Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2017/01/11 12:0 a.m.64 views

c-ares: Heap-based buffer overflow

Background c-ares is a C library for asynchronous DNS requests including name resolves. Description A hostname with an escaped trailing dot such as “hello\.” would have its size calculated incorrectly leading to a single byte written beyond the end of a buffer on the heap. Impact A remote...

9.8CVSS9.8AI score0.08583EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.64 views

Oracle JRE/JDK: Multiple vulnerabilities

Background Java Platform, Standard Edition Java SE lets you develop and deploy Java applications on desktops and servers, as well as in today’s demanding embedded environments. Java offers the rich user interface, performance, versatility, portability, and security that today’s applications...

10CVSS8.1AI score0.9986EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2015/10/31 12:0 a.m.64 views

Wireshark: Multiple vulnerabilities

Background Wireshark is a network protocol analyzer formerly known as ethereal. Description Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly cause a Denial of Service condition...

7.8CVSS6.9AI score0.046EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/09/04 12:0 a.m.64 views

MySQL: Multiple vulnerabilities

Background MySQL is a popular multi-threaded, multi-user SQL server. Description Multiple vulnerabilities have been discovered in MySQL. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly gain escalated privileges. A remote attacker could send a...

9.3CVSS8.6AI score0.70211EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2014/01/16 12:0 a.m.64 views

NTP: Traffic amplification

Background NTP is a protocol designed to synchronize the clocks of computers over a network. The net-misc/ntp package contains the official reference implementation by the NTP Project. Description ntpd is susceptible to a reflected Denial of Service attack. Please review the CVE identifiers and...

5CVSS6.6AI score0.97549EPSS
Exploits23
Gentoo Linux
Gentoo Linux
added 2012/08/14 12:0 a.m.64 views

Chromium: Multiple vulnerabilities

Background Chromium is an open source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers and release notes referenced below for details. Impact A remote attacker could entice a user to open a specially crafted web site usi...

9.3CVSS9.1AI score0.02123EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2012/06/02 12:0 a.m.64 views

BIND: Multiple vulnerabilities

Background BIND is the Berkeley Internet Name Domain Server. Description Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. Impact The vulnerabilities allow remote attackers to cause a Denial of Service daemon crash via a DNS...

7.1CVSS9.2AI score0.24638EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2010/11/15 12:0 a.m.64 views

GNU C library: Multiple vulnerabilities

Background The GNU C library is the standard C library used by Gentoo Linux systems. Description Multiple vulnerabilities were found in glibc, amongst others the widely-known recent LDAUDIT and $ORIGIN issues. For further information please consult the CVE entries referenced below. Impact A local...

7.2CVSS8.8AI score0.11222EPSS
Exploits36
Gentoo Linux
Gentoo Linux
added 2010/01/05 12:0 a.m.64 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below and the associated PHP release notes...

10CVSS8.4AI score0.12041EPSS
Exploits30
Gentoo Linux
Gentoo Linux
added 2008/07/11 12:0 a.m.64 views

BIND: Cache poisoning

Background ISC BIND is the Internet Systems Consortium implementation of the Domain Name System DNS protocol. Description Dan Kaminsky of IOActive has reported a weakness in the DNS protocol related to insufficient randomness of DNS transaction IDs and query source ports. Impact An attacker could...

6.8CVSS6.9AI score0.95182EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2008/04/05 12:0 a.m.64 views

OpenSSH: Privilege escalation

Background OpenSSH is a complete SSH protocol implementation that includes an SFTP client and server support. Description Two issues have been discovered in OpenSSH: Timo Juhani Lindfors discovered that OpenSSH sets the DISPLAY variable in SSH sessions using X11 forwarding even when it cannot bin...

6.9CVSS6.8AI score0.02223EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2005/02/14 12:0 a.m.64 views

Opera: Multiple vulnerabilities

Background Opera is a multi-platform web browser. Description Opera contains several vulnerabilities: fails to properly validate Content-Type and filename. fails to properly validate date: URIs. uses kfmclient exec as the Default Application to handle downloaded files when integrated with KDE...

7.5CVSS7.1AI score0.12559EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2021/07/23 12:0 a.m.63 views

IcedTeaWeb: Multiple vulnerabilities

Background FOSS Java browser plugin and Web Start implementation. Description Multiple vulnerabilities have been discovered in IcedTeaWeb. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

8.6CVSS3.2AI score0.04022EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/01/11 12:0 a.m.63 views

Ark: Symlink vulnerability

Background Ark is a graphical file compression/decompression utility with support for multiple formats. Description KDE Ark did not fully verify symlinks contained within tar archives. Impact A remote attacker could entice a user to open a specially crafted tar archive using KDE Ark, possibly...

4.3CVSS3.6AI score0.01496EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/08/12 12:0 a.m.63 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

9.3CVSS2AI score0.29292EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/06/13 12:0 a.m.63 views

ssvnc: Multiple vulnerabilities

Background The Enhanced TightVNC Viewer, SSVNC, adds encryption security to VNC connections. Description Multiple vulnerabilities have been discovered in ssvnc. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

9.8CVSS1.4AI score0.08553EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/06/13 12:0 a.m.63 views

Ansible: Multiple vulnerabilities

Background Ansible is a radically simple IT automation platform. Description Multiple vulnerabilities have been discovered in Ansible. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

7.9CVSS3.5AI score0.00506EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2020/03/19 12:0 a.m.63 views

Cacti: Multiple vulnerabilities

Background Cacti is a complete frontend to rrdtool. Description Multiple vulnerabilities have been discovered in Cacti. Please review the CVE identifiers referenced below for details. Impact Remote attackers could execute arbitrary code or bypass intended access restrictions. Workaround There is ...

9CVSS4.1AI score0.36824EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2020/03/12 12:0 a.m.63 views

PostgreSQL: Multiple vulnerabilities

Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the...

9CVSS8.9AI score0.03711EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2019/08/09 12:0 a.m.63 views

LibVNCServer: Multiple vulnerabilities

Background LibVNCServer/LibVNCClient are cross-platform C libraries that allow you to easily implement VNC server or client functionality in your program. Description Multiple vulnerabilities have been discovered in LibVNCServer. Please review the CVE identifiers referenced below for details...

9.8CVSS3.6AI score0.09392EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/11 12:0 a.m.63 views

NTFS-3G: Privilege escalation

Background NTFS-3G is a stable, full-featured, read-write NTFS driver for various operating systems. Description NTFS-3G is affected by the same vulnerability as reported in “GLSA 201603-04” when the bundled fuse-lite implementation is used. Impact A local user could gain root privileges...

3.6CVSS6.6AI score0.01008EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2016/07/20 12:0 a.m.63 views

Dropbear: Privilege escalation

Background Dropbear is a relatively small SSH server and client. Description A CRLF injection vulnerability in Dropbear SSH allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data. Impact A remote authenticated user could execute arbitrary...

6.4CVSS5.1AI score0.19302EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2016/06/26 12:0 a.m.63 views

claws-mail: Multiple Vulnerabilities

Background Claws Mail is a GTK based e-mail client. Description Multiple vulnerabilities have been discovered in claws-mail. Please review the CVE identifiers referenced below for details. Impact An attacker could possibly intercept communications due to the default implementation of SSL 3.0...

7.5CVSS6.3AI score0.99999EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.63 views

FFmpeg: Multiple vulnerabilities

Background FFmpeg is a complete, cross-platform solution to record, convert and stream audio and video. Description Multiple vulnerabilities have been discovered in FFmpeg. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary co...

10CVSS8.8AI score0.04697EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2015/02/15 12:0 a.m.63 views

Oracle JRE/JDK: Multiple vulnerabilities

Background Oracle’s Java SE Development Kit and Runtime Environment Description Multiple vulnerabilities have been discovered in Oracle’s Java SE Development Kit and Runtime Environment. Please review the CVE identifiers referenced below for details. Impact A context-dependent attacker may be abl...

10CVSS6.8AI score0.07571EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2014/09/24 12:0 a.m.63 views

Bash: Code Injection

Background Bash is the standard GNU Bourne Again SHell. Description Stephane Chazelas reported that Bash incorrectly handles function definitions, allowing attackers to inject arbitrary code. Impact A remote attacker could exploit this vulnerability to execute arbitrary commands even in restricte...

10CVSS9.9AI score0.99999EPSS
Exploits131
Gentoo Linux
Gentoo Linux
added 2014/08/29 12:0 a.m.63 views

Apache HTTP Server: Multiple vulnerabilities

Background Apache HTTP Server is one of the most popular web servers on the Internet. Description Multiple vulnerabilities have been found in Apache HTTP Server. Please review the CVE identifiers referenced below for details. Impact A remote attacker could send a specially crafted request to...

6.8CVSS7.7AI score0.85744EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2014/05/18 12:0 a.m.63 views

util-linux: Multiple vulnerabilities

Background util-linux is a suite of Linux programs including mount and umount, programs used to mount and unmount filesystems. Description Multiple vulnerabilities have been discovered in util-linux. Please review the CVE identifiers referenced below for details. Impact A local attacker may be ab...

4.6CVSS7.8AI score0.00487EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2012/06/25 12:0 a.m.63 views

nbd: Multiple vulnerabilities

Background nbd is a userland client/server for kernel network block device. Description Multiple vulnerabilities have been discovered in nbd. Please review the CVE identifiers referenced below for details. Impact nbd allows remote attackers to cause a denial of service NULL pointer dereference an...

7.5CVSS4.3AI score0.05278EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2005/10/17 12:0 a.m.63 views

phpMyAdmin: Local file inclusion vulnerability

Background phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the web. Description Maksymilian Arciemowicz reported that in libraries/grabglobals.lib.php, the $redirect parameter was not correctly validated. Systems running PHP in safe mode are not affected...

5CVSS9.3AI score0.15919EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2023/10/08 12:0 a.m.62 views

Heimdal: Multiple Vulnerabilities

Background Heimdal is a free implementation of Kerberos 5. Description Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a Kerberos Domain Controller. Please review the CVE identifiers referenced below for details. Impact Please...

9.8CVSS7.8AI score0.06419EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2023/05/21 12:0 a.m.62 views

MediaWiki: Multiple Vulnerabilities

Background MediaWiki is a collaborative editing software, used by big projects like Wikipedia. Description Multiple vulnerabilities have been discovered in MediaWiki. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

9.8CVSS7.3AI score0.01762EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2022/12/19 12:0 a.m.62 views

Oracle VirtualBox: Multiple Vulnerabilities

Background VirtualBox is a powerful virtualization product from Oracle. Description Multiple vulnerabilities have been discovered in Oracle VirtualBox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There...

8.1CVSS3.8AI score0.01635EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2022/09/29 12:0 a.m.62 views

PHP: Multiple Vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact Please review th...

9.8CVSS0.7AI score0.5838EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2022/08/14 12:0 a.m.62 views

xterm: Multiple Vulnerabilities

Background xterm is a terminal emulator for the X Window system. Description Multiple vulnerabilities have been discovered in xterm. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

9.8CVSS3.2AI score0.07541EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2021/01/27 12:0 a.m.62 views

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is n...

9.8CVSS2.5AI score0.67081EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.62 views

fuseiso: Multiple vulnerabilities

Background FuseISO is a FUSE module to mount ISO filesystem images .iso, .nrg, .bin, .mdf and .img files. Description Multiple vulnerabilities have been discovered in fuseiso. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a...

7.3CVSS7.9AI score0.02809EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/06/15 12:0 a.m.62 views

FAAD2: Multiple vulnerabilities

Background FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder. Description Multiple vulnerabilities have been discovered in FAAD2. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

7.8CVSS2.6AI score0.01518EPSS
Exploits16
Gentoo Linux
Gentoo Linux
added 2020/06/13 12:0 a.m.62 views

Nokogiri: Command injection

Background Nokogiri is an HTML, XML, SAX, and Reader parser. Description A command injection vulnerability in Nokogiri allows commands to be executed in a subprocess by Ruby’s Kernel.open method. Processes are vulnerable only if the undocumented method Nokogiri::CSS::Tokenizerloadfile is being...

9.8CVSS10AI score0.05899EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/10/18 12:0 a.m.62 views

Nagios: Multiple vulnerabilities

Background Nagios is an open source host, service and network monitoring program. Description Multiple vulnerabilities have been discovered in Nagios. Please review the referenced CVE identifiers for details. Impact A remote attacker could possibly escalate privileges to root, thus allowing the...

9.8CVSS8.8AI score0.22684EPSS
Exploits11
Gentoo Linux
Gentoo Linux
added 2017/01/01 12:0 a.m.62 views

libarchive: Multiple vulnerabilities

Background libarchive is a library for manipulating different streaming archive formats, including certain tar variants, several cpio formats, and both BSD and GNU ar variants. Description Multiple vulnerabilities have been discovered in libarchive. Please review the CVE identifiers referenced...

8.8CVSS8.4AI score0.11992EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2016/12/24 12:0 a.m.62 views

Xerces-C++: Multiple vulnerabilities

Background Xerces-C++ is a validating XML parser written in a portable subset of C++. Description Multiple vulnerabilities have been discovered in Xerces-C++. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to process a specially crafte...

10CVSS10AI score0.09115EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/12/24 12:0 a.m.62 views

Samba: Multiple vulnerabilities

Background Samba is a suite of SMB and CIFS client/server programs. Description Multiple vulnerabilities have been discovered in samba. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with root privileges, cause a Deni...

7.5CVSS8.5AI score0.3693EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/12/08 12:0 a.m.62 views

jq: Buffer overflow

Background jq is a lightweight and flexible command-line JSON processor. Description An off-by-one error was discovered in the tokenadd function in jvparse.c which triggers a heap-based buffer overflow. Impact A remote attacker could trick a victim into processing a specially crafted JSON file,...

10CVSS9.5AI score0.07495EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/07/20 12:0 a.m.62 views

NTP: Multiple vulnerabilities

Background NTP contains software for the Network Time Protocol. Description Multiple vulnerabilities have been discovered in NTP. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly cause a Denial of Service condition. Workaround There is no kno...

9.8CVSS7.5AI score0.81762EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2016/05/31 12:0 a.m.62 views

Mozilla Products: Multiple vulnerabilities

Background Mozilla Firefox is an open-source web browser, Mozilla Thunderbird an open-source email client, and the Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. The SeaMonkey project...

10CVSS9.1AI score0.9986EPSS
Exploits12
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.62 views

IcedTea: Multiple vulnerabilities

Background IcedTea’s aim is to provide OpenJDK in a form suitable for easy configuration, compilation and distribution with the primary goal of allowing inclusion in GNU/Linux distributions. Description Various OpenJDK attack vectors in IcedTea, such as 2D, Corba, Hotspot, Libraries, and JAXP,...

10CVSS7.9AI score0.67234EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2015/02/17 12:0 a.m.62 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to cause a Denial of Service condition, gain privileges via a...

7.5CVSS8.6AI score0.04339EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/06/26 12:0 a.m.62 views

Libav: Multiple vulnerabilities

Background Libav is a complete solution to record, convert and stream audio and video. Description Multiple vulnerabilities have been discovered in Libav. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted media...

10CVSS10AI score0.03533EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2008/09/21 12:0 a.m.62 views

Mantis: Multiple vulnerabilities

Background Mantis is a PHP/MySQL/Web based bugtracking system. Description Antonio Parata and Francesco Ongaro reported a Cross-Site Request Forgery vulnerability in manageusercreate.php CVE-2008-2276, a Cross-Site Scripting vulnerability in returndynamicfilters.php CVE-2008-3331, and an...

7.5CVSS6.8AI score0.09454EPSS
Exploits8
Total number of security vulnerabilities3816