debian debian linux 8.0 vulnerabilities and exploits

(subscribe to this query)

7.5

CVSSv3

The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other...

Debian Debian Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0

7.8

CVSSv3

The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890....

Linux Linux Kernel Debian Debian Linux 8.0 Debian Debian Linux 9.01 Github repository available

NA

Race condition in the prepare_binprm function in fs/exec.c in the Linux kernel before 3.19.6 allows local users to gain privileges by executing a setuid program at a time instant when a chown to root is in progress, and the ownership is changed but the setuid bit is not yet...

Linux Linux Kernel Debian Debian Linux 7.0 Debian Debian Linux 8.01 Github repository available

9.8

CVSSv3

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to...

Linux Linux Kernel Debian Debian Linux 8.0 Debian Debian Linux 9.01 Github repository available

7.8

CVSSv3

The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel through 4.11.1 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a failed SIOCGIFADDR ioctl call for an IPX interface....

Linux Linux Kernel Debian Debian Linux 8.0 Debian Debian Linux 9.02 Github repositories available

5.5

CVSSv3

The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling....

Linux Linux Kernel Debian Debian Linux 8.0 Debian Debian Linux 9.02 Github repositories available

7.5

CVSSv3

Memory leak in the virtio_gpu_object_create function in drivers/gpu/drm/virtio/virtgpu_object.c in the Linux kernel through 4.11.8 allows attackers to cause a denial of service (memory consumption) by triggering object-initialization failures....

Linux Linux Kernel Debian Debian Linux 8.0 Debian Debian Linux 9.02 Github repositories available

NA

The Debian build procedure for the smokeping package in wheezy before 2.6.8-2+deb7u1 and jessie before 2.6.9-1+deb8u1 does not properly configure the way Apache httpd passes arguments to smokeping_cgi, which allows remote attackers to execute arbitrary code via crafted CGI...

Debian Debian Linux 8.0 Debian Debian Linux 7.0

7.8

CVSSv3

The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation....

Debian X11-common Debian Debian Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0

5.4

CVSSv3

wp-includes/functions.php in WordPress before 4.9.1 does not require the unfiltered_html capability for upload of .js files, which might allow remote attackers to conduct XSS attacks via a crafted file....

Wordpress Wordpress Debian Debian Linux 7.0 Debian Debian Linux 9.0 Debian Debian Linux 8.02 Github repositories available

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook