High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-04-24	CVE-2019-11506	Out-of-bounds Write vulnerability in multiple products In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file. network low complexity graphicsmagick debian canonical opensuse CWE-787	8.8
2019-04-24	CVE-2019-11505	Out-of-bounds Write vulnerability in multiple products In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WritePDBImage of coders/pdb.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file. network low complexity graphicsmagick debian canonical opensuse CWE-787	8.8
2019-04-24	CVE-2019-11503	Link Following vulnerability in Canonical Snapd snap-confine as included in snapd before 2.39 did not guard against symlink races when performing the chdir() to the current working directory of the calling user, aka a "cwd restore permission bypass." network low complexity canonical CWE-59	7.5
2019-04-24	CVE-2019-11502	Link Following vulnerability in Canonical Snapd snap-confine in snapd before 2.38 incorrectly set the ownership of a snap application to the uid and gid of the first calling user. network low complexity canonical CWE-59	7.5
2019-04-24	CVE-2019-9928	Out-of-bounds Write vulnerability in multiple products GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP connection parser via a crafted response from a server, potentially allowing remote code execution. network low complexity gstreamer-project debian canonical CWE-787	8.8
2019-04-23	CVE-2019-11487	Use After Free vulnerability in multiple products The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. local low complexity linux debian canonical CWE-416	7.8
2019-04-23	CVE-2019-2698	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). network high complexity oracle redhat debian opensuse canonical hp	8.1
2019-04-23	CVE-2019-2697	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). network high complexity oracle canonical redhat hp	8.1
2019-04-23	CVE-2019-2632	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Pluggable Auth). network low complexity oracle canonical	7.5
2019-04-23	CVE-2019-2602	Resource Exhaustion vulnerability in multiple products Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). network low complexity oracle redhat opensuse canonical debian mcafee hp CWE-400	7.5