Security Hardening

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-1572 CVE-2012-3426 CVE-2012-3542 CVE-2012-4413 CVE-2012-4456 CVE-2012-4457 CVE-2012-5571 CVE-2013-0247  +12 more Upstream summary: OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space Table of contents Symptom […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-0323 CVE-2021-29376 Upstream summary: Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-2094 CVE-2012-2144 CVE-2012-3540 CVE-2012-5474 CVE-2013-4471 CVE-2013-6858 CVE-2014-0157 CVE-2014-3473  +11 more Upstream summary: Cross-site scripting (XSS) vulnerability in the refresh mechanism in the log viewer in horizon/static/horizon/js/horizon.js in OpenStack […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-17187 CVE-2019-0223 Upstream summary: The Apache Qpid Proton-J transport includes an optional wrapper layer to perform TLS, enabled by use of the 'transport.ssl(…)' methods. Unless a verification mode […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2024-52530 CVE-2024-52531 CVE-2024-52532 CVE-2025-11021 CVE-2025-12105 CVE-2025-14523 CVE-2025-2784 CVE-2025-32049  +12 more Upstream summary: GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations because '\0' characters at the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-0720 CVE-2016-0721 CVE-2017-2661 CVE-2018-1079 CVE-2018-1086 CVE-2022-1049 CVE-2022-2735 Upstream summary: Cross-site request forgery (CSRF) vulnerability in pcsd web UI in pcs before 0.9.149. Table of contents Symptom & Impact […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2002-1389 CVE-2003-0435 CVE-2005-0105 CVE-2006-1515 CVE-2007-6220 Upstream summary: Buffer overflow in typespeed 0.4.2 and earlier allows local users to gain privileges via long input. Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-10006 CVE-2017-14735 CVE-2021-35043 CVE-2022-28366 CVE-2022-28367 CVE-2023-43643 CVE-2024-23635 Upstream summary: In OWASP AntiSamy before 1.5.5, by submitting a specially crafted input (a tag that supports style with active content), […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2010-2761 CVE-2010-4410 CVE-2010-4411 CVE-2025-40927 Upstream summary: The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-25222 Upstream summary: SC v7.16 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers […]