Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2022/08/10 12:0 a.m.59 views

HashiCorp Consul: Multiple Vulnerabilities

Background HashiCorp Consul is a tool for service discovery, monitoring and configuration. Description Multiple vulnerabilities have been discovered in HashiCorp Consul. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

7.5CVSS1.8AI score0.08912EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/12/23 12:0 a.m.59 views

Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Thunderbird. Please review the CVE...

8.8CVSS3AI score0.01876EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/08/26 12:0 a.m.59 views

Docker: Information disclosure

Background Docker is the world’s leading software containerization platform. Description It was found that Docker created network bridges which by default accept IPv6 router advertisements. Impact An attacker who gained access to a container with CAPNETRAW capability may be able to to spoof route...

6CVSS6.2AI score0.02839EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/04/30 12:0 a.m.59 views

Django: Multiple vulnerabilities

Background Django is a Python-based web framework. Description Multiple vulnerabilities have been discovered in Django. Please review the CVE identifiers referenced below for details. Impact A remote attacker, by sending specially crafted input, could possibly cause a Denial of Service condition,...

9.8CVSS3.7AI score0.65336EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2019/08/15 12:0 a.m.59 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla Project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to view a specially...

10CVSS4.7AI score0.55874EPSS
Exploits18
Gentoo Linux
Gentoo Linux
added 2018/01/14 12:0 a.m.59 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the referenced CVE identifiers for details. Impact A local attacker could potentially execute arbitrary code with the privileges of the Xen QEMU process on the host, gain...

8.8CVSS9AI score0.01547EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2018/01/07 12:0 a.m.59 views

OpenSSH: Permission issue

Background OpenSSH is a complete SSH protocol implementation that includes SFTP client and server support. Description The processopen function in sftp-server.c in OpenSSH did not properly prevent write operations in readonly mode. Impact A remote attacker could cause the creation of zero-length...

5.3CVSS6.1AI score0.03359EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/11/19 12:0 a.m.59 views

IcedTea: Multiple vulnerabilities

Background IcedTea’s aim is to provide OpenJDK in a form suitable for easy configuration, compilation and distribution with the primary goal of allowing inclusion in GNU/Linux distributions. Description Multiple vulnerabilities have been discovered in IcedTea. Please review the referenced CVE...

9.6CVSS8.7AI score0.16181EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.59 views

SquirrelMail: Remote Code Execution

Background SquirrelMail is a webmail package written in PHP. It supports IMAP and SMTP and can optionally be installed with SQL support. Description It was discovered that the sendmail.cf file is mishandled in a popen call. Impact A remote attacker, by enticing a user to open an e-mail attachment...

9CVSS2.9AI score0.32156EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2017/06/20 12:0 a.m.59 views

Kodi: Multiple vulnerabilities

Background Kodi formerly XBMC is a free and open-source media player software application. Description Multiple vulnerabilities have been discovered in Kodi. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted...

5.5CVSS7.4AI score0.05434EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/06/07 12:0 a.m.59 views

WebKitGTK+: Multiple vulnerabilities

Background WebKitGTK+ is a full-featured port of the WebKit rendering engine. Description Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE identifiers referenced below for details. Impact A remote attack can use multiple vectors to execute arbitrary code or cause...

9.3CVSS8.9AI score0.14349EPSS
Exploits110
Gentoo Linux
Gentoo Linux
added 2017/03/19 12:0 a.m.59 views

OpenOffice: User-assisted execution of arbitrary code

Background Apache OpenOffice is an open-source office software suite for word processing, spreadsheets, presentations, graphics, databases and more. Description An exploitable out-of-bounds vulnerability exists in OpenOffice Impress when handling MetaActions. Impact A remote attacker could entice...

7.8CVSS3.4AI score0.04484EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/03/19 12:0 a.m.59 views

PuTTY: Buffer overflow

Background PuTTY is a free implementation of Telnet and SSH for Windows and Unix platforms, along with an xterm terminal emulator. Description A heap-corrupting buffer overflow bug in the sshagentchanneldata function of PuTTY was found. Impact A remote attacker, utilizing the SSH agent forwarding...

9.8CVSS9.9AI score0.21816EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/02/14 12:0 a.m.59 views

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL. Please review the CVE identifiers referenced...

7.5CVSS7.8AI score0.57595EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2017/02/09 12:0 a.m.59 views

Firejail: Privilege escalation

Background A SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. Description The unaffected packages listed in GLSA 201612-48 had an incomplete fix as reported by Sebastian Krahmer of SuSE...

8.8CVSS8.6AI score0.00742EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/29 12:0 a.m.59 views

Perl: Multiple vulnerabilities

Background Perl is a highly capable, feature-rich programming language. Description Multiple vulnerabilities have been discovered in Perl. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the...

7.8CVSS9AI score0.09007EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/23 12:0 a.m.59 views

DCRaw: Buffer overflow

Background Command-line decoder for raw digital photos. Description An integer overflow was discovered in the ljpegstart function in DCRaw. Impact Remote attackers, by enticing a user to open a specially crafted image, could cause a Denial of Service condition. Workaround There is no known...

4.3CVSS6.9AI score0.05434EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/16 12:0 a.m.59 views

libxml2: Multiple vulnerabilities

Background libxml2 is the XML eXtended Markup Language C parser and toolkit initially developed for the Gnome project. Description Multiple vulnerabilities have been discovered in libxml2. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user...

10CVSS9.2AI score0.08628EPSS
Exploits9
Gentoo Linux
Gentoo Linux
added 2016/12/08 12:0 a.m.59 views

OpenJPEG: Multiple vulnerabilities

Background OpenJPEG is an open-source JPEG 2000 library. Description Multiple vulnerabilities have been discovered in OpenJPEG. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted JPEG file, possibly resulting in...

9.8CVSS7.8AI score0.04191EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/11/18 12:0 a.m.59 views

QEMU: Multiple vulnerabilities

Background QEMU is a generic and open source machine emulator and virtualizer. Description Multiple vulnerabilities have been discovered in QEMU. Please review the CVE identifiers referenced below for details. Impact A privileged user /process within a guest QEMU environment can cause a Denial of...

10CVSS6.7AI score0.06063EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/10/06 12:0 a.m.59 views

Apache: Multiple vulnerabilities

Background Apache HTTP Server is one of the most popular web servers on the Internet. Description Multiple vulnerabilities have been discovered in Apache HTTP Server. Please review the CVE identifiers referenced below for details. Impact Remote attackers could bypass intended access restrictions,...

7.5CVSS7.4AI score0.73327EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/07/09 12:0 a.m.59 views

libpcre: Multiple Vulnerabilities

Background libpcre is a library providing functions for Perl-compatible regular expressions. Description Multiple vulnerabilities have been discovered in libpcre. Please review the CVE identifiers referenced below for details. Impact An attacker can possibly execute arbitrary code or create a...

9.8CVSS9.3AI score0.07791EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2016/04/05 12:0 a.m.59 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly cause a Denial of Service condition or obtain sensitive information. Workaround There...

9.8CVSS7.9AI score0.81762EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2016/03/20 12:0 a.m.59 views

OpenSSL: Multiple vulnerabilities

Background OpenSSL is an Open Source toolkit implementing the Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 as well as a general purpose cryptography library. Description Multiple vulnerabilities have been discovered in OpenSSL, the worst being a cross-protocol attack called...

10CVSS8.6AI score0.82112EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2015/07/07 12:0 a.m.59 views

SQLite: Multiple vulnerabilities

Background SQLite is a C library that implements an SQL database engine. Description Multiple vulnerabilities have been discovered in SQLite. Please review the CVE identifiers referenced below for details. Impact A context-dependent attacker could possibly cause a Denial of Service condition...

7.5CVSS8.8AI score0.05531EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/12/14 12:0 a.m.59 views

Ruby on Rails: Multiple vulnerabilities

Background Ruby on Rails is a web-application and persistence framework. Description Multiple vulnerabilities have been discovered in Ruby on Rails. Please review the CVE identifiers referenced below for details. Impact A remote attacker could execute arbitrary code or cause a Denial of Service...

10CVSS9AI score0.99449EPSS
Exploits29
Gentoo Linux
Gentoo Linux
added 2014/12/11 12:0 a.m.59 views

Multiple packages, Multiple vulnerabilities fixed in 2012

Background For more information on the packages listed in this GLSA, please see their homepage referenced in the ebuild. Description Vulnerabilities have been discovered in the packages listed below. Please review the CVE identifiers in the Reference section for details. EGroupware VTE Layer Four...

7.5CVSS7.6AI score0.11151EPSS
Exploits11
Gentoo Linux
Gentoo Linux
added 2013/12/03 12:0 a.m.59 views

GNU C Library: Multiple vulnerabilities

Background The GNU C library is the standard C library used by Gentoo Linux systems. Description Multiple vulnerabilities have been discovered in GNU C Library. Please review the CVE identifiers referenced below for details. Impact A local attacker could trigger vulnerabilities in dynamic library...

6.9CVSS8.9AI score0.14323EPSS
Exploits29
Gentoo Linux
Gentoo Linux
added 2013/11/19 12:0 a.m.59 views

GraphicsMagick: Multiple vulnerabilities

Background GraphicsMagick is the Swiss army knife of image processing. Description Multiple vulnerabilities have been discovered in GraphicsMagick. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially-crafted image file,...

9.3CVSS8.4AI score0.07153EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2012/01/04 12:0 a.m.59 views

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers and phpMyAdmin Security Advisories referenced below for details. Impact Remote attackers might be able to insert and...

10CVSS6.6AI score0.14714EPSS
Exploits34
Gentoo Linux
Gentoo Linux
added 2011/10/25 12:0 a.m.59 views

PostgreSQL: Multiple vulnerabilities

Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact A remote authenticated attacker could send a specially crafted SQL...

8.5CVSS8.5AI score0.13361EPSS
Exploits14
Gentoo Linux
Gentoo Linux
added 2009/03/10 12:0 a.m.59 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the popular SWF file format, which is commonly used to provide interactive websites, digital experiences and mobile content. Description Multiple vulnerabilities have been discovered in Adobe Flash Player: The access scope of SystemsetClipboard...

10CVSS8.9AI score0.79426EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2007/10/20 12:0 a.m.59 views

TikiWiki: Arbitrary command execution

Background TikiWiki is an open source content management system written in PHP. Description ShAnKaR reported that input passed to the "f" array parameter in tiki-graphformula.php is not properly verified before being used to execute PHP functions. Impact An attacker could execute arbitrary code...

7.5CVSS7.2AI score0.76661EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2007/08/22 12:0 a.m.59 views

Opera: Multiple vulnerabilities

Background Opera is a multi-platform web browser. Description An error known as "a virtual function call on an invalid pointer" has been discovered in the JavaScript engine CVE-2007-4367. Furthermore, iDefense Labs reported that an already-freed pointer may be still used under unspecified...

9.3CVSS7.3AI score0.08248EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2005/07/10 12:0 a.m.59 views

phpGroupWare, eGroupWare: PHP script injection vulnerability

Background phpGroupWare and eGroupWare are web based collaboration software suites. Description The XML-RPC implementations of phpGroupWare and eGroupWare fail to sanitize input sent to the XML-RPC server using the "POST" method. Impact A remote attacker could exploit the XML-RPC vulnerability to...

7.5CVSS7.3AI score0.79071EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2004/11/07 12:0 a.m.59 views

zgv: Multiple buffer overflows

Background zgv is a console image viewer based on svgalib. Description Multiple arithmetic overflows have been detected in the image processing code of zgv. Impact An attacker could entice a user to open a specially-crafted image file, potentially resulting in execution of arbitrary code with the...

10CVSS3.6AI score0.09383EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/08/27 12:0 a.m.59 views

zlib: Denial of service vulnerability

Background zlib is a general-purpose data-compression library. Description zlib contains a bug in the handling of errors in the "inflate" and "inflateBack" functions. Impact An attacker could exploit this vulnerability to launch a Denial of Service attack on any application using the zlib library...

2.1CVSS6.2AI score0.00476EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2023/12/22 12:0 a.m.58 views

QtWebEngine: Multiple Vulnerabilities

Background QtWebEngine is a library for rendering dynamic web content in Qt5 and Qt6 C++ and QML applications. Description Multiple vulnerabilities have been discovered in QtWebEngine. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

8.8CVSS8AI score0.37987EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2023/01/11 12:0 a.m.58 views

Apache Commons Text: Arbitrary Code Execution

Background Apache Commons Text is a library focused on algorithms working on strings. Description Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "$prefix:name", where "prefix" is used to...

9.8CVSS3.5AI score0.99931EPSS
Exploits41
Gentoo Linux
Gentoo Linux
added 2022/11/19 12:0 a.m.58 views

PHP: Multiple Vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact Please review th...

9.8CVSS8.8AI score0.49336EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2021/07/14 12:0 a.m.58 views

Apache Thrift: Multiple vulnerabilities

Background Apache Thrift is a software framework that combines a software stack with a code generation engine to build services that work efficiently and seamlessly between many languages. Description Multiple vulnerabilities have been discovered in Apache Thrift. Please review the CVE identifier...

7.8CVSS3.3AI score0.09082EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.58 views

PostgreSQL: Multiple vulnerabilities

Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact An authenticated remote attacker, by executing malicious crafted...

4.3CVSS2.6AI score0.01466EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2021/04/30 12:0 a.m.58 views

Python: Multiple vulnerabilities

Background Python is an interpreted, interactive, object-oriented programming language. Description Multiple vulnerabilities have been discovered in Python. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround...

5.9CVSS2.6AI score0.35963EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2021/01/22 12:0 a.m.58 views

Mozilla Thunderbird: Remote code execution

Background Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description A use-after-free bug was discovered in Mozilla Thunderbird handling of SCTP. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process or cause a Deni...

8.8CVSS3.4AI score0.01304EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/11/16 12:0 a.m.58 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

9.6CVSS2AI score0.02826EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/11/11 12:0 a.m.58 views

Salt: Multiple vulnerabilities

Background Salt is a remote execution and configuration manager. Description Multiple vulnerabilities have been discovered in Salt. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

9.8CVSS3.9AI score0.99585EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2020/08/08 12:0 a.m.58 views

iproute2: Denial of service

Background iproute2 is a set of tools for managing Linux network routing and advanced features. Description iproute2 was found to contain a use-after-free in getnetnsidfromname in ip/ipnetns.c. Impact A remote attacker, able to feed iproute2 crafted data, may be able to cause a Denial of Service...

4.4CVSS3.3AI score0.00403EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.58 views

Twisted: Access restriction bypasses

Background Twisted is an asynchronous networking framework written in Python. Description Multiple vulnerabilities have been discovered in Twisted. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is ...

9.8CVSS2.7AI score0.04083EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2017/06/20 12:0 a.m.58 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Description Multiple vulnerabilities have been discovered in the Chromium web browser. Please review the CVE identifiers referenced below for details...

8.8CVSS8.9AI score0.31212EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/23 12:0 a.m.58 views

libupnp: Multiple vulnerabilities

Background libupnp is a portable, open source, UPnP development kit. Description Multiple vulnerabilities have been discovered in libupnp. Please review the CVE identifiers referenced below for details. Impact A remote attack could arbitrarily write files to a users file system, cause a Denial of...

9.8CVSS2.6AI score0.26818EPSS
Exploits4
Total number of security vulnerabilities3816