Lucene search
K

17001 matches found

Debian CVE
Debian CVE
added 2020/02/24 4:20 p.m.22 views

CVE-2020-9366

A buffer overflow was found in the way GNU Screen before 4.8.0 treated the special escape OSC 49. Specially crafted output, or a special program, could corrupt memory and crash Screen or possibly have unspecified other impact...

9.8CVSS10AI score0.0264EPSS
Exploits0
Cvelist
Cvelist
added 2020/02/24 4:20 p.m.20 views

CVE-2020-9366

A buffer overflow was found in the way GNU Screen before 4.8.0 treated the special escape OSC 49. Specially crafted output, or a special program, could corrupt memory and crash Screen or possibly have unspecified other impact...

10AI score0.0264EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2020/02/24 4:20 p.m.25 views

CVE-2020-9366

A buffer overflow was found in the way GNU Screen before 4.8.0 treated the special escape OSC 49. Specially crafted output, or a special program, could corrupt memory and crash Screen or possibly have unspecified other impact...

9.8CVSS10AI score0.0264EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.43 views

EulerOS 2.0 SP5 : binutils (EulerOS-SA-2020-1094)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in dexpression1 in...

7.8CVSS7AI score0.0669EPSS
Exploits9References9
OSV
OSV
added 2020/02/21 11:6 p.m.9 views

MGASA-2020-0093 Updated patch packages fix security vulnerabilities

Updated patch package fixes security vulnerabilities: In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. CVE-2019-13636. A vulnerability was found in GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited...

9.3CVSS6.8AI score0.0453EPSS
Exploits1References4
Mageia
Mageia
added 2020/02/21 11:6 p.m.40 views

Updated patch packages fix security vulnerabilities

Updated patch package fixes security vulnerabilities: In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. CVE-2019-13636. A vulnerability was found in GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited...

9.3CVSS2AI score0.0453EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/02/21 12:0 a.m.28 views

Fedora: Security Advisory for poppler (FEDORA-2020-b8b7a4a0e5)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.2AI score0.02679EPSS
Exploits1References2
CNVD
CNVD
added 2020/02/21 12:0 a.m.2 views

GNU Aspell libaspell.a Buffer Overflow Vulnerability

GNU Aspell is a spell checker. A buffer overflow vulnerability exists in the libaspell.a file in versions of GNU Aspell prior to 0.60.8. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in incorrect...

9.1CVSS7.2AI score0.01739EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/02/20 12:0 a.m.43 views

openSUSE: Security Advisory for inn (openSUSE-SU-2020:0234-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.7AI score0.005EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/02/16 12:0 a.m.40 views

openSUSE: Security Advisory for hostapd (openSUSE-SU-2020:0222-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.5AI score0.05372EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/02/14 12:0 a.m.50 views

Fedora: Security Advisory for radare2 (FEDORA-2020-acd8cdb08d)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.8AI score0.02515EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2020/02/12 12:0 a.m.3 views

PT-2020-20383 · Proglottis +3 · Proglottis Go Wrapper +3

Name of the Vulnerable Software and Affected Versions: proglottis Go wrapper versions prior to 0.1.1 Description: The issue is related to a use-after-free problem, which can cause a crash or potentially allow code execution during GPG signature verification. This is due to improper memory...

7.5CVSS6.4AI score0.05071EPSS
Exploits1References29
OSV
OSV
added 2020/02/11 8:15 p.m.1 views

UBUNTU-CVE-2013-2213

The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...

5.5CVSS6AI score0.00306EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2020/02/11 7:19 p.m.20 views

CVE-2013-2213

The KRandom::random function in KDE Paste Applet after 4.10.5 in kdeplasma-addons uses the GNU C Library rand function's linear congruential generator, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by predicting the generator output...

5.5CVSS6.6AI score0.00306EPSS
Exploits1
0day.today
0day.today
added 2020/02/11 12:0 a.m.115 views

OpenSMTPD 6.6.1 - Local Privilege Escalation Exploit

Exploit Title: OpenSMTPD 6.6.1 - Local Privilege Escalation Date: 2020-02-02 Exploit Author: Marco Ivaldi Vendor Homepage: https://www.opensmtpd.org/ Version: OpenSMTPD 6.4.0 - 6.6.1 Tested on: OpenBSD 6.6, Debian GNU/Linux bullseye/sid with opensmtpd 6.6.1p1-1 CVE: CVE-2020-7247 !/usr/bin/perl...

10CVSS9.2AI score0.98946EPSS
Exploits27
OpenVAS
OpenVAS
added 2020/02/03 12:0 a.m.9 views

Linux: System Information in /etc/motd

The content of /etc/motd file is displayed to users after successful login. Following escape chars display information about the system: - \m: machine architecture - \r: operating system release - \s: operating system name - \v: operating system version Copyright C 2020 Greenbone Networks GmbH...

7AI score
Exploits0References4
OpenVAS
OpenVAS
added 2020/02/03 12:0 a.m.6 views

Linux: /etc/issue.net chmod

/etc/issue.net is a text file which contains a message or system identification to be printed before the login prompt for users who connect from the network. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

7.3AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/01/31 11:18 p.m.29 views

CVE-2018-20712

A heap-based buffer over-read exists in the function dexpression1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt...

6.5CVSS2.9AI score0.02685EPSS
Exploits1References2
CERT
CERT
added 2020/01/31 12:0 a.m.67 views

OpenSMTPD vulnerable to local privilege escalation and remote code execution

Overview Qualys Research Labs found that the smtpmailaddr function in OpenSMTPD version 6.6 does not properly sanitize user input, which could allow a local attacker to escalate their privileges, and allow either a local or remote attacker to execute arbitrary code as root. Description OpenSMTPD ...

10CVSS9.6AI score0.98946EPSS
Exploits27References9
Tenable Nessus
Tenable Nessus
added 2020/01/30 12:0 a.m.53 views

CentOS 7 : libarchive (RHSA-2020:0203)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0203 advisory. - archivereadformatrarreaddata in archivereadsupportformatrar.c in libarchive before 3.4.0 has a use-after-free in a certain ARCHIVEFAILED situation, related to...

7.5CVSS6.4AI score0.0404EPSS
Exploits0References2
Rows per page
Query Builder