Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
opensuse leap 15.0 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-5060
An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then be written out of bounds,...
Libsdl Sdl2 Image 2.0.4
Opensuse Backports Sle 15.0
Opensuse Leap 15.0
Opensuse Leap 15.1
6.4
CVSSv2
CVE-2018-12477
A Improper Neutralization of CRLF Sequences vulnerability in Open Build Service allows remote attackers to cause deletion of directories by tricking obs-service-refresh_patches to delete them. Affected releases are openSUSE Open Build Service: versions prior to...
Opensuse Leap 15.0
Opensuse Leap 42.3
6.8
CVSSv2
CVE-2018-14523
An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes....
Aubio Aubio 0.4.6
Opensuse Leap 15.0
Opensuse Leap 42.3
Suse Linux Enterprise 15.0
1 Github repository available
5
CVSSv2
CVE-2019-17068
PuTTY before 0.73 mishandles the "bracketed paste mode" protection mechanism, which may allow a session to be affected by malicious clipboard content....
Putty Putty
Opensuse Leap 15.0
Opensuse Leap 15.1
6.8
CVSSv2
CVE-2018-14522
An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_pitch_set_unit in pitch/pitch.c, as demonstrated by aubionotes....
Aubio Aubio 0.4.6
Opensuse Leap 15.0
Opensuse Leap 42.3
Suse Linux Enterprise 15.0
1 Github repository available
5.8
CVSSv2
CVE-2019-5823
Insufficient policy enforcement in service workers in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page....
Google Chrome
Opensuse Backports Sle-15
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Leap 42.3
5
CVSSv2
CVE-2019-17069
PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1_MSG_DISCONNECT message....
Putty Putty
Opensuse Leap 15.0
Opensuse Leap 15.1
5
CVSSv2
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection (GCC) before version 10 could optimize multiple calls of the __builtin_darn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For...
Gnu Gcc
Opensuse Leap 15.0
Opensuse Leap 15.1
1 Github repository available
5.8
CVSSv2
CVE-2019-17595
There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012....
Gnu Ncurses
Opensuse Leap 15.0
Opensuse Leap 15.1
1 Github repository available
4.6
CVSSv2
CVE-2019-17594
There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012....
Gnu Ncurses
Opensuse Leap 15.0
Opensuse Leap 15.1
1 Github repository available
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2021-21973
mass assignment
CVE-2021-1396
CVE-2018-19518
CVE-2020-28599
deserialization
CVE-2021-1230
CVE-2021-26681
1
2
3
4
5
6
NEXT »