debian

10,149 tracked vulnerabilities.

CVE-2021-31806 MEDIUM
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via HTTP Range Request Processing
May 27, 2021
CVSS 6.5
EPSS 0.96
CVE-2021-28662 MEDIUM
Squid 4.0.1-4.14 and 5.0-5.0.5 - Denial of Service via HTTP Response Header
May 27, 2021
CVSS 6.5
EPSS 0.72
CVE-2021-28652 MEDIUM
Squid < 4.15 and 5.x < 5.0.6 - Authenticated Denial of Service via Cache Manager API Short Query String
May 27, 2021
CVSS 4.9
EPSS 0.04
CVE-2021-28651 HIGH
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via URN Scheme Memory Leak
May 27, 2021
CVSS 7.5
EPSS 0.07
CVE-2021-22885 HIGH
Action Pack >= 2.0.0 - Info Disclosure
May 27, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-3561 HIGH
fig2dev 3.2.8a - Out-of-Bounds Write in read_objects()
May 26, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-3527 MEDIUM
QEMU < 6.0.0 - Denial of Service via USB Redirector Device Stack Allocation
May 26, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-25217 HIGH
ISC DHCP <4.1-ESV-R16, 4.4.0-4.4.2 - Info Disclosure
May 26, 2021
CVSS 7.4
EPSS 0.06
CVE-2021-20196 MEDIUM
QEMU - Denial of Service via Floppy Disk Emulator NULL Pointer Dereference
May 26, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-33038 HIGH
HyperKitty <1.3.4 - Info Disclosure
May 26, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-22543 HIGH
Linux Kernel - Use-After-Free via KVM VM_IO|VM_PFNMAP Handling
May 26, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-33574 CRITICAL
GNU C Library <2.32-2.33 - Use After Free
May 25, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-31439 HIGH
Synology DiskStation Manager 6.2-6.2.3-25426-3 - Unauthenticated Heap-based Buffer Overflow in Netatalk DSI Processing
May 21, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-33477 HIGH
rxvt-unicode <9.22, rxvt <2.7.10, mrxvt <0.5.4, Eterm <0.9.7 - RCE
May 20, 2021
CVSS 8.8
EPSS 0.04
CVE-2021-3426 MEDIUM
Python < 3.8.9, < 3.9.3, < 3.10.0a7 - Information Disclosure via pydoc Server
May 20, 2021
CVSS 5.7
EPSS 0.02
CVE-2021-3517 HIGH
libxml2 < 2.9.11 - Out-of-bounds Read in XML Entity Encoding
May 19, 2021
CVSS 8.6
EPSS 0.08
CVE-2021-3518 HIGH
libxml2 < 2.9.11 - Use-After-Free
May 18, 2021
CVSS 8.8
EPSS 0.04
CVE-2021-3524 MEDIUM
Red Hat Ceph Storage RadosGW <14.2.21 - HTTP Header Injection
May 17, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-3483 HIGH
Linux Kernel < 5.12 - Use-After-Free in Nosy Driver
May 17, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-33034 HIGH
Linux kernel <5.12.4 - Use After Free
May 14, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-3537 MEDIUM
libxml2 < 2.9.11 - NULL Pointer Dereference via XML Mixed Content Parsing
May 14, 2021
CVSS 5.9
EPSS 0.04
CVE-2021-32921 MEDIUM
prosody < 0.11.9 - Timing Attack via Non-Constant-Time String Comparison
May 13, 2021
CVSS 5.9
EPSS 0.02
CVE-2021-32920 HIGH
prosody < 0.11.9 - Unauthenticated Denial of Service via SSL/TLS Renegotiation Flood
May 13, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-32919 HIGH
prosody 0.10.0-0.11.8 - Improper Certificate Validation in mod_dialback
May 13, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-32918 HIGH
prosody < 0.11.9 - Unauthenticated Denial of Service via Memory Exhaustion
May 13, 2021
CVSS 7.5
EPSS 0.02