Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse project leap 42.1 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2015-7758
Gummi 0.6.5 allows local users to write to arbitrary files via a symlink attack on a temporary dot file that uses the name of an existing file and a (1) .aux, (2) .log, (3) .out, (4) .pdf, or (5) .toc extension for the file name, as demonstrated by .thesis.tex.aux.
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Gummi Project Gummi 0.6.5
383
VMScore
CVE-2016-5317
Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and previous versions, as used in GNOME nautilus, allows malicious users to cause a denial of service attack (crash) via a crafted TIFF file.
Libtiff Libtiff 4.0.6
Opensuse Opensuse 13.1
Opensuse Project Leap 42.1
Opensuse Opensuse 13.2
445
VMScore
CVE-2016-10048
Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote malicious users to load arbitrary modules via unspecified vectors.
Imagemagick Imagemagick 6.9.4-7
Opensuse Project Leap 42.1
445
VMScore
CVE-2017-6318
saned in sane-backends 1.0.25 allows remote malicious users to obtain sensitive memory information via a crafted SANE_NET_CONTROL_OPTION packet.
Opensuse Leap 42.1
Sane-backends Project Sane-backends 1.0.25
668
VMScore
CVE-2015-8980
The plural form formula in ngettext family of calls in php-gettext prior to 1.0.12 allows remote malicious users to execute arbitrary code.
Php-gettext Project Php-gettext
Opensuse Leap 42.2
Opensuse Leap 42.1
Redhat Enterprise Linux 5.0
Fedoraproject Fedora 24
383
VMScore
CVE-2016-6265
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote malicious users to cause a denial of service (crash) via a crafted PDF file.
Artifex Mupdf
Opensuse Leap 42.1
Opensuse Opensuse 13.2
632
VMScore
CVE-2016-6172
PowerDNS (aka pdns) Authoritative Server prior to 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Powerdns Authoritative Server
409
VMScore
CVE-2017-5331
Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils prior to 0.31.1 allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.
Icoutils Project Icoutils
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Leap 42.2
605
VMScore
CVE-2016-2347
Integer underflow in the decode_level3_header function in lib/lha_file_header.c in Lhasa prior to 0.3.1 allows remote malicious users to execute arbitrary code via a crafted archive.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Lhasa Project Lhasa
383
VMScore
CVE-2016-8568
The git_commit_message function in oid.c in libgit2 prior to 0.24.3 allows remote malicious users to cause a denial of service (out-of-bounds read) via a cat-file command with a crafted object file.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Suse Linux Enterprise 12.0
Opensuse Leap 42.2
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Libgit2 Project Libgit2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »