Opensuse

Leap

1897 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2019-1353

  • EPSS 0.18%
  • Published 24.01.2020 22:15:19
  • Last modified 21.11.2024 04:36:32

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. When running Git in the Windows Subsystem for Linux (also known as "WSL") while accessing a working directory on a...

7.5

CVE-2019-1351

  • EPSS 20.29%
  • Published 24.01.2020 21:15:12
  • Last modified 21.11.2024 04:36:32

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

7.8

CVE-2019-3697

Exploit
  • EPSS 0.13%
  • Published 24.01.2020 12:15:11
  • Last modified 21.11.2024 04:42:21

UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap 15.1 gnump3d version 3.0-lp151.2.1 and prior versio...

7.8

CVE-2019-3692

Exploit
  • EPSS 0.17%
  • Published 24.01.2020 09:15:13
  • Last modified 21.11.2024 04:42:20

The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and pr...

7.8

CVE-2019-18898

Exploit
  • EPSS 0.16%
  • Published 23.01.2020 14:15:12
  • Last modified 21.11.2024 04:33:48

UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server ...

7.5

CVE-2019-20388

  • EPSS 0.56%
  • Published 21.01.2020 23:15:13
  • Last modified 21.11.2024 04:38:21

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

9.3

CVE-2020-7040

  • EPSS 5.19%
  • Published 21.01.2020 21:15:16
  • Last modified 21.11.2024 05:36:32

storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. (Local users can also create a plain file named /tmp/storeBackup.lock to block use of sto...

5.5

CVE-2020-5202

Exploit
  • EPSS 0.07%
  • Published 21.01.2020 18:15:13
  • Last modified 21.11.2024 05:33:40

apt-cacher-ng through 3.3 allows local users to obtain sensitive information by hijacking the hardcoded TCP port. The /usr/lib/apt-cacher-ng/acngtool program attempts to connect to apt-cacher-ng via TCP on localhost port 3142, even if the explicit So...

5.5

CVE-2019-14902

  • EPSS 2.71%
  • Published 21.01.2020 18:15:12
  • Last modified 21.11.2024 04:27:39

There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a subtree would not automatically be taken away on a...

7

CVE-2019-18932

  • EPSS 0.07%
  • Published 21.01.2020 18:15:12
  • Last modified 21.11.2024 04:33:51

log.c in Squid Analysis Report Generator (sarg) through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner...