Opensuse

Opensuse

1454 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-9640

  • EPSS 1.28%
  • Veröffentlicht 23.01.2015 15:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.

5

CVE-2014-9639

Exploit
  • EPSS 1.36%
  • Veröffentlicht 23.01.2015 15:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.

5

CVE-2014-9638

Exploit
  • EPSS 1.28%
  • Veröffentlicht 23.01.2015 15:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.

5

CVE-2014-7943

  • EPSS 1.71%
  • Veröffentlicht 22.01.2015 22:59:23
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

7.5

CVE-2014-7942

  • EPSS 2.36%
  • Veröffentlicht 22.01.2015 22:59:22
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Fonts implementation in Google Chrome before 40.0.2214.91 does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

5

CVE-2014-7941

  • EPSS 2.25%
  • Veröffentlicht 22.01.2015 22:59:21
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SelectionOwner::ProcessTarget function in ui/base/x/selection_owner.cc in the UI implementation in Google Chrome before 40.0.2214.91 uses an incorrect data type for a certain length value, which allows remote attackers to cause a denial of servic...

4.3

CVE-2014-7939

  • EPSS 0.69%
  • Veröffentlicht 22.01.2015 22:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Google Chrome before 40.0.2214.91, when the Harmony proxy in Google V8 is enabled, allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code with Proxy.create and console.log calls, related to HTTP responses that lack an "X...

7.5

CVE-2014-7926

  • EPSS 2.28%
  • Veröffentlicht 22.01.2015 22:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspe...

7.5

CVE-2014-7923

  • EPSS 2.28%
  • Veröffentlicht 22.01.2015 22:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspe...

3.2

CVE-2015-0427

  • EPSS 0.1%
  • Veröffentlicht 21.01.2015 19:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerabili...