debian debian linux 9.0 vulnerabilities and exploits

(subscribe to this query)

5.5

CVSSv3

An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yam_siocdevprivate in drivers/net/hamradio/yam.c....

Linux Linux Kernel Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0

6.5

CVSSv3

Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver...

Linux Linux Kernel Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0

5.5

CVSSv3

A vulnerability was found in Linux Kernel where in the spk_ttyio_receive_buf2() function, it would dereference spk_ttyio_synth without checking whether it is NULL or not, and may lead to a NULL-ptr deref crash....

Linux Linux Kernel Debian Debian Linux 9.0 Debian Debian Linux 10.01 Github repository available

3.3

CVSSv3

drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function....

Linux Linux Kernel Debian Debian Linux 9.0 Debian Debian Linux 10.0

7.8

CVSSv3

The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation....

Debian X11-common Debian Debian Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0

5.9

CVSSv3

In certain cases, Irssi before 1.0.5 may fail to verify that a Safe channel ID is long enough, causing reads beyond the end of the string....

Irssi Irssi Debian Debian Linux 7.0 Debian Debian Linux 8.0 Debian Debian Linux 9.0

6.5

CVSSv3

path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path....

Python Pillow Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.01 Github repository available

7.5

CVSSv3

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the UMTS MAC dissector could crash. This was addressed in epan/dissectors/packet-umts_mac.c by rejecting a certain reserved value....

Wireshark Wireshark Debian Debian Linux 7.0 Debian Debian Linux 8.0 Debian Debian Linux 9.0

8.8

CVSSv3

Transmission through 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in...

Transmissionbt Transmission Debian Debian Linux 7.0 Debian Debian Linux 8.0 Debian Debian Linux 9.01 EDB exploit available

9.8

CVSSv3

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations....

Drupal Drupal Debian Debian Linux 9.0 Debian Debian Linux 8.0 Debian Debian Linux 7.03 EDB exploits available1 Metasploit module available70 Github repositories available16 Articles available

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook