Vulnerabilities > Debian > Debian Linux

DATE CVE VULNERABILITY TITLE RISK
2022-09-19 CVE-2022-28203 Release of Invalid Pointer or Reference vulnerability in multiple products
A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2.
network
low complexity
mediawiki debian CWE-763
7.5
7.5
2022-09-18 CVE-2022-3235 Use After Free in GitHub repository vim/vim prior to 9.0.0490.
local
low complexity
vim fedoraproject debian
7.8
7.8
2022-09-18 CVE-2022-40768 Use of Uninitialized Resource vulnerability in multiple products
drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecommand_lck lacks a memset for the PASSTHRU_CMD case.
local
low complexity
linux fedoraproject debian CWE-908
5.5
5.5
2022-09-17 CVE-2022-3234 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483.
local
low complexity
vim fedoraproject debian
7.8
7.8
2022-09-16 CVE-2022-3176 Use After Free vulnerability in multiple products
There exists a use-after-free in io_uring in the Linux kernel.
local
low complexity
linux debian CWE-416
7.8
7.8
2022-09-16 CVE-2022-40149 Out-of-bounds Write vulnerability in multiple products
Those using Jettison to parse untrusted XML or JSON data may be vulnerable to Denial of Service attacks (DOS).
network
low complexity
jettison-project debian CWE-787
7.5
7.5
2022-09-16 CVE-2022-40150 Uncontrolled Recursion vulnerability in multiple products
Those using Jettison to parse untrusted XML or JSON data may be vulnerable to Denial of Service attacks (DOS).
network
low complexity
jettison-project debian CWE-674
7.5
7.5
2022-09-15 CVE-2022-38850 Divide By Zero vulnerability in multiple products
The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.
local
low complexity
mplayerhq debian CWE-369
5.5
5.5
2022-09-15 CVE-2022-38851 Out-of-bounds Read vulnerability in multiple products
Certain The MPlayer Project products are vulnerable to Out-of-bounds Read via function read_meta_record() of mplayer/libmpdemux/asfheader.c.
local
low complexity
mplayerhq debian CWE-125
5.5
5.5
2022-09-15 CVE-2022-38855 Out-of-bounds Write vulnerability in multiple products
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c.
local
low complexity
mplayerhq debian CWE-787
5.5
5.5