Opensuse

Opensuse

1454 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.2

CVE-2014-6595

  • EPSS 0.08%
  • Published 21.01.2015 15:28:31
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability...

3.2

CVE-2014-6589

  • EPSS 0.11%
  • Published 21.01.2015 15:28:26
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability...

3.2

CVE-2014-6590

  • EPSS 0.11%
  • Published 21.01.2015 15:28:26
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability...

3.2

CVE-2014-6588

  • EPSS 0.08%
  • Published 21.01.2015 15:28:25
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability...

5

CVE-2014-9601

  • EPSS 1.08%
  • Published 16.01.2015 16:59:17
  • Last modified 12.04.2025 10:46:40

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.

2.1

CVE-2014-9496

Exploit
  • EPSS 0.1%
  • Published 16.01.2015 16:59:16
  • Last modified 12.04.2025 10:46:40

The sd2_parse_rsrc_fork function in sd2.c in libsndfile allows attackers to have unspecified impact via vectors related to a (1) map offset or (2) rsrc marker, which triggers an out-of-bounds read.

6.4

CVE-2015-0552

Exploit
  • EPSS 1%
  • Published 15.01.2015 15:59:26
  • Last modified 12.04.2025 10:46:40

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."

7.1

CVE-2014-8643

  • EPSS 1.35%
  • Published 14.01.2015 11:59:11
  • Last modified 12.04.2025 10:46:40

Mozilla Firefox before 35.0 on Windows allows remote attackers to bypass the Gecko Media Plugin (GMP) sandbox protection mechanism by leveraging access to the GMP process, as demonstrated by the OpenH264 plugin's process.

4.3

CVE-2014-8642

  • EPSS 0.66%
  • Published 14.01.2015 11:59:10
  • Last modified 12.04.2025 10:46:40

Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not consider the id-pkix-ocsp-nocheck extension in deciding whether to trust an OCSP responder, which makes it easier for remote attackers to obtain sensitive information by sniffing the networ...

5

CVE-2014-8640

  • EPSS 1.14%
  • Published 14.01.2015 11:59:08
  • Last modified 12.04.2025 10:46:40

The mozilla::dom::AudioParamTimeline::AudioNodeInputValue function in the Web Audio API implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly restrict timeline operations, which allows remote attackers to cause a d...