Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

debian debian linux 8.0 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2018-5735
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other...
Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
6.5
CVSSv2
CVE-2013-7325
An issue exists in uscan in devscripts before 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball....
Debian DevscriptsDebian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Debian Debian Linux 11.0
2.1
CVSSv2
CVE-2017-8924
The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB...
Linux Linux KernelDebian Debian Linux 8.0Debian Debian Linux 9.0
2.1
CVSSv2
CVE-2017-8925
The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling....
Linux Linux KernelDebian Debian Linux 8.0Debian Debian Linux 9.0
4
CVSSv2
CVE-2017-15864
In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password....
Otrs OtrsDebian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0
5
CVSSv2
CVE-2018-7335
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small....
Wireshark WiresharkDebian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2017-13687
The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print()....
Tcpdump TcpdumpDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
7.5
CVSSv2
CVE-2017-13024
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print()....
Tcpdump TcpdumpDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
6.4
CVSSv2
CVE-2011-1408
ikiwiki before 3.20110608 allows remote attackers to hijack root's tty and run symlink attacks....
Ikiwiki IkiwikiDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
4
CVSSv2
CVE-2017-14604
GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file's Exec field launches a malicious "sh -c" command. In other...
Gnome NautilusDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
unprivilegedCVE-2016-8138CVE-2016-8155local file inclusionCVE-2016-8111CVE-2021-27730XML external entityCVE-2021-21973CVE-2021-21972