Vulnerabilities > Debian
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-01 | CVE-2023-4056 | Out-of-bounds Write vulnerability in multiple products Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13. | 9.8 |
| 2023-08-01 | CVE-2023-4045 | Origin Validation Error vulnerability in multiple products Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. | 5.3 |
| 2023-08-01 | CVE-2023-4046 | In some circumstances, a stale value could have been used for a global variable in WASM JIT analysis. | 5.3 |
| 2023-08-01 | CVE-2023-4047 | A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. | 8.8 |
| 2023-08-01 | CVE-2023-4048 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. | 7.5 |
| 2023-08-01 | CVE-2023-4049 | Race Condition vulnerability in multiple products Race conditions in reference counting code were found through code inspection. | 5.9 |
| 2023-08-01 | CVE-2023-4050 | Out-of-bounds Write vulnerability in multiple products In some cases, an untrusted input stream was copied to a stack buffer without checking its size. | 7.5 |
| 2023-07-31 | CVE-2023-4004 | Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. | 7.8 |
| 2023-07-29 | CVE-2022-4907 | Uninitialized Use in FFmpeg in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. | 8.8 |
| 2023-07-25 | CVE-2023-3772 | NULL Pointer Dereference vulnerability in multiple products A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). | 4.4 |