The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Jessie

Linux kernel: use after free via hns_nic_net_xmit_hw
An attacker can force the usage of a freed memory area via hns_nic_net_xmit_hw() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CVE-2017-18218, DSA-4188-1, VIGILANCE-VUL-25441
Linux kernel: NULL pointer dereference via cluster/nodemanager.c
An attacker can force a NULL pointer to be dereferenced via cluster/nodemanager.c of the Linux kernel, in order to trigger a denial of service...
CERTFR-2018-AVI-462, CERTFR-2018-AVI-508, CVE-2017-18216, DLA-1369-1, DSA-4187-1, DSA-4188-1, USN-3776-1, USN-3776-2, USN-3798-1, USN-3798-2, VIGILANCE-VUL-25440
VLC: buffer overflow via ParseJSS Double Increment
An attacker can generate a buffer overflow via ParseJSS() Double Increment of VLC, in order to trigger a denial of service, and possibly to run code...
CVE-2017-8311, DSA-3899-1, VIGILANCE-VUL-22812
Linux kernel: denial of service in the CIFS trafic encryption
An attacker can generate a fatal error in setup_ntlmv2_rsp() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2018-AVI-161, CERTFR-2018-AVI-197, CERTFR-2019-AVI-044, CVE-2018-1066, DLA-1422-1, DLA-1422-2, DSA-4187-1, DSA-4188-1, SUSE-SU-2018:0834-1, SUSE-SU-2018:0848-1, USN-3880-1, USN-3880-2, VIGILANCE-VUL-25432
Memcached: security improvement for the UDP transport
The security of Memcached was improved for UDP transport, which now defaults to disabled to limit the possibilities of DDos reflected attacks (see VIGILANCE-ACTU-5745)...
bulletinjan2019, CVE-2018-1000115, DSA-4218-1, FEDORA-2018-122ea355a7, FEDORA-2018-8ff86925c3, openSUSE-SU-2018:0968-1, SUSE-SU-2018:1326-1, USN-3588-1, VIGILANCE-VUL-25431
Linux kernel: denial of service via ip6t_do_table
An attacker can generate a fatal error via ip6t_do_table() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2018-AVI-250, CERTFR-2018-AVI-257, CERTFR-2018-AVI-308, CERTFR-2018-AVI-319, CVE-2018-1065, DSA-4188-1, FEDORA-2018-2bce10900e, FEDORA-2018-884a105c04, openSUSE-SU-2018:1418-1, RHSA-2018:2948-01, SUSE-SU-2018:1366-1, SUSE-SU-2018:1816-1, SUSE-SU-2018:1855-1, USN-3654-1, USN-3654-2, USN-3656-1, VIGILANCE-VUL-25430
RubyGems: multiple vulnerabilities
An attacker can use several vulnerabilities of RubyGems...
CVE-2018-1000073, CVE-2018-1000074, CVE-2018-1000075, CVE-2018-1000076, CVE-2018-1000077, CVE-2018-1000078, CVE-2018-1000079, DLA-1336-1, DLA-1337-1, DLA-1352-1, DLA-1358-1, DLA-1421-1, DLA-1480-1, DLA-1796-1, DSA-4219-1, DSA-4259-1, FEDORA-2018-1fffa787e7, FEDORA-2018-40ed78700c, openSUSE-SU-2019:1771-1, RHSA-2018:3729-01, RHSA-2018:3730-01, RHSA-2018:3731-01, RHSA-2019:2028-01, RHSA-2020:0542-01, RHSA-2020:0591-01, RHSA-2020:0663-01, RHSA-2020:1963-01, RHSA-2020:2212-01, RHSA-2020:2288-01, SUSE-SU-2019:1804-1, SUSE-SU-2020:1570-1, USN-3621-1, USN-3621-2, USN-3685-1, VIGILANCE-VUL-25429
Dovecot: denial of service
An attacker can generate a fatal error of Dovecot, in order to trigger a denial of service...
CVE-2017-14461, CVE-2017-15130, DLA-1333-1, DSA-4130-1, FEDORA-2018-52d79f4f36, openSUSE-SU-2018:1134-1, openSUSE-SU-2018:2642-1, SUSE-SU-2018:2632-1, USN-3587-1, USN-3587-2, VIGILANCE-VUL-25428
Apache trafficserver: multiple vulnerabilities
An attacker can use several vulnerabilities of Apache trafficserver...
CVE-2017-5660, CVE-2017-7671, DSA-4128-1, VIGILANCE-VUL-25427
libjgraphx-java: external XML entity injection
An attacker can transmit malicious XML data to libjgraphx-java, in order to read a file, scan sites, or trigger a denial of service...
CVE-2017-18197, DLA-1299-1, FEDORA-2018-b268b5bbb5, FEDORA-2018-b3f8bee2e0, openSUSE-SU-2018:0616-1, VIGILANCE-VUL-25426
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Jessie: