Vulnerabilities > Debian > Debian Linux > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-15 | CVE-2022-38864 | Out-of-bounds Write vulnerability in multiple products Certain The MPlayer Project products are vulnerable to Buffer Overflow via the function mp_unescape03() of libmpdemux/mpeg_hdr.c. | 5.5 |
| 2022-09-15 | CVE-2022-38865 | Divide By Zero vulnerability in multiple products Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. | 5.5 |
| 2022-09-15 | CVE-2022-38866 | Out-of-bounds Write vulnerability in multiple products Certain The MPlayer Project products are vulnerable to Buffer Overflow via read_avi_header() of libmpdemux/aviheader.c . | 5.5 |
| 2022-09-15 | CVE-2018-25047 | Cross-site Scripting vulnerability in multiple products In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. | 5.4 |
| 2022-09-09 | CVE-2022-38266 | Divide By Zero vulnerability in multiple products An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file. | 6.5 |
| 2022-09-09 | CVE-2022-2905 | An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function with a key larger than the max_entries of the map. | 5.5 |
| 2022-09-09 | CVE-2022-36280 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. | 5.5 |
| 2022-09-09 | CVE-2022-3169 | A flaw was found in the Linux kernel. | 5.5 |
| 2022-09-09 | CVE-2022-40307 | Race Condition vulnerability in multiple products An issue was discovered in the Linux kernel through 5.19.8. | 4.7 |
| 2022-09-05 | CVE-2022-38749 | Out-of-bounds Write vulnerability in multiple products Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). | 6.5 |