debian

10,149 tracked vulnerabilities.

CVE-2021-31873 CRITICAL
klibc < 2.0.9 - Integer Overflow to Heap Buffer Overflow in malloc
Apr 30, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-31872 CRITICAL
klibc < 2.0.9 - Integer Overflow in cpio Command
Apr 30, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-31871 HIGH
klibc < 2.0.9 - Integer Overflow in cpio Command
Apr 30, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-31870 CRITICAL
klibc < 2.0.9 - Integer Overflow to Heap Buffer Overflow in calloc()
Apr 30, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-21417 HIGH
fluidsynth < 2.1.8 - Use-After-Free via Invalid SoundFont File
Apr 29, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-20228 HIGH
Ansible Engine 2.9.18 - Exposure of Sensitive Information via Basic.py Module Sub-Option Feature
Apr 29, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-25216 HIGH
BIND GSS-TSIG - Denial of Service or Code Execution via SPNEGO Parsing
Apr 29, 2021
CVSS 8.1
EPSS 0.82
CVE-2021-25215 HIGH
BIND <9.11.30-9.17.12 - DoS
Apr 29, 2021
CVSS 7.5
EPSS 0.11
CVE-2021-25214 MEDIUM
BIND 9.8.5-9.8.8, 9.9.3-9.11.29, 9.12.0-9.16.13, 9.17.0-9.17.11 - DoS via Malformed IXFR
Apr 29, 2021
CVSS 6.5
EPSS 0.06
CVE-2021-31866 MEDIUM
Redmine < 4.0.9 and 4.1.x < 4.1.3 - Timing Attack via String Comparison in SysController and MailHandlerController
Apr 28, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-31865 MEDIUM
Redmine <4.0.9, <4.1.x-4.1.3, <4.2.x-4.2.1 - Auth Bypass
Apr 28, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-31864 MEDIUM
Redmine <4.0.9, <4.1.x-4.1.3, <4.2.x-4.2.1 - Auth Bypass
Apr 28, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-31863 HIGH
Redmine < 4.0.9, 4.1.x < 4.1.3, 4.2.x < 4.2.1 - Arbitrary File Read via Git Repository Integration
Apr 28, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-29472 HIGH
Composer < 1.10.22 - Remote Code Execution via Mercurial Repository URL
Apr 27, 2021
CVSS 8.8
EPSS 0.05
CVE-2021-29473 LOW
exiv2 < 0.27.4 - Out-of-bounds Read via Crafted Image File
Apr 26, 2021
CVSS 2.5
EPSS 0.02
CVE-2021-21226 CRITICAL
Google Chrome <90.0.4430.85 - Use After Free
Apr 26, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-21225 HIGH
Google Chrome <90.0.4430.85 - Memory Corruption
Apr 26, 2021
CVSS 8.8
EPSS 0.07
CVE-2021-21224 HIGH KEV
Google Chrome < 90.0.4430.85 - Remote Code Execution via V8 Type Confusion
Apr 26, 2021
CVSS 8.8
EPSS 0.58
CVE-2021-21223 CRITICAL
Google Chrome <90.0.4430.85 - Sandbox Escape
Apr 26, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-21222 MEDIUM
Google Chrome <90.0.4430.85 - Buffer Overflow
Apr 26, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-21221 MEDIUM
Google Chrome <90.0.4430.72 - Info Disclosure
Apr 26, 2021
CVSS 6.5
EPSS 0.02
CVE-2021-21219 MEDIUM
Google Chrome <90.0.4430.72 - Info Disclosure
Apr 26, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-21218 MEDIUM
Google Chrome <90.0.4430.72 - Info Disclosure
Apr 26, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-21217 MEDIUM
Google Chrome <90.0.4430.72 - Info Disclosure
Apr 26, 2021
CVSS 5.5
EPSS 0.02
CVE-2021-21216 MEDIUM
Google Chrome < 90.0.4430.72 - Authentication Bypass by Spoofing via Autofill Security UI
Apr 26, 2021
CVSS 6.5
EPSS 0.22