Vulnerabilities > Debian > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-09-12 | CVE-2018-16981 | Out-of-bounds Write vulnerability in multiple products stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function. | 8.8 |
2018-09-12 | CVE-2018-16947 | Improper Authentication vulnerability in multiple products An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. | 7.5 |
2018-09-11 | CVE-2016-7068 | Resource Exhaustion vulnerability in multiple products An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if the system becomes overloaded. | 7.8 |
2018-09-10 | CVE-2018-16802 | An issue was discovered in Artifex Ghostscript before 9.25. | 7.8 |
2018-09-10 | CVE-2018-14625 | Use After Free vulnerability in multiple products A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. | 7.0 |
2018-09-07 | CVE-2018-16657 | NULL Pointer Dereference vulnerability in multiple products In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header causes a segmentation fault and crashes Kamailio. | 7.5 |
2018-09-06 | CVE-2018-5391 | Improper Input Validation vulnerability in multiple products The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. | 7.5 |
2018-09-06 | CVE-2018-16585 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An issue was discovered in Artifex Ghostscript before 9.24. | 7.8 |
2018-09-06 | CVE-2018-14624 | Improper Input Validation vulnerability in multiple products A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. | 7.5 |
2018-09-05 | CVE-2018-16543 | In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolution allow attackers to have an unspecified impact. | 7.8 |