Vulnerabilities > Debian
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-21 | CVE-2021-32761 | Integer Overflow OR Wraparound vulnerability in multiple products Redis is an in-memory database that persists on disk. | 6.0 |
| 2021-07-20 | CVE-2021-33909 | Classic Buffer Overflow vulnerability in multiple products fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05. | 7.2 |
| 2021-07-20 | CVE-2021-33910 | Allocation of Resources Without Limits OR Throttling vulnerability in multiple products basic/unit-name.c in systemd prior to 246.15, 247.8, 248.5, and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash. | 4.9 |
| 2021-07-20 | CVE-2019-25051 | Out-Of-Bounds Write vulnerability in multiple products objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list). | 4.6 |
| 2021-06-30 | CVE-2021-3630 | Out-Of-Bounds Write vulnerability in multiple products An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. | 4.3 |
| 2021-06-09 | CVE-2020-24489 | Incomplete Cleanup vulnerability in multiple products Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access. | 4.6 |
| 2021-06-09 | CVE-2021-0089 | Information Exposure Through Discrepancy vulnerability in multiple products Observable response discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | 2.1 |
| 2021-06-09 | CVE-2020-24511 | Exposure of Resource TO Wrong Sphere vulnerability in multiple products Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | 2.1 |
| 2021-06-09 | CVE-2020-24512 | Information Exposure Through Discrepancy vulnerability in multiple products Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | 2.1 |
| 2021-06-09 | CVE-2020-24513 | Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | 2.1 |