The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian

Linux kernel: out-of-bounds memory reading via ppp_cp_parse_cr
An attacker can force a read at an invalid address via ppp_cp_parse_cr() of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2020-AVI-642, CERTFR-2020-AVI-654, CERTFR-2020-AVI-668, CERTFR-2020-AVI-672, CERTFR-2020-AVI-678, CVE-2020-25643, DLA-2417-1, DLA-2420-1, DSA-4774-1, openSUSE-SU-2020:1655-1, openSUSE-SU-2020:1698-1, RHBUG-1879981, SSA:2020-295-01, SUSE-SU-2020:2904-1, SUSE-SU-2020:2905-1, SUSE-SU-2020:2906-1, SUSE-SU-2020:2907-1, SUSE-SU-2020:2980-1, SUSE-SU-2020:2999-1, SUSE-SU-2020:3014-1, VIGILANCE-VUL-33497
Linux kernel: overload via Zero Length Bvec
An attacker can trigger an overload via Zero Length Bvec of the Linux kernel, in order to trigger a denial of service...
CERTFR-2020-AVI-614, CERTFR-2020-AVI-637, CERTFR-2020-AVI-642, CERTFR-2020-AVI-668, CERTFR-2020-AVI-672, CERTFR-2020-AVI-678, CVE-2020-25641, DLA-2385-1, DLA-2420-1, openSUSE-SU-2020:1655-1, openSUSE-SU-2020:1698-1, SUSE-SU-2020:2904-1, SUSE-SU-2020:2905-1, SUSE-SU-2020:2906-1, SUSE-SU-2020:2907-1, SUSE-SU-2020:2980-1, SUSE-SU-2020:2999-1, SUSE-SU-2020:3014-1, USN-4576-1, VIGILANCE-VUL-33443
Xen: denial of service
An attacker, inside a guest system, can trigger a fatal error of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-593, CERTFR-2020-AVI-594, CTX282314, CVE-2020-25601, DSA-4769-1, FEDORA-2020-d46fe34349, FEDORA-2020-f668e579be, openSUSE-SU-2020:1608-1, SUSE-SU-2020:14521-1, SUSE-SU-2020:2786-1, SUSE-SU-2020:2787-1, SUSE-SU-2020:2788-1, SUSE-SU-2020:2789-1, SUSE-SU-2020:2790-1, SUSE-SU-2020:2791-1, SUSE-SU-2020:2822-1, VIGILANCE-VUL-33394, XSA-344
Xen: denial of service via channel limits
An attacker, inside a guest 32 bits system, can trigger a memory corruption via the channel limits in Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-593, CERTFR-2020-AVI-594, CTX282314, CVE-2020-25600, DSA-4769-1, FEDORA-2020-d46fe34349, FEDORA-2020-f668e579be, openSUSE-SU-2020:1608-1, SUSE-SU-2020:14521-1, SUSE-SU-2020:2786-1, SUSE-SU-2020:2787-1, SUSE-SU-2020:2788-1, SUSE-SU-2020:2789-1, SUSE-SU-2020:2790-1, SUSE-SU-2020:2791-1, SUSE-SU-2020:2822-1, VIGILANCE-VUL-33392, XSA-342
Xen: denial of service via channels
An attacker, inside a guest system, can trigger a fatal error via channel reset in Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-593, CERTFR-2020-AVI-594, CTX282314, CVE-2020-25597, DSA-4769-1, FEDORA-2020-d46fe34349, FEDORA-2020-f668e579be, openSUSE-SU-2020:1608-1, SUSE-SU-2020:14521-1, SUSE-SU-2020:2786-1, SUSE-SU-2020:2787-1, SUSE-SU-2020:2788-1, SUSE-SU-2020:2789-1, SUSE-SU-2020:2790-1, SUSE-SU-2020:2791-1, SUSE-SU-2020:2822-1, VIGILANCE-VUL-33389, XSA-338
Xen: denial of service via PCI
An attacker, inside a guest system, can trigger a fatal error via PCI of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-593, CERTFR-2020-AVI-594, CTX282314, CVE-2020-25595, DSA-4769-1, FEDORA-2020-d46fe34349, FEDORA-2020-f668e579be, openSUSE-SU-2020:1608-1, SUSE-SU-2020:14521-1, SUSE-SU-2020:2786-1, SUSE-SU-2020:2787-1, SUSE-SU-2020:2788-1, SUSE-SU-2020:2789-1, SUSE-SU-2020:2790-1, SUSE-SU-2020:2791-1, SUSE-SU-2020:2822-1, VIGILANCE-VUL-33388, XSA-337
Xen: denial of service via timers
An attacker, inside a guest system, can trigger a fatal error via Xen timers, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-593, CERTFR-2020-AVI-594, CTX282314, CVE-2020-25604, DSA-4769-1, FEDORA-2020-d46fe34349, FEDORA-2020-f668e579be, openSUSE-SU-2020:1608-1, SUSE-SU-2020:14521-1, SUSE-SU-2020:2786-1, SUSE-SU-2020:2787-1, SUSE-SU-2020:2788-1, SUSE-SU-2020:2789-1, SUSE-SU-2020:2790-1, SUSE-SU-2020:2791-1, SUSE-SU-2020:2822-1, VIGILANCE-VUL-33387, XSA-336
Xen: denial of service via MSR_MISC_ENABLE
An attacker, inside a guest system, can trigger a fatal error via MSR_MISC_ENABLE of Xen, in order to trigger a denial of service on the host system...
CERTFR-2020-AVI-593, CERTFR-2020-AVI-594, CTX282314, CVE-2020-25602, DSA-4769-1, FEDORA-2020-d46fe34349, FEDORA-2020-f668e579be, openSUSE-SU-2020:1608-1, SUSE-SU-2020:2786-1, SUSE-SU-2020:2787-1, SUSE-SU-2020:2788-1, SUSE-SU-2020:2789-1, SUSE-SU-2020:2790-1, SUSE-SU-2020:2791-1, VIGILANCE-VUL-33385, XSA-333
Linux kernel: NULL pointer dereference via mm/hugetlb.c
An attacker can force a NULL pointer to be dereferenced via mm/hugetlb.c of the Linux kernel, in order to trigger a denial of service...
CERTFR-2020-AVI-614, CERTFR-2020-AVI-637, CVE-2020-25285, DLA-2385-1, DLA-2420-1, SSA:2020-295-01, USN-4576-1, USN-4579-1, VIGILANCE-VUL-33316
OpenSSL: information disclosure via DH Pre-master Secret Raccoon
An attacker can bypass access restrictions to data via DH Pre-master Secret Raccoon of OpenSSL, in order to obtain sensitive information...
CERTFR-2020-AVI-565, CVE-2020-1968, DLA-2378-1, SUSE-SU-2020:14491-1, SUSE-SU-2020:14511-1, SUSE-SU-2020:2634-1, USN-4504-1, VIGILANCE-VUL-33287
Our database contains other pages. You can request a free trial to read them.

Display information about Debian: