Vulnerabilities > Debian > Debian Linux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-17 | CVE-2022-24302 | Race Condition vulnerability in multiple products In Paramiko before 2.10.1, a race condition (between creation and chmod) in the write_private_key_file function could allow unauthorized information disclosure. | 5.9 |
| 2022-03-17 | CVE-2022-24761 | HTTP Request Smuggling vulnerability in multiple products Waitress is a Web Server Gateway Interface server for Python 2 and 3. | 7.5 |
| 2022-03-16 | CVE-2021-20257 | An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. | 6.5 |
| 2022-03-16 | CVE-2021-20299 | A flaw was found in OpenEXR's Multipart input file functionality. | 7.5 |
| 2022-03-16 | CVE-2021-39713 | Race Condition vulnerability in multiple products Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel | 7.0 |
| 2022-03-16 | CVE-2022-26353 | A flaw was found in the virtio-net device of QEMU. | 7.5 |
| 2022-03-16 | CVE-2022-26354 | A flaw was found in the vhost-vsock device of QEMU. | 3.2 |
| 2022-03-16 | CVE-2022-27223 | Improper Validation of Array Index vulnerability in multiple products In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access. | 8.8 |
| 2022-03-15 | CVE-2022-0778 | Infinite Loop vulnerability in multiple products The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. | 7.5 |
| 2022-03-14 | CVE-2021-42387 | Out-of-bounds Read vulnerability in multiple products Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query. | 8.1 |