Lucene search
K
GentooMost viewed

3816 matches found

Gentoo Linux
Gentoo Linux
•added 2018/12/02 12:0 a.m.•45 views

ConnMan: Multiple vulnerabilities

Background ConnMan provides a daemon for managing Internet connections. Description Multiple vulnerabilities have been discovered in ConnMan. Please review the CVE identifiers referenced below for details. Impact A remote attacker, via a crafted DNS packet, could remotely execute code or cause a...

9.8CVSS4.8AI score0.05519EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2018/04/17 12:0 a.m.•45 views

ncurses: Multiple vulnerabilities

Background Free software emulation of curses in System V. Description Multiple vulnerabilities have been discovered in ncurses. Please review the CVE identifiers referenced below for details. Impact A remote attacker, by enticing the user to process untrusted terminfo or other data, could execute...

9.8CVSS3.2AI score0.04876EPSS
Exploits8
Gentoo Linux
Gentoo Linux
•added 2017/11/11 12:0 a.m.•45 views

Cacti: Multiple vulnerabilities

Background Cacti is a complete frontend to rrdtool. Description Multiple vulnerabilities have been discovered in Cacti. Please review the CVE identifiers referenced below for details. Impact Remote attackers could execute arbitrary code or bypass intended access restrictions. Workaround There is ...

9.8CVSS9.5AI score0.02921EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2017/02/20 12:0 a.m.•45 views

Opus: User-assisted execution of arbitrary code

Background Opus is a totally open, royalty-free, highly versatile audio codec. Description A large NLSF values could cause the stabilization code in silk/NLSFstabilize.c to wrap-around and have the last value in NLSFQ15 to be negative, close to -32768. Under normal circumstances, the code will...

9.3CVSS8.1AI score0.00904EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2017/02/20 12:0 a.m.•45 views

libass: Multiple vulnerabilities

Background libass is a portable subtitle renderer for the ASS/SSA Advanced Substation Alpha/Substation Alpha subtitle format. Description Multiple vulnerabilities have been discovered in libass. Please review the CVE identifiers referenced below for details. Impact A remote attacker could cause a...

7.5CVSS4.8AI score0.05186EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2017/01/29 12:0 a.m.•45 views

a2ps: Arbitrary code execution

Background a2ps is an Any to PostScript filter. Description a2ps’ fixps script does not invoke gs with the -dSAFER option. Impact Remote attackers, by enticing a user to process a specially crafted PostScript file, could delete arbitrary files or execute arbitrary code with the privileges of the...

6.8CVSS7.9AI score0.02344EPSS
Exploits1
Gentoo Linux
Gentoo Linux
•added 2017/01/02 12:0 a.m.•45 views

HDF5: Multiple vulnerabilities

Background HDF5 technology suite includes a data model, library, and file format for storing and managing data. Description Multiple arbitrary code execution vulnerabilities have been discovered in HDF5. Please review the CVE identifiers referenced below for details. Impact An attacker could...

8.6CVSS3.9AI score0.00812EPSS
Exploits8
Gentoo Linux
Gentoo Linux
•added 2016/12/06 12:0 a.m.•45 views

ARJ: Multiple vulnerabilities

Background Open-source implementation of the ARJ archiver. Description Multiple vulnerabilities have been discovered in ARJ. Please review the CVE identifiers referenced below for details. Impact An attacker, using a specially crafted ARJ archive, could possibly execute arbitrary code with the...

7.5CVSS7.7AI score0.05889EPSS
Exploits2
Gentoo Linux
Gentoo Linux
•added 2016/11/22 12:0 a.m.•45 views

RPCBind: Denial of service

Background The RPCBind utility is a server that converts RPC program numbers into universal addresses. Description A use-after-free vulnerability was discovered in RPCBind’s svcdodestroy function when trying to free a corrupted xprt-xpnetid pointer. Impact A remote attacker could possibly cause a...

7.5CVSS7.8AI score0.06408EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2016/11/01 12:0 a.m.•45 views

UnZip: Multiple vulnerabilities

Background Info-ZIP’s UnZip is a tool to list and extract files inside PKZIP compressed files. Description Multiple vulnerabilities were found in UnZip. Please review the referenced CVE’s for additional information. Impact Remote attackers could execute arbitrary code or cause Denial of Service...

7.8CVSS8.9AI score0.11562EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2016/07/13 12:0 a.m.•45 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

9.3CVSS3.8AI score0.36456EPSS
Exploits10
Gentoo Linux
Gentoo Linux
•added 2015/09/24 12:0 a.m.•45 views

libtasn1: Multiple vulnerabilities

Background libtasn1 is an ASN.1 library Description Multiple vulnerabilities have been discovered in libtasn1. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of...

10CVSS7.8AI score0.33094EPSS
Exploits1
Gentoo Linux
Gentoo Linux
•added 2015/06/23 12:0 a.m.•45 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker can cause arbitrary remote code execution, Denial of Service or bypass of...

7.5CVSS10.2AI score0.07855EPSS
Exploits5
Gentoo Linux
Gentoo Linux
•added 2015/04/17 12:0 a.m.•45 views

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

10CVSS7.8AI score0.95184EPSS
Exploits11
Gentoo Linux
Gentoo Linux
•added 2015/03/22 12:0 a.m.•45 views

Chromium: Multiple vulnerabilities

Background Chromium is an open-source web browser project. Description Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers referenced below for details. Impact A remote attacker may be able to cause a Denial of Service condition, bypass security...

7.5CVSS7AI score0.02565EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2015/03/14 12:0 a.m.•45 views

ICU: Multiple Vulnerabilities

Background ICU is a mature, widely used set of C/C++ and Java libraries providing Unicode and Globalization support for software applications. Description Multiple vulnerabilities have been discovered in ICU. Please review the CVE identifiers referenced below for details. Impact A remote attacker...

9.8CVSS9.6AI score0.02422EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2014/06/27 12:0 a.m.•45 views

Konqueror: Multiple vulnerabilities

Background Konqueror is the KDE web browser and file manager. Description Multiple vulnerabilities have been discovered in Konqueror. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted web site using Konqueror,...

8.8CVSS9.3AI score0.12599EPSS
Exploits9
Gentoo Linux
Gentoo Linux
•added 2013/11/22 12:0 a.m.•45 views

QtCore, QtGui: Multiple vulnerabilities

Background The Qt toolkit is a comprehensive C++ application development framework. Description Multiple vulnerabilities have been discovered in QtCore and QtGui. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially craft...

9.3CVSS7.3AI score0.07543EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2013/09/23 12:0 a.m.•45 views

Subversion: Multiple vulnerabilities

Background Subversion is a versioning system designed to be a replacement for CVS. Description Multiple vulnerabilities have been discovered in Subversion. Please review the CVE identifiers referenced below for details. Impact A remote attacker could cause a Denial of Service condition or obtain...

7.8CVSS7AI score0.51442EPSS
Exploits9
Gentoo Linux
Gentoo Linux
•added 2013/01/08 12:0 a.m.•45 views

HAProxy: Arbitrary code execution

Background HAProxy is a TCP/HTTP reverse proxy for high availability environments. Description A boundary error in HAProxy could cause a buffer overflow when header rewriting is enabled and the configuration sets global.tune.bufsize to a value greater than the default 16384 bytes. Impact A remote...

5.1CVSS7.6AI score0.05413EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2012/09/28 12:0 a.m.•45 views

PostgreSQL: Multiple vulnerabilities

Background PostgreSQL is an open source object-relational database management system. Description Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact A remote attacker could spoof SSL connections. Furthermore, a remot...

6.8CVSS7.9AI score0.05734EPSS
Exploits4
Gentoo Linux
Gentoo Linux
•added 2012/09/24 12:0 a.m.•45 views

BIND: Multiple vulnerabilities

Background BIND is the Berkeley Internet Name Domain Server. Description Multiple vulnerabilities have been discovered in BIND: Domain names are not properly revoked due to an error in the cache update policy CVE-2012-1033. BIND accepts records with zero-length RDATA fields CVE-2012-1667. An...

8.5CVSS8.2AI score0.36798EPSS
Exploits3
Gentoo Linux
Gentoo Linux
•added 2012/06/22 12:0 a.m.•45 views

Adobe Reader: Multiple vulnerabilities

Background Adobe Reader is a closed-source PDF reader. Description Multiple vulnerabilities have been found in Adobe Reader, including an integer overflow in TrueType Font handling CVE-2012-0774 and multiple unspecified errors which could cause memory corruption. Impact A remote attacker could...

10CVSS10AI score0.30641EPSS
Exploits4
Gentoo Linux
Gentoo Linux
•added 2012/06/21 12:0 a.m.•45 views

ejabberd: Multiple Denial of Service vulnerabilities

Background ejabberd is the Erlang jabber daemon. Description Multiple vulnerabilities have been discovered in ejabberd. Please review the CVE identifiers referenced below for details. Impact ejabberd allows remote attackers to cause a Denial of Service condition with the result of either crashing...

5CVSS6.8AI score0.03105EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2012/06/21 12:0 a.m.•45 views

nginx: User-assisted execution of arbitrary code

Background nginx is a robust, small, and high performance HTTP and reverse proxy server. Description An error in ngxhttpmp4module.c could cause a buffer overflow. NOTE: nginx must have been emerged with USE="nginxmoduleshttpmp4" in order to be affected by this vulnerability. Impact A remote...

6.8CVSS7.2AI score0.09629EPSS
Exploits1
Gentoo Linux
Gentoo Linux
•added 2010/10/05 12:0 a.m.•45 views

Libpng: Multiple vulnerabilities

Background libpng is a standard library used to process PNG Portable Network Graphics images. It is used by several programs, including web browsers and potentially server processes. Description Multiple vulnerabilities were found in libpng: The pngdecompresschunk function in pngrutil.c does not...

9.8CVSS10AI score0.43382EPSS
Exploits7
Gentoo Linux
Gentoo Linux
•added 2010/06/04 12:0 a.m.•45 views

Bugzilla: Multiple vulnerabilities

Background Bugzilla is a bug tracking system from the Mozilla project. Description Multiple vulnerabilities have been reported in Bugzilla. Please review the CVE identifiers referenced below for details. Impact A remote attacker might be able to disclose local files, bug information, passwords, a...

7.5CVSS6.9AI score0.05642EPSS
Exploits4
Gentoo Linux
Gentoo Linux
•added 2009/02/23 12:0 a.m.•45 views

GNU Emacs, XEmacs: Multiple vulnerabilities

Background GNU Emacs and XEmacs are highly extensible and customizable text editors. edit-utils are miscellaneous extensions to XEmacs. Description Morten Welinder reports about GNU Emacs and edit-utils in XEmacs: By shipping a .flc accompanying a source file .c for example and setting...

7.2CVSS7AI score0.03662EPSS
Exploits1
Gentoo Linux
Gentoo Linux
•added 2008/07/31 12:0 a.m.•45 views

Python: Multiple vulnerabilities

Background Python is an interpreted, interactive, object-oriented programming language. Description Multiple vulnerabilities were discovered in Python: David Remahl of Apple Product Security reported several integer overflows in core modules such as stringobject, unicodeobject, bufferobject,...

7.5CVSS8.5AI score0.04493EPSS
Exploits6
Gentoo Linux
Gentoo Linux
•added 2008/04/06 12:0 a.m.•45 views

MySQL: Multiple vulnerabilities

Background MySQL is a popular multi-threaded, multi-user SQL server. Description Multiple vulnerabilities have been reported in MySQL: Mattias Jonsson reported that a "RENAME TABLE" command against a table with explicit "DATA DIRECTORY" and "INDEX DIRECTORY" options would overwrite the file to...

7.1CVSS10AI score0.1426EPSS
Exploits5
Gentoo Linux
Gentoo Linux
•added 2007/11/14 12:0 a.m.•45 views

Cpio: Buffer overflow

Background GNU cpio copies files into or out of a cpio or tar archive. Description A buffer overflow vulnerability in the safernamesuffix function in GNU cpio has been discovered. Impact A remote attacker could entice a user to open a specially crafted archive file resulting in a stack-based buff...

7.5CVSS8.1AI score0.14902EPSS
Exploits2
Gentoo Linux
Gentoo Linux
•added 2007/08/16 12:0 a.m.•45 views

MySQL: Denial of Service and information leakage

Background MySQL is a popular multi-threaded, multi-user SQL server. Description Dormando reported a vulnerability within the handling of password packets in the connection protocol CVE-2007-3780. Andrei Elkin also found that the "CREATE TABLE LIKE" command didn't require SELECT privileges on the...

5CVSS6.8AI score0.14051EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2007/07/28 12:0 a.m.•45 views

VLC media player: Format string vulnerabilities

Background VLC media player is a multimedia player for various audio and video formats. Description David Thiel from iSEC Partners Inc. discovered format string errors in various plugins when parsing data. The affected plugins include Vorbis, Theora, CDDA and SAP. Impact A remote attacker could...

9.3CVSS7AI score0.17079EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2007/03/09 12:0 a.m.•45 views

SeaMonkey: Multiple vulnerabilities

Background The SeaMonkey project is a community effort to deliver production-quality releases of code derived from the application formerly known as the 'Mozilla Application Suite'. Description Tom Ferris reported a heap-based buffer overflow involving wide SVG stroke widths that affects SeaMonke...

9.3CVSS7.1AI score0.12144EPSS
Exploits10
Gentoo Linux
Gentoo Linux
•added 2007/01/22 12:0 a.m.•45 views

Adobe Acrobat Reader: Multiple vulnerabilities

Background Adobe Acrobat Reader is a PDF reader released by Adobe. Description Adobe Acrobat Reader in stand-alone mode is vulnerable to remote code execution via heap corruption when loading a specially crafted PDF file. The browser plugin released with Adobe Acrobat Reader nppdf.so does not...

9.3CVSS7.4AI score0.55677EPSS
Exploits5
Gentoo Linux
Gentoo Linux
•added 2006/08/29 12:0 a.m.•45 views

Wireshark: Multiple vulnerabilities

Background Wireshark is a feature-rich network protocol analyzer. Description The following vulnerabilities have been discovered in Wireshark. Firstly, if the IPsec ESP parser is used it is susceptible to off-by-one errors, this parser is disabled by default; secondly, the SCSI dissector is...

5.4CVSS8.2AI score0.04132EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2006/08/04 12:0 a.m.•45 views

libTIFF: Multiple vulnerabilities

Background libTIFF provides support for reading and manipulating TIFF images. Description Tavis Ormandy of the Google Security Team discovered several heap and stack buffer overflows and other flaws in libTIFF. The affected parts include the TIFFFetchShortPair, TIFFScanLineSize and...

7.8CVSS6.9AI score0.53046EPSS
Exploits13
Gentoo Linux
Gentoo Linux
•added 2006/06/07 12:0 a.m.•45 views

Dia: Format string vulnerabilities

Background Dia is a GTK+ based diagram creation program. Description KaDaL-X discovered a format string error within the handling of filenames. Hans de Goede also discovered several other format string errors in the processing of dia files. Impact By enticing a user to open a specially crafted...

7.5CVSS7.4AI score0.07628EPSS
Exploits1
Gentoo Linux
Gentoo Linux
•added 2005/07/10 12:0 a.m.•45 views

phpWebSite: Multiple vulnerabilities

Background phpWebSite is a content management system written in PHP. Description phpWebSite fails to sanitize input sent to the XML-RPC server using the "POST" method. Other unspecified vulnerabilities have been discovered by Diabolic Crab of Hackers Center. Impact A remote attacker could exploit...

7.5CVSS7.5AI score0.79071EPSS
Exploits5
Gentoo Linux
Gentoo Linux
•added 2005/07/04 12:0 a.m.•45 views

phpBB: Arbitrary command execution

Background phpBB is an Open Source bulletin board package. Description Ron van Daal discovered that phpBB contains a vulnerability in the highlighting code. Impact Successful exploitation would grant an attacker unrestricted access to the PHP exec or system functions, allowing the execution of...

7.5CVSS6.8AI score0.85366EPSS
Exploits9
Gentoo Linux
Gentoo Linux
•added 2005/05/23 12:0 a.m.•45 views

Net-SNMP: fixproc insecure temporary file creation

Background Net-SNMP is a suite of applications used to implement the Simple Network Management Protocol. Description The fixproc application of Net-SNMP creates temporary files with predictable filenames. Impact A malicious local attacker could exploit a race condition to change the content of th...

10CVSS6.5AI score0.0864EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2004/12/19 12:0 a.m.•45 views

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL databases from a web-browser. Description Nicolas Gregoire exaprobe.com has discovered two vulnerabilities that exist only on a webserver where PHP safemode is off. These vulnerabilities could lead to...

10CVSS1AI score0.11592EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2004/12/14 12:0 a.m.•45 views

nfs-utils: Multiple remote vulnerabilities

Background nfs-utils is a package containing the client and daemon implementations for the NFS protocol. Description Arjan van de Ven has discovered a buffer overflow on 64-bit architectures in 'rquotaserver.c' of nfs-utils CAN-2004-0946. A remotely exploitable flaw on all architectures also exis...

10CVSS7.5AI score0.11299EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2004/11/11 12:0 a.m.•45 views

Samba: Multiple vulnerabilities

Background Samba is a freely available SMB/CIFS implementation which allows seamless interoperability of file and print services to other SMB/CIFS clients. Description Samba fails to do proper bounds checking when handling TRANSACT2QFILEPATHINFO replies. Additionally an input validation flaw exis...

10CVSS7.3AI score0.1373EPSS
Exploits1
Gentoo Linux
Gentoo Linux
•added 2004/07/05 12:0 a.m.•45 views

XFree86, X.org: XDM ignores requestPort setting

Background The X Display Manager XDM is a program which provides a graphical login prompt to users on the console or on remote X terminals. It has largely been superseded by programs such as GDM and KDM. Description XDM will open TCP sockets for its chooser, even if the DisplayManager.requestPort...

7.5CVSS6.5AI score0.02477EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2004/06/04 12:0 a.m.•45 views

Ethereal: Multiple security problems

Background Ethereal is a feature rich network protocol analyzer. Description There are multiple vulnerabilities in versions of Ethereal earlier than 0.10.4, including: A buffer overflow in the MMSE dissector. Under specific conditions a SIP packet could make Ethereal crash. The AIM dissector coul...

10CVSS7.7AI score0.0764EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2004/06/04 12:0 a.m.•45 views

tripwire: Format string vulnerability

Background tripwire is an open source file integrity checker. Description The code that generates email reports contains a format string vulnerability in pipedmailmessage.cpp. Impact With a carefully crafted filename on a local filesystem an attacker could cause execution of arbitrary code with...

7.2CVSS6.7AI score0.00369EPSS
Exploits0
Gentoo Linux
Gentoo Linux
•added 2004/02/11 12:0 a.m.•45 views

Gallery 1.4.1 and below remote exploit vulnerability

Background Gallery is an open source image management system written in PHP. More information is available at http://gallery.sourceforge.net Description Starting in the 1.3.1 release, Gallery includes code to simulate the behaviour of the PHP 'registerglobals' variable in environments where that...

Exploits0
Gentoo Linux
Gentoo Linux
•added 2024/08/11 12:0 a.m.•44 views

runc: Multiple Vulnerabilities

Background runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. Description Multiple vulnerabilities have been discovered in runc. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for...

8.6CVSS7.8AI score0.18087EPSS
Exploits21
Gentoo Linux
Gentoo Linux
•added 2024/02/18 12:0 a.m.•44 views

Exim: Multiple Vulnerabilities

Background Exim is a message transfer agent MTA designed to be a a highly configurable, drop-in replacement for sendmail. Description Multiple vulnerabilities have been discovered in Exim. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

9.8CVSS7.4AI score0.28084EPSS
Exploits6
Total number of security vulnerabilities3816