Debian Security Vulnerabilities (CVEs)
Track 1,389 security vulnerabilities affecting Debian products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This CVE describes a memory management vulnerability in the Linux kernel's sun8i-ce-cipher crypto driver. The flaw allows improper DMA cleanup on erro...
Jul 10, 2025A Linux kernel vulnerability in the AT91 pinctrl driver allows out-of-bounds memory access when accessing GPIO chips. This could lead to kernel crashe...
Jul 10, 2025A Linux kernel vulnerability in the BPF subsystem where nested tracepoint calls trigger a WARN_ON_ONCE warning, potentially causing kernel panic or sy...
Jul 10, 2025This CVE describes a memory leak and resource management vulnerability in the Linux kernel's WCD9335 audio codec driver. The driver fails to properly ...
Jul 9, 2025A NULL pointer dereference vulnerability in the Linux kernel's bcache subsystem allows local attackers to cause a kernel panic (denial of service) by ...
Jul 9, 2025A vulnerability in the Linux kernel's s390/pkey subsystem allows integer overflow when calculating memory allocation size for APQN target lists. This ...
Jul 9, 2025A race condition vulnerability in the Linux kernel's ATM subsystem allows concurrent device registration and deregistration to cause a kernel warning....
Jul 9, 2025This CVE describes an out-of-bounds array access vulnerability in the Linux kernel's megaraid_sas driver. When DRAM interleave is enabled, the driver ...
Jul 9, 2025A use-after-free vulnerability in the Linux kernel's AF_UNIX socket implementation allows local attackers to potentially execute arbitrary code or cra...
Jul 8, 2025A vulnerability in the Linux kernel's JFS filesystem allows attackers to trigger a shift-out-of-bounds error by providing corrupted metadata, leading ...
Jul 4, 2025A memory corruption vulnerability in the Linux kernel's VIVID test driver allows out-of-bounds writes when processing video composition data. This aff...
Jul 4, 2025A vulnerability in the Linux kernel's F2FS filesystem allows attackers to trigger a kernel panic (denial of service) by mounting a specially crafted c...
Jul 4, 2025This CVE describes a use-after-free vulnerability in the Linux kernel's RDMA/iwcm subsystem where work objects allocated for connection management IDs...
Jul 4, 2025A null pointer dereference vulnerability in the Linux kernel's framebuffer subsystem allows local attackers to cause a kernel panic (denial of service...
Jul 4, 2025A null pointer dereference vulnerability in the Linux kernel's JFS filesystem allows local attackers to trigger a kernel panic (denial of service) by ...
Jul 4, 2025This CVE describes an out-of-bounds read vulnerability in the JFS filesystem implementation in the Linux kernel. An attacker could potentially read ke...
Jul 4, 2025A double-free vulnerability in the Linux kernel's exFAT filesystem driver could allow local attackers to crash the system or potentially execute arbit...
Jul 4, 2025This CVE describes an array index out-of-bounds vulnerability in the Linux kernel's fbcon (framebuffer console) subsystem. When writing to the 'store_...
Jul 4, 2025A Linux kernel vulnerability in the i40e network driver allows integer underflow when processing specific device input, leading to MMIO write access t...
Jul 4, 2025A NULL pointer dereference vulnerability in the Linux kernel's ksmbd module allows denial-of-service attacks when clients set PreviousSessionId during...
Jul 4, 2025A vulnerability in the Linux kernel's SFQ (Stochastic Fairness Queueing) scheduler allows attackers to trigger a race condition by providing invalid p...
Jul 4, 2025A NULL pointer dereference vulnerability in the Linux kernel's dell_rbu driver allows local attackers to cause denial of service or potentially escala...
Jul 4, 2025A null pointer dereference vulnerability in the Linux kernel's TIPC (Transparent Inter-Process Communication) subsystem allows local attackers to caus...
Jul 4, 2025A NULL pointer dereference vulnerability in the Linux kernel's CALIPSO subsystem allows denial-of-service attacks when SYN cookies are enabled. The vu...
Jul 4, 2025This CVE addresses a non-idempotent function in the Linux kernel's HFSC (Hierarchical Fair Service Curve) queuing discipline that could cause kernel i...
Jul 4, 2025A NULL pointer dereference vulnerability in the Linux kernel's NTFS3 filesystem driver could cause kernel crashes or denial of service. This affects s...
Jul 3, 2025This CVE describes an out-of-bounds read vulnerability in the Linux kernel's rtw88 WiFi driver. An attacker could potentially read kernel memory beyon...
Jul 3, 2025This CVE describes a use-after-free vulnerability in the Linux kernel's RDMA (Remote Direct Memory Access) subsystem, specifically in the mlx5 driver ...
Jul 3, 2025This CVE describes a NULL pointer dereference vulnerability in the Linux kernel's F2FS filesystem driver. When processing a specially crafted filesyst...
Jul 3, 2025A race condition in the Linux kernel's BPF sockmap subsystem can cause a kernel panic when processing large network packets. This vulnerability affect...
Jul 3, 2025A vulnerability in the Linux kernel's ath9k_htc WiFi driver allows a malicious USB device to trigger a divide-by-zero error by sending a WMI_SWBA_EVEN...
Jul 3, 2025A NULL pointer dereference vulnerability exists in the Linux kernel's aspeed_lpc_enable_snoop() function due to missing NULL check after memory alloca...
Jul 3, 2025A vulnerability in the Linux kernel's Open vSwitch module allows specially crafted MPLS packets to cause a dead loop during parsing, leading to CPU so...
Jul 3, 2025A memory leak vulnerability exists in the Linux kernel's MSCC PHY driver when using one-step timestamping. This causes kernel memory exhaustion over t...
Jul 3, 2025This CVE describes a use-after-free vulnerability in the Linux kernel's CoreSight subsystem where race conditions between configuration activation/dea...
Jul 3, 2025A NULL pointer dereference vulnerability in the Linux kernel's serial driver could cause kernel panic or system crash when devm_ioremap() fails. This ...
Jul 3, 2025This CVE describes a memory leak vulnerability in the Linux kernel's netfilter subsystem when using AVX2-optimized pipapo set implementation. If the f...
Jul 3, 2025This CVE describes a NULL pointer dereference vulnerability in the Linux kernel's gve driver for Google Virtual Ethernet. When the gve_alloc_pending_p...
Jul 3, 2025A memory corruption vulnerability in the Linux kernel's UDP Generic Segmentation Offload (GSO) implementation can cause kernel panics when processing ...
Jul 3, 2025This is a use-after-free vulnerability in the Linux kernel's Bluetooth management subsystem. It allows attackers with local access to potentially cras...
Jul 3, 2025A race condition in the Linux kernel's RED (Random Early Detection) queue discipline allows an attacker to cause an underflow of a parent queue's pack...
Jul 3, 2025A race condition vulnerability in the Linux kernel's sk_is_readable() function can cause a null pointer dereference when sockets are removed from sock...
Jul 3, 2025A reference leak vulnerability in the Linux kernel's espintcp module prevents proper cleanup of network namespace references when deleting xfrm states...
Jul 3, 2025This CVE-2025-38103 is an out-of-bounds read vulnerability in the Linux kernel's USB HID driver that could allow local attackers to cause denial of se...
Jul 3, 2025A memory barrier ordering issue in the Linux kernel's dma-buf subsystem can lead to a NULL pointer dereference when memory updates are reordered. This...
Jul 3, 2025This vulnerability in Sudo allows local users to escalate privileges to root by exploiting the --chroot option to load a malicious /etc/nsswitch.conf ...
Jun 30, 2025This vulnerability in the Linux kernel's ch9200 network driver allows uninitialized memory access during MII (Media Independent Interface) operations....
Jun 28, 2025A race condition vulnerability in the Linux kernel's hugetlb (huge page) memory management allows concurrent processes to improperly share page tables...
Jun 28, 2025CVE-2015-0842 is a SQL injection vulnerability in yubiserver versions before 0.6 that allows attackers to manipulate database queries. This can lead t...
Jun 26, 2025CVE-2014-7210 is a privilege escalation vulnerability in pdns-backend-mysql where Debian maintainer scripts grant excessive database permissions to th...
Jun 26, 2025Why Monitor Debian Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 1,389+ known vulnerabilities affecting Debian products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Debian packages in under 60 seconds. No agents required - completely agentless scanning that works across Debian deployments.
Free vulnerability database: Access detailed information about every Debian CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Debian CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
