Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Mageia
(Mageia)| Repositories |
• https://github.com/file/file
• https://github.com/splitbrain/dokuwiki |
| #Vulnerabilities | 20 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2014-12-03 | CVE-2014-8104 | OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet. | Ubuntu_linux, Debian_linux, Mageia, Opensuse, Openvpn, Openvpn_access_server | N/A | ||
| 2017-08-25 | CVE-2014-9637 | GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file. | Ubuntu_linux, Fedora, Patch, Mageia | 5.5 | ||
| 2014-12-17 | CVE-2014-9253 | The default file type whitelist configuration in conf/mime.conf in the Media Manager in DokuWiki before 2014-09-29b allows remote attackers to execute arbitrary web script or HTML by uploading an SWF file, then accessing it via the media parameter to lib/exe/fetch.php. | Dokuwiki, Mageia | N/A | ||
| 2014-12-02 | CVE-2014-9116 | The write_one_header function in mutt 1.5.23 does not properly handle newline characters at the beginning of a header, which allows remote attackers to cause a denial of service (crash) via a header with an empty body, which triggers a heap-based buffer overflow in the mutt_substrdup function. | Debian_linux, Mageia, Mutt, Linux_enterprise_desktop, Suse_linux_enterprise_server | N/A | ||
| 2014-12-17 | CVE-2014-8117 | softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors. | Ubuntu_linux, File, Freebsd, Mageia | N/A | ||
| 2014-12-17 | CVE-2014-8116 | The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities. | Ubuntu_linux, File, Freebsd, Mageia | N/A | ||
| 2014-10-07 | CVE-2014-7204 | jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file. | Ubuntu_linux, Debian_linux, Exuberant_ctags, Mageia | N/A | ||
| 2014-08-07 | CVE-2014-3429 | IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page. | Ipython_notebook, Mageia, Opensuse | N/A | ||
| 2014-08-20 | CVE-2014-2524 | The _rl_tropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.[PID] file. | Fedora, Readline, Mageia, Opensuse | N/A | ||
| 2014-10-15 | CVE-2014-1829 | Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request. | Ubuntu_linux, Debian_linux, Mageia, Requests | N/A |