The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Stretch

Firefox 3.5, Thunderbird 3.0, SeaMonkey: several vulnerabilities
Several vulnerabilities of Firefox 3.5, Thunderbird 3.0 and SeaMonkey can be used by an attacker to execute code on victim's computer...
520189, 532730, 552090, 564461, 568465, 572232, 576070, 576075, 576447, 579593, 579655, 579744, 580445, 581784, 583225, 583520, 584357, 584512, 585284, 585815, BID-43091, BID-43094, BID-43095, BID-43096, BID-43097, BID-43100, BID-43101, BID-43102, BID-43104, BID-43106, BID-43108, BID-43118, BID-43222, CERTA-2010-AVI-419, CERTA-2010-AVI-420, CERTFR-2014-AVI-244, CVE-2010-2760, CVE-2010-2763, CVE-2010-2764, CVE-2010-2765, CVE-2010-2766, CVE-2010-2767, CVE-2010-2768, CVE-2010-2769, CVE-2010-2770, CVE-2010-3131, CVE-2010-3166, CVE-2010-3167, CVE-2010-3168, CVE-2010-3169, CVE-2010-3171, DSA-2106-1, DSA-2106-2, FEDORA-2010-14352, FEDORA-2010-14362, FEDORA-2010-15115, FEDORA-2010-15135, FEDORA-2010-15184, MFSA 2010-49, MFSA 2010-50, MFSA 2010-51, MFSA 2010-52, MFSA 2010-53, MFSA 2010-54, MFSA 2010-55, MFSA 2010-56, MFSA 2010-57, MFSA 2010-58, MFSA 2010-60, MFSA 2010-61, MFSA 2010-62, MFSA 2010-63, openSUSE-SU-2010:0632-2, openSUSE-SU-2010:0632-3, openSUSE-SU-2014:1100-1, RHSA-2010:0680-01, SSA:2010-253-02, SSA:2010-253-03, SUSE-SA:2010:049, VIGILANCE-VUL-9908, VU#707943, ZDI-10-171, ZDI-10-172, ZDI-10-173, ZDI-10-176
Horde: Cross Site Scripting
An attacker can use a feature of the Horde Application Framework in order to generate a Cross Site Scripting in Horde...
BID-43001, CERTA-2003-AVI-004, CVE-2010-3077, DSA-2278-1, VIGILANCE-VUL-9906
Linux kernel: memory disclosure via xfs_ioc_fsgetxattr
An attacker can use the XFS_IOC_FSGETXATTR IOCTL of the XFS driver in order to read kernel data...
630804, CVE-2010-3078, DSA-2110-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, FEDORA-2011-2134, openSUSE-SU-2010:0634-1, openSUSE-SU-2010:0664-1, openSUSE-SU-2010:0720-1, openSUSE-SU-2010:0895-1, openSUSE-SU-2013:0927-1, RHSA-2010:0839-01, RHSA-2011:0007-01, SUSE-SA:2010:041, SUSE-SA:2010:044, SUSE-SA:2010:046, SUSE-SA:2010:050, SUSE-SA:2010:054, SUSE-SA:2011:007, SUSE-SU-2011:0928-1, VIGILANCE-VUL-9902, VMSA-2011-0004.2, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
Squid: denial of service
An attacker can send malicious packets, in order to stop the Squid proxy...
BID-42982, CERTA-2010-AVI-417, CVE-2010-3072, DSA-2111-1, FEDORA-2010-14149, FEDORA-2010-14222, FEDORA-2010-14236, MDVSA-2010:187, openSUSE-SU-2010:0727-1, RHSA-2011:0545-01, SQUID-2010:3, SUSE-SR:2010:019, VIGILANCE-VUL-9901
Linux kernel: denial of service irda_bind
An attacker can use irda_bind() in order to stop the kernel...
628770, BID-42900, BID-42936, CVE-2010-2954, DSA-2110-1, FEDORA-2010-14235, FEDORA-2010-14832, FEDORA-2010-14878, openSUSE-SU-2010:0634-1, openSUSE-SU-2010:0664-1, openSUSE-SU-2010:0720-1, openSUSE-SU-2010:0895-1, SUSE-SA:2010:041, SUSE-SA:2010:046, SUSE-SA:2010:050, SUSE-SA:2010:054, SUSE-SA:2011:007, VIGILANCE-VUL-9893
Linux kernel: buffer overflow of bcm_tx_setup et bcm_rx_setup
An attacker can generate a buffer overflow using CAN BCM in order to elevate his privileges or to execute code...
625699, BID-42585, CVE-2010-2959, DSA-2094-1, FEDORA-2010-13903, MDVSA-2010:188, MDVSA-2010:198, openSUSE-SU-2010:0634-1, openSUSE-SU-2010:0654-1, openSUSE-SU-2010:0664-1, openSUSE-SU-2013:0927-1, SUSE-SA:2010:040, SUSE-SA:2010:041, SUSE-SA:2010:043, SUSE-SA:2010:046, SUSE-SA:2011:007, VIGILANCE-VUL-9866
Quagga Routing Suite: two vulnerabilities
Two vulnerabilities in Quagga Routing Suite can be used by an attacker to create a denial of service or possibly to execute code...
626783, 626795, BID-42635, BID-42642, CVE-2010-2948, CVE-2010-2949, DSA-2104-1, FEDORA-2010-13928, FEDORA-2010-14002, FEDORA-2010-14009, MDVSA-2010:174, openSUSE-SU-2010:0984-1, RHSA-2010:0785-01, RHSA-2010:0945-01, SUSE-SR:2010:022, VIGILANCE-VUL-9877
FreeType: several memory corruptions
An attacker can invite the victim to display a document using a malicious font with an application linked to FreeType, in order to execute code on his computer...
30644, 30656, 30657, 625630, 625632, BID-42285, BID-42621, BID-42624, CVE-2010-2805, CVE-2010-2806, CVE-2010-2807, CVE-2010-3053, CVE-2010-3054, DSA-2105-1, FEDORA-2010-15705, FEDORA-2010-15785, MDVSA-2010:156, MDVSA-2010:157, openSUSE-SU-2010:0549-1, RHSA-2010:0736-01, RHSA-2010:0737-01, RHSA-2010:0864-02, SUSE-SR:2010:016, SUSE-SR:2010:019, SUSE-SU-2012:0553-1, VIGILANCE-VUL-9818
phpMyAdmin: execution pf PHP code via setup.php
An attacker can use parameters of setup.php script in order to inject PHP code in phpMyAdmin...
BID-42591, CERTA-2010-AVI-397, CVE-2010-3055, DSA-2097-1, DSA-2097-2, MDVSA-2010:163, PMASA-2010-4, VIGILANCE-VUL-9872
phpMyAdmin: several Cross Site Scripting
An attacker can use multiple features to generate several Cross Site Scripting in phpMyAdmin...
BID-42584, CVE-2010-3056, DSA-2097-1, DSA-2097-2, FEDORA-2010-13249, FEDORA-2010-13258, FEDORA-2010-13402, MDVSA-2010:163, MDVSA-2010:164, PMASA-2010-5, VIGILANCE-VUL-9870
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Stretch: