Troubleshooting

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-29159 CVE-2023-30798 CVE-2024-47874 CVE-2025-54121 CVE-2026-48710 Upstream summary: Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.27.0 allows a remote unauthenticated attacker to view files […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 13 (trixie) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-53160 CVE-2024-58261 CVE-2025-67897 CVE-2026-42783 CVE-2026-42784 Upstream summary: The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array access and a panic. Table of contents Symptom & Impact Environment […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-36377 CVE-2025-70888 CVE-2026-39853 CVE-2026-39855 CVE-2026-39856 Upstream summary: Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to execute arbitrary code via a crafted .exe, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-6685 CVE-2019-5477 CVE-2020-26247 CVE-2022-23476 CVE-2022-24836 CVE-2022-29181 Upstream summary: Nokogiri before 1.5.4 is vulnerable to XXE attacks Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-1921 Upstream summary: parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-19919 CVE-2019-20920 CVE-2021-23369 CVE-2021-23383 CVE-2026-33916 CVE-2026-33937 CVE-2026-33938 CVE-2026-33939  +2 more Upstream summary: Versions of handlebars prior to 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-2125 CVE-2012-2126 CVE-2013-4287 CVE-2013-4363 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902  +12 more Upstream summary: RubyGems before 1.8.23 can redirect HTTPS connections to HTTP, which makes it easier for remote attackers […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 10 (buster) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-18218 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix Solution – Alternative Approaches Verification & Acceptance […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-8418 Upstream summary: RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing local users to exploit this to tamper with cache files belonging to other […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2019-1020014 Upstream summary: docker-credential-helpers before 0.6.3 has a double free in the List functions. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage […]