Debian Linux Security Vulnerabilities and Issues — Page 29 of Debian Linux CVE List

Lucene search

DebianDebian Linux

1413 matches found

CVE•added 2018/01/30 8:29 p.m.•43 views

CVE-2011-2902

zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name.

6.4CVSS5.2AI score0.00587EPSS

CVE•added 2018/07/16 2:29 p.m.•43 views

CVE-2014-2079

X File Explorer (aka xfe) might allow local users to bypass intended access restrictions and gain access to arbitrary files by leveraging failure to use directory masks when creating files on Samba and NFS shares.

5.5CVSS5.6AI score0.00085EPSS

CVE•added 2018/11/30 10:29 a.m.•43 views

CVE-2018-19777

In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg_dev_end_tile in fitz/svg-device.c, as demonstrated by mutool.

5.5CVSS5.6AI score0.00282EPSS

CVE•added 2018/03/08 6:29 p.m.•43 views

CVE-2018-7873

There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for INTEGER data. A Crafted input will lead to a denial of service attack.

6.5CVSS7.2AI score0.01383EPSS

CVE•added 2018/04/20 8:29 p.m.•40 views

CVE-2014-10073

The create_response function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory.

7.5CVSS7.4AI score0.00353EPSS

CVE•added 2018/02/26 3:29 p.m.•40 views

CVE-2018-7487

There is a heap-based buffer overflow in the LoadPCX function of in_pcx.cpp in sam2p 0.49.4. A Crafted input will lead to a denial of service or possibly unspecified other impact.

7.8CVSS8.9AI score0.00198EPSS

CVE•added 2018/02/28 6:29 a.m.•40 views

CVE-2018-7551

There is an invalid free in MiniPS::delete0 in minips.cpp that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

9.8CVSS9.5AI score0.00597EPSS

CVE•added 2018/02/28 6:29 a.m.•40 views

CVE-2018-7554

There is an invalid free in ReadImage in input-bmp.ci that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

9.8CVSS9.5AI score0.00597EPSS

CVE•added 2018/06/20 6:29 p.m.•39 views

CVE-2018-12601

There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.

9.8CVSS9.7AI score0.00569EPSS

CVE•added 2018/02/28 6:29 a.m.•39 views

CVE-2018-7552

There is an invalid free in Mapping::DoubleHash::clear in mapping.cpp that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

9.8CVSS9.5AI score0.00597EPSS

CVE•added 2018/03/09 7:29 p.m.•37 views

CVE-2018-7998

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race conditi...

7.5CVSS7.2AI score0.00338EPSS

CVE•added 2018/03/08 6:29 p.m.•36 views

CVE-2018-7869

There is a memory leak triggered in the function dcinit of util/decompile.c in libming 0.4.8, which will lead to a denial of service attack.

7.5CVSS7.3AI score0.00635EPSS

CVE•added 2018/03/08 6:29 p.m.•35 views

CVE-2018-7874

An invalid memory address dereference was discovered in strlenext in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.

6.5CVSS7AI score0.00551EPSS

Total number of security vulnerabilities1413