Debian Linux

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-05	CVE-2022-33743	network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP (eXpress Data Path), a code label was moved in a way allowing for SKBs having references (pointers) retained for further processing to nevertheless be freed. local low complexity xen linux debian	7.8
2022-07-05	CVE-2022-33744	Arm guests can cause Dom0 DoS via PV devices When mapping pages of guests on Arm, dom0 is using an rbtree to keep track of the foreign mappings. local high complexity linux debian	4.7
2022-07-05	CVE-2022-2097	Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. network low complexity openssl fedoraproject netapp siemens debian CWE-327	5.3
2022-07-04	CVE-2022-34918	Type Confusion vulnerability in multiple products An issue was discovered in the Linux kernel through 5.18.9. local low complexity linux debian canonical netapp CWE-843	7.8
2022-07-02	CVE-2022-2285	Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. local low complexity vim fedoraproject debian	7.8
2022-07-01	CVE-2022-34903	Injection vulnerability in multiple products GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line. network high complexity gnupg fedoraproject debian netapp CWE-74	6.5
2022-07-01	CVE-2022-32083	MariaDB v10.2 to v10.6.1 was discovered to contain a segmentation fault via the component Item_subselect::init_expr_cache_tracker. network low complexity mariadb debian	7.5
2022-07-01	CVE-2022-32084	MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select. network low complexity mariadb debian fedoraproject	7.5
2022-07-01	CVE-2022-32085	MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_func_in::cleanup/Item::cleanup_processor. network low complexity mariadb debian	7.5
2022-07-01	CVE-2022-32087	MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_args::walk_args. network low complexity mariadb debian	7.5