Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2017/02/20 12:0 a.m.66 views

Dropbear: Multiple vulnerabilities

Background Dropbear is an SSH server and client designed with a small memory footprint. Description Multiple vulnerabilities have been discovered in Dropbear. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with root...

10CVSS4.6AI score0.10494EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/29 12:0 a.m.66 views

FFmpeg: Multiple vulnerabilities

Background FFmpeg is a complete, cross-platform solution to record, convert and stream audio and video. Description Multiple vulnerabilities have been discovered in FFmpeg. Please review the CVE identifiers referenced below for details. Impact Remote attackers could cause a Denial of Service...

7.8CVSS4.3AI score0.01749EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/29 12:0 a.m.66 views

FreeImage: Multiple vulnerabilities

Background FreeImage is an Open Source library project for developers who would like to support popular graphics image formats like PNG, BMP, JPEG, TIFF and others as needed by today’s multimedia applications. Description Multiple vulnerabilities have been discovered in in FreeImage. Please revie...

7.8CVSS8.8AI score0.02975EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/11 12:0 a.m.66 views

D-Bus: Format string vulnerability

Background D-Bus is a message bus system, a simple way for applications to talk to one another. Description It was discovered that D-Bus incorrectly handles certain format strings. The impact of this new vulnerability is believed to not be exploitable if D-Bus is patched against CVE-2015-0245. Th...

1.9CVSS8.1AI score0.00273EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/12/24 12:0 a.m.66 views

Roundcube: Arbitrary code execution

Background Free and open source webmail software for the masses, written in PHP. Description Roundcube, when no SMTP server is configured and the sendmail program is enabled, does not properly restrict the use of custom envelope-from addresses on the sendmail command line. Impact An authenticated...

7.5CVSS8AI score0.05621EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2016/06/27 12:0 a.m.66 views

IcedTea: Multiple vulnerabilities

Background IcedTea’s aim is to provide OpenJDK in a form suitable for easy configuration, compilation and distribution with the primary goal of allowing inclusion in GNU/Linux distributions. Description Various OpenJDK attack vectors in IcedTea, such as 2D, Corba, Hotspot, Libraries, and JAXP,...

10CVSS8.8AI score0.92334EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2015/04/11 12:0 a.m.66 views

Apache: Multiple vulnerabilities

Background Apache HTTP Server is one of the most popular web servers on the Internet. Description Multiple vulnerabilities have been discovered in Apache HTTP Server. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to execute arbitrary code or...

6.8CVSS7.6AI score0.85744EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2014/12/26 12:0 a.m.66 views

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced...

7.5CVSS6.5AI score0.7408EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2014/12/13 12:0 a.m.66 views

Ruby: Denial of service

Background Ruby is an object-oriented scripting language. Description Multiple vulnerabilities have been discovered in Ruby. Please review the CVE identifiers referenced below for details. Impact A context-dependent attacker could possibly execute arbitrary code with the privileges of the process...

7.8CVSS8.4AI score0.34968EPSS
Exploits9
Gentoo Linux
Gentoo Linux
added 2014/11/23 12:0 a.m.66 views

Ansible: Privilege escalation

Background Ansible is a radically simple IT automation platform. Description Multiple vulnerabilities have been discovered in Ansible. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly execute arbitrary code with the privileges of the process,...

9.8CVSS9.9AI score0.05197EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2009/06/30 12:0 a.m.66 views

Wireshark: Multiple vulnerabilities

Background Wireshark is a versatile network protocol analyzer. Description Multiple vulnerabilities have been discovered in Wireshark: David Maciejak discovered a vulnerability in packet-usb.c in the USB dissector via a malformed USB Request Block URB CVE-2008-4680. Florent Drouin and David...

10CVSS8.6AI score0.1523EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2024/05/04 12:0 a.m.65 views

MPlayer: Multiple Vulnerabilities

Background MPlayer is a media player capable of handling multiple multimedia file formats. Description Multiple vulnerabilities have been discovered in MPlayer. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

7.8CVSS7.3AI score0.00358EPSS
Exploits13
Gentoo Linux
Gentoo Linux
added 2021/01/22 12:0 a.m.65 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

9.6CVSS2AI score0.23406EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2020/12/24 12:0 a.m.65 views

Apache Tomcat: Information disclosure

Background Apache Tomcat is a Servlet-3.0/JSP-2.2 Container. Description It was discovered that Apache Tomcat could re-use an HTTP request header value from the previous stream received on an HTTP/2 connection for the request associated with the subsequent stream. Impact A remote attacker, by...

7.5CVSS0.9AI score0.24622EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/09/30 12:0 a.m.65 views

Bitcoin: Multiple vulnerabilities

Background Bitcoin Core consists of both “full-node” software for fully validating the blockchain as well as a bitcoin wallet. Description Multiple vulnerabilities have been discovered in Bitcoin. Please review the CVE identifiers referenced below for details. Impact Please review the referenced...

7.5CVSS8AI score0.03389EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/08/19 12:0 a.m.65 views

Mozilla Network Security Service (NSS): Multiple vulnerabilities

Background The Mozilla Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description Multiple vulnerabilities have been discovered in NSS. Please review the CVE identifiers referenced...

9.1CVSS2.7AI score0.01541EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.65 views

sysstat: Arbitrary code execution

Background sysstat is a package containing a number of performance monitoring utilities for Linux, including sar, mpstat, iostat and sa tools. Description A double-free in sysstat’s checkfileactlst function was discovered. Impact A local attacker could possibly execute arbitrary code with the...

9.8CVSS9.8AI score0.02762EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/06/15 12:0 a.m.65 views

Apache Tomcat: Remote code execution

Background Apache Tomcat is a Servlet-3.0/JSP-2.2 Container. Description Apache Tomcat improperly handles deserialization of files under specific circumstances. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of Service conditio...

7CVSS4.2AI score0.56636EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2020/03/25 12:0 a.m.65 views

Samba: Multiple vulnerabilities

Background Samba is a suite of SMB and CIFS client/server programs. Description Multiple vulnerabilities have been discovered in Samba. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code, cause a Denial of Service...

9.1CVSS3.9AI score0.10839EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2018/04/08 12:0 a.m.65 views

QEMU: Multiple vulnerabilities

Background QEMU is a generic and open source machine emulator and virtualizer. Description Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details. Impact An attacker could execute arbitrary code, cause a Denial of Service condition, o...

10CVSS3.5AI score0.74041EPSS
Exploits10
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.65 views

Supervisor: command injection vulnerability

Background Supervisor is a client/server system that allows its users to monitor and control a number of processes on UNIX-like operating systems. Description A vulnerability in Supervisor was discovered in which an authenticated client could send malicious XML-RPC requests and supervidord will r...

9CVSS9AI score0.87544EPSS
Exploits10
Gentoo Linux
Gentoo Linux
added 2017/01/29 12:0 a.m.65 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Description Multiple vulnerabilities have been discovered in the Chromium web browser. Please review the CVE identifiers referenced below for details...

8.8CVSS8AI score0.02099EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/01/11 12:0 a.m.65 views

phpBB: Multiple vulnerabilities

Background phpBB is an Open Source bulletin board package. Description Multiple vulnerabilities have been discovered in phpBB. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to change settings, inject arbitrary web script or HTML, or conduct...

6.8CVSS7AI score0.02746EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/06/18 12:0 a.m.65 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

10CVSS10.1AI score0.94354EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2015/12/30 12:0 a.m.65 views

encfs: Multiple vulnerabilities

Background Encfs is an implementation of encrypted filesystem in user-space using FUSE. Description Multiple vulnerabilities have been discovered in encfs. Please review the CVE identifiers referenced below for details. Impact A local attacker can utilize a possible buffer overflow in the...

7.5CVSS8.5AI score0.03112EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2015/03/19 12:0 a.m.65 views

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been found in OpenSSL. Please review the CVE identifiers and the upstream...

7.5CVSS8.2AI score0.98685EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2014/12/13 12:0 a.m.65 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to execute arbitrary code with the privileges of the process or...

10CVSS6.4AI score0.07653EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/11/09 12:0 a.m.65 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact A...

7.5CVSS8.2AI score0.28862EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2012/03/30 12:0 a.m.65 views

Chromium, V8: Multiple vulnerabilities

Background Chromium is an open source web browser project. V8 is Google's open source JavaScript engine. SPDY is an experimental networking protocol. Description Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below...

7.5CVSS9.8AI score0.02187EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2010/06/04 12:0 a.m.65 views

Oracle JRE/JDK: Multiple vulnerabilities

Background The Oracle Java Development Kit JDK formerly known as Sun JDK and the Oracle Java Runtime Environment JRE formerly known as Sun JRE provide the Oracle Java platform formerly known as Sun Java Platform. Description Multiple vulnerabilities have been reported in the Oracle Java...

10CVSS7.8AI score0.96319EPSS
Exploits53
Gentoo Linux
Gentoo Linux
added 2009/04/02 12:0 a.m.65 views

Openfire: Multiple vulnerabilities

Background Ignite Realtime Openfire is a fast real-time collaboration server. Description Two vulnerabilities have been reported by Federico Muttis, from CORE IMPACT's Exploit Writing Team: Multiple missing or incomplete input validations in several .jsps CVE-2009-0496. Incorrect input validation...

7.5CVSS9.4AI score0.83382EPSS
Exploits10
Gentoo Linux
Gentoo Linux
added 2008/12/16 12:0 a.m.65 views

Ruby: Multiple vulnerabilities

Background Ruby is an interpreted object-oriented programming language. The elaborate standard library includes an HTTP server "WEBRick" and a class for XML parsing "REXML". Description Multiple vulnerabilities have been discovered in the Ruby interpreter and its standard libraries. Drew Yao of...

10CVSS8.4AI score0.95182EPSS
Exploits29
Gentoo Linux
Gentoo Linux
added 2007/03/20 12:0 a.m.65 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Several vulnerabilities were found in PHP by the Hardened-PHP Project and other researchers. These vulnerabilities include a heap-based buffe...

10CVSS7.4AI score0.40435EPSS
Exploits13
Gentoo Linux
Gentoo Linux
added 2004/08/25 12:0 a.m.65 views

Linux Kernel: Multiple information leaks

Background The Linux kernel is responsible for managing the core aspects of a GNU/Linux system, providing an interface for core system applications as well as providing the essential structure and capability to access hardware that is needed for a running system. Description The Linux kernel allo...

4.6CVSS6.2AI score0.00766EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2004/07/11 12:0 a.m.65 views

MoinMoin: Group ACL bypass

Background MoinMoin is a Python clone of WikiWiki, based on PikiPiki. Description MoinMoin contains a bug in the code handling administrative group ACLs. A user created with the same name as an administrative group gains the privileges of the administrative group. Impact If an administrative grou...

7.5CVSS6.6AI score0.01752EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2022/09/29 12:0 a.m.64 views

Expat: Multiple Vulnerabilities

Background Expat is a set of XML parsing libraries. Description Multiple vulnerabilities have been discovered in Expat. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this...

9.8CVSS9.2AI score0.34174EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.64 views

LittleCMS: User-assisted execution of arbitrary code

Background LittleCMS, or short lcms, is a color management system for working with ICC profiles. It is used by many applications including GIMP, Firefox and Chromium. Description It was discovered that LittleCMS aka Little Color Management System had an integer overflow in the AllocateDataSet...

5.5CVSS4.6AI score0.01746EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2021/01/27 12:0 a.m.64 views

Telegram Desktop: Multiple vulnerabilities

Background Telegram is a messaging app with a focus on speed and security. Description Multiple vulnerabilities have been discovered in Telegram Desktop. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround The...

7.8CVSS2.2AI score0.02281EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/01/11 12:0 a.m.64 views

Pillow: Multiple vulnerabilities

Background Python Imaging Library fork Description Multiple vulnerabilities have been discovered in Pillow. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time...

8.8CVSS3.6AI score0.01789EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/09/06 12:0 a.m.64 views

Dovecot: Multiple vulnerabilities

Background Dovecot is an open source IMAP and POP3 email server. Description It was discovered that Dovecot incorrectly handled deeply nested MIME parts, incorrectly handled memory when using NTLM, and incorrectly handled zero-length messages. Impact A remote attacker could send a specially craft...

7.5CVSS2.6AI score0.06187EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.64 views

OSSEC: Multiple vulnerabilities

Background OSSEC is a full platform to monitor and control your systems. Description Multiple vulnerabilities have been discovered in OSSEC. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no know...

10CVSS2.5AI score0.02685EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2020/03/26 12:0 a.m.64 views

QtCore: Multiple vulnerabilities

Background The Qt toolkit is a comprehensive C++ application development framework. Description Multiple vulnerabilities have been discovered in QtCore. Please review the CVE identifiers referenced below for details. Impact An attacker could possibly execute arbitrary code with the privileges of...

7.3CVSS3.3AI score0.0205EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/03/19 12:0 a.m.64 views

PyYAML: Arbitrary code execution

Background PyYAML is a YAML parser and emitter for Python. Description It was found that using yaml.load API on untrusted input could lead to arbitrary code execution. Impact A remote attacker could entice a user to process specially crafted input in an application using yaml.load from PyYAML,...

9.8CVSS4.8AI score0.06031EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/03/12 12:0 a.m.64 views

Vim, gVim: Remote execution of arbitrary code

Background Vim is an efficient, highly configurable improved version of the classic ‘vi’ text editor. gVim is the GUI version of Vim. Description It was found that the :source! command was not restricted by the sandbox mode. If modeline was explicitly enabled, opening a specially crafted text fil...

9.3CVSS8.2AI score0.19111EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2017/10/15 12:0 a.m.64 views

GnuTLS: Denial of service

Background GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. Description A null pointer dereference while decoding a status response TLS extension with valid contents was discovered in GnuTLS. Impact A remote attacker could possib...

7.5CVSS2.9AI score0.0341EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/10/13 12:0 a.m.64 views

GNU Libtasn1: Multiple vulnerabilities

Background A library that provides Abstract Syntax Notation One ASN.1, as specified by the X.680 ITU-T recommendation parsing and structures management, and Distinguished Encoding Rules DER, as per X.690 encoding and decoding functions. Description Multiple vulnerabilities have been discovered in...

8.8CVSS9.4AI score0.05585EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/06/20 12:0 a.m.64 views

GNU C Library: Multiple vulnerabilities

Background The GNU C library is the standard C library used by Gentoo Linux systems. Description Multiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers and Qualys’ security advisory referenced below for details. Impact An attacker could possibly...

7.8CVSS8.6AI score0.06219EPSS
Exploits14
Gentoo Linux
Gentoo Linux
added 2017/01/31 12:0 a.m.64 views

HarfBuzz: Multiple vulnerabilities

Background HarfBuzz is an OpenType text shaping engine. Description Multiple vulnerabilities have been discovered in HarfBuzz. Please review the CVE identifiers referenced below for details. Impact Remote attackers, through the use of crafted data, could cause a Denial of Service condition or hav...

7.6CVSS8.1AI score0.02451EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/11 12:0 a.m.64 views

c-ares: Heap-based buffer overflow

Background c-ares is a C library for asynchronous DNS requests including name resolves. Description A hostname with an escaped trailing dot such as “hello\.” would have its size calculated incorrectly leading to a single byte written beyond the end of a buffer on the heap. Impact A remote...

9.8CVSS9.8AI score0.08583EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.64 views

Oracle JRE/JDK: Multiple vulnerabilities

Background Java Platform, Standard Edition Java SE lets you develop and deploy Java applications on desktops and servers, as well as in today’s demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today’s applications...

10CVSS8.1AI score0.9986EPSS
Exploits1
Total number of security vulnerabilities3816