Debian Linux@3.1 Security Vulnerabilities and Issues — Page 3 of Debian Linux@3.1 CVE List

Lucene search

DebianDebian Linux3.1

109 matches found

CVE•added 2006/03/22 11:0 a.m.•48 views

CVE-2005-4347

The Linux 2.4 kernel patch in kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux does not correctly set the "chroot barrier" with util-vserver, which allows attackers to access files on the host system that are outside of the vserver.

5CVSS6.1AI score0.00946EPSS

CVE•added 2008/01/25 12:0 a.m.•48 views

CVE-2007-6415

scponly 4.6 and earlier allows remote authenticated users to bypass intended restrictions and execute arbitrary code by invoking scp, as implemented by OpenSSH, with the -F and -o options.

8.5CVSS6.9AI score0.01197EPSS

CVE•added 2006/12/18 2:28 a.m.•47 views

CVE-2006-6614

The save_log_local function in Fully Automatic Installation (FAI) 2.10.1, and possibly 3.1.2, when verbose mode is enabled, stores the root password hash in /var/log/fai/current/fai.log, whose file permissions allow it to be copied to other hosts when fai-savelog is called and allows attackers to o...

1.9CVSS6.8AI score0.00066EPSS

CVE•added 2006/03/23 11:6 a.m.•42 views

CVE-2006-0050

snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file.

1.2CVSS6AI score0.00064EPSS

CVE•added 2006/03/31 11:6 a.m.•40 views

CVE-2006-1564

Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the (1) mod_authz_svn.so and (2) mod_dav_svn.so modules, which might allow local users to gain privileges by installing malicious libraries in that...

4.6CVSS6.5AI score0.00074EPSS

CVE•added 2006/03/31 11:6 a.m.•40 views

CVE-2006-1565

Untrusted search path vulnerability in libgpib-perl 3.2.06-2 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the LinuxGpib.so module, which might allow local users to gain privileges by installing malicious libraries in that directory.

4.6CVSS6.6AI score0.00117EPSS

CVE•added 2006/03/31 11:6 a.m.•36 views

CVE-2006-1566

Untrusted search path vulnerability in libtunepimp-perl 0.4.2-1 in Debian GNU/Linux includes an RPATH value under the /tmp/buildd directory for the tunepimp.so module, which might allow local users to gain privileges by installing malicious libraries in that directory.

4.6CVSS6.6AI score0.00117EPSS

CVE•added 2006/04/13 10:2 a.m.•35 views

CVE-2006-1772

debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/database_admin_pass record, which...

7.2CVSS6.4AI score0.00052EPSS

CVE•added 2006/03/24 2:2 a.m.•34 views

CVE-2006-1376

The installation of Debian GNU/Linux 3.1r1 from the network install CD creates /var/log/debian-installer/cdebconf with world writable permissions, which allows local users to cause a denial of service (disk consumption).

2.1CVSS6.2AI score0.00047EPSS

Total number of security vulnerabilities109