Vulnerabilities > Debian > Debian Linux > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-22 CVE-2022-41639 Heap-based Buffer Overflow vulnerability in multiple products
A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0.
network
low complexity
openimageio debian CWE-122
critical
 9.8
9.8
2022-12-20 CVE-2022-47629 Integer Overflow or Wraparound vulnerability in multiple products
Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.
network
low complexity
gnupg debian CWE-190
critical
 9.8
9.8
2022-12-20 CVE-2022-23537 Heap-based Buffer Overflow vulnerability in multiple products
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE.
network
low complexity
teluu debian CWE-122
critical
 9.8
9.8
2022-12-09 CVE-2022-23493 Out-of-bounds Read vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in xrdp_mm_trans_process_drdynvc_channel_close() function.
network
low complexity
neutrinolabs debian CWE-125
critical
 9.1
9.1
2022-12-09 CVE-2022-23484 Integer Overflow or Wraparound vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Integer Overflow in xrdp_mm_process_rail_update_window_text() function.
network
low complexity
neutrinolabs debian CWE-190
critical
 9.8
9.8
2022-12-09 CVE-2022-23483 Out-of-bounds Read vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in libxrdp_send_to_channel() function.
network
low complexity
neutrinolabs debian CWE-125
critical
 9.1
9.1
2022-12-09 CVE-2022-23482 Out-of-bounds Read vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in xrdp_sec_process_mcs_data_CS_CORE() function.
network
low complexity
neutrinolabs debian CWE-125
critical
 9.1
9.1
2022-12-09 CVE-2022-23481 Out-of-bounds Read vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in xrdp_caps_process_confirm_active() function.
network
low complexity
neutrinolabs debian CWE-125
critical
 9.1
9.1
2022-12-09 CVE-2022-23480 Classic Buffer Overflow vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in devredir_proc_client_devlist_announce_req() function.
network
low complexity
neutrinolabs debian CWE-120
critical
 9.8
9.8
2022-12-09 CVE-2022-23479 Classic Buffer Overflow vulnerability in multiple products
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in xrdp_mm_chan_data_in() function.
network
low complexity
neutrinolabs debian CWE-120
critical
 9.8
9.8