Vulnerabilities > Debian > Debian Linux

DATE CVE VULNERABILITY TITLE RISK
2022-11-07 CVE-2022-44792 NULL Pointer Dereference vulnerability in multiple products
handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
network
low complexity
net-snmp debian netapp CWE-476
6.5
2022-11-07 CVE-2022-44793 NULL Pointer Dereference vulnerability in multiple products
handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
network
low complexity
net-snmp debian netapp CWE-476
6.5
2022-11-06 CVE-2022-40284 Classic Buffer Overflow vulnerability in multiple products
A buffer overflow was discovered in NTFS-3G before 2022.10.3.
local
low complexity
tuxera debian fedoraproject CWE-120
7.8
2022-11-04 CVE-2021-34055 Classic Buffer Overflow vulnerability in multiple products
jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u.
local
low complexity
jhead-project debian CWE-120
7.8
2022-11-03 CVE-2022-44638 Integer Overflow or Wraparound vulnerability in multiple products
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
network
low complexity
pixman debian fedoraproject CWE-190
8.8
2022-11-02 CVE-2022-39353 Improper Validation of Consistency within Input vulnerability in multiple products
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module.
network
low complexity
xmldom-project debian CWE-1288
critical
9.8
2022-11-02 CVE-2022-43235 Out-of-bounds Write vulnerability in multiple products
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_epel_pixels_8_sse in sse-motion.cc.
network
low complexity
struktur debian CWE-787
6.5
2022-11-02 CVE-2022-43236 Out-of-bounds Write vulnerability in multiple products
Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc.
network
low complexity
struktur debian CWE-787
6.5
2022-11-02 CVE-2022-43237 Out-of-bounds Write vulnerability in multiple products
Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via void put_epel_hv_fallback<unsigned short> in fallback-motion.cc.
network
low complexity
struktur debian CWE-787
6.5
2022-11-02 CVE-2022-43238 Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_h_3_v_3_sse in sse-motion.cc.
network
low complexity
struktur debian
6.5