Opensuse

Opensuse

1454 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.3

CVE-2015-8842

  • EPSS 0.07%
  • Published 20.04.2016 16:59:03
  • Last modified 12.04.2025 10:46:40

tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file.

3.3

CVE-2014-9770

  • EPSS 0.1%
  • Published 20.04.2016 16:59:00
  • Last modified 12.04.2025 10:46:40

tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive information by reading these files.

9.8

CVE-2015-8779

  • EPSS 7.63%
  • Published 19.04.2016 21:59:05
  • Last modified 12.04.2025 10:46:40

Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name.

9.1

CVE-2015-8776

  • EPSS 6.32%
  • Published 19.04.2016 21:59:04
  • Last modified 12.04.2025 10:46:40

The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.

9.8

CVE-2015-8778

  • EPSS 7.73%
  • Published 19.04.2016 21:59:04
  • Last modified 12.04.2025 10:46:40

Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which tri...

8.8

CVE-2014-9765

  • EPSS 2.48%
  • Published 19.04.2016 21:59:01
  • Last modified 12.04.2025 10:46:40

Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file.

9.8

CVE-2014-9761

  • EPSS 3.82%
  • Published 19.04.2016 21:59:00
  • Last modified 12.04.2025 10:46:40

Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) ...

6.2

CVE-2016-3186

  • EPSS 0.99%
  • Published 19.04.2016 14:59:01
  • Last modified 12.04.2025 10:46:40

Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file.

5.5

CVE-2016-4036

  • EPSS 0.1%
  • Published 18.04.2016 14:59:04
  • Last modified 12.04.2025 10:46:40

The quagga package before 0.99.23-2.6.1 in openSUSE and SUSE Linux Enterprise Server 11 SP 1 uses weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory.

9.3

CVE-2015-7552

  • EPSS 2.15%
  • Published 18.04.2016 14:59:00
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file.