The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Jessie

OpenJPEG: buffer overflow via opj_t2_encode_packet
An attacker can generate a buffer overflow via opj_t2_encode_packet() of OpenJPEG, in order to trigger a denial of service, and possibly to run code...
bulletinjul2018, CVE-2017-14039, DSA-4013-1, openSUSE-SU-2017:2685-1, openSUSE-SU-2017:2686-1, SSA:2017-279-02, VIGILANCE-VUL-24043
QEMU: information disclosure via 9pfs VirtFS
A local attacker, inside a guest system, can read a memory fragment via 9pfs VirtFS of QEMU, in order to obtain sensitive information on the host system...
CVE-2017-15038, DLA-1128-1, DLA-1129-1, DLA-1497-1, DSA-4213-1, FEDORA-2017-9149114fba, openSUSE-SU-2017:2938-1, openSUSE-SU-2017:2941-1, SUSE-SU-2017:2924-1, SUSE-SU-2017:2936-1, SUSE-SU-2017:2946-1, SUSE-SU-2017:2963-1, SUSE-SU-2017:2969-1, SUSE-SU-2017:3084-1, USN-3575-1, USN-3575-2, VIGILANCE-VUL-24039
Go: denial of service via MIME Request
An attacker can generate a fatal error via MIME Request of Go, in order to trigger a denial of service...
CVE-2017-1000098, DLA-1123-1, VIGILANCE-VUL-24038
X.Org Server: buffer overflow via xkb
An attacker can generate a buffer overflow via xkb of X.Org Server, in order to trigger a denial of service, and possibly to run code...
bulletinjan2018, CVE-2017-13723, DLA-1186-1, DSA-4000-1, SSA:2017-279-03, USN-3453-1, VIGILANCE-VUL-24027
X.Org Server: memory corruption via Xext/shm Shmseg Resource Id
An attacker can generate a memory corruption via Xext/shm Shmseg Resource Id of X.Org Server, in order to trigger a denial of service, and possibly to run code...
bulletinjan2018, CVE-2017-13721, DSA-4000-1, SSA:2017-279-03, USN-3453-1, VIGILANCE-VUL-24026
OpenSSH: empty file creation via read-only sftp-server
An attacker can use sftp-server of OpenSSH, in order to create an empty file, even if the read-only mode is selected...
bulletinjan2019, CVE-2017-15906, DLA-1500-1, DLA-1500-2, FEDORA-2017-4862a3bfb1, FEDORA-2017-78f0991378, FEDORA-2017-96d1995b70, JSA10880, openSUSE-SU-2017:3243-1, RHSA-2018:0980-01, SUSE-SU-2018:2275-1, SUSE-SU-2018:2685-1, SUSE-SU-2018:3540-1, USN-3538-1, VIGILANCE-VUL-24020
curl: out-of-bounds memory reading via FTP PWD
An attacker can force a read at an invalid address via FTP PWD of curl, in order to trigger a denial of service, or to obtain sensitive information...
2011879, bulletinapr2018, CVE-2017-1000254, DLA-1121-1, DSA-2019-114, DSA-2020-030, DSA-3992-1, FEDORA-2017-601b4c20a4, HT208331, HT208394, JSA10874, K-511316, openSUSE-SU-2017:2880-1, RHSA-2018:3558-01, SSA:2017-279-01, STORM-2019-002, USN-3441-1, USN-3441-2, VIGILANCE-VUL-24018
WordPress Core: privilege escalation via wp_signups.activation_key
An attacker can bypass restrictions via wp_signups.activation_key of WordPress, in order to escalate his privileges...
38474, CVE-2017-14990, DLA-1151-1, DLA-1151-2, DSA-3997-1, VIGILANCE-VUL-24012
Dnsmasq: seven vulnerabilities
An attacker can use several vulnerabilities of Dnsmasq...
ARUBA-PSA-2017-005, CERTFR-2017-AVI-329, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, DLA-1124-1, DSA-3989-1, FEDORA-2017-24f067299e, FEDORA-2017-515264ae24, openSUSE-SU-2017:2633-1, OSSN/OSSN-0082, RHSA-2017:2836-01, RHSA-2017:2837-01, RHSA-2017:2838-01, RHSA-2017:2839-01, RHSA-2017:2840-01, RHSA-2017:2841-01, SSA:2017-275-01, SUSE-SU-2017:2616-1, SUSE-SU-2017:2617-1, SUSE-SU-2017:2619-1, Synology-SA-17:59, USN-3430-1, USN-3430-2, USN-3430-3, VIGILANCE-VUL-24005, VU#973527
OpenCV: buffer overflow via FillColorRow1
An attacker can generate a buffer overflow via FillColorRow1() of OpenCV, in order to trigger a denial of service, and possibly to run code...
CVE-2017-14136, DLA-1117-1, DLA-1438-1, openSUSE-SU-2018:1385-1, VIGILANCE-VUL-23988
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Jessie: