Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2014/01/20 12:0 a.m.69 views

cURL: Multiple vulnerabilities

Background cURL is a command line tool for transferring files with URL syntax, supporting numerous protocols. Description Multiple vulnerabilities have been discovered in cURL. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user or automate...

7.5CVSS9AI score0.22913EPSS
Exploits9
Gentoo Linux
Gentoo Linux
added 2011/10/09 12:0 a.m.69 views

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced...

10CVSS8.6AI score0.22145EPSS
Exploits10
Gentoo Linux
Gentoo Linux
added 2008/11/09 12:0 a.m.69 views

Gallery: Multiple vulnerabilities

Background Gallery is an open source web based photo album organizer. Description Multiple vulnerabilities have been discovered in Gallery 1 and 2: Digital Security Research Group reported a directory traversal vulnerability in contrib/phpBB2/modules.php in Gallery 1, when registerglobals is...

6.8CVSS6.8AI score0.0255EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2006/09/07 12:0 a.m.69 views

OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery

Background OpenSSL is a toolkit implementing the Secure Sockets Layer, Transport Layer Security protocols and a general-purpose cryptography library. The x86 emulation base libraries for AMD64 contain a vulnerable version of OpenSSL. Description Daniel Bleichenbacher discovered that it might be...

4.3CVSS7.9AI score0.04894EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2005/07/06 12:0 a.m.69 views

TikiWiki: Arbitrary command execution through XML-RPC

Background TikiWiki is a web-based groupware and content management system CMS, using PHP, ADOdb and Smarty. TikiWiki includes vulnerable PHP XML-RPC code. Description TikiWiki is vulnerable to arbitrary command execution as described in GLSA 200507-01. Impact A remote attacker could exploit this...

7.5CVSS7.4AI score0.79071EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2023/11/25 12:0 a.m.68 views

Go: Multiple Vulnerabilities

Background Go is an open source programming language that makes it easy to build simple, reliable, and efficient software. Description Multiple vulnerabilities have been discovered in Go. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

9.8CVSS8.4AI score0.99999EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2021/07/20 12:0 a.m.68 views

libpano13: Format string vulnerability

Background libpano13 is Helmut Dersch’s panorama toolbox library. Description A format string issue exists within panoFileOutputNamesCreate where unvalidated input is passed directly into the formatter. Impact A remote attacker could entice a user to open a specially crafted file using libpano1...

9.8CVSS9.7AI score0.01941EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.68 views

Prosŏdy IM: Multiple vulnerabilities

Background Prosŏdy IM is a modern XMPP communication server. It aims to be easy to set up and configure, and efficient with system resources. Description Multiple vulnerabilities have been discovered in Prosŏdy IM. Please review the CVE identifiers referenced below for details. Impact Please revi...

7.8CVSS7AI score0.02261EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/04/30 12:0 a.m.68 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

8.8CVSS3AI score0.01764EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/11/14 12:0 a.m.68 views

libmaxminddb: Denial of service

Background The libmaxminddb library provides a C library for reading MaxMind DB files, including the GeoIP2 databases from MaxMind. Description libmaxminddb used uninitialised memory when reading from a corrupt database file. Impact A remote attacker could entice a user to use a specially crafted...

6.5CVSS3.3AI score0.02133EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/11/11 12:0 a.m.68 views

QEMU: Multiple vulnerabilities

Background QEMU is a generic and open source machine emulator and virtualizer. Description Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...

6.7CVSS2.8AI score0.05447EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/09/10 12:0 a.m.68 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

9.6CVSS2AI score0.01769EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/09/06 12:0 a.m.68 views

GnuTLS: Denial of service

Background GnuTLS is an Open Source implementation of the TLS and SSL protocols. Description It was found that GnuTLS didn’t handle “norenegotiation” alert properly. Impact A remote attacker could entice a user to connect to a malicious TLS endpoint using an application linked against GnuTLS,...

7.5CVSS7.8AI score0.0373EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2019/04/15 12:0 a.m.68 views

libTIFF: Denial of service

Background The TIFF library contains encoding and decoding routines for the Tag Image File Format. It is called by numerous programs, including GNOME and KDE applications, to interpret TIFF images. Description Please review the CVE identifier referenced below for details. Impact Please review the...

8.8CVSS2.7AI score0.1496EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2017/10/08 12:0 a.m.68 views

file: Stack-based buffer overflow

Background file is a utility that guesses a file format by scanning binary data for patterns. Description An issue discovered in file allows attackers to write 20 bytes to the stack buffer via a specially crafted .notes section. Impact A remote attacker, by using a specially crafted .notes sectio...

5.5CVSS6.6AI score0.00404EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/10/08 12:0 a.m.68 views

OCaml: Privilege escalation

Background OCaml is a high-level, strongly-typed, functional, and object-oriented programming language from the ML family of languages. Description A bad sanitization of environment variables: CAMLCPLUGINS, CAMLNATIVECPLUGINS and CAMLBYTECPLUGINS in the OCaml compiler allows the execution of rais...

10CVSS6.7AI score0.03496EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.68 views

GDK-PixBuf: Multiple vulnerabilities

Background GDK-PixBuf is an image loading library for GTK+. Description Multiple vulnerabilities have been discovered in GDK-PixBuf. Please review the referenced CVE identifiers for details. Impact A remote attacker, by sending a specially crafted TIFF, JPEG, or URL, could execute arbitrary code...

7.5CVSS8.1AI score0.0347EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/02/21 12:0 a.m.68 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact An attacker coul...

9.8CVSS9.9AI score0.13314EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/02/20 12:0 a.m.68 views

MySQL: Multiple vulnerabilities

Background MySQL is a popular multi-threaded, multi-user SQL server. MariaDB is an enhanced, drop-in replacement for MySQL. Description Multiple vulnerabilities have been discovered in MySQL. Please review the CVE identifiers referenced below for details. Impact An attacker could possibly escalat...

6.8CVSS7.7AI score0.04792EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/23 12:0 a.m.68 views

Lua: Buffer overflow

Background Lua is a powerful, efficient, lightweight, embeddable scripting language. It supports procedural programming, object-oriented programming, functional programming, data-driven programming, and data description. Description A buffer overflow was discovered in the vararg functions in ldo....

5CVSS9.5AI score0.11572EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/17 12:0 a.m.68 views

VLC: Buffer overflow

Background VLC is a cross-platform media player and streaming server. Description A buffer overflow was discovered in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in the VideoLAN VLC media player. Impact Remote attackers, by enticing a user to execute a specially crafted QuickTime IMA...

9.8CVSS6.2AI score0.24748EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/12/07 12:0 a.m.68 views

Mercurial: Multiple vulnerabilities

Background Mercurial is a distributed source control management system. Description Multiple vulnerabilities have been discovered in Mercurial. Please review the CVE identifier and bug reports referenced for details. Impact A remote attacker could possibly execute arbitrary code with the privileg...

9.8CVSS9.7AI score0.63178EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2016/06/18 12:0 a.m.68 views

FFmpeg: Multiple vulnerabilities

Background FFmpeg is a complete, cross-platform solution to record, convert and stream audio and video. Description Multiple vulnerabilities have been discovered in FFmpeg. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary co...

8.8CVSS8.5AI score0.14621EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2014/12/26 12:0 a.m.68 views

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced...

7.5CVSS6.5AI score0.7408EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2008/09/04 12:0 a.m.68 views

dnsmasq: Denial of Service and DNS spoofing

Background Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP server. Description Dan Kaminsky of IOActive reported that dnsmasq does not randomize UDP source ports when forwarding DNS queries to a recursing DNS server CVE-2008-1447. Carlos Carvalho reported that dnsmasq in t...

6.8CVSS7.2AI score0.95182EPSS
Exploits21
Gentoo Linux
Gentoo Linux
added 2004/01/21 12:0 a.m.68 views

Honeyd remote detection vulnerability via a probe packet

Background Honeyd is a virtual honeypot daemon that can simulate virtual hosts on unallocated IP addresses. Description A bug in handling NMAP fingerprints caused Honeyd to reply to TCP packets with both the SYN and RST flags set. Watching for replies, it is possible to detect IP addresses...

0.2AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2022/08/31 12:0 a.m.67 views

WebKitGTK+: Multiple Vulnerabilities

Background WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers. Description Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE...

8.8CVSS1.9AI score0.70461EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2022/08/14 12:0 a.m.67 views

Xen: Multiple Vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

8.8CVSS3.3AI score0.06451EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2021/07/07 12:0 a.m.67 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

8.8CVSS3AI score0.01013EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.67 views

Mumble: User-assisted execution of arbitrary code

Background Mumble is low-latency voice chat software intended for use with gaming. Description Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted server list web page using Mumble, possibly resulting in executio...

8.8CVSS4.5AI score0.03203EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/11/11 12:0 a.m.67 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

7.8CVSS3.3AI score0.00512EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.67 views

Binutils: Multiple vulnerabilities

Background The GNU Binutils are a collection of tools to create, modify and analyse binary files. Many of the files use BFD, the Binary File Descriptor library, to do low-level manipulation. Description Multiple vulnerabilities have been discovered in Binutils. Please review the CVE identifiers...

6.5CVSS1.9AI score0.02752EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.67 views

TRE: Multiple vulnerabilities

Background TRE is the free and portable approximate regex matching library. Description Multiple vulnerabilities have been discovered in TRE. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no kno...

9.8CVSS2.6AI score0.03362EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2018/03/11 12:0 a.m.67 views

Newsbeuter: User-assisted execution of arbitrary code

Background Newsbeuter is a RSS/Atom feed reader for the text console. Description Newsbeuter does not properly escape shell meta-characters in an RSS item with a media enclosure in the podcast playback function of Podbeuter. Impact A remote attacker, by enticing a user to open a feed with a...

8.8CVSS9AI score0.03078EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/02/20 12:0 a.m.67 views

MariaDB: Multiple vulnerabilities

Background MariaDB is an enhanced, drop-in replacement for MySQL. Description Multiple vulnerabilities have been discovered in MariaDB. Please review the CVE identifiers referenced below for details. Impact An attacker could possibly escalate privileges, gain access to critical data or complete...

7CVSS7.4AI score0.04792EPSS
Exploits10
Gentoo Linux
Gentoo Linux
added 2017/01/25 12:0 a.m.67 views

Oracle JRE/JDK: Multiple vulnerabilities

Background Java Platform, Standard Edition Java SE lets you develop and deploy Java applications on desktops and servers, as well as in today’s demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today’s applications...

9.6CVSS8.6AI score0.95707EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2016/02/04 12:0 a.m.67 views

QEMU: Multiple vulnerabilities

Background QEMU is a generic and open source machine emulator and virtualizer. Description Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details. Impact A remote attacker might cause a Denial of Service or gain escalated privileges...

10CVSS7.6AI score0.15275EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2014/12/13 12:0 a.m.67 views

Ruby: Denial of service

Background Ruby is an object-oriented scripting language. Description Multiple vulnerabilities have been discovered in Ruby. Please review the CVE identifiers referenced below for details. Impact A context-dependent attacker could possibly execute arbitrary code with the privileges of the process...

7.8CVSS8.4AI score0.34968EPSS
Exploits9
Gentoo Linux
Gentoo Linux
added 2014/03/26 12:0 a.m.67 views

libupnp: Arbitrary code execution

Background libupnp is a portable, open source, UPnP development kit. Description Multiple buffer overflow vulnerabilities have been discovered in libupnp. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the...

10CVSS8AI score0.82807EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2013/09/27 12:0 a.m.67 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Guest domains could possibly gain privileges, execute arbitrary code, or cause a Denial of Service on the host domain...

9.3CVSS8AI score0.37212EPSS
Exploits13
Gentoo Linux
Gentoo Linux
added 2011/10/26 12:0 a.m.67 views

Squid: Multiple vulnerabilities

Background Squid is a full-featured web proxy cache. Description Multiple vulnerabilities have been discovered in Squid. Please review the CVE identifiers referenced below for details. Impact Remote unauthenticated attackers may be able to execute arbitrary code with the privileges of the Squid...

6.8CVSS8AI score0.64243EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2008/11/03 12:0 a.m.67 views

Opera: Multiple vulnerabilities

Background Opera is a fast web browser that is available free of charge. Description Multiple vulnerabilities have been discovered in Opera: Opera does not restrict the ability of a framed web page to change the address associated with a different frame CVE-2008-4195. Chris Weber Casaba Security...

10CVSS9.2AI score0.45729EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2023/11/25 12:0 a.m.66 views

QtWebEngine: Multiple Vulnerabilities

Background QtWebEngine is a library for rendering dynamic web content in Qt5 and Qt6 C++ and QML applications. Description Multiple vulnerabilities have been discovered in QtWebEngine. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

8.8CVSS8.1AI score0.70461EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2022/10/31 12:0 a.m.66 views

Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Microsoft Edge is a browser that combines a minimal design with...

8.8CVSS2.2AI score0.01283EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2022/02/21 12:0 a.m.66 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

10CVSS2.9AI score0.0383EPSS
Exploits18
Gentoo Linux
Gentoo Linux
added 2021/07/15 12:0 a.m.66 views

OpenSCAD: Buffer overflow

Background OpenSCAD is the programmer’s solid 3D CAD modeller. Description A buffer overflow exists in OpenSCAD when parsing STL files. Impact A remote attacker could entice a user to open a specially crafted STL file using OpenSCAD, possibly resulting in execution of arbitrary code with the...

8.8CVSS8.2AI score0.01956EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.66 views

Smarty: Multiple vulnerabilities

Background Smarty is a template engine for PHP. Description Multiple vulnerabilities have been discovered in Smarty template engine. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

9.8CVSS2AI score0.82316EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2020/12/24 12:0 a.m.66 views

Apache Tomcat: Information disclosure

Background Apache Tomcat is a Servlet-3.0/JSP-2.2 Container. Description It was discovered that Apache Tomcat could re-use an HTTP request header value from the previous stream received on an HTTP/2 connection for the request associated with the subsequent stream. Impact A remote attacker, by...

7.5CVSS0.9AI score0.24622EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/12/07 12:0 a.m.66 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

9.3CVSS3AI score0.0245EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.66 views

sysstat: Arbitrary code execution

Background sysstat is a package containing a number of performance monitoring utilities for Linux, including sar, mpstat, iostat and sa tools. Description A double-free in sysstat’s checkfileactlst function was discovered. Impact A local attacker could possibly execute arbitrary code with the...

9.8CVSS9.8AI score0.02762EPSS
Exploits1
Total number of security vulnerabilities3816