Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Leap
(Opensuse)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2019-06-17 | CVE-2019-8321 | An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::UserInteraction#verbose calls say without escaping, escape sequence injection is possible. | Debian_linux, Leap, Rubygems | N/A | ||
2019-08-12 | CVE-2019-14981 | In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function. It allows an attacker to cause a denial of service by sending a crafted file. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | N/A | ||
2019-07-09 | CVE-2019-13454 | ImageMagick 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | N/A | ||
2019-07-05 | CVE-2019-13297 | ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is mishandled. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | N/A | ||
2019-07-05 | CVE-2019-13295 | ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a width of zero is mishandled. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | N/A | ||
2019-06-26 | CVE-2019-12979 | ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | N/A | ||
2017-06-12 | CVE-2017-8871 | The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file. | Libcroco, Leap | N/A | ||
2017-06-12 | CVE-2017-8834 | The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file. | Libcroco, Leap | N/A | ||
2019-11-05 | CVE-2016-1000002 | gdm3 3.14.2 and possibly later has an information leak before screen lock | Debian_linux, Gnome_display_manager, Leap, Enterprise_linux | N/A | ||
2020-06-29 | CVE-2020-8014 | A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of kopano-spamd of openSUSE Leap 15.1, openSUSE Tumbleweed allowed local attackers with the privileges of the kopano user to escalate to root. This issue affects: openSUSE Leap 15.1 kopano-spamd versions prior to 10.0.5-lp151.4.1. openSUSE Tumbleweed kopano-spamd versions prior to 10.0.5-1.1. | Leap, Tumbleweed_kopano\-Spamd | N/A |