Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2017/01/13 12:0 a.m.58 views

Mozilla SeaMonkey: Multiple vulnerabilities

Background Mozilla SeaMonkey is a free and open-source Internet suite. It is the continuation of the former Mozilla Application Suite, based on the same source code. Description Multiple vulnerabilities have been discovered in Mozilla SeaMonkey. Please review the CVE identifiers referenced below...

9.3CVSS3.4AI score0.87598EPSS
Exploits14
Gentoo Linux
Gentoo Linux
added 2017/01/12 12:0 a.m.58 views

PostgreSQL: Multiple vulnerabilities

Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the...

9CVSS9.1AI score0.06948EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/12/04 12:0 a.m.58 views

GD: Multiple vulnerabilities

Background GD is a graphic library for fast image creation. Description Multiple vulnerabilities have been discovered in GD. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause ...

9.8CVSS3.6AI score0.07495EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/11/17 12:0 a.m.58 views

libuv: Privilege escalation

Background libuv is a multi-platform support library with a focus on asynchronous I/O. Description It was discovered that libuv does not call setgroups before calling setuid/setgid. If this is not called, then even though the uid has been dropped, there may still be groups associated that permit...

10CVSS6.5AI score0.03242EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.58 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Description Multiple vulnerabilities have been discovered in the Chromium web browser. Please review the CVE identifiers referenced below for details...

10CVSS9.4AI score0.19069EPSS
Exploits19
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.58 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

9.3CVSS9.9AI score0.55375EPSS
Exploits28
Gentoo Linux
Gentoo Linux
added 2013/11/10 12:0 a.m.58 views

libxml2: Multiple vulnerabilities

Background libxml2 is the XML C parser and toolkit developed for the Gnome project. Description Multiple vulnerabilities have been discovered in libxml2. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted docume...

7.5CVSS8.8AI score0.04863EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2012/01/05 12:0 a.m.58 views

MySQL: Multiple vulnerabilities

Background MySQL is a popular open-source multi-threaded, multi-user SQL database server. Description Multiple vulnerabilities have been discovered in MySQL. Please review the CVE identifiers referenced below for details. Impact An unauthenticated remote attacker may be able to execute arbitrary...

8.5CVSS9.6AI score0.69552EPSS
Exploits25
Gentoo Linux
Gentoo Linux
added 2009/05/26 12:0 a.m.58 views

NTP: Remote execution of arbitrary code

Background NTP contains the client and daemon implementations for the Network Time Protocol. Description Multiple vulnerabilities have been found in the programs included in the NTP package: Apple Product Security reported a boundary error in the cookedprint function in ntpq/ntpq.c, possibly...

6.8CVSS8.8AI score0.21123EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2006/07/09 12:0 a.m.58 views

PostgreSQL: SQL injection

Background PostgreSQL is an open source object-relational database management system. Description PostgreSQL contains a flaw in the string parsing routines that allows certain backslash-escaped characters to be bypassed with some multibyte character encodings. This vulnerability was discovered by...

7.5CVSS7.1AI score0.02792EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2006/04/23 12:0 a.m.58 views

Mozilla Firefox: Multiple vulnerabilities

Background Mozilla Firefox is the next-generation web browser from the Mozilla project. Description Several vulnerabilities were found in Mozilla Firefox. Versions 1.0.8 and 1.5.0.2 were released to fix them. Impact A remote attacker could craft malicious web pages that would leverage these issue...

10CVSS7.5AI score0.12589EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2022/10/31 12:0 a.m.57 views

FasterXML jackson-databind: Multiple vulnerabilities

Background FasterXML jackson-databind is a general data-binding package for Jackson 2.x which works on streaming API core implementations. Description Multiple vulnerabilities have been discovered in FasterXML jackson-databind. Please review the CVE identifiers referenced below for details. Impac...

7.5CVSS3.1AI score0.02824EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2022/08/14 12:0 a.m.57 views

QEMU: Multiple Vulnerabilities

Background QEMU is a generic and open source machine emulator and virtualizer. Description Multiple vulnerabilities have been discovered in QEMU.Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...

8.5CVSS7.4AI score0.02904EPSS
Exploits11
Gentoo Linux
Gentoo Linux
added 2022/08/10 12:0 a.m.57 views

faac: Denial of service

Background faac contains free MPEG-4 audio codecs by AudioCoding.com. Description An invalid pointer can be dereferenced in the huffcode function of libfaac/huff2.c, leading to a crash. Impact An attacker with the ability to provide crafted input to faac could cause a denial of service. Workaroun...

5.5CVSS3.2AI score0.00996EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2021/07/08 12:0 a.m.57 views

Privoxy: Multiple vulnerabilities

Background Privoxy is a web proxy with advanced filtering capabilities for enhancing privacy. Description Multiple vulnerabilities have been discovered in privoxy. Please review the CVE identifiers referenced below for details. Impact An attacker could cause a possible Denial of Service condition...

7.8CVSS2.9AI score0.02355EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.57 views

Telegram: Security bypass

Background Telegram is a cloud-based mobile and desktop messaging app with a focus on security and speed. Description It was discovered that Telegram failed to invalidate a recently active session. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

5.3CVSS2AI score0.00843EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.57 views

GNOME Autoar: User-assisted execution of arbitrary code

Background GNOME Autoar provides functions and widgets for GNOME applications which want to use archives as a method to transfer directories over the internet. Description It was discovered that GNOME Autoar could extract files outside of the intended directory. Impact A remote attacker could...

5.5CVSS4.9AI score0.00639EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/12/23 12:0 a.m.57 views

cURL: Multiple vulnerabilities

Background A command line tool and library for transferring data with URLs. Description Multiple vulnerabilities have been discovered in cURL. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...

7.5CVSS2.6AI score0.09917EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.57 views

re2c: Buffer overflow

Background re2c is a tool for generating C-based recognizers from regular expressions. Description A heap buffer overflow vulnerability was discovered in re2c. Impact An attacker could possibly cause a Denial of Service condition. Workaround There is no known workaround at this time. Resolution A...

7.8CVSS3.4AI score0.01656EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/03/30 12:0 a.m.57 views

GNU IDN Library 2: Multiple vulnerabilities

Background GNU IDN Library 2 is an implementation of the IDNA2008 + TR46 specifications RFC 5890, RFC 5891, RFC 5892, RFC 5893, TR 46. Description Multiple vulnerabilities have been discovered in GNU IDN Library 2. Please review the CVE identifiers referenced below for details. Impact A remote...

9.8CVSS4AI score0.03708EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/03/19 12:0 a.m.57 views

PECL Imagick: Arbitrary code execution

Background Imagick is a PHP extension to create and modify images using the ImageMagick library. Description An out-of-bounds write vulnerability was discovered in the Imagick PHP extension. Impact A remote attacker, able to upload specially crafted images which will get processed by Imagick, cou...

9.8CVSS4.9AI score0.01972EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2019/04/08 12:0 a.m.57 views

Mailman: Multiple vulnerabilities

Background Mailman is a Python based mailing list server with an extensive web interface. Description Multiple vulnerabilities have been discovered in Mailman. Please review the referenced CVE identifier for details. Impact Please review the referenced CVE identifiers for details. Workaround Ther...

6.5CVSS2.8AI score0.02541EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2018/02/20 12:0 a.m.57 views

LibreOffice: Information disclosure

Background LibreOffice is a powerful office suite; its clean interface and powerful tools let you unleash your creativity and grow your productivity. Description It was discovered that missing restrictions in the implementation of the WEBSERVICE function in LibreOffice could result in the...

9.8CVSS9.1AI score0.23204EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.57 views

cURL: Multiple vulnerabilities

Background cURL is a tool and libcurl is a library for transferring data with URL syntax. Description Multiple vulnerabilities have been discovered in cURL. Please review the CVE identifiers referenced below for details. Impact Remote attackers could cause a Denial of Service condition, obtain...

7.5CVSS7.4AI score0.03958EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/04/10 12:0 a.m.57 views

X.Org: Multiple vulnerabilities

Background X.Org X servers Description Multiple vulnerabilities have been discovered in X.Org server and libraries. Please review the CVE identifiers referenced below for details. Impact A local or remote users can utilize the vulnerabilities to attach to the X.Org session as a user and execute...

9.8CVSS9.3AI score0.04526EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/02/21 12:0 a.m.57 views

tcpdump: Multiple vulnerabilities

Background tcpdump is a tool for network monitoring and data acquisition. Description Multiple vulnerabilities have been discovered in tcpdump. Please review the CVE identifiers referenced below for details. Impact A remote attacker, by sending a specially crafted network package, could possibly...

9.8CVSS10.4AI score0.06196EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/11 12:0 a.m.57 views

PgBouncer: Multiple vulnerabilities

Background PgBouncer is a lightweight connection pooler for PostgreSQL. Description Multiple vulnerabilities have been discovered in PgBouncer. Please review the CVE identifiers referenced below for details. Impact A remote attacker might send a specially crafted package possibly resulting in a...

8.1CVSS8.6AI score0.0413EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/12/08 12:0 a.m.57 views

CrackLib: Buffer overflow

Background CrackLib is a library used to enforce strong passwords by comparing user selected passwords to words in chosen word lists. Description A stack-based buffer overflow was discovered in the FascistGecosUser function of lib/fascist.c. Impact A local attacker could set a specially crafted...

7.8CVSS8.3AI score0.00747EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/07/16 12:0 a.m.57 views

GD: Multiple vulnerabilities

Background GD is a graphic library for fast image creation. Description Multiple vulnerabilities have been discovered in GD. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause ...

9.8CVSS9.4AI score0.36974EPSS
Exploits12
Gentoo Linux
Gentoo Linux
added 2016/03/12 12:0 a.m.57 views

VLC: Multiple vulnerabilities

Background VLC is a cross-platform media player and streaming server. Description Multiple vulnerabilities have been discovered in VLC. Please review the CVE identifiers referenced below for details. Impact Remote attackers could possibly execute arbitrary code or cause Denial of Service...

9.8CVSS8.7AI score0.13337EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2014/12/08 12:0 a.m.57 views

libvirt: Multiple vulnerabilities

Background libvirt is a C toolkit for manipulating virtual machines. Description Multiple vulnerabilities have been discovered in libvirt. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to cause a Denial of Service or cause information leakage...

8.5CVSS8.4AI score0.02751EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2014/03/05 12:0 a.m.57 views

Chromium, V8: Multiple vulnerabilities

Background Chromium is an open-source web browser project. V8 is Google’s open source JavaScript engine. Description Multiple vulnerabilities have been discovered in Chromium and V8. Please review the CVE identifiers and release notes referenced below for details. Impact A context-dependent...

10CVSS10AI score0.0609EPSS
Exploits17
Gentoo Linux
Gentoo Linux
added 2013/10/06 12:0 a.m.57 views

Poppler: Multiple vulnerabilities

Background Poppler is a cross-platform PDF rendering library originally based on Xpdf. Description Multiple vulnerabilities have been discovered in Poppler. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted PDF...

10CVSS8.3AI score0.10228EPSS
Exploits12
Gentoo Linux
Gentoo Linux
added 2008/03/11 12:0 a.m.57 views

Apache: Multiple vulnerabilities

Background The Apache HTTP server is one of the most popular web servers on the Internet. Description Adrian Pastor and Amir Azam ProCheckUp reported that the HTTP Method specifier header is not properly sanitized when the HTTP return code is "413 Request Entity too large" CVE-2007-6203. The...

4.3CVSS6.3AI score0.80749EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2008/01/20 12:0 a.m.57 views

X.Org X server and Xfont library: Multiple vulnerabilities

Background The X Window System is a graphical windowing system based on a client/server model. Description regenrecht reported multiple vulnerabilities in various X server extension via iDefense: The XFree86-Misc extension does not properly sanitize a parameter within a PassMessage request,...

9.3CVSS9.6AI score0.05332EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2007/11/07 12:0 a.m.57 views

Apache: Multiple vulnerabilities

Background The Apache HTTP server is one of the most popular web servers on the Internet. Description Multiple cross-site scripting vulnerabilities have been discovered in modstatus and modautoindex CVE-2006-5752, CVE-2007-4465. An error has been discovered in the recallheaders function in...

6.1CVSS6.7AI score0.27783EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2007/05/17 12:0 a.m.57 views

Apache mod_security: Rule bypass

Background modsecurity is an Apache module designed for enhancing the security of the Apache web server. Description Stefan Esser discovered that modsecurity processes NULL characters as terminators in POST requests using the application/x-www-form-urlencoded encoding type, while other parsers us...

6.8CVSS7AI score0.06616EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2005/04/18 12:0 a.m.57 views

PHP: Multiple vulnerabilities

Background PHP is a general-purpose scripting language widely used to develop web-based applications. It can run inside a web server using the modphp module or the CGI version of PHP, or can run stand-alone in a CLI. Description An integer overflow and an unbound recursion were discovered in the...

7.5CVSS7.1AI score0.04016EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2005/03/24 12:0 a.m.57 views

Sun Java: Web Start argument injection vulnerability

Background Sun provides implementations of Java Development Kits JDK and Java Runtime Environments JRE. These implementations provide the Java Web Start technology that can be used for easy client-side deployment of Java applications. Description Jouko Pynnonen discovered that Java Web Start...

10CVSS7.3AI score0.02927EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/08/23 12:0 a.m.57 views

Mozilla, Firefox, Thunderbird, Galeon, Epiphany: New releases fix vulnerabilities

Background Mozilla is a popular web browser that includes a mail and newsreader. Galeon and Epiphany are both web browsers that use gecko, the Mozilla rendering engine. Mozilla Firefox is the next-generation browser from the Mozilla project that incorporates advanced features that are yet to be...

10CVSS7.8AI score0.82537EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2023/11/24 12:0 a.m.56 views

Zeppelin: Multiple Vulnerabilities

Background Apache Zeppelin is a web-based notebook that enables data-driven, interactive data analytics and collaborative documents with SQL, Scala, Python, R and more. Description Multiple vulnerabilities have been discovered in Zeppelin. Please review the CVE identifiers referenced below for...

10CVSS7.6AI score0.05747EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2023/09/30 12:0 a.m.56 views

GNU Binutils: Multiple Vulnerabilities

Background The GNU Binutils are a collection of tools to create, modify and analyse binary files. Many of the files use BFD, the Binary File Descriptor library, to do low-level manipulation. Description Multiple vulnerabilities have been discovered in GNU Binutils. Please review the CVE identifie...

7.8CVSS9.4AI score0.00895EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2022/10/31 12:0 a.m.56 views

JHead: Multiple Vulnerabilities

Background JHead is an EXIF JPEG header manipulation tool. Description Multiple vulnerabilities have been discovered in JHead. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround a...

7.8CVSS1.9AI score0.01083EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2022/10/31 12:0 a.m.56 views

LibTIFF: Multiple Vulnerabilities

Background LibTIFF provides support for reading and manipulating TIFF Tagged Image File Format images. Description Multiple vulnerabilities have been discovered in LibTIFF. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for...

7.7CVSS2.8AI score0.01851EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2022/10/31 12:0 a.m.56 views

ISC BIND: Multiple Vulnerabilities

Background ISC BIND is the Internet Systems Consortium implementation of the Domain Name System DNS protocol. Description Multiple vulnerabilities have been discovered in ISC BIND. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers...

8.2CVSS7.8AI score0.08001EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2022/08/10 12:0 a.m.56 views

Mozilla Firefox: Multiple Vulnerabilities

Background Mozilla Firefox is a popular open-source web browser from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details...

9.8CVSS8.2AI score0.26709EPSS
Exploits23
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.56 views

BusyBox: Denial of service

Background BusyBox is a set of tools for embedded systems and is a replacement for GNU Coreutils. Description It was discovered that BusyBox mishandled the error bit on the huftbuild result pointer when decompressing GZIP compressed data. Impact A remote attacker could entice a user to open a...

7.5CVSS2.5AI score0.02719EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/12/24 12:0 a.m.56 views

HAProxy: Arbitrary code execution

Background HAProxy is a TCP/HTTP reverse proxy for high availability environments. Description It was discovered that HAProxy incorrectly handled certain HTTP/2 headers. Impact A remote attacker, by sending a specially crafted HTTP/2 request, could possibly execute arbitrary code with the...

8.8CVSS4.2AI score0.60727EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.56 views

FileZilla: Untrusted search path

Background FileZilla is an open source FTP client. Description It was discovered that FileZilla uses an untrusted search path. Impact An attacker could use a malicious binary to escalate privileges. Workaround There is no known workaround at this time. Resolution All FileZilla users should upgrad...

7.8CVSS2.7AI score0.02484EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.56 views

LHa: Buffer overflow

Background LHa is a console-based program for packing and unpacking LHarc archives. Description A buffer overflow in LHa’s compression code was discovered which can be triggered by a crafted input file. Impact A remote attacker could send a specially crafted file possibly resulting in a Denial of...

9.8CVSS9.8AI score0.02985EPSS
Exploits0
Total number of security vulnerabilities3816