Vulnerabilities > Debian > Debian Linux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-26 | CVE-2018-10392 | Out-of-bounds Write vulnerability in multiple products mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file. | 6.8 |
| 2018-04-25 | CVE-2017-6888 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products An error in the "read_metadata_vorbiscomment_()" function (src/libFLAC/stream_decoder.c) in FLAC version 1.3.2 can be exploited to cause a memory leak via a specially crafted FLAC file. | 5.5 |
| 2018-04-25 | CVE-2017-7652 | In Eclipse Mosquitto 1.4.14, if a Mosquitto instance is set running with a configuration file, then sending a HUP signal to server triggers the configuration to be reloaded from disk. | 6.0 |
| 2018-04-24 | CVE-2018-3836 | OS Command Injection vulnerability in multiple products An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. | 7.8 |
| 2018-04-24 | CVE-2017-2924 | Out-of-bounds Write vulnerability in multiple products An exploitable heap-based buffer overflow vulnerability exists in the read_legacy_biff function of FreeXL 1.0.3. | 6.8 |
| 2018-04-24 | CVE-2017-2923 | Out-of-bounds Write vulnerability in multiple products An exploitable heap based buffer overflow vulnerability exists in the 'read_biff_next_record function' of FreeXL 1.0.3. | 6.8 |
| 2018-04-24 | CVE-2017-2918 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the Image loading functionality of the Blender open-source 3d creation suite v2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2908 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the thumbnail functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2907 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |
| 2018-04-24 | CVE-2017-2906 | Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. | 6.8 |