Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Backports
(Opensuse)| Repositories | https://github.com/rdesktop/rdesktop |
| #Vulnerabilities | 97 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-01-23 | CVE-2019-18899 | The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local attackers to influence the outcome of these operations. This issue affects: openSUSE Leap 15.1 apt-cacher-ng versions prior to 3.1-lp151.3.3.1. | Apt\-Cacher\-Ng, Backports | 5.5 | ||
| 2019-12-24 | CVE-2019-19950 | In GraphicsMagick 1.4 snapshot-20190403 Q8, there is a use-after-free in ThrowException and ThrowLoggedException of magick/error.c. | Debian_linux, Graphicsmagick, Backports, Leap | 9.8 | ||
| 2019-12-24 | CVE-2019-19951 | In GraphicsMagick 1.4 snapshot-20190423 Q8, there is a heap-based buffer overflow in the function ImportRLEPixels of coders/miff.c. | Debian_linux, Graphicsmagick, Backports, Leap | 9.8 | ||
| 2019-12-24 | CVE-2019-19953 | In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c. | Debian_linux, Graphicsmagick, Backports, Leap | 9.1 | ||
| 2019-12-03 | CVE-2019-5163 | An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a FATAL error code path and exit. An attacker can send arbitrary UDP packets to trigger this vulnerability. | Backports, Leap, Shadowsocks\-Libev | 7.5 | ||
| 2019-09-23 | CVE-2019-16709 | ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage. | Ubuntu_linux, Imagemagick, Backports, Leap | 6.5 | ||
| 2019-12-27 | CVE-2019-20053 | An invalid memory address dereference was discovered in the canUnpack function in p_mach.cpp in UPX 3.95 via a crafted Mach-O file. | Backports, Leap, Upx | 5.5 | ||
| 2020-02-04 | CVE-2019-15624 | Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders. | Nextcloud_server, Backports, Suse_linux_enterprise_server | 4.9 | ||
| 2020-02-13 | CVE-2020-0561 | Improper initialization in the Intel(R) SGX SDK before v2.6.100.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | Software_guard_extensions_sdk, Backports, Leap | 7.8 | ||
| 2020-03-23 | CVE-2020-10592 | Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7 allows remote attackers to cause a Denial of Service (CPU consumption), aka TROVE-2020-002. | Backports, Leap, Tor | 7.5 |