Opensuse

Leap

1897 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2019-2627

  • EPSS 0.17%
  • Published 23.04.2019 19:32:52
  • Last modified 21.11.2024 04:41:14

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high p...

4.9

CVE-2019-2628

  • EPSS 0.14%
  • Published 23.04.2019 19:32:52
  • Last modified 21.11.2024 04:41:14

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access v...

4.4

CVE-2019-2614

  • EPSS 0.16%
  • Published 23.04.2019 19:32:51
  • Last modified 21.11.2024 04:41:13

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Difficult to exploit vulnerability allows high privileg...

7.5

CVE-2019-2602

  • EPSS 0.27%
  • Published 23.04.2019 19:32:50
  • Last modified 21.11.2024 04:41:11

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unau...

6.5

CVE-2019-11474

  • EPSS 3.09%
  • Published 23.04.2019 14:29:01
  • Last modified 21.11.2024 04:21:09

coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.

5.5

CVE-2019-11459

  • EPSS 0.73%
  • Published 22.04.2019 22:29:00
  • Last modified 21.11.2024 04:21:07

The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIF...

9.8

CVE-2019-11235

  • EPSS 9.92%
  • Published 22.04.2019 11:29:03
  • Last modified 21.11.2024 04:20:47

FreeRADIUS before 3.0.19 mishandles the "each participant verifies that the received scalar is within a range, and that the received group element is a valid point on the curve being used" protection mechanism, aka a "Dragonblood" issue, a similar is...

6.1

CVE-2019-11358

Exploit
  • EPSS 2.4%
  • Published 20.04.2019 00:29:00
  • Last modified 21.11.2024 04:20:56

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the n...

7.8

CVE-2018-16877

  • EPSS 0.06%
  • Published 18.04.2019 18:29:00
  • Last modified 21.11.2024 03:53:30

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation.

5.5

CVE-2018-16878

  • EPSS 0.03%
  • Published 18.04.2019 18:29:00
  • Last modified 21.11.2024 03:53:30

A flaw was found in pacemaker up to and including version 2.0.1. An insufficient verification inflicted preference of uncontrolled processes can lead to DoS