Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2022-23947 A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon DCodeNumber parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010.
local
low complexity
kicad fedoraproject debian
7.8
7.8
2022-02-04 CVE-2021-46671 Out-of-bounds Read vulnerability in multiple products
options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.
network
low complexity
atftp-project debian CWE-125
5.3
5.3
2022-02-04 CVE-2022-24448 Use of Uninitialized Resource vulnerability in multiple products
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5.
local
low complexity
linux debian CWE-908
3.3
3.3
2022-02-03 CVE-2022-22818 Cross-site Scripting vulnerability in multiple products
The {% debug %} template tag in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2 does not properly encode the current context.
network
low complexity
djangoproject fedoraproject debian CWE-79
6.1
6.1
2022-02-03 CVE-2022-23833 Infinite Loop vulnerability in multiple products
An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2.
network
low complexity
djangoproject fedoraproject debian CWE-835
7.5
7.5
2022-02-02 CVE-2022-0443 Use After Free in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim fedoraproject debian
7.8
7.8
2022-02-02 CVE-2022-21724 Improper Initialization vulnerability in multiple products
pgjdbc is the offical PostgreSQL JDBC Driver.
network
low complexity
postgresql fedoraproject quarkus debian CWE-665
critical
 9.8
9.8
2022-02-02 CVE-2022-24300 Minetest before 5.4.0 allows attackers to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack meta injection.
network
low complexity
minetest debian
critical
 9.8
9.8
2022-02-02 CVE-2022-24301 Incorrect Default Permissions vulnerability in multiple products
In Minetest before 5.4.0, players can add or subtract items from a different player's inventory.
network
low complexity
minetest debian CWE-276
6.5
6.5
2022-02-01 CVE-2022-0417 Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2.
local
low complexity
vim fedoraproject debian
7.8
7.8