Opensuse

Leap

1897 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2020-11793

  • EPSS 0.6%
  • Veröffentlicht 17.04.2020 13:15:12
  • Zuletzt bearbeitet 21.11.2024 04:58:38

A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash).

7.5

CVE-2020-11868

  • EPSS 0.9%
  • Veröffentlicht 17.04.2020 04:15:10
  • Zuletzt bearbeitet 05.05.2025 17:15:57

ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a vali...

9.8

CVE-2019-12519

  • EPSS 7.54%
  • Veröffentlicht 15.04.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 04:23:01

An issue was discovered in Squid through 4.7. When handling the tag esi:when when ESI is enabled, Squid calls ESIExpression::Evaluate. This function uses a fixed stack buffer to hold the expression while it's being evaluated. When processing the expr...

5.9

CVE-2019-12521

  • EPSS 0.57%
  • Veröffentlicht 15.04.2020 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:23:01

An issue was discovered in Squid through 4.7. When Squid is parsing ESI, it keeps the ESI elements in ESIContext. ESIContext contains a buffer for holding a stack of ESIElements. When a new ESIElement is parsed, it is added via addStackElement. addSt...

6.5

CVE-2020-2951

  • EPSS 0.13%
  • Veröffentlicht 15.04.2020 14:15:37
  • Zuletzt bearbeitet 21.11.2024 05:26:42

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacke...

7.5

CVE-2020-2958

  • EPSS 0.18%
  • Veröffentlicht 15.04.2020 14:15:37
  • Zuletzt bearbeitet 21.11.2024 05:26:43

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged atta...

8.6

CVE-2020-2959

  • EPSS 1.5%
  • Veröffentlicht 15.04.2020 14:15:37
  • Zuletzt bearbeitet 21.11.2024 05:26:44

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows unauthenticated attack...

7.8

CVE-2020-2929

  • EPSS 0.26%
  • Veröffentlicht 15.04.2020 14:15:36
  • Zuletzt bearbeitet 21.11.2024 05:26:39

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacke...

8.2

CVE-2020-2908

  • EPSS 0.15%
  • Veröffentlicht 15.04.2020 14:15:35
  • Zuletzt bearbeitet 21.11.2024 05:26:36

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows high privileged attack...

4.3

CVE-2020-2909

  • EPSS 0.22%
  • Veröffentlicht 15.04.2020 14:15:35
  • Zuletzt bearbeitet 21.11.2024 05:26:36

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacke...