The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Stretch

Linux kernel: memory corruption via do_exit
A local attacker can create an error calling BUG(), in order to alter a value located in kernel memory...
BID-45159, CERTA-2002-AVI-280, CVE-2010-4258, DSA-2153-1, FEDORA-2010-18983, MDVSA-2011:029, openSUSE-SU-2011:0003-1, openSUSE-SU-2011:0004-1, openSUSE-SU-2011:0048-1, openSUSE-SU-2013:0927-1, SUSE-SA:2011:001, SUSE-SA:2011:002, SUSE-SA:2011:004, SUSE-SA:2011:005, SUSE-SA:2011:007, SUSE-SA:2011:008, SUSE-SU-2011:0635-1, SUSE-SU-2011:0928-1, VIGILANCE-VUL-10176
OpenSSL: changing ciphersuite
When a server uses OpenSSL, a remote attacker can change the ciphersuite, in order to force the usage of a weaker algorithm...
BID-45164, BID-45254, c02737002, c03819065, CERTA-2010-AVI-590, CERTA-2011-AVI-052, CERTA-2011-AVI-609, CERTA-2012-AVI-479, CVE-2008-7270, CVE-2010-4180, DSA-2141-1, ESX410-201208101-SG, ESX410-201208102-SG, ESX410-201208103-SG, ESX410-201208104-SG, ESX410-201208105-SG, ESX410-201208106-SG, ESX410-201208107-SG, ESXi410-201208101-SG, ESXi500-201212102-SG, FEDORA-2010-18736, FEDORA-2010-18765, HPSBPV02891, HPSBUX02638, MDVSA-2010:248, openSUSE-SU-2011:0014-1, openSUSE-SU-2011:0845-1, openSUSE-SU-2012:0199-1, openSUSE-SU-2012:0229-1, PSN-2012-11-767, RHSA-2010:0977-01, RHSA-2010:0978-01, RHSA-2010:0979-01, RHSA-2011:0896-01, RHSA-2011:0897-01, SA53, SSA:2010-340-01, SSRT100339, SUSE-SR:2011:001, SUSE-SR:2011:009, SUSE-SU-2011:0847-1, VIGILANCE-VUL-10173, VMSA-2011-0004.2, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005, VMSA-2012-0005.2, VMSA-2012-0012.1, VMSA-2012-0012.2, VMSA-2012-0013, VMSA-2012-0013.2, VMSA-2013-0003
MIT krb5: vulnerabilities of checksum
Several vulnerabilities of MIT krb5 can be used by an attacker, in order to alter Kerberos messages...
BID-45116, BID-45117, BID-45118, BID-45122, c02657328, CERTA-2002-AVI-272, CERTA-2010-AVI-571, CERTA-2013-AVI-543, CERTFR-2014-AVI-112, CERTFR-2014-AVI-244, CVE-2010-1323, CVE-2010-1324, CVE-2010-4020, CVE-2010-4021, DSA-2129-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, FEDORA-2010-18409, FEDORA-2010-18425, HPSBUX02623, MDVSA-2010:245, MDVSA-2010:246, MITKRB5-SA-2010-007, openSUSE-SU-2010:1053-1, RHSA-2010:0925-01, RHSA-2010:0926-01, SSRT100355, SUSE-SR:2010:023, SUSE-SR:2010:024, VIGILANCE-VUL-10168, VMSA-2011-0004.2, VMSA-2011-0007, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
phpMyAdmin: Cross Site Scripting via db
An attacker can use the database search script, in order to inject JavaScript code in phpMyAdmin...
BID-45100, CERTA-2003-AVI-003, CERTA-2010-AVI-572, CVE-2010-4329, DSA-2139-1, FEDORA-2010-18343, FEDORA-2010-18371, MDVSA-2010:244, PMASA-2010-8, VIGILANCE-VUL-10165
Linux kernel: three vulnerabilities of Econet
A local attacker can use an Econet socket, in order to create a denial of service or to elevate his privileges...
BID-45072, CERTA-2002-AVI-272, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, DSA-2126-1, MDVSA-2010:257, MDVSA-2011:051, openSUSE-SU-2011:0346-1, openSUSE-SU-2011:0399-1, SUSE-SA:2011:005, SUSE-SA:2011:007, SUSE-SA:2011:008, SUSE-SA:2011:017, SUSE-SA:2011:020, SUSE-SU-2011:0635-1, SUSE-SU-2011:0928-1, VIGILANCE-VUL-10157
Linux kernel: denial of service via thinkpad-acpi
When ThinkPad and X.org are used, a local attacker can stop the system...
652122, CERTA-2002-AVI-272, CVE-2010-3448, DSA-2126-1, VIGILANCE-VUL-10156
Linux kernel: denial of service via xen
An attacker, who is located in a xen guest system, can reopen a XenBus device, so kernel resources are never freed, which creates a denial of service...
636411, BID-45039, CERTA-2002-AVI-280, CVE-2010-3699, DSA-2153-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, openSUSE-SU-2011:0159-1, openSUSE-SU-2011:0346-1, openSUSE-SU-2011:0399-1, openSUSE-SU-2013:0927-1, RHSA-2011:0004-01, SUSE-SA:2011:005, SUSE-SA:2011:012, SUSE-SA:2011:017, SUSE-SA:2011:020, VIGILANCE-VUL-10153, VMSA-2011-0004.2, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
Linux kernel: denial of service via unix socket
A local attacker can use several unix sockets, in order to create a denial of service...
BID-45037, CERTA-2002-AVI-280, CVE-2010-4249, DSA-2153-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, FEDORA-2010-18983, openSUSE-SU-2012:0799-1, openSUSE-SU-2012:1439-1, RHSA-2011:0007-01, RHSA-2011:0162-01, RHSA-2011:0303-01, RHSA-2011:0330-01, VIGILANCE-VUL-10149, VMSA-2011-0004.2, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
Linux kernel: denial of service via posix-cpu-timers
A local attacker can create a multi-threaded process using POSIX timers, in order to stop the system...
BID-45028, CERTA-2002-AVI-280, CVE-2010-4248, DSA-2153-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, FEDORA-2010-18493, FEDORA-2010-18506, MDVSA-2011:029, openSUSE-SU-2011:0346-1, openSUSE-SU-2011:0399-1, RHSA-2011:0004-01, RHSA-2011:0007-01, RHSA-2011:0330-01, SUSE-SA:2011:015, SUSE-SA:2011:017, SUSE-SA:2011:020, SUSE-SU-2011:1150-1, VIGILANCE-VUL-10147, VMSA-2011-0004.2, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
Linux kernel: denial of service via argv
A local attacker can create a program allocating a lot of memory for parameters of another program, in order to create a denial of service...
625688, BID-45004, CERTA-2002-AVI-280, CVE-2010-4243, DSA-2153-1, ESX400-201110001, ESX400-201110401-SG, ESX400-201110403-SG, ESX400-201110406-SG, ESX400-201110408-SG, ESX400-201110409-SG, ESX400-201110410-SG, openSUSE-SU-2011:0159-1, openSUSE-SU-2011:0346-1, openSUSE-SU-2011:0399-1, openSUSE-SU-2013:0927-1, RHSA-2011:0017-01, RHSA-2011:0283-01, RHSA-2011:1253-01, SUSE-SA:2011:012, SUSE-SA:2011:017, SUSE-SA:2011:020, SUSE-SU-2011:1150-1, VIGILANCE-VUL-10143, VMSA-2011-0004.2, VMSA-2011-0009.1, VMSA-2011-0010.2, VMSA-2011-0012, VMSA-2011-0012.1, VMSA-2011-0013, VMSA-2012-0005
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Stretch: