Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2017/10/18 12:0 a.m.62 views

Nagios: Multiple vulnerabilities

Background Nagios is an open source host, service and network monitoring program. Description Multiple vulnerabilities have been discovered in Nagios. Please review the referenced CVE identifiers for details. Impact A remote attacker could possibly escalate privileges to root, thus allowing the...

9.8CVSS8.8AI score0.22684EPSS
Exploits11
Gentoo Linux
Gentoo Linux
added 2017/01/23 12:0 a.m.62 views

QEMU: Multiple vulnerabilities

Background QEMU is a generic and open source machine emulator and virtualizer. Description Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details. Impact A privileged user/process within a guest QEMU environment can cause a Denial of...

6.5CVSS6.9AI score0.01214EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/01 12:0 a.m.62 views

libarchive: Multiple vulnerabilities

Background libarchive is a library for manipulating different streaming archive formats, including certain tar variants, several cpio formats, and both BSD and GNU ar variants. Description Multiple vulnerabilities have been discovered in libarchive. Please review the CVE identifiers referenced...

8.8CVSS8.4AI score0.11992EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2016/12/24 12:0 a.m.62 views

Xerces-C++: Multiple vulnerabilities

Background Xerces-C++ is a validating XML parser written in a portable subset of C++. Description Multiple vulnerabilities have been discovered in Xerces-C++. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to process a specially crafte...

10CVSS10AI score0.09115EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/12/08 12:0 a.m.62 views

jq: Buffer overflow

Background jq is a lightweight and flexible command-line JSON processor. Description An off-by-one error was discovered in the tokenadd function in jvparse.c which triggers a heap-based buffer overflow. Impact A remote attacker could trick a victim into processing a specially crafted JSON file,...

10CVSS9.5AI score0.07495EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/07/20 12:0 a.m.62 views

NTP: Multiple vulnerabilities

Background NTP contains software for the Network Time Protocol. Description Multiple vulnerabilities have been discovered in NTP. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly cause a Denial of Service condition. Workaround There is no kno...

9.8CVSS7.5AI score0.81762EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2016/05/31 12:0 a.m.62 views

Mozilla Products: Multiple vulnerabilities

Background Mozilla Firefox is an open-source web browser, Mozilla Thunderbird an open-source email client, and the Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. The SeaMonkey project...

10CVSS9.1AI score0.9986EPSS
Exploits12
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.62 views

IcedTea: Multiple vulnerabilities

Background IcedTea’s aim is to provide OpenJDK in a form suitable for easy configuration, compilation and distribution with the primary goal of allowing inclusion in GNU/Linux distributions. Description Various OpenJDK attack vectors in IcedTea, such as 2D, Corba, Hotspot, Libraries, and JAXP,...

10CVSS7.9AI score0.67234EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2015/02/17 12:0 a.m.62 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to cause a Denial of Service condition, gain privileges via a...

7.5CVSS8.6AI score0.04339EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/06/26 12:0 a.m.62 views

Libav: Multiple vulnerabilities

Background Libav is a complete solution to record, convert and stream audio and video. Description Multiple vulnerabilities have been discovered in Libav. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted media...

10CVSS10AI score0.03533EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2012/09/29 12:0 a.m.62 views

VMware Player, Server, Workstation: Multiple vulnerabilities

Background VMware Player, Server, and Workstation allow emulation of a complete PC on a PC without the usual performance overhead of most emulators. Description Multiple vulnerabilities have been discovered in VMware Player, Server, and Workstation. Please review the CVE identifiers referenced...

10CVSS8.6AI score0.95182EPSS
Exploits59
Gentoo Linux
Gentoo Linux
added 2008/09/21 12:0 a.m.62 views

Mantis: Multiple vulnerabilities

Background Mantis is a PHP/MySQL/Web based bugtracking system. Description Antonio Parata and Francesco Ongaro reported a Cross-Site Request Forgery vulnerability in manageusercreate.php CVE-2008-2276, a Cross-Site Scripting vulnerability in returndynamicfilters.php CVE-2008-3331, and an...

7.5CVSS6.8AI score0.09454EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2007/05/26 12:0 a.m.62 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Several vulnerabilities were found in PHP, most of them during the Month Of PHP Bugs MOPB by Stefan Esser. The most severe of these...

7.8CVSS7.5AI score0.40435EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2024/05/06 12:0 a.m.61 views

glibc: Multiple Vulnerabilities

Background glibc is a package that contains the GNU C library. Description Multiple vulnerabilities have been discovered in glibc. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workarou...

8.1CVSS7.6AI score0.8833EPSS
Exploits16
Gentoo Linux
Gentoo Linux
added 2022/08/10 12:0 a.m.61 views

HashiCorp Consul: Multiple Vulnerabilities

Background HashiCorp Consul is a tool for service discovery, monitoring and configuration. Description Multiple vulnerabilities have been discovered in HashiCorp Consul. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

7.5CVSS1.8AI score0.08676EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.61 views

X.Org X11 library: Denial of service

Background X.Org is an implementation of the X Window System. The X.Org X11 library provides the X11 protocol library files. Description It was discovered that XLookupColor and other X.Org X11 library functions lacked proper validation of the length of their string parameters. Impact An attacker...

9.8CVSS4.2AI score0.10634EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.61 views

GPT fdisk: Integer underflow

Background GPT fdisk consisting of the gdisk, cgdisk, sgdisk, and fixparts programs is a set of text-mode partitioning tools for Linux, FreeBSD, Mac OS X, and Windows. Description It was discovered that ReadLogicalParts function in basicmbr.cc was missing a bounds check. Impact A local attacker...

7.2CVSS2.7AI score0.00436EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/12/23 12:0 a.m.61 views

Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Thunderbird. Please review the CVE...

8.8CVSS3AI score0.01876EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/08/26 12:0 a.m.61 views

Net-SNMP: Multiple vulnerabilities

Background Net-SNMP bundles software for generating and retrieving SNMP data. Description Multiple vulnerabilities have been discovered in Net-SNMP. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is...

7.8CVSS2.9AI score0.02315EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/04/30 12:0 a.m.61 views

Django: Multiple vulnerabilities

Background Django is a Python-based web framework. Description Multiple vulnerabilities have been discovered in Django. Please review the CVE identifiers referenced below for details. Impact A remote attacker, by sending specially crafted input, could possibly cause a Denial of Service condition,...

9.8CVSS3.7AI score0.65336EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2020/04/01 12:0 a.m.61 views

GPL Ghostscript: Multiple vulnerabilities

Background Ghostscript is an interpreter for the PostScript language and for PDF. Description Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to process a specially craft...

9.8CVSS3.2AI score0.43901EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2018/04/09 12:0 a.m.61 views

Zend Framework: Multiple vulnerabilities

Background Zend Framework is a high quality and open source framework for developing Web Applications. Description Multiple vulnerabilities have been discovered in Zend Framework that have remain unaddressed. Please review the referenced CVE identifiers for details. Impact Remote attackers could...

9.8CVSS2.4AI score0.38438EPSS
Exploits12
Gentoo Linux
Gentoo Linux
added 2017/10/18 12:0 a.m.61 views

Ruby: Multiple vulnerabilities

Background Ruby is an interpreted object-oriented programming language. The elaborate standard library includes an HTTP server “WEBRick” and a class for XML parsing “REXML”. Description Multiple vulnerabilities have been discovered in Ruby. Please review the referenced CVE identifiers for details...

9.8CVSS9.4AI score0.16412EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/02/14 12:0 a.m.61 views

VirtualBox: Multiple vulnerabilities

Background VirtualBox is a powerful virtualization product from Oracle. Description Multiple vulnerabilities have been discovered in VirtualBox. Please review the CVE identifiers referenced below for details. Impact An attacker could cause a Denial of Service condition. Additionally, an attacker...

8.4CVSS7.7AI score0.06961EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/01/24 12:0 a.m.61 views

Graphite: Multiple vulnerabilities

Background Graphite is a “smart font” system developed specifically to handle the complexities of lesser-known languages of the world. Description Multiple vulnerabilities have been discovered in Graphite. Please review the CVE identifiers referenced below for details. Impact A remote attacker...

9.3CVSS9.1AI score0.0831EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2017/01/24 12:0 a.m.61 views

ICU: Multiple vulnerabilities

Background ICU is a mature, widely used set of C/C++ and Java libraries providing Unicode and Globalization support for software applications. Description Multiple vulnerabilities have been discovered in ICU. Please review the CVE identifiers referenced below for details. Impact Remote attackers...

9.8CVSS7.1AI score0.05798EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2017/01/02 12:0 a.m.61 views

libotr, Pidgin OTR: Remote execution of arbitrary code

Background Pidgin Off-the-Record OTR messaging allows you to have private conversations over instant messaging. libotr is a portable off-the-record messaging library. Description Multiple vulnerabilities exist in both libotr and Pidgin OTR. Please review the CVE identifiers for more information...

10CVSS9.7AI score0.254EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2017/01/01 12:0 a.m.61 views

BusyBox: Denial of service

Background BusyBox is a set of tools for embedded systems and is a replacement for GNU Coreutils. Description The recvandprocessclientpkt function in networking/ntpd.c in BusyBox allows remote attackers to cause a Denial of Service CPU and bandwidth consumption via a forged NTP packet, which...

7.8CVSS4.6AI score0.08894EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2016/12/13 12:0 a.m.61 views

WebKitGTK+: Multiple vulnerabilities

Background WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers. It offers WebKit’s full functionality and is useful in a wide range of systems from desktop...

6.8CVSS8.3AI score0.02868EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/11/22 12:0 a.m.61 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

9.3CVSS3.5AI score0.07301EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/06/27 12:0 a.m.61 views

hostapd and wpa_supplicant: Multiple vulnerabilities

Background wpasupplicant is a WPA Supplicant with support for WPA and WPA2 IEEE 802.11i / RSN. hostapd is a user space daemon for access point and authentication servers. Description Multiple vulnerabilities exist in both hostapd and wpasupplicant. Please review the CVE identifiers for more...

6.8CVSS8.5AI score0.05228EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2015/10/31 12:0 a.m.61 views

MediaWiki: Multiple vulnerabilities

Background MediaWiki is a collaborative editing software used by large projects such as Wikipedia. Description Multiple vulnerabilities have been discovered in MediaWiki. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to create a Denial of...

7.5CVSS6.8AI score0.02834EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2014/12/11 12:0 a.m.61 views

Multiple packages, Multiple vulnerabilities fixed in 2010

Background For more information on the packages listed in this GLSA, please see their homepage referenced in the ebuild. Description Vulnerabilities have been discovered in the packages listed below. Please review the CVE identifiers in the Reference section for details. Insight Perl Tk Module...

9.8CVSS10AI score0.43382EPSS
Exploits23
Gentoo Linux
Gentoo Linux
added 2014/12/11 12:0 a.m.61 views

Multiple packages, Multiple vulnerabilities fixed in 2012

Background For more information on the packages listed in this GLSA, please see their homepage referenced in the ebuild. Description Vulnerabilities have been discovered in the packages listed below. Please review the CVE identifiers in the Reference section for details. EGroupware VTE Layer Four...

7.5CVSS7.6AI score0.11151EPSS
Exploits11
Gentoo Linux
Gentoo Linux
added 2014/09/03 12:0 a.m.61 views

dhcpcd: Denial of service

Background dhcpcd is a fully featured, yet light weight RFC2131 compliant DHCP client. Description A vulnerability has been discovered in dhcpcd. A malicious dhcp server can set flags as part of the dhcp reply that can cause a Denial of Service condition. Impact A remote attacker can cause a Deni...

3.3CVSS9AI score0.00441EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2013/08/22 12:0 a.m.61 views

Adobe Reader: Multiple vulnerabilities

Background Adobe Reader is a closed-source PDF reader. Description Multiple vulnerabilities have been discovered in Adobe Reader. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted PDF file, possibly resulting i...

10CVSS7.8AI score0.86979EPSS
Exploits16
Gentoo Linux
Gentoo Linux
added 2012/06/15 12:0 a.m.61 views

Opera: Multiple vulnerabilities

Background Opera is a fast web browser that is available free of charge. Description Multiple vulnerabilities have been discovered in Opera. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted web page, possibly...

10CVSS7.6AI score0.19792EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2012/01/23 12:0 a.m.61 views

MIT Kerberos 5: Multiple vulnerabilities

Background MIT Kerberos 5 is a suite of applications that implement the Kerberos network protocol. Description Multiple vulnerabilities have been discovered in MIT Kerberos 5. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to execute arbitrary...

10CVSS8.2AI score0.40345EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2009/04/08 12:0 a.m.61 views

Tor: Multiple vulnerabilities

Background Tor is an implementation of second generation Onion Routing, a connection-oriented anonymizing communication service. Description Theo de Raadt reported that the application does not properly drop privileges to the primary groups of the user specified via the "User" configuration optio...

10CVSS7.2AI score0.03021EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2008/11/16 12:0 a.m.61 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Several vulnerabilitites were found in PHP: PHP ships a vulnerable version of the PCRE library which allows for the circumvention of security...

10CVSS10AI score0.13923EPSS
Exploits21
Gentoo Linux
Gentoo Linux
added 2004/11/19 12:0 a.m.61 views

unarj: Long filenames buffer overflow and a path traversal vulnerability

Background unarj is an ARJ archive decompressor. Description unarj has a bounds checking vulnerability within the handling of long filenames in archives. It also fails to properly sanitize paths when extracting an archive if the "x" option is used to preserve paths. Impact An attacker could trigg...

10CVSS7.3AI score0.07369EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/08/27 12:0 a.m.61 views

zlib: Denial of service vulnerability

Background zlib is a general-purpose data-compression library. Description zlib contains a bug in the handling of errors in the "inflate" and "inflateBack" functions. Impact An attacker could exploit this vulnerability to launch a Denial of Service attack on any application using the zlib library...

2.1CVSS6.2AI score0.00476EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2024/05/04 12:0 a.m.60 views

HTMLDOC: Multiple Vulnerabilities

Background HTMLDOC is a HTML indexer and HTML to PS and PDF converter. Description Multiple vulnerabilities have been discovered in HTMLDOC. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no know...

10CVSS7.5AI score0.07349EPSS
Exploits20
Gentoo Linux
Gentoo Linux
added 2023/09/17 12:0 a.m.60 views

GPL Ghostscript: Multiple Vulnerabilities

Background Ghostscript is an interpreter for the PostScript language and for PDF. Description Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workarou...

9.8CVSS7.4AI score0.06341EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.60 views

PostgreSQL: Multiple vulnerabilities

Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact An authenticated remote attacker, by executing malicious crafted...

4.3CVSS2.6AI score0.01466EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2020/09/29 12:0 a.m.60 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

9.6CVSS2AI score0.02948EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.60 views

QtGui: Arbitrary code execution

Background QtGui is a module for the Qt toolkit. Description QtGui’s setMarkdown has a use-after-free related to QTextMarkdownImporter::insertBlock. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of Service condition. Workaroun...

9.8CVSS9.9AI score0.02349EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/03/19 12:0 a.m.60 views

GNU FriBidi: Heap-based buffer overflow

Background The Free Implementation of the Unicode Bidirectional Algorithm. Description A heap-based buffer overflow vulnerability was found in GNU FriBidi. Impact A remote attacker could possibly cause a memory corruption, execute arbitrary code with the privileges of the process or cause a Denia...

7.8CVSS5.3AI score0.02182EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/03/19 12:0 a.m.60 views

Binary diff: Heap-based buffer overflow

Background bsdiff and bspatch are tools for building and applying patches to binary files. Description It was discovered that the implementation of bspatch did not check for a negative value on numbers of bytes read from the diff and extra streams. Impact A remote attacker could entice a user to...

7.8CVSS8.1AI score0.06762EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2018/01/14 12:0 a.m.60 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the referenced CVE identifiers for details. Impact A local attacker could potentially execute arbitrary code with the privileges of the Xen QEMU process on the host, gain...

8.8CVSS9AI score0.01547EPSS
Exploits1
Total number of security vulnerabilities3816