pkg:Debian/mapserver
34 total CVEsCRITICAL4HIGH5MEDIUM3
✅ Check your installed version
All known vulnerabilities
- from 0, < 7.6.2-1+deb11u1
- from 0, < 6.4.1-5+deb8u3
- from 0, < 6.0.1-3.2+deb7u4
- from 0, < 7.0.4-1
- from 0
- from 0, < 7.6.2-1+deb11u2
- HIGH7.5CVE-2010-1678Mapserver 5.2, 5.4 and 5.6 before 5.6.5-2 improperly validates symbol index values during Mapfile parsing.from 0, < 5.6.5-2
- from 0, < 6.0.1-3.2+deb7u3
- from 0, < 7.0.3-1
- from 0
- from 0, < 7.6.2-1+deb11u1
- from 0, < 7.6.2-1+deb11u1
- —CVE-2013-7262SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer before 6.4.1, when a WMS-Time service…from 0, < 6.4.1-1
- —CVE-2011-2975Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 might allow remote attackers to cause a…from 0, < 6.0.1-1
- —CVE-2011-2704Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers to execute arbitrary code via vectors r…from 0, < 6.0.1-1
- from 0, < 6.0.1-1
- from 0, < 5.6.5-2+squeeze2
- —CVE-2010-3485SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute arbitrary SQL commands via the userhandle…from 0, < 5.6.4-1
- —CVE-2010-3484SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute arbitrary SQL commands via the handle para…from 0, < 5.6.4-1
- —CVE-2010-2540mapserv.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 does not properly restrict the use of CGI command-line arguments that…from 0, < 5.6.4-1
- from 0, < 5.6.4-1
- from 0, < 5.0.3-3+lenny5
- —CVE-2009-2281Multiple heap-based buffer underflows in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x through 4.10.4 and 5.x before 5…from 0, < 5.4.2-1
- —CVE-2009-1177Multiple stack-based buffer overflows in maptemplate.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 have unknown impact a…from 0, < 5.2.2-1
- —CVE-2009-1176mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 does not ensure that the string holding the id parameter ends in a…from 0, < 5.2.2-1
- —CVE-2009-0843The msLoadQuery function in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to determine the existence…from 0, < 5.2.2-1
- —CVE-2009-0842mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to read arbitrary invalid .map files via a full pathnam…from 0, < 5.2.2-1
- —CVE-2009-0841Directory traversal vulnerability in mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2, when running on Windows with…from 0, < 5.2.2-1
- —CVE-2009-0840Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows…from 0, < 5.4.2-1
- from 0, < 4.10.0-5.1+etch4
- from 0, < 5.2.2-1
- —CVE-2007-4629Buffer overflow in the processLine function in maptemplate.c in MapServer before 4.10.3 allows attackers to cause a denial of service and p…from 0, < 4.10.3-1
- from 0, < 4.10.0-5.1+etch2
- from 0, < 4.10.3-1