debian

10,129 tracked vulnerabilities.

CVE-2022-28042 HIGH
stb_image.h v2.27 - Use-After-Free in stbi__jpeg_huff_decode
Apr 15, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-28041 MEDIUM
stb_image.h v2.27 - Denial of Service via Integer Overflow in stbi__jpeg_decode_block_prog_dc
Apr 15, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-26651 CRITICAL
Asterisk <19.x-16.8-cert13 - SQL Injection
Apr 15, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-26499 CRITICAL
Asterisk 16.15.0-19.x - Server-Side Request Forgery via STIR/SHAKEN Identity Header
Apr 15, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-26498 HIGH
Asterisk < 16.25.1 - Uncontrolled Resource Consumption via STIR/SHAKEN File Download
Apr 15, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-1328 MEDIUM
mutt 0.94.13-2.2.3 - Buffer Overflow in uudecoder
Apr 14, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-27456 HIGH
MariaDB 10.3.0-10.3.34 - Use-After-Free in VDec::VDec
Apr 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27452 HIGH
MariaDB Server <10.9 - Memory Corruption
Apr 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27449 HIGH
MariaDB Server <10.9 - Memory Corruption
Apr 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27448 HIGH
MariaDB 10.3.0-10.3.34 - Reachable Assertion via BTR_PCUR_ON Check
Apr 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27447 HIGH
MariaDB < 10.3.35 - Use-After-Free in Binary_string::free_buffer()
Apr 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27445 HIGH
MariaDB Server <10.9 - Memory Corruption
Apr 14, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27387 HIGH
MariaDB 10.2.0-10.2.43 - Buffer Overflow via Specially Crafted SQL Statements
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27386 HIGH
MariaDB 10.2.0-10.2.43 - Denial of Service via sql/sql_class.cc
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27384 HIGH
MariaDB < 10.2.44 - Denial of Service via Item_subselect::init_expr_cache_tracker
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27383 HIGH
MariaDB 10.2.0-10.2.43 - Use-After-Free via my_strcasecmp_8bit
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27381 HIGH
MariaDB < 10.2.44 - Denial of Service via Field::set_default
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27380 HIGH
MariaDB 10.2.0-10.2.43 - Denial of Service via my_decimal::operator=
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27379 HIGH
MariaDB 10.3.0-10.3.34 - Denial of Service via Arg_comparator::compare_real_fixed
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27378 HIGH
MariaDB < 10.2.44 - Denial of Service via Create_tmp_table::finalize
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27377 HIGH
MariaDB < 10.2.44 - Use-After-Free via Item_func_in::cleanup()
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27376 HIGH
MariaDB 10.3.0-10.3.34 - Use-After-Free in Item_args::walk_arg
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-24765 MEDIUM
Git for Windows < 2.35.2 - Uncontrolled Search Path Element via Git Directory Search
Apr 12, 2022
CVSS 6.0
EPSS 0.00
CVE-2022-24070 HIGH
Subversion mod_dav_svn <1.14.1 - Memory Corruption
Apr 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-28347 CRITICAL
Django 2.2-2.2.27, 3.2-3.2.12, 4.0-4.0.3 - SQL Injection via QuerySet.explain() Options
Apr 12, 2022
CVSS 9.8
EPSS 0.01
Products
debian_linux 9,981 advanced_package_tool 21 dpkg 14 shadow 8 lintian 6 apt 5 devscripts 3 horde 3 reportbug 3 apt-cacher 2 aptlinex 2 cifs-utils 2 dpkg-dev 2 fsp 2 horde_groupware 2 mime-support 2 netkit 2 python-apt 2 python-dns 2 qpopper 2 xsabre 2 yubiserver 2 FreedomBox 1 adequate 1 amaya 1 apache 1 apache2 1 apt-listchanges 1 apt-setup 1 axiom 1
Quick Filters
Critical CVEs With Exploits In CISA KEV