Archlinux - Page 30 of Archlinux Most Viewed Vulnerabilities List

ArchLinux•added 2020/03/19 12:0 a.m.•31 views

[ASA-202003-12] chromium: multiple issues

Arch Linux Security Advisory ASA-202003-12 ========================================== Severity: High Date : 2020-03-19 CVE-ID : CVE-2019-20503 CVE-2020-6422 CVE-2020-6424 CVE-2020-6425 CVE-2020-6426 CVE-2020-6427 CVE-2020-6428 CVE-2020-6429 CVE-2020-6449 Package : chromium Type : multiple issues...

8.8CVSS0.7AI score0.03498EPSS

Exploits7References24

ArchLinux•added 2020/02/12 12:0 a.m.•31 views

[ASA-202002-6] dovecot: denial of service

Arch Linux Security Advisory ASA-202002-6 ========================================= Severity: Medium Date : 2020-02-12 CVE-ID : CVE-2020-7046 CVE-2020-7957 Package : dovecot Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1097 Summary ======= The package dovecot...

7.8CVSS1.2AI score0.50419EPSS

Exploits1References5

ArchLinux•added 2019/11/13 12:0 a.m.•31 views

[ASA-201911-13] libtiff: denial of service

Arch Linux Security Advisory ASA-201911-13 ========================================== Severity: Medium Date : 2019-11-13 CVE-ID : CVE-2019-6128 CVE-2019-7663 Package : libtiff Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-886 Summary ======= The package libtiff...

8.8CVSS3.1AI score0.03869EPSS

Exploits2References6

ArchLinux•added 2019/10/26 12:0 a.m.•31 views

[ASA-201910-17] chromium: multiple issues

Arch Linux Security Advisory ASA-201910-17 ========================================== Severity: High Date : 2019-10-26 CVE-ID : CVE-2019-13699 CVE-2019-13700 CVE-2019-13701 CVE-2019-13702 CVE-2019-13703 CVE-2019-13704 CVE-2019-13705 CVE-2019-13706 CVE-2019-13707 CVE-2019-13708 CVE-2019-13709...

8.8CVSS0.2AI score0.06643EPSS

Exploits1References46

ArchLinux•added 2019/07/17 12:0 a.m.•31 views

[ASA-201907-6] chromium: multiple issues

Arch Linux Security Advisory ASA-201907-6 ========================================= Severity: High Date : 2019-07-17 CVE-ID : CVE-2019-5847 CVE-2019-5848 Package : chromium Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1005 Summary ======= The package chromium befo...

6.5CVSS1.2AI score0.0085EPSS

ArchLinux•added 2019/06/07 12:0 a.m.•31 views

[ASA-201906-4] chromium: multiple issues

Arch Linux Security Advisory ASA-201906-4 ========================================= Severity: Critical Date : 2019-06-07 CVE-ID : CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831 CVE-2019-5832 CVE-2019-5833 CVE-2019-5835 CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839 CVE-2019-5840...

8.8CVSS0.4AI score0.01985EPSS

Exploits0References26

ArchLinux•added 2019/05/06 12:0 a.m.•31 views

[ASA-201905-2] linux: arbitrary code execution

Arch Linux Security Advisory ASA-201905-2 ========================================= Severity: High Date : 2019-05-06 CVE-ID : CVE-2019-11683 Package : linux Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-955 Summary ======= The package linux before version...

10CVSS3.3AI score0.07074EPSS

ArchLinux•added 2019/04/24 12:0 a.m.•31 views

[ASA-201904-12] chromium: multiple issues

Arch Linux Security Advisory ASA-201904-12 ========================================== Severity: Critical Date : 2019-04-24 CVE-ID : CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809 CVE-2019-5810 CVE-2019-5811 CVE-2019-5813 CVE-2019-5814 CVE-2019-5815 CVE-2019-5818 CVE-2019-58...

8.8CVSS0.9AI score0.01872EPSS

Exploits0References33

ArchLinux•added 2019/04/06 12:0 a.m.•31 views

[ASA-201904-4] thunderbird: arbitrary code execution

Arch Linux Security Advisory ASA-201904-4 ========================================= Severity: Critical Date : 2019-04-06 CVE-ID : CVE-2019-9810 CVE-2019-9813 Package : thunderbird Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-947 Summary ======= The packag...

8.8CVSS1.2AI score0.29514EPSS

Exploits13References10

ArchLinux•added 2019/04/05 12:0 a.m.•31 views

[ASA-201904-2] gnutls: multiple issues

Arch Linux Security Advisory ASA-201904-2 ========================================= Severity: Critical Date : 2019-04-05 CVE-ID : CVE-2019-3829 CVE-2019-3836 Package : gnutls Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-945 Summary ======= The package gnutls befor...

7.5CVSS3.6AI score0.58969EPSS

Exploits2References6

ArchLinux•added 2019/03/02 12:0 a.m.•31 views

[ASA-201903-1] chromium: arbitrary code execution

Arch Linux Security Advisory ASA-201903-1 ========================================= Severity: High Date : 2019-03-02 CVE-ID : CVE-2019-5786 Package : chromium Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-916 Summary ======= The package chromium before...

6.5CVSS2.4AI score0.61537EPSS

Exploits10References4

ArchLinux•added 2019/01/08 12:0 a.m.•31 views

[ASA-201901-1] tar: denial of service

Arch Linux Security Advisory ASA-201901-1 ========================================= Severity: Low Date : 2019-01-08 CVE-ID : CVE-2018-20482 Package : tar Type : denial of service Remote : No Link : https://security.archlinux.org/AVG-841 Summary ======= The package tar before version 1.31-1 is...

4.7CVSS1.5AI score0.00526EPSS

Exploits1References5

ArchLinux•added 2018/05/13 12:0 a.m.•31 views

[ASA-201805-9] webkit2gtk: arbitrary code execution

Arch Linux Security Advisory ASA-201805-9 ========================================= Severity: Critical Date : 2018-05-13 CVE-ID : CVE-2018-4200 Package : webkit2gtk Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-692 Summary ======= The package webkit2gtk...

8.8CVSS3.4AI score0.0873EPSS

Exploits4References3

ArchLinux•added 2018/02/12 12:0 a.m.•31 views

[ASA-201802-6] exim: arbitrary code execution

Arch Linux Security Advisory ASA-201802-6 ========================================= Severity: High Date : 2018-02-12 CVE-ID : CVE-2018-6789 Package : exim Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-608 Summary ======= The package exim before version...

9.8CVSS2AI score0.82238EPSS

Exploits19References4

ArchLinux•added 2018/02/09 12:0 a.m.•31 views

[ASA-201802-2] go: arbitrary code execution

Arch Linux Security Advisory ASA-201802-2 ========================================= Severity: High Date : 2018-02-09 CVE-ID : CVE-2018-6574 Package : go Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-606 Summary ======= The package go before version 1.9.4-1...

7.8CVSS1.9AI score0.07705EPSS

Exploits4References5

ArchLinux•added 2018/01/29 12:0 a.m.•31 views

[ASA-201801-22] lib32-curl: multiple issues

Arch Linux Security Advisory ASA-201801-22 ========================================== Severity: Medium Date : 2018-01-29 CVE-ID : CVE-2018-1000005 CVE-2018-1000007 Package : lib32-curl Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-594 Summary ======= The package...

9.8CVSS9.3AI score0.08031EPSS

Exploits0References7

ArchLinux•added 2017/11/30 12:0 a.m.•31 views

[ASA-201711-41] libxcursor: arbitrary code execution

Arch Linux Security Advisory ASA-201711-41 ========================================== Severity: High Date : 2017-11-30 CVE-ID : CVE-2017-16612 Package : libxcursor Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-531 Summary ======= The package libxcursor...

7.5CVSS1.9AI score0.05173EPSS

Exploits1References5

ArchLinux•added 2017/11/02 12:0 a.m.•31 views

[ASA-201711-10] libcurl-compat: information disclosure

Arch Linux Security Advisory ASA-201711-10 ========================================== Severity: Medium Date : 2017-11-02 CVE-ID : CVE-2017-1000257 Package : libcurl-compat Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-463 Summary ======= The package...

9.1CVSS9.2AI score0.06224EPSS

Exploits0References5

ArchLinux•added 2017/10/21 12:0 a.m.•31 views

[ASA-201710-28] musl: arbitrary code execution

Arch Linux Security Advisory ASA-201710-28 ========================================== Severity: Critical Date : 2017-10-21 CVE-ID : CVE-2017-15650 Package : musl Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-457 Summary ======= The package musl before...

7.5CVSS2.3AI score0.02015EPSS

ArchLinux•added 2017/10/16 12:0 a.m.•31 views

[ASA-201710-21] lib32-flashplugin: arbitrary code execution

Arch Linux Security Advisory ASA-201710-21 ========================================== Severity: Critical Date : 2017-10-16 CVE-ID : CVE-2017-11292 Package : lib32-flashplugin Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-450 Summary ======= The package...

8.8CVSS1.4AI score0.12104EPSS

ArchLinux•added 2017/10/12 12:0 a.m.•31 views

[ASA-201710-15] go: arbitrary command execution

Arch Linux Security Advisory ASA-201710-15 ========================================== Severity: High Date : 2017-10-12 CVE-ID : CVE-2017-15041 Package : go Type : arbitrary command execution Remote : Yes Link : https://security.archlinux.org/AVG-442 Summary ======= The package go before version...

9.8CVSS1.2AI score0.08944EPSS

ArchLinux•added 2017/09/23 12:0 a.m.•31 views

[ASA-201709-19] chromium: arbitrary code execution

Arch Linux Security Advisory ASA-201709-19 ========================================== Severity: Critical Date : 2017-09-23 CVE-ID : CVE-2017-5121 CVE-2017-5122 Package : chromium Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-411 Summary ======= The package...

8.8CVSS3AI score0.05288EPSS

ArchLinux•added 2017/09/12 12:0 a.m.•31 views

[ASA-201709-3] bluez: information disclosure

Arch Linux Security Advisory ASA-201709-3 ========================================= Severity: High Date : 2017-09-12 CVE-ID : CVE-2017-1000250 Package : bluez Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-396 Summary ======= The package bluez before version...

6.5CVSS0.1AI score0.07774EPSS

Exploits3References5

ArchLinux•added 2017/08/14 12:0 a.m.•31 views

[ASA-201708-13] strongswan: denial of service

Arch Linux Security Advisory ASA-201708-13 ========================================== Severity: Low Date : 2017-08-14 CVE-ID : CVE-2017-11185 Package : strongswan Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-382 Summary ======= The package strongswan before...

7.5CVSS2AI score0.03252EPSS

ArchLinux•added 2017/07/18 12:0 a.m.•31 views

[ASA-201707-21] c-ares: information disclosure

Arch Linux Security Advisory ASA-201707-21 ========================================== Severity: Medium Date : 2017-07-18 CVE-ID : CVE-2017-1000381 Package : c-ares Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-315 Summary ======= The package c-ares before...

7.5CVSS1.1AI score0.0331EPSS

ArchLinux•added 2017/07/03 12:0 a.m.•31 views

[ASA-201707-2] systemd: arbitrary code execution

Arch Linux Security Advisory ASA-201707-2 ========================================= Severity: Critical Date : 2017-07-03 CVE-ID : CVE-2017-9445 Package : systemd Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-329 Summary ======= The package systemd before...

7.5CVSS8.2AI score0.55116EPSS

Exploits1References4

ArchLinux•added 2017/06/14 12:0 a.m.•31 views

[ASA-201706-15] lib32-flashplugin: arbitrary code execution

Arch Linux Security Advisory ASA-201706-15 ========================================== Severity: Critical Date : 2017-06-14 CVE-ID : CVE-2017-3075 CVE-2017-3076 CVE-2017-3077 CVE-2017-3078 CVE-2017-3079 CVE-2017-3081 CVE-2017-3082 CVE-2017-3083 CVE-2017-3084 Package : lib32-flashplugin Type :...

10CVSS2.1AI score0.30886EPSS

Exploits3References11

ArchLinux•added 2017/06/14 12:0 a.m.•31 views

[ASA-201706-16] kmail: information disclosure

Arch Linux Security Advisory ASA-201706-16 ========================================== Severity: Medium Date : 2017-06-14 CVE-ID : CVE-2017-9604 Package : kmail Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-299 Summary ======= The package kmail before version...

7.5CVSS0.9AI score0.01294EPSS

Exploits0References5

ArchLinux•added 2017/04/27 12:0 a.m.•31 views

[ASA-201704-8] jenkins: multiple issues

Arch Linux Security Advisory ASA-201704-8 ========================================= Severity: High Date : 2017-04-27 CVE-ID : CVE-2017-1000354 CVE-2017-1000355 CVE-2017-1000356 Package : jenkins Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-255 Summary ======= The...

8.8CVSS0.6AI score0.07088EPSS

Exploits3References7

ArchLinux•added 2017/03/31 12:0 a.m.•31 views

[ASA-201703-19] chromium: arbitrary code execution

Arch Linux Security Advisory ASA-201703-19 ========================================== Severity: Critical Date : 2017-03-31 CVE-ID : CVE-2017-5052 CVE-2017-5053 CVE-2017-5054 CVE-2017-5055 CVE-2017-5056 Package : chromium Type : arbitrary code execution Remote : Yes Link :...

9.6CVSS1.2AI score0.02557EPSS

Exploits0References12

ArchLinux•added 2017/03/18 12:0 a.m.•31 views

[ASA-201703-15] firefox: arbitrary code execution

Arch Linux Security Advisory ASA-201703-15 ========================================== Severity: High Date : 2017-03-18 CVE-ID : CVE-2017-5428 Package : firefox Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-219 Summary ======= The package firefox before...

9.8CVSS1.9AI score0.02802EPSS

Exploits1References4

ArchLinux•added 2017/03/15 12:0 a.m.•31 views

[ASA-201703-12] lib32-flashplugin: multiple issues

Arch Linux Security Advisory ASA-201703-12 ========================================== Severity: Critical Date : 2017-03-15 CVE-ID : CVE-2017-2997 CVE-2017-2998 CVE-2017-2999 CVE-2017-3000 CVE-2017-3001 CVE-2017-3002 CVE-2017-3003 Package : lib32-flashplugin Type : multiple issues Remote : Yes Lin...

9.3CVSS1.5AI score0.08428EPSS

Exploits1References9

ArchLinux•added 2017/02/15 12:0 a.m.•31 views

[ASA-201702-12] gvim: arbitrary code execution

Arch Linux Security Advisory ASA-201702-12 ========================================== Severity: Medium Date : 2017-02-15 CVE-ID : CVE-2017-5953 Package : gvim Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-174 Summary ======= The package gvim before version...

9.8CVSS2.1AI score0.02834EPSS

ArchLinux•added 2017/02/09 12:0 a.m.•31 views

[ASA-201702-8] bind: denial of service

Arch Linux Security Advisory ASA-201702-8 ========================================= Severity: High Date : 2017-02-09 CVE-ID : CVE-2017-3135 Package : bind Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-169 Summary ======= The package bind before version 9.11.0.P3-...

7.5CVSS2.3AI score0.17108EPSS

ArchLinux•added 2017/01/29 12:0 a.m.•31 views

[ASA-201701-40] thunderbird: multiple issues

Arch Linux Security Advisory ASA-201701-40 ========================================== Severity: Critical Date : 2017-01-29 CVE-ID : CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 CVE-2017-5380 CVE-2017-5383 CVE-2017-5390 CVE-2017-5396 Package : thunderbird Type : multiple issues Remote :...

9.8CVSS0.3AI score0.33434EPSS

Exploits15References28

ArchLinux•added 2017/01/12 12:0 a.m.•31 views

[ASA-201701-16] flashplugin: multiple issues

Arch Linux Security Advisory ASA-201701-16 ========================================== Severity: Critical Date : 2017-01-12 CVE-ID : CVE-2017-2925 CVE-2017-2926 CVE-2017-2927 CVE-2017-2928 CVE-2017-2930 CVE-2017-2931 CVE-2017-2932 CVE-2017-2933 CVE-2017-2934 CVE-2017-2935 CVE-2017-2936 CVE-2017-29...

9.3CVSS1.7AI score0.30127EPSS

Exploits22References15

ArchLinux•added 2016/05/06 12:0 a.m.•31 views

latex2rtf: arbitrary code execution

A format string vulnerability was found in the CmdKeywords function, where the user-controlled variable 'keywords' is passed as a format argument to vnsprintf, when processing the \keywords command in a TeX file...

4.6AI score0.03556EPSS

Exploits0References2

ArchLinux•added 2016/02/13 12:0 a.m.•31 views

nghttp2: denial of service

HTTP/2 uses HPACK to compress header fields. The basic idea is that HTTP header field is stored in the receiver with the numeric index number. The memory used by this storage is tightly constrained, and it is 4KiB by default. When sender sends the same header field, it just sends the correspondin...

5.2AI score0.00886EPSS

Exploits0References2

ArchLinux•added 2016/02/04 12:0 a.m.•31 views

libbsd: denial of service

CVE-2016-2090 buffer overflow libbsd 0.8.1 and earlier contains a buffer overflow in the function fgetwln. An "if" checks if it is necessary to reallocate memory in the target buffer. However this check is off by one, therefore an out of bounds write happens...

5.2CVSS2.8AI score0.03223EPSS

ArchLinux•added 2016/02/02 12:0 a.m.•31 views

python-django: permission bypass

If a ModelAdmin uses saveas=True not the default, the admin provides an option when editing objects to "Save as new". A regression in Django 1.9 prevented that form submission from raising a "Permission Denied" error for users without the "add" permission...

6CVSS3.6AI score0.01522EPSS

Exploits0References2

ArchLinux•added 2016/01/25 12:0 a.m.•31 views

blueman: privilege escalation

A local privilege escalation vulnerability has been found in the Network::EnableNetwork method of blueman. An unsanitized string is received over DBUS into the dhcphandler parameter and passed to eval, thus allowing arbitrary command execution with the privileges of the user running blueman...

7.2CVSS3.6AI score0.0634EPSS

Exploits4References4

ArchLinux•added 2015/08/11 12:0 a.m.•31 views

ppp: denial of service

A buffer overflow has been found in the rcmksid function in plugins/radius/util.c in Paul's PPP Package ppp. When the PID of the pppd process is greater than 65535, the computation of a start accounting message to the RADIUS server will crash the pppd server...

4.3CVSS3.7AI score0.05444EPSS

ArchLinux•added 2015/07/11 12:0 a.m.•31 views

thunderbird: multiple issues

CVE-2015-2724, CVE-2015-2725, CVE-2015-2726 Miscellaneous memory safety hazards: Mozilla developers and community identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under...

10CVSS0.3AI score0.06056EPSS

Exploits0References17

ArchLinux•added 2014/11/26 12:0 a.m.•31 views

flac: arbitrary code execution

A stack overflow and a heap overflow condition have been found in libFLAC when parsing a maliciously crafted .flac file, which may result in arbitrary code execution...

7.5CVSS5.1AI score0.0986EPSS

ArchLinux•added 2014/11/21 12:0 a.m.•31 views

glibc: command execution

The wordexp function could ignore the WRDENOCMD flag under certain input conditions resulting in the execution of a shell for command substitution when the application did not request it. The implementation now checks WRDENOCMD immediately before executing the shell and returns the error WRDECMDS...

4.6CVSS3AI score0.00578EPSS

ArchLinux•added 2014/10/27 12:0 a.m.•31 views

ejabberd: circumvention of encryption

It was discovered that ejabberd does not enforce the starttlsrequired setting when compression is used, which causes clients to unexpectedly establish connections without encryption...

5CVSS1.2AI score0.01314EPSS

ArchLinux•added 2025/05/18 12:0 a.m.•30 views

[ASA-202505-2] wpewebkit: arbitrary code execution

Arch Linux Security Advisory ASA-202505-2 ========================================= Severity: High Date : 2025-05-18 CVE-ID : CVE-2023-42875 CVE-2023-42970 Package : wpewebkit Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-2870 Summary ======= The package...

8.8CVSS9.3AI score0.00435EPSS

Exploits0References9

ArchLinux•added 2021/11/18 12:0 a.m.•30 views

[ASA-202111-6] grafana: access restriction bypass

Arch Linux Security Advisory ASA-202111-6 ========================================= Severity: Medium Date : 2021-11-18 CVE-ID : CVE-2021-41244 Package : grafana Type : access restriction bypass Remote : Yes Link : https://security.archlinux.org/AVG-2559 Summary ======= The package grafana before...

9.1CVSS7AI score0.02834EPSS