Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8836 CRITICAL 973 HIGH 3882 MEDIUM 3638 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
21 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 7 149 115 10
22 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 124 640 478 23
23 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
24 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
25 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
26 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
27 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
28 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
29 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
30 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
31 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1655 1387 115
32 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
21 6.1
- 		MEDIUM
Network 		Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes. CWE-79
Cross-site Scripting 		CVE-2024-37383 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 18:23
2024-06-7 		Show GitHub Exploit DB Packet Storm
22 8.1
- 		HIGH
Network 		An out-of-bounds read in the 'bson' module of PyMongo 4.6.2 or earlier allows deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memo… CWE-125
Out-of-bounds Read 		CVE-2024-5629 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 18:48
2024-06-6 		Show GitHub Exploit DB Packet Storm
23 7.8
- 		HIGH
Local 		In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_dump_full_key() Skip sessions that are being teared down (status == SES_EXITING) to avoid … CWE-416
 Use After Free 		CVE-2024-35866 cpe:2.3:o:debian:debian_linux:11.0:* 2026-04-22 04:07
2024-05-19 		Show GitHub Exploit DB Packet Storm
24 5.5
- 		MEDIUM
Local 		In the Linux kernel, the following vulnerability has been resolved: fat: fix uninitialized field in nostale filehandles When fat_encode_fh_nostale() encodes file handle without a parent it stores o… - CVE-2024-26973 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-05-1 		Show GitHub Exploit DB Packet Storm
25 5.5
- 		MEDIUM
Local 		In the Linux kernel, the following vulnerability has been resolved: serial/pmac_zilog: Remove flawed mitigation for rx irq flood The mitigation was intended to stop the irq completely. That may be … - CVE-2024-26999 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-05-1 		Show GitHub Exploit DB Packet Storm
26 5.5
- 		MEDIUM
Local 		In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix command flush on cable pull System crash due to command failed to flush back to SCSI layer. BUG: unable to h… - CVE-2024-26931 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-05-1 		Show GitHub Exploit DB Packet Storm
27 7.0
- 		HIGH
Local 		In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Wri… - CVE-2024-26872 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-04-17 		Show GitHub Exploit DB Packet Storm
28 4.7
- 		MEDIUM
Local 		In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip It's possible that mtk_crtc->event is NULL in mtk_drm_crt… - CVE-2024-26874 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-04-17 		Show GitHub Exploit DB Packet Storm
29 4.7
- 		MEDIUM
Local 		In the Linux kernel, the following vulnerability has been resolved: packet: annotate data-races around ignore_outgoing ignore_outgoing is read locklessly from dev_queue_xmit_nit() and packet_getsoc… - CVE-2024-26862 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-04-17 		Show GitHub Exploit DB Packet Storm
30 4.7
- 		MEDIUM
Local 		In the Linux kernel, the following vulnerability has been resolved: net/bnx2x: Prevent access to a freed page in page_pool Fix race condition leading to system crash during EEH error handling Duri… - CVE-2024-26859 cpe:2.3:o:debian:debian_linux:10.0:* 2025-03-4 02:47
2024-04-17 		Show GitHub Exploit DB Packet Storm