Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.56 views

WavPack: Multiple vulnerabilities

Background WavPack is a set of hybrid lossless audio compression tools. Description Multiple vulnerabilities have been discovered in WavPack. Please review the CVE identifiers referenced below for details. Impact A remote attacker could send a specially crafted audio file possibly resulting in a...

6.5CVSS3.6AI score0.03044EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2020/07/26 12:0 a.m.56 views

netqmail: Multiple vulnerabilities

Background qmail is a secure, reliable, efficient, simple message transfer agent. Description Multiple vulnerabilities have been discovered in netqmail. Please review the CVE identifiers referenced below for details. Impact In the default configuration, these vulnerabilities are only local. Pleas...

9.8CVSS2.2AI score0.10789EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2020/05/14 12:0 a.m.56 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

9.6CVSS2AI score0.0192EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2018/01/07 12:0 a.m.56 views

Binutils: Multiple vulnerabilities

Background The GNU Binutils are a collection of tools to create, modify and analyse binary files. Many of the files use BFD, the Binary File Descriptor library, to do low-level manipulation. Description Multiple vulnerabilities have been discovered in Binutils. Please review the referenced CVE...

7.8CVSS7.7AI score0.08544EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.56 views

mod_gnutls: Certificate validation error

Background modgnutls is an extension for ​Apache’s httpd. It uses the ​GnuTLS library to provide HTTPS. It supports some protocols and features that modssl does not. Description It was discovered that the authentication hook in modgnutls does not validate client’s certificates even when option...

5CVSS6.5AI score0.0325EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/09/17 12:0 a.m.56 views

Perl: Race condition vulnerability

Background File::Path module provides a convenient way to create directories of arbitrary depth and to delete an entire directory subtree from the filesystem. Description A race condition occurs within concurrent environments. This condition was discovered by The cPanel Security Team in the rmtre...

5.9CVSS6.3AI score0.02359EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/03/28 12:0 a.m.56 views

Xen: Privilege Escalation

Background Xen is a bare-metal hypervisor. Description In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo fails to check wethehr the specified memory region is safe. Impact A local attacker could potentially execute arbitrary code with privileges of Xen QEMU process on...

9.9CVSS8.7AI score0.03559EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/03/19 12:0 a.m.56 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

9.3CVSS8.8AI score0.0836EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2017/01/23 12:0 a.m.56 views

PPP: Buffer overflow

Background PPP is a Unix implementation of the Point-to-Point Protocol Description A buffer overflow was discovered in the rcmksid function in plugins/radius/util.c in PPP when the PID for pppd is greater than 65535. Impact A remote attacker could cause a Denial of Service condition. Workaround...

4.3CVSS9.4AI score0.05444EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/01/17 12:0 a.m.56 views

MiniUPnPc: Buffer overflow

Background UPnP client library and a simple UPnP client. Description An out-of-bounds read was discovered in the getHTTPResponse function in miniwget.c in MiniUPnPc. Impact Remote attackers, through specially crafted headers, could cause a Denial of Service condition. Workaround There is no known...

5CVSS6.2AI score0.03312EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/12/13 12:0 a.m.56 views

systemd: Multiple vulnerabilities

Background A system and service manager. Description Multiple vulnerabilities have been discovered in systemd. Please review the CVE identifiers referenced below for details. Impact An attacker could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service...

7.5CVSS7.7AI score0.05341EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2016/11/22 12:0 a.m.56 views

Poppler: Multiple vulnerabilities

Background Poppler is a PDF rendering library based on the xpdf-3.0 code base. Description Multiple vulnerabilities have been discovered in Poppler. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted PDF using...

9.3CVSS8.3AI score0.04557EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2016/02/17 12:0 a.m.56 views

GNU C Library: Multiple vulnerabilities

Background The GNU C library is the standard C library used by Gentoo Linux systems. Description Multiple vulnerabilities have been discovered in the GNU C Library: The Google Security Team and Red Hat discovered a stack-based buffer overflow in the senddg and sendvc functions due to a buffer...

9.8CVSS10AI score0.89557EPSS
Exploits25
Gentoo Linux
Gentoo Linux
added 2015/07/10 12:0 a.m.56 views

Oracle JRE/JDK: Multiple vulnerabilities

Background The Oracle Java Development Kit JDK and the Oracle Java Runtime Environment JRE provide the Oracle Java platform. Description Multiple vulnerabilities have been discovered in Oracle JRE/JDK. Please review the CVE identifiers referenced below for details. Impact An context-dependent...

10CVSS6.3AI score0.99999EPSS
Exploits12
Gentoo Linux
Gentoo Linux
added 2014/02/06 12:0 a.m.56 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple unspecified vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A...

10CVSS7.6AI score0.99883EPSS
Exploits15
Gentoo Linux
Gentoo Linux
added 2013/11/04 12:0 a.m.56 views

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers referenced below for details. Impact A remote authenticated attacker could exploit these vulnerabilities to execute...

6.5CVSS7.4AI score0.28851EPSS
Exploits18
Gentoo Linux
Gentoo Linux
added 2008/03/07 12:0 a.m.56 views

VLC: Multiple vulnerabilities

Background VLC is a cross-platform media player and streaming server. Description Multiple vulnerabilities were found in VLC: Michal Luczaj and Luigi Auriemma reported that VLC contains boundary errors when handling subtitles in the ParseMicroDvd, ParseSSA, and ParseVplayer functions in the...

10CVSS7.9AI score0.17358EPSS
Exploits17
Gentoo Linux
Gentoo Linux
added 2007/11/18 12:0 a.m.56 views

VMware Workstation and Player: Multiple vulnerabilities

Background VMware Workstation is a virtual machine for developers and system administrators. VMware Player is a freeware virtualization software that can run guests produced by other VMware products. Description Multiple vulnerabilities have been discovered in several VMware products. Neel Mehta...

10CVSS7.7AI score0.20413EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2005/12/11 12:0 a.m.56 views

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the web. Description Stefan Esser from Hardened-PHP reported about multiple vulnerabilties found in phpMyAdmin. The $GLOBALS variable allows modifying the global variable importblacklist to open...

5CVSS6.8AI score0.02351EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2023/10/11 12:0 a.m.55 views

curl: Multiple Vulnerabilities

Background A command line tool and library for transferring data with URLs. Description Multiple vulnerabilities have been discovered in curl. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Note that the risk of...

9.8CVSS10.2AI score0.78483EPSS
Exploits21
Gentoo Linux
Gentoo Linux
added 2023/10/04 12:0 a.m.55 views

libvpx: Multiple Vulnerabilities

Background libvpx is the VP8 codec SDK used to encode and decode video streams, typically within a WebM format media file. Description Multiple vulnerabilities have been discovered in libvpx. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

8.8CVSS6.9AI score0.49013EPSS
Exploits3
Gentoo Linux
Gentoo Linux
added 2022/10/31 12:0 a.m.55 views

FreeRDP: Multiple Vulnerabilities

Background FreeRDP is a free implementation of the remote desktop protocol. Description Multiple vulnerabilities have been discovered in FreeRDP. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...

9.8CVSS8.9AI score0.02674EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2022/09/25 12:0 a.m.55 views

Rizin: Multiple Vulnerabilities

Background Rizin is a reverse engineering framework for binary analysis. Description Multiple vulnerabilities have been discovered in Rizin. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no know...

7.8CVSS2.7AI score0.00365EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2022/09/07 12:0 a.m.55 views

OpenJDK: Multiple Vulnerabilities

Background OpenJDK is an open source implementation of the Java programming language. Description Multiple vulnerabilities have been discovered in OpenJDK. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround...

7.5CVSS2.5AI score0.14839EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.55 views

Mutt, NeoMutt: Denial of service

Background Mutt is a small but very powerful text-based mail client. NeoMutt is a command line mail reader or MUA. It’s a fork of Mutt with added features. Description It was discovered that Mutt, and NeoMutt did not properly handle certain situations where an IMAP sequence set ends with a comma...

9.1CVSS9.4AI score0.02551EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2021/05/26 12:0 a.m.55 views

stunnel: Improper certificate validation

Background The stunnel program is designed to work as an SSL/TLS encryption wrapper between a client and a local or remote server. Description It was discovered that stunnel did not correctly verified the client certificate when options “redirect” and “verifyChain” are used. Impact A remote...

7.5CVSS7.7AI score0.01179EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/11/16 12:0 a.m.55 views

Apache Ant: Insecure temporary file

Background Ant is a Java-based build tool similar to ‘make’ that uses XML configuration files. Description A previous fix for a security vulnerability involving insecure temporary files has been found to be incomplete. Impact A local attacker could perform symlink attacks to overwrite arbitrary...

7.5CVSS7.8AI score0.08235EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/10/17 12:0 a.m.55 views

Chromium, Google Chrome: Multiple vulnerabilities

Background Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. Google Chrome is one fast, simple, and secure browser for all your devices. Description Multiple vulnerabilities have been discovered in Chromium and...

8.8CVSS2AI score0.02553EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.55 views

AWStats: Multiple vulnerabilities

Background AWStats is an advanced log file analyzer and statistics generator. Description Multiple vulnerabilities have been discovered in AWStats. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is ...

9.8CVSS2.7AI score0.04352EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.55 views

NTFS-3G: Remote code execution, possible privilege escalation

Background NTFS-3G is a stable, full-featured, read-write NTFS driver for various operating systems. Description An integer underflow issue exists in NTFS-3G which may cause a heap buffer overflow with crafted input. Impact A remote attacker may be able to execute arbitrary code while a local...

7CVSS4.8AI score0.00531EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.55 views

Haml: Arbitrary code execution

Background Haml is a templating engine for HTML. Description It was discovered that Haml was not correctly filtering out special characters which may be used for attributes. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process or cause a Denial of...

6.1CVSS3.4AI score0.01452EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.55 views

D-Bus: Denial of service

Background D-Bus is a message bus system which processes can use to talk to each other. Description D-Bus does not correctly dispose of old connections meaning that it is possible for D-Bus to hit a connection limit. Impact An attacker could cause a possible Denial of Service condition. Workaroun...

5.5CVSS2.3AI score0.00569EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/06/15 12:0 a.m.55 views

Mozilla Thunderbird: Multiple vulnerabilities

Background Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for...

9.3CVSS2.7AI score0.01537EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2020/06/15 12:0 a.m.55 views

OpenJDK, IcedTea: Multiple vulnerabilities

Background OpenJDK is a free and open-source implementation of the Java Platform, Standard Edition. IcedTea’s aim is to provide OpenJDK in a form suitable for easy configuration, compilation and distribution with the primary goal of allowing inclusion in GNU/Linux distributions. Description...

8.3CVSS7.8AI score0.0623EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/06/13 12:0 a.m.55 views

GNU Mailutils: Privilege escalation

Background The GNU Mailutils are a collection of mail-related utilities, including an IMAP4 server imap4d. Description GNU Mailutils runs maidag by default with setuid root permissions. Impact An attacker can use this to write to arbitrary files as root. Workaround There is no known workaround at...

7.8CVSS2.9AI score0.01135EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2020/04/30 12:0 a.m.55 views

libu2f-host: Multiple vulnerabilities

Background Yubico Universal 2nd Factor U2F Host C Library. Description Multiple vulnerabilities have been discovered in libu2f-host. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to plug-in a malicious USB device, possibly resulting i...

7.5CVSS2.6AI score0.02296EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2018/02/11 12:0 a.m.55 views

VirtualBox: Multiple vulnerabilities

Background VirtualBox is a powerful virtualization product from Oracle. Description Multiple vulnerabilities have been discovered in VirtualBox. Please review the CVE identifiers referenced below for details. Impact An attacker could take control of VirtualBox resulting in the execution of...

8.8CVSS9AI score0.01658EPSS
Exploits6
Gentoo Linux
Gentoo Linux
added 2017/11/11 12:0 a.m.55 views

ImageMagick: Multiple vulnerabilities

Background A collection of tools and libraries for many image formats. Description Multiple vulnerabilities have been discovered in ImageMagick. Please review the referenced CVE identifiers for details. Impact Remote attackers, by enticing a user to process a specially crafted file, could obtain...

9.8CVSS7.8AI score0.04018EPSS
Exploits10
Gentoo Linux
Gentoo Linux
added 2017/09/25 12:0 a.m.55 views

RAR, UnRAR: Multiple vulnerabilities

Background RAR and UnRAR provide command line interfaces for compressing and decompressing RAR files. Description Multiple vulnerabilities have been discovered in RAR and UnRAR. Please review the referenced CVE identifiers for details. Impact A remote attacker, by enticing a user to open a...

10CVSS10.1AI score0.10027EPSS
Exploits7
Gentoo Linux
Gentoo Linux
added 2017/06/27 12:0 a.m.55 views

LibreOffice: Multiple vulnerabilities

Background LibreOffice is a powerful office suite; its clean interface and powerful tools let you unleash your creativity and grow your productivity. Description Multiple vulnerabilities have been discovered in LibreOffice. Please review the CVE identifiers referenced below for details. Impact A...

9.8CVSS9.9AI score0.03864EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2017/05/09 12:0 a.m.55 views

Mozilla Thunderbird: Multiple vulnerabilities

Background Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Impact A remote attacker, by enticing a user to open a...

10CVSS9.5AI score0.17484EPSS
Exploits8
Gentoo Linux
Gentoo Linux
added 2017/04/10 12:0 a.m.55 views

Chromium: Multiple vulnerabilities

Background Chromium is the open-source web browser project behind Google Chrome Description Multiple vulnerabilities have been discovered in the Chromium web browser. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code wit...

9.6CVSS9AI score0.41603EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2017/01/10 12:0 a.m.55 views

Python: Multiple vulnerabilities

Background Python is an interpreted, interactive, object-oriented programming language. Description Multiple vulnerabilities have been discovered in Python. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted ind...

10CVSS8.9AI score0.2548EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2016/12/31 12:0 a.m.55 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly execute arbitrary code with the privileges of the process, could gain privileges on t...

8.8CVSS8.3AI score0.00509EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/05/18 12:0 a.m.55 views

Munin: Multiple vulnerabilities

Background Munin is an open source server monitoring tool. Description Multiple vulnerabilities have been discovered in Munin. Please review the CVE identifiers referenced below for details. Impact A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges of...

9.3CVSS6.8AI score0.02368EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2012/09/24 12:0 a.m.55 views

PHP: Multiple vulnerabilities

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

10CVSS10.4AI score0.99998EPSS
Exploits71
Gentoo Linux
Gentoo Linux
added 2012/06/24 12:0 a.m.55 views

mini_httpd: Arbitrary code execution

Background minihttpd is a small webserver with optional SSL and IPv6 support. Description minihttpd does not properly check for shell escapes when parsing HTTP requests. Impact A remote attacker could send specially crafted HTTP requests, possibly resulting in execution of arbitrary code with the...

5CVSS7.1AI score0.1027EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2011/10/18 12:0 a.m.55 views

Tor: Multiple vulnerabilities

Background Tor is an implementation of second generation Onion Routing, a connection-oriented anonymizing communication service. Description Multiple vulnerabilities have been discovered in Tor. Please review the CVE identifiers referenced below for details. Impact A remote unauthenticated attack...

6.8CVSS4.2AI score0.04444EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2009/12/20 12:0 a.m.55 views

Ruby on Rails: Multiple vulnerabilities

Background Ruby on Rails is a web-application and persistence framework. Description The following vulnerabilities were discovered: sameer reported that lib/actioncontroller/cgiprocess.rb removes the :cookieonly attribute from the default session options CVE-2007-6077, due to an incomplete fix fo...

9.8CVSS10AI score0.0808EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2008/12/14 12:0 a.m.55 views

POV-Ray: User-assisted execution of arbitrary code

Background POV-Ray is a well known open-source ray tracer. Description POV-Ray uses a statically linked copy of libpng to view and output PNG files. The version shipped with POV-Ray is vulnerable to CVE-2008-3964, CVE-2008-1382, CVE-2006-3334, CVE-2006-0481, CVE-2004-0768. A bug in POV-Ray's buil...

7.5CVSS8.7AI score0.05514EPSS
Exploits2
Total number of security vulnerabilities3816