debian

10,149 tracked vulnerabilities.

CVE-2026-14355 MEDIUM
ext/openssl: Memory corruption in openssl_encrypt with AES-WRAP-PAD
Jul 03, 2026
CVSS 5.6
EPSS 0.00
CVE-2026-56968 LOW
Gnu Sasl < 2.2.4 - Numeric Range Comparison Without Minimum Check
Jun 23, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-11853 MEDIUM
Debusine >=0.12.0 <0.14.9 - Arbitrary Symbolic Link Creation via Mergeuploads Task
Jun 10, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-11852 MEDIUM
Debusine 0.2.0-0.14.5 - Unauthenticated Artifact Relationship Manipulation
Jun 10, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-49975 HIGH
Apache HTTP Server: mod_http2 denial of service
Jun 08, 2026
CVSS 7.5
EPSS 0.11
CVE-2026-46333 HIGH
ptrace: slightly saner 'get_dumpable()' logic
May 15, 2026
CVSS 7.1
EPSS 0.01
CVE-2026-31431 HIGH KEVNUCLEI
crypto: algif_aead - Revert to operating out-of-place
Apr 22, 2026
CVSS 7.8
EPSS 0.96
CVE-2026-41082 HIGH
OCaml opam < 2.5.1 - Path Traversal via .install Field
Apr 16, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-34757 MEDIUM
libpng 1.0.9-1.6.56 Chunk Setters - Use-After-Free
Apr 09, 2026
CVSS 5.1
EPSS 0.00
CVE-2026-4775 HIGH
Libtiff: libtiff: arbitrary code execution or denial of service via signed integer overflow in tiff file processing
Mar 24, 2026
CVSS 7.8
EPSS 0.01
CVE-2026-1940 MEDIUM
Gstreamer: incomplete fix of cve-2026-1940
Mar 23, 2026
CVSS 5.1
EPSS 0.00
CVE-2026-3497 HIGH
OpenSSH GSSAPI Patches in Ubuntu - Use of Uninitialized Resource via Unexpected GSSAPI Message
Mar 12, 2026
CVSS 7.5
EPSS 0.02
CVE-2026-2219 HIGH
dpkg 1.21.18-1.23.6 - Denial of Service via Zstd Decompression Infinite Loop
Mar 07, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-25506 HIGH
munge 0.5-0.5.17 - Buffer Overflow via Oversized Address Length Field
Feb 10, 2026
CVSS 7.7
EPSS 0.00
CVE-2026-25061 HIGH
tcpflow <= 1.61 - Out-of-bounds Write in 802.11 Management Frame TIM Element Parsing
Jan 29, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-24765 HIGH
PHPUnit < 8.5.52 - Remote Code Execution via Unsafe Deserialization in PHPT Coverage Cleanup
Jan 27, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-24061 CRITICAL KEVNUCLEI
GNU Inetutils Telnet Authentication Bypass Exploit CVE-2026-24061
Jan 21, 2026
CVSS 9.8
EPSS 0.99
CVE-2026-23490 HIGH
pyasn1 < 0.6.2 - Denial of Service via Malformed RELATIVE-OID
Jan 16, 2026
CVSS 7.5
EPSS 0.01
CVE-2025-63261 HIGH
AWStats 8.0 - OS Command Injection via Open Function
Mar 20, 2026
CVSS 7.8
EPSS 0.01
CVE-2025-64098 MEDIUM
Fast DDS < 2.6.11 - Denial of Service via Tampered DATA Submessage in SPDP Packet
Feb 03, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-62799 CRITICAL
Fast DDS <3.4.1-2.6.11 - Buffer Overflow
Feb 03, 2026
CVSS 9.8
EPSS 0.00
CVE-2025-62603 HIGH
Fast DDS < 2.6.11 - Out-of-bounds Read in ParticipantGenericMessage CDR Parser
Feb 03, 2026
CVSS 7.5
EPSS 0.01
CVE-2025-62602 HIGH
Fast DDS <3.4.1, <3.3.1, <2.6.11 - Buffer Overflow
Feb 03, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-62600 HIGH
eProsima Fast DDS <2.6.11, 2.7.0-2.14.5, 3.0.0-3.2.3, 3.3.0, 3.4.0-3.4.1 - Remote DoS via SPDP Packet Tampering
Feb 03, 2026
CVSS 8.6
EPSS 0.00
CVE-2025-62599 HIGH
eProsima Fast DDS < 2.6.11, 2.7.0-2.14.5, 3.0.0-3.2.3, 3.3.0, 3.4.0 - Remote DoS via SPDP Packet Tampering
Feb 03, 2026
CVSS 8.6
EPSS 0.00