Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw was found in the way space was allocated in the Linux kernel's Global File System 2 GFS2 implementation. If the file system was almost full, and a local, unprivileged user made an fallocate request, it could result ...

Insecure Resource Limit Verification

samba does not properly verify resource limits. It was found that the mount.cifs tool did not handle certain errors correctly when updating the mtab file. If mount.cifs had the setuid bit set, a local attacker could corrupt the mtab file by setting a small file size limit before running mount.cif...

Arbitrary Code Execution

qemu-kvm is vulnerable to arbitrary code execution. The vulnerability exists as it was found that the PIIX4 Power Management emulation layer in qemu-kvm did not properly check for hot plug eligibility during device removals. A privileged guest user could use this flaw to crash the guest or,...

Same-Origin Policy Bypass

thunderbird/firefox is vulnerable to Same-Origin Policy bypass. It was found that Thunderbird could treat two separate cookies for web content as interchangeable if both were for the same domain name but one of those domain names had a trailing "." character. This violates the same-origin policy...

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a heap-based buffer overflow flaw was found in the way OpenOffice.org parsed certain TARGA Truevision TGA files. An attacker could use this flaw to create a specially-crafted TARGA file. If a document containing...

Arbitrary Code Execution

thunderbird is vulnerable to arbitrary code execution. The vulnerability exists through as a HTML mail message containing malicious content could possibly lead to arbitrary code execution with the privileges of the user running Thunderbird...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a missing error checking in the way page tables were handled in the Xen hypervisor implementation could allow a privileged guest user to cause the host, and the guests, to lock up...

Privilege Escalation

glibc is vulnerable to privilege escalation. It was discovered that the glibc addmntent function did not sanitize its input properly. A local attacker could possibly use this flaw to inject malformed lines into /etc/mtab via certain setuid mount helpers, if the attacker were allowed to mount to a...

Denial Of Service (DoS)

WebKitGTK+ is vulnerable to denial of service DoS. Due use-after-free flaws caused by vectors involving selections, malicious web content leads an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application...

Arbitrary Code Execution

python is vulnerable to arbitrary code execution. It was found that many applications embedding the Python interpreter did not specify a valid full path to the script or application when calling the PySysSetArgv API function, which could result in the addition of the current working directory to...

Arbitrary Code Execution

firefox is vulnerable to arbitrary code execution. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. An integer overflow flaw was found in the extent range checking code in the Linux kernel's ext4 file system implementation. A local, unprivileged user with write access to an ext4-mounted file system could trigger this flaw by writing to a file at a very...

Denial Of Service (DoS)

The kernel is vulnerable to Denial Of Service DoS. The attack is possible because a NULL pointer dereference flaw in ftraceregexlseek in the Linux kernel's ftrace implementation could allow a local, unprivileged user to cause a denial of service. Note: The debugfs file system must be mounted...

Access Restriction Bypass

PostgreSQL is vulnerable to Access Restriction Bypass. Due to a flaw found in the way PostgreSQL enforced permission checks on scripts written in PL/Perl. If the PL/Perl procedural language was registered on a particular database, an authenticated database user running a specially-crafted PL/Perl...

Arbitrary Code Execution

freetype is vulnerable to arbitrary code execution. Two stack overflow flaws were found in the way the FreeType font engineprocessed certain Compact Font Format CFF character strings opcodes. If a user loaded a specially-crafted font file with an application linked against FreeType, it could caus...

Information Disclosure

firefox is vulnerable to information disclosure. The vulnerability exists as an attacker could create a malicious web page that, when viewed by a victim, could steal private data from a different website the victim has loaded with Firefox...

Unauthorized Replacement

SeaMonkey is vulnerable to unauthorized replacement. Due to a law found in the way SeaMonkey creates temporary file names for downloaded files. If a local attacker knows the name of a file SeaMonkey is going to download, they can replace the contents of that file with arbitrary contents...

Information Disclosure

kernel is vulnerable to information disclosure. The vulnerability exists as a flaw was found in the AGPGART driver. The agpgenericallocpage and agpgenericallocpages functions did not zero out the memory pages they allocate, which may later be available to user-space processes. This flaw could...

Arbitrary Code Execution

ghostscript is vulnerable to arbitrary code execution. A buffer overflow flaw and multiple missing boundary checks were found in Ghostscript. An attacker could create a specially-crafted PostScript or PDF file that could cause Ghostscript to crash or, potentially, execute arbitrary code when open...

Denial Of Service (DoS)

libdbs-pg-perl is vulnerable to denial of service. A memory leak flaw was found in the perl-DBD-Pg function performing the de-quoting of BYTEA type values acquired from a database. An attacker able to cause an application using perl-DBD-Pg to perform a large number of SQL queries returning BYTEA...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A deficiency was found in the libATA implementation. This could, potentially, lead to a denial of service. By default, the /dev/sg devices are accessible only to the root user...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as the sendmsg function in the Linux kernel did not block during UNIX socket garbage collection. This could, potentially, lead to a local denial of service...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. The ext2 and ext3 filesystem code failed to properly handle corrupted data structures, leading to a possible local denial of service issue when read or write operations were performed...

Information Disclosure

The kdebase is vulnerable to information disclosure. A problem with the interaction between the Flash Player and the Konqueror web browser was found. The problem could lead to key presses leaking to the Flash Player applet instead of the browser...

Remote Code Execution (RCE)

Mozilla Thunderbird is vulnerable to Remote Code Execution RCE. A malicious web page could cause the execution of Javascript code in such a way that could cause Thunderbird to crash or execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird...

Cross-Site Scripting (XSS)

doxygen is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbitrary Javascript in a user's browser via the query parameter in templates/html/searchopensearch.php...

Prototype Pollution

yargs-parser is vulnerable to prototype pollution. The attack exists as it does not properly sanitize the key value provided by users, allowing the malicious properties of Object.prototype to be parsed or modified using a proto payload...

Remote Code Execution

pyyaml is vulnerable to arbitrary code execution. The vulnerability exists as .yaml files are parsed by FullLoader uses the unsafe yaml.load by default...

Remote Code Execution (RCE)

jsreport is vulnerable to remote code execution RCE. Of a variety of packages it consists, the Script-manager utilized for running user's scripts in a sandbox has an unintended require vulnerability and Puppeteer utilized for turning user's HTML into pdf files has SSRF Server Side Request Forgery...

Authorization Bypass

node is vulnerable to authorization bypass. Trailing OWS from header values are not stripped, potentially allowing a remote attacker to bypass access controls...

Certificate Spoofing

github.com/golang/go is vulnerable to certificate spoofing. A Windows vulnerability allows attackers to spoof valid certificate chains when the system root store is in use...

Denial Of Service (DoS)

pillow is vulnerable to denial of service. An FLI buffer overflow in the function in ImagingFliDecode in libImaging/FliDecode.c results in an application crash. The buffer overflow can also potentially lead to execution of arbitrary code on the system...

Insecure Random Generator

github.com/miekg/dns uses an insecure random generation for transaction IDs. The default Id function uses an insecure math/rand function, resulting in predictable output and allowing an attacker to exploit the vulnerability to forge responses without being on path...

Arbitrary Code Execution

libssh.so is vulnerable to arbitrary code execution. When SCP client connects to a server, the function sshscpnew executed unsanitized scp-location parameter provided by the user, allowing a malicious user to inject arbitrary command through it...

Denial Of Service (DoS)

Mozilla firefox is vulnerable to denial of service DoS. The vulnerability exists through a use-after-free error when performing device orientation checks...

Remote Code Execution

jackson-databind is vulnerable to remote code execution. The application does not block the commons-configuration and commons-configuration2 classes during deserialization, which would allow a remote attacker to leverage the vulnerability to execute arbitrary code...

Remote Code Execution

Microsoft.ChakraCore is vulnerable to remote code execution. This is due to the way the ChakraCore scripting engine handles objects in memory which could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. This CVE ID is different from...

Arbitrary File Overwrite

github.com/containers/libpod is vulnerable to arbitrary file overwrite. The vulnerability exists as it does not properly perform symlink processing and wild-card characters parsing, allowing for overwriting of existing files when an undesired glob operation occurs...

Denial Of Service (DoS)

OpenJDK is vulnerable to denial of service DoS. The vulnerability exists it is possible to cause excessive memory allocation in CMap when reading TrueType font...

HTTP Response Splitting

webrick is vulnerable to HTTP response splitting. Lack of sanitization in the HTTP headers allow an attacker to inject CRLF characters and cause users to render malicious content. The exploit is possible when the application parses untrusted user input into an HTTP header in the response...

HTTP Request Smuggling

github.com/golang/go is vulnerable to HTTP request smuggling. The vulnerability exists as invalid HTTP/1.1 headers were accepted and normalized with a space before the colon, allowing a reverse proxy to interpret the headers differently...

Use-After-Free

firefox is vulnerable to use-after-free. The vulnerability exists due to the manipulating video elements which allows an attacker to do a potentially exploitable crash in the application...

Information Disclosure

PHP is vulnerable to Information disclosure. When an attacker supplies malicious data, it causes the funciton gdImageCreateFromXbm to use the value of uninitialized variable...

Denial Of Service (DoS)

mysql is vulnerable to denial of service. A difficult to exploit vulnerability allows a high privileged attacker to crash the server...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists through a NULL pointer dereference in lookupslow function...

Arbitrary Code Execution

poppler is vulnerable to arbitrary code execution. A heap-based buffer underwrite in the function ImageStream::getLine in Stream.cc allows an attacker to crash the application or potentially execute arbitrary code on the system...

Denial Of Service (DoS)

Exiv2 is vulnerable to denial of service DoS. The Exiv2::DataValue::copy in value.cpp causes a null pointer dereference when a malicious input is provided, causing an application crash...

Buffer Overflow

libpng is vulnerable to buffer overflow. The attack exists because of a flaw in PNM decoding which causes a stack overflow in the function gettoken in pnm2png.c in pnm2png...

XML Entity Expansion (XEE)

c3p0 is vulnerable to XML entity expansion XEE. Missing protections against recursive entity expansion when loading configuration allows remote attackers to exploit the billion laughs attack by loading malicious XML configurations...

OS Command Injection

vim is vulnerable to OS command injection. The :source! command in a modeline allows remote attackers to execute arbitrary OS commands...