Vulnerabilities > Debian > Debian Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-27 | CVE-2018-10882 | A flaw was found in the Linux kernel's ext4 filesystem. | 5.5 |
| 2018-07-27 | CVE-2017-7519 | Use of Externally-Controlled Format String vulnerability in multiple products In Ceph, a format string flaw was found in the way libradosstriper parses input from user. | 4.4 |
| 2018-07-27 | CVE-2017-2666 | HTTP Request Smuggling vulnerability in multiple products It was discovered in Undertow that the code that parsed the HTTP request line permitted invalid characters. | 6.5 |
| 2018-07-27 | CVE-2018-14617 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.10. | 5.5 |
| 2018-07-27 | CVE-2018-14611 | Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.10. | 5.5 |
| 2018-07-27 | CVE-2018-14609 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.10. | 5.5 |
| 2018-07-26 | CVE-2015-9261 | NULL Pointer Dereference vulnerability in multiple products huft_build in archival/libarchive/decompress_gunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file. | 5.5 |
| 2018-07-26 | CVE-2018-10881 | A flaw was found in the Linux kernel's ext4 filesystem. | 5.5 |
| 2018-07-26 | CVE-2018-10876 | A flaw was found in Linux kernel in the ext4 filesystem code. | 5.5 |
| 2018-07-26 | CVE-2018-0618 | Cross-site Scripting vulnerability in multiple products Cross-site scripting vulnerability in Mailman 2.1.26 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |