Packages that have open unimportant issues

This page lists packages that are affected by issues that are considered unimportant from a security perspective. These issues are thought to be unexploitable or uneffective in most situations (for example, browser denial-of-services).

PackageBugDescriptionReleases
389-ds-baseCVE-2016-5416389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, ...bookworm, bullseye, buster, sid, trixie
9baseCVE-2014-19359base 1:6-6 and 1:6-7 insecurely creates temporary files which results ...bookworm, bullseye, buster, sid, trixie
abcm2psCVE-2021-32434abcm2ps v8.14.11 was discovered to contain an out-of-bounds read in th ...bullseye, buster
CVE-2021-32436An out-of-bounds read in the function write_title() in subs.c of abcm2 ...bullseye, buster
abiwordCVE-2017-17529af/util/xp/ut_go_file.cpp in AbiWord 3.0.2-2 does not validate strings ...bookworm, bullseye, buster, sid, trixie
activemqCVE-2019-0222In Apache ActiveMQ 5.0.0 - 5.15.8, unmarshalling corrupt MQTT frame ca ...buster
CVE-2020-1941In Apache ActiveMQ 5.0.0 to 5.15.11, the webconsole admin GUI is open ...buster
CVE-2020-13947An instance of a cross-site scripting vulnerability was identified to ...buster
CVE-2022-41678Once an user is authenticated on Jolokia, he can potentially trigger a ...bookworm, bullseye, buster
adnsCVE-2017-9103An issue was discovered in adns before 1.5.2. pap_mailbox822 does not ...buster
CVE-2017-9104An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if ...buster
CVE-2017-9105An issue was discovered in adns before 1.5.2. It corrupts a pointer wh ...buster
CVE-2017-9106An issue was discovered in adns before 1.5.2. adns_rr_info mishandles ...buster
CVE-2017-9107An issue was discovered in adns before 1.5.2. It overruns reading a bu ...buster
CVE-2017-9108An issue was discovered in adns before 1.5.2. adnshost mishandles a mi ...buster
CVE-2017-9109An issue was discovered in adns before 1.5.2. It fails to ignore appar ...buster
advancecompCVE-2022-35014Advancecomp v2.3 contains a segmentation fault.bullseye, buster
CVE-2022-35015Advancecomp v2.3 was discovered to contain a heap buffer overflow via ...bullseye, buster
CVE-2022-35016Advancecomp v2.3 was discovered to contain a heap buffer overflow.bullseye, buster
CVE-2022-35017Advancecomp v2.3 was discovered to contain a heap buffer overflow.bullseye, buster
CVE-2022-35018Advancecomp v2.3 was discovered to contain a segmentation fault.bullseye, buster
CVE-2022-35020Advancecomp v2.3 was discovered to contain a heap buffer overflow via ...bullseye, buster
CVE-2023-2961A segmentation fault flaw was found in the Advancecomp package. This m ...bullseye, buster
android-framework-23CVE-2017-0752A elevation of privilege vulnerability in the Android framework (windo ...bullseye, buster, sid
CVE-2017-0822An elevation of privilege vulnerability in the Android system (camera) ...bullseye, buster, sid
android-platform-frameworks-baseCVE-2021-39796In HarmfulAppWarningActivity of HarmfulAppWarningActivity.java, there ...bookworm, bullseye, buster, sid, trixie
CVE-2022-20011In getArray of NotificationManagerService.java , there is a possible l ...bookworm, bullseye, buster, sid, trixie
android-platform-frameworks-nativeCVE-2015-3875libutils in Android before 5.1.1 LMY48T allows remote attackers to exe ...bookworm, bullseye, buster, sid, trixie
CVE-2015-6602libutils in Android through 5.1.1 LMY48M allows remote attackers to ex ...bookworm, bullseye, buster, sid, trixie
CVE-2015-6609libutils in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allo ...bookworm, bullseye, buster, sid, trixie
android-platform-system-coreCVE-2012-5564android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users t ...bullseye, buster
CVE-2017-0841A remote code execution vulnerability in the Android system (libutils) ...bullseye, buster
android-toolsCVE-2012-5564android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users t ...buster
anjutaCVE-2021-42522There is a Information Disclosure vulnerability in anjuta/plugins/docu ...bookworm, bullseye, buster
ansibleCVE-2020-1734A flaw was found in the pipe lookup plugin of ansible. Arbitrary comma ...bookworm, bullseye, buster, sid, trixie
CVE-2020-1736A flaw was found in Ansible Engine when a file is moved using atomic_m ...bookworm, bullseye, buster, sid, trixie
CVE-2020-1737A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, and 2.9 ...buster
CVE-2020-1738A flaw was found in Ansible Engine when the module package or service ...bookworm, bullseye, buster, sid, trixie
antCVE-2021-36373When reading a specially crafted TAR archive an Apache Ant build can b ...bullseye, buster
CVE-2021-36374When reading a specially crafted ZIP archive, or a derived formats, an ...bullseye, buster
apache2CVE-2001-1534mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's u ...bookworm, bullseye, buster, sid, trixie
CVE-2003-1307The mod_php module for the Apache HTTP Server allows local users with ...bookworm, bullseye, buster, sid, trixie
CVE-2003-1580The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ...bookworm, bullseye, buster, sid, trixie
CVE-2003-1581The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ...bookworm, bullseye, buster, sid, trixie
CVE-2007-0086The Apache HTTP Server, when accessed through a TCP connection with a ...bookworm, bullseye, buster, sid, trixie
CVE-2007-1743suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combination ...bookworm, bullseye, buster, sid, trixie
CVE-2007-3303Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows loc ...bookworm, bullseye, buster, sid, trixie
CVE-2008-0456CRLF injection vulnerability in the mod_negotiation module in the Apac ...bookworm, bullseye, buster, sid, trixie
apparmorCVE-2016-1585In all versions of AppArmor mount rules are accidentally widened when ...bookworm, bullseye, buster
aptCVE-2011-3374It was found that apt-key in apt, all versions, do not correctly valid ...bookworm, bullseye, buster, sid, trixie
apt-setupCVE-2005-2214apt-setup in Debian GNU/Linux installs the apt.conf file with insecure ...bookworm, bullseye, buster, sid, trixie
arm-trusted-firmwareCVE-2022-47630Trusted Firmware-A through 2.8 has an out-of-bounds read in the X.509 ...bookworm, bullseye, buster
asn1cCVE-2017-12966The asn1f_lookup_symbol_impl function in asn1fix_retrieve.c in libasn1 ...bookworm, bullseye, buster, sid, trixie
CVE-2020-23910Stack-based buffer overflow vulnerability in asn1c through v0.9.28 via ...bookworm, bullseye, buster, sid, trixie
CVE-2020-23911An issue was discovered in asn1c through v0.9.28. A NULL pointer deref ...bookworm, bullseye, buster, sid, trixie
avahiCVE-2017-6519avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to ...buster
awffullCVE-2007-0510Multiple buffer overflows in (1) graphs.c, (2) output.c, and (3) prese ...bookworm, bullseye, buster, sid, trixie
awstatsCVE-2018-10245A Full Path Disclosure vulnerability in AWStats through 7.6 allows rem ...bookworm, bullseye, buster, sid, trixie
axisCVE-2007-2353Apache Axis 1.0 allows remote attackers to obtain sensitive informatio ...bookworm, bullseye, buster, sid, trixie
CVE-2019-0227A Server Side Request Forgery (SSRF) vulnerability affected the Apache ...bookworm, bullseye, buster, sid, trixie
bashCVE-2019-18276An issue was discovered in disable_priv_mode in shell.c in GNU Bash th ...buster
TEMP-0841856-B18BAFPrivilege escalation possible to other user than rootbookworm, bullseye, buster, sid, trixie
bash-completionCVE-2018-7738In util-linux before 2.32-rc1, bash-completion/umount allows local use ...bookworm, bullseye, buster, sid, trixie
bibutilsCVE-2018-10773NULL pointer deference in the addsn function in serialno.c in libbibco ...buster
CVE-2018-10774Read access violation in the isiin_keyword function in isiin.c in libb ...buster
CVE-2018-10775NULL pointer dereference in the _fields_add function in fields.c in li ...buster
binaryenCVE-2019-15758An issue was discovered in Binaryen 1.38.32. Missing validation rules ...buster
CVE-2019-15759An issue was discovered in Binaryen 1.38.32. Two visitors in ir/Expres ...buster
CVE-2021-45290A Denial of Service vulnerability exits in Binaryen 103 due to an asse ...bullseye, buster
CVE-2021-45293A Denial of Service vulnerability exists in Binaryen 103 due to an Inv ...bullseye, buster
CVE-2021-46048A Denial of Service vulnerability exists in Binaryen 104 due to an ass ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46050A Stack Overflow vulnerability exists in Binaryen 103 via the printf_c ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46052A Denial of Service vulnerability exists in Binaryen 104 due to an ass ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46053A Denial of Service vulnerability exists in Binaryen 103. The program ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46054A Denial of Service vulnerability exists in Binaryen 104 due to an ass ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46055A Denial of Service vulnerability exists in Binaryen 104 due to an ass ...bookworm, bullseye, buster, sid, trixie
binutilsCVE-2017-13716The C++ symbol demangler routine in cplus-dem.c in libiberty, as distr ...bookworm, bullseye, buster, sid, trixie
CVE-2018-9138An issue was discovered in cplus-dem.c in GNU libiberty, as distribute ...buster
CVE-2018-9996An issue was discovered in cplus-dem.c in GNU libiberty, as distribute ...bookworm, bullseye, buster, sid, trixie
CVE-2018-12697A NULL pointer dereference (aka SEGV on unknown address 0x000000000000 ...buster
CVE-2018-12698demangle_template in cplus-dem.c in GNU libiberty, as distributed in G ...buster
CVE-2018-12699finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause ...buster
CVE-2018-12934remember_Ktype in cplus-dem.c in GNU libiberty, as distributed in GNU ...buster
CVE-2018-17358An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2018-17359An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2018-17360An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2018-17794An issue was discovered in cplus-dem.c in GNU libiberty, as distribute ...buster
CVE-2018-17985An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ...buster
CVE-2018-18309An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2018-18483The get_count function in cplus-dem.c in GNU libiberty, as distributed ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18484An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ...buster
CVE-2018-18605A heap-based buffer over-read issue was discovered in the function sec ...buster
CVE-2018-18606An issue was discovered in the merge_strings function in merge.c in th ...buster
CVE-2018-18607An issue was discovered in elf_link_input_bfd in elflink.c in the Bina ...buster
CVE-2018-18700An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ...buster
CVE-2018-18701An issue was discovered in cp-demangle.c in GNU libiberty, as distribu ...buster
CVE-2018-19931An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2018-19932An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2018-20002The _bfd_generic_read_minisymbols function in syms.c in the Binary Fil ...buster
CVE-2018-20623In GNU Binutils 2.31.1, there is a use-after-free in the error functio ...buster
CVE-2018-20651A NULL pointer dereference was discovered in elf_link_add_object_symbo ...buster
CVE-2018-20671load_specific_debug_section in objdump.c in GNU Binutils through 2.31. ...buster
CVE-2018-20673The demangle_template function in cplus-dem.c in GNU libiberty, as dis ...bookworm, bullseye, buster, sid, trixie
CVE-2018-20712A heap-based buffer over-read exists in the function d_expression_1 in ...bookworm, bullseye, buster, sid, trixie
CVE-2018-1000876binutils version 2.32 and earlier contains a Integer Overflow vulnerab ...buster
CVE-2019-9070An issue was discovered in GNU libiberty, as distributed in GNU Binuti ...buster
CVE-2019-9071An issue was discovered in GNU libiberty, as distributed in GNU Binuti ...buster
CVE-2019-9073An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2019-9074An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2019-9075An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2019-9077An issue was discovered in GNU Binutils 2.32. It is a heap-based buffe ...buster
CVE-2019-12972An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2019-14250An issue was discovered in GNU libiberty, as distributed in GNU Binuti ...buster
CVE-2019-14444apply_relocations in readelf.c in GNU Binutils 2.32 contains an intege ...buster
CVE-2019-17450find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) ...buster
CVE-2019-17451An issue was discovered in the Binary File Descriptor (BFD) library (a ...buster
CVE-2019-1010180GNU gdb All versions is affected by: Buffer Overflow - Out of bound me ...buster
CVE-2019-1010204GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is aff ...bullseye, buster
CVE-2020-16590A double free vulnerability exists in the Binary File Descriptor (BFD) ...buster
CVE-2020-16591A Denial of Service vulnerability exists in the Binary File Descriptor ...buster
CVE-2020-16592A use after free issue exists in the Binary File Descriptor (BFD) libr ...buster
CVE-2020-16593A Null Pointer Dereference vulnerability exists in the Binary File Des ...buster
CVE-2020-16599A Null Pointer Dereference vulnerability exists in the Binary File Des ...buster
CVE-2020-19724A memory consumption issue in get_data function in binutils/nm.c in GN ...buster
CVE-2020-19726An issue was discovered in binutils libbfd.c 2.36 relating to the auxi ...bullseye, buster
CVE-2020-21490An issue was discovered in GNU Binutils 2.34. It is a memory leak when ...buster
CVE-2020-35342GNU Binutils before 2.34 has an uninitialized-heap vulnerability in fu ...buster
CVE-2020-35448An issue was discovered in the Binary File Descriptor (BFD) library (a ...bullseye, buster
CVE-2020-35493A flaw exists in binutils in bfd/pef.c. An attacker who is able to sub ...buster
CVE-2020-35494There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is ab ...buster
CVE-2020-35495There's a flaw in binutils /bfd/pef.c. An attacker who is able to subm ...buster
CVE-2020-35496There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutil ...buster
CVE-2020-35507There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutil ...buster
CVE-2021-3530A flaw was discovered in GNU libiberty within demangle_path() in rust- ...bullseye, buster
CVE-2021-3549An out of bounds flaw was found in GNU binutils objdump utility versio ...bullseye, buster
CVE-2021-3826Heap/stack buffer overflow in the dlang_lname function in d-demangle.c ...bullseye, buster
CVE-2021-20197There is an open race window when writing output in the following util ...bullseye, buster
CVE-2021-20284A flaw was found in GNU Binutils 2.35.1, where there is a heap-based b ...bullseye, buster
CVE-2021-20294A flaw was found in binutils readelf 2.35 program. An attacker who is ...buster
CVE-2021-32256An issue was discovered in GNU libiberty, as distributed in GNU Binuti ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45078stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows ...bullseye, buster
CVE-2021-46174Heap-based Buffer Overflow in function bfd_getl32 in Binutils objdump ...bullseye, buster
CVE-2021-46195GCC v12.0 was discovered to contain an uncontrolled recursion via the ...bullseye, buster
CVE-2022-4285An illegal memory access flaw was found in the binutils package. Parsi ...bullseye, buster
CVE-2022-35205An issue was discovered in Binutils readelf 2.38.50, reachable asserti ...bullseye, buster
CVE-2022-35206Null pointer dereference vulnerability in Binutils readelf 2.38.50 via ...bullseye, buster
CVE-2022-38533In GNU Binutils before 2.40, there is a heap-buffer-overflow in the er ...bullseye, buster
CVE-2022-44840Heap buffer overflow vulnerability in binutils readelf before 2.40 via ...bullseye, buster
CVE-2022-45703Heap buffer overflow vulnerability in binutils readelf before 2.40 via ...bullseye, buster
CVE-2022-47007An issue was discovered function stab_demangle_v3_arg in stabs.c in Bi ...bullseye, buster
CVE-2022-47008An issue was discovered function make_tempdir, and make_tempname in bu ...bullseye, buster
CVE-2022-47010An issue was discovered function pr_function_type in prdbg.c in Binuti ...bullseye, buster
CVE-2022-47011An issue was discovered function parse_stab_struct_fields in stabs.c i ...bullseye, buster
CVE-2022-47673An issue was discovered in Binutils addr2line before 2.39.3, function ...bullseye, buster
CVE-2022-47695An issue was discovered Binutils objdump before 2.39.3 allows attacker ...bullseye, buster
CVE-2022-47696An issue was discovered Binutils objdump before 2.39.3 allows attacker ...bullseye, buster
CVE-2022-48063GNU Binutils before 2.40 was discovered to contain an excessive memory ...bullseye, buster
CVE-2022-48064GNU Binutils before 2.40 was discovered to contain an excessive memory ...bullseye, buster
CVE-2022-48065GNU Binutils before 2.40 was discovered to contain a memory leak vulne ...bullseye, buster
CVE-2023-1579Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64.bullseye, buster
CVE-2023-1972A potential heap based buffer overflow was found in _bfd_elf_slurp_ver ...bookworm, bullseye, buster
CVE-2023-25584An out-of-bounds read flaw was found in the parse_module function in b ...bullseye, buster
CVE-2023-25585A flaw was found in Binutils. The use of an uninitialized field in the ...bullseye, buster
CVE-2023-25586A flaw was found in Binutils. A logic fail in the bfd_init_section_dec ...bullseye, buster
CVE-2023-25588A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct i ...bullseye, buster
binwalkCVE-2021-4287A vulnerability, which was classified as problematic, was found in ReF ...bullseye, buster
bisonCVE-2020-14150GNU Bison before 3.5.4 allows attackers to cause a denial of service ( ...buster
blenderCVE-2005-3151Buffer overflow in blenderplay in Blender Player 2.37a allows attacker ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3850Blender 2.34, 2.35a, 2.40, and 2.49b allows remote attackers to execut ...bookworm, bullseye, buster, sid, trixie
CVE-2010-5105The undo save quit routine in the kernel in Blender 2.5, 2.63a, and ea ...bookworm, bullseye, buster, sid, trixie
CVE-2022-2832A flaw was found in Blender 3.3.0. A null pointer dereference exists i ...bookworm, bullseye, buster, sid, trixie
CVE-2022-2833Endless Infinite loop in Blender-thumnailing due to logical bugs.bullseye, buster
bluezCVE-2016-9797In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" functio ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9798In BlueZ 5.42, a use-after-free was identified in "conf_opt" function ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9799In BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" funct ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9800In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9801In BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" functi ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9802In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" fun ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9803In BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9804In BlueZ 5.42, a buffer overflow was observed in "commands_dump" funct ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9917In BlueZ 5.42, a buffer overflow was observed in "read_n" function in ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9918In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump ...bookworm, bullseye, buster, sid, trixie
bochsCVE-2007-2894The emulated floppy disk controller in Bochs 2.3 allows local users of ...bookworm, bullseye, buster, sid, trixie
brandyCVE-2019-14662Brandy 1.20.1 has a stack-based buffer overflow in fileio_openout in f ...bullseye, buster
CVE-2019-14663Brandy 1.20.1 has a stack-based buffer overflow in fileio_openin in fi ...bullseye, buster
CVE-2019-14665Brandy 1.20.1 has a heap-based buffer overflow in define_array in vari ...bullseye, buster
CVE-2020-27372A buffer overflow vulnerability exists in Brandy Basic V Interpreter 1 ...bookworm, bullseye, buster, sid, trixie
budgie-extrasCVE-2023-49347Temporary data passed between application components by Budgie Extras ...bookworm, bullseye, buster
busyboxCVE-2018-1000500Busybox contains a Missing SSL certificate validation vulnerability in ...bookworm, bullseye, buster, sid, trixie
CVE-2021-42373A NULL pointer dereference in Busybox's man applet leads to denial of ...bullseye, buster
CVE-2021-42374An out-of-bounds heap read in Busybox's unlzma applet leads to informa ...bullseye, buster
CVE-2021-42375An incorrect handling of a special element in Busybox's ash applet lea ...bullseye, buster
CVE-2021-42376A NULL pointer dereference in Busybox's hush applet leads to denial of ...bullseye, buster
CVE-2022-30065A use-after-free in Busybox 1.35-x's awk applet leads to denial of ser ...bookworm, bullseye, buster
bwaCVE-2019-11371BWA (aka Burrow-Wheeler Aligner) 0.7.17 r1198 has a Buffer Overflow vi ...bookworm, bullseye, buster, sid, trixie
bwm-ngCVE-2022-1341An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write e ...buster
byobuCVE-2019-7306Byobu Apport hook may disclose sensitive information since it automati ...bookworm, bullseye, buster, sid, trixie
byzanzCVE-2015-2785The GIF encoder in Byzanz allows remote attackers to cause a denial of ...bookworm, bullseye, buster, sid, trixie
bzip3CVE-2023-29417An issue was discovered in libbzip3.a in bzip3 1.2.2. There is a bz3_d ...bookworm, sid, trixie
c-aresCVE-2023-31124c-ares is an asynchronous resolver library. When cross-compiling c-are ...bookworm, bullseye, buster
CVE-2023-31147c-ares is an asynchronous resolver library. When /dev/urandom or RtlGe ...bookworm, bullseye, buster
cactiCVE-2020-7058data_input.php in Cacti 1.2.8 allows remote code execution via a craft ...bookworm, bullseye, buster, sid, trixie
CVE-2022-48538In Cacti 1.2.19, there is an authentication bypass in the web login fu ...bullseye, buster
cadaverCVE-2009-3560The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3720The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...bookworm, bullseye, buster, sid, trixie
calamaresCVE-2019-13178modules/luksbootkeyfile/main.py in Calamares versions 3.1 through 3.2. ...buster
catdocCVE-2018-20451The process_file function in reader.c in libdoc through 2017-10-23 has ...bookworm, bullseye, buster, sid, trixie
CVE-2018-20453The getlong function in numutils.c in libdoc through 2017-10-23 has a ...bookworm, bullseye, buster, sid, trixie
CVE-2019-7156In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows divi ...bookworm, bullseye, buster, sid, trixie
CVE-2019-7233In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31979Catdoc v0.95 was discovered to contain a global buffer overflow via th ...bookworm, bullseye, buster, sid, trixie
CVE-2023-41633Catdoc v0.95 was discovered to contain a NULL pointer dereference via ...bookworm, bullseye, buster, sid, trixie
CVE-2023-46345Catdoc v0.95 was discovered to contain a NULL pointer dereference via ...bookworm, bullseye, buster, sid, trixie
cflowCVE-2019-16165GNU cflow through 1.6 has a use-after-free in the reference function i ...bullseye, buster
CVE-2019-16166GNU cflow through 1.6 has a heap-based buffer over-read in the nexttok ...bullseye, buster
CVE-2020-23856Use-after-Free vulnerability in cflow 1.6 in the void call(char *name, ...bullseye, buster
CVE-2023-2789A vulnerability was found in GNU cflow 1.7. It has been rated as probl ...bookworm, bullseye, buster, sid, trixie
chafaCVE-2022-1507chafa: NULL Pointer Dereference in function gif_internal_decode_frame ...bullseye, buster
CVE-2022-2061Heap-based Buffer Overflow in GitHub repository hpjansson/chafa prior ...bullseye, buster
CVE-2022-2301Buffer Over-read in GitHub repository hpjansson/chafa prior to 1.10.3.bullseye, buster
checkinstallCVE-2020-25031checkinstall 1.6.2, when used to create a package that contains a syml ...bookworm, bullseye, sid, trixie
cifs-utilsCVE-2014-2830Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils ...bookworm, bullseye, buster, sid, trixie
cimgCVE-2018-7587An issue was discovered in CImg v.220. DoS occurs when loading a craft ...bookworm, bullseye, buster, sid, trixie
civetwebCVE-2020-27304The CivetWeb web library does not validate uploaded filepaths when run ...bullseye
cjsonCVE-2023-50472cJSON v1.7.16 was discovered to contain a segmentation violation via t ...bookworm, bullseye
ckeditorCVE-2023-4771A Cross-Site scripting vulnerability has been found in CKSource CKEdit ...bookworm, bullseye, buster, sid, trixie
clementineCVE-2018-14332An issue was discovered in Clementine Music Player 1.3.1. Clementine.e ...bookworm, bullseye, buster, sid, trixie
CVE-2021-40826Clementine Music Player through 1.3.1 is vulnerable to a User Mode Wri ...bookworm, bullseye, buster, sid, trixie
CVE-2021-40827Clementine Music Player through 1.3.1 (when a GLib 2.0.0 DLL is used) ...bookworm, bullseye, buster, sid, trixie
coin3CVE-2009-3560The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3720The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...bookworm, bullseye, buster, sid, trixie
colordCVE-2021-42523There are two Information Disclosure vulnerabilities in colord, and th ...bullseye, buster
confuseCVE-2018-19760cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak.buster
contextCVE-2017-17513TeX Live through 20170524 does not validate strings before launching t ...bookworm, bullseye, buster, sid, trixie
corebootCVE-2022-29264An issue was discovered in coreboot 4.13 through 4.16. On APs, arbitra ...bookworm, sid, trixie
coreutilsCVE-2017-18018In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does no ...bookworm, bullseye, buster, sid, trixie
courierCVE-2004-2313Inter7 SqWebMail 3.4.1 through 3.6.1 generates different error message ...bookworm, bullseye, buster, sid
CVE-2005-1308SqWebMail allows remote attackers to inject arbitrary web script or HT ...bookworm, bullseye, buster, sid
cppcheckCVE-2023-39070An issue in Cppcheck 2.12 dev allows a local attacker to execute arbit ...bookworm, bullseye, buster, sid, trixie
crasmCVE-2023-23108In crasm 1.8-3, invalid input validation, specific files passed to the ...bookworm, bullseye, buster, sid, trixie
CVE-2023-23109In crasm 1.8-3, invalid input validation, specific files passed to the ...bookworm, bullseye, buster, sid, trixie
ctnCVE-2008-5146add-accession-numbers in ctn 3.0.6 allows local users to overwrite arb ...bookworm, bullseye, buster, sid, trixie
cupsCVE-2014-8166The browsing feature in the server in CUPS does not filter ANSI escape ...bookworm, bullseye, buster, sid, trixie
curlCVE-2020-19909Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ...buster
CVE-2021-22922When curl is instructed to download content using the metalink feature ...bullseye, buster
CVE-2021-22923When curl is instructed to get content using the metalink feature, and ...bullseye, buster
CVE-2023-28320A denial of service vulnerability exists in curl <v8.1.0 in the way li ...bullseye, buster
dacsCVE-2021-29629In FreeBSD 13.0-STABLE before n245765-bec0d2c9c841, 12.2-STABLE before ...buster
db4oCVE-2012-6550Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 ...bookworm, bullseye, buster
CVE-2013-1808Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and Zero ...bookworm, bullseye, buster
CVE-2014-1869Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.s ...bookworm, bullseye, buster
dcrawCVE-2018-19565A buffer over-read in crop_masked_pixels in dcraw through 9.28 could b ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19566A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19567A floating point exception in parse_tiff_ifd in dcraw through 9.28 cou ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19568A floating point exception in kodak_radc_load_raw in dcraw through 9.2 ...bookworm, bullseye, buster, sid, trixie
diaCVE-2019-19451When GNOME Dia before 2019-11-27 is launched with a filename argument ...bullseye, buster
dilloTEMP-0560108-565B70browser-based css info disclosurebookworm, bullseye, buster, sid, trixie
dlt-daemonCVE-2021-29507GENIVI Diagnostic Log and Trace (DLT) provides a log and trace interfa ...bullseye, buster
dmg2imgCVE-2021-3548A flaw was found in dmg2img through 20170502. dmg2img did not validate ...bookworm, bullseye, buster, sid, trixie
CVE-2021-32614A flaw was found in dmg2img through 20170502. fill_mishblk() does not ...bookworm, bullseye, buster, sid, trixie
dnsmasqCVE-2021-45951Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (ca ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45952Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called fr ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45953Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45954Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45955Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45956Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called fro ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45957Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (calle ...bookworm, bullseye, buster, sid, trixie
dnspythonCVE-2008-1447The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, ...bookworm, bullseye, buster, sid, trixie
dnstracerCVE-2017-9430Stack-based buffer overflow in dnstracer through 1.9 allows attackers ...bookworm, bullseye, buster, sid, trixie
dogtag-pkiCVE-2015-0234Multiple temporary file creation vulnerabilities in pki-core 10.2.0.bullseye, sid
dokuwikiCVE-2016-7965DokuWiki 2016-06-26a and older uses $_SERVER[HTTP_HOST] instead of the ...bookworm, bullseye, buster, sid, trixie
dovecotCVE-2008-4870dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedor ...bookworm, bullseye, buster, sid, trixie
dpicCVE-2021-32421dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox() func ...bullseye
CVE-2021-32422dpic 2021.01.01 has a Global buffer overflow in theyylex() function in ...bullseye
CVE-2021-33390dpic 2021.04.10 has a use-after-free in thedeletestringbox() function ...bullseye
dpkg-crossCVE-2008-4950gccross in dpkg-cross 2.3.0 allows local users to overwrite arbitrary ...bookworm, bullseye, buster, sid, trixie
dropbearCVE-2020-36254scp.c in Dropbear before 2020.79 mishandles the filename of . or an em ...buster
duo-unixCVE-2020-12135bson before 0.8 incorrectly uses int rather than size_t for many varia ...bookworm, bullseye, buster, sid, trixie
edk2CVE-2014-4859Integer overflow in the Drive Execution Environment (DXE) phase in the ...buster
CVE-2014-4860Multiple integer overflows in the Pre-EFI Initialization (PEI) boot ph ...buster
CVE-2018-12179Improper configuration in system firmware for EDK II may allow unauthe ...buster
CVE-2018-12182Insufficient memory write check in SMM service for EDK II may allow an ...buster
CVE-2019-14553Improper authentication in EDK II may allow a privileged user to poten ...buster
CVE-2021-28213Example EDK2 encrypted private key in the IpSecDxe.efi present potenti ...buster
elfutilsCVE-2021-33294In elfutils 0.183, an infinite loop was found in the function handle_s ...bullseye, buster
CVE-2024-25260elfutils v0.189 was discovered to contain a NULL pointer dereference v ...bookworm, bullseye, buster, sid, trixie
epiphany-browserCVE-2007-1084Mozilla Firefox 2.0.0.1 and earlier does not prompt users before savin ...bookworm, bullseye, buster, sid, trixie
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ...bookworm, bullseye, buster, sid, trixie
TEMP-0560108-565B70browser-based css info disclosurebookworm, bullseye, buster, sid, trixie
erlangCVE-2009-0130lib/crypto/c_src/crypto_drv.c in erlang does not properly check the re ...bookworm, bullseye, buster, sid, trixie
CVE-2016-1000107inets in Erlang possibly 22.1 and earlier follows RFC 3875 section 4.1 ...bookworm, bullseye, buster, sid, trixie
etcdCVE-2022-34038Etcd v3.5.4 allows remote attackers to cause a denial of service via f ...bookworm, bullseye, buster, sid, trixie
evolutionCVE-2007-1266Evolution 2.8.1 and earlier does not properly use the --status-fd argu ...bookworm, bullseye, buster, sid, trixie
CVE-2011-3201GNOME Evolution before 3.2.3 allows user-assisted remote attackers to ...bookworm, bullseye, buster, sid, trixie
CVE-2013-4166The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNO ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17689The S/MIME specification allows a Cipher Block Chaining (CBC) malleabi ...bookworm, bullseye, buster, sid, trixie
CVE-2021-3349GNOME Evolution through 3.38.3 produces a "Valid signature" message fo ...bookworm, bullseye, buster, sid, trixie
exifCVE-2021-27815NULL Pointer Deference in the exif command line tool, when printing ou ...bullseye, buster
exiv2CVE-2018-14338samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realp ...bookworm, bullseye, buster, sid, trixie
CVE-2020-18773An invalid memory access in the decode function in iptc.cpp of Exiv2 0 ...bookworm, bullseye, buster, sid, trixie
CVE-2020-18774A float point exception in the printLong function in tags_int.cpp of E ...bookworm, bullseye, buster, sid, trixie
CVE-2020-18898A stack exhaustion issue in the printIFDStructure function of Exiv2 0. ...bookworm, bullseye, buster, sid, trixie
expatCVE-2013-0340expat 2.1.0 and earlier does not properly handle entities expansion un ...bullseye, buster
faacCVE-2018-19886An invalid memory address dereference was discovered in the huffcode f ...buster
CVE-2018-19887An invalid memory address dereference was discovered in the huffcode f ...buster
CVE-2018-19888An invalid memory address dereference was discovered in the huffcode f ...buster
CVE-2018-19889An invalid memory address dereference was discovered in the huffcode f ...buster
CVE-2018-19890An invalid memory address dereference was discovered in the huffcode f ...buster
CVE-2018-19891An invalid memory address dereference was discovered in the huffcode f ...buster
faustCVE-2021-32275An issue was discovered in faust through v2.30.5. A NULL pointer deref ...bookworm, bullseye, buster, sid, trixie
CVE-2023-37770faust commit ee39a19 was discovered to contain a stack overflow via th ...bookworm, bullseye, buster, sid, trixie
fdkaacCVE-2022-36148fdkaac commit 53fe239 was discovered to contain a floating point excep ...bookworm, bullseye, buster, sid, trixie
CVE-2022-37781fdkaac v1.0.3 was discovered to contain a heap buffer overflow via __i ...bookworm, bullseye, buster, sid, trixie
CVE-2023-34823fdkaac before 1.0.5 was discovered to contain a stack overflow in read ...bookworm, bullseye, buster, sid, trixie
CVE-2023-34824fdkaac before 1.0.5 was discovered to contain a heap buffer overflow i ...bookworm, bullseye, buster, sid, trixie
fetchmailCVE-2021-36386report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits i ...buster
ffmpegCVE-2020-20450FFmpeg 4.2 is affected by null pointer dereference passed as argument ...buster
CVE-2020-20451Denial of Service issue in FFmpeg 4.2 due to resource management error ...buster
CVE-2020-20898Integer Overflow vulnerability in function filter16_prewitt in libavfi ...buster
CVE-2020-22038A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...bullseye, buster
CVE-2020-22039A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22040A Denial of Service vulnerability exists in FFmpeg 4.2 idue to a memor ...buster
CVE-2020-22041A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22042A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22043A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22044A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22046A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22048A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22051A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2020-22056A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory ...buster
CVE-2021-38090Integer Overflow vulnerability in function filter16_roberts in libavfi ...buster
CVE-2021-38091Integer Overflow vulnerability in function filter16_sobel in libavfilt ...buster
CVE-2021-38092Integer Overflow vulnerability in function filter_prewitt in libavfilt ...buster
CVE-2021-38093Integer Overflow vulnerability in function filter_robert in libavfilte ...buster
CVE-2021-38094Integer Overflow vulnerability in function filter_sobel in libavfilter ...buster
fig2devCVE-2020-21678A global buffer overflow in the genmp_writefontmacro_latex component i ...buster
CVE-2020-21680A stack-based buffer overflow in the put_arrow() component in genpict2 ...buster
CVE-2020-21681A global buffer overflow in the set_color component in genge.c of fig2 ...buster
CVE-2020-21682A global buffer overflow in the set_fill component in genge.c of fig2d ...buster
CVE-2020-21683A global buffer overflow in the shade_or_tint_name_after_declare_color ...buster
CVE-2020-21684A global buffer overflow in the put_font in genpict2e.c of fig2dev 3.2 ...buster
firefoxCVE-2004-1639Mozilla Firefox before 0.10, Mozilla 5.0, and Gecko 20040913 allows re ...sid
CVE-2005-2395Mozilla Firefox 1.0.4 and 1.0.5 does not choose the challenge with the ...sid
CVE-2005-4685Firefox and Mozilla can associate a cookie with multiple domains when ...sid
CVE-2019-12383Tor Browser before 8.0.1 has an information exposure vulnerability. It ...sid
CVE-2023-5217Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior ...sid
firefox-esrCVE-2019-12383Tor Browser before 8.0.1 has an information exposure vulnerability. It ...bookworm, bullseye, buster, sid, trixie
CVE-2023-5217Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior ...bookworm, sid, trixie
fireholCVE-2008-4953firehol in firehol 1.256 allows local users to overwrite arbitrary fil ...bookworm, bullseye, buster, sid, trixie
flask-cachingCVE-2021-33026The Flask-Caching extension through 1.10.1 for Flask relies on Pickle ...bookworm, bullseye, sid, trixie
flexCVE-2019-6293An issue was discovered in the function mark_beginning_as_normal in nf ...bookworm, bullseye, buster, sid, trixie
flintqsCVE-2023-29465SageMath FlintQS 1.0 relies on pathnames under TMPDIR (typically world ...bookworm, bullseye, buster, sid, trixie
flvmetaCVE-2023-36243FLVMeta v1.2.1 was discovered to contain a buffer overflow via the xml ...bookworm, bullseye, buster, sid, trixie
fontforgeCVE-2017-11570FontForge 20161012 is vulnerable to a buffer over-read in umodenc (par ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11573FontForge 20161012 is vulnerable to a buffer over-read in ValidatePost ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17521uiutil.c in FontForge through 20170731 does not validate strings befor ...bookworm, bullseye, buster, sid, trixie
foomatic-filtersCVE-2011-2923foomatic-rip filter, all versions, used insecurely creates temporary f ...bookworm, bullseye, buster, sid, trixie
TEMP-0000000-ACBC4Cbuffer overflows in init_cupsbookworm, bullseye, buster, sid, trixie
freeipaCVE-2015-5179FreeIPA might display user data improperly via vectors involving non-p ...bookworm, buster, sid, trixie
CVE-2017-12169It was found that FreeIPA 4.2.0 and later could disclose password hash ...bookworm, buster, sid, trixie
CVE-2019-14826A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies ...bookworm, buster, sid, trixie
CVE-2023-5455A Cross-site request forgery vulnerability exists in ipa/session/login ...bookworm, buster, sid, trixie
freeradiusCVE-2007-0080Buffer overflow in the SMB_Connect_Server function in FreeRadius 1.1.3 ...bookworm, bullseye, buster, sid, trixie
CVE-2019-10143It was discovered freeradius up to and including version 3.0.19 does n ...bookworm, bullseye, buster, sid, trixie
freetypeCVE-2022-31782ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based bu ...bullseye, buster
frrCVE-2020-12831An issue was discovered in FRRouting FRR (aka Free Range Routing) thro ...bookworm, bullseye, buster, sid
ganglia-webCVE-2015-6816ganglia-web before 3.7.1 allows remote attackers to bypass authenticat ...buster
CVE-2019-20378ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via th ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20379ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via th ...bookworm, bullseye, buster, sid, trixie
gcc-12CVE-2022-27943libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in ...bookworm, sid, trixie
gcc-mingw-w64CVE-2016-4973Binaries compiled against targets that use the libssp library in GCC f ...bookworm, bullseye, buster, sid, trixie
gdalCVE-2019-17546tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0. ...buster
gdbCVE-2014-8501The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutil ...bookworm, bullseye, buster, sid, trixie
CVE-2017-9778GNU Debugger (GDB) 8.0 and earlier fails to detect a negative length f ...buster
CVE-2023-39128GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack o ...bookworm, bullseye, buster, sid, trixie
CVE-2023-39129GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap us ...bookworm, bullseye, buster, sid, trixie
CVE-2023-39130GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap bu ...bookworm, bullseye, buster, sid, trixie
geditCVE-2017-14108libgedit.a in GNOME gedit through 3.22.1 allows remote attackers to ca ...bookworm, bullseye, buster, sid, trixie
geomviewCVE-2017-17530common/help.c in Geomview 1.9.5 does not validate strings before launc ...bookworm, bullseye, buster, sid, trixie
gerbvCVE-2021-40400An out-of-bounds read vulnerability exists in the RS-274X aperture mac ...bullseye, buster
CVE-2021-40402An out-of-bounds read vulnerability exists in the RS-274X aperture mac ...bookworm, bullseye, buster, sid, trixie
ghostscriptCVE-2022-1350A vulnerability classified as problematic was found in GhostPCL 9.55.0 ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38560An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_ ...bookworm, bullseye, buster
ghostwriterCVE-2022-39209cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and renderin ...bullseye, buster
giacCVE-2017-17526Input.cc in Bernard Parisse Giac 1.2.3.57 does not validate strings be ...bookworm, bullseye, buster, sid, trixie
gif2apngCVE-2021-45907An issue was discovered in gif2apng 1.9. There is a stack-based buffer ...bullseye, buster
CVE-2021-45908An issue was discovered in gif2apng 1.9. There is a stack-based buffer ...bullseye, buster
giflibCVE-2020-23922An issue was discovered in giflib through 5.1.4. DumpScreen2RGB in gif ...bookworm, bullseye, buster, trixie
CVE-2021-40633A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5 ...bookworm, bullseye, buster, trixie
CVE-2022-28506There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RG ...bookworm, bullseye, buster, trixie
CVE-2023-39742giflib v5.2.1 was discovered to contain a segmentation fault via the c ...bookworm, bullseye, buster, sid, trixie
CVE-2023-48161Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows ...bookworm, bullseye, buster, trixie
gifsicleCVE-2020-19752The find_color_or_error function in gifsicle 1.92 contains a NULL poin ...bullseye, buster
CVE-2023-36193Gifsicle v1.9.3 was discovered to contain a heap buffer overflow via t ...bookworm, bullseye, buster
CVE-2023-44821Gifsicle through 1.94, if deployed in a way that allows untrusted inpu ...bookworm, bullseye, buster, sid, trixie
CVE-2023-46009gifsicle-1.94 was found to have a floating point exception (FPE) vulne ...bookworm, bullseye, buster, sid, trixie
giftransCVE-2021-45972The giftrans function in giftrans 1.12.2 contains a stack-based buffer ...bookworm, bullseye, buster, sid, trixie
gimpCVE-2012-4245The scriptfu network server in GIMP 2.6 does not require authenticatio ...bookworm, bullseye, buster, sid, trixie
CVE-2018-12713GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary f ...bookworm, bullseye, buster, sid, trixie
CVE-2022-30067GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a ...bullseye
CVE-2022-32990An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allow ...bullseye, buster
gitCVE-2018-1000021GIT version 2.15.1 and earlier contains a Input Validation Error vulne ...bookworm, bullseye, buster, sid, trixie
CVE-2022-24975The --mirror documentation for Git through 2.35.1 does not mention the ...bookworm, bullseye, buster, sid, trixie
gjots2CVE-2017-17535lib/gui.py in Bob Hepple gjots2 2.4.1 does not validate strings before ...buster
glanceCVE-2013-4354The API before 2.1 in OpenStack Image Registry and Delivery Service (G ...bookworm, bullseye, buster, sid, trixie
CVE-2015-8234The image signature algorithm in OpenStack Glance 11.0.0 allows remote ...bookworm, bullseye, buster, sid, trixie
CVE-2016-4383The glance-manage db in all versions of HPE Helion Openstack Glance al ...bookworm, bullseye, buster, sid, trixie
CVE-2016-8611A vulnerability was found in Openstack Glance. No limits are enforced ...bookworm, bullseye, buster, sid, trixie
glib2.0CVE-2012-0039GLib 2.31.8 and earlier, when the g_str_hash function is used, compute ...bookworm, bullseye, buster, sid, trixie
CVE-2020-35457GNOME GLib before 2.65.3 has an integer overflow, that might lead to a ...buster
glibcCVE-2010-4756The glob implementation in the GNU C Library (aka glibc or libc6) allo ...bookworm, bullseye, buster, sid, trixie
CVE-2018-20796In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limi ...bookworm, bullseye, buster, sid, trixie
CVE-2019-9192In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limi ...bookworm, bullseye, buster, sid, trixie
CVE-2019-1010022GNU Libc current is affected by: Mitigation bypass. The impact is: Att ...bookworm, bullseye, buster, sid, trixie
CVE-2019-1010023GNU Libc current is affected by: Re-mapping current loaded library wit ...bookworm, bullseye, buster, sid, trixie
CVE-2019-1010024GNU Libc current is affected by: Mitigation bypass. The impact is: Att ...bookworm, bullseye, buster, sid, trixie
CVE-2019-1010025GNU Libc current is affected by: Mitigation bypass. The impact is: Att ...bookworm, bullseye, buster, sid, trixie
gnome-font-viewerCVE-2019-19308In text_to_glyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, ...buster
gnome-keyringCVE-2018-19358GNOME Keyring through 3.28.2 allows local users to retrieve login cred ...bookworm, bullseye, buster, sid, trixie
gnome-remote-desktopCVE-2022-1736bullseye, buster
gnome-shellCVE-2012-4427The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force ...buster
gnome-sushiCVE-2019-19308In text_to_glyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, ...buster
gnuchessCVE-2019-15767In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmd_ ...buster
gnumailCVE-2007-1269GNUMail 1.1.2 and earlier does not properly use the --status-fd argume ...bookworm, bullseye, buster, sid, trixie
gnupg1CVE-2018-6829cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt mess ...bookworm, bullseye, buster, sid, trixie
CVE-2019-14855A flaw was found in the way certificate signatures could be forged usi ...bookworm, bullseye, buster, sid, trixie
gnupg2CVE-2022-3219GnuPG can be made to spin on a relatively small input by (for example) ...bookworm, bullseye, buster, sid, trixie
gnuplotCVE-2018-19490An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue all ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19491An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allow ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19492An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allo ...bookworm, bullseye, buster, sid, trixie
CVE-2020-25412com_line() in command.c in gnuplot 5.4 leads to an out-of-bounds-write ...bookworm, bullseye, buster, sid, trixie
CVE-2020-25559gnuplot 5.5 is affected by double free when executing print_set_output ...bookworm, bullseye, buster, sid, trixie
CVE-2020-25969gnuplot v5.5 was discovered to contain a buffer overflow via the funct ...bookworm, bullseye, buster, sid, trixie
CVE-2021-44917A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d ...buster
gnutls28CVE-2011-3389The SSL protocol, as used in certain configurations in Microsoft Windo ...bookworm, bullseye, buster, sid, trixie
gocrCVE-2021-33479A stack-based buffer overflow vulnerability was discovered in gocr thr ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33480An use-after-free vulnerability was discovered in gocr through 0.53-20 ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33481A stack-based buffer overflow vulnerability was discovered in gocr thr ...bookworm, bullseye, buster, sid, trixie
golang-1.11CVE-2020-29509The encoding/xml package in Go (all versions) does not correctly prese ...buster
CVE-2020-29510The encoding/xml package in Go versions 1.15 and earlier does not corr ...buster
CVE-2020-29511The encoding/xml package in Go (all versions) does not correctly prese ...buster
CVE-2022-41716Due to unsanitized NUL values, attackers may be able to maliciously se ...buster
CVE-2022-41720On Windows, restricted files can be accessed via os.DirFS and http.Dir ...buster
CVE-2022-41722A path traversal vulnerability exists in filepath.Clean on Windows. On ...buster
CVE-2023-45283The filepath package does not recognize paths with a \??\ prefix as sp ...buster
CVE-2023-45284On Windows, The IsLocal function does not correctly detect reserved de ...buster
golang-1.15CVE-2020-29509The encoding/xml package in Go (all versions) does not correctly prese ...bullseye
CVE-2020-29510The encoding/xml package in Go versions 1.15 and earlier does not corr ...bullseye
CVE-2020-29511The encoding/xml package in Go (all versions) does not correctly prese ...bullseye
CVE-2022-41716Due to unsanitized NUL values, attackers may be able to maliciously se ...bullseye
CVE-2022-41720On Windows, restricted files can be accessed via os.DirFS and http.Dir ...bullseye
CVE-2022-41722A path traversal vulnerability exists in filepath.Clean on Windows. On ...bullseye
CVE-2023-45283The filepath package does not recognize paths with a \??\ prefix as sp ...bullseye
CVE-2023-45284On Windows, The IsLocal function does not correctly detect reserved de ...bullseye
golang-1.19CVE-2023-45283The filepath package does not recognize paths with a \??\ prefix as sp ...bookworm
CVE-2023-45284On Windows, The IsLocal function does not correctly detect reserved de ...bookworm
golang-github-blevesearch-bleveCVE-2022-31022Bleve is a text indexing library for go. Bleve includes HTTP utilities ...bullseye, buster
golang-github-containers-buildahCVE-2022-4122A vulnerability was found in buildah. Incorrect following of symlinks ...bookworm, bullseye, sid, trixie
CVE-2022-4123A flaw was found in Buildah. The local path and the lowest subdirector ...bookworm, bullseye, sid, trixie
google-perftoolsCVE-2018-13420Google gperftools 2.7 has a memory leak in malloc_extension.cc, relate ...bookworm, bullseye, buster, sid, trixie
gpacCVE-2020-22673Memory leak in the senc_Parse function in MP4Box in gpac 0.8.0 allows ...buster
CVE-2020-22679Memory leak in the sgpd_parse_entry function in MP4Box in gpac 0.8.0 a ...buster
CVE-2021-31256Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0. ...buster
CVE-2021-31261The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to rea ...buster
CVE-2021-33361Memory leak in the afra_box_read function in MP4Box in GPAC 1.0.1 allo ...sid
CVE-2021-33363Memory leak in the infe_box_read function in MP4Box in GPAC 1.0.1 allo ...sid
CVE-2021-33364Memory leak in the def_parent_box_new function in MP4Box in GPAC 1.0.1 ...sid
CVE-2021-33365Memory leak in the gf_isom_get_root_od function in MP4Box in GPAC 1.0. ...buster, sid
CVE-2021-33366Memory leak in the gf_isom_oinf_read_entry function in MP4Box in GPAC ...sid
CVE-2022-3957A vulnerability classified as problematic was found in GPAC. Affected ...buster, sid
CVE-2022-43254GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a mem ...bullseye, buster, sid
CVE-2022-43255GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a mem ...buster, sid
gppCVE-2018-17076GPP through 2.25 will try to use more memory space than is available o ...buster
gpwCVE-2011-4931gpw generates shorter passwords than requiredbookworm, bullseye, buster, sid, trixie
graphicsmagickCVE-2017-13736There are lots of memory leaks in the GMCommand function in magick/com ...bookworm, bullseye, buster, sid, trixie
graphvizCVE-2019-11023The agroot() function in cgraph\obj.c in libcgraph.a in Graphviz 2.39. ...bookworm, bullseye, buster, sid, trixie
CVE-2023-46045Graphviz 2.36 before 10.0.0 has an out-of-bounds read via a crafted co ...bookworm, bullseye, buster
grubCVE-2008-3896Grub Legacy 0.97 and earlier stores pre-boot authentication passwords ...bookworm, bullseye, buster, sid, trixie
CVE-2023-4949An attacker with local access to a system (either through a disk or ex ...bookworm, bullseye, buster, sid, trixie
gsoapCVE-2021-21783A code execution vulnerability exists in the WS-Addressing plugin func ...bookworm, bullseye, buster, sid, trixie
gssproxyCVE-2020-12658gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex befor ...bookworm, bullseye, buster, sid, trixie
gthumbCVE-2020-36427GNOME gThumb before 3.10.1 allows an application crash via a malformed ...buster
h2databaseCVE-2022-45868The web-based admin console in H2 Database Engine through 2.1.214 can ...bookworm, bullseye, buster, sid, trixie
hamster-time-trackerCVE-2023-36250CSV Injection vulnerability in GNOME time tracker version 3.0.2, allow ...bookworm, bullseye, sid, trixie
haskell-tlsCVE-2011-3389The SSL protocol, as used in certain configurations in Microsoft Windo ...bookworm, bullseye, buster, sid, trixie
hdf5CVE-2017-17507In HDF5 1.10.1, there is an out of bounds read vulnerability in the fu ...bookworm, bullseye, buster, sid, trixie
CVE-2018-13869An issue was discovered in the HDF HDF5 1.8.20 library. There is a mem ...bullseye, buster
CVE-2018-13870An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...bullseye, buster
CVE-2018-14031An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14033An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...bullseye, buster
CVE-2018-14034An issue was discovered in the HDF HDF5 1.8.20 library. There is an ou ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14035An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14460An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...bullseye, buster
CVE-2018-15671An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stac ...bookworm, bullseye, buster, sid, trixie
CVE-2018-16438An issue was discovered in the HDF HDF5 1.8.20 library. There is an ou ...bookworm, bullseye, buster, sid, trixie
CVE-2018-17432A NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c in ...bullseye, buster
CVE-2018-17433A heap-based buffer overflow in ReadGifImageDesc() in gifread.c in the ...bookworm, bullseye, buster, sid, trixie
CVE-2018-17435A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the ...bullseye, buster
CVE-2018-17436ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allo ...bookworm, bullseye, buster, sid, trixie
CVE-2018-17438A SIGFPE signal is raised in the function H5D__select_io() of H5Dselec ...buster
CVE-2018-17439An issue was discovered in the HDF HDF5 1.10.3 library. There is a sta ...bookworm, bullseye, buster, sid, trixie
CVE-2019-8397An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ...bookworm, bullseye, buster, sid, trixie
CVE-2019-9151An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ...bookworm, bullseye, buster, sid, trixie
CVE-2019-9152An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ...bookworm, bullseye, buster, sid, trixie
CVE-2020-10809An issue was discovered in HDF5 through 1.12.0. A heap-based buffer ov ...bookworm, bullseye, buster, sid, trixie
CVE-2020-10810An issue was discovered in HDF5 through 1.12.0. A NULL pointer derefer ...bullseye, buster
CVE-2020-10811An issue was discovered in HDF5 through 1.12.0. A heap-based buffer ov ...bullseye, buster
CVE-2020-10812An issue was discovered in HDF5 through 1.12.0. A NULL pointer derefer ...bookworm, bullseye, buster, sid, trixie
CVE-2020-18232Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1 ...bookworm, bullseye, buster, sid, trixie
CVE-2020-18494Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1 ...bookworm, bullseye, buster, sid, trixie
CVE-2021-37501Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1 ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45829HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denia ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45830A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45832A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45833A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 vi ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46242HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46243An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1- ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46244A Divide By Zero vulnerability exists in HDF5 v1.13.1-1 vis the functi ...bookworm, bullseye, buster, sid, trixie
hex-a-hopTEMP-0528250-2E3658hex-a-hop: buffer overflow in loading save gamesbookworm, bullseye, buster, sid, trixie
hiredisCVE-2021-32765Hiredis is a minimalistic C client library for the Redis database. In ...bullseye, buster
horizon-edaCVE-2021-21897A code execution vulnerability exists in the DL_Dxf::handleLWPolylineD ...bookworm, bullseye, buster, sid, trixie
htmldocCVE-2021-33235Buffer overflow vulnerability in write_node in htmldoc through 1.9.11 ...bullseye, buster
CVE-2021-33236Buffer Overflow vulnerability in write_header in htmldoc through 1.9.1 ...bullseye, buster
CVE-2021-34119A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ...bullseye, buster
CVE-2021-34121An Out of Bounds flaw was discovered in htmodoc 1.9.12 in function par ...bullseye, buster
CVE-2022-0137A heap buffer overflow in image_set_mask function of HTMLDOC before 1. ...bullseye, buster
CVE-2022-34033HTMLDoc v1.9.15 was discovered to contain a heap overflow via (write_h ...bullseye, buster
CVE-2022-34035HTMLDoc v1.9.12 and below was discovered to contain a heap overflow vi ...bullseye, buster
htslibCVE-2018-14329In HTSlib 1.8, a race condition in cram/cram_io.c might allow local us ...bookworm, bullseye, buster, sid, trixie
httpieCVE-2023-48052Missing SSL certificate validation in HTTPie v3.2.2 allows attackers t ...bookworm, sid, trixie
huginCVE-2024-25442An issue in the HuginBase::PanoramaMemento::loadPTScript function of H ...bookworm, bullseye, buster
CVE-2024-25443An issue in the HuginBase::ImageVariable<double>::linkWith function of ...bookworm, bullseye, buster
CVE-2024-25445Improper handling of values in HuginBase::PTools::Transform::transform ...bookworm, bullseye, buster
CVE-2024-25446An issue in the HuginBase::PTools::setDestImage function of Hugin v202 ...bookworm, bullseye, buster
hugoCVE-2020-26284Hugo is a fast and Flexible Static Site Generator built in Go. Hugo de ...buster
hunspellCVE-2019-16707Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommon ...buster
icecast2CVE-2005-0837IceCast 2.20 allows remote attackers to bypass the XSL parser and obta ...bookworm, bullseye, buster, sid, trixie
CVE-2005-0838Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow ...bookworm, bullseye, buster, sid, trixie
icedtea-webCVE-2015-5236It was discovered that the IcedTea-Web used codebase attribute of the ...bookworm, bullseye, buster, sid, trixie
imagemagickCVE-2005-0406A design flaw in image processing software that modifies JPEG images m ...bookworm, bullseye, buster, sid, trixie
CVE-2008-3134Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 al ...bookworm, bullseye, buster, sid, trixie
CVE-2016-8678The IsPixelMonochrome function in MagickCore/pixel-accessor.h in Image ...bookworm, bullseye, buster, sid, trixie
CVE-2017-7275The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allow ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11754The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 al ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11755The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 al ...bookworm, bullseye, buster, sid, trixie
CVE-2018-15607In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x3 ...bookworm, bullseye, buster, sid, trixie
CVE-2019-13310ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ...buster
CVE-2019-16709ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrate ...buster
CVE-2020-27753There are several memory leaks in the MIFF coder in /coders/miff.c due ...buster
CVE-2020-27755in SetImageExtent() of /MagickCore/image.c, an incorrect image depth s ...buster
CVE-2021-20311A flaw was found in ImageMagick in versions before 7.0.11, where a div ...bookworm, bullseye, buster, sid, trixie
CVE-2023-34152A vulnerability was found in ImageMagick. This security flaw cause a r ...bookworm, bullseye, buster, sid, trixie
indentCVE-2024-0911A flaw was found in indent, a program for formatting C code. This issu ...bullseye, buster
influxdbCVE-2022-36640influxData influxDB before v1.8.10 contains no authentication mechanis ...bookworm, bullseye, buster, sid, trixie
iniparserCVE-2023-33461iniparser v4.1 is vulnerable to NULL Pointer Dereference in function i ...bookworm, bullseye, buster
initramfs-toolsCVE-2008-4996init in initramfs-tools 0.92f allows local users to overwrite arbitrar ...bookworm, bullseye, buster, sid, trixie
inkscapeCVE-2021-42700Inkscape 0.91 is vulnerable to an out-of-bounds read, which may allow ...buster
CVE-2021-42702Inkscape version 0.91 can access an uninitialized pointer, which may a ...buster
CVE-2021-42704Inkscape version 0.91 is vulnerable to an out-of-bounds write, which m ...buster
ioquake3CVE-2019-1010043Quake3e < 5ed740d is affected by: Buffer Overflow. The impact is: Poss ...bookworm, bullseye, buster, sid, trixie
iotjsCVE-2020-29657In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unh ...bullseye, buster
ippsampleCVE-2023-24808PDFio is a C library for reading and writing PDF files. In versions pr ...bookworm, sid
iptablesCVE-2012-2663extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP S ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11360A buffer overflow in iptables-restore in netfilter iptables 1.8.2 allo ...buster
isakmpdCVE-2018-5389The Internet Key Exchange v1 main mode is vulnerable to offline dictio ...buster
jackrabbitCVE-2023-37895Java object deserialization issue in Jackrabbit webapp/standalone on a ...bookworm, bullseye, buster
jakarta-el-apiCVE-2021-28170In the Jakarta Expression Language implementation 3.0.3 and earlier, a ...bookworm, bullseye, sid, trixie
janinoCVE-2023-33546Janino 3.1.9 and earlier are subject to denial of service (DOS) attack ...bookworm, bullseye, buster, sid, trixie
janssonCVE-2020-36325An issue was discovered in Jansson through 2.13.1. Due to a parsing er ...bookworm, bullseye, buster, sid, trixie
janusCVE-2021-4124janus-gateway is vulnerable to Improper Neutralization of Input During ...bookworm, sid, trixie
jbigkitCVE-2017-9937In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A cr ...bookworm, bullseye, buster, sid, trixie
jheadCVE-2019-19035jhead 3.03 is affected by: heap-based buffer over-read. The impact is: ...buster
CVE-2019-1010301jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of s ...buster
CVE-2019-1010302jhead 3.03 is affected by: Incorrect Access Control. The impact is: De ...buster
CVE-2020-6624jhead through 3.04 has a heap-based buffer over-read in process_DQT in ...bookworm, bullseye, buster, sid, trixie
CVE-2020-6625jhead through 3.04 has a heap-based buffer over-read in Get32s when ca ...bookworm, bullseye, buster, sid, trixie
CVE-2020-26208JHEAD is a simple command line tool for displaying and some manipulati ...buster
CVE-2020-28840Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead ve ...bullseye, buster
CVE-2021-3496A heap-based buffer overflow was found in jhead in version 3.06 in Get ...buster
CVE-2021-28275A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to ...bullseye, buster
CVE-2021-28276A Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a ...bullseye, buster
CVE-2021-28277A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.0 ...bullseye, buster
CVE-2021-28278A Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3. ...bullseye, buster
jinja2CVE-2019-8341An issue was discovered in Jinja2 2.10. The from_string function is pr ...bookworm, bullseye, buster, sid, trixie
jpeg-xlCVE-2021-36691libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image ...bookworm, sid, trixie
jpegoptimCVE-2022-32325JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation wh ...bookworm, bullseye, buster, sid, trixie
CVE-2023-27781jpegoptim v1.5.2 was discovered to contain a heap overflow in the opti ...bookworm, bullseye, buster, sid, trixie
jqueryCVE-2007-2379The jQuery framework exchanges data using JavaScript Object Notation ( ...buster
CVE-2018-18405jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG ele ...buster
jquery-goodiesCVE-2022-23395jQuery Cookie 1.4.1 is affected by prototype pollution, which can lead ...bookworm, bullseye, buster, sid, trixie
json-glibTEMP-0772585-D41D8Cbookworm, bullseye, buster, sid, trixie
json-smartCVE-2021-31684A vulnerability was discovered in the indexOf function of JSONParserBy ...bookworm, bullseye, sid, trixie
jsonpickleCVE-2020-22083jsonpickle through 1.4.1 allows remote code execution during deseriali ...bookworm, bullseye, buster, sid, trixie
jupyter-serverCVE-2023-49080The Jupyter Server provides the backend (i.e. the core services, APIs, ...bookworm, bullseye, sid, trixie
jythonCVE-2017-17522Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ...bookworm, bullseye, buster, sid, trixie
kde4libsCVE-2009-1692WebKit before r41741, as used in Apple iPhone OS 1.0 through 2.2.1, iP ...buster
CVE-2009-1718WebKit in Apple Safari before 4.0 allows user-assisted remote attacker ...buster
CVE-2009-1724Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari bef ...buster
CVE-2009-3015QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and d ...buster
CVE-2009-3272Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safar ...buster
TEMP-0560108-565B70browser-based css info disclosurebuster
TEMP-0568486-B6FCB6browser javascript document.write denial-of-servicebuster
keepass2CVE-2019-20184KeePass 2.4.1 allows CSV injection in the title field of a CSV export.bookworm, bullseye, buster, sid, trixie
CVE-2023-32784In KeePass 2.x before 2.54, it is possible to recover the cleartext ma ...bookworm, bullseye, buster, sid, trixie
kfreebsd-10CVE-2011-2393The Neighbor Discovery (ND) protocol implementation in the IPv6 stack ...buster
CVE-2016-1879The Stream Control Transmission Protocol (SCTP) module in FreeBSD 9.3 ...buster
CVE-2017-1081In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3 ...buster
CVE-2017-1082In FreeBSD 11.x before 11.1-RELEASE and 10.x before 10.4-RELEASE, the ...buster
CVE-2017-1083In FreeBSD before 11.2-RELEASE, a stack guard-page is available but is ...buster
CVE-2017-1084In FreeBSD before 11.2-RELEASE, multiple issues with the implementatio ...buster
CVE-2017-1085In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() ...buster
CVE-2017-1086In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4 ...buster
CVE-2017-1087In FreeBSD 10.x before 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE- ...buster
CVE-2017-1088In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4 ...buster
CVE-2017-15037In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_s ...buster
CVE-2018-6916In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELE ...buster
CVE-2018-6917In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELE ...buster
CVE-2018-6918In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELE ...buster
CVE-2018-6919In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELE ...buster
CVE-2018-6920In FreeBSD before 11.1-STABLE(r332303), 11.1-RELEASE-p10, 10.4-STABLE( ...buster
CVE-2018-6921In FreeBSD before 11.1-STABLE(r332066) and 11.1-RELEASE-p10, due to in ...buster
CVE-2018-6922One of the data structures that holds TCP segments in all versions of ...buster
CVE-2018-6923In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip f ...buster
CVE-2018-6924In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p3, 11.1-RELEASE-p14, 10.4 ...buster
CVE-2018-6925In FreeBSD before 11.2-STABLE(r338986), 11.2-RELEASE-p4, 11.1-RELEASE- ...buster
CVE-2018-17154In FreeBSD before 11.2-STABLE(r338987), 11.2-RELEASE-p4, and 11.1-RELE ...buster
CVE-2018-17155In FreeBSD before 11.2-STABLE(r338983), 11.2-RELEASE-p4, 11.1-RELEASE- ...buster
CVE-2018-17156In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to inc ...buster
CVE-2019-5595In FreeBSD before 11.2-STABLE(r343782), 11.2-RELEASE-p9, 12.0-STABLE(r ...buster
CVE-2019-5596In FreeBSD 11.2-STABLE after r338618 and before r343786, 12.0-STABLE b ...buster
CVE-2019-5597In FreeBSD 11.3-PRERELEASE and 12.0-STABLE before r347591, 11.2-RELEAS ...buster
CVE-2019-5598In FreeBSD 11.3-PRERELEASE before r345378, 12.0-STABLE before r345377, ...buster
CVE-2019-5601In FreeBSD 12.0-STABLE before r347474, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5602In FreeBSD 12.0-STABLE before r349628, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5603In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5605In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEAS ...buster
CVE-2019-5606In FreeBSD 12.0-STABLE before r349805, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5609In FreeBSD 12.0-STABLE before r350619, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5611In FreeBSD 12.0-STABLE before r350828, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5612In FreeBSD 12.0-STABLE before r351264, 12.0-RELEASE before 12.0-RELEAS ...buster
CVE-2019-5614In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEAS ...buster
CVE-2019-15874In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEAS ...buster
CVE-2019-15875In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEAS ...buster
CVE-2019-15878In FreeBSD 12.1-STABLE before r352509, 11.3-STABLE before r352509, and ...buster
CVE-2020-7452In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEAS ...buster
CVE-2020-7453In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEAS ...buster
CVE-2020-7456In FreeBSD 12.1-STABLE before r361918, 12.1-RELEASE before p6, 11.4-ST ...buster
CVE-2020-7459In FreeBSD 12.1-STABLE before r362166, 12.1-RELEASE before p8, 11.4-ST ...buster
CVE-2020-7462In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, imprope ...buster
CVE-2020-7463In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12. ...buster
CVE-2020-7464In FreeBSD 12.2-STABLE before r365730, 11.4-STABLE before r365738, 12. ...buster
CVE-2020-7469In FreeBSD 12.2-STABLE before r367402, 11.4-STABLE before r368202, 12. ...buster
CVE-2020-25578In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12. ...buster
CVE-2020-25579In FreeBSD 12.2-STABLE before r368969, 11.4-STABLE before r369047, 12. ...buster
CVE-2020-25581In FreeBSD 12.2-STABLE before r369312, 11.4-STABLE before r369313, 12. ...buster
CVE-2020-25582In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12. ...buster
CVE-2021-29626In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11. ...buster
CVE-2021-29632In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before ...buster
kiwiCVE-2017-17532examples/framework/news/news3.py in Kiwi 1.9.22 does not validate stri ...bookworm, buster, sid, trixie
knot-resolverCVE-2022-32983Knot Resolver through 5.5.1 may allow DNS cache poisoning when there i ...bookworm, bullseye, buster, sid, trixie
kopano-webapp-plugin-filesCVE-2019-16774In phpfastcache before 5.1.3, there is a possible object injection vul ...buster
krb5CVE-2018-5709An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The ...bookworm, bullseye, buster, sid, trixie
lbreakout2TEMP-0608980-E8B8DFCrash with long HOME environment variablebookworm, bullseye, buster
leocadCVE-2021-31804LeoCAD before 21.03 sometimes allows a use-after-free during the openi ...bookworm, bullseye, buster, sid, trixie
libaoCVE-2017-11548The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 a ...bookworm, bullseye, buster, sid, trixie
libapache-poi-javaCVE-2016-5000The XLSX2CSV example in Apache POI before 3.14 allows remote attackers ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12415In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to conv ...bookworm, bullseye, buster, sid, trixie
libcacaCVE-2022-0856libcaca is affected by a Divide By Zero issue via img2txt, which allow ...bookworm, bullseye, buster, sid, trixie
libcommons-collections4-javaCVE-2015-7501Red Hat JBoss A-MQ 6.x; BPM Suite (BPMS) 6.x; BRMS 6.x and 5.x; Data G ...bookworm, bullseye, buster, sid, trixie
libcommons-fileupload-javaCVE-2016-1000031Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation ...bookworm, bullseye, buster, sid, trixie
libcrypto++CVE-2016-7420Crypto++ (aka cryptopp) through 5.6.4 does not document the requiremen ...bookworm, bullseye, buster, sid, trixie
libdata-uuid-perlCVE-2013-4184Perl module Data::UUID from CPAN version 1.219 vulnerable to symlink a ...bookworm, bullseye, buster, sid, trixie
libdata-validate-ip-perlCVE-2021-29662The Data::Validate::IP module through 0.29 for Perl does not properly ...buster
libesmtpCVE-2019-19977libESMTP through 1.0.6 mishandles domain copying into a fixed-size buf ...bookworm, bullseye, buster, sid, trixie
libfwsiCVE-2019-17263In libyal libfwsi before 20191006, libfwsi_extension_block_copy_from_b ...bookworm, bullseye, buster, sid, trixie
libgaduCVE-2013-4488libgadu before 1.12.0 does not verify X.509 certificates from SSL serv ...bookworm, bullseye, buster, sid, trixie
libgcrypt20CVE-2018-6829cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt mess ...bookworm, bullseye, buster, sid, trixie
libgd2CVE-2021-40145gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) throu ...bullseye, buster
libgigCVE-2018-14449An issue was discovered in libgig 4.1.0. There is an out of bounds rea ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14450An issue was discovered in libgig 4.1.0. There is an out-of-bounds rea ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14451An issue was discovered in libgig 4.1.0. There is a heap-based buffer ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14452An issue was discovered in libgig 4.1.0. There is an out-of-bounds rea ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14453An issue was discovered in libgig 4.1.0. There is a heap-based buffer ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14454An issue was discovered in libgig 4.1.0. There is an out-of-bounds rea ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14455An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14456An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14457An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14458An issue was discovered in libgig 4.1.0. There is a heap-based buffer ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14459An issue was discovered in libgig 4.1.0. There is an out-of-bounds wri ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18192An issue was discovered in libgig 4.1.0. There is a NULL pointer deref ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18193An issue was discovered in libgig 4.1.0. There is operator new[] failu ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18194An issue was discovered in libgig 4.1.0. There is a heap-based buffer ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18195An issue was discovered in libgig 4.1.0. There is an FPE (divide-by-ze ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18196An issue was discovered in libgig 4.1.0. There is a heap-based buffer ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18197An issue was discovered in libgig 4.1.0. There is an operator new[] fa ...bookworm, bullseye, buster, sid, trixie
libhttp-tiny-perlCVE-2023-31486HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available ...bookworm, buster
libjpegCVE-2022-31620In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an ...bullseye
CVE-2022-31796libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRe ...bullseye
CVE-2022-32201In libjpeg 1.63, there is a NULL pointer dereference in Component::Sub ...bullseye
CVE-2022-32202In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::Fe ...bullseye
CVE-2022-32978There is an assertion failure in SingleComponentLSScan::ParseMCU in si ...bullseye
CVE-2022-35166libjpeg commit 842c7ba was discovered to contain an infinite loop via ...bookworm, bullseye, sid, trixie
CVE-2022-37768libjpeg commit 281daa9 was discovered to contain an infinite loop via ...bullseye
CVE-2022-37770libjpeg commit 281daa9 was discovered to contain a segmentation fault ...bullseye
libjpeg-turboCVE-2017-15232libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and j ...buster
CVE-2018-11813libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles ...buster
CVE-2020-17541Libjpeg-turbo all version have a stack-based buffer overflow in the "t ...buster
libjpeg6bCVE-2016-3616The cjpeg utility in libjpeg allows remote attackers to cause a denial ...sid
libjs-i18nextCVE-2017-16010i18next is a language translation framework. When using the .init meth ...buster
liblivemediaCVE-2019-7732In Live555 0.95, a setup packet can cause a memory leak leading to DoS ...buster
liblnkCVE-2019-17263In libyal libfwsi before 20191006, libfwsi_extension_block_copy_from_b ...bookworm, bullseye, buster, sid, trixie
CVE-2019-17264In libyal liblnk before 20191006, liblnk_location_information_read_dat ...bookworm, bullseye, buster, sid, trixie
CVE-2019-17401libyal liblnk 20191006 has a heap-based buffer over-read in the networ ...bookworm, bullseye, buster, sid, trixie
liblouisCVE-2023-26767Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remo ...bookworm, bullseye, buster
CVE-2023-26768Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remo ...bookworm, bullseye, buster
CVE-2023-26769Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 all ...bookworm, bullseye, buster
libmatioCVE-2019-20019An attempted excessive memory allocation was discovered in Mat_VarRead ...bookworm, bullseye, buster, sid, trixie
libmetadata-extractor-javaCVE-2022-24613metadata-extractor up to 2.16.0 can throw various uncaught exceptions ...bookworm, bullseye, buster, sid, trixie
CVE-2022-24614When reading a specially crafted JPEG file, metadata-extractor up to 2 ...bookworm, bullseye, buster, sid, trixie
libokhttp-javaCVE-2018-20200CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the- ...bookworm, bullseye, buster, sid, trixie
libpam-krb5CVE-2023-3326pam_krb5 authenticates a user by essentially running kinit with the pa ...bookworm, bullseye, buster, sid, trixie
libphp-adodbCVE-2006-4976The Date Library in John Lim ADOdb Library for PHP allows remote attac ...bookworm, bullseye, buster, sid, trixie
CVE-2011-3699John Lim ADOdb Library for PHP 5.11 allows remote attackers to obtain ...bookworm, bullseye, buster, sid, trixie
libpng1.6CVE-2018-14048An issue has been found in libpng 1.6.34. It is a SEGV in the function ...buster
CVE-2018-14550An issue has been found in third-party PNM decoding associated with li ...buster
CVE-2019-6129png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as ...bullseye, buster
CVE-2021-4214A heap overflow flaw was found in libpngs' pngimage.c program. This fl ...bookworm, bullseye, buster, sid, trixie
libpodofoCVE-2018-20797An issue was discovered in PoDoFo 0.9.6. There is an attempted excessi ...bookworm, bullseye, buster, sid, trixie
CVE-2020-18972Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v ...bookworm, bullseye, buster, sid, trixie
libquicktimeCVE-2017-12143In libquicktime 1.2.4, an allocation failure was found in the function ...bookworm, bullseye, buster, sid, trixie
CVE-2017-12145In libquicktime 1.2.4, an allocation failure was found in the function ...bookworm, bullseye, buster, sid, trixie
librawCVE-2020-24890libraw 20.0 has a null pointer dereference vulnerability in parse_tiff ...bookworm, bullseye, buster, sid, trixie
librecadCVE-2021-21897A code execution vulnerability exists in the DL_Dxf::handleLWPolylineD ...bookworm, bullseye, buster, sid, trixie
CVE-2023-30259A Buffer Overflow vulnerability in importshp plugin in LibreCAD 2.2.0 ...bookworm, bullseye, buster
libreofficeCVE-2012-5639LibreOffice and OpenOffice automatically open embedded contentbookworm, bullseye, buster, sid, trixie
CVE-2018-10583An information disclosure vulnerability occurs when LibreOffice 6.0.3 ...bookworm, bullseye, buster, sid, trixie
libreswanCVE-2018-5389The Internet Key Exchange v1 main mode is vulnerable to offline dictio ...bookworm, bullseye, buster, sid
libsassCVE-2019-18797LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operator()(Sas ...bookworm, bullseye, buster, sid, trixie
libseccompCVE-2019-9893libseccomp before 2.4.0 did not correctly generate 64-bit syscall argu ...buster
libsixelCVE-2019-11024The load_pnm function in frompnm.c in libsixel.a in libsixel 1.8.2 has ...buster
libslirpCVE-2020-7211tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\ ...bookworm, bullseye, sid, trixie
libsolvCVE-2018-20534There is an illegal address access at ext/testcase.c in libsolv.a in l ...buster
CVE-2021-3200Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * t ...buster
CVE-2021-44568Two heap-overflow vulnerabilities exist in openSUSE/libsolv libsolv th ...buster
libspiroCVE-2019-19847Libspiro through 20190731 has a stack-based buffer overflow in the spi ...buster
libspring-javaCVE-2020-5421In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5. ...buster
CVE-2021-22060In Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older ...bookworm, bullseye, buster, sid, trixie
CVE-2021-22096In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older ...bookworm, bullseye, buster, sid, trixie
CVE-2022-22950n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versi ...bookworm, bullseye, buster, sid, trixie
CVE-2022-22965A Spring MVC or Spring WebFlux application running on JDK 9+ may be vu ...bookworm, bullseye, buster, sid, trixie
CVE-2022-22968In Spring Framework versions 5.3.0 - 5.3.18, 5.2.0 - 5.2.20, and older ...bookworm, bullseye, buster, sid, trixie
CVE-2022-22970In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupp ...bookworm, bullseye, buster, sid, trixie
CVE-2022-22971In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupp ...bookworm, bullseye, buster, sid, trixie
CVE-2023-20860Spring Framework running version 6.0.0 - 6.0.6 or 5.3.0 - 5.3.25 using ...bookworm, bullseye, buster, sid, trixie
CVE-2023-20861In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELE ...bookworm, bullseye, buster, sid, trixie
CVE-2023-20863In spring framework versions prior to 5.2.24 release+ ,5.3.27+ and 6.0 ...bookworm, bullseye, buster, sid, trixie
CVE-2024-22243Applications that use UriComponentsBuilderto parse an externally provi ...bookworm, bullseye, buster, sid, trixie
libstbCVE-2022-27938stb_image.h (aka the stb image loader) 2.19, as used in libsixel and o ...bookworm, bullseye, buster, sid, trixie
CVE-2022-28048STB v2.27 was discovered to contain an integer shift of invalid size i ...bookworm, bullseye, buster
libtasn1-6CVE-2018-1000654GNU Libtasn1-4.13 libtasn1-4.13 version libtasn1-4.13, libtasn1-4.12 c ...buster
libuv1CVE-2020-8252The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14 ...buster
libvncserverCVE-2019-15680TightVNC code version 1.3.10 contains null pointer dereference in Hand ...bookworm, bullseye, buster, sid, trixie
libvpxCVE-2017-0641A remote denial of service vulnerability in libvpx in Mediaserver coul ...bookworm, bullseye, buster, sid, trixie
libvtermCVE-2018-20786libvterm through 0+bzr726, as used in Vim and other products, mishandl ...bookworm, bullseye, buster, sid, trixie
libwmfCVE-2007-3476Array index error in gd_gif_in.c in the GD Graphics Library (libgd) be ...bookworm, bullseye, buster, sid, trixie
CVE-2007-3477The (a) imagearc and (b) imagefilledarc functions in GD Graphics Libra ...bookworm, bullseye, buster, sid, trixie
CVE-2007-3996Multiple integer overflows in libgd in PHP before 5.2.4 allow remote a ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3546The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5. ...bookworm, bullseye, buster, sid, trixie
TEMP-0601525-BEBB65libgd2: gdImageColorTransparent can write outside bufferbookworm, bullseye, buster, sid, trixie
libxerces2-javaCVE-2012-0881Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to ca ...bookworm, bullseye, buster, sid, trixie
libxsltCVE-2015-9019In libxslt 1.1.29 and earlier, the EXSLT math.random function was not ...bookworm, bullseye, buster, sid, trixie
libxsmmCVE-2018-20543There is an attempted excessive memory allocation at libxsmm_sparse_cs ...bookworm, sid, trixie
libxstream-javaCVE-2022-40151Those using Xstream to seralize XML data may be vulnerable to Denial o ...bookworm, bullseye, buster, sid, trixie
liloCVE-2008-3895LILO 22.6.1 and earlier stores pre-boot authentication passwords in th ...buster
linuxCVE-2004-0230TCP, when using a large Window Size, makes it easier for remote attack ...bookworm, bullseye, buster, sid, trixie
CVE-2005-3660Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service ...bookworm, bullseye, buster, sid, trixie
CVE-2007-3719The process scheduler in the Linux kernel 2.6.16 gives preference to " ...bookworm, bullseye, buster, sid, trixie
CVE-2008-2544Mounting /proc filesystem via chroot command silently mounts it in rea ...bookworm, bullseye, buster, sid, trixie
CVE-2008-4609The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, ...bookworm, bullseye, buster, sid, trixie
CVE-2010-4563The Linux kernel, when using IPv6, allows remote attackers to determin ...bookworm, bullseye, buster, sid, trixie
CVE-2010-5321Memory leak in drivers/media/video/videobuf-core.c in the videobuf sub ...bookworm, bullseye, buster, sid, trixie
CVE-2011-4915fs/proc/base.c in the Linux kernel through 3.1 allows local users to o ...bookworm, bullseye, buster, sid, trixie
CVE-2011-4916Linux kernel through 3.1 allows local users to obtain sensitive keystr ...bookworm, bullseye, buster, sid, trixie
CVE-2011-4917In the Linux kernel through 3.1 there is an information disclosure iss ...bookworm, bullseye, buster, sid, trixie
CVE-2012-4542block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly c ...bookworm, bullseye, buster, sid, trixie
CVE-2014-9892The snd_compr_tstamp function in sound/core/compress_offload.c in the ...bookworm, bullseye, buster, sid, trixie
CVE-2014-9900The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel ...bookworm, bullseye, buster, sid, trixie
CVE-2015-2877Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 through 4.x d ...bookworm, bullseye, buster, sid, trixie
CVE-2016-8660The XFS subsystem in the Linux kernel through 4.8.2 allows local users ...bookworm, bullseye, buster, sid, trixie
CVE-2016-10723An issue was discovered in the Linux kernel through 4.17.2. Since the ...bookworm, bullseye, buster, sid, trixie
CVE-2017-0630An information disclosure vulnerability in the kernel trace subsystem ...bookworm, bullseye, buster, sid, trixie
CVE-2017-13693The acpi_ds_create_operands() function in drivers/acpi/acpica/dsutils. ...bookworm, bullseye, buster, sid, trixie
CVE-2017-13694The acpi_ps_complete_final_op() function in drivers/acpi/acpica/psobje ...bookworm, bullseye, buster, sid, trixie
CVE-2018-1121procps-ng, procps is vulnerable to a process hiding through race condi ...bookworm, bullseye, buster, sid, trixie
CVE-2018-17977The Linux kernel 4.14.67 mishandles certain interaction among XFRM Net ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11191The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and i ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12378An issue was discovered in ip6_ra_control in net/ipv6/ipv6_sockglue.c ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12379An issue was discovered in con_insert_unipair in drivers/tty/vt/consol ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12380**DISPUTED** An issue was discovered in the efi subsystem in the Linux ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12381An issue was discovered in ip_ra_control in net/ipv4/ip_sockglue.c in ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12382An issue was discovered in drm_load_edid_firmware in drivers/gpu/drm/d ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12455An issue was discovered in sunxi_divs_clk_setup in drivers/clk/sunxi/c ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12456An issue was discovered in the MPT3COMMAND case in _ctl_ioctl_main in ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12615An issue was discovered in get_vdev_port_node_info in arch/sparc/kerne ...buster
CVE-2019-16229drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c in the Linux kernel 5.2.14 ...bookworm, bullseye, buster, sid, trixie
CVE-2019-16230drivers/gpu/drm/radeon/radeon_display.c in the Linux kernel 5.2.14 doe ...bookworm, bullseye, buster, sid, trixie
CVE-2019-16231drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check ...bookworm, bullseye, buster, sid, trixie
CVE-2019-16232drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5. ...bookworm, bullseye, buster, sid, trixie
CVE-2019-16233drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not chec ...bookworm, bullseye, buster, sid, trixie
CVE-2019-16234drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5. ...bookworm, bullseye, buster, sid, trixie
CVE-2019-19064A memory leak in the fsl_lpspi_probe() function in drivers/spi/spi-fsl ...buster
CVE-2019-19070A memory leak in the spi_gpio_probe() function in drivers/spi/spi-gpio ...bookworm, bullseye, buster, sid, trixie
CVE-2019-19083Memory leaks in *clock_source_create() functions under drivers/gpu/drm ...buster
CVE-2019-19378In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image ...bookworm, bullseye, buster, sid, trixie
CVE-2020-11725snd_ctl_elem_add in sound/core/control.c in the Linux kernel through 5 ...bookworm, bullseye, buster, sid, trixie
CVE-2020-27820A vulnerability was found in Linux kernel, where a use-after-frees in ...buster
CVE-2020-35501A flaw was found in the Linux kernels implementation of audit rules, w ...bookworm, bullseye, buster, sid, trixie
CVE-2021-0929In ion_dma_buf_end_cpu_access and related functions of ion.c, there is ...buster
CVE-2021-3714A flaw was found in the Linux kernels memory deduplication mechanism. ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26934An issue was discovered in the Linux kernel 4.18 through 5.10.16, as u ...bookworm, bullseye, buster, sid, trixie
CVE-2021-32078An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/perso ...bullseye, buster
CVE-2022-0400An out-of-bounds read vulnerability was discovered in linux kernel in ...bookworm, bullseye, buster, sid, trixie
CVE-2022-1247An issue found in linux-kernel that leads to a race condition in rose_ ...bookworm, bullseye, buster, sid, trixie
CVE-2022-2961A use-after-free flaw was found in the Linux kernel\u2019s PLP Rose fu ...bookworm, bullseye, buster, sid, trixie
CVE-2022-3238A double-free flaw was found in the Linux kernel\u2019s NTFS3 subsyste ...bookworm, sid, trixie
CVE-2022-25265In the Linux kernel through 5.16.10, certain binary files may have the ...bookworm, bullseye, buster, sid, trixie
CVE-2022-41848drivers/char/pcmcia/synclink_cs.c in the Linux kernel through 5.19.12 ...bookworm, bullseye, buster, sid, trixie
CVE-2022-44032An issue was discovered in the Linux kernel through 6.0.6. drivers/cha ...bookworm, bullseye, buster, sid, trixie
CVE-2022-44033An issue was discovered in the Linux kernel through 6.0.6. drivers/cha ...bookworm, bullseye, buster, sid, trixie
CVE-2022-44034An issue was discovered in the Linux kernel through 6.0.6. drivers/cha ...bookworm, bullseye, buster
CVE-2022-45884An issue was discovered in the Linux kernel through 6.0.9. drivers/med ...bookworm, bullseye, buster, sid, trixie
CVE-2022-45885An issue was discovered in the Linux kernel through 6.0.9. drivers/med ...bookworm, bullseye, buster, sid, trixie
CVE-2022-45888An issue was discovered in the Linux kernel through 6.0.9. drivers/cha ...bookworm
CVE-2023-4134Input: cyttsp4_core - change del_timer_sync() to timer_shutdown_sync()bookworm, bullseye, buster
CVE-2023-6610An out-of-bounds read vulnerability was found in smb2_dump_detail in f ...bullseye, buster
CVE-2023-22995In the Linux kernel before 5.17, an error path in dwc3_qcom_acpi_regis ...bullseye
CVE-2023-23000In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles t ...bullseye, buster
CVE-2023-23003In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check ...bullseye, buster
CVE-2023-23039An issue was discovered in the Linux kernel through 6.2.0-rc2. drivers ...bookworm, bullseye, buster, sid, trixie
CVE-2023-26242afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31081An issue was discovered in drivers/media/test-drivers/vidtv/vidtv_brid ...bookworm, bullseye, sid, trixie
CVE-2023-31085An issue was discovered in drivers/mtd/ubi/cdev.c in the Linux kernel ...bookworm, bullseye, buster, sid, trixie
CVE-2023-39191An improper input validation flaw was found in the eBPF subsystem in t ...bookworm
TEMP-0000000-F7A20FKernel: Unprivileged user can freeze journaldbookworm, bullseye, buster, sid, trixie
llvm-toolchain-13CVE-2023-29932llvm-project commit fdbc55a5 was discovered to contain a segmentation ...bookworm, bullseye, buster
CVE-2023-29933llvm-project commit bd456297 was discovered to contain a segmentation ...bookworm, bullseye, buster
CVE-2023-29934llvm-project commit 6c01b5c was discovered to contain a segmentation f ...bookworm, bullseye, buster
CVE-2023-29935llvm-project commit a0138390 was discovered to contain an assertion fa ...bookworm, bullseye, buster
CVE-2023-29939llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, bullseye, buster
CVE-2023-29941llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, bullseye, buster
CVE-2023-29942llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, bullseye, buster
llvm-toolchain-14CVE-2023-26924LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockReg ...bookworm, sid, trixie
CVE-2023-29932llvm-project commit fdbc55a5 was discovered to contain a segmentation ...bookworm
CVE-2023-29933llvm-project commit bd456297 was discovered to contain a segmentation ...bookworm, sid, trixie
CVE-2023-29934llvm-project commit 6c01b5c was discovered to contain a segmentation f ...bookworm
CVE-2023-29935llvm-project commit a0138390 was discovered to contain an assertion fa ...bookworm, sid, trixie
CVE-2023-29939llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm
CVE-2023-29941llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, sid, trixie
CVE-2023-29942llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, sid, trixie
llvm-toolchain-15CVE-2023-26924LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockReg ...bookworm, sid, trixie
CVE-2023-29932llvm-project commit fdbc55a5 was discovered to contain a segmentation ...bookworm
CVE-2023-29933llvm-project commit bd456297 was discovered to contain a segmentation ...bookworm
CVE-2023-29934llvm-project commit 6c01b5c was discovered to contain a segmentation f ...bookworm
CVE-2023-29935llvm-project commit a0138390 was discovered to contain an assertion fa ...bookworm, sid, trixie
CVE-2023-29939llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm
CVE-2023-29941llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, sid, trixie
CVE-2023-29942llvm-project commit a0138390 was discovered to contain a segmentation ...bookworm, sid, trixie
log4cxxCVE-2023-31038SQL injection in Log4cxx when using the ODBC appender to send log mess ...bookworm, bullseye, buster
loguruCVE-2022-0338Insertion of Sensitive Information into Log File in Conda loguru prior ...bookworm, sid, trixie
lrzipCVE-2019-10654The lzo1x_decompress function in liblzo2.so.2 in LZO 2.10, as used in ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33451An issue was discovered in lrzip version 0.641. There are memory leaks ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33453An issue was discovered in lrzip version 0.641. There is a use-after-f ...bookworm, bullseye, buster, sid, trixie
CVE-2022-33067Lrzip v0.651 was discovered to contain multiple invalid arithmetic shi ...bookworm, bullseye, buster, sid, trixie
lua-cgiCVE-2014-2875The session.lua library in CGILua 5.2 alpha 1 and 5.2 alpha 2 uses wea ...bookworm, bullseye, buster, sid, trixie
luajitCVE-2019-19391In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other pro ...bullseye, buster
CVE-2020-15890LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc hand ...bullseye, buster
CVE-2020-24372LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in ...bookworm, bullseye, buster, sid, trixie
lucene-solrCVE-2017-3164Server Side Request Forgery in Apache Solr, versions 1.3 until 7.6 (in ...bookworm, bullseye, buster, sid, trixie
CVE-2019-17558Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code ...bookworm, bullseye, buster, sid, trixie
lxc-templatesCVE-2017-18641In LXC 2.0, many template scripts download code over cleartext HTTP, a ...bookworm, bullseye, buster, sid, trixie
lynisCVE-2019-13033In CISOfy Lynis 2.x through 2.7.5, the license key can be obtained by ...buster
CVE-2020-13882CISOfy Lynis before 3.0.0 has Incorrect Access Control because of a TO ...buster
m2cryptoCVE-2009-0127M2Crypto does not properly check the return value from the OpenSSL EVP ...bookworm, bullseye, buster, sid, trixie
m4CVE-2008-1687The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1. ...bookworm, bullseye, buster, sid, trixie
CVE-2008-1688Unspecified vulnerability in GNU m4 before 1.4.11 might allow context- ...bookworm, bullseye, buster, sid, trixie
magpierssCVE-2006-4735Kellan Elliott-McCrea MagpieRSS allows remote attackers to obtain sens ...buster
maildirsyncCVE-2008-5150sample.sh in maildirsync 1.1 allows local users to append data to arbi ...bookworm, bullseye, buster, sid, trixie
mapcacheCVE-2019-20005An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20006An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20007An issue was discovered in ezXML 0.8.2 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20198An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20199An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20200An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20201An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_ ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20202An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26220The ezxml_toxml function in ezxml 0.8.6 and earlier is vulnerable to O ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26221The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26222The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ...bookworm, bullseye, buster, sid, trixie
CVE-2021-30485An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31229An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31347An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31348An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31598An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2022-30045An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
matanzaCVE-2009-3560The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3720The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...bookworm, bullseye, buster, sid, trixie
mathtexCVE-2023-51890An infinite loop issue discovered in Mathtex 1.05 and before allows a ...bookworm, bullseye, buster, sid, trixie
mbedtlsCVE-2018-1000520ARM mbedTLS version 2.7.0 and earlier contains a Ciphersuite Allows In ...bookworm, bullseye, buster, sid, trixie
CVE-2023-43615Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.bookworm, bullseye, buster, sid, trixie
mcollectiveCVE-2014-0175mcollective has a default password set at installbookworm, bullseye, buster, sid, trixie
mdadmCVE-2023-28938Uncontrolled resource consumption in some Intel(R) SSD Tools software ...bullseye, buster
mediaelementCVE-2016-4567Cross-site scripting (XSS) vulnerability in flash/FlashMediaElement.as ...bookworm, bullseye, buster, sid, trixie
metviewCVE-2017-17515etc/ObjectList in Metview 4.7.3 does not validate strings before launc ...bookworm, bullseye, buster, sid, trixie
mh-bookCVE-2008-5152inmail-show in mh-book 200605 allows local users to overwrite arbitrar ...bookworm, bullseye, buster, sid, trixie
midoriCVE-2012-2132libsoup 2.32.2 and earlier does not validate certificates or clear the ...bullseye, buster
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ...bullseye, buster
milkytrackerCVE-2022-34927MilkyTracker v1.03.00 was discovered to contain a stack overflow via t ...bookworm, bullseye, buster
mingw-w64CVE-2018-5392mingw-w64 version 5.0.4 by default produces executables that opt in to ...bookworm, bullseye, buster, sid, trixie
mini-httpdCVE-2009-4490mini_httpd 1.19 writes data to a log file without sanitizing non-print ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17663The htpasswd implementation of mini_httpd before v1.28 and of thttpd b ...bookworm, bullseye, buster, sid, trixie
minidjvuCVE-2017-12441The row_is_empty function in base/4bitmap.c:274 in minidjvu 0.8 can ca ...bookworm, bullseye, buster, sid, trixie
CVE-2017-12442The row_is_empty function in base/4bitmap.c:272 in minidjvu 0.8 can ca ...bookworm, bullseye, buster, sid, trixie
CVE-2017-12443The mdjvu_bitmap_pack_row function in base/4bitmap.c in minidjvu 0.8 c ...bookworm, bullseye, buster, sid, trixie
CVE-2017-12444The mdjvu_bitmap_get_bounding_box function in base/4bitmap.c in minidj ...bookworm, bullseye, buster, sid, trixie
CVE-2017-12445The JB2BitmapCoder::code_row_by_refinement function in jb2/bmpcoder.cp ...bookworm, bullseye, buster, sid, trixie
modsecurity-crsCVE-2019-11387An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ...buster
CVE-2019-11388An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11389An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11390An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11391An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) throu ...bookworm, bullseye, buster, sid, trixie
moinCVE-2007-0902Unspecified vulnerability in the "Show debugging information" feature ...buster
mojarraCVE-2010-2087Oracle Mojarra 1.2_14 and 2.0.2, as used in IBM WebSphere Application ...bookworm, bullseye, buster, sid, trixie
monitoring-pluginsCVE-2023-37154bookworm, bullseye, buster, sid, trixie
monopdCVE-2015-0841Off-by-one error in the readBuf function in listener.cpp in libcapsine ...bookworm, bullseye, buster, sid, trixie
mozilla-noscriptCVE-2018-16983NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other ...buster, sid
mp3spltCVE-2017-5665The splt_cue_export_to_file function in cue.c in libmp3splt 0.9.2 allo ...bookworm, bullseye, buster, sid, trixie
CVE-2017-5666The free_options function in options_manager.c in mp3splt 2.6.2 allows ...bookworm, bullseye, buster, sid, trixie
CVE-2017-5851The free_options function in options_manager.c in mp3splt 2.6.2 allows ...bookworm, bullseye, buster, sid, trixie
mplayerCVE-2022-38600Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf ...bullseye, buster
CVE-2022-38853Certain The MPlayer Project products are vulnerable to Buffer Overflow ...bullseye, buster
CVE-2022-38856Certain The MPlayer Project products are vulnerable to Buffer Overflow ...bullseye, buster
mupdfCVE-2018-19777In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg ...buster
CVE-2020-26683A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Softw ...bullseye, buster
CVE-2021-4216A Floating point exception (division-by-zero) flaw was found in Mupdf ...bullseye, buster
CVE-2023-31794MuPDF v1.21.1 was discovered to contain an infinite recursion in the c ...bookworm, bullseye, buster
CVE-2023-51103A floating point exception (divide-by-zero) vulnerability was discover ...bookworm, bullseye, buster, sid, trixie
CVE-2023-51104A floating point exception (divide-by-zero) vulnerability was discover ...bookworm, bullseye, buster, sid, trixie
CVE-2023-51105A floating point exception (divide-by-zero) vulnerability was discover ...bookworm, bullseye, buster, sid, trixie
CVE-2023-51106A floating point exception (divide-by-zero) vulnerability was discover ...bookworm, bullseye, buster, sid, trixie
CVE-2023-51107A floating point exception (divide-by-zero) vulnerability was discover ...bookworm, bullseye, buster, sid, trixie
musescore3CVE-2023-26923Musescore 3.0 to 4.0.1 has a stack buffer overflow vulnerability that ...bookworm, bullseye, sid, trixie
mustache.jsCVE-2015-8861The handlebars package before 4.0.0 for Node.js allows remote attacker ...bookworm, bullseye, buster, sid, trixie
CVE-2015-8862mustache package before 2.2.1 for Node.js allows remote attackers to c ...bookworm, bullseye, buster, sid, trixie
TEMP-0000000-137F0Aquoteless attributes in templates can lead to content injectionbookworm, bullseye, buster, sid, trixie
muttCVE-2007-1268Mutt 1.5.13 and earlier does not properly use the --status-fd argument ...bookworm, bullseye, buster, sid, trixie
mxmlCVE-2018-20005An issue has been found in Mini-XML (aka mxml) 2.12. It is a use-after ...bookworm, bullseye, buster, sid, trixie
mycliCVE-2023-44690Inadequate encryption strength in mycli 1.27.0 allows attackers to vie ...bookworm, bullseye, buster, sid, trixie
naclCVE-2015-0565NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks ...bookworm, bullseye, buster, sid, trixie
nagios4CVE-2020-35269Nagios Core application version 4.2.4 is vulnerable to Site-Wide Cross ...bookworm, bullseye, buster, sid, trixie
nasmCVE-2018-19213Netwide Assembler (NASM) through 2.14rc16 has memory leaks that may le ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19755There is an illegal address access at asm/preproc.c (function: is_mmac ...buster
CVE-2018-20535There is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...buster
CVE-2018-20538There is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...bookworm, bullseye, buster, sid, trixie
CVE-2018-1000886nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6290An infinite recursion issue was discovered in eval.c in Netwide Assemb ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6291An issue was discovered in the function expr6 in eval.c in Netwide Ass ...bookworm, bullseye, buster, sid, trixie
CVE-2019-8343In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in past ...bookworm, bullseye, buster, sid, trixie
CVE-2019-14248In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows ...buster
CVE-2019-20334In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20352In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occ ...buster
CVE-2020-18780A Use After Free vulnerability in function new_Token in asm/preproc.c ...buster
CVE-2020-18974Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers ...bookworm, bullseye, buster, sid, trixie
CVE-2020-21528A Segmentation Fault issue discovered in in ieee_segment function in o ...bullseye, buster
CVE-2020-21685Buffer Overflow vulnerability in hash_findi function in hashtbl.c in n ...buster
CVE-2020-21687Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2. ...buster
CVE-2020-24241In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in ...buster
CVE-2020-24242In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_tex ...buster
CVE-2021-33450An issue was discovered in NASM version 2.16rc0. There are memory leak ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33452An issue was discovered in NASM version 2.16rc0. There are memory leak ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45256A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via a ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45257An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_t ...bookworm, bullseye, buster, sid, trixie
CVE-2022-29654Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm ...bullseye, buster
CVE-2022-41420nasm v2.16 was discovered to contain a stack overflow in the Ndisasm c ...bookworm, bullseye, buster, sid, trixie
CVE-2022-44368NASM v2.16 was discovered to contain a null pointer deference in the N ...bookworm, bullseye, buster, sid, trixie
CVE-2022-44369NASM 2.16 (development) is vulnerable to 476: Null Pointer Dereference ...bookworm, bullseye, buster, sid, trixie
CVE-2022-44370NASM v2.16 was discovered to contain a heap buffer overflow in the com ...bullseye, buster
CVE-2022-46456NASM v2.16 was discovered to contain a global buffer overflow in the c ...bookworm, bullseye, buster, sid, trixie
CVE-2022-46457NASM v2.16 was discovered to contain a segmentation violation in the c ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31722There exists a heap buffer overflow in nasm 2.16.02rc1 (GitHub commit: ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38665Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows att ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38667Stack-based buffer over-read in function disasm in nasm 2.16 allows at ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38668Stack-based buffer over-read in disasm in nasm 2.16 allows attackers t ...bookworm, bullseye, buster, sid, trixie
nautilusCVE-2022-37290GNOME Nautilus 42.2 allows a NULL pointer dereference and get_basename ...bullseye, buster
neomuttCVE-2020-14154Mutt before 1.14.3 proceeds with a connection even if, in response to ...buster
net-toolsCVE-2002-1976ifconfig, when used on the Linux kernel 2.2 and later, does not report ...bookworm, bullseye, buster, sid, trixie
netdataCVE-2019-9834The Netdata web application through 1.13.0 allows remote attackers to ...bookworm, bullseye, buster, sid
nethackCVE-2019-19905NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability ...buster
CVE-2020-5209In NetHack before 3.6.5, unknown options starting with -de and -i can ...buster
CVE-2020-5210In NetHack before 3.6.5, an invalid argument to the -w command line op ...buster
CVE-2020-5211In NetHack before 3.6.5, an invalid extended command in value for the ...buster
CVE-2020-5212In NetHack before 3.6.5, an extremely long value for the MENUCOLOR con ...buster
CVE-2020-5213In NetHack before 3.6.5, too long of a value for the SYMBOL configurat ...buster
CVE-2020-5214In NetHack before 3.6.5, detecting an unknown configuration file optio ...buster
nettyCVE-2022-24823Netty is an open-source, asynchronous event-driven network application ...bookworm, bullseye, buster, sid, trixie
network-managerCVE-2020-10754It was found that nmcli, a command line interface to NetworkManager di ...buster
network-manager-appletCVE-2017-6590An issue was discovered in network-manager-applet (aka network-manager ...bookworm, bullseye, buster, sid, trixie
networkd-dispatcherCVE-2022-29799A vulnerability was found in networkd-dispatcher. This flaw exists bec ...bullseye, buster
CVE-2022-29800A time-of-check-time-of-use (TOCTOU) race condition vulnerability was ...bullseye, buster
nginxCVE-2009-4487nginx 0.7.64 writes data to a log file without sanitizing non-printabl ...bookworm, bullseye, buster, sid, trixie
CVE-2023-44487The HTTP/2 protocol allows a denial of service (server resource consum ...bookworm, bullseye, buster
nip2CVE-2017-17514boxes.c in nip2 8.4.0 does not validate strings before launching the p ...bookworm, bullseye, buster, sid, trixie
nmapCVE-2017-18594nse_libssh2.cc in Nmap 7.70 is subject to a denial of service conditio ...buster
CVE-2018-15173Nmap through 7.70, when the -sV option is used, allows remote attacker ...bookworm, bullseye, buster, sid, trixie
nodauCVE-2022-4399A vulnerability was found in TicklishHoneyBee nodau. It has been rated ...bullseye, buster
node-ejsCVE-2023-29827ejs v3.1.9 is vulnerable to server-side template injection. If the ejs ...bookworm, bullseye, buster, sid, trixie
node-formidableCVE-2022-29622An arbitrary file upload vulnerability in formidable v3.1.4 allows att ...bullseye, buster
novaCVE-2013-0326OpenStack nova base images permissions are world readablebookworm, bullseye, buster, sid
nssCVE-2017-11695Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/h ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11696Heap-based buffer overflow in the __hash_open function in lib/dbm/src/ ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11697The __hash_open function in hash.c:229 in Mozilla Network Security Ser ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11698Heap-based buffer overflow in the __get_page function in lib/dbm/src/h ...bookworm, bullseye, buster, sid, trixie
ntpCVE-2018-12327Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 ...bullseye, buster
CVE-2023-26551mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ...bullseye, buster
CVE-2023-26552mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ...bullseye, buster
CVE-2023-26553mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ...bullseye, buster
CVE-2023-26554mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write ...bullseye, buster
numpyCVE-2021-34141An incomplete string comparison in the numpy.core component in NumPy b ...bookworm, bullseye, sid, trixie
CVE-2021-41495Null Pointer Dereference vulnerability exists in numpy.sort in NumPy & ...bookworm, bullseye, sid, trixie
CVE-2021-41496Buffer overflow in the array_from_pyobj function of fortranobject.c in ...bookworm, bullseye, sid, trixie
nvidia-cg-toolkitCVE-2008-5144nvidia-cg-toolkit-installer in nvidia-cg-toolkit 2.0.0015 allows local ...bookworm, bullseye, buster, sid, trixie
nvidia-cuda-toolkitCVE-2023-0193NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a ...bookworm, bullseye, buster, sid, trixie
CVE-2023-0196NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local use ...bookworm, bullseye, buster, sid, trixie
CVE-2023-25510NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2023-25511NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in ...bookworm, bullseye, buster, sid, trixie
CVE-2023-25512NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ...bookworm, bullseye, buster, sid, trixie
CVE-2023-25513NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ...bookworm, bullseye, buster
CVE-2023-25514NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ...bookworm, bullseye, buster, sid, trixie
CVE-2023-25523NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in ...bookworm, bullseye, buster, sid, trixie
ocaml-batteriesCVE-2017-17519batteriesConfig.mlp in OCaml Batteries Included (aka ocaml-batteries) ...bookworm, bullseye, buster, sid, trixie
ocsinventory-serverCVE-2010-1733Multiple SQL injection vulnerabilities in OCS Inventory NG before 1.02 ...bookworm, bullseye, buster, sid, trixie
CVE-2014-4722Multiple cross-site scripting (XSS) vulnerabilities in the OCS Reports ...bookworm, bullseye, buster, sid, trixie
CVE-2018-14857Unrestricted file upload (with remote code execution) in require/mail/ ...bookworm, bullseye, buster, sid, trixie
CVE-2018-15537Unrestricted file upload (with remote code execution) in OCS Inventory ...bookworm, bullseye, buster, sid, trixie
CVE-2020-14947OCS Inventory NG 2.7 allows Remote Command Execution via shell metacha ...bookworm, bullseye, buster, sid, trixie
CVE-2023-3726OCSInventory allow stored email template with special characters that ...bookworm, bullseye, buster, sid, trixie
omplCVE-2021-41490Memory leaks in LazyPRM.cpp of OMPL v1.5.0 can cause unexpected behavi ...bookworm, bullseye, sid, trixie
CVE-2021-42218OMPL v1.5.2 contains a memory leak in VFRRT.cppbookworm, bullseye, sid, trixie
onionshareCVE-2022-21694OnionShare is an open source tool that lets you securely and anonymous ...bullseye
openconnectCVE-2020-12105OpenConnect through 8.08 mishandles negative return values from X509_c ...bookworm, bullseye, buster, sid, trixie
CVE-2020-12823OpenConnect 8.09 has a buffer overflow, causing a denial of service (a ...buster
opendkimCVE-2020-35766The test suite in libopendkim in OpenDKIM through 2.10.3 allows local ...bookworm, bullseye, buster, sid, trixie
openexrCVE-2017-14988Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remot ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18443OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/Ilm ...buster
CVE-2021-20304A flaw was found in OpenEXR's hufDecode functionality. This flaw allow ...buster
CVE-2021-26945An integer overflow leading to a heap-buffer overflow was found in Ope ...bookworm, bullseye, buster, sid, trixie
openfortivpnCVE-2020-7043An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL ...buster
openjpeg2CVE-2016-9113There is a NULL pointer dereference in function imagetobmp of convertb ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9114There is a NULL Pointer Access in function imagetopnm of convert.c:194 ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9115Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9116NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in O ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9117NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in O ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9580An integer overflow vulnerability was found in tiftoimage function in ...bookworm, bullseye, buster, sid, trixie
CVE-2016-9581An infinite loop vulnerability in tiftoimage that results in heap buff ...bookworm, bullseye, buster, sid, trixie
CVE-2016-10505NULL pointer dereference vulnerabilities in the imagetopnm function in ...bookworm, bullseye, buster, sid, trixie
CVE-2016-10506Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, op ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17479In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the ...bookworm, bullseye, buster, sid, trixie
CVE-2018-5727In OpenJPEG 2.3.0, there is an integer overflow vulnerability in the o ...buster
CVE-2018-7648An issue was discovered in mj2/opj_mj2_extract.c in OpenJPEG 2.3.0. Th ...buster
CVE-2018-16375An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_i ...bookworm, bullseye, buster, sid, trixie
CVE-2018-16376An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflo ...bookworm, bullseye, buster, sid, trixie
CVE-2018-20845Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_nex ...buster
CVE-2018-20846Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi ...bookworm, bullseye, buster, sid, trixie
openldapCVE-2015-3276The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDA ...bookworm, bullseye, buster, sid, trixie
CVE-2017-14159slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17740contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when bot ...bookworm, bullseye, buster, sid, trixie
CVE-2020-15719libldap in certain third-party OpenLDAP packages has a certificate-val ...bookworm, bullseye, buster, sid, trixie
openrazerCVE-2022-29021A buffer overflow vulnerability exists in the razerkbd driver of OpenR ...bullseye, buster
CVE-2022-29022A buffer overflow vulnerability exists in the razeraccessory driver of ...bullseye, buster
CVE-2022-29023A buffer overflow vulnerability exists in the razermouse driver of Ope ...bullseye, buster
openrptCVE-2015-2305Integer overflow in the regcomp implementation in the Henry Spencer BS ...buster
openscadCVE-2022-0496A vulnerbiility was found in Openscad, where a DXF-format drawing with ...bullseye, buster
CVE-2022-0497A vulnerbiility was found in Openscad, where a .scad file with no trai ...bullseye, buster
opensshCVE-2007-2243OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...bookworm, bullseye, buster, sid, trixie
CVE-2007-2768OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...bookworm, bullseye, buster, sid, trixie
CVE-2008-3234sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...bookworm, bullseye, buster, sid, trixie
CVE-2016-20012OpenSSH through 8.7 allows remote attackers, who have a suspicion that ...bookworm, bullseye, buster, sid, trixie
CVE-2018-15919Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 co ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6110In OpenSSH 7.9, due to accepting and displaying arbitrary stderr outpu ...bookworm, bullseye, buster, sid, trixie
CVE-2019-16905OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an expe ...buster
CVE-2020-12062The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to ...buster
CVE-2020-14145The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepan ...bookworm, bullseye, buster, sid, trixie
CVE-2020-15778scp in OpenSSH through 8.3p1 allows command injection in the scp.c tor ...bookworm, bullseye, buster, sid, trixie
CVE-2021-36368An issue was discovered in OpenSSH before 8.9. If a client is using pu ...bullseye, buster
opensslCVE-2007-6755The NIST SP 800-90A default statement of the Dual Elliptic Curve Deter ...bookworm, bullseye, buster, sid, trixie
CVE-2010-0928OpenSSL 0.9.8i on the Gaisler Research LEON3 SoC on the Xilinx Virtex- ...bookworm, bullseye, buster, sid, trixie
openstack-troveCVE-2015-3156The _write_config function in trove/guestagent/datastore/experimental/ ...bookworm, sid, trixie
openvpnCVE-2006-2229OpenVPN 2.0.7 and earlier, when configured to use the --management opt ...bookworm, bullseye, buster, sid, trixie
CVE-2016-6329OpenVPN, when using a 64-bit block cipher, makes it easier for remote ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7544A cross-protocol scripting issue was discovered in the management inte ...bookworm, bullseye, buster, sid, trixie
optipngCVE-2023-43907OptiPNG v0.7.7 was discovered to contain a global buffer overflow via ...bookworm, bullseye, buster
os-proberCVE-2008-5135os-prober in os-prober 1.17 allows local users to overwrite arbitrary ...bookworm, bullseye, buster, sid, trixie
otrs2CVE-2018-7567In the Admin Package Manager in Open Ticket Request System (OTRS) 5.0. ...bullseye, buster
p7zipCVE-2022-47069p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerabi ...bookworm, bullseye, buster, sid, trixie
packagekitCVE-2022-0987A flaw was found in PackageKit in the way some of the methods exposed ...bookworm, bullseye, buster, sid, trixie
pandasCVE-2020-13091pandas through 1.0.3 can unserialize and execute commands from an untr ...bookworm, bullseye, buster, sid, trixie
parsoCVE-2019-12760A deserialization vulnerability exists in the way parso through 0.4.0 ...buster
passengerCVE-2016-10345In Phusion Passenger before 5.1.0, a known /tmp filename was used duri ...bullseye, buster
password-storeCVE-2020-28086pass through 1.7.3 has a possibility of using a password for an uninte ...bookworm, bullseye, buster, sid, trixie
patchCVE-2010-4651Directory traversal vulnerability in util.c in GNU patch 2.6.1 and ear ...bookworm, bullseye, buster, sid, trixie
CVE-2018-6951An issue was discovered in GNU patch through 2.7.6. There is a segment ...bookworm, bullseye, buster, sid, trixie
CVE-2018-6952A double free exists in the another_hunk function in pch.c in GNU patc ...bookworm, bullseye, buster, sid, trixie
CVE-2021-45261An Invalid Pointer vulnerability exists in GNU patch 2.7 via the anoth ...bookworm, bullseye, buster, sid, trixie
patchelfCVE-2022-44940Patchelf v0.9 was discovered to contain an out-of-bounds read via the ...bookworm, bullseye, buster, sid, trixie
pcf2bdfCVE-2022-23318A heap-buffer-overflow in pcf2bdf, versions >= 1.05 allows an attacker ...bullseye, buster
CVE-2022-23319A segmentation fault during PCF file parsing in pcf2bdf versions >=1.0 ...bullseye, buster
pcre2CVE-2022-41409Integer overflow vulnerability in pcre2test before 10.41 allows attack ...bullseye, buster
pcre3CVE-2017-7245Stack-based buffer overflow in the pcre32_copy_substring function in p ...bookworm, bullseye, buster, sid, trixie
CVE-2017-7246Stack-based buffer overflow in the pcre32_copy_substring function in p ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11164In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exe ...bookworm, bullseye, buster, sid, trixie
CVE-2017-16231In PCRE 8.41, after compiling, a pcretest load test PoC produces a cra ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20838libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT w ...bookworm, bullseye, buster, sid, trixie
pdfresurrectCVE-2019-14267PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because ...buster
CVE-2020-9549In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bou ...buster
CVE-2021-3508A flaw was found in PDFResurrect in version 0.22b. There is an infinit ...bullseye, buster
pdnsCVE-2020-24696An issue was discovered in PowerDNS Authoritative through 4.3.0 when - ...bookworm, bullseye, buster, sid, trixie
CVE-2020-24697An issue was discovered in PowerDNS Authoritative through 4.3.0 when - ...bookworm, bullseye, buster, sid, trixie
CVE-2020-24698An issue was discovered in PowerDNS Authoritative through 4.3.0 when - ...bookworm, bullseye, buster, sid, trixie
pdns-recursorCVE-2020-10030An issue has been found in PowerDNS Recursor 4.1.0 up to and including ...buster
perlCVE-2011-4116_is_safe in the File::Temp module for Perl does not properly handle sy ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31486HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available ...bookworm, bullseye, buster
phabricatorCVE-2017-17536Phabricator before 2017-11-10 does not block the --config and --debugg ...bookworm, bullseye, buster, sid, trixie
phantomjsCVE-2019-17221PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as d ...buster
php-font-libCVE-2014-2570Cross-site scripting (XSS) vulnerability in www/make_subset.php in PHP ...bookworm, bullseye, buster, sid, trixie
php-getid3CVE-2021-40926Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in g ...bullseye, buster
php-gettextTEMP-0000000-07A77Dphp-gettext XSSbookworm, bullseye, buster, sid, trixie
php-hordeCVE-2019-12094Horde Groupware Webmail Edition through 5.2.22 allows XSS via an admin ...bookworm, bullseye, buster, sid
php-horde-treanCVE-2019-12095Horde Trean, as used in Horde Groupware Webmail Edition through 5.2.22 ...bookworm, bullseye, buster, sid
php-pearCVE-2017-5630PECL in the download utility class in the Installer in PEAR Base Syste ...bookworm, bullseye, buster, sid, trixie
phpldapadminCVE-2018-12689phpLDAPadmin 1.2.2 allows LDAP injection via a crafted server_id param ...bookworm, sid, trixie
phpmyadminCVE-2005-3622phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain t ...bookworm, bullseye, sid, trixie
CVE-2007-4306Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.10 ...bookworm, bullseye, sid, trixie
CVE-2020-11441phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astrin ...bookworm, bullseye, sid, trixie
CVE-2022-0813PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially ...bullseye
CVE-2022-23807An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before ...bullseye
CVE-2022-23808An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker ca ...bullseye
picolibcCVE-2019-14876In the __lshift function of the newlib libc library, all versions prio ...bookworm, bullseye, sid, trixie
pidginCVE-2008-2956Memory leak in Pidgin 2.0.0, and possibly other versions, allows remot ...bookworm, bullseye, buster, sid, trixie
CVE-2012-1257Pidgin 2.10.0 uses DBUS for certain cleartext communication, which all ...bookworm, bullseye, buster, sid, trixie
pillowCVE-2020-10994In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multipl ...buster
CVE-2021-25287An issue was discovered in Pillow before 8.2.0. There is an out-of-bou ...buster
CVE-2021-25288An issue was discovered in Pillow before 8.2.0. There is an out-of-bou ...buster
pipewireCVE-2022-4964Ubuntu's pipewire-pulse in snap grants microphone access even when the ...bookworm, bullseye, buster
pixmanCVE-2023-37769stress-test master commit e4c878 was discovered to contain a FPE vulne ...bookworm, bullseye, buster, sid, trixie
pluxmlCVE-2020-18184In PluxXml V5.7,the theme edit function /PluXml/core/admin/parametres_ ...buster
CVE-2020-18185class.plx.admin.php in PluXml 5.7 allows attackers to execute arbitrar ...buster
popplerCVE-2013-4472The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 a ...bookworm, bullseye, buster, sid, trixie
CVE-2017-2814An exploitable heap overflow vulnerability exists in the image renderi ...bookworm, bullseye, buster, sid, trixie
CVE-2017-2818An exploitable heap overflow vulnerability exists in the image renderi ...bookworm, bullseye, buster, sid, trixie
CVE-2017-2820An exploitable integer overflow vulnerability exists in the JPEG 2000 ...bookworm, bullseye, buster, sid, trixie
CVE-2017-9083poppler 0.54.0, as used in Evince and other products, has a NULL point ...bookworm, bullseye, buster, sid, trixie
CVE-2018-19059An issue was discovered in Poppler 0.71.0. There is a out-of-bounds re ...buster
CVE-2018-19060An issue was discovered in Poppler 0.71.0. There is a NULL pointer der ...buster
CVE-2022-24106In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ...bookworm, bullseye, buster, sid, trixie
postbooksCVE-2017-17525guiclient/guiclient.cpp in xTuple PostBooks 4.7.0 does not validate st ...buster
pppCVE-2008-5366The postinst script in ppp 2.4.4rel on Debian GNU/Linux allows local u ...bookworm, bullseye, buster, sid, trixie
CVE-2008-5367ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to o ...bookworm, bullseye, buster, sid, trixie
CVE-2022-4603A vulnerability classified as problematic has been found in ppp. Affec ...bookworm, bullseye, buster, sid, trixie
proftpd-dfsgCVE-2020-9272ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap ...buster
prometheus-blackbox-exporterCVE-2020-16248Prometheus Blackbox Exporter through 0.17.0 allows /probe?target= SSRF ...bookworm, bullseye, buster, sid, trixie
CVE-2023-26735blackbox_exporter v0.23.0 was discovered to contain an access control ...bookworm, bullseye, buster, sid, trixie
protobufCVE-2015-5237protobuf allows remote authenticated attackers to cause a heap-based b ...bookworm, bullseye, buster, sid, trixie
psppCVE-2019-9211There is a reachable assertion abort in the function write_long_string ...buster
puppetCVE-2020-7942Previously, Puppet operated on a model that a node with a valid certif ...bullseye, buster
puttyCVE-2019-17069PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial o ...buster
pwgenCVE-2013-4441The Phonemes mode in Pwgen 2.06 generates predictable passwords, which ...bookworm, bullseye, buster, sid, trixie
py-lmdbCVE-2019-16224An issue was discovered in py-lmdb 0.97. For certain values of md_flag ...bookworm, bullseye, sid, trixie
CVE-2019-16225An issue was discovered in py-lmdb 0.97. For certain values of mp_flag ...bookworm, bullseye, sid, trixie
CVE-2019-16226An issue was discovered in py-lmdb 0.97. mdb_node_del does not validat ...bookworm, bullseye, sid, trixie
CVE-2019-16227An issue was discovered in py-lmdb 0.97. For certain values of mn_flag ...bookworm, bullseye, sid, trixie
CVE-2019-16228An issue was discovered in py-lmdb 0.97. There is a divide-by-zero err ...bookworm, bullseye, sid, trixie
pypyCVE-2020-29651A denial of service via regular expression in the py.path.svnwc compon ...bullseye, buster, bookworm, bullseye, buster, sid, trixie
python-certifiCVE-2022-23491Certifi is a curated collection of Root Certificates for validating th ...bookworm, bullseye, buster, sid, trixie
CVE-2023-37920Certifi is a curated collection of Root Certificates for validating th ...bookworm, bullseye, buster, sid, trixie
python-defaultsCVE-2008-4108Tools/faqwiz/move-faqwiz.sh (aka the generic FAQ wizard moving tool) i ...bullseye, buster
python-djangoCVE-2021-32052In Django 2.2 before 2.2.22, 3.1 before 3.1.10, and 3.2 before 3.2.2 ( ...buster
python-django-celery-resultsCVE-2020-17495django-celery-results through 1.2.1 stores task results in the databas ...bookworm, bullseye, buster, sid
python-ecdsaCVE-2024-23342The `ecdsa` PyPI package is a pure Python implementation of ECC (Ellip ...bookworm, bullseye, buster, sid, trixie
python-mkdocsCVE-2021-40978The mkdocs 1.2.2 built-in dev-server allows directory traversal using ...bookworm, bullseye, buster, sid, trixie
python-oslo.privsepCVE-2022-38065A privilege escalation vulnerability exists in the oslo.privsep functi ...bookworm, bullseye, buster, sid, trixie
python-pipCVE-2018-20225An issue was discovered in pip (all versions) because it installs the ...bookworm, bullseye, buster, sid, trixie
python-pyCVE-2022-42969The py library through 1.11.0 for Python allows remote attackers to co ...bookworm, bullseye, buster, sid, trixie
python-pysaml2CVE-2016-10127PySAML2 allows remote attackers to conduct XML external entity (XXE) a ...bookworm, bullseye, buster, sid, trixie
python-scrapyCVE-2017-14158Scrapy 1.4 allows remote attackers to cause a denial of service (memor ...bookworm, bullseye, buster, sid, trixie
python2.7CVE-2013-7040Python 2.7 before 3.4 only uses the last eight bits of the prefix to r ...bullseye, buster
CVE-2017-17522Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ...bullseye, buster
CVE-2019-9674Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ...bullseye, buster
CVE-2019-18348An issue was discovered in urllib2 in Python 2.x through 2.7.17 and ur ...buster
CVE-2020-27619In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ...bullseye, buster
CVE-2021-28861Python 3.x through 3.10 has an open redirection vulnerability in lib/h ...bullseye, buster
CVE-2023-24535Parsing invalid messages can panic. Parsing a text-format message whic ...bullseye, buster, sid, bookworm, sid, trixie, sid, trixie
python3.7CVE-2017-17522Lib/webbrowser.py in Python through 3.6.3 does not validate strings be ...buster
CVE-2019-9674Lib/zipfile.py in Python through 3.7.2 allows remote attackers to caus ...buster
CVE-2019-18348An issue was discovered in urllib2 in Python 2.x through 2.7.17 and ur ...buster
CVE-2020-27619In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ...buster
CVE-2021-28861Python 3.x through 3.10 has an open redirection vulnerability in lib/h ...buster
CVE-2023-24535Parsing invalid messages can panic. Parsing a text-format message whic ...buster
python3.9CVE-2020-27619In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK ...bullseye
CVE-2021-28861Python 3.x through 3.10 has an open redirection vulnerability in lib/h ...bullseye
CVE-2022-37454The Keccak XKCP SHA-3 reference implementation before fdc6fef has an i ...bullseye
CVE-2023-24535Parsing invalid messages can panic. Parsing a text-format message whic ...bullseye
pyyamlCVE-2017-18342In PyYAML before 5.1, the yaml.load() API could execute arbitrary code ...buster
qbittorrentCVE-2023-30801All versions of the qBittorrent client through 4.5.5 use default crede ...bookworm, bullseye, buster, sid, trixie
qemuCVE-2018-20123pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak ...buster
CVE-2018-20124hw/rdma/rdma_backend.c in QEMU allows guest OS users to trigger out-of ...buster
CVE-2018-20125hw/rdma/vmw/pvrdma_cmd.c in QEMU allows attackers to cause a denial of ...buster
CVE-2018-20126hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and create_qp memory ...buster
CVE-2018-20191hw/rdma/vmw/pvrdma_main.c in QEMU does not implement a read operation ...buster
CVE-2018-20216QEMU can have an infinite loop in hw/rdma/vmw/pvrdma_dev_ring.c becaus ...buster
CVE-2019-12247QEMU 3.0.0 has an Integer Overflow because the qga/commands*.c files d ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12928The QMP migrate command in QEMU version 4.0.0 and earlier is vulnerabl ...bookworm, bullseye, buster, sid, trixie
CVE-2019-12929The QMP guest_exec command in QEMU 4.0.0 and earlier is prone to OS co ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20175An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 ...bookworm, bullseye, buster, sid, trixie
CVE-2020-24352An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory ...bookworm, bullseye, sid, trixie
CVE-2022-35414softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized r ...bullseye
qpdfCVE-2022-34503QPDF v8.4.2 was discovered to contain a heap buffer overflow via the f ...buster
qt4-x11CVE-2009-3015QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and d ...buster
CVE-2009-3272Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safar ...buster
TEMP-0560108-565B70browser-based css info disclosurebuster
TEMP-0568486-B6FCB6browser javascript document.write denial-of-servicebuster
qtdeclarative-opensource-srcCVE-2022-40983An integer overflow vulnerability exists in the QML QtScript Reflect A ...bookworm, bullseye, buster, sid, trixie
CVE-2022-43591A buffer overflow vulnerability exists in the QML QtScript Reflect API ...bookworm, bullseye, buster, sid, trixie
qtdeclarative-opensource-src-glesCVE-2022-40983An integer overflow vulnerability exists in the QML QtScript Reflect A ...bookworm, bullseye, sid, trixie
CVE-2022-43591A buffer overflow vulnerability exists in the QML QtScript Reflect API ...bookworm, bullseye, sid, trixie
qtwebkitCVE-2015-8079qt5-qtwebkit before 5.4 records private browsing URLs to its favicon d ...buster
quaggaCVE-2012-5521quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon pe ...buster
qutebrowserCVE-2020-11054In qutebrowser versions less than 1.11.1, reloading a page with certif ...buster
r-cran-readxlCVE-2021-27836An issue was discoverered in in function xls_getWorkSheet in xls.c in ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38851Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38852Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38853Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38854Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38855Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38856Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacke ...bookworm, bullseye, buster, sid, trixie
radsecproxyCVE-2021-32642radsecproxy is a generic RADIUS proxy that supports both UDP and TLS ( ...buster
railsCVE-2010-3299The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to p ...bookworm, bullseye, buster, sid, trixie
CVE-2011-3187The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17916SQL injection vulnerability in the 'find_by' method in Ruby on Rails 5 ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17917SQL injection vulnerability in the 'where' method in Ruby on Rails 5.1 ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17919SQL injection vulnerability in the 'order' method in Ruby on Rails 5.1 ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17920SQL injection vulnerability in the 'reorder' method in Ruby on Rails 5 ...bookworm, bullseye, buster, sid, trixie
CVE-2022-3704A vulnerability classified as problematic has been found in Ruby on Ra ...bookworm, bullseye, buster, sid, trixie
rbdoom3bfgCVE-2020-15007A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tec ...bookworm, bullseye, buster, sid, trixie
re2cCVE-2018-21232re2c before 2.0 has uncontrolled recursion that causes stack consumpti ...bookworm, bullseye, buster, sid, trixie
CVE-2022-23901A stack overflow re2c 2.2 exists due to infinite recursion issues in s ...bullseye, buster
recutilsCVE-2019-6455An issue was discovered in GNU Recutils 1.8. There is a double-free pr ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6456An issue was discovered in GNU Recutils 1.8. There is a NULL pointer d ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6457An issue was discovered in GNU Recutils 1.8. There is a memory leak in ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6458An issue was discovered in GNU Recutils 1.8. There is a memory leak in ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6459An issue was discovered in GNU Recutils 1.8. There is a memory leak in ...bookworm, bullseye, buster, sid, trixie
CVE-2019-6460An issue was discovered in GNU Recutils 1.8. There is a NULL pointer d ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11637An issue was discovered in GNU recutils 1.8. There is a NULL pointer d ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11638An issue was discovered in GNU recutils 1.8. There is a NULL pointer d ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11639An issue was discovered in GNU recutils 1.8. There is a stack-based bu ...bookworm, bullseye, buster, sid, trixie
CVE-2019-11640An issue was discovered in GNU recutils 1.8. There is a heap-based buf ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46019An untrusted pointer dereference in rec_db_destroy() at rec-db.c of GN ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46021An Use-After-Free vulnerability in rec_record_destroy() at rec-record. ...bookworm, bullseye, buster, sid, trixie
CVE-2021-46022An Use-After-Free vulnerability in rec_mset_elem_destroy() at rec-mset ...bookworm, bullseye, buster, sid, trixie
redisCVE-2020-21468A segmentation fault in the redis-server component of Redis 5.0.7 lead ...bookworm, bullseye, buster, sid, trixie
CVE-2021-3470A heap overflow issue was found in Redis in versions before 5.0.10, be ...buster
CVE-2022-3647** DISPUTED ** A vulnerability, which was classified as problematic, w ...bookworm, bullseye, buster, sid, trixie
retroarchCVE-2020-23914An issue was discovered in cpp-peglib through v0.1.12. A NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2020-23915An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_es ...bookworm, bullseye, buster, sid, trixie
rhythmboxCVE-2008-7185GNOME Rhythmbox 0.11.5 allows remote attackers to cause a denial of se ...bookworm, bullseye, buster, sid, trixie
ringCVE-2022-24786PJSIP is a free and open source multimedia communication library writt ...bullseye, buster
CVE-2022-24792PJSIP is a free and open source multimedia communication library writt ...bullseye, buster
CVE-2023-38703PJSIP is a free and open source multimedia communication library writt ...bookworm, bullseye, buster, sid, trixie
rpmCVE-2010-2198lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadat ...bookworm, bullseye, buster, sid, trixie
CVE-2010-2199lib/fsm.c in RPM 4.8.0 and earlier does not properly reset the metadat ...bookworm, bullseye, buster, sid, trixie
CVE-2017-7500It was found that rpm did not properly handle RPM installations when a ...bookworm, bullseye, buster, sid, trixie
CVE-2017-7501It was found that versions of rpm before 4.13.0.2 use temporary files ...bookworm, bullseye, buster, sid, trixie
rsyslogCVE-2015-3243rsyslog uses weak permissions for generating log files, which allows l ...bookworm, bullseye, buster, sid, trixie
rtvCVE-2017-17516scripts/inspect_webbrowser.py in Reddit Terminal Viewer (RTV) 1.19.0 d ...bookworm, bullseye, buster, sid, trixie
ruamel.yamlCVE-2019-20478In ruamel.yaml through 0.16.7, the load method allows remote code exec ...bookworm, bullseye, buster, sid, trixie
ruby-handlebars-assetsTEMP-0000000-345A3Bhandlebars: quoteless attributes in templates can lead to content injectionbookworm, bullseye, buster, sid, trixie
ruby-nokogiriCVE-2022-29181Nokogiri is an open source XML and HTML library for Ruby. Nokogiri pri ...bullseye, buster
ruby-oauthCVE-2016-11086lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby doe ...bookworm, bullseye, buster, sid, trixie
rust-failureCVE-2020-25575An issue was discovered in the failure crate through 0.1.5 for Rust. I ...bookworm, bullseye, buster, sid, trixie
rustcCVE-2021-42574An issue was discovered in the Bidirectional Algorithm in the Unicode ...bullseye, buster
saltCVE-2021-22004An issue was discovered in SaltStack Salt before 3003.3. The salt mini ...bullseye, buster
sambaCVE-2020-27840A flaw was found in samba. Spaces used in a string around a domain nam ...bullseye, buster
CVE-2021-20277A flaw was found in Samba's libldb. Multiple, consecutive leading spac ...bullseye, buster
schismCVE-2021-32419An issue in Schism Tracker v20200412 fixed in v.20200412 allows attack ...bullseye, buster
scikit-learnCVE-2020-13092scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute ...bookworm, bullseye, buster, sid, trixie
scilabCVE-2019-20005An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20006An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20007An issue was discovered in ezXML 0.8.2 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20198An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20199An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20200An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20201An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_ ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20202An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26220The ezxml_toxml function in ezxml 0.8.6 and earlier is vulnerable to O ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26221The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ...bookworm, bullseye, buster, sid, trixie
CVE-2021-26222The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB ...bookworm, bullseye, buster, sid, trixie
CVE-2021-30485An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31229An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31347An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31348An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2021-31598An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
CVE-2022-30045An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezx ...bookworm, bullseye, buster, sid, trixie
screenCVE-2023-24626socket.c in GNU Screen through 4.9.0, when installed setuid or setgid ...bookworm, bullseye, buster
scummvmCVE-2017-17528backends/platform/sdl/posix/posix.cpp in ScummVM 1.9.0 does not valida ...bookworm, bullseye, buster, sid, trixie
seahorseCVE-2008-7320GNOME Seahorse through 3.30 allows physically proximate attackers to r ...bookworm, bullseye, buster, sid, trixie
shadowCVE-2007-5686initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...bookworm, bullseye, buster, sid, trixie
CVE-2013-4235shadow: TOCTOU (time-of-check time-of-use) race condition when copying ...bullseye, buster
CVE-2019-19882shadow 4.8, in certain circumstances affecting at least Gentoo, Arch L ...bookworm, bullseye, buster, sid, trixie
TEMP-0628843-DBAD28more related to CVE-2005-4890bookworm, bullseye, buster, sid, trixie
shadowsocks-libevCVE-2019-5152An exploitable information disclosure vulnerability exists in the netw ...bookworm, bullseye, buster, sid
sharutilsTEMP-0000000-95CBBFuudecode: stack out of bounds read accessbookworm, bullseye, buster, sid, trixie
shibboleth-spCVE-2019-19191Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file ...bookworm, bullseye, buster, sid, trixie
singularCVE-2022-40299In Singular before 4.3.1, a predictable /tmp pathname is used (e.g., b ...bookworm, bullseye, buster, sid, trixie
sipcrackCVE-2017-11654An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 ...bookworm, bullseye, buster, sid, trixie
CVE-2017-11655A memory leak was found in the way SIPcrack 0.2 handled processing of ...bookworm, bullseye, buster, sid, trixie
sleuthkitCVE-2018-11737An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from rel ...bookworm, bullseye, buster, sid, trixie
CVE-2018-11738An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from rel ...bookworm, bullseye, buster, sid, trixie
CVE-2018-11739An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from re ...bookworm, bullseye, buster, sid, trixie
CVE-2018-11740An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from r ...bookworm, bullseye, buster, sid, trixie
CVE-2019-14531An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an out ...bookworm, bullseye, buster, sid, trixie
CVE-2019-14532An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off ...bookworm, bullseye, buster, sid, trixie
CVE-2020-10233In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap- ...bookworm, bullseye, buster, sid, trixie
slic3rCVE-2020-28590An out-of-bounds read vulnerability exists in the Obj File TriangleMes ...bookworm, bullseye, buster, sid
CVE-2020-28591An out-of-bounds read vulnerability exists in the AMF File AMFParserCo ...buster
CVE-2021-44961A memory leakage flaw exists in the class PerimeterGenerator of Slic3r ...bookworm, bullseye, buster, sid
CVE-2021-44962An out-of-bounds read vulnerability exists in the GCode::extrude() fun ...bookworm, bullseye, buster, sid
CVE-2021-45846A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker ...bookworm, bullseye, buster, sid
CVE-2021-45847Several missing input validations in the 3MF parser component of Slic3 ...bookworm, bullseye, buster, sid
slimTEMP-0537604-F35BD7insecure tmp file vulnerability in slimbookworm, bullseye, buster, sid, trixie
slurm-llnlCVE-2019-19727SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd ...buster
snakeyamlCVE-2022-1471SnakeYaml's Constructor() class does not restrict types which can be i ...bookworm, bullseye, buster, sid, trixie
CVE-2022-38752Using snakeYAML to parse untrusted YAML files may be vulnerable to Den ...bullseye, buster
CVE-2022-41854Those using Snakeyaml to parse untrusted YAML files may be vulnerable ...bullseye
sngrepCVE-2023-31981Sngrep v1.6.0 was discovered to contain a stack buffer overflow via th ...bookworm, bullseye, buster
CVE-2023-31982Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the ...bookworm, bullseye, buster
CVE-2023-36192Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the ...bookworm, bullseye, buster
software-propertiesCVE-2020-15709Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20 ...bookworm, bullseye, buster, sid, trixie
sosreportCVE-2014-0246SOSreport stores the md5 hash of the GRUB bootloader password in an ar ...bookworm, bullseye, buster, sid, trixie
sphinxsearchCVE-2019-14511Sphinx Technologies Sphinx 3.1.1 by default has no authentication and ...buster
spice-gtkCVE-2016-3066The spice-gtk widget allows remote authenticated users to obtain infor ...bookworm, bullseye, buster, sid, trixie
spotwebCVE-2021-40968Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ...buster
CVE-2021-40969Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ...buster
CVE-2021-40970Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ...buster
CVE-2021-40971Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ...buster
CVE-2021-40972Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ...buster
CVE-2021-40973Cross-site scripting (XSS) vulnerability in templates/installer/step-0 ...buster
sql-ledgerCVE-2007-0667The redirect function in Form.pm for (1) LedgerSMB before 1.1.5 and (2 ...bookworm, bullseye, buster, sid, trixie
CVE-2007-1329Directory traversal vulnerability in SQL-Ledger, and LedgerSMB before ...bookworm, bullseye, buster, sid, trixie
CVE-2007-1923(1) LedgerSMB and (2) DWS Systems SQL-Ledger implement access control ...bookworm, bullseye, buster, sid, trixie
CVE-2007-5372Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through ...bookworm, bullseye, buster, sid, trixie
CVE-2008-4077The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledg ...bookworm, bullseye, buster, sid, trixie
CVE-2008-4078SQL injection vulnerability in the AR/AP transaction report in (1) Led ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3580Cross-site request forgery (CSRF) vulnerability in am.pl in SQL-Ledger ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3581Multiple cross-site scripting (XSS) vulnerabilities in SQL-Ledger 2.8. ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3582Multiple SQL injection vulnerabilities in the delete subroutine in SQL ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3583Directory traversal vulnerability in the Preferences menu item in SQL- ...bookworm, bullseye, buster, sid, trixie
CVE-2009-3584SQL-Ledger 2.8.24 does not set the secure flag for the session cookie ...bookworm, bullseye, buster, sid, trixie
CVE-2009-4402The default configuration of SQL-Ledger 2.8.24 allows remote attackers ...bookworm, bullseye, buster, sid, trixie
sqliteCVE-2017-13685The dump_callback function in SQLite 3.20.0 allows remote attackers to ...buster
CVE-2021-45346A Memory Leak vulnerability exists in SQLite Project SQLite3 3.35.1 an ...buster
CVE-2022-35737SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-b ...buster
sqlite3CVE-2019-19244sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-sel ...buster
CVE-2020-11656In SQLite through 3.31.1, the ALTER TABLE implementation has a use-aft ...buster
CVE-2021-36690A segmentation fault can occur in the sqlite3.exe command-line compone ...bullseye, buster
CVE-2021-45346A Memory Leak vulnerability exists in SQLite Project SQLite3 3.35.1 an ...bookworm, bullseye, buster, sid, trixie
CVE-2022-35737SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-b ...bullseye, buster
sqliteodbcCVE-2020-12050SQLiteODBC 0.9996, as packaged for certain Linux distributions as 0.99 ...bookworm, bullseye, buster, sid, trixie
squidCVE-2019-12522An issue was discovered in Squid through 4.7. When Squid is run as roo ...bookworm, bullseye, buster, sid, trixie
CVE-2020-8517An issue was discovered in Squid before 4.10. Due to incorrect input v ...buster
CVE-2020-14058An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due ...buster
ssmtpCVE-2004-0423The log_event function in ssmtp 2.50.6 and earlier allows local users ...bookworm, bullseye, sid, trixie
CVE-2008-7258The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.6 ...bookworm, bullseye, sid, trixie
stalinCVE-2015-8697stalin 0.11-5 allows local users to write to arbitrary files.bookworm, bullseye, buster, sid, trixie
strongswanCVE-2018-5389The Internet Key Exchange v1 main mode is vulnerable to offline dictio ...bookworm, bullseye, buster, sid, trixie
sudoCVE-2005-1119Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ...bookworm, bullseye, buster, sid, trixie
CVE-2019-19232In Sudo through 1.8.29, an attacker with access to a Runas ALL sudoer ...buster
CVE-2019-19234In Sudo through 1.8.29, the fact that a user has been blocked (e.g., b ...buster
CVE-2021-23240selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a loc ...buster
CVE-2022-43995Sudo 1.8.0 through 1.9.12, with the crypt() password backend, contains ...bullseye, buster
supervisorCVE-2019-12105In Supervisor through 4.0.2, an unauthenticated user can read log file ...bookworm, bullseye, buster, sid, trixie
surfCVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other prod ...bookworm, bullseye, buster, sid, trixie
svgppCVE-2019-6245An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SV ...bookworm, bullseye, sid, trixie
CVE-2019-6247An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SV ...bookworm, bullseye, sid, trixie
swfmillCVE-2022-36140SWFMill commit 53d7690 was discovered to contain a segmentation violat ...bullseye, buster, sid
CVE-2022-36141SWFMill commit 53d7690 was discovered to contain a segmentation violat ...bullseye, buster, sid
CVE-2022-36142SWFMill commit 53d7690 was discovered to contain a heap-buffer overflo ...bullseye, buster, sid
CVE-2022-36143SWFMill commit 53d7690 was discovered to contain a heap-buffer overflo ...bullseye, buster, sid
CVE-2022-36145SWFMill commit 53d7690 was discovered to contain a segmentation violat ...bullseye, buster, sid
CVE-2022-36146SWFMill commit 53d7690 was discovered to contain a memory allocation i ...bullseye, buster, sid
swi-prologCVE-2017-17524library/www_browser.pl in SWI-Prolog 7.2.3 does not validate strings b ...bookworm, bullseye, buster, sid, trixie
sylpheedCVE-2007-1267Sylpheed 2.2.7 and earlier does not properly use the --status-fd argum ...bookworm, bullseye, buster, sid
CVE-2017-17517libsylph/utils.c in Sylpheed through 3.6 does not validate strings bef ...bookworm, bullseye, buster, sid
systemdCVE-2013-4392systemd, when updating file permissions, allows local users to change ...bookworm, bullseye, buster, sid, trixie
CVE-2019-20386An issue was discovered in button_open in login/logind-button.c in sys ...buster
CVE-2020-13529An exploitable denial-of-service vulnerability exists in Systemd 245. ...bullseye, buster
CVE-2023-31437An issue was discovered in systemd 253. An attacker can modify a seale ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31438An issue was discovered in systemd 253. An attacker can truncate a sea ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31439An issue was discovered in systemd 253. An attacker can modify the con ...bookworm, bullseye, buster, sid, trixie
sysvinitTEMP-0517018-A83CE6sysvinit: no-root option in expert installer exposes locally exploitable security flawbookworm, bullseye, buster, sid, trixie
tarCVE-2005-2541Tar 1.15.1 does not properly warn the user when extracting setuid or s ...bookworm, bullseye, buster, sid, trixie
CVE-2019-9923pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointe ...buster
CVE-2021-20193A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw ...buster
CVE-2022-48303GNU Tar through 1.34 has a one-byte out-of-bounds read that results in ...buster
TEMP-0290435-0B57B5tar's rmt command may have undesired side effectsbookworm, bullseye, buster, sid, trixie
tccCVE-2018-20374An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ...bookworm, bullseye, buster, sid, trixie
CVE-2018-20375An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ...bookworm, bullseye, buster, sid, trixie
CVE-2018-20376An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. ...bookworm, bullseye, buster, sid, trixie
tcl8.6CVE-2021-35331In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow ...bookworm, bullseye, buster, sid, trixie
tcpdumpCVE-2018-16301The command-line argument parser in tcpdump before 4.99.0 has a buffer ...buster
CVE-2018-19519In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_p ...bookworm, bullseye, buster, sid, trixie
CVE-2019-1010220tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. T ...bookworm, bullseye, buster, sid, trixie
CVE-2023-1801The SMB protocol decoder in tcpdump version 4.99.3 can perform an out- ...bookworm, bullseye, buster
tcpreplayCVE-2019-8376An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference ...buster
CVE-2019-8377An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference ...buster
CVE-2019-8381An issue was discovered in Tcpreplay 4.3.1. An invalid memory access o ...buster
CVE-2020-12740tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-rea ...buster
CVE-2020-18976Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial ...buster
CVE-2020-23273Heap-buffer overflow in the randomize_iparp function in edit_packet.c. ...buster
CVE-2020-24265An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap b ...bullseye, buster
CVE-2020-24266An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap b ...bullseye, buster
CVE-2021-45386tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.cbullseye, buster
CVE-2021-45387tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv4() at tree.c ...bullseye, buster
CVE-2022-25484tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet ...bullseye, buster
CVE-2022-27416Tcpreplay v4.4.1 was discovered to contain a double-free via __interce ...bullseye, buster
CVE-2022-27418Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math ...bullseye, buster
CVE-2022-27939tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_ ...bullseye, buster
CVE-2022-27940tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get ...bullseye, buster
CVE-2022-27941tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get ...bullseye, buster
CVE-2022-27942tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_ ...bullseye, buster
CVE-2022-28487Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_che ...bullseye, buster
CVE-2022-37047The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain ...bullseye, buster
CVE-2022-37048The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain ...bullseye, buster
CVE-2022-37049The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a ...bullseye, buster
CVE-2023-4256Within tcpreplay's tcprewrite, a double free vulnerability has been id ...bookworm, bullseye, buster, sid, trixie
CVE-2023-27783An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacke ...bookworm, bullseye, buster
CVE-2023-27784An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause ...bookworm, bullseye, buster
CVE-2023-27785An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker t ...bookworm, bullseye, buster
CVE-2023-27786An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a ...bookworm, bullseye, buster
CVE-2023-27787An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a ...bookworm, bullseye, buster
CVE-2023-27788An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause ...bookworm, bullseye, buster
CVE-2023-27789An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a ...bookworm, bullseye, buster
telegram-desktopCVE-2018-17231Telegram Desktop (aka tdesktop) 1.3.14 might allow attackers to cause ...bookworm, bullseye, buster, sid, trixie
CVE-2018-17613Telegram Desktop (aka tdesktop) 1.3.16 alpha, when "Use proxy" is enab ...bookworm, bullseye, buster, sid, trixie
texlive-baseCVE-2017-17513TeX Live through 20170524 does not validate strings before launching t ...bookworm, bullseye, buster, sid, trixie
texlive-binCVE-2016-10243TeX Live allows remote attackers to execute arbitrary commands by leve ...buster
CVE-2017-17513TeX Live through 20170524 does not validate strings before launching t ...bookworm, bullseye, buster, sid, trixie
CVE-2019-19601OpenDetex 2.8.5 has a Buffer Overflow in TexOpen in detex.l because of ...bookworm, bullseye, buster, sid, trixie
CVE-2022-33047OTFCC v0.10.4 was discovered to contain a heap buffer overflow after f ...bookworm, sid, trixie
CVE-2022-35021OTFCC commit 617837b was discovered to contain a global buffer overflo ...bookworm, sid, trixie
CVE-2022-35022OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35023OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35024OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35025OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35026OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35027OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35028OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35029OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35030OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35031OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35032OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35034OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35035OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35036OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35037OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35038OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35039OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35040OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35041OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35042OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35043OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35044OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35045OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35046OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35047OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35048OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35049OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35050OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35051OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35052OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35053OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35054OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35055OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35056OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35058OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35059OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35060OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35061OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35062OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35063OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35064OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35065OTFCC commit 617837b was discovered to contain a segmentation violatio ...bookworm, sid, trixie
CVE-2022-35066OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35067OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35068OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35069OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35070OTFCC commit 617837b was discovered to contain a heap buffer overflow ...bookworm, sid, trixie
CVE-2022-35447OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35448OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35449OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35450OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35451OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35452OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35453OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35454OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35455OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35456OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35458OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35459OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35460OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35461OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35462OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35463OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35464OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35465OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35466OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35467OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35468OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35469OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35470OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35471OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35472OTFCC v0.10.4 was discovered to contain a global overflow via /release ...bookworm, sid, trixie
CVE-2022-35473OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35474OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35475OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /re ...bookworm, sid, trixie
CVE-2022-35476OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35477OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35478OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35479OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35481OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35482OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35483OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35484OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35485OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
CVE-2022-35486OTFCC v0.10.4 was discovered to contain a segmentation violation via / ...bookworm, sid, trixie
thunarCVE-2018-18398Xfce Thunar 1.6.15, when Xfce 4.12 is used, mishandles the IBus-Unikey ...bookworm, bullseye, buster, sid, trixie
TEMP-0517020-915121thunar: potential exploits via application launchersbookworm, bullseye, buster, sid, trixie
tiffCVE-2017-5563LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read i ...bookworm, bullseye, buster, sid, trixie
CVE-2017-9117In LibTIFF 4.0.7, the program processes BMP images without verifying t ...bookworm, bullseye, buster, sid, trixie
CVE-2017-16232LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow at ...bookworm, bullseye, buster, sid, trixie
CVE-2017-17973In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writ ...bookworm, bullseye, buster, sid, trixie
CVE-2018-10126LibTIFF 4.0.9 has a NULL pointer dereference in the jpeg_fdct_16x16 fu ...bookworm, bullseye, buster, sid, trixie
CVE-2020-35521A flaw was found in libtiff. Due to a memory allocation failure in tif ...buster
CVE-2020-35522In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A craf ...buster
CVE-2022-1056Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers ...bullseye, buster
CVE-2022-1210A vulnerability classified as problematic was found in LibTIFF 4.3.0. ...bookworm, bullseye, buster, sid, trixie
CVE-2022-2519There is a double free or corruption in rotateImage() at tiffcrop.c:88 ...buster
CVE-2022-2520A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion f ...buster
CVE-2022-2521It was found in libtiff 4.4.0rc1 that there is an invalid pointer free ...buster
CVE-2022-2953LibTIFF 4.4.0 has an out-of-bounds read in extractImageSection in tool ...buster
CVE-2023-1916A flaw was found in tiffcrop, a program distributed by the libtiff pac ...bookworm, bullseye, buster, sid, trixie
CVE-2023-3164A heap-buffer-overflow vulnerability was found in LibTIFF, in extractI ...bookworm, bullseye, buster, sid, trixie
CVE-2023-6228An issue was found in the tiffcp utility distributed by the libtiff pa ...bookworm, bullseye, buster, sid, trixie
CVE-2023-30775A vulnerability was found in the libtiff library. This security flaw c ...bullseye, buster
tilesCVE-2023-49735** UNSUPPORTED WHEN ASSIGNED ** The value set as the DefaultLocaleRes ...bookworm, bullseye, buster, sid, trixie
timidityCVE-2017-11549The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remot ...bookworm, bullseye, buster, sid, trixie
tinCVE-2017-17520tools/url_handler.pl in TIN 2.4.1 does not validate strings before lau ...bookworm, bullseye, buster, sid, trixie
tinyexrCVE-2018-12687tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h ...bookworm, bullseye, sid, trixie
tinymuxCVE-2007-1959Unspecified vulnerability in the process_cmdent function in command.cp ...bookworm, bullseye, buster, sid, trixie
tinysshCVE-2023-48795The SSH transport protocol with certain OpenSSH extensions, found in O ...bookworm, bullseye, buster
tinyxml2CVE-2018-11210TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::P ...bookworm, bullseye, buster, sid, trixie
tomcat9CVE-2021-24122When serving resources from a network location using the NTFS file sys ...buster
CVE-2022-34305In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 ...bullseye, buster
torCVE-2006-6893Tor allows remote attackers to discover the IP address of a hidden ser ...bookworm, bullseye, buster, sid, trixie
CVE-2007-1103Tor does not verify a node's uptime and bandwidth advertisements, whic ...bookworm, bullseye, buster, sid, trixie
CVE-2009-0654Tor 0.2.0.28, and probably 0.2.0.34 and earlier, allows remote attacke ...bookworm, bullseye, buster, sid, trixie
CVE-2020-8516The daemon in Tor through 0.4.1.8 and 0.4.2.x through 0.4.2.6 does not ...bookworm, bullseye, buster, sid, trixie
CVE-2020-15572Tor before 0.4.3.6 has an out-of-bounds memory access that allows a re ...buster
tripleaCVE-2018-1000546Triplea version <= 1.9.0.0.10291 contains a XML External Entity (XXE) ...bookworm, bullseye, sid, trixie
trousersCVE-2020-24330An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ...bullseye, buster
CVE-2020-24331An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ...bullseye, buster
CVE-2020-24332An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon ...bullseye, buster
u-bootCVE-2017-3225Das U-Boot is a device bootloader that can read its configuration from ...bookworm, bullseye, buster, sid, trixie
CVE-2017-3226Das U-Boot is a device bootloader that can read its configuration from ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18439DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer over ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18440DENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overf ...bookworm, bullseye, buster, sid, trixie
CVE-2018-1000205U-Boot contains a CWE-20: Improper Input Validation vulnerability in V ...bookworm, bullseye, buster, sid, trixie
uclibcCVE-2017-9728In uClibc 0.9.33.2, there is an out-of-bounds read in the get_subexp f ...bookworm, bullseye, buster, sid, trixie
CVE-2017-9729In uClibc 0.9.33.2, there is stack exhaustion (uncontrolled recursion) ...bookworm, bullseye, buster, sid, trixie
CVE-2021-27419uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-arou ...bookworm, bullseye, buster, sid, trixie
CVE-2021-43523In uClibc and uClibc-ng before 1.0.39, incorrect handling of special c ...bookworm, bullseye, buster, sid, trixie
CVE-2022-29503A memory corruption vulnerability exists in the libpthread linuxthread ...bookworm, bullseye, buster, sid, trixie
CVE-2022-30295uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable D ...bookworm, bullseye, buster, sid, trixie
uglify-jsCVE-2022-37598Prototype pollution vulnerability in function DEFNODE in ast.js in mis ...bookworm, bullseye, buster, sid, trixie, bullseye, buster, sid, trixie
unboundCVE-2019-18934Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec modul ...buster
CVE-2019-25031Unbound before 1.9.5 allows configuration injection in create_unbound_ ...buster
CVE-2019-25032Unbound before 1.9.5 allows an integer overflow in the regional alloca ...buster
CVE-2019-25033Unbound before 1.9.5 allows an integer overflow in the regional alloca ...buster
CVE-2019-25034Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dnam ...buster
CVE-2019-25035Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token ...buster
CVE-2019-25036Unbound before 1.9.5 allows an assertion failure and denial of service ...buster
CVE-2019-25037Unbound before 1.9.5 allows an assertion failure and denial of service ...buster
CVE-2019-25038Unbound before 1.9.5 allows an integer overflow in a size calculation ...buster
CVE-2019-25039Unbound before 1.9.5 allows an integer overflow in a size calculation ...buster
CVE-2019-25040Unbound before 1.9.5 allows an infinite loop via a compressed name in ...buster
CVE-2019-25041Unbound before 1.9.5 allows an assertion failure via a compressed name ...buster
CVE-2019-25042Unbound before 1.9.5 allows an out-of-bounds write via a compressed na ...buster
unrar-freeCVE-2017-11190unrarlib.c in unrar-free 0.0.1, when _DEBUG_LOG mode is enabled, might ...bullseye, buster
unzipCVE-2021-4217A flaw was found in unzip. The vulnerability occurs due to improper ha ...bookworm, bullseye, buster, sid, trixie
upx-uclCVE-2019-14295An Integer overflow in the getElfSections function in p_vmlinx.cpp in ...buster
CVE-2019-14296canUnpack in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause ...buster
CVE-2019-20021A heap-based buffer over-read was discovered in canUnpack in p_mach.cp ...buster
CVE-2019-20051A floating-point exception was discovered in PackLinuxElf::elf_hash in ...buster
CVE-2019-20053An invalid memory address dereference was discovered in the canUnpack ...buster
CVE-2019-20805p_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacki ...buster
CVE-2020-24119A heap buffer overflow read was discovered in upx 4.0.0, because the c ...bullseye, buster
CVE-2020-27787A Segmentaation fault was found in UPX in invert_pt_dynamic() function ...buster
CVE-2020-27788An out-of-bounds read access vulnerability was discovered in UPX in Pa ...buster
CVE-2020-27790A floating point exception issue was discovered in UPX in PackLinuxElf ...buster
CVE-2020-27796A heap-based buffer over-read was discovered in the invert_pt_dynamic ...bullseye, buster
CVE-2020-27797An invalid memory address reference was discovered in the elf_lookup f ...bullseye, buster
CVE-2020-27798An invalid memory address reference was discovered in the adjABS funct ...bullseye, buster
CVE-2020-27799A heap-based buffer over-read was discovered in the acc_ua_get_be32 fu ...bullseye, buster
CVE-2020-27800A heap-based buffer over-read was discovered in the get_le32 function ...bullseye, buster
CVE-2020-27801A heap-based buffer over-read was discovered in the get_le64 function ...bullseye, buster
CVE-2020-27802An floating point exception was discovered in the elf_lookup function ...bullseye, buster
CVE-2021-20285A flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96. This flaw ...bullseye, buster
CVE-2021-30500Null pointer dereference was found in upx PackLinuxElf::canUnpack() in ...bullseye, buster
CVE-2021-30501An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in ...bullseye, buster
CVE-2021-43311A heap-based buffer overflow was discovered in upx, during the generic ...bullseye, buster
CVE-2021-43312A heap-based buffer overflow was discovered in upx, during the variabl ...bullseye, buster
CVE-2021-43313A heap-based buffer overflow was discovered in upx, during the variabl ...bullseye, buster
CVE-2021-43314A heap-based buffer overflows was discovered in upx, during the generi ...bullseye, buster
CVE-2021-43315A heap-based buffer overflows was discovered in upx, during the generi ...bullseye, buster
CVE-2021-43316A heap-based buffer overflow was discovered in upx, during the generic ...bullseye, buster
CVE-2021-43317A heap-based buffer overflows was discovered in upx, during the generi ...bullseye, buster
CVE-2021-46179Reachable Assertion vulnerability in upx before 4.0.0 allows attackers ...bullseye, buster
CVE-2023-23457A Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dyn ...bullseye, buster
util-linuxCVE-2022-0563A flaw was found in the util-linux chfn and chsh utilities when compil ...bookworm, bullseye, buster, sid, trixie
uwsgiCVE-2020-11984Apache HTTP server 2.4.32 to 2.4.44 mod_proxy_uwsgi info disclosure an ...bookworm, bullseye, buster, sid, trixie
CVE-2021-36160A carefully crafted request uri-path can cause mod_proxy_uwsgi to read ...bookworm, bullseye, buster, sid, trixie
v4l2loopbackCVE-2022-2652Depending on the way the format strings in the card label are crafted ...bullseye, buster
varnishCVE-2009-4488Varnish 2.0.6 writes data to a log file without sanitizing non-printab ...bookworm, bullseye, buster, sid
vimCVE-2008-4677autoload/netrw.vim (aka the Netrw Plugin) 109, 131, and other versions ...bookworm, bullseye, buster, sid, trixie
CVE-2017-1000382VIM version 8.0.1187 (and other versions most likely) ignores umask wh ...bookworm, bullseye, buster, sid, trixie
CVE-2021-3236vim 8.2.2348 is affected by null pointer dereference, allows local att ...buster
CVE-2021-3903vim is vulnerable to Heap-based Buffer Overflowbullseye, buster
CVE-2021-3927vim is vulnerable to Heap-based Buffer Overflowbullseye
CVE-2021-3928vim is vulnerable to Use of Uninitialized Variablebullseye
CVE-2021-3968vim is vulnerable to Heap-based Buffer Overflowbullseye
CVE-2021-3973vim is vulnerable to Heap-based Buffer Overflowbullseye, buster
CVE-2021-3974vim is vulnerable to Use After Freebullseye
CVE-2021-3984vim is vulnerable to Heap-based Buffer Overflowbullseye
CVE-2021-4069vim is vulnerable to Use After Freebullseye
CVE-2021-4136vim is vulnerable to Heap-based Buffer Overflowbullseye
CVE-2021-4166vim is vulnerable to Out-of-bounds Readbullseye, buster
CVE-2021-4192vim is vulnerable to Use After Freebullseye
CVE-2021-4193vim is vulnerable to Out-of-bounds Readbullseye
CVE-2022-0156vim is vulnerable to Use After Freebullseye
CVE-2022-0158vim is vulnerable to Heap-based Buffer Overflowbullseye
CVE-2022-0213vim is vulnerable to Heap-based Buffer Overflowbullseye
CVE-2022-0318Heap-based Buffer Overflow in vim/vim prior to 8.2.bullseye
CVE-2022-0319Out-of-bounds Read in vim/vim prior to 8.2.bullseye
CVE-2022-0368Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0393Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0407Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0408Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0413Use After Free in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0443Use After Free in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0554Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ...bullseye
CVE-2022-0629Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-0685Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ...bullseye
CVE-2022-0696NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.442 ...bullseye
CVE-2022-0714Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4 ...bullseye
CVE-2022-0729Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ...bullseye
CVE-2022-0943Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim ...bullseye
CVE-2022-1154Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8 ...bullseye
CVE-2022-1420Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior ...bullseye
CVE-2022-1619Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub r ...bullseye
CVE-2022-1620NULL Pointer Dereference in function vim_regexec_string at regexp.c:27 ...bullseye, buster
CVE-2022-1621Heap buffer overflow in vim_strncpy find_word in GitHub repository vim ...bullseye
CVE-2022-1629Buffer Over-read in function find_next_quote in GitHub repository vim/ ...bullseye, buster
CVE-2022-1674NULL Pointer Dereference in function vim_regexec_string at regexp.c:27 ...bullseye, buster
CVE-2022-1720Buffer Over-read in function grab_file_name in GitHub repository vim/v ...bullseye
CVE-2022-1725NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.495 ...bullseye, buster
CVE-2022-1733Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4 ...bullseye, buster
CVE-2022-1735Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969 ...bullseye, buster
CVE-2022-1769Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974.bullseye, buster
CVE-2022-1771Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975.bullseye, buster
CVE-2022-1796Use After Free in GitHub repository vim/vim prior to 8.2.4979.bullseye, buster
CVE-2022-1851Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-1886Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-1898Use After Free in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-1927Buffer Over-read in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-1968Use After Free in GitHub repository vim/vim prior to 8.2.bullseye
CVE-2022-2042Use After Free in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2124Buffer Over-read in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2125Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2126Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2175Buffer Over-read in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2182Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2183Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2206Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2207Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2208NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.516 ...bullseye, buster
CVE-2022-2210Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2231NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.bullseye, buster
CVE-2022-2257Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.bullseye, buster
CVE-2022-2264Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.bullseye, buster
CVE-2022-2284Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.bullseye, buster
CVE-2022-2285Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9 ...bullseye
CVE-2022-2286Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.bullseye, buster
CVE-2022-2287Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.bullseye, buster
CVE-2022-2289Use After Free in GitHub repository vim/vim prior to 9.0.bullseye, buster
CVE-2022-2343Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye, buster
CVE-2022-2344Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye, buster
CVE-2022-2345Use After Free in GitHub repository vim/vim prior to 9.0.0046.bullseye, buster
CVE-2022-2522Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye, buster
CVE-2022-2571Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye
CVE-2022-2581Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104.bullseye, buster
CVE-2022-2598Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0 ...bullseye
CVE-2022-2816Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212.bullseye, buster
CVE-2022-2817Use After Free in GitHub repository vim/vim prior to 9.0.0213.bullseye
CVE-2022-2819Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye
CVE-2022-2845Improper Validation of Specified Quantity in Input in GitHub repositor ...bullseye, buster
CVE-2022-2849Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye, buster
CVE-2022-2862Use After Free in GitHub repository vim/vim prior to 9.0.0221.bullseye
CVE-2022-2874NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.022 ...bullseye, buster
CVE-2022-2889Use After Free in GitHub repository vim/vim prior to 9.0.0225.bullseye, buster
CVE-2022-2923NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.024 ...bullseye, buster
CVE-2022-2946Use After Free in GitHub repository vim/vim prior to 9.0.0246.bullseye
CVE-2022-2980NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.025 ...bullseye, buster
CVE-2022-2982Use After Free in GitHub repository vim/vim prior to 9.0.0260.bullseye
CVE-2022-3016Use After Free in GitHub repository vim/vim prior to 9.0.0286.bullseye, buster
CVE-2022-3037Use After Free in GitHub repository vim/vim prior to 9.0.0322.bullseye
CVE-2022-3153NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.040 ...bullseye, buster
CVE-2022-3234Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye
CVE-2022-3235Use After Free in GitHub repository vim/vim prior to 9.0.0490.bullseye
CVE-2022-3256Use After Free in GitHub repository vim/vim prior to 9.0.0530.bullseye
CVE-2022-3278NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.055 ...bullseye, buster
CVE-2022-3296Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. ...bullseye, buster
CVE-2022-3297Use After Free in GitHub repository vim/vim prior to 9.0.0579.bullseye, buster
CVE-2022-3352Use After Free in GitHub repository vim/vim prior to 9.0.0614.bullseye
CVE-2022-3491Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye, buster
CVE-2022-3520Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0 ...bullseye, buster
CVE-2022-3591Use After Free in GitHub repository vim/vim prior to 9.0.0789.bullseye, buster
CVE-2022-3705A vulnerability was found in vim and classified as problematic. Affect ...bullseye
CVE-2022-4292Use After Free in GitHub repository vim/vim prior to 9.0.0882.bullseye, buster
CVE-2022-4293Floating Point Comparison with Incorrect Operator in GitHub repository ...bullseye, buster
CVE-2022-47024A null pointer dereference issue was discovered in function gui_x11_cr ...bullseye, buster
CVE-2023-0049Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143.bullseye, buster
CVE-2023-0051Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...bullseye, buster
CVE-2023-0288Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...bullseye, buster
CVE-2023-0433Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...bullseye, buster
CVE-2023-0512Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.bullseye, buster
CVE-2023-1170Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...bullseye, buster
CVE-2023-1264NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.139 ...bookworm, bullseye, buster
CVE-2023-1355NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.140 ...bookworm, bullseye, buster
CVE-2023-2609NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.153 ...bookworm, bullseye, buster
CVE-2023-3896Divide By Zero in vim/vim from9.0.1367-1 to9.0.1367-3bookworm, bullseye
CVE-2023-4733Use After Free in GitHub repository vim/vim prior to 9.0.1840.bookworm, bullseye, buster
CVE-2023-4734Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9 ...bookworm, bullseye, buster
CVE-2023-4735Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847.bookworm, bullseye, buster
CVE-2023-4750Use After Free in GitHub repository vim/vim prior to 9.0.1857.bookworm, bullseye, buster
CVE-2023-4751Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...bookworm, bullseye, buster
CVE-2023-5441NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161a ...bookworm, bullseye, buster
CVE-2023-5535Use After Free in GitHub repository vim/vim prior to v9.0.2010.bookworm, bullseye, buster
CVE-2023-46246Vim is an improved version of the good old UNIX editor Vi. Heap-use-af ...bookworm, bullseye, buster
CVE-2023-48231Vim is an open source command line text editor. When closing a window, ...bookworm, bullseye, buster
CVE-2023-48232Vim is an open source command line text editor. A floating point excep ...bookworm, bullseye, buster
CVE-2023-48233Vim is an open source command line text editor. If the count after the ...bookworm, bullseye, buster
CVE-2023-48234Vim is an open source command line text editor. When getting the count ...bookworm, bullseye, buster
CVE-2023-48235Vim is an open source command line text editor. When parsing relative ...bookworm, bullseye, buster
CVE-2023-48236Vim is an open source command line text editor. When using the z= comm ...bookworm, bullseye, buster
CVE-2023-48237Vim is an open source command line text editor. In affected versions w ...bookworm, bullseye, buster
CVE-2023-48706Vim is a UNIX editor that, prior to version 9.0.2121, has a heap-use-a ...bookworm, bullseye, buster
vinoCVE-2011-1164Vino before 2.99.4 can connect external networks contrary to the state ...bookworm, bullseye, buster, sid, trixie
CVE-2011-1165Vino, possibly before 3.2, does not properly document that it opens po ...bookworm, bullseye, buster, sid, trixie
vorbis-toolsCVE-2017-11331The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 ...bookworm, bullseye, buster, sid, trixie
CVE-2023-43361Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local a ...bookworm, bullseye, buster, sid, trixie
vteCVE-2005-0023gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to sp ...bookworm, bullseye, buster, sid, trixie
w3mCVE-2023-38252An out-of-bounds read flaw was found in w3m, in the Strnew_size functi ...bookworm, bullseye, buster, sid, trixie
CVE-2023-38253An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str fun ...bookworm, bullseye, buster, sid, trixie
TEMP-0532514-9137E0predictable random number generator used in web browsersbookworm, bullseye, buster, sid, trixie
wabtCVE-2022-43280wasm-interp v1.0.29 was discovered to contain an out-of-bounds read vi ...bullseye, buster
CVE-2022-43281wasm-interp v1.0.29 was discovered to contain a heap overflow via the ...bullseye, buster
CVE-2022-43282wasm-interp v1.0.29 was discovered to contain an out-of-bounds read vi ...bullseye, buster
CVE-2022-43283wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write.bullseye, buster
CVE-2023-27115WebAssembly v1.0.29 was discovered to contain a segmentation fault via ...bookworm, bullseye, buster, sid, trixie
CVE-2023-27116WebAssembly v1.0.29 discovered to contain an abort in CWriter::MangleT ...bookworm, bullseye, buster
CVE-2023-27117WebAssembly v1.0.29 was discovered to contain a heap overflow via the ...bookworm, bullseye, buster, sid, trixie
CVE-2023-27119WebAssembly v1.0.29 was discovered to contain a segmentation fault via ...bookworm, bullseye, buster, sid, trixie
CVE-2023-30300An issue in the component hang.wasm of WebAssembly 1.0 causes an infin ...bookworm, bullseye, buster
CVE-2023-31669WebAssembly wat2wasm v1.0.32 allows attackers to cause a libc++abi.dyl ...bookworm, bullseye, buster
CVE-2023-31670An issue in wasm2c 1.0.32, wasm2wat 1.0.32, wasm-decompile 1.0.32, and ...bookworm, bullseye, buster
CVE-2023-46331WebAssembly wabt 1.0.33 has an Out-of-Bound Memory Read in in DataSegm ...bookworm, bullseye, buster, sid, trixie
wavpackCVE-2021-44269An out of bounds read was found in Wavpack 5.4.0 in processing *.WAV f ...bullseye, buster
webkit2gtkCVE-2023-32409The issue was addressed with improved bounds checks. This issue is fix ...buster
wheelCVE-2022-40898An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 ...bullseye, buster
whiteduneCVE-2017-17518swt/motif/browser.c in White_dune (aka whitedune) 0.30.10 does not val ...bookworm, bullseye, buster, sid
whohasCVE-2021-4258A vulnerability was found in whohas. It has been rated as problematic. ...bookworm, bullseye, buster, sid, trixie
wkhtmltopdfCVE-2022-35583wkhtmlTOpdf 0.12.6 is vulnerable to SSRF which allows an attacker to g ...bookworm, bullseye, buster, sid, trixie
wordpressCVE-2006-0733Cross-site scripting (XSS) vulnerability in WordPress 2.0.0 allows rem ...bookworm, bullseye, buster, sid, trixie
CVE-2008-0191WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive ...bookworm, bullseye, buster, sid, trixie
CVE-2011-4898wp-admin/setup-config.php in the installation component in WordPress 3 ...bookworm, bullseye, buster, sid, trixie
CVE-2011-4899wp-admin/setup-config.php in the installation component in WordPress 3 ...bookworm, bullseye, buster, sid, trixie
CVE-2012-0782Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/setup- ...bookworm, bullseye, buster, sid, trixie
CVE-2012-0937wp-admin/setup-config.php in the installation component in WordPress 3 ...bookworm, bullseye, buster, sid, trixie
CVE-2012-5868WordPress 3.4.2 does not invalidate a wordpress_sec session cookie upo ...bookworm, bullseye, buster, sid, trixie
CVE-2013-7233Cross-site request forgery (CSRF) vulnerability in the retrospam compo ...bookworm, bullseye, buster, sid, trixie
CVE-2017-6514WordPress 4.7.2 mishandles listings of post authors, which allows remo ...bookworm, bullseye, buster, sid, trixie
CVE-2018-6389In WordPress through 4.9.2, unauthenticated attackers can cause a deni ...bookworm, bullseye, buster, sid, trixie
wpaCVE-2017-13084Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Sta ...bookworm, bullseye, buster, sid, trixie
CVE-2019-5061An exploitable denial-of-service vulnerability exists in the hostapd 2 ...buster
CVE-2019-5062An exploitable denial-of-service vulnerability exists in the 802.11w s ...bookworm, bullseye, buster, sid, trixie
CVE-2021-30004In wpa_supplicant and hostapd 2.9, forging attacks may occur because A ...bookworm, bullseye, buster, sid, trixie
wpewebkitCVE-2023-32409The issue was addressed with improved bounds checks. This issue is fix ...bookworm, bullseye
xbindkeys-configCVE-2014-9513Insecure use of temporary files in xbindkeys-config 0.1.3-2 allows rem ...bookworm, bullseye, buster
xchatCVE-2011-5129Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote at ...buster
xdg-user-dirsCVE-2017-15131It was found that system umask policy is not being honored when creati ...bookworm, bullseye, buster, sid, trixie
xenCVE-2014-9066Xen 4.4.x and earlier, when using a large number of VCPUs, does not pr ...bookworm, bullseye, buster, sid, trixie
CVE-2021-28689x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests ...bookworm, bullseye, buster, sid, trixie
xerces-cCVE-2012-0880Apache Xerces-C++ allows remote attackers to cause a denial of service ...bookworm, bullseye, buster, sid, trixie
xfigCVE-2009-4228Stack consumption vulnerability in u_bound.c in Xfig 3.2.5b and earlie ...bookworm, bullseye, buster, sid, trixie
xloadimageCVE-2006-4484Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in ...bookworm, bullseye, buster, sid, trixie
xorg-serverCVE-2022-3553A vulnerability, which was classified as problematic, was found in X.o ...bullseye, buster
xpdfCVE-2010-0206xpdf allows remote attackers to cause a denial of service (NULL pointe ...bookworm, bullseye, buster, sid, trixie
CVE-2010-0207In xpdf, the xref table contains an infinite loop which allows remote ...bookworm, bullseye, buster, sid, trixie
CVE-2013-4472The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 a ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7173A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7174An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref a ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7175An issue was discovered in xpdf 4.00. A NULL pointer dereference in re ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7452A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc i ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7453Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7454A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpd ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7455An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xp ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8100The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00 allo ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8101The JPXStream::inverseTransformLevel function in JPXStream.cc in xpdf ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8102The JBIG2MMRDecoder::getBlackCode function in JBIG2Stream.cc in xpdf 4 ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8103The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8104The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows atta ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8105The JPXStream::fillReadBuf function in JPXStream.cc in xpdf 4.00 allow ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8106The JPXStream::readTilePartData function in JPXStream.cc in xpdf 4.00 ...bookworm, bullseye, buster, sid, trixie
CVE-2018-8107The JPXStream::close function in JPXStream.cc in xpdf 4.00 allows atta ...bookworm, bullseye, buster, sid, trixie
CVE-2018-11033The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in ...bookworm, bullseye, buster, sid, trixie
CVE-2018-16368SplashXPath::strokeAdjust in splash/SplashXPath.cc in Xpdf 4.00 allows ...bookworm, bullseye, buster, sid, trixie
CVE-2018-16369XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18454CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote atta ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18455The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote a ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18456The function Object::isName() in Object.h (called from Gfx::opSetFillC ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18457The function DCTStream::readScan in Stream.cc in Xpdf 4.00 allows remo ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18458The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows r ...bookworm, bullseye, buster, sid, trixie
CVE-2018-18459The function DCTStream::getBlock in Stream.cc in Xpdf 4.00 allows remo ...bookworm, bullseye, buster, sid, trixie
xserver-xorg-video-nouveauCVE-2018-3979A remote denial-of-service vulnerability exists in the way the Nouveau ...bookworm, bullseye, buster, sid, trixie
xtermCVE-2006-4447X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtran ...bookworm, bullseye, buster, sid, trixie
CVE-2023-40359xterm before 380 supports ReGIS reporting for character-set names even ...bookworm, bullseye, buster
yabasicCVE-2019-19720Yabasic 2.86.1 has a heap-based buffer overflow in the yylex() functio ...bookworm, bullseye, buster, sid, trixie
CVE-2019-19796Yabasic 2.86.2 has a heap-based buffer overflow in myformat in functio ...bookworm, bullseye, buster, sid, trixie
yaraCVE-2019-19648In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, ...bookworm, bullseye, buster, sid, trixie
yasmCVE-2021-33454An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33455An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33456An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33457An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33458An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33459An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33460An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33461An issue was discovered in yasm version 1.3.0. There is a use-after-fr ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33462An issue was discovered in yasm version 1.3.0. There is a use-after-fr ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33463An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33465An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33466An issue was discovered in yasm version 1.3.0. There is a NULL pointer ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33467An issue was discovered in yasm version 1.3.0. There is a use-after-fr ...bookworm, bullseye, buster, sid, trixie
CVE-2021-33468An issue was discovered in yasm version 1.3.0. There is a use-after-fr ...bookworm, bullseye, buster, sid, trixie
CVE-2023-29580yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-29581yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-29582yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via th ...bookworm, bullseye, buster, sid, trixie
CVE-2023-29583yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via th ...bookworm, bullseye, buster, sid, trixie
CVE-2023-30402YASM v1.3.0 was discovered to contain a heap overflow via the function ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31723yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31724yasm 1.3.0.55.g101bc was discovered to contain a segmentation violatio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31725yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free v ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31972yasm v1.3.0 was discovered to contain a use after free via the functio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31973yasm v1.3.0 was discovered to contain a use after free via the functio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31974yasm v1.3.0 was discovered to contain a use after free via the functio ...bookworm, bullseye, buster, sid, trixie
CVE-2023-31975yasm v1.3.0 was discovered to contain a memory leak via the function y ...bookworm, bullseye, buster, sid, trixie
CVE-2023-37732Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm ...bookworm, bullseye, buster, sid, trixie
CVE-2023-49554Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote at ...bookworm, bullseye, buster, sid, trixie
CVE-2023-49555An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a de ...bookworm, bullseye, buster, sid, trixie
CVE-2023-49556Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote a ...bookworm, bullseye, buster, sid, trixie
CVE-2023-49557An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a de ...bookworm, bullseye, buster, sid, trixie
CVE-2023-49558An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a de ...bookworm, bullseye, buster, sid, trixie
CVE-2023-51258A memory leak issue discovered in YASM v.1.3.0 allows a local attacker ...bookworm, bullseye, buster, sid, trixie
yawsCVE-2009-4495Yaws 1.85 writes data to a log file without sanitizing non-printable c ...bookworm, bullseye, buster, sid, trixie
yumCVE-2013-1910yum does not properly handle bad metadata, which allows an attacker to ...buster
zabbixCVE-2023-29453Templates do not properly consider backticks (`) as Javascript string ...bookworm, bullseye, buster
zangbandCVE-2021-40589ZAngband zangband-data 2.7.5 is affected by an integer underflow vulne ...bookworm, bullseye, buster, sid, trixie
zeekCVE-2021-41732An issue was discovered in zeek version 4.1.0. There is a HTTP request ...sid
zimCVE-2020-10870Zim through 0.72.1 creates temporary directories with predictable name ...buster
zipCVE-2018-13410Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, a ...bookworm, bullseye, buster, sid, trixie
zoneminderCVE-2019-7350Session fixation exists in ZoneMinder through 1.32.3, as an attacker c ...bookworm, bullseye, sid
CVE-2019-7351Log Injection exists in ZoneMinder through 1.32.3, as an attacker can ...bookworm, bullseye, sid
CVE-2019-8423ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/view ...bookworm, bullseye, sid
CVE-2019-8425includes/database.php in ZoneMinder before 1.32.3 has XSS in the const ...bookworm, bullseye, sid
CVE-2019-8427daemonControl in includes/functions.php in ZoneMinder before 1.32.3 al ...bookworm, bullseye, sid
CVE-2019-8429ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php fil ...bookworm, bullseye, sid
CVE-2022-1726Bootstrap Tables XSS vulnerability with Table Export plug-in when expo ...bookworm, bullseye, sid
CVE-2022-29806ZoneMinder before 1.36.13 allows remote code execution via an invalid ...bullseye
CVE-2022-30768A Stored Cross Site Scripting (XSS) issue in ZoneMinder 1.36.12 allows ...bookworm, bullseye, sid
CVE-2022-30769Session fixation exists in ZoneMinder through 1.36.12 as an attacker c ...bookworm, bullseye, sid
CVE-2022-39285ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2022-39289ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2022-39290ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2022-39291ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-25825ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26032ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26034ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26035ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26036ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26037ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26038ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
CVE-2023-26039ZoneMinder is a free, open source Closed-circuit television software a ...bullseye
zophCVE-2014-9235Multiple SQL injection vulnerabilities in Zoph (aka Zoph Organizes Pho ...bookworm, bullseye, buster, sid, trixie
CVE-2014-9236Cross-site scripting (XSS) vulnerability in php/edit_photos.php in Zop ...bookworm, bullseye, buster, sid, trixie
zziplibCVE-2018-6542In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trail ...bookworm, bullseye, buster, sid, trixie
CVE-2018-7727An issue was discovered in ZZIPlib 0.13.68. There is a memory leak tri ...bookworm, bullseye, buster, sid, trixie
zziplibCVE-2018-17828Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers ...bookworm, bullseye, buster, sid, trixie

Search for package or bug name: Reporting problems