Lucene search
K

136 matches found

Debian
Debian
added 2019/03/28 9:22 p.m.127 views

[SECURITY] [DLA 1734-1] libraw security update

Package : libraw Version : 0.16.0-9+deb8u4 CVE ID : CVE-2018-5800 CVE-2018-5801 CVE-2018-5802 CVE-2018-5808 CVE-2018-5817 CVE-2018-5818 CVE-2018-5819 Secunia Research has discovered multiple vulnerabilities in libraw, a raw image decoder library, which can be exploited to cause a Denial of Servic...

8.8CVSS8.5AI score0.02817EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/03/28 12:0 a.m.46 views

GLSA-201903-23 : Chromium: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201903-23 Chromium: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium and Google Chrome. Please review the referenced CVE identifiers and Google Chrome Releases for details. Impact : Please review...

9.3CVSS7.6AI score0.61537EPSS
Exploits13References21
OPENSUSE Linux
OPENSUSE Linux
added 2019/03/28 12:0 a.m.130 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:1062-1 Rating: important References: 1129059 Cross-References: CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796...

9.3CVSS6.8AI score0.07287EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2019/03/18 12:0 a.m.57 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2019:0343-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS7.8AI score0.07287EPSS
Exploits3References2
OPENSUSE Linux
OPENSUSE Linux
added 2019/03/17 12:0 a.m.218 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:0343-1 Rating: important References: 1129059 Cross-References: CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796...

9.3CVSS6.8AI score0.07287EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2019/03/13 11:23 a.m.20 views

CVE-2019-5802

Incorrect handling of download origins in Navigation in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page...

6.5CVSS3.1AI score0.0085EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2019/03/13 12:0 a.m.46 views

[ASA-201903-8] chromium: multiple issues

Arch Linux Security Advisory ASA-201903-8 ========================================= Severity: High Date : 2019-03-13 CVE-ID : CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796 CVE-2019-5797 CVE-2019-5798...

9.3CVSS0.6AI score0.07287EPSS
Exploits3References34
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2019/03/12 12:0 a.m.46 views

Stable Channel Update for Desktop

The Chrome team is delighted to announce the promotion of Chrome 73 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 73.0.3683.75 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming...

9.3CVSS8.7AI score0.07287EPSS
Exploits3Affected Software1
CVE
CVE
added 2018/12/07 10:0 p.m.112 views

CVE-2018-5802

LibRaw contains an out-of-bounds read vulnerability in the kodak_radc_load_raw() function (internal/dcraw_common.cpp) due to a buf variable issue. This affects LibRaw versions prior to 0.18.7 and can lead to a crash. Remediation: upgrade LibRaw to version 0.18.7 or later (as specified in the CVE ...

8.8CVSS8.2AI score0.01974EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2018/12/07 10:0 p.m.28 views

CVE-2018-5802

An error within the "kodakradcloadraw" function internal/dcrawcommon.cpp related to the "buf" variable in LibRaw versions prior to 0.18.7 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash...

8.8CVSS6AI score0.01974EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.40 views

Scientific Linux Security Update : libkdcraw on SL7.x x86_64 (20181030)

LibRaw: Stack-based buffer overflow in quicktake100loadraw function in internal/dcrawcommon.cpp CVE-2018-5805 LibRaw: Heap-based buffer overflow in LibRaw::kodakycbcrloadraw function in internal/dcrawcommon.cpp CVE-2018-5800 LibRaw: NULL pointer dereference in LibRaw::unpack function...

8.8CVSS6.8AI score0.02548EPSS
Exploits1References6
Cent OS
Cent OS
added 2018/11/15 6:48 p.m.86 views

libkdcraw security update

CentOS Errata and Security Advisory CESA-2018:3065 An update for libkdcraw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

8.8CVSS6.9AI score0.02548EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2018/10/30 9:45 a.m.63 views

Moderate: Red Hat Security Advisory: libkdcraw security update

An update for libkdcraw is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS6.9AI score0.02548EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/10/24 12:0 a.m.35 views

SUSE SLED12 Security Update : libraw (SUSE-SU-2018:3343-1)

This update for libraw fixes the following issues : Security issues fixed : CVE-2018-5800: Fixed heap-based buffer overflow in LibRaw::kodakycbcrloadraw function bsc1084691. CVE-2018-5801: Fixed NULL pointer dereference in LibRaw::unpack function bsc1084690. CVE-2018-5802: Fixed out-of-bounds rea...

8.8CVSS6.8AI score0.02548EPSS
Exploits1References16
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:30 p.m.34 views

Security Bulletin: SmartCloud Orchestrator - Multiple security vulnerabilities exist in the IBM SDK, Java™ Technology Edition (CVE-2013-5802, CVE-2013-5772, CVE-2014-0411)

Summary IBM SmartCloud Orchestrator is shipped with an IBM SDK that is based on Oracle JDK. Oracle released October 2013 and January 2014 critical patch updates CPU, which contain security vulnerability fixes. IBM SDK, Java™ Technology Edition, has been updated to include those fixes. The IBM SDK...

7.5CVSS0.9AI score0.04431EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:31 p.m.34 views

Security Bulletin:Tivoli Multiple vulnerabilities in Netcool/Impact (CVE-2013-5802,,CVE-2013-5825,CVE-2013-5372)

Summary Multiple security vulnerabilities exist in the IBM SDK for Java that is shipped with Netcool/Impact. Vulnerability Details Netcool/Impact is shipped with IBM WebSphere Application Server that includes an IBM SDK for Java that is based on the Oracle JDK. Oracle has released October 2013...

7.5CVSS0.4AI score0.04464EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 1:1 p.m.29 views

Security Bulletin: Multiple vulnerabilities in usage of IBM Java SDK in IBM Content Analytics with Enterprise Search and IBM OmniFind Enterprise Edition (CVE-2013-5802, CVE-2013-4002, CVE-2013-5825, CVE-2013-5372)

Summary Potential security vulnerabilities exist in the IBM Java SDK that is shipped with the IBM Content Analytics with Enterprise Search and IBM OmniFind Enterprise Edition products. Vulnerability Details CVE ID: CVE-2013-5802 DESCRIPTION: JRE vulnerable to denial of service attacks via malform...

7.5CVSS0.7AI score0.24738EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 4:52 a.m.29 views

Security Bulletin: Rational Insight - Oracle CPU October 2013 (CVE-2013-5802, CVE-2013-5825)

Summary Multiple security vulnerabilities exist in the IBM JRE that is shipped with Rational Insight. The same security vulnerabilities also exist in the IBM Java SDK that is shipped with the IBM WebSphere Application Server WAS. Vulnerability Details | Subscribe to My Notifications to be notifie...

7.5CVSS0.6AI score0.04464EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 4:50 a.m.41 views

Security Bulletin: Multiple Vulnerabilities in current IBM SDK for Java for IBM Rational ClearQuest Web Client (CVE-2013-5802 and CVE-2013-5825)

Summary IBM Rational ClearQuest Web server is sensitive to vulnerabilities in the IBM JRE supplied with IBM WebSphere Application Server. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information...

7.5CVSS0.6AI score0.04464EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:34 p.m.26 views

Security Bulletin: Multiple security vulnerabilities exist in WebSphere Transformation Extender (CVE-2013-5802 CVE-2013-4002 CVE-2013-5825 CVE-2013-5372 CVE-2013-0599 CVE-2013-0464 CVE-2013-0467 CVE-2013-2962 CVE-2013-2415)

Summary WebSphere Transformation Extender products are affected by multiple security vulnerabilities that exist in Oracle JRE and IBM Eclipse Help System. Additionally, WTX Launcher is vulnerable to a denial of service attack using a buffer overflow. Vulnerability Details WebSphere Transformation...

7.5CVSS0.1AI score0.24738EPSS
Exploits1Affected Software1
Rows per page
Query Builder