Debian Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-23	CVE-2021-38002	Use After Free vulnerability in multiple products Use after free in Web Transport in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. network low complexity google fedoraproject debian CWE-416 critical	9.6
2021-11-23	CVE-2021-38003	Improper Handling of Exceptional Conditions vulnerability in multiple products Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject debian CWE-755	8.8
2021-11-23	CVE-2021-38004	Exposure of Resource to Wrong Sphere vulnerability in multiple products Insufficient policy enforcement in Autofill in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google debian CWE-668	4.3
2021-11-22	CVE-2021-44143	Out-of-bounds Write vulnerability in multiple products A flaw was found in mbsync in isync 1.4.0 through 1.4.3. network low complexity isync-project debian fedoraproject CWE-787 critical	9.8
2021-11-22	CVE-2021-3935	Improper Certificate Validation vulnerability in multiple products When PgBouncer is configured to use "cert" authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of TLS certificate verification and encryption. network high complexity pgbouncer redhat fedoraproject debian CWE-295	8.1
2021-11-19	CVE-2021-21898	A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. network low complexity librecad debian fedoraproject	8.8
2021-11-19	CVE-2021-21899	A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. network low complexity librecad fedoraproject debian	8.8
2021-11-19	CVE-2021-21900	A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. network low complexity librecad debian fedoraproject	8.8
2021-11-19	CVE-2021-40391	Improper Handling of Exceptional Conditions vulnerability in multiple products An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev (commit b5f1eacd), and the forked version of Gerbv (commit 71493260). network low complexity gerbv-project debian fedoraproject CWE-755 critical	9.8
2021-11-19	CVE-2021-39921	NULL Pointer Dereference vulnerability in multiple products NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file network low complexity wireshark fedoraproject debian CWE-476	7.5