Vulnerabilities > Debian
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-21 | CVE-2020-1967 | NULL Pointer Dereference vulnerability in multiple products Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signature_algorithms_cert" TLS extension. | 7.5 |
| 2020-04-17 | CVE-2020-11868 | Origin Validation Error vulnerability in multiple products ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp. | 5.0 |
| 2020-04-15 | CVE-2019-12520 | Improper Input Validation vulnerability in multiple products An issue was discovered in Squid through 4.7 and 5. | 5.0 |
| 2020-04-15 | CVE-2019-12519 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in Squid through 4.7. | 7.5 |
| 2020-04-15 | CVE-2019-12524 | Missing Authentication for Critical Function vulnerability in multiple products An issue was discovered in Squid through 4.7. | 7.5 |
| 2020-04-15 | CVE-2019-12521 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in Squid through 4.7. | 4.3 |
| 2020-04-15 | CVE-2020-11729 | Session Fixation vulnerability in multiple products An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60. | 7.5 |
| 2020-04-15 | CVE-2020-11728 | Session Fixation vulnerability in multiple products An issue was discovered in DAViCal Andrew's Web Libraries (AWL) through 0.60. | 5.0 |
| 2020-04-15 | CVE-2020-2934 | Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). | 5.0 |
| 2020-04-15 | CVE-2020-2933 | Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). | 2.2 |