Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2021-07-21 CVE-2021-32761 Integer Overflow OR Wraparound vulnerability in multiple products
Redis is an in-memory database that persists on disk.
6.0
2021-07-20 CVE-2021-33909 Classic Buffer Overflow vulnerability in multiple products
fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
local
low complexity
linux fedoraproject debian CWE-120
7.2
2021-07-20 CVE-2021-33910 Allocation of Resources Without Limits OR Throttling vulnerability in multiple products
basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash.
local
low complexity
freedesktop fedoraproject debian CWE-770
4.9
2021-07-20 CVE-2019-25051 Out-Of-Bounds Write vulnerability in multiple products
objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list).
local
low complexity
gnu debian CWE-787
4.6
2021-06-30 CVE-2021-3630 Out-Of-Bounds Write vulnerability in multiple products
An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault.
4.3
2021-06-09 CVE-2020-24489 Incomplete Cleanup vulnerability in multiple products
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel debian CWE-459
4.6
2021-06-09 CVE-2021-0089 Information Exposure Through Discrepancy vulnerability in multiple products
Observable response discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
local
low complexity
debian fedoraproject intel CWE-203
2.1
2021-06-09 CVE-2020-24511 Exposure of Resource TO Wrong Sphere vulnerability in multiple products
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel debian netapp CWE-668
2.1
2021-06-09 CVE-2020-24512 Information Exposure Through Discrepancy vulnerability in multiple products
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel debian netapp CWE-203
2.1
2021-06-09 CVE-2020-24513 Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel debian
2.1