Debian_linux - Vulncode-DB

Product:
Debian_linux
(Debian)

Repositories

• https://github.com/torvalds/linux
• https://github.com/WordPress/WordPress
• https://github.com/rdesktop/rdesktop
• https://github.com/neomutt/neomutt
• https://github.com/FFmpeg/FFmpeg

More/Less (123)

• https://github.com/FasterXML/jackson-databind
• https://github.com/ImageMagick/ImageMagick
• https://github.com/redmine/redmine
• https://github.com/rubygems/rubygems
• https://github.com/dbry/WavPack
• https://github.com/krb5/krb5
• https://github.com/bcgit/bc-java
• https://github.com/kyz/libmspack
• https://github.com/libgd/libgd
• https://github.com/gpac/gpac
• https://github.com/mantisbt/mantisbt
• https://github.com/newsoft/libvncserver
• https://github.com/LibRaw/LibRaw
• https://github.com/ceph/ceph
• https://github.com/uriparser/uriparser
• https://github.com/FreeRDP/FreeRDP
• https://github.com/verdammelt/tnef
• https://github.com/inspircd/inspircd
• https://github.com/libgit2/libgit2
• https://github.com/Perl/perl5
• https://github.com/OTRS/otrs
• https://github.com/antirez/redis
• https://github.com/ARMmbed/mbedtls
• https://github.com/LibVNC/libvncserver
• https://github.com/mdadams/jasper
• https://github.com/openssl/openssl
• https://github.com/php/php-src
• https://github.com/Yeraze/ytnef
• https://github.com/python-pillow/Pillow
• https://github.com/perl5-dbi/DBD-mysql
• https://github.com/libevent/libevent
• https://github.com/ntp-project/ntp
• https://github.com/szukw000/openjpeg
• https://github.com/uclouvain/openjpeg
• https://github.com/mm2/Little-CMS
• https://github.com/memcached/memcached
• https://github.com/libjpeg-turbo/libjpeg-turbo
• https://github.com/kamailio/kamailio
• https://github.com/vadz/libtiff
• https://github.com/curl/curl
• https://github.com/dovecot/core
• https://github.com/znc/znc
• https://github.com/horde/horde
• https://github.com/mono/mono
• https://github.com/ImageMagick/ImageMagick6
• https://github.com/openssh/openssh-portable
• https://github.com/git/git
• https://github.com/openbsd/src
• git://git.openssl.org/openssl.git
• https://github.com/dom4j/dom4j
• https://github.com/python/cpython
• https://github.com/libyal/libevt
• https://github.com/weechat/weechat
• https://github.com/cyu/rack-cors
• https://github.com/mysql/mysql-server
• https://github.com/Exim/exim
• https://github.com/GNOME/nautilus
• https://github.com/varnishcache/varnish-cache
• https://github.com/inverse-inc/sogo
• https://github.com/phusion/passenger
• https://github.com/codehaus-plexus/plexus-archiver
• https://github.com/karelzak/util-linux
• https://git.kernel.org/pub/scm/git/git.git
• https://github.com/apple/cups
• https://github.com/shadowsocks/shadowsocks-libev
• https://github.com/simplesamlphp/simplesamlphp
• https://github.com/GNOME/evince
• https://github.com/torproject/tor
• https://github.com/beanshell/beanshell
• https://github.com/derickr/timelib
• https://github.com/libarchive/libarchive
• https://git.savannah.gnu.org/git/patch.git
• https://github.com/puppetlabs/puppet
• https://github.com/golang/go
• https://github.com/sleuthkit/sleuthkit
• https://github.com/zhutougg/c3p0
• https://github.com/flori/json
• https://github.com/symfony/symfony
• https://github.com/akrennmair/newsbeuter
• https://github.com/eldy/awstats
• https://github.com/jcupitt/libvips
• https://github.com/paramiko/paramiko
• https://github.com/simplesamlphp/saml2
• https://github.com/DanBloomberg/leptonica
• https://github.com/anymail/django-anymail
• https://github.com/mpv-player/mpv
• https://github.com/lxml/lxml
• https://github.com/TeX-Live/texlive-source
• https://github.com/resiprocate/resiprocate
• https://github.com/vim-syntastic/syntastic
• https://github.com/gosa-project/gosa-core
• https://github.com/Cisco-Talos/clamav-devel
• https://github.com/GNOME/librsvg
• https://github.com/apache/httpd
• https://github.com/viewvc/viewvc
• https://github.com/moinwiki/moin-1.9
• https://github.com/mapserver/mapserver
• https://github.com/splitbrain/dokuwiki
• https://github.com/heimdal/heimdal
• https://github.com/openstack/swauth
• https://github.com/bottlepy/bottle
• https://github.com/charybdis-ircd/charybdis
• https://github.com/westes/flex
• https://github.com/mjg59/pupnp-code
• https://github.com/collectd/collectd
• https://github.com/django/django
• https://git.videolan.org/git/vlc.git
• https://github.com/atheme/atheme
• https://github.com/jpirko/libndp
• https://github.com/fragglet/lhasa
• https://github.com/neovim/neovim
• https://github.com/Quagga/quagga
• https://github.com/rohe/pysaml2
• https://github.com/varnish/Varnish-Cache
• https://github.com/PHPMailer/PHPMailer
• https://github.com/Automattic/Genericons
• https://github.com/jmacd/xdelta-devel
• https://github.com/file/file
• https://github.com/ellson/graphviz
• https://github.com/axkibe/lsyncd
• https://github.com/quassel/quassel
• https://github.com/yarolig/didiwiki
• https://github.com/jquery/jquery-ui

#Vulnerabilities

4141

Date	ID	Summary	Products	Score
2020-01-23	CVE-2019-17570	An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer maintained and this issue will not be fixed.	Xml\-Rpc, Debian_linux	N/A
2020-07-29	CVE-2020-16135	libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.	Debian_linux, Libssh	N/A
2020-06-29	CVE-2020-15393	In the Linux kernel through 5.7.6, usbtest_disconnect in drivers/usb/misc/usbtest.c has a memory leak, aka CID-28ebeb8db770.	Debian_linux, Linux_kernel, Leap	N/A
2020-08-31	CVE-2020-14364	An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU in versions before 5.2.0. This issue occurs while processing USB packets from a guest when USBDevice 'setup_len' exceeds its 'data_buf[4096]' in the do_token_in, do_token_out routines. This flaw allows a guest user to crash the QEMU process, resulting in a denial of service, or the potential execution of arbitrary code with the privileges of the QEMU process on the host.	Debian_linux, Fedora, Qemu, Enterprise_linux, Openstack	N/A
2020-06-09	CVE-2020-10757	A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privileges on the system.	Debian_linux, Fedora, Linux_kernel, Leap, Enterprise_linux, Enterprise_mrg	N/A
2020-02-11	CVE-2020-1711	An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a Logical Address Block (LBA) in an iscsi_co_block_status() routine. A remote user could use this flaw to crash the QEMU process, resulting in a denial of service or potential execution of arbitrary code with privileges of the QEMU process on the host.	Debian_linux, Leap, Qemu, Enterprise_linux, Openstack	N/A
2020-04-13	CVE-2020-11736	fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink to a directory outside of the intended extraction location.	Debian_linux, File\-Roller	N/A
2019-09-11	CVE-2019-16237	Dino before 2019-09-10 does not properly check the source of an MAM message in module/xep/0313_message_archive_management.vala.	Ubuntu_linux, Debian_linux, Dino, Fedora	N/A
2019-09-11	CVE-2019-16236	Dino before 2019-09-10 does not check roster push authorization in module/roster/module.vala.	Ubuntu_linux, Debian_linux, Dino, Fedora	N/A
2019-09-11	CVE-2019-16235	Dino before 2019-09-10 does not properly check the source of a carbons message in module/xep/0280_message_carbons.vala.	Ubuntu_linux, Debian_linux, Dino, Fedora	N/A

Product: Debian_linux (Debian)

Product:
Debian_linux
(Debian)