Vulnerabilities > Debian > Debian Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-13 | CVE-2018-14040 | Cross-site Scripting vulnerability in multiple products In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. | 6.1 |
| 2018-07-10 | CVE-2018-1116 | Missing Authorization vulnerability in multiple products A flaw was found in polkit before version 0.116. | 4.4 |
| 2018-07-10 | CVE-2018-1129 | Improper Authentication vulnerability in multiple products A flaw was found in the way signature calculation was handled by cephx authentication protocol. | 6.5 |
| 2018-07-10 | CVE-2018-10888 | Out-of-bounds Read vulnerability in multiple products A flaw was found in libgit2 before version 0.27.3. | 6.5 |
| 2018-07-03 | CVE-2018-13100 | Divide By Zero vulnerability in multiple products An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error. | 5.5 |
| 2018-07-03 | CVE-2018-13099 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. | 5.5 |
| 2018-07-03 | CVE-2018-13096 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. | 5.5 |
| 2018-07-03 | CVE-2018-10855 | Information Exposure Through Log Files vulnerability in multiple products Ansible 2.5 prior to 2.5.5, and 2.4 prior to 2.4.5, do not honor the no_log task flag for failed tasks. | 5.9 |
| 2018-07-02 | CVE-2018-12896 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.3. | 5.5 |
| 2018-07-02 | CVE-2018-12893 | An issue was discovered in Xen through 4.10.x. | 6.5 |