gitimages.expertflow.com/cim/conversation-controller:4.1 (debian 11.4) ====================================================================== Total: 2768 (UNKNOWN: 9, LOW: 836, MEDIUM: 1144, HIGH: 729, CRITICAL: 50) +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | apt | CVE-2011-3374 | LOW | 2.2.4 | | It was found that apt-key in apt, | | | | | | | all versions, do not correctly... | | | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | bash | CVE-2022-3715 | HIGH | 5.1-2+deb11u1 | | bash: a heap-buffer-overflow | | | | | | | in valid_parameter_transform | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3715 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | TEMP-0841856-B18BAF | LOW | | | [Privilege escalation possible to other user than root] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0841856-B18BAF | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | binutils | CVE-2017-13716 | | 2.35.2-2 | | binutils: Memory leak with the C++ | | | | | | | symbol demangler routine in libiberty | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13716 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18483 | | | | binutils: Integer overflow | | | | | | | in cplus-dem.c:get_count() | | | | | | | allows for denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18483 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20673 | | | | libiberty: Integer overflow in | | | | | | | demangle_template() function | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20712 | | | | libiberty: heap-based buffer | | | | | | | over-read in d_expression_1 | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-9996 | | | | binutils: Stack-overflow in | | | | | | | libiberty/cplus-dem.c causes crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-9996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010204 | | | | binutils: Improper Input Validation, | | | | | | | Signed/Unsigned Comparison, | | | | | | | Out-of-bounds Read in gold/fileread.cc | | | | | | | and elfcpp/elfcpp_file.h... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-19726 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() in bfd/libbfd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2020-19726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35448 | | | | binutils: Heap-based buffer overflow | | | | | | | in bfd_getl_signed_32() in libbfd.c | | | | | | | because sh_entsize is not... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35448 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20197 | | | | binutils: Race window allows | | | | | | | users to own arbitrary files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20284 | | | | binutils: Heap-based | | | | | | | buffer overflow in | | | | | | | _bfd_elf_slurp_secondary_reloc_section | | | | | | | in elf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20284 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32256 | | | | binutils: stack-overflow issue in | | | | | | | demangle_type in rust-demangle.c. | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32256 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3530 | | | | binutils: stack memory exhaustion in | | | | | | | demangle_path() in rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3549 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | avr_elf32_load_records_from_section() | | | | | | | via large section parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3549 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3826 | | | | libiberty: Heap/stack buffer | | | | | | | overflow in the dlang_lname | | | | | | | function in d-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3826 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45078 | | | | binutils: out-of-bounds write in | | | | | | | stab_xcoff_builtin_type() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46174 | | | | binutils: heap-based buffer | | | | | | | overflow in bfd_getl32() | | | | | | | in libbfd.c via objdump | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46174 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46195 | | | | gcc: uncontrolled recursion | | | | | | | in libiberty/rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46195 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35205 | | | | binutils: reachable assertion in | | | | | | | display_debug_names() in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35206 | | | | binutils: NULL pointer dereference | | | | | | | in read_and_display_attr_value() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38533 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() when called by | | | | | | | strip_main() in objcopy.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38533 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4285 | | | | binutils: NULL | | | | | | | pointer dereference in | | | | | | | _bfd_elf_get_symbol_version_string | | | | | | | leads to segfault | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4285 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44840 | | | | binutils: heap-based buffer overflow | | | | | | | in find_section_in_set() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45703 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | display_debug_section() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47007 | | | | binutils: memory leak in | | | | | | | stab_demangle_v3_arg() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47008 | | | | binutils: memory leak | | | | | | | in make_tempdir() and | | | | | | | make_tempname() in bucomm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47008 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47010 | | | | binutils: memory leak in | | | | | | | pr_function_type() in prdbg.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47011 | | | | binutils: memory leak in | | | | | | | parse_stab_struct_fields() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47011 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47673 | | | | binutils: out-of-bounds | | | | | | | read in parse_module() in | | | | | | | bfd/vms-alpha.c via addr2line | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47695 | | | | binutils: uninitialized field in | | | | | | | bfd_mach_o_get_synthetic_symtab() | | | | | | | in match-o.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47696 | | | | binutils: segmentation fault in | | | | | | | compare_symbols() in objdump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48063 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | load_separate_debug_files() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48063 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48064 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | _bfd_dwarf2_find_nearest_line_with_alt() | | | | | | | in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48065 | | | | binutils: memory leak in | | | | | | | find_abstract_instance() in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48065 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1579 | | | | binutils: Heap-buffer-overflow | | | | | | | binutils-gdb/bfd/libbfd.c | | | | | | | in bfd_getl64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1579 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1972 | | | | binutils: Illegal memory access when | | | | | | | accessing a zer0-lengthverdef table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1972 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25584 | | | | binutils: Out of bounds | | | | | | | read in parse_module | | | | | | | function in bfd/vms-alpha.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25585 | | | | binutils: Field `file_table` | | | | | | | of `struct module | | | | | | | *module` is uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25586 | | | | binutils: Local variable | | | | | | | `ch_type` in function | | | | | | | `bfd_init_section_decompress_status` | | | | | | | can be uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25588 | | | | binutils: Field | | | | | | | `the_bfd` of `asymbol` is | | | | | | | uninitialized in function | | | | | | | `bfd_mach_o_get_synthetic_symtab` | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25588 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | binutils-common | CVE-2017-13716 | | | | binutils: Memory leak with the C++ | | | | | | | symbol demangler routine in libiberty | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13716 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18483 | | | | binutils: Integer overflow | | | | | | | in cplus-dem.c:get_count() | | | | | | | allows for denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18483 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20673 | | | | libiberty: Integer overflow in | | | | | | | demangle_template() function | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20712 | | | | libiberty: heap-based buffer | | | | | | | over-read in d_expression_1 | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-9996 | | | | binutils: Stack-overflow in | | | | | | | libiberty/cplus-dem.c causes crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-9996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010204 | | | | binutils: Improper Input Validation, | | | | | | | Signed/Unsigned Comparison, | | | | | | | Out-of-bounds Read in gold/fileread.cc | | | | | | | and elfcpp/elfcpp_file.h... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-19726 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() in bfd/libbfd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2020-19726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35448 | | | | binutils: Heap-based buffer overflow | | | | | | | in bfd_getl_signed_32() in libbfd.c | | | | | | | because sh_entsize is not... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35448 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20197 | | | | binutils: Race window allows | | | | | | | users to own arbitrary files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20284 | | | | binutils: Heap-based | | | | | | | buffer overflow in | | | | | | | _bfd_elf_slurp_secondary_reloc_section | | | | | | | in elf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20284 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32256 | | | | binutils: stack-overflow issue in | | | | | | | demangle_type in rust-demangle.c. | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32256 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3530 | | | | binutils: stack memory exhaustion in | | | | | | | demangle_path() in rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3549 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | avr_elf32_load_records_from_section() | | | | | | | via large section parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3549 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3826 | | | | libiberty: Heap/stack buffer | | | | | | | overflow in the dlang_lname | | | | | | | function in d-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3826 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45078 | | | | binutils: out-of-bounds write in | | | | | | | stab_xcoff_builtin_type() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46174 | | | | binutils: heap-based buffer | | | | | | | overflow in bfd_getl32() | | | | | | | in libbfd.c via objdump | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46174 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46195 | | | | gcc: uncontrolled recursion | | | | | | | in libiberty/rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46195 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35205 | | | | binutils: reachable assertion in | | | | | | | display_debug_names() in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35206 | | | | binutils: NULL pointer dereference | | | | | | | in read_and_display_attr_value() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38533 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() when called by | | | | | | | strip_main() in objcopy.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38533 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4285 | | | | binutils: NULL | | | | | | | pointer dereference in | | | | | | | _bfd_elf_get_symbol_version_string | | | | | | | leads to segfault | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4285 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44840 | | | | binutils: heap-based buffer overflow | | | | | | | in find_section_in_set() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45703 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | display_debug_section() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47007 | | | | binutils: memory leak in | | | | | | | stab_demangle_v3_arg() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47008 | | | | binutils: memory leak | | | | | | | in make_tempdir() and | | | | | | | make_tempname() in bucomm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47008 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47010 | | | | binutils: memory leak in | | | | | | | pr_function_type() in prdbg.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47011 | | | | binutils: memory leak in | | | | | | | parse_stab_struct_fields() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47011 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47673 | | | | binutils: out-of-bounds | | | | | | | read in parse_module() in | | | | | | | bfd/vms-alpha.c via addr2line | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47695 | | | | binutils: uninitialized field in | | | | | | | bfd_mach_o_get_synthetic_symtab() | | | | | | | in match-o.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47696 | | | | binutils: segmentation fault in | | | | | | | compare_symbols() in objdump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48063 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | load_separate_debug_files() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48063 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48064 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | _bfd_dwarf2_find_nearest_line_with_alt() | | | | | | | in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48065 | | | | binutils: memory leak in | | | | | | | find_abstract_instance() in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48065 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1579 | | | | binutils: Heap-buffer-overflow | | | | | | | binutils-gdb/bfd/libbfd.c | | | | | | | in bfd_getl64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1579 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1972 | | | | binutils: Illegal memory access when | | | | | | | accessing a zer0-lengthverdef table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1972 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25584 | | | | binutils: Out of bounds | | | | | | | read in parse_module | | | | | | | function in bfd/vms-alpha.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25585 | | | | binutils: Field `file_table` | | | | | | | of `struct module | | | | | | | *module` is uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25586 | | | | binutils: Local variable | | | | | | | `ch_type` in function | | | | | | | `bfd_init_section_decompress_status` | | | | | | | can be uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25588 | | | | binutils: Field | | | | | | | `the_bfd` of `asymbol` is | | | | | | | uninitialized in function | | | | | | | `bfd_mach_o_get_synthetic_symtab` | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25588 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | binutils-x86-64-linux-gnu | CVE-2017-13716 | | | | binutils: Memory leak with the C++ | | | | | | | symbol demangler routine in libiberty | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13716 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18483 | | | | binutils: Integer overflow | | | | | | | in cplus-dem.c:get_count() | | | | | | | allows for denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18483 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20673 | | | | libiberty: Integer overflow in | | | | | | | demangle_template() function | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20712 | | | | libiberty: heap-based buffer | | | | | | | over-read in d_expression_1 | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-9996 | | | | binutils: Stack-overflow in | | | | | | | libiberty/cplus-dem.c causes crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-9996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010204 | | | | binutils: Improper Input Validation, | | | | | | | Signed/Unsigned Comparison, | | | | | | | Out-of-bounds Read in gold/fileread.cc | | | | | | | and elfcpp/elfcpp_file.h... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-19726 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() in bfd/libbfd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2020-19726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35448 | | | | binutils: Heap-based buffer overflow | | | | | | | in bfd_getl_signed_32() in libbfd.c | | | | | | | because sh_entsize is not... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35448 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20197 | | | | binutils: Race window allows | | | | | | | users to own arbitrary files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20284 | | | | binutils: Heap-based | | | | | | | buffer overflow in | | | | | | | _bfd_elf_slurp_secondary_reloc_section | | | | | | | in elf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20284 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32256 | | | | binutils: stack-overflow issue in | | | | | | | demangle_type in rust-demangle.c. | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32256 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3530 | | | | binutils: stack memory exhaustion in | | | | | | | demangle_path() in rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3549 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | avr_elf32_load_records_from_section() | | | | | | | via large section parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3549 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3826 | | | | libiberty: Heap/stack buffer | | | | | | | overflow in the dlang_lname | | | | | | | function in d-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3826 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45078 | | | | binutils: out-of-bounds write in | | | | | | | stab_xcoff_builtin_type() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46174 | | | | binutils: heap-based buffer | | | | | | | overflow in bfd_getl32() | | | | | | | in libbfd.c via objdump | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46174 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46195 | | | | gcc: uncontrolled recursion | | | | | | | in libiberty/rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46195 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35205 | | | | binutils: reachable assertion in | | | | | | | display_debug_names() in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35206 | | | | binutils: NULL pointer dereference | | | | | | | in read_and_display_attr_value() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38533 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() when called by | | | | | | | strip_main() in objcopy.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38533 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4285 | | | | binutils: NULL | | | | | | | pointer dereference in | | | | | | | _bfd_elf_get_symbol_version_string | | | | | | | leads to segfault | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4285 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44840 | | | | binutils: heap-based buffer overflow | | | | | | | in find_section_in_set() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45703 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | display_debug_section() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47007 | | | | binutils: memory leak in | | | | | | | stab_demangle_v3_arg() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47008 | | | | binutils: memory leak | | | | | | | in make_tempdir() and | | | | | | | make_tempname() in bucomm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47008 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47010 | | | | binutils: memory leak in | | | | | | | pr_function_type() in prdbg.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47011 | | | | binutils: memory leak in | | | | | | | parse_stab_struct_fields() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47011 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47673 | | | | binutils: out-of-bounds | | | | | | | read in parse_module() in | | | | | | | bfd/vms-alpha.c via addr2line | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47695 | | | | binutils: uninitialized field in | | | | | | | bfd_mach_o_get_synthetic_symtab() | | | | | | | in match-o.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47696 | | | | binutils: segmentation fault in | | | | | | | compare_symbols() in objdump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48063 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | load_separate_debug_files() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48063 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48064 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | _bfd_dwarf2_find_nearest_line_with_alt() | | | | | | | in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48065 | | | | binutils: memory leak in | | | | | | | find_abstract_instance() in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48065 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1579 | | | | binutils: Heap-buffer-overflow | | | | | | | binutils-gdb/bfd/libbfd.c | | | | | | | in bfd_getl64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1579 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1972 | | | | binutils: Illegal memory access when | | | | | | | accessing a zer0-lengthverdef table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1972 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25584 | | | | binutils: Out of bounds | | | | | | | read in parse_module | | | | | | | function in bfd/vms-alpha.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25585 | | | | binutils: Field `file_table` | | | | | | | of `struct module | | | | | | | *module` is uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25586 | | | | binutils: Local variable | | | | | | | `ch_type` in function | | | | | | | `bfd_init_section_decompress_status` | | | | | | | can be uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25588 | | | | binutils: Field | | | | | | | `the_bfd` of `asymbol` is | | | | | | | uninitialized in function | | | | | | | `bfd_mach_o_get_synthetic_symtab` | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25588 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | bsdutils | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | comerr-dev | CVE-2022-1304 | HIGH | 1.46.2-2 | | e2fsprogs: out-of-bounds | | | | | | | read/write via crafted filesystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1304 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | coreutils | CVE-2016-2781 | LOW | 8.32-4 | | coreutils: Non-privileged | | | | | | | session can escape to the | | | | | | | parent session in chroot | | | | | | | -->avd.aquasec.com/nvd/cve-2016-2781 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-18018 | | | | coreutils: race condition | | | | | | | vulnerability in chown and chgrp | | | | | | | -->avd.aquasec.com/nvd/cve-2017-18018 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | cpp-10 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | curl | CVE-2022-32221 | CRITICAL | 7.74.0-1.3+deb11u2 | 7.74.0-1.3+deb11u5 | curl: POST following PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32221 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23914 | | | | curl: HSTS ignored | | | | | | | on multiple requests | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23914 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38545 | | | 7.74.0-1.3+deb11u10 | curl: heap based buffer overflow | | | | | | | in the SOCKS5 proxy handshake | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38545 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42916 | HIGH | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43551 | | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43551 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27533 | | | 7.74.0-1.3+deb11u8 | curl: TELNET option IAC injection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27533 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27534 | | | | curl: SFTP path ~ | | | | | | | resolving discrepancy | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27534 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2398 | | | | curl: HTTP/2 push | | | | | | | headers memory-leak | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2398 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43552 | MEDIUM | | 7.74.0-1.3+deb11u5 | curl: Use-after-free triggered | | | | | | | by an HTTP proxy deny response | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43552 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23915 | | | | curl: HSTS amnesia with --parallel | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23916 | | | 7.74.0-1.3+deb11u7 | curl: HTTP multi-header | | | | | | | compression denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27535 | | | 7.74.0-1.3+deb11u8 | curl: FTP too eager connection reuse | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27535 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27536 | | | | curl: GSS delegation too | | | | | | | eager connection re-use | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27536 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27538 | | | | curl: SSH connection | | | | | | | too eager reuse still | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27538 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28321 | | | 7.74.0-1.3+deb11u9 | curl: IDN wildcard match may lead | | | | | | | to Improper Cerificate Validation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28321 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46218 | | | 7.74.0-1.3+deb11u11 | curl: information disclosure | | | | | | | by exploiting a mixed case flaw | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46218 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46219 | | | | curl: excessively long file name | | | | | | | may lead to unknown HSTS status | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46219 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22922 | LOW | | | curl: Content not matching hash | | | | | | | in Metalink is not being discarded | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22923 | | | | curl: Metalink download | | | | | | | sends credentials | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35252 | | | 7.74.0-1.3+deb11u3 | curl: Incorrect handling of | | | | | | | control code characters in cookies | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35252 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28320 | | | | curl: siglongjmp race | | | | | | | condition may lead to crash | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28320 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28322 | | | 7.74.0-1.3+deb11u9 | curl: more POST-after-PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28322 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38546 | | | 7.74.0-1.3+deb11u10 | curl: cookie injection with none file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2379 | | | | curl: QUIC certificate | | | | | | | check bypass with wolfSSL | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2379 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | dirmngr | CVE-2022-3219 | | 2.2.27-2+deb11u2 | | gnupg: denial of service | | | | | | | issue (resource consumption) | | | | | | | using compressed packets | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3219 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | e2fsprogs | CVE-2022-1304 | HIGH | 1.46.2-2 | | e2fsprogs: out-of-bounds | | | | | | | read/write via crafted filesystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1304 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | file | CVE-2022-48554 | MEDIUM | 1:5.39-3 | 1:5.39-3+deb11u1 | file: stack-based buffer over-read | | | | | | | in file_copystr in funcs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48554 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | g++-10 | CVE-2023-4039 | | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+ + + +------------------------------+ + | gcc-10 | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gcc-10-base | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + +-------------------------+------------------------------+ + | gcc-9-base | | | 9.3.0-22 | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | gir1.2-gdkpixbuf-2.0 | CVE-2021-44648 | HIGH | 2.42.2+dfsg-1 | 2.42.2+dfsg-1+deb11u1 | gdk-pixbuf: heap-buffer overflow | | | | | | | when decoding the lzw compressed | | | | | | | stream of image data... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-44648 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-46829 | | | | gdk-pixbuf: heap-based buffer | | | | | | | overflow when compositing or | | | | | | | clearing frames in GIF files... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46829 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48622 | | | | gnome: heap memory | | | | | | | corruption on gdk-pixbuf | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48622 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | gir1.2-rsvg-2.0 | CVE-2023-38633 | MEDIUM | 2.50.3+dfsg-1 | 2.50.3+dfsg-1+deb11u1 | librsvg: Arbitrary file read when | | | | | | | xinclude href has special characters | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38633 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | git | CVE-2022-23521 | CRITICAL | 1:2.30.2-1 | 1:2.30.2-1+deb11u1 | git: gitattributes | | | | | | | parsing integer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2022-23521 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-41903 | | | | git: Heap overflow in `git archive`, | | | | | | | `git log --format` leading to RCE... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41903 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2022-24765 | HIGH | | | git: On multi-user machines | | | | | | | Git users might find | | | | | | | themselves unexpectedly in a... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-24765 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-29187 | | | | git: Bypass of | | | | | | | safe.directory protections | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29187 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-39260 | | | | git: git shell function that | | | | | | | splits command arguments | | | | | | | can lead to arbitrary... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39260 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23946 | | | 1:2.30.2-1+deb11u2 | git: git apply: a path outside the | | | | | | | working tree can be overwritten... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23946 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25652 | | | | git: by feeding specially | | | | | | | crafted input to `git | | | | | | | apply --reject`, a path... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25652 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29007 | | | | git: arbitrary configuration | | | | | | | injection when renaming or | | | | | | | deleting a section from a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29007 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39253 | MEDIUM | | 1:2.30.2-1+deb11u1 | git: exposure of sensitive | | | | | | | information to a malicious actor | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39253 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22490 | | | 1:2.30.2-1+deb11u2 | git: data exfiltration with | | | | | | | maliciously crafted repository | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22490 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-1000021 | LOW | | | git: client prints server-sent | | | | | | | ANSI escape codes to the | | | | | | | terminal, allowing for... | | | | | | | -->avd.aquasec.com/nvd/cve-2018-1000021 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-24975 | | | | git: The --mirror option | | | | | | | for git leaks secret for | | | | | | | deleted content, aka... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-24975 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25815 | | | | git: malicious placement of | | | | | | | crafted messages when git | | | | | | | was compiled with runtime... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25815 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | git-man | CVE-2022-23521 | CRITICAL | | 1:2.30.2-1+deb11u1 | git: gitattributes | | | | | | | parsing integer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2022-23521 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-41903 | | | | git: Heap overflow in `git archive`, | | | | | | | `git log --format` leading to RCE... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41903 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2022-24765 | HIGH | | | git: On multi-user machines | | | | | | | Git users might find | | | | | | | themselves unexpectedly in a... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-24765 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-29187 | | | | git: Bypass of | | | | | | | safe.directory protections | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29187 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-39260 | | | | git: git shell function that | | | | | | | splits command arguments | | | | | | | can lead to arbitrary... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39260 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23946 | | | 1:2.30.2-1+deb11u2 | git: git apply: a path outside the | | | | | | | working tree can be overwritten... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23946 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25652 | | | | git: by feeding specially | | | | | | | crafted input to `git | | | | | | | apply --reject`, a path... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25652 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29007 | | | | git: arbitrary configuration | | | | | | | injection when renaming or | | | | | | | deleting a section from a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29007 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39253 | MEDIUM | | 1:2.30.2-1+deb11u1 | git: exposure of sensitive | | | | | | | information to a malicious actor | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39253 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22490 | | | 1:2.30.2-1+deb11u2 | git: data exfiltration with | | | | | | | maliciously crafted repository | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22490 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-1000021 | LOW | | | git: client prints server-sent | | | | | | | ANSI escape codes to the | | | | | | | terminal, allowing for... | | | | | | | -->avd.aquasec.com/nvd/cve-2018-1000021 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-24975 | | | | git: The --mirror option | | | | | | | for git leaks secret for | | | | | | | deleted content, aka... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-24975 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25815 | | | | git: malicious placement of | | | | | | | crafted messages when git | | | | | | | was compiled with runtime... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25815 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | gnupg | CVE-2022-3219 | | 2.2.27-2+deb11u2 | | gnupg: denial of service | | | | | | | issue (resource consumption) | | | | | | | using compressed packets | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3219 | +------------------------------+ + + +------------------------------+ + | gnupg-l10n | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gnupg-utils | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpg | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpg-agent | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpg-wks-client | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpg-wks-server | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpgconf | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpgsm | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | gpgv | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | imagemagick | CVE-2021-20309 | HIGH | 8:6.9.11.60+dfsg-1.3 | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | imagemagick-6-common | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | imagemagick-6.q16 | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | krb5-multidev | CVE-2022-42898 | HIGH | 1.18.3-6+deb11u1 | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libaom0 | CVE-2021-30473 | CRITICAL | 1.0.0.errata1-3 | 1.0.0.errata1-3+deb11u1 | aom_image.c in libaom in | | | | | | | AOMedia before 2021-04-07 | | | | | | | frees memory that i ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-30473 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-30474 | | | | aom_dsp/grain_table.c in | | | | | | | libaom in AOMedia before | | | | | | | 2021-03-30 has a use ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-30474 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-30475 | | | | aom_dsp/noise_model.c in | | | | | | | libaom in AOMedia before | | | | | | | 2021-03-24 has a buf ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-30475 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6879 | | | | aom: heap-buffer-overflow | | | | | | | on frame size change | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6879 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-0478 | HIGH | | | In extend_frame_lowbd of | | | | | | | restoration.c, there is a | | | | | | | possible out of bou ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-0478 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-36131 | | | 1.0.0.errata1-3+deb11u1 | AOM v2.0.1 was discovered to contain | | | | | | | a stack buffer overflow via the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-36131 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-36133 | | | | AOM v2.0.1 was discovered to contain | | | | | | | a global buffer overflow via the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-36133 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2020-36130 | MEDIUM | | | AOM v2.0.1 was discovered to contain | | | | | | | a NULL pointer dereference via th... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-36130 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-36135 | | | | AOM v2.0.1 was discovered to contain | | | | | | | a NULL pointer dereference via th... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-36135 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libapr1 | CVE-2022-24963 | CRITICAL | 1.7.0-6+deb11u1 | 1.7.0-6+deb11u2 | apr: integer overflow/wraparound | | | | | | | in apr_encode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-24963 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libaprutil1 | CVE-2022-25147 | MEDIUM | 1.6.1-5 | 1.6.1-5+deb11u1 | apr-util: out-of-bounds | | | | | | | writes in the apr_base64 | | | | | | | -->avd.aquasec.com/nvd/cve-2022-25147 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libapt-pkg6.0 | CVE-2011-3374 | LOW | 2.2.4 | | It was found that apt-key in apt, | | | | | | | all versions, do not correctly... | | | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libasan6 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+ + + +------------------------------+ + | libatomic1 | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libbinutils | CVE-2017-13716 | LOW | 2.35.2-2 | | binutils: Memory leak with the C++ | | | | | | | symbol demangler routine in libiberty | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13716 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18483 | | | | binutils: Integer overflow | | | | | | | in cplus-dem.c:get_count() | | | | | | | allows for denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18483 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20673 | | | | libiberty: Integer overflow in | | | | | | | demangle_template() function | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20712 | | | | libiberty: heap-based buffer | | | | | | | over-read in d_expression_1 | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-9996 | | | | binutils: Stack-overflow in | | | | | | | libiberty/cplus-dem.c causes crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-9996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010204 | | | | binutils: Improper Input Validation, | | | | | | | Signed/Unsigned Comparison, | | | | | | | Out-of-bounds Read in gold/fileread.cc | | | | | | | and elfcpp/elfcpp_file.h... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-19726 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() in bfd/libbfd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2020-19726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35448 | | | | binutils: Heap-based buffer overflow | | | | | | | in bfd_getl_signed_32() in libbfd.c | | | | | | | because sh_entsize is not... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35448 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20197 | | | | binutils: Race window allows | | | | | | | users to own arbitrary files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20284 | | | | binutils: Heap-based | | | | | | | buffer overflow in | | | | | | | _bfd_elf_slurp_secondary_reloc_section | | | | | | | in elf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20284 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32256 | | | | binutils: stack-overflow issue in | | | | | | | demangle_type in rust-demangle.c. | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32256 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3530 | | | | binutils: stack memory exhaustion in | | | | | | | demangle_path() in rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3549 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | avr_elf32_load_records_from_section() | | | | | | | via large section parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3549 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3826 | | | | libiberty: Heap/stack buffer | | | | | | | overflow in the dlang_lname | | | | | | | function in d-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3826 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45078 | | | | binutils: out-of-bounds write in | | | | | | | stab_xcoff_builtin_type() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46174 | | | | binutils: heap-based buffer | | | | | | | overflow in bfd_getl32() | | | | | | | in libbfd.c via objdump | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46174 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46195 | | | | gcc: uncontrolled recursion | | | | | | | in libiberty/rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46195 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35205 | | | | binutils: reachable assertion in | | | | | | | display_debug_names() in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35206 | | | | binutils: NULL pointer dereference | | | | | | | in read_and_display_attr_value() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38533 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() when called by | | | | | | | strip_main() in objcopy.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38533 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4285 | | | | binutils: NULL | | | | | | | pointer dereference in | | | | | | | _bfd_elf_get_symbol_version_string | | | | | | | leads to segfault | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4285 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44840 | | | | binutils: heap-based buffer overflow | | | | | | | in find_section_in_set() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45703 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | display_debug_section() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47007 | | | | binutils: memory leak in | | | | | | | stab_demangle_v3_arg() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47008 | | | | binutils: memory leak | | | | | | | in make_tempdir() and | | | | | | | make_tempname() in bucomm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47008 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47010 | | | | binutils: memory leak in | | | | | | | pr_function_type() in prdbg.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47011 | | | | binutils: memory leak in | | | | | | | parse_stab_struct_fields() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47011 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47673 | | | | binutils: out-of-bounds | | | | | | | read in parse_module() in | | | | | | | bfd/vms-alpha.c via addr2line | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47695 | | | | binutils: uninitialized field in | | | | | | | bfd_mach_o_get_synthetic_symtab() | | | | | | | in match-o.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47696 | | | | binutils: segmentation fault in | | | | | | | compare_symbols() in objdump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48063 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | load_separate_debug_files() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48063 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48064 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | _bfd_dwarf2_find_nearest_line_with_alt() | | | | | | | in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48065 | | | | binutils: memory leak in | | | | | | | find_abstract_instance() in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48065 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1579 | | | | binutils: Heap-buffer-overflow | | | | | | | binutils-gdb/bfd/libbfd.c | | | | | | | in bfd_getl64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1579 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1972 | | | | binutils: Illegal memory access when | | | | | | | accessing a zer0-lengthverdef table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1972 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25584 | | | | binutils: Out of bounds | | | | | | | read in parse_module | | | | | | | function in bfd/vms-alpha.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25585 | | | | binutils: Field `file_table` | | | | | | | of `struct module | | | | | | | *module` is uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25586 | | | | binutils: Local variable | | | | | | | `ch_type` in function | | | | | | | `bfd_init_section_decompress_status` | | | | | | | can be uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25588 | | | | binutils: Field | | | | | | | `the_bfd` of `asymbol` is | | | | | | | uninitialized in function | | | | | | | `bfd_mach_o_get_synthetic_symtab` | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25588 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libblkid-dev | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libblkid1 | CVE-2024-28085 | HIGH | | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libbluetooth-dev | CVE-2021-43400 | CRITICAL | 5.55-3.1 | | bluez: use-after-free | | | | | | | in gatt-database.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-43400 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0204 | HIGH | | | bluez: heap-based buffer | | | | | | | overflow in the implementation | | | | | | | of the gatt protocol | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39176 | | | | bluez: BlueZ allows physically | | | | | | | proximate attackers to obtain | | | | | | | sensitive information because | | | | | | | profiles/audio/avrcp.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39176 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39177 | | | | bluez: BlueZ allows physically | | | | | | | proximate attackers to | | | | | | | cause a denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39177 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3658 | MEDIUM | | | bluez: adapter incorrectly | | | | | | | restores Discoverable | | | | | | | state after powered down | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3658 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-41229 | | | | bluez: memory leak | | | | | | | in the SDP protocol | | | | | | | -->avd.aquasec.com/nvd/cve-2021-41229 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45866 | | | 5.55-3.1+deb11u1 | bluez: unauthorized HID | | | | | | | device connections allows | | | | | | | keystroke injection and | | | | | | | arbitrary commands execution... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45866 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9797 | LOW | | | bluez: buffer over-read | | | | | | | in l2cap_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9797 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9798 | | | | bluez: use-after-free in conf_opt() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9798 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9799 | | | | bluez: buffer overflow | | | | | | | in pklg_read_hci() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9799 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9800 | | | | bluez: buffer overflow | | | | | | | in pin_code_reply_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9800 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9801 | | | | bluez: buffer overflow | | | | | | | in set_ext_ctrl() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9801 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9802 | | | | bluez: buffer over-read | | | | | | | in l2cap_packet() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9802 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9803 | | | | bluez: out-of-bounds | | | | | | | read in le_meta_ev_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9803 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9804 | | | | bluez: buffer overflow | | | | | | | in commands_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9917 | | | | bluez: Heap-based buffer overflow | | | | | | | vulnerability in read_n() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9917 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9918 | | | | bluez: Out of bounds stack | | | | | | | read in packet_hexdump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9918 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libbluetooth3 | CVE-2021-43400 | CRITICAL | | | bluez: use-after-free | | | | | | | in gatt-database.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-43400 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0204 | HIGH | | | bluez: heap-based buffer | | | | | | | overflow in the implementation | | | | | | | of the gatt protocol | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39176 | | | | bluez: BlueZ allows physically | | | | | | | proximate attackers to obtain | | | | | | | sensitive information because | | | | | | | profiles/audio/avrcp.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39176 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39177 | | | | bluez: BlueZ allows physically | | | | | | | proximate attackers to | | | | | | | cause a denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39177 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3658 | MEDIUM | | | bluez: adapter incorrectly | | | | | | | restores Discoverable | | | | | | | state after powered down | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3658 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-41229 | | | | bluez: memory leak | | | | | | | in the SDP protocol | | | | | | | -->avd.aquasec.com/nvd/cve-2021-41229 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45866 | | | 5.55-3.1+deb11u1 | bluez: unauthorized HID | | | | | | | device connections allows | | | | | | | keystroke injection and | | | | | | | arbitrary commands execution... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45866 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9797 | LOW | | | bluez: buffer over-read | | | | | | | in l2cap_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9797 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9798 | | | | bluez: use-after-free in conf_opt() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9798 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9799 | | | | bluez: buffer overflow | | | | | | | in pklg_read_hci() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9799 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9800 | | | | bluez: buffer overflow | | | | | | | in pin_code_reply_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9800 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9801 | | | | bluez: buffer overflow | | | | | | | in set_ext_ctrl() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9801 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9802 | | | | bluez: buffer over-read | | | | | | | in l2cap_packet() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9802 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9803 | | | | bluez: out-of-bounds | | | | | | | read in le_meta_ev_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9803 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9804 | | | | bluez: buffer overflow | | | | | | | in commands_dump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9917 | | | | bluez: Heap-based buffer overflow | | | | | | | vulnerability in read_n() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9917 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9918 | | | | bluez: Out of bounds stack | | | | | | | read in packet_hexdump() | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9918 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libc-bin | CVE-2021-3999 | HIGH | 2.31-13+deb11u3 | 2.31-13+deb11u4 | glibc: Off-by-one buffer | | | | | | | overflow/underflow in getcwd() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4911 | | | 2.31-13+deb11u7 | glibc: buffer overflow in ld.so | | | | | | | leading to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4911 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2961 | | | 2.31-13+deb11u9 | glibc: Out of bounds write in | | | | | | | iconv may lead to remote code... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2961 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4806 | MEDIUM | | | glibc: potential | | | | | | | use-after-free in getaddrinfo() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4806 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4813 | | | | glibc: potential | | | | | | | use-after-free in gaih_inet() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4813 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-4756 | LOW | | | glibc: glob implementation | | | | | | | can cause excessive CPU and | | | | | | | memory consumption due to... | | | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | | | | | | | leads to code execution because of... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010024 | | | | glibc: ASLR bypass using | | | | | | | cache of thread stack and heap | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010025 | | | | glibc: information disclosure of heap | | | | | | | addresses of pthread_created thread | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libc-dev-bin | CVE-2021-3999 | HIGH | | 2.31-13+deb11u4 | glibc: Off-by-one buffer | | | | | | | overflow/underflow in getcwd() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4911 | | | 2.31-13+deb11u7 | glibc: buffer overflow in ld.so | | | | | | | leading to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4911 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2961 | | | 2.31-13+deb11u9 | glibc: Out of bounds write in | | | | | | | iconv may lead to remote code... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2961 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4806 | MEDIUM | | | glibc: potential | | | | | | | use-after-free in getaddrinfo() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4806 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4813 | | | | glibc: potential | | | | | | | use-after-free in gaih_inet() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4813 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-4756 | LOW | | | glibc: glob implementation | | | | | | | can cause excessive CPU and | | | | | | | memory consumption due to... | | | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | | | | | | | leads to code execution because of... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010024 | | | | glibc: ASLR bypass using | | | | | | | cache of thread stack and heap | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010025 | | | | glibc: information disclosure of heap | | | | | | | addresses of pthread_created thread | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libc6 | CVE-2021-3999 | HIGH | | 2.31-13+deb11u4 | glibc: Off-by-one buffer | | | | | | | overflow/underflow in getcwd() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4911 | | | 2.31-13+deb11u7 | glibc: buffer overflow in ld.so | | | | | | | leading to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4911 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2961 | | | 2.31-13+deb11u9 | glibc: Out of bounds write in | | | | | | | iconv may lead to remote code... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2961 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4806 | MEDIUM | | | glibc: potential | | | | | | | use-after-free in getaddrinfo() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4806 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4813 | | | | glibc: potential | | | | | | | use-after-free in gaih_inet() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4813 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-4756 | LOW | | | glibc: glob implementation | | | | | | | can cause excessive CPU and | | | | | | | memory consumption due to... | | | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | | | | | | | leads to code execution because of... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010024 | | | | glibc: ASLR bypass using | | | | | | | cache of thread stack and heap | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010025 | | | | glibc: information disclosure of heap | | | | | | | addresses of pthread_created thread | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libc6-dev | CVE-2021-3999 | HIGH | | 2.31-13+deb11u4 | glibc: Off-by-one buffer | | | | | | | overflow/underflow in getcwd() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4911 | | | 2.31-13+deb11u7 | glibc: buffer overflow in ld.so | | | | | | | leading to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4911 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2961 | | | 2.31-13+deb11u9 | glibc: Out of bounds write in | | | | | | | iconv may lead to remote code... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2961 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4806 | MEDIUM | | | glibc: potential | | | | | | | use-after-free in getaddrinfo() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4806 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4813 | | | | glibc: potential | | | | | | | use-after-free in gaih_inet() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4813 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-4756 | LOW | | | glibc: glob implementation | | | | | | | can cause excessive CPU and | | | | | | | memory consumption due to... | | | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | | | | | | | leads to code execution because of... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010024 | | | | glibc: ASLR bypass using | | | | | | | cache of thread stack and heap | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010025 | | | | glibc: information disclosure of heap | | | | | | | addresses of pthread_created thread | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | | | | | | | function check_dst_limits_calc_pos_1 | | | | | | | in posix/regexec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libcairo-gobject2 | CVE-2017-7475 | | 1.16.0-5 | | cairo: NULL pointer dereference | | | | | | | with a crafted font file | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7475 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18064 | | | | cairo: Stack-based buffer | | | | | | | overflow via parsing of | | | | | | | crafted WebKitGTK+ document | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6461 | | | | cairo: assertion problem | | | | | | | in _cairo_arc_in_direction | | | | | | | in cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6461 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6462 | | | | cairo: infinite loop in the | | | | | | | function _arc_error_normalized | | | | | | | in the file cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6462 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libcairo-script-interpreter2 | CVE-2017-7475 | | | | cairo: NULL pointer dereference | | | | | | | with a crafted font file | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7475 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18064 | | | | cairo: Stack-based buffer | | | | | | | overflow via parsing of | | | | | | | crafted WebKitGTK+ document | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6461 | | | | cairo: assertion problem | | | | | | | in _cairo_arc_in_direction | | | | | | | in cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6461 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6462 | | | | cairo: infinite loop in the | | | | | | | function _arc_error_normalized | | | | | | | in the file cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6462 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libcairo2 | CVE-2017-7475 | | | | cairo: NULL pointer dereference | | | | | | | with a crafted font file | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7475 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18064 | | | | cairo: Stack-based buffer | | | | | | | overflow via parsing of | | | | | | | crafted WebKitGTK+ document | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6461 | | | | cairo: assertion problem | | | | | | | in _cairo_arc_in_direction | | | | | | | in cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6461 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6462 | | | | cairo: infinite loop in the | | | | | | | function _arc_error_normalized | | | | | | | in the file cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6462 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libcairo2-dev | CVE-2017-7475 | | | | cairo: NULL pointer dereference | | | | | | | with a crafted font file | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7475 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18064 | | | | cairo: Stack-based buffer | | | | | | | overflow via parsing of | | | | | | | crafted WebKitGTK+ document | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6461 | | | | cairo: assertion problem | | | | | | | in _cairo_arc_in_direction | | | | | | | in cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6461 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6462 | | | | cairo: infinite loop in the | | | | | | | function _arc_error_normalized | | | | | | | in the file cairo-arc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6462 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libcc1-0 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libcom-err2 | CVE-2022-1304 | HIGH | 1.46.2-2 | | e2fsprogs: out-of-bounds | | | | | | | read/write via crafted filesystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1304 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libctf-nobfd0 | CVE-2017-13716 | LOW | 2.35.2-2 | | binutils: Memory leak with the C++ | | | | | | | symbol demangler routine in libiberty | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13716 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18483 | | | | binutils: Integer overflow | | | | | | | in cplus-dem.c:get_count() | | | | | | | allows for denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18483 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20673 | | | | libiberty: Integer overflow in | | | | | | | demangle_template() function | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20712 | | | | libiberty: heap-based buffer | | | | | | | over-read in d_expression_1 | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-9996 | | | | binutils: Stack-overflow in | | | | | | | libiberty/cplus-dem.c causes crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-9996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010204 | | | | binutils: Improper Input Validation, | | | | | | | Signed/Unsigned Comparison, | | | | | | | Out-of-bounds Read in gold/fileread.cc | | | | | | | and elfcpp/elfcpp_file.h... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-19726 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() in bfd/libbfd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2020-19726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35448 | | | | binutils: Heap-based buffer overflow | | | | | | | in bfd_getl_signed_32() in libbfd.c | | | | | | | because sh_entsize is not... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35448 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20197 | | | | binutils: Race window allows | | | | | | | users to own arbitrary files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20284 | | | | binutils: Heap-based | | | | | | | buffer overflow in | | | | | | | _bfd_elf_slurp_secondary_reloc_section | | | | | | | in elf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20284 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32256 | | | | binutils: stack-overflow issue in | | | | | | | demangle_type in rust-demangle.c. | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32256 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3530 | | | | binutils: stack memory exhaustion in | | | | | | | demangle_path() in rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3549 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | avr_elf32_load_records_from_section() | | | | | | | via large section parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3549 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3826 | | | | libiberty: Heap/stack buffer | | | | | | | overflow in the dlang_lname | | | | | | | function in d-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3826 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45078 | | | | binutils: out-of-bounds write in | | | | | | | stab_xcoff_builtin_type() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46174 | | | | binutils: heap-based buffer | | | | | | | overflow in bfd_getl32() | | | | | | | in libbfd.c via objdump | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46174 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46195 | | | | gcc: uncontrolled recursion | | | | | | | in libiberty/rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46195 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35205 | | | | binutils: reachable assertion in | | | | | | | display_debug_names() in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35206 | | | | binutils: NULL pointer dereference | | | | | | | in read_and_display_attr_value() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38533 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() when called by | | | | | | | strip_main() in objcopy.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38533 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4285 | | | | binutils: NULL | | | | | | | pointer dereference in | | | | | | | _bfd_elf_get_symbol_version_string | | | | | | | leads to segfault | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4285 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44840 | | | | binutils: heap-based buffer overflow | | | | | | | in find_section_in_set() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45703 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | display_debug_section() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47007 | | | | binutils: memory leak in | | | | | | | stab_demangle_v3_arg() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47008 | | | | binutils: memory leak | | | | | | | in make_tempdir() and | | | | | | | make_tempname() in bucomm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47008 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47010 | | | | binutils: memory leak in | | | | | | | pr_function_type() in prdbg.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47011 | | | | binutils: memory leak in | | | | | | | parse_stab_struct_fields() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47011 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47673 | | | | binutils: out-of-bounds | | | | | | | read in parse_module() in | | | | | | | bfd/vms-alpha.c via addr2line | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47695 | | | | binutils: uninitialized field in | | | | | | | bfd_mach_o_get_synthetic_symtab() | | | | | | | in match-o.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47696 | | | | binutils: segmentation fault in | | | | | | | compare_symbols() in objdump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48063 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | load_separate_debug_files() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48063 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48064 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | _bfd_dwarf2_find_nearest_line_with_alt() | | | | | | | in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48065 | | | | binutils: memory leak in | | | | | | | find_abstract_instance() in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48065 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1579 | | | | binutils: Heap-buffer-overflow | | | | | | | binutils-gdb/bfd/libbfd.c | | | | | | | in bfd_getl64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1579 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1972 | | | | binutils: Illegal memory access when | | | | | | | accessing a zer0-lengthverdef table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1972 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25584 | | | | binutils: Out of bounds | | | | | | | read in parse_module | | | | | | | function in bfd/vms-alpha.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25585 | | | | binutils: Field `file_table` | | | | | | | of `struct module | | | | | | | *module` is uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25586 | | | | binutils: Local variable | | | | | | | `ch_type` in function | | | | | | | `bfd_init_section_decompress_status` | | | | | | | can be uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25588 | | | | binutils: Field | | | | | | | `the_bfd` of `asymbol` is | | | | | | | uninitialized in function | | | | | | | `bfd_mach_o_get_synthetic_symtab` | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25588 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libctf0 | CVE-2017-13716 | | | | binutils: Memory leak with the C++ | | | | | | | symbol demangler routine in libiberty | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13716 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-18483 | | | | binutils: Integer overflow | | | | | | | in cplus-dem.c:get_count() | | | | | | | allows for denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2018-18483 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20673 | | | | libiberty: Integer overflow in | | | | | | | demangle_template() function | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20712 | | | | libiberty: heap-based buffer | | | | | | | over-read in d_expression_1 | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-9996 | | | | binutils: Stack-overflow in | | | | | | | libiberty/cplus-dem.c causes crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-9996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-1010204 | | | | binutils: Improper Input Validation, | | | | | | | Signed/Unsigned Comparison, | | | | | | | Out-of-bounds Read in gold/fileread.cc | | | | | | | and elfcpp/elfcpp_file.h... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-1010204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-19726 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() in bfd/libbfd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2020-19726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35448 | | | | binutils: Heap-based buffer overflow | | | | | | | in bfd_getl_signed_32() in libbfd.c | | | | | | | because sh_entsize is not... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35448 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20197 | | | | binutils: Race window allows | | | | | | | users to own arbitrary files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20284 | | | | binutils: Heap-based | | | | | | | buffer overflow in | | | | | | | _bfd_elf_slurp_secondary_reloc_section | | | | | | | in elf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20284 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32256 | | | | binutils: stack-overflow issue in | | | | | | | demangle_type in rust-demangle.c. | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32256 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3530 | | | | binutils: stack memory exhaustion in | | | | | | | demangle_path() in rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3549 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | avr_elf32_load_records_from_section() | | | | | | | via large section parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3549 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3826 | | | | libiberty: Heap/stack buffer | | | | | | | overflow in the dlang_lname | | | | | | | function in d-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3826 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45078 | | | | binutils: out-of-bounds write in | | | | | | | stab_xcoff_builtin_type() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46174 | | | | binutils: heap-based buffer | | | | | | | overflow in bfd_getl32() | | | | | | | in libbfd.c via objdump | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46174 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46195 | | | | gcc: uncontrolled recursion | | | | | | | in libiberty/rust-demangle.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46195 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35205 | | | | binutils: reachable assertion in | | | | | | | display_debug_names() in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35206 | | | | binutils: NULL pointer dereference | | | | | | | in read_and_display_attr_value() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38533 | | | | binutils: heap-based buffer overflow | | | | | | | in bfd_getl32() when called by | | | | | | | strip_main() in objcopy.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38533 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4285 | | | | binutils: NULL | | | | | | | pointer dereference in | | | | | | | _bfd_elf_get_symbol_version_string | | | | | | | leads to segfault | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4285 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44840 | | | | binutils: heap-based buffer overflow | | | | | | | in find_section_in_set() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45703 | | | | binutils: heap-based | | | | | | | buffer overflow in | | | | | | | display_debug_section() in readelf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47007 | | | | binutils: memory leak in | | | | | | | stab_demangle_v3_arg() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47008 | | | | binutils: memory leak | | | | | | | in make_tempdir() and | | | | | | | make_tempname() in bucomm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47008 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47010 | | | | binutils: memory leak in | | | | | | | pr_function_type() in prdbg.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47011 | | | | binutils: memory leak in | | | | | | | parse_stab_struct_fields() in stabs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47011 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47673 | | | | binutils: out-of-bounds | | | | | | | read in parse_module() in | | | | | | | bfd/vms-alpha.c via addr2line | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47695 | | | | binutils: uninitialized field in | | | | | | | bfd_mach_o_get_synthetic_symtab() | | | | | | | in match-o.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47696 | | | | binutils: segmentation fault in | | | | | | | compare_symbols() in objdump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48063 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | load_separate_debug_files() | | | | | | | in dwarf.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48063 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48064 | | | | binutils: excessive | | | | | | | memory consumption in | | | | | | | _bfd_dwarf2_find_nearest_line_with_alt() | | | | | | | in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48064 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48065 | | | | binutils: memory leak in | | | | | | | find_abstract_instance() in dwarf2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48065 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1579 | | | | binutils: Heap-buffer-overflow | | | | | | | binutils-gdb/bfd/libbfd.c | | | | | | | in bfd_getl64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1579 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1972 | | | | binutils: Illegal memory access when | | | | | | | accessing a zer0-lengthverdef table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1972 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25584 | | | | binutils: Out of bounds | | | | | | | read in parse_module | | | | | | | function in bfd/vms-alpha.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25585 | | | | binutils: Field `file_table` | | | | | | | of `struct module | | | | | | | *module` is uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25586 | | | | binutils: Local variable | | | | | | | `ch_type` in function | | | | | | | `bfd_init_section_decompress_status` | | | | | | | can be uninitialized | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25588 | | | | binutils: Field | | | | | | | `the_bfd` of `asymbol` is | | | | | | | uninitialized in function | | | | | | | `bfd_mach_o_get_synthetic_symtab` | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25588 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libcurl3-gnutls | CVE-2022-32221 | CRITICAL | 7.74.0-1.3+deb11u2 | 7.74.0-1.3+deb11u5 | curl: POST following PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32221 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23914 | | | | curl: HSTS ignored | | | | | | | on multiple requests | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23914 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38545 | | | 7.74.0-1.3+deb11u10 | curl: heap based buffer overflow | | | | | | | in the SOCKS5 proxy handshake | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38545 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42916 | HIGH | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43551 | | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43551 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27533 | | | 7.74.0-1.3+deb11u8 | curl: TELNET option IAC injection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27533 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27534 | | | | curl: SFTP path ~ | | | | | | | resolving discrepancy | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27534 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2398 | | | | curl: HTTP/2 push | | | | | | | headers memory-leak | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2398 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43552 | MEDIUM | | 7.74.0-1.3+deb11u5 | curl: Use-after-free triggered | | | | | | | by an HTTP proxy deny response | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43552 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23915 | | | | curl: HSTS amnesia with --parallel | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23916 | | | 7.74.0-1.3+deb11u7 | curl: HTTP multi-header | | | | | | | compression denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27535 | | | 7.74.0-1.3+deb11u8 | curl: FTP too eager connection reuse | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27535 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27536 | | | | curl: GSS delegation too | | | | | | | eager connection re-use | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27536 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27538 | | | | curl: SSH connection | | | | | | | too eager reuse still | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27538 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28321 | | | 7.74.0-1.3+deb11u9 | curl: IDN wildcard match may lead | | | | | | | to Improper Cerificate Validation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28321 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46218 | | | 7.74.0-1.3+deb11u11 | curl: information disclosure | | | | | | | by exploiting a mixed case flaw | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46218 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46219 | | | | curl: excessively long file name | | | | | | | may lead to unknown HSTS status | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46219 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22922 | LOW | | | curl: Content not matching hash | | | | | | | in Metalink is not being discarded | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22923 | | | | curl: Metalink download | | | | | | | sends credentials | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35252 | | | 7.74.0-1.3+deb11u3 | curl: Incorrect handling of | | | | | | | control code characters in cookies | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35252 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28320 | | | | curl: siglongjmp race | | | | | | | condition may lead to crash | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28320 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28322 | | | 7.74.0-1.3+deb11u9 | curl: more POST-after-PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28322 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38546 | | | 7.74.0-1.3+deb11u10 | curl: cookie injection with none file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2379 | | | | curl: QUIC certificate | | | | | | | check bypass with wolfSSL | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2379 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libcurl4 | CVE-2022-32221 | CRITICAL | | 7.74.0-1.3+deb11u5 | curl: POST following PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32221 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23914 | | | | curl: HSTS ignored | | | | | | | on multiple requests | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23914 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38545 | | | 7.74.0-1.3+deb11u10 | curl: heap based buffer overflow | | | | | | | in the SOCKS5 proxy handshake | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38545 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42916 | HIGH | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43551 | | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43551 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27533 | | | 7.74.0-1.3+deb11u8 | curl: TELNET option IAC injection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27533 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27534 | | | | curl: SFTP path ~ | | | | | | | resolving discrepancy | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27534 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2398 | | | | curl: HTTP/2 push | | | | | | | headers memory-leak | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2398 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43552 | MEDIUM | | 7.74.0-1.3+deb11u5 | curl: Use-after-free triggered | | | | | | | by an HTTP proxy deny response | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43552 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23915 | | | | curl: HSTS amnesia with --parallel | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23916 | | | 7.74.0-1.3+deb11u7 | curl: HTTP multi-header | | | | | | | compression denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27535 | | | 7.74.0-1.3+deb11u8 | curl: FTP too eager connection reuse | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27535 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27536 | | | | curl: GSS delegation too | | | | | | | eager connection re-use | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27536 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27538 | | | | curl: SSH connection | | | | | | | too eager reuse still | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27538 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28321 | | | 7.74.0-1.3+deb11u9 | curl: IDN wildcard match may lead | | | | | | | to Improper Cerificate Validation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28321 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46218 | | | 7.74.0-1.3+deb11u11 | curl: information disclosure | | | | | | | by exploiting a mixed case flaw | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46218 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46219 | | | | curl: excessively long file name | | | | | | | may lead to unknown HSTS status | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46219 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22922 | LOW | | | curl: Content not matching hash | | | | | | | in Metalink is not being discarded | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22923 | | | | curl: Metalink download | | | | | | | sends credentials | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35252 | | | 7.74.0-1.3+deb11u3 | curl: Incorrect handling of | | | | | | | control code characters in cookies | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35252 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28320 | | | | curl: siglongjmp race | | | | | | | condition may lead to crash | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28320 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28322 | | | 7.74.0-1.3+deb11u9 | curl: more POST-after-PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28322 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38546 | | | 7.74.0-1.3+deb11u10 | curl: cookie injection with none file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2379 | | | | curl: QUIC certificate | | | | | | | check bypass with wolfSSL | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2379 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libcurl4-openssl-dev | CVE-2022-32221 | CRITICAL | | 7.74.0-1.3+deb11u5 | curl: POST following PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32221 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23914 | | | | curl: HSTS ignored | | | | | | | on multiple requests | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23914 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38545 | | | 7.74.0-1.3+deb11u10 | curl: heap based buffer overflow | | | | | | | in the SOCKS5 proxy handshake | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38545 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42916 | HIGH | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43551 | | | | curl: HSTS bypass via IDN | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43551 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27533 | | | 7.74.0-1.3+deb11u8 | curl: TELNET option IAC injection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27533 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27534 | | | | curl: SFTP path ~ | | | | | | | resolving discrepancy | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27534 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2398 | | | | curl: HTTP/2 push | | | | | | | headers memory-leak | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2398 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43552 | MEDIUM | | 7.74.0-1.3+deb11u5 | curl: Use-after-free triggered | | | | | | | by an HTTP proxy deny response | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43552 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23915 | | | | curl: HSTS amnesia with --parallel | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23916 | | | 7.74.0-1.3+deb11u7 | curl: HTTP multi-header | | | | | | | compression denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27535 | | | 7.74.0-1.3+deb11u8 | curl: FTP too eager connection reuse | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27535 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27536 | | | | curl: GSS delegation too | | | | | | | eager connection re-use | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27536 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-27538 | | | | curl: SSH connection | | | | | | | too eager reuse still | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27538 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28321 | | | 7.74.0-1.3+deb11u9 | curl: IDN wildcard match may lead | | | | | | | to Improper Cerificate Validation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28321 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46218 | | | 7.74.0-1.3+deb11u11 | curl: information disclosure | | | | | | | by exploiting a mixed case flaw | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46218 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46219 | | | | curl: excessively long file name | | | | | | | may lead to unknown HSTS status | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46219 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22922 | LOW | | | curl: Content not matching hash | | | | | | | in Metalink is not being discarded | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-22923 | | | | curl: Metalink download | | | | | | | sends credentials | | | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35252 | | | 7.74.0-1.3+deb11u3 | curl: Incorrect handling of | | | | | | | control code characters in cookies | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35252 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28320 | | | | curl: siglongjmp race | | | | | | | condition may lead to crash | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28320 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28322 | | | 7.74.0-1.3+deb11u9 | curl: more POST-after-PUT confusion | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28322 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-38546 | | | 7.74.0-1.3+deb11u10 | curl: cookie injection with none file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2379 | | | | curl: QUIC certificate | | | | | | | check bypass with wolfSSL | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2379 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libdav1d4 | CVE-2023-32570 | MEDIUM | 0.7.1-3 | | VideoLAN dav1d before 1.2.0 | | | | | | | has a thread_task.c race | | | | | | | condition that ca ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32570 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-1580 | UNKNOWN | | | An integer overflow in | | | | | | | dav1d AV1 decoder that | | | | | | | can occur when decoding... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-1580 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libdb5.3 | CVE-2019-8457 | CRITICAL | 5.3.28+dfsg1-0.8 | | sqlite: heap out-of-bound | | | | | | | read in function rtreenode() | | | | | | | -->avd.aquasec.com/nvd/cve-2019-8457 | +------------------------------+ + + +------------------------------+ + | libdb5.3-dev | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libde265-0 | CVE-2022-1253 | | 1.0.8-1 | 1.0.11-0+deb11u1 | Heap-based Buffer Overflow | | | | | | | in GitHub repository | | | | | | | strukturag/libde265 pr ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1253 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2020-21598 | HIGH | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the ff_hevc_put_unw ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21598 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-36409 | | | | There is an Assertion | | | | | | | `scaling_list_pred_matrix_id_delta==1' | | | | | | | failed at ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36409 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-47655 | | | | Libde265 1.0.9 is vulnerable | | | | | | | to Buffer Overflow in | | | | | | | function void put_q ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47655 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-47664 | | | | Libde265 1.0.9 is vulnerable | | | | | | | to Buffer Overflow in | | | | | | | ff_hevc_put_hevc_qp ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47664 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-47665 | | | | Libde265 1.0.9 has a heap | | | | | | | buffer overflow vulnerability | | | | | | | in de265_image ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47665 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-25221 | | | | Libde265 v1.0.10 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vuln ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25221 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27103 | | | 1.0.11-0+deb11u2 | Libde265 v1.0.11 was | | | | | | | discovered to contain a | | | | | | | heap buffer overflow via ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27103 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-43887 | | | | Libde265 v1.0.12 was | | | | | | | discovered to contain multiple | | | | | | | buffer overflows v ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43887 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-49465 | | | 1.0.11-0+deb11u3 | Libde265 v1.0.14 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vuln ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49465 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-49467 | | | | Libde265 v1.0.14 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vuln ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49467 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-49468 | | | | Libde265 v1.0.14 was | | | | | | | discovered to contain a global | | | | | | | buffer overflow vu ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49468 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-21594 | MEDIUM | | 1.0.11-0+deb11u1 | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the put_epel_hv_fal ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21594 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21595 | | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the mc_luma functio ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21595 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21596 | | | | libde265 v1.0.4 contains | | | | | | | a global buffer overflow | | | | | | | in the decode_CABAC_ ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21596 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21597 | | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the mc_chroma funct ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21597 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21599 | | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the de265_image::av ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21599 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21600 | | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the put_weighted_pr ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21600 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21601 | | | | libde265 v1.0.4 contains | | | | | | | a stack buffer overflow | | | | | | | in the put_qpel_fallb ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21601 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21602 | | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the put_weighted_bi ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21602 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21603 | | | | libde265 v1.0.4 contains | | | | | | | a heap buffer overflow in | | | | | | | the put_qpel_0_0_fa ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21603 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21604 | | | | libde265 v1.0.4 contains a | | | | | | | heap buffer overflow fault | | | | | | | in the _mm_loadl ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21604 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21605 | | | | libde265 v1.0.4 contains | | | | | | | a segmentation fault in | | | | | | | the apply_sao_interna ... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21605 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2020-21606 | | | | libde265 v1.0.4 contains a | | | | | | | heap buffer overflow fault | | | | | | | in the put_epel_ ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-21606 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-35452 | | | | An Incorrect Access Control | | | | | | | vulnerability exists in | | | | | | | libde265 v1.0.8 du ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-35452 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-36408 | | | | An issue was discovered | | | | | | | in libde265 v1.0.8.There | | | | | | | is a Heap-use-after-f ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36408 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-36410 | | | | A stack-buffer-overflow | | | | | | | exists in libde265 v1.0.8 | | | | | | | via fallback-motion. ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36410 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-36411 | | | | An issue has been found in libde265 | | | | | | | v1.0.8 due to incorrect access... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36411 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43235 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43235 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43236 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | stack-buffer-overflow vuln ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43236 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43237 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | stack-buffer-overflow vuln ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43237 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43238 | | | | Libde265 v1.0.8 was discovered | | | | | | | to contain an unknown | | | | | | | crash via ff_hevc ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43238 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43239 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43239 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43240 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43240 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43241 | | | | Libde265 v1.0.8 was discovered | | | | | | | to contain an unknown | | | | | | | crash via ff_hevc ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43242 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43242 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43243 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43244 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43245 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | segmentation violation via ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43248 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43248 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43249 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43249 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43250 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43250 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43252 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43252 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-43253 | | | | Libde265 v1.0.8 was | | | | | | | discovered to contain a | | | | | | | heap-buffer-overflow vulne ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43253 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24751 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24751 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24752 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24752 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24754 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24754 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24755 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24755 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24756 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24756 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24757 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24757 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-24758 | | | | libde265 v1.0.10 was | | | | | | | discovered to contain a NULL | | | | | | | pointer dereference ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24758 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27102 | | | 1.0.11-0+deb11u2 | Libde265 v1.0.11 was | | | | | | | discovered to contain a | | | | | | | segmentation violation vi ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27102 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-47471 | | | | Buffer Overflow vulnerability | | | | | | | in strukturag libde265 | | | | | | | v1.10.12 allows a ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-47471 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-51792 | UNKNOWN | | | Buffer Overflow vulnerability | | | | | | | in libde265 v1.0.12 | | | | | | | allows a local attac ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51792 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libdjvulibre-dev | CVE-2021-46310 | MEDIUM | 3.5.28-2 | | An issue was discovered | | | | | | | IW44Image.cpp in djvulibre | | | | | | | 3.5.28 in allows at ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46310 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46312 | | | | An issue was discovered | | | | | | | IW44EncodeCodec.cpp in | | | | | | | djvulibre 3.5.28 in all ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46312 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libdjvulibre-text | CVE-2021-46310 | | | | An issue was discovered | | | | | | | IW44Image.cpp in djvulibre | | | | | | | 3.5.28 in allows at ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46310 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46312 | | | | An issue was discovered | | | | | | | IW44EncodeCodec.cpp in | | | | | | | djvulibre 3.5.28 in all ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46312 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libdjvulibre21 | CVE-2021-46310 | | | | An issue was discovered | | | | | | | IW44Image.cpp in djvulibre | | | | | | | 3.5.28 in allows at ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46310 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46312 | | | | An issue was discovered | | | | | | | IW44EncodeCodec.cpp in | | | | | | | djvulibre 3.5.28 in all ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46312 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libelf1 | CVE-2021-33294 | LOW | 0.183-1 | | elfutils: an infinite loop | | | | | | | was found in the function | | | | | | | handle_symtab in readelf.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-33294 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25260 | | | | elfutils: global-buffer-overflow | | | | | | | exists in the function | | | | | | | ebl_machine_flag_name | | | | | | | in eblmachineflagname.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25260 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libexpat1 | CVE-2022-40674 | HIGH | 2.2.10-2+deb11u3 | 2.2.10-2+deb11u4 | expat: a use-after-free in the | | | | | | | doContent function in xmlparse.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40674 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43680 | | | 2.2.10-2+deb11u5 | expat: use-after free caused | | | | | | | by overeager destruction | | | | | | | of a shared DTD in... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43680 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52425 | | | | expat: parsing large tokens | | | | | | | can trigger a denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52425 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-0340 | LOW | | | expat: internal entity expansion | | | | | | | -->avd.aquasec.com/nvd/cve-2013-0340 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52426 | | | | expat: recursive XML entity | | | | | | | expansion vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52426 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-28757 | | | | expat: XML Entity Expansion | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28757 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libexpat1-dev | CVE-2022-40674 | HIGH | | 2.2.10-2+deb11u4 | expat: a use-after-free in the | | | | | | | doContent function in xmlparse.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40674 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43680 | | | 2.2.10-2+deb11u5 | expat: use-after free caused | | | | | | | by overeager destruction | | | | | | | of a shared DTD in... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43680 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52425 | | | | expat: parsing large tokens | | | | | | | can trigger a denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52425 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-0340 | LOW | | | expat: internal entity expansion | | | | | | | -->avd.aquasec.com/nvd/cve-2013-0340 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52426 | | | | expat: recursive XML entity | | | | | | | expansion vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52426 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-28757 | | | | expat: XML Entity Expansion | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28757 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libext2fs2 | CVE-2022-1304 | HIGH | 1.46.2-2 | | e2fsprogs: out-of-bounds | | | | | | | read/write via crafted filesystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1304 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libfreetype-dev | CVE-2022-31782 | LOW | 2.10.4+dfsg-1+deb11u1 | | ftbench.c in FreeType Demo | | | | | | | Programs through 2.12.1 | | | | | | | has a heap-based bu ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-31782 | +------------------------------+ + + +------------------------------+ + | libfreetype6 | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | libfreetype6-dev | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libgcc-10-dev | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+ + + +------------------------------+ + | libgcc-s1 | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libgcrypt20 | CVE-2021-33560 | HIGH | 1.8.7-6 | | libgcrypt: mishandles ElGamal | | | | | | | encryption because it lacks | | | | | | | exponent blinding to address a... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-33560 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2236 | MEDIUM | | | libgcrypt: vulnerable | | | | | | | to Marvin Attack | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2236 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-6829 | LOW | | | libgcrypt: ElGamal implementation | | | | | | | doesn't have semantic security due | | | | | | | to incorrectly encoded plaintexts... | | | | | | | -->avd.aquasec.com/nvd/cve-2018-6829 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libgdk-pixbuf-2.0-0 | CVE-2021-44648 | HIGH | 2.42.2+dfsg-1 | 2.42.2+dfsg-1+deb11u1 | gdk-pixbuf: heap-buffer overflow | | | | | | | when decoding the lzw compressed | | | | | | | stream of image data... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-44648 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-46829 | | | | gdk-pixbuf: heap-based buffer | | | | | | | overflow when compositing or | | | | | | | clearing frames in GIF files... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46829 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48622 | | | | gnome: heap memory | | | | | | | corruption on gdk-pixbuf | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48622 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libgdk-pixbuf-2.0-dev | CVE-2021-44648 | | | 2.42.2+dfsg-1+deb11u1 | gdk-pixbuf: heap-buffer overflow | | | | | | | when decoding the lzw compressed | | | | | | | stream of image data... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-44648 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-46829 | | | | gdk-pixbuf: heap-based buffer | | | | | | | overflow when compositing or | | | | | | | clearing frames in GIF files... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46829 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48622 | | | | gnome: heap memory | | | | | | | corruption on gdk-pixbuf | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48622 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libgdk-pixbuf2.0-bin | CVE-2021-44648 | | | 2.42.2+dfsg-1+deb11u1 | gdk-pixbuf: heap-buffer overflow | | | | | | | when decoding the lzw compressed | | | | | | | stream of image data... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-44648 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-46829 | | | | gdk-pixbuf: heap-based buffer | | | | | | | overflow when compositing or | | | | | | | clearing frames in GIF files... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46829 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48622 | | | | gnome: heap memory | | | | | | | corruption on gdk-pixbuf | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48622 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libgdk-pixbuf2.0-common | CVE-2021-44648 | | | 2.42.2+dfsg-1+deb11u1 | gdk-pixbuf: heap-buffer overflow | | | | | | | when decoding the lzw compressed | | | | | | | stream of image data... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-44648 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-46829 | | | | gdk-pixbuf: heap-based buffer | | | | | | | overflow when compositing or | | | | | | | clearing frames in GIF files... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46829 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48622 | | | | gnome: heap memory | | | | | | | corruption on gdk-pixbuf | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48622 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libglib2.0-0 | CVE-2023-29499 | | 2.66.8-1 | 2.66.8-1+deb11u1 | glib: GVariant offset table entry | | | | | | | size is not checked in is_normal() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29499 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-32611 | MEDIUM | | | glib: g_variant_byteswap() can take a | | | | | | | long time with some non-normal inputs | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32665 | | | | glib: GVariant deserialisation does | | | | | | | not match spec for non-normal data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32665 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2012-0039 | LOW | | | glib2: hash table | | | | | | | collisions CPU usage DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2012-0039 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libglib2.0-bin | CVE-2023-29499 | HIGH | | 2.66.8-1+deb11u1 | glib: GVariant offset table entry | | | | | | | size is not checked in is_normal() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29499 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-32611 | MEDIUM | | | glib: g_variant_byteswap() can take a | | | | | | | long time with some non-normal inputs | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32665 | | | | glib: GVariant deserialisation does | | | | | | | not match spec for non-normal data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32665 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2012-0039 | LOW | | | glib2: hash table | | | | | | | collisions CPU usage DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2012-0039 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libglib2.0-data | CVE-2023-29499 | HIGH | | 2.66.8-1+deb11u1 | glib: GVariant offset table entry | | | | | | | size is not checked in is_normal() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29499 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-32611 | MEDIUM | | | glib: g_variant_byteswap() can take a | | | | | | | long time with some non-normal inputs | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32665 | | | | glib: GVariant deserialisation does | | | | | | | not match spec for non-normal data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32665 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2012-0039 | LOW | | | glib2: hash table | | | | | | | collisions CPU usage DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2012-0039 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libglib2.0-dev | CVE-2023-29499 | HIGH | | 2.66.8-1+deb11u1 | glib: GVariant offset table entry | | | | | | | size is not checked in is_normal() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29499 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-32611 | MEDIUM | | | glib: g_variant_byteswap() can take a | | | | | | | long time with some non-normal inputs | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32665 | | | | glib: GVariant deserialisation does | | | | | | | not match spec for non-normal data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32665 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2012-0039 | LOW | | | glib2: hash table | | | | | | | collisions CPU usage DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2012-0039 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libglib2.0-dev-bin | CVE-2023-29499 | HIGH | | 2.66.8-1+deb11u1 | glib: GVariant offset table entry | | | | | | | size is not checked in is_normal() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29499 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-32611 | MEDIUM | | | glib: g_variant_byteswap() can take a | | | | | | | long time with some non-normal inputs | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32665 | | | | glib: GVariant deserialisation does | | | | | | | not match spec for non-normal data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32665 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2012-0039 | LOW | | | glib2: hash table | | | | | | | collisions CPU usage DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2012-0039 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libgnutls30 | CVE-2022-2509 | HIGH | 3.7.1-5+deb11u1 | 3.7.1-5+deb11u2 | gnutls: Double free | | | | | | | during gnutls_pkcs7_verify | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2509 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0361 | | | 3.7.1-5+deb11u3 | gnutls: timing side-channel in | | | | | | | the TLS RSA key exchange code | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0361 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0553 | | | | gnutls: incomplete | | | | | | | fix for CVE-2023-5981 | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0553 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0567 | | | | gnutls: rejects certificate | | | | | | | chain with distributed trust | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0567 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5981 | MEDIUM | | 3.7.1-5+deb11u4 | gnutls: timing side-channel | | | | | | | in the RSA-PSK authentication | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5981 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-28834 | | | | gnutls: vulnerable to Minerva | | | | | | | side-channel information leak | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28834 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-28835 | | | | gnutls: potential crash during | | | | | | | chain building/verification | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28835 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-3389 | LOW | | | HTTPS: block-wise chosen-plaintext | | | | | | | attack against SSL/TLS (BEAST) | | | | | | | -->avd.aquasec.com/nvd/cve-2011-3389 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libgomp1 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libgssapi-krb5-2 | CVE-2022-42898 | HIGH | 1.18.3-6+deb11u1 | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libgssrpc4 | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libharfbuzz0b | CVE-2023-25193 | HIGH | 2.7.4-1 | | harfbuzz: allows attackers to trigger | | | | | | | O(n^2) growth via consecutive marks | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25193 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-33068 | MEDIUM | | | harfbuzz: integer overflow in the | | | | | | | component hb-ot-shape-fallback.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-33068 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libheif1 | CVE-2023-0996 | HIGH | 1.11.0-1 | | There is a vulnerability | | | | | | | in the strided image | | | | | | | data parsing code in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-49460 | | | | libheif v1.17.5 was | | | | | | | discovered to contain a | | | | | | | segmentation violation via ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49460 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-49462 | | | | libheif v1.17.5 was | | | | | | | discovered to contain a | | | | | | | segmentation violation via ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49462 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-49463 | | | | libheif v1.17.5 was | | | | | | | discovered to contain a | | | | | | | segmentation violation via ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49463 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-49464 | | | | libheif v1.17.5 was | | | | | | | discovered to contain a | | | | | | | segmentation violation via ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-49464 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29659 | MEDIUM | | | A Segmentation fault | | | | | | | caused by a floating point | | | | | | | exception exists in li... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29659 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25269 | LOW | | | libheif <= 1.17.6 contains a | | | | | | | memory leak in the function | | | | | | | JpegEncoder:: ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25269 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libitm1 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libjbig-dev | CVE-2017-9937 | LOW | 2.1-3.1 | | libtiff: memory malloc failure | | | | | | | in tif_jbig.c could cause DOS. | | | | | | | -->avd.aquasec.com/nvd/cve-2017-9937 | +------------------------------+ + + +------------------------------+ + | libjbig0 | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libjpeg-dev | CVE-2021-46822 | MEDIUM | 1:2.0.6-4 | | libjpeg-turbo: heap buffer overflow | | | | | | | in get_word_rgb_row() in rdppm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46822 | +------------------------------+ + + +------------------------------+ + | libjpeg62-turbo | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | libjpeg62-turbo-dev | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libk5crypto3 | CVE-2022-42898 | HIGH | 1.18.3-6+deb11u1 | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libkadm5clnt-mit12 | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libkadm5srv-mit12 | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libkdb5-10 | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libkrb5-3 | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libkrb5-dev | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libkrb5support0 | CVE-2022-42898 | HIGH | | 1.18.3-6+deb11u3 | krb5: integer overflow | | | | | | | vulnerabilities in PAC parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26462 | | | | krb5: Memory leak at | | | | | | | /krb5/src/kdc/ndr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26462 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-36054 | MEDIUM | | 1.18.3-6+deb11u4 | krb5: Denial of service through | | | | | | | freeing uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-36054 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26458 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/rpc/pmap_rmt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26461 | | | | krb5: Memory leak at | | | | | | | /krb5/src/lib/gssapi/krb5/k5sealv3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26461 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-5709 | LOW | | | krb5: integer overflow | | | | | | | in dbentry->n_key_data | | | | | | | in kadmin/dbutil/dump.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libksba8 | CVE-2022-3515 | CRITICAL | 1.5.0-3 | 1.5.0-3+deb11u1 | libksba: integer overflow may | | | | | | | lead to remote code execution | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3515 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47629 | | | 1.5.0-3+deb11u2 | libksba: integer overflow | | | | | | | to code execution | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47629 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libldap-2.4-2 | CVE-2023-2953 | HIGH | 2.4.57+dfsg-3+deb11u1 | | openldap: null pointer dereference | | | | | | | in ber_memalloc_x function | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2953 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-3276 | LOW | | | openldap: incorrect multi-keyword | | | | | | | mode cipherstring parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-14159 | | | | openldap: Privilege escalation | | | | | | | via PID file manipulation | | | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-17740 | | | | openldap: | | | | | | | contrib/slapd-modules/nops/nops.c | | | | | | | attempts to free stack buffer | | | | | | | allowing remote attackers to cause... | | | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-15719 | | | | openldap: Certificate | | | | | | | validation incorrectly | | | | | | | matches name against CN-ID | | | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | liblsan0 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libmagic-mgc | CVE-2022-48554 | | 1:5.39-3 | 1:5.39-3+deb11u1 | file: stack-based buffer over-read | | | | | | | in file_copystr in funcs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48554 | +------------------------------+ + + + + + | libmagic1 | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libmagickcore-6-arch-config | CVE-2021-20309 | HIGH | 8:6.9.11.60+dfsg-1.3 | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickcore-6-headers | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickcore-6.q16-6 | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickcore-6.q16-6-extra | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickcore-6.q16-dev | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickcore-dev | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickwand-6-headers | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickwand-6.q16-6 | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickwand-6.q16-dev | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmagickwand-dev | CVE-2021-20309 | HIGH | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImagemMagick: Division | | | | | | | by zero in WaveImage() of | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20312 | | | | ImageMagick: Integer overflow | | | | | | | in WriteTHUMBNAILImage | | | | | | | of coders/thumbnail.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20312 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20313 | | | | ImageMagick: Cipher leak when | | | | | | | the calculating signatures | | | | | | | in TransformSignatureof | | | | | | | MagickCore/signature.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20313 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3610 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ReadTIFFImage() in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-40211 | | | | ImageMagick: Division by zero | | | | | | | in ReadEnhMetaFile lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2021-40211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1114 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: heap-use-after-free | | | | | | | in RelinquishDCMInfo of dcm.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1114 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-28463 | | | | ImageMagick: heap-buffer-overflow in | | | | | | | PushLongPixel() of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-28463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32545 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned char' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32545 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32546 | | | | ImageMagick: outside the range | | | | | | | of representable values of | | | | | | | type 'unsigned long' at... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32546 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32547 | | | | ImageMagick: load of misaligned | | | | | | | address at MagickCore/property.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32547 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2021-20241 | MEDIUM | | | ImageMagick: Division by zero in | | | | | | | WriteJP2Image() in coders/jp2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20241 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20243 | | | | ImageMagick: Division by | | | | | | | zero in GetResizeFilterWeight | | | | | | | in MagickCore/resize.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20243 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20244 | | | | ImageMagick: Division by | | | | | | | zero in ImplodeImage in | | | | | | | MagickCore/visual-effects.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20245 | | | | ImageMagick: Division by zero | | | | | | | in WriteAnimatedWEBPImage() | | | | | | | in coders/webp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20245 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-20246 | | | | ImageMagick: Division by | | | | | | | zero in ScaleResampleFilter | | | | | | | in MagickCore/resample.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20246 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-4219 | | | | imagemagick: remote | | | | | | | DoS in MagicCore/draw.c | | | | | | | via crafted SVG file | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4219 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1115 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: heap-buffer-overflow in | | | | | | | PushShortPixel of quantum-private.h | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3213 | | | | ImageMagick: heap buffer | | | | | | | overflow while processing | | | | | | | a malformed TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44267 | | | 8:6.9.11.60+dfsg-1.3+deb11u1 | ImageMagick: Denial of Service | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44267 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-44268 | | | | ImageMagick: vulnerable | | | | | | | to Information Disclosure | | | | | | | when it parses a PNG image | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44268 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1289 | | | 8:6.9.11.60+dfsg-1.3+deb11u3 | ImageMagick: Specially crafted | | | | | | | SVG leads to segmentation fault | | | | | | | and generate trash files... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1289 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1906 | | | | ImageMagick: heap-based | | | | | | | buffer overflow in | | | | | | | ImportMultiSpectralQuantum() | | | | | | | in MagickCore/quantum-import.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1906 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34151 | | | | ImageMagick: Undefined | | | | | | | behaviors of casting double | | | | | | | to size_t in svg, mvg and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34151 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3428 | | | | ImageMagick: heap-buffer-overflow | | | | | | | in coders/tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3428 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5341 | | | | ImageMagick: Heap | | | | | | | use-after-free in coders/bmp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5341 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-0406 | LOW | | | A design flaw in image | | | | | | | processing software that | | | | | | | modifies JPEG images m... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-0406 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3134 | | | | GraphicsMagick/ImageMagick: | | | | | | | multiple crash or DoS issues | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8678 | | | | ImageMagick: Heap-buffer | | | | | | | overflow in IsPixelMonochrome | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11754 | | | | ImageMagick: Memory leak | | | | | | | in WritePICONImage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-11755 | | | | ImageMagick: Memory leak in | | | | | | | WritePICONImage function via | | | | | | | mishandled AcquireSemaphoreInfo call | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7275 | | | | ImageMagick: Memory allocation | | | | | | | failure in AcquireMagickMemory | | | | | | | (incomplete fix for CVE-2016-8866) | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7275 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15607 | | | | ImageMagick: CPU Exhaustion | | | | | | | via crafted input file | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-20311 | | | | ImageMagick: Division by | | | | | | | zero in sRGBTransformImage() | | | | | | | in MagickCore/colorspace.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-20311 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3574 | | | 8:6.9.11.60+dfsg-1.3+deb11u2 | ImageMagick: memory leaks | | | | | | | with convert command | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-39212 | | | | ImageMagick: possible read | | | | | | | or write in postscript files | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34152 | | | | ImageMagick: RCE (shell command | | | | | | | injection) vulnerability in OpenBlob | | | | | | | with --enable-pipes configured | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34152 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libmariadb-dev | CVE-2021-46669 | HIGH | 1:10.5.15-0+deb11u1 | 1:10.5.18-0+deb11u1 | mariadb: MariaDB through | | | | | | | 10.5.9 allows attackers to | | | | | | | trigger a convert_const_to_int | | | | | | | use-after-free when... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46669 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27376 | | | | mariadb: assertion failure | | | | | | | in Item_args::walk_arg | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27376 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27377 | | | | mariadb: use-after-poison | | | | | | | when complex conversion | | | | | | | is involved in blob | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27377 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27378 | | | | mariadb: server crash in | | | | | | | create_tmp_table::finalize | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27378 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27379 | | | | mariadb: server crash in component | | | | | | | arg_comparator::compare_real_fixed | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27379 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27380 | | | | mariadb: server crash | | | | | | | at my_decimal::operator= | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27380 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27381 | | | | mariadb: server crash at | | | | | | | Field::set_default via | | | | | | | specially crafted SQL statements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27381 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27382 | | | | mariadb: assertion failure via component | | | | | | | Item_field::used_tables/update_depend_map_for_order | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27382 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27383 | | | | mariadb: use-after-poison | | | | | | | in my_strcasecmp_8bit() | | | | | | | of ctype-simple.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27383 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27384 | | | | mariadb: crash via component | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27384 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27386 | | | | mariadb: server crashes in | | | | | | | query_arena::set_query_arena | | | | | | | upon SELECT from view | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27386 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27387 | | | | mariadb: assertion failures | | | | | | | in decimal_bin_size | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27387 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27444 | | | | mariadb: crash when using HAVING with | | | | | | | NOT EXIST predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27444 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27445 | | | | mariadb: assertion failure | | | | | | | in compare_order_elements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27445 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27446 | | | | mariadb: crash when using HAVING with | | | | | | | IS NULL predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27447 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27447 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27448 | | | | mariadb: crash in multi-update | | | | | | | and implicit grouping | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27448 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27449 | | | | mariadb: assertion failure | | | | | | | in sql/item_func.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27449 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27451 | | | | mariadb: crash via window | | | | | | | function in expression in ORDER BY | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27451 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27452 | | | | mariadb: assertion failure | | | | | | | in sql/item_cmpfunc.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27452 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27455 | | | | mariadb: use-after-free when | | | | | | | WHERE has subquery with an | | | | | | | outer reference in HAVING... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27455 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27456 | | | | mariadb: assertion failure in | | | | | | | VDec::VDec at /sql/sql_type.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27456 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27457 | | | | mariadb: incorrect key in "dup | | | | | | | value" error after long unique | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27457 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27458 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27458 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32081 | | | | mariadb: use-after-poison in | | | | | | | prepare_inplace_add_virtual | | | | | | | in handler0alter.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32081 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32082 | | | | mariadb: assertion failure | | | | | | | at table->get_ref_count() | | | | | | | == 0 in dict0dict.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32082 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32083 | | | | mariadb: server crash at | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32083 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32084 | | | | mariadb: segmentation fault | | | | | | | via the component sub_select | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32084 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32085 | | | | mariadb: server crash in | | | | | | | Item_func_in::cleanup/Item::cleanup_processor | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32085 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32086 | | | | mariadb: server crash in | | | | | | | Item_field::fix_outer_field | | | | | | | for INSERT SELECT | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32087 | | | | mariadb: server crash | | | | | | | in Item_args::walk_args | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32087 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32088 | | | | mariadb: segmentation fault in | | | | | | | Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32088 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32089 | | | | mariadb: server crash in | | | | | | | st_select_lex_unit::exclude_level | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32089 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32091 | | | | mariadb: server crash in | | | | | | | JOIN_CACHE::free or in copy_fields | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32091 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2022-38791 | MEDIUM | | | mariadb: compress_write() fails | | | | | | | to release mutex on failure | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38791 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47015 | | | 1:10.5.20-0+deb11u1 | mariadb: NULL pointer dereference | | | | | | | in spider_db_mbase::print_warnings() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47015 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22084 | | | 1:10.5.23-0+deb11u1 | mysql: InnoDB unspecified | | | | | | | vulnerability (CPU Oct 2023) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22084 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmariadb-dev-compat | CVE-2021-46669 | HIGH | | 1:10.5.18-0+deb11u1 | mariadb: MariaDB through | | | | | | | 10.5.9 allows attackers to | | | | | | | trigger a convert_const_to_int | | | | | | | use-after-free when... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46669 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27376 | | | | mariadb: assertion failure | | | | | | | in Item_args::walk_arg | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27376 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27377 | | | | mariadb: use-after-poison | | | | | | | when complex conversion | | | | | | | is involved in blob | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27377 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27378 | | | | mariadb: server crash in | | | | | | | create_tmp_table::finalize | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27378 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27379 | | | | mariadb: server crash in component | | | | | | | arg_comparator::compare_real_fixed | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27379 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27380 | | | | mariadb: server crash | | | | | | | at my_decimal::operator= | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27380 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27381 | | | | mariadb: server crash at | | | | | | | Field::set_default via | | | | | | | specially crafted SQL statements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27381 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27382 | | | | mariadb: assertion failure via component | | | | | | | Item_field::used_tables/update_depend_map_for_order | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27382 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27383 | | | | mariadb: use-after-poison | | | | | | | in my_strcasecmp_8bit() | | | | | | | of ctype-simple.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27383 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27384 | | | | mariadb: crash via component | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27384 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27386 | | | | mariadb: server crashes in | | | | | | | query_arena::set_query_arena | | | | | | | upon SELECT from view | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27386 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27387 | | | | mariadb: assertion failures | | | | | | | in decimal_bin_size | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27387 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27444 | | | | mariadb: crash when using HAVING with | | | | | | | NOT EXIST predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27444 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27445 | | | | mariadb: assertion failure | | | | | | | in compare_order_elements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27445 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27446 | | | | mariadb: crash when using HAVING with | | | | | | | IS NULL predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27447 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27447 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27448 | | | | mariadb: crash in multi-update | | | | | | | and implicit grouping | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27448 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27449 | | | | mariadb: assertion failure | | | | | | | in sql/item_func.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27449 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27451 | | | | mariadb: crash via window | | | | | | | function in expression in ORDER BY | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27451 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27452 | | | | mariadb: assertion failure | | | | | | | in sql/item_cmpfunc.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27452 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27455 | | | | mariadb: use-after-free when | | | | | | | WHERE has subquery with an | | | | | | | outer reference in HAVING... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27455 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27456 | | | | mariadb: assertion failure in | | | | | | | VDec::VDec at /sql/sql_type.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27456 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27457 | | | | mariadb: incorrect key in "dup | | | | | | | value" error after long unique | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27457 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27458 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27458 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32081 | | | | mariadb: use-after-poison in | | | | | | | prepare_inplace_add_virtual | | | | | | | in handler0alter.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32081 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32082 | | | | mariadb: assertion failure | | | | | | | at table->get_ref_count() | | | | | | | == 0 in dict0dict.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32082 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32083 | | | | mariadb: server crash at | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32083 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32084 | | | | mariadb: segmentation fault | | | | | | | via the component sub_select | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32084 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32085 | | | | mariadb: server crash in | | | | | | | Item_func_in::cleanup/Item::cleanup_processor | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32085 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32086 | | | | mariadb: server crash in | | | | | | | Item_field::fix_outer_field | | | | | | | for INSERT SELECT | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32087 | | | | mariadb: server crash | | | | | | | in Item_args::walk_args | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32087 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32088 | | | | mariadb: segmentation fault in | | | | | | | Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32088 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32089 | | | | mariadb: server crash in | | | | | | | st_select_lex_unit::exclude_level | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32089 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32091 | | | | mariadb: server crash in | | | | | | | JOIN_CACHE::free or in copy_fields | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32091 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2022-38791 | MEDIUM | | | mariadb: compress_write() fails | | | | | | | to release mutex on failure | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38791 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47015 | | | 1:10.5.20-0+deb11u1 | mariadb: NULL pointer dereference | | | | | | | in spider_db_mbase::print_warnings() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47015 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22084 | | | 1:10.5.23-0+deb11u1 | mysql: InnoDB unspecified | | | | | | | vulnerability (CPU Oct 2023) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22084 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmariadb3 | CVE-2021-46669 | HIGH | | 1:10.5.18-0+deb11u1 | mariadb: MariaDB through | | | | | | | 10.5.9 allows attackers to | | | | | | | trigger a convert_const_to_int | | | | | | | use-after-free when... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46669 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27376 | | | | mariadb: assertion failure | | | | | | | in Item_args::walk_arg | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27376 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27377 | | | | mariadb: use-after-poison | | | | | | | when complex conversion | | | | | | | is involved in blob | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27377 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27378 | | | | mariadb: server crash in | | | | | | | create_tmp_table::finalize | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27378 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27379 | | | | mariadb: server crash in component | | | | | | | arg_comparator::compare_real_fixed | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27379 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27380 | | | | mariadb: server crash | | | | | | | at my_decimal::operator= | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27380 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27381 | | | | mariadb: server crash at | | | | | | | Field::set_default via | | | | | | | specially crafted SQL statements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27381 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27382 | | | | mariadb: assertion failure via component | | | | | | | Item_field::used_tables/update_depend_map_for_order | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27382 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27383 | | | | mariadb: use-after-poison | | | | | | | in my_strcasecmp_8bit() | | | | | | | of ctype-simple.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27383 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27384 | | | | mariadb: crash via component | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27384 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27386 | | | | mariadb: server crashes in | | | | | | | query_arena::set_query_arena | | | | | | | upon SELECT from view | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27386 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27387 | | | | mariadb: assertion failures | | | | | | | in decimal_bin_size | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27387 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27444 | | | | mariadb: crash when using HAVING with | | | | | | | NOT EXIST predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27444 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27445 | | | | mariadb: assertion failure | | | | | | | in compare_order_elements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27445 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27446 | | | | mariadb: crash when using HAVING with | | | | | | | IS NULL predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27447 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27447 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27448 | | | | mariadb: crash in multi-update | | | | | | | and implicit grouping | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27448 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27449 | | | | mariadb: assertion failure | | | | | | | in sql/item_func.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27449 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27451 | | | | mariadb: crash via window | | | | | | | function in expression in ORDER BY | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27451 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27452 | | | | mariadb: assertion failure | | | | | | | in sql/item_cmpfunc.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27452 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27455 | | | | mariadb: use-after-free when | | | | | | | WHERE has subquery with an | | | | | | | outer reference in HAVING... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27455 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27456 | | | | mariadb: assertion failure in | | | | | | | VDec::VDec at /sql/sql_type.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27456 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27457 | | | | mariadb: incorrect key in "dup | | | | | | | value" error after long unique | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27457 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27458 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27458 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32081 | | | | mariadb: use-after-poison in | | | | | | | prepare_inplace_add_virtual | | | | | | | in handler0alter.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32081 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32082 | | | | mariadb: assertion failure | | | | | | | at table->get_ref_count() | | | | | | | == 0 in dict0dict.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32082 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32083 | | | | mariadb: server crash at | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32083 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32084 | | | | mariadb: segmentation fault | | | | | | | via the component sub_select | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32084 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32085 | | | | mariadb: server crash in | | | | | | | Item_func_in::cleanup/Item::cleanup_processor | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32085 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32086 | | | | mariadb: server crash in | | | | | | | Item_field::fix_outer_field | | | | | | | for INSERT SELECT | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32087 | | | | mariadb: server crash | | | | | | | in Item_args::walk_args | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32087 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32088 | | | | mariadb: segmentation fault in | | | | | | | Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32088 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32089 | | | | mariadb: server crash in | | | | | | | st_select_lex_unit::exclude_level | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32089 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32091 | | | | mariadb: server crash in | | | | | | | JOIN_CACHE::free or in copy_fields | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32091 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2022-38791 | MEDIUM | | | mariadb: compress_write() fails | | | | | | | to release mutex on failure | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38791 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47015 | | | 1:10.5.20-0+deb11u1 | mariadb: NULL pointer dereference | | | | | | | in spider_db_mbase::print_warnings() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47015 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22084 | | | 1:10.5.23-0+deb11u1 | mysql: InnoDB unspecified | | | | | | | vulnerability (CPU Oct 2023) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22084 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libmount-dev | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libmount1 | CVE-2024-28085 | HIGH | | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libncurses-dev | CVE-2022-29458 | HIGH | 6.2+20201114-2 | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libncurses5-dev | CVE-2022-29458 | HIGH | | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libncurses6 | CVE-2022-29458 | HIGH | | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libncursesw5-dev | CVE-2022-29458 | HIGH | | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libncursesw6 | CVE-2022-29458 | HIGH | | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libnghttp2-14 | CVE-2023-44487 | HIGH | 1.43.0-1 | 1.43.0-1+deb11u1 | HTTP/2: Multiple HTTP/2 | | | | | | | enabled web servers are | | | | | | | vulnerable to a DDoS attack... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-44487 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-28182 | MEDIUM | | | nghttp2: CONTINUATION frames DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28182 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libopenexr-dev | CVE-2021-23215 | | 2.5.4-2 | 2.5.4-2+deb11u1 | OpenEXR: Integer-overflow in | | | | | | | Imf_2_5::DwaCompressor::initializeBuffers | | | | | | | -->avd.aquasec.com/nvd/cve-2021-23215 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-26260 | | | | OpenEXR: Integer-overflow in | | | | | | | Imf_2_5::DwaCompressor::initializeBuffers | | | | | | | -->avd.aquasec.com/nvd/cve-2021-26260 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3598 | | | | OpenEXR: Heap buffer overflow | | | | | | | in Imf_3_1::CharPtrIO::readChars | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3598 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3605 | | | | OpenEXR: Heap buffer overflow | | | | | | | in the rleUncompress function | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3605 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3933 | | | | openexr: Integer-overflow in | | | | | | | Imf_3_1::bytesPerDeepLineTable | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3933 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3941 | | | | openexr: Divide-by-zero | | | | | | | in Imf_3_1::RGBtoXYZ | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3941 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-45942 | | | | OpenEXR: heap-based buffer overflow | | | | | | | in Imf_3_1:LineCompositeTask:execute | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45942 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-14988 | LOW | | | OpenEXR: Excessive memory | | | | | | | allocation in Header::readfrom | | | | | | | -->avd.aquasec.com/nvd/cve-2017-14988 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-26945 | | | | OpenEXR: Integer-overflow in bool | | | | | | | Imf_2_5::readDeepTile | | | | | | | -->avd.aquasec.com/nvd/cve-2021-26945 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-31047 | UNKNOWN | | | An issue in Academy Software | | | | | | | Foundation openexr v.3.2.3 | | | | | | | and before all ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-31047 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libopenexr25 | CVE-2021-23215 | MEDIUM | | 2.5.4-2+deb11u1 | OpenEXR: Integer-overflow in | | | | | | | Imf_2_5::DwaCompressor::initializeBuffers | | | | | | | -->avd.aquasec.com/nvd/cve-2021-23215 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-26260 | | | | OpenEXR: Integer-overflow in | | | | | | | Imf_2_5::DwaCompressor::initializeBuffers | | | | | | | -->avd.aquasec.com/nvd/cve-2021-26260 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3598 | | | | OpenEXR: Heap buffer overflow | | | | | | | in Imf_3_1::CharPtrIO::readChars | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3598 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3605 | | | | OpenEXR: Heap buffer overflow | | | | | | | in the rleUncompress function | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3605 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3933 | | | | openexr: Integer-overflow in | | | | | | | Imf_3_1::bytesPerDeepLineTable | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3933 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-3941 | | | | openexr: Divide-by-zero | | | | | | | in Imf_3_1::RGBtoXYZ | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3941 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2021-45942 | | | | OpenEXR: heap-based buffer overflow | | | | | | | in Imf_3_1:LineCompositeTask:execute | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45942 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-14988 | LOW | | | OpenEXR: Excessive memory | | | | | | | allocation in Header::readfrom | | | | | | | -->avd.aquasec.com/nvd/cve-2017-14988 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-26945 | | | | OpenEXR: Integer-overflow in bool | | | | | | | Imf_2_5::readDeepTile | | | | | | | -->avd.aquasec.com/nvd/cve-2021-26945 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-31047 | UNKNOWN | | | An issue in Academy Software | | | | | | | Foundation openexr v.3.2.3 | | | | | | | and before all ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-31047 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libopenjp2-7 | CVE-2021-3575 | HIGH | 2.4.0-3 | | openjpeg: heap-buffer-overflow | | | | | | | in color.c may lead to DoS or | | | | | | | arbitrary code execution... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3575 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-29338 | MEDIUM | | | openjpeg: out-of-bounds write due to | | | | | | | an integer overflow in opj_compress.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-29338 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1122 | | | | openjpeg: segmentation | | | | | | | fault in opj2_decompress | | | | | | | due to uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1122 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-10505 | LOW | | | openjpeg: NULL pointer dereference | | | | | | | in imagetopnm function in convert.c | | | | | | | -->avd.aquasec.com/nvd/cve-2016-10505 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-10506 | | | | openjpeg: Division by zero in | | | | | | | functions opj_pi_next_cprl, | | | | | | | opj_pi_next_pcrl, and | | | | | | | opj_pi_next_rpcl in pi.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2016-10506 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9113 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9113 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9114 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9114 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9115 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9116 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9116 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9117 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9117 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9580 | | | | openjpeg2: Integer overflow | | | | | | | in tiftoimage causes | | | | | | | heap buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9580 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9581 | | | | openjpeg2: Infinite loop | | | | | | | in tiftoimage resulting | | | | | | | into heap buffer overflow | | | | | | | in convert_32s_C1P1... | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9581 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-17479 | | | | openjpeg: Stack-buffer overflow | | | | | | | in the pgxtoimage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-17479 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-16375 | | | | openjpeg: Heap-based buffer | | | | | | | overflow in pnmtoimage | | | | | | | function in bin/jpwl/convert.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-16375 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-16376 | | | | openjpeg: Heap-based buffer overflow | | | | | | | in function t2_encode_packet | | | | | | | in src/lib/openmj2/t2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-16376 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20846 | | | | openjpeg: out-of-bounds read in | | | | | | | functions pi_next_lrcp, pi_next_rlcp, | | | | | | | pi_next_rpcl, pi_next_pcrl, | | | | | | | pi_next_rpcl, and pi_next_cprl... | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20846 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6988 | | | | openjpeg: DoS via memory | | | | | | | exhaustion in opj_decompress | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6988 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libopenjp2-7-dev | CVE-2021-3575 | HIGH | | | openjpeg: heap-buffer-overflow | | | | | | | in color.c may lead to DoS or | | | | | | | arbitrary code execution... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3575 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-29338 | MEDIUM | | | openjpeg: out-of-bounds write due to | | | | | | | an integer overflow in opj_compress.c | | | | | | | -->avd.aquasec.com/nvd/cve-2021-29338 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1122 | | | | openjpeg: segmentation | | | | | | | fault in opj2_decompress | | | | | | | due to uninitialized pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1122 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-10505 | LOW | | | openjpeg: NULL pointer dereference | | | | | | | in imagetopnm function in convert.c | | | | | | | -->avd.aquasec.com/nvd/cve-2016-10505 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-10506 | | | | openjpeg: Division by zero in | | | | | | | functions opj_pi_next_cprl, | | | | | | | opj_pi_next_pcrl, and | | | | | | | opj_pi_next_rpcl in pi.c... | | | | | | | -->avd.aquasec.com/nvd/cve-2016-10506 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9113 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9113 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9114 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9114 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9115 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9115 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9116 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9116 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9117 | | | | openjpeg2: Multiple security issues | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9117 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9580 | | | | openjpeg2: Integer overflow | | | | | | | in tiftoimage causes | | | | | | | heap buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9580 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-9581 | | | | openjpeg2: Infinite loop | | | | | | | in tiftoimage resulting | | | | | | | into heap buffer overflow | | | | | | | in convert_32s_C1P1... | | | | | | | -->avd.aquasec.com/nvd/cve-2016-9581 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-17479 | | | | openjpeg: Stack-buffer overflow | | | | | | | in the pgxtoimage function | | | | | | | -->avd.aquasec.com/nvd/cve-2017-17479 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-16375 | | | | openjpeg: Heap-based buffer | | | | | | | overflow in pnmtoimage | | | | | | | function in bin/jpwl/convert.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-16375 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-16376 | | | | openjpeg: Heap-based buffer overflow | | | | | | | in function t2_encode_packet | | | | | | | in src/lib/openmj2/t2.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-16376 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-20846 | | | | openjpeg: out-of-bounds read in | | | | | | | functions pi_next_lrcp, pi_next_rlcp, | | | | | | | pi_next_rpcl, pi_next_pcrl, | | | | | | | pi_next_rpcl, and pi_next_cprl... | | | | | | | -->avd.aquasec.com/nvd/cve-2018-20846 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6988 | | | | openjpeg: DoS via memory | | | | | | | exhaustion in opj_decompress | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6988 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libpam-modules | CVE-2024-22365 | MEDIUM | 1.4.0-9+deb11u1 | | pam: allowing unprivileged user | | | | | | | to block another user namespace | | | | | | | -->avd.aquasec.com/nvd/cve-2024-22365 | +------------------------------+ + + +------------------------------+ + | libpam-modules-bin | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | libpam-runtime | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + +------------------------------+ + | libpam0g | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libpcre16-3 | CVE-2017-11164 | LOW | 2:8.39-13 | | pcre: OP_KETRMAX feature in the | | | | | | | match function in pcre_exec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16231 | | | | pcre: self-recursive call | | | | | | | in match() in pcre_exec.c | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | | | | | | | when UTF is disabled and \X or... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libpcre2-16-0 | CVE-2022-1586 | CRITICAL | 10.36-2 | 10.36-2+deb11u1 | pcre2: Out-of-bounds read in | | | | | | | compile_xclass_matchingpath | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1586 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1587 | | | | pcre2: Out-of-bounds read | | | | | | | in get_recurse_data_length | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1587 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41409 | LOW | | | pcre2: negative repeat | | | | | | | value in a pcre2test subject | | | | | | | line leads to inifinite... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41409 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpcre2-32-0 | CVE-2022-1586 | CRITICAL | | 10.36-2+deb11u1 | pcre2: Out-of-bounds read in | | | | | | | compile_xclass_matchingpath | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1586 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1587 | | | | pcre2: Out-of-bounds read | | | | | | | in get_recurse_data_length | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1587 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41409 | LOW | | | pcre2: negative repeat | | | | | | | value in a pcre2test subject | | | | | | | line leads to inifinite... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41409 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpcre2-8-0 | CVE-2022-1586 | CRITICAL | | 10.36-2+deb11u1 | pcre2: Out-of-bounds read in | | | | | | | compile_xclass_matchingpath | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1586 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1587 | | | | pcre2: Out-of-bounds read | | | | | | | in get_recurse_data_length | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1587 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41409 | LOW | | | pcre2: negative repeat | | | | | | | value in a pcre2test subject | | | | | | | line leads to inifinite... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41409 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpcre2-dev | CVE-2022-1586 | CRITICAL | | 10.36-2+deb11u1 | pcre2: Out-of-bounds read in | | | | | | | compile_xclass_matchingpath | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1586 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1587 | | | | pcre2: Out-of-bounds read | | | | | | | in get_recurse_data_length | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1587 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41409 | LOW | | | pcre2: negative repeat | | | | | | | value in a pcre2test subject | | | | | | | line leads to inifinite... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41409 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpcre2-posix2 | CVE-2022-1586 | CRITICAL | | 10.36-2+deb11u1 | pcre2: Out-of-bounds read in | | | | | | | compile_xclass_matchingpath | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1586 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1587 | | | | pcre2: Out-of-bounds read | | | | | | | in get_recurse_data_length | | | | | | | in pcre2_jit_compile.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1587 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41409 | LOW | | | pcre2: negative repeat | | | | | | | value in a pcre2test subject | | | | | | | line leads to inifinite... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41409 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libpcre3 | CVE-2017-11164 | | 2:8.39-13 | | pcre: OP_KETRMAX feature in the | | | | | | | match function in pcre_exec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16231 | | | | pcre: self-recursive call | | | | | | | in match() in pcre_exec.c | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | | | | | | | when UTF is disabled and \X or... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libpcre3-dev | CVE-2017-11164 | | | | pcre: OP_KETRMAX feature in the | | | | | | | match function in pcre_exec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16231 | | | | pcre: self-recursive call | | | | | | | in match() in pcre_exec.c | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | | | | | | | when UTF is disabled and \X or... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libpcre32-3 | CVE-2017-11164 | | | | pcre: OP_KETRMAX feature in the | | | | | | | match function in pcre_exec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16231 | | | | pcre: self-recursive call | | | | | | | in match() in pcre_exec.c | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | | | | | | | when UTF is disabled and \X or... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libpcrecpp0v5 | CVE-2017-11164 | | | | pcre: OP_KETRMAX feature in the | | | | | | | match function in pcre_exec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16231 | | | | pcre: self-recursive call | | | | | | | in match() in pcre_exec.c | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | | | | | | | write in pcre32_copy_substring | | | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | | | | | | | when UTF is disabled and \X or... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libperl5.32 | CVE-2020-16156 | HIGH | 5.32.1-4+deb11u2 | | perl-CPAN: Bypass of verification | | | | | | | of signatures in CHECKSUMS files | | | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31484 | | | | perl: CPAN.pm does not verify | | | | | | | TLS certificates when downloading | | | | | | | distributions over HTTPS... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31484 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-47038 | | | 5.32.1-4+deb11u3 | perl: Write past buffer end via | | | | | | | illegal user-defined Unicode property | | | | | | | -->avd.aquasec.com/nvd/cve-2023-47038 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | | | | | | | temporary file handling | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31486 | | | | http-tiny: insecure TLS cert default | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31486 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libpixman-1-0 | CVE-2022-44638 | HIGH | 0.40.0-1 | 0.40.0-1.1~deb11u1 | pixman: Integer overflow in | | | | | | | pixman_sample_floor_y leading | | | | | | | to heap out-of-bounds write | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44638 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-37769 | LOW | | | stress-test master commit | | | | | | | e4c878 was discovered to | | | | | | | contain a FPE vulne ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-37769 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpixman-1-dev | CVE-2022-44638 | HIGH | | 0.40.0-1.1~deb11u1 | pixman: Integer overflow in | | | | | | | pixman_sample_floor_y leading | | | | | | | to heap out-of-bounds write | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44638 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-37769 | LOW | | | stress-test master commit | | | | | | | e4c878 was discovered to | | | | | | | contain a FPE vulne ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-37769 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libpng-dev | CVE-2019-6129 | | 1.6.37-3 | | libpng: memory leak of | | | | | | | png_info struct in pngcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6129 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4214 | | | | libpng: hardcoded value | | | | | | | leads to heap-overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4214 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libpng16-16 | CVE-2019-6129 | | | | libpng: memory leak of | | | | | | | png_info struct in pngcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6129 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4214 | | | | libpng: hardcoded value | | | | | | | leads to heap-overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4214 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libpq-dev | CVE-2022-2625 | HIGH | 13.7-0+deb11u1 | 13.8-0+deb11u1 | postgresql: Extension | | | | | | | scripts replace objects not | | | | | | | belonging to the extension. | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2625 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2454 | | | 13.11-0+deb11u1 | postgresql: schema_element defeats | | | | | | | protective search_path changes | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2454 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39417 | | | 13.13-0+deb11u1 | postgresql: extension script | | | | | | | @substitutions@ within | | | | | | | quoting allow SQL injection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39417 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5869 | | | | postgresql: Buffer overrun | | | | | | | from integer overflow | | | | | | | in array modification | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5869 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0985 | | | 13.14-0+deb11u1 | postgresql: non-owner 'REFRESH | | | | | | | MATERIALIZED VIEW CONCURRENTLY' | | | | | | | executes arbitrary SQL | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0985 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2455 | MEDIUM | | 13.11-0+deb11u1 | postgresql: row security | | | | | | | policies disregard user | | | | | | | ID changes after inlining. | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2455 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5868 | | | 13.13-0+deb11u1 | postgresql: Memory disclosure | | | | | | | in aggregate function calls | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5868 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5870 | | | | postgresql: Role | | | | | | | pg_signal_backend can signal | | | | | | | certain superuser processes. | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5870 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41862 | LOW | | 13.10-0+deb11u1 | postgresql: Client memory | | | | | | | disclosure when connecting with | | | | | | | Kerberos to modified server | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41862 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpq5 | CVE-2022-2625 | HIGH | | 13.8-0+deb11u1 | postgresql: Extension | | | | | | | scripts replace objects not | | | | | | | belonging to the extension. | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2625 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2454 | | | 13.11-0+deb11u1 | postgresql: schema_element defeats | | | | | | | protective search_path changes | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2454 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39417 | | | 13.13-0+deb11u1 | postgresql: extension script | | | | | | | @substitutions@ within | | | | | | | quoting allow SQL injection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39417 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5869 | | | | postgresql: Buffer overrun | | | | | | | from integer overflow | | | | | | | in array modification | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5869 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0985 | | | 13.14-0+deb11u1 | postgresql: non-owner 'REFRESH | | | | | | | MATERIALIZED VIEW CONCURRENTLY' | | | | | | | executes arbitrary SQL | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0985 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2455 | MEDIUM | | 13.11-0+deb11u1 | postgresql: row security | | | | | | | policies disregard user | | | | | | | ID changes after inlining. | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2455 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5868 | | | 13.13-0+deb11u1 | postgresql: Memory disclosure | | | | | | | in aggregate function calls | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5868 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5870 | | | | postgresql: Role | | | | | | | pg_signal_backend can signal | | | | | | | certain superuser processes. | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5870 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41862 | LOW | | 13.10-0+deb11u1 | postgresql: Client memory | | | | | | | disclosure when connecting with | | | | | | | Kerberos to modified server | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41862 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libprocps8 | CVE-2023-4016 | | 2:3.3.17-5 | | procps: ps buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4016 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libpython3.9-minimal | CVE-2021-29921 | CRITICAL | 3.9.2-1 | | python-ipaddress: Improper input | | | | | | | validation of octal strings | | | | | | | -->avd.aquasec.com/nvd/cve-2021-29921 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-20107 | HIGH | | | python: mailcap: findmatch() function | | | | | | | does not sanitize the second argument | | | | | | | -->avd.aquasec.com/nvd/cve-2015-20107 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-10735 | | | | python: int() type in | | | | | | | PyLong_FromString() does not limit | | | | | | | amount of digits converting... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-10735 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3737 | | | | python: urllib: HTTP client | | | | | | | possible infinite loop on | | | | | | | a 100 Continue response... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3737 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0391 | | | | python: urllib.parse does | | | | | | | not sanitize URLs containing | | | | | | | ASCII newline and tabs | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0391 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42919 | | | | python: local privilege | | | | | | | escalation via the multiprocessing | | | | | | | forkserver start method | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42919 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45061 | | | | python: CPU denial of service | | | | | | | via inefficient IDNA decoder | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45061 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-24329 | | | | python: urllib.parse | | | | | | | url blocklisting bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24329 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6597 | | | | python: Path traversal on | | | | | | | tempfile.TemporaryDirectory | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6597 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3426 | MEDIUM | | | python: Information | | | | | | | disclosure via pydoc | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3426 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3733 | | | | python: urllib: Regular expression | | | | | | | DoS in AbstractBasicAuthHandler | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3733 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4189 | | | | python: ftplib should not use | | | | | | | the host from the PASV response | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4189 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27043 | | | | python: Parsing errors in | | | | | | | email/_parseaddr.py lead to | | | | | | | incorrect value in email address... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27043 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40217 | | | | python: TLS handshake bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40217 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0450 | | | | python: The zipfile module | | | | | | | is vulnerable to zip-bombs | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0450 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-27619 | LOW | | | python: Unsafe use of eval() on | | | | | | | data retrieved via HTTP in the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-27619 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-28861 | | | | python: open redirection | | | | | | | vulnerability in lib/http/server.py | | | | | | | may lead to information disclosure | | | | | | | -->avd.aquasec.com/nvd/cve-2021-28861 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-37454 | | | | XKCP: buffer overflow in the | | | | | | | SHA-3 reference implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-37454 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libpython3.9-stdlib | CVE-2021-29921 | CRITICAL | | | python-ipaddress: Improper input | | | | | | | validation of octal strings | | | | | | | -->avd.aquasec.com/nvd/cve-2021-29921 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-20107 | HIGH | | | python: mailcap: findmatch() function | | | | | | | does not sanitize the second argument | | | | | | | -->avd.aquasec.com/nvd/cve-2015-20107 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-10735 | | | | python: int() type in | | | | | | | PyLong_FromString() does not limit | | | | | | | amount of digits converting... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-10735 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3737 | | | | python: urllib: HTTP client | | | | | | | possible infinite loop on | | | | | | | a 100 Continue response... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3737 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0391 | | | | python: urllib.parse does | | | | | | | not sanitize URLs containing | | | | | | | ASCII newline and tabs | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0391 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42919 | | | | python: local privilege | | | | | | | escalation via the multiprocessing | | | | | | | forkserver start method | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42919 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45061 | | | | python: CPU denial of service | | | | | | | via inefficient IDNA decoder | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45061 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-24329 | | | | python: urllib.parse | | | | | | | url blocklisting bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24329 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6597 | | | | python: Path traversal on | | | | | | | tempfile.TemporaryDirectory | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6597 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3426 | MEDIUM | | | python: Information | | | | | | | disclosure via pydoc | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3426 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3733 | | | | python: urllib: Regular expression | | | | | | | DoS in AbstractBasicAuthHandler | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3733 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4189 | | | | python: ftplib should not use | | | | | | | the host from the PASV response | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4189 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27043 | | | | python: Parsing errors in | | | | | | | email/_parseaddr.py lead to | | | | | | | incorrect value in email address... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27043 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40217 | | | | python: TLS handshake bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40217 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0450 | | | | python: The zipfile module | | | | | | | is vulnerable to zip-bombs | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0450 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-27619 | LOW | | | python: Unsafe use of eval() on | | | | | | | data retrieved via HTTP in the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-27619 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-28861 | | | | python: open redirection | | | | | | | vulnerability in lib/http/server.py | | | | | | | may lead to information disclosure | | | | | | | -->avd.aquasec.com/nvd/cve-2021-28861 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-37454 | | | | XKCP: buffer overflow in the | | | | | | | SHA-3 reference implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-37454 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libquadmath0 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | librsvg2-2 | CVE-2023-38633 | | 2.50.3+dfsg-1 | 2.50.3+dfsg-1+deb11u1 | librsvg: Arbitrary file read when | | | | | | | xinclude href has special characters | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38633 | +------------------------------+ + + + + + | librsvg2-common | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + + + + | librsvg2-dev | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libsepol1 | CVE-2021-36084 | LOW | 3.1-1 | | libsepol: use-after-free in | | | | | | | __cil_verify_classperms() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36085 | | | | libsepol: use-after-free in | | | | | | | __cil_verify_classperms() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36086 | | | | libsepol: use-after-free in | | | | | | | cil_reset_classpermission() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36087 | | | | libsepol: heap-based buffer | | | | | | | overflow in ebitmap_match_any() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libsepol1-dev | CVE-2021-36084 | | | | libsepol: use-after-free in | | | | | | | __cil_verify_classperms() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36085 | | | | libsepol: use-after-free in | | | | | | | __cil_verify_classperms() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36086 | | | | libsepol: use-after-free in | | | | | | | cil_reset_classpermission() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36087 | | | | libsepol: heap-based buffer | | | | | | | overflow in ebitmap_match_any() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libsmartcols1 | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libsqlite3-0 | CVE-2021-31239 | HIGH | 3.34.1-3 | | sqlite: denial of service | | | | | | | via the appendvfs.c function | | | | | | | -->avd.aquasec.com/nvd/cve-2021-31239 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-7104 | | | | sqlite: heap-buffer-overflow | | | | | | | at sessionfuzz | | | | | | | -->avd.aquasec.com/nvd/cve-2023-7104 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36690 | LOW | | | A segmentation fault can occur in the | | | | | | | sqlite3.exe command-line compone ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36690 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45346 | | | | sqlite: crafted SQL query | | | | | | | allows a malicious user to | | | | | | | obtain sensitive information... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45346 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35737 | | | | sqlite: an array-bounds overflow if | | | | | | | billions of bytes are used in a... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35737 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libsqlite3-dev | CVE-2021-31239 | HIGH | | | sqlite: denial of service | | | | | | | via the appendvfs.c function | | | | | | | -->avd.aquasec.com/nvd/cve-2021-31239 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-7104 | | | | sqlite: heap-buffer-overflow | | | | | | | at sessionfuzz | | | | | | | -->avd.aquasec.com/nvd/cve-2023-7104 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36690 | LOW | | | A segmentation fault can occur in the | | | | | | | sqlite3.exe command-line compone ... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36690 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45346 | | | | sqlite: crafted SQL query | | | | | | | allows a malicious user to | | | | | | | obtain sensitive information... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45346 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-35737 | | | | sqlite: an array-bounds overflow if | | | | | | | billions of bytes are used in a... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-35737 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libss2 | CVE-2022-1304 | HIGH | 1.46.2-2 | | e2fsprogs: out-of-bounds | | | | | | | read/write via crafted filesystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1304 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libssh2-1 | CVE-2020-22218 | | 1.9.0-2 | | libssh2: use-of-uninitialized-value | | | | | | | in _libssh2_transport_read | | | | | | | -->avd.aquasec.com/nvd/cve-2020-22218 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libssl-dev | CVE-2022-4450 | | 1.1.1n-0+deb11u3 | 1.1.1n-0+deb11u4 | openssl: double free after | | | | | | | calling PEM_read_bio_ex | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4450 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0215 | | | | openssl: use-after-free | | | | | | | following BIO_new_NDEF | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0215 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0286 | | | | openssl: X.400 address type | | | | | | | confusion in X.509 GeneralName | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0286 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0464 | | | 1.1.1n-0+deb11u5 | openssl: Denial of service | | | | | | | by excessive resource usage | | | | | | | in verifying X509 policy... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0464 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2097 | MEDIUM | | 1.1.1n-0+deb11u4 | openssl: AES OCB fails | | | | | | | to encrypt some bytes | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2097 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4304 | | | | openssl: timing attack in | | | | | | | RSA Decryption implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4304 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0465 | | | 1.1.1n-0+deb11u5 | openssl: Invalid certificate | | | | | | | policies in leaf certificates | | | | | | | are silently ignored | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0465 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0466 | | | | openssl: Certificate | | | | | | | policy check not enabled | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0466 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-2650 | | | | openssl: Possible DoS translating | | | | | | | ASN.1 object identifiers | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2650 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3446 | | | 1.1.1v-0~deb11u1 | openssl: Excessive time spent | | | | | | | checking DH keys and parameters | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3817 | | | | OpenSSL: Excessive time spent | | | | | | | checking DH q parameter value | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3817 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5678 | | | | openssl: Generating excessively | | | | | | | long X9.42 DH keys or checking | | | | | | | excessively long X9.42... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0727 | | | | openssl: denial of service | | | | | | | via null dereference | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0727 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-6755 | LOW | | | Dual_EC_DRBG: weak pseudo | | | | | | | random number generator | | | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-0928 | | | | openssl: RSA authentication weakness | | | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2511 | | | | openssl: Unbounded memory growth | | | | | | | with session handling in TLSv1.3 | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2511 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libssl1.1 | CVE-2022-4450 | HIGH | | 1.1.1n-0+deb11u4 | openssl: double free after | | | | | | | calling PEM_read_bio_ex | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4450 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0215 | | | | openssl: use-after-free | | | | | | | following BIO_new_NDEF | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0215 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0286 | | | | openssl: X.400 address type | | | | | | | confusion in X.509 GeneralName | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0286 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0464 | | | 1.1.1n-0+deb11u5 | openssl: Denial of service | | | | | | | by excessive resource usage | | | | | | | in verifying X509 policy... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0464 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2097 | MEDIUM | | 1.1.1n-0+deb11u4 | openssl: AES OCB fails | | | | | | | to encrypt some bytes | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2097 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4304 | | | | openssl: timing attack in | | | | | | | RSA Decryption implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4304 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0465 | | | 1.1.1n-0+deb11u5 | openssl: Invalid certificate | | | | | | | policies in leaf certificates | | | | | | | are silently ignored | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0465 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0466 | | | | openssl: Certificate | | | | | | | policy check not enabled | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0466 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-2650 | | | | openssl: Possible DoS translating | | | | | | | ASN.1 object identifiers | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2650 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3446 | | | 1.1.1v-0~deb11u1 | openssl: Excessive time spent | | | | | | | checking DH keys and parameters | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3817 | | | | OpenSSL: Excessive time spent | | | | | | | checking DH q parameter value | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3817 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5678 | | | | openssl: Generating excessively | | | | | | | long X9.42 DH keys or checking | | | | | | | excessively long X9.42... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0727 | | | | openssl: denial of service | | | | | | | via null dereference | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0727 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-6755 | LOW | | | Dual_EC_DRBG: weak pseudo | | | | | | | random number generator | | | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-0928 | | | | openssl: RSA authentication weakness | | | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2511 | | | | openssl: Unbounded memory growth | | | | | | | with session handling in TLSv1.3 | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2511 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libstdc++-10-dev | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+ + + +------------------------------+ + | libstdc++6 | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libsystemd0 | CVE-2023-50387 | HIGH | 247.3-7 | | bind9: KeyTrap - Extreme CPU | | | | | | | consumption in DNSSEC validator | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50387 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50868 | | | | bind9: Preparing an NSEC3 | | | | | | | closest encloser proof | | | | | | | can exhaust CPU resources | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50868 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3821 | MEDIUM | | 247.3-7+deb11u2 | systemd: buffer overrun in | | | | | | | format_timespan() function | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3821 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4415 | | | | systemd: local information leak due | | | | | | | to systemd-coredump not respecting | | | | | | | fs.suid_dumpable kernel setting... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4415 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-7008 | | | | systemd-resolved: Unsigned | | | | | | | name response in signed zone is | | | | | | | not refused when DNSSEC=yes... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-7008 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | | | | | | | when updating file permissions | | | | | | | and SELinux security contexts... | | | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | | | | | | | authentication not implemented | | | | | | | can cause a system running the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31437 | | | | An issue was discovered in systemd | | | | | | | 253. An attacker can modify a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31437 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31438 | | | | An issue was discovered in systemd | | | | | | | 253. An attacker can truncate a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31438 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31439 | | | | An issue was discovered in systemd | | | | | | | 253. An attacker can modify the... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31439 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libtasn1-6 | CVE-2021-46848 | CRITICAL | 4.16.0-2 | 4.16.0-2+deb11u1 | libtasn1: Out-of-bound | | | | | | | access in ETYPE_OK | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46848 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libtcl8.6 | CVE-2021-35331 | LOW | 8.6.11+dfsg-1 | | In Tcl 8.6.11, a format | | | | | | | string vulnerability in | | | | | | | nmakehlp.c might allow ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-35331 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libtiff-dev | CVE-2022-3970 | HIGH | 4.2.0-1+deb11u1 | 4.2.0-1+deb11u3 | libtiff: integer | | | | | | | overflow in function | | | | | | | TIFFReadRGBATileExt of the file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3970 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25434 | | | 4.2.0-1+deb11u4 | libtiff: heap-buffer overflow | | | | | | | via extractContigSamplesBytes() | | | | | | | at /libtiff/tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25434 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52355 | | | | libtiff: TIFFRasterScanlineSize64 | | | | | | | produce too-big size | | | | | | | and could cause OOM | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52355 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52356 | | | | libtiff: Segment fault in | | | | | | | libtiff in TIFFReadRGBATileExt() | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52356 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1354 | MEDIUM | | 4.2.0-1+deb11u3 | libtiff: heap-buffer-overflow | | | | | | | in TIFFReadRawDataStriped() | | | | | | | in tiffinfo.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1354 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1355 | | | | libtiff: stack-buffer-overflow | | | | | | | in tiffcp.c in main() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1355 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1622 | | | | libtiff: out-of-bounds | | | | | | | read in LZWDecode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1622 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1623 | | | | libtiff: out-of-bounds | | | | | | | read in LZWDecode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1623 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2056 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2056 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2057 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2057 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2058 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2058 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2519 | | | | libtiff: Double free or | | | | | | | corruption in rotateImage() | | | | | | | function at tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2519 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2520 | | | | libtiff: Assertion fail in | | | | | | | rotateImage() function at tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2520 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2521 | | | | libtiff: Invalid pointer | | | | | | | free operation in | | | | | | | TIFFClose() at tif_close.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2521 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2867 | | | | libtiff: uint32_t underflow leads to | | | | | | | out of bounds read and write in... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2867 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2868 | | | | libtiff: Invalid crop_width | | | | | | | and/or crop_length could | | | | | | | cause an out-of-bounds read | | | | | | | in reverseSamples16bits()... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2868 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2869 | | | | libtiff: tiffcrop.c has | | | | | | | uint32_t underflow which | | | | | | | leads to out of bounds read... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2869 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2953 | | | | libtiff: tiffcrop: | | | | | | | heap-buffer-overflow in | | | | | | | extractImageSection in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2953 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-34526 | | | | libtiff: A stack overflow was | | | | | | | discovered in the _TIFFVGetField | | | | | | | function of Tiffsplit... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-34526 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3570 | | | | libtiff: heap Buffer | | | | | | | overflows in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3570 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3597 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy in libtiff/tif_unix | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3597 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3598 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted24bits | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3598 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3599 | | | | libtiff: out-of-bounds | | | | | | | read in writeSingleSection | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3599 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3626 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemset in libtiff/tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3626 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3627 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy in libtiff/tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3627 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40090 | | | | libtiff: infinite loop | | | | | | | via a crafted TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40090 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4645 | | | 4.2.0-1+deb11u3 | libtiff: out-of-bounds read | | | | | | | in tiffcp in tools/tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4645 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-48281 | | | | libtiff: heap-based buffer | | | | | | | overflow in processCropSelections() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48281 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0795 | | | 4.2.0-1+deb11u4 | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0795 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0796 | | | | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted24bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0796 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0797 | | | | libtiff: out-of-bounds read in | | | | | | | _TIFFmemcpy() in libtiff/tif_unix.c | | | | | | | when called by functions in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0797 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0798 | | | | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted8bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0798 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0799 | | | | libtiff: use-after-free in | | | | | | | extractContigSamplesShifted32bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0799 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0800 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0800 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0801 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy() in libtiff/tif_unix.c | | | | | | | when called by functions in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0801 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0802 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted32bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0802 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0803 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0803 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0804 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted24bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25433 | | | | libtiff: Buffer Overflow via | | | | | | | /libtiff/tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25433 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25435 | | | 4.2.0-1+deb11u4 | libtiff: tiffcrop: | | | | | | | heap-buffer-overflow in | | | | | | | extractContigSamplesShifted8bits() | | | | | | | in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25435 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26965 | | | | libtiff: heap-based use | | | | | | | after free via a crafted | | | | | | | TIFF image in loadImage()... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26965 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26966 | | | | libtiff: Buffer | | | | | | | Overflow in uv_encode() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26966 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2908 | | | | libtiff: null pointer | | | | | | | dereference in tif_dir.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2908 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30086 | | | 4.2.0-1+deb11u3 | libtiff: Heap buffer overflow | | | | | | | in tiffcp() at tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-30774 | | | | libtiff: heap buffer overflow issues | | | | | | | related to TIFFTAG_INKNAMES and | | | | | | | related TIFFTAG_NUMBEROFINKS value... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30774 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3316 | | | | libtiff: tiffcrop: null pointer | | | | | | | dereference in TIFFClose() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3316 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3576 | | | 4.2.0-1+deb11u5 | libtiff: memory leak in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3576 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3618 | | | | libtiff: segmentation fault in | | | | | | | Fax3Encode in libtiff/tif_fax3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3618 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40745 | | | 4.2.0-1+deb11u5 | libtiff: integer overflow in tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40745 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-41175 | | | | libtiff: potential integer | | | | | | | overflow in raw2tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-41175 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6277 | | | | libtiff: Out-of-memory in | | | | | | | TIFFOpen via a craft file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6277 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16232 | LOW | | | libtiff: Memory leaks in | | | | | | | tif_open.c, tif_lzw.c, and tif_aux.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16232 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-17973 | | | | libtiff: heap-based use after | | | | | | | free in tiff2pdf.c:t2p_writeproc | | | | | | | -->avd.aquasec.com/nvd/cve-2017-17973 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-5563 | | | | libtiff: Heap-buffer overflow | | | | | | | in LZWEncode tif_lzw.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-5563 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-9117 | | | | libtiff: Heap-based buffer | | | | | | | over-read in bmp2tiff | | | | | | | -->avd.aquasec.com/nvd/cve-2017-9117 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-10126 | | | | libtiff: NULL pointer dereference | | | | | | | in the jpeg_fdct_16x16 | | | | | | | function in jfdctint.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-10126 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1056 | | | | libtiff: heap-based buffer overflow | | | | | | | in _TIFFmemcpy() in tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1056 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1210 | | | | tiff: Malicious file leads to a | | | | | | | denial of service in TIFF File... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1210 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1916 | | | | libtiff: out-of-bounds read | | | | | | | in extractImageSection() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30775 | | | | libtiff: Heap buffer overflow | | | | | | | in extractContigSamples32bits, | | | | | | | tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30775 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3164 | | | | libtiff: heap-buffer-overflow | | | | | | | in extractImageSection() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6228 | | | | libtiff: heap-based buffer overflow | | | | | | | in cpStripToTile() in tools/tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6228 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libtiff5 | CVE-2022-3970 | HIGH | | 4.2.0-1+deb11u3 | libtiff: integer | | | | | | | overflow in function | | | | | | | TIFFReadRGBATileExt of the file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3970 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25434 | | | 4.2.0-1+deb11u4 | libtiff: heap-buffer overflow | | | | | | | via extractContigSamplesBytes() | | | | | | | at /libtiff/tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25434 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52355 | | | | libtiff: TIFFRasterScanlineSize64 | | | | | | | produce too-big size | | | | | | | and could cause OOM | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52355 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52356 | | | | libtiff: Segment fault in | | | | | | | libtiff in TIFFReadRGBATileExt() | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52356 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1354 | MEDIUM | | 4.2.0-1+deb11u3 | libtiff: heap-buffer-overflow | | | | | | | in TIFFReadRawDataStriped() | | | | | | | in tiffinfo.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1354 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1355 | | | | libtiff: stack-buffer-overflow | | | | | | | in tiffcp.c in main() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1355 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1622 | | | | libtiff: out-of-bounds | | | | | | | read in LZWDecode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1622 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1623 | | | | libtiff: out-of-bounds | | | | | | | read in LZWDecode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1623 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2056 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2056 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2057 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2057 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2058 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2058 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2519 | | | | libtiff: Double free or | | | | | | | corruption in rotateImage() | | | | | | | function at tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2519 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2520 | | | | libtiff: Assertion fail in | | | | | | | rotateImage() function at tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2520 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2521 | | | | libtiff: Invalid pointer | | | | | | | free operation in | | | | | | | TIFFClose() at tif_close.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2521 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2867 | | | | libtiff: uint32_t underflow leads to | | | | | | | out of bounds read and write in... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2867 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2868 | | | | libtiff: Invalid crop_width | | | | | | | and/or crop_length could | | | | | | | cause an out-of-bounds read | | | | | | | in reverseSamples16bits()... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2868 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2869 | | | | libtiff: tiffcrop.c has | | | | | | | uint32_t underflow which | | | | | | | leads to out of bounds read... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2869 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2953 | | | | libtiff: tiffcrop: | | | | | | | heap-buffer-overflow in | | | | | | | extractImageSection in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2953 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-34526 | | | | libtiff: A stack overflow was | | | | | | | discovered in the _TIFFVGetField | | | | | | | function of Tiffsplit... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-34526 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3570 | | | | libtiff: heap Buffer | | | | | | | overflows in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3570 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3597 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy in libtiff/tif_unix | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3597 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3598 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted24bits | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3598 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3599 | | | | libtiff: out-of-bounds | | | | | | | read in writeSingleSection | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3599 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3626 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemset in libtiff/tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3626 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3627 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy in libtiff/tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3627 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40090 | | | | libtiff: infinite loop | | | | | | | via a crafted TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40090 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4645 | | | 4.2.0-1+deb11u3 | libtiff: out-of-bounds read | | | | | | | in tiffcp in tools/tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4645 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-48281 | | | | libtiff: heap-based buffer | | | | | | | overflow in processCropSelections() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48281 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0795 | | | 4.2.0-1+deb11u4 | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0795 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0796 | | | | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted24bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0796 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0797 | | | | libtiff: out-of-bounds read in | | | | | | | _TIFFmemcpy() in libtiff/tif_unix.c | | | | | | | when called by functions in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0797 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0798 | | | | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted8bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0798 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0799 | | | | libtiff: use-after-free in | | | | | | | extractContigSamplesShifted32bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0799 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0800 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0800 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0801 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy() in libtiff/tif_unix.c | | | | | | | when called by functions in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0801 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0802 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted32bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0802 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0803 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0803 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0804 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted24bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25433 | | | | libtiff: Buffer Overflow via | | | | | | | /libtiff/tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25433 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25435 | | | 4.2.0-1+deb11u4 | libtiff: tiffcrop: | | | | | | | heap-buffer-overflow in | | | | | | | extractContigSamplesShifted8bits() | | | | | | | in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25435 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26965 | | | | libtiff: heap-based use | | | | | | | after free via a crafted | | | | | | | TIFF image in loadImage()... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26965 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26966 | | | | libtiff: Buffer | | | | | | | Overflow in uv_encode() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26966 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2908 | | | | libtiff: null pointer | | | | | | | dereference in tif_dir.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2908 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30086 | | | 4.2.0-1+deb11u3 | libtiff: Heap buffer overflow | | | | | | | in tiffcp() at tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-30774 | | | | libtiff: heap buffer overflow issues | | | | | | | related to TIFFTAG_INKNAMES and | | | | | | | related TIFFTAG_NUMBEROFINKS value... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30774 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3316 | | | | libtiff: tiffcrop: null pointer | | | | | | | dereference in TIFFClose() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3316 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3576 | | | 4.2.0-1+deb11u5 | libtiff: memory leak in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3576 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3618 | | | | libtiff: segmentation fault in | | | | | | | Fax3Encode in libtiff/tif_fax3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3618 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40745 | | | 4.2.0-1+deb11u5 | libtiff: integer overflow in tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40745 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-41175 | | | | libtiff: potential integer | | | | | | | overflow in raw2tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-41175 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6277 | | | | libtiff: Out-of-memory in | | | | | | | TIFFOpen via a craft file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6277 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16232 | LOW | | | libtiff: Memory leaks in | | | | | | | tif_open.c, tif_lzw.c, and tif_aux.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16232 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-17973 | | | | libtiff: heap-based use after | | | | | | | free in tiff2pdf.c:t2p_writeproc | | | | | | | -->avd.aquasec.com/nvd/cve-2017-17973 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-5563 | | | | libtiff: Heap-buffer overflow | | | | | | | in LZWEncode tif_lzw.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-5563 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-9117 | | | | libtiff: Heap-based buffer | | | | | | | over-read in bmp2tiff | | | | | | | -->avd.aquasec.com/nvd/cve-2017-9117 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-10126 | | | | libtiff: NULL pointer dereference | | | | | | | in the jpeg_fdct_16x16 | | | | | | | function in jfdctint.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-10126 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1056 | | | | libtiff: heap-based buffer overflow | | | | | | | in _TIFFmemcpy() in tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1056 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1210 | | | | tiff: Malicious file leads to a | | | | | | | denial of service in TIFF File... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1210 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1916 | | | | libtiff: out-of-bounds read | | | | | | | in extractImageSection() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30775 | | | | libtiff: Heap buffer overflow | | | | | | | in extractContigSamples32bits, | | | | | | | tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30775 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3164 | | | | libtiff: heap-buffer-overflow | | | | | | | in extractImageSection() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6228 | | | | libtiff: heap-based buffer overflow | | | | | | | in cpStripToTile() in tools/tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6228 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libtiffxx5 | CVE-2022-3970 | HIGH | | 4.2.0-1+deb11u3 | libtiff: integer | | | | | | | overflow in function | | | | | | | TIFFReadRGBATileExt of the file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3970 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25434 | | | 4.2.0-1+deb11u4 | libtiff: heap-buffer overflow | | | | | | | via extractContigSamplesBytes() | | | | | | | at /libtiff/tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25434 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52355 | | | | libtiff: TIFFRasterScanlineSize64 | | | | | | | produce too-big size | | | | | | | and could cause OOM | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52355 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52356 | | | | libtiff: Segment fault in | | | | | | | libtiff in TIFFReadRGBATileExt() | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52356 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1354 | MEDIUM | | 4.2.0-1+deb11u3 | libtiff: heap-buffer-overflow | | | | | | | in TIFFReadRawDataStriped() | | | | | | | in tiffinfo.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1354 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1355 | | | | libtiff: stack-buffer-overflow | | | | | | | in tiffcp.c in main() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1355 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1622 | | | | libtiff: out-of-bounds | | | | | | | read in LZWDecode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1622 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-1623 | | | | libtiff: out-of-bounds | | | | | | | read in LZWDecode | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1623 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2056 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2056 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2057 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2057 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2058 | | | | libtiff: division by | | | | | | | zero issues in tiffcrop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2058 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2519 | | | | libtiff: Double free or | | | | | | | corruption in rotateImage() | | | | | | | function at tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2519 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2520 | | | | libtiff: Assertion fail in | | | | | | | rotateImage() function at tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2520 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2521 | | | | libtiff: Invalid pointer | | | | | | | free operation in | | | | | | | TIFFClose() at tif_close.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2521 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2867 | | | | libtiff: uint32_t underflow leads to | | | | | | | out of bounds read and write in... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2867 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2868 | | | | libtiff: Invalid crop_width | | | | | | | and/or crop_length could | | | | | | | cause an out-of-bounds read | | | | | | | in reverseSamples16bits()... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2868 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2869 | | | | libtiff: tiffcrop.c has | | | | | | | uint32_t underflow which | | | | | | | leads to out of bounds read... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2869 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2953 | | | | libtiff: tiffcrop: | | | | | | | heap-buffer-overflow in | | | | | | | extractImageSection in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2953 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-34526 | | | | libtiff: A stack overflow was | | | | | | | discovered in the _TIFFVGetField | | | | | | | function of Tiffsplit... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-34526 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3570 | | | | libtiff: heap Buffer | | | | | | | overflows in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3570 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3597 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy in libtiff/tif_unix | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3597 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3598 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted24bits | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3598 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3599 | | | | libtiff: out-of-bounds | | | | | | | read in writeSingleSection | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3599 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3626 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemset in libtiff/tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3626 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3627 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy in libtiff/tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3627 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40090 | | | | libtiff: infinite loop | | | | | | | via a crafted TIFF file | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40090 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4645 | | | 4.2.0-1+deb11u3 | libtiff: out-of-bounds read | | | | | | | in tiffcp in tools/tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4645 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-48281 | | | | libtiff: heap-based buffer | | | | | | | overflow in processCropSelections() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48281 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0795 | | | 4.2.0-1+deb11u4 | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0795 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0796 | | | | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted24bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0796 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0797 | | | | libtiff: out-of-bounds read in | | | | | | | _TIFFmemcpy() in libtiff/tif_unix.c | | | | | | | when called by functions in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0797 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0798 | | | | libtiff: out-of-bounds read in | | | | | | | extractContigSamplesShifted8bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0798 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0799 | | | | libtiff: use-after-free in | | | | | | | extractContigSamplesShifted32bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0799 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0800 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0800 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0801 | | | | libtiff: out-of-bounds write in | | | | | | | _TIFFmemcpy() in libtiff/tif_unix.c | | | | | | | when called by functions in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0801 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0802 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted32bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0802 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0803 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted16bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0803 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0804 | | | | libtiff: out-of-bounds write in | | | | | | | extractContigSamplesShifted24bits() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25433 | | | | libtiff: Buffer Overflow via | | | | | | | /libtiff/tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25433 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25435 | | | 4.2.0-1+deb11u4 | libtiff: tiffcrop: | | | | | | | heap-buffer-overflow in | | | | | | | extractContigSamplesShifted8bits() | | | | | | | in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25435 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26965 | | | | libtiff: heap-based use | | | | | | | after free via a crafted | | | | | | | TIFF image in loadImage()... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26965 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26966 | | | | libtiff: Buffer | | | | | | | Overflow in uv_encode() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26966 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2908 | | | | libtiff: null pointer | | | | | | | dereference in tif_dir.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2908 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30086 | | | 4.2.0-1+deb11u3 | libtiff: Heap buffer overflow | | | | | | | in tiffcp() at tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-30774 | | | | libtiff: heap buffer overflow issues | | | | | | | related to TIFFTAG_INKNAMES and | | | | | | | related TIFFTAG_NUMBEROFINKS value... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30774 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3316 | | | | libtiff: tiffcrop: null pointer | | | | | | | dereference in TIFFClose() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3316 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3576 | | | 4.2.0-1+deb11u5 | libtiff: memory leak in tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3576 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3618 | | | | libtiff: segmentation fault in | | | | | | | Fax3Encode in libtiff/tif_fax3.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3618 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40745 | | | 4.2.0-1+deb11u5 | libtiff: integer overflow in tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40745 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-41175 | | | | libtiff: potential integer | | | | | | | overflow in raw2tiff.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-41175 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6277 | | | | libtiff: Out-of-memory in | | | | | | | TIFFOpen via a craft file | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6277 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-16232 | LOW | | | libtiff: Memory leaks in | | | | | | | tif_open.c, tif_lzw.c, and tif_aux.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-16232 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-17973 | | | | libtiff: heap-based use after | | | | | | | free in tiff2pdf.c:t2p_writeproc | | | | | | | -->avd.aquasec.com/nvd/cve-2017-17973 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-5563 | | | | libtiff: Heap-buffer overflow | | | | | | | in LZWEncode tif_lzw.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-5563 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-9117 | | | | libtiff: Heap-based buffer | | | | | | | over-read in bmp2tiff | | | | | | | -->avd.aquasec.com/nvd/cve-2017-9117 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-10126 | | | | libtiff: NULL pointer dereference | | | | | | | in the jpeg_fdct_16x16 | | | | | | | function in jfdctint.c | | | | | | | -->avd.aquasec.com/nvd/cve-2018-10126 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1056 | | | | libtiff: heap-based buffer overflow | | | | | | | in _TIFFmemcpy() in tif_unix.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1056 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1210 | | | | tiff: Malicious file leads to a | | | | | | | denial of service in TIFF File... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1210 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1916 | | | | libtiff: out-of-bounds read | | | | | | | in extractImageSection() | | | | | | | in tools/tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30775 | | | | libtiff: Heap buffer overflow | | | | | | | in extractContigSamples32bits, | | | | | | | tiffcrop.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30775 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3164 | | | | libtiff: heap-buffer-overflow | | | | | | | in extractImageSection() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3164 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6228 | | | | libtiff: heap-based buffer overflow | | | | | | | in cpStripToTile() in tools/tiffcp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6228 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libtinfo6 | CVE-2022-29458 | HIGH | 6.2+20201114-2 | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libtirpc-common | CVE-2021-46828 | HIGH | 1.3.1-1 | 1.3.1-1+deb11u1 | libtirpc: DoS vulnerability | | | | | | | with lots of connections | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46828 | +------------------------------+ + + + + + | libtirpc-dev | | | | | | | | | | | | | | | | | | | | +------------------------------+ + + + + + | libtirpc3 | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libtsan0 | CVE-2023-4039 | MEDIUM | 10.2.1-6 | | gcc: -fstack-protector | | | | | | | fails to guard dynamic | | | | | | | stack allocations on ARM64 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4039 | +------------------------------+ + + +------------------------------+ + | libubsan1 | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libudev1 | CVE-2023-50387 | HIGH | 247.3-7 | | bind9: KeyTrap - Extreme CPU | | | | | | | consumption in DNSSEC validator | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50387 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50868 | | | | bind9: Preparing an NSEC3 | | | | | | | closest encloser proof | | | | | | | can exhaust CPU resources | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50868 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3821 | MEDIUM | | 247.3-7+deb11u2 | systemd: buffer overrun in | | | | | | | format_timespan() function | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3821 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4415 | | | | systemd: local information leak due | | | | | | | to systemd-coredump not respecting | | | | | | | fs.suid_dumpable kernel setting... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4415 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-7008 | | | | systemd-resolved: Unsigned | | | | | | | name response in signed zone is | | | | | | | not refused when DNSSEC=yes... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-7008 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | | | | | | | when updating file permissions | | | | | | | and SELinux security contexts... | | | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | | | | | | | authentication not implemented | | | | | | | can cause a system running the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31437 | | | | An issue was discovered in systemd | | | | | | | 253. An attacker can modify a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31437 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31438 | | | | An issue was discovered in systemd | | | | | | | 253. An attacker can truncate a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31438 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31439 | | | | An issue was discovered in systemd | | | | | | | 253. An attacker can modify the... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31439 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libuuid1 | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libwebp-dev | CVE-2023-1999 | HIGH | 0.6.1-2.1 | 0.6.1-2.1+deb11u1 | Mozilla: libwebp: | | | | | | | Double-free in libwebp | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4863 | | | 0.6.1-2.1+deb11u2 | libwebp: Heap buffer | | | | | | | overflow in WebP Codec | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4863 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libwebp6 | CVE-2023-1999 | | | 0.6.1-2.1+deb11u1 | Mozilla: libwebp: | | | | | | | Double-free in libwebp | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4863 | | | 0.6.1-2.1+deb11u2 | libwebp: Heap buffer | | | | | | | overflow in WebP Codec | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4863 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libwebpdemux2 | CVE-2023-1999 | | | 0.6.1-2.1+deb11u1 | Mozilla: libwebp: | | | | | | | Double-free in libwebp | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4863 | | | 0.6.1-2.1+deb11u2 | libwebp: Heap buffer | | | | | | | overflow in WebP Codec | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4863 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libwebpmux3 | CVE-2023-1999 | | | 0.6.1-2.1+deb11u1 | Mozilla: libwebp: | | | | | | | Double-free in libwebp | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1999 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4863 | | | 0.6.1-2.1+deb11u2 | libwebp: Heap buffer | | | | | | | overflow in WebP Codec | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4863 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libwmf-dev | CVE-2007-3476 | LOW | 0.2.8.4-17 | | libgd Denial of service | | | | | | | by corrupted GIF images | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3476 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-3477 | | | | gd: arc drawing functions can | | | | | | | consume large amount of CPU time | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3477 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-3996 | | | | php multiple integer overflows in gd | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2009-3546 | | | | gd: insufficient input | | | | | | | validation in _gdGetColors() | | | | | | | -->avd.aquasec.com/nvd/cve-2009-3546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | TEMP-0601525-BEBB65 | | | | [libgd2: gdImageColorTransparent can write outside buffer] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0601525-BEBB65 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | libwmf0.2-7 | CVE-2007-3476 | | | | libgd Denial of service | | | | | | | by corrupted GIF images | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3476 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-3477 | | | | gd: arc drawing functions can | | | | | | | consume large amount of CPU time | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3477 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-3996 | | | | php multiple integer overflows in gd | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3996 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2009-3546 | | | | gd: insufficient input | | | | | | | validation in _gdGetColors() | | | | | | | -->avd.aquasec.com/nvd/cve-2009-3546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | TEMP-0601525-BEBB65 | | | | [libgd2: gdImageColorTransparent can write outside buffer] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0601525-BEBB65 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libx11-6 | CVE-2023-3138 | HIGH | 2:1.7.2-1 | 2:1.7.2-1+deb11u1 | libX11: InitExt.c can overwrite | | | | | | | unintended portions of the | | | | | | | Display structure if the... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3138 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-43787 | | | 2:1.7.2-1+deb11u2 | libX11: integer overflow | | | | | | | in XCreateImage() leading | | | | | | | to a heap overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43787 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-43785 | MEDIUM | | | libX11: out-of-bounds memory | | | | | | | access in _XkbReadKeySyms() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43785 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-43786 | | | | libX11: stack exhaustion from | | | | | | | infinite recursion in PutSubImage() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43786 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libx11-data | CVE-2023-3138 | HIGH | | 2:1.7.2-1+deb11u1 | libX11: InitExt.c can overwrite | | | | | | | unintended portions of the | | | | | | | Display structure if the... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3138 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-43787 | | | 2:1.7.2-1+deb11u2 | libX11: integer overflow | | | | | | | in XCreateImage() leading | | | | | | | to a heap overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43787 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-43785 | MEDIUM | | | libX11: out-of-bounds memory | | | | | | | access in _XkbReadKeySyms() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43785 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-43786 | | | | libX11: stack exhaustion from | | | | | | | infinite recursion in PutSubImage() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43786 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libx11-dev | CVE-2023-3138 | HIGH | | 2:1.7.2-1+deb11u1 | libX11: InitExt.c can overwrite | | | | | | | unintended portions of the | | | | | | | Display structure if the... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3138 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-43787 | | | 2:1.7.2-1+deb11u2 | libX11: integer overflow | | | | | | | in XCreateImage() leading | | | | | | | to a heap overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43787 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-43785 | MEDIUM | | | libX11: out-of-bounds memory | | | | | | | access in _XkbReadKeySyms() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43785 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-43786 | | | | libX11: stack exhaustion from | | | | | | | infinite recursion in PutSubImage() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43786 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libxml2 | CVE-2022-2309 | HIGH | 2.9.10+dfsg-6.7+deb11u2 | | lxml: NULL Pointer | | | | | | | Dereference in lxml | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40303 | | | 2.9.10+dfsg-6.7+deb11u3 | libxml2: integer overflows | | | | | | | with XML_PARSE_HUGE | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40303 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-40304 | | | | libxml2: dict corruption caused | | | | | | | by entity reference cycles | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40304 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25062 | | | | libxml2: use-after-free in XMLReader | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25062 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-3709 | MEDIUM | | | libxml2: Incorrect server side | | | | | | | include parsing can lead to XSS | | | | | | | -->avd.aquasec.com/nvd/cve-2016-3709 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28484 | | | 2.9.10+dfsg-6.7+deb11u4 | libxml2: NULL dereference | | | | | | | in xmlSchemaFixupComplexType | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28484 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-29469 | | | | libxml2: Hashing of empty dict | | | | | | | strings isn't deterministic | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29469 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39615 | | | | libxml2: crafted xml can | | | | | | | cause global buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39615 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45322 | | | | libxml2: use-after-free in | | | | | | | xmlUnlinkNode() in tree.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45322 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libxml2-dev | CVE-2022-2309 | HIGH | | | lxml: NULL Pointer | | | | | | | Dereference in lxml | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2309 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40303 | | | 2.9.10+dfsg-6.7+deb11u3 | libxml2: integer overflows | | | | | | | with XML_PARSE_HUGE | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40303 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-40304 | | | | libxml2: dict corruption caused | | | | | | | by entity reference cycles | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40304 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25062 | | | | libxml2: use-after-free in XMLReader | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25062 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-3709 | MEDIUM | | | libxml2: Incorrect server side | | | | | | | include parsing can lead to XSS | | | | | | | -->avd.aquasec.com/nvd/cve-2016-3709 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28484 | | | 2.9.10+dfsg-6.7+deb11u4 | libxml2: NULL dereference | | | | | | | in xmlSchemaFixupComplexType | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28484 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-29469 | | | | libxml2: Hashing of empty dict | | | | | | | strings isn't deterministic | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29469 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39615 | | | | libxml2: crafted xml can | | | | | | | cause global buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39615 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45322 | | | | libxml2: use-after-free in | | | | | | | xmlUnlinkNode() in tree.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45322 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libxslt1-dev | CVE-2021-30560 | HIGH | 1.1.34-4 | 1.1.34-4+deb11u1 | Use after free in Blink | | | | | | | XSLT in Google Chrome | | | | | | | prior to 91.0.4472.164... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-30560 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-9019 | LOW | | | libxslt: math.random() in | | | | | | | xslt uses unseeded randomness | | | | | | | -->avd.aquasec.com/nvd/cve-2015-9019 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | libxslt1.1 | CVE-2021-30560 | HIGH | | 1.1.34-4+deb11u1 | Use after free in Blink | | | | | | | XSLT in Google Chrome | | | | | | | prior to 91.0.4472.164... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-30560 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-9019 | LOW | | | libxslt: math.random() in | | | | | | | xslt uses unseeded randomness | | | | | | | -->avd.aquasec.com/nvd/cve-2015-9019 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | libyaml-0-2 | CVE-2024-3205 | HIGH | 0.2.2-1 | | libyaml: Heap-Based Buffer Overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2024-3205 | +------------------------------+ + + +------------------------------+ + | libyaml-dev | | | | | | | | | | | | | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | libzstd1 | CVE-2022-4899 | | 1.4.8+dfsg-2.1 | | zstd: mysql: buffer | | | | | | | overrun in util.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4899 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | linux-libc-dev | CVE-2023-25775 | CRITICAL | 5.10.127-2 | 5.10.205-2 | kernel: irdma: | | | | | | | Improper access control | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25775 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-5178 | | | | kernel: use after free in | | | | | | | nvmet_tcp_free_crypto in NVMe | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5178 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-7445 | HIGH | | | kernel: memory exhaustion via | | | | | | | crafted Graphics Execution | | | | | | | Manager (GEM) objects | | | | | | | -->avd.aquasec.com/nvd/cve-2013-7445 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-19449 | | | | kernel: mounting a crafted | | | | | | | f2fs filesystem image can lead | | | | | | | to slab-out-of-bounds read... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-19449 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-19814 | | | | kernel: out-of-bounds write | | | | | | | in __remove_dirty_segment | | | | | | | in fs/f2fs/segment.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-19814 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-25162 | | | 5.10.140-1 | kernel: use after free in i2c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-25162 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-12362 | | | | kernel: Integer overflow in | | | | | | | Intel(R) Graphics Drivers | | | | | | | -->avd.aquasec.com/nvd/cve-2020-12362 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-33631 | | | 5.10.178-1 | kernel: ext4: kernel bug in | | | | | | | ext4_write_inline_data_end() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-33631 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3847 | | | | kernel: low-privileged | | | | | | | user privileges escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3847 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3864 | | | | kernel: descendant's dumpable | | | | | | | setting with certain SUID binaries | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3864 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-39686 | | | | kernel: race condition in | | | | | | | the Android binder driver | | | | | | | could lead to incorrect... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-39686 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4037 | | | 5.10.149-1 | kernel: security regression | | | | | | | for CVE-2018-13405 | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4037 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4204 | | | | kernel: improper input validation | | | | | | | may lead to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4204 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47014 | | | | kernel: net/sched: act_ct: fix wild | | | | | | | memory access when clearing fragments | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47014 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47094 | | | | kernel: KVM: x86/mmu: | | | | | | | Don't advance iterator | | | | | | | after restart due to yielding | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47094 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47103 | | | 5.10.158-1 | kernel: inet: fully convert | | | | | | | sk->sk_rx_dst to RCU rules | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47103 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47198 | | | | kernel: scsi: lpfc: | | | | | | | Fix use-after-free in | | | | | | | lpfc_unreg_rpi() routine | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47198 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0500 | | | | kernel: Linux ebpf logic | | | | | | | vulnerability leads to critical | | | | | | | memory read and write... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0500 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1679 | | | 5.10.140-1 | kernel: use-after-free in | | | | | | | ath9k_htc_probe_device() could | | | | | | | cause an escalation of privileges | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1679 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-20421 | | | 5.10.149-1 | kernel: use after free in | | | | | | | binder_inc_ref_for_node in | | | | | | | drivers/android/binder.c due | | | | | | | -->avd.aquasec.com/nvd/cve-2022-20421 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-20422 | | | 5.10.140-1 | In emulation_proc_handler | | | | | | | of armv8_deprecated.c, | | | | | | | there is a possible w ... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-20422 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-20566 | | | 5.10.136-1 | kernel: possible use after | | | | | | | free due to improper locking | | | | | | | in l2cap_chan_put of... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-20566 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2196 | | | 5.10.178-1 | kernel: KVM: nVMX: missing | | | | | | | IBPB when exiting from | | | | | | | nested guest can lead... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2196 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2585 | | | 5.10.136-1 | kernel: posix cpu timer | | | | | | | use-after-free may lead to | | | | | | | local privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2585 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2586 | | | | kernel: nf_tables cross-table | | | | | | | potential use-after-free may lead | | | | | | | to local privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2586 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-2588 | | | | kernel: a use-after-free in | | | | | | | cls_route filter implementation | | | | | | | may lead to privilege escalation... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2588 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2602 | | | 5.10.149-1 | kernel: use-after-free when an | | | | | | | io_uring request is being processed | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2602 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2978 | | | 5.10.148-1 | kernel: use-after-free | | | | | | | in nilfs_mdt_destroy | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2978 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3028 | | | 5.10.140-1 | kernel: race condition | | | | | | | in xfrm_probe_algs can | | | | | | | lead to OOB read/write | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3028 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3176 | | | 5.10.149-1 | kernel: use-after-free in io_uring | | | | | | | for POLLFREE notification with | | | | | | | Signalfd_poll() and binder_poll() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3176 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3545 | | | 5.10.162-1 | kernel: nfp: use-after-free | | | | | | | in area_cache_get() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3545 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3564 | | | 5.10.158-1 | kernel: use-after-free caused | | | | | | | by l2cap_reassemble_sdu() in | | | | | | | net/bluetooth/l2cap_core.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3564 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3565 | | | | kernel: use-after-free | | | | | | | in l1oip timer handlers | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3565 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3566 | | | | kernel: data races | | | | | | | around icsk->icsk_af_ops | | | | | | | in do_ipv6_setsockopt | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3566 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3623 | | | 5.10.162-1 | kernel: denial of service in | | | | | | | follow_page_pte in mm/gup.c | | | | | | | due to poisoned pte... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3623 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3625 | | | 5.10.140-1 | kernel: use-after-free after failed | | | | | | | devlink reload in devlink_param_get | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3625 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3635 | | | | kernel: use after in tst_timer | | | | | | | in drivers/atm/idt77252.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3635 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3640 | | | 5.10.158-1 | kernel: use after free | | | | | | | flaw in l2cap_conn_del in | | | | | | | net/bluetooth/l2cap_core.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3640 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3649 | | | 5.10.148-1 | kernel: nilfs2: use-after-free in | | | | | | | nilfs_new_inode of fs/nilfs2/inode.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3649 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-36946 | | | 5.10.136-1 | kernel: DoS in nfqnl_mangle in | | | | | | | net/netfilter/nfnetlink_queue.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-36946 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39189 | | | 5.10.191-1 | kernel: TLB flush operations | | | | | | | are mishandled in certain | | | | | | | KVM_VCPU_PREEMPTED | | | | | | | leading to guest... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39189 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4095 | | | 5.10.148-1 | kernel: Use-after-Free/Double-Free | | | | | | | bug in read_bbreg_hdl in | | | | | | | drivers/staging/rtl8712/rtl8712_cmd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4095 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41222 | | | 5.10.140-1 | kernel: mm/mremap.c | | | | | | | use-after-free vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41222 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4139 | | | 5.10.158-1 | kernel: i915: Incorrect | | | | | | | GPU TLB flush can lead to | | | | | | | random memory access... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4139 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41674 | | | 5.10.149-1 | kernel: u8 overflow problem in | | | | | | | cfg80211_update_notlisted_nontrans() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41674 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-42719 | | | | kernel: A use-after-free | | | | | | | problem observed in multi-BSSID | | | | | | | element when parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42719 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-42720 | | | | kernel: use-after-free in | | | | | | | bss_ref_get in net/wireless/scan.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42720 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42896 | | | 5.10.158-1 | kernel: use-after-free | | | | | | | in l2cap_connect and | | | | | | | l2cap_le_connect_req in | | | | | | | net/bluetooth/l2cap_core.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42896 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4378 | | | | kernel: stack overflow | | | | | | | in do_proc_dointvec | | | | | | | and proc_skip_spaces | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4378 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4379 | | | 5.10.178-1 | kernel: use-after-free | | | | | | | in __nfs42_ssc_open() in | | | | | | | fs/nfs/nfs4file.c leading to | | | | | | | remote Denial of Service... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4379 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43945 | | | | kernel: nfsd buffer overflow by RPC | | | | | | | message over TCP with garbage data... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43945 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45934 | | | 5.10.162-1 | kernel: integer overflow | | | | | | | in l2cap_config_req() in | | | | | | | net/bluetooth/l2cap_core.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45934 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4696 | | | | kernel: user-after-free during | | | | | | | IORING_OP_SPLICE operation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4744 | | | 5.10.136-1 | kernel: tun: avoid double | | | | | | | free in tun_free_netdev | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4744 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47518 | | | 5.10.158-1 | kernel: a heap-based buffer overflow in | | | | | | | drivers/net/wireless/microchip/wilc1000/cfg80211.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47518 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-47519 | | | | kernel: an out-of-bounds write in | | | | | | | drivers/net/wireless/microchip/wilc1000/cfg80211.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47519 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-47520 | | | | kernel: an out-of-bounds read in | | | | | | | drivers/net/wireless/microchip/wilc1000/hif.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47520 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-47521 | | | | kernel: a heap-based buffer overflow in | | | | | | | drivers/net/wireless/microchip/wilc1000/cfg80211.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47521 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48626 | | | | kernel: moxart: fix potential | | | | | | | use-after-free on remove path | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48626 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0045 | | | 5.10.178-1 | kernel: Bypassing Spectre-BTI | | | | | | | User Space Mitigations | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0045 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0179 | | | 5.10.162-1 | kernel: Netfilter integer | | | | | | | overflow vulnerability | | | | | | | in nft_payload_copy_vlan | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0179 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0240 | | | | kernel: io_uring: reference | | | | | | | counting issue in io_prep_async_work | | | | | | | leads to use-after-free | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0240 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0266 | | | | ALSA: pcm: Move rwsem lock inside | | | | | | | snd_ctl_elem_read to prevent UAF | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0266 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0386 | | | 5.10.179-1 | kernel: FUSE filesystem | | | | | | | low-privileged user | | | | | | | privileges escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0386 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0461 | | | 5.10.178-1 | kernel: net/ulp: use-after-free | | | | | | | in listening ULP sockets | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0461 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1077 | | | | kernel: Type confusion | | | | | | | in pick_next_rt_entity() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1077 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1078 | | | | kernel: Heap OOB Write in | | | | | | | rds_rm_zerocopy_callback() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1078 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1118 | | | | kernel: use-after-free in | | | | | | | drivers/media/rc/ene_ir.c | | | | | | | due to race condition | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1118 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1281 | | | | kernel: tcindex: use-after-free | | | | | | | vulnerability in traffic | | | | | | | control index filter allows | | | | | | | privilege escalation... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1281 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1295 | | | 5.10.162-1 | kernel: io_uring: | | | | | | | TOCTOU vulnerability in | | | | | | | IORING_OP_CLOSE operation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1295 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1380 | | | 5.10.191-1 | Kernel: a USB-accessible | | | | | | | slab-out-of-bounds read in brcmfmac | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1380 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1670 | | | 5.10.178-1 | kernel: use after free | | | | | | | bug in xirc2ps_detach | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1670 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1829 | | | | kernel: Use-after-free | | | | | | | vulnerability in the Linux Kernel | | | | | | | traffic control index filter | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1829 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1872 | | | | kernel: io_uring: use-after-free | | | | | | | vulnerability in io_file_get_fixed | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1872 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1989 | | | 5.10.197-1 | kernel: Use after free bug in | | | | | | | btsdio_remove due to race condition | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1989 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2006 | | | 5.10.158-1 | kernel: rxrpc: race | | | | | | | condition between connection | | | | | | | bundle lookup and removal | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2006 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2007 | | | 5.10.191-1 | kernel: DPT I2O controller TOCTOU | | | | | | | information disclosure vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2007 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-20928 | | | 5.10.158-1 | In binder_vma_close of | | | | | | | binder.c, there is a | | | | | | | possible use after free du... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-20928 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-20938 | | | | In binder_transaction_buffer_release | | | | | | | of binder.c, there is a possible ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-20938 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-21102 | | | 5.10.178-1 | kernel: bypass of shadow stack | | | | | | | protection due to a logic error | | | | | | | -->avd.aquasec.com/nvd/cve-2023-21102 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2124 | | | 5.10.191-1 | kernel: OOB access in the | | | | | | | Linux kernel's XFS subsystem | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2124 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-21255 | | | | In multiple functions of | | | | | | | binder.c, there is a possible | | | | | | | memory corrupti ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-21255 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2156 | | | 5.10.179-2 | kernel: net: IPv6 RPL protocol | | | | | | | reachable assertion leads to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2156 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2163 | | | 5.10.179-1 | kernel: bpf: Incorrect verifier | | | | | | | pruning leads to unsafe code | | | | | | | paths being incorrectly... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2163 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23559 | | | 5.10.178-1 | kernel: Integer overflow in function | | | | | | | rndis_query_oid of rndis_wlan.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23559 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-28466 | | | | kernel: tls: race condition | | | | | | | in do_tls_getsockopt may lead | | | | | | | to use-after-free or NULL... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28466 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3090 | | | 5.10.191-1 | kernel: ipvlan: out-of-bounds | | | | | | | write caused by unclear skb->cb | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3090 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3111 | | | | kernel: Use after free | | | | | | | in prepare_to_relocate | | | | | | | in fs/btrfs/relocation.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3111 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31248 | | | 5.10.179-2 | kernel: nf_tables: use-after-free | | | | | | | in nft_chain_lookup_byid() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31248 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31436 | | | 5.10.179-1 | kernel: out-of-bounds write | | | | | | | in qfq_change_class function | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31436 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32233 | | | | kernel: netfilter: use-after-free | | | | | | | in nf_tables when processing | | | | | | | batch requests can lead to... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32233 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3268 | | | 5.10.191-1 | kernel: out-of-bounds | | | | | | | access in relay_file_read | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3268 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3389 | | | | kernel: Racing a io_uring | | | | | | | cancel poll request with | | | | | | | a linked timeout can... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3389 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3390 | | | 5.10.179-3 | kernel: UAF in nftables | | | | | | | when nft_set_lookup_global | | | | | | | triggered after handling | | | | | | | named and anonymous... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3390 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34319 | | | 5.10.191-1 | xen: buffer overrun in netback | | | | | | | due to unusual packet (XSA-432) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34319 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-35001 | | | 5.10.179-2 | kernel: nf_tables: | | | | | | | stack-out-of-bounds-read | | | | | | | in nft_byteorder_eval() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35001 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3567 | | | 5.10.178-1 | kernel: use after free in vcs_read | | | | | | | in drivers/tty/vt/vc_screen.c | | | | | | | due to race | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3567 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-35788 | | | 5.10.191-1 | kernel: cls_flower: out-of-bounds | | | | | | | write in fl_set_geneve_opt() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35788 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-35827 | | | 5.10.205-2 | kernel: ravb: race condition leading | | | | | | | to use-after-free in ravb_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35827 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3609 | | | 5.10.191-1 | kernel: net/sched: cls_u32 | | | | | | | component reference counter | | | | | | | leak if tcf_change_indev() fails | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3609 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3610 | | | 5.10.179-3 | kernel: netfilter: nf_tables: | | | | | | | fix chain binding transaction | | | | | | | logic in the abort path... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3611 | | | 5.10.191-1 | kernel: net/sched: sch_qfq | | | | | | | component can be exploited if in | | | | | | | qfq_change_agg function happens... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3776 | | | | kernel: net/sched: cls_fw | | | | | | | component can be exploited | | | | | | | as result of failure in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3776 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3777 | | | | kernel: use-after-free | | | | | | | in netfilter: nf_tables | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3777 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3812 | | | 5.10.158-1 | kernel: tun: bugs for oversize | | | | | | | packet when napi frags enabled | | | | | | | in tun_napi_alloc_frags... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3812 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39197 | | | 5.10.191-1 | kernel: DCCP: conntrack out-of-bounds | | | | | | | read in nf_conntrack_dccp_packet() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39197 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4004 | | | | kernel: netfilter: use-after-free | | | | | | | due to improper element | | | | | | | removal in nft_pipapo_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4004 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-40283 | | | | kernel: use-after-free | | | | | | | in l2cap_sock_release in | | | | | | | net/bluetooth/l2cap_sock.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40283 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4147 | | | | kernel: netfilter: | | | | | | | nf_tables_newrule when adding | | | | | | | a rule with NFTA_RULE_CHAIN_ID | | | | | | | leads to use-after-free... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4147 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4206 | | | | kernel: net/sched: Use-after-free | | | | | | | vulnerabilities in the | | | | | | | net/sched classifiers: cls_fw, | | | | | | | cls_u32 and cls_route... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4206 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4207 | | | | kernel: net/sched: Use-after-free | | | | | | | vulnerabilities in the | | | | | | | net/sched classifiers: cls_fw, | | | | | | | cls_u32 and cls_route... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4207 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4208 | | | | kernel: net/sched: Use-after-free | | | | | | | vulnerabilities in the | | | | | | | net/sched classifiers: cls_fw, | | | | | | | cls_u32 and cls_route... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4208 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4244 | | | 5.10.197-1 | kernel: Use-after-free in | | | | | | | nft_verdict_dump due to a | | | | | | | race between set GC and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4244 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-42753 | | | | kernel: netfilter: potential | | | | | | | slab-out-of-bound access | | | | | | | due to integer underflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-42753 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-45871 | | | | kernel: IGB driver inadequate buffer | | | | | | | size for frames larger than MTU | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45871 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4622 | | | | kernel: use after free | | | | | | | in unix_stream_sendpage | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4622 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4623 | | | | kernel: net/sched: sch_hfsc UAF | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4623 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46813 | | | 5.10.205-2 | kernel: SEV-ES local priv escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46813 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46838 | | | 5.10.209-1 | Transmit requests in Xen's | | | | | | | virtual network protocol | | | | | | | can consist of mul ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46838 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4921 | | | 5.10.197-1 | kernel: use-after-free in | | | | | | | sch_qfq network scheduler | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4921 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-51042 | | | | kernel: use-after-free in | | | | | | | amdgpu_cs_wait_all_fences in | | | | | | | drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51042 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-51043 | | | 5.10.191-1 | kernel: use-after-free during | | | | | | | a race condition between a | | | | | | | nonblocking atomic commit and... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51043 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-51779 | | | 5.10.209-1 | kernel: bluetooth: bt_sock_ioctl | | | | | | | race condition leads to | | | | | | | use-after-free in bt_sock_recvmsg | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51779 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-51780 | | | 5.10.205-2 | kernel: use-after-free | | | | | | | in net/atm/ioctl.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51780 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-51781 | | | | kernel: use-after-free | | | | | | | in net/appletalk/ddp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51781 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-51782 | | | | An issue was discovered in the Linux | | | | | | | kernel before 6.6.8. rose_ioctl i... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51782 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52434 | | | | kernel: smb: client: fix potential | | | | | | | OOBs in smb2_parse_contexts() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52434 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52436 | | | 5.10.209-1 | kernel: f2fs: explicitly | | | | | | | null-terminate the xattr list | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52436 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52438 | | | | kernel: binder: fix use-after-free | | | | | | | in shinker's callback | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52438 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52439 | | | | kernel: uio: Fix | | | | | | | use-after-free in uio_open | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52439 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52444 | | | | In the Linux kernel, the | | | | | | | following vulnerability | | | | | | | has been resolved: f... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52444 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52445 | | | | kernel: pvrusb2: fix use after | | | | | | | free on context disconnection | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52445 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52447 | | | | kernel: bpf: Defer the free | | | | | | | of inner map when necessary | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52447 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52451 | | | 5.10.209-1 | kernel: powerpc: Fix access | | | | | | | beyond end of drmem array | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52451 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52452 | | | | kernel: bpf: Fix accesses | | | | | | | to uninit stack slots | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52452 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52464 | | | 5.10.209-1 | kernel: EDAC/thunderx: | | | | | | | Incorrect buffer size in | | | | | | | drivers/edac/thunderx_edac.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52464 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52469 | | | | kernel: use-after-free | | | | | | | in kv_parse_power_table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52469 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52474 | | | 5.10.191-1 | kernel: non-PAGE_SIZE-end | | | | | | | multi-iovec user SDMA requests | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52474 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52480 | | | | kernel: ksmbd: fix race condition | | | | | | | between session lookup and expire | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52480 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52502 | | | 5.10.205-1 | kernel: net: nfc: fix races | | | | | | | in nfc_llcp_sock_get() | | | | | | | and nfc_llcp_sock_get_sn() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52502 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52507 | | | | kernel: nfc: nci: assert | | | | | | | requested protocol is valid | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52507 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52530 | | | | kernel: wifi: mac80211: fix | | | | | | | potential key use-after-free | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52530 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52588 | | | | kernel: f2fs: fix to tag gcing flag | | | | | | | on page during block migration... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52588 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52590 | | | | kernel: ocfs2: Avoid touching renamed | | | | | | | directory if parent does not change | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52590 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52591 | | | | kernel: reiserfs: Avoid | | | | | | | touching renamed directory | | | | | | | if parent does not change | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52591 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52596 | | | | kernel: sysctl: Fix out of bounds | | | | | | | access for empty sysctl registers | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52596 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52597 | | | | kernel: KVM: s390: fix | | | | | | | setting of fpc register | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52597 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52599 | | | | kernel: jfs: fix | | | | | | | array-index-out-of-bounds in diNewExt | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52599 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52600 | | | | kernel: jfs: fix uaf | | | | | | | in jfs_evict_inode | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52600 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52601 | | | | kernel: jfs: fix | | | | | | | array-index-out-of-bounds | | | | | | | in dbAdjTree | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52601 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52603 | | | | kernel: UBSAN: | | | | | | | array-index-out-of-bounds | | | | | | | in dtSplitRoot | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52603 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52604 | | | | kernel: | | | | | | | FS:JFS:UBSAN:array-index-out-of-bounds | | | | | | | in dbAdjTree | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52604 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52606 | | | | kernel: powerpc/lib: Validate | | | | | | | size for vector operations | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52606 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52628 | | | 5.10.205-1 | kernel: netfilter: nftables: | | | | | | | exthdr: fix 4-byte stack OOB write | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52628 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52640 | | | | kernel: fs/ntfs3: Fix | | | | | | | oob in ntfs_listxattr | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52640 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5717 | | | 5.10.205-2 | kernel: A heap out-of-bounds write | | | | | | | when function perf_read_group | | | | | | | is called and sibling_list... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5717 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6040 | | | 5.10.209-1 | kernel: netfilter: nf_tables: | | | | | | | out-of-bounds access | | | | | | | in nf_tables_newtable() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6040 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6270 | | | | kernel: AoE: improper | | | | | | | reference count leads to | | | | | | | use-after-free vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6270 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6356 | | | 5.10.209-1 | kernel: NULL pointer dereference | | | | | | | in nvmet_tcp_build_iovec | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6356 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6531 | | | 5.10.205-2 | kernel: GC's deletion | | | | | | | of an SKB races with | | | | | | | unix_stream_read_generic() | | | | | | | leading to... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6531 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6535 | | | | kernel: NULL pointer dereference | | | | | | | in nvmet_tcp_execute_request | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6535 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6536 | | | 5.10.209-1 | kernel: NULL pointer dereference | | | | | | | in __nvmet_req_complete | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6536 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6546 | | | 5.10.197-1 | kernel: GSM multiplexing | | | | | | | race condition leads | | | | | | | to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6546 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6606 | | | 5.10.209-1 | kernel: Out-Of-Bounds Read | | | | | | | vulnerability in smbCalcSize | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6606 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6817 | | | 5.10.205-2 | kernel: inactive elements | | | | | | | in nft_pipapo_walk | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6817 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-6931 | | | | kernel: Out of boundary | | | | | | | write in perf_read_group() | | | | | | | as result of overflow a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6931 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-6932 | | | | kernel: use-after-free in IPv4 IGMP | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6932 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0565 | | | | kernel: CIFS Filesystem Decryption | | | | | | | Improper Input Validation Remote | | | | | | | Code Execution Vulnerability in... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0565 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0646 | | | 5.10.209-1 | kernel: ktls overwrites | | | | | | | readonly memory pages when | | | | | | | using function splice with a... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0646 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0775 | | | 5.10.191-1 | kernel: use-after-free while | | | | | | | changing the mount option | | | | | | | in __ext4_remount leading | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0775 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0841 | | | | kernel: hugetlbfs: Null | | | | | | | pointer dereference in | | | | | | | hugetlbfs_fill_super function | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0841 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-1086 | | | 5.10.209-2 | kernel: nf_tables: use-after-free | | | | | | | vulnerability in the | | | | | | | nft_verdict_init() function | | | | | | | -->avd.aquasec.com/nvd/cve-2024-1086 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-21803 | | | | kernel: bluetooth: use-after-free | | | | | | | vulnerability in af_bluetooth.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-21803 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-23307 | | | | kernel: Integer Overflow | | | | | | | in raid5_cache_count | | | | | | | -->avd.aquasec.com/nvd/cve-2024-23307 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25742 | | | | hw: amd: Instruction raise | | | | | | | #VC exception at exit | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25742 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25743 | | | | hw: amd: Instruction raise | | | | | | | #VC exception at exit | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25743 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26581 | | | | kernel: nftables: nft_set_rbtree | | | | | | | skip end interval element from gc | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26581 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26586 | | | 5.10.209-1 | kernel: mlxsw: spectrum_acl_tcam: | | | | | | | Fix stack corruption | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26589 | | | | kernel: bpf: Reject variable | | | | | | | offset alu on PTR_TO_FLOW_KEYS | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26589 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26593 | | | | kernel: i2c: i801: Fix block | | | | | | | process call transactions | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26593 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26597 | | | 5.10.209-1 | In the Linux kernel, the | | | | | | | following vulnerability | | | | | | | has been resolved: n... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26597 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2024-26598 | | | | kernel: kvm: Avoid potential | | | | | | | UAF in LPI translation cache | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26598 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26622 | | | | kernel: tomoyo: fix UAF write | | | | | | | bug in tomoyo_write_control() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26622 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26625 | | | | kernel: llc: call | | | | | | | sock_orphan() at release time | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26625 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26665 | | | | kernel: tunnels: fix out | | | | | | | of bounds access when | | | | | | | building IPv6 PMTU error... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26665 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26668 | | | | kernel: netfilter: nft_limit: | | | | | | | reject configurations that | | | | | | | cause integer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26668 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26669 | | | | kernel: net/sched: flower: | | | | | | | Fix chain template offload | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26669 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-15213 | MEDIUM | | | kernel: use-after-free caused | | | | | | | by malicious USB device in | | | | | | | drivers/media/usb/dvb-usb/dvb-usb-init.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-15213 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-15794 | | | | kernel: Overlayfs in the | | | | | | | Linux kernel and shiftfs | | | | | | | not restoring original... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-15794 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16089 | | | | kernel: Improper return check | | | | | | | in nbd_genl_status function | | | | | | | in drivers/block/nbd.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16089 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-20794 | | | | kernel: task processes not | | | | | | | being properly ended could | | | | | | | lead to resource exhaustion... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-20794 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-12363 | | | | kernel: Improper input validation | | | | | | | in some Intel(R) Graphics Drivers | | | | | | | -->avd.aquasec.com/nvd/cve-2020-12363 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-12364 | | | | kernel: Null pointer dereference | | | | | | | in some Intel(R) Graphics Drivers | | | | | | | -->avd.aquasec.com/nvd/cve-2020-12364 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-14304 | | | | kernel: ethtool when reading | | | | | | | eeprom of device could | | | | | | | lead to memory leak... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-14304 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-24504 | | | | kernel: Uncontrolled resource | | | | | | | consumption in some Intel(R) | | | | | | | Ethernet E810 Adapter drivers | | | | | | | -->avd.aquasec.com/nvd/cve-2020-24504 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-36694 | | | | kernel: netfilter: use-after-free | | | | | | | in the packet processing context | | | | | | | -->avd.aquasec.com/nvd/cve-2020-36694 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-33061 | | | | kernel: insufficient control | | | | | | | flow management for the Intel(R) | | | | | | | 82599 Ethernet Controllers and... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-33061 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3669 | | | | kernel: reading /proc/sysvipc/shm | | | | | | | does not scale with large | | | | | | | shared memory segment counts... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3669 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3759 | | | 5.10.158-1 | kernel: unaccounted ipc | | | | | | | objects in Linux kernel lead | | | | | | | to breaking memcg limits... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3759 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4023 | | | | kernel: Improper IO-uring | | | | | | | request cancellation operation | | | | | | | allows local users to cause a... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4023 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4149 | | | | kernel: Improper lock | | | | | | | operation in btrfs | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4149 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-44879 | | | 5.10.205-2 | kernel: NULL pointer dereference | | | | | | | in folio_mark_dirty() | | | | | | | via a crafted f2fs image | | | | | | | -->avd.aquasec.com/nvd/cve-2021-44879 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46926 | | | | kernel: ALSA: hda: intel-sdw-acpi: | | | | | | | harden detection of controller | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46926 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46937 | | | | kernel: fix 'struct pid' leaks | | | | | | | in 'dbgfs_target_ids_write()' | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46937 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-46987 | | | | kernel: btrfs: fix deadlock | | | | | | | when cloning inline | | | | | | | extents and using qgroups | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46987 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47036 | | | | kernel: udp: skip L4 aggregation | | | | | | | for UDP tunnel packets | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47036 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47037 | | | | kernel: ASoC: q6afe-clocks: | | | | | | | fix reprobing of the driver | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47037 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47070 | | | | kernel: uio_hv_generic: Fix another | | | | | | | memory leak in error handling paths | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47070 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47076 | | | | kernel: RDMA/rxe: Return CQE | | | | | | | error if invalid lkey was supplied | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47076 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47082 | | | 5.10.136-1 | kernel: tun: avoid double | | | | | | | free in tun_free_netdev | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47082 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47101 | | | | kernel: asix: fix uninit-value | | | | | | | in asix_mdio_read() | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47101 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47105 | | | | kernel: ice: xsk: return xsk buffers | | | | | | | back to pool when cleaning the... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47105 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47176 | | | 5.10.178-1 | kernel: s390/dasd: add | | | | | | | missing discipline function | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47176 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47178 | | | | kernel: scsi: target: core: | | | | | | | Avoid smp_processor_id() | | | | | | | in preemptible code | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47178 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47182 | | | | kernel: scsi: core: | | | | | | | Fix scsi_mode_sense() | | | | | | | buffer length handling | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47182 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47183 | | | | kernel: scsi: lpfc: Fix link | | | | | | | down processing to address | | | | | | | NULL pointer dereference... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47183 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47188 | | | | kernel: scsi: ufs: core: | | | | | | | Improve SCSI abort handling | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47188 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47193 | | | | kernel: scsi: pm80xx: Fix | | | | | | | memory leak during rmmod | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47193 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47199 | | | | kernel: net/mlx5e: CT, Fix multiple | | | | | | | allocations and memleak of mod acts | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47199 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47200 | | | | kernel: drm/prime: Fix use after | | | | | | | free in mmap with drm_gem_ttm_mmap | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47200 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47205 | | | | kernel: clk: sunxi-ng: Unregister | | | | | | | clocks/resets when unbinding | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47205 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47211 | | | | kernel: ALSA: usb-audio: | | | | | | | fix null pointer dereference | | | | | | | on pointer cs_desc | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47211 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47212 | | | | kernel: net/mlx5: Update error | | | | | | | handler for UCTX and UMEM | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0171 | | | 5.10.149-1 | kernel: KVM: cache incoherence issue | | | | | | | in SEV API may lead to kernel... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0171 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0480 | | | | kernel: memcg does not | | | | | | | limit the number of POSIX | | | | | | | file locks allowing... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0480 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1184 | | | 5.10.149-1 | kernel: use-after-free and | | | | | | | memory errors in ext4 when | | | | | | | mounting and operating on... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1184 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1280 | | | | kernel: concurrency use-after-free | | | | | | | between drm_setmaster_ioctl | | | | | | | and drm_mode_getresources | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1280 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1462 | | | 5.10.136-1 | kernel: possible race condition | | | | | | | in drivers/tty/tty_buffers.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1462 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-20409 | | | | In io_identity_cow of | | | | | | | io_uring.c, there is a | | | | | | | possible way to corrupt m... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-20409 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-21505 | | | | kernel: lockdown bypass using IMA | | | | | | | -->avd.aquasec.com/nvd/cve-2022-21505 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2153 | | | 5.10.140-1 | kernel: KVM: NULL | | | | | | | pointer dereference in | | | | | | | kvm_irq_delivery_to_apic_fast() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2153 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-26373 | | | 5.10.136-1 | hw: cpu: Intel: Post-barrier | | | | | | | Return Stack Buffer Predictions | | | | | | | -->avd.aquasec.com/nvd/cve-2022-26373 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2663 | | | 5.10.149-1 | kernel: netfilter: nf_conntrack_irc | | | | | | | message handling issue | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2663 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-27672 | | | | kernel: AMD: Cross-Thread | | | | | | | Return Address Predictions | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27672 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2873 | | | 5.10.162-1 | kernel: an out-of-bounds | | | | | | | vulnerability in i2c-ismt driver | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2873 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2905 | | | 5.10.140-1 | kernel: slab-out-of-bound | | | | | | | read in bpf | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2905 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-29900 | | | 5.10.136-1 | hw: cpu: AMD: RetBleed Arbitrary | | | | | | | Speculative Code Execution | | | | | | | with Return Instructions | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29900 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-29901 | | | | hw: cpu: Intel: RetBleed | | | | | | | Arbitrary Speculative Code | | | | | | | Execution with Return Instructions | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29901 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3061 | | | 5.10.149-1 | kernel: fbdev: i740fb: | | | | | | | divide-by-zero in | | | | | | | drivers/video/fbdev/i740fb.c | | | | | | | could lead to DoS | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3061 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3108 | | | | kernel: drm/amdkfd: NULL | | | | | | | pointer dereference in | | | | | | | kfd_parse_subtype_iolink() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3108 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3114 | | | | kernel: clk: imx: NULL | | | | | | | pointer dereference in | | | | | | | imx_register_uart_clocks() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3114 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3169 | | | 5.10.158-1 | Kernel: Request to NVME_IOCTL_RESET | | | | | | | and NVME_IOCTL_SUBSYS_RESET | | | | | | | may cause a DOS. | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3169 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3303 | | | 5.10.149-1 | kernel: race condition in | | | | | | | snd_pcm_oss_sync leads to | | | | | | | NULL pointer dereference | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3303 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3344 | | | | kernel: KVM: SVM: nested | | | | | | | shutdown interception | | | | | | | could lead to host crash | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3344 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3435 | | | 5.10.158-1 | kernel: out-of-bounds read | | | | | | | in fib_nh_match of the file | | | | | | | net/ipv4/fib_semantics.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3435 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3523 | | | | Kernel: race when faulting a device | | | | | | | private page in memory manager | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3523 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3524 | | | 5.10.158-1 | kernel: memory leak in | | | | | | | ipv6_renew_options() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3524 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3567 | | | | kernel: data races | | | | | | | around sk->sk_prot | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3567 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3586 | | | 5.10.148-1 | kernel: net scheduler use-after-free | | | | | | | information disclosure vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3594 | | | 5.10.158-1 | kernel: Rate limit overflow | | | | | | | messages in r8152 in intr_callback | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3594 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3621 | | | 5.10.148-1 | kernel: nilfs2: NULL | | | | | | | pointer dereference in | | | | | | | nilfs_bmap_lookup_at_level | | | | | | | in fs/nilfs2/inode.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3621 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3628 | | | 5.10.158-1 | kernel: USB-accessible | | | | | | | buffer overflow in brcmfmac | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3628 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-36280 | | | 5.10.162-1 | kernel: vmwgfx: out-of-bounds | | | | | | | write in vmw_kms_cursor_snoop | | | | | | | -->avd.aquasec.com/nvd/cve-2022-36280 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3643 | | | 5.10.158-1 | Xen Security Advisory 423 v1: | | | | | | | Guests can trigger NIC interface | | | | | | | reset/abort/crash via... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3643 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3646 | | | 5.10.148-1 | kernel: nilfs2: memory leak | | | | | | | in nilfs_attach_log_writer | | | | | | | in fs/nilfs2/segment.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3646 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-36879 | | | 5.10.136-1 | kernel: xfrm_expand_policies() in | | | | | | | net/xfrm/xfrm_policy.c can cause | | | | | | | a refcount to be dropped twice... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-36879 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3707 | | | 5.10.178-1 | kernel: Double-free in | | | | | | | split_2MB_gtt_entry when function | | | | | | | intel_gvt_dma_map_guest_page failed | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3707 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-38457 | | | | kernel: vmwgfx: use-after-free | | | | | | | in vmw_cmd_res_check | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38457 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3903 | | | 5.10.148-1 | kernel: An invalid pipe | | | | | | | direction in the mceusb | | | | | | | driver cause the kernel... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3903 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39188 | | | 5.10.149-1 | kernel: unmap_mapping_range() | | | | | | | race with munmap() on VM_PFNMAP | | | | | | | mappings leads to stale TLB... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39188 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39190 | | | 5.10.140-1 | kernel: nf_tables disallow | | | | | | | binding to already bound chain | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39190 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-39842 | | | 5.10.149-1 | Kernel: A type conflict | | | | | | | of size_t versus int cause | | | | | | | an integer overflow... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-39842 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40133 | | | | kernel: vmwgfx: use-after-free | | | | | | | in vmw_execbuf_tie_context | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40133 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40307 | | | 5.10.149-1 | kernel: use-after-free in | | | | | | | efi_capsule_write in capsule-loader.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40307 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40768 | | | 5.10.148-1 | kernel: leak of sensitive information | | | | | | | due to uninitialized data in | | | | | | | stex_queuecommand_lck() in... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40768 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-40982 | | | 5.10.179-5 | hw: Intel: Gather Data Sampling | | | | | | | (GDS) side channel vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40982 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41218 | | | 5.10.162-1 | kernel: Report vmalloc | | | | | | | UAF in dvb-core/dmxdev | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41218 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4129 | | | 5.10.178-1 | kernel: l2tp: missing lock | | | | | | | when clearing sk_user_data | | | | | | | can lead to NULL pointer... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4129 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41849 | | | 5.10.158-1 | Kernel: A race between ufx_ops_open() | | | | | | | and ufx_usb_disconnect() | | | | | | | may result in UAF | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41849 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-41850 | | | | kernel: Race condition | | | | | | | in roccat_report_event in | | | | | | | drivers/hid/hid-roccat.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41850 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-42328 | | | | kernel: Xen Security | | | | | | | Advisory 424 v1: guests can | | | | | | | trigger deadlock in Linux... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42328 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-42329 | | | | kernel: Xen Security | | | | | | | Advisory 424 v1: guests can | | | | | | | trigger deadlock in Linux... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42329 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42432 | | | 5.10.148-1 | kernel: netfilter: nfnetlink_osf: | | | | | | | uninitialized variable information | | | | | | | disclosure vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42432 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4269 | | | 5.10.191-1 | kernel: net: CPU soft lockup in | | | | | | | TC mirred egress-to-ingress action | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4269 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42703 | | | 5.10.140-1 | kernel: use-after-free related | | | | | | | to leaf anon_vma double reuse | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42703 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42721 | | | 5.10.149-1 | kernel: BSS list corruption | | | | | | | in cfg80211_add_nontrans_list | | | | | | | in net/wireless/scan.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42721 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-42722 | | | | kernel: Denial of service in | | | | | | | beacon protection for P2P-device | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42722 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42895 | | | 5.10.158-1 | kernel: Information leak | | | | | | | in l2cap_parse_conf_req in | | | | | | | net/bluetooth/l2cap_core.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42895 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-43750 | | | 5.10.148-1 | kernel: memory corruption | | | | | | | in usbmon driver | | | | | | | -->avd.aquasec.com/nvd/cve-2022-43750 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4382 | | | 5.10.178-1 | kernel: usb: use-after-free | | | | | | | write in put_dev | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4382 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4543 | | | | kernel: KASLR Prefetch | | | | | | | Bypass Breaks KPTI | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4543 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-4662 | | | 5.10.148-1 | kernel: Recursive locking | | | | | | | violation in usb-storage that | | | | | | | can cause the kernel to... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4662 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47929 | | | 5.10.162-1 | kernel: NULL pointer dereference | | | | | | | in traffic control subsystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47929 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47946 | | | 5.10.158-1 | Linux kernel: use-after-free | | | | | | | in io_sqpoll_wait_sq | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47946 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48627 | | | 5.10.136-1 | kernel: vt: fix memory overlapping | | | | | | | when deleting chars in the buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48627 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48628 | | | | kernel: ceph: drop messages | | | | | | | from MDS when unmounting | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48628 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0160 | | | | kernel: possibility of | | | | | | | deadlock in libbpf function | | | | | | | sock_hash_delete_elem | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0160 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0394 | | | 5.10.162-1 | kernel: NULL pointer dereference | | | | | | | in rawv6_push_pending_frames | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0394 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0458 | | | 5.10.178-1 | kernel: speculative | | | | | | | pointer dereference in | | | | | | | do_prlimit() in kernel/sys.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0458 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0459 | | | | kernel: Copy_from_user on 64-bit | | | | | | | versions may leak kernel information | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0459 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0590 | | | 5.10.158-1 | kernel: use-after-free due to | | | | | | | race condition in qdisc_graft() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0590 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0597 | | | | kernel: x86/mm: Randomize | | | | | | | per-cpu entry area | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0597 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0615 | | | 5.10.158-1 | kernel: multiple issues | | | | | | | for the Video for Linux | | | | | | | version 2 test driver... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0615 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1073 | | | 5.10.178-1 | kernel: HID: check empty | | | | | | | report_list in hid_validate_values() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1073 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1074 | | | | kernel: sctp: fail if no bound | | | | | | | addresses can be used for a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1074 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1076 | | | | kernel: tap: tap_open(): | | | | | | | correctly initialize socket uid | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1076 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1079 | | | | kernel: hid: Use After | | | | | | | Free in asus_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1079 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1095 | | | 5.10.140-1 | kernel: netfilter: NULL pointer | | | | | | | dereference in nf_tables | | | | | | | due to zeroed list head... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1095 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1192 | | | | kernel: use-after-free in | | | | | | | smb2_is_status_io_timeout() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1192 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1206 | | | 5.10.191-1 | kernel: hash collisions in the | | | | | | | IPv6 connection lookup table | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1206 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1382 | | | 5.10.158-1 | kernel: denial of service | | | | | | | in tipc_conn_close | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1382 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1611 | | | 5.10.178-1 | Kernel: race between quota | | | | | | | disable and quota assign | | | | | | | ioctls in fs/btrfs/ioctl.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1611 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1855 | | | | kernel: use-after-free bug in | | | | | | | remove function xgene_hwmon_remove | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1855 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1859 | | | | kernel: Use after free | | | | | | | in xen_9pfs_front_remove | | | | | | | due to race condition | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1859 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1990 | | | | kernel: Use after free bug in | | | | | | | ndlc_remove due to race condition | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1990 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-1998 | | | | kernel: Spectre v2 SMT | | | | | | | mitigations problem | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1998 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2002 | | | 5.10.191-1 | Kernel: bluetooth: Unauthorized | | | | | | | management command execution | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2002 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-20569 | | | 5.10.179-5 | hw amd: Return Address | | | | | | | Predictor vulnerability leading | | | | | | | to information disclosure | | | | | | | -->avd.aquasec.com/nvd/cve-2023-20569 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-20588 | | | 5.10.197-1 | hw: amd: division-by-zero may | | | | | | | resulting in loss of confidentiality | | | | | | | -->avd.aquasec.com/nvd/cve-2023-20588 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-20593 | | | 5.10.179-3 | hw: amd: Cross-Process | | | | | | | Information Leak | | | | | | | -->avd.aquasec.com/nvd/cve-2023-20593 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-21400 | | | 5.10.191-1 | kernel: io_uring: io_defer_entry | | | | | | | object double free vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2023-21400 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2162 | | | 5.10.178-1 | kernel: UAF during login when | | | | | | | accessing the shost ipaddress | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2162 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2166 | | | 5.10.162-1 | kernel: NULL pointer | | | | | | | dereference in can_rcv_filter | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2166 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2177 | | | 5.10.136-1 | Kernel: NULL pointer dereference | | | | | | | problem in sctp_sched_dequeue_common | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2177 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2194 | | | 5.10.178-1 | kernel: i2c: out-of-bounds write | | | | | | | in xgene_slimpro_i2c_xfer() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2194 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2269 | | | 5.10.191-1 | kernel: A possible deadlock | | | | | | | in dm_get_inactive_table | | | | | | | in dm- ioctl.c leads to... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2269 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22998 | | | 5.10.178-1 | kernel: drm/virtio: improper | | | | | | | return value check in | | | | | | | virtio_gpu_object_shmem_init() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22998 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-23004 | | | | kernel: incorrect check | | | | | | | for error case in the | | | | | | | malidp_check_pages_threshold | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23004 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23454 | | | 5.10.162-1 | kernel: slab-out-of-bounds read | | | | | | | vulnerabilities in cbq_classify | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23454 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-23455 | | | | Kernel: denial of service in | | | | | | | atm_tc_enqueue in net/sched/sch_atm.c | | | | | | | due to type confusion... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23455 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-23586 | | | | kernel: io_uring: read use-after-free | | | | | | | can lead to kernel memory leak | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-24023 | | | | kernel: Bluetooth Forward and | | | | | | | Future Secrecy Attacks and Defenses | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24023 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-25012 | | | 5.10.178-1 | kernel: hid: use-after-free | | | | | | | in bigben_set_led() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-25012 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2513 | | | 5.10.140-1 | kernel: ext4: use-after-free | | | | | | | in ext4_xattr_set_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2513 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26545 | | | 5.10.178-1 | kernel: mpls: double free | | | | | | | on sysctl allocation failure | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26545 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28327 | | | 5.10.162-1 | kernel: denial of service | | | | | | | problem in net/unix/diag.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28327 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28328 | | | 5.10.178-1 | kernel: Denial of service | | | | | | | issue in az6027 driver in | | | | | | | drivers/media/usb/dev-usb/az6027.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28328 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2860 | | | 5.10.148-1 | kernel: ipv6: sr: out-of-bounds | | | | | | | read when setting HMAC data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2860 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-28746 | | | | kernel: Local information disclosure | | | | | | | on Intel(R) Atom(R) processors | | | | | | | -->avd.aquasec.com/nvd/cve-2023-28746 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2898 | | | 5.10.191-1 | kernel: A null-ptr-deref bug in | | | | | | | f2fs_write_end_io in fs/f2fs/data.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-2985 | | | 5.10.178-1 | kernel: use-after-free issue | | | | | | | in hfsplus_release_folio | | | | | | | in fs/hfsplus/super.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2985 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3006 | | | 5.10.158-1 | RHEL: Add Spectre-BHB | | | | | | | mitigation for AmpereOne | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3006 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30456 | | | 5.10.178-1 | kernel: KVM: nVMX: missing | | | | | | | consistency checks for CR0 and CR4 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30456 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31082 | | | | kernel: sleeping function called from | | | | | | | an invalid context in gsmld_write | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31082 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31083 | | | | kernel: race condition between | | | | | | | HCIUARTSETPROTO and HCIUARTGETPROTO | | | | | | | in hci_uart_tty_ioctl | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31083 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31084 | | | 5.10.191-1 | kernel: blocking operation | | | | | | | in dvb_frontend_get_event | | | | | | | and wait_event_interruptible | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31084 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3161 | | | 5.10.178-1 | kernel: fbcon: shift-out-of-bounds | | | | | | | in fbcon_set_font() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3161 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3212 | | | 5.10.191-1 | kernel: gfs2: NULL pointer | | | | | | | dereference in gfs2_evict_inode() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3212 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3220 | | | 5.10.178-1 | kernel: NULL pointer dereference | | | | | | | in dpu_crtc_atomic_check() in | | | | | | | drivers/gpu/drm/msm/disp/dpu1/dpu_crtc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3220 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-32269 | | | | kernel: user after free in | | | | | | | nr_listen in net/netrom/af_netrom.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32269 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-33203 | | | | kernel: net: qcom/emac: | | | | | | | race condition leading to | | | | | | | use-after-free in emac_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-33203 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-33288 | | | | kernel: use-after-free | | | | | | | in bq24190_remove in | | | | | | | drivers/power/supply/bq24190_charger.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-33288 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3338 | | | 5.10.191-1 | kernel: DECnet: crash due to | | | | | | | a NULL pointer dereference | | | | | | | in the dn_nsp_send... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3338 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3358 | | | 5.10.178-1 | kernel: NULL pointer dereference | | | | | | | due to missing kalloc() | | | | | | | return value check in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3358 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3397 | | | | kernel: slab-use-after-free Write | | | | | | | in txEnd due to race condition | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3397 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-34324 | | | 5.10.205-2 | Closing of an event channel in | | | | | | | the Linux kernel can result in... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34324 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-37453 | | | 5.10.197-1 | kernel: usb: out-of-bounds | | | | | | | read in read_descriptors | | | | | | | -->avd.aquasec.com/nvd/cve-2023-37453 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-37454 | | | | kernel: udf: use-after-free | | | | | | | write in udf_close_lvid | | | | | | | -->avd.aquasec.com/nvd/cve-2023-37454 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3772 | | | 5.10.197-1 | kernel: xfrm: NULL | | | | | | | pointer dereference in | | | | | | | xfrm_update_ae_params() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3772 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3773 | | | | kernel: xfrm: out-of-bounds read | | | | | | | of XFRMA_MTIMER_THRESH nlattr | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3773 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3863 | | | 5.10.191-1 | kernel: use-after-free | | | | | | | in nfc_llcp_find_loca | | | | | | | in net/nfc/llcp_core.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3863 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39189 | | | 5.10.197-1 | kernel: netfilter: | | | | | | | nftables out-of-bounds | | | | | | | read in nf_osf_match_one() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39189 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-39192 | | | | kernel: netfilter: xtables | | | | | | | out-of-bounds read in u32_match_it() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39192 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-39193 | | | | kernel: netfilter: xtables sctp | | | | | | | out-of-bounds read in match_flags() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39193 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-39194 | | | | kernel: xfrm: out-of-bounds read | | | | | | | in __xfrm_state_filter_match() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39194 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-39198 | | | 5.10.209-1 | kernel: QXL: race condition | | | | | | | leading to use-after-free | | | | | | | in qxl_mode_dumb_create() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39198 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4010 | | | | kernel: usb: hcd: malformed USB | | | | | | | descriptor leads to infinite | | | | | | | loop in usb_giveback_urb()... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4010 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4132 | | | 5.10.191-1 | kernel: smsusb: use-after-free | | | | | | | caused by do_submit_urb() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4132 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4133 | | | | kernel: cxgb4: use-after-free | | | | | | | in ch_flower_stats_cb() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4133 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4194 | | | 5.10.191-1 | kernel: tap: tap_open(): | | | | | | | correctly initialize socket | | | | | | | uid next fix of i_uid to... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4194 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-4273 | | | | kernel: exFAT: stack overflow in | | | | | | | exfat_get_uniname_from_ext_entry | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4273 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-42754 | | | 5.10.197-1 | kernel: ipv4: NULL | | | | | | | pointer dereference in | | | | | | | ipv4_send_dest_unreach() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-42754 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-42755 | | | | kernel: rsvp: out-of-bounds | | | | | | | read in rsvp_classify() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-42755 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-42756 | | | | kernel: netfilter: race | | | | | | | condition between IPSET_CMD_ADD | | | | | | | and IPSET_CMD_SWAP | | | | | | | -->avd.aquasec.com/nvd/cve-2023-42756 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4569 | | | | kernel: information leak in | | | | | | | nft_set_catchall_flush in | | | | | | | net/netfilter/nf_tables_api.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4569 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45862 | | | 5.10.178-1 | kernel: | | | | | | | drivers/usb/storage/ene_ub6250.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45862 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45863 | | | 5.10.205-2 | kernel: lib/kobject.c vulnerable to | | | | | | | fill_kobj_path out-of-bounds write | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45863 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46343 | | | 5.10.205-1 | kernel: NULL pointer dereference in | | | | | | | send_acknowledge in net/nfc/nci/spi.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46343 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-46862 | | | 5.10.205-2 | kernel: NULL pointer dereference | | | | | | | vulnerability in io_uring_show_fdinfo | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46862 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-47233 | | | | kernel: Use after free in | | | | | | | brcmf_cfg80211_escan_timeout_worker in | | | | | | | drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-47233 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5197 | | | 5.10.205-2 | kernel: netfilter: nf_tables: | | | | | | | use-after-free due to addition | | | | | | | and removal of rules from... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5197 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52340 | | | 5.10.209-1 | kernel: ICMPv6 “Packet Too Big” | | | | | | | packets force a DoS of the Linux... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52340 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52429 | | | | kernel: missing check for struct | | | | | | | in dm-table.c can cause a crash | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52429 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52435 | | | | kernel: net: prevent mss | | | | | | | overflow in skb_segment() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52435 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52443 | | | 5.10.209-1 | In the Linux kernel, the | | | | | | | following vulnerability | | | | | | | has been resolved: a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52443 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52448 | | | | kernel: gfs2: Fix kernel NULL | | | | | | | pointer dereference in gfs2_rgrp_dump | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52448 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52449 | | | | kernel: mtd: Fix gluebi NULL pointer | | | | | | | dereference caused by ftl notifier | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52449 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52454 | | | | kernel: nvmet-tcp: Fix a kernel panic | | | | | | | when host sends an invalid H2C... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52454 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52456 | | | | kernel: imx: fix tx | | | | | | | statemachine deadlock | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52456 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52457 | | | | In the Linux kernel, the | | | | | | | following vulnerability | | | | | | | has been resolved: s... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52457 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52458 | | | | kernel: block: null pointer | | | | | | | dereference in ioctl.c when | | | | | | | length and logical block... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52462 | | | 5.10.209-1 | kernel: bpf: fix check for | | | | | | | attempt to corrupt spilled pointer | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52462 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52463 | | | | kernel: efivarfs: force | | | | | | | RO when remounting if | | | | | | | SetVariable is not supported | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52463 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52467 | | | | kernel:null pointer dereference | | | | | | | in of_syscon_register() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52467 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52470 | | | | kernel: null-ptr-deref | | | | | | | in alloc_workqueue | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52470 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52475 | | | 5.10.205-1 | kernel: use-after-free in | | | | | | | powermate_config_complete | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52475 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52476 | | | | kernel: perf/x86/lbr: | | | | | | | Filter vsyscall addresses | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52476 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52477 | | | 5.10.205-1 | kernel: usb: hub: Guard | | | | | | | against accesses to | | | | | | | uninitialized BOS descriptors | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52477 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52478 | | | | kernel: HID: logitech-hidpp: | | | | | | | Fix kernel crash on | | | | | | | receiver USB disconnect | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52478 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52479 | | | | kernel: ksmbd: fix uaf | | | | | | | in smb20_oplock_break_ack | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52479 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52481 | | | | kernel: arm64: errata: Add | | | | | | | Cortex-A520 speculative | | | | | | | unprivileged load workaround | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52481 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52482 | | | | kernel: x86/srso: Add SRSO | | | | | | | mitigation for Hygon processors | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52482 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52484 | | | | kernel: iommu/arm-smmu-v3: | | | | | | | Fix soft lockup triggered by | | | | | | | arm_smmu_mm_invalidate_range | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52484 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52485 | | | | kernel: drm/amd/display: | | | | | | | Wake DMCUB before sending | | | | | | | a command cause deadlock | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52485 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52486 | | | | kernel: drm: Don't unref the same | | | | | | | fb many times by mistake due... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52486 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52488 | | | | kernel: serial: sc16is7xx: | | | | | | | convert from _raw_ to _noinc_ | | | | | | | regmap functions for FIFO... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52488 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52489 | | | | kernel: mm/sparsemem: fix race in | | | | | | | accessing memory_section->usage | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52489 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52491 | | | | kernel: media: mtk-jpeg: Fix use | | | | | | | after free bug due to error path... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52491 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52492 | | | | kernel: dmaengine: fix NULL pointer | | | | | | | in channel unregistration function | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52492 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52493 | | | | kernel: bus: mhi: host: Drop | | | | | | | chan lock before queuing buffers | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52493 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52494 | | | | kernel: bus: mhi: host: Add alignment | | | | | | | check for event ring read pointer... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52494 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52497 | | | | kernel: erofs: fix lz4 | | | | | | | inplace decompression | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52497 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52498 | | | | kernel: PM: sleep: Fix possible | | | | | | | deadlocks in core system-wide PM code | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52498 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52500 | | | 5.10.205-1 | kernel: scsi: pm80xx: Avoid | | | | | | | leaking tags when processing | | | | | | | OPC_INB_SET_CONTROLLER_CONFIG command | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52500 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52501 | | | | kernel: ring-buffer: Do not | | | | | | | attempt to read past "commit" | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52501 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52503 | | | | kernel: tee: amdtee: fix | | | | | | | use-after-free vulnerability | | | | | | | in amdtee_close_session | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52503 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52504 | | | | kernel: x86/alternatives: Disable | | | | | | | KASAN in apply_alternatives() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52504 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52508 | | | | kernel: nvme-fc: Prevent null pointer | | | | | | | dereference in nvme_fc_io_getuuid() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52508 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52509 | | | 5.10.205-1 | kernel: ravb: Fix use-after-free | | | | | | | issue in ravb_tx_timeout_work() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52509 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52510 | | | | kernel: ieee802154: ca8210: Fix | | | | | | | a potential UAF in ca8210_probe | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52510 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52511 | | | | kernel: spi: sun6i: reduce DMA | | | | | | | RX transfer width to single byte | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52511 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52513 | | | 5.10.205-1 | kernel: RDMA/siw: Fix | | | | | | | connection failure handling | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52513 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52515 | | | | kernel: RDMA/srp: Do not call | | | | | | | scsi_done() from srp_abort() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52515 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52516 | | | | kernel: dma-debug: don't call | | | | | | | __dma_entry_alloc_check_leak() | | | | | | | under free_entries_lock | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52516 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52517 | | | | kernel: spi: sun6i: fix race between | | | | | | | DMA RX transfer completion and RX... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52517 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52522 | | | 5.10.205-1 | kernel: net: fix possible store | | | | | | | tearing in neigh_periodic_work() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52522 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52524 | | | | kernel: net: nfc: llcp: Add | | | | | | | lock when modifying device list | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52524 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52525 | | | | kernel: wifi: mwifiex: | | | | | | | Fix oob check condition in | | | | | | | mwifiex_process_rx_packet | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52525 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52527 | | | | kernel: ipv4, ipv6: Fix handling of | | | | | | | transhdrlen in __ip{,6}_append_data() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52527 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52528 | | | | kernel: net: usb: smsc75xx: | | | | | | | Fix uninit-value access | | | | | | | in __smsc75xx_read_reg | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52528 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52531 | | | | kernel: wifi: iwlwifi: mvm: | | | | | | | Fix a memory corruption issue | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52531 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52564 | | | 5.10.205-1 | kernel: tty: n_gsm: use-after-free | | | | | | | in gsm_cleanup_mux() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52564 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52566 | | | | kernel: nilfs2: potential | | | | | | | use after free in | | | | | | | nilfs_gccache_submit_read_data() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52566 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52567 | | | | kernel: serial: 8250_port: IRQ | | | | | | | data NULL pointer dereference | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52567 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52573 | | | | kernel: net: rds: NULL | | | | | | | pointer dereference in | | | | | | | rds_rdma_cm_event_handler_cmn() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52573 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52574 | | | | kernel: team: NULL pointer | | | | | | | dereference when team | | | | | | | device type is changed | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52574 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52575 | | | | kernel: x86/srso: SBPB enablement | | | | | | | for spec_rstack_overflow=off | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52575 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52577 | | | | kernel: dccp: out-of-bounds access | | | | | | | in dccp_v4_err() and dccp_v6_err() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52577 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-52578 | | | | kernel: net: bridge: data | | | | | | | races indata-races in | | | | | | | br_handle_frame_finish() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52578 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52583 | | | | kernel: ceph: fix deadlock or | | | | | | | deadcode of misusing dget() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52583 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52584 | | | | kernel: spmi: mediatek: | | | | | | | Fix UAF on device remove | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52585 | | | | kernel: drm/amdgpu: Fix | | | | | | | possible NULL dereference in | | | | | | | amdgpu_ras_query_error_status_helper() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52586 | | | | kernel: drm/msm/dpu: Add mutex | | | | | | | lock in control vblank irq | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52586 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52587 | | | | kernel: IB/ipoib: Fix | | | | | | | mcast list locking | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52587 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52589 | | | | kernel: media: rkisp1: | | | | | | | Fix IRQ disable race issue | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52589 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52593 | | | | kernel: wifi: wfx: fix | | | | | | | possible NULL pointer | | | | | | | dereference in wfx_set_mfp_ap() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52593 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52594 | | | | kernel: wifi: ath9k: Fix potential | | | | | | | array-index-out-of-bounds | | | | | | | read in ath9k_htc_txstatus() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52594 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52595 | | | | kernel: wifi: rt2x00: restart | | | | | | | beacon queue when hardware reset | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52595 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52598 | | | | kernel: s390/ptrace: handle | | | | | | | setting of fpc register correctly | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52598 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52602 | | | | kernel: jfs: fix | | | | | | | slab-out-of-bounds Read in dtSearch | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52602 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52607 | | | | kernel: powerpc/mm: Fix null-pointer | | | | | | | dereference in pgtable_cache_add | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52608 | | | | kernel: firmware: arm_scmi: Check | | | | | | | mailbox/SMT channel for consistency | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52608 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52609 | | | 5.10.209-1 | kernel: binder: fix race | | | | | | | between mmput() and do_exit() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52609 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52610 | | | | kernel: net/sched: act_ct: fix | | | | | | | skb leak and crash on ooo frags | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52612 | | | 5.10.209-1 | kernel: crypto: scomp - fix | | | | | | | req->dst buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52612 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52614 | | | | kernel: PM / devfreq: Fix buffer | | | | | | | overflow in trans_stat_show | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52614 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52615 | | | | kernel: hwrng: core - Fix page | | | | | | | fault dead lock on mmap-ed hwrng... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52615 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52616 | | | | kernel: crypto: lib/mpi | | | | | | | - Fix unexpected pointer | | | | | | | access in mpi_ec_init | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52616 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52617 | | | | kernel: PCI: switchtec: | | | | | | | Fix stdev_release() crash | | | | | | | after surprise hot remove | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52617 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52618 | | | | kernel: block/rnbd-srv: Check | | | | | | | for unlikely string overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52618 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52619 | | | | kernel: pstore/ram: Fix crash when | | | | | | | setting number of cpus to an odd... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52619 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52621 | | | | kernel: bpf: Check | | | | | | | rcu_read_lock_trace_held() | | | | | | | before calling bpf map helpers | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52621 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52622 | | | | kernel: ext4: avoid online resizing | | | | | | | failures due to oversized flex bg | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52622 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52623 | | | | kernel: SUNRPC: Fix a | | | | | | | suspicious RCU usage warning | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52623 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52624 | | | | kernel: drm/amd/display: Wake DMCUB | | | | | | | before executing GPINT commands | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52624 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52625 | | | | kernel: drm/amd/display: Refactor | | | | | | | DMCUB enter/exit idle interface | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52625 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52627 | | | | kernel: iio: adc: ad7091r: Allow | | | | | | | users to configure device events | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52627 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52629 | | | | kernel: sh: push-switch: | | | | | | | Reorder cleanup operations | | | | | | | to avoid use-after-free bug | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52629 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52630 | | | | kernel: blk-iocost: UBSAN | | | | | | | shift-out-of-bounds warning | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52630 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52632 | | | | kernel: drm/amdkfd: lock | | | | | | | dependency warning with srcu | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52632 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52633 | | | | kernel: um: time-travel: | | | | | | | fix time corruption | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52633 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52634 | | | | kernel: drm/amd/display: | | | | | | | Fix disable_otg_wa logic | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52634 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52635 | | | | kernel: PM / devfreq: Synchronize | | | | | | | devfreq_monitor_[start/stop] | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52635 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52637 | | | | kernel: can: j1939: Fix UAF in | | | | | | | j1939_sk_match_filter during | | | | | | | setsockopt(SO_J1939_FILTER) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52637 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52638 | | | | kernel: can: j1939: prevent | | | | | | | deadlock by changing | | | | | | | j1939_socks_lock to rwlock | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52638 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52639 | | | | kernel: KVM: s390: vsie: fix | | | | | | | race during shadow creation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52639 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52641 | | | | kernel: fs/ntfs3: Add NULL ptr | | | | | | | dereference checking at the | | | | | | | end of attr_allocate_frame()... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52641 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52642 | | | | kernel: media: rc: bpf attach/detach | | | | | | | requires write permission | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52642 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52644 | | | | kernel: wifi: b43: Stop/wake correct | | | | | | | queue in DMA Tx path when QoS... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52644 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6121 | | | 5.10.205-2 | kernel: NVMe: info leak | | | | | | | due to out-of-bounds read | | | | | | | in nvmet_ctrl_find_get | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6121 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6176 | | | 5.10.197-1 | kernel: local dos vulnerability | | | | | | | in scatterwalk_copychunks | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6176 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6240 | | | | kernel: Marvin vulnerability | | | | | | | side-channel leakage in the | | | | | | | RSA decryption operation | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6240 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6915 | | | 5.10.209-1 | kernel: Null Pointer | | | | | | | Dereference vulnerability | | | | | | | in ida_free in lib/idr.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-7042 | | | | kernel: null pointer dereference in | | | | | | | ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-7042 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-7192 | | | 5.10.178-1 | kernel: refcount leak in | | | | | | | ctnetlink_create_conntrack() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-7192 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0193 | | | 5.10.205-1 | kernel: netfilter: use-after-free | | | | | | | in nft_trans_gc_catchall_sync | | | | | | | leads to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0193 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0340 | | | | kernel: Information disclosure | | | | | | | in vhost/vhost.c:vhost_new_msg() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0340 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0564 | | | | kernel: max page sharing | | | | | | | of Kernel Samepage Merging | | | | | | | (KSM) may cause memory... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0564 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0607 | | | | kernel: nf_tables: pointer math | | | | | | | issue in nft_byteorder_eval() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0639 | | | 5.10.191-1 | kernel: potential deadlock | | | | | | | on &net->sctp.addr_wq_lock | | | | | | | leading to DOS | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0639 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0641 | | | 5.10.205-1 | kernel: deadlock leading to denial | | | | | | | of service in tipc_crypto_key_revoke | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0641 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-1151 | | | | kernel: stack overflow | | | | | | | problem in Open vSwitch kernel | | | | | | | module leading to DoS... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-1151 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2193 | | | | hw: Spectre-SRC that is | | | | | | | Speculative Race Conditions | | | | | | | (SRCs) for synchronization | | | | | | | primitives similar... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2193 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2201 | | | | hw: cpu: intel: Native Branch | | | | | | | History Injection (BHI) | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2201 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-22099 | | | | kernel: NULL Pointer dereference | | | | | | | bluetooth allows Overflow Buffers | | | | | | | -->avd.aquasec.com/nvd/cve-2024-22099 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-22386 | | | | A race condition was found | | | | | | | in the Linux kernel's | | | | | | | drm/exynos device dri... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-22386 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-23196 | | | 5.10.197-1 | kernel: Race condition in | | | | | | | snd_hdac_regmap_sync() in sound/hda | | | | | | | -->avd.aquasec.com/nvd/cve-2024-23196 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-23848 | | | | kernel: use-after-free | | | | | | | in cec_queue_msg_fh | | | | | | | -->avd.aquasec.com/nvd/cve-2024-23848 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-23849 | | | | kernel: off-by-one error for | | | | | | | an RDS_MSG_RX_DGRAM_TRACE_MAX | | | | | | | comparison, resulting | | | | | | | in out-of-bounds access | | | | | | | -->avd.aquasec.com/nvd/cve-2024-23849 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-23850 | | | | kernel: btrfs_get_root_ref has | | | | | | | an assertion failure and crash | | | | | | | because a subvolume can... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-23850 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-23851 | | | | kernel: copy_params can | | | | | | | attempt to allocate more | | | | | | | than INT_MAX bytes and... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-23851 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24855 | | | | kernel: Race condition in | | | | | | | lpfc_unregister_fcf_rescan() | | | | | | | in scsi/lpfc/lpfc_hbadisc.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24855 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24857 | | | | kernel: net/bluetooth: race condition | | | | | | | in conn_info_{min,max}_age_set() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24857 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24858 | | | | kernel: net/bluetooth: | | | | | | | race condition in | | | | | | | {conn,adv}_{min,max}_interval_set() | | | | | | | function | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24858 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24859 | | | | A race condition was found | | | | | | | in the Linux kernel's | | | | | | | net/bluetooth in snif... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24859 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24860 | | | 5.10.209-1 | A race condition was found | | | | | | | in the Linux kernel's | | | | | | | bluetooth device driv... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24860 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24861 | | | | A race condition was found | | | | | | | in the Linux kernel's | | | | | | | media/xc4000 device d... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24861 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-24864 | | | | A race condition was found | | | | | | | in the Linux kernel's | | | | | | | media/dvb-core in dvb... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-24864 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25739 | | | | kernel: crash due to a | | | | | | | missing check for leb_size | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25739 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25740 | | | | kernel: memory leak in ubi driver | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25740 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-25741 | | | | kernel: f_printer: crash | | | | | | | leading to denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2024-25741 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26583 | | | | kernel: tls: race between | | | | | | | async notify and socket close | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26583 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26584 | | | | kernel: tls: handle | | | | | | | backlogging of crypto requests | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26584 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26585 | | | | kernel: tls: race between tx | | | | | | | work scheduling and socket close | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26585 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26595 | | | | kernel: mlxsw: spectrum_acl_tcam: | | | | | | | Fix NULL pointer | | | | | | | dereference in error path | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26595 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26600 | | | | kernel: phy: ti: phy-omap-usb2: Fix | | | | | | | NULL pointer dereference for SRP | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26600 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26601 | | | | kernel: ext4: regenerate | | | | | | | buddy after block freeing | | | | | | | failed if under fc replay... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26601 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26602 | | | | kernel: sched/membarrier: reduce the | | | | | | | ability to hammer on sys_membarrier | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26602 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26606 | | | | kernel: signal epoll | | | | | | | threads of self-work | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26606 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26607 | | | | kernel: drm/bridge: sii902x: | | | | | | | Fix probing race issue | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26607 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26610 | | | | kernel: wifi: iwlwifi: | | | | | | | fix a memory corruption | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26615 | | | | kernel: net/smc: fix illegal rmb_desc | | | | | | | access in SMC-D connection dump | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26615 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26627 | | | | kernel: scsi: core: Move | | | | | | | scsi_host_busy() out of | | | | | | | host lock for waking up... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26627 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26629 | | | | kernel: nfsd: fix RELEASE_LOCKOWNER | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26629 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26633 | | | 5.10.209-1 | kernel: ip6_tunnel: fix | | | | | | | NEXTHDR_FRAGMENT handling in | | | | | | | ip6_tnl_parse_tlv_enc_lim() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26633 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26635 | | | | kernel: llc: Drop support | | | | | | | for ETH_P_TR_802_2. | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26635 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26636 | | | | kernel: llc: make llc_ui_sendmsg() | | | | | | | more robust against bonding changes | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26636 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26639 | | | | kernel: mm, kmsan: fix infinite | | | | | | | recursion due to RCU critical section | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26639 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26640 | | | | kernel: tcp: add sanity | | | | | | | checks to rx zerocopy | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26640 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26641 | | | | kernel: ip6_tunnel: make sure to | | | | | | | pull inner header in __ip6_tnl_rcv() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26641 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26642 | | | | kernel: netfilter: | | | | | | | nf_tables: disallow anonymous | | | | | | | set with timeout flag | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26642 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26643 | | | | kernel: netfilter: nf_tables: | | | | | | | mark set as dead when | | | | | | | unbinding anonymous set with... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26643 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26644 | | | | kernel: btrfs: don't abort | | | | | | | filesystem when attempting | | | | | | | to snapshot deleted subvolume | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26644 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26645 | | | | kernel: tracing: Ensure | | | | | | | visibility when inserting | | | | | | | an element into tracing_map | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26645 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26646 | | | | kernel: thermal: intel: hfi: Add | | | | | | | syscore callbacks for system-wide PM | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26646 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26647 | | | | kernel: drm/amd/display: Fix | | | | | | | late dereference 'dsc' check | | | | | | | in 'link_set_dsc_pps_packet()' | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26647 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26648 | | | | kernel: NULL check | | | | | | | in edp_setup_replay() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26648 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26651 | | | | kernel: sr9800: Add check | | | | | | | for usbnet_get_endpoints | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26651 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26654 | | | | kernel: ALSA: sh: aica: reorder | | | | | | | cleanup operations to avoid UAF bugs | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26654 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26656 | | | | kernel: drm/amdgpu: | | | | | | | use-after-free vulnerability | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26656 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26658 | | | | kernel: bcachefs: grab | | | | | | | s_umount only if snapshotting | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26658 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26659 | | | | kernel: xhci: handle isoc Babble | | | | | | | and Buffer Overrun events properly | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26659 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26661 | | | | kernel: drm/amd/display: | | | | | | | Add NULL test for 'timing | | | | | | | generator' in 'dcn21_set_pipe()' | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26661 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26662 | | | | kernel: drm/amd/display: | | | | | | | 'panel_cntl' could be null in | | | | | | | 'dcn21_set_backlight_level()' | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26662 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26663 | | | | kernel: tipc: Check the | | | | | | | bearer type before calling | | | | | | | tipc_udp_nl_bearer_add() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26663 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26664 | | | | kernel: hwmon: (coretemp) Fix | | | | | | | out-of-bounds memory access | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26664 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26671 | | | | kernel: blk-mq: fix IO hang | | | | | | | from sbitmap wakeup race | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26671 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26672 | | | | kernel: drm/amdgpu: variable | | | | | | | 'mca_funcs' dereferenced | | | | | | | before NULL check in | | | | | | | 'amdgpu_mca_smu_get_mca_entry()' | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26672 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26673 | | | | kernel: netfilter: nft_ct: | | | | | | | sanitize layer 3 and 4 | | | | | | | protocol number in custom... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26673 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26675 | | | | kernel: ppp_async: limit MRU to 64K | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26675 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26679 | | | | kernel: inet: read sk->sk_family | | | | | | | once in inet_recv_error() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26679 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26680 | | | | kernel: net: atlantic: Fix | | | | | | | DMA mapping for PTP hwts ring | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26680 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26684 | | | | kernel: net: stmmac: | | | | | | | xgmac: fix handling of DPP | | | | | | | safety error for DMA... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26684 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26685 | | | | kernel: nilfs2: fix potential | | | | | | | bug in end_buffer_async_write | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26685 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26686 | | | | kernel: fs/proc: do_task_stat: | | | | | | | use sig->stats_lock to gather | | | | | | | the threads/children stats | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26686 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26687 | | | | kernel: xen/events: close | | | | | | | evtchn after mapping cleanup | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26687 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26688 | | | | kernel: fs,hugetlb: fix NULL pointer | | | | | | | dereference in hugetlbs_fill_super | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26688 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26689 | | | | kernel: ceph: prevent | | | | | | | use-after-free in encode_cap_msg() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26689 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26691 | | | | kernel: KVM: arm64: Fix | | | | | | | circular locking dependency | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26691 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26695 | | | | kernel: crypto: ccp - Fix | | | | | | | null pointer dereference in | | | | | | | __sev_platform_shutdown_locked | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26695 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26696 | | | | kernel: nilfs2: fix hang in | | | | | | | nilfs_lookup_dirty_data_buffers() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26696 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26697 | | | | kernel: nilfs2: fix data | | | | | | | corruption in dsync block | | | | | | | recovery for small block... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26697 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26698 | | | | kernel: hv_netvsc: Fix | | | | | | | race condition between | | | | | | | netvsc_probe and netvsc_remove | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26698 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26699 | | | | kernel: drm/amd/display: Fix | | | | | | | array-index-out-of-bounds | | | | | | | in dcn35_clkmgr | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26699 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26700 | | | | kernel: drm/amd/display: | | | | | | | Fix MST Null Ptr for RV | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26700 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26702 | | | | kernel: iio: magnetometer: | | | | | | | rm3100: add boundary check | | | | | | | for the value read from... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26702 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26704 | | | | kernel: ext4: fix double-free of | | | | | | | blocks due to wrong extents moved_len | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26704 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26706 | | | | kernel: parisc: Fix random data | | | | | | | corruption from exception handler | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26706 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26712 | | | | kernel: powerpc/kasan: Fix addr | | | | | | | error caused by page alignment | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26712 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26715 | | | | kernel: usb: dwc3: gadget: | | | | | | | Fix NULL pointer dereference | | | | | | | in dwc3_gadget_suspend | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26715 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26718 | | | | kernel: dm-crypt, | | | | | | | dm-verity: disable tasklets | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26718 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26719 | | | | kernel: nouveau: offload fence | | | | | | | uevents work to workqueue | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26719 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26720 | | | | kernel: mm/writeback: fix | | | | | | | possible divide-by-zero in | | | | | | | wb_dirty_limits(), again | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26720 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26722 | | | | kernel: ASoC: rt5645: Fix deadlock | | | | | | | in rt5645_jack_detect_work() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26722 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26726 | | | | kernel: btrfs: don't drop | | | | | | | extent_map for free space | | | | | | | inode on write error... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26726 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26727 | | | | kernel: btrfs: do not | | | | | | | ASSERT() if the newly created | | | | | | | subvolume already got... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26727 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26733 | | | | kernel: arp: Prevent | | | | | | | overflow in arp_req_get(). | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26733 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26735 | | | | kernel: ipv6: sr: fix possible | | | | | | | use-after-free and null-ptr-deref | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26735 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26736 | | | | kernel: afs: Increase buffer size | | | | | | | in afs_update_volume_status() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26736 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26739 | | | | kernel: net/sched: act_mirred: | | | | | | | don't override retval if | | | | | | | we already lost the skb... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26739 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26740 | | | | kernel: net/sched: act_mirred: | | | | | | | use the backlog for mirred ingress | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26740 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26743 | | | | kernel: RDMA/qedr: Fix | | | | | | | qedr_create_user_qp error flow | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26743 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26744 | | | | kernel: RDMA/srpt: Support specifying | | | | | | | the srpt_service_guid parameter | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26744 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26747 | | | | kernel: usb: roles: fix NULL pointer | | | | | | | issue when put module's reference | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26747 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26748 | | | | kernel: usb: cdns3: fix memory | | | | | | | double free when handle zero packet | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26748 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26749 | | | | kernel: usb: cdns3: fixed | | | | | | | memory use after free at | | | | | | | cdns3_gadget_ep_disable() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26749 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26751 | | | | kernel: ARM: ep93xx: Add | | | | | | | terminator to gpiod_lookup_table | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26751 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26752 | | | | kernel: l2tp: pass correct | | | | | | | message length to ip6_append_data | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26752 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26753 | | | | kernel: crypto: virtio/akcipher | | | | | | | - Fix stack overflow on memcpy | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26753 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26754 | | | | kernel: gtp: fix use-after-free and | | | | | | | null-ptr-deref in gtp_genl_dump_pdp() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26754 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26756 | | | | kernel: md: Don't register | | | | | | | sync_thread for reshape directly | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26756 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26757 | | | | kernel: md: Don't ignore read-only | | | | | | | array in md_check_recovery() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26757 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26758 | | | | kernel: md: Don't ignore suspended | | | | | | | array in md_check_recovery() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26758 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26759 | | | | kernel: mm/swap: fix race | | | | | | | when skipping swapcache | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26759 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26763 | | | | kernel: dm-crypt: don't | | | | | | | modify the data when using | | | | | | | authenticated encryption | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26763 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26766 | | | | kernel: IB/hfi1: Fix sdma.h | | | | | | | tx->num_descs off-by-one error | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26766 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26767 | | | | kernel: drm/amd/display: | | | | | | | fixed integer types and | | | | | | | null check locations | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26767 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26768 | | | | kernel: LoongArch: Change | | | | | | | acpi_core_pic[NR_CPUS] to | | | | | | | acpi_core_pic[MAX_CORE_PIC] | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26768 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26769 | | | | kernel: nvmet-fc: avoid deadlock | | | | | | | on delete association path | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26769 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26770 | | | | kernel: HID: nvidia-shield: | | | | | | | Add missing null pointer | | | | | | | checks to LED initialization | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26770 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26771 | | | | kernel: dmaengine: ti: | | | | | | | edma: Add some null pointer | | | | | | | checks to the edma_probe... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26771 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26772 | | | | kernel: ext4: avoid allocating | | | | | | | blocks from corrupted group | | | | | | | in ext4_mb_find_by_goal() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26772 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26773 | | | | kernel: ext4: avoid allocating | | | | | | | blocks from corrupted group | | | | | | | in ext4_mb_try_best_found() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26773 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26774 | | | | kernel: ext4: avoid dividing by 0 | | | | | | | in mb_update_avg_fragment_size() | | | | | | | when block bitmap corrupt... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26774 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26775 | | | | kernel: aoe: avoid potential | | | | | | | deadlock at set_capacity | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26775 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26776 | | | | kernel: spi: hisi-sfc-v3xx: | | | | | | | Return IRQ_NONE if no | | | | | | | interrupts were detected | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26776 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26777 | | | | kernel: fbdev: sis: Error | | | | | | | out if pixclock equals zero | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26777 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26778 | | | | kernel: fbdev: savage: Error | | | | | | | out if pixclock equals zero | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26778 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26779 | | | | kernel: wifi: mac80211: fix race | | | | | | | condition on enabling fast-xmit | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26779 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26781 | | | | kernel: mptcp: fix possible | | | | | | | deadlock in subflow diag | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26781 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26782 | | | | kernel: mptcp: fix double-free | | | | | | | on socket dismantle | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26782 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26787 | | | | kernel: mmc: mmci: stm32: fix DMA | | | | | | | API overlapping mappings warning | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26787 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26788 | | | | kernel: dmaengine: fsl-qdma: | | | | | | | init irq after reg initialization | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26788 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26790 | | | | kernel: dmaengine: fsl-qdma: fix SoC | | | | | | | may hang on 16 byte unaligned read... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26790 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26791 | | | | kernel: btrfs: dev-replace: | | | | | | | properly validate device names | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26791 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26792 | | | | kernel: btrfs: fix double | | | | | | | free of anonymous device after | | | | | | | snapshot creation failure... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26792 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26793 | | | | kernel: gtp: fix use-after-free | | | | | | | and null-ptr-deref in gtp_newlink() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26793 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26795 | | | | kernel: riscv: Sparse-Memory/vmemmap | | | | | | | out-of-bounds fix | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26795 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26801 | | | | kernel: Bluetooth: Avoid potential | | | | | | | use-after-free in hci_error_reset | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26801 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26804 | | | | kernel: net: ip_tunnel: prevent | | | | | | | perpetual headroom growth | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26805 | | | | kernel: netlink: Fix | | | | | | | kernel-infoleak-after-free | | | | | | | in __skb_datagram_iter | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26805 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26807 | | | | kernel: spi: cadence-qspi: fix | | | | | | | pointer reference in runtime PM hooks | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26807 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26808 | | | | kernel: netfilter: nft_chain_filter: | | | | | | | handle NETDEV_UNREGISTER | | | | | | | for inet/ingress basechain | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26808 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26809 | | | | kernel: netfilter: nft_set_pipapo: | | | | | | | release elements in clone | | | | | | | only from destroy path | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26809 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26810 | | | | kernel: vfio/pci: Lock | | | | | | | external INTx masking ops | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26810 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26811 | | | | kernel: ksmbd: validate | | | | | | | payload size in ipc response | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26811 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26812 | | | | kernel: vfio/pci: Create | | | | | | | persistent INTx handler | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26812 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26813 | | | | kernel: vfio/platform: Create | | | | | | | persistent IRQ handlers | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26813 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26814 | | | | kernel: vfio/fsl-mc: Block calling | | | | | | | interrupt handler without trigger | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26814 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26816 | | | | kernel: x86, relocs: Ignore | | | | | | | relocations in .notes section | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26816 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26817 | | | | kernel: amdkfd: use calloc instead | | | | | | | of kzalloc to avoid integer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26817 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26820 | | | | kernel: hv_netvsc: Register | | | | | | | VF in netvsc_probe if | | | | | | | NET_DEVICE_REGISTER missed | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26820 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26821 | | | | kernel: fs: relax | | | | | | | mount_setattr() permission checks | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26821 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26825 | | | | kernel: nfc: nci: free | | | | | | | rx_data_reassembly skb | | | | | | | on NCI device cleanup | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26825 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26828 | | | | kernel: cifs: fix underflow | | | | | | | in parse_server_interfaces() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26828 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26830 | | | | kernel: i40e: Do not allow | | | | | | | untrusted VF to remove | | | | | | | administratively set MAC... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26830 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26833 | | | | kernel: drm/amd/display: Fix | | | | | | | memory leak in dm_sw_fini() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26833 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26835 | | | | kernel: netfilter: nf_tables: set | | | | | | | dormant flag on hook register failure | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26835 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26839 | | | | kernel: IB/hfi1: Fix a | | | | | | | memleak in init_credit_return | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26839 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26840 | | | | kernel: cachefiles: fix memory | | | | | | | leak in cachefiles_add_cache() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26840 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26841 | | | | kernel: LoongArch: Update | | | | | | | cpu_sibling_map when | | | | | | | disabling nonboot CPUs | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26841 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26842 | | | | kernel: scsi: ufs: core: Fix | | | | | | | shift issue in ufshcd_clear_cmd() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26842 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26843 | | | | kernel: efi: runtime: Fix potential | | | | | | | overflow of soft-reserved region size | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26843 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26844 | | | | kernel: block: Fix | | | | | | | WARNING in _copy_from_iter | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26844 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26845 | | | | kernel: scsi: target: core: | | | | | | | Add TMF to tmr_list handling | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26845 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26846 | | | | kernel: nvme-fc: do not wait | | | | | | | in vain when unloading module | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26846 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26848 | | | | kernel: afs: Fix endless | | | | | | | loop in directory parsing | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26848 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26851 | | | | kernel: netfilter: | | | | | | | nf_conntrack_h323: Add protection | | | | | | | for bmp length out of range | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26851 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26852 | | | | kernel: net/ipv6: avoid possible | | | | | | | UAF in ip6_route_mpath_notify() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26852 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26855 | | | | kernel: net: ice: Fix potential | | | | | | | NULL pointer dereference | | | | | | | in ice_bridge_setlink() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26855 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26857 | | | | kernel: geneve: make sure to | | | | | | | pull inner header in geneve_rx() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26857 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26859 | | | | kernel: net/bnx2x: Prevent access | | | | | | | to a freed page in page_pool | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26859 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26861 | | | | kernel: wireguard: receive: | | | | | | | annotate data-race around | | | | | | | receiving_counter.counter | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26861 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26862 | | | | kernel: packet: annotate | | | | | | | data-races around ignore_outgoing | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26862 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26863 | | | | kernel: hsr: Fix uninit-value | | | | | | | access in hsr_get_node() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26863 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26865 | | | | kernel: rds: tcp: Fix use-after-free | | | | | | | of net in reqsk_timer_handler(). | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26865 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26866 | | | | kernel: spi: lpspi: Avoid | | | | | | | potential use-after-free in probe() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26866 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26869 | | | | kernel: f2fs: fix to truncate | | | | | | | meta inode pages forcely | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26869 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26870 | | | | kernel: NFSv4.2: fix nfs4_listxattr | | | | | | | kernel BUG at mm/usercopy.c:102 | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26870 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26872 | | | | kernel: RDMA/srpt: Do not | | | | | | | register event handler until | | | | | | | srpt device is fully... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26872 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26874 | | | | kernel: drm/mediatek: Fix | | | | | | | a null pointer crash in | | | | | | | mtk_drm_crtc_finish_page_flip | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26874 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26875 | | | | kernel: media: pvrusb2: fix | | | | | | | uaf in pvr2_context_set_notify | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26875 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26876 | | | | kernel: drm/bridge: adv7511: | | | | | | | fix crash on irq during probe | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26876 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26877 | | | | kernel: crypto: xilinx - call | | | | | | | finalize with bh disabled | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26877 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26878 | | | | kernel: quota: Fix potential | | | | | | | NULL pointer dereference | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26878 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26880 | | | | kernel: dm: call the resume | | | | | | | method on internal suspend | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26880 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26882 | | | | kernel: net: ip_tunnel: make sure to | | | | | | | pull inner header in ip_tunnel_rcv() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26882 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26883 | | | | kernel: bpf: Fix stackmap | | | | | | | overflow check on 32-bit arches | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26883 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26884 | | | | kernel: bpf: Fix hashtab | | | | | | | overflow check on 32-bit arches | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26884 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26885 | | | | kernel: bpf: Fix DEVMAP_HASH | | | | | | | overflow check on 32-bit arches | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26885 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26886 | | | | kernel: Bluetooth: | | | | | | | af_bluetooth: Fix deadlock | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26886 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26889 | | | | kernel: Bluetooth: hci_core: | | | | | | | Fix possible buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26889 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26891 | | | | kernel: iommu/vt-d: Don't | | | | | | | issue ATS Invalidation request | | | | | | | when device is disconnected | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26891 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26893 | | | | kernel: firmware: arm_scmi: | | | | | | | Fix double free in SMC | | | | | | | transport cleanup path | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26893 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26894 | | | | kernel: ACPI: processor_idle: | | | | | | | Fix memory leak in | | | | | | | acpi_processor_power_exit() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26894 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26895 | | | | kernel: wifi: wilc1000: prevent | | | | | | | use-after-free on vif when | | | | | | | cleaning up all interfaces... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26895 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26896 | | | | kernel: wifi: wfx: fix | | | | | | | memory leak when starting AP | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26896 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26897 | | | | kernel: wifi: ath9k: delay all | | | | | | | of ath9k_wmi_event_tasklet() | | | | | | | until init is complete | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26897 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26898 | | | | kernel: aoe: fix the | | | | | | | potential use-after-free | | | | | | | problem in aoecmd_cfg_pkts | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26898 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26900 | | | | kernel: md: fix | | | | | | | kmemleak of rdev->serial | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26900 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26901 | | | | kernel: do_sys_name_to_handle(): | | | | | | | use kzalloc() to fix kernel-infoleak | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26901 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26902 | | | | kernel: perf: RISCV: Fix | | | | | | | panic on pmu overflow handler | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26902 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26903 | | | | kernel: Bluetooth: rfcomm: | | | | | | | Fix null-ptr-deref in | | | | | | | rfcomm_check_security | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26903 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26904 | | | | kernel: btrfs: fix data race | | | | | | | at btrfs_use_block_rsv() | | | | | | | when accessing block reserve | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26904 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26905 | | | | kernel: btrfs: fix data | | | | | | | races when accessing the | | | | | | | reserved amount of block... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26905 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26906 | | | | kernel: x86/mm: Disallow | | | | | | | vsyscall page read for | | | | | | | copy_from_kernel_nofault() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26906 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26907 | | | | kernel: RDMA/mlx5: Fix fortify source | | | | | | | warning while accessing Eth segment | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26907 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26908 | | | | kernel: x86/xen: Add some | | | | | | | null pointer checking to smp.c | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26908 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26910 | | | | kernel: netfilter: ipset: | | | | | | | fix performance regression | | | | | | | in swap operation | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26910 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26913 | | | | kernel: drm/amd/display: Fix dcn35 | | | | | | | 8k30 Underflow/Corruption Issue | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26913 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26914 | | | | kernel: drm/amd/display: fix | | | | | | | incorrect mpc_combine array size | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26914 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26915 | | | | kernel: drm/amdgpu: Reset | | | | | | | IH OVERFLOW_CLEAR bit | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26917 | | | | kernel: scsi: Revert | | | | | | | "scsi: fcoe: Fix potential | | | | | | | deadlock on &fip->ctlr_lock" | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26917 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26920 | | | | kernel: tracing/trigger: | | | | | | | Fix to return error if | | | | | | | failed to alloc snapshot | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26920 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26921 | | | | kernel: inet: inet_defrag: prevent | | | | | | | sk release while still in use | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26921 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26922 | | | | kernel: drm/amdgpu: validate | | | | | | | the parameters of bo mapping | | | | | | | operations more clearly | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26922 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-27437 | | | | kernel: vfio/pci: Disable | | | | | | | auto-enable of exclusive INTx IRQ | | | | | | | -->avd.aquasec.com/nvd/cve-2024-27437 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2004-0230 | LOW | | | TCP, when using a large Window | | | | | | | Size, makes it easier for remote... | | | | | | | -->avd.aquasec.com/nvd/cve-2004-0230 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2005-3660 | | | | Linux kernel 2.4 and 2.6 allows | | | | | | | attackers to cause a denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-3660 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-3719 | | | | kernel: secretly Monopolizing the | | | | | | | CPU Without Superuser Privileges | | | | | | | -->avd.aquasec.com/nvd/cve-2007-3719 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-2544 | | | | kernel: mounting proc | | | | | | | readonly on a different mount | | | | | | | point silently mounts it... | | | | | | | -->avd.aquasec.com/nvd/cve-2008-2544 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-4609 | | | | kernel: TCP protocol | | | | | | | vulnerabilities from Outpost24 | | | | | | | -->avd.aquasec.com/nvd/cve-2008-4609 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-4563 | | | | kernel: ipv6: sniffer detection | | | | | | | -->avd.aquasec.com/nvd/cve-2010-4563 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-5321 | | | | kernel: v4l: videobuf: hotfix a | | | | | | | bug on multiple calls to mmap() | | | | | | | -->avd.aquasec.com/nvd/cve-2010-5321 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4915 | | | | fs/proc/base.c in the | | | | | | | Linux kernel through 3.1 | | | | | | | allows local users to o... | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4915 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4916 | | | | Linux kernel through 3.1 | | | | | | | allows local users to obtain | | | | | | | sensitive keystr ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4916 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4917 | | | | In the Linux kernel | | | | | | | through 3.1 there is an | | | | | | | information disclosure iss... | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4917 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2012-4542 | | | | kernel: block: default SCSI | | | | | | | command filter does not accomodate | | | | | | | commands overlap across... | | | | | | | -->avd.aquasec.com/nvd/cve-2012-4542 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2014-9892 | | | | The snd_compr_tstamp function | | | | | | | in sound/core/compress_offload.c | | | | | | | in the ... | | | | | | | -->avd.aquasec.com/nvd/cve-2014-9892 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2014-9900 | | | | kernel: Info leak in uninitialized | | | | | | | structure ethtool_wolinfo | | | | | | | in ethtool_get_wol() | | | | | | | -->avd.aquasec.com/nvd/cve-2014-9900 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-2877 | | | | Kernel: Cross-VM ASL | | | | | | | INtrospection (CAIN) | | | | | | | -->avd.aquasec.com/nvd/cve-2015-2877 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-10723 | | | | An issue was discovered in the Linux | | | | | | | kernel through 4.17.2. Since the... | | | | | | | -->avd.aquasec.com/nvd/cve-2016-10723 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-8660 | | | | kernel: xfs: local DoS due to | | | | | | | a page lock order bug in... | | | | | | | -->avd.aquasec.com/nvd/cve-2016-8660 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-0630 | | | | kernel: Information | | | | | | | disclosure vulnerability | | | | | | | in kernel trace subsystem | | | | | | | -->avd.aquasec.com/nvd/cve-2017-0630 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-13693 | | | | kernel: ACPI operand | | | | | | | cache leak in dsutils.c | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13693 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2017-13694 | | | | kernel: ACPI node and | | | | | | | node_ext cache leak | | | | | | | -->avd.aquasec.com/nvd/cve-2017-13694 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-1121 | | | | procps-ng, procps: process | | | | | | | hiding through race | | | | | | | condition enumerating /proc | | | | | | | -->avd.aquasec.com/nvd/cve-2018-1121 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-12928 | | | | kernel: NULL pointer dereference | | | | | | | in hfs_ext_read_extent in hfs.ko | | | | | | | -->avd.aquasec.com/nvd/cve-2018-12928 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-17977 | | | | kernel: Mishandled interactions among | | | | | | | XFRM Netlink messages, IPPROTO_AH | | | | | | | packets, and IPPROTO_IP packets... | | | | | | | -->avd.aquasec.com/nvd/cve-2018-17977 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-11191 | | | | kernel: race condition in | | | | | | | load_aout_binary() allows local | | | | | | | users to bypass ASLR on... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-11191 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12378 | | | | kernel: unchecked kmalloc | | | | | | | of new_ra in ip6_ra_control | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12378 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12379 | | | | kernel: memory leak in | | | | | | | con_insert_unipair in | | | | | | | drivers/tty/vt/consolemap.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12379 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12380 | | | | kernel: memory allocation | | | | | | | failure in the efi subsystem | | | | | | | leads to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12380 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12381 | | | | kernel: unchecked kmalloc | | | | | | | of new_ra in ip_ra_control | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12381 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12382 | | | | kernel: unchecked kstrdup of | | | | | | | fwstr in drm_load_edid_firmware | | | | | | | leads to denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12382 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12455 | | | | kernel: null pointer dereference | | | | | | | in sunxi_divs_clk_setup in | | | | | | | drivers/clk/sunxi/clk-sunxi.c | | | | | | | causing denial of service... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12455 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-12456 | | | | kernel: double fetch in the | | | | | | | MPT3COMMAND case in _ctl_ioctl_main | | | | | | | in drivers/scsi/mpt3sas/mpt3sas_ctl.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-12456 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16229 | | | | kernel: null pointer dereference in | | | | | | | drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16229 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16230 | | | | kernel: null pointer dereference in | | | | | | | drivers/gpu/drm/radeon/radeon_display.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16230 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16231 | | | | kernel: null-pointer dereference | | | | | | | in drivers/net/fjes/fjes_main.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16231 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16232 | | | | kernel: null-pointer dereference in | | | | | | | drivers/net/wireless/marvell/libertas/if_sdio.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16232 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16233 | | | | kernel: null pointer dereference | | | | | | | in drivers/scsi/qla2xxx/qla_os.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16233 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-16234 | | | | kernel: null pointer dereference in | | | | | | | drivers/net/wireless/intel/iwlwifi/pcie/trans.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-16234 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-19070 | | | | kernel: A memory leak in the | | | | | | | spi_gpio_probe() function in | | | | | | | drivers/spi/spi-gpio.c allows for... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-19070 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-19378 | | | | kernel: out-of-bounds write in | | | | | | | index_rbio_pages in fs/btrfs/raid56.c | | | | | | | -->avd.aquasec.com/nvd/cve-2019-19378 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-11725 | | | | kernel: improper handling of | | | | | | | private_size*count multiplication | | | | | | | due to count=info->owner typo | | | | | | | -->avd.aquasec.com/nvd/cve-2020-11725 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-35501 | | | | kernel: audit not logging access | | | | | | | to syscall open_by_handle_at for | | | | | | | users with CAP_DAC_READ_SEARCH... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-35501 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-26934 | | | | An issue was discovered in the Linux | | | | | | | kernel 4.18 through 5.10.16, as... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-26934 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-32078 | | | | kernel: out-of-bounds read in | | | | | | | arch/arm/mach-footbridge/personal-pci.c | | | | | | | due to improper input validation | | | | | | | -->avd.aquasec.com/nvd/cve-2021-32078 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3714 | | | | kernel: Remote Page | | | | | | | Deduplication Attacks | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3714 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-47028 | | | | kernel: mt76: mt7915: | | | | | | | fix txrate reporting | | | | | | | -->avd.aquasec.com/nvd/cve-2021-47028 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0400 | | | | kernel: Out of bounds read | | | | | | | in the smc protocol stack | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0400 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1247 | | | | kernel: A race condition | | | | | | | bug in rose_connect() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1247 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-1882 | | | 5.10.136-1 | kernel: use-after-free in | | | | | | | free_pipe_info() could lead | | | | | | | to privilege escalation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1882 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-25265 | | | | kernel: Executable | | | | | | | Space Protection Bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2022-25265 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2961 | | | | kernel: race condition | | | | | | | in rose_bind() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2961 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3424 | | | 5.10.178-1 | kernel: Use after Free | | | | | | | in gru_set_context_option | | | | | | | leading to kernel panic | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3424 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3521 | | | 5.10.158-1 | kernel: race condition in | | | | | | | kcm_tx_work() in net/kcm/kcmsock.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3521 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-3629 | | | 5.10.140-1 | kernel: memory leak in the | | | | | | | function vsock_connect of | | | | | | | Virtual Socket Protocol | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3629 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-3633 | | | | kernel: memory leak in the | | | | | | | function j1939_session_destroy | | | | | | | for j1939 socket | | | | | | | -->avd.aquasec.com/nvd/cve-2022-3633 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-41848 | | | | kernel: Race condition between | | | | | | | mgslpc_ioctl and mgslpc_detach | | | | | | | -->avd.aquasec.com/nvd/cve-2022-41848 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44032 | | | | Kernel: Race between cmm_open() | | | | | | | and cm4000_detach() result in UAF | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44032 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44033 | | | | Kernel: A race condition | | | | | | | between cm4040_open() and | | | | | | | reader_detach() may result in UAF... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44033 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-44034 | | | | Kernel: A use-after-free due | | | | | | | to race between scr24x_open() | | | | | | | and scr24x_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-44034 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45884 | | | | kernel: use-after-free due | | | | | | | to race condition occurring | | | | | | | in dvb_register_device() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45884 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45885 | | | | kernel: use-after-free due to race | | | | | | | condition occurring in dvb_frontend.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45885 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45886 | | | 5.10.191-1 | kernel: use-after-free due to race | | | | | | | condition occurring in dvb_net.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45886 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-45887 | | | | kernel: memory leak in | | | | | | | ttusb_dec_exit_dvb() in | | | | | | | media/usb/ttusb-dec/ttusb_dec.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45887 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-45919 | | | | kernel: use-after-free | | | | | | | due to race condition | | | | | | | occurring in dvb_ca_en50221.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45919 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1075 | | | | kernel: net/tls: tls_is_tx_ready() | | | | | | | checked list_entry | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1075 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-1513 | | | 5.10.178-1 | kernel: KVM: information | | | | | | | leak in KVM_GET_DEBUGREGS | | | | | | | ioctl on 32-bit systems | | | | | | | -->avd.aquasec.com/nvd/cve-2023-1513 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22995 | | | | kernel: missing platform_device_put() | | | | | | | and kfree() calls in an error path | | | | | | | in dwc3_qcom_acpi_register_core()... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22995 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23000 | | | | kernel: incorrect return | | | | | | | value for the error case in | | | | | | | the tegra_xusb_find_port_node | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23000 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23003 | | | | kernel: missing check for return | | | | | | | value of hashmap__new() in | | | | | | | the function expr__ctx_new... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23003 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-23039 | | | | kernel: tty: vcc: race | | | | | | | condition leading to | | | | | | | use-after-free in vcc_open() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-23039 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-26242 | | | | afu_mmio_region_get_by_offset | | | | | | | in drivers/fpga/dfl-afu-region.c | | | | | | | in the ... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-26242 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-30772 | | | 5.10.178-1 | kernel: da9150: race condition | | | | | | | leading to use-after-free | | | | | | | in da9150_charger_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30772 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31081 | | | | An issue was discovered in | | | | | | | drivers/media/test-drivers/vidtv/vidtv_brid | | | | | | | ... -->avd.aquasec.com/nvd/cve-2023-31081 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31085 | | | | kernel: divide-by-zero error | | | | | | | in ctrl_cdev_ioctl when do_div | | | | | | | happens and erasesize is 0... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31085 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3141 | | | 5.10.191-1 | kernel: Use after free | | | | | | | bug in r592_remove | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3141 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-34256 | | | | Out of bounds read in | | | | | | | crc16 in lib/crc16.c | | | | | | | -->avd.aquasec.com/nvd/cve-2023-34256 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-35823 | | | | kernel: saa7134: race condition | | | | | | | leading to use-after-free | | | | | | | in saa7134_finidev() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35823 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-35824 | | | | kernel: dm1105: race condition | | | | | | | leading to use-after-free | | | | | | | in dm1105_remove.c() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35824 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-35828 | | | | kernel: renesas_usb3: race | | | | | | | condition leading to use-after-free | | | | | | | in renesas_usb3_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35828 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-35829 | | | | kernel: rkvdec: race condition | | | | | | | leading to use-after-free | | | | | | | in rkvdec_remove() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-35829 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3640 | | | | Kernel: x86/mm: a per-cpu | | | | | | | entry area leak was identified | | | | | | | through the init_cea_offsets... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3640 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-4134 | | | | kernel: cyttsp4_core: use-after-free | | | | | | | in cyttsp4_watchdog_work() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4134 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52561 | | | | kernel: arm64: dts: qcom: | | | | | | | sdm845-db845c: unreserved cont | | | | | | | splash memory region leads to... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52561 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52569 | | | | kernel: btrfs: improper | | | | | | | BUG() call after failure to | | | | | | | insert delayed dir index... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52569 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52620 | | | | kernel: netfilter: nf_tables: | | | | | | | disallow timeout for anonymous sets | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52620 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6610 | | | | kernel: OOB Access | | | | | | | in smb2_dump_detail | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6610 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26614 | | | | kernel: tcp: make sure init the | | | | | | | accept_queue's spinlocks once | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26614 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26765 | | | | kernel: LoongArch: Disable IRQ | | | | | | | before init_fn() for nonboot CPUs | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26765 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | TEMP-0000000-F7A20F | | | | [Kernel: Unprivileged user can freeze journald] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0000000-F7A20F | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-52572 | UNKNOWN | | | kernel: cifs: use-after-free | | | | | | | in cifs_demultiplex_thread() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-52572 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26677 | | | | kernel: rxrpc: Fix delayed | | | | | | | ACKs to not set the | | | | | | | reference serial number... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26677 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26707 | | | | kernel: net: hsr: remove WARN_ONCE() | | | | | | | in send_hsr_supervision_frame() | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26707 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-26764 | | | | kernel: fs/aio: Restrict | | | | | | | kiocb_set_cancel_fn() to | | | | | | | I/O submitted via libaio | | | | | | | -->avd.aquasec.com/nvd/cve-2024-26764 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | DSA-5257-2 | | | 5.10.149-2 | linux - regression update | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | login | CVE-2023-4641 | MEDIUM | 1:4.8.1-1 | | shadow-utils: possible password | | | | | | | leak during passwd(1) change | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4641 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-5686 | LOW | | | initscripts in rPath Linux | | | | | | | 1 sets insecure permissions | | | | | | | for the /var/lo ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | | | | | | | conditions by copying and | | | | | | | removing directory trees | | | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-19882 | | | | shadow-utils: local users can | | | | | | | obtain root access because setuid | | | | | | | programs are misconfigured... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29383 | | | | shadow: Improper input validation | | | | | | | in shadow-utils package utility chfn | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29383 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | TEMP-0628843-DBAD28 | | | | [more related to CVE-2005-4890] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | logsave | CVE-2022-1304 | HIGH | 1.46.2-2 | | e2fsprogs: out-of-bounds | | | | | | | read/write via crafted filesystem | | | | | | | -->avd.aquasec.com/nvd/cve-2022-1304 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | m4 | CVE-2008-1687 | LOW | 1.4.18-5 | | m4: unquoted output of | | | | | | | maketemp and mkstemp | | | | | | | -->avd.aquasec.com/nvd/cve-2008-1687 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-1688 | | | | m4: code execution via -F argument | | | | | | | -->avd.aquasec.com/nvd/cve-2008-1688 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | mariadb-common | CVE-2021-46669 | HIGH | 1:10.5.15-0+deb11u1 | 1:10.5.18-0+deb11u1 | mariadb: MariaDB through | | | | | | | 10.5.9 allows attackers to | | | | | | | trigger a convert_const_to_int | | | | | | | use-after-free when... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-46669 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27376 | | | | mariadb: assertion failure | | | | | | | in Item_args::walk_arg | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27376 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27377 | | | | mariadb: use-after-poison | | | | | | | when complex conversion | | | | | | | is involved in blob | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27377 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27378 | | | | mariadb: server crash in | | | | | | | create_tmp_table::finalize | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27378 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27379 | | | | mariadb: server crash in component | | | | | | | arg_comparator::compare_real_fixed | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27379 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27380 | | | | mariadb: server crash | | | | | | | at my_decimal::operator= | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27380 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27381 | | | | mariadb: server crash at | | | | | | | Field::set_default via | | | | | | | specially crafted SQL statements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27381 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27382 | | | | mariadb: assertion failure via component | | | | | | | Item_field::used_tables/update_depend_map_for_order | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27382 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27383 | | | | mariadb: use-after-poison | | | | | | | in my_strcasecmp_8bit() | | | | | | | of ctype-simple.c | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27383 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27384 | | | | mariadb: crash via component | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27384 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27386 | | | | mariadb: server crashes in | | | | | | | query_arena::set_query_arena | | | | | | | upon SELECT from view | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27386 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27387 | | | | mariadb: assertion failures | | | | | | | in decimal_bin_size | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27387 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27444 | | | | mariadb: crash when using HAVING with | | | | | | | NOT EXIST predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27444 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27445 | | | | mariadb: assertion failure | | | | | | | in compare_order_elements | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27445 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27446 | | | | mariadb: crash when using HAVING with | | | | | | | IS NULL predicate in an equality... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27447 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27447 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27448 | | | | mariadb: crash in multi-update | | | | | | | and implicit grouping | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27448 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27449 | | | | mariadb: assertion failure | | | | | | | in sql/item_func.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27449 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27451 | | | | mariadb: crash via window | | | | | | | function in expression in ORDER BY | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27451 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27452 | | | | mariadb: assertion failure | | | | | | | in sql/item_cmpfunc.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27452 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27455 | | | | mariadb: use-after-free when | | | | | | | WHERE has subquery with an | | | | | | | outer reference in HAVING... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27455 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27456 | | | | mariadb: assertion failure in | | | | | | | VDec::VDec at /sql/sql_type.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27456 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27457 | | | | mariadb: incorrect key in "dup | | | | | | | value" error after long unique | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27457 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-27458 | | | | mariadb: use-after-poison in | | | | | | | Binary_string::free_buffer | | | | | | | -->avd.aquasec.com/nvd/cve-2022-27458 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32081 | | | | mariadb: use-after-poison in | | | | | | | prepare_inplace_add_virtual | | | | | | | in handler0alter.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32081 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32082 | | | | mariadb: assertion failure | | | | | | | at table->get_ref_count() | | | | | | | == 0 in dict0dict.cc | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32082 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32083 | | | | mariadb: server crash at | | | | | | | Item_subselect::init_expr_cache_tracker | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32083 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32084 | | | | mariadb: segmentation fault | | | | | | | via the component sub_select | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32084 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32085 | | | | mariadb: server crash in | | | | | | | Item_func_in::cleanup/Item::cleanup_processor | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32085 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32086 | | | | mariadb: server crash in | | | | | | | Item_field::fix_outer_field | | | | | | | for INSERT SELECT | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32086 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32087 | | | | mariadb: server crash | | | | | | | in Item_args::walk_args | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32087 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32088 | | | | mariadb: segmentation fault in | | | | | | | Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32088 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32089 | | | | mariadb: server crash in | | | | | | | st_select_lex_unit::exclude_level | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32089 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-32091 | | | | mariadb: server crash in | | | | | | | JOIN_CACHE::free or in copy_fields | | | | | | | -->avd.aquasec.com/nvd/cve-2022-32091 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2022-38791 | MEDIUM | | | mariadb: compress_write() fails | | | | | | | to release mutex on failure | | | | | | | -->avd.aquasec.com/nvd/cve-2022-38791 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-47015 | | | 1:10.5.20-0+deb11u1 | mariadb: NULL pointer dereference | | | | | | | in spider_db_mbase::print_warnings() | | | | | | | -->avd.aquasec.com/nvd/cve-2022-47015 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-22084 | | | 1:10.5.23-0+deb11u1 | mysql: InnoDB unspecified | | | | | | | vulnerability (CPU Oct 2023) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-22084 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | mount | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | ncurses-base | CVE-2022-29458 | HIGH | 6.2+20201114-2 | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | ncurses-bin | CVE-2022-29458 | HIGH | | 6.2+20201114-2+deb11u1 | ncurses: segfaulting OOB read | | | | | | | -->avd.aquasec.com/nvd/cve-2022-29458 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29491 | | | 6.2+20201114-2+deb11u2 | ncurses: Local users can | | | | | | | trigger security-relevant memory | | | | | | | corruption via malformed data | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29491 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-50495 | MEDIUM | | | ncurses: segmentation | | | | | | | fault via _nc_wrap_entry() | | | | | | | -->avd.aquasec.com/nvd/cve-2023-50495 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45918 | LOW | | | ncurses 6.4-20230610 has | | | | | | | a NULL pointer dereference | | | | | | | in tgetstr in tinf ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45918 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | openssh-client | CVE-2023-38408 | CRITICAL | 1:8.4p1-5+deb11u1 | 1:8.4p1-5+deb11u2 | openssh: Remote code execution | | | | | | | in ssh-agent PKCS#11 support | | | | | | | -->avd.aquasec.com/nvd/cve-2023-38408 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-41617 | HIGH | | 1:8.4p1-5+deb11u3 | openssh: privilege escalation | | | | | | | when AuthorizedKeysCommand or | | | | | | | AuthorizedPrincipalsCommand | | | | | | | are configured | | | | | | | -->avd.aquasec.com/nvd/cve-2021-41617 | + +---------------------+----------+ + +--------------------------------------------------------------------+ | | CVE-2023-48795 | MEDIUM | | | ssh: Prefix truncation attack | | | | | | | on Binary Packet Protocol (BPP) | | | | | | | -->avd.aquasec.com/nvd/cve-2023-48795 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-51385 | | | | openssh: potential command | | | | | | | injection via shell metacharacters | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51385 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-2243 | LOW | | | OpenSSH 4.6 and earlier, when | | | | | | | ChallengeResponseAuthentication | | | | | | | is enabl ... | | | | | | | -->avd.aquasec.com/nvd/cve-2007-2243 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-2768 | | | | OpenSSH, when using OPIE | | | | | | | (One-Time Passwords in | | | | | | | Everything) for PAM, a ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2007-2768 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2008-3234 | | | | sshd in OpenSSH 4 on | | | | | | | Debian GNU/Linux, and the | | | | | | | 20070303 OpenSSH snapsh... | | | | | | | -->avd.aquasec.com/nvd/cve-2008-3234 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2016-20012 | | | | openssh: Public key information leak | | | | | | | -->avd.aquasec.com/nvd/cve-2016-20012 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-15919 | | | | openssh: User enumeration | | | | | | | via malformed packets in | | | | | | | authentication requests | | | | | | | -->avd.aquasec.com/nvd/cve-2018-15919 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-6110 | | | | openssh: Acceptance and | | | | | | | display of arbitrary stderr | | | | | | | allows for spoofing of scp... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-6110 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-14145 | | | | openssh: Observable discrepancy | | | | | | | leading to an information leak | | | | | | | in the algorithm negotiation... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-14145 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-15778 | | | | openssh: scp allows command | | | | | | | injection when using backtick | | | | | | | characters in the destination... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-15778 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-36368 | | | | openssh: possible bypass of | | | | | | | fido 2 devices and ssh-askpass | | | | | | | -->avd.aquasec.com/nvd/cve-2021-36368 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-51767 | | | | openssh: authentication | | | | | | | bypass via row hammer attack | | | | | | | -->avd.aquasec.com/nvd/cve-2023-51767 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | openssl | CVE-2022-4450 | HIGH | 1.1.1n-0+deb11u3 | 1.1.1n-0+deb11u4 | openssl: double free after | | | | | | | calling PEM_read_bio_ex | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4450 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0215 | | | | openssl: use-after-free | | | | | | | following BIO_new_NDEF | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0215 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0286 | | | | openssl: X.400 address type | | | | | | | confusion in X.509 GeneralName | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0286 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0464 | | | 1.1.1n-0+deb11u5 | openssl: Denial of service | | | | | | | by excessive resource usage | | | | | | | in verifying X509 policy... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0464 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-2097 | MEDIUM | | 1.1.1n-0+deb11u4 | openssl: AES OCB fails | | | | | | | to encrypt some bytes | | | | | | | -->avd.aquasec.com/nvd/cve-2022-2097 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-4304 | | | | openssl: timing attack in | | | | | | | RSA Decryption implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-4304 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-0465 | | | 1.1.1n-0+deb11u5 | openssl: Invalid certificate | | | | | | | policies in leaf certificates | | | | | | | are silently ignored | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0465 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-0466 | | | | openssl: Certificate | | | | | | | policy check not enabled | | | | | | | -->avd.aquasec.com/nvd/cve-2023-0466 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-2650 | | | | openssl: Possible DoS translating | | | | | | | ASN.1 object identifiers | | | | | | | -->avd.aquasec.com/nvd/cve-2023-2650 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-3446 | | | 1.1.1v-0~deb11u1 | openssl: Excessive time spent | | | | | | | checking DH keys and parameters | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3446 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-3817 | | | | OpenSSL: Excessive time spent | | | | | | | checking DH q parameter value | | | | | | | -->avd.aquasec.com/nvd/cve-2023-3817 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-5678 | | | | openssl: Generating excessively | | | | | | | long X9.42 DH keys or checking | | | | | | | excessively long X9.42... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5678 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0727 | | | | openssl: denial of service | | | | | | | via null dereference | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0727 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-6755 | LOW | | | Dual_EC_DRBG: weak pseudo | | | | | | | random number generator | | | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2010-0928 | | | | openssl: RSA authentication weakness | | | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-2511 | | | | openssl: Unbounded memory growth | | | | | | | with session handling in TLSv1.3 | | | | | | | -->avd.aquasec.com/nvd/cve-2024-2511 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | passwd | CVE-2023-4641 | MEDIUM | 1:4.8.1-1 | | shadow-utils: possible password | | | | | | | leak during passwd(1) change | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4641 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2007-5686 | LOW | | | initscripts in rPath Linux | | | | | | | 1 sets insecure permissions | | | | | | | for the /var/lo ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | | | | | | | conditions by copying and | | | | | | | removing directory trees | | | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2019-19882 | | | | shadow-utils: local users can | | | | | | | obtain root access because setuid | | | | | | | programs are misconfigured... | | | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-29383 | | | | shadow: Improper input validation | | | | | | | in shadow-utils package utility chfn | | | | | | | -->avd.aquasec.com/nvd/cve-2023-29383 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | TEMP-0628843-DBAD28 | | | | [more related to CVE-2005-4890] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | patch | CVE-2010-4651 | | 2.7.6-7 | | patch: directory traversal flaw | | | | | | | allows for arbitrary file creation | | | | | | | -->avd.aquasec.com/nvd/cve-2010-4651 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-6951 | | | | patch: NULL pointer dereference | | | | | | | in pch.c:intuit_diff_type() | | | | | | | causes a crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-6951 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2018-6952 | | | | patch: Double free of memory in | | | | | | | pch.c:another_hunk() causes a crash | | | | | | | -->avd.aquasec.com/nvd/cve-2018-6952 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-45261 | | | | patch: Invalid Pointer | | | | | | | via another_hunk function | | | | | | | -->avd.aquasec.com/nvd/cve-2021-45261 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | perl | CVE-2020-16156 | HIGH | 5.32.1-4+deb11u2 | | perl-CPAN: Bypass of verification | | | | | | | of signatures in CHECKSUMS files | | | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31484 | | | | perl: CPAN.pm does not verify | | | | | | | TLS certificates when downloading | | | | | | | distributions over HTTPS... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31484 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-47038 | | | 5.32.1-4+deb11u3 | perl: Write past buffer end via | | | | | | | illegal user-defined Unicode property | | | | | | | -->avd.aquasec.com/nvd/cve-2023-47038 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | | | | | | | temporary file handling | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31486 | | | | http-tiny: insecure TLS cert default | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31486 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | perl-base | CVE-2020-16156 | HIGH | | | perl-CPAN: Bypass of verification | | | | | | | of signatures in CHECKSUMS files | | | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31484 | | | | perl: CPAN.pm does not verify | | | | | | | TLS certificates when downloading | | | | | | | distributions over HTTPS... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31484 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-47038 | | | 5.32.1-4+deb11u3 | perl: Write past buffer end via | | | | | | | illegal user-defined Unicode property | | | | | | | -->avd.aquasec.com/nvd/cve-2023-47038 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | | | | | | | temporary file handling | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31486 | | | | http-tiny: insecure TLS cert default | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31486 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | perl-modules-5.32 | CVE-2020-16156 | HIGH | | | perl-CPAN: Bypass of verification | | | | | | | of signatures in CHECKSUMS files | | | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31484 | | | | perl: CPAN.pm does not verify | | | | | | | TLS certificates when downloading | | | | | | | distributions over HTTPS... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31484 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-47038 | | | 5.32.1-4+deb11u3 | perl: Write past buffer end via | | | | | | | illegal user-defined Unicode property | | | | | | | -->avd.aquasec.com/nvd/cve-2023-47038 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | | | | | | | temporary file handling | | | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-31486 | | | | http-tiny: insecure TLS cert default | | | | | | | -->avd.aquasec.com/nvd/cve-2023-31486 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | procps | CVE-2023-4016 | | 2:3.3.17-5 | | procps: ps buffer overflow | | | | | | | -->avd.aquasec.com/nvd/cve-2023-4016 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | python3.9 | CVE-2021-29921 | CRITICAL | 3.9.2-1 | | python-ipaddress: Improper input | | | | | | | validation of octal strings | | | | | | | -->avd.aquasec.com/nvd/cve-2021-29921 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-20107 | HIGH | | | python: mailcap: findmatch() function | | | | | | | does not sanitize the second argument | | | | | | | -->avd.aquasec.com/nvd/cve-2015-20107 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-10735 | | | | python: int() type in | | | | | | | PyLong_FromString() does not limit | | | | | | | amount of digits converting... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-10735 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3737 | | | | python: urllib: HTTP client | | | | | | | possible infinite loop on | | | | | | | a 100 Continue response... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3737 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0391 | | | | python: urllib.parse does | | | | | | | not sanitize URLs containing | | | | | | | ASCII newline and tabs | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0391 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42919 | | | | python: local privilege | | | | | | | escalation via the multiprocessing | | | | | | | forkserver start method | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42919 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45061 | | | | python: CPU denial of service | | | | | | | via inefficient IDNA decoder | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45061 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-24329 | | | | python: urllib.parse | | | | | | | url blocklisting bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24329 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6597 | | | | python: Path traversal on | | | | | | | tempfile.TemporaryDirectory | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6597 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3426 | MEDIUM | | | python: Information | | | | | | | disclosure via pydoc | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3426 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3733 | | | | python: urllib: Regular expression | | | | | | | DoS in AbstractBasicAuthHandler | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3733 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4189 | | | | python: ftplib should not use | | | | | | | the host from the PASV response | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4189 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27043 | | | | python: Parsing errors in | | | | | | | email/_parseaddr.py lead to | | | | | | | incorrect value in email address... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27043 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40217 | | | | python: TLS handshake bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40217 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0450 | | | | python: The zipfile module | | | | | | | is vulnerable to zip-bombs | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0450 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-27619 | LOW | | | python: Unsafe use of eval() on | | | | | | | data retrieved via HTTP in the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-27619 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-28861 | | | | python: open redirection | | | | | | | vulnerability in lib/http/server.py | | | | | | | may lead to information disclosure | | | | | | | -->avd.aquasec.com/nvd/cve-2021-28861 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-37454 | | | | XKCP: buffer overflow in the | | | | | | | SHA-3 reference implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-37454 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | python3.9-minimal | CVE-2021-29921 | CRITICAL | | | python-ipaddress: Improper input | | | | | | | validation of octal strings | | | | | | | -->avd.aquasec.com/nvd/cve-2021-29921 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2015-20107 | HIGH | | | python: mailcap: findmatch() function | | | | | | | does not sanitize the second argument | | | | | | | -->avd.aquasec.com/nvd/cve-2015-20107 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-10735 | | | | python: int() type in | | | | | | | PyLong_FromString() does not limit | | | | | | | amount of digits converting... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-10735 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3737 | | | | python: urllib: HTTP client | | | | | | | possible infinite loop on | | | | | | | a 100 Continue response... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3737 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0391 | | | | python: urllib.parse does | | | | | | | not sanitize URLs containing | | | | | | | ASCII newline and tabs | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0391 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-42919 | | | | python: local privilege | | | | | | | escalation via the multiprocessing | | | | | | | forkserver start method | | | | | | | -->avd.aquasec.com/nvd/cve-2022-42919 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-45061 | | | | python: CPU denial of service | | | | | | | via inefficient IDNA decoder | | | | | | | -->avd.aquasec.com/nvd/cve-2022-45061 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-24329 | | | | python: urllib.parse | | | | | | | url blocklisting bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-24329 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-6597 | | | | python: Path traversal on | | | | | | | tempfile.TemporaryDirectory | | | | | | | -->avd.aquasec.com/nvd/cve-2023-6597 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3426 | MEDIUM | | | python: Information | | | | | | | disclosure via pydoc | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3426 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-3733 | | | | python: urllib: Regular expression | | | | | | | DoS in AbstractBasicAuthHandler | | | | | | | -->avd.aquasec.com/nvd/cve-2021-3733 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4189 | | | | python: ftplib should not use | | | | | | | the host from the PASV response | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4189 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-27043 | | | | python: Parsing errors in | | | | | | | email/_parseaddr.py lead to | | | | | | | incorrect value in email address... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-27043 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-40217 | | | | python: TLS handshake bypass | | | | | | | -->avd.aquasec.com/nvd/cve-2023-40217 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2024-0450 | | | | python: The zipfile module | | | | | | | is vulnerable to zip-bombs | | | | | | | leading to denial of... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-0450 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2020-27619 | LOW | | | python: Unsafe use of eval() on | | | | | | | data retrieved via HTTP in the... | | | | | | | -->avd.aquasec.com/nvd/cve-2020-27619 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-28861 | | | | python: open redirection | | | | | | | vulnerability in lib/http/server.py | | | | | | | may lead to information disclosure | | | | | | | -->avd.aquasec.com/nvd/cve-2021-28861 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-37454 | | | | XKCP: buffer overflow in the | | | | | | | SHA-3 reference implementation | | | | | | | -->avd.aquasec.com/nvd/cve-2022-37454 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | sysvinit-utils | TEMP-0517018-A83CE6 | | 2.96-7+deb11u1 | | [sysvinit: no-root option in expert installer | | | | | | | exposes locally exploitable security flaw] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | tar | CVE-2005-2541 | | 1.34+dfsg-1 | | tar: does not properly warn the user | | | | | | | when extracting setuid or setgid... | | | | | | | -->avd.aquasec.com/nvd/cve-2005-2541 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-48303 | | | 1.34+dfsg-1+deb11u1 | tar: heap buffer overflow at | | | | | | | from_header() in list.c via | | | | | | | specially crafted checksum... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-48303 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2023-39804 | | | | tar: Incorrectly handled | | | | | | | extension attributes in PAX | | | | | | | archives can lead to a... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-39804 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | TEMP-0290435-0B57B5 | | | | [tar's rmt command may have undesired side effects] | | | | | | | -->security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 | +------------------------------+---------------------+ +-------------------------+------------------------------+--------------------------------------------------------------------+ | tcl8.6 | CVE-2021-35331 | | 8.6.11+dfsg-1 | | In Tcl 8.6.11, a format | | | | | | | string vulnerability in | | | | | | | nmakehlp.c might allow ...... | | | | | | | -->avd.aquasec.com/nvd/cve-2021-35331 | +------------------------------+ + + +------------------------------+ + | tcl8.6-dev | | | | | | | | | | | | | | | | | | | | | | | | | | | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | unzip | CVE-2022-0529 | MEDIUM | 6.0-26 | 6.0-26+deb11u1 | unzip: Heap out-of-bound | | | | | | | writes and reads during | | | | | | | conversion of wide string to... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0529 | + +---------------------+ + + +--------------------------------------------------------------------+ | | CVE-2022-0530 | | | | unzip: SIGSEGV during the conversion | | | | | | | of an utf-8 string to a local... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0530 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2021-4217 | LOW | | | unzip: Null pointer dereference | | | | | | | in Unicode strings code | | | | | | | -->avd.aquasec.com/nvd/cve-2021-4217 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | util-linux | CVE-2024-28085 | HIGH | 2.36.1-8+deb11u1 | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | uuid-dev | CVE-2024-28085 | HIGH | | 2.36.1-8+deb11u2 | util-linux: CVE-2024-28085: | | | | | | | wall: escape sequence injection | | | | | | | -->avd.aquasec.com/nvd/cve-2024-28085 | + +---------------------+----------+ +------------------------------+--------------------------------------------------------------------+ | | CVE-2022-0563 | LOW | | | util-linux: partial disclosure | | | | | | | of arbitrary files in chfn | | | | | | | and chsh when compiled... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-0563 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | wget | CVE-2021-31879 | MEDIUM | 1.21-1+deb11u1 | | wget: authorization header | | | | | | | disclosure on redirect | | | | | | | -->avd.aquasec.com/nvd/cve-2021-31879 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ | zlib1g | CVE-2022-37434 | CRITICAL | 1:1.2.11.dfsg-2+deb11u1 | 1:1.2.11.dfsg-2+deb11u2 | zlib: heap-based buffer | | | | | | | over-read and overflow in | | | | | | | inflate() in inflate.c via a... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-37434 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45853 | | | | zlib: integer overflow and | | | | | | | resultant heap-based buffer | | | | | | | overflow in zipOpenNewFileInZip4_6 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45853 | +------------------------------+---------------------+ + +------------------------------+--------------------------------------------------------------------+ | zlib1g-dev | CVE-2022-37434 | | | 1:1.2.11.dfsg-2+deb11u2 | zlib: heap-based buffer | | | | | | | over-read and overflow in | | | | | | | inflate() in inflate.c via a... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-37434 | + +---------------------+ + +------------------------------+--------------------------------------------------------------------+ | | CVE-2023-45853 | | | | zlib: integer overflow and | | | | | | | resultant heap-based buffer | | | | | | | overflow in zipOpenNewFileInZip4_6 | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45853 | +------------------------------+---------------------+----------+-------------------------+------------------------------+--------------------------------------------------------------------+ Python (python-pkg) =================== Total: 10 (UNKNOWN: 0, LOW: 0, MEDIUM: 7, HIGH: 3, CRITICAL: 0) +------------+------------------+----------+-------------------+----------------+---------------------------------------+ | LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | +------------+------------------+----------+-------------------+----------------+---------------------------------------+ | Flask | CVE-2023-30861 | HIGH | 2.1.3 | 2.3.2, 2.2.5 | flask: Possible disclosure of | | | | | | | permanent session cookie due | | | | | | | to missing Vary: Cookie... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-30861 | +------------+------------------+----------+-------------------+----------------+---------------------------------------+ | Jinja2 | CVE-2024-22195 | MEDIUM | 3.1.2 | 3.1.3 | jinja2: HTML attribute | | | | | | | injection when passing user | | | | | | | input as keys to xmlattr... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-22195 | +------------+------------------+ +-------------------+----------------+---------------------------------------+ | Werkzeug | CVE-2023-46136 | | 2.3.6 | 3.0.1, 2.3.8 | python-werkzeug: high | | | | | | | resource consumption | | | | | | | leading to denial of service | | | | | | | -->avd.aquasec.com/nvd/cve-2023-46136 | +------------+------------------+ +-------------------+----------------+---------------------------------------+ | idna | CVE-2024-3651 | | 3.4 | 3.7 | python-idna: potential DoS via | | | | | | | resource consumption via specially | | | | | | | crafted inputs to idna.encode()... | | | | | | | -->avd.aquasec.com/nvd/cve-2024-3651 | +------------+------------------+ +-------------------+----------------+---------------------------------------+ | pip | CVE-2023-5752 | | 22.0.4 | 23.3 | pip: Mercurial configuration | | | | | | | injectable in repo revision | | | | | | | when installing via pip | | | | | | | -->avd.aquasec.com/nvd/cve-2023-5752 | +------------+------------------+ +-------------------+----------------+---------------------------------------+ | requests | CVE-2023-32681 | | 2.28.1 | 2.31.0 | python-requests: Unintended leak | | | | | | | of Proxy-Authorization header | | | | | | | -->avd.aquasec.com/nvd/cve-2023-32681 | +------------+------------------+----------+-------------------+----------------+---------------------------------------+ | setuptools | CVE-2022-40897 | HIGH | 58.1.0 | 65.5.1 | pypa-setuptools: Regular | | | | | | | Expression Denial of Service | | | | | | | (ReDoS) in package_index.py | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40897 | +------------+------------------+----------+-------------------+----------------+---------------------------------------+ | urllib3 | CVE-2023-43804 | MEDIUM | 1.26.16 | 2.0.6, 1.26.17 | python-urllib3: Cookie | | | | | | | request header isn't stripped | | | | | | | during cross-origin redirects | | | | | | | -->avd.aquasec.com/nvd/cve-2023-43804 | + +------------------+ + +----------------+---------------------------------------+ | | CVE-2023-45803 | | | 2.0.7, 1.26.18 | urllib3: Request body not | | | | | | | stripped after redirect from | | | | | | | 303 status changes request... | | | | | | | -->avd.aquasec.com/nvd/cve-2023-45803 | +------------+------------------+----------+-------------------+----------------+---------------------------------------+ | wheel | CVE-2022-40898 | HIGH | 0.37.1 | 0.38.1 | python-wheel: remote attackers | | | | | | | can cause denial of service via | | | | | | | attacker controlled input... | | | | | | | -->avd.aquasec.com/nvd/cve-2022-40898 | +------------+------------------+----------+-------------------+----------------+---------------------------------------+