Opensuse

Leap

1897 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-12976

Exploit
  • EPSS 0.12%
  • Veröffentlicht 26.06.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:23:56

ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.

7.8

CVE-2019-12979

  • EPSS 0.29%
  • Veröffentlicht 26.06.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:23:56

ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c.

9

CVE-2019-10164

  • EPSS 5.24%
  • Veröffentlicht 26.06.2019 16:15:09
  • Zuletzt bearbeitet 21.11.2024 04:18:33

PostgreSQL versions 10.x before 10.9 and versions 11.x before 11.4 are vulnerable to a stack-based buffer overflow. Any authenticated user can overflow a stack-based buffer by changing the user's own password to a purpose-crafted value. This often su...

5.5

CVE-2019-12972

Exploit
  • EPSS 0.21%
  • Veröffentlicht 26.06.2019 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:23:55

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_object_p in elfcode.h mishandles an e_shstrndx section o...

5.3

CVE-2019-9836

  • EPSS 0.27%
  • Veröffentlicht 25.06.2019 21:15:09
  • Zuletzt bearbeitet 21.11.2024 04:52:24

Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation.

7

CVE-2019-12817

  • EPSS 0.07%
  • Veröffentlicht 25.06.2019 12:15:11
  • Zuletzt bearbeitet 21.11.2024 04:23:38

arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain conditions via an mmap above 512 TB. Only a subset of pow...

7.8

CVE-2018-20843

Exploit
  • EPSS 5.82%
  • Veröffentlicht 24.06.2019 17:15:09
  • Zuletzt bearbeitet 30.05.2025 20:15:20

In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).

5.9

CVE-2019-12904

  • EPSS 0.19%
  • Veröffentlicht 20.06.2019 00:15:10
  • Zuletzt bearbeitet 21.11.2024 04:23:48

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation ...

9.8

CVE-2019-12900

  • EPSS 1.13%
  • Veröffentlicht 19.06.2019 23:15:09
  • Zuletzt bearbeitet 09.06.2025 16:15:29

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

5.3

CVE-2019-11038

Exploit
  • EPSS 8.29%
  • Veröffentlicht 19.06.2019 00:15:12
  • Zuletzt bearbeitet 21.11.2024 04:20:25

When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause t...