Opensuse

Leap

1897 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-12976

Exploit
  • EPSS 0.12%
  • Published 26.06.2019 18:15:10
  • Last modified 21.11.2024 04:23:56

ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.

7.8

CVE-2019-12979

  • EPSS 0.29%
  • Published 26.06.2019 18:15:10
  • Last modified 21.11.2024 04:23:56

ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c.

9

CVE-2019-10164

  • EPSS 5.24%
  • Published 26.06.2019 16:15:09
  • Last modified 21.11.2024 04:18:33

PostgreSQL versions 10.x before 10.9 and versions 11.x before 11.4 are vulnerable to a stack-based buffer overflow. Any authenticated user can overflow a stack-based buffer by changing the user's own password to a purpose-crafted value. This often su...

5.5

CVE-2019-12972

Exploit
  • EPSS 0.21%
  • Published 26.06.2019 14:15:10
  • Last modified 21.11.2024 04:23:55

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_object_p in elfcode.h mishandles an e_shstrndx section o...

5.3

CVE-2019-9836

  • EPSS 0.27%
  • Published 25.06.2019 21:15:09
  • Last modified 21.11.2024 04:52:24

Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation.

7

CVE-2019-12817

  • EPSS 0.07%
  • Published 25.06.2019 12:15:11
  • Last modified 21.11.2024 04:23:38

arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain conditions via an mmap above 512 TB. Only a subset of pow...

7.8

CVE-2018-20843

Exploit
  • EPSS 5.82%
  • Published 24.06.2019 17:15:09
  • Last modified 30.05.2025 20:15:20

In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).

5.9

CVE-2019-12904

  • EPSS 0.19%
  • Published 20.06.2019 00:15:10
  • Last modified 21.11.2024 04:23:48

In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation ...

9.8

CVE-2019-12900

  • EPSS 1.13%
  • Published 19.06.2019 23:15:09
  • Last modified 09.06.2025 16:15:29

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

5.3

CVE-2019-11038

Exploit
  • EPSS 8.29%
  • Published 19.06.2019 00:15:12
  • Last modified 21.11.2024 04:20:25

When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause t...