Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8838 CRITICAL 973 HIGH 3883 MEDIUM 3639 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
161 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 7 149 115 10
162 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 124 641 478 23
163 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
164 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
165 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
166 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
167 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
168 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
169 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
170 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
171 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1656 1388 115
172 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
161 4.3
-
MEDIUM
Network
A malicious installed WebExtension could open arbitrary URLs, which under the right circumstance could be leveraged to collect sensitive user data. This vulnerability affects Firefox < 119, Firefox E… NVD-CWE-noinfo
CVE-2023-5725 cpe:2.3:o:debian:debian_linux:11.0:*
cpe:2.3:o:debian:debian_linux:10.0:*
2024-11-21 17:42
2023-10-26
Show GitHub Exploit DB Packet Storm
162 7.5
-
HIGH
Network
Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird <… NVD-CWE-noinfo
CVE-2023-5724 cpe:2.3:o:debian:debian_linux:11.0:*
cpe:2.3:o:debian:debian_linux:10.0:*
2024-11-21 17:42
2023-10-26
Show GitHub Exploit DB Packet Storm
163 8.8
-
HIGH
Network
Use after free in Profiles in Google Chrome prior to 118.0.5993.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free
CVE-2023-5472 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 17:41
2023-10-26
Show GitHub Exploit DB Packet Storm
164 5.5
-
MEDIUM
Local
In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines. NVD-CWE-noinfo
CVE-2023-46316 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
cpe:2.3:o:debian:debian_linux:10.0:*
2024-11-21 17:28
2023-10-26
Show GitHub Exploit DB Packet Storm
165 7.5
-
HIGH
Network
Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetri… NVD-CWE-noinfo
CVE-2023-5363 cpe:2.3:o:debian:debian_linux:12.0:* 2024-11-21 17:41
2023-10-26
Show GitHub Exploit DB Packet Storm
166 5.9
-
MEDIUM
Network
When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection c… CWE-404
 Improper Resource Shutdown or Release
CVE-2023-45802 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:27
2023-10-23
Show GitHub Exploit DB Packet Storm
167 3.6
-
LOW
Local
Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If a permissive umask(2)… - CVE-2023-45145 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:26
2023-10-19
Show GitHub Exploit DB Packet Storm
168 5.4
-
MEDIUM
Network
Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows stored XSS via an HTML e-mail message with a crafted SVG document because of program/lib/Roundcube/rcube_washtml.php behavi… CWE-79
Cross-site Scripting
CVE-2023-5631 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
cpe:2.3:o:debian:debian_linux:10.0:*
2024-11-21 17:42
2023-10-19
Show GitHub Exploit DB Packet Storm
169 7.5
-
HIGH
Adjacent
An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU. CWE-131
Incorrect Calculation of Buffer Size
CVE-2023-45871 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:27
2023-10-15
Show GitHub Exploit DB Packet Storm
170 8.8
-
HIGH
Local
Babel is a compiler for writingJavaScript. In `@babel/traverse` prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of `babel-traverse`, using Babel to compile code that was specifically craf… CWE-697
 Incorrect Comparison
CVE-2023-45133 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
cpe:2.3:o:debian:debian_linux:10.0:*
2024-11-21 17:26
2023-10-13
Show GitHub Exploit DB Packet Storm