Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Debian Number Of NVD 8839 CRITICAL 973 HIGH 3883 MEDIUM 3640 LOW 343
URL https://www.debian.org/
Explanation It will be supported for about 5 years after release, including the LTS period.
After 5 years, you will need to use a company that provides paid support or update to a newer version.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://www.debian.org/releases/index.en.html
2 https://wiki.debian.org/LTS
3 https://www.debian.org/lts/security/
4 https://wiki.debian.org/DebianReleases
5 https://wiki.debian.org/LTS/Extended
6 https://www.debian.org/security/

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
51 Debian 12 12.7 Aug. 31, 2024 Jan. 1, 2023 July 11, 2026 June 30, 2028 June 30, 2033 7 149 116 10
52 Debian 11 11.11 Aug. 31, 2024 Aug. 14, 2021 Aug. 14, 2024 Aug. 31, 2026 June 30, 2031 124 641 478 23
53 Debian 10 10.13 Sept. 10, 2022 July 6, 2019 Aug. 31, 2022 326 1404 1210 111
54 Debian 9 9.13 July 18, 2020 June 17, 2017 June 30, 2022 569 1739 1553 134
55 Debian 8 8.0 April 25, 2015 June 17, 2018 June 30, 2020 498 1437 1431 106
56 Debian 7 7.1 May 4, 2013 April 25, 2016 May 31, 2018 112 494 587 62
57 Debian 5 5.0.9 Feb. 14, 2009 Feb. 6, 2012 5 70 85 25
58 Debian 4 4.0 April 8, 2007 Feb. 15, 2010 5 92 72 10
59 Debian 3 3.0.23 July 19, 2002 March 31, 2008 7 86 74 24
60 Debian 2 2.5.3-3 July 24, 1998 June 30, 2003 0 48 27 15
61 Debian 1 1.3.1 May 17, 1996 Jan. 1, 2000 365 1656 1389 115
62 Debian 0 0.93 Jan. 1, 1900 Jan. 1, 2000 0 8 1 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
51 6.5
-
MEDIUM
Network
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during P… CWE-287
Improper Authentication
CVE-2023-52160 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:39
2024-02-23
Show GitHub Exploit DB Packet Storm
52 7.5
-
HIGH
Network
mod_auth_openidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. In affected versions mi… NVD-CWE-noinfo
CVE-2024-24814 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:59
2024-02-14
Show GitHub Exploit DB Packet Storm
53 5.5
-
MEDIUM
Local
A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push recursively calls into the code block. The OVS module does … CWE-787
 Out-of-bounds Write
CVE-2024-1151 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:49
2024-02-12
Show GitHub Exploit DB Packet Storm
54 9.8
-
CRITICAL
Network
In Rhonabwy through 1.1.13, HMAC signature verification uses a strcmp function that is vulnerable to side-channel attacks, because it stops the comparison when the first difference is spotted in the … CWE-203
 Information Exposure Through Discrepancy
CVE-2024-25714 cpe:2.3:o:debian:debian_linux:12.0:*
cpe:2.3:o:debian:debian_linux:11.0:*
2024-11-21 18:01
2024-02-11
Show GitHub Exploit DB Packet Storm
55 7.5
-
HIGH
Network
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to … - CVE-2023-6536 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:44
2024-02-8
Show GitHub Exploit DB Packet Storm
56 7.5
-
HIGH
Network
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to … - CVE-2023-6356 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:43
2024-02-8
Show GitHub Exploit DB Packet Storm
57 5.3
-
MEDIUM
Adjacent
A race condition was found in the Linux kernel's net/bluetooth in {conn,adv}_{min,max}_interval_set() function. This can result in I2cap connection or broadcast abnormality issue, possibly leading to… CWE-362
Race Condition
CVE-2024-24858 cpe:2.3:o:debian:debian_linux:10.0:* 2025-02-14 03:17
2024-02-5
Show GitHub Exploit DB Packet Storm
58 6.8
-
MEDIUM
Adjacent
A race condition was found in the Linux kernel's net/bluetooth device driver in conn_info_{min,max}_age_set() function. This can result in integrity overflow issue, possibly leading to bluetooth conn… CWE-362
CWE-190
Race Condition
 Integer Overflow or Wraparound
CVE-2024-24857 cpe:2.3:o:debian:debian_linux:10.0:* 2025-02-14 03:17
2024-02-5
Show GitHub Exploit DB Packet Storm
59 7.8
-
HIGH
Local
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as … CWE-416
 Use After Free
CVE-2024-1086 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:49
2024-01-31
Show GitHub Exploit DB Packet Storm
60 7.5
-
HIGH
Network
Transmit requests in Xen's virtual network protocol can consist of multiple parts. While not really useful, except for the initial part any of them may be of zero length, i.e. carry no data at all. … CWE-476
 NULL Pointer Dereference
CVE-2023-46838 cpe:2.3:o:debian:debian_linux:10.0:* 2024-11-21 17:29
2024-01-29
Show GitHub Exploit DB Packet Storm