Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8836 CRITICAL 973 HIGH 3882 MEDIUM 3638 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
51 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 7 149 115 10
52 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 124 640 478 23
53 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
54 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
55 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
56 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
57 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
58 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
59 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
60 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
61 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1655 1387 115
62 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
51 9.8
- 		CRITICAL
Network 		In Rhonabwy through 1.1.13, HMAC signature verification uses a strcmp function that is vulnerable to side-channel attacks, because it stops the comparison when the first difference is spotted in the … CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-25714 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:* 		2024-11-21 18:01
2024-02-11 		Show GitHub Exploit DB Packet Storm
52 7.5
- 		HIGH
Network 		A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to … - CVE-2023-6536 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:44
2024-02-8 		Show GitHub Exploit DB Packet Storm
53 7.5
- 		HIGH
Network 		A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to … - CVE-2023-6356 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:43
2024-02-8 		Show GitHub Exploit DB Packet Storm
54 5.3
- 		MEDIUM
Adjacent 		A race condition was found in the Linux kernel's net/bluetooth in {conn,adv}_{min,max}_interval_set() function. This can result in I2cap connection or broadcast abnormality issue, possibly leading to… CWE-362
Race Condition 		CVE-2024-24858 cpe:2.3:o:debian:debian_linux:10.0:* 2025-02-14 03:17
2024-02-5 		Show GitHub Exploit DB Packet Storm
55 6.8
- 		MEDIUM
Adjacent 		A race condition was found in the Linux kernel's net/bluetooth device driver in conn_info_{min,max}_age_set() function. This can result in integrity overflow issue, possibly leading to bluetooth conn… CWE-362
CWE-190
Race Condition
 Integer Overflow or Wraparound 		CVE-2024-24857 cpe:2.3:o:debian:debian_linux:10.0:* 2025-02-14 03:17
2024-02-5 		Show GitHub Exploit DB Packet Storm
56 7.8
- 		HIGH
Local 		A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as … CWE-416
 Use After Free 		CVE-2024-1086 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:49
2024-01-31 		Show GitHub Exploit DB Packet Storm
57 7.5
- 		HIGH
Network 		Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them may be of zero length, i.e. carry no data at all. … CWE-476
 NULL Pointer Dereference 		CVE-2023-46838 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:29
2024-01-29 		Show GitHub Exploit DB Packet Storm
58 8.8
- 		HIGH
Network 		Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… NVD-CWE-noinfo
CVE-2024-0755 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
59 6.5
- 		MEDIUM
Network 		In specific HSTS configurations an attacker could have bypassed HSTS on a subdomain. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. NVD-CWE-noinfo
CVE-2024-0753 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm
60 8.8
- 		HIGH
Network 		A malicious devtools extension could have been used to escalate privileges. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7. CWE-269
 Improper Privilege Management 		CVE-2024-0751 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:47
2024-01-23 		Show GitHub Exploit DB Packet Storm