Vulnerabilities > Debian > Debian Linux > High

DATE CVE VULNERABILITY TITLE RISK
2022-03-16 CVE-2021-39713 Race Condition vulnerability in multiple products
Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel
local
high complexity
google debian CWE-362
7.0
2022-03-16 CVE-2022-26353 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
A flaw was found in the virtio-net device of QEMU.
network
low complexity
qemu debian CWE-772
7.5
2022-03-16 CVE-2022-27223 Improper Validation of Array Index vulnerability in multiple products
In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access.
network
low complexity
linux netapp debian CWE-129
8.8
2022-03-15 CVE-2022-0778 Infinite Loop vulnerability in multiple products
The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli.
7.5
2022-03-14 CVE-2021-42387 Out-of-bounds Read vulnerability in multiple products
Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query.
network
low complexity
yandex debian CWE-125
8.1
2022-03-14 CVE-2021-42388 Out-of-bounds Read vulnerability in multiple products
Heap out-of-bounds read in Clickhouse's LZ4 compression codec when parsing a malicious query.
network
low complexity
yandex debian CWE-125
8.1
2022-03-14 CVE-2021-43304 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query.
network
low complexity
yandex debian CWE-787
8.8
2022-03-14 CVE-2021-43305 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query.
network
low complexity
yandex debian CWE-787
8.8
2022-03-14 CVE-2022-0943 Heap-based Buffer Overflow vulnerability in multiple products
Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563.
local
low complexity
vim fedoraproject debian apple CWE-122
7.8
2022-03-14 CVE-2022-20001 Injection vulnerability in multiple products
fish is a command line shell.
local
low complexity
fishshell fedoraproject debian CWE-74
7.8