Vulnerabilities > Debian > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-24 CVE-2021-30858 Use After Free vulnerability in multiple products
A use after free issue was addressed with improved memory management.
network
low complexity
apple fedoraproject debian CWE-416
8.8
2021-08-24 CVE-2021-3712 Out-of-bounds Read vulnerability in multiple products
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length.
7.4
2021-08-24 CVE-2021-38714 Integer Overflow or Wraparound vulnerability in multiple products
In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution.
network
low complexity
plib-project debian fedoraproject CWE-190
8.8
2021-08-23 CVE-2020-18771 Out-of-bounds Read vulnerability in multiple products
Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmn_int.cpp which can result in an information leak.
network
low complexity
exiv2 debian CWE-125
8.1
2021-08-23 CVE-2021-39150 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39152 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39139 XStream is a simple library to serialize objects to XML and back again. 8.8
2021-08-23 CVE-2021-39141 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39144 Deserialization of Untrusted Data vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
8.5
2021-08-23 CVE-2021-39145 XStream is a simple library to serialize objects to XML and back again. 8.5