Lucene search
K

81 matches found

ArchLinux
ArchLinux
added 2017/01/02 12:0 a.m.38 views

[ASA-201701-5] lib32-libpng: denial of service

Arch Linux Security Advisory ASA-201701-5 ========================================= Severity: Low Date : 2017-01-02 CVE-ID : CVE-2016-10087 Package : lib32-libpng Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-120 Summary ======= The package lib32-libpng before...

7.5CVSS1.9AI score0.05517EPSS
Exploits0References3
ArchLinux
ArchLinux
added 2016/12/15 12:0 a.m.514 views

[ASA-201612-17] lib32-flashplugin: multiple issues

Arch Linux Security Advisory ASA-201612-17 ========================================== Severity: Critical Date : 2016-12-15 CVE-ID : CVE-2016-7867 CVE-2016-7868 CVE-2016-7869 CVE-2016-7870 CVE-2016-7871 CVE-2016-7872 CVE-2016-7873 CVE-2016-7874 CVE-2016-7875 CVE-2016-7876 CVE-2016-7877 CVE-2016-78...

9.3CVSS1.6AI score0.18786EPSS
Exploits0References19
ArchLinux
ArchLinux
added 2016/11/25 12:0 a.m.549 views

[ASA-201611-27] lib32-libtiff: multiple issues

Arch Linux Security Advisory ASA-201611-27 ========================================== Severity: Critical Date : 2016-11-25 CVE-ID : CVE-2010-2596 CVE-2014-8127 CVE-2014-8130 CVE-2015-7313 CVE-2015-8665 CVE-2015-8668 CVE-2015-8683 CVE-2016-3186 CVE-2016-3619 CVE-2016-3620 CVE-2016-3621 CVE-2016-36...

9.8CVSS9.9AI score0.13722EPSS
Exploits13References130
ArchLinux
ArchLinux
added 2016/11/03 12:0 a.m.529 views

[ASA-201611-12] lib32-gdk-pixbuf2: arbitrary code execution

Arch Linux Security Advisory ASA-201611-12 ========================================== Severity: Critical Date : 2016-11-03 CVE-ID : CVE-2016-6352 Package : lib32-gdk-pixbuf2 Type : arbitrary code execution Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package...

7.5CVSS2.3AI score0.03855EPSS
Exploits1References4
ArchLinux
ArchLinux
added 2016/11/02 12:0 a.m.515 views

[ASA-201611-4] lib32-curl: multiple issues

Arch Linux Security Advisory ASA-201611-4 ========================================= Severity: High Date : 2016-11-02 CVE-ID : CVE-2016-8615 CVE-2016-8616 CVE-2016-8617 CVE-2016-8618 CVE-2016-8619 CVE-2016-8621 CVE-2016-8623 CVE-2016-8624 CVE-2016-8625 Package : lib32-curl Type : multiple issues...

9.8CVSS0.05915EPSS
Exploits0References23
ArchLinux
ArchLinux
added 2016/10/26 12:0 a.m.512 views

[ASA-201610-19] lib32-flashplugin: arbitrary code execution

Arch Linux Security Advisory ASA-201610-19 ========================================== Severity: Critical Date : 2016-10-26 CVE-ID : CVE-2016-7855 Package : lib32-flashplugin Type : arbitrary code execution Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package...

9.3CVSS2.2AI score0.25198EPSS
Exploits0References3
ArchLinux
ArchLinux
added 2016/09/27 12:0 a.m.39 views

[ASA-201609-28] lib32-openssl: denial of service

Arch Linux Security Advisory ASA-201609-28 ========================================== Severity: Medium Date : 2016-09-27 CVE-ID : CVE-2016-7052 Package : lib32-openssl Type : denial of service Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package lib32-openssl...

7.5CVSS1.5AI score0.30216EPSS
Exploits1References3
ArchLinux
ArchLinux
added 2016/09/26 12:0 a.m.37 views

[ASA-201609-26] lib32-gnutls: certificate verification bypass

Arch Linux Security Advisory ASA-201609-26 ========================================== Severity: Medium Date : 2016-09-26 CVE-ID : CVE-2016-7444 Package : lib32-gnutls Type : certificate verification bypass Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package...

7.5CVSS0.8AI score0.02437EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2016/09/20 12:0 a.m.44 views

[ASA-201609-18] lib32-curl: denial of service

Arch Linux Security Advisory ASA-201609-18 ========================================== Severity: Low Date : 20916-09-20 CVE-ID : CVE-2016-7167 Package : lib32-curl Type : denial of service Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package lib32-curl before...

9.8CVSS1.2AI score0.11737EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2016/09/20 12:0 a.m.21 views

[ASA-201609-17] lib32-jansson: denial of service

Arch Linux Security Advisory ASA-201609-17 ========================================== Severity: Medium Date : 2016-09-20 CVE-ID : CVE-2016-4425 Package : lib32-jansson Type : denial of service Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package lib32-jansson...

7.5CVSS1.9AI score0.01894EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2016/08/08 12:0 a.m.53 views

lib32-glibc: denial of service

CVE-2016-3075 denial of service The getnetbyname implementation in nssdns contains a potentially unbounded alloca call in the form of a call to strdupa, leading to a stack overflow stack exhaustion and a crash if getnetbyname is invoked on a very long name. - CVE-2016-5417 denial of service The...

5CVSS2.1AI score0.07629EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2016/06/19 12:0 a.m.41 views

lib32-glibc: denial of service

clntudpcall allocates a buffer, using alloca, to store the payload of an incoming socket error. If a malicious server floods the client with crafted ICMP and UDP packets, this can cause the client to allocate sufficiently many such temporary buffers to cause a stack frame overflow denial of...

7.5CVSS2.8AI score0.03922EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/06/13 12:0 a.m.78 views

lib32-expat: multiple issues

CVE-2012-6702 predictable random numbers It was found that when calling XMLParse ahead of rand, it causes the pseudo random generator to generate non-random predictable numbers. - CVE-2016-5300 denial of service It was found that original fix for CVE-2012-0876 used too little entropy for the hash...

7.8CVSS2.3AI score0.06539EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/03/11 12:0 a.m.38 views

lib32-flashplugin: arbitrary code execution

CVE-2016-0963 CVE-2016-0993 CVE-2016-1010 arbitrary code execution Integer overflow vulnerabilities that could lead to code execution. - CVE-2016-0987 CVE-2016-0988 CVE-2016-0990 CVE-2016-0991 CVE-2016-0994 CVE-2016-0995 CVE-2016-0996 CVE-2016-0997 CVE-2016-0998 CVE-2016-0999 CVE-2016-1000...

10CVSS3.3AI score0.29839EPSS
Exploits14References24
ArchLinux
ArchLinux
added 2016/02/25 12:0 a.m.45 views

lib32-libssh2: man-in-the-middle

There is a bits/bytes confusion bug resulting in generation of a significantly short ephemeral secret for the diffie-hellman-group1 and diffie-hellman-group14 key exchange methods. The resulting secret is 128 bits long, instead of the recommended sizes of 1024 and 2048 bits respectively. There ar...

4.3CVSS0.4AI score0.02697EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/02/17 12:0 a.m.47 views

lib32-glibc: multiple issues

CVE-2015-7547 arbitrary code execution A stack-based buffer overflow was found in the way the libresolv library performed dual A/AAAA DNS queries. A remote attacker could create a specially crafted DNS response which could cause libresolv to crash or, potentially, execute code with the...

6.8CVSS2.3AI score0.89557EPSS
Exploits18References6
ArchLinux
ArchLinux
added 2016/02/06 12:0 a.m.55 views

lib32-libsndfile: multiple issues

CVE-2014-9496 unspecified impact The sd2parsersrcfork function in sd2.c in lib32-libsndfile allows attackers to have unspecified impact via vectors related to a 1 map offset or 2 rsrc marker, which triggers an out-of-bounds read. - CVE-2014-9756 denial of service The psffwrite function in...

10CVSS7.4AI score0.134EPSS
Exploits3References3
ArchLinux
ArchLinux
added 2016/02/03 12:0 a.m.54 views

lib32-nettle: improper cryptographic calculations

CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 improper cryptographic calculations It has been discovered that multiple carry propagation bugs are producing wrong results in calculations. They affect the NIST P-256 and P-384 curves. The P-256 bug is in the C code and affects multiple architectures...

7.5CVSS1.8AI score0.04212EPSS
Exploits0References5
ArchLinux
ArchLinux
added 2016/02/02 12:0 a.m.50 views

lib32-curl: authentication bypass

A vulnerability was found in a way libcurl uses NTLM-authenticated proxy connections. Libcurl will reuse NTLM-authenticated proxy connections without properly making sure that the connection was authenticated with the same credentials as set for this transfer. Since NTLM-based authentication is...

5CVSS2.4AI score0.09327EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2015/11/17 12:0 a.m.46 views

lib32-libpng: multiple issues

CVE-2015-7981 out-of-bounds read This is an array indexing error, which can lead to an out-of-bounds read of a static buffer. The result is now unsigned no longer negative, but now a huge positive number. - CVE-2015-8126 arbitrary code execution Buffer overflow vulnerabilities in functions...

7.5CVSS1.7AI score0.10339EPSS
Exploits1References5
Rows per page
Query Builder