Mageia

Mageia

22 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2014-9637

  • EPSS 0.38%
  • Published 25.08.2017 18:29:00
  • Last modified 20.04.2025 01:37:25

GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file.

5

CVE-2015-2191

  • EPSS 3.29%
  • Published 08.03.2015 02:59:05
  • Last modified 12.04.2025 10:46:40

Integer overflow in the dissect_tnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted length...

5

CVE-2015-2189

  • EPSS 0.3%
  • Published 08.03.2015 02:59:03
  • Last modified 12.04.2025 10:46:40

Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via...

5

CVE-2015-2188

  • EPSS 0.34%
  • Published 08.03.2015 02:59:02
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (out-of-bounds read and applicatio...

3.5

CVE-2015-0236

  • EPSS 0.56%
  • Published 29.01.2015 15:59:00
  • Last modified 12.04.2025 10:46:40

libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interf...

2.1

CVE-2014-8136

  • EPSS 0.13%
  • Published 19.12.2014 15:59:10
  • Last modified 12.04.2025 10:46:40

The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in libvirt do not unlock the domain when an ACL check fails, which allow local users to cause a denial of service via unspecified vectors.

5

CVE-2014-8117

  • EPSS 14.62%
  • Published 17.12.2014 19:59:05
  • Last modified 12.04.2025 10:46:40

softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors.

5

CVE-2014-8116

  • EPSS 14.09%
  • Published 17.12.2014 19:59:02
  • Last modified 12.04.2025 10:46:40

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

4.3

CVE-2014-9253

  • EPSS 0.59%
  • Published 17.12.2014 18:59:02
  • Last modified 12.04.2025 10:46:40

The default file type whitelist configuration in conf/mime.conf in the Media Manager in DokuWiki before 2014-09-29b allows remote attackers to execute arbitrary web script or HTML by uploading an SWF file, then accessing it via the media parameter to...

6.8

CVE-2014-8104

  • EPSS 1.47%
  • Published 03.12.2014 18:59:00
  • Last modified 12.04.2025 10:46:40

OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet.