Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
debian dpkg 1.9.21 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2004-2768
dpkg 1.9.21 does not properly reset the metadata of a file during replacement of the file in a package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid file, (2) setgid file, or (3) device, a related issue to CVE-2010-20...
Debian Dpkg 1.9.21
5.8
CVSSv2
CVE-2010-0396
Directory traversal vulnerability in the dpkg-source component in dpkg prior to 1.14.29 allows remote malicious users to modify arbitrary files via a crafted Debian source archive.
Debian Dpkg
Debian Dpkg 1.14.27
Debian Dpkg 1.14.19
Debian Dpkg 1.14.18
Debian Dpkg 1.14.16.1
Debian Dpkg 1.14.16
Debian Dpkg 1.14.9
Debian Dpkg 1.14.8
Debian Dpkg 1.14.7
Debian Dpkg 1.14.0
Debian Dpkg 1.13.25
Debian Dpkg 1.13.18
Debian Dpkg 1.13.17
Debian Dpkg 1.13.11
Debian Dpkg 1.13.10
Debian Dpkg 1.13.9
Debian Dpkg 1.13.2
Debian Dpkg 1.13.1
Debian Dpkg 1.10.23
Debian Dpkg 1.10.22
Debian Dpkg 1.10.15
Debian Dpkg 1.10.14
6.8
CVSSv2
CVE-2011-0402
dpkg-source in dpkg prior to 1.14.31 and 1.15.x allows user-assisted remote malicious users to modify arbitrary files via a symlink attack on unspecified files in the .pc directory.
Debian Dpkg 1.14.16.3
Debian Dpkg 1.14.16.2
Debian Dpkg 1.14.21
Debian Dpkg 1.14.20
Debian Dpkg 1.13.9
Debian Dpkg 1.13.8
Debian Dpkg 1.13.15
Debian Dpkg 1.13.18
Debian Dpkg 1.13.24
Debian Dpkg 1.13.25
Debian Dpkg 1.14.6
Debian Dpkg 1.14.7
Debian Dpkg 1.14.8
Debian Dpkg 1.13.5
Debian Dpkg 1.13.4
Debian Dpkg 1.10.26
Debian Dpkg 1.10.25
Debian Dpkg 1.14.15
Debian Dpkg 1.14.14
Debian Dpkg 1.14.17
Debian Dpkg 1.14.16.6
Debian Dpkg 1.14.26
6.8
CVSSv2
CVE-2010-1679
Directory traversal vulnerability in dpkg-source in dpkg prior to 1.14.31 and 1.15.x allows user-assisted remote malicious users to modify arbitrary files via directory traversal sequences in a patch for a source-format 3.0 package.
Debian Dpkg 1.14.16
Debian Dpkg 1.14.15
Debian Dpkg 1.14.18
Debian Dpkg 1.14.17
Debian Dpkg 1.14.16.6
Debian Dpkg 1.14.26
Debian Dpkg 1.14.23
Debian Dpkg 1.13.12
Debian Dpkg 1.13.11.1
Debian Dpkg 1.13.19
Debian Dpkg 1.13.22
Debian Dpkg 1.14.2
Debian Dpkg 1.14.3
Debian Dpkg 1.14.10
Debian Dpkg 1.14.11
Debian Dpkg 1.13.1
Debian Dpkg 1.13.0
Debian Dpkg 1.14.14
Debian Dpkg 1.14.13
Debian Dpkg 1.14.16.5
Debian Dpkg 1.14.22
Debian Dpkg 1.14.24
5
CVSSv2
CVE-2014-0471
Directory traversal vulnerability in the unpacking functionality in dpkg prior to 1.15.9, 1.16.x prior to 1.16.13, and 1.17.x prior to 1.17.8 allows remote malicious users to write arbitrary files via a crafted source package, related to "C-style filename quoting."
Canonical Ubuntu Linux 10.04
Debian Dpkg 1.10.11
Debian Dpkg 1.10.13
Debian Dpkg 1.10.19
Debian Dpkg 1.10.20
Debian Dpkg 1.10.25
Debian Dpkg 1.10.27
Debian Dpkg 1.10.8
Debian Dpkg 1.13.0
Debian Dpkg 1.13.14
Debian Dpkg 1.13.16
Debian Dpkg 1.13.20
Debian Dpkg 1.13.22
Debian Dpkg 1.13.6
Debian Dpkg 1.13.8
Debian Dpkg 1.14.13
Debian Dpkg 1.14.15
Debian Dpkg 1.14.16.4
Debian Dpkg 1.14.16.6
Debian Dpkg 1.14.22
Debian Dpkg 1.14.24
Debian Dpkg 1.14.30
7.5
CVSSv2
CVE-2017-8283
dpkg-source in dpkg 1.3.0 up to and including 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote malicious users to conduct directory traversal attacks via a crafted Debian source package, as...
Debian Dpkg 1.18.19
Debian Dpkg 1.18.17
Debian Dpkg 1.18.12
Debian Dpkg 1.18.10
Debian Dpkg 1.18.3
Debian Dpkg 1.18.1
Debian Dpkg 1.17.18
Debian Dpkg 1.17.16
Debian Dpkg 1.17.11
Debian Dpkg 1.17.9
Debian Dpkg 1.17.2
Debian Dpkg 1.17.0
Debian Dpkg 1.16.4.3
Debian Dpkg 1.16.4.1
Debian Dpkg 1.16.1.1
Debian Dpkg 1.16.0.3
Debian Dpkg 1.15.8.7
Debian Dpkg 1.15.8.5
Debian Dpkg 1.15.7.1
Debian Dpkg 1.15.6.1
Debian Dpkg 1.15.5.3
Debian Dpkg 1.15.5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started