Debian Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-04	CVE-2021-41103	containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. local low complexity linuxfoundation fedoraproject debian	7.8
2021-10-02	CVE-2021-41864	Integer Overflow or Wraparound vulnerability in multiple products prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write. local low complexity linux fedoraproject netapp debian CWE-190	7.8
2021-09-29	CVE-2021-22946	Cleartext Transmission of Sensitive Information vulnerability in multiple products A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (`--ssl-reqd` on the command line or`CURLOPT_USE_SSL` set to `CURLUSESSL_CONTROL` or `CURLUSESSL_ALL` withlibcurl). network low complexity haxx debian fedoraproject netapp oracle apple siemens splunk CWE-319	7.5
2021-09-29	CVE-2021-22947	Insufficient Verification of Data Authenticity vulnerability in multiple products When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS security, the server can respond and send back multiple responses at once that curl caches. network high complexity haxx fedoraproject debian netapp oracle siemens apple splunk CWE-345	5.9
2021-09-29	CVE-2021-3653	A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. local low complexity linux redhat debian	8.8
2021-09-27	CVE-2021-20317	A flaw was found in the Linux kernel. local low complexity linux debian	4.4
2021-09-23	CVE-2021-22945	Double Free vulnerability in multiple products When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it again. network low complexity haxx fedoraproject netapp oracle apple siemens debian splunk CWE-415 critical	9.1
2021-09-20	CVE-2021-32272	Out-of-bounds Write vulnerability in multiple products An issue was discovered in faad2 before 2.10.0. local low complexity faad2-project debian CWE-787	7.8
2021-09-20	CVE-2021-32273	Out-of-bounds Write vulnerability in multiple products An issue was discovered in faad2 through 2.10.0. local low complexity faad2-project debian CWE-787	7.8
2021-09-20	CVE-2021-32274	Out-of-bounds Write vulnerability in multiple products An issue was discovered in faad2 through 2.10.0. local low complexity faad2-project debian CWE-787	7.8