Opensuse

Opensuse

1454 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-1382

  • EPSS 2.21%
  • Published 03.02.2015 16:59:13
  • Last modified 12.04.2025 10:46:40

parsers.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to an HTTP time header.

5

CVE-2015-1381

  • EPSS 2.21%
  • Published 03.02.2015 16:59:12
  • Last modified 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in pcrs.c in Privoxy before 3.0.23 allow remote attackers to cause a denial of service (segmentation fault or memory consumption) via unspecified vectors.

5

CVE-2015-1380

  • EPSS 1.01%
  • Published 03.02.2015 16:59:11
  • Last modified 12.04.2025 10:46:40

jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (abort) via a crafted chunk-encoded body.

10

CVE-2015-0313

Warning Exploit
  • EPSS 92.84%
  • Published 02.02.2015 19:59:00
  • Last modified 12.04.2025 10:46:40

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited ...

5

CVE-2015-1419

  • EPSS 64.11%
  • Published 28.01.2015 11:59:08
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in vsftpd 3.0.2 and earlier allows remote attackers to bypass access restrictions via unknown vectors, related to deny_file parsing.

7.5

CVE-2015-1182

  • EPSS 4.46%
  • Published 27.01.2015 20:59:14
  • Last modified 12.04.2025 10:46:40

The asn1_get_sequence_of function in library/asn1parse.c in PolarSSL 1.0 through 1.2.12 and 1.3.x through 1.3.9 does not properly initialize a pointer in the asn1_sequence linked list, which allows remote attackers to cause a denial of service (crash...

7.5

CVE-2014-8154

  • EPSS 0.89%
  • Published 27.01.2015 20:59:12
  • Last modified 12.04.2025 10:46:40

The Gst.MapInfo function in Vala 0.26.0 and 0.26.1 uses an incorrect buffer length declaration for the Gstreamer bindings, which allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecifie...

6.8

CVE-2014-8158

  • EPSS 6.22%
  • Published 26.01.2015 15:59:09
  • Last modified 12.04.2025 10:46:40

Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image.

7.5

CVE-2014-8157

  • EPSS 5.9%
  • Published 26.01.2015 15:59:04
  • Last modified 12.04.2025 10:46:40

Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image, which triggers a heap-based buffer overf...

7.2

CVE-2014-8148

  • EPSS 0.07%
  • Published 26.01.2015 15:59:00
  • Last modified 12.04.2025 10:46:40

The default D-Bus access control rule in Midgard2 10.05.7.1 allows local users to send arbitrary method calls or signals to any process on the system bus and possibly execute arbitrary code with root privileges.