Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Debian_linux
(Debian)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-03-09 | CVE-2022-24919 | An authenticated user can create a link with reflected Javascript code inside it for graphs’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim during social engineering attacks. | Debian_linux, Fedora, Frontend | 4.4 | ||
2022-03-10 | CVE-2021-32434 | abcm2ps v8.14.11 was discovered to contain an out-of-bounds read in the function calculate_beam at draw.c. | Abcm2ps, Debian_linux, Fedora | 5.5 | ||
2022-03-10 | CVE-2021-32435 | Stack-based buffer overflow in the function get_key in parse.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service (DoS) via unspecified vectors. | Abcm2ps, Debian_linux, Fedora | 5.5 | ||
2022-03-10 | CVE-2021-32436 | An out-of-bounds read in the function write_title() in subs.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service (DoS) via unspecified vectors. | Abcm2ps, Debian_linux, Fedora | 6.5 | ||
2022-03-10 | CVE-2022-0865 | Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 5e180045. | Debian_linux, Fedora, Libtiff, Active_iq_unified_manager | 6.5 | ||
2022-03-10 | CVE-2022-0891 | A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact | Debian_linux, Fedora, Libtiff, Active_iq_unified_manager | 7.1 | ||
2022-03-11 | CVE-2022-0907 | Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 | ||
2022-03-11 | CVE-2022-0908 | Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 | ||
2022-03-11 | CVE-2022-0909 | Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f8d0f9aa. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 | ||
2022-03-11 | CVE-2022-0924 | Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4. | Debian_linux, Fedora, Libtiff, Ontap_select_deploy_administration_utility | 5.5 |