Computer vulnerabilities of Debian

Xen: NULL pointer dereference via FIFO Event Channels Structure
An attacker, inside a guest system, can force a NULL pointer to be dereferenced via FIFO Event Channels Structure of Xen, in order to trigger a denial of service on the host system...
CVE-2020-29571, DSA-4812-1, FEDORA-2020-64859a826b, FEDORA-2020-df772b417b, openSUSE-SU-2020:2313-1, openSUSE-SU-2020:2331-1, SUSE-SU-2020:14578-1, SUSE-SU-2020:3880-1, SUSE-SU-2020:3881-1, SUSE-SU-2020:3913-1, SUSE-SU-2020:3914-1, SUSE-SU-2020:3915-1, SUSE-SU-2020:3916-1, SUSE-SU-2020:3945-1, VIGILANCE-VUL-34123, XSA-359

Xen: denial of service via X86 HVM Context Switch Recursion
An attacker, inside a guest system, can trigger a fatal error via X86 HVM Context Switch Recursion of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-824, CVE-2020-29566, DSA-4812-1, FEDORA-2020-64859a826b, FEDORA-2020-df772b417b, openSUSE-SU-2020:2313-1, openSUSE-SU-2020:2331-1, SUSE-SU-2020:14578-1, SUSE-SU-2020:3880-1, SUSE-SU-2020:3881-1, SUSE-SU-2020:3913-1, SUSE-SU-2020:3914-1, SUSE-SU-2020:3915-1, SUSE-SU-2020:3916-1, SUSE-SU-2020:3945-1, VIGILANCE-VUL-34115, XSA-348

Xen: memory leak via XS_RESET_WATCHES
An attacker, inside a guest system, can create a memory leak via XS_RESET_WATCHES of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-824, CERTFR-2020-AVI-825, CTX286756, CVE-2020-29485, DSA-4812-1, FEDORA-2020-64859a826b, FEDORA-2020-df772b417b, VIGILANCE-VUL-34114, XSA-330

Xen: information disclosure via Xenstored Watch Notifications
An attacker, inside a guest system, can bypass access restrictions to data via Xenstored Watch Notifications of Xen, in order to obtain sensitive information on the host system...
CERTFR-2020-AVI-824, CERTFR-2020-AVI-825, CTX286756, CVE-2020-29480, DSA-4812-1, FEDORA-2020-64859a826b, FEDORA-2020-df772b417b, openSUSE-SU-2020:2313-1, openSUSE-SU-2020:2331-1, SUSE-SU-2020:14578-1, SUSE-SU-2020:3880-1, SUSE-SU-2020:3881-1, SUSE-SU-2020:3913-1, SUSE-SU-2020:3914-1, SUSE-SU-2020:3915-1, SUSE-SU-2020:3916-1, SUSE-SU-2020:3945-1, VIGILANCE-VUL-34113, XSA-115

Xen: denial of service via Xenstored Domain Cleanup
An attacker, inside a guest system, can trigger a fatal error via Xenstored Domain Cleanup of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-824, CVE-2020-29483, DSA-4812-1, FEDORA-2020-64859a826b, FEDORA-2020-df772b417b, openSUSE-SU-2020:2313-1, openSUSE-SU-2020:2331-1, SUSE-SU-2020:14578-1, SUSE-SU-2020:3880-1, SUSE-SU-2020:3881-1, SUSE-SU-2020:3913-1, SUSE-SU-2020:3914-1, SUSE-SU-2020:3915-1, SUSE-SU-2020:3916-1, SUSE-SU-2020:3945-1, VIGILANCE-VUL-34112, XSA-325

Xen: denial of service via Xenstored Watchs
An attacker, inside a guest system, can trigger a fatal error via Xenstored Watchs of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-824, CVE-2020-29484, DSA-4812-1, FEDORA-2020-64859a826b, FEDORA-2020-df772b417b, openSUSE-SU-2020:2313-1, openSUSE-SU-2020:2331-1, SUSE-SU-2020:14578-1, SUSE-SU-2020:3880-1, SUSE-SU-2020:3881-1, SUSE-SU-2020:3913-1, SUSE-SU-2020:3914-1, SUSE-SU-2020:3915-1, SUSE-SU-2020:3916-1, SUSE-SU-2020:3945-1, VIGILANCE-VUL-34111, XSA-324

OpenStack Horizon: open redirect via Workflow Forms
An attacker can deceive the user via Workflow Forms of OpenStack Horizon, in order to redirect him to a malicious site...
1865026, CVE-2020-29565, DSA-4820-1, OSSA-2020-008, USN-4675-1, VIGILANCE-VUL-34042

QEMU: assertion error via usb_packet_map
An attacker, inside a guest system, can force an assertion error via usb_packet_map() of QEMU, in order to trigger a denial of service on the host system...
CVE-2020-25723, DLA-2469-1, SUSE-SU-2020:14557-1, USN-4650-1, VIGILANCE-VUL-33989

Mutt: disabling TLS
An attacker can force Mutt to no use TLS with an IMAP server...
CVE-2020-28896, DLA-2472-1, openSUSE-SU-2020:2127-1, openSUSE-SU-2020:2128-1, openSUSE-SU-2020:2141-1, openSUSE-SU-2020:2157-1, openSUSE-SU-2020:2158-1, SSA:2020-329-01, SUSE-SU-2020:14551-1, SUSE-SU-2020:3568-1, SUSE-SU-2020:3632-1, USN-4645-1, VIGILANCE-VUL-33972

Hibernate ORM: SQL injection via Comments
An attacker can use a SQL injection via Comments of Hibernate ORM, in order to read or alter data...
CVE-2020-25638, DLA-2512-1, RHSA-2020:5174-01, RHSA-2020:5175-01, RHSA-2020:5254-01, RHSA-2020:5340-01, RHSA-2020:5341-01, RHSA-2020:5342-01, RHSA-2020:5344-01, RHSA-2020:5526-01, RHSA-2020:5527-01, RHSA-2020:5528-01, RHSA-2020:5533-01, VIGILANCE-VUL-33940

Our database contains other pages. You can request a free trial to read them.

Display information about Debian:

https://www.debian.org/