Known Vulnerabilities for products from Debian

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Debian".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-42326 Redmine before 4.1.5 and 4.2.x before 4.2.3 may disclose the names of users on activity views due to an insufficient access f... Not Provided 2021-10-12 2021-10-18
CVE-2021-41583 vpn-user-portal (aka eduVPN or Let's Connect!) before 2.3.14, as packaged for Debian 10, Debian 11, and Fedora, allows remote... 8.8 - HIGH 2021-09-24 2021-10-05
CVE-2021-41133 Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.1... 7.8 - HIGH 2021-10-08 2021-10-15
CVE-2021-41079 Apache Tomcat 8.5.0 to 8.5.63, 9.0.0-M1 to 9.0.43 and 10.0.0-M1 to 10.0.2 did not properly validate incoming TLS packets. Whe... 7.5 - HIGH 2021-09-16 2021-10-15
CVE-2021-41073 loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_O... 7.8 - HIGH 2021-09-19 2021-10-14
CVE-2021-40690 All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secur... 7.5 - HIGH 2021-09-19 2021-10-01
CVE-2021-40516 WeeChat before 3.2.1 allows remote attackers to cause a denial of service (crash) via a crafted WebSocket frame that trigger ... 7.5 - HIGH 2021-09-05 2021-10-07
CVE-2021-40490 A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel t... 7 - HIGH 2021-09-03 2021-10-16
CVE-2021-40438 A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This is... 9 - CRITICAL 2021-09-16 2021-10-10
CVE-2021-40346 An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smug... 7.5 - HIGH 2021-09-08 2021-09-17
CVE-2021-40153 squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsqu... 8.1 - HIGH 2021-08-27 2021-10-07
CVE-2021-39371 An XML external entity (XXE) injection in PyWPS before 4.4.5 allows an attacker to view files on the application server files... 7.5 - HIGH 2021-08-23 2021-09-14
CVE-2021-39365 In GNOME grilo though 0.3.13, grl-net-wc.c does not enable TLS certificate verification on the SoupSessionAsync objects it cr... 5.9 - MEDIUM 2021-08-22 2021-09-22
CVE-2021-39263 A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in ntfs_get_attribute_value... 7.8 - HIGH 2021-09-07 2021-09-21
CVE-2021-39262 A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22. 7.8 - HIGH 2021-09-07 2021-09-21
CVE-2021-39261 A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G < 2021.8.22. 7.8 - HIGH 2021-09-07 2021-09-21
CVE-2021-39260 A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G < 2021.8.22. 7.8 - HIGH 2021-09-07 2021-09-21
CVE-2021-39259 A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_n... 7.8 - HIGH 2021-09-07 2021-09-21
CVE-2021-39258 A crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find and ntfs_external_attr_find in NTFS-3G < 2021.8.22. 7.8 - HIGH 2021-09-07 2021-09-21
CVE-2021-39257 A crafted NTFS image with an unallocated bitmap can lead to a endless recursive function call chain (starting from ntfs_attr_... 5.5 - MEDIUM 2021-09-07 2021-09-21

Known software with vulnerabilities from Debian

Type Vendor Product Version
ApplicationDebianAdvanced Package Tool0.7.0
DebianDebian Linux-

Popular searches for "Debian"

Debian -- The Universal Operating System

Debian -- The Universal Operating System Debian Free Software. It is maintained and updated through the work of many users who volunteer their time and effort. Debian Operating system Free software Website Linux distribution Email Mailing list Source-available software World Wide Web Debian version history Contact page Debian Conference Download Screenshot Archive file Adobe Contribute Blog Swiss Army knife Software Folksonomy

Debian CentOS Gentoo Linux OpenSUSE Slackware Fedora (operating system) Ubuntu Oregon State University Backporting Free and open-source software Apache HTTP Server Open-Source Lab (book) Apache License Deb (file format) The Apache Software Foundation Donationware Free software Mirrors (Sandra album) Exponentiation Donation