Debian: >> Debian Linux >> 8.0 Security Vulnerabilities
OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space
CVSS Score
7.5
EPSS Score
0.004
Published
2019-11-12
atop: symlink attack possible due to insecure tempfile handling
CVSS Score
7.8
EPSS Score
0.001
Published
2019-11-12
gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
CVSS Score
9.8
EPSS Score
0.01
Published
2019-11-12
In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup.
CVSS Score
5.5
EPSS Score
0.008
Published
2019-11-11
liboping 1.3.2 allows users reading arbitrary files upon the local system.
CVSS Score
3.3
EPSS Score
0.001
Published
2019-11-09
A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes, such as password hashes.
CVSS Score
6.5
EPSS Score
0.002
Published
2019-11-08
gri before 2.12.18 generates temporary files in an insecure way.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-11-08
clamav 0.91.2 suffers from a floating point exception when using ScanOLE2.
CVSS Score
9.8
EPSS Score
0.007
Published
2019-11-07
Gambas before 3.4.0 allows remote attackers to move or manipulate directory contents or perform symlink attacks due to the creation of insecure temporary directories.
CVSS Score
7.5
EPSS Score
0.017
Published
2019-11-07
viewvc 1.0.3 allows improper access control to files in a repository when using the "forbidden" configuration option.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-11-07