opensuse leap 15.0 vulnerabilities and exploits

(subscribe to this query)

6.4

CVSSv2

A Improper Neutralization of CRLF Sequences vulnerability in Open Build Service allows remote attackers to cause deletion of directories by tricking obs-service-refresh_patches to delete them. Affected releases are openSUSE Open Build Service: versions prior to...

Opensuse Leap 42.3 Opensuse Leap 15.0

6.8

CVSSv2

An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then be written out of bounds,...

Libsdl Sdl2 Image 2.0.4 Opensuse Backports Sle 15.0 Opensuse Leap 15.0 Opensuse Leap 15.1

6.8

CVSSv2

An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes....

Aubio Aubio 0.4.6 Opensuse Leap 15.0 Suse Linux Enterprise 15.0 Opensuse Leap 42.31 Github repository available

2.1

CVSSv2

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where...

Oracle Vm Virtualbox Opensuse Leap 15.0 Opensuse Leap 15.1

4

CVSSv2

An issue was discovered in the Linux kernel before 5.0.10. SMB2_read in fs/cifs/smb2pdu.c has a use-after-free. NOTE: this was not fixed correctly in 5.0.10; see the 5.0.11 ChangeLog, which documents a memory leak....

Linux Linux Kernel Opensuse Leap 15.0 Opensuse Leap 15.1

5.8

CVSSv2

There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012....

Gnu Ncurses Opensuse Leap 15.0 Opensuse Leap 15.11 Github repository available

5

CVSSv2

PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1_MSG_DISCONNECT message....

Putty Putty Opensuse Leap 15.0 Opensuse Leap 15.1

5

CVSSv2

The POWER9 backend in GNU Compiler Collection (GCC) before version 10 could optimize multiple calls of the __builtin_darn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For...

Gnu Gcc Opensuse Leap 15.0 Opensuse Leap 15.12 Github repositories available

4.3

CVSSv2

ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadVIFFImage in coders/viff.c....

Imagemagick Imagemagick Opensuse Leap 15.0 Opensuse Leap 15.1

5

CVSSv2

PuTTY before 0.73 mishandles the "bracketed paste mode" protection mechanism, which may allow a session to be affected by malicious clipboard content....

Putty Putty Opensuse Leap 15.1 Opensuse Leap 15.0

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook