Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Debian_linux
(Debian)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-11-04 | CVE-2017-5333 | Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file. | Ubuntu_linux, Debian_linux, Icoutils, Leap, Opensuse, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_server_tus, Enterprise_linux_workstation | N/A | ||
2019-11-01 | CVE-2013-2255 | HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates. | Debian_linux, Compute, Keystone, Openstack | N/A | ||
2019-10-31 | CVE-2012-6123 | Chicken before 4.8.0 does not properly handle NUL bytes in certain strings, which allows an attacker to conduct "poisoned NUL byte attack." | Chicken, Debian_linux | N/A | ||
2019-11-06 | CVE-2011-4900 | TYPO3 before 4.5.4 allows Information Disclosure in the backend. | Debian_linux, Typo3 | N/A | ||
2019-10-30 | CVE-2018-5735 | The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other distributions who did similar backports for the fix for 2017-3137 may also be affected. | Debian_linux | N/A | ||
2019-11-04 | CVE-2017-5332 | The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable. | Ubuntu_linux, Debian_linux, Icoutils, Leap, Opensuse, Enterprise_linux, Enterprise_linux_desktop, Enterprise_linux_server_aus, Enterprise_linux_server_eus, Enterprise_linux_server_tus, Enterprise_linux_workstation | N/A | ||
2019-11-05 | CVE-2010-3674 | TYPO3 before 4.4.1 allows XSS in the frontend search box. | Debian_linux, Typo3 | N/A | ||
2019-10-31 | CVE-2010-2490 | Mumble: murmur-server has DoS due to malformed client query | Debian_linux, Mumble | N/A | ||
2019-10-31 | CVE-2009-5043 | burn allows file names to escape via mishandled quotation marks | Burn, Debian_linux | N/A | ||
2019-10-31 | CVE-2009-5042 | python-docutils allows insecure usage of temporary files | Debian_linux, Python\-Docutils | N/A |