🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2022-22846 Upstream summary: The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matches an ID value in a query. […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2020-28502 Upstream summary: This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2019-11471 CVE-2020-19498 CVE-2020-19499 CVE-2020-23109 CVE-2023-0996 CVE-2023-29659 CVE-2023-49462 CVE-2023-49463 +12 more Upstream summary: libheif 1.4.0 has a use-after-free in heif::HeifContext::Image::set_alpha_channel in heif_context.h because heif_context.cc mishandles references to non-existing alpha […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2021-21241 CVE-2021-23385 Upstream summary: The Python "Flask-Security-Too" package is used for adding security features to your Flask application. It is an is a independently maintained version of Flask-Security […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2012-3461 CVE-2016-2851 Upstream summary: The (1) otrl_base64_otr_decode function in src/b64.c; (2) otrl_proto_data_read_flags and (3) otrl_proto_accept_data functions in src/proto.c; and (4) decode function in toolkit/parse.c in libotr before 3.2.1 […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2017-11721 CVE-2017-6903 Upstream summary: Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2002-1216 CVE-2005-1918 CVE-2005-2541 CVE-2006-0300 CVE-2006-6097 CVE-2007-4131 CVE-2007-4476 CVE-2010-0624 +7 more Upstream summary: GNU tar 1.13.19 and other versions before 1.13.25 allows remote attackers to overwrite arbitrary files via […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2003-0358 CVE-2003-0359 CVE-2019-19905 CVE-2020-5209 CVE-2020-5210 CVE-2020-5211 CVE-2020-5212 CVE-2020-5213 +4 more Upstream summary: Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2017-15010 CVE-2023-26136 Upstream summary: A ReDoS (regular expression denial of service) flaw was found in the tough-cookie module before 2.3.3 for Node.js. An attacker that is able to […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2003-1557 CVE-2004-0796 CVE-2005-1266 CVE-2005-3351 CVE-2006-2447 CVE-2007-0451 CVE-2007-2873 CVE-2017-15705 +7 more Upstream summary: Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
