Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse project vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-18215
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.
Xv Project Xv 3.10a
Opensuse Leap 42.3
7.8
CVSSv3
CVE-2020-15396
In HylaFAX+ up to and including 7.0.2 and HylaFAX Enterprise, the faxsetup utility calls chown on files in user-owned directories. By winning a race, a local attacker could use this to escalate his privileges to root.
Hylafax\\+ Project Hylafax\\+
Ifax Hylafax Enterprise -
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
9.8
CVSSv3
CVE-2016-4303
The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a non-hex character in a JSON string, which triggers a heap-based buffer overflow.
Iperf3 Project Iperf3
Novell Suse Package Hub For Suse Linux Enterprise 12
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
5.9
CVSSv3
CVE-2020-13614
An issue exists in ssl.c in Axel prior to 2.17.8. The TLS implementation lacks hostname verification.
Axel Project Axel
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7
CVSSv3
CVE-2019-18932
log.c in Squid Analysis Report Generator (sarg) up to and including 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can ...
Squid Analysis Report Generator Project Squid Analysis Report Generator
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7.8
CVSSv3
CVE-2019-19918
Lout 3.40 has a heap-based buffer overflow in the srcnext() function in z02.c.
Lout Project Lout 3.40
Opensuse Leap 15.1
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 33
7.8
CVSSv3
CVE-2019-19917
Lout 3.40 has a buffer overflow in the StringQuotedWord() function in z39.c.
Lout Project Lout 3.40
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Opensuse Leap 15.2
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
7.5
CVSSv3
CVE-2016-10048
Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote malicious users to load arbitrary modules via unspecified vectors.
Imagemagick Imagemagick 6.9.4-7
Opensuse Project Leap 42.1
7.8
CVSSv3
CVE-2016-9957
Stack-based buffer overflow in game-music-emu prior to 0.6.1.
Opensuse Project Leap 42.1
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise 12.0
Suse Linux Enterprise Workstation Extension 12
Opensuse Leap 42.2
Opensuse Opensuse 12.1
Suse Suse Linux Enterprise Server 12
Game-music-emu Project Game-music-emu
7.8
CVSSv3
CVE-2016-9958
game-music-emu prior to 0.6.1 allows remote malicious users to write to arbitrary memory locations.
Opensuse Project Leap 42.1
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise 12.0
Suse Linux Enterprise Workstation Extension 12
Opensuse Leap 42.2
Opensuse Opensuse 12.1
Suse Suse Linux Enterprise Server 12
Game-music-emu Project Game-music-emu
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »