Opensuse

Leap

1897 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2016-1931

  • EPSS 2.54%
  • Veröffentlicht 31.01.2016 18:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to uninitia...

10

CVE-2016-1930

  • EPSS 2.12%
  • Veröffentlicht 31.01.2016 18:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 and Firefox ESR 38.x before 38.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary cod...

5.3

CVE-2015-8792

  • EPSS 0.31%
  • Veröffentlicht 29.01.2016 19:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The KaxInternalBlock::ReadData function in libMatroska before 1.4.4 allows context-dependent attackers to obtain sensitive information from process heap memory via crafted EBML lacing, which triggers an invalid memory access.

5.9

CVE-2016-2047

  • EPSS 2.69%
  • Veröffentlicht 27.01.2016 20:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly ver...

7.5

CVE-2015-8618

  • EPSS 0.74%
  • Veröffentlicht 27.01.2016 20:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.

8.4

CVE-2016-1572

  • EPSS 0.05%
  • Veröffentlicht 22.01.2016 15:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid.

5.9

CVE-2015-7744

Exploit
  • EPSS 2.66%
  • Veröffentlicht 22.01.2016 15:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

wolfSSL (formerly CyaSSL) before 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote att...

4

CVE-2016-0616

  • EPSS 0.47%
  • Veröffentlicht 21.01.2016 03:02:39
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

3.5

CVE-2016-0610

  • EPSS 0.72%
  • Veröffentlicht 21.01.2016 03:02:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x before 10.1.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

4

CVE-2016-0611

  • EPSS 0.71%
  • Veröffentlicht 21.01.2016 03:02:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.