Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2021-12-30 CVE-2021-4181 Out-of-bounds Read vulnerability in multiple products
Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark fedoraproject debian oracle CWE-125
7.5
2021-12-30 CVE-2021-4184 Infinite Loop vulnerability in multiple products
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark fedoraproject debian oracle CWE-835
7.5
2021-12-30 CVE-2021-4185 Infinite Loop vulnerability in multiple products
Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
network
low complexity
wireshark fedoraproject debian oracle CWE-835
7.5
2021-12-28 CVE-2021-45909 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in gif2apng 1.9.
local
low complexity
gif2apng-project debian CWE-787
7.8
2021-12-28 CVE-2021-45910 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in gif2apng 1.9.
local
low complexity
gif2apng-project debian CWE-787
7.8
2021-12-28 CVE-2021-45911 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in gif2apng 1.9.
local
low complexity
gif2apng-project debian CWE-787
7.8
2021-12-25 CVE-2021-4166 vim is vulnerable to Out-of-bounds Read 7.1
2021-12-23 CVE-2021-45469 Out-of-bounds Read vulnerability in multiple products
In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry.
local
low complexity
linux fedoraproject debian netapp CWE-125
7.8
2021-12-23 CVE-2021-38005 Use After Free vulnerability in multiple products
Use after free in loader in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-416
8.8
2021-12-23 CVE-2021-38006 Use After Free vulnerability in multiple products
Use after free in storage foundation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian CWE-416
8.8