Debian Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-14	CVE-2022-4283	Use After Free vulnerability in multiple products A vulnerability was found in X.Org. local low complexity x-org fedoraproject redhat debian CWE-416	7.8
2022-12-14	CVE-2022-23520	rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. network low complexity rubyonrails debian	6.1
2022-12-14	CVE-2022-23527	Open Redirect vulnerability in multiple products mod_auth_openidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server. network low complexity openidc debian CWE-601	6.1
2022-12-14	CVE-2022-23517	rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. network low complexity rubyonrails debian	7.5
2022-12-14	CVE-2022-23518	rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. network low complexity rubyonrails debian loofah-project	6.1
2022-12-14	CVE-2022-23519	Cross-site Scripting vulnerability in multiple products rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. network low complexity rubyonrails debian CWE-79	6.1
2022-12-14	CVE-2022-23515	Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri. network low complexity loofah-project debian	6.1
2022-12-13	CVE-2022-45685	Out-of-bounds Write vulnerability in multiple products A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service (DoS) via crafted JSON data. network low complexity jettison-project debian CWE-787	7.5
2022-12-13	CVE-2022-45693	Out-of-bounds Write vulnerability in multiple products Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. network low complexity jettison-project debian CWE-787	7.5
2022-12-13	CVE-2022-41915	Netty project is an event-driven asynchronous network application framework. network low complexity netty debian	6.5