Vulnerabilities > Debian > Debian Linux

DATE CVE VULNERABILITY TITLE RISK
2017-01-06 CVE-2016-2365 NULL Pointer Dereference vulnerability in multiple products
A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin.
network
high complexity
pidgin canonical debian CWE-476
5.9
5.9
2016-12-29 CVE-2016-9916 Memory Leak vulnerability in multiple products
Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a missing cleanup operation in the proxy backend.
local
low complexity
qemu debian CWE-401
6.5
6.5
2016-12-29 CVE-2016-9915 Memory Leak vulnerability in multiple products
Memory leak in hw/9pfs/9p-handle.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a missing cleanup operation in the handle backend.
local
low complexity
qemu debian CWE-401
6.5
6.5
2016-12-29 CVE-2016-9914 Memory Leak vulnerability in multiple products
Memory leak in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a missing cleanup operation in FileOperations.
local
low complexity
qemu debian CWE-401
6.5
6.5
2016-12-29 CVE-2016-9776 Infinite Loop vulnerability in multiple products
QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is vulnerable to an infinite loop issue.
local
low complexity
qemu debian CWE-835
5.5
5.5
2016-12-29 CVE-2016-2198 NULL Pointer Dereference vulnerability in multiple products
QEMU (aka Quick Emulator) built with the USB EHCI emulation support is vulnerable to a null pointer dereference flaw.
local
low complexity
qemu debian CWE-476
5.5
5.5
2016-12-29 CVE-2016-1981 Infinite Loop vulnerability in multiple products
QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite loop issue.
local
low complexity
qemu debian CWE-835
5.5
5.5
2016-12-29 CVE-2016-1922 NULL Pointer Dereference vulnerability in multiple products
QEMU (aka Quick Emulator) built with the TPR optimization for 32-bit Windows guests support is vulnerable to a null pointer dereference flaw.
local
low complexity
qemu debian CWE-476
5.5
5.5
2016-12-29 CVE-2015-8745 Reachable Assertion vulnerability in multiple products
QEMU (aka Quick Emulator) built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to crash issue.
local
low complexity
qemu debian CWE-617
5.5
5.5
2016-12-29 CVE-2015-8744 Improper Input Validation vulnerability in multiple products
QEMU (aka Quick Emulator) built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to crash issue.
local
low complexity
qemu debian CWE-20
5.5
5.5