Debian - Page 46 of Debian Most Viewed Vulnerabilities List

Debian•added 2020/07/10 7:56 p.m.•55 views

[SECURITY] [DLA 2275-1] ruby-rack security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2275-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta July 10, 2020 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...

8.6CVSS7.5AI score0.00907EPSS

Debian•added 2020/07/08 8:46 p.m.•55 views

[SECURITY] [DSA 4722-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4722-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 08, 2020 https://www.debian.org/security/faq -...

10CVSS9.2AI score0.22EPSS

Exploits4

Debian•added 2020/06/16 8:25 p.m.•55 views

[SECURITY] [DSA 4704-1] vlc security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4704-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 16, 2020 https://www.debian.org/security/faq -...

7.8CVSS7.8AI score0.07483EPSS

Debian•added 2020/05/31 8:41 p.m.•55 views

[SECURITY] [DLA 2230-1] php-horde security update

Package : php-horde Version : 5.2.1+debian0-2+deb8u6 CVE ID : CVE-2020-8035 The image view functionality in Horde Groupware Webmail Edition was affected by a stored Cross-Site Scripting XSS vulnerability via an SVG image upload containing a JavaScript payload. An attacker could have obtained acce...

6.1CVSS6.3AI score0.0045EPSS

Debian•added 2020/04/15 2:29 a.m.•55 views

[SECURITY] [DLA 2173-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.20-3+deb8u10 CVE ID : CVE-2020-10938 A vulnerability was discovered in graphicsmagick, a collection of image processing tools, that results in a heap overflow in 32-bit applications because of a signed overflow on range check in the HuffmanDecodeImage...

9.8CVSS7.2AI score0.02532EPSS

Debian•added 2020/01/15 8:41 p.m.•55 views

[SECURITY] [DLA 2063-1] debian-lan-config security update

Package : debian-lan-config Version : 0.19+deb8u2 CVE ID : CVE-2019-3467 Debian Bug : 947459 In debian-lan-config 0.26, configured too permissive ACLs for the Kerberos admin server allowed password changes for other Kerberos user principals. For Debian 8 "Jessie", this problem has been fixed in...

7.8CVSS7AI score0.00079EPSS

Debian•added 2019/11/12 9:53 p.m.•55 views

[SECURITY] [DSA 4567-1] dpdk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4567-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 12, 2019 https://www.debian.org/security/faq -...

7.5CVSS7.5AI score0.01074EPSS

Debian•added 2019/10/09 9:16 p.m.•55 views

[SECURITY] [DLA 1951-1] libtomcrypt security update

Package : libtomcrypt Version : 1.17-6+deb8u1 CVE ID : CVE-2019-17362 It was discovered that there was a denial of service vulnerability in the libtomcrypt cryptographic library. An out-of-bounds read and crash could occur via carefully-crafted "DER" encoded data eg. by importing an X.509...

9.1CVSS9.1AI score0.00473EPSS

Debian•added 2019/06/05 3:35 p.m.•55 views

[SECURITY] [DSA 4456-1] exim4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4456-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 05, 2019 https://www.debian.org/security/faq -...

10CVSS2.3AI score0.93918EPSS

Exploits27

Debian•added 2019/05/14 9:17 p.m.•55 views

[SECURITY] [DSA 4444-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4444-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 14, 2019 https://www.debian.org/security/faq -...

4.7CVSS0.5AI score0.01697EPSS

Debian•added 2019/05/01 3:34 p.m.•55 views

[SECURITY] [DLA 1753-2] proftpd-dfsg regression update

Package : proftpd-dfsg Version : 1.3.5e+r1.3.5-2+deb8u1 CVE ID : not available Debian Bug : 923926 926719 The update of proftpd-dfsg issued as DLA-1753-1 caused a regression when using the sftp module. Login to the sftp server was impossible when the SFTPPAMEngine option was turned on 926719. Thi...

6.9AI score

Debian•added 2018/09/05 8:13 p.m.•55 views

[SECURITY] [DSA 4286-1] curl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4286-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini September 05, 2018 https://www.debian.org/security/faq -...

10CVSS9.3AI score0.00493EPSS

Debian•added 2018/08/29 6:29 a.m.•55 views

[SECURITY] [DSA 4281-1] tomcat8 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4281-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 29, 2018 https://www.debian.org/security/faq -...

5CVSS0.2AI score0.21578EPSS

Debian•added 2018/06/27 9:28 p.m.•55 views

[SECURITY] [DLA 1401-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.20-3+deb8u3 CVE ID : CVE-2016-3716 CVE-2016-3717 CVE-2016-3718 CVE-2016-5241 CVE-2016-7446 CVE-2016-7447 CVE-2016-7448 CVE-2016-7449 CVE-2017-11636 CVE-2017-11643 CVE-2017-12937 CVE-2017-13063 CVE-2017-13064 CVE-2017-13065 CVE-2017-13134 CVE-2017-14314...

9.8CVSS8.6AI score0.86935EPSS

Exploits9

Debian•added 2017/10/31 10:1 p.m.•55 views

[SECURITY] [DSA 4013-1] openjpeg2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4013-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 31, 2017 https://www.debian.org/security/faq -...

8.8CVSS8.8AI score0.06592EPSS

Debian•added 2017/09/20 9:20 a.m.•55 views

[SECURITY] [DSA 3980-1] apache2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3980-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 20, 2017 https://www.debian.org/security/faq -...

5CVSS1.4AI score0.9384EPSS

Exploits9

Debian•added 2017/02/01 11:12 p.m.•55 views

[SECURITY] [DLA 814-1] openssl security update

Package : openssl Version : 1.0.1t-1+deb7u2 CVE ID : CVE-2016-7056 CVE-2016-8610 CVE-2017-3731 Several vulnerabilities were discovered in OpenSSL: CVE-2016-7056 A local timing attack was discovered against ECDSA P-256. CVE-2016-8610 It was discovered that no limit was imposed on alert packets...

7.5CVSS8AI score0.71356EPSS

Debian•added 2017/01/03 6:31 p.m.•55 views

[SECURITY] [DSA 3750-2] libphp-phpmailer regression update

------------------------------------------------------------------------- Debian Security Advisory DSA-3750-2 [email protected] https://www.debian.org/security/ Thijs Kinkhorst January 3, 2017 https://www.debian.org/security/faq -...

9.8CVSS9.9AI score0.94418EPSS

Exploits59

Debian•added 2016/12/18 9:12 a.m.•55 views

[SECURITY] [DSA 3739-1] tomcat8 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3739-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 18, 2016 https://www.debian.org/security/faq -...

9.8CVSS9.9AI score0.93802EPSS

Exploits6

Debian•added 2016/11/16 9:27 p.m.•55 views

[SECURITY] [DSA 3716-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3716-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 16, 2016 https://www.debian.org/security/faq -...

9.8CVSS8.3AI score0.20609EPSS

Exploits4

Debian•added 2016/06/17 12:12 p.m.•55 views

[SECURITY] [DLA 516-1] linux security update

Package : linux Version : 3.2.81-1 CVE ID : CVE-2016-0821 CVE-2016-1583 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2187 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3157 CVE-2016-3672 CVE-2016-3951 CVE-2016-3955 CVE-2016-3961 CVE-2016-4482 CVE-2016-4485...

10CVSS6.8AI score0.12798EPSS

Exploits42

Debian•added 2016/05/19 8:4 p.m.•55 views

[SECURITY] [DLA 483-1] expat security update

Package : expat Version : 2.1.0-1+deb7u3 CVE ID : CVE-2016-0718 Gustavo Grieco discovered that Expat, a XML parsing C library, does not properly handle certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. A remote attacker can take...

9.8CVSS9.2AI score0.02827EPSS

Debian•added 2016/05/16 5:37 p.m.•55 views

[SECURITY] [DSA 3580-1] imagemagick security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3580-1 [email protected] https://www.debian.org/security/ Luciano Bello May 16, 2016 https://www.debian.org/security/faq -...

10CVSS8.1AI score0.93622EPSS

Exploits13

Debian•added 2016/03/12 7:23 a.m.•55 views

[SECURITY] [DSA 3514-1] samba security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3514-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 12, 2016 https://www.debian.org/security/faq -...

5CVSS1.2AI score0.17749EPSS

Debian•added 2016/01/14 3:57 p.m.•55 views

[SECURITY] [DSA 3446-1] openssh security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3446-1 [email protected] https://www.debian.org/security/ Yves-Alexis Perez January 14, 2016 https://www.debian.org/security/faq -...

8.1CVSS8.4AI score0.77397EPSS

Debian•added 2015/10/13 9:55 a.m.•55 views

[SECURITY] [DSA 3372-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3372-1 [email protected] https://www.debian.org/security/ Ben Hutchings October 13, 2015 https://www.debian.org/security/faq -...

6.9CVSS1.2AI score0.00747EPSS

Debian•added 2015/10/01 8:24 a.m.•55 views

[SECURITY] [DLA 322-1] commons-httpclient security update

Package : commons-httpclient Version : 3.1-9+deb6u2 CVE ID : CVE-2015-5262 Trevin Beattie 1 discovered an issue where one could observe hanging threads in a multi-threaded Java application. After debugging the issue, it became evident that the hanging threads were caused by the SSL initialization...

4.3CVSS6.6AI score0.01199EPSS

Debian•added 2015/08/28 8:31 a.m.•55 views

[SECURITY] [DLA 303-1] openjdk-6 security update

Package : openjdk-6 Version : 6b36-1.13.8-1deb6u1 CVE ID : CVE-2015-2590 CVE-2015-2601 CVE-2015-2621 CVE-2015-2625 CVE-2015-2628 CVE-2015-2632 CVE-2015-2808 CVE-2015-4000 CVE-2015-4731 CVE-2015-4732 CVE-2015-4733 CVE-2015-4748 CVE-2015-4749 CVE-2015-4760 Several vulnerabilities have been discover...

10CVSS6.3AI score0.92346EPSS

Debian•added 2015/07/23 6:49 a.m.•55 views

[SECURITY] [DSA 3313-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3313-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 23, 2015 https://www.debian.org/security/faq -...

7.8CVSS8AI score0.21228EPSS

Exploits4

Debian•added 2015/06/07 5:6 p.m.•55 views

[SECURITY] [DSA 3280-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3280-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 07, 2015 http://www.debian.org/security/faq -...

7.5CVSS9.5AI score0.69613EPSS

Exploits7

Debian•added 2015/03/20 9:40 p.m.•55 views

[SECURITY] [DLA 177-1] openssl security update

Package : openssl Version : 0.9.8o-4squeeze20 CVE ID : CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0292 CVE-2015-0293 Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit. The Common Vulnerabilities and Exposures project...

7.5CVSS6.9AI score0.21097EPSS

Debian•added 2015/01/15 6:41 a.m.•55 views

[SECURITY] [DSA 3128-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3128-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 15, 2015 http://www.debian.org/security/faq -...

6.9CVSS1AI score0.00714EPSS

Debian•added 2014/11/04 4:8 p.m.•55 views

[SECURITY] [DSA 3064-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3064-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso November 04, 2014 http://www.debian.org/security/faq -...

7.5CVSS7AI score0.55955EPSS

Debian•added 2014/09/29 1:40 p.m.•55 views

[SECURITY] [DLA 66-1] apache2 security update

Package : apache2 Version : 2.2.16-6+squeeze13 CVE ID : CVE-2013-6438 CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 CVE-2014-0231: prevent denial of service in modcgid. CVE-2014-0226: prevent denial of service via race in modstatus. CVE-2014-0118: fix resource consumption via moddeflate body...

6.8CVSS6.7AI score0.75444EPSS

Exploits6

Debian•added 2014/09/24 3:22 p.m.•55 views

[SECURITY] [email protected]

Package : bash Version : 4.1-3+deb6u1 CVE ID : CVE-2014-6271 Stephane Chazelas discovered a vulnerability in bash, the GNU Bourne-Again Shell, related to how environment variables are processed. In many common configurations, this vulnerability is exploitable over the network, especially if bash...

10CVSS3.5AI score0.9422EPSS

Exploits130

Debian•added 2014/06/20 4:35 p.m.•55 views

openssl security update

Package: openssl Version: 0.9.8o-4squeeze16 CVE ID: CVE-2014-0224 CVE-2012-4929 CVE-2014-0224 This update updates the upstream fix for CVE-2014-0224 to address problems with renegotiation under some conditions. original text: KIKUCHI Masashi discovered that carefully crafted handshakes can force...

7.4CVSS6.9AI score0.89694EPSS

Exploits10

Debian•added 2013/12/04 9:28 p.m.•55 views

[SECURITY] [DSA 2809-1] ruby1.8 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2809-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 04, 2013 http://www.debian.org/security/faq -...

6.8CVSS2.4AI score0.25732EPSS

Debian•added 2013/02/13 8:7 p.m.•55 views

[SECURITY] [DSA 2621-1] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2621-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 13, 2013 http://www.debian.org/security/faq -...

5CVSS7.8AI score0.09511EPSS

Debian•added 2012/04/25 4:6 p.m.•55 views

[SECURITY] [DSA 2460-1] asterisk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2460-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 25, 2012 http://www.debian.org/security/faq -...

6.5CVSS6.8AI score0.10525EPSS

Debian•added 2011/11/11 9:26 p.m.•55 views

[SECURITY] [DSA 2345-1] icedove security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2345-1 [email protected] http://www.debian.org/security/ Florian Weimer November 11, 2011 http://www.debian.org/security/faq -...

9.3CVSS7.5AI score0.01271EPSS

Debian•added 2011/01/05 11:21 p.m.•55 views

[SECURITY] [DSA-2141-1] New apache2 packages add backward compatibility option

------------------------------------------------------------------------ Debian Security Advisory DSA-2141-3 [email protected] http://www.debian.org/security/ Stefan Fritsch January 06, 2011 http://www.debian.org/security/faq -...

9.8CVSS7.5AI score0.03741EPSS

Exploits14

Debian•added 2010/09/07 8:39 p.m.•55 views

[SECURITY] [DSA-2105-1] New freetype packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-2105-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano September 07, 2010 http://www.debian.org/security/faq -...

9.3CVSS9.9AI score0.5972EPSS

Exploits9

Debian•added 2010/07/21 9:30 a.m.•55 views

[Backports-security-announce] Security Update for xulrunner

Alexander Reichle-Schmehl uploaded new packages for xulrunner which fixed the following security problems: CVE-2010-1211 Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of...

9.8CVSS2.3AI score0.14816EPSS

Exploits23

Debian•added 2010/01/30 5:52 p.m.•55 views

[SECURITY] [DSA 1984-1] New libxerces2-java packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1984-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano January 30, 2010 http://www.debian.org/security/faq -...

5CVSS7.7AI score0.01166EPSS

Debian•added 2009/07/29 4:58 a.m.•55 views

[SECURITY] [DSA 1844-1] New Linux 2.6.24 packages fix several vulnerabilities

---------------------------------------------------------------------- Debian Security Advisory DSA-1844-1 [email protected] http://www.debian.org/security/ Dann Frazier July 28, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...

7.8CVSS8AI score0.13893EPSS

Exploits11

Debian•added 2008/03/11 10:17 p.m.•55 views

[SECURITY] [DSA 1515-1] New libnet-dns-perl packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1515-1 [email protected] http://www.debian.org/security/ Florian Weimer March 11, 2008 http://www.debian.org/security/faq -...

7.5CVSS8AI score0.18959EPSS

Debian•added 2007/10/12 11:54 p.m.•55 views

[SECURITY] [DSA 1381-2] New Linux 2.6.18 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1381-2 [email protected] http://www.debian.org/security/ Dann Frazier October 12th, 2007 http://www.debian.org/security/faq -...

7.2CVSS0.9AI score0.00434EPSS

Debian•added 2007/08/31 11:33 p.m.•55 views

[SECURITY] [DSA 1363-1] New Linux 2.6.18 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1363-1 [email protected] http://www.debian.org/security/ Dann Frazier August 31st, 2007 http://www.debian.org/security/faq -...

4.7CVSS6.7AI score0.01904EPSS