Archlinux - Page 28 of Archlinux Most Viewed Vulnerabilities List

ArchlinuxMost viewed

1854 matches found

ArchLinux•added 2019/06/11 12:0 a.m.•33 views

[ASA-201906-6] lib32-openssl: information disclosure

Arch Linux Security Advisory ASA-201906-6 ========================================= Severity: Low Date : 2019-06-11 CVE-ID : CVE-2019-1543 Package : lib32-openssl Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-920 Summary ======= The package lib32-openssl...

7.4CVSS5.9AI score0.05701EPSS

Exploits0References4

ArchLinux•added 2019/05/31 12:0 a.m.•33 views

[ASA-201905-15] lib32-curl: arbitrary code execution

Arch Linux Security Advisory ASA-201905-15 ========================================== Severity: High Date : 2019-05-31 CVE-ID : CVE-2019-5435 CVE-2019-5436 Package : lib32-curl Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-963 Summary ======= The package...

7.8CVSS0.6AI score0.49739EPSS

Exploits2References7

ArchLinux•added 2019/04/11 12:0 a.m.•33 views

[ASA-201904-5] ghostscript: sandbox escape

Arch Linux Security Advisory ASA-201904-5 ========================================= Severity: High Date : 2019-04-11 CVE-ID : CVE-2019-3835 CVE-2019-3838 Package : ghostscript Type : sandbox escape Remote : Yes Link : https://security.archlinux.org/AVG-929 Summary ======= The package ghostscript...

7.3CVSS7.4AI score0.02642EPSS

Exploits0References8

ArchLinux•added 2019/03/28 12:0 a.m.•33 views

[ASA-201903-16] dovecot: privilege escalation

Arch Linux Security Advisory ASA-201903-16 ========================================== Severity: High Date : 2019-03-28 CVE-ID : CVE-2019-7524 Package : dovecot Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-944 Summary ======= The package dovecot before version...

8.8CVSS2.3AI score0.01178EPSS

Exploits0References6

ArchLinux•added 2019/03/03 12:0 a.m.•33 views

[ASA-201903-4] pcre: denial of service

Arch Linux Security Advisory ASA-201903-4 ========================================= Severity: Low Date : 2019-03-03 CVE-ID : CVE-2017-11164 Package : pcre Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-351 Summary ======= The package pcre before version 8.43-1 is...

7.8CVSS2.7AI score0.03102EPSS

Exploits0References4

ArchLinux•added 2019/02/25 12:0 a.m.•33 views

[ASA-201902-27] elasticsearch: privilege escalation

Arch Linux Security Advisory ASA-201902-27 ========================================== Severity: High Date : 2019-02-25 CVE-ID : CVE-2019-7611 Package : elasticsearch Type : privilege escalation Remote : Yes Link : https://security.archlinux.org/AVG-912 Summary ======= The package elasticsearch...

8.1CVSS1.3AI score0.02149EPSS

Exploits0References3

ArchLinux•added 2019/02/12 12:0 a.m.•33 views

[ASA-201902-12] lib32-libcurl-compat: arbitrary code execution

Arch Linux Security Advisory ASA-201902-12 ========================================== Severity: High Date : 2019-02-12 CVE-ID : CVE-2018-16890 CVE-2019-3822 CVE-2019-3823 Package : lib32-libcurl-compat Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-875...

9.8CVSS1.5AI score0.12771EPSS

Exploits2References10

ArchLinux•added 2019/01/28 12:0 a.m.•33 views

[ASA-201901-17] subversion: denial of service

Arch Linux Security Advisory ASA-201901-17 ========================================== Severity: High Date : 2019-01-28 CVE-ID : CVE-2018-11803 Package : subversion Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-858 Summary ======= The package subversion before...

7.5CVSS2.4AI score0.57822EPSS

Exploits0References3

ArchLinux•added 2018/11/28 12:0 a.m.•33 views

[ASA-201811-21] powerdns-recursor: denial of service

Arch Linux Security Advisory ASA-201811-21 ========================================== Severity: Medium Date : 2018-11-28 CVE-ID : CVE-2018-16855 Package : powerdns-recursor Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-821 Summary ======= The package...

7.5CVSS2.4AI score0.59469EPSS

Exploits0References5

ArchLinux•added 2018/11/22 12:0 a.m.•33 views

[ASA-201811-20] webkit2gtk: arbitrary code execution

Arch Linux Security Advisory ASA-201811-20 ========================================== Severity: Critical Date : 2018-11-22 CVE-ID : CVE-2018-4372 Package : webkit2gtk Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-819 Summary ======= The package webkit2gtk...

8.8CVSS2.5AI score0.01796EPSS

Exploits0References4

ArchLinux•added 2018/11/06 12:0 a.m.•33 views

[ASA-201811-3] ghostscript: sandbox escape

Arch Linux Security Advisory ASA-201811-3 ========================================= Severity: High Date : 2018-11-06 CVE-ID : CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 Package : ghostscript Type : sandbox escape Remote : Yes Link : https://security.archlinux.org/AVG-786 Summary ======= The...

8.6CVSS1.9AI score0.16288EPSS

Exploits3References19

ArchLinux•added 2018/10/09 12:0 a.m.•33 views

[ASA-201810-7] git: arbitrary code execution

Arch Linux Security Advisory ASA-201810-7 ========================================= Severity: High Date : 2018-10-09 CVE-ID : CVE-2018-17456 Package : git Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-776 Summary ======= The package git before version...

9.8CVSS0.9AI score0.97356EPSS

Exploits12References6

ArchLinux•added 2018/05/18 12:0 a.m.•33 views

[ASA-201805-14] lib32-curl: multiple issues

Arch Linux Security Advisory ASA-201805-14 ========================================== Severity: Critical Date : 2018-05-18 CVE-ID : CVE-2018-1000300 CVE-2018-1000301 Package : lib32-curl Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-695 Summary ======= The package...

9.8CVSS1.2AI score0.06003EPSS

Exploits0References7

ArchLinux•added 2018/02/24 12:0 a.m.•33 views

[ASA-201802-15] mbedtls: arbitrary code execution

Arch Linux Security Advisory ASA-201802-15 ========================================== Severity: High Date : 2018-02-24 CVE-ID : CVE-2018-0487 CVE-2018-0488 Package : mbedtls Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-617 Summary ======= The package...

9.8CVSS3.9AI score0.04884EPSS

Exploits0References4

ArchLinux•added 2018/02/09 12:0 a.m.•33 views

[ASA-201802-2] go: arbitrary code execution

Arch Linux Security Advisory ASA-201802-2 ========================================= Severity: High Date : 2018-02-09 CVE-ID : CVE-2018-6574 Package : go Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-606 Summary ======= The package go before version 1.9.4-1...

7.8CVSS1.9AI score0.07705EPSS

Exploits4References5

ArchLinux•added 2018/01/29 12:0 a.m.•33 views

[ASA-201801-24] libcurl-gnutls: multiple issues

Arch Linux Security Advisory ASA-201801-24 ========================================== Severity: Medium Date : 2018-01-29 CVE-ID : CVE-2018-1000005 CVE-2018-1000007 Package : libcurl-gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-596 Summary ======= The packag...

9.8CVSS9.3AI score0.08031EPSS

Exploits0References7

ArchLinux•added 2018/01/17 12:0 a.m.•33 views

[ASA-201801-13] transmission-cli: arbitrary command execution

Arch Linux Security Advisory ASA-201801-13 ========================================== Severity: High Date : 2018-01-17 CVE-ID : CVE-2018-5702 Package : transmission-cli Type : arbitrary command execution Remote : Yes Link : https://security.archlinux.org/AVG-588 Summary ======= The package...

8.8CVSS1.4AI score0.12146EPSS

Exploits1References7

ArchLinux•added 2018/01/10 12:0 a.m.•33 views

[ASA-201801-9] glibc: multiple issues

Arch Linux Security Advisory ASA-201801-9 ========================================= Severity: High Date : 2018-01-10 CVE-ID : CVE-2017-15670 CVE-2017-15671 Package : glibc Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-460 Summary ======= The package glibc before...

9.8CVSS1.1AI score0.03002EPSS

Exploits0References11

ArchLinux•added 2017/11/30 12:0 a.m.•33 views

[ASA-201711-32] exim: multiple issues

Arch Linux Security Advisory ASA-201711-32 ========================================== Severity: Critical Date : 2017-11-30 CVE-ID : CVE-2017-1000369 CVE-2017-10140 CVE-2017-16943 CVE-2017-16944 Package : exim Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-518 Summar...

9.8CVSS2.8AI score0.6332EPSS

Exploits10References20

ArchLinux•added 2017/11/22 12:0 a.m.•33 views

[ASA-201711-28] jbig2dec: denial of service

Arch Linux Security Advisory ASA-201711-28 ========================================== Severity: Medium Date : 2017-11-22 CVE-ID : CVE-2017-9216 Package : jbig2dec Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-517 Summary ======= The package jbig2dec before versio...

6.5CVSS2.1AI score0.03452EPSS

Exploits1References5

ArchLinux•added 2017/11/20 12:0 a.m.•33 views

[ASA-201711-26] lib32-icu: arbitrary code execution

Arch Linux Security Advisory ASA-201711-26 ========================================== Severity: Critical Date : 2017-11-20 CVE-ID : CVE-2017-14952 Package : lib32-icu Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-507 Summary ======= The package lib32-icu...

9.8CVSS3.6AI score0.05096EPSS

Exploits0References4

ArchLinux•added 2017/11/02 12:0 a.m.•33 views

[ASA-201711-9] lib32-libcurl-gnutls: information disclosure

Arch Linux Security Advisory ASA-201711-9 ========================================= Severity: Medium Date : 2017-11-02 CVE-ID : CVE-2017-1000257 Package : lib32-libcurl-gnutls Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-464 Summary ======= The package...

9.1CVSS9.2AI score0.06224EPSS

Exploits0References5

ArchLinux•added 2017/10/27 12:0 a.m.•33 views

[ASA-201710-32] apr: information disclosure

Arch Linux Security Advisory ASA-201710-32 ========================================== Severity: Medium Date : 2017-10-27 CVE-ID : CVE-2017-12613 Package : apr Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-469 Summary ======= The package apr before version...

7.1CVSS0.5AI score0.01749EPSS

Exploits0References3

ArchLinux•added 2017/10/21 12:0 a.m.•33 views

[ASA-201710-28] musl: arbitrary code execution

Arch Linux Security Advisory ASA-201710-28 ========================================== Severity: Critical Date : 2017-10-21 CVE-ID : CVE-2017-15650 Package : musl Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-457 Summary ======= The package musl before...

7.5CVSS2.3AI score0.02015EPSS

Exploits0References4

ArchLinux•added 2017/10/17 12:0 a.m.•33 views

[ASA-201710-26] linux: privilege escalation

Arch Linux Security Advisory ASA-201710-26 ========================================== Severity: High Date : 2017-10-17 CVE-ID : CVE-2017-5123 Package : linux Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-444 Summary ======= The package linux before version...

8.8CVSS1.5AI score0.03714EPSS

Exploits10References4

ArchLinux•added 2017/09/15 12:0 a.m.•33 views

[ASA-201709-9] linux: arbitrary code execution

Arch Linux Security Advisory ASA-201709-9 ========================================= Severity: High Date : 2017-09-15 CVE-ID : CVE-2017-1000251 Package : linux Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-392 Summary ======= The package linux before versio...

8CVSS1.6AI score0.16181EPSS

Exploits12References5

ArchLinux•added 2017/09/06 12:0 a.m.•33 views

[ASA-201709-1] chromium: multiple issues

Arch Linux Security Advisory ASA-201709-1 ========================================= Severity: Critical Date : 2017-09-06 CVE-ID : CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 Package : chromium Type :...

8.8CVSS0.7AI score0.26331EPSS

Exploits0References22

ArchLinux•added 2017/08/14 12:0 a.m.•33 views

[ASA-201708-9] audiofile: multiple issues

Arch Linux Security Advisory ASA-201708-9 ========================================= Severity: High Date : 2017-08-14 CVE-ID : CVE-2017-6827 CVE-2017-6828 CVE-2017-6829 CVE-2017-6830 CVE-2017-6831 CVE-2017-6832 CVE-2017-6833 CVE-2017-6834 CVE-2017-6835 CVE-2017-6836 CVE-2017-6837 CVE-2017-6838...

7.8CVSS1.2AI score0.03241EPSS

Exploits1References25

ArchLinux•added 2017/08/12 12:0 a.m.•33 views

[ASA-201708-6] git: arbitrary command execution

Arch Linux Security Advisory ASA-201708-6 ========================================= Severity: Critical Date : 2017-08-12 CVE-ID : CVE-2017-1000117 Package : git Type : arbitrary command execution Remote : Yes Link : https://security.archlinux.org/AVG-377 Summary ======= The package git before...

8.8CVSS1.2AI score0.77823EPSS

Exploits9References3

ArchLinux•added 2017/08/10 12:0 a.m.•33 views

[ASA-201708-2] flashplugin: multiple issues

Arch Linux Security Advisory ASA-201708-2 ========================================= Severity: Critical Date : 2017-08-10 CVE-ID : CVE-2017-3085 CVE-2017-3106 Package : flashplugin Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-373 Summary ======= The package...

9.3CVSS1.2AI score0.22311EPSS

Exploits3References4

ArchLinux•added 2017/07/18 12:0 a.m.•33 views

[ASA-201707-19] gvim: arbitrary code execution

Arch Linux Security Advisory ASA-201707-19 ========================================== Severity: High Date : 2017-07-18 CVE-ID : CVE-2017-11109 Package : gvim Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-347 Summary ======= The package gvim before version...

7.8CVSS3AI score0.01088EPSS

Exploits0References5

ArchLinux•added 2017/06/14 12:0 a.m.•33 views

[ASA-201706-15] lib32-flashplugin: arbitrary code execution

Arch Linux Security Advisory ASA-201706-15 ========================================== Severity: Critical Date : 2017-06-14 CVE-ID : CVE-2017-3075 CVE-2017-3076 CVE-2017-3077 CVE-2017-3078 CVE-2017-3079 CVE-2017-3081 CVE-2017-3082 CVE-2017-3083 CVE-2017-3084 Package : lib32-flashplugin Type :...

10CVSS2.1AI score0.30886EPSS

Exploits3References11

ArchLinux•added 2017/06/12 12:0 a.m.•33 views

[ASA-201706-9] wireshark-cli: denial of service

Arch Linux Security Advisory ASA-201706-9 ========================================= Severity: Low Date : 2017-06-12 CVE-ID : CVE-2017-9343 CVE-2017-9344 CVE-2017-9345 CVE-2017-9346 CVE-2017-9347 CVE-2017-9348 CVE-2017-9349 CVE-2017-9350 CVE-2017-9351 CVE-2017-9352 CVE-2017-9353 CVE-2017-9354...

7.8CVSS0.4AI score0.14207EPSS

Exploits4References39

ArchLinux•added 2017/05/12 12:0 a.m.•33 views

[ASA-201705-15] zziplib: multiple issues

Arch Linux Security Advisory ASA-201705-15 ========================================== Severity: High Date : 2017-05-12 CVE-ID : CVE-2017-5974 CVE-2017-5975 CVE-2017-5976 CVE-2017-5979 CVE-2017-5981 Package : zziplib Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-191...

5.5CVSS4.9AI score0.02078EPSS

Exploits5References18

ArchLinux•added 2017/05/07 12:0 a.m.•33 views

[ASA-201705-6] lib32-libtirpc: denial of service

Arch Linux Security Advisory ASA-201705-6 ========================================= Severity: Medium Date : 2017-05-07 CVE-ID : CVE-2017-8779 Package : lib32-libtirpc Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-263 Summary ======= The package lib32-libtirpc...

7.8CVSS1.7AI score0.81921EPSS

Exploits4References4

ArchLinux•added 2017/03/12 12:0 a.m.•33 views

[ASA-201703-5] libxslt: arbitrary code execution

Arch Linux Security Advisory ASA-201703-5 ========================================= Severity: Critical Date : 2017-03-12 CVE-ID : CVE-2017-5029 Package : libxslt Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-195 Summary ======= The package libxslt before...

8.8CVSS0.9AI score0.02131EPSS

Exploits0References6

ArchLinux•added 2017/03/03 12:0 a.m.•33 views

[ASA-201703-1] curl: insufficient validation

Arch Linux Security Advisory ASA-201703-1 ========================================= Severity: Low Date : 2017-03-03 CVE-ID : CVE-2017-2629 Package : curl Type : insufficient validation Remote : Yes Link : https://security.archlinux.org/AVG-179 Summary ======= The package curl before version...

6.5CVSS0.01391EPSS

Exploits0References3

ArchLinux•added 2017/01/15 12:0 a.m.•33 views

[ASA-201701-24] nginx-mainline: privilege escalation

Arch Linux Security Advisory ASA-201701-24 ========================================== Severity: High Date : 2017-01-15 CVE-ID : CVE-2016-1247 Package : nginx-mainline Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-139 Summary ======= The package nginx-mainline...

7.8CVSS1.6AI score0.04863EPSS

Exploits6References4

ArchLinux•added 2017/01/15 12:0 a.m.•33 views

[ASA-201701-25] python2-crypto: arbitrary code execution

Arch Linux Security Advisory ASA-201701-25 ========================================== Severity: Critical Date : 2017-01-15 CVE-ID : CVE-2013-7459 Package : python2-crypto Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-118 Summary ======= The package...

9.8CVSS2AI score0.09501EPSS

Exploits1References5

ArchLinux•added 2017/01/15 12:0 a.m.•33 views

[ASA-201701-21] libgit2: multiple issues

Arch Linux Security Advisory ASA-201701-21 ========================================== Severity: High Date : 2017-01-15 CVE-ID : CVE-2016-10128 CVE-2016-10129 CVE-2016-10130 Package : libgit2 Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-131 Summary ======= The...

9.8CVSS0.5AI score0.03922EPSS

Exploits0References8

ArchLinux•added 2016/10/16 12:0 a.m.•33 views

[ASA-201610-10] guile: multiple issues

Arch Linux Security Advisory ASA-201610-10 ========================================== Severity: High Date : 2016-10-16 CVE-ID : CVE-2016-8605 CVE-2016-8606 Package : guile Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package guile before...

9.8CVSS0.6AI score0.04058EPSS

Exploits0References6

ArchLinux•added 2016/09/22 12:0 a.m.•33 views

[ASA-201609-22] firefox: multiple issues

Arch Linux Security Advisory ASA-201609-22 ========================================== Severity: Critical Date : 2016-09-22 CVE-ID : CVE-2016-5256 CVE-2016-5257 CVE-2016-5270 CVE-2016-5271 CVE-2016-5272 CVE-2016-5273 CVE-2016-5274 CVE-2016-5275 CVE-2016-5276 CVE-2016-5277 CVE-2016-5278 CVE-2016-52...

9.8CVSS0.2AI score0.05037EPSS

Exploits0References19

ArchLinux•added 2016/08/08 12:0 a.m.•33 views

libupnp: arbitrary filesystem access

A vulnerability was found in libupnp. If there's no registered handler for a POST or GET request, the default behavior is to write to or read from the filesystem. This allows an unauthenticated attacker to store or retrieve arbitrary data. This issue allows full host filesystem access if the...

3.3AI score0.26818EPSS

Exploits4References2

ArchLinux•added 2016/07/20 12:0 a.m.•33 views

bind: denial of service

Although not commonly used, the BIND package contains provisions to allow systems to resolve names using the lightweight resolver protocol, a protocol similar to but distinct from the normal DNS protocols. The lightweight resolver protocol can be used either by running the lwresd utility installe...

4.3CVSS2AI score0.63346EPSS

Exploits0References2

ArchLinux•added 2016/07/18 12:0 a.m.•33 views

lib32-flashplugin: multiple issues

CVE-2016-4175 CVE-2016-4179 CVE-2016-4180 CVE-2016-4181 CVE-2016-4182 CVE-2016-4183 CVE-2016-4184 CVE-2016-4185 CVE-2016-4186 CVE-2016-4187 CVE-2016-4188 CVE-2016-4189 CVE-2016-4190 CVE-2016-4217 CVE-2016-4218 CVE-2016-4219 CVE-2016-4220 CVE-2016-4221 CVE-2016-4233 CVE-2016-4234 CVE-2016-4235...

10CVSS1.1AI score0.36456EPSS

Exploits26References50

ArchLinux•added 2016/06/10 12:0 a.m.•33 views

haproxy: denial of service

A problem has been discovered with the new field "ruledenystatus" into struct httptxn, which is filled only by actions "http-request deny" and "http-request tarpit". It's then used in the deny code path to emit the proper error message, but is used uninitialized when the deny comes from a "reqden...

5CVSS7.8AI score0.42193EPSS

Exploits0References3

ArchLinux•added 2016/02/24 12:0 a.m.•33 views

libgcrypt: secret key extraction

A vulnerability was found in a way the ECDH encryption algorithm decrypts data. An attacker with a specialized setup can extract the secret decryption key from a target located in an adjacent room within seconds. This is done by measuring the target's electromagnetic emanations...

1.7AI score0.00432EPSS

Exploits0References3

ArchLinux•added 2015/12/25 12:0 a.m.•33 views

nghttp2: use-after-free

nghttp2 1.6.0 fixes a heap-based use-after-free bug in idle stream handling code, where an idle/closed stream could possibly be destroyed while it was still referenced...

10CVSS9.1AI score0.04073EPSS

Exploits0References4

ArchLinux•added 2015/10/10 12:0 a.m.•33 views

gdk-pixbuf2: multiple issues

CVE-2015-7673 denial of service It has been discovered that under certain circumstances while scaling a tga file a heap memory allocation may fail which is later used and leads to a denial of service. - CVE-2015-7673 heap buffer overflow It has been discovered that under certain circumstances...

6.8CVSS1.8AI score0.05796EPSS

Exploits0References4

ArchLinux•added 2015/08/16 12:0 a.m.•33 views

glibc: denial of service

It was found that the files backend of Name Service Switch NSS did not isolate iteration over an entire database from key-based look-up API calls. An application performing look-ups on a database while iterating over it could enter an infinite loop, leading to a denial of service...

5CVSS2.4AI score0.06359EPSS

Exploits1References3

Total number of security vulnerabilities1854