Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Leap
(Opensuse)| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2016-01-15 | CVE-2016-1897 | FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file. | Ubuntu_linux, Ffmpeg, Leap | 5.5 | ||
| 2016-04-12 | CVE-2016-1866 | Salt 2015.8.x before 2015.8.4 does not properly handle clear messages on the minion, which allows man-in-the-middle attackers to execute arbitrary code by inserting packets into the minion-master data stream. | Leap, Salt | 8.1 | ||
| 2017-02-28 | CVE-2016-10207 | The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early. | Leap, Tigervnc | 7.5 | ||
| 2017-03-02 | CVE-2016-10068 | The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file. | Imagemagick, Leap, Leap | 5.5 | ||
| 2017-03-03 | CVE-2016-10065 | The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. | Imagemagick, Leap | 7.8 | ||
| 2016-04-21 | CVE-2016-0655 | Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to InnoDB. | Debian_linux, Mariadb, Leap, Mysql, Enterprise_linux | 4.7 | ||
| 2016-04-21 | CVE-2016-0643 | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML. | Debian_linux, Powerkvm, Mariadb, Leap, Mysql, Enterprise_linux | 3.3 | ||
| 2016-01-21 | CVE-2016-0610 | Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x before 10.1.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB. | Ubuntu_linux, Debian_linux, Mariadb, Leap, Opensuse, Mysql, Enterprise_linux | N/A | ||
| 2016-01-21 | CVE-2016-0607 | Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to replication. | Ubuntu_linux, Leap, Opensuse, Mysql, Enterprise_linux | N/A | ||
| 2016-01-21 | CVE-2016-0605 | Unspecified vulnerability in Oracle MySQL 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors. | Leap, Opensuse, Mysql, Enterprise_linux | N/A |