Lucene search
K

6681 matches found

Fedora
Fedora
added 2016/09/22 12:34 a.m.13 views

[SECURITY] Fedora 24 Update: php-horde-Horde-Mime-Viewer-2.2.1-1.fc24

Provides rendering drivers for MIME data...

3.6AI score
Exploits0
OSV
OSV
added 2016/09/22 12:0 a.m.3 views

UBUNTU-CVE-2016-5275

Buffer overflow in the mozilla::gfx::FilterSupport::ComputeSourceNeededRegions function in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code by leveraging improper interaction between empty filters and CANVAS element rendering...

8.8CVSS7.7AI score0.0312EPSS
Exploits0References4
Fedora
Fedora
added 2016/09/21 8:29 p.m.14 views

[SECURITY] Fedora 23 Update: php-horde-Horde-Mime-Viewer-2.2.1-1.fc23

Provides rendering drivers for MIME data...

3.6AI score
Exploits0
Fedora
Fedora
added 2016/09/13 6:34 p.m.14 views

[SECURITY] Fedora 25 Update: php-horde-Horde-Mime-Viewer-2.2.1-1.fc25

Provides rendering drivers for MIME data...

3.6AI score
Exploits0
CVE
CVE
added 2016/09/11 10:0 a.m.83 views

CVE-2016-5163

The CVE-2016-5163 issue affects Google Chrome’s bidirectional-text handling in the address bar (omnibox). Specifically, before Chrome 53.0.2785.89 on Windows/OS X and before 53.0.2785.92 on Linux, RTL Unicode text could cause the address bar to render URLs incorrectly, enabling spoofing via craft...

4.3CVSS5.4AI score0.01219EPSS
Exploits0References13Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/09/02 12:0 a.m.53 views

SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2016:2195-1)

Mozilla Firefox was updated to 45.3.0 ESR to fix the following issues bsc991809 : - MFSA 2016-62/CVE-2016-2835/CVE-2016-2836 Miscellaneous memory safety hazards rv:48.0 / rv:45.3 - MFSA 2016-63/CVE-2016-2830 Favicon network connection can persist when page is closed - MFSA 2016-64/CVE-2016-2838...

9.8CVSS7.2AI score0.08767EPSS
Exploits3References35
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.29 views

Fedora 24 : webkitgtk4 (2016-4728dfe3ec)

This update addresses the following vulnerabilities : - CVE-2016-4622, CVE-2016-4624, CVE-2016-4591, CVE-2016-4590 Additional fixes : - Fix performance in accelerated compositing mode with the modesetting intel driver and DRI3 enabled. - Reduce the amount of file descriptors that the Web Process...

8.8CVSS6.8AI score0.18843EPSS
Exploits4References5
OSV
OSV
added 2016/08/28 12:0 a.m.43 views

DLA-604-1 ruby-actionpack-3.2 - security update

Bulletin has no description...

7.5CVSS6.2AI score0.95537EPSS
Exploits18
Fedora
Fedora
added 2016/08/27 3:19 p.m.27 views

[SECURITY] Fedora 24 Update: webkitgtk4-2.12.4-1.fc24

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

8.8CVSS1.8AI score0.18843EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2016/08/24 12:0 a.m.57 views

RHEL 6 : kernel (RHSA-2016:1664)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.8CVSS6.7AI score0.15073EPSS
Exploits3References3
myhack58
myhack58
added 2016/08/19 12:0 a.m.18 views

Firefox, Chrome are caught: for the mainstream the browser's address fraud vulnerabilities-vulnerability warning-the black bar safety net

! Researcher Rafay Baloch yesterday disclosed the vulnerability details, he was in year 3, on Singapore's Black Hat Asia to do about the address bar spoofing of speech. The vulnerability principle Baloch in the personal web site said that the vulnerability of the main reason is that Chrome and...

6.7AI score
Exploits0
OSV
OSV
added 2016/08/12 4:10 p.m.10 views

SUSE-SU-2016:2061-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nspr and mozilla-nss

MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nspr and mozilla-nss were updated to fix nine security issues. MozillaFirefox was updated to version 45.3.0 ESR. mozilla-nss was updated to version 3.21.1, mozilla-nspr to version 4.12. These security issues were fixed in 45.3.0ESR: -...

9.8CVSS8AI score0.24039EPSS
Exploits10References40
Tenable Nessus
Tenable Nessus
added 2016/08/08 12:0 a.m.27 views

Ubuntu 14.04 LTS / 16.04 LTS : Firefox vulnerabilities (USN-3044-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3044-1 advisory. Gustavo Grieco discovered an out-of-bounds read during XML parsing in some circumstances. If a user were tricked in to opening a specially...

9.8CVSS8.2AI score0.13335EPSS
Exploits6References23
Hacker One
Hacker One
added 2016/08/07 3:25 p.m.35 views

Nextcloud: XSS on IOS app via HTML rendering

@bugdiscloseguys reported an issue to us leading to a stored XSS attack on the iOS app. To be exploitable the victim would have to open a malicious file shared by an adversary with the user. On request of the reporter, this issue is only disclosed limitedly. While we usually don't agree to disclo...

5.6AI score
Exploits0
Ubuntu
Ubuntu
added 2016/08/05 12:39 p.m.66 views

USN-3044-1: Firefox vulnerabilities

Gustavo Grieco discovered an out-of-bounds read during XML parsing in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or obtain sensitive information. CVE-2016-0718...

9.8CVSS8.2AI score0.13335EPSS
Exploits6
OSV
OSV
added 2016/08/05 12:39 p.m.9 views

USN-3044-1 firefox vulnerabilities

Gustavo Grieco discovered an out-of-bounds read during XML parsing in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or obtain sensitive information. CVE-2016-0718...

9.8CVSS7.4AI score0.13335EPSS
Exploits6References23
OSV
OSV
added 2016/08/05 1:59 a.m.4 views

CVE-2016-5263

The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 mishandles rendering display transformation, which allows remote attackers to execute arbitrary code via a crafted web site that leverages "type confusion."...

8.8CVSS9.5AI score
Exploits0References11
Cvelist
Cvelist
added 2016/08/05 1:0 a.m.20 views

CVE-2016-5263

The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 mishandles rendering display transformation, which allows remote attackers to execute arbitrary code via a crafted web site that leverages "type confusion."...

9.3AI score0.02253EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2016/08/03 12:0 a.m.25 views

CVE-2016-5263

The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 mishandles rendering display transformation, which allows remote attackers to execute arbitrary code via a crafted web site that leverages "type confusion."...

8.8CVSS7.6AI score0.02253EPSS
Exploits0References4
CNVD
CNVD
added 2016/08/01 12:0 a.m.1 views

paps 'read_file()' heap buffer overflow vulnerability

paps is a converter from UTF-8 to PostScript language using Pango, an open source library for high quality rendering of internationalized text. A heap buffer overflow vulnerability exists in paps. An attacker could exploit this vulnerability to execute arbitrary code, which could also result in a...

7.7AI score
Exploits0References1
Rows per page
Query Builder