Opensuse

Leap

1897 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-15304

  • EPSS 0.12%
  • Veröffentlicht 26.06.2020 01:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:17

An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by a NULL pointer dereference.

5.5

CVE-2020-15305

  • EPSS 0.11%
  • Veröffentlicht 26.06.2020 01:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:17

An issue was discovered in OpenEXR before 2.5.2. Invalid input could cause a use-after-free in DeepScanLineInputFile::DeepScanLineInputFile() in IlmImf/ImfDeepScanLineInputFile.cpp.

5.5

CVE-2020-15306

  • EPSS 0.13%
  • Veröffentlicht 26.06.2020 01:15:10
  • Zuletzt bearbeitet 21.11.2024 05:05:17

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize() in IlmImf/ImfMisc.cpp.

4.9

CVE-2020-15025

  • EPSS 1.89%
  • Veröffentlicht 24.06.2020 19:15:10
  • Zuletzt bearbeitet 21.11.2024 05:04:38

ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC alg...

4.3

CVE-2020-12862

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:26

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.

4.3

CVE-2020-12863

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:26

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-083.

4.3

CVE-2020-12864

Exploit
  • EPSS 0.19%
  • Veröffentlicht 24.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:26

An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-081.

8

CVE-2020-12865

Exploit
  • EPSS 0.3%
  • Veröffentlicht 24.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:26

A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.

5.7

CVE-2020-12866

Exploit
  • EPSS 0.2%
  • Veröffentlicht 24.06.2020 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:00:26

A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079.

8.8

CVE-2020-12861

Exploit
  • EPSS 0.53%
  • Veröffentlicht 24.06.2020 13:15:10
  • Zuletzt bearbeitet 21.11.2024 05:00:26

A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.