to execute arbitrary code via a specially crafted SGI image file. It affects ImageMagick installations that...
Dec 24, 2019CVE-2019-19950 is a use-after-free vulnerability in GraphicsMagick's error handling functions that allows attackers to execute arbitrary code or cause...
Dec 24, 2019This CVE describes a session fixation vulnerability in Apache Tomcat's FORM authentication mechanism. An attacker could potentially hijack user sessio...
Dec 23, 2019A heap-based buffer overflow in virglrenderer's vrend_renderer_transfer_write_iov function allows guest OS users to cause denial of service or potenti...
Dec 23, 2019This CVE describes a NULL pointer dereference vulnerability in SQLite's multiSelect function that can cause denial of service or potentially allow arb...
Dec 23, 2019CVE-2019-17571 is a critical deserialization vulnerability in Log4j 1.2's SocketServer class that allows remote code execution when untrusted data is ...
Dec 20, 2019CVE-2012-6094 is a critical vulnerability in CUPS (Common Unix Printing System) where the 'Listen localhost:631' configuration directive fails to rest...
Dec 20, 2019CVE-2012-3409 is a privilege escalation vulnerability in ecryptfs-utils where the setuid helper program fails to restrict mounting filesystems with no...
Dec 20, 2019CVE-2018-1311 is a use-after-free vulnerability in Apache Xerces-C XML parser versions 3.0.0 to 3.2.3 that can be triggered when processing external D...
Dec 18, 2019Knot Resolver DNS software before version 4.3.0 is vulnerable to denial of service through CPU exhaustion. Attackers can send DNS replies containing t...
Dec 16, 2019CVE-2014-8650 is an authentication bypass vulnerability in python-requests-kerberos versions up to 0.5 that fails to properly implement mutual authent...
Dec 15, 2019CVE-2014-3495 is an SSL certificate verification vulnerability in duplicity backup software that allows man-in-the-middle attackers to intercept and m...
Dec 13, 2019CVE-2019-12420 is a resource exhaustion vulnerability in Apache SpamAssassin that allows attackers to craft malicious email messages causing excessive...
Dec 12, 2019CVE-2019-17358 is an unsafe deserialization vulnerability in Cacti that allows authenticated attackers to manipulate object data values. This could le...
Dec 12, 2019CVE-2019-18345 is a reflected cross-site scripting (XSS) vulnerability in DAViCal CalDAV server that allows attackers to execute arbitrary JavaScript ...
Dec 12, 2019CVE-2019-19725 is a double-free vulnerability in sysstat's sa_common.c that allows memory corruption. Attackers can exploit this to potentially execut...
Dec 11, 2019This CVE allows x86 HVM/PVH guest OS users in Xen hypervisors to cause a denial of service by crashing the guest OS through a VMX VMEntry check failur...
Dec 11, 2019CVE-2013-4245 is a vulnerability in Orca, a screen reader for GNOME, that allows arbitrary code execution due to insecure Python module loading. Attac...
Dec 11, 2019This is a type confusion vulnerability in libxslt's xsltNumberFormatGetMultipleLevel function that could allow heap corruption via specially crafted X...
Dec 11, 2019This vulnerability allows remote command injection in libssh's SCP client when user-controlled input is passed to the ssh_scp_new() function. Attacker...
Dec 10, 2019This vulnerability is a type confusion flaw in Chrome's JavaScript engine that could allow an attacker to execute arbitrary code or cause heap corrupt...
Dec 10, 2019This vulnerability in Google Chrome for Android allows remote attackers to potentially exploit heap corruption through uninitialized data in rendering...
Dec 10, 2019This is a type confusion vulnerability in Chrome's JavaScript engine that could allow a remote attacker to execute arbitrary code or cause heap corrup...
Dec 10, 2019This vulnerability is an out-of-bounds write in SQLite within Google Chrome that could allow a remote attacker to exploit heap corruption via a crafte...
Dec 10, 2019This CVE describes an integer overflow vulnerability in PDFium, Chrome's PDF rendering engine, that could allow heap corruption when processing malici...
Dec 10, 2019This vulnerability in Google Chrome's Blink rendering engine allows a local attacker to bypass same-origin policy restrictions via malicious clipboard...
Dec 10, 2019A buffer overflow vulnerability in Google Chrome's password manager allowed remote attackers to execute arbitrary code by tricking users into visiting...
Dec 10, 2019This vulnerability is an out-of-bounds write in Chrome's JavaScript engine that allows remote attackers to potentially exploit heap corruption via a c...
Dec 10, 2019This vulnerability in OpenBSD's random number generator returns predictable values when seeded with zero, compromising cryptographic security. It affe...
Dec 10, 2019CVE-2013-2167 is a memcache signing bypass vulnerability in python-keystoneclient middleware that allows attackers to bypass authentication mechanisms...
Dec 10, 2019This vulnerability in phpMyAdmin allows attackers to execute arbitrary code through improper escaping of Git information. It affects all phpMyAdmin in...
Dec 6, 2019This vulnerability in Wireshark allows attackers to cause a denial of service (crash) by sending specially crafted CMS (Cryptographic Message Syntax) ...
Dec 5, 2019CVE-2013-2745 is an SQL injection vulnerability in MiniDLNA media server software that allows attackers to execute arbitrary SQL commands. This affect...
Dec 4, 2019CVE-2013-7325 is a remote code execution vulnerability in the uscan tool of devscripts package. Attackers can execute arbitrary code by tricking users...
Dec 3, 2019CVE-2012-4576 is an input validation flaw in FreeBSD's kernel that allows local users to gain elevated privileges (root access). This vulnerability af...
Dec 2, 2019CVE-2012-4428 is a buffer overflow vulnerability in the SLPIntersectStringList() function of OpenSLP that can cause denial of service. Attackers can c...
Dec 2, 2019CVE-2019-18609 is an integer overflow vulnerability in rabbitmq-c library versions before 0.10.0 that allows a malicious AMQP server to trigger heap m...
Dec 1, 2019A heap overflow vulnerability in the Marvell WiFi chip driver in Linux kernel versions 3.x.x and 4.x.x before 4.18.0 allows remote attackers to cause ...
Nov 29, 2019A heap-based buffer overflow vulnerability in Marvell WiFi chip drivers in Linux kernel versions 3.x.x and 4.x.x before 4.18.0 allows remote attackers...
Nov 29, 2019CVE-2011-2523 is a backdoor in vsftpd 2.3.4 that allows unauthenticated remote attackers to execute arbitrary commands via a shell opened on port 6200...
Nov 27, 2019This vulnerability in xscreensaver before version 5.14 causes the screensaver to crash during activation when configured in 'Blank Only Mode' with DPM...
Nov 27, 2019This vulnerability in HAProxy's HTTP/2 implementation allows attackers to inject malicious headers containing special characters (CR, LF, NUL) that ca...
Nov 27, 2019A heap-based buffer overflow vulnerability exists in the Marvell WiFi chip driver in Linux kernel versions around 2.6.32. This allows remote attackers...
Nov 27, 2019This CVE describes a SQL injection vulnerability in Zend Framework when using non-ASCII-compatible encodings with PDO_MySql in older PHP versions. Att...
Nov 26, 2019This vulnerability allows attackers to cause denial of service (DoS) in Ruby WEBrick servers using Digest authentication through a regular expression ...
Nov 26, 2019Why Monitor Debian Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,927+ known vulnerabilities affecting Debian products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Debian packages in under 60 seconds. No agents required - completely agentless scanning that works across Debian deployments.
Free vulnerability database: Access detailed information about every Debian CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Debian CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
