Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8839 CRITICAL 973 HIGH 3883 MEDIUM 3640 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
21 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 July 11, 2026 June 30, 2028 June 30, 2033 7 149 116 10
22 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 Aug. 14, 2024 Aug. 31, 2026 June 30, 2031 124 641 478 23
23 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
24 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
25 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
26 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
27 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
28 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
29 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
30 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
31 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1656 1389 115
32 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
21 8.1
-
HIGH
Network
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote a… CWE-362
Race Condition
CVE-2024-6387 cpe:2.3:o:debian:debian_linux:12.0:* 2024-11-21 18:49
2024-07-1
Show GitHub Exploit DB Packet Storm
22 9.1
-
CRITICAL
Network
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. NVD-CWE-Other
CVE-2024-37371 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 18:23
2024-06-29
Show GitHub Exploit DB Packet Storm
23 4.3
-
MEDIUM
Network
By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system. This vulnerability affects Firefox < 127, Firefox E… CWE-203
 Information Exposure Through Discrepancy
CVE-2024-5690 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 18:48
2024-06-11
Show GitHub Exploit DB Packet Storm
24 6.1
-
MEDIUM
Network
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes. CWE-79
Cross-site Scripting
CVE-2024-37383 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 18:23
2024-06-7
Show GitHub Exploit DB Packet Storm
25 8.1
-
HIGH
Network
An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memo… CWE-125
Out-of-bounds Read
CVE-2024-5629 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 18:48
2024-06-6
Show GitHub Exploit DB Packet Storm
26 7.8
-
HIGH
Local
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_dump_full_key() Skip sessions that are being teared down (status == SES_EXITING) to avoid … CWE-416
 Use After Free
CVE-2024-35866 cpe:2.3:o:debian:debian_linux:11.0:* 2026-04-22 04:07
2024-05-19
Show GitHub Exploit DB Packet Storm
27 5.5
-
MEDIUM
Local
In the Linux kernel, the following vulnerability has been resolved: fat: fix uninitialized field in nostale filehandles When fat_encode_fh_nostale() encodes file handle without a parent it stores o… - CVE-2024-26973 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-05-1
Show GitHub Exploit DB Packet Storm
28 5.5
-
MEDIUM
Local
In the Linux kernel, the following vulnerability has been resolved: serial/pmac_zilog: Remove flawed mitigation for rx irq flood The mitigation was intended to stop the irq completely. That may be … - CVE-2024-26999 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-05-1
Show GitHub Exploit DB Packet Storm
29 5.5
-
MEDIUM
Local
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix command flush on cable pull System crash due to command failed to flush back to SCSI layer. BUG: unable to h… - CVE-2024-26931 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-05-1
Show GitHub Exploit DB Packet Storm
30 7.0
-
HIGH
Local
In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Wri… - CVE-2024-26872 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-04-17
Show GitHub Exploit DB Packet Storm