Vulnerabilities > Debian > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-03-31 CVE-2021-3478 Resource Exhaustion vulnerability in multiple products
There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta.
local
low complexity
openexr debian CWE-400
5.5
2021-03-31 CVE-2021-3477 Integer Overflow or Wraparound vulnerability in multiple products
There's a flaw in OpenEXR's deep tile sample size calculations in versions before 3.0.0-beta.
local
low complexity
openexr debian CWE-190
5.5
2021-03-30 CVE-2021-29650 An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject debian
5.5
2021-03-30 CVE-2021-29647 Missing Initialization of Resource vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.11.11.
local
low complexity
linux fedoraproject debian CWE-909
5.5
2021-03-30 CVE-2021-3476 Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta.
network
low complexity
openexr debian CWE-190
5.3
2021-03-30 CVE-2021-3475 Integer Overflow or Wraparound vulnerability in multiple products
There is a flaw in OpenEXR in versions before 3.0.0-beta.
network
low complexity
openexr debian CWE-190
5.3
2021-03-30 CVE-2021-3474 Integer Overflow or Wraparound vulnerability in multiple products
There's a flaw in OpenEXR in versions before 3.0.0-beta.
network
low complexity
openexr debian CWE-190
5.3
2021-03-30 CVE-2021-21409 HTTP Request Smuggling vulnerability in multiple products
Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients.
network
high complexity
netty debian netapp oracle quarkus CWE-444
5.9
2021-03-30 CVE-2021-29376 ircII before 20210314 allows remote attackers to cause a denial of service (segmentation fault and client crash, disconnecting the victim from an IRC server) via a crafted CTCP UTC message.
network
low complexity
eterna debian
5.0
2021-03-26 CVE-2021-29265 Race Condition vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.11.7.
4.7