Vulnerabilities > Debian > Debian Linux > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-19 | CVE-2023-6858 | Out-of-bounds Write vulnerability in multiple products Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. | 8.8 |
| 2023-12-19 | CVE-2023-6859 | Use After Free vulnerability in multiple products A use-after-free condition affected TLS socket creation when under memory pressure. | 8.8 |
| 2023-12-19 | CVE-2023-6861 | Out-of-bounds Write vulnerability in multiple products The `nsWindow::PickerOpen(void)` method was susceptible to a heap buffer overflow when running in headless mode. | 8.8 |
| 2023-12-19 | CVE-2023-6862 | Use After Free vulnerability in multiple products A use-after-free was identified in the `nsDNSService::Init`. | 8.8 |
| 2023-12-19 | CVE-2023-6863 | The `ShutdownObserver()` was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor. | 8.8 |
| 2023-12-19 | CVE-2023-6864 | Out-of-bounds Write vulnerability in multiple products Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. | 8.8 |
| 2023-12-19 | CVE-2023-6873 | Out-of-bounds Write vulnerability in multiple products Memory safety bugs present in Firefox 120. | 8.8 |
| 2023-12-19 | CVE-2023-6931 | Out-of-bounds Write vulnerability in multiple products A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation. A perf_event's read_size can overflow, leading to an heap out-of-bounds increment or write in perf_read_group(). We recommend upgrading past commit 382c27f4ed28f803b1f1473ac2d8db0afc795a1b. | 7.0 |
| 2023-12-13 | CVE-2023-6377 | Out-of-bounds Read vulnerability in multiple products A flaw was found in xorg-server. | 7.8 |
| 2023-12-13 | CVE-2023-6478 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in xorg-server. | 7.5 |