Vulnerability report for Docker wordpress:latest

Vulnerabilities	157 via 576 paths
Dependencies	251
Source	Docker
Target OS	debian:13

Test your Docker Hub image against our market leading vulnerability database Sign up for free

Severity

Critical
High
3
Medium
5
Low
149

Status

Open
157
Patched
0
Ignored
0

high severity

Integer Overflow or Wraparound

Vulnerable module: glib2.0/libglib2.0-0t64
Introduced through: glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1
Fixed in: 2.84.4-3~deb13u2

Detailed paths

Introduced through: wordpress@latest › glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1

NVD Description

Note: Versions mentioned in the description apply only to the upstream glib2.0 package and not the glib2.0 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string.

Remediation

Upgrade Debian:13 glib2.0 to version 2.84.4-3~deb13u2 or higher.

References

Integer Overflow or Wraparound vulnerability report

high severity

new

Integer Overflow or Wraparound

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others
Fixed in: 8:7.1.1.43+dfsg1-1+deb13u4

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

Note: Versions mentioned in the description apply only to the upstream imagemagick package and not the imagemagick package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, in the WriteSVGImage function, using an int variable to store number_attributes caused an integer overflow. This, in turn, triggered a buffer overflow and caused a DoS attack. Version 7.1.2-12 fixes the issue.

Remediation

Upgrade Debian:13 imagemagick to version 8:7.1.1.43+dfsg1-1+deb13u4 or higher.

References

Integer Overflow or Wraparound vulnerability report

high severity

new

Uncontrolled Recursion

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others
Fixed in: 8:7.1.1.43+dfsg1-1+deb13u4

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue.

Remediation

Upgrade Debian:13 imagemagick to version 8:7.1.1.43+dfsg1-1+deb13u4 or higher.

References

Uncontrolled Recursion vulnerability report

medium severity

Integer Overflow or Wraparound

Vulnerable module: glib2.0/libglib2.0-0t64
Introduced through: glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1
Fixed in: 2.84.4-3~deb13u2

Detailed paths

Introduced through: wordpress@latest › glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1

NVD Description

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when processing malicious file or remote filesystem attribute values.

Remediation

Upgrade Debian:13 glib2.0 to version 2.84.4-3~deb13u2 or higher.

References

Integer Overflow or Wraparound vulnerability report

medium severity

new

Uncontrolled Recursion

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others
Fixed in: 8:7.1.1.43+dfsg1-1+deb13u4

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows reading the mvg file will be affected. Version 7.1.2-12 fixes the issue.

Remediation

Upgrade Debian:13 imagemagick to version 8:7.1.1.43+dfsg1-1+deb13u4 or higher.

References

Uncontrolled Recursion vulnerability report

medium severity

Double Free

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others
Fixed in: 8:7.1.1.43+dfsg1-1+deb13u4

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.

Remediation

Upgrade Debian:13 imagemagick to version 8:7.1.1.43+dfsg1-1+deb13u4 or higher.

References

Double Free vulnerability report

medium severity

Integer Overflow or Wraparound

Vulnerable module: glib2.0/libglib2.0-0t64
Introduced through: glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1
Fixed in: 2.84.4-3~deb13u2

Detailed paths

Introduced through: wordpress@latest › glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1

NVD Description

A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.

Remediation

Upgrade Debian:13 glib2.0 to version 2.84.4-3~deb13u2 or higher.

References

Integer Overflow or Wraparound vulnerability report

medium severity

Out-of-Bounds

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others
Fixed in: 8:7.1.1.43+dfsg1-1+deb13u4

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow occurs in pointer arithmetic, leading to out-of-bounds memory access, and division-by-zero causes immediate crashes. This issue has been patched in version 7.1.2-8.

Remediation

Upgrade Debian:13 imagemagick to version 8:7.1.1.43+dfsg1-1+deb13u4 or higher.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass stack guard protection. The component is: nptl. The attack vector is: Exploit stack buffer overflow vulnerability and use this bypass vulnerability to bypass stack guard. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

Remediation

There is no fixed version for Debian:13 glibc.

References

Out-of-Bounds vulnerability report

low severity

OS Command Injection

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

OS Command Injection vulnerability report

low severity

CVE-2005-2541

Vulnerable module: tar
Introduced through: tar@1.35+dfsg-3.1

Detailed paths

Introduced through: wordpress@latest › tar@1.35+dfsg-3.1

NVD Description

Note: Versions mentioned in the description apply only to the upstream tar package and not the tar package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.

Remediation

There is no fixed version for Debian:13 tar.

References

CVE-2005-2541 vulnerability report

low severity

Improper Input Validation

Vulnerable module: cups/libcups2t64
Introduced through: cups/libcups2t64@2.4.10-3+deb13u2

Detailed paths

Introduced through: wordpress@latest › cups/libcups2t64@2.4.10-3+deb13u2

NVD Description

Note: Versions mentioned in the description apply only to the upstream cups package and not the cups package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name.

Remediation

There is no fixed version for Debian:13 cups.

References

Improper Input Validation vulnerability report

low severity

CVE-2019-1010023

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

GNU Libc current is affected by: Re-mapping current loaded library with malicious ELF file. The impact is: In worst case attacker may evaluate privileges. The component is: libld. The attack vector is: Attacker sends 2 ELF files to victim and asks to run ldd on it. ldd execute code. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

Remediation

There is no fixed version for Debian:13 glibc.

References

CVE-2019-1010023 vulnerability report

low severity

Integer Overflow or Wraparound

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

Note: Versions mentioned in the description apply only to the upstream openjpeg2 package and not the openjpeg2 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Integer Overflow or Wraparound vulnerability report

low severity

Out-of-Bounds

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in convert_32s_C1P1 was found in openjpeg 2.1.2.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Out-of-Bounds vulnerability report

low severity

Out-of-bounds Write

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly unspecified other impact.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Out-of-bounds Write vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

Note: Versions mentioned in the description apply only to the upstream binutils package and not the binutils package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elf_gc_sweep of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. Upgrading to version 2.45 is able to address this issue. It is recommended to upgrade the affected component.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability classified as critical has been found in GNU Binutils up to 2.44. This affects the function debug_type_samep of the file /binutils/debug.c of the component objdump. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfd_elf_set_group_contents of the file bfd/elf.c. The manipulation leads to out-of-bounds write. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The name of the patch is 41461010eb7c79fee7a9d5f6209accdaac66cc6b. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability classified as problematic was found in GNU Binutils 2.45. Affected by this vulnerability is the function copy_section of the file binutils/objcopy.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The patch is named 08c3cbe5926e4d355b5cb70bbec2b1eeb40c2944. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elf_swap_shdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is 9ca499644a21ceb3f946d1c179c38a83be084490. To fix this issue, it is recommended to deploy a patch. The code maintainer replied with "[f]ixed for 2.46".

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A flaw has been found in GNU Binutils 2.45. Impacted is the function _bfd_elf_parse_eh_frame of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be used. This patch is called ea1a0737c7692737a644af0486b71e4a392cbca8. A patch should be applied to remediate this issue. The code maintainer replied with "[f]ixed for 2.46".

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: tiff/libtiff6
Introduced through: tiff/libtiff6@4.7.0-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › tiff/libtiff6@4.7.0-3+deb13u1

NVD Description

Note: Versions mentioned in the description apply only to the upstream tiff package and not the tiff package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as critical. This vulnerability affects the function get_histogram of the file tools/tiffmedian.c. The manipulation leads to use after free. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The patch is identified as fe10872e53efba9cc36c66ac4ab3b41a839d5172. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 tiff.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: tiff/libtiff6
Introduced through: tiff/libtiff6@4.7.0-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › tiff/libtiff6@4.7.0-3+deb13u1

NVD Description

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

Remediation

There is no fixed version for Debian:13 tiff.

References

Out-of-Bounds vulnerability report

low severity

Resource Exhaustion

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream apache2 package and not the apache2 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

The Apache HTTP Server, when accessed through a TCP connection with a large window size, allows remote attackers to cause a denial of service (network bandwidth consumption) via a Range header that specifies multiple copies of the same fragment. NOTE: the severity of this issue has been disputed by third parties, who state that the large window size required by the attack is not normally supported or configured by the server, or that a DDoS-style attack would accomplish the same goal

Remediation

There is no fixed version for Debian:13 apache2.

References

Resource Exhaustion vulnerability report

low severity

Uncontrolled Recursion

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(\227|)(\1\1|t1|\\2537)+' in grep.

Remediation

There is no fixed version for Debian:13 glibc.

References

Uncontrolled Recursion vulnerability report

low severity

Uncontrolled Recursion

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(|)(\1\1)*' in grep, a different issue than CVE-2018-20796. NOTE: the software maintainer disputes that this is a vulnerability because the behavior occurs only with a crafted pattern

Remediation

There is no fixed version for Debian:13 glibc.

References

Uncontrolled Recursion vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: jansson/libjansson4
Introduced through: jansson/libjansson4@2.14-2+b3

Detailed paths

Introduced through: wordpress@latest › jansson/libjansson4@2.14-2+b3

NVD Description

Note: Versions mentioned in the description apply only to the upstream jansson package and not the jansson package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

An issue was discovered in Jansson through 2.13.1. Due to a parsing error in json_loads, there's an out-of-bounds read-access bug. NOTE: the vendor reports that this only occurs when a programmer fails to follow the API specification

Remediation

There is no fixed version for Debian:13 jansson.

References

Out-of-bounds Read vulnerability report

low severity

Integer Overflow or Wraparound

Vulnerable module: krb5/libgssapi-krb5-2
Introduced through: krb5/libgssapi-krb5-2@1.21.3-5, krb5/libk5crypto3@1.21.3-5 and others

Detailed paths

Introduced through: wordpress@latest › krb5/libgssapi-krb5-2@1.21.3-5
Introduced through: wordpress@latest › krb5/libk5crypto3@1.21.3-5
Introduced through: wordpress@latest › krb5/libkrb5-3@1.21.3-5
Introduced through: wordpress@latest › krb5/libkrb5support0@1.21.3-5

NVD Description

Note: Versions mentioned in the description apply only to the upstream krb5 package and not the krb5 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. There is a variable "dbentry->n_key_data" in kadmin/dbutil/dump.c that can store 16-bit data but unknowingly the developer has assigned a "u4" variable to it, which is for 32-bit data. An attacker can use this vulnerability to affect other artifacts of the database as we know that a Kerberos database dump file contains trusted data.

Remediation

There is no fixed version for Debian:13 krb5.

References

Integer Overflow or Wraparound vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

There is a NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) of OpenJPEG 2.1.2. image->comps[compno].data is not assigned a value after initialization(NULL). Impact is Denial of Service.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

NULL Pointer Dereference vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2. image->comps[0].data is not assigned a value after initialization(NULL). Impact is Denial of Service.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

NULL Pointer Dereference vulnerability report

low severity

Cryptographic Issues

Vulnerable module: openldap/libldap2
Introduced through: openldap/libldap2@2.6.10+dfsg-1

Detailed paths

Introduced through: wordpress@latest › openldap/libldap2@2.6.10+dfsg-1

NVD Description

Note: Versions mentioned in the description apply only to the upstream openldap package and not the openldap package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be used and allow remote attackers to have unspecified impact via unknown vectors.

Remediation

There is no fixed version for Debian:13 openldap.

References

Cryptographic Issues vulnerability report

low severity

Out-of-Bounds

Vulnerable module: openldap/libldap2
Introduced through: openldap/libldap2@2.6.10+dfsg-1

Detailed paths

Introduced through: wordpress@latest › openldap/libldap2@2.6.10+dfsg-1

NVD Description

contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation.

Remediation

There is no fixed version for Debian:13 openldap.

References

Out-of-Bounds vulnerability report

low severity

Double Free

Vulnerable module: patch
Introduced through: patch@2.8-2

Detailed paths

Introduced through: wordpress@latest › patch@2.8-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream patch package and not the patch package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.

Remediation

There is no fixed version for Debian:13 patch.

References

Double Free vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: patch
Introduced through: patch@2.8-2

Detailed paths

Introduced through: wordpress@latest › patch@2.8-2

NVD Description

An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue.

Remediation

There is no fixed version for Debian:13 patch.

References

NULL Pointer Dereference vulnerability report

low severity

Missing Release of Resource after Effective Lifetime

Vulnerable module: tiff/libtiff6
Introduced through: tiff/libtiff6@4.7.0-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › tiff/libtiff6@4.7.0-3+deb13u1

NVD Description

LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. NOTE: Third parties were unable to reproduce the issue

Remediation

There is no fixed version for Debian:13 tiff.

References

Missing Release of Resource after Effective Lifetime vulnerability report

low severity

CVE-2008-1687

Vulnerable module: m4
Introduced through: m4@1.4.19-8

Detailed paths

Introduced through: wordpress@latest › m4@1.4.19-8

NVD Description

Note: Versions mentioned in the description apply only to the upstream m4 package and not the m4 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

The (1) maketemp and (2) mkstemp builtin functions in GNU m4 before 1.4.11 do not quote their output when a file is created, which might allow context-dependent attackers to trigger a macro expansion, leading to unspecified use of an incorrect filename.

Remediation

There is no fixed version for Debian:13 m4.

References

CVE-2008-1687 vulnerability report

low severity

CVE-2008-1688

Vulnerable module: m4
Introduced through: m4@1.4.19-8

Detailed paths

Introduced through: wordpress@latest › m4@1.4.19-8

NVD Description

Unspecified vulnerability in GNU m4 before 1.4.11 might allow context-dependent attackers to execute arbitrary code, related to improper handling of filenames specified with the -F option. NOTE: it is not clear when this issue crosses privilege boundaries.

Remediation

There is no fixed version for Debian:13 m4.

References

CVE-2008-1688 vulnerability report

low severity

Buffer Underflow

Vulnerable module: cups/libcups2t64
Introduced through: cups/libcups2t64@2.4.10-3+deb13u2

Detailed paths

Introduced through: wordpress@latest › cups/libcups2t64@2.4.10-3+deb13u2

NVD Description

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.

Remediation

There is no fixed version for Debian:13 cups.

References

Buffer Underflow vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-bounds Read vulnerability report

low severity

Out-of-bounds Write

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-bounds Write vulnerability report

low severity

Missing Release of Resource after Effective Lifetime

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an OpenPixelCache call.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Missing Release of Resource after Effective Lifetime vulnerability report

low severity

Missing Release of Resource after Effective Lifetime

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an AcquireSemaphoreInfo call.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Missing Release of Resource after Effective Lifetime vulnerability report

low severity

Resource Exhaustion

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36 0x36 0x36 0x36 0x36 0x1f 0x35 0x50 0x00 can result in a hang of several minutes during which CPU and memory resources are consumed until ultimately an attempted large memory allocation fails. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Resource Exhaustion vulnerability report

low severity

CVE-2023-46361

Vulnerable module: jbig2dec/libjbig2dec0
Introduced through: jbig2dec/libjbig2dec0@0.20-1+b3

Detailed paths

Introduced through: wordpress@latest › jbig2dec/libjbig2dec0@0.20-1+b3

NVD Description

Note: Versions mentioned in the description apply only to the upstream jbig2dec package and not the jbig2dec package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2_error at /jbig2dec/jbig2.c.

Remediation

There is no fixed version for Debian:13 jbig2dec.

References

CVE-2023-46361 vulnerability report

low severity

Out-of-Bounds

Vulnerable module: jbigkit/libjbig0
Introduced through: jbigkit/libjbig0@2.1-6.1+b2

Detailed paths

Introduced through: wordpress@latest › jbigkit/libjbig0@2.1-6.1+b2

NVD Description

Note: Versions mentioned in the description apply only to the upstream jbigkit package and not the jbigkit package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A crafted TIFF document can lead to an abort resulting in a remote denial of service attack.

Remediation

There is no fixed version for Debian:13 jbigkit.

References

Out-of-Bounds vulnerability report

low severity

Allocation of Resources Without Limits or Throttling

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

An issue was discovered in OpenJPEG 2.3.0. It allows remote attackers to cause a denial of service (attempted excessive memory allocation) in opj_calloc in openjp2/opj_malloc.c, when called from opj_tcd_init_tile in openjp2/tcd.c, as demonstrated by the 64-bit opj_decompress.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Allocation of Resources Without Limits or Throttling vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

NULL pointer dereference vulnerabilities in the imagetopnm function in convert.c, sycc444_to_rgb function in color.c, color_esycc_to_rgb function in color.c, and sycc422_to_rgb function in color.c in OpenJPEG before 2.2.0 allow remote attackers to cause a denial of service (application crash) via crafted j2k files.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

NULL Pointer Dereference vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

NULL Pointer Dereference vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

NULL Pointer Dereference vulnerability report

low severity

Out-of-Bounds

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Out-of-Bounds vulnerability report

low severity

Improper Resource Shutdown or Release

Vulnerable module: tiff/libtiff6
Introduced through: tiff/libtiff6@4.7.0-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › tiff/libtiff6@4.7.0-3+deb13u1

NVD Description

A vulnerability classified as problematic was found in LibTIFF 4.3.0. Affected by this vulnerability is the TIFF File Handler of tiff2ps. Opening a malicious file leads to a denial of service. The attack can be launched remotely but requires user interaction. The exploit has been disclosed to the public and may be used.

Remediation

There is no fixed version for Debian:13 tiff.

References

Improper Resource Shutdown or Release vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: tiff/libtiff6
Introduced through: tiff/libtiff6@4.7.0-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › tiff/libtiff6@4.7.0-3+deb13u1

NVD Description

ijg-libjpeg before 9d, as used in tiff2pdf (from LibTIFF) and other products, does not check for a NULL pointer at a certain place in jpeg_fdct_16x16 in jfdctint.c.

Remediation

There is no fixed version for Debian:13 tiff.

References

NULL Pointer Dereference vulnerability report

low severity

Arbitrary Code Injection

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that (1) stop request processing by killing all worker processes and preventing creation of replacements or (2) hang the system by forcing the master process to fork an arbitrarily large number of worker processes. NOTE: This might be an inherent design limitation of Apache with respect to worker processes in hosted environments.

Remediation

There is no fixed version for Debian:13 apache2.

References

Arbitrary Code Injection vulnerability report

low severity

Access Restriction Bypass

Vulnerable module: shadow/login.defs
Introduced through: shadow/login.defs@1:4.17.4-2 and shadow/passwd@1:4.17.4-2

Detailed paths

Introduced through: wordpress@latest › shadow/login.defs@1:4.17.4-2
Introduced through: wordpress@latest › shadow/passwd@1:4.17.4-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream shadow package and not the shadow package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensitive information regarding authentication attempts. NOTE: because sshd detects the insecure permissions and does not log certain events, this also prevents sshd from logging failed authentication attempts by remote attackers.

Remediation

There is no fixed version for Debian:13 shadow.

References

Access Restriction Bypass vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: util-linux
Introduced through: util-linux@2.41-5, util-linux/bsdutils@1:2.41-5 and others

Detailed paths

Introduced through: wordpress@latest › util-linux@2.41-5
Introduced through: wordpress@latest › util-linux/bsdutils@1:2.41-5
Introduced through: wordpress@latest › util-linux/libblkid1@2.41-5
Introduced through: wordpress@latest › util-linux/liblastlog2-2@2.41-5
Introduced through: wordpress@latest › util-linux/libmount1@2.41-5
Introduced through: wordpress@latest › util-linux/libsmartcols1@2.41-5
Introduced through: wordpress@latest › util-linux/libuuid1@2.41-5
Introduced through: wordpress@latest › util-linux/login@1:4.16.0-2+really2.41-5
Introduced through: wordpress@latest › util-linux/mount@2.41-5

NVD Description

Note: Versions mentioned in the description apply only to the upstream util-linux package and not the util-linux package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the setpwnam() function, affecting SUID (Set User ID) login-utils utilities writing to the password database.

Remediation

There is no fixed version for Debian:13 util-linux.

References

Out-of-bounds Read vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_set_format of the file format.c. The manipulation leads to memory corruption. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. Upgrading to version 2.45 is able to address this issue. The identifier of the patch is 8d97c1a53f3dc9fd8e1ccdb039b8a33d50133150. It is recommended to upgrade the affected component.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the function bfd_putl64 of the file libbfd.c of the component ld. The manipulation leads to memory corruption. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The identifier of the patch is 75086e9de1707281172cc77f178e7949a4414ed0. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Allocation of Resources Without Limits or Throttling

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a crafted file, as demonstrated by a call from the Binary File Descriptor (BFD) library (aka libbfd).

Remediation

There is no fixed version for Debian:13 binutils.

References

Allocation of Resources Without Limits or Throttling vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the function display_info of the file binutils/bucomm.c of the component objdump. The manipulation leads to memory leak. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The patch is named ba6ad3a18cb26b79e0e3b84c39f707535bbc344d. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dump_dwarf_section of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named f87a66db645caf8cc0e6fc87b0c28c78a38af59b. It is suggested to install a patch to address this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64_relocate_section of the file elf64-x86-64.c of the component Linker. This manipulation causes heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Patch name: 6b21c8b2ecfef5c95142cbc2c32f185cb1c26ab0. To fix this issue, it is recommended to deploy a patch.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.45. Impacted is the function _bfd_x86_elf_late_size_sections of the file bfd/elfxx-x86.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. The patch is identified as b6ac5a8a5b82f0ae6a4642c8d7149b325f4cc60a. A patch should be applied to remediate this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing manipulation can lead to out-of-bounds read. The attack can only be executed locally. The exploit has been made available to the public and could be exploited. This patch is called 16357. It is best practice to apply a patch to resolve this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.46 addresses this issue. Patch name: aeaaa9af6359c8e394ce9cf24911fec4f4d23703. It is advisable to upgrade the affected component.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-bounds Read vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.45. Affected is the function elf_link_add_object_symbols of the file bfd/elflink.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. Upgrading to version 2.46 is able to address this issue. The patch is identified as 72efdf166aa0ed72ecc69fc2349af6591a7a19c0. Upgrading the affected component is advised.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-bounds Read vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435dd988a3975d40c6626a8f739a0b2e154bc. To fix this issue, it is recommended to deploy a patch.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-bounds Read vulnerability report

low severity

Out-of-bounds Write

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrated by nm.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-bounds Write vulnerability report

low severity

Unchecked Return Value

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of the file prdbg.c. Performing manipulation results in unchecked return value. The attack needs to be approached locally. The exploit has been released to the public and may be exploited.

Remediation

There is no fixed version for Debian:13 binutils.

References

Unchecked Return Value vulnerability report

low severity

Uncontrolled Recursion

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangle_template_value_parm, demangle_integral_value, and demangle_expression.

Remediation

There is no fixed version for Debian:13 binutils.

References

Uncontrolled Recursion vulnerability report

low severity

Resource Exhaustion

Vulnerable module: cups/libcups2t64
Introduced through: cups/libcups2t64@2.4.10-3+deb13u2

Detailed paths

Introduced through: wordpress@latest › cups/libcups2t64@2.4.10-3+deb13u2

NVD Description

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue has been patched in version 2.4.15.

Remediation

There is no fixed version for Debian:13 cups.

References

Resource Exhaustion vulnerability report

low severity

Algorithmic Complexity

Vulnerable module: expat/libexpat1
Introduced through: expat/libexpat1@2.7.1-2

Detailed paths

Introduced through: wordpress@latest › expat/libexpat1@2.7.1-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream expat package and not the expat package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.

Remediation

There is no fixed version for Debian:13 expat.

References

Algorithmic Complexity vulnerability report

low severity

Integer Overflow or Wraparound

Vulnerable module: ghostscript
Introduced through: ghostscript@10.05.1~dfsg-1+deb13u1, ghostscript/libgs-common@10.05.1~dfsg-1+deb13u1 and others

Detailed paths

Introduced through: wordpress@latest › ghostscript@10.05.1~dfsg-1+deb13u1
Introduced through: wordpress@latest › ghostscript/libgs-common@10.05.1~dfsg-1+deb13u1
Introduced through: wordpress@latest › ghostscript/libgs10@10.05.1~dfsg-1+deb13u1
Introduced through: wordpress@latest › ghostscript/libgs10-common@10.05.1~dfsg-1+deb13u1

NVD Description

Note: Versions mentioned in the description apply only to the upstream ghostscript package and not the ghostscript package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer overflow that leads to a heap-based buffer overflow in ocr_line8.

Remediation

There is no fixed version for Debian:13 ghostscript.

References

Integer Overflow or Wraparound vulnerability report

low severity

CVE-2005-0406

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

CVE-2005-0406 vulnerability report

low severity

Out-of-Bounds

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memory allocation and application crash) via a crafted file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8862 and CVE-2016-8866.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Out-of-Bounds vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.0 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted file. NOTE: the vendor says "This is a Q64 issue and we do not support Q64."

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Out-of-bounds Read vulnerability report

low severity

Buffer Overflow

Vulnerable module: libpng1.6/libpng16-16t64
Introduced through: libpng1.6/libpng16-16t64@1.6.48-1+deb13u1

Detailed paths

Introduced through: wordpress@latest › libpng1.6/libpng16-16t64@1.6.48-1+deb13u1

NVD Description

Note: Versions mentioned in the description apply only to the upstream libpng1.6 package and not the libpng1.6 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.

Remediation

There is no fixed version for Debian:13 libpng1.6.

References

Buffer Overflow vulnerability report

low severity

NULL Pointer Dereference

Vulnerable module: libraw/libraw23t64
Introduced through: libraw/libraw23t64@0.21.4-2

Detailed paths

Introduced through: wordpress@latest › libraw/libraw23t64@0.21.4-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream libraw package and not the libraw package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

libraw 20.0 has a null pointer dereference vulnerability in parse_tiff_ifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way

Remediation

There is no fixed version for Debian:13 libraw.

References

NULL Pointer Dereference vulnerability report

low severity

Release of Invalid Pointer or Reference

Vulnerable module: patch
Introduced through: patch@2.8-2

Detailed paths

Introduced through: wordpress@latest › patch@2.8-2

NVD Description

An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which causes a Denial of Service.

Remediation

There is no fixed version for Debian:13 patch.

References

Release of Invalid Pointer or Reference vulnerability report

low severity

Uncontrolled Recursion

Vulnerable module: re2c
Introduced through: re2c@4.1-1

Detailed paths

Introduced through: wordpress@latest › re2c@4.1-1

NVD Description

Note: Versions mentioned in the description apply only to the upstream re2c package and not the re2c package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

re2c before 2.0 has uncontrolled recursion that causes stack consumption in find_fixed_tags.

Remediation

There is no fixed version for Debian:13 re2c.

References

Uncontrolled Recursion vulnerability report

low severity

Information Exposure

Vulnerable module: util-linux
Introduced through: util-linux@2.41-5, util-linux/bsdutils@1:2.41-5 and others

Detailed paths

Introduced through: wordpress@latest › util-linux@2.41-5
Introduced through: wordpress@latest › util-linux/bsdutils@1:2.41-5
Introduced through: wordpress@latest › util-linux/libblkid1@2.41-5
Introduced through: wordpress@latest › util-linux/liblastlog2-2@2.41-5
Introduced through: wordpress@latest › util-linux/libmount1@2.41-5
Introduced through: wordpress@latest › util-linux/libsmartcols1@2.41-5
Introduced through: wordpress@latest › util-linux/libuuid1@2.41-5
Introduced through: wordpress@latest › util-linux/login@1:4.16.0-2+really2.41-5
Introduced through: wordpress@latest › util-linux/mount@2.41-5

NVD Description

A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an "INPUTRC" environment variable to get a path to the library config file. When the library cannot parse the specified file, it prints an error message containing data from the file. This flaw allows an unprivileged user to read root-owned files, potentially leading to privilege escalation. This flaw affects util-linux versions prior to 2.37.4.

Remediation

There is no fixed version for Debian:13 util-linux.

References

Information Exposure vulnerability report

low severity

Directory Traversal

Vulnerable module: patch
Introduced through: patch@2.8-2

Detailed paths

Introduced through: wordpress@latest › patch@2.8-2

NVD Description

Directory traversal vulnerability in util.c in GNU patch 2.6.1 and earlier allows user-assisted remote attackers to create or overwrite arbitrary files via a filename that is specified with a .. (dot dot) or full pathname, a related issue to CVE-2010-1679.

Remediation

There is no fixed version for Debian:13 patch.

References

Directory Traversal vulnerability report

low severity

CVE-2003-1307

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: the PHP developer has disputed this vulnerability, saying "The opened file descriptors are opened by Apache. It is the job of Apache to protect them ... Not a bug in PHP.

Remediation

There is no fixed version for Debian:13 apache2.

References

CVE-2003-1307 vulnerability report

low severity

CVE-2007-1743

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vendor disputes the issue because "the attacks described rely on an insecure server configuration" in which the user "has write access to the document root." In addition, because this is dependent on other vulnerabilities, perhaps this is resultant and should not be included in CVE.

Remediation

There is no fixed version for Debian:13 apache2.

References

CVE-2007-1743 vulnerability report

low severity

Small Space of Random Values

Vulnerable module: avahi/libavahi-client3
Introduced through: avahi/libavahi-client3@0.8-16, avahi/libavahi-common-data@0.8-16 and others

Detailed paths

Introduced through: wordpress@latest › avahi/libavahi-client3@0.8-16
Introduced through: wordpress@latest › avahi/libavahi-common-data@0.8-16
Introduced through: wordpress@latest › avahi/libavahi-common3@0.8-16

NVD Description

Note: Versions mentioned in the description apply only to the upstream avahi package and not the avahi package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after that. This predictable behavior facilitates DNS spoofing attacks, allowing attackers to guess transaction IDs.

Remediation

There is no fixed version for Debian:13 avahi.

References

Small Space of Random Values vulnerability report

low severity

Use of Insufficiently Random Values

Vulnerable module: avahi/libavahi-client3
Introduced through: avahi/libavahi-client3@0.8-16, avahi/libavahi-common-data@0.8-16 and others

Detailed paths

Introduced through: wordpress@latest › avahi/libavahi-client3@0.8-16
Introduced through: wordpress@latest › avahi/libavahi-common-data@0.8-16
Introduced through: wordpress@latest › avahi/libavahi-common3@0.8-16

NVD Description

A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected.

Remediation

There is no fixed version for Debian:13 avahi.

References

Use of Insufficiently Random Values vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function __sanitizer::internal_strlen of the file binutils/nm.c of the component nm. The manipulation of the argument const leads to buffer overflow. The attack can be launched remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Cryptographic Issues

Vulnerable module: glib2.0/libglib2.0-0t64
Introduced through: glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1

Detailed paths

Introduced through: wordpress@latest › glib2.0/libglib2.0-0t64@2.84.4-3~deb13u1

NVD Description

GLib 2.31.8 and earlier, when the g_str_hash function is used, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table. NOTE: this issue may be disputed by the vendor; the existence of the g_str_hash function is not a vulnerability in the library, because callers of g_hash_table_new and g_hash_table_new_full can specify an arbitrary hash function that is appropriate for the application.

Remediation

There is no fixed version for Debian:13 glib2.0.

References

Cryptographic Issues vulnerability report

low severity

Information Exposure

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass ASLR using cache of thread stack and heap. The component is: glibc. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

Remediation

There is no fixed version for Debian:13 glibc.

References

Information Exposure vulnerability report

low severity

Use of Insufficiently Random Values

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthread_created thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability.

Remediation

There is no fixed version for Debian:13 glibc.

References

Use of Insufficiently Random Values vulnerability report

low severity

Reliance on Undefined

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, there is undefined behavior (function-type-mismatch) in splay tree cloning callback. This results in a deterministic abort under UBSan (DoS in sanitizer builds), with no crash in a non-sanitized build. This issue has been patched in versions 6.9.13-27 and 7.1.2-1.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Reliance on Undefined vulnerability report

low severity

Resource Management Errors

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite loop, or memory consumption) via (a) unspecified vectors in the (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, and (9) TGA decoder readers; and (b) the GetImageCharacteristics function in magick/image.c, as reachable from a crafted (10) PNG, (11) JPEG, (12) BMP, or (13) TIFF file.

Remediation

There is no fixed version for Debian:13 imagemagick.

References

Resource Management Errors vulnerability report

low severity

Improper Validation of Integrity Check Value

Vulnerable module: systemd/libsystemd0
Introduced through: systemd/libsystemd0@257.9-1~deb13u1 and systemd/libudev1@257.9-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › systemd/libsystemd0@257.9-1~deb13u1
Introduced through: wordpress@latest › systemd/libudev1@257.9-1~deb13u1

NVD Description

Note: Versions mentioned in the description apply only to the upstream systemd package and not the systemd package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

An issue was discovered in systemd 253. An attacker can modify the contents of past events in a sealed log file and then adjust the file such that checking the integrity shows no error, despite modifications. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."

Remediation

There is no fixed version for Debian:13 systemd.

References

Improper Validation of Integrity Check Value vulnerability report

low severity

Improper Validation of Integrity Check Value

Vulnerable module: systemd/libsystemd0
Introduced through: systemd/libsystemd0@257.9-1~deb13u1 and systemd/libudev1@257.9-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › systemd/libsystemd0@257.9-1~deb13u1
Introduced through: wordpress@latest › systemd/libudev1@257.9-1~deb13u1

NVD Description

An issue was discovered in systemd 253. An attacker can truncate a sealed log file and then resume log sealing such that checking the integrity shows no error, despite modifications. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."

Remediation

There is no fixed version for Debian:13 systemd.

References

Improper Validation of Integrity Check Value vulnerability report

low severity

Improper Validation of Integrity Check Value

Vulnerable module: systemd/libsystemd0
Introduced through: systemd/libsystemd0@257.9-1~deb13u1 and systemd/libudev1@257.9-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › systemd/libsystemd0@257.9-1~deb13u1
Introduced through: wordpress@latest › systemd/libudev1@257.9-1~deb13u1

NVD Description

An issue was discovered in systemd 253. An attacker can modify a sealed log file such that, in some views, not all existing and sealed log messages are displayed. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."

Remediation

There is no fixed version for Debian:13 systemd.

References

Improper Validation of Integrity Check Value vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The patch is named f9978defb6fab0bd8583942d97c112b0932ac814. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The name of the patch is 931494c9a89558acb36a03a340c01726545eef24. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The patch is identified as b425859021d17adf62f06fb904797cf8642986ad. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Race Condition

Vulnerable module: coreutils
Introduced through: coreutils@9.7-3

Detailed paths

Introduced through: wordpress@latest › coreutils@9.7-3

NVD Description

Note: Versions mentioned in the description apply only to the upstream coreutils package and not the coreutils package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file with a symlink during use of the POSIX "-R -L" options, which allows local users to modify the ownership of arbitrary files by leveraging a race condition.

Remediation

There is no fixed version for Debian:13 coreutils.

References

Race Condition vulnerability report

low severity

Improper Initialization

Vulnerable module: openldap/libldap2
Introduced through: openldap/libldap2@2.6.10+dfsg-1

Detailed paths

Introduced through: wordpress@latest › openldap/libldap2@2.6.10+dfsg-1

NVD Description

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, as demonstrated by openldap-initscript.

Remediation

There is no fixed version for Debian:13 openldap.

References

Improper Initialization vulnerability report

low severity

Stack-based Buffer Overflow

Vulnerable module: coreutils
Introduced through: coreutils@9.7-3

Detailed paths

Introduced through: wordpress@latest › coreutils@9.7-3

NVD Description

A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data.

Remediation

There is no fixed version for Debian:13 coreutils.

References

Stack-based Buffer Overflow vulnerability report

low severity

Link Following

Vulnerable module: systemd/libsystemd0
Introduced through: systemd/libsystemd0@257.9-1~deb13u1 and systemd/libudev1@257.9-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › systemd/libsystemd0@257.9-1~deb13u1
Introduced through: wordpress@latest › systemd/libudev1@257.9-1~deb13u1

NVD Description

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.

Remediation

There is no fixed version for Debian:13 systemd.

References

Link Following vulnerability report

low severity

Numeric Errors

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which allows remote attackers to spoof IP addresses via crafted DNS responses containing numerical top-level domains, as demonstrated by a forged 123.123.123.123 domain name, related to an "Inverse Lookup Log Corruption (ILLC)" issue.

Remediation

There is no fixed version for Debian:13 apache2.

References

Numeric Errors vulnerability report

low severity

Resource Management Errors

Vulnerable module: glibc/libc-bin
Introduced through: glibc/libc-bin@2.41-12, glibc/libc-dev-bin@2.41-12 and others

Detailed paths

Introduced through: wordpress@latest › glibc/libc-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc-dev-bin@2.41-12
Introduced through: wordpress@latest › glibc/libc6@2.41-12
Introduced through: wordpress@latest › glibc/libc6-dev@2.41-12

NVD Description

The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632.

Remediation

There is no fixed version for Debian:13 glibc.

References

Resource Management Errors vulnerability report

low severity

Improper Input Validation

Vulnerable module: gnutls28/libgnutls30t64
Introduced through: gnutls28/libgnutls30t64@3.8.9-3

Detailed paths

Introduced through: wordpress@latest › gnutls28/libgnutls30t64@3.8.9-3

NVD Description

Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.

Remediation

There is no fixed version for Debian:13 gnutls28.

References

Improper Input Validation vulnerability report

low severity

Memory Leak

Vulnerable module: sqlite3/libsqlite3-0
Introduced through: sqlite3/libsqlite3-0@3.46.1-7

Detailed paths

Introduced through: wordpress@latest › sqlite3/libsqlite3-0@3.46.1-7

NVD Description

Note: Versions mentioned in the description apply only to the upstream sqlite3 package and not the sqlite3 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A Memory Leak vulnerability exists in SQLite Project SQLite3 3.35.1 and 3.37.0 via maliciously crafted SQL Queries (made via editing the Database File), it is possible to query a record, and leak subsequent bytes of memory that extend beyond the record, which could let a malicious user obtain sensitive information. NOTE: The developer disputes this as a vulnerability stating that If you give SQLite a corrupted database file and submit a query against the database, it might read parts of the database that you did not intend or expect.

Remediation

There is no fixed version for Debian:13 sqlite3.

References

Memory Leak vulnerability report

low severity

Improper Certificate Validation

Vulnerable module: openldap/libldap2
Introduced through: openldap/libldap2@2.6.10+dfsg-1

Detailed paths

Introduced through: wordpress@latest › openldap/libldap2@2.6.10+dfsg-1

NVD Description

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName (SAN). This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux.

Remediation

There is no fixed version for Debian:13 openldap.

References

Improper Certificate Validation vulnerability report

low severity

Session Fixation

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable information including host IP address, system time and server process ID, which allows local users to obtain session ID's and bypass authentication when these session ID's are used for authentication.

Remediation

There is no fixed version for Debian:13 apache2.

References

Session Fixation vulnerability report

low severity

Arbitrary Code Injection

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks by uploading a file with a multi-line name containing HTTP header sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.

Remediation

There is no fixed version for Debian:13 apache2.

References

Arbitrary Code Injection vulnerability report

low severity

Cross-site Scripting (XSS)

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in conjunction with a crafted DNS response, as demonstrated by injecting XSS sequences, related to an "Inverse Lookup Log Corruption (ILLC)" issue.

Remediation

There is no fixed version for Debian:13 apache2.

References

Cross-site Scripting (XSS) vulnerability report

low severity

Improper Verification of Cryptographic Signature

Vulnerable module: apt
Introduced through: apt@3.0.3 and apt/libapt-pkg7.0@3.0.3

Detailed paths

Introduced through: wordpress@latest › apt@3.0.3
Introduced through: wordpress@latest › apt/libapt-pkg7.0@3.0.3

NVD Description

Note: Versions mentioned in the description apply only to the upstream apt package and not the apt package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

It was found that apt-key in apt, all versions, do not correctly validate gpg keys with the master keyring, leading to a potential man-in-the-middle attack.

Remediation

There is no fixed version for Debian:13 apt.

References

Improper Verification of Cryptographic Signature vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability classified as problematic has been found in GNU Binutils 2.43. Affected is the function xstrdup of the file xstrdup.c of the component ld. The manipulation leads to memory leak. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function process_debug_info of the file binutils/dwarf.c of the component DWARF Section Handler. The manipulation leads to memory leak. Attacking locally is a requirement. The identifier of the patch is e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Improper Resource Shutdown or Release

Vulnerable module: libxml2
Introduced through: libxml2@2.12.7+dfsg+really2.9.14-2.1+deb13u2

Detailed paths

Introduced through: wordpress@latest › libxml2@2.12.7+dfsg+really2.9.14-2.1+deb13u2

NVD Description

Note: Versions mentioned in the description apply only to the upstream libxml2 package and not the libxml2 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The code maintainer explains, that "[t]he issue can only be triggered with untrusted SGML catalogs and it makes absolutely no sense to use untrusted catalogs. I also doubt that anyone is still using SGML catalogs at all."

Remediation

There is no fixed version for Debian:13 libxml2.

References

Improper Resource Shutdown or Release vulnerability report

low severity

Out-of-Bounds

Vulnerable module: ncurses/libncursesw6
Introduced through: ncurses/libncursesw6@6.5+20250216-2, ncurses/libtinfo6@6.5+20250216-2 and others

Detailed paths

Introduced through: wordpress@latest › ncurses/libncursesw6@6.5+20250216-2
Introduced through: wordpress@latest › ncurses/libtinfo6@6.5+20250216-2
Introduced through: wordpress@latest › ncurses/ncurses-base@6.5+20250216-2
Introduced through: wordpress@latest › ncurses/ncurses-bin@6.5+20250216-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream ncurses package and not the ncurses package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocess_termcap of the file tinfo/parse_entry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to version 6.5-20250329 is able to address this issue. It is recommended to upgrade the affected component.

Remediation

There is no fixed version for Debian:13 ncurses.

References

Out-of-Bounds vulnerability report

low severity

Link Following

Vulnerable module: perl
Introduced through: perl@5.40.1-6, perl/libperl5.40@5.40.1-6 and others

Detailed paths

Introduced through: wordpress@latest › perl@5.40.1-6
Introduced through: wordpress@latest › perl/libperl5.40@5.40.1-6
Introduced through: wordpress@latest › perl/perl-base@5.40.1-6
Introduced through: wordpress@latest › perl/perl-modules-5.40@5.40.1-6

NVD Description

Note: Versions mentioned in the description apply only to the upstream perl package and not the perl package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

_is_safe in the File::Temp module for Perl does not properly handle symlinks.

Remediation

There is no fixed version for Debian:13 perl.

References

Link Following vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfd_malloc of the file libbfd.c of the component ld. The manipulation leads to memory leak. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipulation leads to memory leak. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the file libiberty/xmalloc.c of the component ld. The manipulation leads to memory leak. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Memory Leak

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_scan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."

Remediation

There is no fixed version for Debian:13 binutils.

References

Memory Leak vulnerability report

low severity

Out-of-Bounds

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function _bfd_elf_write_section_eh_frame of the file bfd/elf-eh-frame.c of the component ld. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue.

Remediation

There is no fixed version for Debian:13 binutils.

References

Out-of-Bounds vulnerability report

low severity

Improper Resource Shutdown or Release

Vulnerable module: tiff/libtiff6
Introduced through: tiff/libtiff6@4.7.0-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › tiff/libtiff6@4.7.0-3+deb13u1

NVD Description

A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PS_Lvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The name of the patch is 6ba36f159fd396ad11bf6b7874554197736ecc8b. It is recommended to apply a patch to fix this issue. One of the maintainers explains, that "[t]his error only occurs if DEFER_STRILE_LOAD (defer-strile-load:BOOL=ON) or TIFFOpen( .. "rD") option is used."

Remediation

There is no fixed version for Debian:13 tiff.

References

Improper Resource Shutdown or Release vulnerability report

low severity

CVE-2025-66200

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others
Fixed in: 2.4.66-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

mod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid.

This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65.

Users are recommended to upgrade to version 2.4.66, which fixes the issue.

Remediation

Upgrade Debian:13 apache2 to version 2.4.66-1~deb13u1 or higher.

References

CVE-2025-66200 vulnerability report

low severity

Improper Neutralization

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others
Fixed in: 2.4.66-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server through environment variables set via the Apache configuration unexpectedly superseding variables calculated by the server for CGI programs.

This issue affects Apache HTTP Server from 2.4.0 through 2.4.65.

Users are recommended to upgrade to version 2.4.66 which fixes the issue.

Remediation

Upgrade Debian:13 apache2 to version 2.4.66-1~deb13u1 or higher.

References

Improper Neutralization vulnerability report

low severity

Information Exposure

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others
Fixed in: 2.4.66-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

Apache HTTP Server 2.4.65 and earlier with Server Side Includes (SSI) enabled and mod_cgid (but not mod_cgi) passes the shell-escaped query string to #exec cmd="..." directives.

This issue affects Apache HTTP Server before 2.4.66.

Users are recommended to upgrade to version 2.4.66, which fixes the issue.

Remediation

Upgrade Debian:13 apache2 to version 2.4.66-1~deb13u1 or higher.

References

Information Exposure vulnerability report

low severity

Integer Overflow or Wraparound

Vulnerable module: apache2
Introduced through: apache2@2.4.65-2, apache2/apache2-bin@2.4.65-2 and others
Fixed in: 2.4.66-1~deb13u1

Detailed paths

Introduced through: wordpress@latest › apache2@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-bin@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-data@2.4.65-2
Introduced through: wordpress@latest › apache2/apache2-utils@2.4.65-2

NVD Description

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures (~30 days in default configurations), to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds.

This issue affects Apache HTTP Server: from 2.4.30 before 2.4.66.

Users are recommended to upgrade to version 2.4.66, which fixes the issue.

Remediation

Upgrade Debian:13 apache2 to version 2.4.66-1~deb13u1 or higher.

References

Integer Overflow or Wraparound vulnerability report

low severity

new

Resource Exhaustion

Vulnerable module: avahi/libavahi-client3
Introduced through: avahi/libavahi-client3@0.8-16, avahi/libavahi-common-data@0.8-16 and others

Detailed paths

Introduced through: wordpress@latest › avahi/libavahi-client3@0.8-16
Introduced through: wordpress@latest › avahi/libavahi-common-data@0.8-16
Introduced through: wordpress@latest › avahi/libavahi-common3@0.8-16

NVD Description

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions up to and including 0.9-rc2, the simple protocol server ignores the documented client limit and accepts unlimited connections, allowing for easy local DoS. Although CLIENTS_MAX is defined, server_work() unconditionally accept()s and client_new() always appends the new client and increments n_clients. There is no check against the limit. When client cannot be accepted as a result of maximal socket number of avahi-daemon, it logs unconditionally error per each connection. Unprivileged local users can exhaust daemon memory and file descriptors, causing a denial of service system-wide for mDNS/DNS-SD. Exhausting local file descriptors causes increased system load caused by logging errors of each of request. Overloading prevents glibc calls using nss-mdns plugins to resolve *.local. names and link-local addresses. As of time of publication, no known patched versions are available, but a candidate fix is available in pull request 808, and some workarounds are available. Simple clients are offered for nss-mdns package functionality. It is not possible to disable the unix socket /run/avahi-daemon/socket, but resolution requests received via DBus are not affected directly. Tools avahi-resolve, avahi-resolve-address and avahi-resolve-host-name are not affected, they use DBus interface. It is possible to change permissions of unix socket after avahi-daemon is started. But avahi-daemon does not provide any configuration for it. Additional access restrictions like SELinux can also prevent unwanted tools to access the socket and keep resolution working for trusted users.

Remediation

There is no fixed version for Debian:13 avahi.

References

Resource Exhaustion vulnerability report

low severity

new

CVE-2025-66861

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file.

Remediation

There is no fixed version for Debian:13 binutils.

References

CVE-2025-66861 vulnerability report

low severity

new

CVE-2025-66862

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

Remediation

There is no fixed version for Debian:13 binutils.

References

CVE-2025-66862 vulnerability report

low severity

new

CVE-2025-66863

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

Remediation

There is no fixed version for Debian:13 binutils.

References

CVE-2025-66863 vulnerability report

low severity

new

CVE-2025-66864

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

Remediation

There is no fixed version for Debian:13 binutils.

References

CVE-2025-66864 vulnerability report

low severity

new

CVE-2025-66865

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

Remediation

There is no fixed version for Debian:13 binutils.

References

CVE-2025-66865 vulnerability report

low severity

new

CVE-2025-66866

Vulnerable module: binutils
Introduced through: binutils@2.44-3, binutils/binutils-common@2.44-3 and others

Detailed paths

Introduced through: wordpress@latest › binutils@2.44-3
Introduced through: wordpress@latest › binutils/binutils-common@2.44-3
Introduced through: wordpress@latest › binutils/binutils-x86-64-linux-gnu@2.44-3
Introduced through: wordpress@latest › binutils/libbinutils@2.44-3
Introduced through: wordpress@latest › binutils/libctf-nobfd0@2.44-3
Introduced through: wordpress@latest › binutils/libctf0@2.44-3
Introduced through: wordpress@latest › binutils/libgprofng0@2.44-3
Introduced through: wordpress@latest › binutils/libsframe1@2.44-3

NVD Description

An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file.

Remediation

There is no fixed version for Debian:13 binutils.

References

CVE-2025-66866 vulnerability report

low severity

CVE-2025-10966

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

Note: Versions mentioned in the description apply only to the upstream curl package and not the curl package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms.

This prevents curl from detecting MITM attackers and more.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-10966 vulnerability report

low severity

new

CVE-2025-13034

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

When using CURLOPT_PINNEDPUBLICKEY option with libcurl or --pinnedpubkey with the curl tool,curl should check the public key of the server certificate to verify the peer.

This check was skipped in a certain condition that would then make curl allow the connection without performing the proper check, thus not noticing a possible impostor. To skip this check, the connection had to be done with QUIC with ngtcp2 built to use GnuTLS and the user had to explicitly disable the standard certificate verification.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-13034 vulnerability report

low severity

new

CVE-2025-14017

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

When doing multi-threaded LDAPS transfers (LDAP over TLS) with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers.

Disabling certificate verification for a specific transfer could unintentionally disable the feature for other threads as well.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-14017 vulnerability report

low severity

new

CVE-2025-14524

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

When an OAuth2 bearer token is used for an HTTP(S) transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass on the bearer token to the new target host.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-14524 vulnerability report

low severity

new

CVE-2025-14819

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

When doing TLS related transfers with reused easy or multi handles and altering the CURLSSLOPT_NO_PARTIALCHAIN option, libcurl could accidentally reuse a CA store cached in memory for which the partial chain option was reversed. Contrary to the user's wishes and expectations. This could make libcurl find and accept a trust chain that it otherwise would not.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-14819 vulnerability report

low severity

new

CVE-2025-15079

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

When doing SSH-based transfers using either SCP or SFTP, and setting the known_hosts file, libcurl could still mistakenly accept connecting to hosts not present in the specified file if they were added as recognized in the libssh global known_hosts file.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-15079 vulnerability report

low severity

new

CVE-2025-15224

Vulnerable module: curl
Introduced through: curl@8.14.1-2+deb13u2 and curl/libcurl4t64@8.14.1-2+deb13u2

Detailed paths

Introduced through: wordpress@latest › curl@8.14.1-2+deb13u2
Introduced through: wordpress@latest › curl/libcurl4t64@8.14.1-2+deb13u2

NVD Description

When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication, curl would wrongly still ask and authenticate using a locally running SSH agent.

Remediation

There is no fixed version for Debian:13 curl.

References

CVE-2025-15224 vulnerability report

low severity

Allocation of Resources Without Limits or Throttling

Vulnerable module: expat/libexpat1
Introduced through: expat/libexpat1@2.7.1-2

Detailed paths

Introduced through: wordpress@latest › expat/libexpat1@2.7.1-2

NVD Description

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

Remediation

There is no fixed version for Debian:13 expat.

References

Allocation of Resources Without Limits or Throttling vulnerability report

low severity

Stack-based Buffer Overflow

Vulnerable module: ghostscript
Introduced through: ghostscript@10.05.1~dfsg-1+deb13u1, ghostscript/libgs-common@10.05.1~dfsg-1+deb13u1 and others

Detailed paths

Introduced through: wordpress@latest › ghostscript@10.05.1~dfsg-1+deb13u1
Introduced through: wordpress@latest › ghostscript/libgs-common@10.05.1~dfsg-1+deb13u1
Introduced through: wordpress@latest › ghostscript/libgs10@10.05.1~dfsg-1+deb13u1
Introduced through: wordpress@latest › ghostscript/libgs10-common@10.05.1~dfsg-1+deb13u1

NVD Description

In Artifex GhostXPS before 10.06.0, there is a stack-based buffer overflow in xps_unpredict_tiff in xpstiff.c because the samplesperpixel value is not checked.

Remediation

There is no fixed version for Debian:13 ghostscript.

References

Stack-based Buffer Overflow vulnerability report

low severity

CVE-2025-9820

Vulnerable module: gnutls28/libgnutls30t64
Introduced through: gnutls28/libgnutls30t64@3.8.9-3
Fixed in: 3.8.9-3+deb13u1

Detailed paths

Introduced through: wordpress@latest › gnutls28/libgnutls30t64@3.8.9-3

NVD Description

This vulnerability has not been analyzed by NVD yet.

Remediation

Upgrade Debian:13 gnutls28 to version 3.8.9-3+deb13u1 or higher.

References

https://security-tracker.debian.org/tracker/CVE-2025-9820

CVE-2025-9820 vulnerability report

low severity

Out-of-bounds Read

Vulnerable module: imagemagick/imagemagick-7-common
Introduced through: imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3, imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3 and others
Fixed in: 8:7.1.1.43+dfsg1-1+deb13u4

Detailed paths

Introduced through: wordpress@latest › imagemagick/imagemagick-7-common@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickcore-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3
Introduced through: wordpress@latest › imagemagick/libmagickwand-7.q16-10@8:7.1.1.43+dfsg1-1+deb13u3

NVD Description

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser contains a critical integer overflow vulnerability in its ReadTIMImage function (coders/tim.c). The code reads width and height (16-bit values) from the file header and calculates image_size = 2 * width * height without checking for overflow. On 32-bit systems (or where size_t is 32-bit), this calculation can overflow if width and height are large (e.g., 65535), wrapping around to a small value. This results in a small heap allocation via AcquireQuantumMemory and later operations relying on the dimensions can trigger an out of bounds read. This issue is fixed in version 7.1.2-10.

Remediation

Upgrade Debian:13 imagemagick to version 8:7.1.1.43+dfsg1-1+deb13u4 or higher.

References

Out-of-bounds Read vulnerability report

low severity

CVE-2024-26461

Vulnerable module: krb5/libgssapi-krb5-2
Introduced through: krb5/libgssapi-krb5-2@1.21.3-5, krb5/libk5crypto3@1.21.3-5 and others

Detailed paths

Introduced through: wordpress@latest › krb5/libgssapi-krb5-2@1.21.3-5
Introduced through: wordpress@latest › krb5/libk5crypto3@1.21.3-5
Introduced through: wordpress@latest › krb5/libkrb5-3@1.21.3-5
Introduced through: wordpress@latest › krb5/libkrb5support0@1.21.3-5

NVD Description

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

Remediation

There is no fixed version for Debian:13 krb5.

References

CVE-2024-26461 vulnerability report

low severity

Memory Leak

Vulnerable module: krb5/libgssapi-krb5-2
Introduced through: krb5/libgssapi-krb5-2@1.21.3-5, krb5/libk5crypto3@1.21.3-5 and others

Detailed paths

Introduced through: wordpress@latest › krb5/libgssapi-krb5-2@1.21.3-5
Introduced through: wordpress@latest › krb5/libk5crypto3@1.21.3-5
Introduced through: wordpress@latest › krb5/libkrb5-3@1.21.3-5
Introduced through: wordpress@latest › krb5/libkrb5support0@1.21.3-5

NVD Description

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

Remediation

There is no fixed version for Debian:13 krb5.

References

Memory Leak vulnerability report

low severity

CVE-2025-29070

Vulnerable module: lcms2/liblcms2-2
Introduced through: lcms2/liblcms2-2@2.16-2

Detailed paths

Introduced through: wordpress@latest › lcms2/liblcms2-2@2.16-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream lcms2 package and not the lcms2 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color management, is there only as a helper for low-level programming and investigation."

Remediation

There is no fixed version for Debian:13 lcms2.

References

CVE-2025-29070 vulnerability report

low severity

CVE-2024-38949

Vulnerable module: libde265/libde265-0
Introduced through: libde265/libde265-0@1.0.15-1+b3

Detailed paths

Introduced through: wordpress@latest › libde265/libde265-0@1.0.15-1+b3

NVD Description

Note: Versions mentioned in the description apply only to the upstream libde265 package and not the libde265 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to display444as420 function at sdl.cc

Remediation

There is no fixed version for Debian:13 libde265.

References

CVE-2024-38949 vulnerability report

low severity

CVE-2024-38950

Vulnerable module: libde265/libde265-0
Introduced through: libde265/libde265-0@1.0.15-1+b3

Detailed paths

Introduced through: wordpress@latest › libde265/libde265-0@1.0.15-1+b3

NVD Description

Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application via crafted payload to __interceptor_memcpy function.

Remediation

There is no fixed version for Debian:13 libde265.

References

CVE-2024-38950 vulnerability report

low severity

new

Out-of-bounds Read

Vulnerable module: libheif/libheif-plugin-dav1d
Introduced through: libheif/libheif-plugin-dav1d@1.19.8-1, libheif/libheif-plugin-libde265@1.19.8-1 and others

Detailed paths

Introduced through: wordpress@latest › libheif/libheif-plugin-dav1d@1.19.8-1
Introduced through: wordpress@latest › libheif/libheif-plugin-libde265@1.19.8-1
Introduced through: wordpress@latest › libheif/libheif1@1.19.8-1

NVD Description

Note: Versions mentioned in the description apply only to the upstream libheif package and not the libheif package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path triggers a heap buffer over-read in HeifPixelImage::overlay(). The function computes a negative row length (likely from an unclipped overlay rectangle or invalid offsets), which then underflows when converted to size_t and is passed to memcpy, causing a very large read past the end of the source plane and a crash. Version 1.21.0 contains a patch. As a workaround, avoid decoding images using iovl overlay boxes.

Remediation

There is no fixed version for Debian:13 libheif.

References

Out-of-bounds Read vulnerability report

low severity

new

CVE-2025-13151

Vulnerable module: libtasn1-6
Introduced through: libtasn1-6@4.20.0-2

Detailed paths

Introduced through: wordpress@latest › libtasn1-6@4.20.0-2

NVD Description

Note: Versions mentioned in the description apply only to the upstream libtasn1-6 package and not the libtasn1-6 package as distributed by Debian. See How to fix? for Debian:13 relevant fixed versions and status.

Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn1_expend_octet_string.

Remediation

There is no fixed version for Debian:13 libtasn1-6.

References

CVE-2025-13151 vulnerability report

low severity

Resource Exhaustion

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

A vulnerability was found in OpenJPEG similar to CVE-2019-6988. This flaw allows an attacker to bypass existing protections and cause an application crash through a maliciously crafted file.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Resource Exhaustion vulnerability report

low severity

Resource Exhaustion

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Resource Exhaustion vulnerability report

low severity

Resource Exhaustion

Vulnerable module: openjpeg2/libopenjp2-7
Introduced through: openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

Detailed paths

Introduced through: wordpress@latest › openjpeg2/libopenjp2-7@2.5.3-2.1~deb13u1

NVD Description

A flaw was found in OpenJPEG. Maliciously constructed pictures can cause the program to enter a large loop and continuously print warning messages on the terminal.

Remediation

There is no fixed version for Debian:13 openjpeg2.

References

Resource Exhaustion vulnerability report

low severity

new

Out-of-bounds Read

Vulnerable module: openldap/libldap2
Introduced through: openldap/libldap2@2.6.10+dfsg-1

Detailed paths

Introduced through: wordpress@latest › openldap/libldap2@2.6.10+dfsg-1

NVD Description

OpenLDAP Lightning Memory-Mapped Database (LMDB) versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underflow in the readline() function of mdb_load. When processing malformed input containing an embedded NUL byte, an unsigned offset calculation can underflow and cause an out-of-bounds read of one byte before the allocated heap buffer. This can cause mdb_load to crash, leading to a limited denial-of-service condition.

Remediation

There is no fixed version for Debian:13 openldap.

References

Out-of-bounds Read vulnerability report

low severity

CVE-2024-56433

Vulnerable module: shadow/login.defs
Introduced through: shadow/login.defs@1:4.17.4-2 and shadow/passwd@1:4.17.4-2

Detailed paths

Introduced through: wordpress@latest › shadow/login.defs@1:4.17.4-2
Introduced through: wordpress@latest › shadow/passwd@1:4.17.4-2

NVD Description

shadow-utils (aka shadow) 4.4 through 4.17.0 establishes a default /etc/subuid behavior (e.g., uid 100000 through 165535 for the first user account) that can realistically conflict with the uids of users defined on locally administered networks, potentially leading to account takeover, e.g., by leveraging newuidmap for access to an NFS home directory (or same-host resources in the case of remote logins by these local network users). NOTE: it may also be argued that system administrators should not have assigned uids, within local networks, that are within the range that can occur in /etc/subuid.

Remediation

There is no fixed version for Debian:13 shadow.

References

CVE-2024-56433 vulnerability report

low severity

CVE-2025-7709

Vulnerable module: sqlite3/libsqlite3-0
Introduced through: sqlite3/libsqlite3-0@3.46.1-7

Detailed paths

Introduced through: wordpress@latest › sqlite3/libsqlite3-0@3.46.1-7

NVD Description

An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds.

Remediation

There is no fixed version for Debian:13 sqlite3.

References

CVE-2025-7709 vulnerability report

Vulnerabilities

Dependencies

Source

Target OS

high severity

Integer Overflow or Wraparound

Detailed paths

NVD Description

Remediation

References

high severity new

Integer Overflow or Wraparound

Detailed paths

NVD Description

Remediation

References

high severity new

Uncontrolled Recursion

Detailed paths

NVD Description

Remediation

References

medium severity

Integer Overflow or Wraparound

Detailed paths

NVD Description

Remediation

References

medium severity new

Uncontrolled Recursion

Detailed paths

NVD Description

Remediation

References

medium severity

Double Free

Detailed paths

NVD Description

Remediation

References

medium severity

Integer Overflow or Wraparound

Detailed paths

NVD Description

Remediation

References

medium severity

Out-of-Bounds

Detailed paths

NVD Description

Remediation

References

low severity

Out-of-Bounds

Detailed paths

NVD Description

Remediation

References

low severity

OS Command Injection

Detailed paths

NVD Description

Remediation

References

low severity

CVE-2005-2541

Detailed paths

NVD Description

Remediation

References

low severity

Improper Input Validation

Detailed paths

NVD Description

Remediation

References

low severity

CVE-2019-1010023

Detailed paths

NVD Description

high severity

new

high severity

new

medium severity

new