Debian_linux - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Debian_linux
(Debian)

Repositories

• https://github.com/torvalds/linux
• https://github.com/ImageMagick/ImageMagick
• https://github.com/WordPress/WordPress
• https://github.com/krb5/krb5
• https://github.com/FFmpeg/FFmpeg

More/Less (142)

• https://github.com/rdesktop/rdesktop
• https://github.com/neomutt/neomutt
• https://github.com/FasterXML/jackson-databind
• https://github.com/the-tcpdump-group/tcpdump
• https://github.com/redmine/redmine
• https://github.com/dbry/WavPack
• https://github.com/rubygems/rubygems
• https://github.com/php/php-src
• https://github.com/uclouvain/openjpeg
• https://github.com/bcgit/bc-java
• https://github.com/libgd/libgd
• https://github.com/kyz/libmspack
• https://github.com/mantisbt/mantisbt
• https://github.com/gpac/gpac
• https://github.com/newsoft/libvncserver
• https://github.com/madler/zlib
• https://github.com/mruby/mruby
• https://github.com/libgit2/libgit2
• https://github.com/uriparser/uriparser
• https://github.com/mdadams/jasper
• https://github.com/LibRaw/LibRaw
• https://github.com/ceph/ceph
• https://github.com/FreeRDP/FreeRDP
• https://github.com/verdammelt/tnef
• https://github.com/openssl/openssl
• https://github.com/LibVNC/libvncserver
• https://github.com/libevent/libevent
• https://github.com/ARMmbed/mbedtls
• https://github.com/antirez/redis
• https://github.com/ntp-project/ntp
• https://github.com/inspircd/inspircd
• https://github.com/Perl/perl5
• https://github.com/OTRS/otrs
• https://github.com/Yeraze/ytnef
• https://github.com/python-pillow/Pillow
• https://github.com/perl5-dbi/DBD-mysql
• https://github.com/openbsd/src
• https://github.com/mysql/mysql-server
• https://github.com/memcached/memcached
• https://github.com/openvswitch/ovs
• https://github.com/mm2/Little-CMS
• https://github.com/SpiderLabs/ModSecurity
• https://github.com/szukw000/openjpeg
• https://github.com/libjpeg-turbo/libjpeg-turbo
• https://github.com/kamailio/kamailio
• https://github.com/vadz/libtiff
• https://github.com/curl/curl
• https://github.com/dovecot/core
• https://github.com/znc/znc
• https://github.com/horde/horde
• https://github.com/mono/mono
• https://github.com/varnish/Varnish-Cache
• https://github.com/varnishcache/varnish-cache
• https://github.com/esnet/iperf
• https://github.com/sleuthkit/sleuthkit
• https://github.com/paramiko/paramiko
• https://github.com/resiprocate/resiprocate
• https://github.com/nih-at/libzip
• https://github.com/twigphp/Twig
• https://github.com/lighttpd/lighttpd1.4
• https://github.com/vim/vim
• https://github.com/jquery/jquery-ui
• https://github.com/haproxy/haproxy
• https://github.com/smarty-php/smarty
• https://github.com/symfony/symfony
• https://github.com/dom4j/dom4j
• https://github.com/ansible/ansible
• https://github.com/mapserver/mapserver
• https://github.com/apache/httpd
• https://github.com/stoth68000/media-tree
• https://github.com/ImageMagick/ImageMagick6
• https://github.com/antlarr/audiofile
• https://github.com/shadow-maint/shadow
• https://github.com/codehaus-plexus/plexus-utils
• https://github.com/lxml/lxml
• https://github.com/GStreamer/gst-plugins-ugly
• https://github.com/erikd/libsndfile
• https://github.com/ruby/openssl
• https://github.com/python/cpython
• https://github.com/akrennmair/newsbeuter
• https://github.com/beanshell/beanshell
• https://github.com/openssh/openssh-portable
• https://github.com/git/git
• git://git.openssl.org/openssl.git
• https://github.com/weechat/weechat
• https://github.com/cyu/rack-cors
• https://github.com/Exim/exim
• https://github.com/GNOME/nautilus
• https://github.com/inverse-inc/sogo
• https://github.com/phusion/passenger
• https://github.com/codehaus-plexus/plexus-archiver
• https://github.com/karelzak/util-linux
• https://git.kernel.org/pub/scm/git/git.git
• https://github.com/apple/cups
• https://github.com/shadowsocks/shadowsocks-libev
• https://github.com/simplesamlphp/simplesamlphp
• https://github.com/GNOME/evince
• https://github.com/torproject/tor
• https://github.com/derickr/timelib
• https://github.com/libarchive/libarchive
• https://git.savannah.gnu.org/git/patch.git
• https://github.com/puppetlabs/puppet
• https://github.com/golang/go
• https://github.com/zhutougg/c3p0
• https://github.com/flori/json
• https://github.com/eldy/awstats
• https://github.com/jcupitt/libvips
• https://github.com/simplesamlphp/saml2
• https://github.com/DanBloomberg/leptonica
• https://github.com/anymail/django-anymail
• https://github.com/mpv-player/mpv
• https://github.com/TeX-Live/texlive-source
• https://github.com/vim-syntastic/syntastic
• https://github.com/gosa-project/gosa-core
• https://github.com/Cisco-Talos/clamav-devel
• https://github.com/GNOME/librsvg
• https://github.com/viewvc/viewvc
• https://github.com/moinwiki/moin-1.9
• https://github.com/splitbrain/dokuwiki
• https://github.com/heimdal/heimdal
• https://github.com/openstack/swauth
• https://github.com/bottlepy/bottle
• https://github.com/charybdis-ircd/charybdis
• https://github.com/westes/flex
• https://github.com/mjg59/pupnp-code
• https://github.com/collectd/collectd
• https://github.com/django/django
• https://git.videolan.org/git/vlc.git
• https://github.com/atheme/atheme
• https://github.com/jpirko/libndp
• https://github.com/fragglet/lhasa
• https://github.com/neovim/neovim
• https://github.com/Quagga/quagga
• https://github.com/rohe/pysaml2
• https://github.com/PHPMailer/PHPMailer
• https://github.com/Automattic/Genericons
• https://github.com/jmacd/xdelta-devel
• https://github.com/file/file
• https://github.com/ellson/graphviz
• https://github.com/axkibe/lsyncd
• https://github.com/quassel/quassel
• https://github.com/yarolig/didiwiki

#Vulnerabilities

6696

Date	Id	Summary	Products	Score	Patch	Annotated
2018-12-04	CVE-2018-19841	The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (out-of-bounds read and application crash) via a crafted WavPack Lossless Audio file, as demonstrated by wvunpack.	Ubuntu_linux, Debian_linux, Fedora, Leap, Wavpack	5.5
2022-01-25	CVE-2021-45844	Improper sanitization in the invocation of ODA File Converter from FreeCAD 0.19 allows an attacker to inject OS commands via a crafted filename.	Debian_linux, Freecad	7.8
2022-06-15	CVE-2022-21123	Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.	Debian_linux, Fedora, Sgx_dcap, Sgx_psw, Sgx_sdk, Esxi, Xen	5.5
2022-06-15	CVE-2022-21125	Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.	Debian_linux, Fedora, Sgx_dcap, Sgx_psw, Sgx_sdk, Esxi, Xen	5.5
2022-06-15	CVE-2022-21166	Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.	Debian_linux, Fedora, Sgx_dcap, Sgx_psw, Sgx_sdk, Esxi, Xen	5.5
2022-08-01	CVE-2022-2509	A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.	Debian_linux, Fedora, Gnutls, Enterprise_linux	7.5
2017-12-07	CVE-2017-3738	There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an...	Debian_linux, Node\.js, Openssl	5.9
2018-04-19	CVE-2018-2781	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0...	Ubuntu_linux, Debian_linux, Mariadb, Active_iq_unified_manager, Oncommand_insight, Oncommand_workflow_automation, Snapcenter, Mysql, Enterprise_linux_desktop, Enterprise_linux_eus, Enterprise_linux_server, Enterprise_linux_server_aus, Enterprise_linux_server_tus, Enterprise_linux_workstation, Openstack	4.9
2018-07-18	CVE-2018-3063	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.60 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability...	Ubuntu_linux, Debian_linux, Mariadb, Oncommand_insight, Oncommand_workflow_automation, Snapcenter, Mysql	4.9
2018-10-17	CVE-2018-3282	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of...	Ubuntu_linux, Debian_linux, Mariadb, Active_iq_unified_manager, Oncommand_insight, Oncommand_workflow_automation, Snapcenter, Mysql, Enterprise_linux_desktop, Enterprise_linux_server, Enterprise_linux_workstation	4.9