Suse

Linux Enterprise Desktop

460 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2018-19539

Exploit
  • EPSS 1.01%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

8.8

CVE-2018-19540

Exploit
  • EPSS 0.77%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26, 1.900.27, 1.900.28, 1.900.29...

8.8

CVE-2018-19541

Exploit
  • EPSS 1.23%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26, 1.900.27, 1.900.28, 1.900.29...

6.5

CVE-2018-19542

Exploit
  • EPSS 1.01%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.

7.8

CVE-2018-19543

Exploit
  • EPSS 0.36%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2_decode in libjasper/jp2/jp2_dec.c.

5.5

CVE-2018-18873

Exploit
  • EPSS 0.47%
  • Veröffentlicht 31.10.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:56:47

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.

10

CVE-2017-18017

  • EPSS 27.65%
  • Veröffentlicht 03.01.2018 06:29:00
  • Zuletzt bearbeitet 03.01.2025 12:15:25

The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other im...

7.8

CVE-2017-17805

  • EPSS 0.11%
  • Veröffentlicht 20.12.2017 23:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service ...

7.8

CVE-2017-17806

  • EPSS 0.03%
  • Veröffentlicht 20.12.2017 23:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HAS...

5.3

CVE-2017-13078

  • EPSS 0.81%
  • Veröffentlicht 17.10.2017 13:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients.