Suse

Linux Enterprise Server

474 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2019-11038

Exploit
  • EPSS 10.54%
  • Veröffentlicht 19.06.2019 00:15:12
  • Zuletzt bearbeitet 21.11.2024 04:20:25

When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause t...

7.5

CVE-2017-16232

  • EPSS 1.07%
  • Veröffentlicht 21.03.2019 15:59:56
  • Zuletzt bearbeitet 21.11.2024 03:16:05

LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. NOTE: Third parties were unable to reproduce the issue

8.1

CVE-2018-16873

  • EPSS 56.8%
  • Veröffentlicht 14.12.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:29

In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically,...

8.1

CVE-2018-16874

  • EPSS 5.74%
  • Veröffentlicht 14.12.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:53:30

In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both '{' and '}' characters). Specifically, it is only v...

6.5

CVE-2018-19539

Exploit
  • EPSS 0.96%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jas_image_readcmpt in libjasper/base/jas_image.c, leading to a denial of service.

8.8

CVE-2018-19540

Exploit
  • EPSS 0.68%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26, 1.900.27, 1.900.28, 1.900.29...

8.8

CVE-2018-19541

Exploit
  • EPSS 1.18%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26, 1.900.27, 1.900.28, 1.900.29...

6.5

CVE-2018-19542

Exploit
  • EPSS 0.97%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function jp2_decode in libjasper/jp2/jp2_dec.c, leading to a denial of service.

7.8

CVE-2018-19543

Exploit
  • EPSS 0.4%
  • Veröffentlicht 26.11.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:07

An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2_decode in libjasper/jp2/jp2_dec.c.

5.5

CVE-2018-18873

Exploit
  • EPSS 0.45%
  • Veröffentlicht 31.10.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:56:47

An issue was discovered in JasPer 2.0.14. There is a NULL pointer dereference in the function ras_putdatastd in ras/ras_enc.c.