Vulnerabilities (CVE)

Filtered by vendor Debian Subscribe
Filtered by product Debian Linux
Total 9159 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-1372 2 Apple, Debian 3 Cups, Mac Os X, Debian Linux 2025-04-03 5.0 MEDIUM 7.5 HIGH
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta.
CVE-2000-0076 2 Berkeley, Debian 2 Nvi, Debian Linux 2025-04-03 2.1 LOW N/A
nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.
CVE-1999-0742 1 Debian 1 Debian Linux 2025-04-03 5.0 MEDIUM N/A
The Debian mailman package uses weak authentication, which allows attackers to gain privileges.
CVE-2005-0004 3 Debian, Mariadb, Oracle 3 Debian Linux, Mariadb, Mysql 2025-04-03 4.6 MEDIUM N/A
The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files.
CVE-2001-0112 2 Debian, Sam Lantinga 2 Debian Linux, Splitvt 2025-04-03 7.2 HIGH N/A
Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands.
CVE-2000-0145 1 Debian 1 Debian Linux 2025-04-03 7.5 HIGH N/A
The libguile.so library file used by gnucash in Debian GNU/Linux is installed with world-writable permissions.
CVE-2001-0457 1 Debian 1 Debian Linux 2025-04-03 5.0 MEDIUM N/A
man2html before 1.5-22 allows remote attackers to cause a denial of service (memory exhaustion).
CVE-2000-1135 1 Debian 1 Debian Linux 2025-04-03 4.6 MEDIUM N/A
fshd (fsh daemon) in Debian GNU/Linux allows local users to overwrite files of other users via a symlink attack.
CVE-1999-1496 3 Debian, Redhat, Todd Miller 3 Debian Linux, Linux, Sudo 2025-04-03 2.1 LOW N/A
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.
CVE-2006-1753 1 Debian 1 Debian Linux 2025-04-03 3.6 LOW N/A
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
CVE-2004-0455 2 Debian, Www-sql Project 2 Debian Linux, Www-sql 2025-04-03 7.2 HIGH N/A
Buffer overflow in cgi.c in www-sql before 0.5.7 allows local users to execute arbitrary code via a web page that is processed by www-sql.
CVE-1999-1572 5 Debian, Freebsd, Mandrakesoft and 2 more 6 Debian Linux, Freebsd, Mandrake Linux and 3 more 2025-04-03 2.1 LOW N/A
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
CVE-2001-0977 4 Debian, Mandrakesoft, Openldap and 1 more 6 Debian Linux, Mandrake Linux, Mandrake Linux Corporate Server and 3 more 2025-04-03 5.0 MEDIUM N/A
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
CVE-2003-0098 2 Apcupsd, Debian 2 Apcupsd, Debian Linux 2025-04-03 10.0 HIGH N/A
Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server.
CVE-2001-0125 3 Debian, Exmh, Mandrakesoft 4 Debian Linux, Exmh, Mandrake Linux and 1 more 2025-04-03 1.2 LOW N/A
exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file.
CVE-2005-1855 2 Debian, Sukria 2 Debian Linux, Backup Manager 2025-04-03 2.1 LOW N/A
Backup Manager (backup-manager) before 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information.
CVE-2004-0434 2 Debian, Heimdal Project 2 Debian Linux, Heimdal 2025-04-03 10.0 HIGH 9.8 CRITICAL
k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow.
CVE-2004-0833 1 Debian 1 Debian Linux 2025-04-03 7.5 HIGH N/A
Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail as an open mail relay and send spam messages.
CVE-2005-0211 2 Debian, Squid-cache 2 Debian Linux, Squid 2025-04-03 7.5 HIGH N/A
Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
CVE-2006-1531 2 Debian, Mozilla 4 Debian Linux, Firefox, Seamonkey and 1 more 2025-04-03 7.5 HIGH N/A
Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors related to DHTML. NOTE: due to the lack of sufficient public details from the vendor as of 20060413, it is unclear how CVE-2006-1529, CVE-2006-1530, CVE-2006-1531, and CVE-2006-1723 are different.