This page lists packages that are affected by issues that are considered unimportant from a security perspective. These issues are thought to be unexploitable or uneffective in most situations (for example, browser denial-of-services).
Package | Bug | Description | Releases |
---|---|---|---|
389-admin | CVE-2015-0233 | Multiple insecure Temporary File vulnerabilities in 389 Administration ... | jessie |
389-ds-base | CVE-2016-5416 | 389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, ... | bookworm, bullseye, buster, jessie, sid, stretch |
7zip | CVE-2024-11612 | 7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ... | bookworm |
9base | CVE-2014-1935 | 9base 1:6-6 and 1:6-7 insecurely creates temporary files which results ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
abcm2ps | CVE-2018-10753 | Stack-based buffer overflow in the delayed_output function in music.c ... | jessie |
CVE-2018-10771 | Stack-based buffer overflow in the get_key function in parse.c in abcm ... | jessie | |
CVE-2019-1010069 | moinejf abcm2ps 8.13.20 is affected by: Incorrect Access Control. The ... | jessie | |
CVE-2021-32434 | abcm2ps v8.14.11 was discovered to contain an out-of-bounds read in th ... | bullseye, buster, jessie | |
CVE-2021-32436 | An out-of-bounds read in the function write_title() in subs.c of abcm2 ... | bullseye, buster, jessie | |
abiword | CVE-2017-17529 | af/util/xp/ut_go_file.cpp in AbiWord 3.0.2-2 does not validate strings ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
acpica-unix | CVE-2017-13693 | The acpi_ds_create_operands() function in drivers/acpi/acpica/dsutils. ... | jessie, stretch |
CVE-2017-13694 | The acpi_ps_complete_final_op() function in drivers/acpi/acpica/psobje ... | jessie, stretch | |
CVE-2017-13695 | The acpi_ns_evaluate() function in drivers/acpi/acpica/nseval.c in the ... | jessie, stretch | |
CVE-2024-24856 | The memory allocation function ACPI_ALLOCATE_ZEROED does not guarantee ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
activemq | CVE-2016-0782 | The administration web console in Apache ActiveMQ 5.x before 5.11.4, 5 ... | jessie |
CVE-2016-6810 | In Apache ActiveMQ 5.x before 5.14.2, an instance of a cross-site scri ... | jessie | |
CVE-2018-8006 | An instance of a cross-site scripting vulnerability was identified to ... | jessie, stretch | |
CVE-2020-1941 | In Apache ActiveMQ 5.0.0 to 5.15.11, the webconsole admin GUI is open ... | buster, jessie, stretch | |
CVE-2020-13947 | An instance of a cross-site scripting vulnerability was identified to ... | buster, jessie, stretch | |
adns | CVE-2017-9103 | An issue was discovered in adns before 1.5.2. pap_mailbox822 does not ... | buster, jessie, stretch |
CVE-2017-9104 | An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if ... | buster, jessie, stretch | |
CVE-2017-9105 | An issue was discovered in adns before 1.5.2. It corrupts a pointer wh ... | buster, jessie, stretch | |
CVE-2017-9106 | An issue was discovered in adns before 1.5.2. adns_rr_info mishandles ... | buster, jessie, stretch | |
CVE-2017-9107 | An issue was discovered in adns before 1.5.2. It overruns reading a bu ... | buster, jessie, stretch | |
CVE-2017-9108 | An issue was discovered in adns before 1.5.2. adnshost mishandles a mi ... | buster, jessie, stretch | |
CVE-2017-9109 | An issue was discovered in adns before 1.5.2. It fails to ignore appar ... | buster, jessie, stretch | |
advancecomp | CVE-2022-35014 | Advancecomp v2.3 contains a segmentation fault. | bullseye, buster, jessie, stretch |
CVE-2022-35015 | Advancecomp v2.3 was discovered to contain a heap buffer overflow via ... | bullseye, buster, jessie, stretch | |
CVE-2022-35016 | Advancecomp v2.3 was discovered to contain a heap buffer overflow. | bullseye, buster, jessie, stretch | |
CVE-2022-35017 | Advancecomp v2.3 was discovered to contain a heap buffer overflow. | bullseye, buster, jessie, stretch | |
CVE-2022-35018 | Advancecomp v2.3 was discovered to contain a segmentation fault. | bullseye, buster, jessie, stretch | |
CVE-2022-35020 | Advancecomp v2.3 was discovered to contain a heap buffer overflow via ... | bullseye, buster, jessie, stretch | |
CVE-2023-2961 | A segmentation fault flaw was found in the Advancecomp package. This m ... | bullseye, buster, jessie, stretch | |
afflib | CVE-2018-8050 | The af_get_page() function in lib/afflib_pages.cpp in AFFLIB (aka AFFL ... | jessie, stretch |
amanda | CVE-2016-10729 | An issue was discovered in Amanda 3.3.1. A user with backup privileges ... | jessie |
CVE-2016-10730 | An issue was discovered in Amanda 3.3.1. A user with backup privileges ... | jessie | |
amarok | CVE-2020-13152 | A remote user can create a specially crafted M3U file, media playlist ... | jessie, sid, stretch, trixie |
android-framework-23 | CVE-2017-0752 | A elevation of privilege vulnerability in the Android framework (windo ... | bullseye, buster, sid, stretch |
CVE-2017-0822 | An elevation of privilege vulnerability in the Android system (camera) ... | bullseye, buster, sid, stretch | |
android-platform-frameworks-base | CVE-2021-39796 | In HarmfulAppWarningActivity of HarmfulAppWarningActivity.java, there ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2022-20011 | In getArray of NotificationManagerService.java , there is a possible l ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
android-platform-frameworks-native | CVE-2015-3875 | libutils in Android before 5.1.1 LMY48T allows remote attackers to exe ... | bookworm, bullseye, buster, jessie, sid, stretch |
CVE-2015-6602 | libutils in Android through 5.1.1 LMY48M allows remote attackers to ex ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2015-6609 | libutils in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allo ... | bookworm, bullseye, buster, jessie, sid, stretch | |
android-platform-system-core | CVE-2012-5564 | android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users t ... | bullseye, buster, jessie, stretch |
CVE-2016-0807 | The get_build_id function in elf_utils.cpp in Debuggerd in Android 6.x ... | jessie | |
CVE-2016-3861 | LibUtils in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before ... | jessie | |
CVE-2017-0647 | An information disclosure vulnerability in libziparchive could enable ... | stretch | |
CVE-2017-0841 | A remote code execution vulnerability in the Android system (libutils) ... | bullseye, buster, jessie, stretch | |
android-tools | CVE-2012-5564 | android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users t ... | buster, jessie |
anjuta | CVE-2021-42522 | There is a Information Disclosure vulnerability in anjuta/plugins/docu ... | bookworm, bullseye, buster, jessie, stretch |
ansible | CVE-2017-7550 | A flaw was found in the way Ansible (2.3.x before 2.3.3, and 2.4.x bef ... | jessie, stretch |
CVE-2020-1734 | A flaw was found in the pipe lookup plugin of ansible. Arbitrary comma ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-1736 | A flaw was found in Ansible Engine when a file is moved using atomic_m ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-1737 | A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9 ... | buster, jessie, stretch | |
CVE-2020-1738 | A flaw was found in Ansible Engine when the module package or service ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-14365 | A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before ... | jessie, stretch | |
ant | CVE-2021-36373 | When reading a specially crafted TAR archive an Apache Ant build can b ... | bullseye, buster, jessie, stretch |
CVE-2021-36374 | When reading a specially crafted ZIP archive, or a derived formats, an ... | bullseye, buster, jessie, stretch | |
aolserver4 | CVE-2009-4494 | AOLserver 4.5.1 writes data to a log file without sanitizing non-print ... | jessie, stretch |
apache2 | CVE-2001-1534 | mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's u ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2003-1307 | The mod_php module for the Apache HTTP Server allows local users with ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2003-1580 | The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2003-1581 | The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-0086 | The Apache HTTP Server, when accessed through a TCP connection with a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-1743 | suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combination ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-3303 | Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows loc ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2008-0456 | CRLF injection vulnerability in the mod_negotiation module in the Apac ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
apparmor | CVE-2016-1585 | In all versions of AppArmor mount rules are accidentally widened when ... | bookworm, bullseye, buster, jessie, stretch |
apt | CVE-2011-3374 | It was found that apt-key in apt, all versions, do not correctly valid ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
apt-setup | CVE-2005-2214 | apt-setup in Debian GNU/Linux installs the apt.conf file with insecure ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
arm-trusted-firmware | CVE-2022-47630 | Trusted Firmware-A through 2.8 has an out-of-bounds read in the X.509 ... | bookworm, bullseye, buster |
CVE-2024-6285 | Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-tr ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2024-6287 | Incorrect Calculation vulnerability in Renesas arm-trusted-firmware al ... | bookworm, bullseye, buster, sid, trixie | |
arora | CVE-2011-3367 | Arora, possibly 0.11 and other versions, does not use a certain font w ... | jessie |
CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | jessie | |
asn1c | CVE-2017-12966 | The asn1f_lookup_symbol_impl function in asn1fix_retrieve.c in libasn1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2020-23910 | Stack-based buffer overflow vulnerability in asn1c through v0.9.28 via ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-23911 | An issue was discovered in asn1c through v0.9.28. A NULL pointer deref ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
audacity | CVE-2016-2540 | Audacity before 2.1.2 allows remote attackers to cause a denial of ser ... | jessie |
audiofile | CVE-2022-24599 | In autofile Audio File Library 0.3.6, there exists one memory leak vul ... | bookworm, bullseye, jessie |
audit | CVE-2015-5186 | Audit before 2.4.4 in Linux does not sanitize escape characters in fil ... | jessie |
automake1.11 | TEMP-0827346-22ED59 | install-sh: insecure use of /tmp | jessie |
avahi | CVE-2017-6519 | avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to ... | buster, jessie, stretch |
awffull | CVE-2007-0510 | Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) prese ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
awstats | CVE-2018-10245 | A Full Path Disclosure vulnerability in AWStats through 7.6 allows rem ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
axis | CVE-2007-2353 | Apache Axis 1.0 allows remote attackers to obtain sensitive informatio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-0227 | A Server Side Request Forgery (SSRF) vulnerability affected the Apache ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
banshee | CVE-2009-1175 | Cross-site scripting (XSS) vulnerability in apps/web/vs_diag.cgi in th ... | jessie, stretch |
bash | CVE-2019-18276 | An issue was discovered in disable_priv_mode in shell.c in GNU Bash th ... | buster, jessie, stretch |
TEMP-0841856-B18BAF | Privilege escalation possible to other user than root | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
bash-completion | CVE-2018-7738 | In util-linux before 2.32-rc1, bash-completion/umount allows local use ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
beaker | CVE-2013-7489 | The Beaker library through 1.11.0 for Python is affected by deserializ ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
bibutils | CVE-2018-10773 | NULL pointer deference in the addsn function in serialno.c in libbibco ... | buster, jessie, stretch |
CVE-2018-10774 | Read access violation in the isiin_keyword function in isiin.c in libb ... | buster, jessie, stretch | |
CVE-2018-10775 | NULL pointer dereference in the _fields_add function in fields.c in li ... | buster, jessie, stretch | |
binaryen | CVE-2019-15758 | An issue was discovered in Binaryen 1.38.32. Missing validation rules ... | buster |
CVE-2019-15759 | An issue was discovered in Binaryen 1.38.32. Two visitors in ir/Expres ... | buster | |
CVE-2021-45290 | A Denial of Service vulnerability exits in Binaryen 103 due to an asse ... | bullseye, buster | |
CVE-2021-45293 | A Denial of Service vulnerability exists in Binaryen 103 due to an Inv ... | bullseye, buster | |
CVE-2021-46048 | A Denial of Service vulnerability exists in Binaryen 104 due to an ass ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2021-46050 | A Stack Overflow vulnerability exists in Binaryen 103 via the printf_c ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2021-46052 | A Denial of Service vulnerability exists in Binaryen 104 due to an ass ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2021-46053 | A Denial of Service vulnerability exists in Binaryen 103. The program ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2021-46054 | A Denial of Service vulnerability exists in Binaryen 104 due to an ass ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2021-46055 | A Denial of Service vulnerability exists in Binaryen 104 due to an ass ... | bookworm, bullseye, buster, sid, trixie | |
bind9 | CVE-2016-6170 | ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x throug ... | jessie, stretch |
CVE-2018-5741 | To provide fine-grained controls over the ability to use Dynamic DNS ( ... | jessie, stretch | |
binutils | CVE-2017-13716 | The C++ symbol demangler routine in cplus-dem.c in libiberty, as distr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-9138 | An issue was discovered in cplus-dem.c in GNU libiberty, as distribute ... | buster, jessie, stretch | |
CVE-2018-9996 | An issue was discovered in cplus-dem.c in GNU libiberty, as distribute ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-12697 | A NULL pointer dereference (aka SEGV on unknown address 0x000000000000 ... | buster, jessie, stretch | |
CVE-2018-12698 | demangle_template in cplus-dem.c in GNU libiberty, as distributed in G ... | buster, jessie, stretch | |
CVE-2018-12699 | finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause ... | buster, jessie, stretch | |
CVE-2018-13033 | The Binary File Descriptor (BFD) library (aka libbfd), as distributed ... | jessie, stretch | |
CVE-2018-17358 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2018-17359 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2018-17360 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2018-17794 | An issue was discovered in cplus-dem.c in GNU libiberty, as distribute ... | buster, jessie, stretch | |
CVE-2018-17985 | An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ... | buster, jessie, stretch | |
CVE-2018-18309 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2018-18483 | The get_count function in cplus-dem.c in GNU libiberty, as distributed ... | buster, jessie, stretch | |
CVE-2018-18484 | An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ... | buster, jessie, stretch | |
CVE-2018-18605 | A heap-based buffer over-read issue was discovered in the function sec ... | buster, jessie, stretch | |
CVE-2018-18606 | An issue was discovered in the merge_strings function in merge.c in th ... | buster, jessie, stretch | |
CVE-2018-18607 | An issue was discovered in elf_link_input_bfd in elflink.c in the Bina ... | buster, jessie, stretch | |
CVE-2018-18700 | An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ... | buster, jessie, stretch | |
CVE-2018-18701 | An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ... | buster, jessie, stretch | |
CVE-2018-19931 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2018-19932 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2018-20002 | The _bfd_generic_read_minisymbols function in syms.c in the Binary Fil ... | buster, jessie, stretch | |
CVE-2018-20623 | In GNU Binutils 2.31.1, there is a use-after-free in the error functio ... | buster, jessie, stretch | |
CVE-2018-20651 | A NULL pointer dereference was discovered in elf_link_add_object_symbo ... | buster, jessie, stretch | |
CVE-2018-20671 | load_specific_debug_section in objdump.c in GNU Binutils through 2.31. ... | buster, jessie, stretch | |
CVE-2018-20673 | The demangle_template function in cplus-dem.c in GNU libiberty, as dis ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-20712 | A heap-based buffer over-read exists in the function d_expression_1 in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-9070 | An issue was discovered in GNU libiberty, as distributed in GNU Binuti ... | buster, jessie, stretch | |
CVE-2019-9071 | An issue was discovered in GNU libiberty, as distributed in GNU Binuti ... | buster, jessie, stretch | |
CVE-2019-9073 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2019-9074 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2019-9075 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2019-9077 | An issue was discovered in GNU Binutils 2.32. It is a heap-based buffe ... | buster, jessie, stretch | |
CVE-2019-12972 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2019-14250 | An issue was discovered in GNU libiberty, as distributed in GNU Binuti ... | buster, jessie, stretch | |
CVE-2019-14444 | apply_relocations in readelf.c in GNU Binutils 2.32 contains an intege ... | buster, jessie, stretch | |
CVE-2019-17450 | find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) ... | buster, jessie, stretch | |
CVE-2019-17451 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | buster, jessie, stretch | |
CVE-2019-1010180 | GNU gdb All versions is affected by: Buffer Overflow - Out of bound me ... | buster, jessie, stretch | |
CVE-2019-1010204 | GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is aff ... | bullseye, buster, jessie, stretch | |
CVE-2020-16590 | A double free vulnerability exists in the Binary File Descriptor (BFD) ... | buster, jessie, stretch | |
CVE-2020-16591 | A Denial of Service vulnerability exists in the Binary File Descriptor ... | buster, jessie, stretch | |
CVE-2020-16592 | A use after free issue exists in the Binary File Descriptor (BFD) libr ... | buster, jessie, stretch | |
CVE-2020-16593 | A Null Pointer Dereference vulnerability exists in the Binary File Des ... | buster, jessie, stretch | |
CVE-2020-16599 | A Null Pointer Dereference vulnerability exists in the Binary File Des ... | buster, jessie, stretch | |
CVE-2020-19724 | A memory consumption issue in get_data function in binutils/nm.c in GN ... | buster, jessie, stretch | |
CVE-2020-19726 | An issue was discovered in binutils libbfd.c 2.36 relating to the auxi ... | bullseye, buster, jessie, stretch | |
CVE-2020-21490 | An issue was discovered in GNU Binutils 2.34. It is a memory leak when ... | buster, jessie, stretch | |
CVE-2020-35342 | GNU Binutils before 2.34 has an uninitialized-heap vulnerability in fu ... | buster, jessie, stretch | |
CVE-2020-35448 | An issue was discovered in the Binary File Descriptor (BFD) library (a ... | bullseye, buster, jessie, stretch | |
CVE-2020-35493 | A flaw exists in binutils in bfd/pef.c. An attacker who is able to sub ... | buster, jessie, stretch | |
CVE-2020-35494 | There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is ab ... | buster, jessie, stretch | |
CVE-2020-35495 | There's a flaw in binutils /bfd/pef.c. An attacker who is able to subm ... | buster, jessie, stretch | |
CVE-2020-35496 | There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutil ... | buster, jessie, stretch | |
CVE-2020-35507 | There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutil ... | buster, jessie, stretch | |
CVE-2021-3530 | A flaw was discovered in GNU libiberty within demangle_path() in rust- ... | bullseye, buster, jessie, stretch | |
CVE-2021-3549 | An out of bounds flaw was found in GNU binutils objdump utility versio ... | bullseye, buster, jessie, stretch | |
CVE-2021-3826 | Heap/stack buffer overflow in the dlang_lname function in d-demangle.c ... | bullseye, buster, jessie, stretch | |
CVE-2021-20197 | There is an open race window when writing output in the following util ... | bullseye, buster, jessie, stretch | |
CVE-2021-20284 | A flaw was found in GNU Binutils 2.35.1, where there is a heap-based b ... | bullseye, buster, jessie, stretch | |
CVE-2021-20294 | A flaw was found in binutils readelf 2.35 program. An attacker who is ... | buster, jessie, stretch | |
CVE-2021-32256 | An issue was discovered in GNU libiberty, as distributed in GNU Binuti ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-37322 | GCC c++filt v2.26 was discovered to contain a use-after-free vulnerabi ... | jessie | |
CVE-2021-45078 | stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows ... | bullseye, buster, jessie, stretch | |
CVE-2021-46174 | Heap-based Buffer Overflow in function bfd_getl32 in Binutils objdump ... | bullseye, buster, jessie, stretch | |
CVE-2021-46195 | GCC v12.0 was discovered to contain an uncontrolled recursion via the ... | bullseye, buster, jessie, stretch | |
CVE-2022-4285 | An illegal memory access flaw was found in the binutils package. Parsi ... | bullseye, buster, jessie, stretch | |
CVE-2022-35205 | An issue was discovered in Binutils readelf 2.38.50, reachable asserti ... | bullseye, buster, jessie, stretch | |
CVE-2022-35206 | Null pointer dereference vulnerability in Binutils readelf 2.38.50 via ... | bullseye, buster, jessie, stretch | |
CVE-2022-38533 | In GNU Binutils before 2.40, there is a heap-buffer-overflow in the er ... | bullseye, buster, jessie, stretch | |
CVE-2022-44840 | Heap buffer overflow vulnerability in binutils readelf before 2.40 via ... | bullseye, buster, jessie, stretch | |
CVE-2022-45703 | Heap buffer overflow vulnerability in binutils readelf before 2.40 via ... | bullseye, buster, jessie, stretch | |
CVE-2022-47007 | An issue was discovered function stab_demangle_v3_arg in stabs.c in Bi ... | bullseye, buster, jessie, stretch | |
CVE-2022-47008 | An issue was discovered function make_tempdir, and make_tempname in bu ... | bullseye, buster, jessie, stretch | |
CVE-2022-47010 | An issue was discovered function pr_function_type in prdbg.c in Binuti ... | bullseye, buster, jessie, stretch | |
CVE-2022-47011 | An issue was discovered function parse_stab_struct_fields in stabs.c i ... | bullseye, buster, jessie, stretch | |
CVE-2022-47673 | An issue was discovered in Binutils addr2line before 2.39.3, function ... | bullseye, buster, jessie, stretch | |
CVE-2022-47695 | An issue was discovered Binutils objdump before 2.39.3 allows attacker ... | bullseye, buster, jessie, stretch | |
CVE-2022-47696 | An issue was discovered Binutils objdump before 2.39.3 allows attacker ... | bullseye, buster, jessie, stretch | |
CVE-2022-48063 | GNU Binutils before 2.40 was discovered to contain an excessive memory ... | bullseye, buster, jessie, stretch | |
CVE-2022-48064 | GNU Binutils before 2.40 was discovered to contain an excessive memory ... | bullseye, buster, jessie, stretch | |
CVE-2022-48065 | GNU Binutils before 2.40 was discovered to contain a memory leak vulne ... | bullseye, buster, jessie, stretch | |
CVE-2023-1579 | Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64. | bullseye, buster, jessie, stretch | |
CVE-2023-1972 | A potential heap based buffer overflow was found in _bfd_elf_slurp_ver ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-25584 | An out-of-bounds read flaw was found in the parse_module function in b ... | bullseye, buster, jessie, stretch | |
CVE-2023-25585 | A flaw was found in Binutils. The use of an uninitialized field in the ... | bullseye, buster, jessie, stretch | |
CVE-2023-25586 | A flaw was found in Binutils. A logic fail in the bfd_init_section_dec ... | bullseye, buster, jessie, stretch | |
CVE-2023-25588 | A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct i ... | bullseye, buster, jessie, stretch | |
CVE-2024-53589 | GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary F ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
binwalk | CVE-2021-4287 | A vulnerability, which was classified as problematic, was found in ReF ... | bullseye, buster, jessie, stretch |
bison | CVE-2020-14150 | GNU Bison before 3.5.4 allows attackers to cause a denial of service ( ... | buster, jessie, stretch |
CVE-2020-24240 | GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/ob ... | jessie | |
blender | CVE-2005-3151 | Buffer overflow in blenderplay in Blender Player 2.37a allows attacker ... | bookworm, bullseye, buster, jessie, sid, stretch |
CVE-2009-3850 | Blender 2.34, 2.35a, 2.40, and 2.49b allows remote attackers to execut ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2010-5105 | The undo save quit routine in the kernel in Blender 2.5, 2.63a, and ea ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2022-2832 | A flaw was found in Blender 3.3.0. A null pointer dereference exists i ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2022-2833 | Endless Infinite loop in Blender-thumnailing due to logical bugs. | bullseye, buster, jessie, stretch | |
bluez | CVE-2016-9797 | In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" functio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2016-9798 | In BlueZ 5.42, a use-after-free was identified in "conf_opt" function ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9799 | In BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" funct ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9800 | In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9801 | In BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" functi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9802 | In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" fun ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9803 | In BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9804 | In BlueZ 5.42, a buffer overflow was observed in "commands_dump" funct ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9917 | In BlueZ 5.42, a buffer overflow was observed in "read_n" function in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9918 | In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
bochs | CVE-2007-2894 | The emulated floppy disk controller in Bochs 2.3 allows local users of ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
botan | CVE-2024-50382 | Botan before 3.6.0, when certain LLVM versions are used, has compiler- ... | bookworm, bullseye, buster |
bpfcc | CVE-2024-2314 | If kernel headers need to be extracted, bcc will attempt to load them ... | bookworm, bullseye |
bpftrace | CVE-2024-2313 | If kernel headers need to be extracted, bpftrace will attempt to load ... | bookworm, bullseye |
brandy | CVE-2019-14662 | Brandy 1.20.1 has a stack-based buffer overflow in fileio_openout in f ... | bullseye, buster, jessie, stretch |
CVE-2019-14663 | Brandy 1.20.1 has a stack-based buffer overflow in fileio_openin in fi ... | bullseye, buster, jessie, stretch | |
CVE-2019-14665 | Brandy 1.20.1 has a heap-based buffer overflow in define_array in vari ... | bullseye, buster, jessie, stretch | |
CVE-2020-27372 | A buffer overflow vulnerability exists in Brandy Basic V Interpreter 1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
bubblewrap | CVE-2019-12439 | bubblewrap.c in Bubblewrap before 0.3.3 misuses temporary directories ... | stretch |
budgie-extras | CVE-2023-49347 | Temporary data passed between application components by Budgie Extras ... | bookworm, bullseye, buster |
busybox | CVE-2016-6301 | The recv_and_process_client_pkt function in networking/ntpd.c in busyb ... | jessie, stretch |
CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-42373 | A NULL pointer dereference in Busybox's man applet leads to denial of ... | bullseye, buster, jessie, stretch | |
CVE-2021-42374 | An out-of-bounds heap read in Busybox's unlzma applet leads to informa ... | bullseye, buster | |
CVE-2021-42375 | An incorrect handling of a special element in Busybox's ash applet lea ... | bullseye, buster, jessie, stretch | |
CVE-2021-42376 | A NULL pointer dereference in Busybox's hush applet leads to denial of ... | bullseye, buster | |
CVE-2022-30065 | A use-after-free in Busybox 1.35-x's awk applet leads to denial of ser ... | bookworm, bullseye, buster, jessie, stretch | |
bwa | CVE-2019-11371 | BWA (aka Burrow-Wheeler Aligner) 0.7.17 r1198 has a Buffer Overflow vi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
bwm-ng | CVE-2022-1341 | An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write e ... | buster, jessie, stretch |
byobu | CVE-2019-7306 | Byobu Apport hook may disclose sensitive information since it automati ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
byzanz | CVE-2015-2785 | The GIF encoder in Byzanz allows remote attackers to cause a denial of ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
bzip3 | CVE-2023-29417 | An issue was discovered in libbzip3.a in bzip3 1.2.2. There is a bz3_d ... | bookworm, sid, trixie |
c-ares | CVE-2023-31124 | c-ares is an asynchronous resolver library. When cross-compiling c-are ... | bookworm, bullseye, buster, jessie, stretch |
CVE-2023-31147 | c-ares is an asynchronous resolver library. When /dev/urandom or RtlGe ... | bookworm, bullseye, buster, jessie, stretch | |
cableswig | CVE-2009-3560 | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ... | jessie |
CVE-2009-3720 | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ... | jessie | |
cacti | CVE-2009-4112 | Cacti 0.8.7e and earlier allows remote authenticated administrators to ... | jessie, stretch |
CVE-2020-7058 | data_input.php in Cacti 1.2.8 allows remote code execution via a craft ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-48538 | In Cacti 1.2.19, there is an authentication bypass in the web login fu ... | bullseye, buster, jessie, stretch | |
cadaver | CVE-2009-3560 | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2009-3720 | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
calamares | CVE-2019-13178 | modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2. ... | buster |
cantata | CVE-2018-12559 | An issue was discovered in the cantata-mounter D-Bus service in Cantat ... | jessie, stretch |
CVE-2018-12560 | An issue was discovered in the cantata-mounter D-Bus service in Cantat ... | jessie, stretch | |
CVE-2018-12561 | An issue was discovered in the cantata-mounter D-Bus service in Cantat ... | jessie, stretch | |
CVE-2018-12562 | An issue was discovered in the cantata-mounter D-Bus service in Cantat ... | jessie, stretch | |
capnproto | CVE-2017-7892 | Sandstorm Cap'n Proto before 0.5.3.1 allows remote crashes related to ... | stretch |
catdoc | CVE-2018-20451 | The process_file function in reader.c in libdoc through 2017-10-23 has ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-20453 | The getlong function in numutils.c in libdoc through 2017-10-23 has a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-7156 | In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows divi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-7233 | In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31979 | Catdoc v0.95 was discovered to contain a global buffer overflow via th ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-41633 | Catdoc v0.95 was discovered to contain a NULL pointer dereference via ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-46345 | Catdoc v0.95 was discovered to contain a NULL pointer dereference via ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
cflow | CVE-2019-16165 | GNU cflow through 1.6 has a use-after-free in the reference function i ... | bullseye, buster, jessie, stretch |
CVE-2019-16166 | GNU cflow through 1.6 has a heap-based buffer over-read in the nexttok ... | bullseye, buster, jessie, stretch | |
CVE-2020-23856 | Use-after-Free vulnerability in cflow 1.6 in the void call(char *name, ... | bullseye, buster, jessie, stretch | |
CVE-2023-2789 | A vulnerability was found in GNU cflow 1.7. It has been rated as probl ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
chafa | CVE-2022-1507 | chafa: NULL Pointer Dereference in function gif_internal_decode_frame ... | bullseye, buster |
CVE-2022-2061 | Heap-based Buffer Overflow in GitHub repository hpjansson/chafa prior ... | bullseye, buster | |
CVE-2022-2301 | Buffer Over-read in GitHub repository hpjansson/chafa prior to 1.10.3. | bullseye, buster | |
checkinstall | CVE-2020-25031 | checkinstall 1.6.2, when used to create a package that contains a syml ... | bookworm, bullseye, jessie, sid, stretch, trixie |
chromium | CVE-2023-4863 | Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.1 ... | stretch |
chromium-browser | CVE-2008-7246 | Google Chrome 0.2.149.29 and earlier allows remote attackers to cause ... | jessie, stretch |
CVE-2009-0374 | Google Chrome 1.0.154.43 allows remote attackers to trick a user into ... | jessie, stretch | |
CVE-2009-1598 | Google Chrome executes DOM calls in response to a javascript: URI in t ... | jessie, stretch | |
CVE-2010-1384 | Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and ... | jessie, stretch | |
CVE-2010-1992 | Google Chrome 1.0.154.48 executes a mail application in situations whe ... | jessie, stretch | |
CVE-2010-4037 | Unspecified vulnerability in Google Chrome before 7.0.517.41 allows re ... | jessie, stretch | |
CVE-2010-4482 | Unspecified vulnerability in Google Chrome before 8.0.552.215 allows r ... | jessie, stretch | |
CVE-2011-2599 | Google Chrome 11 does not block use of a cross-domain image as a WebGL ... | jessie, stretch | |
CVE-2011-3640 | Untrusted search path vulnerability in Mozilla Network Security Servic ... | jessie, stretch | |
CVE-2012-5851 | html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chr ... | jessie, stretch | |
CVE-2017-5130 | An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in ... | jessie | |
CVE-2018-6406 | The function ParseVP9SuperFrameIndex in common/libwebm_util.cc in libw ... | jessie, stretch | |
CVE-2018-6548 | A use-after-free issue was discovered in libwebm through 2018-02-02. I ... | jessie, stretch | |
chrony | CVE-2020-14367 | A flaw was found in chrony versions before 3.5.1 when creating the PID ... | jessie, stretch |
cifs-utils | CVE-2014-2830 | Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
cimg | CVE-2018-7587 | An issue was discovered in CImg v.220. DoS occurs when loading a craft ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
civetweb | CVE-2020-27304 | The CivetWeb web library does not validate uploaded filepaths when run ... | bullseye |
ckeditor | CVE-2018-17960 | CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source ... | jessie, stretch |
CVE-2023-4771 | A Cross-Site scripting vulnerability has been found in CKSource CKEdit ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-43411 | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... | buster, jessie, sid, stretch, trixie | |
ckeditor3 | CVE-2018-17960 | CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2024-24816 | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ... | bookworm, bullseye, sid, stretch, trixie | |
clementine | CVE-2018-14332 | An issue was discovered in Clementine Music Player 1.3.1. Clementine.e ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-40826 | Clementine Music Player through 1.3.1 is vulnerable to a User Mode Wri ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-40827 | Clementine Music Player through 1.3.1 (when a GLib 2.0.0 DLL is used) ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
coin3 | CVE-2009-3560 | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2009-3720 | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
colord | CVE-2021-42523 | There are two Information Disclosure vulnerabilities in colord, and th ... | bullseye, buster, jessie, stretch |
colpack | CVE-2024-55566 | ColPack 1.0.10 through 9a7293a has a predictable temporary file (locat ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
configobj | CVE-2023-26112 | All versions of the package configobj are vulnerable to Regular Expres ... | bookworm, bullseye, buster, jessie, stretch |
confuse | CVE-2018-19760 | cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. | buster, jessie, stretch |
conkeror | CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | jessie, stretch |
context | CVE-2017-17513 | TeX Live through 20170524 does not validate strings before launching t ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
coreboot | CVE-2022-29264 | An issue was discovered in coreboot 4.13 through 4.16. On APs, arbitra ... | bookworm, sid, trixie |
coreutils | CVE-2017-18018 | In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does no ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
courier | CVE-2004-2313 | Inter7 SqWebMail 3.4.1 through 3.6.1 generates different error message ... | bookworm, bullseye, buster, jessie, sid, stretch |
CVE-2005-1308 | SqWebMail allows remote attackers to inject arbitrary web script or HT ... | bookworm, bullseye, buster, jessie, sid, stretch | |
cppcheck | CVE-2023-39070 | An issue in Cppcheck 2.12 dev allows a local attacker to execute arbit ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
crasm | CVE-2023-23108 | In crasm 1.8-3, invalid input validation, specific files passed to the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-23109 | In crasm 1.8-3, invalid input validation, specific files passed to the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
crossroads | CVE-2018-18654 | Crossroads 2.81 does not properly handle the /tmp directory during a b ... | jessie, stretch |
cryptsetup | CVE-2016-4484 | The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earl ... | jessie |
ctn | CVE-2008-5146 | add-accession-numbers in ctn 3.0.6 allows local users to overwrite arb ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
cups | CVE-2014-8166 | The browsing feature in the server in CUPS does not filter ANSI escape ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
cups-filters | TEMP-0000000-ACBC4C | buffer overflows in init_cups | jessie |
curl | CVE-2016-3739 | The (1) mbed_connect_step1 function in lib/vtls/mbedtls.c and (2) pola ... | jessie |
CVE-2017-7407 | The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow ... | jessie | |
CVE-2020-19909 | Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ... | buster, jessie, stretch | |
CVE-2021-22922 | When curl is instructed to download content using the metalink feature ... | bullseye, buster, jessie, stretch | |
CVE-2021-22923 | When curl is instructed to get content using the metalink feature, and ... | bullseye, buster, jessie, stretch | |
CVE-2023-28320 | A denial of service vulnerability exists in curl <v8.1.0 in the way li ... | bullseye, buster, jessie, stretch | |
CVE-2024-2379 | libcurl skips the certificate verification for a QUIC connection under ... | bookworm, bullseye, buster, jessie, stretch | |
dacs | CVE-2021-29629 | In FreeBSD 13.0-STABLE before n245765-bec0d2c9c841, 12.2-STABLE before ... | buster, jessie |
db4o | CVE-2012-6550 | Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 ... | bookworm, bullseye, buster, stretch |
CVE-2013-1808 | Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and Zero ... | bookworm, bullseye, buster, stretch | |
CVE-2014-1869 | Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.s ... | bookworm, bullseye, buster, stretch | |
dcmtk | CVE-2013-6825 | (1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/ ... | jessie |
dcraw | CVE-2013-1438 | Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in lib ... | jessie, stretch |
CVE-2018-19565 | A buffer over-read in crop_masked_pixels in dcraw through 9.28 could b ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-19566 | A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-19567 | A floating point exception in parse_tiff_ifd in dcraw through 9.28 cou ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-19568 | A floating point exception in kodak_radc_load_raw in dcraw through 9.2 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-19655 | A stack-based buffer overflow in the find_green() function of dcraw th ... | jessie, stretch | |
dhcpcd5 | CVE-2014-7913 | The print_option function in dhcp-common.c in dhcpcd through 6.9.1, as ... | jessie, stretch |
dia | CVE-2019-19451 | When GNOME Dia before 2019-11-27 is launched with a filename argument ... | bullseye, buster, jessie, stretch |
dillo | TEMP-0560108-565B70 | browser-based css info disclosure | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
dirmngr | CVE-2011-2207 | dirmngr before 2.1.0 improperly handles certain system calls, which al ... | jessie |
djvulibre | TEMP-0775193-7F000E | djvudigital: insecure use of /tmp | jessie |
dlt-daemon | CVE-2021-29507 | GENIVI Diagnostic Log and Trace (DLT) provides a log and trace interfa ... | bullseye, buster |
dmg2img | CVE-2021-3548 | A flaw was found in dmg2img through 20170502. dmg2img did not validate ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-32614 | A flaw was found in dmg2img through 20170502. fill_mishblk() does not ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
dmidecode | CVE-2023-30630 | Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This ... | bookworm, bullseye, buster, jessie, stretch |
dnsmasq | CVE-2021-45951 | Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (ca ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-45952 | Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called fr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45953 | Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45954 | Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45955 | Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45956 | Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called fro ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45957 | Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (calle ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-49441 | dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query. | bookworm, bullseye, buster, jessie, stretch | |
dnstracer | CVE-2017-9430 | Stack-based buffer overflow in dnstracer through 1.9 allows attackers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
dogtag-pki | CVE-2015-0234 | Multiple temporary file creation vulnerabilities in pki-core 10.2.0. | bullseye, sid |
dojo | CVE-2018-1000665 | Dojo Dojo Objective Harness (DOH) version prior to version 1.14 contai ... | jessie |
dokuwiki | CVE-2016-7965 | DokuWiki 2016-06-26a and older uses $_SERVER[HTTP_HOST] instead of the ... | bookworm, bullseye, buster, jessie, sid, trixie |
CVE-2024-33103 | An arbitrary file upload vulnerability in the Media Manager component ... | bookworm, bullseye, buster, jessie, sid, trixie | |
dovecot | CVE-2008-4870 | dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedor ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
dpic | CVE-2021-32421 | dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox() func ... | bullseye |
CVE-2021-32422 | dpic 2021.01.01 has a Global buffer overflow in theyylex() function in ... | bullseye | |
CVE-2021-33390 | dpic 2021.04.10 has a use-after-free in thedeletestringbox() function ... | bullseye | |
dpkg | CVE-2017-8283 | dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU pat ... | jessie |
dpkg-cross | CVE-2008-4950 | gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary ... | bookworm, bullseye, buster, sid, stretch, trixie |
dropbear | CVE-2016-7409 | The dbclient and server in Dropbear SSH before 2016.74, when compiled ... | jessie |
CVE-2020-36254 | scp.c in Dropbear before 2020.79 mishandles the filename of . or an em ... | buster, jessie, stretch | |
drupal7 | CVE-2007-6752 | Cross-site request forgery (CSRF) vulnerability in Drupal 7.12 and ear ... | jessie, stretch |
duo-unix | CVE-2020-12135 | bson before 0.8 incorrectly uses int rather than size_t for many varia ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
dwb | CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | jessie |
edk2 | CVE-2014-4859 | Integer overflow in the Drive Execution Environment (DXE) phase in the ... | buster, jessie, stretch |
CVE-2014-4860 | Multiple integer overflows in the Pre-EFI Initialization (PEI) boot ph ... | buster, jessie, stretch | |
CVE-2018-12179 | Improper configuration in system firmware for EDK II may allow unauthe ... | buster, jessie, stretch | |
CVE-2018-12182 | Insufficient memory write check in SMM service for EDK II may allow an ... | buster, jessie, stretch | |
CVE-2019-0160 | Buffer overflow in system firmware for EDK II may allow unauthenticate ... | stretch | |
CVE-2019-14553 | Improper authentication in EDK II may allow a privileged user to poten ... | buster, jessie, stretch | |
CVE-2021-28213 | Example EDK2 encrypted private key in the IpSecDxe.efi present potenti ... | buster, jessie, stretch | |
elfutils | CVE-2019-7148 | An attempted excessive memory allocation was discovered in the functio ... | jessie, stretch |
CVE-2021-33294 | In elfutils 0.183, an infinite loop was found in the function handle_s ... | bullseye, buster, jessie, stretch | |
CVE-2024-25260 | elfutils v0.189 was discovered to contain a NULL pointer dereference v ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
emacs24 | CVE-2014-9483 | Emacs 24.4 allows remote attackers to bypass security restrictions. | jessie |
epiphany-browser | CVE-2007-1084 | Mozilla Firefox 2.0.0.1 and earlier does not prompt users before savin ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-1000025 | GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 befo ... | jessie | |
CVE-2018-11396 | ephy-session.c in libephymain.so in GNOME Web (aka Epiphany) through 3 ... | jessie, stretch | |
CVE-2018-12016 | libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows rem ... | jessie, stretch | |
TEMP-0560108-565B70 | browser-based css info disclosure | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
erlang | CVE-2009-0130 | lib/crypto/c_src/crypto_drv.c in erlang does not properly check the re ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2016-1000107 | inets in Erlang possibly 22.1 and earlier follows RFC 3875 section 4.1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
etcd | CVE-2022-34038 | Etcd v3.5.4 allows remote attackers to cause a denial of service via f ... | bookworm, bullseye, buster, sid, trixie |
evolution | CVE-2007-1266 | Evolution 2.8.1 and earlier does not properly use the --status-fd argu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2011-3201 | GNOME Evolution before 3.2.3 allows user-assisted remote attackers to ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2013-4166 | The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNO ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17689 | The S/MIME specification allows a Cipher Block Chaining (CBC) malleabi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-3349 | GNOME Evolution through 3.38.3 produces a "Valid signature" message fo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
evolution-data-server | CVE-2018-12422 | addressbook/backends/ldap/e-book-backend-ldap.c in Evolution-Data-Serv ... | jessie, stretch |
exif | CVE-2021-27815 | NULL Pointer Deference in the exif command line tool, when printing ou ... | bullseye, buster, jessie, stretch |
exiftags | CVE-2024-42851 | Buffer Overflow vulnerability in open source exiftags v.1.01 allows a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
exim4 | CVE-2022-3620 | A vulnerability was found in Exim and classified as problematic. This ... | jessie, stretch |
exiv2 | CVE-2017-11683 | There is a reachable assertion in the Internal::TiffReader::visitDirec ... | jessie, stretch |
CVE-2018-14338 | samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-13113 | Exiv2 through 0.27.1 allows an attacker to cause a denial of service ( ... | jessie, stretch | |
CVE-2020-18773 | An invalid memory access in the decode function in iptc.cpp of Exiv2 0 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-18774 | A float point exception in the printLong function in tags_int.cpp of E ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-18898 | A stack exhaustion issue in the printIFDStructure function of Exiv2 0. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
expat | CVE-2013-0340 | expat 2.1.0 and earlier does not properly handle entities expansion un ... | bullseye, buster, jessie, stretch |
CVE-2023-52426 | libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DT ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-28757 | libexpat through 2.6.1 allows an XML Entity Expansion attack when ther ... | bookworm, bullseye, buster, jessie, stretch | |
eyed3 | CVE-2014-1934 | tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for Pyth ... | jessie |
faac | CVE-2018-19886 | An invalid memory address dereference was discovered in the huffcode f ... | buster, jessie, stretch |
CVE-2018-19887 | An invalid memory address dereference was discovered in the huffcode f ... | buster, jessie, stretch | |
CVE-2018-19888 | An invalid memory address dereference was discovered in the huffcode f ... | buster, jessie, stretch | |
CVE-2018-19889 | An invalid memory address dereference was discovered in the huffcode f ... | buster, jessie, stretch | |
CVE-2018-19890 | An invalid memory address dereference was discovered in the huffcode f ... | buster, jessie, stretch | |
CVE-2018-19891 | An invalid memory address dereference was discovered in the huffcode f ... | buster, jessie, stretch | |
faust | CVE-2021-32275 | An issue was discovered in faust through v2.30.5. A NULL pointer deref ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-37770 | faust commit ee39a19 was discovered to contain a stack overflow via th ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
fdkaac | CVE-2022-36148 | fdkaac commit 53fe239 was discovered to contain a floating point excep ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2022-37781 | fdkaac v1.0.3 was discovered to contain a heap buffer overflow via __i ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-34823 | fdkaac before 1.0.5 was discovered to contain a stack overflow in read ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-34824 | fdkaac before 1.0.5 was discovered to contain a heap buffer overflow i ... | bookworm, bullseye, buster, sid, stretch, trixie | |
fetchmail | CVE-2021-36386 | report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits i ... | buster, jessie, stretch |
ffmpeg | CVE-2020-20450 | FFmpeg 4.2 is affected by null pointer dereference passed as argument ... | buster |
CVE-2020-22038 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ... | bullseye, buster | |
CVE-2020-22039 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ... | buster, stretch | |
CVE-2020-22042 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ... | buster, stretch | |
CVE-2020-22043 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ... | buster, stretch | |
fig2dev | CVE-2018-16140 | A buffer underwrite vulnerability in get_line() (read.c) in fig2dev 3. ... | stretch |
CVE-2019-19746 | make_arrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fau ... | stretch | |
CVE-2020-21678 | A global buffer overflow in the genmp_writefontmacro_latex component i ... | buster, stretch | |
CVE-2020-21680 | A stack-based buffer overflow in the put_arrow() component in genpict2 ... | buster, stretch | |
CVE-2020-21681 | A global buffer overflow in the set_color component in genge.c of fig2 ... | buster, stretch | |
CVE-2020-21682 | A global buffer overflow in the set_fill component in genge.c of fig2d ... | buster, stretch | |
CVE-2020-21683 | A global buffer overflow in the shade_or_tint_name_after_declare_color ... | buster, stretch | |
CVE-2020-21684 | A global buffer overflow in the put_font in genpict2e.c of fig2dev 3.2 ... | buster, stretch | |
firefox | CVE-2004-1639 | Mozilla Firefox before 0.10, Mozilla 5.0, and Gecko 20040913 allows re ... | sid |
CVE-2005-2395 | Mozilla Firefox 1.0.4 and 1.0.5 does not choose the challenge with the ... | sid | |
CVE-2005-4685 | Firefox and Mozilla can associate a cookie with multiple domains when ... | sid | |
CVE-2019-12383 | Tor Browser before 8.0.1 has an information exposure vulnerability. It ... | sid | |
CVE-2023-5217 | Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior ... | sid | |
firefox-esr | CVE-2019-12383 | Tor Browser before 8.0.1 has an information exposure vulnerability. It ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-5217 | Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior ... | bookworm, jessie, sid, stretch, trixie | |
firehol | CVE-2008-4953 | firehol in firehol 1.256 allows local users to overwrite arbitrary fil ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
flashrom | TEMP-0000000-C3CEDB | fscanf format string security bug in flashrom layout code | jessie |
flask-caching | CVE-2021-33026 | The Flask-Caching extension through 1.10.1 for Flask relies on Pickle ... | bookworm, bullseye, sid, trixie |
flex | CVE-2019-6293 | An issue was discovered in the function mark_beginning_as_normal in nf ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
flintqs | CVE-2023-29465 | SageMath FlintQS 1.0 relies on pathnames under TMPDIR (typically world ... | bookworm, bullseye, buster, sid, stretch, trixie |
flvmeta | CVE-2023-36243 | FLVMeta v1.2.1 was discovered to contain a buffer overflow via the xml ... | bookworm, bullseye, buster, jessie, stretch |
fontforge | CVE-2017-11570 | FontForge 20161012 is vulnerable to a buffer over-read in umodenc (par ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-11573 | FontForge 20161012 is vulnerable to a buffer over-read in ValidatePost ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17521 | uiutil.c in FontForge through 20170731 does not validate strings befor ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
foomatic-filters | CVE-2011-2923 | foomatic-rip filter, all versions, used insecurely creates temporary f ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
TEMP-0000000-ACBC4C | buffer overflows in init_cups | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
freeglut | CVE-2024-24258 | freeglut 3.4.0 was discovered to contain a memory leak via the menuEnt ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2024-24259 | freeglut through 3.4.0 was discovered to contain a memory leak via the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
freeipa | CVE-2015-5179 | FreeIPA might display user data improperly via vectors involving non-p ... | bookworm, buster, sid |
CVE-2017-12169 | It was found that FreeIPA 4.2.0 and later could disclose password hash ... | bookworm, buster, sid | |
CVE-2019-14826 | A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies ... | bookworm, buster, sid | |
CVE-2023-5455 | A Cross-site request forgery vulnerability exists in ipa/session/login ... | bookworm, buster | |
CVE-2024-2698 | A vulnerability was found in FreeIPA in how the initial implementation ... | bookworm, buster | |
CVE-2024-3183 | A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ ... | bookworm, buster | |
freeradius | CVE-2007-0080 | Buffer overflow in the SMB_Connect_Server function in FreeRadius 1.1.3 ... | jessie |
CVE-2019-10143 | It was discovered freeradius up to and including version 3.0.19 does n ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
freerdp | CVE-2014-0791 | Integer overflow in the license_read_scope_list function in libfreerdp ... | jessie |
freetype | CVE-2022-31782 | ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based bu ... | bullseye, buster, jessie, stretch |
freevo | CVE-2008-4955 | freevo.real in freevo 1.8.1 allows local users to overwrite arbitrary ... | jessie |
frr | CVE-2020-12831 | An issue was discovered in FRRouting FRR (aka Free Range Routing) thro ... | bookworm, bullseye, buster, sid, trixie |
ganglia-web | CVE-2015-6816 | ganglia-web before 3.7.1 allows remote attackers to bypass authenticat ... | buster, jessie, stretch |
CVE-2019-20378 | ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via th ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20379 | ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via th ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
gcc-10 | CVE-2023-4039 | **DISPUTED**A failure in the -fstack-protector feature in GCC-based to ... | bullseye, bookworm |
gcc-12 | CVE-2022-27943 | libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in ... | bookworm, sid, trixie |
CVE-2023-4039 | **DISPUTED**A failure in the -fstack-protector feature in GCC-based to ... | bookworm, buster, buster, bullseye | |
gcc-mingw-w64 | CVE-2016-4973 | Binaries compiled against targets that use the libssp library in GCC f ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gdal | CVE-2019-17546 | tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0. ... | buster, stretch |
gdb | CVE-2014-8501 | The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutil ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2014-9939 | ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow wh ... | jessie | |
CVE-2017-9778 | GNU Debugger (GDB) 8.0 and earlier fails to detect a negative length f ... | buster, jessie, stretch | |
CVE-2023-39128 | GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack o ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-39129 | GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap us ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-39130 | GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap bu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
gdk-pixbuf | CVE-2017-2870 | An exploitable integer overflow vulnerability exists in the tiff_image ... | stretch |
CVE-2017-6311 | gdk-pixbuf-thumbnailer.c in gdk-pixbuf allows context-dependent attack ... | stretch | |
gdnsd | CVE-2019-13952 | The set_ipv6() function in zscan_rfc1035.rl in gdnsd before 2.4.3 and ... | jessie, stretch |
gedit | CVE-2017-14108 | libgedit.a in GNOME gedit through 3.22.1 allows remote attackers to ca ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
geomview | CVE-2017-17530 | common/help.c in Geomview 1.9.5 does not validate strings before launc ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gerbv | CVE-2021-40400 | An out-of-bounds read vulnerability exists in the RS-274X aperture mac ... | bullseye, buster, jessie, stretch |
CVE-2021-40402 | An out-of-bounds read vulnerability exists in the RS-274X aperture mac ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-4508 | A user able to control file input to Gerbv, between versions 2.4.0 and ... | bookworm, bullseye, jessie, stretch | |
gettext | CVE-2018-18751 | An issue was discovered in GNU gettext 0.19.8. There is a double free ... | jessie, stretch |
ghostscript | CVE-2022-1350 | A vulnerability classified as problematic was found in GhostPCL 9.55.0 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-38560 | An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_ ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-29511 | Artifex Ghostscript before 10.03.1, when Tesseract is used for OCR, ha ... | bookworm, bullseye, buster, jessie, stretch | |
ghostwriter | CVE-2022-39209 | cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and renderin ... | bullseye, buster |
giac | CVE-2017-17526 | Input.cc in Bernard Parisse Giac 1.2.3.57 does not validate strings be ... | bookworm, bullseye, buster, sid, trixie |
gif2apng | CVE-2021-45907 | An issue was discovered in gif2apng 1.9. There is a stack-based buffer ... | bullseye, buster, jessie, stretch |
CVE-2021-45908 | An issue was discovered in gif2apng 1.9. There is a stack-based buffer ... | bullseye, buster, jessie, stretch | |
gif2png | CVE-2019-17371 | gif2png 2.5.13 has a memory leak in the writefile function. | jessie, stretch |
giflib | CVE-2020-23922 | An issue was discovered in giflib through 5.1.4. DumpScreen2RGB in gif ... | bookworm, bullseye, buster, jessie, stretch |
CVE-2021-40633 | A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5 ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2022-28506 | There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RG ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-39742 | giflib v5.2.1 was discovered to contain a segmentation fault via the c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-48161 | Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-45993 | Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0820594-BC6826 | out of bound read and write issues | jessie | |
gifsicle | CVE-2017-18120 | A double-free bug in the read_gif function in gifread.c in gifsicle 1. ... | jessie, stretch |
CVE-2020-19752 | The find_color_or_error function in gifsicle 1.92 contains a NULL poin ... | bullseye, buster, jessie, stretch | |
CVE-2023-36193 | Gifsicle v1.9.3 was discovered to contain a heap buffer overflow via t ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-44821 | Gifsicle through 1.94, if deployed in a way that allows untrusted inpu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-46009 | gifsicle-1.94 was found to have a floating point exception (FPE) vulne ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
giftrans | CVE-2021-45972 | The giftrans function in giftrans 1.12.2 contains a stack-based buffer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gimp | CVE-2007-3126 | Gimp before 2.8.22 allows context-dependent attackers to cause a denia ... | jessie, stretch |
CVE-2012-4245 | The scriptfu network server in GIMP 2.6 does not require authenticatio ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2018-12713 | GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary f ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2022-30067 | GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a ... | bullseye, jessie | |
CVE-2022-32990 | An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allow ... | bullseye, buster, jessie, stretch | |
git | CVE-2017-15298 | Git through 2.14.2 mishandles layers of tree objects, which allows rem ... | jessie, stretch |
CVE-2018-1000021 | GIT version 2.15.1 and earlier contains a Input Validation Error vulne ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1350 | A remote code execution vulnerability exists when Git for Visual Studi ... | jessie, stretch | |
CVE-2019-1351 | A tampering vulnerability exists when Git for Visual Studio improperly ... | jessie, stretch | |
CVE-2019-1354 | A remote code execution vulnerability exists when Git for Visual Studi ... | jessie, stretch | |
CVE-2022-24975 | The --mirror documentation for Git through 2.35.1 does not mention the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
git-repair | TEMP-0807341-84E914 | uses non-random tempdir /tmp/tmprepo.0/.git/ | jessie |
gjots2 | CVE-2017-17535 | lib/gui.py in Bob Hepple gjots2 2.4.1 does not validate strings before ... | buster, jessie, stretch |
glance | CVE-2013-4354 | The API before 2.1 in OpenStack Image Registry and Delivery Service (G ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2015-8234 | The image signature algorithm in OpenStack Glance 11.0.0 allows remote ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-4383 | The glance-manage db in all versions of HPE Helion Openstack Glance al ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-8611 | A vulnerability was found in Openstack Glance. No limits are enforced ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
glib2.0 | CVE-2012-0039 | GLib 2.31.8 and earlier, when the g_str_hash function is used, compute ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2020-35457 | GNOME GLib before 2.65.3 has an integer overflow, that might lead to a ... | buster, jessie, stretch | |
glibc | CVE-2010-4756 | The glob implementation in the GNU C Library (aka glibc or libc6) allo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2015-8985 | The pop_fail_stack function in the GNU C Library (aka glibc or libc6) ... | jessie, stretch | |
CVE-2018-20796 | In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-6488 | The string component in the GNU C Library (aka glibc or libc6) through ... | jessie, stretch | |
CVE-2019-7309 | In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp fun ... | jessie, stretch | |
CVE-2019-9192 | In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1010022 | GNU Libc current is affected by: Mitigation bypass. The impact is: Att ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1010023 | GNU Libc current is affected by: Re-mapping current loaded library wit ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1010024 | GNU Libc current is affected by: Mitigation bypass. The impact is: Att ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1010025 | GNU Libc current is affected by: Mitigation bypass. The impact is: Att ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
global | CVE-2017-17531 | gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launchi ... | jessie |
glpi | CVE-2010-1618 | Cross-site scripting (XSS) vulnerability in the phpCAS client library ... | jessie |
CVE-2010-2795 | phpCAS before 1.1.2 allows remote authenticated users to hijack sessio ... | jessie | |
CVE-2010-2796 | Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when ... | jessie | |
CVE-2010-3690 | Multiple cross-site scripting (XSS) vulnerabilities in phpCAS before 1 ... | jessie | |
CVE-2010-3691 | PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is ena ... | jessie | |
CVE-2010-3692 | Directory traversal vulnerability in the callback function in client.p ... | jessie | |
CVE-2014-5032 | GLPI before 0.84.7 does not properly restrict access to cost informati ... | jessie | |
CVE-2014-8360 | Directory traversal vulnerability in inc/autoload.function.php in GLPI ... | jessie | |
CVE-2014-9258 | SQL injection vulnerability in ajax/getDropdownValue.php in GLPI befor ... | jessie | |
CVE-2015-7684 | Unrestricted file upload in GLPI before 0.85.3 allows remote authentic ... | jessie | |
CVE-2015-7685 | GLPI before 0.85.3 allows remote authenticated users to create super-a ... | jessie | |
CVE-2016-7507 | Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows ... | jessie | |
CVE-2016-7508 | Multiple SQL injection vulnerabilities in GLPI 0.90.4 allow an authent ... | jessie | |
CVE-2016-7509 | Cross-site scripting (XSS) vulnerability in GLPI 0.90.4 allows remote ... | jessie | |
CVE-2017-11183 | front/backup.php in GLPI before 9.1.5 allows remote authenticated admi ... | jessie | |
CVE-2017-11184 | SQL injection exists in front/devicesoundcard.php in GLPI before 9.1.5 ... | jessie | |
CVE-2017-11329 | GLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.ph ... | jessie | |
CVE-2017-11474 | GLPI before 9.1.5.1 has SQL Injection in the $crit variable in inc/com ... | jessie | |
CVE-2017-11475 | GLPI before 9.1.5.1 has SQL Injection in the condition rule field, exp ... | jessie | |
CVE-2018-7562 | A remote code execution issue was discovered in GLPI through 9.2.1. Th ... | jessie | |
CVE-2018-7563 | An issue was discovered in GLPI through 9.2.1. The application is affe ... | jessie | |
CVE-2018-13049 | The constructSQL function in inc/search.class.php in GLPI 9.2.x throug ... | jessie | |
CVE-2019-10231 | Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerab ... | jessie | |
CVE-2019-10232 | Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter ... | jessie | |
CVE-2019-10233 | Teclib GLPI before 9.4.1.1 is affected by a timing attack associated w ... | jessie | |
CVE-2019-13239 | inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture. | jessie | |
CVE-2019-13240 | An issue was discovered in GLPI before 9.4.1. After a successful passw ... | jessie | |
CVE-2019-14666 | GLPI through 9.4.3 is prone to account takeover by abusing the ajax/au ... | jessie | |
CVE-2019-1010307 | GLPI GLPI Product 9.3.1 is affected by: Cross Site Scripting (XSS). Th ... | jessie | |
CVE-2019-1010310 | GLPI GLPI Product 9.3.1 is affected by: Frame and Form tags Injection ... | jessie | |
CVE-2020-5248 | GLPI before before version 9.4.6 has a vulnerability involving a defau ... | jessie | |
CVE-2020-11031 | In GLPI before version 9.5.0, the encryption algorithm used is insecur ... | jessie | |
CVE-2020-11032 | In GLPI before version 9.4.6, there is a SQL injection vulnerability f ... | jessie | |
CVE-2020-11033 | In GLPI from version 9.1 and before version 9.4.6, any API user with R ... | jessie | |
CVE-2020-11034 | In GLPI before version 9.4.6, there is a vulnerability that allows byp ... | jessie | |
CVE-2020-11035 | In GLPI after version 0.83.3 and before version 9.4.6, the CSRF tokens ... | jessie | |
CVE-2020-11036 | In GLPI before version 9.4.6 there are multiple related stored XSS vul ... | jessie | |
CVE-2020-11060 | In GLPI before 9.4.6, an attacker can execute system commands by abusi ... | jessie | |
CVE-2020-11062 | In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in ... | jessie | |
CVE-2020-15108 | In glpi before 9.5.1, there is a SQL injection for all usages of "Clon ... | jessie | |
CVE-2020-15175 | In GLPI before version 9.5.2, the `pluginimage.send.php` endpoint allo ... | jessie | |
CVE-2020-15176 | In GLPI before version 9.5.2, when supplying a back tick in input that ... | jessie | |
CVE-2020-15177 | In GLPI before version 9.5.2, the `install/install.php` endpoint insec ... | jessie | |
CVE-2020-15217 | In GLPI before version 9.5.2, there is a leakage of user information t ... | jessie | |
CVE-2020-15226 | In GLPI before version 9.5.2, there is a SQL Injection in the API's se ... | jessie | |
CVE-2020-26212 | GLPI stands for Gestionnaire Libre de Parc Informatique and it is a Fr ... | jessie | |
CVE-2020-27662 | In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object ... | jessie | |
CVE-2020-27663 | In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct ... | jessie | |
CVE-2021-3486 | GLPi 9.5.4 does not sanitize the metadata. This way its possible to in ... | jessie | |
CVE-2021-21255 | GLPI is an open-source asset and IT management software package that p ... | jessie | |
CVE-2021-21258 | GLPI is an open-source asset and IT management software package that p ... | jessie | |
CVE-2021-21312 | GLPI is open source software which stands for Gestionnaire Libre de Pa ... | jessie | |
CVE-2021-21313 | GLPI is open source software which stands for Gestionnaire Libre de Pa ... | jessie | |
CVE-2021-21314 | GLPI is open source software which stands for Gestionnaire Libre de Pa ... | jessie | |
CVE-2021-21324 | GLPI is an open-source asset and IT management software package that p ... | jessie | |
CVE-2021-21325 | GLPI is an open-source asset and IT management software package that p ... | jessie | |
CVE-2021-21326 | GLPI is an open-source asset and IT management software package that p ... | jessie | |
CVE-2021-21327 | GLPI is an open-source asset and IT management software package that p ... | jessie | |
CVE-2021-39209 | GLPI is a free Asset and IT management software package. In versions p ... | jessie | |
CVE-2021-39210 | GLPI is a free Asset and IT management software package. In versions p ... | jessie | |
CVE-2021-39211 | GLPI is a free Asset and IT management software package. Starting in v ... | jessie | |
CVE-2021-39213 | GLPI is a free Asset and IT management software package. Starting in v ... | jessie | |
CVE-2021-43779 | GLPI is an open source IT Asset Management, issue tracking system and ... | jessie | |
CVE-2022-21719 | GLPI is a free asset and IT management software package. All GLPI vers ... | jessie | |
CVE-2022-21720 | GLPI is a free asset and IT management software package. Prior to vers ... | jessie | |
CVE-2022-24867 | GLPI is a Free Asset and IT Management Software package, that provides ... | jessie | |
CVE-2022-24868 | GLPI is a Free Asset and IT Management Software package, that provides ... | jessie | |
CVE-2022-24869 | GLPI is a Free Asset and IT Management Software package, that provides ... | jessie | |
CVE-2022-24876 | GLPI is a Free Asset and IT Management Software package, that provides ... | jessie | |
CVE-2022-29250 | GLPI is a Free Asset and IT Management Software package, that provides ... | jessie | |
CVE-2022-31056 | GLPI is a Free Asset and IT Management Software package, Data center m ... | jessie | |
CVE-2022-31061 | GLPI is a Free Asset and IT Management Software package, Data center m ... | jessie | |
CVE-2022-31068 | GLPI is a Free Asset and IT Management Software package, Data center m ... | jessie | |
CVE-2022-31082 | GLPI is a Free Asset and IT Management Software package, Data center m ... | jessie | |
CVE-2022-31143 | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... | jessie | |
CVE-2022-31187 | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... | jessie | |
CVE-2022-35945 | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... | jessie | |
CVE-2022-35946 | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... | jessie | |
CVE-2022-35947 | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... | jessie | |
CVE-2022-36112 | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... | jessie | |
CVE-2022-39234 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39262 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39276 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39277 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39323 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39370 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39371 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39372 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39373 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39375 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-39376 | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... | jessie | |
CVE-2022-41941 | GLPI is a Free Asset and IT Management Software package. Versions 10.0 ... | jessie | |
CVE-2023-22500 | GLPI is a Free Asset and IT Management Software package. Versions 10.0 ... | jessie | |
CVE-2023-22722 | GLPI is a Free Asset and IT Management Software package. Versions 9.4. ... | jessie | |
CVE-2023-22724 | GLPI is a Free Asset and IT Management Software package. Versions prio ... | jessie | |
CVE-2023-22725 | GLPI is a Free Asset and IT Management Software package. Versions 0.6. ... | jessie | |
CVE-2023-23610 | GLPI is a Free Asset and IT Management Software package. Versions prio ... | jessie | |
CVE-2023-28632 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28633 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28634 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28636 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28639 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28838 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28849 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-28852 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-34106 | GLPI is a free asset and IT management software package. Versions of t ... | jessie | |
CVE-2023-34107 | GLPI is a free asset and IT management software package. Versions of t ... | jessie | |
CVE-2023-34244 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-35924 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-35939 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-35940 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-36808 | GLPI is a free asset and IT management software package. Starting in v ... | jessie | |
CVE-2023-37278 | GLPI is a Free Asset and IT Management Software package, Data center m ... | jessie | |
CVE-2023-41320 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-41321 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-41322 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-41323 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-41324 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-41326 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-41888 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-42461 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
CVE-2023-42462 | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... | jessie | |
gnome-font-viewer | CVE-2019-19308 | In text_to_glyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, ... | buster, jessie, stretch |
gnome-keyring | CVE-2018-19358 | GNOME Keyring through 3.28.2 allows local users to retrieve login cred ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-20781 | In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's pas ... | jessie, stretch | |
gnome-orca | CVE-2013-4245 | Orca has arbitrary code execution due to insecure Python module load | jessie, stretch |
gnome-remote-desktop | CVE-2022-1736 | bullseye, buster | |
gnome-settings-daemon | CVE-2024-38394 | Mismatches in interpreting USB authorization policy between GNOME Sett ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gnome-shell | CVE-2012-4427 | The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force ... | buster, jessie, stretch |
gnome-sushi | CVE-2019-19308 | In text_to_glyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, ... | buster, jessie, stretch |
gnuchess | CVE-2015-8972 | Stack-based buffer overflow in the ValidateMove function in frontend/m ... | jessie |
CVE-2019-15767 | In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmd_ ... | buster, jessie, stretch | |
gnumail | CVE-2007-1269 | GNUMail 1.1.2 and earlier does not properly use the --status-fd argume ... | bookworm, bullseye, buster, sid, stretch, trixie |
gnupg | CVE-2018-6829 | cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt mess ... | jessie |
CVE-2022-3219 | GnuPG can be made to spin on a relatively small input by (for example) ... | jessie | |
CVE-2022-34903 | GnuPG through 2.3.6, in unusual situations where an attacker possesses ... | jessie | |
gnupg1 | CVE-2018-6829 | cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt mess ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2019-14855 | A flaw was found in the way certificate signatures could be forged usi ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2022-3219 | GnuPG can be made to spin on a relatively small input by (for example) ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2022-34903 | GnuPG through 2.3.6, in unusual situations where an attacker possesses ... | bookworm, bullseye, buster, sid, stretch, trixie | |
gnupg2 | CVE-2022-3219 | GnuPG can be made to spin on a relatively small input by (for example) ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gnuplot | CVE-2018-19490 | An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue all ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2018-19491 | An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allow ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2018-19492 | An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allo ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2020-25412 | com_line() in command.c in gnuplot 5.4 leads to an out-of-bounds-write ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-25559 | gnuplot 5.5 is affected by double free when executing print_set_output ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-25969 | gnuplot v5.5 was discovered to contain a buffer overflow via the funct ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-44917 | A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d ... | buster, jessie, stretch | |
gnutls28 | CVE-2011-3389 | The SSL protocol, as used in certain configurations in Microsoft Windo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
TEMP-0000000-1BAE4D | GNUTLS-SA-2016-2: certificate verification issue | jessie | |
gocr | CVE-2021-33479 | A stack-based buffer overflow vulnerability was discovered in gocr thr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-33480 | An use-after-free vulnerability was discovered in gocr through 0.53-20 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33481 | A stack-based buffer overflow vulnerability was discovered in gocr thr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
golang | CVE-2016-5386 | The net/http package in Go through 1.6 does not attempt to address RFC ... | jessie |
CVE-2020-29509 | The encoding/xml package in Go (all versions) does not correctly prese ... | jessie | |
CVE-2020-29510 | The encoding/xml package in Go versions 1.15 and earlier does not corr ... | jessie | |
CVE-2020-29511 | The encoding/xml package in Go (all versions) does not correctly prese ... | jessie | |
golang-1.11 | CVE-2020-29509 | The encoding/xml package in Go (all versions) does not correctly prese ... | buster |
CVE-2020-29510 | The encoding/xml package in Go versions 1.15 and earlier does not corr ... | buster | |
CVE-2020-29511 | The encoding/xml package in Go (all versions) does not correctly prese ... | buster | |
CVE-2022-41716 | Due to unsanitized NUL values, attackers may be able to maliciously se ... | buster | |
CVE-2022-41720 | On Windows, restricted files can be accessed via os.DirFS and http.Dir ... | buster | |
CVE-2022-41722 | A path traversal vulnerability exists in filepath.Clean on Windows. On ... | buster | |
CVE-2023-45283 | The filepath package does not recognize paths with a \??\ prefix as sp ... | buster | |
CVE-2023-45284 | On Windows, The IsLocal function does not correctly detect reserved de ... | buster | |
golang-1.15 | CVE-2020-29509 | The encoding/xml package in Go (all versions) does not correctly prese ... | bullseye |
CVE-2020-29510 | The encoding/xml package in Go versions 1.15 and earlier does not corr ... | bullseye | |
CVE-2020-29511 | The encoding/xml package in Go (all versions) does not correctly prese ... | bullseye | |
CVE-2022-41716 | Due to unsanitized NUL values, attackers may be able to maliciously se ... | bullseye | |
CVE-2022-41720 | On Windows, restricted files can be accessed via os.DirFS and http.Dir ... | bullseye | |
CVE-2022-41722 | A path traversal vulnerability exists in filepath.Clean on Windows. On ... | bullseye | |
CVE-2023-45283 | The filepath package does not recognize paths with a \??\ prefix as sp ... | bullseye | |
CVE-2023-45284 | On Windows, The IsLocal function does not correctly detect reserved de ... | bullseye | |
golang-1.19 | CVE-2023-45283 | The filepath package does not recognize paths with a \??\ prefix as sp ... | bookworm |
CVE-2023-45284 | On Windows, The IsLocal function does not correctly detect reserved de ... | bookworm | |
golang-1.7 | CVE-2020-29509 | The encoding/xml package in Go (all versions) does not correctly prese ... | stretch |
CVE-2020-29510 | The encoding/xml package in Go versions 1.15 and earlier does not corr ... | stretch | |
CVE-2020-29511 | The encoding/xml package in Go (all versions) does not correctly prese ... | stretch | |
CVE-2022-41722 | A path traversal vulnerability exists in filepath.Clean on Windows. On ... | stretch | |
CVE-2023-45283 | The filepath package does not recognize paths with a \??\ prefix as sp ... | stretch | |
CVE-2023-45284 | On Windows, The IsLocal function does not correctly detect reserved de ... | stretch | |
golang-1.8 | CVE-2020-29509 | The encoding/xml package in Go (all versions) does not correctly prese ... | stretch |
CVE-2020-29510 | The encoding/xml package in Go versions 1.15 and earlier does not corr ... | stretch | |
CVE-2020-29511 | The encoding/xml package in Go (all versions) does not correctly prese ... | stretch | |
golang-github-blevesearch-bleve | CVE-2022-31022 | Bleve is a text indexing library for go. Bleve includes HTTP utilities ... | bullseye, buster |
golang-github-containers-buildah | CVE-2022-4122 | A vulnerability was found in buildah. Incorrect following of symlinks ... | bookworm, bullseye, sid, trixie |
CVE-2022-4123 | A flaw was found in Buildah. The local path and the lowest subdirector ... | bookworm, bullseye, sid, trixie | |
golang-github-lucas-clemente-quic-go | CVE-2022-30591 | quic-go through 0.27.0 allows remote attackers to cause a denial of se ... | bookworm, bullseye, sid, trixie |
golang-go.crypto | CVE-2022-30636 | httpTokenCacheKey uses path.Base to extract the expected HTTP-01 token ... | bullseye, buster, jessie, stretch |
google-perftools | CVE-2018-13420 | Google gperftools 2.7 has a memory leak in malloc_extension.cc, relate ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gpac | CVE-2020-22673 | Memory leak in the senc_Parse function in MP4Box in gpac 0.8.0 allows ... | buster, jessie, stretch |
CVE-2020-22679 | Memory leak in the sgpd_parse_entry function in MP4Box in gpac 0.8.0 a ... | buster, jessie, stretch | |
CVE-2021-31256 | Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0. ... | buster, jessie, stretch | |
CVE-2021-31261 | The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to rea ... | buster, jessie, stretch | |
CVE-2021-33361 | Memory leak in the afra_box_read function in MP4Box in GPAC 1.0.1 allo ... | jessie | |
CVE-2021-33363 | Memory leak in the infe_box_read function in MP4Box in GPAC 1.0.1 allo ... | jessie | |
CVE-2021-33364 | Memory leak in the def_parent_box_new function in MP4Box in GPAC 1.0.1 ... | jessie | |
CVE-2021-33365 | Memory leak in the gf_isom_get_root_od function in MP4Box in GPAC 1.0. ... | buster, jessie, stretch | |
CVE-2021-33366 | Memory leak in the gf_isom_oinf_read_entry function in MP4Box in GPAC ... | jessie | |
CVE-2022-3957 | A vulnerability classified as problematic was found in GPAC. Affected ... | buster, jessie, stretch | |
CVE-2022-43254 | GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a mem ... | bullseye, buster, jessie, stretch | |
CVE-2022-43255 | GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a mem ... | buster, jessie, stretch | |
gpp | CVE-2018-17076 | GPP through 2.25 will try to use more memory space than is available o ... | buster, jessie, stretch |
gpw | CVE-2011-4931 | gpw generates shorter passwords than required | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
graphicsmagick | CVE-2017-13066 | GraphicsMagick 1.3.26 has a memory leak vulnerability in the function ... | jessie |
CVE-2017-13147 | In GraphicsMagick 1.3.26, an allocation failure vulnerability was foun ... | jessie | |
CVE-2017-13648 | In GraphicsMagick 1.3.26, a memory leak vulnerability was found in the ... | jessie | |
CVE-2017-13736 | There are lots of memory leaks in the GMCommand function in magick/com ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-14042 | A memory allocation failure was discovered in the ReadPNMImage functio ... | jessie | |
CVE-2017-14165 | The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has ... | jessie | |
CVE-2017-14649 | ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does ... | jessie | |
CVE-2018-18544 | There is a memory leak in the function WriteMSLImage of coders/msl.c i ... | jessie, stretch | |
CVE-2019-7397 | In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, seve ... | jessie, stretch | |
CVE-2019-16709 | ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrate ... | jessie, stretch | |
graphviz | CVE-2019-11023 | The agroot() function in cgraph\obj.c in libcgraph.a in Graphviz 2.39. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-46045 | Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read vi ... | bookworm, bullseye, buster, jessie, stretch | |
grub | CVE-2008-3896 | Grub Legacy 0.97 and earlier stores pre-boot authentication passwords ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-4949 | An attacker with local access to a system (either through a disk or ex ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
gsoap | CVE-2021-21783 | A code execution vulnerability exists in the WS-Addressing plugin func ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
gssproxy | CVE-2020-12658 | gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex befor ... | bookworm, bullseye, buster, sid |
gthumb | CVE-2020-36427 | GNOME gThumb before 3.10.1 allows an application crash via a malformed ... | buster, jessie, stretch |
h2database | CVE-2022-45868 | The web-based admin console in H2 Database Engine before 2.2.220 can b ... | bookworm, bullseye, buster, sid, stretch, trixie |
hamster-time-tracker | CVE-2023-36250 | CSV Injection vulnerability in GNOME time tracker version 3.0.2, allow ... | bookworm, bullseye, sid, trixie |
haskell-tls | CVE-2011-3389 | The SSL protocol, as used in certain configurations in Microsoft Windo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
hdf5 | CVE-2017-17507 | In HDF5 1.10.1, there is an out of bounds read vulnerability in the fu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-13869 | An issue was discovered in the HDF HDF5 1.8.20 library. There is a mem ... | bullseye, buster, jessie, stretch | |
CVE-2018-13870 | An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ... | bullseye, buster, jessie, stretch | |
CVE-2018-14031 | An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2018-14033 | An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2018-14034 | An issue was discovered in the HDF HDF5 1.8.20 library. There is an ou ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14035 | An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14460 | An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ... | bullseye, buster, jessie, stretch | |
CVE-2018-15671 | An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stac ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-16438 | An issue was discovered in the HDF HDF5 1.8.20 library. There is an ou ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2018-17432 | A NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c in ... | bullseye, buster, jessie, stretch | |
CVE-2018-17433 | A heap-based buffer overflow in ReadGifImageDesc() in gifread.c in the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-17435 | A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the ... | bullseye, buster, jessie, stretch | |
CVE-2018-17436 | ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-17438 | A SIGFPE signal is raised in the function H5D__select_io() of H5Dselec ... | buster, jessie, stretch | |
CVE-2018-17439 | An issue was discovered in the HDF HDF5 1.10.3 library. There is a sta ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2019-8397 | An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-9151 | An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-9152 | An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-10809 | An issue was discovered in HDF5 through 1.12.0. A heap-based buffer ov ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-10810 | An issue was discovered in HDF5 through 1.12.0. A NULL pointer derefer ... | bullseye, buster, jessie, stretch | |
CVE-2020-10811 | An issue was discovered in HDF5 through 1.12.0. A heap-based buffer ov ... | bullseye, buster, jessie, stretch | |
CVE-2020-10812 | An issue was discovered in HDF5 through 1.12.0. A NULL pointer derefer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-18232 | Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-18494 | Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-37501 | Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1 ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2021-45829 | HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denia ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45830 | A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2021-45832 | A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45833 | A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 vi ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2021-46242 | HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
CVE-2021-46243 | An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1- ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-46244 | A Divide By Zero vulnerability exists in HDF5 v1.13.1-1 vis the functi ... | bookworm, bullseye, buster, jessie, stretch, trixie | |
heat | CVE-2024-7319 | An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensi ... | bookworm, buster, jessie, sid, stretch, trixie |
hex-a-hop | TEMP-0528250-2E3658 | hex-a-hop: buffer overflow in loading save games | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
hiredis | CVE-2021-32765 | Hiredis is a minimalistic C client library for the Redis database. In ... | bullseye, buster |
horizon-eda | CVE-2021-21897 | A code execution vulnerability exists in the DL_Dxf::handleLWPolylineD ... | bookworm, bullseye, buster, sid |
hoteldruid | CVE-2024-23091 | Weak password hashing using MD5 in funzioni.php in HotelDruid before 1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
htmldoc | CVE-2021-34119 | A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ... | bullseye, buster, jessie, stretch |
CVE-2021-34121 | An Out of Bounds flaw was discovered in htmodoc 1.9.12 in function par ... | bullseye, buster, jessie, stretch | |
CVE-2022-0137 | A heap buffer overflow in image_set_mask function of HTMLDOC before 1. ... | bullseye, buster, jessie, stretch | |
CVE-2022-24191 | In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can l ... | jessie, stretch | |
CVE-2022-28085 | A flaw was found in htmldoc commit 31f7804. A heap buffer overflow in ... | jessie, stretch | |
CVE-2022-34033 | HTMLDoc v1.9.15 was discovered to contain a heap overflow via (write_h ... | bullseye, buster, jessie, stretch | |
CVE-2022-34035 | HTMLDoc v1.9.12 and below was discovered to contain a heap overflow vi ... | bullseye, buster, jessie, stretch | |
htslib | CVE-2018-14329 | In HTSlib 1.8, a race condition in cram/cram_io.c might allow local us ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
httpie | CVE-2023-48052 | Missing SSL certificate validation in HTTPie v3.2.2 allows attackers t ... | bookworm, jessie, sid, trixie |
hugin | CVE-2024-25442 | An issue in the HuginBase::PanoramaMemento::loadPTScript function of H ... | bookworm, bullseye, buster, jessie, stretch |
CVE-2024-25443 | An issue in the HuginBase::ImageVariable<double>::linkWith function of ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-25445 | Improper handling of values in HuginBase::PTools::Transform::transform ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-25446 | An issue in the HuginBase::PTools::setDestImage function of Hugin v202 ... | bookworm, bullseye, buster, jessie, stretch | |
hugo | CVE-2020-26284 | Hugo is a fast and Flexible Static Site Generator built in Go. Hugo de ... | buster, stretch |
hunspell | CVE-2019-16707 | Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommon ... | buster, jessie, stretch |
icecast2 | CVE-2005-0837 | IceCast 2.20 allows remote attackers to bypass the XSL parser and obta ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2005-0838 | Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
icedove | CVE-2006-5633 | Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers t ... | jessie |
CVE-2008-5430 | Mozilla Thunderbird 2.0.14 does not properly handle (1) multipart/mixe ... | jessie | |
icedtea-web | CVE-2015-5236 | It was discovered that the IcedTea-Web used codebase attribute of the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
imagemagick | CVE-2005-0406 | A design flaw in image processing software that modifies JPEG images m ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2008-3134 | Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 al ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-8678 | The IsPixelMonochrome function in MagickCore/pixel-accessor.h in Image ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-6502 | An issue was discovered in ImageMagick 6.9.7. A specially crafted webp ... | jessie, stretch | |
CVE-2017-7275 | The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allow ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-11166 | The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a ... | jessie | |
CVE-2017-11531 | When ImageMagick 7.0.6-1 processes a crafted file in convert, it can l ... | jessie, stretch | |
CVE-2017-11532 | When ImageMagick 7.0.6-1 processes a crafted file in convert, it can l ... | jessie, stretch | |
CVE-2017-11534 | When ImageMagick 7.0.6-1 processes a crafted file in convert, it can l ... | jessie, stretch | |
CVE-2017-11536 | When ImageMagick 7.0.6-1 processes a crafted file in convert, it can l ... | jessie, stretch | |
CVE-2017-11539 | When ImageMagick 7.0.6-1 processes a crafted file in convert, it can l ... | jessie, stretch | |
CVE-2017-11644 | When ImageMagick 7.0.6-1 processes a crafted file in convert, it can l ... | jessie, stretch | |
CVE-2017-11724 | The ReadMATImage function in coders/mat.c in ImageMagick through 6.9.9 ... | jessie, stretch | |
CVE-2017-11751 | The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 al ... | jessie, stretch | |
CVE-2017-11754 | The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 al ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-11755 | The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 al ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-12418 | ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM ... | jessie, stretch | |
CVE-2017-12427 | The ProcessMSLScript function in coders/msl.c in ImageMagick before 6. ... | jessie, stretch | |
CVE-2017-12428 | In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the f ... | jessie | |
CVE-2017-12433 | In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-12564 | In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-12565 | In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-12641 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage ... | jessie, stretch | |
CVE-2017-12642 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in ... | jessie, stretch | |
CVE-2017-12644 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in ... | jessie, stretch | |
CVE-2017-12654 | The ReadPICTImage function in coders/pict.c in ImageMagick 7.0.6-3 all ... | jessie, stretch | |
CVE-2017-12662 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage i ... | jessie, stretch | |
CVE-2017-12663 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage i ... | jessie, stretch | |
CVE-2017-12664 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage ... | jessie, stretch | |
CVE-2017-12665 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage ... | jessie, stretch | |
CVE-2017-12666 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteINLINEImag ... | stretch | |
CVE-2017-12667 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in ... | jessie, stretch | |
CVE-2017-12668 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage i ... | jessie, stretch | |
CVE-2017-12669 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage ... | jessie, stretch | |
CVE-2017-12671 | In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/ ... | jessie | |
CVE-2017-12672 | In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-12673 | In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-12675 | In ImageMagick 7.0.6-3, a missing check for multidimensional data was ... | jessie, stretch | |
CVE-2017-12676 | In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-13058 | In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-13059 | In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-13060 | In ImageMagick 7.0.6-5, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-13062 | In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-13131 | In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the f ... | jessie, stretch | |
CVE-2017-13141 | In ImageMagick before 6.9.9-4 and 7.x before 7.0.6-4, a crafted file c ... | jessie | |
CVE-2017-13146 | In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memor ... | jessie, stretch | |
CVE-2017-14137 | ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has an issue whe ... | jessie, stretch | |
CVE-2017-14138 | ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage i ... | jessie, stretch | |
CVE-2017-14139 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage i ... | jessie, stretch | |
CVE-2017-14324 | In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in t ... | jessie, stretch | |
CVE-2017-14325 | In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in t ... | jessie, stretch | |
CVE-2017-14326 | In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in t ... | jessie, stretch | |
CVE-2017-14342 | ImageMagick 7.0.6-6 has a memory exhaustion vulnerability in ReadWPGIm ... | jessie, stretch | |
CVE-2017-14343 | ImageMagick 7.0.6-6 has a memory leak vulnerability in ReadXCFImage in ... | jessie, stretch | |
CVE-2017-14531 | ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in c ... | jessie, stretch | |
CVE-2017-14533 | ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c. | jessie, stretch | |
CVE-2017-14684 | In ImageMagick 7.0.7-4 Q16, a memory leak vulnerability was found in t ... | jessie, stretch | |
CVE-2017-15016 | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability i ... | jessie, stretch | |
CVE-2017-15032 | ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage i ... | jessie, stretch | |
CVE-2017-15033 | ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in ... | jessie, stretch | |
CVE-2017-15217 | ImageMagick 7.0.7-2 has a memory leak in ReadSGIImage in coders/sgi.c. | jessie, stretch | |
CVE-2017-15218 | ImageMagick 7.0.7-2 has a memory leak in ReadOneJNGImage in coders/png ... | jessie, stretch | |
CVE-2017-17680 | In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17880 | In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based ... | jessie, stretch | |
CVE-2017-17881 | In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17882 | In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17883 | In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17884 | In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17885 | In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17886 | In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17887 | In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-17934 | ImageMagick 7.0.7-17 Q16 x86_64 has memory leaks in coders/msl.c, rela ... | jessie, stretch | |
CVE-2017-18008 | In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in ... | jessie, stretch | |
CVE-2017-18027 | In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in t ... | jessie, stretch | |
CVE-2017-18029 | In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in ... | jessie, stretch | |
CVE-2017-18251 | An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerabil ... | jessie, stretch | |
CVE-2017-18254 | An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerabil ... | jessie, stretch | |
CVE-2018-5246 | In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImag ... | jessie, stretch | |
CVE-2018-5247 | In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in ... | jessie, stretch | |
CVE-2018-5357 | ImageMagick 7.0.7-22 Q16 has memory leaks in the ReadDCMImage function ... | jessie, stretch | |
CVE-2018-5358 | ImageMagick 7.0.7-22 Q16 has memory leaks in the EncodeImageAttributes ... | jessie, stretch | |
CVE-2018-6405 | In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0 ... | jessie, stretch | |
CVE-2018-7470 | An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLo ... | jessie, stretch | |
CVE-2018-9135 | In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in ... | jessie, stretch | |
CVE-2018-10805 | ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage ... | jessie, stretch | |
CVE-2018-11656 | In ImageMagick 7.0.7-20 Q16 x86_64, a memory leak vulnerability was fo ... | jessie, stretch | |
CVE-2018-13153 | In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand f ... | jessie, stretch | |
CVE-2018-14434 | ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage ... | jessie, stretch | |
CVE-2018-14435 | ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c. | jessie, stretch | |
CVE-2018-14436 | ImageMagick 7.0.8-4 has a memory leak in ReadMIFFImage in coders/miff. ... | jessie, stretch | |
CVE-2018-14437 | ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c. | jessie, stretch | |
CVE-2018-15607 | In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x3 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-16640 | ImageMagick 7.0.8-5 has a memory leak vulnerability in the function Re ... | jessie, stretch | |
CVE-2018-16750 | In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfr ... | jessie, stretch | |
CVE-2018-17965 | ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGIImage ... | jessie, stretch | |
CVE-2018-17966 | ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage ... | jessie, stretch | |
CVE-2018-17967 | ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage i ... | jessie, stretch | |
CVE-2018-18016 | ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage ... | jessie, stretch | |
CVE-2018-18544 | There is a memory leak in the function WriteMSLImage of coders/msl.c i ... | jessie, stretch | |
CVE-2019-7175 | In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage ... | jessie, stretch | |
CVE-2019-7395 | In ImageMagick before 7.0.8-25, a memory leak exists in WritePSDChanne ... | jessie, stretch | |
CVE-2019-7396 | In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage ... | jessie, stretch | |
CVE-2019-7397 | In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, seve ... | jessie, stretch | |
CVE-2019-7398 | In ImageMagick before 7.0.8-25, a memory leak exists in WriteDIBImage ... | jessie, stretch | |
CVE-2019-10649 | In ImageMagick 7.0.8-36 Q16, there is a memory leak in the function SV ... | jessie, stretch | |
CVE-2019-12975 | ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXIm ... | jessie, stretch | |
CVE-2019-12976 | ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in ... | jessie, stretch | |
CVE-2019-13137 | ImageMagick before 7.0.8-50 has a memory leak vulnerability in the fun ... | jessie, stretch | |
CVE-2019-13301 | ImageMagick 7.0.8-50 Q16 has memory leaks in AcquireMagickMemory becau ... | jessie, stretch | |
CVE-2019-13309 | ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ... | jessie, stretch | |
CVE-2019-13310 | ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ... | buster, jessie, stretch | |
CVE-2019-13311 | ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ... | jessie, stretch | |
CVE-2019-16708 | ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to ... | jessie, stretch | |
CVE-2019-16709 | ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrate ... | buster, jessie, stretch | |
CVE-2019-16710 | ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrate ... | jessie, stretch | |
CVE-2019-16711 | ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in code ... | jessie, stretch | |
CVE-2019-16712 | ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in code ... | jessie, stretch | |
CVE-2019-16713 | ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrate ... | jessie, stretch | |
CVE-2020-27753 | There are several memory leaks in the MIFF coder in /coders/miff.c due ... | buster, jessie, stretch | |
CVE-2020-27755 | in SetImageExtent() of /MagickCore/image.c, an incorrect image depth s ... | buster, jessie, stretch | |
CVE-2021-20311 | A flaw was found in ImageMagick in versions before 7.0.11, where a div ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-34152 | A vulnerability was found in ImageMagick. This security flaw cause a r ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0869722-31618B | memory leak in quantize | jessie, stretch | |
in-toto | CVE-2023-32076 | in-toto is a framework to protect supply chain integrity. The in-toto ... | bookworm, bullseye |
indent | CVE-2024-0911 | A flaw was found in indent, a program for formatting C code. This issu ... | jessie, stretch |
influxdb | CVE-2022-36640 | influxData influxDB before v1.8.10 contains no authentication mechanis ... | bookworm, bullseye, buster, sid, stretch, trixie |
iniparser | CVE-2023-33461 | iniparser v4.1 is vulnerable to NULL Pointer Dereference in function i ... | bookworm, bullseye, buster |
initramfs-tools | CVE-2008-4996 | init in initramfs-tools 0.92f allows local users to overwrite arbitrar ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
inkscape | CVE-2021-42700 | Inkscape 0.91 is vulnerable to an out-of-bounds read, which may allow ... | buster, jessie, stretch |
CVE-2021-42702 | Inkscape version 0.91 can access an uninitialized pointer, which may a ... | buster, jessie, stretch | |
CVE-2021-42704 | Inkscape version 0.91 is vulnerable to an out-of-bounds write, which m ... | buster, jessie, stretch | |
ioquake3 | CVE-2019-1010043 | Quake3e < 5ed740d is affected by: Buffer Overflow. The impact is: Poss ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
iotjs | CVE-2020-29657 | In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unh ... | buster |
ippsample | CVE-2023-24808 | PDFio is a C library for reading and writing PDF files. In versions pr ... | bookworm, sid |
CVE-2023-28428 | PDFio is a C library for reading and writing PDF files. In versions 1. ... | bookworm, sid | |
CVE-2024-42358 | PDFio is a simple C library for reading and writing PDF files. There i ... | bookworm, sid | |
ipsec-tools | CVE-2018-5389 | The Internet Key Exchange v1 main mode is vulnerable to offline dictio ... | jessie, stretch |
iptables | CVE-2012-2663 | extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP S ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-11360 | A buffer overflow in iptables-restore in netfilter iptables 1.8.2 allo ... | buster, jessie, stretch | |
iptraf-ng | CVE-2024-52949 | iptraf-ng 1.2.1 has a stack-based buffer overflow. | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
irssi | TEMP-0000000-E6792F | irssi missing null terminator | jessie |
isakmpd | CVE-2018-5389 | The Internet Key Exchange v1 main mode is vulnerable to offline dictio ... | buster, stretch |
italc | CVE-2019-15680 | TightVNC code version 1.3.10 contains null pointer dereference in Hand ... | jessie, stretch |
jackrabbit | CVE-2023-37895 | Java object deserialization issue in Jackrabbit webapp/standalone on a ... | bookworm, bullseye, buster, jessie, stretch |
jakarta-el-api | CVE-2021-28170 | In the Jakarta Expression Language implementation 3.0.3 and earlier, a ... | bookworm, bullseye, sid, trixie |
janino | CVE-2023-33546 | Janino 3.1.9 and earlier are subject to denial of service (DOS) attack ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
jansson | CVE-2020-36325 | An issue was discovered in Jansson through 2.13.1. Due to a parsing er ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
janus | CVE-2021-4124 | janus-gateway is vulnerable to Improper Neutralization of Input During ... | bookworm, sid |
jasper | CVE-2016-8883 | The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 ... | jessie |
CVE-2016-8887 | The jp2_colr_destroy function in libjasper/jp2/jp2_cod.c in JasPer bef ... | jessie | |
CVE-2016-9387 | Integer overflow in the jpc_dec_process_siz function in libjasper/jpc/ ... | jessie | |
CVE-2016-9388 | The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows ... | jessie | |
CVE-2016-9389 | The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.90 ... | jessie | |
CVE-2016-9390 | The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.14 a ... | jessie | |
CVE-2016-9391 | The jpc_bitstream_getbits function in jpc_bs.c in JasPer before 2.0.10 ... | jessie | |
CVE-2016-9392 | The calcstepsizes function in jpc_dec.c in JasPer before 1.900.17 allo ... | jessie | |
CVE-2016-9393 | The jpc_pi_nextrpcl function in jpc_t2cod.c in JasPer before 1.900.17 ... | jessie | |
CVE-2016-9394 | The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.17 a ... | jessie | |
CVE-2016-9395 | The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.25 a ... | jessie | |
CVE-2016-9396 | The JPC_NOMINALGAIN function in jpc/jpc_t1cod.c in JasPer through 2.0. ... | jessie | |
CVE-2016-9397 | The jpc_dequantize function in jpc_dec.c in JasPer 1.900.13 allows rem ... | jessie | |
CVE-2016-9398 | The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 all ... | jessie | |
CVE-2016-9399 | The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remo ... | jessie | |
CVE-2016-9583 | An out-of-bounds heap read vulnerability was found in the jpc_pi_nextp ... | jessie | |
CVE-2016-9600 | JasPer before version 2.0.10 is vulnerable to a null pointer dereferen ... | jessie | |
CVE-2016-10248 | The jpc_tsfb_synthesize function in jpc_tsfb.c in JasPer before 1.900. ... | jessie | |
CVE-2017-5498 | libjasper/include/jasper/jas_math.h in JasPer 1.900.17 allows remote a ... | jessie | |
CVE-2017-5499 | Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows ... | jessie | |
CVE-2017-5500 | libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote attackers to ... | jessie | |
CVE-2017-5501 | Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows ... | jessie | |
CVE-2017-5502 | libjasper/jp2/jp2_dec.c in JasPer 1.900.17 allows remote attackers to ... | jessie | |
CVE-2017-5504 | The jpc_undo_roi function in libjasper/jpc/jpc_dec.c in JasPer 1.900.2 ... | jessie | |
CVE-2017-5505 | The jas_matrix_asl function in jas_seq.c in JasPer 1.900.27 allows rem ... | jessie | |
CVE-2017-6850 | The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 all ... | jessie | |
CVE-2017-6851 | The jas_matrix_bindsub function in jas_seq.c in JasPer 2.0.10 allows r ... | jessie | |
CVE-2017-13745 | There is a reachable assertion abort in the function jpc_dec_process_s ... | jessie | |
CVE-2017-13746 | There is a reachable assertion abort in the function jpc_dec_process_s ... | jessie | |
CVE-2017-13747 | There is a reachable assertion abort in the function jpc_floorlog2() i ... | jessie | |
CVE-2017-13749 | There is a reachable assertion abort in the function jpc_pi_nextrpcl() ... | jessie | |
CVE-2017-13750 | There is a reachable assertion abort in the function jpc_dec_process_s ... | jessie | |
CVE-2017-13751 | There is a reachable assertion abort in the function calcstepsizes() i ... | jessie | |
CVE-2017-13752 | There is a reachable assertion abort in the function jpc_dequantize() ... | jessie | |
CVE-2017-1000050 | JasPer 2.0.12 is vulnerable to a NULL pointer exception in the functio ... | jessie | |
CVE-2018-9055 | JasPer 2.0.14 allows denial of service via a reachable assertion in th ... | jessie | |
CVE-2018-9154 | There is a reachable abort in the function jpc_dec_process_sot in libj ... | jessie | |
CVE-2018-9252 | JasPer 2.0.14 allows denial of service via a reachable assertion in th ... | jessie | |
CVE-2022-2963 | A vulnerability found in jasper. This security vulnerability happens b ... | jessie | |
jbig2dec | CVE-2023-46361 | Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulne ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
jbigkit | CVE-2017-9937 | In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A cr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
jetty | CVE-2009-3579 | Cross-site scripting (XSS) vulnerability in the CookieDump.java sample ... | jessie |
jhead | CVE-2018-6612 | An integer underflow bug in the process_EXIF function of the exif.c fi ... | jessie, stretch |
CVE-2019-19035 | jhead 3.03 is affected by: heap-based buffer over-read. The impact is: ... | buster, jessie, stretch | |
CVE-2019-1010301 | jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of s ... | buster, stretch | |
CVE-2019-1010302 | jhead 3.03 is affected by: Incorrect Access Control. The impact is: De ... | buster, stretch | |
CVE-2020-6624 | jhead through 3.04 has a heap-based buffer over-read in process_DQT in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-6625 | jhead through 3.04 has a heap-based buffer over-read in Get32s when ca ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-26208 | JHEAD is a simple command line tool for displaying and some manipulati ... | buster, jessie, stretch | |
CVE-2020-28840 | Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead ve ... | bullseye, buster, jessie, stretch | |
CVE-2021-3496 | A heap-based buffer overflow was found in jhead in version 3.06 in Get ... | buster, jessie, stretch | |
CVE-2021-28275 | A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to ... | bullseye, buster, jessie, stretch | |
CVE-2021-28276 | A Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a ... | bullseye, buster, jessie, stretch | |
CVE-2021-28277 | A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.0 ... | bullseye, buster, jessie, stretch | |
CVE-2021-28278 | A Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3. ... | bullseye, buster, jessie, stretch | |
CVE-2024-2824 | A vulnerability was found in Matthias-Wandel jhead 3.08 and classified ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
jinja2 | CVE-2019-8341 | An issue was discovered in Jinja2 2.10. The from_string function is pr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
joblib | CVE-2024-34997 | joblib v1.4.2 was discovered to contain a deserialization vulnerabilit ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
jpeg-xl | CVE-2021-36691 | libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image ... | bookworm, sid, trixie |
jpegoptim | CVE-2022-32325 | JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation wh ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-27781 | jpegoptim v1.5.2 was discovered to contain a heap overflow in the opti ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
jquery | CVE-2007-2379 | The jQuery framework exchanges data using JavaScript Object Notation ( ... | buster, jessie, stretch |
CVE-2018-18405 | jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG ele ... | buster, jessie, stretch | |
jquery-goodies | CVE-2022-23395 | jQuery Cookie 1.4.1 is affected by prototype pollution, which can lead ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
json-glib | TEMP-0772585-D41D8C | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
json-smart | CVE-2021-31684 | A vulnerability was discovered in the indexOf function of JSONParserBy ... | sid, stretch, trixie |
jsonpickle | CVE-2020-22083 | jsonpickle through 1.4.1 allows remote code execution during deseriali ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
jupyter-server | CVE-2023-49080 | The Jupyter Server provides the backend (i.e. the core services, APIs, ... | bookworm, bullseye |
jython | CVE-2017-17522 | Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
kde-baseapps | CVE-2012-4512 | The CSS parser (khtml/css/cssparser.cpp) in Konqueror in KDE 4.7.3 all ... | jessie, stretch |
CVE-2012-4513 | khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remot ... | jessie, stretch | |
CVE-2012-4514 | rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows ... | jessie, stretch | |
CVE-2012-4515 | Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in ... | jessie, stretch | |
CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | jessie, stretch | |
kde4libs | CVE-2009-1692 | WebKit before r41741, as used in Apple iPhone OS 1.0 through 2.2.1, iP ... | buster, jessie, stretch |
CVE-2009-1718 | WebKit in Apple Safari before 4.0 allows user-assisted remote attacker ... | buster, jessie, stretch | |
CVE-2009-1724 | Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ... | buster, jessie, stretch | |
CVE-2009-3015 | QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and d ... | buster, jessie, stretch | |
CVE-2009-3272 | Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safar ... | buster, jessie, stretch | |
TEMP-0560108-565B70 | browser-based css info disclosure | buster, jessie, stretch | |
TEMP-0568486-B6FCB6 | browser javascript document.write denial-of-service | buster, jessie, stretch | |
kdepim | CVE-2006-7139 | Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, al ... | jessie, stretch |
CVE-2007-1265 | KMail 1.9.5 and earlier does not properly use the --status-fd argument ... | jessie, stretch | |
keepalived | CVE-2018-19044 | keepalived 2.0.8 didn't check for pathnames with symlinks when writing ... | jessie, stretch |
CVE-2018-19045 | keepalived 2.0.8 used mode 0666 when creating new temporary files upon ... | jessie, stretch | |
CVE-2018-19046 | keepalived 2.0.8 didn't check for existing plain files when writing da ... | jessie, stretch | |
CVE-2024-41184 | In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived th ... | bookworm, bullseye, buster, jessie, stretch | |
keepass2 | CVE-2019-20184 | KeePass 2.4.1 allows CSV injection in the title field of a CSV export. | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-32784 | In KeePass 2.x before 2.54, it is possible to recover the cleartext ma ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
kfreebsd-10 | CVE-2011-2393 | The Neighbor Discovery (ND) protocol implementation in the IPv6 stack ... | buster, jessie, stretch |
CVE-2015-1417 | The inet module in FreeBSD 10.2x before 10.2-PRERELEASE, 10.2-BETA2-p2 ... | jessie | |
CVE-2015-5675 | The sys_amd64 IRET Handler in the kernel in FreeBSD 9.3 and 10.1 allow ... | jessie | |
CVE-2016-1879 | The Stream Control Transmission Protocol (SCTP) module in FreeBSD 9.3 ... | buster, jessie, stretch | |
CVE-2016-1880 | The Linux compatibility layer in the kernel in FreeBSD 9.3, 10.1, and ... | jessie | |
CVE-2016-1881 | The kernel in FreeBSD 9.3, 10.1, and 10.2 allows local users to cause ... | jessie | |
CVE-2016-1882 | FreeBSD 9.3 before p33, 10.1 before p26, and 10.2 before p9 allow remo ... | jessie | |
CVE-2016-1883 | The issetugid system call in the Linux compatibility layer in FreeBSD ... | jessie | |
CVE-2016-1885 | Integer signedness error in the amd64_set_ldt function in sys/amd64/am ... | jessie | |
CVE-2016-1886 | Integer signedness error in the genkbd_commonioctl function in sys/dev ... | jessie | |
CVE-2016-1887 | Integer signedness error in the sockargs function in sys/kern/uipc_sys ... | jessie | |
CVE-2017-1081 | In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3 ... | buster, jessie, stretch | |
CVE-2017-1082 | In FreeBSD 11.x before 11.1-RELEASE and 10.x before 10.4-RELEASE, the ... | buster, jessie, stretch | |
CVE-2017-1083 | In FreeBSD before 11.2-RELEASE, a stack guard-page is available but is ... | buster, jessie, stretch | |
CVE-2017-1084 | In FreeBSD before 11.2-RELEASE, multiple issues with the implementatio ... | buster, jessie, stretch | |
CVE-2017-1085 | In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() ... | buster, jessie, stretch | |
CVE-2017-1086 | In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4 ... | buster, jessie, stretch | |
CVE-2017-1087 | In FreeBSD 10.x before 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE- ... | buster, jessie, stretch | |
CVE-2017-1088 | In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4 ... | buster, jessie, stretch | |
CVE-2017-15037 | In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_s ... | buster, jessie, stretch | |
CVE-2018-6916 | In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELE ... | buster, jessie, stretch | |
CVE-2018-6917 | In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELE ... | buster, jessie, stretch | |
CVE-2018-6918 | In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELE ... | buster, jessie, stretch | |
CVE-2018-6919 | In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELE ... | buster, jessie, stretch | |
CVE-2018-6920 | In FreeBSD before 11.1-STABLE(r332303), 11.1-RELEASE-p10, 10.4-STABLE( ... | buster, jessie, stretch | |
CVE-2018-6921 | In FreeBSD before 11.1-STABLE(r332066) and 11.1-RELEASE-p10, due to in ... | buster, jessie, stretch | |
CVE-2018-6922 | One of the data structures that holds TCP segments in all versions of ... | buster, jessie, stretch | |
CVE-2018-6923 | In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip f ... | buster, jessie, stretch | |
CVE-2018-6924 | In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p3, 11.1-RELEASE-p14, 10.4 ... | buster, jessie, stretch | |
CVE-2018-6925 | In FreeBSD before 11.2-STABLE(r338986), 11.2-RELEASE-p4, 11.1-RELEASE- ... | buster, jessie, stretch | |
CVE-2018-17154 | In FreeBSD before 11.2-STABLE(r338987), 11.2-RELEASE-p4, and 11.1-RELE ... | buster, jessie, stretch | |
CVE-2018-17155 | In FreeBSD before 11.2-STABLE(r338983), 11.2-RELEASE-p4, 11.1-RELEASE- ... | buster, jessie, stretch | |
CVE-2018-17156 | In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to inc ... | buster, jessie, stretch | |
CVE-2019-5595 | In FreeBSD before 11.2-STABLE(r343782), 11.2-RELEASE-p9, 12.0-STABLE(r ... | buster, jessie, stretch | |
CVE-2019-5596 | In FreeBSD 11.2-STABLE after r338618 and before r343786, 12.0-STABLE b ... | buster, jessie, stretch | |
CVE-2019-5597 | In FreeBSD 11.3-PRERELEASE and 12.0-STABLE before r347591, 11.2-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5598 | In FreeBSD 11.3-PRERELEASE before r345378, 12.0-STABLE before r345377, ... | buster, jessie, stretch | |
CVE-2019-5601 | In FreeBSD 12.0-STABLE before r347474, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5602 | In FreeBSD 12.0-STABLE before r349628, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5603 | In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5605 | In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5606 | In FreeBSD 12.0-STABLE before r349805, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5609 | In FreeBSD 12.0-STABLE before r350619, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5611 | In FreeBSD 12.0-STABLE before r350828, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5612 | In FreeBSD 12.0-STABLE before r351264, 12.0-RELEASE before 12.0-RELEAS ... | buster, jessie, stretch | |
CVE-2019-5614 | In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEAS ... | buster, jessie, stretch | |
CVE-2019-15874 | In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEAS ... | buster, jessie, stretch | |
CVE-2019-15875 | In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEAS ... | buster, jessie, stretch | |
CVE-2019-15878 | In FreeBSD 12.1-STABLE before r352509, 11.3-STABLE before r352509, and ... | buster, jessie, stretch | |
CVE-2020-7452 | In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEAS ... | buster, jessie, stretch | |
CVE-2020-7453 | In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEAS ... | buster, jessie, stretch | |
CVE-2020-7456 | In FreeBSD 12.1-STABLE before r361918, 12.1-RELEASE before p6, 11.4-ST ... | buster, jessie, stretch | |
CVE-2020-7459 | In FreeBSD 12.1-STABLE before r362166, 12.1-RELEASE before p8, 11.4-ST ... | buster, jessie, stretch | |
CVE-2020-7462 | In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, imprope ... | buster, jessie, stretch | |
CVE-2020-7463 | In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12. ... | buster, jessie, stretch | |
CVE-2020-7464 | In FreeBSD 12.2-STABLE before r365730, 11.4-STABLE before r365738, 12. ... | buster, jessie, stretch | |
CVE-2020-7469 | In FreeBSD 12.2-STABLE before r367402, 11.4-STABLE before r368202, 12. ... | buster, jessie, stretch | |
CVE-2020-25578 | In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12. ... | buster, jessie, stretch | |
CVE-2020-25579 | In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12. ... | buster, jessie, stretch | |
CVE-2020-25581 | In FreeBSD 12.2-STABLE before r369312, 11.4-STABLE before r369313, 12. ... | buster, jessie, stretch | |
CVE-2020-25582 | In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12. ... | buster, jessie, stretch | |
CVE-2021-29626 | In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11. ... | buster, jessie, stretch | |
CVE-2021-29632 | In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before ... | buster, jessie, stretch | |
kiwi | CVE-2017-17532 | examples/framework/news/news3.py in Kiwi 1.9.22 does not validate stri ... | bookworm, buster, jessie, sid, stretch |
knot-resolver | CVE-2022-32983 | Knot Resolver through 5.5.1 may allow DNS cache poisoning when there i ... | bookworm, bullseye, buster, sid, trixie |
kopano-webapp-plugin-files | CVE-2019-16774 | In phpfastcache before 5.1.3, there is a possible object injection vul ... | buster |
krb5 | CVE-2004-0971 | The krb5-send-pr script in the kerberos5 (krb5) package in Trustix Sec ... | jessie |
CVE-2017-15088 | plugins/preauth/pkinit/pkinit_crypto_openssl.c in MIT Kerberos 5 (aka ... | jessie, stretch | |
CVE-2018-5709 | An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-26458 | Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/r ... | bookworm, bullseye, sid, trixie | |
CVE-2024-26461 | Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in / ... | bookworm, bullseye, sid, trixie | |
latex2rtf | CVE-2015-8106 | Format string vulnerability in the CmdKeywords function in funct1.c in ... | jessie |
lbreakout2 | TEMP-0608980-E8B8DF | Crash with long HOME environment variable | bookworm, bullseye, buster, jessie, stretch |
leocad | CVE-2021-31804 | LeoCAD before 21.03 sometimes allows a use-after-free during the openi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
leptonlib | CVE-2018-7247 | An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Lepto ... | jessie, stretch |
TEMP-0830660-09AE85 | Insecure use of /tmp | jessie | |
less | CVE-2014-9488 | The is_utf8_well_formed function in GNU less before 475 allows remote ... | jessie |
libao | CVE-2017-11548 | The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libapache-poi-java | CVE-2016-5000 | The XLSX2CSV example in Apache POI before 3.14 allows remote attackers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-12415 | In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to conv ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libarchive | CVE-2023-30571 | Libarchive through 3.6.2 can cause directories to have world-writable ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libav | CVE-2016-7477 | The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 al ... | jessie |
CVE-2016-7499 | The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote ... | jessie | |
CVE-2016-8676 | The get_vlc2 function in get_bits.h in Libav 11.9 allows remote attack ... | jessie | |
CVE-2016-9825 | libswscale/utils.c in libav 11.8 allows remote attackers to cause a de ... | jessie | |
CVE-2016-9826 | libavcodec/ituh263dec.c in libav 11.8 allows remote attackers to cause ... | jessie | |
CVE-2019-9717 | In Libav 12.3, a denial of service in the subtitle decoder allows atta ... | jessie | |
CVE-2019-9719 | A stack-based buffer overflow in the subtitle decoder in Libav 12.3 al ... | jessie | |
CVE-2019-9720 | A stack-based buffer overflow in the subtitle decoder in Libav 12.3 al ... | jessie | |
libcaca | CVE-2018-20545 | There is an illegal WRITE memory access at common-image.c (function lo ... | jessie |
CVE-2018-20548 | There is an illegal WRITE memory access at common-image.c (function lo ... | jessie | |
CVE-2022-0856 | libcaca is affected by a Divide By Zero issue via img2txt, which allow ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libcommons-collections4-java | CVE-2015-7501 | Red Hat JBoss A-MQ 6.x; BPM Suite (BPMS) 6.x; BRMS 6.x and 5.x; Data G ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libcommons-fileupload-java | CVE-2016-1000031 | Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libcrypto++ | CVE-2016-7420 | Crypto++ (aka cryptopp) through 5.6.4 does not document the requiremen ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libdata-uuid-perl | CVE-2013-4184 | Perl module Data::UUID from CPAN version 1.219 vulnerable to symlink a ... | bookworm, bullseye, buster, jessie, stretch |
libdata-validate-ip-perl | CVE-2021-29662 | The Data::Validate::IP module through 0.29 for Perl does not properly ... | buster, jessie, stretch |
libemail-address-perl | CVE-2015-7686 | Algorithmic complexity vulnerability in Address.pm in the Email-Addres ... | jessie |
CVE-2018-12558 | The parse() method in the Email::Address module through 1.909 for Perl ... | jessie | |
libesmtp | CVE-2019-19977 | libESMTP through 1.0.6 mishandles domain copying into a fixed-size buf ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libfsntfs | CVE-2018-11727 | The libfsntfs_attribute_read_from_mft function in libfsntfs_attribute. ... | stretch |
CVE-2018-11728 | The libfsntfs_reparse_point_values_read_data function in libfsntfs_rep ... | stretch | |
CVE-2018-11729 | The libfsntfs_mft_entry_read_header function in libfsntfs_mft_entry.c ... | stretch | |
CVE-2018-11730 | The libfsntfs_security_descriptor_values_free function in libfsntfs_se ... | stretch | |
CVE-2018-11731 | The libfsntfs_mft_entry_read_attributes function in libfsntfs_mft_entr ... | stretch | |
libfwsi | CVE-2019-17263 | In libyal libfwsi before 20191006, libfwsi_extension_block_copy_from_b ... | bookworm, bullseye, buster, sid, stretch, trixie |
libgadu | CVE-2013-4488 | libgadu before 1.12.0 does not verify X.509 certificates from SSL serv ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libgcrypt20 | CVE-2018-6829 | cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt mess ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libgd2 | CVE-2021-40145 | gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) throu ... | bullseye, buster, jessie, stretch |
libgda5 | CVE-2021-39359 | In GNOME libgda through 6.0.0, gda-web-provider.c does not enable TLS ... | bookworm, bullseye, buster, jessie, stretch |
libgig | CVE-2018-14449 | An issue was discovered in libgig 4.1.0. There is an out of bounds rea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-14450 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds rea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14451 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14452 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds rea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14453 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14454 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds rea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14455 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14456 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14457 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14458 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-14459 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18192 | An issue was discovered in libgig 4.1.0. There is a NULL pointer deref ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18193 | An issue was discovered in libgig 4.1.0. There is operator new[] failu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18194 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18195 | An issue was discovered in libgig 4.1.0. There is an FPE (divide-by-ze ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18196 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18197 | An issue was discovered in libgig 4.1.0. There is an operator new[] fa ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libglvnd | CVE-2023-45924 | libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ... | bookworm, bullseye, buster, sid, trixie |
libgnumail-java | CVE-2005-1105 | Directory traversal vulnerability in the MimeBodyPart.getFileName meth ... | jessie, stretch |
libheif | CVE-2023-49463 | libheif v1.17.5 was discovered to contain a segmentation violation via ... | bookworm, bullseye |
CVE-2024-25269 | libheif <= 1.17.6 contains a memory leak in the function JpegEncoder:: ... | bookworm, bullseye, buster | |
libhttp-tiny-perl | CVE-2023-31486 | HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available ... | bookworm, buster, jessie, stretch |
libjpeg | CVE-2022-31620 | In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an ... | bullseye |
CVE-2022-31796 | libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRe ... | bullseye | |
CVE-2022-32201 | In libjpeg 1.63, there is a NULL pointer dereference in Component::Sub ... | bullseye | |
CVE-2022-32202 | In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::Fe ... | bullseye | |
CVE-2022-32978 | There is an assertion failure in SingleComponentLSScan::ParseMCU in si ... | bullseye | |
CVE-2022-35166 | libjpeg commit 842c7ba was discovered to contain an infinite loop via ... | bookworm, bullseye, sid, trixie | |
CVE-2022-37768 | libjpeg commit 281daa9 was discovered to contain an infinite loop via ... | bullseye | |
CVE-2022-37770 | libjpeg commit 281daa9 was discovered to contain a segmentation fault ... | bullseye | |
CVE-2023-37836 | libjpeg commit db33a6e was discovered to contain a reachable assertion ... | bookworm, bullseye, sid, trixie | |
CVE-2023-37837 | libjpeg commit db33a6e was discovered to contain a heap buffer overflo ... | bookworm, bullseye, sid, trixie | |
libjpeg-turbo | CVE-2017-15232 | libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and j ... | buster, jessie, stretch |
CVE-2018-11813 | libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles ... | buster, jessie, stretch | |
CVE-2020-17541 | Libjpeg-turbo all version have a stack-based buffer overflow in the "t ... | buster, jessie, stretch | |
libjpeg6b | CVE-2016-3616 | The cjpeg utility in libjpeg allows remote attackers to cause a denial ... | sid |
libjs-handlebars | TEMP-0000000-345A3B | handlebars: quoteless attributes in templates can lead to content injection | jessie, stretch |
libjs-i18next | CVE-2017-16010 | i18next is a language translation framework. When using the .init meth ... | buster, stretch |
liblivemedia | CVE-2019-7732 | In Live555 0.95, a setup packet can cause a memory leak leading to DoS ... | buster, jessie, stretch |
liblnk | CVE-2018-12096 | The liblnk_data_string_get_utf8_string_size function in liblnk_data_st ... | stretch |
CVE-2018-12097 | The liblnk_location_information_read_data function in liblnk_location_ ... | stretch | |
CVE-2018-12098 | The liblnk_data_block_read function in liblnk_data_block.c in liblnk t ... | stretch | |
CVE-2019-17263 | In libyal libfwsi before 20191006, libfwsi_extension_block_copy_from_b ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2019-17264 | In libyal liblnk before 20191006, liblnk_location_information_read_dat ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2019-17401 | libyal liblnk 20191006 has a heap-based buffer over-read in the networ ... | bookworm, bullseye, buster, sid, stretch, trixie | |
liblouis | CVE-2023-26767 | Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remo ... | bookworm, bullseye, buster, jessie, stretch |
CVE-2023-26768 | Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remo ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-26769 | Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 all ... | bookworm, bullseye, buster, jessie, stretch | |
libmatio | CVE-2019-20019 | An attempted excessive memory allocation was discovered in Mat_VarRead ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libmetadata-extractor-java | CVE-2022-24613 | metadata-extractor up to 2.16.0 can throw various uncaught exceptions ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2022-24614 | When reading a specially crafted JPEG file, metadata-extractor up to 2 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libmspack | CVE-2018-18586 | chmextract.c in the chmextract sample program, as distributed with lib ... | jessie, stretch |
libnl3 | CVE-2017-0553 | An elevation of privilege vulnerability in libnl could enable a local ... | jessie |
libokhttp-java | CVE-2018-20200 | CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the- ... | bookworm, bullseye, buster, sid, trixie |
libopenmpt | CVE-2019-14382 | DSM in libopenmpt before 0.4.2 allows an assertion failure during file ... | stretch |
CVE-2019-14383 | J2B in libopenmpt before 0.4.2 allows an assertion failure during file ... | stretch | |
libpam-krb5 | CVE-2023-3326 | pam_krb5 authenticates a user by essentially running kinit with the pa ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libpcap | CVE-2023-7256 | In affected libpcap versions during the setup of a remote packet captu ... | bookworm, bullseye, buster, jessie, stretch |
CVE-2024-8006 | Remote packet capture support is disabled by default in libpcap. When ... | bookworm, bullseye, buster, jessie, stretch | |
libphp-adodb | CVE-2006-4976 | The Date Library in John Lim ADOdb Library for PHP allows remote attac ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2011-3699 | John Lim ADOdb Library for PHP 5.11 allows remote attackers to obtain ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libphp-phpmailer | CVE-2017-11503 | PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Add ... | jessie, stretch |
libpng | CVE-2018-14048 | An issue has been found in libpng 1.6.34. It is a SEGV in the function ... | jessie |
CVE-2018-14550 | An issue has been found in third-party PNM decoding associated with li ... | jessie | |
CVE-2019-6129 | png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as ... | jessie | |
libpng1.6 | CVE-2018-14048 | An issue has been found in libpng 1.6.34. It is a SEGV in the function ... | buster, stretch |
CVE-2018-14550 | An issue has been found in third-party PNM decoding associated with li ... | buster, stretch | |
CVE-2019-6129 | png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as ... | bullseye, buster, stretch | |
CVE-2021-4214 | A heap overflow flaw was found in libpngs' pngimage.c program. This fl ... | bookworm, bullseye, buster, sid, stretch, trixie | |
libpodofo | CVE-2018-20797 | An issue was discovered in PoDoFo 0.9.6. There is an attempted excessi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2020-18972 | Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libqb | CVE-2019-12779 | libqb before 1.0.5 allows local users to overwrite arbitrary files via ... | stretch |
libquicktime | CVE-2017-12143 | In libquicktime 1.2.4, an allocation failure was found in the function ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-12145 | In libquicktime 1.2.4, an allocation failure was found in the function ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libraw | CVE-2020-24890 | libraw 20.0 has a null pointer dereference vulnerability in parse_tiff ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
librecad | CVE-2021-21897 | A code execution vulnerability exists in the DL_Dxf::handleLWPolylineD ... | bookworm, bullseye, buster, jessie, sid, trixie |
CVE-2023-30259 | A Buffer Overflow vulnerability in importshp plugin in LibreCAD 2.2.0 ... | bookworm, bullseye, buster, jessie, stretch | |
libreoffice | CVE-2012-5639 | LibreOffice and OpenOffice automatically open embedded content | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-10583 | An information disclosure vulnerability occurs when LibreOffice 6.0.3 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libreswan | CVE-2018-5389 | The Internet Key Exchange v1 main mode is vulnerable to offline dictio ... | bookworm, bullseye, buster, sid, trixie |
libsass | CVE-2019-18797 | LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operator()(Sas ... | bookworm, bullseye, buster, sid, stretch, trixie |
libsixel | CVE-2019-11024 | The load_pnm function in frompnm.c in libsixel.a in libsixel 1.8.2 has ... | buster, jessie, stretch |
libslf4j-java | CVE-2018-8088 | org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before ... | jessie, stretch |
libslirp | CVE-2020-7211 | tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ ... | bookworm, bullseye, sid, trixie |
libsndfile | CVE-2018-13139 | A stack-based buffer overflow in psf_memset in common.c in libsndfile ... | stretch |
CVE-2018-19432 | An issue was discovered in libsndfile 1.0.28. There is a NULL pointer ... | stretch | |
libsolv | CVE-2018-20534 | There is an illegal address access at ext/testcase.c in libsolv.a in l ... | buster, jessie, stretch |
CVE-2021-3200 | Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * t ... | buster, jessie, stretch | |
CVE-2021-44568 | Two heap-overflow vulnerabilities exist in openSUSE/libsolv libsolv th ... | buster, jessie, stretch | |
libspiro | CVE-2019-19847 | Libspiro through 20190731 has a stack-based buffer overflow in the spi ... | buster, stretch |
libspring-java | CVE-2016-1000027 | Pivotal Spring Framework through 5.3.16 suffers from a potential remot ... | jessie |
CVE-2020-5421 | In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5. ... | buster, jessie, stretch | |
CVE-2021-22060 | In Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-22096 | In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-22950 | n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-22965 | A Spring MVC or Spring WebFlux application running on JDK 9+ may be vu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-22968 | In Spring Framework versions 5.3.0 - 5.3.18, 5.2.0 - 5.2.20, and older ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-22970 | In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-22971 | In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-20860 | Spring Framework running version 6.0.0 - 6.0.6 or 5.3.0 - 5.3.25 using ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-20861 | In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELE ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-20863 | In spring framework versions prior to 5.2.24 release+ ,5.3.27+ and 6.0 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-22243 | Applications that use UriComponentsBuilderto parse an externally provi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-22259 | Applications that use UriComponentsBuilder in Spring Frameworkto parse ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-22262 | Applications that use UriComponentsBuilderto parse an externally provi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38807 | Applications that use spring-boot-loaderor spring-boot-loader-classica ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38808 | In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported vers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38809 | Applications that parse ETags from "If-Match" or "If-None-Match" reque ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38816 | Applications serving static resources through the functional web frame ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38819 | Applications serving static resources through the functional web frame ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38820 | The fix for CVE-2022-22968 made disallowedFieldspatterns in DataBinder ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38828 | Spring MVC controller methods with an @RequestBody byte[]method parame ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-38829 | A vulnerability in Spring LDAP allows data exposure for case sensitive ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libstb | CVE-2022-27938 | stb_image.h (aka the stb image loader) 2.19, as used in libsixel and o ... | bookworm, bullseye, buster, sid, trixie |
CVE-2022-28048 | STB v2.27 was discovered to contain an integer shift of invalid size i ... | bookworm, bullseye, buster | |
libtasn1-6 | CVE-2018-1000654 | GNU Libtasn1-4.13 libtasn1-4.13 version libtasn1-4.13, libtasn1-4.12 c ... | buster, jessie, stretch |
libuv | CVE-2014-9748 | The uv_rwlock_t fallback implementation for Windows XP and Server 2003 ... | jessie |
libuv1 | CVE-2020-8252 | The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14 ... | buster |
libv8-3.14 | CVE-2013-2632 | Google V8 before 3.17.13, as used in Google Chrome before 27.0.1444.3, ... | jessie, stretch |
CVE-2013-2838 | Google V8, as used in Google Chrome before 27.0.1453.93, allows remote ... | jessie, stretch | |
CVE-2013-2882 | Google V8, as used in Google Chrome before 28.0.1500.95, allows remote ... | jessie, stretch | |
CVE-2013-2919 | Google V8, as used in Google Chrome before 30.0.1599.66, allows remote ... | jessie, stretch | |
CVE-2013-6638 | Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7, ... | jessie, stretch | |
CVE-2013-6649 | Use-after-free vulnerability in the RenderSVGImage::paint function in ... | jessie, stretch | |
CVE-2013-6650 | The StoreBuffer::ExemptPopularPages function in store-buffer.cc in Goo ... | jessie, stretch | |
CVE-2013-6668 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, a ... | jessie, stretch | |
CVE-2014-1704 | Multiple unspecified vulnerabilities in Google V8 before 3.23.17.18, a ... | jessie, stretch | |
CVE-2014-1705 | Google V8, as used in Google Chrome before 33.0.1750.152 on OS X and L ... | jessie, stretch | |
CVE-2014-1716 | Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype f ... | jessie, stretch | |
CVE-2014-1717 | Google V8, as used in Google Chrome before 34.0.1847.116, does not pro ... | jessie, stretch | |
CVE-2014-1729 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.22, a ... | jessie, stretch | |
CVE-2014-1730 | Google V8, as used in Google Chrome before 34.0.1847.131 on Windows an ... | jessie, stretch | |
CVE-2014-1735 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.33, a ... | jessie, stretch | |
CVE-2014-1736 | Integer overflow in api.cc in Google V8, as used in Google Chrome befo ... | jessie, stretch | |
CVE-2014-3152 | Integer underflow in the LCodeGen::PrepareKeyedOperand function in arm ... | jessie, stretch | |
CVE-2014-3188 | Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 ... | jessie, stretch | |
CVE-2014-3195 | Google V8, as used in Google Chrome before 38.0.2125.101, does not pro ... | jessie, stretch | |
CVE-2014-3199 | The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the ... | jessie, stretch | |
CVE-2014-7192 | Eval injection vulnerability in index.js in the syntax-error package b ... | jessie, stretch | |
CVE-2014-7927 | The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-l ... | jessie, stretch | |
CVE-2014-7928 | hydrogen.cc in Google V8, as used Google Chrome before 40.0.2214.91, d ... | jessie, stretch | |
CVE-2014-7931 | factory.cc in Google V8, as used in Google Chrome before 40.0.2214.91, ... | jessie, stretch | |
CVE-2014-7939 | Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 ... | jessie, stretch | |
CVE-2014-7967 | Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, a ... | jessie, stretch | |
CVE-2015-1230 | The getHiddenProperty function in bindings/core/v8/V8EventListenerList ... | jessie, stretch | |
CVE-2015-1290 | The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and ... | jessie, stretch | |
CVE-2015-1304 | object-observe.js in Google V8, as used in Google Chrome before 45.0.2 ... | jessie, stretch | |
CVE-2015-1346 | Multiple unspecified vulnerabilities in Google V8 before 3.30.33.15, a ... | jessie, stretch | |
CVE-2015-2238 | Multiple unspecified vulnerabilities in Google V8 before 4.1.0.21, as ... | jessie, stretch | |
CVE-2015-3333 | Multiple unspecified vulnerabilities in Google V8 before 4.2.77.14, as ... | jessie, stretch | |
CVE-2015-3336 | Google Chrome before 42.0.2311.90 does not always ask the user before ... | jessie, stretch | |
CVE-2015-6764 | The BasicJsonStringifier::SerializeJSArray function in json-stringifie ... | jessie, stretch | |
CVE-2015-6771 | js/array.js in Google V8, as used in Google Chrome before 47.0.2526.73 ... | jessie, stretch | |
CVE-2015-6774 | Use-after-free vulnerability in the GetLoadTimes function in renderer/ ... | jessie, stretch | |
libvncserver | CVE-2019-15680 | TightVNC code version 1.3.10 contains null pointer dereference in Hand ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libvpx | CVE-2015-1258 | Google Chrome before 43.0.2357.65 relies on libvpx code that was not b ... | jessie |
CVE-2015-4506 | Buffer overflow in the vp9_init_context_buffers function in libvpx, as ... | jessie | |
CVE-2017-0641 | A remote denial of service vulnerability in libvpx in Mediaserver coul ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libvterm | CVE-2018-20786 | libvterm through 0+bzr726, as used in Vim and other products, mishandl ... | bookworm, bullseye, buster, sid, stretch, trixie |
libwebp | CVE-2016-9085 | Multiple integer overflows in libwebp allows attackers to have unspeci ... | jessie |
libwmf | CVE-2007-3476 | Array index error in gd_gif_in.c in the GD Graphics Library (libgd) be ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2007-3477 | The (a) imagearc and (b) imagefilledarc functions in GD Graphics Libra ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-3996 | Multiple integer overflows in libgd in PHP before 5.2.4 allow remote a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-3546 | The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0601525-BEBB65 | libgd2: gdImageColorTransparent can write outside buffer | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
libxerces2-java | CVE-2012-0881 | Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to ca ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libxfont1 | CVE-2017-13720 | In the PatternMatch function in fontfile/fontdir.c in libXfont through ... | stretch |
CVE-2017-13722 | In the pcfGetProperties function in bitmap/pcfread.c in libXfont throu ... | stretch | |
CVE-2017-16611 | In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker ... | stretch | |
libxml2 | CVE-2024-34459 | An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libxslt | CVE-2015-9019 | In libxslt 1.1.29 and earlier, the EXSLT math.random function was not ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
libxsmm | CVE-2018-20543 | There is an attempted excessive memory allocation at libxsmm_sparse_cs ... | bookworm, sid, trixie |
libxstream-java | CVE-2022-40151 | Those using Xstream to seralize XML data may be vulnerable to Denial o ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
lilo | CVE-2008-3895 | LILO 22.6.1 and earlier stores pre-boot authentication passwords in th ... | buster, jessie, stretch |
links2 | CVE-2017-11114 | The put_chars function in html_r.c in Twibright Links 2.14 allows remo ... | jessie, stretch |
linux | CVE-2004-0230 | TCP, when using a large Window Size, makes it easier for remote attack ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2005-3660 | Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-3719 | The process scheduler in the Linux kernel 2.6.16 gives preference to " ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2008-2544 | Mounting /proc filesystem via chroot command silently mounts it in rea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2008-4609 | The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2010-4563 | The Linux kernel, when using IPv6, allows remote attackers to determin ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2010-5321 | Memory leak in drivers/media/video/videobuf-core.c in the videobuf sub ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2011-4915 | fs/proc/base.c in the Linux kernel through 3.1 allows local users to o ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2011-4916 | Linux kernel through 3.1 allows local users to obtain sensitive keystr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2011-4917 | In the Linux kernel through 3.1 there is an information disclosure iss ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2012-4542 | block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2014-3180 | In kernel/compat.c in the Linux kernel before 3.17, as used in Google ... | jessie | |
CVE-2014-9892 | The snd_compr_tstamp function in sound/core/compress_offload.c in the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2014-9900 | The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2015-2877 | Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 through 4.x d ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2015-4001 | Integer signedness error in the oz_hcd_get_desc_cnf function in driver ... | jessie | |
CVE-2015-4002 | drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux k ... | jessie | |
CVE-2015-4003 | The oz_usb_handle_ep_data function in drivers/staging/ozwpan/ozusbsvc1 ... | jessie | |
CVE-2015-4004 | The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untru ... | jessie | |
CVE-2015-7837 | The Linux kernel, as used in Red Hat Enterprise Linux 7, kernel-rt, an ... | jessie | |
CVE-2015-7885 | The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in th ... | jessie | |
CVE-2015-8967 | arch/arm64/kernel/sys.c in the Linux kernel before 4.0 allows local us ... | jessie | |
CVE-2016-3857 | The kernel in Android before 2016-08-05 on Nexus 7 (2013) devices allo ... | jessie | |
CVE-2016-8660 | The XFS subsystem in the Linux kernel through 4.8.2 allows local users ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2016-9120 | Race condition in the ion_ioctl function in drivers/staging/android/io ... | jessie | |
CVE-2016-10723 | An issue was discovered in the Linux kernel through 4.17.2. Since the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-0630 | An information disclosure vulnerability in the kernel trace subsystem ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-9984 | The snd_msnd_interrupt function in sound/isa/msnd/msnd_pinnacle.c in t ... | jessie | |
CVE-2017-9985 | The snd_msndmidi_input_read function in sound/isa/msnd/msnd_midi.c in ... | jessie | |
CVE-2017-9986 | The intr function in sound/oss/msnd_pinnacle.c in the Linux kernel thr ... | jessie, stretch | |
CVE-2017-11472 | The acpi_ns_terminate() function in drivers/acpi/acpica/nsutils.c in t ... | jessie, stretch | |
CVE-2017-12762 | In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied in ... | jessie, stretch | |
CVE-2017-13693 | The acpi_ds_create_operands() function in drivers/acpi/acpica/dsutils. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-13694 | The acpi_ps_complete_final_op() function in drivers/acpi/acpica/psobje ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-13695 | The acpi_ns_evaluate() function in drivers/acpi/acpica/nseval.c in the ... | jessie, stretch | |
CVE-2017-18255 | The perf_cpu_time_max_percent_handler function in kernel/events/core.c ... | jessie | |
CVE-2018-1121 | procps-ng, procps is vulnerable to a process hiding through race condi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8043 | The unimac_mdio_probe function in drivers/net/phy/mdio-bcm-unimac.c in ... | stretch | |
CVE-2018-9465 | In task_get_unused_fd_flags of binder.c, there is a possible memory co ... | jessie | |
CVE-2018-17977 | The Linux kernel 4.14.67 mishandles certain interaction among XFRM Net ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-20669 | An issue where a provided address with access_ok() is not checked was ... | jessie, stretch | |
CVE-2019-11191 | The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and i ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12378 | An issue was discovered in ip6_ra_control in net/ipv6/ipv6_sockglue.c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12379 | An issue was discovered in con_insert_unipair in drivers/tty/vt/consol ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12380 | **DISPUTED** An issue was discovered in the efi subsystem in the Linux ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12381 | An issue was discovered in ip_ra_control in net/ipv4/ip_sockglue.c in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12382 | An issue was discovered in drm_load_edid_firmware in drivers/gpu/drm/d ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12455 | An issue was discovered in sunxi_divs_clk_setup in drivers/clk/sunxi/c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12456 | An issue was discovered in the MPT3COMMAND case in _ctl_ioctl_main in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12614 | An issue was discovered in dlpar_parse_cc_property in arch/powerpc/pla ... | jessie | |
CVE-2019-12615 | An issue was discovered in get_vdev_port_node_info in arch/sparc/kerne ... | buster, jessie, stretch | |
CVE-2019-16229 | drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c in the Linux kernel 5.2.14 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-16230 | drivers/gpu/drm/radeon/radeon_display.c in the Linux kernel 5.2.14 doe ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-16231 | drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-16232 | drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-16233 | drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not chec ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-16234 | drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-18808 | A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ ... | jessie, stretch | |
CVE-2019-19046 | A memory leak in the __ipmi_bmc_register() function in drivers/char/ip ... | jessie, stretch | |
CVE-2019-19049 | A memory leak in the unittest_data_add() function in drivers/of/unitte ... | jessie | |
CVE-2019-19054 | A memory leak in the cx23888_ir_probe() function in drivers/media/pci/ ... | jessie, stretch | |
CVE-2019-19060 | A memory leak in the adis_update_scan_mode() function in drivers/iio/i ... | jessie, stretch | |
CVE-2019-19061 | A memory leak in the adis_update_scan_mode_burst() function in drivers ... | jessie, stretch | |
CVE-2019-19063 | Two memory leaks in the rtl_usb_probe() function in drivers/net/wirele ... | jessie | |
CVE-2019-19064 | A memory leak in the fsl_lpspi_probe() function in drivers/spi/spi-fsl ... | buster, jessie, stretch | |
CVE-2019-19067 | Four memory leaks in the acp_hw_init() function in drivers/gpu/drm/amd ... | jessie, stretch | |
CVE-2019-19070 | A memory leak in the spi_gpio_probe() function in drivers/spi/spi-gpio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-19075 | A memory leak in the ca8210_probe() function in drivers/net/ieee802154 ... | jessie, stretch | |
CVE-2019-19083 | Memory leaks in *clock_source_create() functions under drivers/gpu/drm ... | buster | |
CVE-2019-19378 | In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-0432 | In skb_to_mamac of networking.c, there is a possible out of bounds wri ... | jessie | |
CVE-2020-11725 | snd_ctl_elem_add in sound/core/control.c in the Linux kernel through 5 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-12656 | gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_g ... | jessie | |
CVE-2020-12912 | A potential vulnerability in the AMD extension to Linux "hwmon" servic ... | jessie | |
CVE-2020-14331 | A flaw was found in the Linux kernel\u2019s implementation of the inve ... | jessie | |
CVE-2020-27820 | A vulnerability was found in Linux kernel, where a use-after-frees in ... | buster, jessie, stretch | |
CVE-2020-35501 | A flaw was found in the Linux kernels implementation of audit rules, w ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-0929 | In ion_dma_buf_end_cpu_access and related functions of ion.c, there is ... | buster, jessie, stretch | |
CVE-2021-0938 | In memzero_explicit of compiler-clang.h, there is a possible bypass of ... | jessie | |
CVE-2021-3178 | fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an ... | jessie | |
CVE-2021-3543 | A flaw null pointer dereference in the Nitro Enclaves kernel driver wa ... | jessie | |
CVE-2021-3714 | A flaw was found in the Linux kernels memory deduplication mechanism. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-3736 | A flaw was found in the Linux kernel. A memory leak problem was found ... | jessie | |
CVE-2021-3760 | A flaw was found in the Linux kernel. A use-after-free vulnerability i ... | jessie | |
CVE-2021-4135 | A memory leak vulnerability was found in the Linux kernel's eBPF for t ... | jessie | |
CVE-2021-4202 | A use-after-free flaw was found in nci_request in net/nfc/nci/core.c i ... | jessie | |
CVE-2021-26934 | An issue was discovered in the Linux kernel 4.18 through 5.10.16, as u ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2021-28039 | An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as u ... | jessie | |
CVE-2021-28952 | An issue was discovered in the Linux kernel through 5.11.8. The sound/ ... | jessie | |
CVE-2021-29266 | An issue was discovered in the Linux kernel before 5.11.9. drivers/vho ... | jessie | |
CVE-2021-32078 | An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/perso ... | bullseye, buster, jessie, stretch | |
CVE-2021-38204 | drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allow ... | jessie | |
CVE-2021-45100 | The ksmbd server through 3.4.2, as used in the Linux kernel through 5. ... | jessie | |
CVE-2022-0400 | An out-of-bounds read vulnerability was discovered in linux kernel in ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2022-0487 | A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in ... | jessie | |
CVE-2022-0998 | An integer overflow flaw was found in the Linux kernel\u2019s virtio d ... | jessie | |
CVE-2022-1247 | An issue found in linux-kernel that leads to a race condition in rose_ ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-1516 | A NULL pointer dereference flaw was found in the Linux kernel\u2019s X ... | jessie | |
CVE-2022-1734 | A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in driver ... | jessie | |
CVE-2022-1882 | A use-after-free flaw was found in the Linux kernel\u2019s pipes funct ... | jessie | |
CVE-2022-1973 | A use-after-free flaw was found in the Linux kernel in log_replay in f ... | jessie | |
CVE-2022-2961 | A use-after-free flaw was found in the Linux kernel\u2019s PLP Rose fu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-2991 | A heap-based buffer overflow was found in the Linux kernel's LightNVM ... | jessie, stretch | |
CVE-2022-3238 | A double-free flaw was found in the Linux kernel\u2019s NTFS3 subsyste ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-3424 | A use-after-free flaw was found in the Linux kernel\u2019s SGI GRU dri ... | jessie, stretch | |
CVE-2022-3521 | A vulnerability has been found in Linux Kernel and classified as probl ... | jessie, stretch | |
CVE-2022-4842 | A flaw NULL Pointer Dereference in the Linux kernel NTFS3 driver funct ... | jessie, stretch | |
CVE-2022-25265 | In the Linux kernel through 5.16.10, certain binary files may have the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-26878 | drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a ... | jessie | |
CVE-2022-32981 | An issue was discovered in the Linux kernel through 5.18.3 on powerpc ... | jessie, stretch | |
CVE-2022-39842 | An issue was discovered in the Linux kernel before 5.19. In pxa3xx_gcu ... | jessie, stretch | |
CVE-2022-41848 | drivers/char/pcmcia/synclink_cs.c in the Linux kernel through 5.19.12 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-44032 | An issue was discovered in the Linux kernel through 6.0.6. drivers/cha ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-44033 | An issue was discovered in the Linux kernel through 6.0.6. drivers/cha ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-44034 | An issue was discovered in the Linux kernel through 6.0.6. drivers/cha ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2022-45884 | An issue was discovered in the Linux kernel through 6.0.9. drivers/med ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-45885 | An issue was discovered in the Linux kernel through 6.0.9. drivers/med ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-45886 | An issue was discovered in the Linux kernel through 6.0.9. drivers/med ... | jessie, stretch | |
CVE-2022-45887 | An issue was discovered in the Linux kernel through 6.0.9. drivers/med ... | jessie, stretch | |
CVE-2022-45888 | An issue was discovered in the Linux kernel through 6.0.9. drivers/cha ... | jessie, stretch | |
CVE-2022-45919 | An issue was discovered in the Linux kernel through 6.0.10. In drivers ... | jessie, stretch | |
CVE-2022-48423 | In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate ... | jessie, stretch | |
CVE-2022-48424 | In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate t ... | jessie, stretch | |
CVE-2022-48425 | In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfr ... | jessie, stretch | |
CVE-2022-48502 | An issue was discovered in the Linux kernel before 6.2. The ntfs3 subs ... | jessie, stretch | |
CVE-2023-3141 | A use-after-free flaw was found in r592_remove in drivers/memstick/hos ... | jessie, stretch | |
CVE-2023-3640 | A possible unauthorized memory access flaw was found in the Linux kern ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-4134 | A use-after-free vulnerability was found in the cyttsp4_core driver in ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-6610 | An out-of-bounds read vulnerability was found in smb2_dump_detail in f ... | bullseye, buster, jessie, stretch | |
CVE-2023-22995 | In the Linux kernel before 5.17, an error path in dwc3_qcom_acpi_regis ... | bullseye, jessie, stretch | |
CVE-2023-23000 | In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles t ... | bullseye, buster, jessie, stretch | |
CVE-2023-23003 | In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check ... | bullseye, buster, jessie, stretch | |
CVE-2023-23039 | An issue was discovered in the Linux kernel through 6.2.0-rc2. drivers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-26242 | afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-26544 | In the Linux kernel 6.0.8, there is a use-after-free in run_unpack in ... | jessie, stretch | |
CVE-2023-26606 | In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs i ... | jessie, stretch | |
CVE-2023-30772 | The Linux kernel before 6.2.9 has a race condition and resultant use-a ... | jessie, stretch | |
CVE-2023-31081 | An issue was discovered in drivers/media/test-drivers/vidtv/vidtv_brid ... | bookworm, bullseye, jessie, sid, stretch, trixie | |
CVE-2023-31085 | An issue was discovered in drivers/mtd/ubi/cdev.c in the Linux kernel ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-34256 | An issue was discovered in the Linux kernel before 6.3.3. There is an ... | jessie, stretch | |
CVE-2023-35823 | An issue was discovered in the Linux kernel before 6.3.2. A use-after- ... | jessie, stretch | |
CVE-2023-35824 | An issue was discovered in the Linux kernel before 6.3.2. A use-after- ... | jessie, stretch | |
CVE-2023-35826 | An issue was discovered in the Linux kernel before 6.3.2. A use-after- ... | jessie, stretch | |
CVE-2023-35828 | An issue was discovered in the Linux kernel before 6.3.2. A use-after- ... | jessie, stretch | |
CVE-2023-35829 | An issue was discovered in the Linux kernel before 6.3.2. A use-after- ... | jessie, stretch | |
CVE-2023-39191 | An improper input validation flaw was found in the eBPF subsystem in t ... | bookworm, jessie, stretch | |
CVE-2023-45896 | ntfs3 in the Linux kernel through 6.8.0 allows a physically proximate ... | buster, jessie, stretch | |
CVE-2024-40918 | In the Linux kernel, the following vulnerability has been resolved: p ... | bookworm, bullseye, buster, jessie, stretch | |
TEMP-0000000-F7A20F | Kernel: Unprivileged user can freeze journald | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
linux-4.9 | CVE-2016-8660 | The XFS subsystem in the Linux kernel through 4.8.2 allows local users ... | jessie |
CVE-2016-10723 | An issue was discovered in the Linux kernel through 4.17.2. Since the ... | jessie | |
linuxptp | CVE-2024-42861 | An issue in IEEE 802.1AS linuxptp v.4.2 and before allowing a remote a ... | bookworm, bullseye, buster, sid, stretch, trixie |
lldpad | CVE-2018-10932 | lldptool version 1.0.1 and older can print a raw, unsanitized attacker ... | stretch |
llvm-toolchain-13 | CVE-2023-29932 | llvm-project commit fdbc55a5 was discovered to contain a segmentation ... | bookworm, bullseye, buster |
CVE-2023-29933 | llvm-project commit bd456297 was discovered to contain a segmentation ... | bookworm, bullseye, buster | |
CVE-2023-29934 | llvm-project commit 6c01b5c was discovered to contain a segmentation f ... | bookworm, bullseye, buster | |
CVE-2023-29935 | llvm-project commit a0138390 was discovered to contain an assertion fa ... | bookworm, bullseye, buster | |
CVE-2023-29939 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, bullseye, buster | |
CVE-2023-29941 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, bullseye, buster | |
CVE-2023-29942 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, bullseye, buster | |
llvm-toolchain-14 | CVE-2023-26924 | LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockReg ... | bookworm, sid |
CVE-2023-29932 | llvm-project commit fdbc55a5 was discovered to contain a segmentation ... | bookworm | |
CVE-2023-29933 | llvm-project commit bd456297 was discovered to contain a segmentation ... | bookworm, sid | |
CVE-2023-29934 | llvm-project commit 6c01b5c was discovered to contain a segmentation f ... | bookworm | |
CVE-2023-29935 | llvm-project commit a0138390 was discovered to contain an assertion fa ... | bookworm, sid | |
CVE-2023-29939 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm | |
CVE-2023-29941 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, sid | |
CVE-2023-29942 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, sid | |
CVE-2024-31852 | LLVM before 18.1.3 generates code in which the LR register can be over ... | bookworm, sid | |
llvm-toolchain-15 | CVE-2023-26924 | LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockReg ... | bookworm, trixie |
CVE-2023-29932 | llvm-project commit fdbc55a5 was discovered to contain a segmentation ... | bookworm | |
CVE-2023-29933 | llvm-project commit bd456297 was discovered to contain a segmentation ... | bookworm | |
CVE-2023-29934 | llvm-project commit 6c01b5c was discovered to contain a segmentation f ... | bookworm | |
CVE-2023-29935 | llvm-project commit a0138390 was discovered to contain an assertion fa ... | bookworm, trixie | |
CVE-2023-29939 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm | |
CVE-2023-29941 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, trixie | |
CVE-2023-29942 | llvm-project commit a0138390 was discovered to contain a segmentation ... | bookworm, trixie | |
CVE-2024-31852 | LLVM before 18.1.3 generates code in which the LR register can be over ... | bookworm, trixie, bookworm, bullseye, buster, sid, trixie | |
log4cxx | CVE-2023-31038 | SQL injection in Log4cxx when using the ODBC appender to send log mess ... | bookworm, bullseye, buster, jessie, stretch |
loguru | CVE-2022-0338 | Insertion of Sensitive Information into Log File in Conda loguru prior ... | bookworm, sid, trixie |
lrzip | CVE-2019-10654 | The lzo1x_decompress function in liblzo2.so.2 in LZO 2.10, as used in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-33451 | An issue was discovered in lrzip version 0.641. There are memory leaks ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33453 | An issue was discovered in lrzip version 0.641. There is a use-after-f ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-33067 | Lrzip v0.651 was discovered to contain multiple invalid arithmetic shi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
lua-cgi | CVE-2014-2875 | The session.lua library in CGILua 5.2 alpha 1 and 5.2 alpha 2 uses wea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
luajit | CVE-2019-19391 | In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other pro ... | bullseye, buster, jessie, stretch |
CVE-2020-15890 | LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc hand ... | bullseye, buster | |
CVE-2020-24372 | LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
lucene-solr | CVE-2017-3164 | Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-17558 | Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
lxc | CVE-2019-5736 | runc through 1.0-rc6, as used in Docker before 18.09.2 and other produ ... | jessie, stretch |
lxc-templates | CVE-2017-18641 | In LXC 2.0, many template scripts download code over cleartext HTTP, a ... | bookworm, bullseye, buster, sid, trixie |
lynis | CVE-2017-8108 | Unspecified tests in Lynis before 2.5.0 allow local users to write to ... | jessie, stretch |
CVE-2019-13033 | In CISOfy Lynis 2.x through 2.7.5, the license key can be obtained by ... | buster, stretch | |
CVE-2020-13882 | CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TO ... | buster, jessie, stretch | |
m2crypto | CVE-2009-0127 | M2Crypto does not properly check the return value from the OpenSSL EVP ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
m4 | CVE-2008-1687 | The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2008-1688 | Unspecified vulnerability in GNU m4 before 1.4.11 might allow context- ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
magpierss | CVE-2006-4735 | Kellan Elliott-McCrea MagpieRSS allows remote attackers to obtain sens ... | buster, jessie, stretch |
maildirsync | CVE-2008-5150 | sample.sh in maildirsync 1.1 allows local users to append data to arbi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mailutils | CVE-2019-18862 | maidag in GNU Mailutils before 3.8 is installed setuid and allows loca ... | jessie, stretch |
man2html | CVE-2021-40648 | In man2html 1.6g, a filename can be created to overwrite the previous ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mapcache | CVE-2019-20005 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-20006 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20007 | An issue was discovered in ezXML 0.8.2 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20198 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20199 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20200 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20201 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_ ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20202 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-26220 | The ezxml_toxml function in ezxml 0.8.6 and earlier is vulnerable to O ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-26221 | The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-26222 | The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-30485 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-31229 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-31347 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-31348 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-31598 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-30045 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
matanza | CVE-2009-3560 | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2009-3720 | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
mathtex | CVE-2023-51890 | An infinite loop issue discovered in Mathtex 1.05 and before allows a ... | bookworm, bullseye, buster, jessie, stretch |
maxima | CVE-2024-34490 | In Maxima through 5.47.0 before 51704c, the plotting facilities make u ... | bookworm, bullseye, buster, jessie, stretch |
mbedtls | CVE-2018-1000520 | ARM mbedTLS version 2.7.0 and earlier contains a Ciphersuite Allows In ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2023-43615 | Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow. | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2024-45157 | An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1 ... | bookworm, bullseye, sid, stretch, trixie | |
mc | CVE-2023-45925 | GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mcollective | CVE-2014-0175 | mcollective has a default password set at install | bookworm, bullseye, buster, jessie |
mdadm | CVE-2014-5220 | The mdcheck script of the mdadm package for openSUSE 13.2 prior to ver ... | jessie |
CVE-2023-28938 | Uncontrolled resource consumption in some Intel(R) SSD Tools software ... | bullseye, buster, jessie, stretch | |
mediaelement | CVE-2016-4567 | Cross-site scripting (XSS) vulnerability in flash/FlashMediaElement.as ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mediawiki | CVE-2020-36649 | A vulnerability was found in mholt PapaParse up to 5.1.x. It has been ... | stretch |
mediawiki-extensions | CVE-2013-4305 | Cross-site scripting (XSS) vulnerability in contrib/example.php in the ... | jessie |
mensis | CVE-2017-17534 | uiutil.c in Mensis 0.0.080507 does not validate strings before launchi ... | jessie |
mercurial | CVE-2018-17983 | cext/manifest.c in Mercurial before 4.7.2 has an out-of-bounds read du ... | stretch |
mesa | CVE-2023-45913 | Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-45919 | Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-45922 | glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-45931 | Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
metview | CVE-2017-17515 | etc/ObjectList in Metview 4.7.3 does not validate strings before launc ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mgetty | CVE-2018-16742 | An issue was discovered in mgetty before 1.2.1. In contrib/scrts.c, a ... | jessie, stretch |
CVE-2018-16743 | An issue was discovered in mgetty before 1.2.1. In contrib/next-login/ ... | jessie, stretch | |
mh-book | CVE-2008-5152 | inmail-show in mh-book 200605 allows local users to overwrite arbitrar ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
midori | CVE-2012-2132 | libsoup 2.32.2 and earlier does not validate certificates or clear the ... | bullseye, buster, stretch |
CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | bullseye, buster, stretch | |
milkytracker | CVE-2022-34927 | MilkyTracker v1.03.00 was discovered to contain a stack overflow via t ... | bookworm, bullseye, buster, jessie, stretch |
mingw-w64 | CVE-2018-5392 | mingw-w64 version 5.0.4 by default produces executables that opt in to ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mini-httpd | CVE-2009-4490 | mini_httpd 1.19 writes data to a log file without sanitizing non-print ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2017-17663 | The htpasswd implementation of mini_httpd before v1.28 and of thttpd b ... | bookworm, bullseye, buster, sid, stretch, trixie | |
minidjvu | CVE-2017-12441 | The row_is_empty function in base/4bitmap.c:274 in minidjvu 0.8 can ca ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-12442 | The row_is_empty function in base/4bitmap.c:272 in minidjvu 0.8 can ca ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-12443 | The mdjvu_bitmap_pack_row function in base/4bitmap.c in minidjvu 0.8 c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-12444 | The mdjvu_bitmap_get_bounding_box function in base/4bitmap.c in minidj ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-12445 | The JB2BitmapCoder::code_row_by_refinement function in jb2/bmpcoder.cp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
minidlna | CVE-2023-47430 | Stack-buffer-overflow vulnerability in ReadyMedia (MiniDLNA) v1.3.3 al ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
miniupnpc | CVE-2017-1000494 | Uninitialized stack variable vulnerability in NameValueParserEndElt (u ... | jessie, stretch |
minizinc | CVE-2023-46046 | An issue in MiniZinc before 2.8.0 allows a NULL pointer dereference vi ... | bookworm, bullseye, buster, stretch |
modsecurity-crs | CVE-2019-11387 | An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ... | jessie |
CVE-2019-11388 | An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-11389 | An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-11390 | An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-11391 | An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
moin | CVE-2007-0902 | Unspecified vulnerability in the "Show debugging information" feature ... | buster, jessie, stretch |
mojarra | CVE-2010-2087 | Oracle Mojarra 1.2_14 and 2.0.2, as used in IBM WebSphere Application ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mongodb | CVE-2015-2327 | PCRE before 8.36 mishandles the /(((a\2)|(a*)\g<-1>))*/ pattern and re ... | jessie, stretch |
CVE-2015-2328 | PCRE before 8.36 mishandles the /((?(R)a|(?1)))+/ pattern and related ... | jessie, stretch | |
monitoring-plugins | CVE-2023-37154 | check_by_ssh in Nagios nagios-plugins 2.4.5 allows arbitrary command e ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mono-reference-assemblies | CVE-2018-1002208 | SharpZipLib before 1.0 RC1 is vulnerable to directory traversal, allow ... | stretch |
monopd | CVE-2015-0841 | Off-by-one error in the readBuf function in listener.cpp in libcapsine ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mootools | CVE-2021-32821 | MooTools is a collection of JavaScript utilities for JavaScript develo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mozilla-noscript | CVE-2018-16983 | NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other ... | buster, jessie |
mp3splt | CVE-2017-5665 | The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allo ... | bookworm, bullseye, buster, jessie, sid, trixie |
CVE-2017-5666 | The free_options function in options_manager.c in mp3splt 2.6.2 allows ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2017-5851 | The free_options function in options_manager.c in mp3splt 2.6.2 allows ... | bookworm, bullseye, buster, jessie, sid, trixie | |
mpg123 | CVE-2017-11126 | The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25 ... | jessie, stretch |
mplayer | CVE-2022-38600 | Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf ... | bullseye, buster, stretch |
CVE-2022-38850 | The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide ... | stretch | |
CVE-2022-38851 | Certain The MPlayer Project products are vulnerable to Out-of-bounds R ... | stretch | |
CVE-2022-38853 | Certain The MPlayer Project products are vulnerable to Buffer Overflow ... | bullseye, buster, stretch | |
CVE-2022-38855 | Certain The MPlayer Project products are vulnerable to Buffer Overflow ... | stretch | |
CVE-2022-38856 | Certain The MPlayer Project products are vulnerable to Buffer Overflow ... | bullseye, buster, stretch | |
CVE-2022-38858 | Certain The MPlayer Project products are vulnerable to Buffer Overflow ... | stretch | |
CVE-2022-38860 | Certain The MPlayer Project products are vulnerable to Divide By Zero ... | stretch | |
CVE-2022-38863 | Certain The MPlayer Project products are vulnerable to Buffer Overflow ... | stretch | |
CVE-2022-38865 | Certain The MPlayer Project products are vulnerable to Divide By Zero ... | stretch | |
CVE-2022-38866 | Certain The MPlayer Project products are vulnerable to Buffer Overflow ... | stretch | |
mupdf | CVE-2016-10246 | Buffer overflow in the main function in jstest_main.c in Mujstest in A ... | jessie |
CVE-2016-10247 | Buffer overflow in the my_getline function in jstest_main.c in Mujstes ... | jessie | |
CVE-2017-6060 | Stack-based buffer overflow in jstest_main.c in mujstest in Artifex So ... | jessie | |
CVE-2018-19777 | In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg ... | buster, jessie, stretch | |
CVE-2018-19881 | In Artifex MuPDF 1.14.0, svg/svg-run.c allows remote attackers to caus ... | jessie | |
CVE-2018-19882 | In Artifex MuPDF 1.14.0, the svg_run_image function in svg/svg-run.c a ... | jessie | |
CVE-2018-1000036 | In Artifex MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF ... | jessie | |
CVE-2020-26683 | A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Softw ... | bullseye, buster, jessie, stretch | |
CVE-2021-4216 | A Floating point exception (division-by-zero) flaw was found in Mupdf ... | bullseye, buster, jessie, stretch | |
CVE-2023-31794 | MuPDF v1.21.1 was discovered to contain an infinite recursion in the c ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-51103 | A floating point exception (divide-by-zero) vulnerability was discover ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-51104 | A floating point exception (divide-by-zero) vulnerability was discover ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-51105 | A floating point exception (divide-by-zero) vulnerability was discover ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-51106 | A floating point exception (divide-by-zero) vulnerability was discover ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-51107 | A floating point exception (divide-by-zero) vulnerability was discover ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-46657 | Artifex Software mupdf v1.24.9 was discovered to contain a segmentatio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
musescore | CVE-2023-26923 | Musescore 3.0 to 4.0.1 has a stack buffer overflow vulnerability that ... | jessie, stretch, bookworm, bullseye, sid, trixie |
mustache.js | CVE-2015-8861 | The handlebars package before 4.0.0 for Node.js allows remote attacker ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2015-8862 | mustache package before 2.2.1 for Node.js allows remote attackers to c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0000000-137F0A | quoteless attributes in templates can lead to content injection | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
mutt | CVE-2007-1268 | Mutt 1.5.13 and earlier does not properly use the --status-fd argument ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2020-14154 | Mutt before 1.14.3 proceeds with a connection even if, in response to ... | jessie, stretch | |
CVE-2024-49393 | In neomutt and mutt, the To and Cc email headers are not validated by ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-49394 | In mutt and neomutt the In-Reply-To email header field is not protecte ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-49395 | In mutt and neomutt, PGP encryption does not use the --hidden-recipien ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0775199-D05A9E | smime_keys: insecure use of /tmp | jessie | |
mxml | CVE-2018-20005 | An issue has been found in Mini-XML (aka mxml) 2.12. It is a use-after ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
mycli | CVE-2023-44690 | Inadequate encryption strength in mycli 1.27.0 allows attackers to vie ... | bookworm, bullseye, buster, sid, stretch, trixie |
mysql-5.5 | CVE-2012-5613 | MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a and poss ... | jessie |
CVE-2012-5627 | Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and ... | jessie | |
nacl | CVE-2015-0565 | NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
nagios3 | CVE-2008-5027 | The Nagios process in (1) Nagios before 3.0.5 and (2) op5 Monitor befo ... | jessie |
nagios4 | CVE-2020-35269 | Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross ... | bookworm, bullseye, buster, sid, trixie |
nasm | CVE-2017-14228 | In Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ... | jessie, stretch |
CVE-2018-10316 | Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the asse ... | jessie, stretch | |
CVE-2018-16382 | Netwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regfla ... | jessie, stretch | |
CVE-2018-16517 | asm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dere ... | jessie, stretch | |
CVE-2018-16999 | Netwide Assembler (NASM) 2.14rc15 has an invalid memory write (segment ... | jessie, stretch | |
CVE-2018-19209 | Netwide Assembler (NASM) 2.14rc15 has a NULL pointer dereference in th ... | jessie, stretch | |
CVE-2018-19213 | Netwide Assembler (NASM) through 2.14rc16 has memory leaks that may le ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-19214 | Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in ... | jessie, stretch | |
CVE-2018-19215 | Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in ... | jessie, stretch | |
CVE-2018-19755 | There is an illegal address access at asm/preproc.c (function: is_mmac ... | buster, jessie, stretch | |
CVE-2018-20535 | There is a use-after-free at asm/preproc.c (function pp_getline) in Ne ... | buster, jessie, stretch | |
CVE-2018-20538 | There is a use-after-free at asm/preproc.c (function pp_getline) in Ne ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-1000667 | NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains ... | jessie, stretch | |
CVE-2018-1000886 | nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-6290 | An infinite recursion issue was discovered in eval.c in Netwide Assemb ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-6291 | An issue was discovered in the function expr6 in eval.c in Netwide Ass ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-8343 | In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in past ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-14248 | In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows ... | buster, jessie, stretch | |
CVE-2019-20334 | In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20352 | In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occ ... | buster, jessie, stretch | |
CVE-2020-18780 | A Use After Free vulnerability in function new_Token in asm/preproc.c ... | buster, jessie, stretch | |
CVE-2020-18974 | Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-21528 | A Segmentation Fault issue discovered in in ieee_segment function in o ... | bullseye, buster, jessie, stretch | |
CVE-2020-21685 | Buffer Overflow vulnerability in hash_findi function in hashtbl.c in n ... | buster, jessie, stretch | |
CVE-2020-21687 | Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2. ... | buster, jessie, stretch | |
CVE-2020-24241 | In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in ... | buster, jessie, stretch | |
CVE-2020-24242 | In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_tex ... | buster, jessie, stretch | |
CVE-2021-33450 | An issue was discovered in NASM version 2.16rc0. There are memory leak ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33452 | An issue was discovered in NASM version 2.16rc0. There are memory leak ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45256 | A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45257 | An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_t ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-29654 | Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm ... | bullseye, buster, jessie, stretch | |
CVE-2022-41420 | nasm v2.16 was discovered to contain a stack overflow in the Ndisasm c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-44368 | NASM v2.16 was discovered to contain a null pointer deference in the N ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-44369 | NASM 2.16 (development) is vulnerable to 476: Null Pointer Dereference ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-44370 | NASM v2.16 was discovered to contain a heap buffer overflow in the com ... | bullseye, buster, jessie, stretch | |
CVE-2022-46456 | NASM v2.16 was discovered to contain a global buffer overflow in the c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-46457 | NASM v2.16 was discovered to contain a segmentation violation in the c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31722 | There exists a heap buffer overflow in nasm 2.16.02rc1 (GitHub commit: ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-38665 | Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows att ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-38667 | Stack-based buffer over-read in function disasm in nasm 2.16 allows at ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-38668 | Stack-based buffer over-read in disasm in nasm 2.16 allows attackers t ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
nautilus | CVE-2022-37290 | GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename ... | bullseye, buster, jessie, stretch |
ncurses | CVE-2021-39537 | An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in ca ... | jessie, stretch |
neomutt | CVE-2020-14154 | Mutt before 1.14.3 proceeds with a connection even if, in response to ... | buster |
CVE-2024-49393 | In neomutt and mutt, the To and Cc email headers are not validated by ... | bookworm, bullseye, buster | |
CVE-2024-49394 | In mutt and neomutt the In-Reply-To email header field is not protecte ... | bookworm, bullseye, buster | |
CVE-2024-49395 | In mutt and neomutt, PGP encryption does not use the --hidden-recipien ... | bookworm, bullseye, buster, sid, trixie | |
net-tools | CVE-2002-1976 | ifconfig, when used on the Linux kernel 2.2 and later, does not report ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
netbeans | CVE-2019-17560 | The "Apache NetBeans" autoupdate system does not validate SSL certific ... | stretch |
CVE-2019-17561 | The "Apache NetBeans" autoupdate system does not fully validate code s ... | stretch | |
netdata | CVE-2019-9834 | The Netdata web application through 1.13.0 allows remote attackers to ... | bookworm, bullseye, buster, sid |
nethack | CVE-2019-19905 | NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability ... | buster, jessie, stretch |
CVE-2020-5209 | In NetHack before 3.6.5, unknown options starting with -de and -i can ... | buster, jessie, stretch | |
CVE-2020-5210 | In NetHack before 3.6.5, an invalid argument to the -w command line op ... | buster, jessie, stretch | |
CVE-2020-5211 | In NetHack before 3.6.5, an invalid extended command in value for the ... | buster, jessie, stretch | |
CVE-2020-5212 | In NetHack before 3.6.5, an extremely long value for the MENUCOLOR con ... | buster, jessie, stretch | |
CVE-2020-5213 | In NetHack before 3.6.5, too long of a value for the SYMBOL configurat ... | buster, jessie, stretch | |
CVE-2020-5214 | In NetHack before 3.6.5, detecting an unknown configuration file optio ... | buster, jessie, stretch | |
netmask | TEMP-0921565-C5FF8E | netmask: buffer overflow vulnerability | stretch |
netsurf | CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | jessie |
netty | CVE-2022-24823 | Netty is an open-source, asynchronous event-driven network application ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie, jessie, stretch |
network-manager | CVE-2020-10754 | It was found that nmcli, a command line interface to NetworkManager di ... | buster, jessie, stretch |
network-manager-applet | CVE-2017-6590 | An issue was discovered in network-manager-applet (aka network-manager ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
networkd-dispatcher | CVE-2022-29799 | A vulnerability was found in networkd-dispatcher. This flaw exists bec ... | bullseye, buster |
CVE-2022-29800 | A time-of-check-time-of-use (TOCTOU) race condition vulnerability was ... | bullseye, buster | |
neutron | CVE-2021-40797 | An issue was discovered in the routes middleware in OpenStack Neutron ... | jessie, stretch |
newlib | CVE-2024-30949 | An issue in newlib v.4.3.0 allows an attacker to execute arbitrary cod ... | bookworm, bullseye, buster, jessie, stretch |
nghttp2 | TEMP-0000000-A4EF31 | Null pointer access in inflatehd tool | jessie |
nginx | CVE-2009-4487 | nginx 0.7.64 writes data to a log file without sanitizing non-printabl ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consum ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-24989 | When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC mod ... | jessie, stretch | |
CVE-2024-24990 | When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC mod ... | jessie, stretch | |
CVE-2024-31079 | When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC mod ... | jessie, stretch | |
CVE-2024-32760 | When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC mod ... | jessie, stretch | |
CVE-2024-34161 | When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC mod ... | jessie, stretch | |
CVE-2024-35200 | When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC mod ... | jessie, stretch | |
nip2 | CVE-2017-17514 | boxes.c in nip2 8.4.0 does not validate strings before launching the p ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
nmap | CVE-2017-18594 | nse_libssh2.cc in Nmap 7.70 is subject to a denial of service conditio ... | buster, jessie, stretch |
CVE-2018-15173 | Nmap through 7.70, when the -sV option is used, allows remote attacker ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
nodau | CVE-2022-4399 | A vulnerability was found in TicklishHoneyBee nodau. It has been rated ... | bullseye, buster, jessie, stretch |
node-cli | CVE-2016-10538 | The package `node-cli` before 1.0.0 insecurely uses the lock_file and ... | jessie |
node-cookie-signature | CVE-2016-1000236 | Node-cookie-signature before 1.0.6 is affected by a timing attack due ... | jessie, stretch |
node-debug | CVE-2017-16137 | The debug module is vulnerable to regular expression denial of service ... | jessie, stretch |
node-deep-extend | CVE-2018-3750 | The utilities function in all versions <= 0.5.0 of the deep-extend nod ... | stretch |
node-ejs | CVE-2023-29827 | ejs v3.1.9 is vulnerable to server-side template injection. If the ejs ... | bookworm, bullseye, buster, sid, stretch, trixie |
node-express | CVE-2014-6393 | The Express web framework before 3.11 and 4.x before 4.5 for Node.js d ... | jessie, stretch |
node-extend | CVE-2018-16491 | A prototype pollution vulnerability was found in node.extend <1.1.7, ~ ... | jessie, stretch |
CVE-2018-16492 | A prototype pollution vulnerability was found in module extend <2.0.2, ... | jessie, stretch | |
node-formidable | CVE-2022-29622 | An arbitrary file upload vulnerability in formidable v3.1.4 allows att ... | bullseye, buster, jessie, stretch |
node-growl | CVE-2017-16042 | Growl adds growl notification support to nodejs. Growl before 1.10.2 d ... | jessie |
node-lodash | CVE-2018-3721 | lodash node module before 4.17.5 suffers from a Modification of Assume ... | jessie, stretch |
CVE-2018-16487 | A prototype pollution vulnerability was found in lodash <4.17.11 where ... | jessie, stretch | |
CVE-2019-1010266 | lodash prior to 4.17.11 is affected by: CWE-400: Uncontrolled Resource ... | jessie, stretch | |
node-marked | CVE-2015-1370 | Incomplete blacklist vulnerability in marked 0.3.2 and earlier for Nod ... | jessie |
CVE-2015-8854 | The marked package before 0.3.4 for Node.js allows attackers to cause ... | jessie | |
CVE-2016-10531 | marked is an application that is meant to parse and compile markdown. ... | jessie | |
CVE-2017-16114 | The marked module is vulnerable to a regular expression denial of serv ... | jessie, stretch | |
CVE-2017-1000427 | marked version 0.3.6 and earlier is vulnerable to an XSS attack in the ... | jessie, stretch | |
node-mime | CVE-2017-16138 | The mime module < 1.4.1, 2.0.1, 2.0.2 is vulnerable to regular express ... | jessie, stretch |
node-minimatch | CVE-2016-10540 | Minimatch is a minimal matching utility that works by converting glob ... | jessie |
node-moment | CVE-2017-18214 | The moment module before 2.19.3 for Node.js is prone to a regular expr ... | stretch |
node-negotiator | CVE-2016-10539 | negotiator is an HTTP content negotiator for Node.js and is used by ma ... | jessie, stretch |
node-postgres | CVE-2017-16082 | A remote code execution vulnerability was found within the pg module w ... | jessie |
node-semver | CVE-2015-8855 | The semver package before 4.3.2 for Node.js allows attackers to cause ... | jessie |
node-send | CVE-2015-8859 | The send package before 0.11.1 for Node.js allows attackers to obtain ... | jessie, stretch |
TEMP-0000000-FD1F92 | root path disclosure | jessie, stretch | |
node-serve-index | CVE-2015-8856 | Cross-site scripting (XSS) vulnerability in the serve-index package be ... | jessie, stretch |
node-tar | CVE-2015-8860 | The tar package before 2.0.0 for Node.js allows remote attackers to wr ... | jessie |
node-uuid | CVE-2015-8851 | node-uuid before 1.4.4 uses insufficiently random data to create a GUI ... | jessie, stretch |
node-ws | CVE-2016-10518 | A vulnerability was found in the ping functionality of the ws module b ... | jessie |
TEMP-0000000-BBB7D8 | remote memory disclosure | jessie | |
nodejs | CVE-2014-5256 | Node.js 0.8 before 0.8.28 and 0.10 before 0.10.30 does not consider th ... | jessie |
CVE-2014-9748 | The uv_rwlock_t fallback implementation for Windows XP and Server 2003 ... | jessie | |
CVE-2016-1669 | The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as us ... | jessie | |
CVE-2016-2086 | Node.js 0.10.x before 0.10.42, 0.12.x before 0.12.10, 4.x before 4.3.0 ... | jessie | |
CVE-2016-2216 | The HTTP header parsing code in Node.js 0.10.x before 0.10.42, 0.11.6 ... | jessie | |
CVE-2016-5325 | CRLF injection vulnerability in the ServerResponse#writeHead function ... | jessie | |
CVE-2016-7099 | The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, ... | jessie | |
CVE-2017-11499 | Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11. ... | jessie, stretch | |
CVE-2018-7158 | The `'path'` module in the Node.js 4.x release line contains a potenti ... | jessie, stretch | |
CVE-2018-7159 | The HTTP parser in all current versions of Node.js ignores spaces in t ... | jessie, stretch | |
CVE-2018-7167 | Calling Buffer.fill() or Buffer.alloc() with some parameters can lead ... | jessie, stretch | |
CVE-2018-12115 | In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when use ... | jessie, stretch | |
CVE-2018-12116 | Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request ... | jessie, stretch | |
CVE-2018-12120 | Node.js: All versions prior to Node.js 6.15.0: Debugger port 5858 list ... | jessie, stretch | |
CVE-2018-12121 | Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11. ... | jessie, stretch | |
CVE-2018-12122 | Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11. ... | jessie, stretch | |
CVE-2018-12123 | Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11. ... | jessie, stretch | |
CVE-2019-5737 | In Node.js including 6.x before 6.17.0, 8.x before 8.15.1, 10.x before ... | jessie, stretch | |
CVE-2019-5739 | Keep-alive HTTP and HTTPS connections can remain open and inactive for ... | jessie, stretch | |
nova | CVE-2013-0326 | OpenStack nova base images permissions are world readable | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
nsd | CVE-2016-6173 | NSD before 4.1.11 allows remote DNS master servers to cause a denial o ... | jessie |
nss | CVE-2017-11695 | Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/h ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-11696 | Heap-based buffer overflow in the __hash_open function in lib/dbm/src/ ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-11697 | The __hash_open function in hash.c:229 in Mozilla Network Security Ser ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-11698 | Heap-based buffer overflow in the __get_page function in lib/dbm/src/h ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
ntopng | CVE-2024-53426 | A heap-buffer-overflow vulnerability has been identified in ntopng 6.2 ... | buster, jessie, sid, stretch |
ntp | CVE-2016-2517 | NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to ... | jessie |
CVE-2017-6458 | Multiple buffer overflows in the ctl_put* functions in NTP before 4.2. ... | jessie | |
CVE-2017-6462 | Buffer overflow in the legacy Datum Programmable Time Server (DPTS) re ... | jessie | |
CVE-2018-12327 | Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 ... | bullseye, buster, jessie, stretch | |
CVE-2023-26551 | mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ... | bullseye, buster, jessie, stretch | |
CVE-2023-26552 | mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ... | bullseye, buster, jessie, stretch | |
CVE-2023-26553 | mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ... | bullseye, buster, jessie, stretch | |
CVE-2023-26554 | mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ... | bullseye, buster, jessie, stretch | |
numpy | CVE-2021-34141 | An incomplete string comparison in the numpy.core component in NumPy b ... | bookworm, bullseye, sid, trixie |
CVE-2021-41495 | Null Pointer Dereference vulnerability exists in numpy.sort in NumPy & ... | bookworm, bullseye, sid, trixie | |
CVE-2021-41496 | Buffer overflow in the array_from_pyobj function of fortranobject.c in ... | bookworm, bullseye, sid, trixie | |
nvi | CVE-2015-2305 | Integer overflow in the regcomp implementation in the Henry Spencer BS ... | jessie |
nvidia-cg-toolkit | CVE-2008-5144 | nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
nvidia-cuda-toolkit | CVE-2023-0193 | NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-0196 | NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local use ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-25510 | NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-25511 | NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-25512 | NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-25513 | NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-25514 | NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-25523 | NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
ocaml-batteries | CVE-2017-17519 | batteriesConfig.mlp in OCaml Batteries Included (aka ocaml-batteries) ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
ocsinventory-server | CVE-2014-4722 | Multiple cross-site scripting (XSS) vulnerabilities in the OCS Reports ... | bookworm, bullseye, buster, jessie, sid, trixie |
CVE-2018-12482 | OCS Inventory 2.4.1 contains multiple SQL injections in the search eng ... | jessie | |
CVE-2018-12483 | OCS Inventory 2.4.1 is prone to a remote command-execution vulnerabili ... | jessie | |
CVE-2018-14473 | OCS Inventory 2.4.1 lacks a proper XML parsing configuration, allowing ... | jessie | |
CVE-2018-14857 | Unrestricted file upload (with remote code execution) in require/mail/ ... | buster, jessie | |
CVE-2018-15537 | Unrestricted file upload (with remote code execution) in OCS Inventory ... | bullseye, buster, jessie | |
CVE-2018-1000557 | OCS Inventory OCS Inventory NG version ocsreports 2.4 contains a Cross ... | jessie | |
CVE-2018-1000558 | OCS Inventory NG ocsreports 2.4 and ocsreports 2.3.1 version 2.4 and 2 ... | jessie | |
CVE-2023-3726 | OCSInventory allow stored email template with special characters that ... | bookworm, bullseye, buster, jessie, sid, trixie | |
oggvideotools | CVE-2020-21723 | A Segmentation Fault issue discovered StreamSerializer::extractStreams ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
ompl | CVE-2021-41490 | Memory leaks in LazyPRM.cpp of OMPL v1.5.0 can cause unexpected behavi ... | bookworm, bullseye, jessie, sid, stretch, trixie |
CVE-2021-42218 | OMPL v1.5.2 contains a memory leak in VFRRT.cpp | bookworm, bullseye, jessie, sid, trixie | |
onionshare | CVE-2018-19960 | The debug_mode function in web/web.py in OnionShare through 1.3.1, whe ... | jessie |
CVE-2022-21694 | OnionShare is an open source tool that lets you securely and anonymous ... | bullseye, jessie | |
open-vm-tools | TEMP-0925959-45DD25 | insecure handling of /tmp/VMwareDnD | jessie |
openconnect | CVE-2020-12105 | OpenConnect through 8.08 mishandles negative return values from X509_c ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2020-12823 | OpenConnect 8.09 has a buffer overflow, causing a denial of service (a ... | buster, stretch | |
opendkim | CVE-2020-35766 | The test suite in libopendkim in OpenDKIM through 2.10.3 allows local ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
openexr | CVE-2017-14988 | Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remot ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-18443 | OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/Ilm ... | buster, jessie, stretch | |
CVE-2021-20304 | A flaw was found in OpenEXR's hufDecode functionality. This flaw allow ... | buster, jessie, stretch | |
CVE-2021-26945 | An integer overflow leading to a heap-buffer overflow was found in Ope ... | bullseye, buster, jessie, stretch | |
openfortivpn | CVE-2020-7043 | An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL ... | buster |
openjdk-7 | CVE-2012-2739 | Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 an ... | jessie |
openjpeg | CVE-2013-4289 | Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1 ... | jessie |
CVE-2013-4290 | Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote att ... | jessie | |
openjpeg2 | CVE-2016-7445 | convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a ... | jessie |
CVE-2016-9113 | There is a NULL pointer dereference in function imagetobmp of convertb ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9114 | There is a NULL Pointer Access in function imagetopnm of convert.c:194 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9115 | Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9116 | NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in O ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9117 | NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in O ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9580 | An integer overflow vulnerability was found in tiftoimage function in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-9581 | An infinite loop vulnerability in tiftoimage that results in heap buff ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-10505 | NULL pointer dereference vulnerabilities in the imagetopnm function in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-10506 | Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, op ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-12982 | The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG ... | jessie, stretch | |
CVE-2017-17479 | In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-5727 | In OpenJPEG 2.3.0, there is an integer overflow vulnerability in the o ... | buster, jessie, stretch | |
CVE-2018-7648 | An issue was discovered in mj2/opj_mj2_extract.c in OpenJPEG 2.3.0. Th ... | buster, jessie, stretch | |
CVE-2018-16375 | An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_i ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-16376 | An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-20845 | Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_nex ... | buster, jessie, stretch | |
CVE-2018-20846 | Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
openldap | CVE-2015-3276 | The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDA ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-14159 | slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17740 | contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when bot ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-15719 | libldap in certain third-party OpenLDAP packages has a certificate-val ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
openrazer | CVE-2022-29021 | A buffer overflow vulnerability exists in the razerkbd driver of OpenR ... | bullseye, buster |
CVE-2022-29022 | A buffer overflow vulnerability exists in the razeraccessory driver of ... | bullseye, buster | |
CVE-2022-29023 | A buffer overflow vulnerability exists in the razermouse driver of Ope ... | bullseye, buster | |
openrpt | CVE-2015-2305 | Integer overflow in the regcomp implementation in the Henry Spencer BS ... | buster, jessie, stretch |
opensc | CVE-2019-6502 | sc_context_create in ctx.c in libopensc in OpenSC 0.19.0 has a memory ... | jessie, stretch |
openscad | CVE-2022-0496 | A vulnerbiility was found in Openscad, where a DXF-format drawing with ... | bullseye, buster, jessie, stretch |
CVE-2022-0497 | A vulnerbiility was found in Openscad, where a .scad file with no trai ... | bullseye, buster, jessie, stretch | |
openssh | CVE-2007-2243 | OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2007-2768 | OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2008-3234 | sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2016-10010 | sshd in OpenSSH before 7.4, when privilege separation is not used, cre ... | jessie | |
CVE-2016-20012 | OpenSSH through 8.7 allows remote attackers, who have a suspicion that ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-15919 | Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 co ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-6110 | In OpenSSH 7.9, due to accepting and displaying arbitrary stderr outpu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-16905 | OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an expe ... | buster | |
CVE-2020-12062 | The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to ... | buster, jessie, stretch | |
CVE-2020-14145 | The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepan ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-15778 | scp in OpenSSH through 8.3p1 allows command injection in the scp.c tor ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-36368 | An issue was discovered in OpenSSH before 8.9. If a client is using pu ... | bullseye, buster, jessie, stretch | |
CVE-2023-51767 | OpenSSH through 9.6, when common types of DRAM are used, might allow r ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
openssl | CVE-2007-6755 | The NIST SP 800-90A default statement of the Dual Elliptic Curve Deter ... | jessie |
openstack-trove | CVE-2015-3156 | The _write_config function in trove/guestagent/datastore/experimental/ ... | bookworm, jessie, sid, stretch, trixie |
openvpn | CVE-2006-2229 | OpenVPN 2.0.7 and earlier, when configured to use the --management opt ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2016-6329 | OpenVPN, when using a 64-bit block cipher, makes it easier for remote ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-7522 | OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to deni ... | stretch | |
CVE-2018-7544 | A cross-protocol scripting issue was discovered in the management inte ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
openvswitch | CVE-2017-9263 | In Open vSwitch (OvS) 2.7.0, while parsing an OpenFlow role status mes ... | stretch |
CVE-2017-9264 | In lib/conntrack.c in the firewall implementation in Open vSwitch (OvS ... | stretch | |
CVE-2017-9265 | In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsin ... | stretch | |
CVE-2017-14970 | In lib/ofp-util.c in Open vSwitch (OvS) before 2.8.1, there are multip ... | jessie, stretch | |
optee-os | CVE-2021-36133 | The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access ... | sid, trixie |
optipng | CVE-2023-43907 | OptiPNG v0.7.7 was discovered to contain a global buffer overflow via ... | bookworm, bullseye, buster |
opus-tools | CVE-2014-9638 | oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial ... | jessie |
os-prober | CVE-2008-5135 | os-prober in os-prober 1.17 allows local users to overwrite arbitrary ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
otrs2 | CVE-2018-7567 | In the Admin Package Manager in Open Ticket Request System (OTRS) 5.0. ... | bullseye, buster, jessie, stretch |
p7zip | CVE-2022-47069 | p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerabi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-52169 | The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-11612 | 7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ... | bookworm, bullseye, buster, jessie, stretch | |
packagekit | CVE-2022-0987 | A flaw was found in PackageKit in the way some of the methods exposed ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
pandas | CVE-2020-13091 | pandas through 1.0.3 can unserialize and execute commands from an untr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
parallel | CVE-2015-4155 | GNU Parallel before 20150422, when using (1) --pipe, (2) --tmux, (3) - ... | jessie |
CVE-2015-4156 | GNU Parallel before 20150522 (Nepal), when using (1) --cat or (2) --fi ... | jessie | |
parso | CVE-2019-12760 | A deserialization vulnerability exists in the way parso through 0.4.0 ... | buster |
pasdoc | CVE-2017-17527 | delphi_gui/WWWBrowserRunnerDM.pas in PasDoc 0.14 does not validate str ... | jessie, stretch |
passenger | CVE-2016-10345 | In Phusion Passenger before 5.1.0, a known /tmp filename was used duri ... | bullseye, buster, stretch |
password-store | CVE-2020-28086 | pass through 1.7.3 has a possibility of using a password for an uninte ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
patch | CVE-2010-4651 | Directory traversal vulnerability in util.c in GNU patch 2.6.1 and ear ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2016-10713 | An issue was discovered in GNU patch before 2.7.6. Out-of-bounds acces ... | jessie, stretch | |
CVE-2018-6951 | An issue was discovered in GNU patch through 2.7.6. There is a segment ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-6952 | A double free exists in the another_hunk function in pch.c in GNU patc ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-45261 | An Invalid Pointer vulnerability exists in GNU patch 2.7 via the anoth ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
patchelf | CVE-2022-44940 | Patchelf v0.9 was discovered to contain an out-of-bounds read via the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
pax-utils | TEMP-0856196-13C562 | scanelf: out of bounds read in scanelf_file_get_symtabs (scanelf.c) | jessie, stretch |
pcf2bdf | CVE-2022-23318 | A heap-buffer-overflow in pcf2bdf, versions >= 1.05 allows an attacker ... | bullseye, buster, jessie, stretch |
CVE-2022-23319 | A segmentation fault during PCF file parsing in pcf2bdf versions >=1.0 ... | bullseye, buster, jessie, stretch | |
pcre2 | CVE-2017-8786 | pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial o ... | stretch |
CVE-2022-41409 | Integer overflow vulnerability in pcre2test before 10.41 allows attack ... | bullseye, buster, stretch | |
pcre3 | CVE-2017-7245 | Stack-based buffer overflow in the pcre32_copy_substring function in p ... | bookworm, bullseye, buster, jessie, sid, stretch |
CVE-2017-7246 | Stack-based buffer overflow in the pcre32_copy_substring function in p ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2017-11164 | In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exe ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2017-16231 | In PCRE 8.41, after compiling, a pcretest load test PoC produces a cra ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-20838 | libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT w ... | bookworm, bullseye, buster, jessie, sid, stretch | |
pdfresurrect | CVE-2019-14267 | PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because ... | buster, jessie, stretch |
CVE-2020-9549 | In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bou ... | buster, stretch | |
CVE-2021-3508 | A flaw was found in PDFResurrect in version 0.22b. There is an infinit ... | bullseye, buster, jessie, stretch | |
pdns | CVE-2020-24696 | An issue was discovered in PowerDNS Authoritative through 4.3.0 when - ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2020-24697 | An issue was discovered in PowerDNS Authoritative through 4.3.0 when - ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-24698 | An issue was discovered in PowerDNS Authoritative through 4.3.0 when - ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
pdns-recursor | CVE-2020-10030 | An issue has been found in PowerDNS Recursor 4.1.0 up to and including ... | buster, jessie |
percona-toolkit | CVE-2015-1027 | The version checking subroutine in percona-toolkit before 2.2.13 and x ... | jessie, jessie |
perl | CVE-2011-4116 | _is_safe in the File::Temp module for Perl does not properly handle sy ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-31486 | HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available ... | bookworm, bullseye, buster, jessie, stretch | |
TEMP-0769606-4AA6CF | a2p: buffer overflow | jessie | |
phabricator | CVE-2017-17536 | Phabricator before 2017-11-10 does not block the --config and --debugg ... | bookworm, bullseye, buster, sid, stretch |
phantomjs | CVE-2019-17221 | PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as d ... | buster, stretch |
php-font-lib | CVE-2014-2570 | Cross-site scripting (XSS) vulnerability in www/make_subset.php in PHP ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
php-getid3 | CVE-2021-40926 | Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in g ... | bullseye, buster, jessie, stretch |
php-gettext | TEMP-0000000-07A77D | php-gettext XSS | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
php-horde | CVE-2019-12094 | Horde Groupware Webmail Edition through 5.2.22 allows XSS via an admin ... | bookworm, bullseye, buster, jessie, sid, stretch |
php-horde-trean | CVE-2019-12095 | Horde Trean, as used in Horde Groupware Webmail Edition through 5.2.22 ... | bookworm, bullseye, buster, jessie, sid, stretch |
php-openid | CVE-2016-2049 | examples/consumer/common.php in JanRain PHP OpenID library (aka php-op ... | jessie |
php-pear | CVE-2017-5630 | PECL in the download utility class in the Installer in PEAR Base Syste ... | bookworm, bullseye, buster, sid, stretch, trixie |
php5 | CVE-2006-0931 | Directory traversal vulnerability in PEAR::Archive_Tar 1.2, and other ... | jessie |
CVE-2006-4023 | The ip2long function in PHP 5.1.4 and earlier may incorrectly validate ... | jessie | |
CVE-2006-6383 | PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_base ... | jessie | |
CVE-2006-7205 | The array_fill function in ext/standard/array.c in PHP 4.4.2 and 5.1.2 ... | jessie | |
CVE-2007-0448 | The fopen function in PHP 5.2.0 does not properly handle invalid URI h ... | jessie | |
CVE-2007-1413 | Buffer overflow in the snmpget function in the snmp extension in PHP 5 ... | jessie | |
CVE-2007-1581 | The resource system in PHP 5.0.0 through 5.2.1 allows context-dependen ... | jessie | |
CVE-2007-1582 | The resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 ... | jessie | |
CVE-2007-1710 | The readfile function in PHP 4.4.4, 5.1.6, and 5.2.1 allows context-de ... | jessie | |
CVE-2007-1835 | PHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session ... | jessie | |
CVE-2007-1883 | PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-depende ... | jessie | |
CVE-2007-1890 | Integer overflow in the msg_receive function in PHP 4 before 4.4.5 and ... | jessie | |
CVE-2007-3205 | The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, ... | jessie | |
CVE-2007-3294 | Multiple buffer overflows in libtidy, as used in the Tidy extension fo ... | jessie | |
CVE-2007-4255 | Buffer overflow in the mSQL extension in PHP 5.2.3 allows context-depe ... | jessie | |
CVE-2007-4596 | The perl extension in PHP does not follow safe_mode restrictions, whic ... | jessie | |
CVE-2007-4889 | The MySQL extension in PHP 5.2.4 and earlier allows remote attackers t ... | jessie | |
CVE-2007-5424 | The disable_functions feature in PHP 4 and 5 allows attackers to bypas ... | jessie | |
CVE-2008-2666 | Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier ... | jessie | |
CVE-2008-4107 | The (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce cry ... | jessie | |
CVE-2008-5625 | PHP 5 before 5.2.7 does not enforce the error_log safe_mode restrictio ... | jessie | |
CVE-2008-7002 | PHP 5.2.5 does not enforce (a) open_basedir and (b) safe_mode_exec_dir ... | jessie | |
CVE-2009-3559 | main/streams/plain_wrapper.c in PHP 5.3.x before 5.3.1 does not recogn ... | jessie | |
CVE-2009-4418 | The unserialize function in PHP 5.3.0 and earlier allows context-depen ... | jessie | |
CVE-2010-1861 | The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 ... | jessie | |
CVE-2010-1862 | The chunk_split function in PHP 5.2 through 5.2.13 and 5.3 through 5.3 ... | jessie | |
CVE-2010-1868 | The (1) sqlite_single_query and (2) sqlite_array_query functions in ex ... | jessie | |
CVE-2010-1914 | The Zend Engine in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows ... | jessie | |
CVE-2010-1915 | The preg_quote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3. ... | jessie | |
CVE-2010-2097 | The (1) iconv_mime_decode, (2) iconv_substr, and (3) iconv_mime_encode ... | jessie | |
CVE-2010-2100 | The (1) htmlentities, (2) htmlspecialchars, (3) str_getcsv, (4) http_b ... | jessie | |
CVE-2010-2101 | The (1) strip_tags, (2) setcookie, (3) strtok, (4) wordwrap, (5) str_w ... | jessie | |
CVE-2010-2190 | The (1) trim, (2) ltrim, (3) rtrim, and (4) substr_replace functions i ... | jessie | |
CVE-2010-3062 | mysqlnd_wireprotocol.c in the Mysqlnd extension in PHP 5.3 through 5.3 ... | jessie | |
CVE-2010-3063 | The php_mysqlnd_read_error_from_line function in the Mysqlnd extension ... | jessie | |
CVE-2010-3064 | Stack-based buffer overflow in the php_mysqlnd_auth_write function in ... | jessie | |
CVE-2012-1171 | The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to by ... | jessie | |
CVE-2012-3365 | The SQLite functionality in PHP before 5.3.15 allows remote attackers ... | jessie | |
CVE-2013-3735 | The Zend Engine in PHP before 5.4.16 RC1, and 5.5.0 before RC2, does n ... | jessie | |
CVE-2013-6501 | The default soap.wsdl_cache_dir setting in (1) php.ini-production and ... | jessie | |
CVE-2014-5459 | The PEAR_REST class in REST.php in PEAR in PHP through 5.6.0 allows lo ... | jessie | |
CVE-2014-9425 | Double free vulnerability in the zend_ts_hash_graceful_destroy functio ... | jessie | |
CVE-2015-9253 | An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before ... | jessie | |
CVE-2016-5116 | gd_xbm.c in the GD Graphics Library (aka libgd) before 2.2.0, as used ... | jessie | |
CVE-2017-5630 | PECL in the download utility class in the Installer in PEAR Base Syste ... | jessie | |
CVE-2017-7890 | The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in th ... | jessie | |
CVE-2017-9118 | PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a c ... | jessie | |
CVE-2017-9119 | The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 all ... | jessie | |
CVE-2017-11362 | In PHP 7.x before 7.0.21 and 7.1.x before 7.1.7, ext/intl/msgformat/ms ... | jessie | |
CVE-2019-11038 | When using the gdImageCreateFromXbm() function in the GD Graphics Libr ... | jessie | |
php7.0 | CVE-2015-9253 | An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before ... | stretch |
CVE-2017-9118 | PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a c ... | stretch | |
CVE-2017-9119 | The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 all ... | stretch | |
CVE-2017-9120 | PHP 7.x through 7.1.5 allows remote attackers to cause a denial of ser ... | stretch | |
CVE-2019-6977 | gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka ... | stretch | |
phpldapadmin | CVE-2018-12689 | phpLDAPadmin 1.2.2 allows LDAP injection via a crafted server_id param ... | bookworm, jessie, sid, trixie |
phpmyadmin | CVE-2005-3622 | phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain t ... | bookworm, bullseye, jessie, sid, stretch, trixie |
CVE-2007-4306 | Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.10 ... | bookworm, bullseye, jessie, sid, stretch, trixie | |
CVE-2015-8669 | libraries/config/messages.inc.php in phpMyAdmin 4.0.x before 4.0.10.12 ... | jessie | |
CVE-2015-8980 | The plural form formula in ngettext family of calls in php-gettext bef ... | jessie | |
CVE-2016-2038 | phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x be ... | jessie | |
CVE-2016-2042 | phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote ... | jessie | |
CVE-2016-2562 | The checkHTTP function in libraries/Config.class.php in phpMyAdmin 4.5 ... | jessie | |
CVE-2016-5730 | phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x be ... | jessie | |
CVE-2016-6610 | A full path disclosure vulnerability was discovered in phpMyAdmin wher ... | jessie | |
CVE-2016-6625 | An issue was discovered in phpMyAdmin. An attacker can determine wheth ... | jessie | |
CVE-2016-6633 | An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigg ... | jessie | |
CVE-2016-9847 | An issue was discovered in phpMyAdmin. When the user does not specify ... | jessie | |
CVE-2016-9848 | An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP ... | jessie | |
CVE-2016-9852 | An issue was discovered in phpMyAdmin. By calling some scripts that ar ... | jessie | |
CVE-2016-9853 | An issue was discovered in phpMyAdmin. By calling some scripts that ar ... | jessie | |
CVE-2016-9854 | An issue was discovered in phpMyAdmin. By calling some scripts that ar ... | jessie | |
CVE-2016-9855 | An issue was discovered in phpMyAdmin. By calling some scripts that ar ... | jessie | |
CVE-2016-9856 | An XSS issue was discovered in phpMyAdmin because of an improper fix f ... | jessie | |
CVE-2016-9857 | An issue was discovered in phpMyAdmin. XSS is possible because of a we ... | jessie | |
CVE-2016-9858 | An issue was discovered in phpMyAdmin. With a crafted request paramete ... | jessie | |
CVE-2016-9859 | An issue was discovered in phpMyAdmin. With a crafted request paramete ... | jessie | |
CVE-2016-9860 | An issue was discovered in phpMyAdmin. An unauthenticated user can exe ... | jessie | |
CVE-2016-9866 | An issue was discovered in phpMyAdmin. When the arg_separator is diffe ... | jessie | |
CVE-2017-1000013 | phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakne ... | jessie | |
CVE-2017-1000014 | phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the t ... | jessie | |
CVE-2017-1000015 | phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack ... | jessie | |
CVE-2017-1000016 | A weakness was discovered where an attacker can inject arbitrary value ... | jessie | |
CVE-2017-1000017 | phpMyAdmin 4.0, 4.4 and 4.6 are vulnerable to a weakness where a user ... | jessie | |
CVE-2017-1000018 | phpMyAdmin 4.0, 4.4., and 4.6 are vulnerable to a DOS attack in the re ... | jessie | |
CVE-2020-11441 | phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astrin ... | bookworm, bullseye, sid, stretch, trixie | |
CVE-2022-0813 | PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially ... | bullseye, jessie, stretch | |
CVE-2022-23807 | An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before ... | bullseye, jessie, stretch | |
CVE-2022-23808 | An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker ca ... | bullseye, jessie, stretch | |
phppgadmin | CVE-2006-4976 | The Date Library in John Lim ADOdb Library for PHP allows remote attac ... | jessie |
phpsysinfo | CVE-2006-3360 | Directory traversal vulnerability in index.php in phpSysInfo 2.5.1 all ... | jessie |
picolibc | CVE-2019-14876 | In the __lshift function of the newlib libc library, all versions prio ... | bookworm, bullseye, sid, trixie |
pidgin | CVE-2008-2956 | Memory leak in Pidgin 2.0.0, and possibly other versions, allows remot ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2012-1257 | Pidgin 2.10.0 uses DBUS for certain cleartext communication, which all ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
pillow | CVE-2016-3076 | Heap-based buffer overflow in the j2k_encode_entry function in Pillow ... | jessie |
CVE-2020-10994 | In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multipl ... | buster, jessie, stretch | |
CVE-2021-25287 | An issue was discovered in Pillow before 8.2.0. There is an out-of-bou ... | buster, jessie, stretch | |
CVE-2021-25288 | An issue was discovered in Pillow before 8.2.0. There is an out-of-bou ... | buster, jessie, stretch | |
pipewire | CVE-2022-4964 | Ubuntu's pipewire-pulse in snap grants microphone access even when the ... | bookworm, bullseye, buster |
pixman | CVE-2023-37769 | stress-test master commit e4c878 was discovered to contain a FPE vulne ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
pluxml | CVE-2020-18184 | In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_ ... | buster, jessie, stretch |
CVE-2020-18185 | class.plx.admin.php in PluXml 5.7 allows attackers to execute arbitrar ... | buster, jessie, stretch | |
polarssl | CVE-2011-3389 | The SSL protocol, as used in certain configurations in Microsoft Windo ... | jessie |
CVE-2018-1000520 | ARM mbedTLS version 2.7.0 and earlier contains a Ciphersuite Allows In ... | jessie | |
poppler | CVE-2013-4472 | The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-2814 | An exploitable heap overflow vulnerability exists in the image renderi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-2818 | An exploitable heap overflow vulnerability exists in the image renderi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-2820 | An exploitable integer overflow vulnerability exists in the JPEG 2000 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-7511 | poppler since version 0.17.3 has been vulnerable to NULL pointer deref ... | jessie, stretch | |
CVE-2017-7515 | poppler through version 0.55.0 is vulnerable to an uncontrolled recurs ... | jessie, stretch | |
CVE-2017-9083 | poppler 0.54.0, as used in Evince and other products, has a NULL point ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-19059 | An issue was discovered in Poppler 0.71.0. There is a out-of-bounds re ... | buster, jessie, stretch | |
CVE-2018-19060 | An issue was discovered in Poppler 0.71.0. There is a NULL pointer der ... | buster, jessie, stretch | |
CVE-2018-19149 | Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attac ... | jessie, stretch | |
CVE-2022-24106 | In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-6239 | A flaw was found in the Poppler's Pdfinfo utility. This issue occurs w ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
postbooks | CVE-2017-17525 | guiclient/guiclient.cpp in xTuple PostBooks 4.7.0 does not validate st ... | buster, jessie, stretch |
potrace | CVE-2017-12067 | Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubi ... | jessie, stretch |
powerpc-utils | CVE-2014-4040 | snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot ... | jessie |
ppp | CVE-2008-5366 | The postinst script in ppp 2.4.4rel on Debian GNU/Linux allows local u ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2008-5367 | ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to o ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-4603 | A vulnerability classified as problematic has been found in ppp. Affec ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
printfilters-ppd | CVE-2008-5034 | master-filter in printfilters-ppd 2.13 allows local users to overwrite ... | jessie |
proftpd-dfsg | CVE-2020-9272 | ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap ... | buster, jessie, stretch |
prometheus-alertmanager | CVE-2023-40577 | Alertmanager handles alerts sent by client applications such as the Pr ... | bookworm, bullseye |
prometheus-blackbox-exporter | CVE-2020-16248 | Prometheus Blackbox Exporter through 0.17.0 allows /probe?target= SSRF ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2023-26735 | blackbox_exporter v0.23.0 was discovered to contain an access control ... | bookworm, bullseye, buster, sid, stretch, trixie | |
protobuf | CVE-2015-5237 | protobuf allows remote authenticated attackers to cause a heap-based b ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
pspp | CVE-2017-10791 | There is an Integer overflow in the hash_int function of the libpspp l ... | jessie, stretch |
CVE-2017-10792 | There is a NULL Pointer Dereference in the function ll_insert() of the ... | jessie, stretch | |
CVE-2017-12958 | There is an illegal address access in the function output_hex() in dat ... | jessie, stretch | |
CVE-2017-12959 | There is a reachable assertion abort in the function dict_add_mrset() ... | jessie, stretch | |
CVE-2017-12960 | There is a reachable assertion abort in the function dict_rename_var() ... | jessie, stretch | |
CVE-2017-12961 | There is an assertion abort in the function parse_attributes() in data ... | jessie, stretch | |
CVE-2019-9211 | There is a reachable assertion abort in the function write_long_string ... | buster, jessie, stretch | |
ptlib | CVE-2015-2305 | Integer overflow in the regcomp implementation in the Henry Spencer BS ... | jessie, stretch |
puppet | CVE-2020-7942 | Previously, Puppet operated on a model that a node with a valid certif ... | bullseye, buster, jessie, stretch |
puppet-module-puppetlabs-apache | CVE-2018-6508 | Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remot ... | jessie, stretch, jessie, stretch, jessie, stretch |
pure-ftpd | CVE-2024-48208 | pure-ftpd before 1.0.52 is vulnerable to Buffer Overflow. There is an ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
putty | CVE-2019-17069 | PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial o ... | jessie, stretch |
pwgen | CVE-2013-4441 | The Phonemes mode in Pwgen 2.06 generates predictable passwords, which ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
py-lmdb | CVE-2019-16224 | An issue was discovered in py-lmdb 0.97. For certain values of md_flag ... | bookworm, bullseye, sid, stretch, trixie |
CVE-2019-16225 | An issue was discovered in py-lmdb 0.97. For certain values of mp_flag ... | bookworm, bullseye, sid, stretch, trixie | |
CVE-2019-16226 | An issue was discovered in py-lmdb 0.97. mdb_node_del does not validat ... | bookworm, bullseye, sid, stretch, trixie | |
CVE-2019-16227 | An issue was discovered in py-lmdb 0.97. For certain values of mn_flag ... | bookworm, bullseye, sid, stretch, trixie | |
CVE-2019-16228 | An issue was discovered in py-lmdb 0.97. There is a divide-by-zero err ... | bookworm, bullseye, sid, stretch, trixie | |
pycode-browser | CVE-2015-0849 | predictable temporary file vulnerability | jessie |
pypy | CVE-2021-28861 | Python 3.x through 3.10 has an open redirection vulnerability in lib/h ... | bullseye, buster, jessie, stretch, buster |
python-certifi | CVE-2022-23491 | Certifi is a curated collection of Root Certificates for validating th ... | bookworm, bullseye, buster, stretch |
CVE-2023-37920 | Certifi is a curated collection of Root Certificates for validating th ... | bookworm, bullseye, buster, stretch | |
CVE-2024-39689 | Certifi is a curated collection of Root Certificates for validating th ... | bookworm, bullseye, buster, stretch | |
python-defaults | CVE-2008-4108 | Tools/faqwiz/move-faqwiz.sh (aka the generic FAQ wizard moving tool) i ... | bullseye, buster, jessie, stretch |
python-django | CVE-2021-32052 | In Django 2.2 before 2.2.22, 3.1 before 3.1.10, and 3.2 before 3.2.2 ( ... | buster, jessie, stretch |
python-django-celery-results | CVE-2020-17495 | django-celery-results through 1.2.1 stores task results in the databas ... | bookworm, bullseye, buster, sid, trixie |
python-djangorestframework-simplejwt | CVE-2024-22513 | djangorestframework-simplejwt version 5.3.1 and before is vulnerable t ... | bookworm, sid, trixie |
python-ecdsa | CVE-2024-23342 | The `ecdsa` PyPI package is a pure Python implementation of ECC (Ellip ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
python-mkdocs | CVE-2021-40978 | The mkdocs 1.2.2 built-in dev-server allows directory traversal using ... | bookworm, bullseye, buster, sid, stretch, trixie |
python-numpy | CVE-2017-12852 | The numpy.pad function in Numpy 1.13.1 and older versions is missing i ... | jessie, stretch |
python-oslo.privsep | CVE-2022-38065 | A privilege escalation vulnerability exists in the oslo.privsep functi ... | bookworm, bullseye, buster, sid, stretch, trixie |
python-pip | CVE-2018-20225 | An issue was discovered in pip (all versions) because it installs the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
python-py | CVE-2022-42969 | The py library through 1.11.0 for Python allows remote attackers to co ... | bookworm, bullseye, buster, sid, stretch, trixie |
python-pysaml2 | CVE-2016-10127 | PySAML2 allows remote attackers to conduct XML external entity (XXE) a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
python-rply | CVE-2014-1938 | python-rply before 0.7.4 insecurely creates temporary files. | jessie |
python-scrapy | CVE-2017-14158 | Scrapy 1.4 allows remote attackers to cause a denial of service (memor ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
python2.7 | CVE-2013-7040 | Python 2.7 before 3.4 only uses the last eight bits of the prefix to r ... | bullseye, buster, jessie, stretch |
CVE-2016-1000110 | The CGIHandler class in Python before 2.7.12 does not protect against ... | jessie | |
CVE-2017-17522 | Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ... | bullseye, buster, jessie, stretch | |
CVE-2018-1000030 | Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Hea ... | jessie, stretch | |
CVE-2019-9674 | Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ... | bullseye, buster, jessie, stretch | |
CVE-2019-18348 | An issue was discovered in urllib2 in Python 2.x through 2.7.17 and ur ... | buster, jessie, stretch | |
CVE-2020-27619 | In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ... | bullseye, buster, jessie, stretch | |
CVE-2021-28861 | Python 3.x through 3.10 has an open redirection vulnerability in lib/h ... | bullseye, buster, jessie, stretch | |
python3.4 | CVE-2017-17522 | Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ... | jessie |
CVE-2019-9674 | Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ... | jessie | |
CVE-2020-27619 | In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ... | jessie | |
CVE-2021-28861 | Python 3.x through 3.10 has an open redirection vulnerability in lib/h ... | jessie | |
python3.5 | CVE-2017-17522 | Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ... | stretch |
CVE-2019-9674 | Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ... | stretch | |
CVE-2020-27619 | In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ... | stretch | |
CVE-2021-28861 | Python 3.x through 3.10 has an open redirection vulnerability in lib/h ... | stretch | |
python3.7 | CVE-2017-17522 | Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ... | buster |
CVE-2019-9674 | Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ... | buster | |
CVE-2019-18348 | An issue was discovered in urllib2 in Python 2.x through 2.7.17 and ur ... | buster | |
CVE-2020-27619 | In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ... | buster | |
CVE-2021-28861 | Python 3.x through 3.10 has an open redirection vulnerability in lib/h ... | buster | |
python3.9 | CVE-2022-37454 | The Keccak XKCP SHA-3 reference implementation before fdc6fef has an i ... | bullseye |
pytorch | CVE-2024-48063 | In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: th ... | bookworm, bullseye, sid |
pyyaml | CVE-2017-18342 | In PyYAML before 5.1, the yaml.load() API could execute arbitrary code ... | buster, jessie, stretch |
qbittorrent | CVE-2023-30801 | All versions of the qBittorrent client through 4.5.5 use default crede ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
qemu | CVE-2016-10028 | The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEM ... | stretch |
CVE-2017-5552 | Memory leak in the virgl_resource_attach_backing function in hw/displa ... | stretch | |
CVE-2017-5578 | Memory leak in the virtio_gpu_resource_attach_backing function in hw/d ... | stretch | |
CVE-2017-8284 | The disas_insn function in target/i386/translate.c in QEMU before 2.9. ... | jessie, stretch | |
CVE-2017-9060 | Memory leak in the virtio_gpu_set_scanout function in hw/display/virti ... | stretch | |
CVE-2018-20123 | pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak ... | buster | |
CVE-2018-20124 | hw/rdma/rdma_backend.c in QEMU allows guest OS users to trigger out-of ... | buster | |
CVE-2018-20125 | hw/rdma/vmw/pvrdma_cmd.c in QEMU allows attackers to cause a denial of ... | buster | |
CVE-2018-20126 | hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and create_qp memory ... | buster | |
CVE-2018-20191 | hw/rdma/vmw/pvrdma_main.c in QEMU does not implement a read operation ... | buster | |
CVE-2018-20216 | QEMU can have an infinite loop in hw/rdma/vmw/pvrdma_dev_ring.c becaus ... | buster | |
CVE-2019-12247 | QEMU 3.0.0 has an Integer Overflow because the qga/commands*.c files d ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12928 | The QMP migrate command in QEMU version 4.0.0 and earlier is vulnerabl ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-12929 | The QMP guest_exec command in QEMU 4.0.0 and earlier is prone to OS co ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20175 | An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 ... | buster, jessie, stretch | |
CVE-2020-24352 | An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory ... | bookworm, bullseye, sid, trixie | |
CVE-2022-35414 | softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized r ... | bullseye, jessie, stretch | |
CVE-2022-36648 | The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
qpdf | CVE-2022-34503 | QPDF v8.4.2 was discovered to contain a heap buffer overflow via the f ... | buster, jessie, stretch |
qpid-proton | CVE-2018-17187 | The Apache Qpid Proton-J transport includes an optional wrapper layer ... | jessie, stretch |
qt4-x11 | CVE-2009-3015 | QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and d ... | buster, jessie, stretch |
CVE-2009-3272 | Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safar ... | buster, jessie, stretch | |
TEMP-0560108-565B70 | browser-based css info disclosure | buster, jessie, stretch | |
TEMP-0568486-B6FCB6 | browser javascript document.write denial-of-service | buster, jessie, stretch | |
qt6-base | CVE-2023-45935 | Qt 6 through 6.6 was discovered to contain a NULL pointer dereference ... | bookworm, sid, trixie, bookworm, bullseye, buster, jessie, sid, stretch, trixie, bookworm, bullseye, sid, trixie |
qtdeclarative-opensource-src | CVE-2022-40983 | An integer overflow vulnerability exists in the QML QtScript Reflect A ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2022-43591 | A buffer overflow vulnerability exists in the QML QtScript Reflect API ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
qtdeclarative-opensource-src-gles | CVE-2022-40983 | An integer overflow vulnerability exists in the QML QtScript Reflect A ... | bookworm, bullseye, sid, trixie |
CVE-2022-43591 | A buffer overflow vulnerability exists in the QML QtScript Reflect API ... | bookworm, bullseye, sid, trixie | |
qtwebkit | CVE-2015-8079 | qt5-qtwebkit before 5.4 records private browsing URLs to its favicon d ... | buster, jessie, stretch |
quagga | CVE-2012-5521 | quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon pe ... | buster, jessie, stretch |
qutebrowser | CVE-2020-11054 | In qutebrowser versions less than 1.11.1, reloading a page with certif ... | buster |
r-base | CVE-2024-27322 | Deserialization of untrusted data can occur in the R statistical progr ... | bookworm, bullseye, buster, jessie, stretch |
r-cran-readxl | CVE-2021-27836 | An issue was discoverered in in function xls_getWorkSheet in xls.c in ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2023-38851 | Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-38852 | Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-38853 | Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-38854 | Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-38855 | Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ... | bookworm, bullseye, buster, sid, stretch, trixie | |
CVE-2023-38856 | Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ... | bookworm, bullseye, buster, sid, stretch, trixie | |
radsecproxy | CVE-2021-32642 | radsecproxy is a generic RADIUS proxy that supports both UDP and TLS ( ... | buster, jessie, stretch |
rails | CVE-2010-3299 | The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to p ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2011-3187 | The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17916 | SQL injection vulnerability in the 'find_by' method in Ruby on Rails 5 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17917 | SQL injection vulnerability in the 'where' method in Ruby on Rails 5.1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17919 | SQL injection vulnerability in the 'order' method in Ruby on Rails 5.1 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17920 | SQL injection vulnerability in the 'reorder' method in Ruby on Rails 5 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-3704 | A vulnerability classified as problematic has been found in Ruby on Ra ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
rbdoom3bfg | CVE-2020-15007 | A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tec ... | bookworm, bullseye, buster, sid, stretch, trixie |
re2c | CVE-2018-21232 | re2c before 2.0 has uncontrolled recursion that causes stack consumpti ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2022-23901 | A stack overflow re2c 2.2 exists due to infinite recursion issues in s ... | bullseye, buster, jessie, stretch | |
recutils | CVE-2019-6455 | An issue was discovered in GNU Recutils 1.8. There is a double-free pr ... | bookworm, bullseye, buster, jessie, sid, stretch |
CVE-2019-6456 | An issue was discovered in GNU Recutils 1.8. There is a NULL pointer d ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-6457 | An issue was discovered in GNU Recutils 1.8. There is a memory leak in ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-6458 | An issue was discovered in GNU Recutils 1.8. There is a memory leak in ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-6459 | An issue was discovered in GNU Recutils 1.8. There is a memory leak in ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-6460 | An issue was discovered in GNU Recutils 1.8. There is a NULL pointer d ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-11637 | An issue was discovered in GNU recutils 1.8. There is a NULL pointer d ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-11638 | An issue was discovered in GNU recutils 1.8. There is a NULL pointer d ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-11639 | An issue was discovered in GNU recutils 1.8. There is a stack-based bu ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2019-11640 | An issue was discovered in GNU recutils 1.8. There is a heap-based buf ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2021-46019 | An untrusted pointer dereference in rec_db_destroy() at rec-db.c of GN ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2021-46021 | An Use-After-Free vulnerability in rec_record_destroy() at rec-record. ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2021-46022 | An Use-After-Free vulnerability in rec_mset_elem_destroy() at rec-mset ... | bookworm, bullseye, buster, jessie, sid, stretch | |
redis | CVE-2017-15047 | The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows atta ... | stretch |
CVE-2020-21468 | A segmentation fault in the redis-server component of Redis 5.0.7 lead ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-3470 | A heap overflow issue was found in Redis in versions before 5.0.10, be ... | buster, jessie, stretch | |
CVE-2022-3647 | ** DISPUTED ** A vulnerability, which was classified as problematic, w ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
remind | CVE-2015-5957 | Buffer overflow in the DumpSysVar function in var.c in Remind before 3 ... | jessie |
resiprocate | CVE-2017-9454 | Buffer overflow in the ares_parse_a_reply function in the embedded are ... | jessie, stretch |
retroarch | CVE-2020-23914 | An issue was discovered in cpp-peglib through v0.1.12. A NULL pointer ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2020-23915 | An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_es ... | bookworm, bullseye, buster, sid, stretch, trixie | |
rhn-client-tools | CVE-2015-1777 | rhnreg_ks in Red Hat Network Client Tools (aka rhn-client-tools) on Re ... | jessie, stretch |
rhythmbox | CVE-2008-7185 | GNOME Rhythmbox 0.11.5 allows remote attackers to cause a denial of se ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
riece | TEMP-0601325-4C9A5B | insecure handling of /tmp files in debian/preinst | jessie |
ring | CVE-2022-24786 | PJSIP is a free and open source multimedia communication library writt ... | bullseye, buster, stretch |
CVE-2022-24792 | PJSIP is a free and open source multimedia communication library writt ... | bullseye, buster, stretch | |
CVE-2023-38703 | PJSIP is a free and open source multimedia communication library writt ... | bookworm, bullseye, buster, sid, stretch | |
roundcube | CVE-2020-12640 | Roundcube Webmail before 1.4.4 allows attackers to include local files ... | stretch |
CVE-2020-12641 | rcube_image.php in Roundcube Webmail before 1.4.4 allows attackers to ... | stretch | |
rpm | CVE-2010-2198 | lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadat ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2010-2199 | lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadat ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-7500 | It was found that rpm did not properly handle RPM installations when a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-7501 | It was found that versions of rpm before 4.13.0.2 use temporary files ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
rsyslog | CVE-2015-3243 | rsyslog uses weak permissions for generating log files, which allows l ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-12588 | The zmq3 input and output modules in rsyslog before 8.28.0 interpreted ... | jessie, stretch | |
rtpproxy | CVE-2017-14114 | RTPproxy through 2.2.alpha.20160822 has a NAT feature that results in ... | jessie, stretch |
rtv | CVE-2017-17516 | scripts/inspect_webbrowser.py in Reddit Terminal Viewer (RTV) 1.19.0 d ... | bookworm, bullseye, buster, stretch |
ruamel.yaml | CVE-2019-20478 | In ruamel.yaml through 0.16.7, the load method allows remote code exec ... | bookworm, bullseye, buster, sid, stretch, trixie |
ruby-handlebars-assets | TEMP-0000000-345A3B | handlebars: quoteless attributes in templates can lead to content injection | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
ruby-nokogiri | CVE-2022-29181 | Nokogiri is an open source XML and HTML library for Ruby. Nokogiri pri ... | bullseye, buster, jessie, stretch |
ruby-oauth | CVE-2016-11086 | lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby doe ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
ruby2.1 | CVE-2014-3916 | The str_buf_cat function in string.c in Ruby 1.9.3, 2.0.0, and 2.1 all ... | jessie |
rust-failure | CVE-2020-25575 | An issue was discovered in the failure crate through 0.1.5 for Rust. I ... | bookworm, bullseye, buster |
rustc | CVE-2021-42574 | An issue was discovered in the Bidirectional Algorithm in the Unicode ... | bullseye, buster, jessie, stretch |
s3d | CVE-2014-1226 | The pipe_init_terminal function in main.c in s3dvt allows local users ... | jessie |
salt | CVE-2021-22004 | An issue was discovered in SaltStack Salt before 3003.3. The salt mini ... | buster, jessie, stretch |
samba | CVE-2019-3824 | A flaw was found in the way an LDAP search expression could crash the ... | jessie, stretch |
CVE-2020-27840 | A flaw was found in samba. Spaces used in a string around a domain nam ... | bullseye, buster, jessie, stretch | |
CVE-2021-20277 | A flaw was found in Samba's libldb. Multiple, consecutive leading spac ... | bullseye, buster, jessie, stretch | |
sane-backends | CVE-2023-46047 | An issue in Sane 1.2.1 allows a local attacker to execute arbitrary co ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-46052 | Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
sarg | CVE-2019-18932 | log.c in Squid Analysis Report Generator (sarg) through 2.3.11 allows ... | jessie, stretch |
scala | CVE-2017-15288 | The compilation daemon in Scala before 2.10.7, 2.11.x before 2.11.12, ... | jessie, stretch |
schism | CVE-2021-32419 | An issue in Schism Tracker v20200412 fixed in v.20200412 allows attack ... | bullseye, buster, jessie, stretch |
scikit-learn | CVE-2020-13092 | scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
scilab | CVE-2019-20005 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-20006 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20007 | An issue was discovered in ezXML 0.8.2 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20198 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20199 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20200 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20201 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_ ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-20202 | An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-26220 | The ezxml_toxml function in ezxml 0.8.6 and earlier is vulnerable to O ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-26221 | The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-26222 | The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-30485 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2021-31229 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2021-31347 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2021-31348 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2021-31598 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, trixie | |
CVE-2022-30045 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
screen | CVE-2023-24626 | socket.c in GNU Screen through 4.9.0, when installed setuid or setgid ... | bookworm, bullseye, buster, jessie, stretch |
scummvm | CVE-2017-17528 | backends/platform/sdl/posix/posix.cpp in ScummVM 1.9.0 does not valida ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
sdop | CVE-2024-41881 | SDoP versions prior to 1.11 fails to handle appropriately some paramet ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
seahorse | CVE-2008-7320 | GNOME Seahorse through 3.30 allows physically proximate attackers to r ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
shadow | CVE-2007-5686 | initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2013-4235 | shadow: TOCTOU (time-of-check time-of-use) race condition when copying ... | bullseye, buster, jessie, stretch | |
TEMP-0628843-DBAD28 | more related to CVE-2005-4890 | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
shadowsocks-libev | CVE-2019-5152 | An exploitable information disclosure vulnerability exists in the netw ... | bookworm, bullseye, buster, stretch |
shairport-sync | CVE-2017-12087 | An exploitable heap overflow vulnerability exists in the tinysvcmdns l ... | stretch |
sharutils | TEMP-0000000-95CBBF | uudecode: stack out of bounds read access | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
shibboleth-sp | CVE-2019-19191 | Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file ... | bookworm, bullseye, buster, sid, trixie |
shotwell | CVE-2017-1000024 | Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable ... | jessie |
simplesamlphp | CVE-2016-3124 | The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote at ... | jessie |
singular | CVE-2022-40299 | In Singular before 4.3.1, a predictable /tmp pathname is used (e.g., b ... | bookworm, bullseye, buster, sid, stretch, trixie |
sipcrack | CVE-2017-11654 | An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-11655 | A memory leak was found in the way SIPcrack 0.2 handled processing of ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
slang2 | CVE-2023-45927 | S-Lang 2.3.2 was discovered to contain an arithmetic exception via the ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-45929 | S-Lang 2.3.2 was discovered to contain a segmentation fault via the fu ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
sleuthkit | CVE-2017-13755 | In The Sleuth Kit (TSK) 4.4.2, opening a crafted ISO 9660 image trigge ... | jessie |
CVE-2017-13756 | In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers i ... | jessie | |
CVE-2017-13760 | In The Sleuth Kit (TSK) 4.4.2, fls hangs on a corrupt exfat image in t ... | jessie | |
CVE-2018-11737 | An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from rel ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-11738 | An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from rel ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-11739 | An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from re ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-11740 | An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from r ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-14531 | An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an out ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-14532 | An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1010065 | The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. The ... | jessie | |
CVE-2020-10233 | In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap- ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
slic3r | CVE-2020-28590 | An out-of-bounds read vulnerability exists in the Obj File TriangleMes ... | bookworm, bullseye, buster, jessie, sid |
CVE-2020-28591 | An out-of-bounds read vulnerability exists in the AMF File AMFParserCo ... | buster, jessie | |
CVE-2021-44961 | A memory leakage flaw exists in the class PerimeterGenerator of Slic3r ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2021-44962 | An out-of-bounds read vulnerability exists in the GCode::extrude() fun ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2021-45846 | A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker ... | bookworm, bullseye, buster, jessie, sid, stretch | |
CVE-2021-45847 | Several missing input validations in the 3MF parser component of Slic3 ... | bookworm, bullseye, buster, jessie, sid, stretch | |
slim | TEMP-0537604-F35BD7 | insecure tmp file vulnerability in slim | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
slurm-llnl | CVE-2019-19727 | SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd ... | buster, jessie, stretch |
smsclient | CVE-2008-5155 | mail2sms.sh in smsclient 2.0.8z allows local users to overwrite arbitr ... | jessie |
TEMP-0498901-F99C05 | unsafe use of tempfile in ssmclient | jessie | |
snakeyaml | CVE-2022-1471 | SnakeYaml's Constructor() class does not restrict types which can be i ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2022-38752 | Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ... | bullseye, buster, jessie, stretch | |
CVE-2022-41854 | Those using Snakeyaml to parse untrusted YAML files may be vulnerable ... | bullseye | |
sngrep | CVE-2023-31981 | Sngrep v1.6.0 was discovered to contain a stack buffer overflow via th ... | bookworm, bullseye, buster, stretch |
CVE-2023-31982 | Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the ... | bookworm, bullseye, buster, stretch | |
CVE-2023-36192 | Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the ... | bookworm, bullseye, buster, stretch | |
CVE-2024-35434 | Irontec Sngrep v1.8.1 was discovered to contain a heap buffer overflow ... | bookworm, bullseye, buster, sid, stretch, trixie | |
socat | CVE-2024-54661 | readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
software-properties | CVE-2020-15709 | Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20 ... | bookworm, bullseye, buster, sid |
sosreport | CVE-2014-0246 | SOSreport stores the md5 hash of the GRUB bootloader password in an ar ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2015-7529 | sosreport in SoS 3.x allows local users to obtain sensitive informatio ... | jessie | |
sphinxsearch | CVE-2019-14511 | Sphinx Technologies Sphinx 3.1.1 by default has no authentication and ... | buster, stretch |
spice-gtk | CVE-2016-3066 | The spice-gtk widget allows remote authenticated users to obtain infor ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
spotweb | CVE-2021-40968 | Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ... | buster, jessie, stretch |
CVE-2021-40969 | Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ... | buster, jessie, stretch | |
CVE-2021-40970 | Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ... | buster, jessie, stretch | |
CVE-2021-40971 | Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ... | buster, jessie, stretch | |
CVE-2021-40972 | Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ... | buster, jessie, stretch | |
CVE-2021-40973 | Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ... | buster, jessie, stretch | |
sql-ledger | CVE-2007-0667 | The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2007-1329 | Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-1923 | (1) LedgerSMB and (2) DWS Systems SQL-Ledger implement access control ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2007-5372 | Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2008-4077 | The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledg ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2008-4078 | SQL injection vulnerability in the AR/AP transaction report in (1) Led ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-3580 | Cross-site request forgery (CSRF) vulnerability in am.pl in SQL-Ledger ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-3581 | Multiple cross-site scripting (XSS) vulnerabilities in SQL-Ledger 2.8. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-3582 | Multiple SQL injection vulnerabilities in the delete subroutine in SQL ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-3583 | Directory traversal vulnerability in the Preferences menu item in SQL- ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-3584 | SQL-Ledger 2.8.24 does not set the secure flag for the session cookie ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-4402 | The default configuration of SQL-Ledger 2.8.24 allows remote attackers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
sqlite | CVE-2017-13685 | The dump_callback function in SQLite 3.20.0 allows remote attackers to ... | buster, jessie, stretch |
CVE-2021-45346 | A Memory Leak vulnerability exists in SQLite Project SQLite3 3.35.1 an ... | buster, jessie, stretch | |
CVE-2022-35737 | SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-b ... | buster, jessie, stretch | |
sqlite3 | CVE-2017-13685 | The dump_callback function in SQLite 3.20.0 allows remote attackers to ... | jessie, stretch |
CVE-2020-11656 | In SQLite through 3.31.1, the ALTER TABLE implementation has a use-aft ... | buster, jessie, stretch | |
CVE-2021-45346 | A Memory Leak vulnerability exists in SQLite Project SQLite3 3.35.1 an ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-35737 | SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-b ... | bullseye, buster, jessie, stretch | |
sqlitedict | CVE-2024-35515 | Insecure deserialization in sqlitedict up to v2.1.0 allows attackers t ... | bookworm, sid, trixie |
sqliteodbc | CVE-2020-12050 | SQLiteODBC 0.9996, as packaged for certain Linux distributions as 0.99 ... | bookworm, bullseye, buster, sid, stretch, trixie |
squid | CVE-2019-12522 | An issue was discovered in Squid through 4.7. When Squid is run as roo ... | bookworm, bullseye, buster, sid, trixie |
CVE-2020-8517 | An issue was discovered in Squid before 4.10. Due to incorrect input v ... | buster | |
CVE-2020-14058 | An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due ... | buster | |
squid3 | CVE-2018-1172 | This vulnerability allows remote attackers to deny service on vulnerab ... | jessie, stretch |
CVE-2018-19131 | Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S ... | jessie, stretch | |
CVE-2019-12522 | An issue was discovered in Squid through 4.7. When Squid is run as roo ... | jessie, stretch | |
CVE-2020-8517 | An issue was discovered in Squid before 4.10. Due to incorrect input v ... | jessie, stretch | |
CVE-2020-14058 | An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due ... | jessie, stretch | |
squidguard | CVE-2015-8936 | Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGua ... | jessie |
ssmtp | CVE-2004-0423 | The log_event function in ssmtp 2.50.6 and earlier allows local users ... | bookworm, bullseye, jessie, sid, stretch, trixie |
CVE-2008-7258 | The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.6 ... | bookworm, bullseye, jessie, sid, stretch, trixie | |
stalin | CVE-2015-8697 | stalin 0.11-5 allows local users to write to arbitrary files. | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
strongswan | CVE-2018-5389 | The Internet Key Exchange v1 main mode is vulnerable to offline dictio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
sudo | CVE-2005-1119 | Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-19232 | In Sudo through 1.8.29, an attacker with access to a Runas ALL sudoer ... | buster, jessie, stretch | |
CVE-2019-19234 | In Sudo through 1.8.29, the fact that a user has been blocked (e.g., b ... | buster, jessie, stretch | |
CVE-2021-23240 | selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a loc ... | buster, jessie, stretch | |
CVE-2022-43995 | Sudo 1.8.0 through 1.9.12, with the crypt() password backend, contains ... | bullseye, buster, jessie, stretch | |
supervisor | CVE-2019-12105 | In Supervisor through 4.0.2, an unauthenticated user can read log file ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
surf | CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
svgpp | CVE-2019-6245 | An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SV ... | bookworm, bullseye, sid, trixie |
CVE-2019-6247 | An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SV ... | bookworm, bullseye, sid, trixie | |
swfmill | CVE-2022-36140 | SWFMill commit 53d7690 was discovered to contain a segmentation violat ... | bullseye, buster, jessie, stretch |
CVE-2022-36141 | SWFMill commit 53d7690 was discovered to contain a segmentation violat ... | bullseye, buster, jessie, stretch | |
CVE-2022-36142 | SWFMill commit 53d7690 was discovered to contain a heap-buffer overflo ... | bullseye, buster, jessie, stretch | |
CVE-2022-36143 | SWFMill commit 53d7690 was discovered to contain a heap-buffer overflo ... | bullseye, buster, jessie, stretch | |
CVE-2022-36145 | SWFMill commit 53d7690 was discovered to contain a segmentation violat ... | bullseye, buster, jessie, stretch | |
CVE-2022-36146 | SWFMill commit 53d7690 was discovered to contain a memory allocation i ... | bullseye, buster, jessie, stretch | |
swftools | CVE-2017-8401 | In SWFTools 0.9.2, an out-of-bounds read of heap data can occur in the ... | jessie, stretch |
CVE-2017-8420 | SWFTools 2013-04-09-1007 on Windows has a "Data from Faulting Address ... | jessie, stretch | |
CVE-2017-9924 | In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attacker ... | jessie, stretch | |
CVE-2017-9925 | In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attacker ... | jessie, stretch | |
CVE-2017-9926 | In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attacker ... | jessie, stretch | |
CVE-2017-9927 | In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attacker ... | jessie, stretch | |
CVE-2017-10976 | When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead t ... | jessie, stretch | |
CVE-2017-11096 | When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lea ... | jessie, stretch | |
CVE-2017-11097 | When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a ... | jessie, stretch | |
CVE-2017-11098 | When SWFTools 0.9.2 processes a crafted file in png2swf, it can lead t ... | jessie, stretch | |
CVE-2017-11099 | When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead t ... | jessie, stretch | |
CVE-2017-11100 | When SWFTools 0.9.2 processes a crafted file in swfextract, it can lea ... | jessie, stretch | |
CVE-2017-11101 | When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lea ... | jessie, stretch | |
CVE-2017-16711 | The swf_DefineLosslessBitsTagToImage function in lib/modules/swfbits.c ... | jessie, stretch | |
CVE-2017-16794 | The png_load function in lib/png.c in SWFTools 0.9.2 does not properly ... | jessie, stretch | |
CVE-2017-16796 | In SWFTools 0.9.2, the png_load function in lib/png.c does not check t ... | jessie, stretch | |
CVE-2017-16868 | In SWFTools 0.9.2, the wav_convert2mono function in lib/wav.c does not ... | jessie, stretch | |
CVE-2017-16890 | SWFTools 0.9.2 has a divide-by-zero error in the wav_convert2mono func ... | jessie, stretch | |
CVE-2017-1000174 | In SWFTools, an address access exception was found in swfdump swf_GetB ... | jessie, stretch | |
CVE-2017-1000182 | In SWFTools, a memory leak was found in wav2swf. | jessie, stretch | |
CVE-2017-1000186 | In SWFTools, a stack overflow was found in pdf2swf. | jessie, stretch | |
CVE-2017-1000187 | In SWFTools, an address access exception was found in pdf2swf. FoFiTru ... | jessie, stretch | |
CVE-2023-26991 | SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in t ... | jessie, stretch | |
CVE-2023-27249 | swfdump v0.9.2 was discovered to contain a heap buffer overflow in the ... | jessie, stretch | |
CVE-2023-29950 | swfrender v0.9.2 was discovered to contain a heap buffer overflow in t ... | jessie, stretch | |
swi-prolog | CVE-2017-17524 | library/www_browser.pl in SWI-Prolog 7.2.3 does not validate strings b ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
sylpheed | CVE-2007-1267 | Sylpheed 2.2.7 and earlier does not properly use the --status-fd argum ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-17517 | libsylph/utils.c in Sylpheed through 3.6 does not validate strings bef ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
symfony | CVE-2017-18343 | The debug handler in Symfony before v2.7.33, 2.8.x before v2.8.26, 3.x ... | jessie, stretch |
CVE-2018-12040 | Reflected Cross-site scripting (XSS) vulnerability in the web profiler ... | jessie, stretch | |
CVE-2024-36610 | A deserialization vulnerability exists in the Stub class of the VarDum ... | bookworm, bullseye, buster, jessie, stretch | |
systemd | CVE-2013-4392 | systemd, when updating file permissions, allows local users to change ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-18078 | systemd-tmpfiles in systemd before 237 attempts to support ownership/p ... | stretch | |
CVE-2017-1000082 | systemd v233 and earlier fails to safely parse usernames starting with ... | stretch | |
CVE-2019-20386 | An issue was discovered in button_open in login/logind-button.c in sys ... | buster, jessie, stretch | |
CVE-2020-13529 | An exploitable denial-of-service vulnerability exists in Systemd 245. ... | bullseye, buster, jessie, stretch | |
CVE-2020-13776 | systemd through v245 mishandles numerical usernames such as ones compo ... | jessie, stretch | |
CVE-2023-31437 | An issue was discovered in systemd 253. An attacker can modify a seale ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31438 | An issue was discovered in systemd 253. An attacker can truncate a sea ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31439 | An issue was discovered in systemd 253. An attacker can modify the con ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
sysvinit | TEMP-0517018-A83CE6 | sysvinit: no-root option in expert installer exposes locally exploitable security flaw | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
t1utils | TEMP-0868134-294030 | out-of-bounds read in eexec_line() | stretch |
tar | CVE-2005-2541 | Tar 1.15.1 does not properly warn the user when extracting setuid or s ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2019-9923 | pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointe ... | buster, jessie, stretch | |
CVE-2021-20193 | A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw ... | buster, jessie, stretch | |
CVE-2022-48303 | GNU Tar through 1.34 has a one-byte out-of-bounds read that results in ... | buster, jessie, stretch | |
TEMP-0290435-0B57B5 | tar's rmt command may have undesired side effects | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
tcc | CVE-2018-20374 | An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-20375 | An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-20376 | An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
tcl8.5 | CVE-2021-35331 | In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow ... | jessie, stretch, bookworm, bullseye, buster, jessie, sid, stretch, trixie |
tcpdump | CVE-2018-16301 | The command-line argument parser in tcpdump before 4.99.0 has a buffer ... | buster, jessie, stretch |
CVE-2018-19519 | In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_p ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-1010220 | tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. T ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-1801 | The SMB protocol decoder in tcpdump version 4.99.3 can perform an out- ... | bookworm, bullseye, buster, jessie, stretch | |
tcpflow | CVE-2018-18409 | A stack-based buffer over-read exists in setbit() at iptree.h of TCPFL ... | jessie, stretch |
tcpreplay | CVE-2019-8376 | An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference ... | buster, jessie, stretch |
CVE-2019-8377 | An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference ... | buster, jessie, stretch | |
CVE-2019-8381 | An issue was discovered in Tcpreplay 4.3.1. An invalid memory access o ... | buster, jessie, stretch | |
CVE-2020-12740 | tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-rea ... | buster, stretch | |
CVE-2020-18976 | Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial ... | buster, jessie, stretch | |
CVE-2020-23273 | Heap-buffer overflow in the randomize_iparp function in edit_packet.c. ... | buster, jessie, stretch | |
CVE-2020-24265 | An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap b ... | bullseye, buster, jessie, stretch | |
CVE-2020-24266 | An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap b ... | bullseye, buster, jessie, stretch | |
CVE-2021-45386 | tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.c | bullseye, buster, jessie, stretch | |
CVE-2021-45387 | tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv4() at tree.c ... | bullseye, buster, jessie, stretch | |
CVE-2022-25484 | tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet ... | bullseye, buster, jessie, stretch | |
CVE-2022-27416 | Tcpreplay v4.4.1 was discovered to contain a double-free via __interce ... | bullseye, buster, jessie, stretch | |
CVE-2022-27418 | Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math ... | bullseye, buster, jessie, stretch | |
CVE-2022-27939 | tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_ ... | bullseye, buster, jessie, stretch | |
CVE-2022-27940 | tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get ... | bullseye, buster, jessie, stretch | |
CVE-2022-27941 | tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get ... | bullseye, buster, jessie, stretch | |
CVE-2022-27942 | tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_ ... | bullseye, buster, jessie, stretch | |
CVE-2022-28487 | Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_che ... | bullseye, buster, jessie, stretch | |
CVE-2022-37047 | The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain ... | bullseye, buster, jessie, stretch | |
CVE-2022-37048 | The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain ... | bullseye, buster, jessie, stretch | |
CVE-2022-37049 | The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a ... | bullseye, buster, jessie, stretch | |
CVE-2023-4256 | Within tcpreplay's tcprewrite, a double free vulnerability has been id ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-27783 | An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacke ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-27784 | An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-27785 | An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker t ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-27786 | An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-27787 | An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-27788 | An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-27789 | An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-43279 | Null Pointer Dereference in mask_cidr6 component at cidr.c in Tcprepla ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2024-3024 | A vulnerability was found in appneta tcpreplay up to 4.4.4. It has bee ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
telegram-desktop | CVE-2018-17231 | Telegram Desktop (aka tdesktop) 1.3.14 might allow attackers to cause ... | bookworm, bullseye, buster, sid, trixie |
CVE-2018-17613 | Telegram Desktop (aka tdesktop) 1.3.16 alpha, when "Use proxy" is enab ... | bookworm, bullseye, buster, sid, trixie | |
texlive-base | CVE-2017-17513 | TeX Live through 20170524 does not validate strings before launching t ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
texlive-bin | CVE-2016-10243 | TeX Live allows remote attackers to execute arbitrary commands by leve ... | buster, jessie, stretch |
CVE-2017-17513 | TeX Live through 20170524 does not validate strings before launching t ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-19601 | OpenDetex 2.8.5 has a Buffer Overflow in TexOpen in detex.l because of ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-33047 | OTFCC v0.10.4 was discovered to contain a heap buffer overflow after f ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35021 | OTFCC commit 617837b was discovered to contain a global buffer overflo ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35022 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35023 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35024 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35025 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35026 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35027 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35028 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35029 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35030 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35031 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35032 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35034 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35035 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35036 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35037 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35038 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35039 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35040 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35041 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35042 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35043 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35044 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35045 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35046 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35047 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35048 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35049 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35050 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35051 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35052 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35053 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35054 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35055 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35056 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35058 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35059 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35060 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35061 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35062 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35063 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35064 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35065 | OTFCC commit 617837b was discovered to contain a segmentation violatio ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35066 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35067 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35068 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35069 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35070 | OTFCC commit 617837b was discovered to contain a heap buffer overflow ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35447 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35448 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35449 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35450 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35451 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35452 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35453 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35454 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35455 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35456 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35458 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35459 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, sid, trixie | |
CVE-2022-35460 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35461 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35462 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35463 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35464 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35465 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35466 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35467 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, sid, trixie | |
CVE-2022-35468 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, sid, trixie | |
CVE-2022-35469 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35470 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35471 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, sid, trixie | |
CVE-2022-35472 | OTFCC v0.10.4 was discovered to contain a global overflow via /release ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35473 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35474 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35475 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ... | bookworm, sid, trixie | |
CVE-2022-35476 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35477 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35478 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35479 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35481 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35482 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35483 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35484 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35485 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2022-35486 | OTFCC v0.10.4 was discovered to contain a segmentation violation via / ... | bookworm, jessie, sid, stretch, trixie | |
CVE-2023-46048 | Tex Live 944e257 has a NULL pointer dereference in texk/web2c/pdftexdi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-46051 | TeX Live 944e257 allows a NULL pointer dereference in texk/web2c/pdfte ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
thrift-compiler | CVE-2016-5397 | The Apache Thrift Go client library exposed the potential during code ... | jessie, stretch |
thunar | CVE-2018-18398 | Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
TEMP-0517020-915121 | thunar: potential exploits via application launchers | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
thunderbird | CVE-2023-5217 | Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior ... | jessie, stretch |
tiff | CVE-2010-2596 | The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and 3.9.2 ... | jessie |
CVE-2014-8127 | LibTIFF 4.0.3 allows remote attackers to cause a denial of service (ou ... | jessie | |
CVE-2014-8130 | The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not rejec ... | jessie | |
CVE-2016-9539 | tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readCon ... | jessie | |
CVE-2016-10268 | tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a den ... | jessie | |
CVE-2017-5563 | LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read i ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-9117 | In LibTIFF 4.0.7, the program processes BMP images without verifying t ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-16232 | LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow at ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-17973 | In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writ ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-10126 | ijg-libjpeg before 9d, as used in tiff2pdf (from LibTIFF) and other pr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18661 | An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dere ... | stretch | |
CVE-2019-6128 | The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory l ... | stretch | |
CVE-2020-35521 | A flaw was found in libtiff. Due to a memory allocation failure in tif ... | buster, jessie, stretch | |
CVE-2020-35522 | In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A craf ... | buster, jessie, stretch | |
CVE-2022-1056 | Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers ... | bullseye, buster, jessie, stretch | |
CVE-2022-1210 | A vulnerability classified as problematic was found in LibTIFF 4.3.0. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-2519 | There is a double free or corruption in rotateImage() at tiffcrop.c:88 ... | buster, jessie, stretch | |
CVE-2022-2520 | A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion f ... | buster, jessie, stretch | |
CVE-2022-2521 | It was found in libtiff 4.4.0rc1 that there is an invalid pointer free ... | buster, jessie, stretch | |
CVE-2022-2953 | LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tool ... | buster, jessie, stretch | |
CVE-2023-1916 | A flaw was found in tiffcrop, a program distributed by the libtiff pac ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-3164 | A heap-buffer-overflow vulnerability was found in LibTIFF, in extractI ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-6228 | An issue was found in the tiffcp utility distributed by the libtiff pa ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-30775 | A vulnerability was found in the libtiff library. This security flaw c ... | bullseye, buster, jessie, stretch | |
TEMP-0846838-9738BD | tiffcrop: divide-by-zero in readSeparateStripsIntoBuffer when BitsPerSample is missing | jessie | |
tiles | CVE-2023-49735 | ** UNSUPPORTED WHEN ASSIGNED ** The value set as the DefaultLocaleRes ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
timidity | CVE-2017-11546 | The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allo ... | jessie, stretch |
CVE-2017-11547 | The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows ... | jessie, stretch | |
CVE-2017-11549 | The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remot ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
tin | CVE-2017-17520 | tools/url_handler.pl in TIN 2.4.1 does not validate strings before lau ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
tinyexr | CVE-2018-12687 | tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h ... | bookworm, bullseye, sid, trixie |
tinymux | CVE-2007-1959 | Unspecified vulnerability in the process_cmdent function in command.cp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
tinyssh | CVE-2023-48795 | The SSH transport protocol with certain OpenSSH extensions, found in O ... | bookworm, bullseye, buster |
tinyxml2 | CVE-2018-11210 | TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::P ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
tomcat7 | CVE-2012-5568 | Apache Tomcat through 7.0.x allows remote attackers to cause a denial ... | jessie, stretch |
CVE-2021-24122 | When serving resources from a network location using the NTFS file sys ... | jessie, stretch | |
CVE-2022-34305 | In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 ... | jessie, stretch | |
tomcat8 | CVE-2021-24122 | When serving resources from a network location using the NTFS file sys ... | jessie |
CVE-2022-34305 | In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 ... | jessie, stretch | |
tomcat9 | CVE-2021-24122 | When serving resources from a network location using the NTFS file sys ... | buster |
CVE-2022-34305 | In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 ... | bullseye, buster | |
tor | CVE-2006-6893 | Tor allows remote attackers to discover the IP address of a hidden ser ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2007-1103 | Tor does not verify a node's uptime and bandwidth advertisements, whic ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2009-0654 | Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attacke ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-8516 | The daemon in Tor through 0.4.1.8 and 0.4.2.x through 0.4.2.6 does not ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2020-15572 | Tor before 0.4.3.6 has an out-of-bounds memory access that allows a re ... | buster, jessie, stretch | |
transfig | CVE-2019-19746 | make_arrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fau ... | jessie |
triplea | CVE-2018-1000546 | Triplea version <= 1.9.0.0.10291 contains a XML External Entity (XXE) ... | bookworm, bullseye, jessie, sid, stretch, trixie |
trousers | CVE-2020-24330 | An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ... | bullseye, buster, jessie, stretch |
CVE-2020-24331 | An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ... | bullseye, buster, jessie, stretch | |
CVE-2020-24332 | An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ... | bullseye, buster, jessie, stretch | |
twig | CVE-2018-13818 | Twig before 2.4.4 allows Server-Side Template Injection (SSTI) via the ... | jessie, stretch |
twisted | CVE-2016-1000111 | Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1 ... | jessie |
u-boot | CVE-2017-3225 | Das U-Boot is a device bootloader that can read its configuration from ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-3226 | Das U-Boot is a device bootloader that can read its configuration from ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18439 | DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer over ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18440 | DENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overf ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-1000205 | U-Boot contains a CWE-20: Improper Input Validation vulnerability in V ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
uclibc | CVE-2016-2224 | The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before ... | jessie |
CVE-2016-2225 | The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng bef ... | jessie | |
CVE-2016-6264 | Integer signedness error in libc/string/arm/memset.S in uClibc and uCl ... | jessie | |
CVE-2017-9728 | In uClibc 0.9.33.2, there is an out-of-bounds read in the get_subexp f ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-9729 | In uClibc 0.9.33.2, there is stack exhaustion (uncontrolled recursion) ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-27419 | uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-arou ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-43523 | In uClibc and uClibc-ng before 1.0.39, incorrect handling of special c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-29503 | A memory corruption vulnerability exists in the libpthread linuxthread ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2022-30295 | uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable D ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
ufraw | CVE-2018-19655 | A stack-based buffer overflow in the find_green() function of dcraw th ... | jessie, stretch |
uglify-js | CVE-2022-37598 | Prototype pollution vulnerability in function DEFNODE in ast.js in mis ... | bookworm, bullseye, buster, sid, trixie |
uglifyjs | CVE-2015-8857 | The uglify-js package before 2.4.24 for Node.js does not properly acco ... | jessie |
CVE-2015-8858 | The uglify-js package before 2.6.0 for Node.js allows attackers to cau ... | jessie | |
CVE-2022-37598 | Prototype pollution vulnerability in function DEFNODE in ast.js in mis ... | bullseye, buster, jessie, sid, stretch, trixie | |
unbound | CVE-2019-18934 | Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec modul ... | buster |
CVE-2019-25031 | Unbound before 1.9.5 allows configuration injection in create_unbound_ ... | buster, jessie | |
CVE-2019-25032 | Unbound before 1.9.5 allows an integer overflow in the regional alloca ... | buster, jessie | |
CVE-2019-25033 | Unbound before 1.9.5 allows an integer overflow in the regional alloca ... | buster, jessie | |
CVE-2019-25034 | Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dnam ... | buster, jessie | |
CVE-2019-25035 | Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token ... | buster, jessie | |
CVE-2019-25036 | Unbound before 1.9.5 allows an assertion failure and denial of service ... | buster, jessie | |
CVE-2019-25037 | Unbound before 1.9.5 allows an assertion failure and denial of service ... | buster, jessie | |
CVE-2019-25038 | Unbound before 1.9.5 allows an integer overflow in a size calculation ... | buster, jessie | |
CVE-2019-25039 | Unbound before 1.9.5 allows an integer overflow in a size calculation ... | buster, jessie | |
CVE-2019-25040 | Unbound before 1.9.5 allows an infinite loop via a compressed name in ... | buster, jessie | |
CVE-2019-25041 | Unbound before 1.9.5 allows an assertion failure via a compressed name ... | buster, jessie | |
CVE-2019-25042 | Unbound before 1.9.5 allows an out-of-bounds write via a compressed na ... | buster, jessie | |
CVE-2024-43167 | DISPUTE NOTE: this issue does not pose a security risk as it (accordin ... | bookworm, jessie, stretch | |
CVE-2024-43168 | DISPUTE NOTE: this issue does not pose a security risk as it (accordin ... | bookworm, jessie, stretch | |
unixodbc | CVE-2012-2657 | Buffer overflow in the SQLDriverConnect function in unixODBC 2.0.10, 2 ... | jessie, stretch |
CVE-2012-2658 | Buffer overflow in the SQLDriverConnect function in unixODBC 2.3.1 all ... | jessie, stretch | |
CVE-2024-1013 | An out-of-bounds stack write flaw was found in unixODBC on 64-bit arch ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
unrar-free | CVE-2017-11189 | unrarlib.c in unrar-free 0.0.1 might allow remote attackers to cause a ... | jessie, stretch |
CVE-2017-11190 | unrarlib.c in unrar-free 0.0.1, when _DEBUG_LOG mode is enabled, might ... | bullseye, buster, jessie, stretch | |
unzip | CVE-2021-4217 | A flaw was found in unzip. The vulnerability occurs due to improper ha ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
upx-ucl | CVE-2017-15056 | p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote a ... | jessie, stretch |
CVE-2017-16869 | p_mach.cpp in UPX 3.94 allows remote attackers to cause a denial of se ... | jessie, stretch | |
CVE-2019-14295 | An Integer overflow in the getElfSections function in p_vmlinx.cpp in ... | buster, jessie, stretch | |
CVE-2019-14296 | canUnpack in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause ... | buster, jessie, stretch | |
CVE-2019-20021 | A heap-based buffer over-read was discovered in canUnpack in p_mach.cp ... | buster, jessie, stretch | |
CVE-2019-20051 | A floating-point exception was discovered in PackLinuxElf::elf_hash in ... | buster, jessie, stretch | |
CVE-2019-20053 | An invalid memory address dereference was discovered in the canUnpack ... | buster, jessie, stretch | |
CVE-2019-20805 | p_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacki ... | buster, jessie, stretch | |
CVE-2020-24119 | A heap buffer overflow read was discovered in upx 4.0.0, because the c ... | bullseye, buster, jessie, stretch | |
CVE-2020-27787 | A Segmentaation fault was found in UPX in invert_pt_dynamic() function ... | buster, jessie, stretch | |
CVE-2020-27788 | An out-of-bounds read access vulnerability was discovered in UPX in Pa ... | buster, jessie, stretch | |
CVE-2020-27790 | A floating point exception issue was discovered in UPX in PackLinuxElf ... | buster, jessie, stretch | |
CVE-2020-27796 | A heap-based buffer over-read was discovered in the invert_pt_dynamic ... | bullseye, buster, jessie, stretch | |
CVE-2020-27797 | An invalid memory address reference was discovered in the elf_lookup f ... | bullseye, buster, jessie, stretch | |
CVE-2020-27798 | An invalid memory address reference was discovered in the adjABS funct ... | bullseye, buster, jessie, stretch | |
CVE-2020-27799 | A heap-based buffer over-read was discovered in the acc_ua_get_be32 fu ... | bullseye, buster, jessie, stretch | |
CVE-2020-27800 | A heap-based buffer over-read was discovered in the get_le32 function ... | bullseye, buster, jessie, stretch | |
CVE-2020-27801 | A heap-based buffer over-read was discovered in the get_le64 function ... | bullseye, buster, jessie, stretch | |
CVE-2020-27802 | An floating point exception was discovered in the elf_lookup function ... | bullseye, buster, jessie, stretch | |
CVE-2021-20285 | A flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96. This flaw ... | bullseye, buster, jessie, stretch | |
CVE-2021-30500 | Null pointer dereference was found in upx PackLinuxElf::canUnpack() in ... | bullseye, buster, jessie, stretch | |
CVE-2021-30501 | An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in ... | bullseye, buster, jessie, stretch | |
CVE-2021-43311 | A heap-based buffer overflow was discovered in upx, during the generic ... | bullseye, buster, jessie, stretch | |
CVE-2021-43312 | A heap-based buffer overflow was discovered in upx, during the variabl ... | bullseye, buster, jessie, stretch | |
CVE-2021-43313 | A heap-based buffer overflow was discovered in upx, during the variabl ... | bullseye, buster, jessie, stretch | |
CVE-2021-43314 | A heap-based buffer overflows was discovered in upx, during the generi ... | bullseye, buster, jessie, stretch | |
CVE-2021-43315 | A heap-based buffer overflows was discovered in upx, during the generi ... | bullseye, buster, jessie, stretch | |
CVE-2021-43316 | A heap-based buffer overflow was discovered in upx, during the generic ... | bullseye, buster, jessie, stretch | |
CVE-2021-43317 | A heap-based buffer overflows was discovered in upx, during the generi ... | bullseye, buster, jessie, stretch | |
CVE-2021-46179 | Reachable Assertion vulnerability in upx before 4.0.0 allows attackers ... | bullseye, buster, jessie, stretch | |
CVE-2023-23457 | A Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dyn ... | bullseye, buster, jessie, stretch | |
CVE-2024-3209 | A vulnerability was found in UPX up to 4.2.2. It has been rated as cri ... | bullseye, buster, jessie, stretch | |
util-linux | CVE-2015-5218 | Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before ... | jessie |
CVE-2015-5224 | The mkostemp function in login-utils in util-linux when used incorrect ... | jessie | |
CVE-2017-2616 | A race condition was found in util-linux before 2.32.1 in the way su h ... | jessie | |
CVE-2022-0563 | A flaw was found in the util-linux chfn and chsh utilities when compil ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0786804-C23D2B | hwclock(8) SUID privilege escalation | jessie | |
uwsgi | CVE-2020-11984 | Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure an ... | bookworm, bullseye, buster, sid, trixie |
CVE-2021-36160 | A carefully crafted request uri-path can cause mod_proxy_uwsgi to read ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2024-24795 | HTTP Response splitting in multiple modules in Apache HTTP Server allo ... | bookworm, bullseye, buster, jessie, sid, trixie | |
uzbl | CVE-2014-3566 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ... | jessie, stretch |
v4l2loopback | CVE-2022-2652 | Depending on the way the format strings in the card label are crafted ... | bullseye, buster, jessie, stretch |
varnish | CVE-2009-4488 | Varnish 2.0.6 writes data to a log file without sanitizing non-printab ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
vim | CVE-2008-4677 | autoload/netrw.vim (aka the Netrw Plugin) 109, 131, and other versions ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2017-1000382 | VIM version 8.0.1187 (and other versions most likely) ignores umask wh ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-3236 | vim 8.2.2348 is affected by null pointer dereference, allows local att ... | buster, jessie, stretch | |
CVE-2021-3903 | vim is vulnerable to Heap-based Buffer Overflow | bullseye, buster | |
CVE-2021-3927 | vim is vulnerable to Heap-based Buffer Overflow | bullseye | |
CVE-2021-3928 | vim is vulnerable to Use of Uninitialized Variable | bullseye | |
CVE-2021-3968 | vim is vulnerable to Heap-based Buffer Overflow | bullseye | |
CVE-2021-3973 | vim is vulnerable to Heap-based Buffer Overflow | bullseye, buster | |
CVE-2021-3974 | vim is vulnerable to Use After Free | bullseye | |
CVE-2021-3984 | vim is vulnerable to Heap-based Buffer Overflow | bullseye | |
CVE-2021-4069 | vim is vulnerable to Use After Free | bullseye | |
CVE-2021-4136 | vim is vulnerable to Heap-based Buffer Overflow | bullseye | |
CVE-2021-4166 | vim is vulnerable to Out-of-bounds Read | bullseye, buster, stretch | |
CVE-2021-4192 | vim is vulnerable to Use After Free | bullseye | |
CVE-2021-4193 | vim is vulnerable to Out-of-bounds Read | bullseye | |
CVE-2022-0156 | vim is vulnerable to Use After Free | bullseye | |
CVE-2022-0158 | vim is vulnerable to Heap-based Buffer Overflow | bullseye | |
CVE-2022-0213 | vim is vulnerable to Heap-based Buffer Overflow | bullseye | |
CVE-2022-0318 | Heap-based Buffer Overflow in vim/vim prior to 8.2. | bullseye, jessie, stretch | |
CVE-2022-0319 | Out-of-bounds Read in vim/vim prior to 8.2. | bullseye | |
CVE-2022-0368 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0393 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0407 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0408 | Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0413 | Use After Free in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0443 | Use After Free in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0554 | Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ... | bullseye | |
CVE-2022-0629 | Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-0685 | Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ... | bullseye | |
CVE-2022-0696 | NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.442 ... | bullseye, jessie, stretch | |
CVE-2022-0714 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4 ... | bullseye | |
CVE-2022-0729 | Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ... | bullseye | |
CVE-2022-0943 | Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim ... | bullseye | |
CVE-2022-1154 | Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8 ... | bullseye | |
CVE-2022-1420 | Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ... | bullseye | |
CVE-2022-1619 | Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub r ... | bullseye | |
CVE-2022-1620 | NULL Pointer Dereference in function vim_regexec_string at regexp.c:27 ... | bullseye, buster, jessie, stretch | |
CVE-2022-1621 | Heap buffer overflow in vim_strncpy find_word in GitHub repository vim ... | bullseye | |
CVE-2022-1629 | Buffer Over-read in function find_next_quote in GitHub repository vim/ ... | bullseye, buster, jessie, stretch | |
CVE-2022-1674 | NULL Pointer Dereference in function vim_regexec_string at regexp.c:27 ... | bullseye, buster, jessie, stretch | |
CVE-2022-1720 | Buffer Over-read in function grab_file_name in GitHub repository vim/v ... | bullseye | |
CVE-2022-1725 | NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.495 ... | bullseye, buster, jessie, stretch | |
CVE-2022-1733 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4 ... | bullseye, buster, jessie, stretch | |
CVE-2022-1735 | Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969 ... | bullseye, buster, jessie, stretch | |
CVE-2022-1769 | Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. | bullseye, buster, jessie, stretch | |
CVE-2022-1771 | Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975. | bullseye, buster, jessie, stretch | |
CVE-2022-1796 | Use After Free in GitHub repository vim/vim prior to 8.2.4979. | bullseye, buster, jessie, stretch | |
CVE-2022-1851 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-1886 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-1898 | Use After Free in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-1927 | Buffer Over-read in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-1968 | Use After Free in GitHub repository vim/vim prior to 8.2. | bullseye | |
CVE-2022-2042 | Use After Free in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2124 | Buffer Over-read in GitHub repository vim/vim prior to 8.2. | bullseye, buster | |
CVE-2022-2125 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2126 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | bullseye, buster | |
CVE-2022-2175 | Buffer Over-read in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2182 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2183 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2206 | Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2207 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2208 | NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.516 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2210 | Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2231 | NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2. | bullseye, buster, jessie, stretch | |
CVE-2022-2257 | Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. | bullseye, buster, jessie, stretch | |
CVE-2022-2264 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. | bullseye, buster, jessie, stretch | |
CVE-2022-2284 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. | bullseye, buster, jessie, stretch | |
CVE-2022-2285 | Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9 ... | bullseye | |
CVE-2022-2286 | Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. | bullseye, buster, jessie, stretch | |
CVE-2022-2287 | Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. | bullseye, buster, jessie, stretch | |
CVE-2022-2289 | Use After Free in GitHub repository vim/vim prior to 9.0. | bullseye, buster, jessie, stretch | |
CVE-2022-2343 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2344 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2345 | Use After Free in GitHub repository vim/vim prior to 9.0.0046. | bullseye, buster, jessie, stretch | |
CVE-2022-2522 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2571 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, jessie, stretch | |
CVE-2022-2581 | Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104. | bullseye, buster, jessie, stretch | |
CVE-2022-2598 | Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, jessie, stretch | |
CVE-2022-2816 | Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212. | bullseye, buster, jessie, stretch | |
CVE-2022-2817 | Use After Free in GitHub repository vim/vim prior to 9.0.0213. | bullseye, jessie, stretch | |
CVE-2022-2819 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, jessie, stretch | |
CVE-2022-2845 | Improper Validation of Specified Quantity in Input in GitHub repositor ... | bullseye, buster, jessie, stretch | |
CVE-2022-2849 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2862 | Use After Free in GitHub repository vim/vim prior to 9.0.0221. | bullseye, jessie, stretch | |
CVE-2022-2874 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.022 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2889 | Use After Free in GitHub repository vim/vim prior to 9.0.0225. | bullseye, buster, jessie, stretch | |
CVE-2022-2923 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.024 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2946 | Use After Free in GitHub repository vim/vim prior to 9.0.0246. | bullseye | |
CVE-2022-2980 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.025 ... | bullseye, buster, jessie, stretch | |
CVE-2022-2982 | Use After Free in GitHub repository vim/vim prior to 9.0.0260. | bullseye | |
CVE-2022-3016 | Use After Free in GitHub repository vim/vim prior to 9.0.0286. | bullseye, buster, jessie, stretch | |
CVE-2022-3037 | Use After Free in GitHub repository vim/vim prior to 9.0.0322. | bullseye | |
CVE-2022-3153 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.040 ... | bullseye, buster, jessie, stretch | |
CVE-2022-3234 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye | |
CVE-2022-3235 | Use After Free in GitHub repository vim/vim prior to 9.0.0490. | bullseye | |
CVE-2022-3256 | Use After Free in GitHub repository vim/vim prior to 9.0.0530. | bullseye | |
CVE-2022-3278 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.055 ... | bullseye, buster, jessie, stretch | |
CVE-2022-3296 | Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. ... | bullseye, buster, jessie, stretch | |
CVE-2022-3297 | Use After Free in GitHub repository vim/vim prior to 9.0.0579. | bullseye, buster, jessie, stretch | |
CVE-2022-3352 | Use After Free in GitHub repository vim/vim prior to 9.0.0614. | bullseye, jessie | |
CVE-2022-3491 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, buster, jessie, stretch | |
CVE-2022-3520 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ... | bullseye, buster, jessie, stretch | |
CVE-2022-3591 | Use After Free in GitHub repository vim/vim prior to 9.0.0789. | bullseye, buster, jessie, stretch | |
CVE-2022-3705 | A vulnerability was found in vim and classified as problematic. Affect ... | bullseye, jessie, stretch | |
CVE-2022-4292 | Use After Free in GitHub repository vim/vim prior to 9.0.0882. | bullseye, buster, jessie, stretch | |
CVE-2022-4293 | Floating Point Comparison with Incorrect Operator in GitHub repository ... | bullseye, buster, jessie, stretch | |
CVE-2022-47024 | A null pointer dereference issue was discovered in function gui_x11_cr ... | bullseye, buster, jessie, stretch | |
CVE-2023-0049 | Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143. | bullseye, buster, jessie, stretch | |
CVE-2023-0051 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ... | bullseye, buster, jessie, stretch | |
CVE-2023-0288 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ... | bullseye, buster, jessie, stretch | |
CVE-2023-0433 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ... | bullseye, buster, jessie, stretch | |
CVE-2023-0512 | Divide By Zero in GitHub repository vim/vim prior to 9.0.1247. | bullseye, buster, jessie, stretch | |
CVE-2023-1127 | Divide By Zero in GitHub repository vim/vim prior to 9.0.1367. | jessie, stretch | |
CVE-2023-1170 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ... | bullseye, buster, jessie, stretch | |
CVE-2023-1264 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.139 ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-1355 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.140 ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-2609 | NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.153 ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-3896 | Divide By Zero in vim/vim from9.0.1367-1 to9.0.1367-3 | bookworm, bullseye | |
CVE-2023-4733 | Use After Free in GitHub repository vim/vim prior to 9.0.1840. | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-4734 | Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9 ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-4735 | Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847. | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-4750 | Use After Free in GitHub repository vim/vim prior to 9.0.1857. | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-4751 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-5441 | NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161a ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-5535 | Use After Free in GitHub repository vim/vim prior to v9.0.2010. | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-46246 | Vim is an improved version of the good old UNIX editor Vi. Heap-use-af ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48231 | Vim is an open source command line text editor. When closing a window, ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48232 | Vim is an open source command line text editor. A floating point excep ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48233 | Vim is an open source command line text editor. If the count after the ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48234 | Vim is an open source command line text editor. When getting the count ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48235 | Vim is an open source command line text editor. When parsing relative ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48236 | Vim is an open source command line text editor. When using the z= comm ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48237 | Vim is an open source command line text editor. In affected versions w ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2023-48706 | Vim is a UNIX editor that, prior to version 9.0.2121, has a heap-use-a ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-41957 | Vim is an open source command line text editor. Vim < v9.1.0647 has do ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-41965 | Vim is an open source command line text editor. double-free in dialog_ ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-43374 | The UNIX editor Vim prior to version 9.1.0678 has a use-after-free err ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-43790 | Vim is an open source command line text editor. When performing a sear ... | bookworm, bullseye, buster, jessie, stretch | |
vino | CVE-2011-1164 | Vino before 2.99.4 can connect external networks contrary to the state ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2011-1165 | Vino, possibly before 3.2, does not properly document that it opens po ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
vnc4 | CVE-2014-0011 | Multiple heap-based buffer overflows in the ZRLE_DECODE function in co ... | jessie |
CVE-2015-2305 | Integer overflow in the regcomp implementation in the Henry Spencer BS ... | jessie | |
vorbis-tools | CVE-2017-11331 | The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-43361 | Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
vte | CVE-2005-0023 | gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to sp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2024-37535 | GNOME VTE before 0.76.3 allows an attacker to cause a denial of servic ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
w3m | CVE-2018-6198 | w3m through 0.5.3 does not properly handle temporary files when the ~/ ... | jessie |
CVE-2023-38252 | An out-of-bounds read flaw was found in w3m, in the Strnew_size functi ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-38253 | An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str fun ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
TEMP-0532514-9137E0 | predictable random number generator used in web browsers | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
wabt | CVE-2022-43280 | wasm-interp v1.0.29 was discovered to contain an out-of-bounds read vi ... | bullseye, buster |
CVE-2022-43281 | wasm-interp v1.0.29 was discovered to contain a heap overflow via the ... | bullseye, buster | |
CVE-2022-43282 | wasm-interp v1.0.29 was discovered to contain an out-of-bounds read vi ... | bullseye, buster | |
CVE-2022-43283 | wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write. | bullseye, buster | |
CVE-2023-27115 | WebAssembly v1.0.29 was discovered to contain a segmentation fault via ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2023-27116 | WebAssembly v1.0.29 discovered to contain an abort in CWriter::MangleT ... | bookworm, bullseye, buster | |
CVE-2023-27117 | WebAssembly v1.0.29 was discovered to contain a heap overflow via the ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2023-27119 | WebAssembly v1.0.29 was discovered to contain a segmentation fault via ... | bookworm, bullseye, buster, sid, trixie | |
CVE-2023-30300 | An issue in the component hang.wasm of WebAssembly 1.0 causes an infin ... | bookworm, bullseye, buster | |
CVE-2023-31669 | WebAssembly wat2wasm v1.0.32 allows attackers to cause a libc++abi.dyl ... | bookworm, bullseye, buster | |
CVE-2023-31670 | An issue in wasm2c 1.0.32, wasm2wat 1.0.32, wasm-decompile 1.0.32, and ... | bookworm, bullseye, buster | |
CVE-2023-46331 | WebAssembly wabt 1.0.33 has an Out-of-Bound Memory Read in in DataSegm ... | bookworm, bullseye, buster, sid, trixie | |
wavpack | CVE-2021-44269 | An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV f ... | bullseye, buster, jessie, stretch |
web2py | CVE-2013-6837 | Cross-site scripting (XSS) vulnerability in the setTimeout function in ... | jessie |
webkit2gtk | CVE-2015-7096 | WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9 ... | jessie |
CVE-2015-7098 | WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9 ... | jessie | |
CVE-2016-4590 | WebKit in Apple iOS before 9.3.3 and Safari before 9.1.2 mishandles ab ... | jessie | |
CVE-2016-4591 | WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before ... | jessie | |
CVE-2016-4622 | WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before ... | jessie | |
CVE-2016-4624 | WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before ... | jessie | |
CVE-2016-4692 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-4743 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7586 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7587 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7589 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7592 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7598 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7599 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7610 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7611 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7623 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7632 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7635 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7639 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7640 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7641 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7642 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7645 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7646 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7648 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7649 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7652 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7654 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2016-7656 | An issue was discovered in certain Apple products. iOS before 10.2 is ... | jessie | |
CVE-2017-2350 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2354 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2355 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2356 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2362 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2363 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2364 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2365 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2366 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2369 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2371 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2373 | An issue was discovered in certain Apple products. iOS before 10.2.1 i ... | jessie | |
CVE-2017-2376 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2377 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2386 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2392 | An issue was discovered in certain Apple products. Safari before 10.1 ... | jessie | |
CVE-2017-2394 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2395 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2396 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2405 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2415 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2419 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2424 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2433 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2442 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2445 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2446 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2447 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2454 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2455 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2457 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2459 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2460 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2464 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2465 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2466 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2468 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2469 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2470 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2471 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2475 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2476 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2481 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie | |
CVE-2017-2496 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2504 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2505 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2506 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2508 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2510 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2514 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2515 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2521 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2525 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2526 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2528 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2530 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2531 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2536 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2538 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2539 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2544 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2547 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-2549 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-6980 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-6984 | An issue was discovered in certain Apple products. iOS before 10.3.2 i ... | jessie | |
CVE-2017-7006 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7011 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7012 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7018 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7019 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7020 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7030 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7034 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7037 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7038 | A DOMParser XSS issue was discovered in certain Apple products. iOS be ... | jessie | |
CVE-2017-7039 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7040 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7041 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7042 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7043 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7046 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7048 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7049 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7052 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7055 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7056 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7059 | A DOMParser XSS issue was discovered in certain Apple products. iOS be ... | jessie | |
CVE-2017-7061 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7064 | An issue was discovered in certain Apple products. iOS before 10.3.3 i ... | jessie | |
CVE-2017-7081 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7087 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7089 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7090 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7091 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7092 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7093 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7094 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7095 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7096 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7098 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7099 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7100 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7102 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7104 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7107 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7109 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7111 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7117 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7120 | An issue was discovered in certain Apple products. iOS before 11 is af ... | jessie | |
CVE-2017-7142 | An issue was discovered in certain Apple products. Safari before 11 is ... | jessie | |
CVE-2017-7153 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-7156 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-7157 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-7160 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-7161 | An issue was discovered in certain Apple products. Safari before 11.0. ... | jessie | |
CVE-2017-7165 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-13783 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13784 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13785 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13788 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13791 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13792 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13793 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13794 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13795 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13796 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13798 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13802 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13803 | An issue was discovered in certain Apple products. iOS before 11.1 is ... | jessie | |
CVE-2017-13856 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-13866 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-13870 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-13884 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-13885 | An issue was discovered in certain Apple products. iOS before 11.2 is ... | jessie | |
CVE-2017-17821 | WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology ... | jessie, stretch | |
CVE-2017-1000121 | The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, do ... | jessie | |
CVE-2017-1000122 | The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, do ... | jessie | |
CVE-2018-4088 | An issue was discovered in certain Apple products. iOS before 11.2.5 i ... | jessie | |
CVE-2018-4089 | An issue was discovered in certain Apple products. iOS before 11.2.5 i ... | jessie | |
CVE-2018-4096 | An issue was discovered in certain Apple products. iOS before 11.2.5 i ... | jessie | |
CVE-2018-4101 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4113 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4114 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4117 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4118 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4119 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4120 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4121 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4122 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4125 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4127 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4128 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4129 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4133 | An issue was discovered in certain Apple products. Safari before 11.1 ... | jessie, stretch | |
CVE-2018-4146 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4161 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4162 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4163 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4165 | An issue was discovered in certain Apple products. iOS before 11.3 is ... | jessie, stretch | |
CVE-2018-4190 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4191 | A memory corruption issue was addressed with improved validation. This ... | jessie, stretch | |
CVE-2018-4192 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4197 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4199 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4200 | An issue was discovered in certain Apple products. iOS before 11.3.1 i ... | jessie, stretch | |
CVE-2018-4201 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4204 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4207 | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ... | jessie, stretch | |
CVE-2018-4208 | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ... | jessie, stretch | |
CVE-2018-4209 | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ... | jessie, stretch | |
CVE-2018-4210 | In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS befo ... | jessie, stretch | |
CVE-2018-4212 | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ... | jessie, stretch | |
CVE-2018-4213 | In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, ... | jessie, stretch | |
CVE-2018-4214 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4218 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4222 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4232 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4233 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4246 | An issue was discovered in certain Apple products. iOS before 11.4 is ... | jessie, stretch | |
CVE-2018-4261 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4262 | In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11 ... | jessie, stretch | |
CVE-2018-4263 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4264 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4265 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4266 | A race condition was addressed with additional validation. This issue ... | jessie, stretch | |
CVE-2018-4267 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4270 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2018-4271 | Multiple memory corruption issues were addressed with improved input v ... | jessie, stretch | |
CVE-2018-4272 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4273 | Multiple memory corruption issues were addressed with improved input v ... | jessie, stretch | |
CVE-2018-4278 | In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11 ... | jessie, stretch | |
CVE-2018-4284 | A type confusion issue was addressed with improved memory handling. Th ... | jessie, stretch | |
CVE-2018-4299 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4306 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4309 | A cross-site scripting issue existed in Safari. This issue was address ... | jessie, stretch | |
CVE-2018-4311 | The issue was addressed by removing origin information. This issue aff ... | jessie, stretch | |
CVE-2018-4312 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4314 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4315 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4316 | A memory corruption issue was addressed with improved state management ... | jessie, stretch | |
CVE-2018-4317 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4318 | A use after free issue was addressed with improved memory management. ... | jessie, stretch | |
CVE-2018-4319 | A cross-origin issue existed with "iframe" elements. This was addresse ... | jessie, stretch | |
CVE-2018-4323 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4328 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4345 | A cross-site scripting issue existed in Safari. This issue was address ... | jessie, stretch | |
CVE-2018-4358 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4359 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4361 | A memory consumption issue was addressed with improved memory handling ... | jessie, stretch | |
CVE-2018-4372 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4373 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4375 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4376 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4378 | A memory corruption issue was addressed with improved validation. This ... | jessie, stretch | |
CVE-2018-4382 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4386 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4392 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4416 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4437 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-4438 | A logic issue existed resulting in memory corruption. This was address ... | jessie, stretch | |
CVE-2018-4441 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2018-4442 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2018-4443 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2018-4464 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2018-11646 | webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIco ... | jessie, stretch | |
CVE-2018-11712 | WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the li ... | jessie, stretch | |
CVE-2018-11713 | WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the li ... | jessie, stretch | |
CVE-2018-12293 | The getImageData function in the ImageBufferCairo class in WebCore/pla ... | jessie, stretch | |
CVE-2018-12294 | WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as ... | jessie, stretch | |
CVE-2018-12911 | WebKitGTK+ 2.20.3 has an off-by-one error, with a resultant out-of-bou ... | jessie, stretch | |
CVE-2019-6212 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2019-6215 | A type confusion issue was addressed with improved memory handling. Th ... | jessie, stretch | |
CVE-2019-6216 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2019-6217 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2019-6226 | Multiple memory corruption issues were addressed with improved memory ... | jessie, stretch | |
CVE-2019-6227 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2019-6229 | A logic issue was addressed with improved validation. This issue is fi ... | jessie, stretch | |
CVE-2019-6233 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2019-6234 | A memory corruption issue was addressed with improved memory handling. ... | jessie, stretch | |
CVE-2019-8375 | The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.9 ... | jessie, stretch | |
CVE-2022-2294 | Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.11 ... | jessie, stretch | |
CVE-2023-32409 | The issue was addressed with improved bounds checks. This issue is fix ... | buster, jessie, stretch | |
webkitgtk | CVE-2016-1856 | WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tv ... | jessie, stretch |
CVE-2016-1857 | WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tv ... | jessie, stretch | |
CVE-2016-4657 | WebKit in Apple iOS before 9.3.5 allows remote attackers to execute ar ... | jessie, stretch | |
CVE-2016-4761 | WebKitGTK+ before 2.14.0: A use-after-free vulnerability can allow rem ... | jessie, stretch | |
CVE-2016-9642 | JavaScriptCore in WebKit allows attackers to cause a denial of service ... | jessie, stretch | |
CVE-2016-9643 | The regex code in Webkit 2.4.11 allows remote attackers to cause a den ... | jessie, stretch | |
CVE-2016-10222 | runtime/JSONObject.cpp in JavaScriptCore in WebKit, as distributed in ... | jessie, stretch | |
CVE-2016-10226 | JavaScriptCore in WebKit, as distributed in Safari Technology Preview ... | jessie, stretch | |
CVE-2017-2367 | An issue was discovered in certain Apple products. iOS before 10.3 is ... | jessie, stretch | |
CVE-2017-5949 | JavaScriptCore in WebKit, as distributed in Safari Technology Preview ... | jessie, stretch | |
wheel | CVE-2022-40898 | An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 ... | bullseye, buster, jessie, stretch |
whitedune | CVE-2017-17518 | swt/motif/browser.c in White_dune (aka whitedune) 0.30.10 does not val ... | bookworm, bullseye, buster, jessie, sid, stretch |
whohas | CVE-2021-4258 | A vulnerability was found in whohas. It has been rated as problematic. ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
wine | TEMP-0816034-9C45DC | unsafe use of /tmp | jessie, stretch, jessie, stretch |
wireshark | CVE-2024-4853 | Memory handling issue in editcap could cause denial of service via cra ... | jessie |
CVE-2024-4855 | Use after free issue in editcap could cause denial of service via craf ... | bullseye, buster, jessie, stretch | |
CVE-2024-9780 | ITS dissector crash in Wireshark 4.4.0 allows denial of service via pa ... | bookworm, bullseye, buster, jessie, stretch | |
CVE-2024-9781 | AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4. ... | bookworm, bullseye, buster, jessie, stretch | |
wkhtmltopdf | CVE-2022-35583 | wkhtmlTOpdf 0.12.6 is vulnerable to SSRF which allows an attacker to g ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
wolfssl | CVE-2023-6935 | wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Att ... | bookworm, bullseye |
wordpress | CVE-2006-0733 | Cross-site scripting (XSS) vulnerability in WordPress 2.0.0 allows rem ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2008-0191 | WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2011-4898 | wp-admin/setup-config.php in the installation component in WordPress 3 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2011-4899 | wp-admin/setup-config.php in the installation component in WordPress 3 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2012-0782 | Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/setup- ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2012-0937 | wp-admin/setup-config.php in the installation component in WordPress 3 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2012-5868 | WordPress 3.4.2 does not invalidate a wordpress_sec session cookie upo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2013-7233 | Cross-site request forgery (CSRF) vulnerability in the retrospam compo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2017-6514 | WordPress 4.7.2 mishandles listings of post authors, which allows remo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-6389 | In WordPress through 4.9.2, unauthenticated attackers can cause a deni ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
wpa | CVE-2016-10743 | hostapd before 2.6 does not prevent use of the low-quality PRNG that i ... | stretch |
CVE-2017-13084 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Sta ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2019-5061 | An exploitable denial-of-service vulnerability exists in the hostapd 2 ... | buster, jessie, stretch | |
CVE-2019-5062 | An exploitable denial-of-service vulnerability exists in the 802.11w s ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-30004 | In wpa_supplicant and hostapd 2.9, forging attacks may occur because A ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
wpewebkit | CVE-2023-32409 | The issue was addressed with improved bounds checks. This issue is fix ... | bookworm, bullseye |
xbindkeys-config | CVE-2014-9513 | Insecure use of temporary files in xbindkeys-config 0.1.3-2 allows rem ... | bookworm, bullseye, buster, jessie, stretch |
xbmc | CVE-2013-1438 | Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in lib ... | jessie |
xcfa | CVE-2014-5254 | xcfa before 5.0.1 creates temporary files insecurely which could allow ... | jessie |
CVE-2014-5255 | xcfa before 5.0.1 creates temporary files insecurely which could allow ... | jessie | |
xchat | CVE-2011-5129 | Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote at ... | buster, jessie |
xdg-user-dirs | CVE-2017-15131 | It was found that system umask policy is not being honored when creati ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
xen | CVE-2014-9066 | Xen 4.4.x and earlier, when using a large number of VCPUs, does not pr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-28689 | x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-34323 | When a transaction is committed, C Xenstored will first check the quot ... | jessie, stretch | |
xerces-c | CVE-2012-0880 | Apache Xerces-C++ allows remote attackers to cause a denial of service ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
xfig | CVE-2009-4228 | Stack consumption vulnerability in u_bound.c in Xfig 3.2.5b and earlie ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-40241 | xfig 3.2.7 is vulnerable to Buffer Overflow. | jessie, stretch | |
CVE-2023-45920 | Xfig v3.2.8 was discovered to contain a NULL pointer dereference when ... | bookworm, bullseye, buster, jessie, stretch | |
xloadimage | CVE-2006-4484 | Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
xorg-server | CVE-2022-3553 | A vulnerability, which was classified as problematic, was found in X.o ... | bullseye, buster, jessie, stretch |
CVE-2024-31082 | A heap-based buffer over-read vulnerability was found in the X.org ser ... | buster, jessie, stretch | |
xpdf | CVE-2010-0206 | xpdf allows remote attackers to cause a denial of service (NULL pointe ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2010-0207 | In xpdf, the xref table contains an infinite loop which allows remote ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2013-4472 | The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7173 | A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7174 | An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7175 | An issue was discovered in xpdf 4.00. A NULL pointer dereference in re ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7452 | A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc i ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7453 | Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7454 | A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpd ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-7455 | An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xp ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8100 | The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00 allo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8101 | The JPXStream::inverseTransformLevel function in JPXStream.cc in xpdf ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8102 | The JBIG2MMRDecoder::getBlackCode function in JBIG2Stream.cc in xpdf 4 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8103 | The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8104 | The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows atta ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8105 | The JPXStream::fillReadBuf function in JPXStream.cc in xpdf 4.00 allow ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8106 | The JPXStream::readTilePartData function in JPXStream.cc in xpdf 4.00 ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-8107 | The JPXStream::close function in JPXStream.cc in xpdf 4.00 allows atta ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-11033 | The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-16368 | SplashXPath::strokeAdjust in splash/SplashXPath.cc in Xpdf 4.00 allows ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-16369 | XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18454 | CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote atta ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18455 | The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18456 | The function Object::isName() in Object.h (called from Gfx::opSetFillC ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18457 | The function DCTStream::readScan in Stream.cc in Xpdf 4.00 allows remo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18458 | The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows r ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2018-18459 | The function DCTStream::getBlock in Stream.cc in Xpdf 4.00 allows remo ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
xserver-xorg-video-nouveau | CVE-2018-3979 | A remote denial-of-service vulnerability exists in the way the Nouveau ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
xterm | CVE-2006-4447 | X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtran ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2023-40359 | xterm before 380 supports ReGIS reporting for character-set names even ... | bookworm, bullseye, buster, jessie, stretch | |
yabasic | CVE-2019-19720 | Yabasic 2.86.1 has a heap-based buffer overflow in the yylex() functio ... | bookworm, bullseye, buster, sid, stretch, trixie |
CVE-2019-19796 | Yabasic 2.86.2 has a heap-based buffer overflow in myformat in functio ... | bookworm, bullseye, buster, sid, stretch, trixie | |
yara | CVE-2019-19648 | In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
yasm | CVE-2021-33454 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2021-33455 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33456 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33457 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33458 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33459 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33460 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33461 | An issue was discovered in yasm version 1.3.0. There is a use-after-fr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33462 | An issue was discovered in yasm version 1.3.0. There is a use-after-fr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33463 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33465 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33466 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33467 | An issue was discovered in yasm version 1.3.0. There is a use-after-fr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2021-33468 | An issue was discovered in yasm version 1.3.0. There is a use-after-fr ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-29580 | yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-29581 | yasm 1.3.0.55.g101bc has a segmentation violation in the function dele ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-29582 | yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via th ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-29583 | yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via th ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-30402 | YASM v1.3.0 was discovered to contain a heap overflow via the function ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31723 | yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31724 | yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31725 | yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free v ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31972 | yasm v1.3.0 was discovered to contain a use after free via the functio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31973 | yasm v1.3.0 was discovered to contain a use after free via the functio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31974 | yasm v1.3.0 was discovered to contain a use after free via the functio ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-31975 | yasm v1.3.0 was discovered to contain a memory leak via the function y ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-37732 | Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-49554 | Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote at ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-49555 | An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a de ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-49556 | Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-49557 | An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a de ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-49558 | An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a de ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
CVE-2023-51258 | A memory leak issue discovered in YASM v.1.3.0 allows a local attacker ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
yaws | CVE-2009-4495 | Yaws 1.85 writes data to a log file without sanitizing non-printable c ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
youtube-dl | CVE-2024-38519 | `yt-dlp` and `youtube-dl` are command-line audio/video downloaders. Pr ... | bookworm, bullseye, buster, stretch, bookworm |
yum | CVE-2013-1910 | yum does not properly handle bad metadata, which allows an attacker to ... | buster, jessie, stretch |
zabbix | CVE-2023-29453 | Templates do not properly consider backticks (`) as Javascript string ... | bookworm, bullseye |
zangband | CVE-2021-40589 | ZAngband zangband-data 2.7.5 is affected by an integer underflow vulne ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
zim | CVE-2020-10870 | Zim through 0.72.1 creates temporary directories with predictable name ... | buster, jessie, stretch |
zip | CVE-2018-13410 | Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, a ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
zoneminder | CVE-2019-7350 | Session fixation exists in ZoneMinder through 1.32.3, as an attacker c ... | bookworm, bullseye, sid |
CVE-2019-7351 | Log Injection exists in ZoneMinder through 1.32.3, as an attacker can ... | bookworm, bullseye, sid | |
CVE-2019-8423 | ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/view ... | bookworm, bullseye, sid | |
CVE-2019-8425 | includes/database.php in ZoneMinder before 1.32.3 has XSS in the const ... | bookworm, bullseye, sid | |
CVE-2019-8427 | daemonControl in includes/functions.php in ZoneMinder before 1.32.3 al ... | bookworm, bullseye, sid | |
CVE-2019-8429 | ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php fil ... | bookworm, bullseye, sid | |
CVE-2022-1726 | Bootstrap Tables XSS vulnerability with Table Export plug-in when expo ... | bookworm, bullseye, sid | |
CVE-2022-29806 | ZoneMinder before 1.36.13 allows remote code execution via an invalid ... | bullseye | |
CVE-2022-30768 | A Stored Cross Site Scripting (XSS) issue in ZoneMinder 1.36.12 allows ... | bookworm, bullseye, sid | |
CVE-2022-30769 | Session fixation exists in ZoneMinder through 1.36.12 as an attacker c ... | bookworm, bullseye, sid | |
CVE-2022-39285 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2022-39289 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2022-39290 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2022-39291 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-25825 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26032 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26034 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26035 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26036 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26037 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26038 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-26039 | ZoneMinder is a free, open source Closed-circuit television software a ... | bullseye | |
CVE-2023-31493 | RCE (Remote Code Execution) exists in ZoneMinder through 1.36.33 as an ... | bookworm, bullseye, sid | |
CVE-2023-41884 | ZoneMinder is a free, open source Closed-circuit television software a ... | bookworm, bullseye, sid | |
CVE-2024-43358 | ZoneMinder is a free, open source closed-circuit television software a ... | bookworm, bullseye, sid | |
CVE-2024-43359 | ZoneMinder is a free, open source closed-circuit television software a ... | bookworm, bullseye, sid | |
CVE-2024-43360 | ZoneMinder is a free, open source closed-circuit television software a ... | bookworm, bullseye, sid | |
zoph | CVE-2014-9235 | Multiple SQL injection vulnerabilities in Zoph (aka Zoph Organizes Pho ... | bookworm, bullseye, buster, sid, trixie |
CVE-2014-9236 | Cross-site scripting (XSS) vulnerability in php/edit_photos.php in Zop ... | bookworm, bullseye, buster, sid, trixie | |
zsh | CVE-2017-18205 | In builtin.c in zsh before 5.4, when sh compatibility mode is used, th ... | jessie, stretch |
CVE-2018-7548 | In subst.c in zsh through 5.4.2, there is a NULL pointer dereference w ... | jessie, stretch | |
CVE-2018-7549 | In params.c in zsh through 5.4.2, there is a crash during a copy of an ... | jessie, stretch | |
zziplib | CVE-2018-6542 | In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trail ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |
CVE-2018-7727 | An issue was discovered in ZZIPlib 0.13.68. There is a memory leak tri ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie | |
zziplib | CVE-2018-17828 | Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers ... | bookworm, bullseye, buster, jessie, sid, stretch, trixie |