Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-15131 Upstream summary: It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask policy. This only […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-28858 Upstream summary: redis-py before 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time, and can send response data to the client of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2010-2529 CVE-2025-47268 Upstream summary: Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-12950 CVE-2017-12951 CVE-2017-12952 CVE-2017-12953 CVE-2017-12954 CVE-2018-14449 CVE-2018-14450 CVE-2018-14451  +12 more Upstream summary: The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-6085 Upstream summary: Kile before 1.9.3 does not assign a backup file the same permissions as the original file, which might allow local users to obtain sensitive information. Table […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-40305 CVE-2024-0911 Upstream summary: GNU indent 2.2.13 has a heap-based buffer overflow in search_brace in indent.c via a crafted file. Table of contents Symptom & Impact Environment & Reproduction […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-1000002 CVE-2018-10920 CVE-2018-1110 CVE-2019-10190 CVE-2019-10191 CVE-2019-19331 CVE-2020-12667 CVE-2021-40083  +6 more Upstream summary: Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-15888 CVE-2020-15889 CVE-2020-15945 CVE-2020-24342 CVE-2020-24369 CVE-2020-24370 CVE-2020-24371 CVE-2021-43519  +5 more Upstream summary: Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 9 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-9278 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix Solution – Alternative Approaches Verification & Acceptance Criteria […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-1639 Upstream summary: syncevo/installcheck-local.sh in syncevolution before 1.3.99.7 uses mktemp to create a safe temporary file but appends a suffix to the original filename and writes to this new […]