Opensuse

Backports Sle

326 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-5058

  • EPSS 1.98%
  • Veröffentlicht 31.07.2019 17:15:11
  • Zuletzt bearbeitet 21.11.2024 04:44:15

An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image t...

8.8

CVE-2019-5059

  • EPSS 1.98%
  • Veröffentlicht 31.07.2019 17:15:11
  • Zuletzt bearbeitet 21.11.2024 04:44:16

An exploitable code execution vulnerability exists in the XPM image rendering functionality of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow, allocating too small of a buffer. This buffer can then be written out of bou...

8.8

CVE-2019-5060

Exploit
  • EPSS 1.57%
  • Veröffentlicht 31.07.2019 17:15:11
  • Zuletzt bearbeitet 21.11.2024 04:44:16

An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then ...

7.1

CVE-2019-5459

Exploit
  • EPSS 0.94%
  • Veröffentlicht 30.07.2019 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:44:58

An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.

5.5

CVE-2019-14274

Exploit
  • EPSS 0.13%
  • Veröffentlicht 26.07.2019 04:15:11
  • Zuletzt bearbeitet 21.11.2024 04:26:20

MCPP 2.7.2 has a heap-based buffer overflow in the do_msg() function in support.c.

9.8

CVE-2019-13962

Exploit
  • EPSS 3.02%
  • Veröffentlicht 18.07.2019 20:15:12
  • Zuletzt bearbeitet 21.11.2024 04:25:47

lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height.

8.1

CVE-2019-13616

Exploit
  • EPSS 6.76%
  • Veröffentlicht 16.07.2019 17:15:12
  • Zuletzt bearbeitet 21.11.2024 04:25:22

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.

7.8

CVE-2019-13602

  • EPSS 0.54%
  • Veröffentlicht 14.07.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:25:19

An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and crash) or possibly have unspecified other impact...

8.8

CVE-2019-5051

Exploit
  • EPSS 2.16%
  • Veröffentlicht 03.07.2019 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:44:15

An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image...

8.8

CVE-2019-5052

Exploit
  • EPSS 1.67%
  • Veröffentlicht 03.07.2019 19:15:12
  • Zuletzt bearbeitet 21.11.2024 04:44:15

An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer overflow and potentia...