Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-27 CVE-2021-28697 Race Condition vulnerability in multiple products
grant table v2 status pages may remain accessible after de-allocation Guest get permitted access to certain Xen-owned pages of memory.
local
low complexity
xen fedoraproject debian CWE-362
7.8
2021-08-27 CVE-2021-23434 Type Confusion vulnerability in multiple products
This affects the package object-path before 0.11.6.
network
low complexity
object-path-project debian CWE-843
8.6
2021-08-27 CVE-2021-40153 Path Traversal vulnerability in multiple products
squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash.
8.1
2021-08-25 CVE-2021-21834 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8
2021-08-25 CVE-2021-21836 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8
2021-08-25 CVE-2021-21840 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8
2021-08-25 CVE-2021-21841 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8
2021-08-25 CVE-2021-21842 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8
2021-08-25 CVE-2021-21848 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8
2021-08-25 CVE-2021-21849 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1.
network
low complexity
gpac debian CWE-119
8.8