Vulnerabilities > Debian > Debian Linux > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-14 | CVE-2011-1489 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. | 2.1 |
| 2019-11-14 | CVE-2011-1490 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. | 2.1 |
| 2019-11-13 | CVE-2010-4817 | Link Following vulnerability in multiple products pithos before 0.3.5 allows overwrite of arbitrary files via symlinks. | 3.6 |
| 2019-11-12 | CVE-2010-3440 | Download of Code Without Integrity Check vulnerability in multiple products babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and unpacking dictionary files, allowing a local attacker to overwrite arbitrary files. | 3.3 |
| 2019-11-09 | CVE-2009-3614 | Improper Input Validation vulnerability in multiple products liboping 1.3.2 allows users reading arbitrary files upon the local system. | 2.1 |
| 2019-11-05 | CVE-2019-5068 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. | 3.6 |
| 2019-11-05 | CVE-2013-6365 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products Horde Groupware Web mail 5.1.2 has CSRF with requests to change permissions | 2.6 |
| 2019-11-05 | CVE-2016-1000002 | Information Exposure vulnerability in multiple products gdm3 3.14.2 and possibly later has an information leak before screen lock | 2.1 |
| 2019-11-01 | CVE-2005-2351 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of requests to mutt temporary files. | 2.1 |
| 2019-10-31 | CVE-2013-1934 | Cross-site Scripting vulnerability in multiple products A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value. | 3.5 |